Slashdot Mirror
Slashback: Quiesence, Jazz, RAND
Please write your elected W3C representative. haplo21112 writes "The W3C has posted a next-steps comment on the mailing list for the Patent Policy Frame Work proposal.
It announces among other things that two Open Source People have been added to the working group as Invited experts, Eben Moglen (General Counsel, Free Software Foundation) and Bruce Perens (Co-Founder of the Open Source Initiative). They have also announced a home page for the Working Group at: http://www.w3.org/2001/ppwg/
Especially interesting is the Second Objection noted on the page from IBM, where basically they are revealed as one of the drivers of the proposal. They grumble about RF and pretty much say they would vastly prefer RAND."
You'd like to think so, eh? ColaMan writes: "Is CodeRed finally dead? I've had a counter on my webserver (yay apache!) that tracks attempts, but since the start of the month only 1 lone attempt has been logged on our permanent IP dialup connection (and that was just overnight). This compares to 2490 attempts for August and 931 for September. Nimda still seems to be plodding along though - I've had 159 unique ip's so far this month and 466 for September. Knowing that my IP address is in some bandwidth-forsaken backwater of the internet, I was wondering how things were going CodeRed-wise in the Real Internet?"
I forget -- does the M stand for "Microsoft," or "Macintosh"? An Anonymous Coward writes: "Remember this story from last Tuesday asking about audio applications on linux? Today the Jazz++ mailinglist declared jazz++ dead (find the message here). While not the perfect midi sequencer, jazz++ is robust and GPL'd. Since jazz++ only appeared twice in the postings (each moderated at +1 ...) related to the earlier story, it would seem this fine product has low visibility among the /. crowd. The only viable GNU/Linux midi solution died the same week ./ had a call for audio solutions on Linux. Gotta love irony..."
From Bundesrat to Bangkok Germany may be considering it, but Thailand is doing them one better. TheMMaster writes "According to this article on newsbytes, the Thai government will switch to open-source software, linux on the desktop, StarOffice. This is a nice example of OSS, and probably why a lot of people contribute, to help people (OK and for fun)"
As usual, the actual developers float high above the flames on their behalf. Yep, KDE is 5 years old -- and fm6 writes: "A nice contrast to the usual GNOME-versus-KDE flamage: the users of news.gnome.org wish KDE a happy 5th birthday." Remember, the flame wars you see about these two projects have little to do with the fact that both have already created killer desktops, and are continuing to do so faster than human beings should be allowed to travel.
The w3 patent policy list, now that the rucus from the patent proposal has died down, is full of repeated spam messages.
So why is this rubust and successfull, gpl'ed program dead? Just because it won't link against new libraries doesn't make it dead.
And it's ofcourse GPL, which means that you can reuse parts of it in other software.
Over the last 3 days my site has been receiving one Code Red hit per day. The interesting this is that the original 'N' padding is being used again similar to CR1. Prior to this I hadn't had a hit since Sep. 30th.
Nimda is still going like made but at a much reduced pace. 8 unique hosts 423 hits today. I sure wish it would give up after the first GET and it realizes I'm not running IIS. I'm about to start dynamically updating my IPTables
I've gotta wish KDE a happy birthday -- it was my first Linux GUI and arguably my favourite. The "winds of change" have prompted me to switch to GNOME and while I have to admit I adore Ximian/GNOME I'll always have a soft spot in my heart for KDE. Isn't it great to see how alive and well competition in the Linux scene is? Thank God for KDE (and GNOME) because they've made each other a tonne better simply by their existence.
Code Red is dead baby, Zed is I mean Code Red is dead. Actually, I run the intrusion detection system at my company, and I can say that CodeRed v2 is all but gone (the decompile did say it would die in October - http://www.incidents.org/react/code_redII.php 3/4 down the page, "Infection Process"), however CodeRed v1 still knocks occasionally (we get 2 to 3 hits a day). Nimda is something else, it keeps hitting at about 10~20 per day.
Jack Ash
I've got a small apache server running on the "dirty front lines" of the internet... right in the middle of the 2nd largest cable network in the US, where every tom, dick and harry goes nuts with p2p, porn, spam, and of course, IIS without having a clue about anything significant.
Anyway, my current NIMDA stats: 55,522 hits in the access_log, and they've only slowed down noticeably within the past week. 196 so far today, and today isn't over yet.
I've successfully been able to shut down some of these machines remotely by randomly picking IPs from the log, checking for either open SMB shares or win2k remote administration. With either of those, especially since these sysops are usually the height of insecurity, its been quite easy to contribute my part of NIMDA disinfection.
Skiers and Riders -- http://www.snowjournal.com
to those on the Gnome side who were gracious enough to be this polite regarding KDE's birthday
It kinda makes one wonder, though, how much energy and how many good ideas are wasted by all the lobbing of insults in the general community. This is a fact of life when it comes to closed-source applications apparently, but in the world of open source it's just dumb. Elitism and smugness hinder progress.
Now, if only the database trolls could take a lesson on this one... sometimes the wars between the various open source factions (mySQL, PostgreSQL, etc) can be worse than anything seen between KDE/Gnome (at least in my opinion).
As to what's better, all I can say is that I use *both* Gnome and KDE (well, KDE a bit more than Gnome these days), and *both* mySQL and PostgreSQL personally (more mySQL than the others, blah blah).
It's all progress, folks. Let's keep it that way
Happy Birthday KDE, from a GNOME User...
I am one of those people - and there are probably way more of us than not - who (although it does eat up quite a bit of drive space) has both QT and GTK+ libraries and associated files on the computer. Although I always use GNOME (and i think KDE is a bit, well, ugly) I am happy that:
One of my Chinese co-workers has a collection of MIDI tunes he likes to play from time to time. I'm telling you, you haven't lived until you've listened to "Raindrops Keep Fallin' On Your Head" as a MIDI tune, 20 times in the course of one day.
Shutting down free speech with violence isn't fighting fascism. It IS fascism!
MusE is a more powerful, more appealing, more actively developed MIDI editor and sequencer than Jazz or Jazz++ ever was. And besides, Jazz is not dead. The message is simply one user expressing their concerns, which although they may be realistic, are not definitive.
I got my first Sircam email today.
I don't know whether to be happy that I've been spared thus far, or sad that I don't seem to be worth the bother of putting in an address book.
It was just some German person's Werewolf campaign character sheet, too. How dull. I was hoping for government secrets.
Maybe I'm misunderstanding this question, but the M in MIDI stands for "Musical". Musical Instrument Digital Interface.
Oh, how fast the days have flown by. Microsoft, Microsoft, Microsoft. My thoughts are with you on this lonely day. What has the world come to when there aren't any automatic viruses floating around on buggy Windows systems? Maybe we'll get lucky and WinXP will have some colossal hole. For now, however, my lonely IP has nobody tracerouting it, scanning for open ports, or even sending it petty pings.
"I have not failed. I've simply found 10,000 ways that won't work." --Thomas Edison
We should all keep in mind this simple truth: Code Red is dying.
.008 percent of the virus infection market. Therefore there are (7000/100)*.008 = .56 Code Red on FreeBSD machines. This is the result of one guy working in his spare time to port Code Red and consistent with the number of Code Red on FreeBSD Usenet posts.
You don't need to be Kreskin to predict Code Red's future. The hand writing is on the wall: Code Red faces a bleak future. In fact there won't be any future at all for Code Red because Code Red is dying. Things are looking very bad for Code Red. As many of us are already aware, Code Red continues to lose market share. Red ink flows like a river of blood.
Let's keep to the facts and look at the numbers.
Famed Code Red using hacker mafiaboy states that there are 7000 machines that are victims of Code Red. How many users of Nimda are there? Let's see. The number of Code Red versus Nimda posts on Usenet is roughly in ratio of 1 to 4. Therefore there are about 7000*5 = 35000 Nimda users. Code Red on Linux posts on Usenet are about half of the volume of Code Red on Windows posts. Therefore there are about 700 victims of Code Red on Linux. A recent article put Code Red on *BSD at about
Due to the troubles of Sircam, abysmal infection rates and so on, Sircam is getting out of the virus business and becomming a flight simulator. Code Red is still dying and the corpse of Code Red will soon be turned over to another charnel house.
All major surveys show that Code Red has steadily declined in market share. Code Red is very sick and its long term survival prospects are very dim. If Code Red is to survive at all it will be among virus hobbyists, dabblers, and dilettantes. Code Red continues to decay. Nothing short of a miracle could save it at this point in time. For all practical purposes, Code Red is dead.
--Shoeboy
Well, all those NT servers had to have been rebooted at least once by now :) !
The Thai language has 77 letters (or 76?), and requires complicated marks that go above the letters. So, all word processing software must be modified anyway. Thailand is a good country to begin with Open Source software.
What should be the Response to Violence?
Bush's education improvements were
OpenSource programs don't die!
They just fade away.
...comparatively speaking. For those of you who didn't read it, one of their objections is that while anyone involved in making the standard might potentially be forced to declare RF licensing, someone who keeps quiet during the standard's formulation but owns a patent on essential parts of the standard, can license under RAND or whatever else, as they didn't take part in the process.
While that is a problem, it doesn't negate the idea of RF. There were three other objections - but they're half legalese, and IANAL... :-)
Yeah, it is... hey you damn lazy hax0rs out there, get back to work! no rest for the wicked!
``If a program can't rewrite its own code, what good is it?'' - Mel
Code Red deliberately self terminates on October 1st 2001.
There's a check inside the code that essentially sends the server into an endless reboot loop if the month is greater than 9 or the year is greater than 2001.
This pretty much ensures you either fix your server or stay offline.
I guess even a worm writer wants to use the 'Net. Building self-termination into a worm seems like an oddly moral thing to do, however closer examination will probably reveal the author was concerned about the worm making the net completely unusable.
And that would never do.
The activity light is still on rock solid, and there's nothing wrong with the modem. No, I don't have any of the worms because I'm using a broadband firewall.
At my last count, I receive around 500 attempts by these worms each day, usually by other cable users. Before I got a firewall, loading up my Apache log file crashed notepad. My favorite past time has become tracerouting the IPs to see what nearby city they're in. I live in Columbus, Ohio and can easily discern those from nearby towns and locations throughout the city (e.g. pos1-2-colswest or pos4-0-dublin).
I then like to load up Telnet and go searching for root.exe on these computers. When dumped into a root cmd, a carefully placed command copies a file from a share on my computer to the other machine. The file, of course, is an MS update patch or lately one of the clean utilities posted around the net. Another command runs the program and when finished the system is reboot and no longer bothers me.
Now there's an idea...fixing worm systems through their own security holes. I even wrote a little script to automatically attempt to 'fix' an attacking system. Don't just bitch when the same IP keeps pounding you...do something about it!! There's plenty of info out there, and you can get most of the info from the attacking HTTP GET strings.
"I'll just chip in a bit for RedHat: I actually have that installed on my university machine." - Linus, '95
If the recording industry moved to Linux, they wouldn't just be saving tons of money for software (their only costs would be hardware). They might also adopt a new outlook on the "free world". A combination of the two might shut up the RIAA.
The RIAA is exactly why the industry will never move away from Windows. Microsoft is all but guaranteeing that music piracy will dry up if the major players switch to Windows Media encodings exclusively, and each new release of Windows has another restriction on how and what media can be made or played. The recording industry inherently doesn't want to 'shut up' the RIAA since it only does exactly what they tell it to.
== Paul Rickard, Editor of The Microsoft Boycott Campaign ====
I guess even a worm writer wants to use the 'Net. Building self-termination into a worm seems like an oddly moral thing to do, however closer
examination will probably reveal the author was concerned about the worm making the net completely unusable.
Or as someone else pointed out, it's to stop the infected host from broadcasting "My owner is a moron, please FIX ME!". If the worm writers main goal was to gather an arsenal of computer slaves, then a wormicide would be the thing to do. When the worm stops spreading the security gurus go away, the press stops spreading panic, and the script kiddies can quietly move in and gorge themself on an unprecedented number of slaves. Now why they'd want to run their advanced skript-kiddie-software on such a lame OS beats me, but then again, I probably don't like their music either.
-- Another senseless waste of fine bytes.
WinXP already has produced a colossal hole... in your wallet. Bwahahahaahahaha!!!!!!!!!!
Edith Keeler Must Die
I've been hit with over 78000 Nimda attacks, and about 16000 attacks between Code Red (1 and 2).
I use a utility I wrote to keep track of all the attacks on my Apache server. It's called WormScan, and you can find it here. It's written in Java, is licensed under the GPL, and only needs a couple of minutes to scan through your logs (depending on size and number of attacks, of course). Lots and lots of features, and extremely flexible. It generates detailed reports which can help you get a look at what's going on.
You can accomplish anything you set your mind to. The impossible just takes a little longer.
Actually, the message asked if the program was on its' deathbead, since there were certain changes in libraries that threaten to make it unbuildable on modern systems.
So it is not dead yet.
And somebody with spare time could turn around and patch it as a summer project or something.
"It is a greater offense to steal men's labor, than their clothes"
Gimme a URL to download code to install this code red counter. I want to keep track of it too. I look through my logs occasionally and I'm always seeing failed attempts for files like ../../../../sys.com and C:/blah i assume this code red trying to worm it's way onto my linux box.
Joseph Elwell.
You might not realise this, but Windows is only used by the majority of audio people in the amateur space.
:().
Once you move into the professional space its almost totally Mac based (and VERY expensive
---
Live Long & Prosper \\//_
CYA STUX =`B^) 'da Captain,
Jedi & Last *-fytr
As a professional musician I need to use windows because that is where all the best sequencing/recording/processing technology is (yes, windows is far superior to mac for digital audio).
That's very strange, and contrary to everything I've heard from people who work in that industry. Are you saying Windows in superior to Mac for digital audio because of the applications available, or the hardware, or the operating system itself? I know that many apps that were formerly Mac-only have now been ported to additionally run on Windows, but what's not available for the Mac? As for hardware, the same hardware should work with either platform; all you need is drivers, and any company selling professional audio peripherals without Mac drivers is pretty stupid. Finally, the OS. Windows. I don't think I have to explain why Windows sucks ass.
$x='S24;r)>63/* h@<5+oZ)32"5cz';$me='phroggy'x$];
$x=~y+ -xz+\0-Tx+;print$_^chop$me for split'',$x;
The problem with Linux is that it doesn't have a true multimedia subsystem that handles timing issues. OS/2 has something like this, and its MPU-401 driver is rock-solid and has dead-on timing. Check it out.
And the men who hold high places must be the ones who start
To mold a new reality... closer to the heart
So long as there's one copy of the source in the wild, GPL software never dies. I downloaded the CVS for safekeeping, and when I've got time I'll work on it.
Life's a bitch but somebody's gotta do it.