Slashdot Mirror
P4 2.2GHz Overclocked to 3.5GHz
GraveD sent linkage to a site
explaining how a homemade nitrogen cooling system
overclocked a P4
from 2.2Ghz to an incredible 3.5ghz. There's plenty of stuff
to poke at over there. Update: 01/17 20:42 GMT by T : boaworm writes: "According to this paper, the Finnish geeks have successfully oveclocked a Pentium 4 to 3675 Mhz. They claim it is a new World Record, and it sure looks like they beaten another O/C'd Pentium 4 submitted earlier today on slashdot. (Summary in English in the end)."
Wouldn't it be great if the inverse also worked?
MS could just announce that "Our software code is like swiss cheese when it comes to security" and #POOF#, all the holes would be sealed for good.
------
Today's Top Deals
Laws to Punish Insecure Software Vendors?
Have a Happy.
given the many discussions on /. of late re: full disclosure of security holes, partial disclosure, disclosure to the company only, etc - what does the crowd here think of the way these exploits have been handled? The story says the Litchfield has commented publicly and explicitly on the nature of one of the holes that already has a patch available, but that he's holding close the holes that have patches still under development.
I guess another question would be, while Oracle is by no means a small company, if the company name started with an M and ended with 'icrosoft' would we be demanding more information?
Ad in classifieds: Pandora's Box (no box) $5
http://saintaardvarkthecarpeted.com/oracle
Carousel is a lie!
Oracle9i. Unbreakable. Can't break it. Can't break in.
Legally they are correct. The DMCA says you can't break it, and various other laws say you can't break in.
...impossible claim proved wrong. Film at eleven. I can't tell if Ellison's claim that Oracle was bulletproof was the act of a madman or genius. Why genius? Nothing gets security experts to test your software with such vigor than when you tell them it's invulnerable. Question is, does this make the NSA more or less secure in choosing Oracle products?
i would have to loved to have been a fly on the wall in the oracle engineering department the day ellison announced that their software was unbreakable. i guarantee you the engineers at oracle wouldn't have supported that campaign, if they even knew about it before ellison announced it at comdex. it's tough enough to keep your software secure when your ceo isn't directly taunting every hacker in the world.
Well, because Forth to understand, like Yoda you must speak, that is.
Chris Mattern
Didn't they start this campaign to get 'hacked' ? so they could close some more holes they couldnt find them selves ?
Now i wonder, it worked they all readdy found 7!
Quazion.
That leaves me feeling warm and fuzzy inside.
"The Oracle database server itself runs on some sixty odd different operating systems,"
How many non-odd operating systems does it run on??
Why is there only one Monopolies commission?
If builders built buildings the way programmers wrote programs, then the first woodpecker that came along would destroy civilization.
(this is twenty years old)
Take the cheese to sickbay, the doctor should see it as soon as possible - B'Elanna Torres, "Learning Curve"
In the other news, the largest ship in the world Titanic that was named unsinkable, has sunk.
Comments by the CEO: -Well, you can take it both ways, really, we are defining what Unsinkable really means! The other ship building companies in our field are looking up to us to be half as unsinkable as we are. It's great, really, how our compain brings the best out of this situation.
"We believe the market effect of the 'Unsinkable' campaign raises the unsinkability bar and therefore improves unsinkability overall, both in forcing us to live up to the statement, and forcing others in the industry to begin to do the same," wrote Bruce Ismay. "If our unsinkability today is imperfect but better than the competition, and if customers make a buying decision based on that criteria, than in the long term you will see all products in the market improve."
You can't handle the truth.
The fact that defense in depth is a good idea does not justify allowing one of the layers to be weak. The defenses at every level should be as strong as possible, and that ideally means a bug-free app server and a bug-free database.
The only thing that this researcher proved is that in certain environments you can break in the system, which basicly holds true for every system.
No matter what, you can be sure that contrary to M$, these holes will be worked on 24/7 and fixed like yesterday. :)
Anyway, enjoy you uninformed, senseless bashing and flaming... trolls.
If programs would be read like poetry, most programmers would be Vogons.
The reality of it is that most DBAs, programmers and database developers in the working world scoffed at the ad campaign the moment it began. Sure, Oracle has a great product, but we all knew it wasn't bulletproof, no matter how may awards for "best of class security" it supposedly won.
The only real losers in this, other than organizations whose Oracle databases were victimized by a security flaw, were the corporate purchasers who were sold on the hype. They'll have to live with the fact that their DBMS isn't "unbreakable." Honestly, though, there are relatively few of those (none I can think of that are well-publicized, at least), as they are usually run on well locked-down *nix boxes.
It's not anything new. It's just agressive advertising. Some might argue that it's false advertising, but that's probably being a bit harsh. It's more like...overly boastful advertising.
My sigs always suck.
Come on people. Oracle explained that they used the term "unbreakable" because it passed 14 security audits. Some people say you can't crash linux because it typically doesn't - but it can.
:-)
By and large the Oracle products are very good... We use them in some extremely large and significant datawarehousing situations and have probably managed to kill the server once in three years. Many times we've been amazed at what developers have thrown at the server without killing it - Oracle is very good at recovering from users mistakes.
Anyway, I look forward to hearing what the obvious vulnerabilities are - I dread the number of server upgrades to be tested though. The client I'm working for now has about 250 instances registered with their 24*7 DBA team already... You have no idea how hard it can be to choose a unique 4 character SID sometimes.
Long live Oracle... I'm sure Larry won't lose any sleep (or money) over this since it is still clearly the best product out there.
all the porn you've ever downloaded
Just imagine :
select * from downloaded_porn_table where porn_search_string like '%Natalie Portman scared and petrified%'
Non-Deterministic Finite Automata
As if ANYONE on this site hasn't ever had to explain something that a some moron ^H^H^H^H^H^H manager said could or couldn't be done..
HIS boss is still the boss, wtf is he supposed to say?
"I can't give you a brain, so I'll give you a diploma" - The Great Oz (blatently stolen sig)
Admittedly, but COME ON Dave, it's just not CATCHY. Slogans are often misleading or linguistically incorrect. Here is a list of "catchy slogans" that are either also false, irrelevant, or just silly enough just to point out.
Slogan [Product/Firm]
sig
It was a marketing ploy and any professional administator who looked at and said "wow, unbreakable, lets buy it" probably wasn't a professional at all.
It's not surprising that a system as complex as Oracle is going to have security flaws. However if you mistaken believed that Oracle had created the perfect piece of software, may I suggest you stow it away in the closet next to your Abdominizer and set of stay-sharp-steak-knives.
He who defends everything, defends nothing. -- Fredrick The Great
I dunno... I think Larry could take Bill.
Larry looks more than a little like The Rock in this photo. Ever notice how you never see both The Rock and Ellison together at the same time? Hmmm? Coincidence? Perhaps not.
But what is the rest?
Imperium et libertas
Autocracy and freedom
A software company said to the public, "Our product is unbreakable." The public replied, "No, you are not unbreakable."
Another software company said to the public, "Our product is not unbreakable." And the public replied, "You're right, you are not unbreakable."
So my money says that they took care of the big holes
Oh really? A buffer overflow isn't a big hole? Buffer overflow bugs can be prevented by a middle-school hacker. This is elementary stuff. Doesn't anybody believe in putting limits on characters? This is simple to prevent.
Why are their STILL companies that fall victim to buffer overflow holes?!
Zodiac Survey
"Hello, helpdesk? I need to edit the Oracle config files, and I forgot the Oracle user's unix password."
"Hello, helpdesk? Brad Pitt's a friend of mine and will go out with you if you give me the root password for the Oracle box."
If it's "let's attack the binary and see if we can break it", that's potentially harder to catch something like this, but then again, how hard can it be to see if the binary links against the system C library at the known offsets of gets, fgets, sprintf, etc.
What would be lamest of all is if the certification process goes something like, "What's your security engineering process? Oh, sounds secure to us."
The more I've thought about this, the more likely it seems. And a key aspect to this is that my OS vendor, SuSE, and ilk (Red Hat, Mandrake, etc) would be nailed just as much as MS, except with less money in the bank, they would be killed much more swiftly. Now, two of those are outside of the USA, so it's not a direct correlation, but there are some serious ramifications to software liability that occur in as reactive a society as we have today.
Certainly this announcement would instantly have a dozen law firms seeking people running Oracle to launch a multi-billion dollar suit of some flavor. And while certainly not "unbreakable", and (IMO) a bit overpriced, Oracle being available is a Good Thing. Of course they have holes. I'm equally sure that they will likely address them quickly (Quickly being relative to the company involved). Introducing *sane* liability (at least in America) is going to be very difficult in a society that is making it neigh impossible to be a medical doctor, and is driving up medical costs due to the extensive CYA documentation (videotapes, extensive reports, etc) now required by industry insurance.
--
Evan "I'm pretty sure this is ontopic" E.
"$30 for the One True Ring. $10 each additional ring!" -- JRR "Bob" Tolkien
The unique thing about software is that it is infinitely clonable. Once you've written a subroutine, you can call it as often as you want. This means that almost everything we do as software developers is something that has never been done before. This is very different than what construction workers do. Herman the Handyman, who just installed a tile floor for me, has probably installed hundreds of tile floors. He has to keep installing tile floors again and again as long as new tile floors are needed. We in the software industry would have long since written a Tile Floor Template Library (TFTL) and generating new tile floors would be trivial.
h tml
from http://www.joelonsoftware.com/news/fog0000000337.
..."unbreakable" doesn't really mean unbreakable, or something...
Oracle said that 9i "is unbreakable". As President Clinton could easily tell you, the key word here is 'is'.
How does PostgreSQL compare to Oracle? Is PostgreSQL more or less secure than Oracle? I don't know. I've never heard of a problem with it nor have I had one. Is PostgreSQL faster or slower than Oracle? I don't know, and apparently Oracle desperately doesn't want anyone to find out. From benchmarks that have had Oracle results deleted to benchmarks that someone (I wonder who?) has gotten the ISP to remove for "violation of our Terms of Service" (this used to be a benchmark), Oracle is very aggressive in preventing anyone from finding out how their database really performs. I wonder why? (However what might be another version of the second benchmark seems to have survived by carefully avoiding the mention of names of proprietary products.) All I know is that after trying to deal with the bloat of Oracle on a less-than-mainframe-class PC, PostgreSQL was a lean, mean breath of fresh air. Converting PL/SQL to PL/pgSQL was easy, too.
When you get to the airport, they want to see your Larry-Ellison-approved National ID Card, or at least several forms of ID, take off your hat, jacket, shoes, belt, cellphone, beeper, PDA, and steel hip joint, and then decide whether to let you ride on the airplane you bought a ticket for. But when Larry Ellison gets to the airport, he gets on his own plane. Does he have to go through the security gate where they check his National ID card and say "Sorry, Mr. Ellison, you've gotten 15 tickets for violating quiet hours at San Jose Airport by landing after midnight, so we're not going to take the Big Orange Boot off your airplane wheel unless you show us a flight plan that gets you in by 11pm?" Not bloody likely.
Bill Stewart
New Fast-Compression-only CPR http://preview.tinyurl.com/dy575ks
Where did he say he wants _all_ our information in a central database? There is a world of difference between having a reasonably secure national ID system that contains reasonable identification measures and _all_ of information (e.g., habits, medical history, etc) in one system. As much as I find Ellison a despicable person, please do not put words in his mouth or misrepresent the words of anyone that might advocate this. It may well be true that he wants that to sell his product, but that's not the same as actually advocating that. Furthermore, this same argument could be said for MS or the developers of mysql even...
> Buffer overflow bugs can be prevented by a
> middle-school hacker. This is elementary stuff.
> Doesn't anybody believe in putting limits on
> characters? This is simple to prevent.
This is pure bullshit. Are the programmers of
Apache, IIS, Half-Life, Quake 3 Arena, Perl, SSHD, glibc, wu_ftpd, or BIND at the middle school level? Windows NT? How about the linux kernel? All have had buffer overflows, and I'll bet that many of them still do.
Unfortunately it is not always as simple as "putting limits on characters". The simple fact is that the C language is practically designed to make buffer overflow bugs easy to write and easy to exploit.
I agree with you that buffer overflows are serious, though. That's why I think it is ridiculous that we still write security-critical network software in C. Sometimes it is hard to get around, like in the linux kernel when you need to do hardware access (a microkernel architecture might make it easier to write certain parts in higher-level languages). You might argue that performance would be impacted (I don't think this is true, especially with network software where the network is the real bottleneck), but even this argument falls through for 99% of users, since most users are far from full utilization of their processor. However, almost all users *are* affected by security holes.
When I used to use Oracle it was unbreakable. The only people who had complete access was the DBA and some guy named Scott Tiger....
Dude. Overclocking with a super-cooling system is sooo 1999!
Good quote, too many chars. Seriously, the slashdot 120 char limit sucks!
...it just might be able to take the Slashdotting!
AMD had better come out with a new "Athlon XXXP 3500+" to stay competitive! :)
Sure, it's great to take the latest and greatest chips out there and boost the heck out of 'em. But what I want to see are some overclocks of things from a while back. Let's see about pumping some juice through a Pentium 100, or even a 6502C in a Commodore 64. Let's REALLY get impatient for actual powerful, stable chips, and take some PowerPC chips to the tank o' coolant.
You also never see anyone talking about overclocking non-x86 architectures. I'd assume this is due to a lack of BIOS with that kind of speed support, and motherboards without jumpers for clock speeds. But why let that stop us, right?
*insert sarcasm drip here, 50ml hourly*
My own pointless vanity vintage computing page
Right, I want technical details on how to do it too.
Look at this CPU, the physical dimension and the heat it generates, are just perfect for making my omelette in the morning.
A 3.5GHz P4 probably would perform like a 2.5GHz Athlon, given the difference in IPC. However, factor in SMT (HyperThreading) into the equation and it gets a lot more interesting. Hammer will have some competition when it comes out, even with a PR rating of 3400+ - the P4 will probably get to 3GHz by the end of this year.
In the end, the consumer is the one to win. But remember, speed in a processor is only good if the rest of the system can keep up with it. Witness i845 (the SDRAM version) as a way of making a fast P4 perform even worse than before.
I am more interested in the upcoming GeForce 4 and R300 chips myself as a way to increase gaming performance - processor power is secondary, as long as it is sufficient. For rendering performance however, I am interested in fast processors, and it looks likely that SMT P4's will rock with Lightwave 7b on a quad CPU board (8 virtual processors!). Not that I could afford one of these anyway, so the point is moot.
Are at it too.
Here you can see they've got it to boot at 3.674GHz. The page is in Finnish (I assume), but there's some English text at the bottom too.
the picture of the results that ISNT IN JAPANESE.
You mean you don't speak Japanese like the rest of us?
You obviously have enough time to waste to post this crap.
I've got a plot showing SPECint2000 vs SPECfp2000 for eight different chips, including the Pentium 4 2.0 GHz.
From the looks of it, overclocking to 3.5 GHz might make the Pentium 4 almost equal in performance to the IBM Power4 running at 1.3 GHz.
"Provided by the management for your protection."
If I put my Athlon in the microwave, I can get numbers out of it that don't exist in nature.
This tagline is umop apisdn.
And on another note...
If I put a piece of copper on my motherboard, took a picture of it, and claimed it was an overclocked Athlon t-bird running at 6 gHz cooled by moon rocks, would it get posted?
Skiers and Riders -- http://www.snowjournal.com
That the thing still functions at 77 Kelvin.
Incredible that the motherboard doesn't break, at that low
temperature, the resin should undergo a phase transition and become very, very brittle.
(Some notes for all those D.I.Y.ers out there:
Liquid nitrogen is cheaper than milk.
Short-circuits can't occur, N2 doesn't conduct.)
Although why he used nitrogen and not dry ice, which is cheaper, easier to handle, and probably
better for these purposes, beats me.
I got a P4 1.4GHz at work a few weeks ago. I have a Athlon 800MHz at home. The RC5 client from distributed.net runs at 2.9 Mkeys/s on my home system. My machine at work only runs the client at a whopping 2.4 MKeys. So based on my result, a 3.5GHz P4 would be like a 1.8GHz Athlon.
Flaming/joking aside - anybody know why the RC5 client does so poorly on a P4 compared to a much slower Athlon?
homemade nitrogen cooling system overclocked a P4 from 2.2Ghz to an incredible 3.5ghz.
Quick tip on "overclocking" from Ghz (Gigahertz) to ghz (gravity hertz): Throw your machine out the window. To get to decent speeds, you'll want to be at least on the 4th floor or above.
(Alternate tip: to perceptively increase GHz, throw the Windows out of your machine)
Son, do we need to remind you exactly how little power one needs to factor primes?
I Can't Believe It's A Law Firm, LLP does not necessarily endorse the contents of this message.
I have little time to look at nothing more than a booklet of pretty pictures
/. in the first place?
If your time is so valuable, why do you read
There is no reasonable defense against an idiot with an agenda
:wq
But I didn't overclock the processor - I overclocked the ISA bus!
The standard speed for an ISA bus is about 8 MHz, but my motherboard had jumpers for running it at different speeds. I had that baby running at 20MHz, and was lucky enough to find an ISA video card and network card that could run at that speed!
It really helped bump up the FPS when playing doom. <g>
I'm a leaf on the wind. Watch how I soar.
I think these guys are getting dangerously close to cause irreparable harm to the universe as discussed here.
I only post comments when someone on the internet is wrong.
Pretty much all you have to do to set overclocking records in Finland is put a jacket on and open a window.
Why don't you guys ever have any articles on underclocking? Are underclockers really that bad? What are some of the advantages of underclocking?
- Underclock a 2.0GHz to 1.0Ghz, and you can throw away your CPU fan.
- Underclock to 500MHz and you can get rid of your case fan.
- Underclock to 4.77Mhz and you can run older versions of Fligh Simulator.
- Underclock to 4.0 MHz and you can pretend you are running a Z80.
- Underclock too 100KHz and you can actually watch your instructions exeecute.
What, you think the heart of gold's improbability drive actually bothers with recompiles? it turns missles into potted geraniums and sperm whales, for g-d's sake.
It'll pluck you out of space by 30th second no matter what.