Unsolicited packets aren't "nice" but they're not evil either. Port scan packets are so small that you'd have to be constantly scanned to really impact a bandwidth charge.
The actual kilobyte size of a spammed message isn't the problem, it's the time one is forced to spend getting rid of it. Collectively spam is wasteful of bandwidth but on an individual basis the bandwidth waste is far less significant than the time waste. If you get so much spam that you can actually associate a bandwidth dollar amount to them, well, that's a lot of spam! I would consider arranging with an ISP or uplink some kind of filtering at their end so it doesn't cost more bandwidth. Of course such service will cost something but if it's less than what the bandwidth costs, it's a good idea.
It depends on the school but if a port scan was originating from a ResNet connection, I think it's most likely that student doing it, not someone else who's cracked the student's machine.
It's silly to expect a department to provide a machine for any old project a student might do for a class or independent research project. Lab machines may not be configured to allow students to run the programs they want to run to do the scan unless port scanning was a task all students in a class were expected to use. Even if they have the equipment, the student may want to (or need to) run the scan during hours the lab is not open and may not have the ability to run it remotely. What if the student wants to use a software package for a research project and the department doesn't have a machine that it can be run on?
And
anybody who port scans without without either asking my permission or having a web page
up describing the purpose of their scanning is violating my privacy and will be treated like a
potential intruder.
How does a port scan violate your privacy? All the scanner sees is an active IP address with ports X Y and Z open. On the Internet, theren't nothing private about that information.
Sure port scanning is suspicious behaviour and the scanner may very well try to break into your computer. So what? You keep your machine secure by configuring it and installing software to make it so, not by crying wolf every time a "stranger's" packet comes knocking at your door.
How should a potential intruder be treated anyway? How would you treat other potential criminals?
I think a lot of people are way too uptight about port scanning. They get cable/DSL, install Black Ice or ZoneAlarm and because they see all this activity, they think they're under seige. And I see professional admins that don't act much better. Should ISP X really care if one of their customers scanned your subnet looking for ftp servers?
Chances are, if an admin knows their machines were scanned, they're probably not going to have a problem anyway. By notifying the admin on record for a domain the scan originated from, they might be doing that other admin a favor if the scan looks very suspicious. More suspicious than pings or searches for common ports (even if those ports are often exploitable) like ftp, SMTP, POP3, NFS, etc.
I think an admin should alert that other admin when scans are looking just for common "cracker" ports like 31337. The chances that scanner is up to no good is much higher.
Now if the scanner also tries to connect to an open port like ftp or telnet, that's already more serious but I still wouldn't send an email unless the attempted connections are coming from root and the hostname doesn't look like a commercial ISP (email admin when the remote client is from research.hi-techu.edu, not 28-128-dhcp.isp.com). Again, it doesn't improve my security, but it alerts the other admin that there's likely a security problem on their network.
Of course if any activity gets to the point that it truly interferes with service or a particular host is wasting your time because of all the log records, then an admin should alert the remote domain and expect action.
Overall I think a zero tolerance policy just wastes an admin's time and doesn't really improve anyone's security.
You can be sure that someone was compensated for using samples on songs like "Ice Ice Baby", Hammer's "Can't Touch This", and just about everything Puff Daddy has recorded. "Genius of Love" by the Tom Tom Club is a good example of a song used extensively by others.
The use of not just snippets but large sections of classic songs to be built on is pretty common in hip hop. When it's coming from a major label there is always a release that's been signed and most likely money exchanged.
The Beasties frequently use many little samples from many sources, samples which are too short to get a release for, even if it's readily recognizable to a fan. I could be wrong, they might get releases for even the little ones these days.
Strong Museum in Rochester, NY might be interested. It's an American cultural history museum so they would consider that model's cultural relevance and what they already have in the collection. They also care about an object's provenance so if you bought it new and have a story to tell about what it's meant to you, that should be relevant to any museum.
I know they have a Mac SE/30, it's currently a part of their TimeLab exhibit. It killed me when I found out they got it because not only is the SE/30 pretty sweet (well, less so now than 3 years ago when they got it) but this one has a card for attaching an external monitor! I wanted to say, "Hey! At work we've got a stack of Mac Classics. Give me the SE/30 and I'll give you a Classic with all the manuals." But of course museums don't work that way.
The future developments page says a SVGA binocular version is due in July 2000 for US$1200. Pretty expensive but I think that's a lot less than the high-res Sony Glasstron.
According to this Apple article, FireWire iMacs and Power Macs with AGP graphics cards can boot from FireWire drives (but may need their firmware updated first). I don't know if you can boot from a PCI FireWire card in a Mac.
Firewire cabling will definitely be cheaper but I haven't confirmed that today's Firewire drives (which use an IDE-Firewire bridge) delivers the consistent read-writes audio production requires.
The 5300 is notorious for its LCD troubles. The wiring which runs through the hinge is quite prone to breaking. Also, while I don't recall what it was for, the 5300 had a recall. You could send your PB to Apple, they did something to it and added an "A" to your serial number to indicate the work had been done.
More recently I understand there has been some quality control problems but I don't think they were severe, just a bit of a bad spell.
SCSI drives were overkill for a great many Mac buyers. UDMA/66 drives' price/performance ratio makes them a great value and helps Macs be price competitive. You can still add low-end SCSI for rock solid read/writes for your audio/video work or get mid to high-end SCSI for that plus speed.
BTW, iMovie is freely downloadable so modern Macs that didn't come with it (older iMacs, tower Macs) can use it too.
According to Adam C. Engst, a prominent Mac writer and journalist who at Mac Hack, some attendees felt ESR needed more "face time" with the Mac so they took up a collection and bought him an iBook.
NT uses streams to store Mac files without losing their resource forks. This saves them from the kinds of kludges netatalk uses or the MacOS itself uses to store Mac files on FAT disks.
You know the more I think about it, the more the CD-ROM idea seems like a bad idea. No matter how you manipulated the random data off the CD, having a copy of that CD would still be a huge benefit to a potential cracker. I think those CDs of random data are only good for testing the randomness of of sets of data.
That would be circumventing a copyright protection scheme to access an un-copyrighted work (government doc==no copyright). A reasonable person would say it's not a violation but then reasonable people wouldn't have made DMCA a law.
Well Hawk's goal was to abolish income taxes entirely which probably sound great to supply-side Reaganite economists. The problems with a complex layering of taxes are that it will tend to be unjust, at least in pockets, and the wealthy have the resources to exploit disparities in their favor.
Maybe you should look at hardware designed to deliver random numbers. I just found this page which has some listed (use Find to jump down to the Random Numbers section).
I think many of these are serial port attachments, obviously a lot slower than what/dev/urandom is producing so dumping straight to disk isn't an option, but I think what such hardware gets you is a reliable, high-quality source of random bits to seed a pseudo-random process. Looking at the man page for urandom on OpenBSD (I'm assuming the one in Linux is no different), it doesn't check the entropy pool for quality so without a high-quality source of randomness, in 20GB you're entropy pool's quality is pretty likely to run low, relying just on system activity.
/dev/urandom isn't *that* slow, producing 364KB/sec (unless you meant 20Gb, then it's only about 45KB/sec). I don't know how cryptographically sound it would be but you could consider using a CD-ROM of random data (see the link above) as a starting point. A CD-ROM drive should be able to deliver a lot more KB/sec for/dev/urandom or something else to process to get your 20GB.
And if they want it in the kitchen, why don't they make a screen that can be easily cleaned and which can hold up against some cleanser? And the keyboard should come equipped with something like a keyboard condom so you don't have to freak out if you splatter sauce on it. A dishwasher safe keyboard would be ideal.
Hmm, they could also reach an unintended market of consenting adults for whom the computer plays an important part in their social lives:)
You got it. I recently ripped into a guy who wrote an editorial about how Microsoft didn't have to worry about Linux (one of his points involved comparing revenue, how clueless is that!?). One of my main points was to look beyond the traditional desktop PC, toward "appliance" devices and others. Linux is a much better fit for these types of things than Windows.
Linux activists don't really want to talk about these types of machines because they don't really interest them. These machines are supposed to be easy, dumbed-down, even a bit boring. They're Linux-Lite. Intel or other companies probably won't open source anything they write for them and even if they do it'll be software of little interest to most Linux-using Slashdot readers.
That being said, I think this type of news is really good news. Imagine kids for whom the appliance is the first computer. When they want to move up to a "real" PC, they'll be more likely to choose the OS with which they are already familiar. The Linux brand will be embedded in their little brains like cigarettes and cars with breasts (er, nevermind). It's another step toward World Domination.
As a sidenote, as an economist I'd rather replace all income taxes with consumption taxes anyway [*replace*, not supplement. No VAT without income tax repeal!]
One positive aspect of consumption vs. income taxes is that they encourage people to save their money more. However they are also regressive, that is, poor people end up spending a greater percentage of their income on taxes than rich people. Leaving aside arguments why regressive taxes aren't so bad (I don't want to hear it right now), how might consumption taxes be designed so that they weren't regressive? There are already so-called luxury taxes on some things (yachts, furs, etc.) but I don't think those could really address the disparity, just add some top-heaviness to it.
Duh, the first time the Halo trailer was shown was at Macworld a year ago. If Halo doesn't come out for the Mac, I bet it doesn't come out for Windows either and only runs on Xbox. That would totally be Microsoft "knifing the baby." Bungie does engines first then works on gameplay and art. The Halo engine (Mac+Win) has basically been done for many months so there can be no technical reason not to release it for Mac or Windows.
Outlawed? When? By whom? And why, are they too dangerous?
Ah, I answered my own question. The first page was from a right wing crank so I kept looking for confirmation. I figure the VA is good enough. I should've known it's a CFC gas.
I worked in a building which had several floors equipped with a fixed-pipe system. It's an archive of books and other printed materials so water systems would sort of defeat the purpose. I thought of the danger first because I think if you were stuck in a room when the system went off, you could suffocate.
Yes, the movie does indeed suck. Not even enough skin to be called a Skinemax movie. I got the distinct impression that there was no script for a good deal of the movie, DeFoe and Walken were supposed to improvise. That would be fine if there was anything else going on.
It was directed by Abel Ferrara who makes pretty fucked up movies that only occasionally turn out well. _Bad Lieutenant_ was pretty good (and nasty). I've heard his version of _Invasion of the Body Snatchers_ has at least some good stuff in it.
I think the "option" for New Rose Hotel has been bouncing around for something like 15 years. I seem to recall hearing Oliver Stone having it for a while.
After the disappointment of Johnny Mnemonic I didn't think it could get worse but it did.
Re:It exist on the Mac
on
IP Over SCSI?
·
· Score: 1
Dayna made a couple, one called the Pocket SCSI/Link (I have one in front of me). At least one other Mac-ethernet company made one too. Asante?
Here's how it works (just the basics); you plug to box into your Mac's SCSI port (desktop or PowerBook) and into the ADB port with a pass-through cable (it draws its power from ADB). The other side has a standard RJ45 jack. You load its own ethernet driver (extension) and set your TCP/IP settings just as you would would with any ethernet adapter.
Intel acquired Dayna and provides a little information about those products. http://support.intel.com/support/dayna/scsitrbl. htm
Slashdot Mirror
Stop it, this talk of "knob rattling" is getting me all hot 'n bothered.
Unsolicited packets aren't "nice" but they're not evil either. Port scan packets are so small that you'd have to be constantly scanned to really impact a bandwidth charge.
The actual kilobyte size of a spammed message isn't the problem, it's the time one is forced to spend getting rid of it. Collectively spam is wasteful of bandwidth but on an individual basis the bandwidth waste is far less significant than the time waste. If you get so much spam that you can actually associate a bandwidth dollar amount to them, well, that's a lot of spam! I would consider arranging with an ISP or uplink some kind of filtering at their end so it doesn't cost more bandwidth. Of course such service will cost something but if it's less than what the bandwidth costs, it's a good idea.
It depends on the school but if a port scan was originating from a ResNet connection, I think it's most likely that student doing it, not someone else who's cracked the student's machine.
It's silly to expect a department to provide a machine for any old project a student might do for a class or independent research project. Lab machines may not be configured to allow students to run the programs they want to run to do the scan unless port scanning was a task all students in a class were expected to use. Even if they have the equipment, the student may want to (or need to) run the scan during hours the lab is not open and may not have the ability to run it remotely. What if the student wants to use a software package for a research project and the department doesn't have a machine that it can be run on?
Sure port scanning is suspicious behaviour and the scanner may very well try to break into your computer. So what? You keep your machine secure by configuring it and installing software to make it so, not by crying wolf every time a "stranger's" packet comes knocking at your door.
How should a potential intruder be treated anyway? How would you treat other potential criminals?
I think a lot of people are way too uptight about port scanning. They get cable/DSL, install Black Ice or ZoneAlarm and because they see all this activity, they think they're under seige. And I see professional admins that don't act much better. Should ISP X really care if one of their customers scanned your subnet looking for ftp servers?
Chances are, if an admin knows their machines were scanned, they're probably not going to have a problem anyway. By notifying the admin on record for a domain the scan originated from, they might be doing that other admin a favor if the scan looks very suspicious. More suspicious than pings or searches for common ports (even if those ports are often exploitable) like ftp, SMTP, POP3, NFS, etc.
I think an admin should alert that other admin when scans are looking just for common "cracker" ports like 31337. The chances that scanner is up to no good is much higher.
Now if the scanner also tries to connect to an open port like ftp or telnet, that's already more serious but I still wouldn't send an email unless the attempted connections are coming from root and the hostname doesn't look like a commercial ISP (email admin when the remote client is from research.hi-techu.edu, not 28-128-dhcp.isp.com). Again, it doesn't improve my security, but it alerts the other admin that there's likely a security problem on their network.
Of course if any activity gets to the point that it truly interferes with service or a particular host is wasting your time because of all the log records, then an admin should alert the remote domain and expect action.
Overall I think a zero tolerance policy just wastes an admin's time and doesn't really improve anyone's security.
The use of not just snippets but large sections of classic songs to be built on is pretty common in hip hop. When it's coming from a major label there is always a release that's been signed and most likely money exchanged.
The Beasties frequently use many little samples from many sources, samples which are too short to get a release for, even if it's readily recognizable to a fan. I could be wrong, they might get releases for even the little ones these days.
I know they have a Mac SE/30, it's currently a part of their TimeLab exhibit. It killed me when I found out they got it because not only is the SE/30 pretty sweet (well, less so now than 3 years ago when they got it) but this one has a card for attaching an external monitor! I wanted to say, "Hey! At work we've got a stack of Mac Classics. Give me the SE/30 and I'll give you a Classic with all the manuals." But of course museums don't work that way.
The future developments page says a SVGA binocular version is due in July 2000 for US$1200. Pretty expensive but I think that's a lot less than the high-res Sony Glasstron.
According to this Apple article, FireWire iMacs and Power Macs with AGP graphics cards can boot from FireWire drives (but may need their firmware updated first). I don't know if you can boot from a PCI FireWire card in a Mac.
http://www.stor age.ibm.com/hardsoft/diskdrdl/library/whitepap/lvd /lvd.htm
Firewire cabling will definitely be cheaper but I haven't confirmed that today's Firewire drives (which use an IDE-Firewire bridge) delivers the consistent read-writes audio production requires.
The 5300 is notorious for its LCD troubles. The wiring which runs through the hinge is quite prone to breaking. Also, while I don't recall what it was for, the 5300 had a recall. You could send your PB to Apple, they did something to it and added an "A" to your serial number to indicate the work had been done.
More recently I understand there has been some quality control problems but I don't think they were severe, just a bit of a bad spell.
SCSI drives were overkill for a great many Mac buyers. UDMA/66 drives' price/performance ratio makes them a great value and helps Macs be price competitive. You can still add low-end SCSI for rock solid read/writes for your audio/video work or get mid to high-end SCSI for that plus speed.
BTW, iMovie is freely downloadable so modern Macs that didn't come with it (older iMacs, tower Macs) can use it too.
http://db.tidbits.com/tbtalk/t lkmsg.lasso?MsgID=7417
It was referred to as an "open wallet" project :) p.s. I thought about submitting this as a story but figured it wouldn't make the cut.
NT uses streams to store Mac files without losing their resource forks. This saves them from the kinds of kludges netatalk uses or the MacOS itself uses to store Mac files on FAT disks.
You know the more I think about it, the more the CD-ROM idea seems like a bad idea. No matter how you manipulated the random data off the CD, having a copy of that CD would still be a huge benefit to a potential cracker. I think those CDs of random data are only good for testing the randomness of of sets of data.
That would be circumventing a copyright protection scheme to access an un-copyrighted work (government doc==no copyright). A reasonable person would say it's not a violation but then reasonable people wouldn't have made DMCA a law.
Well Hawk's goal was to abolish income taxes entirely which probably sound great to supply-side Reaganite economists. The problems with a complex layering of taxes are that it will tend to be unjust, at least in pockets, and the wealthy have the resources to exploit disparities in their favor.
I think many of these are serial port attachments, obviously a lot slower than what /dev/urandom is producing so dumping straight to disk isn't an option, but I think what such hardware gets you is a reliable, high-quality source of random bits to seed a pseudo-random process. Looking at the man page for urandom on OpenBSD (I'm assuming the one in Linux is no different), it doesn't check the entropy pool for quality so without a high-quality source of randomness, in 20GB you're entropy pool's quality is pretty likely to run low, relying just on system activity.
And if they want it in the kitchen, why don't they make a screen that can be easily cleaned and which can hold up against some cleanser? And the keyboard should come equipped with something like a keyboard condom so you don't have to freak out if you splatter sauce on it. A dishwasher safe keyboard would be ideal.
:)
Hmm, they could also reach an unintended market of consenting adults for whom the computer plays an important part in their social lives
You got it. I recently ripped into a guy who wrote an editorial about how Microsoft didn't have to worry about Linux (one of his points involved comparing revenue, how clueless is that!?). One of my main points was to look beyond the traditional desktop PC, toward "appliance" devices and others. Linux is a much better fit for these types of things than Windows.
Linux activists don't really want to talk about these types of machines because they don't really interest them. These machines are supposed to be easy, dumbed-down, even a bit boring. They're Linux-Lite. Intel or other companies probably won't open source anything they write for them and even if they do it'll be software of little interest to most Linux-using Slashdot readers.
That being said, I think this type of news is really good news. Imagine kids for whom the appliance is the first computer. When they want to move up to a "real" PC, they'll be more likely to choose the OS with which they are already familiar. The Linux brand will be embedded in their little brains like cigarettes and cars with breasts (er, nevermind). It's another step toward World Domination.
One positive aspect of consumption vs. income taxes is that they encourage people to save their money more. However they are also regressive, that is, poor people end up spending a greater percentage of their income on taxes than rich people. Leaving aside arguments why regressive taxes aren't so bad (I don't want to hear it right now), how might consumption taxes be designed so that they weren't regressive? There are already so-called luxury taxes on some things (yachts, furs, etc.) but I don't think those could really address the disparity, just add some top-heaviness to it.
Duh, the first time the Halo trailer was shown was at Macworld a year ago. If Halo doesn't come out for the Mac, I bet it doesn't come out for Windows either and only runs on Xbox. That would totally be Microsoft "knifing the baby." Bungie does engines first then works on gameplay and art. The Halo engine (Mac+Win) has basically been done for many months so there can be no technical reason not to release it for Mac or Windows.
Ah, I answered my own question. The first page was from a right wing crank so I kept looking for confirmation. I figure the VA is good enough. I should've known it's a CFC gas.
I worked in a building which had several floors equipped with a fixed-pipe system. It's an archive of books and other printed materials so water systems would sort of defeat the purpose. I thought of the danger first because I think if you were stuck in a room when the system went off, you could suffocate.
Yes, the movie does indeed suck. Not even enough skin to be called a Skinemax movie. I got the distinct impression that there was no script for a good deal of the movie, DeFoe and Walken were supposed to improvise. That would be fine if there was anything else going on.
It was directed by Abel Ferrara who makes pretty fucked up movies that only occasionally turn out well. _Bad Lieutenant_ was pretty good (and nasty). I've heard his version of _Invasion of the Body Snatchers_ has at least some good stuff in it.
I think the "option" for New Rose Hotel has been bouncing around for something like 15 years. I seem to recall hearing Oliver Stone having it for a while.
After the disappointment of Johnny Mnemonic I didn't think it could get worse but it did.
Dayna made a couple, one called the Pocket SCSI/Link (I have one in front of me). At least one other Mac-ethernet company made one too. Asante?
. htm
Here's how it works (just the basics); you plug to box into your Mac's SCSI port (desktop or PowerBook) and into the ADB port with a pass-through cable (it draws its power from ADB). The other side has a standard RJ45 jack. You load its own ethernet driver (extension) and set your TCP/IP settings just as you would would with any ethernet adapter.
Intel acquired Dayna and provides a little information about those products.
http://support.intel.com/support/dayna/scsitrbl