It's not even the first commercial one. There has been several in commercial operation for over a year in Spain. There have been another 5 opened this year and there are another 25+ in construction. All are generally 50MW capacity too, 10 times the capacity of this one in Italy. Lack of research by the people who regurgitated the press release.... sorry, I mean "wrote the article".
Not 100% sure if/how self-signed certs might differ from this, but we made our own certification authority for internal use using these instructions then it's possible convert the root certificate from X509 to DER format like this:
openssl x509 -in ROOTCERT.pem -outtype DER -out ROOTCERT.der
... and now it can be opened and installed on your Symbian phone.
It's necessary to specify the trust level of the certificate after install to say for purposes you want to trust the certificate (to authenticate secure web sites, email, application installs, etc.) The method of doing this will vary by phone but IIRC my S60v3 phone prompted me at the moment of install, whereas my 9300 Communicator required setting manually in the security settings in Control Panel.
If you want to serve DER files from a web server, they should be delivered with mime type application/x-x509-ca-cert.
I've been using this phone since February and it's the best gadget I've bought in a long time. Not to mention absolutely essential for me, a sysadmin team (of one person) providing 24x7 support for our Linux servers.
Previously I had a Palm T3 and a bluetooth phone: too bulky to carry everywhere, no keyboard, too small screen and no multitasking. This last point's the killer when you're logged into an SSH session and have just SSH'ed to somewhere else and need to refer to a web page or whatever for a moment but switching away from ssh would close the connections.
What's so good about the 9300?
Small
Good keyboard
PuTTY SSH2 client with an ANSI color 80x24 terminal (or even 106x26 or something when you maximise it)
Basically it's the dog's danglies for mobile system administration. And quite a bit smaller than the Nokia 9500 - who needs Wi-Fi and a camera anyway.
It has a few small problems: no vibrate, a bit slow, can't copy and paste in PuTTY, not so many third-party apps as Palm or Series 60..... but that's about it.
What Symbian are you talking about? It doesn't sound like the same one I use (a Nokia 9300)
Firstly there wasn't any Symbian phones in 1999. AFAIK the first one was the Nokia 7650 released in 2000/2001. The most advanced smartphones and communicators in Nokia's range all run Symbian.
For example the Nokia 6680 Bluetooth, 262k colour screen, twin video camera, video calling over 3G (UMTS) networks, loads of RAM, removable storage on MMCmicro (up to 1GB?), 32-bit multi-tasking OS, full web browser, bluetooth keyboard accessory available, etc. There's no Windows CE phone that does all that.
There are 30 channels of "Freeview" TV in the UK which are broadcast using the DVB-T standard. This means that an MPEG2 stream is sent digitally over the airwaves and all you need to do is save it to disk.
Let's make some calculations assuming that they're going to record all the DVB-T ("Freeview") content in the UK. I watch DVB-T in Spain using a MythTV box but the numbers should be roughly the same as for the UK.
45 mins recording of one channel = 1401390703 bytes
=> 1 hour = 1868520937 bytes
=> x 24 hours/day x 30.5 days/month = 1.37 TB per month per channel
Now there are about 30 freeview channels so we would need 41 TB of storage.... that's 82 500GB hard disks in RAID0! Which would occupy something like half a rack and use about 1kW of power...
Even to record the 5 main channels would be nearly 7 TB - still a lot of noisy spinning hard disks to stick under the TV. This doesn't sound like a feasible idea with the size of today's hard disks.
It would perhaps remove many people's need to have a Hotmail address purely to be able to use MSN Messenger. Less people tied to Hotmail would probably mean more customers for GMail.
I for one would much prefer to use my own Jabber server to be able to chat directly with someone@gmail.com. Yay for open protocols and inter-server links. At the moment I only use it for work stuff.
Eventually, you'll walk into your house on a 48 degree (farenheit) winter day, and your home will be a sweltering 95 degrees (farenheit) inside, courtesy of the W64.HVACdemon virus, written by some pointy-headed 15 year old in Holland.
Looking at the specs in the article and given that Intel's latest CPUs are consuming about 100W, your average Longhorn-capable PC must suck up around half a kilowatt and spit it out as waste heat. I don't think the HVACdemon virus will even be necessary in a 2-PC household.
There are numerous "fan-sites" about mini-ITX boards, especially those from VIA. Maybe some of the folks on there have already managed to obtain some docs.
For example: forums.sudhian.com
have sections about linux and mini-itx boards.
Or how about the kernel mailing lists? I think that Alan Cox himself mentioned in his diary (before he started writing it in Welsh, that is) that he's a fan of these machines and had done some driver development.
I work for a Spanish ISP and have read the various articles about this on web sites in Spain.
As far as I'm aware the only company to block access to Batasuna is Telefónica, plus companies of the same group like Terra and Telefónica-Data. We get our upstream bandwidth from Telefónica Data so we've been affected: access to the IP of the Batasuna site is blocked on all their routes out of Spain.
Given that Telefónica is the ex-public telco in Spain, only privatised fairly recently, this does smell a bit like the government still has rather a lot of influence there.
Connections through other companies all seem to work as normal. Try doing a traceroute to www.batasuna.org from An Spanish ISP that uses UUNet (in the Tools section)
The judge Baltasar Garzón who's effecting the illegalization of the Batasuna party seems to be getting nowhere over their web site and is trying all sorts of things. He's written to ICANN asking them to block the domain name batasuna.org - they said it's nothing to do with them.
Although I to think that ETA are a despicable terrorist organisation and action should be taken against Batasuna for supporting them, censorship is never the answer.
Wouldn't it be cool if Mozilla detected the extensions and spit out a brief message that said something to the effect of "This website is using outdated layout formats - Mozilla will try to compensate, but contact the webmaster of the site if you are still having problems with access"
How about spitting that error message out in the User-Agent string so it gets logged on the offending web server?
> What I'd *really* like to see is a fanless power supply
... so just take the power supply apart and remove the fan. If your CPU also had a fan, remove it and replace with a bigger heatsink. I did this to an old 486 to use as a silent diskless X terminal.
If you are using the power supply at (for example) a quarter of its rated capacity, I don't suppose it would ever get hot enough without a fan to cause a problem.
What would be *really* interesting is higher availability and lower prices for small, low-power PC components that would be suitable for devices like this, and also for making small quiet desktop machines. Components like this seem to be very difficult to find at a low price.
Konqueror does 3 out of 4 of these features. You can choose to accept or reject cookies for none, some or all domains. Same goes for JavaScript and java too.
There's no built in filter for images though. If you wanted that you would have to use an external proxy like Muffin.
Don't suppose this helps much on Windows or MacOS however, unless they've got KDE running on those already.
As for DNS itself - there is a belief that there can only be a single DNS hierarchy. That is not the case. I have not used the ICANN root system for several years and am using several additional TLDs, such as.web. See my note on this at http://www.cavebear.com/cavebear/growl/issue_2.htm #multiple_roots
... and 98% of the world won't be able to see whatever wonderful or otherwise sites/services that are hosted using these non-standard domains
The fact there is a single DNS hierarchy is most important, I think. It means that every site is accessible from everywhere and that all resolving can be configured the same throughout the whole network.
Your article suggests a parallel with telephone directories but I reckon the domain name system is more akin to the phone number system - the lack of a monolithic international dialling structure would cause great organisational problems.
You also state that DNS is a hierarchially (sp) organized lookup system - which surely means that there is one root domain.
Though there are flaws in the domain name system (and I anticipate the whole system might be superceded sometime in the next decade or two) it would be damaging to switch to something as complicated as the multiple-root channel-like system you propose.
From personal experience, I have little confidence in their PGP system. It typically takes several days to get a response to adding or listing a key. When speaking on the phone to Network Solutions recently in disgust about the total lack of security of MAIL-FROM I discussed PGP but was advised not to use it because "the system doesn't work very well yet" (that's a fairly accurate quote) but hey! at least "[their] programmers are working on it" - unbelievable!
CRYPT-PW:
This seems at best a shoddy system but maybe the best of the bunch until PGP is reliable. At least I thought so until in the process of modifying the contact handle for a host registered to someone else underneath on of my company's domains the plain text password for the main handle we use was emailed to someone outside our organisation.
So, in summary, it seems that ALL of their guardian authorisation scheme suck ass big-time.
I work for a private domain name registry with email automaton functions similar to network solutions and this is the only way we even considered to implement the default level of email security for domain modifications.
I was utterly shocked to find out that Network Solutions MAIL-FROM security really only relied on the From: address in the email.
Slashdot Mirror
It's not even the first commercial one. There has been several in commercial operation for over a year in Spain. There have been another 5 opened this year and there are another 25+ in construction. All are generally 50MW capacity too, 10 times the capacity of this one in Italy. Lack of research by the people who regurgitated the press release .... sorry, I mean "wrote the article".
This looks perfect for you: http://www.silentpcreview.com/Intel_D945GSEJT_with_Morex_T1610
Around 12W idle, 16W peak - small, cheap, efficient and simple.
Not 100% sure if/how self-signed certs might differ from this, but we made our own certification authority for internal use using these instructions then it's possible convert the root certificate from X509 to DER format like this:
openssl x509 -in ROOTCERT.pem -outtype DER -out ROOTCERT.der
... and now it can be opened and installed on your Symbian phone.
It's necessary to specify the trust level of the certificate after install to say for purposes you want to trust the certificate (to authenticate secure web sites, email, application installs, etc.) The method of doing this will vary by phone but IIRC my S60v3 phone prompted me at the moment of install, whereas my 9300 Communicator required setting manually in the security settings in Control Panel.
If you want to serve DER files from a web server, they should be delivered with mime type application/x-x509-ca-cert.
Here's a nice one: the Tag Heuer Microtimer
I've been using this phone since February and it's the best gadget I've bought in a long time. Not to mention absolutely essential for me, a sysadmin team (of one person) providing 24x7 support for our Linux servers.
Previously I had a Palm T3 and a bluetooth phone: too bulky to carry everywhere, no keyboard, too small screen and no multitasking. This last point's the killer when you're logged into an SSH session and have just SSH'ed to somewhere else and need to refer to a web page or whatever for a moment but switching away from ssh would close the connections.
What's so good about the 9300?
Basically it's the dog's danglies for mobile system administration. And quite a bit smaller than the Nokia 9500 - who needs Wi-Fi and a camera anyway.
It has a few small problems: no vibrate, a bit slow, can't copy and paste in PuTTY, not so many third-party apps as Palm or Series 60 ..... but that's about it.
What Symbian are you talking about? It doesn't sound like the same one I use (a Nokia 9300)
Firstly there wasn't any Symbian phones in 1999. AFAIK the first one was the Nokia 7650 released in 2000/2001. The most advanced smartphones and communicators in Nokia's range all run Symbian.
For example the Nokia 6680 Bluetooth, 262k colour screen, twin video camera, video calling over 3G (UMTS) networks, loads of RAM, removable storage on MMCmicro (up to 1GB?), 32-bit multi-tasking OS, full web browser, bluetooth keyboard accessory available, etc. There's no Windows CE phone that does all that.
There are 30 channels of "Freeview" TV in the UK which are broadcast using the DVB-T standard. This means that an MPEG2 stream is sent digitally over the airwaves and all you need to do is save it to disk.
Let's make some calculations assuming that they're going to record all the DVB-T ("Freeview") content in the UK. I watch DVB-T in Spain using a MythTV box but the numbers should be roughly the same as for the UK.
45 mins recording of one channel = 1401390703 bytes
=> 1 hour = 1868520937 bytes
=> x 24 hours/day x 30.5 days/month = 1.37 TB per month per channel
Now there are about 30 freeview channels so we would need 41 TB of storage .... that's 82 500GB hard disks in RAID0! Which would occupy something like half a rack and use about 1kW of power ...
Even to record the 5 main channels would be nearly 7 TB - still a lot of noisy spinning hard disks to stick under the TV. This doesn't sound like a feasible idea with the size of today's hard disks.
It would perhaps remove many people's need to have a Hotmail address purely to be able to use MSN Messenger. Less people tied to Hotmail would probably mean more customers for GMail.
I for one would much prefer to use my own Jabber server to be able to chat directly with someone@gmail.com. Yay for open protocols and inter-server links. At the moment I only use it for work stuff.
High up executive?
Erm ... he's the richest man in Italy and owns most of their media conglomerates.
More information about Silvio Berlusconi
Exactly.
This perhaps could also be expressed by the old adage (possibly from Bruce Schneier?) that security is neither a product nor a state but a process.
Looking at the specs in the article and given that Intel's latest CPUs are consuming about 100W, your average Longhorn-capable PC must suck up around half a kilowatt and spit it out as waste heat. I don't think the HVACdemon virus will even be necessary in a 2-PC household.
There are numerous "fan-sites" about mini-ITX boards, especially those from VIA. Maybe some of the folks on there have already managed to obtain some docs.
For example: forums.sudhian.com have sections about linux and mini-itx boards.
Or how about the kernel mailing lists? I think that Alan Cox himself mentioned in his diary (before he started writing it in Welsh, that is) that he's a fan of these machines and had done some driver development.
I remembered an interesting article in Wired about a kind of "energy internet" very similar to what you describe.
I work for a Spanish ISP and have read the various articles about this on web sites in Spain.
As far as I'm aware the only company to block access to Batasuna is Telefónica, plus companies of the same group like Terra and Telefónica-Data. We get our upstream bandwidth from Telefónica Data so we've been affected: access to the IP of the Batasuna site is blocked on all their routes out of Spain.
Given that Telefónica is the ex-public telco in Spain, only privatised fairly recently, this does smell a bit like the government still has rather a lot of influence there.
Connections through other companies all seem to work as normal. Try doing a traceroute to www.batasuna.org from An Spanish ISP that uses UUNet (in the Tools section)
The judge Baltasar Garzón who's effecting the illegalization of the Batasuna party seems to be getting nowhere over their web site and is trying all sorts of things. He's written to ICANN asking them to block the domain name batasuna.org - they said it's nothing to do with them.
Although I to think that ETA are a despicable terrorist organisation and action should be taken against Batasuna for supporting them, censorship is never the answer.
How about spitting that error message out in the User-Agent string so it gets logged on the offending web server?
> What I'd *really* like to see is a fanless power supply
... so just take the power supply apart and remove the fan. If your CPU also had a fan, remove it and replace with a bigger heatsink. I did this to an old 486 to use as a silent diskless X terminal.
If you are using the power supply at (for example) a quarter of its rated capacity, I don't suppose it would ever get hot enough without a fan to cause a problem.
What would be *really* interesting is higher availability and lower prices for small, low-power PC components that would be suitable for devices like this, and also for making small quiet desktop machines. Components like this seem to be very difficult to find at a low price.
Konqueror does 3 out of 4 of these features. You can choose to accept or reject cookies for none, some or all domains. Same goes for JavaScript and java too.
There's no built in filter for images though. If you wanted that you would have to use an external proxy like Muffin.
Don't suppose this helps much on Windows or MacOS however, unless they've got KDE running on those already.
From the article:
"double or triple the effective cruising range of a fuel cell-powered vehicle to 500 miles."
500 miles doesn't sound very impressive when it's no problem to get at least 600 miles range cruising at 80mph in a VW Golf GTI diesel.
The fact there is a single DNS hierarchy is most important, I think. It means that every site is accessible from everywhere and that all resolving can be configured the same throughout the whole network.
Your article suggests a parallel with telephone directories but I reckon the domain name system is more akin to the phone number system - the lack of a monolithic international dialling structure would cause great organisational problems.
You also state that DNS is a hierarchially (sp) organized lookup system - which surely means that there is one root domain.
Though there are flaws in the domain name system (and I anticipate the whole system might be superceded sometime in the next decade or two) it would be damaging to switch to something as complicated as the multiple-root channel-like system you propose.
PGP:
From personal experience, I have little confidence in their PGP system. It typically takes several days to get a response to adding or listing a key. When speaking on the phone to Network Solutions recently in disgust about the total lack of security of MAIL-FROM I discussed PGP but was advised not to use it because "the system doesn't work very well yet" (that's a fairly accurate quote) but hey! at least "[their] programmers are working on it" - unbelievable!
CRYPT-PW:
This seems at best a shoddy system but maybe the best of the bunch until PGP is reliable. At least I thought so until in the process of modifying the contact handle for a host registered to someone else underneath on of my company's domains the plain text password for the main handle we use was emailed to someone outside our organisation.
So, in summary, it seems that ALL of their guardian authorisation scheme suck ass big-time.
I was utterly shocked to find out that Network Solutions MAIL-FROM security really only relied on the From: address in the email.