It is my believe that most vulnerabilities are 'design issues' and not just "security holes" that can be patched over.
I have been studying OS design now for almost 20 years, I think most of these designs where fine for just trying hack something to work, but now with everything interconnected, they were just never built for that.
I have an OS design I have been working on for the past 10 years Amorphous OS that is intended to solve almost every issue I've seen talked about.
Most come from just having a common File System view for the whole OS. This become a place where malicious code can live and hide and exploit.
But memory could be treated much better and more efficiently. The Stack Also needs to be isolated better and separate data storage, instruction pointers, and code better.
None of this is new, it was talked about in the 60's and 70's then it seems everyone forgot about it. So today it's coming back to bite us.
Way cool. I actually wanted to build and run a cluster with a custom implentation. Patent and commercialize the output. I had a few specific things I wanted to go after.
Well with enough input knowledge of molecules. You could also use Neural networks or GA to evolve better models, but I did realize the problem you are referring to.
Again it's not going to be 100%, maybe not even 50% but even 10% would still reduce the search space immensely. The downside is you could easily overlook optimal solutions that don't model correctly.
It's not quite the same as back then they were EPROM's and not EEPROM's or flash. So you'd have to actually pull the chips out, erase them with a UV Lamp and then programming then in a Burner.
It's a long story but after I left high school in New Jersey I had entrusted a friend Mark to ship my possession to California where I had moved to. Instead it stole it all.
After moving I started a large collection of BIOS for XT, AT 80286 motherboards. I had written code that was floating around the BBS's that would harvest the BIOS and dump out ROM images that you could burn on to EPROM and install in to another Motherboard.
So I had made several sets of the latest AMI bios for some friends back home. Well Mark asked a mutual friend to get a copy of the BIOS from me, but not tell me who it was really for. Well I found out and prepared a special BIOS just for him.
Mark was a big warez guy. He was sharing floppies with everyone.
So I took a copy of the Friday the 13th virus. Also know as Jerusalem B that would slow your PC down to a crawl and every time you ran a program it's file size would grow. It was very easy to detect and clean and mostly harmless. I removed the malicious payload , but made sure it still propagated normally.
The virus was only around 2000 bytes, and ran as a TSR. I found some empty space in the ROM image, and xor encrypted it and placed it in and added hooks so when you format a floppy (Int 13) it would install the virus TSR.
From there it would then attach itself to any exe file that get's ran.
So I burned the EPROM's and sent them over. I was hearing story's from friends how he was loosing his mind. He'd clean all his disks. Then go to make someone a copy and it would be infected. No one would trade disk with him.
He never did figure out how he kept getting infected.
I wrote up a plan for something like this about 2 1/2 years ago and posted on my blog about 9 months ago when it became obvious to me that as cool of an idea as it was, it wasn't something I wanted to work on.
The basic idea is to take a computational chemistry package and run it through a genetic algorithm to search for suitable candidates that solve certain problems. Better solar cells, dielectrics for supercaps, or materials with specific properties.
The physics quickly went over my head and I was never able to get funding or grants for this without a PhD.
Xvworks and microware, yuck. I am a video specialist and love doing real time control stuff and embedded systems. I have yet to understand what they are talking about with RTOS. I can do microsecond accurate timing now in vanilla BSD or linux. Yes 1/1,000,000 second timing. Verifiable on an oscilloscope from user space or in drivers.
Overall I think the opensource is the important part of stability. The more eyeballs looking at code the more solid it will be. This is why new code should be treated with some suspicion till it has been run for so long in so many different condition. Been reviewed and scrutinized over and over. This is what gives stability.
By definition a stable system has to be running older code that's been fixed and is well understood rather then "the latest" updated code.
If your constantly churning and updating you can not be stable.
Red Had run's behind the main Linux distribution to get added stability.
But FreeBSD which seems old and stodgy is like that because of the emphasis on stability over features and improvement. It's also simpler under the hood which is also important for Stability.
But it all depends on what your trying to do. GUI vs. Server. For Server I'd go with BSD. For GUI I'd go with Windows, Apple OS-X (BSD variant), maybe Android (haven't developed on it yet) X Windows just sucks. For Embedded , I'd go with what ever the eval boards ship with. Usually Linux these days. (Certainly not PSOS or QNIX)
At this point I can compile the same code on all of these using GCC and run them equally well. They are all Posix compliant. SDL run's on all of them. Java also run on them. So does Flash, LLVM, TCL, PERL, RUBY, Python or what ever langue du jour.
Let's end the religious wars on OS's, it's about getting your work done. The OS is just a platform for the language your want your code to run on.
Hello constant updates is not a sign of Stability! The problem is there isn't much need for commercial support for something that doesn't break all the time.
I have used RedHat in a server farm of over 1000 systems and I have used FreeBSD in servers systems that were a little smaller.
The BSD generally run's behind in code version on the application side, but these are more stable and not constantly pushing the bleeding edge. It's used inside Router and Big server farms and so tends to be better on the network side.
With Red hat we had so many problem with the BNX/BNX2 10 GB ethernet drivers, it was a nightmare scenario with over $500,000K in blade servers constantly crashing, there were the HP vendor drivers, and the RH drivers and the Linux main line drivers, which we ended up building and using till RH caught up.
FreeBSD is hardly dead. Some of the fastest network drivers exist in FreeBSD. At this point the BSD's are almost a flavor of Linux. There is a Linux compatibility layer also.
I have written drivers for Both BSD and Linux. BSD drivers are generally much clean and more straight forward and it's because of them that many HW vendors bring up a BSD driver first even if they choose never to share it.
They use a Dark Green to radiate heat from Power transformers. This is because of it's high emissivity. The Visible color is irrelivant. My krylon example is to show that the wrong "White" Paint could be actually worse then no paint at all.
For most materials absorption and emissivity of IR is usually the same for any given frequency.
Paint: Krylon, flat white #1502 @ 3m wavelenght = 0.992 emissivity So weirdly enough this one specific "Visibly" white paint has one of the highest emissivities, and would absorb and reflect a lot of heat almost the same as the black paints!!!
True,
Skype was initially about the tech, but also a customer base. With WebRTC out there, the value of the tech drops fast leaving just the customer base which most likely hit staturation, and was starting to decline.
Yup, your heard me, Global IP Solutions that was aquired last year by google was maker of the Engine that Skype was using.
Looks like they parted ways back in 2007 with Skype 3.2.
Looks like Skype really shot them selves in the foot on this one, Google just opensourced it with a BSD style license and soon Skype will be history. Which may explain why they sold off to Microsoft reciently.
So what happens when someone streams CNN on justin.tv or ustream? Many people are starting to cancel their cable service as the bills have started to become excessive and the content has gotten crappier. (or maybe it's just seems like it as I get older)
I really want to start a Cable TV service over the Internet , as in IPTV. http://www.videotechnology.com/tv/ Try the space bar to change channels.
All the technology is in place for this already, and I know how to get legitimate content licenses.
So yesterday I spoke on the phone briefly with Steve Wozniak who expressed a slight interest. I really need to get sponsors and a few people with some pull to make these things happen.
I also am planning on starting an Open source project for an Alternative to Google TV (Android) called Amorphous OS, that's based on Linux. http://www.dnull.com/~sokol/amorp/ I gave a talk on this 10 years ago, since then we have done some experients but I could really use some help on security and Object models.
We need the Open Source community to step up and own this technology otherwise we'll all be left out again like the Phone Companies and Microsoft did to us in the past.
I think an open source alternative to Google TV / Apple TV could easily find it's way in to Televisions if the effort is put in to such a project.
Few people realize that most of these BlueRay players, and Set top boxes such as TiVo are based on Linux already. What remains is the next layer up. X windows is unacceptable for some things, and things like KDE and other windows managers just aren't consumer friendly.
Android's model of Apps is really out dated. Even Java Applets are more advanced in that they don't get "Installed" and "upgraded" or "updated" I want to take this to another level for the way applications are build, offered, managed and secured.
I believe that Amorphous OS can be the way to do this, with Micropayment it could even make the Open Source Model profitable and still remain open.
Anyone with any real interest can reach me at videotechnology.com
I have a business plan for delivering full cable TV over the Internet right now that I am still finishing up and have some people interested in funding.
This sounds a lot like my SETINE idea, "Search for Extra-Terrestrial Intelligence Near Earth" http://www.setine.com/
For this I was thinking of having 2 camera, wide angle high res still , and a Servo controlled 1080i HD camera with 35x Zoom like they use in high end CCTV systems.
The idea is the one camera would spot objects in the sky that don't follow expected patterns. The second on would zoom in and track it, and record it. These could then be collected on the Internet and use crowd sourcing to ID objects and improve image processing algorithms for object identification.
> most technically knowledgeable film editors and sound designers Clearly optics isn't one of his strengths.
Anything beyond around 20 feet in a dark theater is infinity focus for the human eye and more like 6 feet in daylight.
What this means is your eye focuses the same for any objects 20 feet away or further, Such as when sitting in a theater.
So as long as the 3D isn't projecting images out of the screen at you, your eyes aren't going to notice anything unusual in focusing.
So it's all up to how the 3D content was shot.
Technical details:
What we want to know is the hyper focal distance of the eye,. http://en.wikipedia.org/wiki/Hyperfocal_distance The closest point of focus at a given aperture, at which infinity falls within the Depth of Field
I have thought about P2P based VPN like networks, but there are political/legal issues with that.
Without a "legal entity" in charge they can just block it. Also it's not possible to grow it as a real network.
By copying the private corporate network model your afforded some legal protections and if they where to block it, they would also have to block every major corporations VPN's that they use for there employees to telecommute.
Another nice benefit is that it would be considered a private network and therefor free of public scrutiny to some extent. So pirated content could be argued to be view completely differently then on the open internet.
In addition as a real physical network, other networks could join, and people could become directly physically connected. T1's etc.
There are some real advantages.
I am thinking that replacing the protocol though would be the strongest way to differential it. Not sure how viable that is though.
But it could be free of the current DNS IETF system.
Most of you don't know the history, and are therefor doomed to repeat it.
For much of my life I have spent fighting the Ma Bell / AT&T monopoly. From the monopolistic control over Unix to all long distance services, to hicap pipes. It wasn't until there breakup in the 80's that direct physical connection of modems was even allowed on to the phone networks.
Well we are down to the last few companies controlling the last mile, and many of the backbones. Legislation will just further this till we are all locked down to a few Internet services and the rest will be squeezed out or severely hampered.
IP TV and Cable TV over IP will be the largest changes coming. And companies like Cox and AT&T find themselves in a conflict of Interest. Providing last mile Internet while at the same time watching it eat away at their cash cow, cable TV.
I think we can provide a VPN like tunneling service across the public Internet over to a private network. Most corporations already do this for their employees. Getting that last mile has always been the hard part.
We could then make this private network host content only available on that network, but would anyone want too?
I mean if you are going to invest in a web server you'd want it to be accessible to as many users as possible.
Still I have some ideas I may be willing to discuss with an NDA.
Slashdot Mirror
It is my believe that most vulnerabilities are 'design issues' and not just "security holes" that can be patched over.
I have been studying OS design now for almost 20 years, I think most of these designs where fine for just trying hack something to work, but now with everything interconnected, they were just never built for that.
I have an OS design I have been working on for the past 10 years Amorphous OS that is intended to solve almost every issue I've seen talked about.
Most come from just having a common File System view for the whole OS. This become a place where malicious code can live and hide and exploit.
But memory could be treated much better and more efficiently. The Stack Also needs to be isolated better and separate data storage, instruction pointers, and code better.
None of this is new, it was talked about in the 60's and 70's then it seems everyone forgot about it. So today it's coming back to bite us.
Way cool. I actually wanted to build and run a cluster with a custom implentation.
Patent and commercialize the output.
I had a few specific things I wanted to go after.
Well with enough input knowledge of molecules. You could also use Neural networks or GA to evolve better models, but I did realize the problem you are referring to.
Again it's not going to be 100%, maybe not even 50% but even 10% would still reduce the search space immensely. The downside is you could easily overlook optimal solutions that don't model correctly.
It's not quite the same as back then they were EPROM's and not EEPROM's or flash. So you'd have to actually pull the chips out, erase them with a UV Lamp and then programming then in a Burner.
It's a long story but after I left high school in New Jersey I had entrusted a friend Mark to ship my possession to California where I had moved to. Instead it stole it all.
After moving I started a large collection of BIOS for XT, AT 80286 motherboards. I had written code that was floating around the BBS's that would harvest the BIOS and dump out ROM images that you could burn on to EPROM and install in to another Motherboard.
So I had made several sets of the latest AMI bios for some friends back home. Well Mark asked a mutual friend to get a copy of the BIOS from me, but not tell me who it was really for.
Well I found out and prepared a special BIOS just for him.
Mark was a big warez guy. He was sharing floppies with everyone.
So I took a copy of the Friday the 13th virus. Also know as Jerusalem B that would slow your PC down to a crawl and every time you ran a program it's file size would grow. It was very easy to detect and clean and mostly harmless. I removed the malicious payload , but made sure it still propagated normally.
The virus was only around 2000 bytes, and ran as a TSR.
I found some empty space in the ROM image, and xor encrypted it and placed it in and added hooks so when you format a floppy (Int 13) it would install the virus TSR.
From there it would then attach itself to any exe file that get's ran.
So I burned the EPROM's and sent them over. I was hearing story's from friends how he was loosing his mind. He'd clean all his disks. Then go to make someone a copy and it would be infected. No one would trade disk with him.
He never did figure out how he kept getting infected.
Revenge is sweet.
I wrote up a plan for something like this about 2 1/2 years ago and posted on my blog about 9 months ago when it became obvious to me that as cool of an idea as it was, it wasn't something I wanted to work on.
The basic idea is to take a computational chemistry package and run it through a genetic algorithm to search for suitable candidates that solve certain problems.
Better solar cells, dielectrics for supercaps, or materials with specific properties.
The physics quickly went over my head and I was never able to get funding or grants for this without a PhD.
I am glad to see this is starting to happen.
Project - Mc Lab / Magic Chemist, in a Box.
http://johnsokol.blogspot.com/2010/12/project-mc-lab-magic-chemist-in-box.html
http://thegreentank.blogspot.com/2010/12/project-mc-lab-magic-chemist-in-box.html
When I was in ShenZhen last, a few Chinese had iPhone clones that looked a lot like the real deal.
Xvworks and microware, yuck.
I am a video specialist and love doing real time control stuff and embedded systems. I have yet to understand what they are talking about with RTOS. I can do microsecond accurate timing now in vanilla BSD or linux. Yes 1/1,000,000 second timing. Verifiable on an oscilloscope from user space or in drivers.
Overall I think the opensource is the important part of stability. The more eyeballs looking at code the more solid it will be.
This is why new code should be treated with some suspicion till it has been run for so long in so many different condition. Been reviewed and scrutinized over and over. This is what gives stability.
I am http://www.linkedin.com/in/johnsokol
http://www.videotechnology.com/
http://churchofbsd.blogspot.com/
By definition a stable system has to be running older code that's been fixed and is well understood rather then "the latest" updated code.
If your constantly churning and updating you can not be stable.
Red Had run's behind the main Linux distribution to get added stability.
But FreeBSD which seems old and stodgy is like that because of the emphasis on stability over features and improvement.
It's also simpler under the hood which is also important for Stability.
But it all depends on what your trying to do. GUI vs. Server.
For Server I'd go with BSD.
For GUI I'd go with Windows, Apple OS-X (BSD variant), maybe Android (haven't developed on it yet) X Windows just sucks.
For Embedded , I'd go with what ever the eval boards ship with. Usually Linux these days. (Certainly not PSOS or QNIX)
At this point I can compile the same code on all of these using GCC and run them equally well. They are all Posix compliant. SDL run's on all of them.
Java also run on them. So does Flash, LLVM, TCL, PERL, RUBY, Python or what ever langue du jour.
Let's end the religious wars on OS's, it's about getting your work done. The OS is just a platform for the language your want your code to run on.
Hello constant updates is not a sign of Stability!
The problem is there isn't much need for commercial support for something that doesn't break all the time.
I have used RedHat in a server farm of over 1000 systems and I have used FreeBSD in servers systems that were a little smaller.
The BSD generally run's behind in code version on the application side, but these are more stable and not constantly pushing the bleeding edge. It's used inside Router and Big server farms and so tends to be better on the network side.
With Red hat we had so many problem with the BNX/BNX2 10 GB ethernet drivers, it was a nightmare scenario with over $500,000K in blade servers constantly crashing, there were the HP vendor drivers, and the RH drivers and the Linux main line drivers, which we ended up building and using till RH caught up.
FreeBSD is hardly dead. Some of the fastest network drivers exist in FreeBSD.
At this point the BSD's are almost a flavor of Linux. There is a Linux compatibility layer also.
I have written drivers for Both BSD and Linux. BSD drivers are generally much clean and more straight forward and it's because of them that many HW vendors bring up a BSD driver first even if they choose never to share it.
I don't have any way to check that, but the visible white component of the sun's light doesn't carry much heat.
They use a Dark Green to radiate heat from Power transformers. This is because of it's high emissivity. The Visible color is irrelivant.
My krylon example is to show that the wrong "White" Paint could be actually worse then no paint at all.
I've done a few blog posts on this, a number of my friends researched the heck out of this issue.
http://thegreentank.blogspot.com/2009/12/solar-heat-number.html
http://thegreentank.blogspot.com/2010/09/notes-on-heat-reduction-on-roof.html
I will post the highlights here:
For most materials absorption and emissivity of IR is usually the same for any given frequency.
Paint: Krylon, flat white #1502 @ 3m wavelenght = 0.992 emissivity
So weirdly enough this one specific "Visibly" white paint has one of the highest emissivities, and would absorb and reflect a lot of heat almost the same as the black paints!!!
What you really need is a Selective Coatings
I did a blog post on this very topic last year.
http://johnsokol.blogspot.com/2010/11/increasing-internet-reliablity-dual-wan.html
Use a cable modem and DSL at the same time.
Xincom XC-DPG502
TP-Link TL-R480T+
Sounds more like Google's plan,
mod parent up please.
I am working on building out the Amorphous OS, (you can Google it) Firefox or something like it would be a big part of it's functionality.
>The 'browser as an OS' concept is still stupid.
Yes, we already have browsers,
A Cloud based OS and blurring the lines between OS executable binaries and HTML though isn't a stupid idea.
I've already given a talk at BAFUG, and am preparing presentations and design docs for each subsystem.
True,
Skype was initially about the tech, but also a customer base. With WebRTC out there, the value of the tech drops fast leaving just the customer base which most likely hit staturation, and was starting to decline.
Yup, your heard me, Global IP Solutions that was aquired last year by google was maker of the Engine that Skype was using.
Looks like they parted ways back in 2007 with Skype 3.2.
Looks like Skype really shot them selves in the foot on this one, Google just opensourced it with a BSD style license and soon Skype will be history.
Which may explain why they sold off to Microsoft reciently.
You can read more on my blog post.
http://videotechnology.blogspot.com/2011/06/webrtc-bringing-real-time.html
So what happens when someone streams CNN on justin.tv or ustream?
Many people are starting to cancel their cable service as the bills have started to become excessive and the content has gotten crappier. (or maybe it's just seems like it as I get older)
I really want to start a Cable TV service over the Internet , as in IPTV.
http://www.videotechnology.com/tv/ Try the space bar to change channels.
All the technology is in place for this already, and I know how to get legitimate content licenses.
So yesterday I spoke on the phone briefly with Steve Wozniak who expressed a slight interest. I really need to get sponsors and a few people with some pull to make these things happen.
I also am planning on starting an Open source project for an Alternative to Google TV (Android) called Amorphous OS, that's based on Linux.
http://www.dnull.com/~sokol/amorp/ I gave a talk on this 10 years ago, since then we have done some experients but I could really use some help on security and Object models.
We need the Open Source community to step up and own this technology otherwise we'll all be left out again like the Phone Companies and Microsoft did to us in the past.
I think an open source alternative to Google TV / Apple TV could easily find it's way in to Televisions if the effort is put in to such a project.
Few people realize that most of these BlueRay players, and Set top boxes such as TiVo are based on Linux already. What remains is the next layer up.
X windows is unacceptable for some things, and things like KDE and other windows managers just aren't consumer friendly.
Android's model of Apps is really out dated. Even Java Applets are more advanced in that they don't get "Installed" and "upgraded" or "updated"
I want to take this to another level for the way applications are build, offered, managed and secured.
I believe that Amorphous OS can be the way to do this, with Micropayment it could even make the Open Source Model profitable and still remain open.
Anyone with any real interest can reach me at videotechnology.com
John
I have been researching this now for several years. That how to make due without Cable TV and the Difference in Internet vs. Cable for TV viewing.
There are a few things there the Live streaming channels are really missed.
So I have created a site to reproduce these.
http://www.videotechnology.com/tv/ It's mostly news for now. I will be adding sports and music next.
I also have started http://utvii.com/ but this is still under works.
At http://www.videotechnology.com/ I am also writing articles on this subject for my main web site.
I have a business plan for delivering full cable TV over the Internet right now that I am still finishing up and have some people interested in funding.
This sounds a lot like my SETINE idea, "Search for Extra-Terrestrial Intelligence Near Earth" http://www.setine.com/
For this I was thinking of having 2 camera, wide angle high res still , and a Servo controlled 1080i HD camera with 35x Zoom like they use in high end CCTV systems.
The idea is the one camera would spot objects in the sky that don't follow expected patterns. The second on would zoom in and track it, and record it.
These could then be collected on the Internet and use crowd sourcing to ID objects and improve image processing algorithms for object identification.
> most technically knowledgeable film editors and sound designers
Clearly optics isn't one of his strengths.
Anything beyond around 20 feet in a dark theater is infinity focus for the human eye and more like 6 feet in daylight.
What this means is your eye focuses the same for any objects 20 feet away or further, Such as when sitting in a theater.
So as long as the 3D isn't projecting images out of the screen at you, your eyes aren't going to notice anything unusual in focusing.
So it's all up to how the 3D content was shot.
Technical details:
What we want to know is the hyper focal distance of the eye,.
http://en.wikipedia.org/wiki/Hyperfocal_distance The closest point of focus at a given aperture, at which infinity falls within the Depth of Field
Optics of the human eye By David A. Atchison, George Smith PG 214 has a nice graph on this.
http://books.google.com/books?id=MHgx-jBA0TAC&lpg=PP11&ots=DGJxkLC644&dq=depth%20of%20field%20human%20eye&lr&pg=PA214#v=onepage&q=depth%20of%20field&f=false
Astronomers the maximum iris opening is 7mm this gives a max aperture is f/3.5.
Wikipedia says f/2.1 to f/8.3 http://en.wikipedia.org/wiki/Apertures
The focal length of the eye is 17 mm http://hypertextbook.com/facts/2002/JuliaKhutoretskaya.shtml
http://en.wikipedia.org/wiki/Hyperfocal_distance
http://www.flickr.com/photos/robertseber/2372620675/ Optimal Aperture For Foreground Sharpness With Infinity Focus
http://www.dofmaster.com/charts.html
http://www.bobatkins.com/photography/technical/dofcalc.html
I have some article on my blog about 3D content issues.
http://videotechnology.blogspot.com/2010/08/thx-and-blufocus-join-forces-to-certify.html
http://videotechnology.blogspot.com/2010/08/why-bad-3d-not-3d-glasses-gives-you.html
I have thought about P2P based VPN like networks, but there are political/legal issues with that.
Without a "legal entity" in charge they can just block it. Also it's not possible to grow it as a real network.
By copying the private corporate network model your afforded some legal protections and if they where to block it, they would also have to block every major corporations VPN's that they use for there employees to telecommute.
Another nice benefit is that it would be considered a private network and therefor free of public scrutiny to some extent. So pirated content could be argued to be view completely differently then on the open internet.
In addition as a real physical network, other networks could join, and people could become directly physically connected. T1's etc.
There are some real advantages.
I am thinking that replacing the protocol though would be the strongest way to differential it. Not sure how viable that is though.
But it could be free of the current DNS IETF system.
Most of you don't know the history, and are therefor doomed to repeat it.
For much of my life I have spent fighting the Ma Bell / AT&T monopoly. From the monopolistic control over Unix to all long distance services, to hicap pipes.
It wasn't until there breakup in the 80's that direct physical connection of modems was even allowed on to the phone networks.
Well we are down to the last few companies controlling the last mile, and many of the backbones. Legislation will just further this till we are all locked down to a few Internet services and the rest will be squeezed out or severely hampered.
IP TV and Cable TV over IP will be the largest changes coming. And companies like Cox and AT&T find themselves in a conflict of Interest.
Providing last mile Internet while at the same time watching it eat away at their cash cow, cable TV.
I think we can provide a VPN like tunneling service across the public Internet over to a private network. Most corporations already do this for their employees.
Getting that last mile has always been the hard part.
We could then make this private network host content only available on that network, but would anyone want too?
I mean if you are going to invest in a web server you'd want it to be accessible to as many users as possible.
Still I have some ideas I may be willing to discuss with an NDA.
For an interesting read checkout my ecip.com