For web apps, we've had a great deal of success with grinder. Its scripts are easy to write, and its recording mode is sometimes all you need to gin up a quick load test. For one project, we had Mercury as well... we found that grinder was much more helpful, at least for the development team. (Though I appreciated having both.)
Well, there are a few other differences. nearlyfreespeech charges half as much, doesn't nail you for CPU time, and (seem to) use faster servers. The most important difference from my perspective is that nearlyfreespeech doesn't make you use paypal, which I really try to avoid. If you need mail hosting too, though, bsdwebhosting.net is the only service I know that offers it using this pricing model.
Better hosting will cost you a fraction of what frontpage would for a very long time. And if your time's worth anything, this looks like an even better deal... Try these guys. No setup fee, no monthly fee. You just pay $1 per GB transferred and $0.01/MB/Month for disk space. php and mysql are included. To set up an account, you just transfer some money to them. If you use more bandwidth than you've paid for, they just stop serving your pages, so there's no risk of running up a huge bill if you get slashdotted. I'm not affiliated, just a really happy customer.
(My experience: I run a lightly used download site there along with a personal bookmark synchronization php/mysql app to share my mozilla bookmarks between machines. I've spent just under $1.50 for credit card fees, transfer and disk space since October.)
Yeah, because Darwin isn't a fork off the FreeBSD project right???
Correct. Darwin is in fact not a fork off the FreeBSD project. How very perceptive of you. Darwin is a different OS altogether, with a different kernel (Mach) and a different driver architecture. It does incorporate much of the FreeBSD userland. Apple publishes any changes they make in multiple places despite a license that does not compel such publication. Many if not most are incorporated into the upstream software.
But why do you bother to point out that Darwin is not a fork off the FreeBSD project? Is there a point you're trying to make by stating the obvious?
and their CVS server is always available to the public. Just pull that instead of a tarball. Get the tag you want if you'd like a build corresponding to their release. It's really quite a bit easier than the tarball anyway. I've never had a problem with a tagged release from CVS not working.
I hate to break this to you, but Google is not always your friend. There is a lot of good information and a lot of garbage there too. One must sort out the garbage from the good.
But no one ever posts garbage on/., so there is no need to sort the garbage from the good here. You should just unquestionably follow any tips you see here.
In that spirit, post your root password here. I'll help you get your CVS server running like never before.
It's disingenuous at best for them to claim that the iPod's a "closed" device. It plays MP3 AAC and WAV files just fine. No Digital Restrictions Management required.
MS and Real are both allowing export to a restriction-free format to enable use of music purchased from them in other devices (CD players) that do not support their DRM scheme. If they really wanted their music to play on the iPod they could do the same thing with no more ill effect to their business model. Why won't they do that? It must be a misguided gambit to increase market share. And that's fine. They're businesses and naturally want to increase their market share. But don't misrepresent your competition as more closed than you are when that's clearly not the case.
Feh. The iTMS is cheap, easy, and works on both my Mac and my PC. Its songs play just fine on my iPod, and I can easily burn them to CD. I am happy with the quality of its songs. It's going to take something more compelling than this to draw my attention. It doesn't even look like their music catalog is any better.
Congratulations. You have responded to the RIAA's price fixing by committing fraud.
Probably not. OP is likely nit-picking... The RIAA do not themselves sell CDs, but rather their members do. And their members don't generally sell CDs to individuals. They sell CDs to distributors who sell them to stores who sell them to individuals. So OP could truthfully state that he "never bought a CD from the RIAA" and be exactly correct while still being entitled to a settlement check.
Since it's a javascript trick, it shouldn't affect googlebot... the real googlebot will just ignore the javascript. What happens if you turn javascript off then try?
Sure. My main point, though, was that the problem boils down to establishing trust/control of those who handle your data. If you have someone untrustworthy handling your data, your threat level does not appreciably change based on the presence or absence of an iPod or similar device.
Depending on the data being handled, hiring with confidence can be difficult. For moderately sensitive data, I'd argue that anyone who has the kind of access to it where they could copy it off to a mass storage device should probably be hired by referral only. IME, this is an astonishingly effective means of finding trustworthy professionals. A recommendation from someone you know, whose reputation is important to them, is seldom given lightly.
For more sensitive data, you may require serious background investigation or even bonded employees.
Unless you have reason to believe that an employee will follow your data handling policies in good faith, though, the only solution is to not grant them unsupervised access to the data. (E.g., if you're dealing with sensitive data and CSR's who can't be effectively vetted as described above need access to some subset of your data, only grant access to it using a thin client/limited interface and supervise that access closely. Then usb watches, iPod's, etc. don't matter.)
Companies should consider hiring trusted professionals. If you hire quality, professional employees and explain the policy against putting corporate data on personal devices, this should not be a problem.
Believe it or not, most professionals want to do a good job and take pride in their work. If you set reasonable policies and explain them clearly, most will want to follow them.
Do you want to grant someone enough access to your data that they could copy it onto an iPod if you don't trust them to abide by your policies? If they have that kind of access to the data, copying it to an iPod is far from the only or best way to get it out, and you're just adding an inconvenience to your employees' lives without meaningfully increasing your own security. If you believe that banning these devices would help, your problems run much deeper and you should rethink the way you're doing business.
Though it should only be of minimal concern to an end-user, the license on cvsfinder may prove questionable. It's BSD-licensed, but it apparently uses unsanity's APE sdk, whose terms in my (non-lawyer) opinion may forbid this. The unsanity guys seem decent and unlikely to pursue this, but if you're thinking of contributing code to it, read the APE agreement very carefully and form your own opinion. Also, I do seem to recall some intention on the part of the devloper to switch away from APE (to mach_override IIRC) so, if this is done already, then it's completely a non-issue.
Dunno about #1 above, but I routinely write patches for Camino (I am not a "Camino developer" however:-)) and have one in the works for #2, since that one pains me as well and the work-arounds* are ugly. Hopefully once I've got a proper patch, someone will commit it.
* use mozilla or firefox and copy the security database into your Camino profile.
Not a separate computer, just a separate service. If you're running a public DNS service, you really should allow only recursive or authoritative queries. If you must service both, have the authoritative service listen on a 127.0.0.x IP and have the recursive one query that for the domain in question. But unless you're an ISP, there's really not a good reason to have your public nameserver handle recursive queries.
Yes, but then you've created a security hole on your network because you've configured the same DNS server for both recursive and authoritative lookups. Don't do that.
The only smartcard readers you want to use with a mac recent enough to run Virtual PC well are USB readers, and I haven't had any luck getting them to work in any recent version of Virtual PC. I've had some luck with other USB devices, but for some reason, the (gemplus GemCore-based) readers I've tried have been non-starters.
The last version I tried was 6.0.something. I could occasionally get the driver to properly detect the reader, but never managed to get it to work with even the simplest test applications, let alone VPN support. I think the poster will have more luck with Mac native solutions, as OS X's smartcard support is actually decent.
According to Nortel's documentation they support X.509 certificates. That's probably what you mean by "emulate Windows Digital Certificate functionality":-)
Check with your documentation for how to configure certificate-based authentication. It's usually pretty easy.
1. (You sound like you tried this one) Convince MAPS not to blacklist you. This is unlikely to happen if you're only in the DUL.
2. Convince the people you wish to exchange mail with (who presumably want your mail) to either
a. Stop using MAPS
b. Stop using the DUL
c. Add your server to a local whitelist
Note that gaining control over your reverse DNS listing will not help; DUL is based on netblocks.
3. Get a better ISP. There are options out there that will do what you want, and not all are prohibitively expensive. If you ISP's options are, switch. I've been very happy with speakeasy. They are available to most of the US. If you get one of their very reasonably priced (multiple) static IP packages, you will not be on the DUL. What's better, they will set your reverse DNS to whatever you wish so long as you own the domain in question. Their TOS are also very nice, explicitly permitting you to run your own servers so long as you don't disrupt the network. (They do permit running spam, porn, and irc if it's part of a public irc network, as those tend to disrupt service more often than they don't.) Speakeasy is not the only option... there are other similar ones, but I haven't tried any of them.
4. (As others have said) Use a smarthost for your mail. Receive incoming mail on your own server but configure your outgoing mail to relay through your ISP's gateway. This is trivial with most MTAs. See your documentation for details.
5. Complain to your ISP, and tell them that you're willing to switch if they can't get you onto a netblock that isn't blacklisted. It might work. Their cost to acquire a new customer is relatively high, so they should be interested in accomodating you. Don't just go based on their written policy, though. Talk to a real person, preferably one who would feel the pain of lost revenue.
1. The officially-sanctioned IFS developer kit is separate from the DDK and costs ~$1000 last time I checked. That's steep for someone who's hacking on open source in their spare time. Even if you get it, AIUI, it's very underdocumented and you'll take quite a few lumps before producing anything useful. And the license looks to my (untrained) eye as if it specifically prohibits distributing source code for the file system drivers you develop.
2. Windows filesystem drivers are hard. Developing and debugging is hairy and time consuming, and it's a good bit more work than writing an equivalent UNIX-like filesystem driver. For example, Windows expects the filesystem to handle globbing (wildcards), which is normally handled by the shell on UNIX.
3. Kernel drivers require specialized knowledge to develop and maintain. The people who have acquired this knowledge about the popular Free/Open Source drivers are, naturally, UNIX experts. They are unlikely to have the same knowledge about developing Windows kernel drivers and very unlikely to enjoy working with Windows enough to gain this knowledge in their spare time, at their own expense.
4. People who understand windows kernel driver (especially IFS) development don't, as a group, do open source. I have a few friends who do this, and they have actually mentioned that they view open source as a threat to their livelihoods and hope it goes away. One of them used the phrase "commie bullshit". I'm not joking.
5. The free kits for Windows filesystem development appear primarily targeted at academic use, and are not robust enough (or maybe simply not well-enough understood) to produce a production-quality filesystem. Some development would most likely need to go into one of the kits before it could be used to port a non-trivial filesystem with all of the expected features.
This all adds up to a serious lack of any "somebody" who can and is willing to write one, especially for free.
That said, there are a couple of free ext2/3 implementations available for various versions of windows. I've tested them, and the one that was read/write didn't seem good enough for use with any important data.
Slashdot Mirror
For web apps, we've had a great deal of success with grinder. Its scripts are easy to write, and its recording mode is sometimes all you need to gin up a quick load test. For one project, we had Mercury as well... we found that grinder was much more helpful, at least for the development team. (Though I appreciated having both.)
Well, there are a few other differences. nearlyfreespeech charges half as much, doesn't nail you for CPU time, and (seem to) use faster servers. The most important difference from my perspective is that nearlyfreespeech doesn't make you use paypal, which I really try to avoid. If you need mail hosting too, though, bsdwebhosting.net is the only service I know that offers it using this pricing model.
Better hosting will cost you a fraction of what frontpage would for a very long time. And if your time's worth anything, this looks like an even better deal... Try these guys. No setup fee, no monthly fee. You just pay $1 per GB transferred and $0.01/MB/Month for disk space. php and mysql are included. To set up an account, you just transfer some money to them. If you use more bandwidth than you've paid for, they just stop serving your pages, so there's no risk of running up a huge bill if you get slashdotted. I'm not affiliated, just a really happy customer.
(My experience: I run a lightly used download site there along with a personal bookmark synchronization php/mysql app to share my mozilla bookmarks between machines. I've spent just under $1.50 for credit card fees, transfer and disk space since October.)
Yeah, because Darwin isn't a fork off the FreeBSD project right???
Correct. Darwin is in fact not a fork off the FreeBSD project. How very perceptive of you. Darwin is a different OS altogether, with a different kernel (Mach) and a different driver architecture. It does incorporate much of the FreeBSD userland. Apple publishes any changes they make in multiple places despite a license that does not compel such publication. Many if not most are incorporated into the upstream software.
But why do you bother to point out that Darwin is not a fork off the FreeBSD project? Is there a point you're trying to make by stating the obvious?
and their CVS server is always available to the public. Just pull that instead of a tarball. Get the tag you want if you'd like a build corresponding to their release. It's really quite a bit easier than the tarball anyway. I've never had a problem with a tagged release from CVS not working.
fwiw, it's basically the jabber license with a couple of the restrictions lifted.
HTH,
petard
Too bad we can't moderate this with (-1, shameless plagiarism)... see the original.
I hate to break this to you, but Google is not always your friend. There is a lot of good information and a lot of garbage there too. One must sort out the garbage from the good.
/., so there is no need to sort the garbage from the good here. You should just unquestionably follow any tips you see here.
But no one ever posts garbage on
In that spirit, post your root password here. I'll help you get your CVS server running like never before.
It's disingenuous at best for them to claim that the iPod's a "closed" device. It plays MP3 AAC and WAV files just fine. No Digital Restrictions Management required.
MS and Real are both allowing export to a restriction-free format to enable use of music purchased from them in other devices (CD players) that do not support their DRM scheme. If they really wanted their music to play on the iPod they could do the same thing with no more ill effect to their business model. Why won't they do that? It must be a misguided gambit to increase market share. And that's fine. They're businesses and naturally want to increase their market share. But don't misrepresent your competition as more closed than you are when that's clearly not the case.
Feh. The iTMS is cheap, easy, and works on both my Mac and my PC. Its songs play just fine on my iPod, and I can easily burn them to CD. I am happy with the quality of its songs. It's going to take something more compelling than this to draw my attention. It doesn't even look like their music catalog is any better.
and am, sadly, absolutely not the AC who submitted it :-)
Congratulations. You have responded to the RIAA's price fixing by committing fraud.
Probably not. OP is likely nit-picking... The RIAA do not themselves sell CDs, but rather their members do. And their members don't generally sell CDs to individuals. They sell CDs to distributors who sell them to stores who sell them to individuals. So OP could truthfully state that he "never bought a CD from the RIAA" and be exactly correct while still being entitled to a settlement check.
Since it's a javascript trick, it shouldn't affect googlebot... the real googlebot will just ignore the javascript. What happens if you turn javascript off then try?
Sure. My main point, though, was that the problem boils down to establishing trust/control of those who handle your data. If you have someone untrustworthy handling your data, your threat level does not appreciably change based on the presence or absence of an iPod or similar device.
Depending on the data being handled, hiring with confidence can be difficult. For moderately sensitive data, I'd argue that anyone who has the kind of access to it where they could copy it off to a mass storage device should probably be hired by referral only. IME, this is an astonishingly effective means of finding trustworthy professionals. A recommendation from someone you know, whose reputation is important to them, is seldom given lightly.
For more sensitive data, you may require serious background investigation or even bonded employees.
Unless you have reason to believe that an employee will follow your data handling policies in good faith, though, the only solution is to not grant them unsupervised access to the data. (E.g., if you're dealing with sensitive data and CSR's who can't be effectively vetted as described above need access to some subset of your data, only grant access to it using a thin client/limited interface and supervise that access closely. Then usb watches, iPod's, etc. don't matter.)
Companies should consider hiring trusted professionals. If you hire quality, professional employees and explain the policy against putting corporate data on personal devices, this should not be a problem.
Believe it or not, most professionals want to do a good job and take pride in their work. If you set reasonable policies and explain them clearly, most will want to follow them.
Do you want to grant someone enough access to your data that they could copy it onto an iPod if you don't trust them to abide by your policies? If they have that kind of access to the data, copying it to an iPod is far from the only or best way to get it out, and you're just adding an inconvenience to your employees' lives without meaningfully increasing your own security. If you believe that banning these devices would help, your problems run much deeper and you should rethink the way you're doing business.
It's not impossible, but there's nothing that's anywhere near as mature as Tortoise. Here's an early version of one for Subversion and here's a similar tool for CVS, also very early in its development lifecycle.
Though it should only be of minimal concern to an end-user, the license on cvsfinder may prove questionable. It's BSD-licensed, but it apparently uses unsanity's APE sdk, whose terms in my (non-lawyer) opinion may forbid this. The unsanity guys seem decent and unlikely to pursue this, but if you're thinking of contributing code to it, read the APE agreement very carefully and form your own opinion. Also, I do seem to recall some intention on the part of the devloper to switch away from APE (to mach_override IIRC) so, if this is done already, then it's completely a non-issue.
Dunno about #1 above, but I routinely write patches for Camino (I am not a "Camino developer" however :-)) and have one in the works for #2, since that one pains me as well and the work-arounds* are ugly. Hopefully once I've got a proper patch, someone will commit it.
* use mozilla or firefox and copy the security database into your Camino profile.
Not a separate computer, just a separate service. If you're running a public DNS service, you really should allow only recursive or authoritative queries. If you must service both, have the authoritative service listen on a 127.0.0.x IP and have the recursive one query that for the domain in question. But unless you're an ISP, there's really not a good reason to have your public nameserver handle recursive queries.
:-)
Here's a bit more discussion of why it's a good idea to split your DNS. But like I said, it doesn't have to be a separate computer, just a different interface
Yes, but then you've created a security hole on your network because you've configured the same DNS server for both recursive and authoritative lookups. Don't do that.
is that its USB support just isn't up to snuff.
The only smartcard readers you want to use with a mac recent enough to run Virtual PC well are USB readers, and I haven't had any luck getting them to work in any recent version of Virtual PC. I've had some luck with other USB devices, but for some reason, the (gemplus GemCore-based) readers I've tried have been non-starters.
The last version I tried was 6.0.something. I could occasionally get the driver to properly detect the reader, but never managed to get it to work with even the simplest test applications, let alone VPN support. I think the poster will have more luck with Mac native solutions, as OS X's smartcard support is actually decent.
According to Nortel's documentation they support X.509 certificates. That's probably what you mean by "emulate Windows Digital Certificate functionality" :-)
Check with your documentation for how to configure certificate-based authentication. It's usually pretty easy.
1. (You sound like you tried this one) Convince MAPS not to blacklist you. This is unlikely to happen if you're only in the DUL.
2. Convince the people you wish to exchange mail with (who presumably want your mail) to either
a. Stop using MAPS
b. Stop using the DUL
c. Add your server to a local whitelist
Note that gaining control over your reverse DNS listing will not help; DUL is based on netblocks.
3. Get a better ISP. There are options out there that will do what you want, and not all are prohibitively expensive. If you ISP's options are, switch. I've been very happy with speakeasy. They are available to most of the US. If you get one of their very reasonably priced (multiple) static IP packages, you will not be on the DUL. What's better, they will set your reverse DNS to whatever you wish so long as you own the domain in question. Their TOS are also very nice, explicitly permitting you to run your own servers so long as you don't disrupt the network. (They do permit running spam, porn, and irc if it's part of a public irc network, as those tend to disrupt service more often than they don't.) Speakeasy is not the only option... there are other similar ones, but I haven't tried any of them.
4. (As others have said) Use a smarthost for your mail. Receive incoming mail on your own server but configure your outgoing mail to relay through your ISP's gateway. This is trivial with most MTAs. See your documentation for details.
5. Complain to your ISP, and tell them that you're willing to switch if they can't get you onto a netblock that isn't blacklisted. It might work. Their cost to acquire a new customer is relatively high, so they should be interested in accomodating you. Don't just go based on their written policy, though. Talk to a real person, preferably one who would feel the pain of lost revenue.
It's actually a header and 2 (nearly undocumented) example drivers. I just looked into it. Feh.
Many reasons:
1. The officially-sanctioned IFS developer kit is separate from the DDK and costs ~$1000 last time I checked. That's steep for someone who's hacking on open source in their spare time. Even if you get it, AIUI, it's very underdocumented and you'll take quite a few lumps before producing anything useful. And the license looks to my (untrained) eye as if it specifically prohibits distributing source code for the file system drivers you develop.
2. Windows filesystem drivers are hard. Developing and debugging is hairy and time consuming, and it's a good bit more work than writing an equivalent UNIX-like filesystem driver. For example, Windows expects the filesystem to handle globbing (wildcards), which is normally handled by the shell on UNIX.
3. Kernel drivers require specialized knowledge to develop and maintain. The people who have acquired this knowledge about the popular Free/Open Source drivers are, naturally, UNIX experts. They are unlikely to have the same knowledge about developing Windows kernel drivers and very unlikely to enjoy working with Windows enough to gain this knowledge in their spare time, at their own expense.
4. People who understand windows kernel driver (especially IFS) development don't, as a group, do open source. I have a few friends who do this, and they have actually mentioned that they view open source as a threat to their livelihoods and hope it goes away. One of them used the phrase "commie bullshit". I'm not joking.
5. The free kits for Windows filesystem development appear primarily targeted at academic use, and are not robust enough (or maybe simply not well-enough understood) to produce a production-quality filesystem. Some development would most likely need to go into one of the kits before it could be used to port a non-trivial filesystem with all of the expected features.
This all adds up to a serious lack of any "somebody" who can and is willing to write one, especially for free.
That said, there are a couple of free ext2/3 implementations available for various versions of windows. I've tested them, and the one that was read/write didn't seem good enough for use with any important data.
One company that I know of has developed a commercial implementation of ext2/3fs for Windows. It's not free, but for <$30 it may be inexpensive enough to be interesting.
After the sudo they do. You do not need to activate the root account for that.