Why can I see other people's processes with ps and top?
In a normal environment (think at work/school), that's a very usefull "feature". If someone has a process go wild and consume lots of cpu resource, I can call/email/yell_at him or her directly and ask them to kill the offending process. Admins are busy people, I don't want to bother them with this kind of trivial stuff. Besides, seeing that someone is running three instances of tcsh, one instance of emacs and netscape is hardly a security risk.
The question about XP that I'm wondering, is can a user's proccess run while someone else is logged in (think about a non-gui process that's doing something like a simulation or compilation, or what about a gui process like icq) or do they go into some kind of hibernation state? The way i've heard it described, it sounds like the latter.
Make sure to check out Paul Kienzle's
Octave-forge [link to tarball] (formerly named "signalPAK", then "octavePAK", then "matcompat").
It adds alot of matlab compatible.m files, his
web page is
here but doesn't seem to be updated to mention the new octave-forge package.
I thought it was done automagically by the APM drivers, in particular, CONFIG_APM_CPU_IDLE: "this can activate improved power savings, such as a slowed CPU clock rate, when the machine is idle."
Isn't the "slowed CPU clock rate" intel's speedstep (TM)?
Who ever managed to get that into the SI standard should be shot (assuming your not lying). The beauty and simplicity of the metric system is that there's only one unit for one kind of measurement. Unit like that (and the metric tone, etc) bastardise the system.
Areal and nautical speeds are measured in knots
He was putting it into units the rest of the world is familiar with. For us common folk, 296km/h tells us more than the archaic 160 knots.
Force of engines is measured in kilonewtons, not newtons... I have studied it[the metric system] for thirty years now.
yikes, you'll need to study a bit more cause you obviously don't get it (hint: kilo is a multiplier prefix, it just scales the value).
Remember though that Apache has a lower server/host ratio then IIS, so you need more IIS servers to host the same amount of websites as Apache. The result is that there are actually more IIS then *nix boxen out there to exploit (see the June Netcraft survey).
Re:IA64 is the "heir apparent"
on
Itanium Update
·
· Score: 1
I presume you mean the last-minute delay of the 820 launch.
Nope, I was refering to the decision to go with Rambus for the P4. Rambus is generally regarded as a bunch of crooks who tried to screw over fellow Jedec members by secretly patenting their ideas, then tried to extort money from them (the courts agree).
The fact that intel associated themselves with this trash is a major blunder, IMHO. (nevermind the fact that DDR is arguably supperior, lower cost, and easier to implement)
Re:IA64 is the "heir apparent"
on
Itanium Update
·
· Score: 2, Insightful
For example, fix the awkward text-selection mechanism in gnome-terminal. It's always half a character off compared to the "industry standard" way this should work. Go look at any Windows or Mac application and copy it's behavior.
I had never noticed that, but it does appear that the regular xterm also works this way, so maybe this is just an old *nix convention. It could be worst though, text selection/pasting in Windows' command prompt window is unquestionably more awkward.
This works fine with Xmms. It took me a whole 2 minutes to download, install (there's a.rpm) and figure out that I had to select the proper theme. Looks perty sweet(better than the screenshot), but it doesn't appear to affect all fonts in gtk programs.
Sadly though, many countries around the world are following the US' lead and implementing similar laws (see
this article (btw Canadians, there is only 2 weeks left to send in your comments on the proposed copyright reforms)). Don't laugh at the DMCA because soon a similar law may affect you.
It's already supported by the 2.4 kernel. The CVS version of this driver supports both 2.4 and 2.2, joystick.o is for 2.2 only. The person that made the patch (not an emu10k1 developer) didn't know this and Linux merged it in before anyone had a chance to spot fix it.
This update adds support for the 5.1 cards (including the IR remote, though it's still being reversed-eng'd), AC3 passthrough, multichannel playback (for AC3 pre-decoded in software), sequencer support, dsp effects (flanger, chorus, etc), and much more.
This is the first sync with CVS in almost a year (development was idle between Nov-April). Report any problems with the driver on the emu10k1 mailing, here:
emu10k1-devel@opensource.creative.com
Re:Why not force a download of the patch?
on
Broadband Crackdown
·
· Score: 1
Sounds good, but, blocking port 80 will only stop the spread of this desease. There are still hundreds of thousands of sick machines out there which will still be generating traffic that can continue to bog down the outgoing direction (I'm sure 90% of these servers are running on people's machines without them even knowing ).
They'll continue to do so until, A) the user re-installs (which may take months). B) the ISPs scan each one of their clients and warns/threatens them of the worm's presence.
Re:@Home started scanning port 80 last night
on
Code Redux
·
· Score: 1
wow, I have few non default.ida XXXX too ( 6 comming from 24.219.87.84, all within a 2 minute interval, and 1 from 24.216.35.134). I thought this was a vulnerability that exploited default.ida specifically, why would they try to infect without default.ida? Can it be there's yet another buffer overflow exploit out there? Or is this just some idiot script kiddies.
I think what he meant was the even non-windows people still receive annoying sircam email from windoze user (though I haven't).
His statement is slightly wrong, since even non-IIS using people still get infection attempts from IIS servers. My access_log from yesterday now stands at 300K, so Taco's wrong, CR does affect me too, in a way.
Installing Red Hat is much the same. Put the CD in, choose all the defaults, and pow: you're running a web server.
Isn't the default a 'workstation' install which doesn't install Apache? Also, there's now a firewall enable by default, you would have to open port 80 to let anybody connect.
Slashdot Mirror
In a normal environment (think at work/school), that's a very usefull "feature". If someone has a process go wild and consume lots of cpu resource, I can call/email/yell_at him or her directly and ask them to kill the offending process. Admins are busy people, I don't want to bother them with this kind of trivial stuff. Besides, seeing that someone is running three instances of tcsh, one instance of emacs and netscape is hardly a security risk.
The question about XP that I'm wondering, is can a user's proccess run while someone else is logged in (think about a non-gui process that's doing something like a simulation or compilation, or what about a gui process like icq) or do they go into some kind of hibernation state? The way i've heard it described, it sounds like the latter.
Make sure to check out Paul Kienzle's Octave-forge [link to tarball] (formerly named "signalPAK", then "octavePAK", then "matcompat"). It adds alot of matlab compatible .m files, his
web page is
here but doesn't seem to be updated to mention the new octave-forge package.
I thought it was done automagically by the APM drivers, in particular, CONFIG_APM_CPU_IDLE: "this can activate improved power savings, such as a slowed CPU clock rate, when the machine is idle."
Isn't the "slowed CPU clock rate" intel's speedstep (TM)?
Who ever managed to get that into the SI standard should be shot (assuming your not lying). The beauty and simplicity of the metric system is that there's only one unit for one kind of measurement. Unit like that (and the metric tone, etc) bastardise the system.
Areal and nautical speeds are measured in knots
He was putting it into units the rest of the world is familiar with. For us common folk, 296km/h tells us more than the archaic 160 knots.
Force of engines is measured in kilonewtons, not newtons ... I have studied it[the metric system] for thirty years now.
yikes, you'll need to study a bit more cause you obviously don't get it (hint: kilo is a multiplier prefix, it just scales the value).
Remember though that Apache has a lower server/host ratio then IIS, so you need more IIS servers to host the same amount of websites as Apache. The result is that there are actually more IIS then *nix boxen out there to exploit (see the June Netcraft survey).
Nope, I was refering to the decision to go with Rambus for the P4. Rambus is generally regarded as a bunch of crooks who tried to screw over fellow Jedec members by secretly patenting their ideas, then tried to extort money from them (the courts agree).
The fact that intel associated themselves with this trash is a major blunder, IMHO. (nevermind the fact that DDR is arguably supperior, lower cost, and easier to implement)
Hey, how could you forget Rambus!
I had never noticed that, but it does appear that the regular xterm also works this way, so maybe this is just an old *nix convention. It could be worst though, text selection/pasting in Windows' command prompt window is unquestionably more awkward.
I doesn't appear to work for me with any of the MS TTF (monotype) or the adobe fonts. The abisource and urw fonts are anti-aliased however.
Are the abisource fonts truetypes?
what's up with this: "Your comment violated the poster comment compression filter. Comment aborted"
This works fine with Xmms. It took me a whole 2 minutes to download, install (there's a .rpm) and figure out that I had to select the proper theme. Looks perty sweet(better than the screenshot), but it doesn't appear to affect all fonts in gtk programs.
Sadly though, many countries around the world are following the US' lead and implementing similar laws (see this article (btw Canadians, there is only 2 weeks left to send in your comments on the proposed copyright reforms)). Don't laugh at the DMCA because soon a similar law may affect you.
Considering the number of people who have their laptops xrayed when bring them on to airplanes, I think it would be safe.
It's already supported by the 2.4 kernel. The CVS version of this driver supports both 2.4 and 2.2, joystick.o is for 2.2 only. The person that made the patch (not an emu10k1 developer) didn't know this and Linux merged it in before anyone had a chance to spot fix it.
From the kernel mailing list:
"hm, edit drivers/sound/emu10k1/Makefile and remove the object reference for `joystick.o' -- i dont compile as a module so i missed this, thanks."
The user-tools can be download here
This update adds support for the 5.1 cards (including the IR remote, though it's still being reversed-eng'd), AC3 passthrough, multichannel playback (for AC3 pre-decoded in software), sequencer support, dsp effects (flanger, chorus, etc), and much more.
This is the first sync with CVS in almost a year (development was idle between Nov-April). Report any problems with the driver on the emu10k1 mailing, here: emu10k1-devel@opensource.creative.com
They'll continue to do so until, A) the user re-installs (which may take months). B) the ISPs scan each one of their clients and warns/threatens them of the worm's presence.
wow, I have few non default.ida XXXX too ( 6 comming from 24.219.87.84, all within a 2 minute interval, and 1 from 24.216.35.134). I thought this was a vulnerability that exploited default.ida specifically, why would they try to infect without default.ida? Can it be there's yet another buffer overflow exploit out there? Or is this just some idiot script kiddies.
His statement is slightly wrong, since even non-IIS using people still get infection attempts from IIS servers. My access_log from yesterday now stands at 300K, so Taco's wrong, CR does affect me too, in a way.
Not in Quebec.
Is there a "shutdown -h now" equivalent with windows?
I think it was added to 7.1. Older version should still have ipchains installed, but you'd have to write up your own firewalling script.
Isn't the default a 'workstation' install which doesn't install Apache? Also, there's now a firewall enable by default, you would have to open port 80 to let anybody connect.
here's a funny one: http://24.78.130.5/
$ grep "default.ida" /var/log/httpd/access_log -c
497
$ grep "default.ida" /var/log/httpd/access_log | cut -d . -f 1 |grep 24 -c
392
$grep "default.ida" /var/log/httpd/access_log |grep XXXXXXXXXX -c
385
I was only at ~80 NNN yesterday!