If you go to the copyright page of the Albuquerque Journal, there is no mention of a charge for linking.
Re:No more deja.com/usenet
on
Deja.com Vu!
·
· Score: 1
What about forming a non-profit org. to by the database, put up a site, and maintain it. You get money via donations and build a trust to make sure this is always availible.
I know TCP/IP fairly well, and this doesn't make sense to me. I want to establish a TCP connection to another host (packets are going both ways), so how can I stay anonymous when the remote host needs to send packets back to me? It has to go from router A, to router B, etc and then back to my computer.
You may know TCP/IP fairly well, but you don't know cryptography very well. It is possible for two parties to agree on a common random value without exchanging that value. This is the basic idea put forth in the Diffie-Hellman Key Exchange. Once you have a random number known to the two parties trying to communicate and no one else, you can use that number as an address to route the packets through the network. I don't know if this is what the research group has in mind but it is a possibility. Yes, there are some problems with this system, in particular the initial key exchange is not anonymous, but this makes it much harder to trace the actually data transfer.
The other thing too keep in mind is this: no matter what protocol you're using over the Internet, you can find out where the packets are coming from and going to. This includes ssh (Secure Shell), tunneling, normal TCP/UDP connections and even spoofed packets. This is done by running sniffers on each interface on a router (starting with the target that's being DoSed or whatever) and seeing which interface these packets came in on. You find out what that interface is connected to and start sniffing there. Repeat this process enough times, and you'll find out the source and destination of any packet.
In theory this will work, but once you cross an administrative domain, i.e. from one ISP's network to another ISP's network, you will find that they are so willing to co-operate. Read Cliff Stoll's Cuckoo's Egg for a real world example. It took him over two years to track someone, not because of technical problems, but because of adminstrative problems.
A company I used to work for had three different operating units with three different data centers in one building. To set up sniffers on the networks took two weeks of meeting and getting sign-off from data-center managers, since the managers didn't want their networks touched unless it was to fix a production problem in their network.
I find this quite amusing. I went to get lunch today, and only when I opened the fridge did I notice that I was out of food, and anything to drink other than tap water. Even my Brita filter pitcher was empty.
I then went upstairs only to realize that the lightbulb at the top was burnt out. Evidentally, I need all the help I can get.:)
Re:The problem is in the dependency database
on
An RPM Port Of APT
·
· Score: 1
What if the dependancy information is embedded into the source code. You can then have this information availible at make time and an additional target could be added to make files to make an rpmfile.
You could then branch the dependancy info in the source when you patch it locally.
Maybe we should try and get a few test cases into court to set precident that these "signatures" are not valid.
Post vote confirmation is what is needed.
on
eLection '04
·
· Score: 2
There needs to be a system in place to all the voter to confirm that the vote they cast was registered for a particular candidate. When dealing with money we get receipts to confirm our purchases. Why could we have receipts when you cast your vote.
Where I voted they use computer readable form, you darken the circle for the candiate you want. You then take the ballot to a machine which scans the ballot. This machine could very easily be modified to check that the ballot was valid (no double votes) and print out a receipt that you can check to make sure that the ballot indicates that you voted for the candiate you wanted.
Anybody know if this is vertical or horizontal microcode?
If you don't know the difference vertical ucode is similiar to very limited assembly where as horizontal is a arbitrary logic implemented via a memory lookup. (I think I got that right, maybe they are reversed, it's been a few years).
The reason I ask is Vertical code might be easier to change, whereas for horizontal code you'd need to understand alot more about the internal design of the chip.
For that matter, how do they sterilize probes anyway? Is it really safe to assume that the cold vacuum of space kills all microbes?
It is probably similar to how most medical devices are sterilized, very high levels of gamma radition. If I remember correctly, approx. 10 million REM. (I think the safe total exposure for humans is 5 REM/year).
Actually, The company is now a business partner with Qwest and will soon be lighting up a new OC-48 (2Gbps) network. UUNet still want to charge for peering.
It is also interesting to note that it was because of that court case that Micro$oft became as powerful as it is. IBM didn't want to own the OS, they were afraid that owning both hardware and software would look bad before the court.
But there are also 19 States involved in this. Even if the DoJ pulled out, which I doubt would happen, the President can't order the States to drop the case.
I remember a few years ago the screaming when the big boys announced that they would begin refusing to peer with smaller networks. It makes sense if you think about it -- you have to draw a line somewhere. There comes a point below which you aren't big enough for big backbones like UUNet or AT&T to care if they lose all your traffic.
The problem is that these companies aren't playing by their own rules. UUNet's rule is in order to peer with them you have to have four geographically diverse POPs connected together with a backbone of at least 45Mbps (DS3).
I was hired as a consultant by a company trying to peer with UUNet. They had three POPs (SF, Chi, and NYC) and were looking to build a fourth all connected with T3's. We started talking to UUnet and they said they were no longer establishing any new peering arangements.
They did offer to connect to us via a DS3 for only $50K per month.
Reactive Measures are not always the same as attacking back. Several intrusion detection systems have the capability to automattically update access lists on routers to stem the flow of traffic in case of an attack. This could be useful for some types of attacks.
However, for DoS attacks this might not be useful because my spoofing many address you could cause the routers to become overloaded handling access lists.
Case in point: Humans. We evolve separately from each other. Yep, society has emergent behaviour that could not be predicted from the individuals within it. But it does _not_ display intelligence on a different level from those individuals. Clearly we (like network programs) can gain advantages from working as a society. But those advantages do not include some sort of higher consciousness than the individuals within it.
Um...How do you know that? If society has a higher level of consciousness, who says you'd notice it. Do you think that an individual neuron in your brain relizes that your entire brain is conscious?
I work with a number of large companies in the data networking arena. Even large "wealthy" companies try to manage the bandwidth closely. Trying to get a company to purchase additional T1's when there is a clear need is often diffcult.
IANAL, but HTML is copyrightable. The real question in this case seems to be who owns the copyright. First, the orignal code was performed as work for hire according to your account. The copyright of work for hire is usually owned by the entity which paid for the work to be done, not by the entity performing the work.
The interesting question, to me anyway, is who owns the HTML which was automattically generated?
I think any firewall that is worth anything will rewrite all TCP packets that pass through it.
Not really. It depends upon the type of firewall. A full application proxy firewall will do this, but a simple packet filtering firewall will not. Rewriting the TCP packets is a very time consuming process and for performance reasons this may not be acceptible. In fact, the two most popular commerical firewalls, Checkpoint FW-1 and Cisco PIX, are stateful inspection firewalls and don't rewrite the TCP packets.
Slashdot Mirror
If you go to the copyright page of the Albuquerque Journal, there is no mention of a charge for linking.
What about forming a non-profit org. to by the database, put up a site, and maintain it. You get money via donations and build a trust to make sure this is always availible.
You may know TCP/IP fairly well, but you don't know cryptography very well. It is possible for two parties to agree on a common random value without exchanging that value. This is the basic idea put forth in the Diffie-Hellman Key Exchange. Once you have a random number known to the two parties trying to communicate and no one else, you can use that number as an address to route the packets through the network. I don't know if this is what the research group has in mind but it is a possibility. Yes, there are some problems with this system, in particular the initial key exchange is not anonymous, but this makes it much harder to trace the actually data transfer.
The other thing too keep in mind is this: no matter what protocol you're using over the Internet, you can find out where the packets are coming from and going to. This includes ssh (Secure Shell), tunneling, normal TCP/UDP connections and even spoofed packets. This is done by running sniffers on each interface on a router (starting with the target that's being DoSed or whatever) and seeing which interface these packets came in on. You find out what that interface is connected to and start sniffing there. Repeat this process enough times, and you'll find out the source and destination of any packet.
In theory this will work, but once you cross an administrative domain, i.e. from one ISP's network to another ISP's network, you will find that they are so willing to co-operate. Read Cliff Stoll's Cuckoo's Egg for a real world example. It took him over two years to track someone, not because of technical problems, but because of adminstrative problems.
A company I used to work for had three different operating units with three different data centers in one building. To set up sniffers on the networks took two weeks of meeting and getting sign-off from data-center managers, since the managers didn't want their networks touched unless it was to fix a production problem in their network.
I then went upstairs only to realize that the lightbulb at the top was burnt out. Evidentally, I need all the help I can get. :)
You could then branch the dependancy info in the source when you patch it locally.
Gosh, Cheif Gates, to the bat signal.
You debug with dwarf.
Maybe we should try and get a few test cases into court to set precident that these "signatures" are not valid.
Where I voted they use computer readable form, you darken the circle for the candiate you want. You then take the ballot to a machine which scans the ballot. This machine could very easily be modified to check that the ballot was valid (no double votes) and print out a receipt that you can check to make sure that the ballot indicates that you voted for the candiate you wanted.
If you don't know the difference vertical ucode is similiar to very limited assembly where as horizontal is a arbitrary logic implemented via a memory lookup. (I think I got that right, maybe they are reversed, it's been a few years).
The reason I ask is Vertical code might be easier to change, whereas for horizontal code you'd need to understand alot more about the internal design of the chip.
We'll use it the next time were releaseing software to manufacturing.
It is probably similar to how most medical devices are sterilized, very high levels of gamma radition. If I remember correctly, approx. 10 million REM. (I think the safe total exposure for humans is 5 REM/year).
Actually, The company is now a business partner with Qwest and will soon be lighting up a new OC-48 (2Gbps) network. UUNet still want to charge for peering.
It is also interesting to note that it was because of that court case that Micro$oft became as powerful as it is. IBM didn't want to own the OS, they were afraid that owning both hardware and software would look bad before the court.
But there are also 19 States involved in this. Even if the DoJ pulled out, which I doubt would happen, the President can't order the States to drop the case.
The problem is that these companies aren't playing by their own rules. UUNet's rule is in order to peer with them you have to have four geographically diverse POPs connected together with a backbone of at least 45Mbps (DS3).
I was hired as a consultant by a company trying to peer with UUNet. They had three POPs (SF, Chi, and NYC) and were looking to build a fourth all connected with T3's. We started talking to UUnet and they said they were no longer establishing any new peering arangements.
They did offer to connect to us via a DS3 for only $50K per month.
Reactive Measures are not always the same as attacking back. Several intrusion detection systems have the capability to automattically update access lists on routers to stem the flow of traffic in case of an attack. This could be useful for some types of attacks.
However, for DoS attacks this might not be useful because my spoofing many address you could cause the routers to become overloaded handling access lists.
Yeah, like something were it can tell if an MP3 is a Metallica song or not? :)
Um...How do you know that? If society has a higher level of consciousness, who says you'd notice it. Do you think that an individual neuron in your brain relizes that your entire brain is conscious?
I work with a number of large companies in the data networking arena. Even large "wealthy" companies try to manage the bandwidth closely. Trying to get a company to purchase additional T1's when there is a clear need is often diffcult.
I comes from "The Life of Brian" by Monty Python.
This really sound more like a bad James Bond or Austin Powers plot.
IANAL, but HTML is copyrightable. The real question in this case seems to be who owns the copyright. First, the orignal code was performed as work for hire according to your account. The copyright of work for hire is usually owned by the entity which paid for the work to be done, not by the entity performing the work.
The interesting question, to me anyway, is who owns the HTML which was automattically generated?
The funny thing is that just after I started reading this article, I lost connectivity to slashdot.org for an hour.
I couldn't read article #86 to see what was there. Did the server crash?
Not really. It depends upon the type of firewall. A full application proxy firewall will do this, but a simple packet filtering firewall will not. Rewriting the TCP packets is a very time consuming process and for performance reasons this may not be acceptible. In fact, the two most popular commerical firewalls, Checkpoint FW-1 and Cisco PIX, are stateful inspection firewalls and don't rewrite the TCP packets.