So if I buy a brand new NetApp with hardware and software. Later I sell the hardware but maintain the software license. Can I later buy new NetApp hardware to run my software license on? Of course you can't; Software licenses are a consumable. They last as long as you own the hardware. Once you sell the hardware the software license is gone *poof*
Doesn't seem right. I have a NetApp F720 that is getting a bit old and needs replacement. I've contact NetApp about a trade-in/upgrade. They want to resell the same software I already have on my existing filer. I've decided to go with External SCSI RAID (Adaptec), Fiber Channel HBAs, Linux, LVM and ReiserFS 4.0. I can probably get 80% of the performance for 10% of the cost. I'll buy two and get 200% of the redundancy for 20% of the cost...
Yes but SCO continued to ship the code even after they new it was in there illegally. If they shipped the code without knowledge then it isn't under GPL. They were advised of the code being in their distribution (or they wouldn't have filed a claim). They continued to ship the code in their distribution which from that point on puts it under the GPL. Following your example if you continued to ship your cool project with your licensed code after you filed a lawsuit on your customer. The licensed code would be part of the project with your knowledge and therefore placed under the GPL.
I'm assuming that the MB uses an encryption key on the data before it is stored on the HD. If the HD is removed it is worthless. What if the Gov't or RIAA took the MB and the HD together. The key is on the MB somewhere and should be too hard to find. I wonder if you can set it up so you need to enter the key everytime you boot the computer so it can store it and continue to encrypt/decrypt the data.
I'm a tech geek and I can speak technobable, alphabet soup like the best of them. I know what I do and do what I know.
Why should our industry dumb down to handle the people that don't want to take the time to learn it.
I've never gone to medical school and as such I shouldn't and don't understand a word of medical jargon. Should the medical profession be dumbed down as well?
Remember the IBM laptops that had a keyboard that would open up to full size? Imagine a laptop LCD that opens up like a pop-up card to a full 23" LCD screen when in use but fold down to 15" when not in use.
Normally with public companies there isn't any one person with a majority share of the business. Business decisions are made by the CEO and board of directors. The board is made of industry leaders and share holders. share holders vote on the board to make major decisions and to elect corporate officers (CEO, CFO, CTO, EIEIO, etc.). A hostile take over is when a company starts to purchase as many voting shares as possible in order to gain control of the board. It is typically done by offering a greater than market value price for the shares. Most share holders don't have their blood sweat and tears into the company. It is an investment for the. When given the option to cash out and make a bunch of money they will. So, Oracle is putting up a huge amount of money to try to buy the shares from those willing to sell. It is hostile because oracle isn't really buying the company. It is buying control of the board. If it works Oracle will have control of the company and will be able to appoint its own board and CEO.
It saves the costly 3-way TCP handshake on the slow modem connection by installing a local side proxy. The proxy makes a couple permanent TCP connections to a squid proxy on the other end. I know for a fact propel uses squid on the server side. If the content is cached you save 1.5 * ping time to server for every request to that server.
300GB/month = 1mbps for $100/month is a bit over the current el cheapo national ISP pricing.
Your point again?
yeah, yeah I know you can burst at the datacenter and send the 300Gigs out in 30 minutes then sit idle for the rest of the month. This is all a numbers game. When you have enough customers all their bursting evens out. Buy a big enough pipe and you don't feel any one company bursting. What committed sustained datarates do you get for the $100/month? How much bandwidth does the datacenter buy from 'upstream' and how much do they sell 'downstream'? What is their overcommit rate? The further you move from the 'core' of the Internet the cheaper the bit is but the water starts to get muddy.
Current DS-3 pricing is $10k/month = $200/meg/month not including the loop. Buying in bigger chunks drops the price down a bit. The current trend from the big guys is an increase in $/bit in the next few years.
"I am paying for the bandwidth - why cant I use it as I choose"
You honestly think that $39.95/month 'pays' for a 100mbps Internet feed? The current going rate for el cheapo national ISPs is about $75/meg in 100 meg chunks so you are talking about $7500/month. Decent backbones (i.e. WCOM, Sprint, ATT...) charge $200+/meg/month.
This cost per meg doesn't even cover the loop to get the bandwidth to the ISP router. Forget about the cost of delivering the 100 meg to your house. Now assuming your ISP buys the cheap stuff ($75/meg) and is selling you 100 megs for $39.95/month they are overcommitting about 200:1. If you did use your full bandwidth you would piss off 199 other customers. At 200:1 they STILL aren't making a profit.
If you actually paid for what you used I'm sure the providers would have no problem allowing you to use it.
Get real people, the Internet is EXPENSIVE to operate and maintain. throw all the spammers in jail and the price would drop some I'm sure.
I don't have a 100% accurate statistic handy but about 95% of all skydiving fatalities are pilot related. People downsizing their canopies too quickly (smaller = faster = more fun). Hook turning that new uber canopy into the ground at 70 MPH.
The fact is, Skydiving equipment is very safe. When used properly, kept well maintained it will rarely fail. If it does you always have your reserve. It is the skydiver that screws up and dies. Complacency = death in this sport.
My first reserve ride was on a borrowed rig and it was all my fault. I deployed too quickly on a hop-n-pop and had my main wrap around my legs. Let me tell you, going to reserve at terminal hurts like a mother, but I'm alive:)
next week:)
Yep!, going to Eloy, AZ for 6 days of non stop jumping! Gonna do a little head down, some freaky flying. Hopefully the bar under the skyvan won't be broken this time. It is fun hanging from the bottom of a plane at 13,500 feet.
Well, since almost all licenses for software are non transferrable you would buy the hardware without any software. If you received software with your hardware the seller is in violation of the licensing agreement and is responsible for everything.
Do-Not-Call lists work because calls can be traced, people have caller-id and most outbound call centers are reputable. If you are on a DNC list and you get called you can actually find the company that called you and sue.
Spammers are not traceable. Every open relay needs to be closed before we can trace.
Spammers forge From and Recieved headers so we have no 'caller-id'.
Spammers are not reputable, they know what they are doing is wrong and they don't care.
With FTP the person needs to upload the script the execute it on the web server. With CGI-Shell Anyone can execute ANYTHING on the web server as the web server user (nobody). Granted you can put a.htaccess file to limit access but people tend to screw them up more often than not.
300,000 sq miles, in a circle would be a radius of rougly 300 miles. With the unit 10 miles in in the air the distance between end point and blimp would be a bit over 300 miles. I don't know of any WiFi that has that kinda range. So you can get a 10 mile antanea on a blimp 10 miles in the air and reach a house directly under the blimp. WOOHOO hurray for progress.
This has gotta be more FUD from the record industry to try to reduce the threat of mp3's. Think about it. Telephones have been digitizing and sampling voice for over 40 years. You don't here people saying that will make you deaf. CD's are samples of the real analog signal, do they destroy your hearing? Hell, just about everything you hear coming out of a machine is fake, digitized, sampled, compressed in some form it is all lossy. So, should we all go back to live acoustic concerts to save our ears?
Is to not bother with a second network. They need to break the spanning tree up a bit with some layer 3 routers. Sometimes it is fun to have a nice big layer 2 network. It makes life easy. It sucks to debug it when one half of a leg goes down and you get spanning-tree loops. The switches go down in a ball of flames that way.
The solution is to put some edge routers in every building (Cisco 6509's with MSFC cards). segment each building into different IP networks. Route between the networks. That way you may lose a building if the spanning-tree goes futzed but you won't lose the whole campus.
Sure you'll be a touch slower routing between the segments but you'll have much more reliability.
No, whats REALLY great about PICMG 2.16 is that your Linux/Intel blade can be plugged into any chassis along side a SUN Solaris blade and a IBM AIX blade. The interconnecting bus is actually dual ethernet switching fabrics and the transport protocol is IP. Basically every blade is a seperate server running a seperate OS on a seperate IP.
There is a perfect, 100% sure way of stopping spoofed IP's. It is very easy, non-resource intensive and not being used by lazy network admins.
On every edge router you simply need to put an access-list to drop all packets not coming from your netblocks.
Edge routers going to customers you drop incoming packets not coming from your customer assigned IP. Amost EVERY edge device supports this, most support dynamic filters with RADIUS resquests. If you only allow your customers to send you data from their IP address it is impossible for them to be part of a spoofed attack.
Well, If we can build a secure way of notifying the source network providers of an offending IP. Then have that network provider block that IP from sending on the Internet. We can then setup our servers to tell us when they are being attacked/flooded/poked at. Our server or IDS can then notify our distributed attack manager which can notify the source networks attack manager which can notify the edge router to drop packets.
It isn't all that complicated, it is a major pain to get every network admin and small ISP to implement something.
The simple act of filtering all outbound packets to only allow your netblock would stop forged IP attacks cold.
If every network provider ran this type of a system on their edge routers. Have all the edge routers communicate to distributed servers. Then, when you are being attacked you simply announce the offending IPs involved in the attack. That announcement gets propogated around all the servers which tell the edge devices to filter the traffic. It isn't a reverse flood. It is a way of telling the router closest to the source to start dropping packets.
Forged source IP's should be dropped at the edge already.
What we need is a protocol for sending dynamic filters to cisco routers. I would like to have input/output lists put on an interface that I can later build dynamically. I do it now with my Linux firewalls but it would be nice if I could drop the packets on the far side of my expensive link.
VOCAL is a SIP based phone switch for handling VoIP calls. It works with Cisco 7960 phones and most of their VoIP POTS boxes (NM-HDV-1T1-24 on a 2620, or 5300 series with VoIP DSP's installed). I've used it and it is production ready. A recent test processed several million calls/hour if I remember correctly. seems pretty robust to me.
Um, Well, lessee, *maybe* just *maybe* a smart proxy will only let approriate HTTP commands through the connection. Instead of binary screen shots. Yeah, I know the virus could be really smart and send the data via a POST or GET but a proxy can watch for that as well. blinding NAT'ing all outbound connections makes your firewall essentially non-existant. Almost all DDoS attacks are triggered by viruses on un-protected machines that made connections to an IRC server.
No, It probably just makes an outbound connection to a machine listening on port 80, or 25. Your Linux box will probably just let the connection go through. Problem is, the software listening on port 80 at the remote machine isn't an HTTP server, it is a reverse VNC, or BackOrifice or some other remote admin tool.
Point is, don't go to sleep behind your firewall. Proxy *EVERYTHING*, it pays to be paranoid.
Slashdot Mirror
So if I buy a brand new NetApp with hardware and software. Later I sell the hardware but maintain the software license. Can I later buy new NetApp hardware to run my software license on? Of course you can't; Software licenses are a consumable. They last as long as you own the hardware. Once you sell the hardware the software license is gone *poof*
Doesn't seem right. I have a NetApp F720 that is getting a bit old and needs replacement. I've contact NetApp about a trade-in/upgrade. They want to resell the same software I already have on my existing filer. I've decided to go with External SCSI RAID (Adaptec), Fiber Channel HBAs, Linux, LVM and ReiserFS 4.0. I can probably get 80% of the performance for 10% of the cost. I'll buy two and get 200% of the redundancy for 20% of the cost...
Yes but SCO continued to ship the code even after they new it was in there illegally. If they shipped the code without knowledge then it isn't under GPL. They were advised of the code being in their distribution (or they wouldn't have filed a claim). They continued to ship the code in their distribution which from that point on puts it under the GPL. Following your example if you continued to ship your cool project with your licensed code after you filed a lawsuit on your customer. The licensed code would be part of the project with your knowledge and therefore placed under the GPL.
I'm assuming that the MB uses an encryption key on the data before it is stored on the HD. If the HD is removed it is worthless. What if the Gov't or RIAA took the MB and the HD together. The key is on the MB somewhere and should be too hard to find. I wonder if you can set it up so you need to enter the key everytime you boot the computer so it can store it and continue to encrypt/decrypt the data.
Exactly.
I'm a tech geek and I can speak technobable, alphabet soup like the best of them. I know what I do and do what I know.
Why should our industry dumb down to handle the people that don't want to take the time to learn it.
I've never gone to medical school and as such I shouldn't and don't understand a word of medical jargon. Should the medical profession be dumbed down as well?
Some people thing Dr's are arrogant as well..
Remember the IBM laptops that had a keyboard that would open up to full size? Imagine a laptop LCD that opens up like a pop-up card to a full 23" LCD screen when in use but fold down to 15" when not in use.
Normally with public companies there isn't any one person with a majority share of the business. Business decisions are made by the CEO and board of directors. The board is made of industry leaders and share holders. share holders vote on the board to make major decisions and to elect corporate officers (CEO, CFO, CTO, EIEIO, etc.). A hostile take over is when a company starts to purchase as many voting shares as possible in order to gain control of the board. It is typically done by offering a greater than market value price for the shares. Most share holders don't have their blood sweat and tears into the company. It is an investment for the. When given the option to cash out and make a bunch of money they will. So, Oracle is putting up a huge amount of money to try to buy the shares from those willing to sell. It is hostile because oracle isn't really buying the company. It is buying control of the board. If it works Oracle will have control of the company and will be able to appoint its own board and CEO.
You and your two hands does NOT make a 3-way....
Actually,
It saves the costly 3-way TCP handshake on the slow modem connection by installing a local side proxy. The proxy makes a couple permanent TCP connections to a squid proxy on the other end. I know for a fact propel uses squid on the server side. If the content is cached you save 1.5 * ping time to server for every request to that server.
300GB/month = 1mbps for $100/month is a bit over the current el cheapo national ISP pricing.
Your point again?
yeah, yeah I know you can burst at the datacenter and send the 300Gigs out in 30 minutes then sit idle for the rest of the month. This is all a numbers game. When you have enough customers all their bursting evens out. Buy a big enough pipe and you don't feel any one company bursting.
What committed sustained datarates do you get for the $100/month? How much bandwidth does the datacenter buy from 'upstream' and how much do they sell 'downstream'? What is their overcommit rate? The further you move from the 'core' of the Internet the cheaper the bit is but the water starts to get muddy.
Current DS-3 pricing is $10k/month = $200/meg/month not including the loop. Buying in bigger chunks drops the price down a bit. The current trend from the big guys is an increase in $/bit in the next few years.
"I am paying for the bandwidth - why cant I use it as I choose"
...) charge $200+/meg/month.
You honestly think that $39.95/month 'pays' for a 100mbps Internet feed? The current going rate for el cheapo national ISPs is about $75/meg in 100 meg chunks so you are talking about $7500/month. Decent backbones (i.e. WCOM, Sprint, ATT
This cost per meg doesn't even cover the loop to get the bandwidth to the ISP router. Forget about the cost of delivering the 100 meg to your house. Now assuming your ISP buys the cheap stuff ($75/meg) and is selling you 100 megs for $39.95/month they are overcommitting about 200:1. If you did use your full bandwidth you would piss off 199 other customers. At 200:1 they STILL aren't making a profit.
If you actually paid for what you used I'm sure the providers would have no problem allowing you to use it.
Get real people, the Internet is EXPENSIVE to operate and maintain. throw all the spammers in jail and the price would drop some I'm sure.
I don't have a 100% accurate statistic handy but about 95% of all skydiving fatalities are pilot related. People downsizing their canopies too quickly (smaller = faster = more fun). Hook turning that new uber canopy into the ground at 70 MPH.
:)
The fact is, Skydiving equipment is very safe. When used properly, kept well maintained it will rarely fail. If it does you always have your reserve. It is the skydiver that screws up and dies. Complacency = death in this sport.
My first reserve ride was on a borrowed rig and it was all my fault. I deployed too quickly on a hop-n-pop and had my main wrap around my legs. Let me tell you, going to reserve at terminal hurts like a mother, but I'm alive
Take your life into your own hands, SKYDIVE!
WOOHOO!
everyone should skydive!
Well, since almost all licenses for software are non transferrable you would buy the hardware without any software. If you received software with your hardware the seller is in violation of the licensing agreement and is responsible for everything.
Do-Not-Call lists work because calls can be traced, people have caller-id and most outbound call centers are reputable. If you are on a DNC list and you get called you can actually find the company that called you and sue.
Spammers are not traceable. Every open relay needs to be closed before we can trace.
Spammers forge From and Recieved headers so we have no 'caller-id'.
Spammers are not reputable, they know what they are doing is wrong and they don't care.
With FTP the person needs to upload the script the execute it on the web server. With CGI-Shell Anyone can execute ANYTHING on the web server as the web server user (nobody). Granted you can put a .htaccess file to limit access but people tend to screw them up more often than not.
My prediction is no good can come of this.
Lets try to keep the math simple
300,000 sq miles, in a circle would be a radius of rougly 300 miles. With the unit 10 miles in in the air the distance between end point and blimp would be a bit over 300 miles. I don't know of any WiFi that has that kinda range. So you can get a 10 mile antanea on a blimp 10 miles in the air and reach a house directly under the blimp. WOOHOO hurray for progress.
This has gotta be more FUD from the record industry to try to reduce the threat of mp3's. Think about it. Telephones have been digitizing and sampling voice for over 40 years. You don't here people saying that will make you deaf. CD's are samples of the real analog signal, do they destroy your hearing? Hell, just about everything you hear coming out of a machine is fake, digitized, sampled, compressed in some form it is all lossy. So, should we all go back to live acoustic concerts to save our ears?
Is to not bother with a second network. They need to break the spanning tree up a bit with some layer 3 routers. Sometimes it is fun to have a nice big layer 2 network. It makes life easy. It sucks to debug it when one half of a leg goes down and you get spanning-tree loops. The switches go down in a ball of flames that way.
The solution is to put some edge routers in every building (Cisco 6509's with MSFC cards). segment each building into different IP networks. Route between the networks. That way you may lose a building if the spanning-tree goes futzed but you won't lose the whole campus.
Sure you'll be a touch slower routing between the segments but you'll have much more reliability.
No, whats REALLY great about PICMG 2.16 is that your Linux/Intel blade can be plugged into any chassis along side a SUN Solaris blade and a IBM AIX blade. The interconnecting bus is actually dual ethernet switching fabrics and the transport protocol is IP. Basically every blade is a seperate server running a seperate OS on a seperate IP.
There is a perfect, 100% sure way of stopping spoofed IP's. It is very easy, non-resource intensive and not being used by lazy network admins.
On every edge router you simply need to put an access-list to drop all packets not coming from your netblocks.
Edge routers going to customers you drop incoming packets not coming from your customer assigned IP. Amost EVERY edge device supports this, most support dynamic filters with RADIUS resquests. If you only allow your customers to send you data from their IP address it is impossible for them to be part of a spoofed attack.
Well, If we can build a secure way of notifying the source network providers of an offending IP. Then have that network provider block that IP from sending on the Internet. We can then setup our servers to tell us when they are being attacked/flooded/poked at. Our server or IDS can then notify our distributed attack manager which can notify the source networks attack manager which can notify the edge router to drop packets.
It isn't all that complicated, it is a major pain to get every network admin and small ISP to implement something.
The simple act of filtering all outbound packets to only allow your netblock would stop forged IP attacks cold.
Not exactly...
If every network provider ran this type of a system on their edge routers. Have all the edge routers communicate to distributed servers. Then, when you are being attacked you simply announce the offending IPs involved in the attack. That announcement gets propogated around all the servers which tell the edge devices to filter the traffic. It isn't a reverse flood. It is a way of telling the router closest to the source to start dropping packets.
Forged source IP's should be dropped at the edge already.
What we need is a protocol for sending dynamic filters to cisco routers. I would like to have input/output lists put on an interface that I can later build dynamically. I do it now with my Linux firewalls but it would be nice if I could drop the packets on the far side of my expensive link.
VOCAL
Um, Well, lessee, *maybe* just *maybe* a smart proxy will only let approriate HTTP commands through the connection. Instead of binary screen shots. Yeah, I know the virus could be really smart and send the data via a POST or GET but a proxy can watch for that as well. blinding NAT'ing all outbound connections makes your firewall essentially non-existant. Almost all DDoS attacks are triggered by viruses on un-protected machines that made connections to an IRC server.
Yeah, security is a pain in the ass.
I have a clue. Do you want to rent mine?
No, It probably just makes an outbound connection to a machine listening on port 80, or 25. Your Linux box will probably just let the connection go through. Problem is, the software listening on port 80 at the remote machine isn't an HTTP server, it is a reverse VNC, or BackOrifice or some other remote admin tool.
Point is, don't go to sleep behind your firewall. Proxy *EVERYTHING*, it pays to be paranoid.