Right, because it is always good to piss off security folks at a military facility.
It is useless to me even if I keep it in my pockect. Let's say I put it in my pocket and set it to vibrate. So far so good. Then I get a call. I cannot really answer it without pulling it out and risking that someone notices that it is a camera phone (they look fairly obvious). It would have been much better just to not get the stupid camera phone, I never use the crummy camera feature anyway.
It is much easier to discretly snap photos with a camera phone and not be detected than it is to call someone and start describing everything you see I think someone would notice if I came upon some classified documents and began reading them aloud into my phone.
After all, if a picture is worth a thousand words you could always transmit the same info as the camera in a few minutes
This relies on the faulty assumtion that an old folk saying is true.
Am I the only one who thinks that calling "keys slanted toward the center" an innovation and awarding it a patent is kinda dumb? Is this really what passes for government protected innovation these days? Sad, really sad.
The only way I was able to get a half-way decent phone was to buy one with a camera in it. It's an interesting little gimick but drains the battery quickly, so I almost never use it.
Not only that, but some of us routinly enter secure facilities (DoD contractors and such) that simply do not allow cameras of ANY type. It is a massive pain to have to leave my cell phone at the front desk.
You are talking about judiciary, I was talking about legislation. I agree with your points but my point is that it is not "unusual" or "egotistical" for the US Legislative system to make laws that only apply to US citizens, as the previous poster seemed to be indicating.
I take it this idiot senator believes all the world's coders live in the US, right? And that Russians and Poles and Brits and Aussies are all too backward to write P2P code..?
No but they do not have legal jurisdiction to pass laws to govern people from these countries. You might be surprised to learn that in most countries, laws are drafted and passed to apply to only the people in said country. Along the same lines, individual states in the US have specific laws that do not apply to people in other states.
Hollywood bought and paid for the property rights to film-making
The true irony of course is that Hollywood exists only because the filmmakers who first set up shop there did so to be as far away from Thomas Edison as possible. Since Edison owned the intellectual property (patents) on making motion pictures and they wanted to produce movies illegaly without paying him royalties.
So what better group to become the strongest proponants for strict property rights?
For what it's worth - I currently run Warcraft III, Quake III: Arena in native and Unreal Tournament 2004 on an emac 1.25 which is virtually identical to the mac mini. With a gig of RAM loaded up, the emac handles all 3 superbly.
I played Warcraft III, Quake III: Arena, Halo, Diablo II, and Civ III with no problems on my 800MHz Flat Panel iMac. I think I had to tone down some of the screen effects in Halo, but otherwise everything worked suprisingly well.
Agreed, 1GB ram is necessary. It shocks me that Apple sells machines with less than 512 preloaded. Fortunately ram is somewhat cheap, just don't buy it from Apple.
In my short experience as a motorcyclist, I have learned to be much more wary of women and elderly drivers than any other demographic. No scientific study, no raw data to back this up, just my experience with close calls, ran stopsigns, sudden turns with no signals, and seeing who pays attention to the road and who doesn't.
I have already been hit once by a soccer Mom in a minivan who decided a red light meant talk to her daughter in the passenger seat and do not watch where you are going. About a dozen or so close calls with this kind of situation have reinforced this view.
Am I being sexist for thinking this way? Perhaps, but since all evidence I have gathered supports it, I will continue to asses situations this way when I am on the road. It has kept me out of some accidents so far.
This touches on it. I used to have some proof of concept code that did this but I cannot find it:(
Basically do a regular old DCE-RPC call to a DCOM server and just do not use any of the DCE provided security or directory calls and it will work. (at least it did in the NT 4.0 days, I'm not 100% sure about today)
the lock-out you describe was done by _microsoft_ as part of their use of kerberos in "active directory": they used the "application specific" field in order to save on round-trips (and then extended their bloody SMB protocol in order to _add_ a couple. bastards).
And now that it is open sourced, perhaps someone (or me, whatever:) can get around to fixing the screwy case issue with dce cell naming that prevents us from making a one way trust setup between active directory and dce (having the ms kdc being a slave to the dce kdc)
AFS, OpenAFS, DFS - it's a long long story for another day, methinks:)
We (PSU) being to my knowledge the largest and most active DCE shop still around (130,000+ active principals, custom designed DCE-RCP apps everywhere and I KNOW I am the only person to port a custom full featured DCE-RPC server to OS/390, lots of stuff built on top of DFS, etc), are unfortunately really aware of this. NFSv4, while supporting K5 is a joke for what we need, OpenAFS I believe still uses some kludgy K5->K4 conversion internally and is missing byte level locking, some of the replication, and file level ACL features we use and love, and SANS are kind of a joke too.
*sigh* I'm glad this happened, but we REALLY could have used it a year or two ago. There is a lot of work ahead for the community to make this useful.
DCOM is literally a reverse engineered DCE-RCP, to the point where it is wire compatible with it. DCE-RPC is an authenticated RPC which uses KerberosV for the authentication token, and since DCE puts group information into the ePac (like MS did with their Kerb) it also allows for group based authorization at the RPC level.
Microsoft ripped out all the security (who is suprised?) and called it DCOM. Of course the idl compilers are different so they are not compatible at that level, but once compiled, a DCE rcp client/server can talk to a DCOM client/server, assuming you are not trying to use any of the security built into the DCE-RPC
DCE is the core middleware at PSU and has been for years. Your access account you use for everything is a DCE principle (Which ends up being KerberosV + some stuff).
The PASS filespace is DFS which is the distributed filesystem componant of DCE. Webmail and the Portal (wehmail.psu.edu portal.psu.edu) are built on top of the filesystem.
eLion is a client server application that uses Smalltalk on the web front end and Natural/Adabas for the backend (running on an IBM zSeries mainframe). A custom in house developed DCE RCP middleware mechanism is used to get them to talk to each other. This lets us do dynamic load balancing without special hardware, adding and removeing backend servers and automatically have them put into the locally managed "server pool" on each web server front end, and validating the calls on the backend via the kerberos credentials of both the web server and the user making the call. (can you guess what I did for the last 3 years?)
Now, IBM has end of lifed DCE, which screws us (and several National Labs, Merck, Cal Poly Tech, Buffalo U, Pain Webber, a handful of other universities, etc). PSU is migrating off of it to MIT KerberosV, LDAP, a "yet to be determined filesystem" (probably OpenAFS, which is a 10 year step backward), and I have absolutely NO idea how we will replace the RPC.
Anyway, PSU people have been using DCE heavily for about a decade and many didn't even know it:) It really was/is a cool and powerful system. Its one major failing it the complexity and effort needed to set it up.
Importantly, it is an extension of KerberosV to store group information in the ePac (like MS Kerb only not digitally signed by a private key that only they can use to lock everyone else out).
It is a secure, authenticated RPC with authorization support.
Built on top of this is a distributed filesystem that is basically 10 years or so ahead of OpenAFS (DFS was the sucessor to AFS way back when, AFS has not nearly caught up in features yet)
It also is a directory system (CDS) which is largly irrelevent now since we have LDAP (both are decended from x.500 and LDAP is heading back towards that more every day)
Why shouldn't the artist's family members benefit from their work and creativity?
Why shouldn't they?! Why should they? How does being related to someone who produced something creative equate to perpetually benefiting from that person's work?
Oh course it should be mandated. It should be mandated that the police and military use them. Until they are reliable enough for those groups, they should not be mandated for anyone.
Isnt it funny how this people in this country dont understand technology that is largely irrelevant to them?
I was not aware that basic technology was not relevent to police forces charged with investigating cybercrime. What an interesting viewpoint. I suppose DEA agents have no reason to learn anything about drugs either.
Yeah, look at what they consider poverty sometime.
Oh no, joe six pack cannot afford a second DVD player, let's all go back to the fuedal system where he will live as a peasent tending a swatch of dirt for his lord.
Yes, there is still poverty, yes, capitalism is not perfect, and yes it needs tweaked to be even more effective and fair, but geeze, get some perspective. What would you propose as a workable alternative?
Slashdot Mirror
Right, because it is always good to piss off security folks at a military facility.
It is useless to me even if I keep it in my pockect. Let's say I put it in my pocket and set it to vibrate. So far so good. Then I get a call. I cannot really answer it without pulling it out and risking that someone notices that it is a camera phone (they look fairly obvious). It would have been much better just to not get the stupid camera phone, I never use the crummy camera feature anyway.
Finkployd
It is much easier to discretly snap photos with a camera phone and not be detected than it is to call someone and start describing everything you see I think someone would notice if I came upon some classified documents and began reading them aloud into my phone.
After all, if a picture is worth a thousand words you could always transmit the same info as the camera in a few minutes
This relies on the faulty assumtion that an old folk saying is true.
Finkployd
Am I the only one who thinks that calling "keys slanted toward the center" an innovation and awarding it a patent is kinda dumb? Is this really what passes for government protected innovation these days? Sad, really sad.
Finkployd
The only way I was able to get a half-way decent phone was to buy one with a camera in it. It's an interesting little gimick but drains the battery quickly, so I almost never use it.
Not only that, but some of us routinly enter secure facilities (DoD contractors and such) that simply do not allow cameras of ANY type. It is a massive pain to have to leave my cell phone at the front desk.
Finkployd
Slashdot is not a single consciousness, everyone here has their own opinions and many times they differ.
I'm excited about this because I am sometimes wary of Sun as a company, their technology usually rocks hard. Solaris 10 looks quite exciting.
Finkployd
You are talking about judiciary, I was talking about legislation. I agree with your points but my point is that it is not "unusual" or "egotistical" for the US Legislative system to make laws that only apply to US citizens, as the previous poster seemed to be indicating.
I take it this idiot senator believes all the world's coders live in the US, right? And that Russians and Poles and Brits and Aussies are all too backward to write P2P code..?
No but they do not have legal jurisdiction to pass laws to govern people from these countries. You might be surprised to learn that in most countries, laws are drafted and passed to apply to only the people in said country. Along the same lines, individual states in the US have specific laws that do not apply to people in other states.
Finkployd
Hollywood bought and paid for the property rights to film-making
The true irony of course is that Hollywood exists only because the filmmakers who first set up shop there did so to be as far away from Thomas Edison as possible. Since Edison owned the intellectual property (patents) on making motion pictures and they wanted to produce movies illegaly without paying him royalties.
So what better group to become the strongest proponants for strict property rights?
Finkployd
For what it's worth - I currently run Warcraft III, Quake III: Arena in native and Unreal Tournament 2004 on an emac 1.25 which is virtually identical to the mac mini. With a gig of RAM loaded up, the emac handles all 3 superbly.
I played Warcraft III, Quake III: Arena, Halo, Diablo II, and Civ III with no problems on my 800MHz Flat Panel iMac. I think I had to tone down some of the screen effects in Halo, but otherwise everything worked suprisingly well.
Agreed, 1GB ram is necessary. It shocks me that Apple sells machines with less than 512 preloaded. Fortunately ram is somewhat cheap, just don't buy it from Apple.
Finkployd
And the slippery slope argument, defined as a logical fallacy as it is
For a logical fallacy, it sure seems to come true a LOT. Someone clearly forgot to tell it that it has been defined as a logical fallacy.
Finkployd
In my short experience as a motorcyclist, I have learned to be much more wary of women and elderly drivers than any other demographic. No scientific study, no raw data to back this up, just my experience with close calls, ran stopsigns, sudden turns with no signals, and seeing who pays attention to the road and who doesn't.
I have already been hit once by a soccer Mom in a minivan who decided a red light meant talk to her daughter in the passenger seat and do not watch where you are going. About a dozen or so close calls with this kind of situation have reinforced this view.
Am I being sexist for thinking this way? Perhaps, but since all evidence I have gathered supports it, I will continue to asses situations this way when I am on the road. It has kept me out of some accidents so far.
Finkployd
Oh ok, I jumped into the DCE game in 2000 or so, so I am missing some of the finer points of the history.
So there was no security in the 1.1 implementation of DCE? when did that come in?
Finkployd
This touches on it. I used to have some proof of concept code that did this but I cannot find it :(
Basically do a regular old DCE-RPC call to a DCOM server and just do not use any of the DCE provided security or directory calls and it will work. (at least it did in the NT 4.0 days, I'm not 100% sure about today)
Finkployd
the lock-out you describe was done by _microsoft_ as part of their use of kerberos in "active directory": they used the "application specific" field in order to save on round-trips (and then extended their bloody SMB protocol in order to _add_ a couple. bastards).
:) can get around to fixing the screwy case issue with dce cell naming that prevents us from making a one way trust setup between active directory and dce (having the ms kdc being a slave to the dce kdc)
:)
And now that it is open sourced, perhaps someone (or me, whatever
AFS, OpenAFS, DFS - it's a long long story for another day, methinks
We (PSU) being to my knowledge the largest and most active DCE shop still around (130,000+ active principals, custom designed DCE-RCP apps everywhere and I KNOW I am the only person to port a custom full featured DCE-RPC server to OS/390, lots of stuff built on top of DFS, etc), are unfortunately really aware of this. NFSv4, while supporting K5 is a joke for what we need, OpenAFS I believe still uses some kludgy K5->K4 conversion internally and is missing byte level locking, some of the replication, and file level ACL features we use and love, and SANS are kind of a joke too.
*sigh* I'm glad this happened, but we REALLY could have used it a year or two ago. There is a lot of work ahead for the community to make this useful.
Finkployd
Entegrity has got it
e xD CE.shtml#osf122
http://support.entegrity.com/private/doclib/ind
Enjoy
D CE.shtml#osf122
http://support.entegrity.com/private/doclib/index
And now we can :) And some of us have been ITCHING to do this.
:)
A KerberosV based, authenticated RPC that can optionally encrypt the RPC call with AES. Yummy
Finkployd
lkcl covered the other stuff, I'll touch on DCOM.
DCOM is literally a reverse engineered DCE-RCP, to the point where it is wire compatible with it. DCE-RPC is an authenticated RPC which uses KerberosV for the authentication token, and since DCE puts group information into the ePac (like MS did with their Kerb) it also allows for group based authorization at the RPC level.
Microsoft ripped out all the security (who is suprised?) and called it DCOM. Of course the idl compilers are different so they are not compatible at that level, but once compiled, a DCE rcp client/server can talk to a DCOM client/server, assuming you are not trying to use any of the security built into the DCE-RPC
Finkployd
DCE is the core middleware at PSU and has been for years. Your access account you use for everything is a DCE principle (Which ends up being KerberosV + some stuff).
:) It really was/is a cool and powerful system. Its one major failing it the complexity and effort needed to set it up.
The PASS filespace is DFS which is the distributed filesystem componant of DCE. Webmail and the Portal (wehmail.psu.edu portal.psu.edu) are built on top of the filesystem.
eLion is a client server application that uses Smalltalk on the web front end and Natural/Adabas for the backend (running on an IBM zSeries mainframe). A custom in house developed DCE RCP middleware mechanism is used to get them to talk to each other. This lets us do dynamic load balancing without special hardware, adding and removeing backend servers and automatically have them put into the locally managed "server pool" on each web server front end, and validating the calls on the backend via the kerberos credentials of both the web server and the user making the call. (can you guess what I did for the last 3 years?)
Now, IBM has end of lifed DCE, which screws us (and several National Labs, Merck, Cal Poly Tech, Buffalo U, Pain Webber, a handful of other universities, etc). PSU is migrating off of it to MIT KerberosV, LDAP, a "yet to be determined filesystem" (probably OpenAFS, which is a 10 year step backward), and I have absolutely NO idea how we will replace the RPC.
Anyway, PSU people have been using DCE heavily for about a decade and many didn't even know it
Finkployd
Quick description. It is a couple of things.
Importantly, it is an extension of KerberosV to store group information in the ePac (like MS Kerb only not digitally signed by a private key that only they can use to lock everyone else out).
It is a secure, authenticated RPC with authorization support.
Built on top of this is a distributed filesystem that is basically 10 years or so ahead of OpenAFS (DFS was the sucessor to AFS way back when, AFS has not nearly caught up in features yet)
It also is a directory system (CDS) which is largly irrelevent now since we have LDAP (both are decended from x.500 and LDAP is heading back towards that more every day)
Finkployd
Why shouldn't the artist's family members benefit from their work and creativity?
Why shouldn't they?! Why should they? How does being related to someone who produced something creative equate to perpetually benefiting from that person's work?
Finkployd
Oh course it should be mandated. It should be mandated that the police and military use them. Until they are reliable enough for those groups, they should not be mandated for anyone.
Finkployd
lynksis
About as clever (or not) as my nick now that I think about it.
Finkployd
Isnt it funny how this people in this country dont understand technology that is largely irrelevant to them?
I was not aware that basic technology was not relevent to police forces charged with investigating cybercrime. What an interesting viewpoint. I suppose DEA agents have no reason to learn anything about drugs either.
Finkployd
Yeah, look at what they consider poverty sometime.
Oh no, joe six pack cannot afford a second DVD player, let's all go back to the fuedal system where he will live as a peasent tending a swatch of dirt for his lord.
Yes, there is still poverty, yes, capitalism is not perfect, and yes it needs tweaked to be even more effective and fair, but geeze, get some perspective. What would you propose as a workable alternative?