No, it's 1 table per last name. Each table contains 3 fields: first name, middle name, suffix name. The tables are indexed by middle name, except for the jones table - it's indexed on the suffix name.
Once upon a time in the US, it was generally considered a right for individuals to use public roads for personal travel, whereas commercial use of public roads was what was considered a privilege.
Which happens to be some company which has no idea, nor is in any way concerned, with what corp. officer, employee, friend of either, etc. was driving the vehicle because they don't keep such records and have a really good insurance policy...
Not completely foolproof I'm sure, but quite a while ago an idea I came up with was to use something like a signed PGP key ID. Similar to how PGP is used for email, but applied to an individuals' personal identification info.
Use a USB/RFID/whatever device that contains your info, encrypted with a public and private key (maybe multiple keys to allow for differing levels of info access). The public key is signed by whatever entity you have otherwise provided sufficient proof to match the ID. Alternately, the entity in question can choose to accept that an ID which has it's public key signed by say some 'government authority' is sufficient. Basically the whole web of trust thing.
At this point there's two options I suppose. 1.)the data held by the entity in question does not contain any identifying info at all, only a public PGP key - all ID data must be obtained from the person with the ID device at the time of interaction. The reading terminal or whatever would have to be one that did not store the data, but only showed it on a screen (some standalone embedded device or something).
2.)Only a chosen set of info held on the device is made available to the entity based on which private key is used to provide it.
This would cover the something you have and something you know, but could also implement a biometric to include the something you are. As I understand it, this is similar how the new RFID passports work. Though I'm sure they are nowhere near as secure as using something like this idea. I think the real key to a ID system that can be relied on as far as 'this person is who they say they are' is the web of trust concept.
Some years ago I dealt with several databases where the primary key was the student's SSN. Most used a separate field as the primary key and there were new db systems in the works when I left, but at least not too long ago there were still a handful around. I would suspect there are still other systems around that for whatever reason (expedience, incompetence) use an SSN as a primary key. It was only back in 2005 that CPSR was reiterating that SSN's are bad as db keys, so it wouldn't seem too much of a stretch to think that there are still dumb db designers out there.
I never liked the fact that SSN's were kept in the student databases I worked with at all, much less were used as an ID, but some stupid federal programs require that info to be available for eligibility (eg. free/reduced lunch).
I agree with the GP that SSN's should only be stored by the SSA. However, I'd go one step further and say that they shouldn't exist at all anymore - the SS program itself has outlived its' usefulness, but that's another issue.
IMO, the IRS using SSA's as TIN's was rather stupid, though I'm sure more than one person thought it was a good idea at the time. Add in the ubiquitous use of the SSN as a 'positive identifier' by every entity and its' sister organization and you have created an environment where ID theft is so simple that any common street thug can do it. SSN's are useless as a unique positive identifer, but it still amazes me that public and private entities accept one as a valid ID.
Make SSN's completely meaningless and ID theft becomes at least a little bit harder to accomplish, and the risk/reward ratio isn't nearly as attractive. The problem is this would require so many changes on so many levels of government and the private sector that it's almost mind boggling.
I'm a half mile from a Verizon fiber line, problem is it's in Delaware and I'm in Maryland. I think my only choice is to talk a neighbor in DE into getting the fiber hookup and running my own last (half-)mile of fiber or wireless through trees. In any case, it would seem I'm looking at a couple grand just to be able to hook into it.:(
While I have yet to try talking to Verizon about it, I seriously doubt I could convince them to take my money for any solution other than the neighbor idea.
I was wondering what the source was for the determination myself, but didn't care enough to look into it.
The fact that it's based on "limited evidence in experimental animals" pretty much makes it a worthless inclusion. Unless these experimental animals were, in fact, humans, the evidence means nothing more than gallium arsenide can be used to induce the growth of abnormal cells in or is toxic to [insert experimental animals tested here].
But the job of a pen tester does include looking for any possible ways of getting past the defenses currently implemented in order to determine what needs to be prevented.
Women can have pretty elaborate means of preventing penetration, depending on the woman/relationship and what you may have done to piss her off lately.
The free cert from Startcom, mentioned somewhere above, is in the list of CA's included with Firefox.
The scary Firefox warning is really the only reason that a cert was purchased for a server that I was going to use a self-signed cert on. The high probability that many users would get that warning is just not cool. Otherwise, a self-signed cert would be just fine on this particular server for all intents and purposes (or for intensive purposes even).
The only thing about Startcom is that they're not (yet?) included as a CA in Opera or IE, but the warnings in those browsers are still of the old plain jane basic 'are you sure you know what you're doing?' type.
Is it really using a pizza oven? Or is it using a Pizza Box oven?
Seriously, I have no idea how low of a temp is required for this process, but I would suspect that a solar oven could possibly do the job. A typical pizza oven is, what, somewhere in the 400 degrees F range? I've seen pretty basic solar ovens that reportedly get quite close to that, so I don't think it's entirely out of the question.
I'm a little uncertain as to why you think private insurance provides more efficient health care? If anything, private insurance makes more profit by denying as much health care as possible.
A little over-generalization there I think. Private insurance in the form of managed care such as HMO's certainly fits your categorization. When I had HMO coverage I spent more time convincing them (the insurance companies I had coverage with) to pay for care that was cleary covered by the policy than I ever did in actually receiving health care. IIRC, a few got in trouble years ago for having official policies of 'deny coverage of any claim' first, argue with the policyholder, and as a last resort grudgingly agree and pay the provider when it is covered by the policy.
OTOH, Major Medical insurance not so high on the deny coverage for profits scale, but it depends on the provider since some are quite picky in what they cover while there are a few that have very little restrictions. I'm sure they may be a handful of other private insurance plans that aren't so bad, but I'm just guessing.
Obviously, the most efficient health care is obtained by paying cash directly to the provider of said care (eg. your doctor). I suppose HSA's would really not be considered health insurance per se. I haven't looked at options lately, but I would suspect that the best solution for health care would be the combination of a major medical plan and an HSA.
But then, I also tend to believe that the medical field has largely been corrupted by the pharmaceutical industry, so what do I know?
I would suggest a linksys-WRT54GL/Buffalo/Asus/etc. wifi router running OpenWRT. If you're only allowing to a relative handful of sites (~25), iptables rules wouldn't be too cumbersome. Add on a captive portal package (wifidog, nocat, etc.) and you're good. Though the basic captive portal redirection could be handled simply with iptables too, but one of the packages could make things easier to administer/monitor. I know that wifidog uses libhttpd as a web server that runs on the router, so you could run the captive page on the router rather than using an internal web server for it and opening up a hole into the network you probably don't want that accessible from the wifi.
Going the route suggested by others of putting squid (which can offer the added benefit of caching thus taking a bit of the load off the ISP bandwidth usage) and linux on pretty much any old PC is certainly another option. There are several firewall distros that would make this fairly simple. However in this case, you would need to add a wireless card to the box or use an AP. If you don't already have these laying around, then from the cost perspective a router that can be flashed with OpenWRT, DD-WRT, etc. would make more sense.
Maybe I'm missing something, but how would one use DNS to get around iptables rules which only allow packets to specified IP addresses? If there's a concern then I suppose using something like dnsmasq and only allowing the firewall to contact external (or internal even) DNS servers is possible. IOW, don't allow DNS queries from clients to pass the firewall.
BTW/Disclaimer/what-have-you, I do development work (router firmware) for an ad-based free hotspot company.
If my monthly music fee is $60, and I only listen to Radiohead and NIN (equally), then they each get $30. If I listen to ten different bands, they each get $6. The way it's set up now (iTunes or buying CDs), NIN only gets my money if I buy their album. If I buy more albums, then I pay more money.
The way the bands win in this plan is that they get paid when someone listens to their music, whether or not someone buys their album.
If this blanket licensing scheme is anything like the existing blanket license that practically anyplace that publicly provides music (eg. restaurant, bar, club, etc.) is forced to pay to BMI/ASCAP/(RIAA?)/et al. or face the fines, I think it unlikely that any particular artist will receive their "fair-share" of the so-called royalty pot.
And that overhead can be quite noticeable to a user on a satellite link compared to regular http connections. Not that it's so much the overhead as it is the nature of satellite links.
It can be a real PITA when you use a bunch of various encrypted connections quite often. Personally, I wouldn't use that as an excuse to not use SSL, but I could certainly see why a service such as gmail would opt not to use it by default to save on what adds up to quite a few CPU cycles.
Gas is cheap in NJ because half of the State is refineries and storage tanks, keeps the cost down.
Of course I'm joking, but based on my experience in drafting and design work years ago for a tank company, all that exists in Bayonne and Carteret are oil tanks and I'm sure I only did the drawings for a fraction of them.:)
Slashdot Mirror
No, it's 1 table per last name. Each table contains 3 fields: first name, middle name, suffix name. The tables are indexed by middle name, except for the jones table - it's indexed on the suffix name.
Once upon a time in the US, it was generally considered a right for individuals to use public roads for personal travel, whereas commercial use of public roads was what was considered a privilege.
Which happens to be some company which has no idea, nor is in any way concerned, with what corp. officer, employee, friend of either, etc. was driving the vehicle because they don't keep such records and have a really good insurance policy...
You can do that!?... with a browser?
And all this time I've been blocking ads to all the machines on my network with a squid proxy... oh wait
Not completely foolproof I'm sure, but quite a while ago an idea I came up with was to use something like a signed PGP key ID. Similar to how PGP is used for email, but applied to an individuals' personal identification info.
Use a USB/RFID/whatever device that contains your info, encrypted with a public and private key (maybe multiple keys to allow for differing levels of info access). The public key is signed by whatever entity you have otherwise provided sufficient proof to match the ID. Alternately, the entity in question can choose to accept that an ID which has it's public key signed by say some 'government authority' is sufficient. Basically the whole web of trust thing.
At this point there's two options I suppose. 1.)the data held by the entity in question does not contain any identifying info at all, only a public PGP key - all ID data must be obtained from the person with the ID device at the time of interaction. The reading terminal or whatever would have to be one that did not store the data, but only showed it on a screen (some standalone embedded device or something). 2.)Only a chosen set of info held on the device is made available to the entity based on which private key is used to provide it.
This would cover the something you have and something you know, but could also implement a biometric to include the something you are. As I understand it, this is similar how the new RFID passports work. Though I'm sure they are nowhere near as secure as using something like this idea. I think the real key to a ID system that can be relied on as far as 'this person is who they say they are' is the web of trust concept.
It's all good that they are at least using machines with PCI but aren't they a little behind the times, I mean come on, we're using PCIe and AGP now.
Some years ago I dealt with several databases where the primary key was the student's SSN. Most used a separate field as the primary key and there were new db systems in the works when I left, but at least not too long ago there were still a handful around. I would suspect there are still other systems around that for whatever reason (expedience, incompetence) use an SSN as a primary key. It was only back in 2005 that CPSR was reiterating that SSN's are bad as db keys, so it wouldn't seem too much of a stretch to think that there are still dumb db designers out there.
I never liked the fact that SSN's were kept in the student databases I worked with at all, much less were used as an ID, but some stupid federal programs require that info to be available for eligibility (eg. free/reduced lunch).
I agree with the GP that SSN's should only be stored by the SSA. However, I'd go one step further and say that they shouldn't exist at all anymore - the SS program itself has outlived its' usefulness, but that's another issue.
IMO, the IRS using SSA's as TIN's was rather stupid, though I'm sure more than one person thought it was a good idea at the time. Add in the ubiquitous use of the SSN as a 'positive identifier' by every entity and its' sister organization and you have created an environment where ID theft is so simple that any common street thug can do it. SSN's are useless as a unique positive identifer, but it still amazes me that public and private entities accept one as a valid ID.
Make SSN's completely meaningless and ID theft becomes at least a little bit harder to accomplish, and the risk/reward ratio isn't nearly as attractive. The problem is this would require so many changes on so many levels of government and the private sector that it's almost mind boggling.
I'm a half mile from a Verizon fiber line, problem is it's in Delaware and I'm in Maryland. I think my only choice is to talk a neighbor in DE into getting the fiber hookup and running my own last (half-)mile of fiber or wireless through trees. In any case, it would seem I'm looking at a couple grand just to be able to hook into it. :(
While I have yet to try talking to Verizon about it, I seriously doubt I could convince them to take my money for any solution other than the neighbor idea.
I was wondering what the source was for the determination myself, but didn't care enough to look into it.
The fact that it's based on "limited evidence in experimental animals" pretty much makes it a worthless inclusion. Unless these experimental animals were, in fact, humans, the evidence means nothing more than gallium arsenide can be used to induce the growth of abnormal cells in or is toxic to [insert experimental animals tested here].
But the job of a pen tester does include looking for any possible ways of getting past the defenses currently implemented in order to determine what needs to be prevented.
Women can have pretty elaborate means of preventing penetration, depending on the woman/relationship and what you may have done to piss her off lately.
Carcinogen != causes cancer
But hey, the theory of metastasis is still used as a justification for chemotherapy so why argue semantics?
Years ago, when I lived at home...
So you no longer live at home now? Taken up the nomad lifestyle, eh?
The free cert from Startcom, mentioned somewhere above, is in the list of CA's included with Firefox.
The scary Firefox warning is really the only reason that a cert was purchased for a server that I was going to use a self-signed cert on. The high probability that many users would get that warning is just not cool. Otherwise, a self-signed cert would be just fine on this particular server for all intents and purposes (or for intensive purposes even).
The only thing about Startcom is that they're not (yet?) included as a CA in Opera or IE, but the warnings in those browsers are still of the old plain jane basic 'are you sure you know what you're doing?' type.
So they're following the example of various US news media outlets now? That's interesting.
Is it really using a pizza oven? Or is it using a Pizza Box oven?
Seriously, I have no idea how low of a temp is required for this process, but I would suspect that a solar oven could possibly do the job. A typical pizza oven is, what, somewhere in the 400 degrees F range? I've seen pretty basic solar ovens that reportedly get quite close to that, so I don't think it's entirely out of the question.
I'm a little uncertain as to why you think private insurance provides more efficient health care? If anything, private insurance makes more profit by denying as much health care as possible.
A little over-generalization there I think. Private insurance in the form of managed care such as HMO's certainly fits your categorization. When I had HMO coverage I spent more time convincing them (the insurance companies I had coverage with) to pay for care that was cleary covered by the policy than I ever did in actually receiving health care. IIRC, a few got in trouble years ago for having official policies of 'deny coverage of any claim' first, argue with the policyholder, and as a last resort grudgingly agree and pay the provider when it is covered by the policy.
OTOH, Major Medical insurance not so high on the deny coverage for profits scale, but it depends on the provider since some are quite picky in what they cover while there are a few that have very little restrictions. I'm sure they may be a handful of other private insurance plans that aren't so bad, but I'm just guessing.
Obviously, the most efficient health care is obtained by paying cash directly to the provider of said care (eg. your doctor). I suppose HSA's would really not be considered health insurance per se. I haven't looked at options lately, but I would suspect that the best solution for health care would be the combination of a major medical plan and an HSA.
But then, I also tend to believe that the medical field has largely been corrupted by the pharmaceutical industry, so what do I know?
I would suggest a linksys-WRT54GL/Buffalo/Asus/etc. wifi router running OpenWRT. If you're only allowing to a relative handful of sites (~25), iptables rules wouldn't be too cumbersome. Add on a captive portal package (wifidog, nocat, etc.) and you're good. Though the basic captive portal redirection could be handled simply with iptables too, but one of the packages could make things easier to administer/monitor. I know that wifidog uses libhttpd as a web server that runs on the router, so you could run the captive page on the router rather than using an internal web server for it and opening up a hole into the network you probably don't want that accessible from the wifi.
Going the route suggested by others of putting squid (which can offer the added benefit of caching thus taking a bit of the load off the ISP bandwidth usage) and linux on pretty much any old PC is certainly another option. There are several firewall distros that would make this fairly simple. However in this case, you would need to add a wireless card to the box or use an AP. If you don't already have these laying around, then from the cost perspective a router that can be flashed with OpenWRT, DD-WRT, etc. would make more sense.
Maybe I'm missing something, but how would one use DNS to get around iptables rules which only allow packets to specified IP addresses? If there's a concern then I suppose using something like dnsmasq and only allowing the firewall to contact external (or internal even) DNS servers is possible. IOW, don't allow DNS queries from clients to pass the firewall.
BTW/Disclaimer/what-have-you, I do development work (router firmware) for an ad-based free hotspot company.
There goes the planet.
So all code using *printf functions will be useless!?
What ever will we use to represent strings? ZOMG!1
If my monthly music fee is $60, and I only listen to Radiohead and NIN (equally), then they each get $30. If I listen to ten different bands, they each get $6. The way it's set up now (iTunes or buying CDs), NIN only gets my money if I buy their album. If I buy more albums, then I pay more money. The way the bands win in this plan is that they get paid when someone listens to their music, whether or not someone buys their album.
If this blanket licensing scheme is anything like the existing blanket license that practically anyplace that publicly provides music (eg. restaurant, bar, club, etc.) is forced to pay to BMI/ASCAP/(RIAA?)/et al. or face the fines, I think it unlikely that any particular artist will receive their "fair-share" of the so-called royalty pot.
I'm sure there are numerous sources in the industry that have covered how unfair blanket licensing particularly, not to mention other practices in the industry, are to the artists. For example, three time platinum artist(s?) Stiffff Kitties claim to have received absolutely zero in royalties from their albums. An interesting read on licensing/roylaties, albeit rather dated, by Harvey Reid can be found here.
And that overhead can be quite noticeable to a user on a satellite link compared to regular http connections. Not that it's so much the overhead as it is the nature of satellite links.
It can be a real PITA when you use a bunch of various encrypted connections quite often. Personally, I wouldn't use that as an excuse to not use SSL, but I could certainly see why a service such as gmail would opt not to use it by default to save on what adds up to quite a few CPU cycles.
What's up?
Up is a word used to indicate direction, particularly the one being above something, but that's not important right now...
Gas is cheap in NJ because half of the State is refineries and storage tanks, keeps the cost down.
Of course I'm joking, but based on my experience in drafting and design work years ago for a tank company, all that exists in Bayonne and Carteret are oil tanks and I'm sure I only did the drawings for a fraction of them. :)
One species' weed is another species' diet.
Or something like that.
I can see the t-shirts on ThinkGeek (which shares a corporate overlord with Slashdot) now...
God is my debugger.