Many of the telecommunications giants are in hot water because of overinvestment in data communications infrastructure. When the internet grew commonplace, around '97, a huge investment was made because they were assuming a huge demand. That demand has been largely unrealized, and many carriers have seen difficulties as a result (WorldCom anyone?).
This was also a sample web service application on Microsoft's MSDN. Search for 'Favorites Service' at msdn.microsoft.com.
Re:hmmmm....somehow I am not realy sure about that
on
Bruce Perens Canned by HP
·
· Score: 3, Insightful
For the most part, you're right. However, many companies end up with large management infrastructures designed for one platform or another. Also, IT departments tend to be trained on a handful of platforms.
For every additional platform a company is required to support, significant additional cost may be incurred. For example, perhaps the poster's company already has all of its web apps running on an Apache/PHP/Linux platform. They may have decided that it does not make sense to support an additional platform for their n'th web app. In this case, a requirement of "must run on Linux" might be more reasonable.
This may be obvious, but it's important that the candidate has experience with at least some of the technologies you will be using. As a Windows coder (it pays the bills, folks), I constantly deal with folks who have decent pure programming skills, but do not understand enough about the platform we're dealing with.
For example, if your candidate has years of experience working with Oracle and your app is being built with MySQL, you need to be aware of the risks. It is entirely possible that the employee might design in features that are missing or difficult to build using MySQL but were simple in Oracle. By the same token, they may not understand the performance characteristics of the available ODBC drivers, or whatever.
This is particularly important when using large libraries like GTK,.Net Framework, etc. We've all seen folks reinventing the wheel when the widget they needed was available to them already.
Of course, this is only one concern among many. In certain situations, where something really new is being developed, cross-pollinating different types of developers can be helpful. However, for most of the corporate apps being built today (content management, ERP, etc.), risk management is likely to be one of your highest priorities.
I remember this was one of the arguments for the use of the "LoJack" system. The idea was that car alarms and other visible means of theft deterrent are actually anti-social. A car thief finds a car with the club on it, he goes to the next car in line. The owner of the first car has effectively passed his misfortune onto someone else. However, with a hidden system like the LoJack, the criminal was caught and tossed in jail where he belongs. Society as a whole receives a benefit.
Of course, I'm not a big fan of carrying a tracking device.
It is important to note, that your XP box will actually synch with your domain controller(s) if it is part of a domain. If the time is out by more than 5 minutes (by default), your Kerberos tickets can be expired before you get them.
That's interesting you mention bandwidth hogs. I bet most ISP's would love to get rid of their top 1-2% bandwidth users. These guys usually cost broadband ISP's serious money.
Re:This is what they should do, but still won't wo
on
RIAA to Sue You Now
·
· Score: 2
If you are right, there won't be a movie industry. People don't care enough to make it worth parting with their hard-earned money. People are shortsighted about their spending. If a consumer industry is unable to see that, they will fail.
If we're lucky, it will morph into an industry that takes into account the new technology.
If you're saying what I think you're saying, you would be liable for simply copying (or moving) copyrighted MP3's between locations on your filesystem.
Maybe I misunderstood. I don't think that's right. If that were the case, then copyrighted MP3's would be illegal altogether, unless you could prove that it was specifically authorized by the copyright holder.
Can somebody please just come up with a convenient, inexpensive storage medium that allows me to back up these giant (~100GB) hard drives. I haven't had a decent backup medium in years and the commercial stuff is far too expensive for the average consumer.
I agree with you, and was pleased to discover that none of my boxes were vulnerable. Nonetheless, as we know, most IIS boxes out there are still in their default configuration and a good number of their admins don't even know they're running. Each one of these boxes is a potential DDOS client.
Since this is a mathematics/computation type topic, I can't believe no one mentioned this. You can easily represent the universe in a much smaller place. Let u = The Universe. Done!
The hard part is finding other things u is equivalent to.
How the hell is this a bug? If you're an idiot and place an unsecured SQL server out on the internet where anyone can log onto it, what the hell do you expect?
I can sort of see where you're coming from. From a scientific point of view, it probably makes very little difference. In fact, as mentioned in the article, being able to map the genotype to the phenotype of a known, living specimen may be mildly helpful.
Nonetheless, I can understand the loss of trust some shareholders and collaborators might be feeling. Dr. Venter acted dishonestly and in direct violation of the instructions given him. This does not speak well of his character.
On the other hand, it seems he spearheaded one of the most significant scientific expeditions of our time, and on a very impressive schedule. Maybe a little eccentricity is manageable given the results. Each shareholder and colleague will have to determine for themselves their tolerance for this sort of thing.
As an aside, a few years back I was lucky enough to work with some excellent geneticists, neuroscientists, and neurologists in the field of Parkinson's disease. In order to reach the highest levels of their profession, these folks have had to jump through many hoops related to funding, collaboration, and peer review. Justly or unjustly, they tend to be very proud of their accomplishments with egos to match. I think it's something you have to learn to deal with if you want to play the game at this level.
Ok. So Microsoft is no bunch of angels. I think everyone can agree with that. But does Sun have to continue sucking? I mean, I hear far more about their lawsuits with Microsoft than their new technologies. Java is great, but a new language isn't going to save the world -- especially one with licensing easily as restrictive as Microsoft's.
Thank you for listening.:)
So we pass judgement on actions rather than some all-encompassing love/hatred. We like some things they've done, we don't like others. Seems pretty reasonable to me.
Its only a matter of time 'til video becomes as commonplace as MP3's on our drives. 100 Gigs is what...20 movies??? I don't see my appetite for disk space slowing down any time soon.
Hmmm...video; logfiles that don't roll over - ever; online network backup... I'm sure to figure out a way to fill that terabyte.:)
What's so hard about that? And if you install on a FAT partition, well, I think you have a spacing problem (ie. the space between keyboard and chair.:).
Does anyone else think it's ironic to hear an American complain about Canadian patriotism?
Most citizens of industrialized countries are patriotic to some degree, and often for good reason. To hear an American (I'm assuming) complain about it is pretty funny, though. Americans practically invented patriotism.
You're missing the point. What if you don't completely trust the distributor? Perhaps you believe that the distributor will sometimes work with law enforcement or other parties to compromise your computer. In that case you can no longer rely solely on the signature of the distributor.
If you think that's overly paranoid, your job just got a whole lot easier.:)
I wonder about a 'trust metric'. Not so different from Advogato or the way PGP trusts keys. You start with a list of public keys you trust and their individual levels of trustworthiness. You can then calculate the relative level of trustworthiness based upon the signatures attached to a resource (software package, etc.) and your cumulative level of trust in those sigs. Trust can also be indirect. For example, if a package is not signed directly by someone you trust, but signed by many people they trust, you may calculate some fractional trust based upon that fact. There is no central authority, which makes it much more difficult for a third party to compromise.
As with all trust systems, you must completely trust your private key and the software used to calculate the trust metric. Given that, though, you can then extend that trust to many unfamiliar resources. The best thing about this is that the academic and technical know-how to implement this system is well understood and reasonable to implement. The worst thing, of course, is that it requires each individual to be vigilant about who they trust and not just blindly believe an authoritative third party (aka Verisign).
For an interesting discussion, please see Advogato's explanation of their trust metric.
Y'know, you're right. I often forget about 9x and inexperienced users. I just assume that those people just know they're insecure. Joe Blow user doesn't know what a patch is. I doubt he worries too much about a mime-type vulnerability in his web browser.
Slashdot Mirror
Many of the telecommunications giants are in hot water because of overinvestment in data communications infrastructure. When the internet grew commonplace, around '97, a huge investment was made because they were assuming a huge demand. That demand has been largely unrealized, and many carriers have seen difficulties as a result (WorldCom anyone?).
This was also a sample web service application on Microsoft's MSDN. Search for 'Favorites Service' at msdn.microsoft.com.
For the most part, you're right. However, many companies end up with large management infrastructures designed for one platform or another. Also, IT departments tend to be trained on a handful of platforms. For every additional platform a company is required to support, significant additional cost may be incurred. For example, perhaps the poster's company already has all of its web apps running on an Apache/PHP/Linux platform. They may have decided that it does not make sense to support an additional platform for their n'th web app. In this case, a requirement of "must run on Linux" might be more reasonable.
This may be obvious, but it's important that the candidate has experience with at least some of the technologies you will be using. As a Windows coder (it pays the bills, folks), I constantly deal with folks who have decent pure programming skills, but do not understand enough about the platform we're dealing with.
.Net Framework, etc. We've all seen folks reinventing the wheel when the widget they needed was available to them already.
For example, if your candidate has years of experience working with Oracle and your app is being built with MySQL, you need to be aware of the risks. It is entirely possible that the employee might design in features that are missing or difficult to build using MySQL but were simple in Oracle. By the same token, they may not understand the performance characteristics of the available ODBC drivers, or whatever.
This is particularly important when using large libraries like GTK,
Of course, this is only one concern among many. In certain situations, where something really new is being developed, cross-pollinating different types of developers can be helpful. However, for most of the corporate apps being built today (content management, ERP, etc.), risk management is likely to be one of your highest priorities.
I remember this was one of the arguments for the use of the "LoJack" system. The idea was that car alarms and other visible means of theft deterrent are actually anti-social. A car thief finds a car with the club on it, he goes to the next car in line. The owner of the first car has effectively passed his misfortune onto someone else. However, with a hidden system like the LoJack, the criminal was caught and tossed in jail where he belongs. Society as a whole receives a benefit. Of course, I'm not a big fan of carrying a tracking device.
Rest in peace, Professor Dijkstra. You have given us much and we thank you.
It is important to note, that your XP box will actually synch with your domain controller(s) if it is part of a domain. If the time is out by more than 5 minutes (by default), your Kerberos tickets can be expired before you get them.
That's interesting you mention bandwidth hogs. I bet most ISP's would love to get rid of their top 1-2% bandwidth users. These guys usually cost broadband ISP's serious money.
If we're lucky, it will morph into an industry that takes into account the new technology.
If you're saying what I think you're saying, you would be liable for simply copying (or moving) copyrighted MP3's between locations on your filesystem. Maybe I misunderstood. I don't think that's right. If that were the case, then copyrighted MP3's would be illegal altogether, unless you could prove that it was specifically authorized by the copyright holder.
Can somebody please just come up with a convenient, inexpensive storage medium that allows me to back up these giant (~100GB) hard drives. I haven't had a decent backup medium in years and the commercial stuff is far too expensive for the average consumer.
I agree with you, and was pleased to discover that none of my boxes were vulnerable. Nonetheless, as we know, most IIS boxes out there are still in their default configuration and a good number of their admins don't even know they're running. Each one of these boxes is a potential DDOS client.
The hard part is finding other things u is equivalent to.
I didn't need all that karma anyway.
I can sort of see where you're coming from. From a scientific point of view, it probably makes very little difference. In fact, as mentioned in the article, being able to map the genotype to the phenotype of a known, living specimen may be mildly helpful.
Nonetheless, I can understand the loss of trust some shareholders and collaborators might be feeling. Dr. Venter acted dishonestly and in direct violation of the instructions given him. This does not speak well of his character.
On the other hand, it seems he spearheaded one of the most significant scientific expeditions of our time, and on a very impressive schedule. Maybe a little eccentricity is manageable given the results. Each shareholder and colleague will have to determine for themselves their tolerance for this sort of thing.
As an aside, a few years back I was lucky enough to work with some excellent geneticists, neuroscientists, and neurologists in the field of Parkinson's disease. In order to reach the highest levels of their profession, these folks have had to jump through many hoops related to funding, collaboration, and peer review. Justly or unjustly, they tend to be very proud of their accomplishments with egos to match. I think it's something you have to learn to deal with if you want to play the game at this level.
Ok. So Microsoft is no bunch of angels. I think everyone can agree with that. But does Sun have to continue sucking? I mean, I hear far more about their lawsuits with Microsoft than their new technologies. Java is great, but a new language isn't going to save the world -- especially one with licensing easily as restrictive as Microsoft's. Thank you for listening. :)
So we pass judgement on actions rather than some all-encompassing love/hatred. We like some things they've done, we don't like others. Seems pretty reasonable to me.
Its only a matter of time 'til video becomes as commonplace as MP3's on our drives. 100 Gigs is what...20 movies??? I don't see my appetite for disk space slowing down any time soon.
Hmmm...video; logfiles that don't roll over - ever; online network backup... I'm sure to figure out a way to fill that terabyte. :)
C:> CACLS *.*
What's so hard about that? And if you install on a FAT partition, well, I think you have a spacing problem (ie. the space between keyboard and chair. :).
Does anyone else think it's ironic to hear an American complain about Canadian patriotism?
Most citizens of industrialized countries are patriotic to some degree, and often for good reason. To hear an American (I'm assuming) complain about it is pretty funny, though. Americans practically invented patriotism.
...end offtopic rant.
You're missing the point. What if you don't completely trust the distributor? Perhaps you believe that the distributor will sometimes work with law enforcement or other parties to compromise your computer. In that case you can no longer rely solely on the signature of the distributor.
If you think that's overly paranoid, your job just got a whole lot easier. :)
I wonder about a 'trust metric'. Not so different from Advogato or the way PGP trusts keys. You start with a list of public keys you trust and their individual levels of trustworthiness. You can then calculate the relative level of trustworthiness based upon the signatures attached to a resource (software package, etc.) and your cumulative level of trust in those sigs. Trust can also be indirect. For example, if a package is not signed directly by someone you trust, but signed by many people they trust, you may calculate some fractional trust based upon that fact. There is no central authority, which makes it much more difficult for a third party to compromise.
As with all trust systems, you must completely trust your private key and the software used to calculate the trust metric. Given that, though, you can then extend that trust to many unfamiliar resources. The best thing about this is that the academic and technical know-how to implement this system is well understood and reasonable to implement. The worst thing, of course, is that it requires each individual to be vigilant about who they trust and not just blindly believe an authoritative third party (aka Verisign).
For an interesting discussion, please see Advogato's explanation of their trust metric.
Y'know, you're right. I often forget about 9x and inexperienced users. I just assume that those people just know they're insecure. Joe Blow user doesn't know what a patch is. I doubt he worries too much about a mime-type vulnerability in his web browser.