TI does not report corruption level, it reports corruption perception level. If we perceive that it's getting worse, it can be because it's actually getting worse, or it can be because we know better than before.
> We are all in a cave, strapped to a stone. Everything is an illusion.
That's what Russian propaganda wants you to believe, and you are spreading it, being a Putin's "useful idiot". According to this anonymous study, of course.
Business which can't hire a programmer today because of expenses, could in future get some code written using better automated tools with less talented (hence cheaper) coder.
Is this really a big deal? In much cases, fast and dumb solution is cheaper than smart, but slow. If you have not enough busses - just upgrade to faster transceivers as optical fiber can carry practically unlimited bandwidth. And you can look at computers for another example - upgrade processor, busses is faster and cheaper then optimizing applications.
Why don't they release sane binary packages, like just about any other big project does? How am I supposed to install it on generic x86-64 linux system, besides compiling from source?
Whether or not it sucks, this is the thing that keeps people cozily asleep at night, knowing that if they have a problem, they have an unchallengeable defense of having bought the best in class support solution
Here in Moscow, Russia most ISPs buy Cisco gear w/o any kind of support. Not even usual warranty period on hardware is there (Cisco gives 2 or 3 months only). Not having their asses covered by that kind of paper works fine for them.
Also, when talking about hardware, off-the-shelf PC router can do 100..400 kpps, it is more than enough for small provider's core router, not even considering branches.
Write barriers do help. Both IDE and SCSI (not sure about fancy RAID cards). Some IDE drives are not supported though that don't correctly implement "cache flush" command.
There is a difference between an Xbox and a PC with a general-purpose OS. Xbox can run only certified games AFAIK, when a PC should run any third-party program (possibly, with lower privileges). Thus PC user will be able to download and run exploit which will e.g. cause Media Player to write unencrypted video to a file.
Well, any application that have access to X display can make it unusable. Think xlock which doesn't ask for a password. It a part of the specification, so it's a feature, not a bug. But a browser, which accepts data from untrusted source, should never issue any commands that can render machine unusable.
I found that e.g. Lucent Orinoco Silver does encription in hardware slower than Pentium MMX machine can do it in software. Needless to say, I turned off hardware encription (insufficient anyway) and enjoyed 20% bandwidth increase.
Backbone routers are very inflexible things, as are most other appliances. Do something unusual to them, and their CPU utilization will rise, effectively making them stop their work. And this is just what we're trying to prevent, do we? You will have much better luck with this sort of things on your edge routers, based on your $UNIX_LIKE_OS_OF_CHOICE
Simple and effective, but the IP address information from the packet is discarded.
It's not discarded, it's just routed to the squid box.
Also as far as I know, Squid does not support reading the IP address from the packet it transparently intercepts; it always refers to the DNS list included in its conf file.
It does, at least with Linux netfilter and BSD ipfilter.
A correct transparent proxy implementation should always connect to the very same IP address the client tried to connect to without regard to the "Host" header (which must also be passed along). A DNS lookup can still be done to optimize the cache. If the destination IP address is in the list of A records from the DNS query, then it can simply be matched to the cache by name alone. However, if the IP address does not match any that DNS gets, then those pages can still be cached, but they must be cached under the tuple of both the destination IP address and the "Host" header name together (as this content can be different than any other for the same host name or the same IP address).
This is probably best that transparent proxy can do wrt this issue. Thank you.
Slashdot Mirror
Well, you wipe your phone when trying to enter - it means that you have something to hide and should be detained and not allowed in.
TI does not report corruption level, it reports corruption perception level.
If we perceive that it's getting worse, it can be because it's actually getting worse, or it can be because we know better than before.
> We are all in a cave, strapped to a stone. Everything is an illusion.
That's what Russian propaganda wants you to believe, and you are spreading it, being a Putin's "useful idiot". According to this anonymous study, of course.
> Any juicy conspiracy theories here?
Who gave those experts, including Paul Vixie, right to snoop on DNS traffic of their political opponent?
> BTW in future we will need less coders, as more stuff will be generated automatically.
More automated code generation can actually increase a demand for coders - https://en.wikipedia.org/wiki/...
Business which can't hire a programmer today because of expenses, could in future get some code written using better automated tools with less talented (hence cheaper) coder.
In Post-Soviet Russia, the state blocks xHamster.
In the US, xHamster blocks a state!
Here in (post-)Soviet Russia, just about any profession has one.
Evolution is nonsense. Surely this trojan was intelligently designed.
> a voter-verified permanent paper ballot
yeah, but will it blend?
If you use sudo, you can just renice your root shell to higher priority, or even make it real-time process.
Is this really a big deal?
In much cases, fast and dumb solution is cheaper than smart, but slow.
If you have not enough busses - just upgrade to faster transceivers as optical fiber can carry practically unlimited bandwidth.
And you can look at computers for another example - upgrade processor, busses is faster and cheaper then optimizing applications.
I mean unoffical sarge from amd64.debian.net of course
Do you know any openoffice repo for Debian/stable?
Why don't they release sane binary packages, like just about any other big project does?
How am I supposed to install it on generic x86-64 linux system, besides compiling from source?
Here in Moscow, Russia most ISPs buy Cisco gear w/o any kind of support. Not even usual warranty period on hardware is there (Cisco gives 2 or 3 months only). Not having their asses covered by that kind of paper works fine for them.
Also, when talking about hardware, off-the-shelf PC router can do 100..400 kpps, it is more than enough for small provider's core router, not even considering branches.
Write barriers do help. Both IDE and SCSI (not sure about fancy RAID cards).
Some IDE drives are not supported though that don't correctly implement "cache flush" command.
Cool stuff. I got 500-1000kbytes/sec download rate and 150-200kbytes/sec upload.
There is a difference between an Xbox and a PC with a general-purpose OS. Xbox can run only certified games AFAIK, when a PC should run any third-party program (possibly, with lower privileges). Thus PC user will be able to download and run exploit which will e.g. cause Media Player to write unencrypted video to a file.
Well, any application that have access to X display can make it unusable. Think xlock which doesn't ask for a password. It a part of the specification, so it's a feature, not a bug. But a browser, which accepts data from untrusted source, should never issue any commands that can render machine unusable.
How a T1 can be fat? Surely you meant OC-192.
I found that e.g. Lucent Orinoco Silver does encription in hardware slower than Pentium MMX machine can do it in software. Needless to say, I turned off hardware encription (insufficient anyway) and enjoyed 20% bandwidth increase.
Backbone routers are very inflexible things, as are most other appliances. Do something unusual to them, and their CPU utilization will rise, effectively making them stop their work. And this is just what we're trying to prevent, do we?
You will have much better luck with this sort of things on your edge routers, based on your $UNIX_LIKE_OS_OF_CHOICE
It's not discarded, it's just routed to the squid box.
It does, at least with Linux netfilter and BSD ipfilter.
This is probably best that transparent proxy can do wrt this issue. Thank you.
Very good workaround if the proxy allows CONNECT requests to port 80. Unfortunally it's not the case usually.