What if you were creating a new protocol to improve on some of TCP's deficiencies(for example, UDT [PDF file])? Generally, you'll want to prototype in userspace to make debugging and portability easier. In this instance, going with UDP makes sense since you don't have to modify the operating system at all to have your program utilize your new protocol, and your program doesn't have to run with root privledges like it would need to do to write the raw IP packets. Essentially, UDP functions as a great testbed for new reliable transport protocols as it gives you an easily accessible, unreliable network.
It's pretty complicated to do (compared to the ease of stack based exploits). However, it is possible. This site has a good explanation/example of a double-free exploit(against CVS).
-Aaron
Why not just encrypt the filenames separately? Then you'd be able to change the names in the file without having to encrypt/decrypt everything, but not without the password. -Aaron
> Key generation isn't random enough, so keys may be reused. I don't fully understand this one... maybe someone who does will reply and explain it??
Note: i am not a crypto expert
I've been reading up on PRNGs recently so I'll take a shot at it. The encryption method used is AES in what's known as Counter mode. The way that works is like so:
F(X) = AES(X, SALT)
So to get the next one in the list, all you have to do is calculate AES(X + 1, SALT). Since F(X+1) does not depend on F(X) at all, they can be done in parallel. To get the cipher text, simply XOR the plaintext with the stream.
So X needs to start somewhere. In the WinZip specification, it starts at 0 and keeps incrementing. Thus, if you reuse a password, it'll give you the exact same sequence.
The issue here is that they only use a 64-bit salt. Thus, you would expect that after 2^32 salts have been gone through, you'll have repeated 1. Since you've repeated one, you'll have generated the exact same sequence twice, and due to the nature of XOR, you can use that to help decrypt the 2 zip files.
It can't really get you fired since it'd be pretty easy to say that it was simply a screw up. When you're looking at that much film, it can get easy to accidently wind an ad up backwards when you're taking it off the previous movie it was on, and then when it goes on the next movie, it'd be put on backwards. The sound being backwards would just be a property of the film being backwards. It'd actually take no effort whatsoever really if you were actively doing it. Just tape the back of the ad first instead of the front, and that'll be the effect.
Do they ban all p2p apps or do they allow exceptions? For example, something like Furthur is a completely legal P2P network for trading live shows for bands like Phish, the Grateful Dead, Howie Day, etc, all bands who support the trading of their live shows.
I worked at Stratus a few months ago on a menial little project, but one of the things they did was show me around the engineering labs, and there is a section of the lab devoted to making Linux work on the ftServer line of servers. -Aaron
At my old school as part of a cost cutting endeavor, they put astroturf in the baseball diamond so they wouldn't have to pay to keep it mowed and fertilized and such. However, the coach enjoyed sitting out on the field after practice and listening to the sprinklers. So he put up a huge fuss until they uncapped the sprinklers for him. Now, every day at 6:30, our astroturf baseball field gets watered...
Since the metadata is stored in RAM, it'll have access to the atime,ctime and mtime variables quickly. Thus, it'd be pretty easy to do an LRU scheme to dump rarely-used files to disk periodically. -Aaron
Maybe the theaters I worked at were different than the ones you saw, but even with the platter system(which is what I assume the huge film plates you refer to are), you still need someone up in the projection booth. Granted, they can be a manager or someone else who has other things to do, but you still need someone up there to do the cleaning and threading. First off, as to your comment about moving the plates around, the film sitting on the platters weighs a lot, it took two of us to carry the film around(the platters themselves generally do not get moved as moving them increases the chances of getting a brain wrap). The film gets threaded through the projector between each showing(you don't have to rewind, but you do have to rethread) which usually takes a little while(not more than 5 or 10 minutes generally) especially if you do basic cleaning of the projector in the process. Thus, they do not just switch the film on and that's it. Granted, it's not an overly hard process to learn, but it isn't trivial by any stretch of the imagination. Also, if you don't want the film to look grainy and dirty, you have to do at least some cleaning of the projector between each showing. The film tends to create a good amount plastic dust and flakes during its run through the projector which have this habit of sticking to the film since it has a pretty good static charge to it. Thus, if you don't sweep the remaining stuff off the projector, you'll end up with a good amount of dust just waiting to stick onto the film. This all doesn't take into account actually building the films. Films come in nice little carrying cases divided up into sections so that it can be shipped more easily. These film strips have to be taped together along with the trailers and whatnot at the beginning of the film. This is also not a trivial task, and when you're done with a run, you have to break the film back down so you can ship it back to the distributor. I've worked at some good sized theaters, and they were all like this. So, in my experience, it most definitely is not just push and go. It requires a decent amount of work to clean and thread a film.
IIRC, FLAC is slated to replace SHN as etree's audio compression format of choice. It has a number of features that SHN does not. The most relevant being the fact that FLACs include an integrity check for the file so that you don't have to mess around with a separate file for md5 hashes. You can also use metatags with FLAC files so you can label them in the same way people do with OGG/MP3 files.
Offtopic, but... It had nothing to do with a few hundred years of British Imperialism making English the standard language of intercountry trade? England was a (the?) big trading fish long before the United States was ever able to do anything of importance.
Advice if you're going to go on a weekday morning. Don't get a thing of popcorn. At alot of theaters, leftover popcorn is stored overnight and put into the warmer the next morning. Usually they'll mix in some fresh popcorn to add smell, but ~2/3 of the popcorn you'll get will be leftovers from the previous night. If you go on a busy day or a busy night, it's not a problem since they will have run through all the old popcorn, but otherwise, you'll easily end up with day old popcorn to eat.
What you're looking for is mondo. We setup machines in a lab on campus using it(29 machines in all). We basically create a standard machine, and then have it generate some cds. You drop those CDs in the new machine, make sure that the partitions it creates are all correct, and have it restore the image from the old machine. Make changes as necessary to the new machine(hostname, address,etc) and you're done. It sure beats dd, gzip and NFS which we did before we found mondo:)
-Aaron
well, if you are refering to ACLs in the filesystem, Extended Attributes has been in the VFS since 2.5.3 so now it's just up to the filesystems to include ACL information and the NFS server/clients to support the ACCESS command(there's a patch floating around to do it, but I haven't heard anyone talk about). Samba already supports ACLs if you are running XFS or Ext3+acl. If I can get filesystem/nfs-supported ACLs, i'll be happy. -Aaron
Here's one that isn't 4 megabytes in size. 190k animated gif. Hopefully the server can handle it;). It moves slower than the original, but other than that it's the same -Aaron
I did projection for a movie theater in my area, and they just had us clock in as ushers. Cost per hour, $6.00-6.50. From talking to people at other theaters in my area, I'd guess that this happens more often than alot of people realize. Also, you wouldn't need 6 projectionists to do 30 films, you'd only need 3-4 decent projectionists and a non-insane time schedule. A good projectionist(based on what they could do at my theater) can thread a film in 5 minutes, 10 max(and that includes doing basic maintenance cleaning of the projector).
That's why the document formats must be open. Essentially, they standardize on document formats and then let different people use different programs that can all write the same format. It's the equivalent of standardizing on SMTP as the mail transfer protocol. It's much harder to find/exploit a flaw in a protocol compared to finding/exploiting a flaw in a program, and since everyone speaks that protocol, you can all communicate.
Gentoo does dependency checking for you. As an example, I don't have guile, guppi or other things that gnucash depends on installed. However, if I do an "emerge -p gnucash", it tells me the packages it would merge:
These are the packages that I would merge, in order.
Calculating dependencies...done! [ebuild N ] dev-util/guile-1.4-r3 to/ [ebuild N ] dev-libs/slib-2.4.3 to/ [ebuild N ] dev-libs/g-wrap-1.2.1-r1 to/ [ebuild N ] gnome-extra/guppi-0.40.3-r1 to/ [ebuild N ] dev-lang/swig-1.3.10-r2 to/ [ebuild N ] app-office/gnucash-1.6.6 to/
If you emerge a package, it grabs all the dependencies and installs them for you before installing the desired application.
> Unstable: Not sure of the name because I wouldn't use it. I don't know how stable it is, but I am thinking that it's quite up to date with the latest releases.
Its Sid, and as to being unstable, i've found that it isn't. I've used unstable on my laptop for ~6 months now, and not once have I had any sort of issues with it. As always, YMMV, but it has been great for me.
the one thing I miss about debian(ok, so there others, but this one in particular) and am wondering if I am just missing it in the config files somewhere. Does gentoo have a menu system? with debian when you install a new package, it throws a menu entry on all window managers you have installed(windowmaker, blackbox, kde, gnome, etc). Thus, whether I use blackbox or windowmaker or whatever, I have all the programs in a nice menu that is identical across most window managers(kde is a notable exception where stuff is slightly different). Is there a system like this in Gentoo and i'm missing it? if not, are there any plans to include something like it?
Slashdot Mirror
don't the SOI tech patents belong to IBM?
What if you were creating a new protocol to improve on some of TCP's deficiencies(for example, UDT [PDF file])? Generally, you'll want to prototype in userspace to make debugging and portability easier. In this instance, going with UDP makes sense since you don't have to modify the operating system at all to have your program utilize your new protocol, and your program doesn't have to run with root privledges like it would need to do to write the raw IP packets. Essentially, UDP functions as a great testbed for new reliable transport protocols as it gives you an easily accessible, unreliable network.
It's pretty complicated to do (compared to the ease of stack based exploits). However, it is possible. This site has a good explanation/example of a double-free exploit(against CVS).
-Aaron
Why not just encrypt the filenames separately? Then you'd be able to change the names in the file without having to encrypt/decrypt everything, but not without the password.
-Aaron
> Key generation isn't random enough, so keys may be reused. I don't fully understand this one... maybe someone who does will reply and explain it??
Note: i am not a crypto expert
I've been reading up on PRNGs recently so I'll take a shot at it. The encryption method used is AES in what's known as Counter mode. The way that works is like so:
F(X) = AES(X, SALT)
So to get the next one in the list, all you have to do is calculate AES(X + 1, SALT). Since F(X+1) does not depend on F(X) at all, they can be done in parallel. To get the cipher text, simply XOR the plaintext with the stream.
So X needs to start somewhere. In the WinZip specification, it starts at 0 and keeps incrementing. Thus, if you reuse a password, it'll give you the exact same sequence.
The issue here is that they only use a 64-bit salt. Thus, you would expect that after 2^32 salts have been gone through, you'll have repeated 1. Since you've repeated one, you'll have generated the exact same sequence twice, and due to the nature of XOR, you can use that to help decrypt the 2 zip files.
Dear attemptedgoalie,
We have noticed that you are infringing on our patented Piles Technology. Please cease and desist immediately.
Apple Computers
It can't really get you fired since it'd be pretty easy to say that it was simply a screw up. When you're looking at that much film, it can get easy to accidently wind an ad up backwards when you're taking it off the previous movie it was on, and then when it goes on the next movie, it'd be put on backwards. The sound being backwards would just be a property of the film being backwards. It'd actually take no effort whatsoever really if you were actively doing it. Just tape the back of the ad first instead of the front, and that'll be the effect.
Do they ban all p2p apps or do they allow exceptions? For example, something like Furthur is a completely legal P2P network for trading live shows for bands like Phish, the Grateful Dead, Howie Day, etc, all bands who support the trading of their live shows.
I worked at Stratus a few months ago on a menial little project, but one of the things they did was show me around the engineering labs, and there is a section of the lab devoted to making Linux work on the ftServer line of servers.
-Aaron
So we shouldn't punish people who commit crimes but are rich enough to influence the government after the lawsuit?
At my old school as part of a cost cutting endeavor, they put astroturf in the baseball diamond so they wouldn't have to pay to keep it mowed and fertilized and such. However, the coach enjoyed sitting out on the field after practice and listening to the sprinklers. So he put up a huge fuss until they uncapped the sprinklers for him. Now, every day at 6:30, our astroturf baseball field gets watered...
Since the metadata is stored in RAM, it'll have access to the atime,ctime and mtime variables quickly. Thus, it'd be pretty easy to do an LRU scheme to dump rarely-used files to disk periodically.
-Aaron
Maybe the theaters I worked at were different than the ones you saw, but even with the platter system(which is what I assume the huge film plates you refer to are), you still need someone up in the projection booth. Granted, they can be a manager or someone else who has other things to do, but you still need someone up there to do the cleaning and threading. First off, as to your comment about moving the plates around, the film sitting on the platters weighs a lot, it took two of us to carry the film around(the platters themselves generally do not get moved as moving them increases the chances of getting a brain wrap). The film gets threaded through the projector between each showing(you don't have to rewind, but you do have to rethread) which usually takes a little while(not more than 5 or 10 minutes generally) especially if you do basic cleaning of the projector in the process. Thus, they do not just switch the film on and that's it. Granted, it's not an overly hard process to learn, but it isn't trivial by any stretch of the imagination. Also, if you don't want the film to look grainy and dirty, you have to do at least some cleaning of the projector between each showing. The film tends to create a good amount plastic dust and flakes during its run through the projector which have this habit of sticking to the film since it has a pretty good static charge to it. Thus, if you don't sweep the remaining stuff off the projector, you'll end up with a good amount of dust just waiting to stick onto the film. This all doesn't take into account actually building the films. Films come in nice little carrying cases divided up into sections so that it can be shipped more easily. These film strips have to be taped together along with the trailers and whatnot at the beginning of the film. This is also not a trivial task, and when you're done with a run, you have to break the film back down so you can ship it back to the distributor. I've worked at some good sized theaters, and they were all like this. So, in my experience, it most definitely is not just push and go. It requires a decent amount of work to clean and thread a film.
IIRC, FLAC is slated to replace SHN as etree's audio compression format of choice. It has a number of features that SHN does not. The most relevant being the fact that FLACs include an integrity check for the file so that you don't have to mess around with a separate file for md5 hashes. You can also use metatags with FLAC files so you can label them in the same way people do with OGG/MP3 files.
Offtopic, but... It had nothing to do with a few hundred years of British Imperialism making English the standard language of intercountry trade? England was a (the?) big trading fish long before the United States was ever able to do anything of importance.
Advice if you're going to go on a weekday morning. Don't get a thing of popcorn. At alot of theaters, leftover popcorn is stored overnight and put into the warmer the next morning. Usually they'll mix in some fresh popcorn to add smell, but ~2/3 of the popcorn you'll get will be leftovers from the previous night. If you go on a busy day or a busy night, it's not a problem since they will have run through all the old popcorn, but otherwise, you'll easily end up with day old popcorn to eat.
What you're looking for is mondo. We setup machines in a lab on campus using it(29 machines in all). We basically create a standard machine, and then have it generate some cds. You drop those CDs in the new machine, make sure that the partitions it creates are all correct, and have it restore the image from the old machine. Make changes as necessary to the new machine(hostname, address,etc) and you're done. It sure beats dd, gzip and NFS which we did before we found mondo :)
-Aaron
well, if you are refering to ACLs in the filesystem, Extended Attributes has been in the VFS since 2.5.3 so now it's just up to the filesystems to include ACL information and the NFS server/clients to support the ACCESS command(there's a patch floating around to do it, but I haven't heard anyone talk about). Samba already supports ACLs if you are running XFS or Ext3+acl. If I can get filesystem/nfs-supported ACLs, i'll be happy.
-Aaron
Here's one that isn't 4 megabytes in size. 190k animated gif. Hopefully the server can handle it ;). It moves slower than the original, but other than that it's the same
-Aaron
I did projection for a movie theater in my area, and they just had us clock in as ushers. Cost per hour, $6.00-6.50. From talking to people at other theaters in my area, I'd guess that this happens more often than alot of people realize. Also, you wouldn't need 6 projectionists to do 30 films, you'd only need 3-4 decent projectionists and a non-insane time schedule. A good projectionist(based on what they could do at my theater) can thread a film in 5 minutes, 10 max(and that includes doing basic maintenance cleaning of the projector).
That's why the document formats must be open. Essentially, they standardize on document formats and then let different people use different programs that can all write the same format. It's the equivalent of standardizing on SMTP as the mail transfer protocol. It's much harder to find/exploit a flaw in a protocol compared to finding/exploiting a flaw in a program, and since everyone speaks that protocol, you can all communicate.
It sounds more like they are saying they have a group of filesystems whose total size is 20 TB. Not necessarily a 20TB filesystem.
-Aaron
Gentoo does dependency checking for you. As an example, I don't have guile, guppi or other things that gnucash depends on installed. However, if I do an "emerge -p gnucash", it tells me the packages it would merge:
...done! / / / / / /
These are the packages that I would merge, in order.
Calculating dependencies
[ebuild N ] dev-util/guile-1.4-r3 to
[ebuild N ] dev-libs/slib-2.4.3 to
[ebuild N ] dev-libs/g-wrap-1.2.1-r1 to
[ebuild N ] gnome-extra/guppi-0.40.3-r1 to
[ebuild N ] dev-lang/swig-1.3.10-r2 to
[ebuild N ] app-office/gnucash-1.6.6 to
If you emerge a package, it grabs all the dependencies and installs them for you before installing the desired application.
> Unstable: Not sure of the name because I wouldn't use it. I don't know how stable it is, but I am thinking that it's quite up to date with the latest releases.
Its Sid, and as to being unstable, i've found that it isn't. I've used unstable on my laptop for ~6 months now, and not once have I had any sort of issues with it. As always, YMMV, but it has been great for me.
the one thing I miss about debian(ok, so there others, but this one in particular) and am wondering if I am just missing it in the config files somewhere. Does gentoo have a menu system? with debian when you install a new package, it throws a menu entry on all window managers you have installed(windowmaker, blackbox, kde, gnome, etc). Thus, whether I use blackbox or windowmaker or whatever, I have all the programs in a nice menu that is identical across most window managers(kde is a notable exception where stuff is slightly different). Is there a system like this in Gentoo and i'm missing it? if not, are there any plans to include something like it?