Yeah, well the poster wanted tons of features on almost zero disk space that runs on virtually any machine. Not very realistic. A cut down version of Knoppix does seem to fit the bill better than anything else. It's open, hack it.
The reality of running a graphical environment (word processor, web browsing) is that you are going to need a reasonable amount of memory. 64M is about the minimum that runs with any acceptable level of performance. Much less than that and you start swapping like mad - on an ancient machine's hard disk. Knoppix doesn't automatically setup a swap which is why they claim a 96M minimum. Read the knoppix web page for more info.
Regardless, the poster is going to have to do some work or change his expectations.
Um, I guess I am sort of suggesting imaging with something like Knoppix.
I'm assuming that these machines kinda suck as stated by the poster, and that they can't boot off CD or may not even have a CD. So how are you going to image? Pull the drive and put it in another machine? Hookup a CD drive?
Installing a good bootable network card is just about the easiest possible way to do this.
Not to mention that if you compiled a kernel with everything included, it's not going to fit on a floppy. You are dead on about floppies. I don't know if it's a drive quality thing, or a substandard media thing, but every modern computer I've used has LOTS or troubles with floppies - something on the order of 70% of the floppies won't format without error.
A poster farther down says Knoppix. Oh yeah. If your machine doesn't have a CD, pop in a good network card, use a boot floppy ONCE, get knoppix installed, then remove said network card.
Some of the older CD drives / motherboards won't boot directly, so floppy boot may still be needed for the install. Best to not mess with it at all if in doubt and use the network card.
Some network cards have boot roms that will boot on virtually any older machine, so that may be an option too.
Um, it depends on how you setup VMWare. NAT mode does as you suggested, but bridge mode does not. The VM session gets a REAL dedicated IP. Also, unless you explicitly setup vmware to access the underlying partitions (which you would do via samba or windows file sharing unless it's a DEDICATED partition) then it is ISOLATED. Completely. This is one of the whole POINTS of a VM system.
The bigger problem is that good hackers are going to KNOW that it's a vmware session, just like they can tell if it's a usermode linux session. The Usermode linux pages go into the honeypot issue, and how to help hide the fact that it's a virtual box, but it's not perfect.
The advantage of a virtual machine honeypot is definately valid though as others (and the article) point out.
First, the VERY FIRST LINK was to a debian package "poster". Poster takes eps or ps files and prints them over many pages. This is EXACTLY what the requestor was looking for.
Second, PDF files ARE basically postscript. This is WHY you would look at using postscript tools.
Third, by using some pretty standard postscript tools that come with virtually any distro of Linux, such as the pdf2ps or pdftops commands, (different tools, basically the same function) we can Easily handle the task.
Lastly, and this is directed towards a stupid moderator, my original post was a FLAME, not flame BAIT (and an informative flame at that.) The two are QUITE different. One is a properly directed verbal chastizing, the other invites heated response using inflamitory remarks, in escense egging people on, trolling, etc. Get it right next time.
Every major data center that I have worked with provides clean reliable power. They all have whole-building surge surpression, backup generators, UPS systems of one type or another. I have not even FOUND a data center that did NOT provide UPS type funtionality.
In fact, I solicited bids for housing ~300 servers a couple years ago from 12 different data centers and EVERY SINGLE ONE had backup power. These include Frontier Global center (before Exodus bought them) Exodus, MCI, Level 3, Globix, Equinix, AT&T, Best, Netcom, AboveNet, GTE, the list goes on.
If your datacenter provides such shit power that you need your own UPS, DUMP THEM NOW. They SUCK. You are NOT getting your money's worth. FWIW, I've also built 6 data centers. You REALLY don't want a bunch of little UPS's all over the place. They aren't very good anyway. Depending on your uptime requirements, get your self one (or two) BIG UPS system. They come in all sizes. Best has some that go to 220kVA even. I bet a 15kVA would do ya though.
Future interesting projects indeed. Yeah, it's a little interesting that water behaves this way, but it's not water that is going to be the interesting material - it just doesn't have the properties as a sheet to be useful. However, think of other liquids (epoxy?) with similar properties that may harden. You now have a farily easy way of making sheet goods, panels, etc.
No, YOU COMPLETLY MISS THE POINT. The FACTS are that ISP's are frequently PART OF THE PROBLEM. The FACTS are that they DON'T enforce their own AUP's. The FACTS are that spammers spew for MONTHS before ISP's take action, if ever. The FACTS are that ISP's continue to run open proxies and relays allowing spammers to continue to spew and hide their tracks. The FACTS are that MOST ISP's don't firewall outbound port 25 and 3128 traffic for dialup users which allow spammers to abuse other idiot's open relays and proxies.
So, you stupid pile of crap (since you stooped to name-calling, a true sign of not having a valid argument) the FACTS are that ISP's are NEGLIGENT and have been for YEARS. THey know EXACTLY how to mitigate the spam problem, but REFUSE to act. Try getting an ISP to even acknowledge a spam complaint and see what I mean (you frequently don't even get an autoreponse.) There are MANY tools in an ISP's arsenal that could all but eliminate spam origination on their networks, yet virtually ZERO ISP's employ ANY mechanism at all! They sit there and whine about spam on their network yet do NOTHING to try and prevent it.
So my dim friend (who can't even grasp the concept of an analogy), the problem is that ISP's NEED to be more (legally) liable for what they allow on their network from a technical standpoint. If they won't do it willingly (and history proves that they won't) then we need the force of law allowing users to sue ISP's for negligence. If you had the faintest clue at all, then you would understand that it is already well known that the liability falls on BOTH the spammer and the ISP who knowingly enables them.
We don't need to spend millions of dollars and years of time analyzing a problem that has already been analyzed to death. Pass the fucking law already.
A "small" amount of kudos goes to Earthlink who begrudgingly after YEARS of badgering blocked outbound port 25 for dialup users. Microsoft gets NOTHING because they know exactly how (technically) to stop spammers from trawling their hotmail servers for accounts yet continue to this very day to fail to act (again, technically.)
... So you are saying that it should be OK for small companies to dump toxic waste into others back yards and poison their wells because they don't have the staff to dispose of the toxic waste in accordance with the law?
ISP's MUST be held to SOME sort of liability. As it stands today, if a spammer has a T1 and starts pumping the spam, it can take weeks or months for ISP's to turn them off, or even result in no action at all from the spammers ISP - "hey, they are a paying customer, I don't give a shit".
Re:and, fairly easy to make this happen...
on
NYT on RFID Tags
·
· Score: 1
... and that same EM pulse would fry your watch, cell phone, pacemaker,... You get the idea. EM won't work anyway - RFID is passive. Microwaves however...
Note that this is not neccesary as your firewall can translate multiple public addresses to one private address. Note that you want a firewall that maintatins state info such as Netfilter on Linux, Cisco PIX, etc.
... So you think that just because a company is greedy that they truely grasp public behavior, perceptions, and market conditions?
The continual forced spiral of upgrades and increasingly draconian licensing is exactly WHY people are migrating to Linux. If they "got it", they would wake the fuck up before every country and large business in the world dumps them. As they continue to tighten and squeeze and send in the BSA nazi's, I give them 5 years before Linux eats their lunch. Just how many people do you really think are going to put up with their DRM?
I'll grant you that this is a beta and you can't totally judge MS's intentions by this, but if you look at MS's historical actions, we ain't gonna see a back port.
I also believe that people will (or at least try) to hack the protocol, but MS may surprise you with strong encryption that makes the DRM stick. While MS has typically not been too friendly with RIAA, they have been sending mixed messages (such as the new CD copy protection crap they are offering...) Hacking IM / P2P isn't easy when you don't have the source and the protocol is closed - just ask the GAIM people. None of the third party IM apps are as complete as the originals they try to clone.
Note that I'm not bashing MS's products, I'm bashing MS's behavior. Bad dog, no biscuit.
So let me get this straight. You compiled your OWN kernel with NTFS support which is ALPHA at best (Reading is OK, writting is explicitly stated as being broken) and you are blaming RedHat?!?!? Hellooooo in there....
Me thinks that you do not understand opensource, or Linux in general.
First, we WOULD bitch if a user-space app required a development kernel. User space applications should not care WHAT kernel is running. I can run the LATEST version of apache on a Very old kernel - like the 2.0 series or even older.
Second, virtually ANY open source app can be "backported" to older systems / libraries. What happens with binaries that are dynamically compiled is that they can be tied to the version of libraries that they were linked with. This can be somewhat mitigated by static linking which is what apps like Netscape 4.X and Acrobat do - this allows them top run on ANY version / distro of linux.
Exceptions to recompile-and-run include Kernel Space stuff such as NetFilter which is pretty well integrated into the 2.4+ version of the kernel. Even this is not a hard-and-fast rule as subsystems like USB 2.0 support have been backported from the latest 2.5 dev kernel to 2.4 production.
So yeah, the WinXP SP1 requirement shows that MS does NOT "get it". It's the continual forced upgrades for no good reason that really pisses us off. Win2K is STILL a CURRENT platform, as it should be. MS needs to support is as a current platform. If they build a new app that needs new functionality, they should backport that functionality to W2K and any other current platform in new service pack. Hell, it's not like they can't afford to do this - the OS is their big money maker.
The reason you buy commercial software is for support. By not backporting, MS is effectivly End Of Life-ing Win2K WELL before their official stated EOL date. Why are you giving them money again?
Hmm. Seems that you could "whitelist" mailing lists or other trusted hosts to be exempt from the "charge". Only unknown senders would be hit, which would be all the spammers.
OK, let's do it. 5 - 8 years from now we should have critical mass of SMTP servers on the net to force this through. At the current rate of spam increases, this means that well before it's possible to implement, spam will be 99% of all email on the internet. Sigh.
I had one of those strings of calls where I would get 5 or six hangup calls a night, no caller-ID info. This went on for about 4 weeks. After the first week, I contacted the phone company about harrasment. They told me I had to file with the police department, so I did. It took the PD 3 fucking weeks to approve the trace and notify the phone company, and by then the calls had stopped. Back to step zero. Lather, rinse, repeat.
Automated dialing should be outlawed. Period. I want this judges home phone number, address, and email address. I want him spammed, junkmailed, and telemarketed to death. Asshole. Commercial speach is not free speach.
What?! Oh I see, it's Icaza's fault that MS is trying to patent technology so vague that it even affects Apache.
Sigh, no, it's not his fault, but he is naive in the extreme to think that MS would allow a third party implementation of a "standard" that they designed.
Icaza wanted Mono to be integral to Gnome. If this patent goes through / is upheld, that would kill Gnome if Icaza's wish were fufilled.
Slashdot Mirror
Yeah, well the poster wanted tons of features on almost zero disk space that runs on virtually any machine. Not very realistic. A cut down version of Knoppix does seem to fit the bill better than anything else. It's open, hack it.
The reality of running a graphical environment (word processor, web browsing) is that you are going to need a reasonable amount of memory. 64M is about the minimum that runs with any acceptable level of performance. Much less than that and you start swapping like mad - on an ancient machine's hard disk. Knoppix doesn't automatically setup a swap which is why they claim a 96M minimum. Read the knoppix web page for more info.
Regardless, the poster is going to have to do some work or change his expectations.
Um, I guess I am sort of suggesting imaging with something like Knoppix.
I'm assuming that these machines kinda suck as stated by the poster, and that they can't boot off CD or may not even have a CD. So how are you going to image? Pull the drive and put it in another machine? Hookup a CD drive?
Installing a good bootable network card is just about the easiest possible way to do this.
Not to mention that if you compiled a kernel with everything included, it's not going to fit on a floppy. You are dead on about floppies. I don't know if it's a drive quality thing, or a substandard media thing, but every modern computer I've used has LOTS or troubles with floppies - something on the order of 70% of the floppies won't format without error.
A poster farther down says Knoppix. Oh yeah. If your machine doesn't have a CD, pop in a good network card, use a boot floppy ONCE, get knoppix installed, then remove said network card.
Some of the older CD drives / motherboards won't boot directly, so floppy boot may still be needed for the install. Best to not mess with it at all if in doubt and use the network card.
Some network cards have boot roms that will boot on virtually any older machine, so that may be an option too.
Um, it depends on how you setup VMWare. NAT mode does as you suggested, but bridge mode does not. The VM session gets a REAL dedicated IP. Also, unless you explicitly setup vmware to access the underlying partitions (which you would do via samba or windows file sharing unless it's a DEDICATED partition) then it is ISOLATED. Completely. This is one of the whole POINTS of a VM system.
The bigger problem is that good hackers are going to KNOW that it's a vmware session, just like they can tell if it's a usermode linux session. The Usermode linux pages go into the honeypot issue, and how to help hide the fact that it's a virtual box, but it's not perfect.
The advantage of a virtual machine honeypot is definately valid though as others (and the article) point out.
It's not an image, it's a PDF. Won't work.
It's not a picture, it's a PDF. Won't work.
First, the VERY FIRST LINK was to a debian package "poster". Poster takes eps or ps files and prints them over many pages. This is EXACTLY what the requestor was looking for.
Second, PDF files ARE basically postscript. This is WHY you would look at using postscript tools.
Third, by using some pretty standard postscript tools that come with virtually any distro of Linux, such as the pdf2ps or pdftops commands, (different tools, basically the same function) we can Easily handle the task.
Lastly, and this is directed towards a stupid moderator, my original post was a FLAME, not flame BAIT (and an informative flame at that.) The two are QUITE different. One is a properly directed verbal chastizing, the other invites heated response using inflamitory remarks, in escense egging people on, trolling, etc. Get it right next time.
Every major data center that I have worked with provides clean reliable power. They all have whole-building surge surpression, backup generators, UPS systems of one type or another. I have not even FOUND a data center that did NOT provide UPS type funtionality.
In fact, I solicited bids for housing ~300 servers a couple years ago from 12 different data centers and EVERY SINGLE ONE had backup power. These include Frontier Global center (before Exodus bought them) Exodus, MCI, Level 3, Globix, Equinix, AT&T, Best, Netcom, AboveNet, GTE, the list goes on.
If your datacenter provides such shit power that you need your own UPS, DUMP THEM NOW. They SUCK. You are NOT getting your money's worth. FWIW, I've also built 6 data centers. You REALLY don't want a bunch of little UPS's all over the place. They aren't very good anyway. Depending on your uptime requirements, get your self one (or two) BIG UPS system. They come in all sizes. Best has some that go to 220kVA even. I bet a 15kVA would do ya though.
Future interesting projects indeed. Yeah, it's a little interesting that water behaves this way, but it's not water that is going to be the interesting material - it just doesn't have the properties as a sheet to be useful. However, think of other liquids (epoxy?) with similar properties that may harden. You now have a farily easy way of making sheet goods, panels, etc.
No, YOU COMPLETLY MISS THE POINT. The FACTS are that ISP's are frequently PART OF THE PROBLEM. The FACTS are that they DON'T enforce their own AUP's. The FACTS are that spammers spew for MONTHS before ISP's take action, if ever. The FACTS are that ISP's continue to run open proxies and relays allowing spammers to continue to spew and hide their tracks. The FACTS are that MOST ISP's don't firewall outbound port 25 and 3128 traffic for dialup users which allow spammers to abuse other idiot's open relays and proxies.
So, you stupid pile of crap (since you stooped to name-calling, a true sign of not having a valid argument) the FACTS are that ISP's are NEGLIGENT and have been for YEARS. THey know EXACTLY how to mitigate the spam problem, but REFUSE to act. Try getting an ISP to even acknowledge a spam complaint and see what I mean (you frequently don't even get an autoreponse.) There are MANY tools in an ISP's arsenal that could all but eliminate spam origination on their networks, yet virtually ZERO ISP's employ ANY mechanism at all! They sit there and whine about spam on their network yet do NOTHING to try and prevent it.
So my dim friend (who can't even grasp the concept of an analogy), the problem is that ISP's NEED to be more (legally) liable for what they allow on their network from a technical standpoint. If they won't do it willingly (and history proves that they won't) then we need the force of law allowing users to sue ISP's for negligence. If you had the faintest clue at all, then you would understand that it is already well known that the liability falls on BOTH the spammer and the ISP who knowingly enables them.
We don't need to spend millions of dollars and years of time analyzing a problem that has already been analyzed to death. Pass the fucking law already.
A "small" amount of kudos goes to Earthlink who begrudgingly after YEARS of badgering blocked outbound port 25 for dialup users. Microsoft gets NOTHING because they know exactly how (technically) to stop spammers from trawling their hotmail servers for accounts yet continue to this very day to fail to act (again, technically.)
... So you are saying that it should be OK for small companies to dump toxic waste into others back yards and poison their wells because they don't have the staff to dispose of the toxic waste in accordance with the law?
ISP's MUST be held to SOME sort of liability. As it stands today, if a spammer has a T1 and starts pumping the spam, it can take weeks or months for ISP's to turn them off, or even result in no action at all from the spammers ISP - "hey, they are a paying customer, I don't give a shit".
... and that same EM pulse would fry your watch, cell phone, pacemaker, ... You get the idea. EM won't work anyway - RFID is passive. Microwaves however...
Note that this is not neccesary as your firewall can translate multiple public addresses to one private address. Note that you want a firewall that maintatins state info such as Netfilter on Linux, Cisco PIX, etc.
It's actually quite easy.
l inux
In fact,
http://www.google.com/search?q=postscript+poster+
This shows that this is yet another example that people are too fucking lazy to do ANY research before asking a question on slashdot.
... So you think that just because a company is greedy that they truely grasp public behavior, perceptions, and market conditions?
The continual forced spiral of upgrades and increasingly draconian licensing is exactly WHY people are migrating to Linux. If they "got it", they would wake the fuck up before every country and large business in the world dumps them. As they continue to tighten and squeeze and send in the BSA nazi's, I give them 5 years before Linux eats their lunch. Just how many people do you really think are going to put up with their DRM?
I'll grant you that this is a beta and you can't totally judge MS's intentions by this, but if you look at MS's historical actions, we ain't gonna see a back port.
I also believe that people will (or at least try) to hack the protocol, but MS may surprise you with strong encryption that makes the DRM stick. While MS has typically not been too friendly with RIAA, they have been sending mixed messages (such as the new CD copy protection crap they are offering...) Hacking IM / P2P isn't easy when you don't have the source and the protocol is closed - just ask the GAIM people. None of the third party IM apps are as complete as the originals they try to clone.
Note that I'm not bashing MS's products, I'm bashing MS's behavior. Bad dog, no biscuit.
So let me get this straight. You compiled your OWN kernel with NTFS support which is ALPHA at best (Reading is OK, writting is explicitly stated as being broken) and you are blaming RedHat?!?!? Hellooooo in there....
Me thinks that you do not understand opensource, or Linux in general.
First, we WOULD bitch if a user-space app required a development kernel. User space applications should not care WHAT kernel is running. I can run the LATEST version of apache on a Very old kernel - like the 2.0 series or even older.
Second, virtually ANY open source app can be "backported" to older systems / libraries. What happens with binaries that are dynamically compiled is that they can be tied to the version of libraries that they were linked with. This can be somewhat mitigated by static linking which is what apps like Netscape 4.X and Acrobat do - this allows them top run on ANY version / distro of linux.
Exceptions to recompile-and-run include Kernel Space stuff such as NetFilter which is pretty well integrated into the 2.4+ version of the kernel. Even this is not a hard-and-fast rule as subsystems like USB 2.0 support have been backported from the latest 2.5 dev kernel to 2.4 production.
So yeah, the WinXP SP1 requirement shows that MS does NOT "get it". It's the continual forced upgrades for no good reason that really pisses us off. Win2K is STILL a CURRENT platform, as it should be. MS needs to support is as a current platform. If they build a new app that needs new functionality, they should backport that functionality to W2K and any other current platform in new service pack. Hell, it's not like they can't afford to do this - the OS is their big money maker.
The reason you buy commercial software is for support. By not backporting, MS is effectivly End Of Life-ing Win2K WELL before their official stated EOL date. Why are you giving them money again?
Hmm. Seems that you could "whitelist" mailing lists or other trusted hosts to be exempt from the "charge". Only unknown senders would be hit, which would be all the spammers.
OK, let's do it. 5 - 8 years from now we should have critical mass of SMTP servers on the net to force this through. At the current rate of spam increases, this means that well before it's possible to implement, spam will be 99% of all email on the internet. Sigh.
Yeah, FTP is an annoying protocol, but any modern firewall handles it just fine with NAT thankyouverymuch.
Frankly, rsync is the best protocol for large files. It's DESIGNED for it.
Until /. has a built-in spell checker, I reserve the right to have a typo or 4.
Yes, I know how to spell speech, but sometimes my fingers don't.
In other words, you were being picky.
One call from every slashdot reader. That should do it.
I had one of those strings of calls where I would get 5 or six hangup calls a night, no caller-ID info. This went on for about 4 weeks. After the first week, I contacted the phone company about harrasment. They told me I had to file with the police department, so I did. It took the PD 3 fucking weeks to approve the trace and notify the phone company, and by then the calls had stopped. Back to step zero. Lather, rinse, repeat.
Automated dialing should be outlawed. Period. I want this judges home phone number, address, and email address. I want him spammed, junkmailed, and telemarketed to death. Asshole. Commercial speach is not free speach.
It's NOT cheaper than another laptop. Not to mention that you don't really want to carry 3 or 4 laptops around with you in the first place.
VMWare also has several other really nice features like undoable disks. I've been using VMWare since version 1.0. Hot stuff.
Also, think about things like power usage, heat, desk space, etc.
MS can demand $20K per client / $500K per server and get around it.
What?! Oh I see, it's Icaza's fault that MS is trying to patent technology so vague that it even affects Apache.
Sigh, no, it's not his fault, but he is naive in the extreme to think that MS would allow a third party implementation of a "standard" that they designed.
Icaza wanted Mono to be integral to Gnome. If this patent goes through / is upheld, that would kill Gnome if Icaza's wish were fufilled.