There is an excellent article by Krishnakumar, at least to get you through the bootloader part. Though he didn't write the next part(s), you can gather them from other sources.
> How, pray tell, am I to get that permission? via a notice that says:
Sort of. If you think it is surprizing, check out GNU Free Documentation License. It says "(c) 2003 foobar. Permission is hereby granted...". So again GNU comes forward to solve yet another (political) problem.
> I'd call those big questions of damages. How much damage might be found > to be zero. That could be bad news for GPL.
Hmmm. Bad news indeed. If you steal, then get caught, and then have to return the stuff to the rightful owner, can you claim you didn't cause any damage? I doubt.
> In the Oppertunistic Encryption scenario, DNS is probably the weakest link.
Yes. I wrote the same functionality for my employer. There are several ways
to safeguard you.
The biggest problem is not the key distribution, but if
you are using pre-shared keys, then by spoofing DNS and redirecting the IKE
messages to an evil host, a dictionary attack on your pre-shared keys may be
launched. See a detailed
analysis on the attack, and it is feasible when you can redirect
traffic (IKE exchange messages) towards you by poisoning the DNS.
If you are using RSA-SIG or RSA-ENCR, ask for certificate, and validate
that their ID, their corresponding certificate field, and your idea of
their ID match. That'll eliminate almost all the attacks.
Not all. Just poisoning the DNS reply one can DoS you, he may not have
any way to establish IKE with you, and get your sensitive traffic sent
to him.
Best is to have an ACL, which will authenticate phase 1 SA only if the
peer's certificate contains some specific values in their CN/DN and
other relevant fields.
Of course, but the encryption is in between your handset and the BTS (the base station). Then the traffic is in clear, until they are again aired by another BTS (or, if they reach another phone line which doesn't encrypt, it is in plain all the way).
So the phone company, if they wished, or bribed, or forced by legal authorities, can tap your call. And moreover, GSM uses A5/1 encryption which is broken anyway.
What is actually needed is peer to peer encryption. Authentication is not necessary. Leave the correct number to call to the phone company. All you need is privacy, which can be done by a simple key management protocol per session (like exchanging DH pair) and a fast robust symmetric algorithm (like AES).
But not in the form you say. There exist chips which will do a Diffie-Hellman exchange to set up a secret key, and then do AES encryption on the whole conversation. Comes as a Sony-Ericsson accessory.
Of course, lack of standard make these chips non-interoperable (not encryption/decryption but key management). Once it becomes popular standards need to emerge.
I was attending the professor's presentation of his new invention.
The first slide read "Mreb-Vagrenpgvba Nhguragvpngvba" until he
came on stage. It was exciting, and as soon as he came down to aisle
to take questions, his slides read "Gbxra-Yncgbc Vagrenpgvba"...
The general feeling among the audience was never like that you said. But still, there are many FUDs around Linux (oops, GNU/Linux), which RMS didn't care to clarify. He was theoretically and politically correct, but failed to excite common user. They need more assurance, that GNU will serve all their needs, and they'll get support. Whereas, in Gate's talk, it was much more exciting for users to know they can get some freebies from M$.
But, that's it. No body jumped ship as far as I have seen.
Bill is getting more importance here because our politicians are interested in free beer.
Did you consider groff/troff and then nenscript?
It isn't WYSIWYG but can serve your purpose anyway.
Re:so XFree86 = usage stattistics?
on
The End Of Minix?
·
· Score: 2, Funny
> At least get some real proof it is dead before you put such
> scandalous headlines on the frontpage;)
I remember the best joke of this year. In short: two friends goes hunting and one of them loses consciousness due to exhaustion. His friend seeks help on his cellphone: "Help! My friend is dead". The helpline says "Don't panic, I can help. Let's make sure he is dead". A moment of silence, then a gunshot. "Now what?".
In our office we use TLM for backing up all the individual PCs. It is non intrusive, runs at background at admin defined intervals. If you turn the machine off, it'll automatically run next time you turn it on (if the schedule is missed). It takes incremental backup and you can configure drive/directories not to backup. It proved useful to us.
Is your UPS connected to the network so that it can inform the machines when there is a change of status of power line? Maybe when the light is turned on, the power surge makes UPS send a packet to your network? Just guessing.
Media Fusion, Inc. was working on Powerline Area Network some days back. Now they have their website down, but I prepared some notes at that time. You can have the points:
- Long distance signal carriage without regeneration
- Near light speed propagation
- Enormous information carrying capacity
- No topology limitation
- No addressing overhead, no network storms, no re-transmission due to dropped packets, no data loss
The technology would involve:
- Inscribing data within the natural low-frequency bandwidth of the electric wave to send information
- Identifying all data and frequencies riding within the wave
- Converting those signals into interpretable forms in "real time" by using state-of-the-art signal-processing equipment
I don't know what happ'd to these folks. Maybe
we can ask Edwin G. Blair?
Slashdot Mirror
An year ago, I did that already.
Beagle is what you want. And best part is, you can use it. Today.
Sigh. I get so much spam daily my /dev/null overflows.
There is an excellent article by Krishnakumar, at least to get you through the bootloader part. Though he didn't write the next part(s), you can gather them from other sources.
> How, pray tell, am I to get that permission? via a notice that says:
...". So again GNU comes forward to solve yet another (political) problem.
Sort of. If you think it is surprizing, check out GNU Free Documentation License. It says "(c) 2003 foobar. Permission is hereby granted
K
> I'd call those big questions of damages. How much damage might be found
> to be zero. That could be bad news for GPL.
Hmmm. Bad news indeed. If you steal, then get caught, and then have to return
the stuff to the rightful owner, can you claim you didn't cause any damage? I
doubt.
K
spray enough deo. please.
-K-
Yes. I wrote the same functionality for my employer. There are several ways to safeguard you.
The biggest problem is not the key distribution, but if you are using pre-shared keys, then by spoofing DNS and redirecting the IKE messages to an evil host, a dictionary attack on your pre-shared keys may be launched. See a detailed analysis on the attack, and it is feasible when you can redirect traffic (IKE exchange messages) towards you by poisoning the DNS.
If you are using RSA-SIG or RSA-ENCR, ask for certificate, and validate that their ID, their corresponding certificate field, and your idea of their ID match. That'll eliminate almost all the attacks.
Not all. Just poisoning the DNS reply one can DoS you, he may not have any way to establish IKE with you, and get your sensitive traffic sent to him.
Best is to have an ACL, which will authenticate phase 1 SA only if the peer's certificate contains some specific values in their CN/DN and other relevant fields.
-K-
putting the full-stop *before* NET.
> GSM (and PCS) phones encrypt the traffic anyway
Of course, but the encryption is in between your handset and the BTS (the base station). Then the traffic is in clear, until they are again aired by another BTS (or, if they reach another phone line which doesn't encrypt, it is in plain all the way).
So the phone company, if they wished, or bribed, or forced by legal authorities, can tap your call. And moreover, GSM uses A5/1 encryption which is broken anyway.
What is actually needed is peer to peer encryption. Authentication is not necessary. Leave the correct number to call to the phone company. All you need is privacy, which can be done by a simple key management protocol per session (like exchanging DH pair) and a fast robust symmetric algorithm (like AES).
my 2 paisa,
Kousik
But not in the form you say. There exist chips which will do a Diffie-Hellman exchange to set up a secret key, and then do AES encryption on the whole conversation. Comes as a Sony-Ericsson accessory.
Of course, lack of standard make these chips non-interoperable (not encryption/decryption but key management). Once it becomes popular standards need to emerge.
> I forgotten the command to specify directory, is there a Mozilla guru
> reading?
I'm not a guru, but it is straightforward:
Edit -> Mail & News Account Settings -> account_name -> Server Settings -> Local directory.
I have put in a shared FAT32. Works fantastic. Once in a while I defragment the drive.
Did you try rocket jumping?
... and courier. After 2 yrs of experiments I found them to make the best combination.
Another slashdot story was flashed a while back (13/06/02), but that was pertaining to Scottish company.
I was attending the professor's presentation of his new invention. The first slide read "Mreb-Vagrenpgvba Nhguragvpngvba" until he came on stage. It was exciting, and as soon as he came down to aisle to take questions, his slides read "Gbxra-Yncgbc Vagrenpgvba" ...
Keep those boxes under seperate virtual lans, and put a firewall in between the two.
I attended both the talks they gave in Bangalore.
The general feeling among the audience was never like that you said. But still, there are many FUDs around Linux (oops, GNU/Linux), which RMS didn't care to clarify. He was theoretically and politically correct, but failed to excite common user. They need more assurance, that GNU will serve all their needs, and they'll get support. Whereas, in Gate's talk, it was much more exciting for users to know they can get some freebies from M$.
But, that's it. No body jumped ship as far as I have seen.
Bill is getting more importance here because our politicians are interested in free beer.
Kousik
Did you consider groff/troff and then nenscript? It isn't WYSIWYG but can serve your purpose anyway.
> scandalous headlines on the frontpage
I remember the best joke of this year. In short: two friends goes hunting and one of them loses consciousness due to exhaustion. His friend seeks help on his cellphone: "Help! My friend is dead". The helpline says "Don't panic, I can help. Let's make sure he is dead". A moment of silence, then a gunshot. "Now what?".
> liar. They don't exist.
I have one at home. My wife. I had to point her to yesterday's story. But I don't think that'll do any good ...
Too bad I have to quit moz to get the prefs in. Isn't there a JS
which can patch the hole without having to quit? Sucks.
In our office we use TLM for backing up all the individual PCs. It is non intrusive, runs at background at admin defined intervals. If you turn the machine off, it'll automatically run next time you turn it on (if the schedule is missed). It takes incremental backup and you can configure drive/directories not to backup. It proved useful to us.
Is your UPS connected to the network
so that it can inform the machines
when there is a change of status of
power line? Maybe when the light is
turned on, the power surge makes UPS
send a packet to your network? Just
guessing.
- Long distance signal carriage without regeneration
- Near light speed propagation
- Enormous information carrying capacity
- No topology limitation
- No addressing overhead, no network storms, no re-transmission due to dropped packets, no data loss
The technology would involve:
- Inscribing data within the natural low-frequency bandwidth of the electric wave to send information
- Identifying all data and frequencies riding within the wave
- Converting those signals into interpretable forms in "real time" by using state-of-the-art signal-processing equipment
I don't know what happ'd to these folks. Maybe we can ask Edwin G. Blair?