Something I've always wondered, what happens if you lose your Yubikey or its electronics stuffs up? How do you reestablish your identity?
Are we back to security questions like "what's your mother's maiden name?"
Godel,
Same as with your house key or car key. You just setup another U2F/yubikey key and use that to recover/access your account, then disable the lost/damaged/stolen key.
Agreed. You have to fight the problem at the source. take the profit out of spamming & phishing and it will be drastically reduced.
what we do now is like pouring perfume in the sewer because is smells so bad.
First thing you've got to do is recognize that email is broken. we need an "smtp 2.0" which eliminates the spoofable "feature" of smtp mail, and ensures positive id for the sending and receiving servers. There are many ways to do this, but a place to start is to require DomainKeys on smtp 2.0 servers, which goes a long way towards this end.
Once we know who is talking to us, and who we're talking to, we can finally address the real issue. It costs almost nothing to send a billion emails, but it costs plenty to sort through a billion spams. If I can't spoof my source domain, then it becomes much more expensive to send spam if I have to authenticate when claiming to be a legitimate e-mail domain like yahoo, gmail or hotmail.
Also devise a scheme where it is computationally expensive to send an email, but is trivial to receive one. It wouldn't be expensive to send 1000 outgoing messages an hour, but 1000(or more) a minute will require serious hardware. The harder I make the challenge, the fewer emails a bogus (a small server is unlikely to be legitimately sending millions of messages) server can try to deliver.
smtp 2.0 servers would be set to favor established domains to which we frequently send & receive messages, also to set a hard limit for the number of messages an unknown domain can send to us. Since nobody will accept more than a handfull of emails from my newly registered domain, I have to drop a lot more money on bogus domains which i can't even use for a year or two. you can protect legitimate new domains by following a "certified SSL" protocol for validating the identity of a domain owner. anybody without a certified domain or an established domain will have a really hard time getting their spam delivered.
Of course the attackers will find weaknesses in the processes and protocols, but we can simply ensure that servers are ready to migrate to the rules of mail 2.1, which fills in the gaps of smtp 2.0. If your servers aren't updated to a recent smtp version, I can stop "preferring" your mail.
$50/hr is very cheap for a consultant. Especially for a short term job like a system setup. You're probably talking about 4-10hours of work depending on the system requirements. At most that's $550 bucks. If your business is that tight with $$, then you've got bigger problems. BTW, If you *need* apps that only exist on one platform, you should probably stick with that platform. It would be foolish to pay for a custom build of a shrinkwrap product, especially when you consider the cost of maintenence.
you can randomly alter the numbers in my paycheck if there are at least 6 (xxxx.yy) digits in your randomizer. I could expect to get anywhere between 9999.99 and 0000.01 each pay period? Not a bad lottery!
do you need my bank account number for that direct deposit?
The poster is asking if s/he should re-invent the wheel, and while using gpg/pgp would provide some level of code re-use, there is a better way...
As there is no "scramble proof" radio technology, the best you can do is authenticate the sender and reciever. You can't prevent anyone from sending or recieving the radio signal. Although you can prove the authenticity of teh sender, and the authorization of the reciever. The best way is to use 802.11x to secure your radio transmissions. All the hard work is already done, and there's plenty of available hardware out there. You can easily use whatever transmission method you like, just wrap it all in 802.11x, and use WPA.
If you need secure radio signaling, I can't thing of a better, faster, cheaper system.
You friend is a real ballbreaker. If I was his boss, I'd at least restrict his work to a specific language, and toolset. At worst I'd fire him. Developing code which is unmaintainable is unacceptable, no matter how well it runs. In his situation, charging 30K for "on-call work" is either blackmail, or ransom. If they can't find someone else because of the high skill level required, that's one thing. If they can't find anyone else beacuse he intentionally wrote code in 10 languages (how's that different from obfuscation?) for job security, then he's holding the future of the company's operations for ransom.
Regardless, the bottom line is that it's his boss's fault for not reigning him in before he could do so much damage.
You said it right... Whatever merit there is to his code, and "generosity", he shouldn't have been a dumbass and copied the name. If he created a site called, elinux.com, or freebsdee.com where he distributed a "clone" of those works, the slashdorks would be storming the castle with pitchforks. There would be bloodthirsty accusations of GPL violations, and calls for his head. Hasbro *obviously* owns scrabble, and even if he didn't break the leter of the law, he certainly has shown himself to have poor ethics by distributing someone else's work without permission. And as far as damages go, he has clearly weakend the market hasbro to sell tehir product. Ask any musician if it's easier or harder to *sell* music online with napster/kazaa there. A parallel is modifying a GPL probram, and redistributing without source, that's just as much a violation of copyright. The only difference being that the GPL encourages free copying, whereas scrabble is not licensed for free redistribution.
As a Tivo customer, and shareholder, I disagree. What i get most from my tivo is the ability to painlessly watch whatever shows I want, whenever I want. I'd enjoy my Tivo even if there were no ffd-ing through commercials. There's no tapes, and no discs, just the menu of available shows.
I think Tivo's moves to add features are excatly what the platform needs. Now that the cablecos are providing DVRs to their customers, tivo has to jump even farther out with usability and features. I think alot of people assume they have to be like MS to be successfull. I think they can be quite successfull like Apple.
The media companies are too powerful for such a small company to go against, so they need to steer clear of the legal minefield that is genuine "fair use". If they try to fight that battle they will surely be sued out of business. The point of Tivo Inc, isn't to stick it to the man, but to make a buck. Let mythtv and eff battle the media giants.
If Tivo can strike deals with "content" producers like HBO, dreamworks or pixar, they could split millions of middleman fees that would normally go to manufacturers, distributors and retailers. If they do get such a deal, I can see their revenue, and stock value skyrocket.
You and the parent both work for cable companies, and it's interesting that you both miss a key point. There is a huge difference between what the cable company does, and what vonage does. The cable companies are now investing money to *recrecate* the type of system vonage has developed. Vonage isn't in any way "leeching" off cable providers, just as amazon & ebay aren't leeching of any ISP. The Internet is an end-to-end system, so it takes two endpoints to be useful. Vonage is actually helping to make Internet service more attractive, by providing additional services *via* the Internet than were available previously. If the cablecos want to build voip services also, that's great. The key to remember is that they are selling access to the global Internet, and if they start "pruning" of the sections of the Internet that happen to compete with their business, they're going to have to fight their customers, and the FCC. You may be misinformed about "equal access" in the US. This refers to the publicly funded POTS system. The idea is that the phone system is owned by the govt, not the telco. So the govt can mandate who can use it. Privately funded cable systems OTOH, have no requirement to allow competitors to use their infrastructure. The difference is that a cable company is not obligated to allow a competitor to sell cable or Internet service over their lines. Because connectivity is a necessary element of Internet service, blocking/restricting connectivity is a (partial) failure to fulfill their obligation the service contract. Applying "equal access" to viop would mean allowing other phone service prviders to use the voip servers that the cableco owned.
I wouldn't call this reality tv as much as i would call it a round peg shoehorned in to a square box. This is not at all suited to tv, the internet is a much better stage for this kind of "performance". Who wants to watch a sim make coffee, then a commercial, then watch a sim sleep, then a commercial? If you want to see a large scale version of "the sims" play a mmorpg version of the sims". TV execs just don't get it.
Q. What happens when you lose your telephone service because some idiot has launched a DOS attack on Vonage or the Verizon VoIP center?
A. The same thing that happens to your landline, when some idiot hits a telephone pole, and knocks out service.
I am a vonage customer for a couple years now, and I have never had a service problem. My internet has been out, and my router has died, but vonage keeps going. I even traveled to europe last summer, and used my vonage phone to call family and friends from the iCafe's in germany and poland. That's something you probably can't get from your local viop provider. I'd imagine they don't provide access to their viop servers from the world at large.
A big bonus is that as more and more folks get ip, we'll move from pots to voip. Once 80% of folks go voip, the telcos can finally rip out those old wires. Then we can use those conduits for 1Tb fiber instead of hundreds of unshielded copper pairs.
Agreed. But, I do think they have every right to adjust their prodict to bring in more revenue.... But I think if they introduce this "feature" it should be only on new tivo's, and not on a tivo already bought and activated. otherwise there'a bait and switch effect happening, which is a problem. They could certainly have an opt-in coupon. i.e. Get a $50 rebate if you agree to see the ff ads.
OTOH, if tivo goes under we are all screwed, and not just because my tivo stock would be worthless. Tivo is an innovator in their market (they created it), and if they leave, comcast, directv, and scientific atlanta are left to steer the ship. whe's the last time you saw them do something innovative? They are just now responding to tivo, not because they want to offer better service to their customers, but because they realize that a net connected tivo could undermine their whole business model.
Think about a show that doesn't exist on broadcast tv or cable, but is delivered over the net to tivo's. The distributor would save millions in fees by circumventing the big networks and the cable. It would be like ebay for tv. no more shows canceled by network execs, if the subscription base stays high enough, the show stays on, and you can watch it whenever you want.
If the anti-spam companies (espceially the ones with spam in their name) are smart, they'll voulnteer to put a disclaimer or reference to Hormel and SPAM on their websites. Clearly spam is a derivative of SPAM, and eventially Hormel will need to get ugly if the anti-UCE crowd is not active in clarifying that there are two different things called spam, one good and one bad.
On a side note, I don't like SPAM! but.. I for one welcome our new viking overlords.
it's beacuse that's how most progress is made, in very small increments. Linux was born to be incrementally better than minix, then made to be incrementally than *ix, then *ix, and so on. Now Linux is arguably the best unix out there (depends on your needs). A good side effect of open source code, is that anybody can make small changes that improve the overall package. Over time, these small moves add up to a huge advance over the original. Apache is a perfect example, it was not just an incremental improvement, but originally a straight copy of ncsa; take all those little patches, and package them into one tarball. Ok, it's not spectacular, but it's better than ncsa. Continue this process over 9 years, and you have not just the most popular, but an extremely stable, lightweight and portable web server. It's rare that you see a major development, especially within a specific area. Consider the fact that even software powerhouses like microsoft, sun & orace are all focused on developing new iterations of old ideas ( vms, unix, SQL). These three products/technologies are at least 20 years old, yet they still drive the software industry. Even Intel is milking a 30 year old product, the integrated microprocessor.
So you're a monk right? Surviving solely on the fruits of your own labor, spending every free moment to contemplate the nature of man, and the path to enlightenment.
STFU you hypocrite. How'd you get the money for a computer? Nevermind that somebody is paying for your internet access. It's called capitalism, it actually works, and its the least wrong idea we've come up with so far. If you don't have a beter idea, then stop mooching and start working.
to harp about "supporting" something as genuinely good and simple as spf, but to not use it to benefit others. They have not yet publushed spf records for msn.com, hotmail.com or microsoft.com. You would think they could generate a list of mail servers without too much trouble. A short list of comparable companies that have published spf records is: google.com, gmail.com, earthlink.com, aol.com, aol.net, apple.com. A more exhaustive list is here: http://spftools.infinitepenguins.net/earlyadopters.php
While the authors say the target audience includes "ISPs and mailbox providers", the list of recommendations reads like a wishlist for large ISPs and email hosters. These are the things that hotmail, yahoo and earthlink want us to do so they don't get as much spam. There is very little in there recommendations that will help me get less spam. If I could use spf to know where hotmail, msn and yahoo send mail from, I'd be able to reject 30% of the spammy organization recieves. This isn't on the list of recommendations, although aol, earthlink, and gmail all do publish spf records.
It's very hard for any mail administrator to block mail from these large domains, because so much of the legitimate mail comes from their actual servers (wherever these are). I'd be happy to reject all mail addresses from msn.com or yahoo.com, but my users would see a huge increase in false positives. It's a no brainer to drop messages addresses from dailyoffers.com because I don't see any legit mail addresed from this domain anyway.
There are plenty of places where they've never had the legacy of fully deployed infrastructure like in makor US cities. So in those places, then can go with whatever technology is appropriate, regardless of past investements/oblications in communications tech. As I understand, the phillipines is a great example. They did not have a full buildout of power/comm lines when wireless/cellular came out, so they were able to build out much cheaper and faster using wireless tech. Especially in the rural areas, telecomm services only became pervasive with the advent of wireless telecomm. I'm sure the numbers for dsl and cable also reflect this wireless infrastructure.
This idea rings a familiar tone. It reminds me of gun control laws and the death "penalty".
I think these things are good, and there is a happy medium, but probably for most of the folks who run afoul of these laws, the law is irrelevant. Folks who go around town with ak47's probably intend to commit multiple felonies, what's another couple charges to them? Likewise, folks who intend to murder other folks probably aren't concerned with the severity of the penalty. The basic punishments for murder seem like enough to deter a "deterrable" murderer.
I propose that there are always three groups of potential criminals: 1. choose not to commit criminal act by personal choice, regardless of the legality of the "crime".
2. some may choose not commit criminal act because they fear the potential consequences.
3. will commit crime regardless of the consequences, most likely because they are convinced they will/can not be caught. (essentially the opposite of group 1)
I've done security audits for online banking systems, and I can tell you fisrthand, they have weak security. Session hijacking and replay attacks are trivial.
The main reason the public thinks that online banking is secure is because banks don't reveal the security incidents. What bank wants to tell it's customers that fees are going up because a couple million was stolen over the internet?
I don't think sales is a profession of convictions. You go out and sell the products your company offers. I think every purchasing manager understands that.
Jus because this guy is now selling a competing product isn't going to make his (rational) sales contacts think he's a "traitor".
One thing that always gets me is that so many folks think linux is about beating MS. As Linus has espressed many times, Linux is about linux. MS sucks independent of Linux, it's a convenient coincidence.
Think about this, if MS got radically better, would Linux become irrelevant or unnecessary?
Adgeed! Having a single cable plant for telecomm and datacomm is a risk, but there are many benefits if you do it properly.
Before I go to far, a proper setup means redundancy on all critical components. Dual/rendundant core switches, dual links to all distribution switches, redundant voice gateways, backup power suplies and UPS power for all switches. Most important is an independent path to the pots world. Don't use your internet connection for access to the phone company, get dedicated circuits to the phone company for this purpose. We use two PRIs and haven't had any problems. Our internet connection has had several hiccups during this time, but we can still call the ISP to make sure the link comes back up. We can still do business over the phone, and email can still move via dsl while the T-1 is down.
The major advantage that an ethernet/ip network has over a pbx network is that an experienced engineer will design in redundant physical and logical paths for traffic. Convergence time for current link and routing protocols is down to several seconds, and configuration is much simpler (harder to do wrong) than just a few years ago.
You also get the benefits of shared costs, integration of corporate apps with phones, seamless moves/adds/changes, integrated voicemail/email, and greater independence from outside contractors. If you coordinate a voip implementation/pilot with your companies telco maintenance cycle, the real costs can be fairly low. Just swapping in a replacement for your current system will be quite expensive. But, for nearly every company, a major operating savings will be long distance calls. Especially any organization with multiple sites.
My company was able to coordinate our voip migration with a office move. When everybody got to the new office, we had the Cisco callmanager/unity system running. Although the sticker price was high, the real cost was fairly low since we had to rebuild our cable plant, and pay consultants for the move/reconfigure of our old pbx anyway. We were even able to sell the old system at a decent price after the move. We now have a much better data network, and our phone system operates underneath our data network.
One thing that is important is to be sure that if you use the same cable for voice and data, that the voice network is the foundation, and the data rides on top of that. This way the voice network has priority, and it isn't affected by data network problems. The voice systems ride on an entirely separate vlan, and aren't dependant on routing issues, or server problems. The only part of the voice service that depends on the data network is voicemail, which stores the messages in exchange.
Overall, I'm very happy with the system, and our management and staff have been pleased with the service since we implemented it. We can provide more telephone services to staff while maintaining the same high standard of reliablity that they're used to. The coolest feature is that staff can place calls directly from teh computer, just choose a contact from the directory, and hit dial, the speakerphone picks right up and places the call. Second best is that staff can listen to their voicemail messages via webmail. Even the real technophobes can get their heads around that.
Slashdot Mirror
Something I've always wondered, what happens if you lose your Yubikey or its electronics stuffs up? How do you reestablish your identity?
Are we back to security questions like "what's your mother's maiden name?"
Godel,
Same as with your house key or car key. You just setup another U2F/yubikey key and use that to recover/access your account, then disable the lost/damaged/stolen key.
First thing you've got to do is recognize that email is broken. we need an "smtp 2.0" which eliminates the spoofable "feature" of smtp mail, and ensures positive id for the sending and receiving servers. There are many ways to do this, but a place to start is to require DomainKeys on smtp 2.0 servers, which goes a long way towards this end.
Once we know who is talking to us, and who we're talking to, we can finally address the real issue. It costs almost nothing to send a billion emails, but it costs plenty to sort through a billion spams. If I can't spoof my source domain, then it becomes much more expensive to send spam if I have to authenticate when claiming to be a legitimate e-mail domain like yahoo, gmail or hotmail.
Also devise a scheme where it is computationally expensive to send an email, but is trivial to receive one. It wouldn't be expensive to send 1000 outgoing messages an hour, but 1000(or more) a minute will require serious hardware. The harder I make the challenge, the fewer emails a bogus (a small server is unlikely to be legitimately sending millions of messages) server can try to deliver.
smtp 2.0 servers would be set to favor established domains to which we frequently send & receive messages, also to set a hard limit for the number of messages an unknown domain can send to us. Since nobody will accept more than a handfull of emails from my newly registered domain, I have to drop a lot more money on bogus domains which i can't even use for a year or two. you can protect legitimate new domains by following a "certified SSL" protocol for validating the identity of a domain owner. anybody without a certified domain or an established domain will have a really hard time getting their spam delivered.
Of course the attackers will find weaknesses in the processes and protocols, but we can simply ensure that servers are ready to migrate to the rules of mail 2.1, which fills in the gaps of smtp 2.0. If your servers aren't updated to a recent smtp version, I can stop "preferring" your mail.
$50/hr is very cheap for a consultant. Especially for a short term job like a system setup. You're probably talking about 4-10hours of work depending on the system requirements. At most that's $550 bucks. If your business is that tight with $$, then you've got bigger problems.
BTW, If you *need* apps that only exist on one platform, you should probably stick with that platform. It would be foolish to pay for a custom build of a shrinkwrap product, especially when you consider the cost of maintenence.
you can randomly alter the numbers in my paycheck if there are at least 6 (xxxx.yy) digits in your randomizer. I could expect to get anywhere between 9999.99 and 0000.01 each pay period? Not a bad lottery!
do you need my bank account number for that direct deposit?
The poster is asking if s/he should re-invent the wheel, and while using gpg/pgp would provide some level of code re-use, there is a better way...
As there is no "scramble proof" radio technology, the best you can do is authenticate the sender and reciever. You can't prevent anyone from sending or recieving the radio signal. Although you can prove the authenticity of teh sender, and the authorization of the reciever. The best way is to use 802.11x to secure your radio transmissions. All the hard work is already done, and there's plenty of available hardware out there. You can easily use whatever transmission method you like, just wrap it all in 802.11x, and use WPA.
If you need secure radio signaling, I can't thing of a better, faster, cheaper system.
You friend is a real ballbreaker. If I was his boss, I'd at least restrict his work to a specific language, and toolset. At worst I'd fire him. Developing code which is unmaintainable is unacceptable, no matter how well it runs.
In his situation, charging 30K for "on-call work" is either blackmail, or ransom. If they can't find someone else because of the high skill level required, that's one thing. If they can't find anyone else beacuse he intentionally wrote code in 10 languages (how's that different from obfuscation?) for job security, then he's holding the future of the company's operations for ransom.
Regardless, the bottom line is that it's his boss's fault for not reigning him in before he could do so much damage.
You said it right... Whatever merit there is to his code, and "generosity", he shouldn't have been a dumbass and copied the name. If he created a site called, elinux.com, or freebsdee.com where he distributed a "clone" of those works, the slashdorks would be storming the castle with pitchforks. There would be bloodthirsty accusations of GPL violations, and calls for his head.
Hasbro *obviously* owns scrabble, and even if he didn't break the leter of the law, he certainly has shown himself to have poor ethics by distributing someone else's work without permission. And as far as damages go, he has clearly weakend the market hasbro to sell tehir product. Ask any musician if it's easier or harder to *sell* music online with napster/kazaa there.
A parallel is modifying a GPL probram, and redistributing without source, that's just as much a violation of copyright. The only difference being that the GPL encourages free copying, whereas scrabble is not licensed for free redistribution.
What i get most from my tivo is the ability to painlessly watch whatever shows I want, whenever I want. I'd enjoy my Tivo even if there were no ffd-ing through commercials. There's no tapes, and no discs, just the menu of available shows. I think Tivo's moves to add features are excatly what the platform needs. Now that the cablecos are providing DVRs to their customers, tivo has to jump even farther out with usability and features. I think alot of people assume they have to be like MS to be successfull. I think they can be quite successfull like Apple.
The media companies are too powerful for such a small company to go against, so they need to steer clear of the legal minefield that is genuine "fair use". If they try to fight that battle they will surely be sued out of business. The point of Tivo Inc, isn't to stick it to the man, but to make a buck. Let mythtv and eff battle the media giants.
If Tivo can strike deals with "content" producers like HBO, dreamworks or pixar, they could split millions of middleman fees that would normally go to manufacturers, distributors and retailers. If they do get such a deal, I can see their revenue, and stock value skyrocket.
You and the parent both work for cable companies, and it's interesting that you both miss a key point. There is a huge difference between what the cable company does, and what vonage does. The cable companies are now investing money to *recrecate* the type of system vonage has developed.
Vonage isn't in any way "leeching" off cable providers, just as amazon & ebay aren't leeching of any ISP. The Internet is an end-to-end system, so it takes two endpoints to be useful. Vonage is actually helping to make Internet service more attractive, by providing additional services *via* the Internet than were available previously.
If the cablecos want to build voip services also, that's great. The key to remember is that they are selling access to the global Internet, and if they start "pruning" of the sections of the Internet that happen to compete with their business, they're going to have to fight their customers, and the FCC.
You may be misinformed about "equal access" in the US. This refers to the publicly funded POTS system. The idea is that the phone system is owned by the govt, not the telco. So the govt can mandate who can use it. Privately funded cable systems OTOH, have no requirement to allow competitors to use their infrastructure. The difference is that a cable company is not obligated to allow a competitor to sell cable or Internet service over their lines. Because connectivity is a necessary element of Internet service, blocking/restricting connectivity is a (partial) failure to fulfill their obligation the service contract. Applying "equal access" to viop would mean allowing other phone service prviders to use the voip servers that the cableco owned.
I wouldn't call this reality tv as much as i would call it a round peg shoehorned in to a square box. This is not at all suited to tv, the internet is a much better stage for this kind of "performance". Who wants to watch a sim make coffee, then a commercial, then watch a sim sleep, then a commercial? If you want to see a large scale version of "the sims" play a mmorpg version of the sims". TV execs just don't get it.
A. The same thing that happens to your landline, when some idiot hits a telephone pole, and knocks out service.
I am a vonage customer for a couple years now, and I have never had a service problem. My internet has been out, and my router has died, but vonage keeps going. I even traveled to europe last summer, and used my vonage phone to call family and friends from the iCafe's in germany and poland. That's something you probably can't get from your local viop provider. I'd imagine they don't provide access to their viop servers from the world at large. A big bonus is that as more and more folks get ip, we'll move from pots to voip. Once 80% of folks go voip, the telcos can finally rip out those old wires. Then we can use those conduits for 1Tb fiber instead of hundreds of unshielded copper pairs.
i think you meant: /proc/sys/vm/swappiness
thanks for the handy hint. I've always hated 2.4's disk caching, swap happy, slow-in-the-morning, vm.
agreed,
Agreed. But, I do think they have every right to adjust their prodict to bring in more revenue.... But I think if they introduce this "feature" it should be only on new tivo's, and not on a tivo already bought and activated. otherwise there'a bait and switch effect happening, which is a problem. They could certainly have an opt-in coupon. i.e. Get a $50 rebate if you agree to see the ff ads.
OTOH, if tivo goes under we are all screwed, and not just because my tivo stock would be worthless. Tivo is an innovator in their market (they created it), and if they leave, comcast, directv, and scientific atlanta are left to steer the ship. whe's the last time you saw them do something innovative? They are just now responding to tivo, not because they want to offer better service to their customers, but because they realize that a net connected tivo could undermine their whole business model.
Think about a show that doesn't exist on broadcast tv or cable, but is delivered over the net to tivo's. The distributor would save millions in fees by circumventing the big networks and the cable. It would be like ebay for tv. no more shows canceled by network execs, if the subscription base stays high enough, the show stays on, and you can watch it whenever you want.
I agree,
If the anti-spam companies (espceially the ones with spam in their name) are smart, they'll voulnteer to put a disclaimer or reference to Hormel and SPAM on their websites. Clearly spam is a derivative of SPAM, and eventially Hormel will need to get ugly if the anti-UCE crowd is not active in clarifying that there are two different things called spam, one good and one bad.
On a side note, I don't like SPAM! but.. I for one welcome our new viking overlords.
do you really want to know?
. htmt ory.c fm?story_id=2724348t ion/faq.html#whatg y/oramag/oracle/03- may/o33drdba.htmlr ary/weekly/aa092998 .htm
it's beacuse that's how most progress is made, in very small increments. Linux was born to be incrementally better than minix, then made to be incrementally than *ix, then *ix, and so on. Now Linux is arguably the best unix out there (depends on your needs). A good side effect of open source code, is that anybody can make small changes that improve the overall package. Over time, these small moves add up to a huge advance over the original.
Apache is a perfect example, it was not just an incremental improvement, but originally a straight copy of ncsa; take all those little patches, and package them into one tarball. Ok, it's not spectacular, but it's better than ncsa. Continue this process over 9 years, and you have not just the most popular, but an extremely stable, lightweight and portable web server.
It's rare that you see a major development, especially within a specific area. Consider the fact that even software powerhouses like microsoft, sun & orace are all focused on developing new iterations of old ideas ( vms, unix, SQL). These three products/technologies are at least 20 years old, yet they still drive the software industry. Even Intel is milking a 30 year old product, the integrated microprocessor.
refs:
http://www.computerhope.com/history/unix
http://www.economist.com/science/tq/displayS
http://www.apache.org/founda
http://www.oracle.com/technolo
http://inventors.about.com/lib
So you're a monk right? Surviving solely on the fruits of your own labor, spending every free moment to contemplate the nature of man, and the path to enlightenment.
STFU you hypocrite. How'd you get the money for a computer? Nevermind that somebody is paying for your internet access. It's called capitalism, it actually works, and its the least wrong idea we've come up with so far. If you don't have a beter idea, then stop mooching and start working.
to harp about "supporting" something as genuinely good and simple as spf, but to not use it to benefit others. They have not yet publushed spf records for msn.com, hotmail.com or microsoft.com. You would think they could generate a list of mail servers without too much trouble. A short list of comparable companies that have published spf records is: google.com, gmail.com, earthlink.com, aol.com, aol.net, apple.com. A more exhaustive list is here: http://spftools.infinitepenguins.net/earlyadopters .php
-earl
While the authors say the target audience includes "ISPs and mailbox providers", the list of recommendations reads like a wishlist for large ISPs and email hosters. These are the things that hotmail, yahoo and earthlink want us to do so they don't get as much spam. There is very little in there recommendations that will help me get less spam. If I could use spf to know where hotmail, msn and yahoo send mail from, I'd be able to reject 30% of the spammy organization recieves. This isn't on the list of recommendations, although aol, earthlink, and gmail all do publish spf records.
It's very hard for any mail administrator to block mail from these large domains, because so much of the legitimate mail comes from their actual servers (wherever these are). I'd be happy to reject all mail addresses from msn.com or yahoo.com, but my users would see a huge increase in false positives. It's a no brainer to drop messages addresses from dailyoffers.com because I don't see any legit mail addresed from this domain anyway.
what i want to knwo is when can we turn these hotspots into voip transmission towers for wireless viop phones?
Call it leapfrogging,
There are plenty of places where they've never had the legacy of fully deployed infrastructure like in makor US cities. So in those places, then can go with whatever technology is appropriate, regardless of past investements/oblications in communications tech. As I understand, the phillipines is a great example. They did not have a full buildout of power/comm lines when wireless/cellular came out, so they were able to build out much cheaper and faster using wireless tech. Especially in the rural areas, telecomm services only became pervasive with the advent of wireless telecomm. I'm sure the numbers for dsl and cable also reflect this wireless infrastructure.
If you think you've got it bad in Canada with CBC, you should come hang out in America and check out ABC.
Even fox is better. As much as I can't stand fox, at least they've got the simpsons.
This idea rings a familiar tone. It reminds me of gun control laws and the death "penalty".
I think these things are good, and there is a happy medium, but probably for most of the folks who run afoul of these laws, the law is irrelevant. Folks who go around town with ak47's probably intend to commit multiple felonies, what's another couple charges to them? Likewise, folks who intend to murder other folks probably aren't concerned with the severity of the penalty. The basic punishments for murder seem like enough to deter a "deterrable" murderer.
I propose that there are always three groups of potential criminals:
1. choose not to commit criminal act by personal choice, regardless of the legality of the "crime".
2. some may choose not commit criminal act because they fear the potential consequences.
3. will commit crime regardless of the consequences, most likely because they are convinced they will/can not be caught. (essentially the opposite of group 1)
I've done security audits for online banking systems, and I can tell you fisrthand, they have weak security. Session hijacking and replay attacks are trivial.
The main reason the public thinks that online banking is secure is because banks don't reveal the security incidents. What bank wants to tell it's customers that fees are going up because a couple million was stolen over the internet?
I don't think sales is a profession of convictions. You go out and sell the products your company offers. I think every purchasing manager understands that.
Jus because this guy is now selling a competing product isn't going to make his (rational) sales contacts think he's a "traitor".
One thing that always gets me is that so many folks think linux is about beating MS. As Linus has espressed many times, Linux is about linux. MS sucks independent of Linux, it's a convenient coincidence.
Think about this, if MS got radically better, would Linux become irrelevant or unnecessary?
Adgeed! Having a single cable plant for telecomm and datacomm is a risk, but there are many benefits if you do it properly.
Before I go to far, a proper setup means redundancy on all critical components. Dual/rendundant core switches, dual links to all distribution switches, redundant voice gateways, backup power suplies and UPS power for all switches. Most important is an independent path to the pots world. Don't use your internet connection for access to the phone company, get dedicated circuits to the phone company for this purpose. We use two PRIs and haven't had any problems. Our internet connection has had several hiccups during this time, but we can still call the ISP to make sure the link comes back up. We can still do business over the phone, and email can still move via dsl while the T-1 is down.
The major advantage that an ethernet/ip network has over a pbx network is that an experienced engineer will design in redundant physical and logical paths for traffic. Convergence time for current link and routing protocols is down to several seconds, and configuration is much simpler (harder to do wrong) than just a few years ago.
You also get the benefits of shared costs, integration of corporate apps with phones, seamless moves/adds/changes, integrated voicemail/email, and greater independence from outside contractors. If you coordinate a voip implementation/pilot with your companies telco maintenance cycle, the real costs can be fairly low. Just swapping in a replacement for your current system will be quite expensive. But, for nearly every company, a major operating savings will be long distance calls. Especially any organization with multiple sites.
My company was able to coordinate our voip migration with a office move. When everybody got to the new office, we had the Cisco callmanager/unity system running. Although the sticker price was high, the real cost was fairly low since we had to rebuild our cable plant, and pay consultants for the move/reconfigure of our old pbx anyway. We were even able to sell the old system at a decent price after the move. We now have a much better data network, and our phone system operates underneath our data network.
One thing that is important is to be sure that if you use the same cable for voice and data, that the voice network is the foundation, and the data rides on top of that. This way the voice network has priority, and it isn't affected by data network problems. The voice systems ride on an entirely separate vlan, and aren't dependant on routing issues, or server problems. The only part of the voice service that depends on the data network is voicemail, which stores the messages in exchange.
Overall, I'm very happy with the system, and our management and staff have been pleased with the service since we implemented it. We can provide more telephone services to staff while maintaining the same high standard of reliablity that they're used to. The coolest feature is that staff can place calls directly from teh computer, just choose a contact from the directory, and hit dial, the speakerphone picks right up and places the call. Second best is that staff can listen to their voicemail messages via webmail. Even the real technophobes can get their heads around that.