... goto videolan.org and enjoy. I've streamed a divx @ 150Kb/s by just pointing to an http location; you on the other hand can't do that or you won't be able to stream more than 2~3 clients. You want broadcast and videolan does just that! Check the link ASAP, it was designed for you.
Ermh, sorry but how 'bout Kerberos? M$ AD implements a bastardized Kerberos proto/server already and so does W2K/XP. All M$ is doing quite simply is a kernel module to cache a bunch of AD kerberos keys and adding an API to access it. No real innovation as usual, just a cute package and (hope not!) some lousy patent. You could do the same too, say a cryptfs (not loopback mind you) that recodes it's content on some expirable/renewable kerberos key (road warrior checks out laptop for approved mission and gets 48h validity key). The driver itself would have to trust the app calling the API (say, hashing it's core against a list of known good signed ssha) so it's Palladium again. This also means that the whole scheme is trash without Palladium. As far as I'm concerned it all depends on how open the root certificate authorities are. If company A can issue it's own CA and sign company approved kernels (I'm talking linux of course) there's no problem getting OpenOffice to work. If company A wants to export the file to B there's the problem of the middleman CA: if it's only M$ well, VeriSign will get pissed and everybody will argue against the monopolistic position. I feel they'll take their broken Kerberos (how 'bout taking and not giving back!) and offer SDKs under nasty EULAs. That's quite a strategy to weasel their stuff into the NAS,SAN server room; some 100 metric ton Gorilla investing in Linux won't be pleased;-)
/* sarcasm */ I tried to reply to the Apple Developer newsletter to thank all the mac devs for working on such a cool system but somehow my mail didn't come through. Huh? Oh, I guess it must be a moderated mailman list or better, it's just a databse table in a mass mail application./* end sarcasm */ I think email shouldn't be used for everything; my INBOX isn't a kitchen sink! Actually I have to set up mail filters and subfolders to put some order to these feeds that are oneway anyway and practically are just a headline summary. I think it's ok to use email for it's purpose, that is to help people communicate so content partitioning won't hurt. Not that open mailinglists are going to die soon; actually mailing lists are a newsgroup with added moderation option... a necessity born after spammers and newbies blew usenet. I wonder why mailing-lists are so common anyway; perhaps mailman is easier to config than a newsserver but I personally think the wire load on a public auth'ed newsserver would be lighter; most mailinglist users actually end up having a newsgroup hirearchy in their email app anyway.
Oh, I thought the "80% userbase doesn't need 20% of the features" argument was voted moot when *NIX apps couldn't keep up with the cornucopia Office offered? Now that the heat's up some voices start to dig it up again; how weird. Granted, your % are much more stringent: 5% against 20%. Wow, you must win. Sorry Astroturfer... next time.
Oh, but there's no service pack my dear friend! As long as you mirror (just to spare some bandwidth) internally a public update mirror (ftp:// you know... that old, passe technology... nothing advanced like MS Corporate Deployment Strategic Architectural Infrastructure etc...) it's completely hassle free to upgrade the packages installed on yor workstations. Granted, I don't use RH but MDK, nor does my installed base require central "hoarded" upgrades (I just skimread the man for urpmi) but it's just that easy you know. If you really trust the guys you can just trust the suckers and cron an rpm -Uvh ftp://path/*.rpm Sorry Astroturfer... we don't have Service Packs because we don't NEED Service Packs. Enjoy!
No, it's not/.ed, yet. The image links pump at good speed, only trouble is... they're.pngs at around 1~2 Mb each! Well, I suppose the kinds don't have bw caps.
Me too! I remember an article on SciAm on the correlation between these clouds and ozone layer destruction. Ok, googled a couple of minutes and found this.
As far as I remember that couldn't have been possible. If I'm not mistaken the mission equipment didn't include spacesuits and docks to exit into outer space. The astronouts were sealed into the vehicle unable to get themselves out or equipment or rations in. There simply wasn't any chance of fixing the mission; it was a dead end. Designed as a dead end.
Evolution uses a strange schema type called evolutionPerson (google for it or check/usr/share/doc/evolution). In short it maps some datafields to regular organizationalPerosn while other fall in custom attributes. There are special directives to map attributes to other using something like regexps (help! I once read it on a long persentation... my HD is 30/37 GB full... no wait... haha! HERE!... it's in the LDAP section) so essentially you could manually map some fieldls to other to change the overall LDIF upon insertion. Otherwise just hack a script (in an ldif aware lang... say perl/php... ruby?) to parse the whacko entryes and reformat to your needs. In my little setup anyway Directory Administrator (linux gtk tool) is good enough for maintentance and except for system attributes (uid,guid,uname,etc...) I give users full self ACL rw perms. This way, users of Evo have to login/pw to access the Directory, and can use the whole dataset but edit/correct only their own account specifics.
Enjoy... it's cool... beats M$ AD's 5c per transacion;-)
You should scan your internet interface address. If you list your firewall ruleset on console (should be something like ipfw) 127.0.0.1 has all access granted; the restrictions apply on any other interface. That's standart practice as far as I know... (typical on FreeBSD is to recompile the kernel with default 'deny' and forget to reopen lo... lots of problems and mailing list posts;-)
I don't agree with the article on a point: Automatic Update on OS X is just foolproof. Whenever I get a connection the thing daemons and notifies me if there's something up. I get a decent descriprion of the download and just click Install. It doesn't fight wih other app notifications in a jungle of icons on the lower right of the screen because it's icon starts bouncing on the dock screaming for attention and then simply opens an app window on top of anything else. Cool; never missed a patch. As far as "insecure by design" well, the article says it: Jeff Jones says XP was designed around customers asking just for compatibility and unobtrusiveness with previous setups. Well, MS just took the easy path leaving the system open to anything and laying the blame on the userbase for that ("Well, after all YOU asked for this!") Any attempts to security were implemented half-heartedly to induce users to ditch restrictive setups and just open up to allow the worst wacko installer (heh, the clock) possible. No, I agree with the gist of the article: MS's design goal is simply market domination and no (whatsoever) customer satisfaction. plain simple.
sparse? I just love Safari's toolbar! Is that sparse? No, it even condenses reload/stop in one single button (rather than wasting two buttons and graying them out alternatively); I've become accustomed to this, it's just neat (and darn logical)
Yeah, shure go ahead. Next time a silly MBA manager says the latest corporate strategy requires that Critical Systems be exposed to them to extract valuable data to cut'n'paste on their excel spreadsheets go ahed and hit them with a cluestick! What if they fire you for interfering with their Time To Market plan? I'm pretty shure the *replaceable* network admins (or PFY) were pretty aware that the clueless boss wouldn't take NO for an answer! This shit happens when M$ propaganda settles in the management minds that there's no need for "sacerdotal white robed gurus" running the corporate network as their own; after all *they* are getting the stock options and *they* make the Coorporate Strategic Decisions so there's no place for a hippy freak nerd to interfere. I'm on a flaming rant but this shit happens when clueless/mindless drones are driven like a flock of sheep by "... we save 5 cents per transaction..." commercials... welcome to the SNAFU corporate post-global-new-economy (always been the same)
Sadly it doesn't fully interoperate with other AIM tools: AV features are only available if both parties use iChat. Parhaps the limit will be lifted when it goes out of beta but for the time being I'm stuck with AIM on Classic (which DOES have the talk feature while the X one doesn't!) Now, I'm pretty shure Apple will drop the ridiculous limitation soon because as far as I'm concerned, iChat AV isn't worth a cent more than the 1.0 iteration if I can't chat with my windoze luser friends. Frankly I'm not going to make a fool of myself advocating them to switch just to enjoy listening to my voice. On the other hand, I might shell out for an iSight when the thing will work with the AIM user base and only then will I lord over them the superiority of my equipment;-). I'm not a mac addict so I'm not willing to endure self-segregation just to feel a 'leet geek.
Well there's a 'continue' feature common to many ftp/http clients that (wow) continues partial downloads from the point they were interrupted. It's a patented tech from M$ only recenlty added to Longhorn IE betas but the M$ engineers are working hard to distribute this extraordinary feature to all users of the Windows Update service (how kind of them eh?) Don't worry M$ works for YOU (Buahahaha!), after all, how many users have asked for such rocket science tech embedded in IE?
Right, I'm no coder actually: some php and odd C walkthrough thingie to check out exploits. Anyway, excusatio non petita but here it goes: why is the community chasing M$ in it's hide&seek strategy? Isn't the M$ auth GINA (what a lousy name...) whatever replaceable? M$ does kerberos proprietay? M$ AD is a vbasic LDAP server and some undoc binary protocol? Screw them! Let's interface windows auth methods to unix rather than run after their stuff. Wouldn't it be cool if the samba tree included some.dll to log a M$ box into an ldap ssha or cert , standards kerberos environment? Why screw unix philosophy for M$isms? Ok, it's a flaming comment but really, is there a reason for not taking this road?
When time for an upgrade came I thought: screw games, I'll go with whatever I get for mac if any. I want it mobile, no more desktops, basta. Should I spend > 1500 for a machine and still have to boot MS to get what I paid for? Should I struggle with poorly designed hardware strung together by a hideous bunch of hackish miniport drivers? Shall I risk frying my expensive HW because linux can't help but drop the towel because of some manufacturer's poorly standardized, buggy bios implementation of ACPI? No. So I held my breath and bought an Apple. I miss linux though.;-)
So for those "creative" people to be able to manage thier computer Apple came up with set of "metahpors" that were, to say the least, very unnatural for IT guys. So you had system extentions, control panels, prefernces and God knows what else. Every other program you install always would add something in your system folder. Then you had to get a programm that would hunt down conflicts between those extentions. Then you had to install "crush" analyzer that would freez your box even more often. And so on ad nauseum.
Reading your comment I couldn't help thinking of Win95/98/NT4. Do you realize that before W2K Wintel machines required a clean reinstall? (and service pack, apps reinstall, domain join, etc...) And even W2K didnt' really solve all it's problems the day it was released: I still remember PC mags with multi-page tables of unsupported Hadrware that could deadlock a fresh install! (some logitech mice too!) I've never touched a mac before osX so I do remember what C:\windows\* looks like after a couple of months of usage; when I got my first internet access I had to slap trumpet winsock (trialware) from my provider to get on the net; Norton reg/sysdir cleaner & defrag. I still remember the releif when I started to figure out RH5.2
I repeat: slamming mac os for it's primitiveness is futile from todays perspective and actually I used to stare in wonder at those machines.
Evolution does (actually I found it quite annoying and looked around to disable the feature); perhaps you're tied to MS platform but if you can give Evolution a run on a *NIX workstation.
If I'm not mistaken encryption algorithms were exported in printed form *before* Clinton (_the_ devil, according to Rep. rednecks) decided to relax export restrictions; the authors exploited a loophole in your constitution about free speech so thank your Founding Fathersfor that;-) (don't fear, Bush is already at work to plug that too;-)) BTW, would ecommerce be anywhere with 56-bit DES? The 9/11 comms snafu only proved that intelligence services can't just get away by snooping the wires from an airco office desk. Interception is a complement to the real thing: infiltration, grooming and varous kinds of active probes. And finally: the delay wasn't caused by encryption but the volume of data to sift through (it would have passed unnoticed anyway, had it been encrypted).
Are you trying to sell the idea that if some twisted transport company chose for whatever reason (I can think of a dozen politically-correct-spin-doctor-on-speed arguments) to enforce racial segregation we should accept it? No, no. If a cable tv network chose to install micro cameras in sitting rooms to verify license agreement compliance what would you say?
Sorry I don't agree. As long as there's a compiler (like gcc) and decent documentation for the architecture (boot process, board logic, etc) there's nothing to complain about it. Is intel GTL bus non-proprietary? Is AGP unencumbered? Are AMDs processors libre? Just because everyone and your neighbour own (or should I say license?) one doesn't mean it's non-propietary (take M$). If sony releases detailed specs (or even reference implenetations) for their hardware they're just as good as anyone else.
Slashdot Mirror
... goto videolan.org and enjoy. I've streamed a divx @ 150Kb/s by just pointing to an http location; you on the other hand can't do that or you won't be able to stream more than 2~3 clients. You want broadcast and videolan does just that! Check the link ASAP, it was designed for you.
Ermh, sorry but how 'bout Kerberos? M$ AD implements a bastardized Kerberos proto/server already and so does W2K/XP. All M$ is doing quite simply is a kernel module to cache a bunch of AD kerberos keys and adding an API to access it. No real innovation as usual, just a cute package and (hope not!) some lousy patent. You could do the same too, say a cryptfs (not loopback mind you) that recodes it's content on some expirable/renewable kerberos key (road warrior checks out laptop for approved mission and gets 48h validity key). The driver itself would have to trust the app calling the API (say, hashing it's core against a list of known good signed ssha) so it's Palladium again. This also means that the whole scheme is trash without Palladium. As far as I'm concerned it all depends on how open the root certificate authorities are. If company A can issue it's own CA and sign company approved kernels (I'm talking linux of course) there's no problem getting OpenOffice to work. If company A wants to export the file to B there's the problem of the middleman CA: if it's only M$ well, VeriSign will get pissed and everybody will argue against the monopolistic position. I feel they'll take their broken Kerberos (how 'bout taking and not giving back!) and offer SDKs under nasty EULAs. That's quite a strategy to weasel their stuff into the NAS,SAN server room; some 100 metric ton Gorilla investing in Linux won't be pleased ;-)
/* sarcasm */ /* end sarcasm */
I tried to reply to the Apple Developer newsletter to thank all the mac devs for working on such a cool system but somehow my mail didn't come through. Huh? Oh, I guess it must be a moderated mailman list or better, it's just a databse table in a mass mail application.
I think email shouldn't be used for everything; my INBOX isn't a kitchen sink! Actually I have to set up mail filters and subfolders to put some order to these feeds that are oneway anyway and practically are just a headline summary. I think it's ok to use email for it's purpose, that is to help people communicate so content partitioning won't hurt. Not that open mailinglists are going to die soon; actually mailing lists are a newsgroup with added moderation option... a necessity born after spammers and newbies blew usenet. I wonder why mailing-lists are so common anyway; perhaps mailman is easier to config than a newsserver but I personally think the wire load on a public auth'ed newsserver would be lighter; most mailinglist users actually end up having a newsgroup hirearchy in their email app anyway.
Oh, I thought the "80% userbase doesn't need 20% of the features" argument was voted moot when *NIX apps couldn't keep up with the cornucopia Office offered? Now that the heat's up some voices start to dig it up again; how weird. Granted, your % are much more stringent: 5% against 20%. Wow, you must win. Sorry Astroturfer... next time.
Oh, but there's no service pack my dear friend! As long as you mirror (just to spare some bandwidth) internally a public update mirror (ftp:// you know... that old, passe technology... nothing advanced like MS Corporate Deployment Strategic Architectural Infrastructure etc...) it's completely hassle free to upgrade the packages installed on yor workstations. Granted, I don't use RH but MDK, nor does my installed base require central "hoarded" upgrades (I just skimread the man for urpmi) but it's just that easy you know. If you really trust the guys you can just trust the suckers and cron an rpm -Uvh ftp://path/*.rpm Sorry Astroturfer... we don't have Service Packs because we don't NEED Service Packs.
Enjoy!
No, it's not /.ed, yet. The image links pump at good speed, only trouble is... they're .pngs at around 1~2 Mb each! Well, I suppose the kinds don't have bw caps.
Me too! I remember an article on SciAm on the correlation between these clouds and ozone layer destruction. Ok, googled a couple of minutes and found this.
As far as I remember that couldn't have been possible. If I'm not mistaken the mission equipment didn't include spacesuits and docks to exit into outer space. The astronouts were sealed into the vehicle unable to get themselves out or equipment or rations in. There simply wasn't any chance of fixing the mission; it was a dead end. Designed as a dead end.
Evolution uses a strange schema type called evolutionPerson (google for it or check /usr/share/doc/evolution). In short it maps some datafields to regular organizationalPerosn while other fall in custom attributes. There are special directives to map attributes to other using something like regexps (help! I once read it on a long persentation... my HD is 30/37 GB full... no wait... haha! HERE!... it's in the LDAP section) so essentially you could manually map some fieldls to other to change the overall LDIF upon insertion. Otherwise just hack a script (in an ldif aware lang... say perl/php... ruby?) to parse the whacko entryes and reformat to your needs. In my little setup anyway Directory Administrator (linux gtk tool) is good enough for maintentance and except for system attributes (uid,guid,uname,etc...) I give users full self ACL rw perms. This way, users of Evo have to login/pw to access the Directory, and can use the whole dataset but edit/correct only their own account specifics.
Enjoy... it's cool... beats M$ AD's 5c per transacion ;-)
You should scan your internet interface address. If you list your firewall ruleset on console (should be something like ipfw) 127.0.0.1 has all access granted; the restrictions apply on any other interface. That's standart practice as far as I know... (typical on FreeBSD is to recompile the kernel with default 'deny' and forget to reopen lo... lots of problems and mailing list posts ;-)
I don't agree with the article on a point:
Automatic Update on OS X is just foolproof. Whenever I get a connection the thing daemons and notifies me if there's something up. I get a decent descriprion of the download and just click Install. It doesn't fight wih other app notifications in a jungle of icons on the lower right of the screen because it's icon starts bouncing on the dock screaming for attention and then simply opens an app window on top of anything else. Cool; never missed a patch.
As far as "insecure by design" well, the article says it:
Jeff Jones says XP was designed around customers asking just for compatibility and unobtrusiveness with previous setups. Well, MS just took the easy path leaving the system open to anything and laying the blame on the userbase for that ("Well, after all YOU asked for this!") Any attempts to security were implemented half-heartedly to induce users to ditch restrictive setups and just open up to allow the worst wacko installer (heh, the clock) possible.
No, I agree with the gist of the article: MS's design goal is simply market domination and no (whatsoever) customer satisfaction. plain simple.
sparse? I just love Safari's toolbar! Is that sparse? No, it even condenses reload/stop in one single button (rather than wasting two buttons and graying them out alternatively); I've become accustomed to this, it's just neat (and darn logical)
Yeah, shure go ahead. Next time a silly MBA manager says the latest corporate strategy requires that Critical Systems be exposed to them to extract valuable data to cut'n'paste on their excel spreadsheets go ahed and hit them with a cluestick! What if they fire you for interfering with their Time To Market plan? I'm pretty shure the *replaceable* network admins (or PFY) were pretty aware that the clueless boss wouldn't take NO for an answer! This shit happens when M$ propaganda settles in the management minds that there's no need for "sacerdotal white robed gurus" running the corporate network as their own; after all *they* are getting the stock options and *they* make the Coorporate Strategic Decisions so there's no place for a hippy freak nerd to interfere.
I'm on a flaming rant but this shit happens when clueless/mindless drones are driven like a flock of sheep by "... we save 5 cents per transaction..." commercials... welcome to the SNAFU corporate post-global-new-economy (always been the same)
Sadly it doesn't fully interoperate with other AIM tools: AV features are only available if both parties use iChat. Parhaps the limit will be lifted when it goes out of beta but for the time being I'm stuck with AIM on Classic (which DOES have the talk feature while the X one doesn't!) Now, I'm pretty shure Apple will drop the ridiculous limitation soon because as far as I'm concerned, iChat AV isn't worth a cent more than the 1.0 iteration if I can't chat with my windoze luser friends. Frankly I'm not going to make a fool of myself advocating them to switch just to enjoy listening to my voice. On the other hand, I might shell out for an iSight when the thing will work with the AIM user base and only then will I lord over them the superiority of my equipment ;-). I'm not a mac addict so I'm not willing to endure self-segregation just to feel a 'leet geek.
Oh God, no! You've just given them the worst idea possible!
Well there's a 'continue' feature common to many ftp/http clients that (wow) continues partial downloads from the point they were interrupted. It's a patented tech from M$ only recenlty added to Longhorn IE betas but the M$ engineers are working hard to distribute this extraordinary feature to all users of the Windows Update service (how kind of them eh?) Don't worry M$ works for YOU (Buahahaha!), after all, how many users have asked for such rocket science tech embedded in IE?
Right, I'm no coder actually: some php and odd C walkthrough thingie to check out exploits. Anyway, excusatio non petita but here it goes: why is the community chasing M$ in it's hide&seek strategy? Isn't the M$ auth GINA (what a lousy name...) whatever replaceable? M$ does kerberos proprietay? M$ AD is a vbasic LDAP server and some undoc binary protocol? Screw them! Let's interface windows auth methods to unix rather than run after their stuff. Wouldn't it be cool if the samba tree included some .dll to log a M$ box into an ldap ssha or cert , standards kerberos environment? Why screw unix philosophy for M$isms? Ok, it's a flaming comment but really, is there a reason for not taking this road?
When time for an upgrade came I thought: screw games, I'll go with whatever I get for mac if any. I want it mobile, no more desktops, basta. Should I spend > 1500 for a machine and still have to boot MS to get what I paid for? Should I struggle with poorly designed hardware strung together by a hideous bunch of hackish miniport drivers? Shall I risk frying my expensive HW because linux can't help but drop the towel because of some manufacturer's poorly standardized, buggy bios implementation of ACPI? No. ;-)
So I held my breath and bought an Apple. I miss linux though.
So for those "creative" people to be able to manage thier computer Apple came up with set of "metahpors" that were, to say the least, very unnatural for IT guys. So you had system extentions, control panels, prefernces and God knows what else. Every other program you install always would add something in your system folder. Then you had to get a programm that would hunt down conflicts between those extentions. Then you had to install "crush" analyzer that would freez your box even more often. And so on ad nauseum.
Reading your comment I couldn't help thinking of Win95/98/NT4. Do you realize that before W2K Wintel machines required a clean reinstall? (and service pack, apps reinstall, domain join, etc...) And even W2K didnt' really solve all it's problems the day it was released: I still remember PC mags with multi-page tables of unsupported Hadrware that could deadlock a fresh install! (some logitech mice too!) I've never touched a mac before osX so I do remember what C:\windows\* looks like after a couple of months of usage; when I got my first internet access I had to slap trumpet winsock (trialware) from my provider to get on the net; Norton reg/sysdir cleaner & defrag. I still remember the releif when I started to figure out RH5.2 I repeat: slamming mac os for it's primitiveness is futile from todays perspective and actually I used to stare in wonder at those machines.
Evolution does (actually I found it quite annoying and looked around to disable the feature); perhaps you're tied to MS platform but if you can give Evolution a run on a *NIX workstation.
If I'm not mistaken encryption algorithms were exported in printed form *before* Clinton (_the_ devil, according to Rep. rednecks) decided to relax export restrictions; the authors exploited a loophole in your constitution about free speech so thank your Founding Fathersfor that ;-) (don't fear, Bush is already at work to plug that too ;-)) BTW, would ecommerce be anywhere with 56-bit DES? The 9/11 comms snafu only proved that intelligence services can't just get away by snooping the wires from an airco office desk. Interception is a complement to the real thing: infiltration, grooming and varous kinds of active probes. And finally: the delay wasn't caused by encryption but the volume of data to sift through (it would have passed unnoticed anyway, had it been encrypted).
flag the /home fs noexec... I suggest you have another go at those HOWTOs ;-)
Are you trying to sell the idea that if some twisted transport company chose for whatever reason (I can think of a dozen politically-correct-spin-doctor-on-speed arguments) to enforce racial segregation we should accept it? No, no. If a cable tv network chose to install micro cameras in sitting rooms to verify license agreement compliance what would you say?
Sorry I don't agree. As long as there's a compiler (like gcc) and decent documentation for the architecture (boot process, board logic, etc) there's nothing to complain about it. Is intel GTL bus non-proprietary? Is AGP unencumbered? Are AMDs processors libre? Just because everyone and your neighbour own (or should I say license?) one doesn't mean it's non-propietary (take M$). If sony releases detailed specs (or even reference implenetations) for their hardware they're just as good as anyone else.
Or rather a local economy member. It's nothing to do with anti-US feelings but rather keep the money rolling under the same GNP umbrella.