Sure, 2005-2007 servers are suitable for production--just keep using the current Solaris 10 software. The real question is, "Should I deploy a new server, which typically runs for several years, based on obsolete hardware?"
> The only router claiming IPv6 support in their specifications is the Apple Airport. Linksys and D-Link apparently have plans, yet nothing in the user documentation.
D-Link and Cisco support IPv6. The D-Link-supported routers (a firmware update may be needed) are:
DI-784 abg, DI-524 bg, DI-624 bg, WBR-1310 g, WBR-2310 g rangebooster, DIR-615 n. See p. 16 of
Ref: http://www.ipv6.org.tw/summit2008/doc/1-4-4.pdf
On p. 15, they say:
"Not only [does D-Link] meet IPv6 Ready logo requirements, but also upper layer IPv6 connection mechanisms:
Static IP, DHCPv6 (Stateful), DHCPv6 (Stateless), PPPoE, IPv6/IPv4 Tunneling, 6to4 Tunneling, Autoconfiguration, Link-Local connection."
Here's a minor chapter for the history books. The address for Mosaic Communications (later Netscape) was mcom.com, not mosaic.com. Mosaic.com was owned by a pre-existing company working on document scanning. Mosaic Communications lawyers threatened to sue them out of existence, so the original Mosaic was given to Mosaic Communications.
The funny thing is the University of Illinois Urbana-Champaign (UIUC) NCSA lawyers made Mosaic Communications change their name (eventually Netscape), because Mosaic was a trademark of the UIUC.
Instead of copyright law biased to the media companies, how about FAIR copyright? Current copyright has outrageously long terms lasting several decades (sometimes over a century). Copyright law has no provision for punishment for Copyright FRAUD where media companies claim copyright on public domain works. Fair use is intentionally vague. Let's level the playing field--both Republicans and Democrats in Congress are in the racket, passing ever-more biased copyright law.
Disable mysql external access by adding this line to/etc/my.cnf :
skip-networking
This will prevent external access to MySQL, firewall or no firewall.
All access will go through Unix sockets or named pipes. Restart mysql with/etc/init.d/mysql restart For me, no other configuration was required for several mysql-consuming apps, including php custom scripts, phpbb, phorum, and sympoll.
I switched to recaptcha, which uses OCR'ed texts to validate. Ever since I switched I don't get the automated spammers signing up. There are plugins for various languages and bulletin board sytsems (such as phpbb). It has a side-benefit of correcting OCRed public domain books.
Flash ads used to annoy me, but now that I use the Flashblock plugin to Firefox, I only view the flash I want to (99% of the time flash is an annoying animated ad).
This doesn't take care of ad "previews" on the rare flash you may actually want to see, but nobody is forcing to to watch it.
I stop Flash animations with the Flashblock Add-on. Just go to Tool-->Add-ons, search for Flashblock and install.
You can enable Flash for selected (well-behaved sites) or just click on a Flash icon to enable specific animations within any webpage.
It's made my surfing experience a lot less aggravating.
A fix for telnetd is now available for free download from sunsolve.sun.com
e SPARC patch is 120068-02 or later and X86 patch is 120069-02.
In any case, it's probably best to disable telnetd with svcadm disable telnet Better yet, next time you install or upgrade use the "reduced networking profile" which has most services disabled (not ssh).
telnet is NOT enabled by default for Solaris 10 11/06 for a fresh install. You can choose to enable telnet and a whole lot of other services explicitly, but that is NOT the default. The default is to have telnet and other services disabled.
For legacy Solaris systems upgraded to Solaris 10 11/06 you can disable telnet and several other services by typing at the command line:/usr/sbin/netservices limited
You can tell if you're running Solaris 10 11/06 by looking in file/etc/release
’672 has expired, but the patent owner has 6 years to file a suit. All they need to do to prove their case is that the violation occurred before the patent expired. They don't have to sue before the patent expires--they have 6 years to do that.
I run a community bulletin board and believe me it get's a lot of robots (probably from zombie systems) sending spam. Registration greatly reduces this spam. Much as I dislike registration, I think this may be helping the spammers and reduce the availability of message boards.
This sounds like a good effort. Another similar effort is
GELC (Global Education Learning Community), which is an effort led by Sun Microsystems founder Scot McNealy to provide textbooks and software for free online using the open source model. Here's an article on GELC.
Most public NTP servers require permission prior to use. The list of public NTP servers have an email address or webpage form to use prior to using their NTP server.
The reason for this is to avoid problems like this, where the NTP server is overloaded or the NTP client is mis-configured and overloads the server or network.
It's strange these companies can't afford to set up a few of their own NTP servers instead of overloading servers that don't have the bandwidth.
It it's because they are clueless or they are cheap?
Taking out spammers and bloggers? I can't see any down side to this, honestly.
Since you're a blogger, the best thing to do is to start with taking out yourself. Seriously though, nobody has to read blogs—spam is forced on people.
The mega-long URLs are keys to lookup the webpage in a database. It appears to use GovOffice, some Microsoft-based ware. Tuttle's new webserver is based on MS Windows.
The Tuttle Times, with its hacked, misconfigured server, is too stupid, but try telling it to The Oklahoman of Oklaholma City. Tuttle is just a suburb of OK City.
SSL certs are not sold for domain names, just host names. They only work for ONE host. You can't buy a SSL cert for *.JFBVB.COM and setup EBAY.JFBVB.COM latter. You can only buy a cert for one host, say WWW.JFBVB.COM.
You site Microsoft's recent "[Microsoft] Windows Services for UNIX" to support your case. However, that's just an add-on. Microsoft has claimed the core MS Windows software is POSIX-compliant. If the POSIX calls were made part of MS Windows, one can actually use the APIs (assuming they work), without worring that only a few percent of installed systems have the add-on.
Slashdot Mirror
Sure, 2005-2007 servers are suitable for production--just keep using the current Solaris 10 software. The real question is, "Should I deploy a new server, which typically runs for several years, based on obsolete hardware?"
The following post shows that Microsoft got hit with a $200 million patent verdict for custom XML tags! It's ironic that Microsoft abuses the patent system and is attacked by the same method it uses. http://news.cnet.com/8301-13860_3-10245764-56.html?part=rss&subj=news&tag=2547-1_3-0-20
D-Link and Cisco support IPv6. The D-Link-supported routers (a firmware update may be needed) are: DI-784 abg, DI-524 bg, DI-624 bg, WBR-1310 g, WBR-2310 g rangebooster, DIR-615 n. See p. 16 of Ref: http://www.ipv6.org.tw/summit2008/doc/1-4-4.pdf
On p. 15, they say: "Not only [does D-Link] meet IPv6 Ready logo requirements, but also upper layer IPv6 connection mechanisms: Static IP, DHCPv6 (Stateful), DHCPv6 (Stateless), PPPoE, IPv6/IPv4 Tunneling, 6to4 Tunneling, Autoconfiguration, Link-Local connection."
Personally, I use a free IPv6 tunnel service from http://www.tunnelbroker.net/ provided by Hurricane Electric.
I don't use Cisco at home, but IPv6 information is at http://www.cisco.com/ipv6/
The funny thing is the University of Illinois Urbana-Champaign (UIUC) NCSA lawyers made Mosaic Communications change their name (eventually Netscape), because Mosaic was a trademark of the UIUC.
Instead of copyright law biased to the media companies, how about FAIR copyright? Current copyright has outrageously long terms lasting several decades (sometimes over a century). Copyright law has no provision for punishment for Copyright FRAUD where media companies claim copyright on public domain works. Fair use is intentionally vague. Let's level the playing field--both Republicans and Democrats in Congress are in the racket, passing ever-more biased copyright law.
Disable mysql external access by adding this line to /etc/my.cnf :
skip-networking
This will prevent external access to MySQL, firewall or no firewall. All access will go through Unix sockets or named pipes. Restart mysql with /etc/init.d/mysql restart For me, no other configuration was required for several mysql-consuming apps, including php custom scripts, phpbb, phorum, and sympoll.
I switched to recaptcha, which uses OCR'ed texts to validate. Ever since I switched I don't get the automated spammers signing up. There are plugins for various languages and bulletin board sytsems (such as phpbb). It has a side-benefit of correcting OCRed public domain books.
This doesn't take care of ad "previews" on the rare flash you may actually want to see, but nobody is forcing to to watch it.
I stop Flash animations with the Flashblock Add-on. Just go to Tool-->Add-ons, search for Flashblock and install. You can enable Flash for selected (well-behaved sites) or just click on a Flash icon to enable specific animations within any webpage. It's made my surfing experience a lot less aggravating.
In any case, it's probably best to disable telnetd with svcadm disable telnet Better yet, next time you install or upgrade use the "reduced networking profile" which has most services disabled (not ssh).
SunAlert 102802 is available describing the issue and workaround.
Temporary patches for SPARC and X86 to fix telnet are available You need a (free) login to access this.
Temporary patches to fix telnet are available in zip files at: http://sunsolve.sun.com/pub-cgi/tpatch.pl (one for SPARC, one for X86 Solaris).
You need a (free) login to access these (my login was free)--security patches are free.
For a upgrade from earlier releases or updates, telnet may be left enabled. You can disable it with svcadm disable telnet
Better yet, disable most network services (excludes SSH at least) in Solaris 10 11/06 with netservices limited
telnet is NOT enabled by default for Solaris 10 11/06 for a fresh install. You can choose to enable telnet and a whole lot of other services explicitly, but that is NOT the default. The default is to have telnet and other services disabled. For legacy Solaris systems upgraded to Solaris 10 11/06 you can disable telnet and several other services by typing at the command line: /usr/sbin/netservices limited
You can tell if you're running Solaris 10 11/06 by looking in file /etc/release
’672 has expired, but the patent owner has 6 years to file a suit. All they need to do to prove their case is that the violation occurred before the patent expired. They don't have to sue before the patent expires--they have 6 years to do that.
I run a community bulletin board and believe me it get's a lot of robots (probably from zombie systems) sending spam. Registration greatly reduces this spam. Much as I dislike registration, I think this may be helping the spammers and reduce the availability of message boards.
Sun's UltraSparc T1 has 8 cores, 32 threads. So, will Intel catch up anytime soon?
Perhaps these two efforts coloborate.
The reason for this is to avoid problems like this, where the NTP server is overloaded or the NTP client is mis-configured and overloads the server or network.
It's strange these companies can't afford to set up a few of their own NTP servers instead of overloading servers that don't have the bandwidth. It it's because they are clueless or they are cheap?
Since you're a blogger, the best thing to do is to start with taking out yourself. Seriously though, nobody has to read blogs—spam is forced on people.
The mega-long URLs are keys to lookup the webpage in a database. It appears to use GovOffice, some Microsoft-based ware. Tuttle's new webserver is based on MS Windows.
The Tuttle Times, with its hacked, misconfigured server, is too stupid, but try telling it to The Oklahoman of Oklaholma City. Tuttle is just a suburb of OK City.
SSL certs are not sold for domain names, just host names. They only work for ONE host. You can't buy a SSL cert for *.JFBVB.COM and setup EBAY.JFBVB.COM latter. You can only buy a cert for one host, say WWW.JFBVB.COM.
You site Microsoft's recent "[Microsoft] Windows Services for UNIX" to support your case. However, that's just an add-on. Microsoft has claimed the core MS Windows software is POSIX-compliant. If the POSIX calls were made part of MS Windows, one can actually use the APIs (assuming they work), without worring that only a few percent of installed systems have the add-on.