W^X requires hardware that can actually enforce that policy. Until AMD implemented NX this simply could not be done on X86 and you had to use some other platform if you wanted real security.
My understanding is that you have to specifically request that a data page be executable. In an OS that uses the NX bit normal data pages will be marked as not executable.
This is just plain not true. In Linux gcc uses a flag in the ELF headders to indicate NX friendly code. This is *not* flagged on old binaries and code that self modifies flags as non NX. So nothing actually breaks.
The largest item that bites Microsoft is that they started as a single user system. Many microsoft apps are designed with the assumption that they have total crontrol of the sytem and can do things like write whereever on the drive they want. Want an example? Try installing Winamp on windows 2000 and then try running it as anything other than an administrator equivelant account. It crashes!
Multi user systems(*BSD, Linux, OSX), on the other hand, are designed from the ground up with access control in mind. There are well defined places for non admin users to put things and the application developers know they must design for this or simply have their application not work.
Microsoft is now stuck trying to retrain application developers to do things the new improved way and unfortunatly there is a lot of inertia to overcome in the process.
I've often found I've needed to reinstall XP and install SP2 (and other updates) before anything else. Usually driver problems go away after that.
SP2 seems to have a lot of trouble with non freash installs.
There is a mass of space where a MySQL and PostgreSQL are too small or lack required features but revenues simply don't justify an Oracle database.
Several of my clients are running into exactly this problem as we speak so I'm spending a lot of time looking into these newly open sourced offerings.
GPS only helps with precision strikes.. with something like Sarain you only need to be approximate and you can do that without GPS.
Theres a saying I used to hear all of the time when I lived on army bases: "Close only counts in horse shoes and hand gernades" I'm guessing that also applies to anything with a wide dispersion area.
Reminds me of a news story up here that started with the words "Homer Simpson really could find a job at the nuclear power plant". It seems that they found drug paraphernalia inside the restricted areas of one of the power plants in Ontario.
To add to the public's nervousness the union was fighting any attempt at drug testing.
A little too far won't do it.. the stop lines there are one foot from the crosswalk and you have to be actually blocking part(2 feet past the line) of the crosswalk to have the sensor not trip.
Speaking of reliably tripped.. in the small (Candian) city I spent part of my life in the sensors were set back a bit so if your one of those moron drivers that thinks the proper place to wait for the light is on the crosswalk the sensor would never trip.
Fun to sit in Tim Horton's and watch someone just sit and wait for the light to change and never have it happen. I never could understand why some drivers just didn't ever figgure out what they were doing wrong.
I've had multiple problems with sp2 that seemed to go away when the OS was reinstalled and sp2 was installed before everything else. In one case installing sp2 made the machine sluggish and prone to losing it's networking a few minutes after boot and uninstalling sp2 fried networking entirely. The user paniced when I reinstalled sp2 after that but called me a few days later to tell me everything was fine.
I'm guessing MS only tested it on a newly installed system.
I'd call that a software problem.. I have a dell server running win2k, a Dell 2u Poweredge running Linux as well as XP workstations.
The XP workstations are a constant problem. The Server running win2k has been moderatly stable.. But the one running linux stays up for months at a time.
My only reason for not considering Dell on my next purchase is that the app were running on it is very IO intensive so we need the faster memory
throughput the AMD64 offers.
Actually I know a lot of managers think that way but it's very bad for buisness to have a programmer quit.
The buisness loses weeks as they are out 1 programmer for the time required to find a new one. Once you do get a new one that programmer won't get much done for the time it takes to get familiar with the code (weeks.. or months depending on the complexity). To top it off the productivity of whoever has to show the new programmer the ropes goes down as well.
Programmers are *not* an expendable resource.
I used to accept this too but that didn't stop me from being layed off. It seems all of those long hours didn't actually help make the company any money.
To make it worse I actually had to relearn what to do with free time once my job was gone. Now I'm working again and I refuse to work long hours for anything but an emergency.
Strangely enough I get more respect working shorter hours than I did with the longer.
I can tell you that cigarette smoke makes me very sick as I am asthmatic. I go out of my way to avoid places I know there will be a lot of smokers but that doesn't help when smokers wander or the wind changes direction.
I'm hoping this product takes off. Personally I don't care if smokers want to harm themselves with that stuff.. *I* just don't want to have to be affected by *their* choices.
My need to breath trumps your freedom to harm yourself.
There is no need to replace the procol to fix either problem. ECN was deisgned to fix the former problem and AFIK there has been plenty of research put into fixing the the backoff mechanism.
Easy replication provided you don't *breathe* on it.
They seem to have fixed most of the glitches in the latest version however GET DATA FROM MASTER still doesn't quite work all of the time.. and the slave logs will all change names if you happen to change the hostname on the server.
What kind of an idiot came up with naming the logs after the hostname anyway?
Were now looing into CA's Ingres now that it's Open source.
Many people who monitor linux-kernel simply backhole his email address. I'm conservative with my list so theres only about 4 people that I block and hes been blocked for several years now.
It's rare that he actually contributes something worthwhile.
I disagree.. the specification itself is so complex it's very rare to find someone who implemented it from scratch.
That's why whenever there is a SNMP security avisory it tends to affect many vendors.
You don't know any because your not a christian so their not busy trying to convert to to their non religion.
I don't think we Christians have the market cornered on obnoxious "we will convert you at any cost" types althought I'm stumped as to why.. you would think an atheist wouldn't care. but very many do and actively try to convert me. Your dead on about our motivation though we do think were doing you a favor although personally I try not to annoy people with it.
It's not that good.. Itanium is overdesigned and assumed the compilor will know things it just can't know at compile time.
They shifted too many things off of the CPU and into software when that didn't preform well they started trying to optimise it. It's a situation that reminds me of NT and microkernels.
The result is something that needs a huge die size just to preform on par with the Xeon and thanks to the huge die size it will always be priced much higher. I keep hearing that smaller transistors will fix this problem but everything they benchamark against will get those too.
Intel really missed the boat on this one.. a more intellegent route would have been emt-64 without the 16 and 32 bit backward compatability.
Actually ICANN has asked registars to crack down on false whois info. Several registars will disable your nameservers if they discover the whois info is false..
One of my customers has already been burned because the address format in his country doesn't look real to someone used to western style addresses. A single complaint to the registar got the domain disabled with no warning whatsoever even though the email address was real.
Slashdot Mirror
By that metric they aren't 32 bit chips either..
32 bit mode and 286 extended mode are both extentions to the original 8086. The machines *still* boot in the original mode.
If it can address in 64 bits and work with 64 bit regisers then it's a 64 bit chip.
Check your plugins. The site checks several plugin related bugs and one of them may be crashing FireFox.
W^X requires hardware that can actually enforce that policy. Until AMD implemented NX this simply could not be done on X86 and you had to use some other platform if you wanted real security.
My understanding is that you have to specifically request that a data page be executable. In an OS that uses the NX bit normal data pages will be marked as not executable.
This is just plain not true. In Linux gcc uses a flag in the ELF headders to indicate NX friendly code. This is *not* flagged on old binaries and code that self modifies flags as non NX. So nothing actually breaks.
The largest item that bites Microsoft is that they started as a single user system. Many microsoft apps are designed with the assumption that they have total crontrol of the sytem and can do things like write whereever on the drive they want. Want an example? Try installing Winamp on windows 2000 and then try running it as anything other than an administrator equivelant account. It crashes! Multi user systems(*BSD, Linux, OSX), on the other hand, are designed from the ground up with access control in mind. There are well defined places for non admin users to put things and the application developers know they must design for this or simply have their application not work. Microsoft is now stuck trying to retrain application developers to do things the new improved way and unfortunatly there is a lot of inertia to overcome in the process.
The problem may not be the D-Link driver itself.. it may be something it's dependant on.
I've often found I've needed to reinstall XP and install SP2 (and other updates) before anything else. Usually driver problems go away after that. SP2 seems to have a lot of trouble with non freash installs.
There is a mass of space where a MySQL and PostgreSQL are too small or lack required features but revenues simply don't justify an Oracle database. Several of my clients are running into exactly this problem as we speak so I'm spending a lot of time looking into these newly open sourced offerings.
GPS only helps with precision strikes.. with something like Sarain you only need to be approximate and you can do that without GPS.
Theres a saying I used to hear all of the time when I lived on army bases: "Close only counts in horse shoes and hand gernades" I'm guessing that also applies to anything with a wide dispersion area.
Reminds me of a news story up here that started with the words "Homer Simpson really could find a job at the nuclear power plant". It seems that they found drug paraphernalia inside the restricted areas of one of the power plants in Ontario.
To add to the public's nervousness the union was fighting any attempt at drug testing.
A little too far won't do it.. the stop lines there are one foot from the crosswalk and you have to be actually blocking part(2 feet past the line) of the crosswalk to have the sensor not trip.
Speaking of reliably tripped.. in the small (Candian) city I spent part of my life in the sensors were set back a bit so if your one of those moron drivers that thinks the proper place to wait for the light is on the crosswalk the sensor would never trip.
Fun to sit in Tim Horton's and watch someone just sit and wait for the light to change and never have it happen. I never could understand why some drivers just didn't ever figgure out what they were doing wrong.
I've had multiple problems with sp2 that seemed to go away when the OS was reinstalled and sp2 was installed before everything else. In one case installing sp2 made the machine sluggish and prone to losing it's networking a few minutes after boot and uninstalling sp2 fried networking entirely. The user paniced when I reinstalled sp2 after that but called me a few days later to tell me everything was fine.
I'm guessing MS only tested it on a newly installed system.
I'd call that a software problem.. I have a dell server running win2k, a Dell 2u Poweredge running Linux as well as XP workstations. The XP workstations are a constant problem. The Server running win2k has been moderatly stable.. But the one running linux stays up for months at a time. My only reason for not considering Dell on my next purchase is that the app were running on it is very IO intensive so we need the faster memory throughput the AMD64 offers.
Actually I know a lot of managers think that way but it's very bad for buisness to have a programmer quit. The buisness loses weeks as they are out 1 programmer for the time required to find a new one. Once you do get a new one that programmer won't get much done for the time it takes to get familiar with the code (weeks.. or months depending on the complexity). To top it off the productivity of whoever has to show the new programmer the ropes goes down as well. Programmers are *not* an expendable resource.
I used to accept this too but that didn't stop me from being layed off. It seems all of those long hours didn't actually help make the company any money. To make it worse I actually had to relearn what to do with free time once my job was gone. Now I'm working again and I refuse to work long hours for anything but an emergency. Strangely enough I get more respect working shorter hours than I did with the longer.
No .. we can't.
I can tell you that cigarette smoke makes me very sick as I am asthmatic. I go out of my way to avoid places I know there will be a lot of smokers but that doesn't help when smokers wander or the wind changes direction.
I'm hoping this product takes off. Personally I don't care if smokers want to harm themselves with that stuff.. *I* just don't want to have to be affected by *their* choices.
My need to breath trumps your freedom to harm yourself.
There is no need to replace the procol to fix either problem. ECN was deisgned to fix the former problem and AFIK there has been plenty of research put into fixing the the backoff mechanism.
Were very much in the beginning stages of looking into it so I cant say for sure. However they do Advertise it
Easy replication provided you don't *breathe* on it.
They seem to have fixed most of the glitches in the latest version however GET DATA FROM MASTER still doesn't quite work all of the time.. and the slave logs will all change names if you happen to change the hostname on the server.
What kind of an idiot came up with naming the logs after the hostname anyway?
Were now looing into CA's Ingres now that it's Open source.
Many people who monitor linux-kernel simply backhole his email address. I'm conservative with my list so theres only about 4 people that I block and hes been blocked for several years now.
It's rare that he actually contributes something worthwhile.
I disagree.. the specification itself is so complex it's very rare to find someone who implemented it from scratch. That's why whenever there is a SNMP security avisory it tends to affect many vendors.
You don't know any because your not a christian so their not busy trying to convert to to their non religion.
I don't think we Christians have the market cornered on obnoxious "we will convert you at any cost" types althought I'm stumped as to why.. you would think an atheist wouldn't care. but very many do and actively try to convert me. Your dead on about our motivation though we do think were doing you a favor although personally I try not to annoy people with it.
It's not that good.. Itanium is overdesigned and assumed the compilor will know things it just can't know at compile time.
They shifted too many things off of the CPU and into software when that didn't preform well they started trying to optimise it. It's a situation that reminds me of NT and microkernels.
The result is something that needs a huge die size just to preform on par with the Xeon and thanks to the huge die size it will always be priced much higher. I keep hearing that smaller transistors will fix this problem but everything they benchamark against will get those too.
Intel really missed the boat on this one.. a more intellegent route would have been emt-64 without the 16 and 32 bit backward compatability.
Actually ICANN has asked registars to crack down on false whois info. Several registars will disable your nameservers if they discover the whois info is false..
One of my customers has already been burned because the address format in his country doesn't look real to someone used to western style addresses. A single complaint to the registar got the domain disabled with no warning whatsoever even though the email address was real.