HP could offer a B grade cartridge with inks of a slightly lower quality at a significantly lower cost and see what the market prefers. A similar model works with CPU's and memory, or they could just be full of BS.
One thing that this article ignores is that software can be proven correct. The problem is that its expensive, time consuming and most programmers don't understand the techniques. In wikipedia look up Formal verification, if they can develop a provably correct OS then a provable correct braking system is achievable. The fact that programming has evolved into a trade rather than a profession has not improved matters. One thing of note is that Microsoft has employed the developer behind the coyotos operating system and has been throwing money at languages like haskell. How does a stratveegy of forcing carmakers to use a certified developer toolset made by microsoft sound from a business perspective.
I think a risk assessment would be the best way to proceed. That way you can develop a solution based upon somebody's perception of risk and develop an appropriately skewed solution. The reality is that your business is the most likely failure mode so a best effort mechanism for storage is appropriate.
Tape sucks, the reality is that it doesn't last, the drives themselves are fragile and prone to failure. Firmware changes in what appears to be the same product may make tapes unreadable and they are expensive. Whilst the tape companies survive they're not thriving and living on pure inertia. This may change if a new technology appears but...
Hard disk size will simplify your problem a couple of years. A 5 TB drive will give you appropriate storage and you can mirror this and offer the other one to the client. That way they are complicit in any data loss scenario.
If you're moving those amounts of data around your network, I assume that you've got at least Gig ethernet. You can leverage this by using ATAoE as the basis of network storage and ether buy coraid's disk enclosures or build one and export it using Qaoed or vblade http://aoetools.sourceforge.net/. In terms of bang for buck this is one of the cheapest network storage options.
Brakes make cars unsafe by encouraging us to drive at higher speeds. O out of 10 for the person making the comment 0 out of 10 for/. for promoting this to the front page
Step 1 Decide on how you would like to teach. Look at moodle etc. Step 2 Design infrastructure around this model.
For example a fast network can support a large number of diskless machines with good CPUs and graphics card that network boot which will allow you to support a number of different images depending upon the lesson being taught. The advantages with this system is that maintance is centralised and simplified with a single deployable hardware item. The local CPU and GPU allow graphics and intensive applications to be run locally without a performance hit. I have seen labs that have deployed this model which work superbly. The only negative is that Windows application don't typically run well using this approach so ensure that there is an RDP client allowing access to a central terminal server for those activities which require windows.
Most people have poor technical skills so you pay for those that have them.
Most people have poor managerial skills so you pay for those that have them.
Expect to pay heaps for good Technical and managerial skill in the one package.
There is a school of thought that technical people make poor managers. This is wrong. Most people make poor managers and training just makes these people believe that they are good managers.
First state which goverment. Lets assume that because you think that you're at the centre of the world that you're from USA.
Then request standards. What does "secret" mean. Security Standard are not classified to a high level so you can easily justify access.
It is ok to have win95 on a PC as long as the surrounding system meets the security requirements. These items may include evaluated locks, alarms amd access controls. What you demonstate is that the system is secure. How you do this is by using products evaluated to provide this degree of seperation or getting your own product evaluated to be able to fulfill this role.
Is the system expected to maintain seperation between an user with no clearance working on a doorbell and a user designing a new ignition system for fusion weapons?
Logic is your friend. Do a simple requirements analysis.
Your time is valuable.
You are protecting a number of computers.
You are not concerned about the inherent value of the information that is contained on the systems.
Your main worry are related to extra work rebuilding systems and the use of the systems as a vector to other systems. I would suspect that centralized management is a requirement.
You don't have the resources for an IDS (they are expensive to maintain see time above) Your options come down to a centralised management platform for windows host based firewalls OR a perimeter security model.
If you go secure perimeter you can go linux using fwbuilder, simple easy to maintain
Do resouce TWO computers for your perimeter (one backup) security and maintain both when pushing rulesets. Your HA is to unplug your network from the failed device and plug it into the backup.
At a later date you can investigate load HA arrangements however they are more costly in terms of time and skill. (keepalived is a good choice)
If the information on the network is valuable seek goverment advices as they have simple howto's on classifying material and protective requirements.
If you think that you will need to prosecute or utilise the logs for a evidentary purpose go for a certified firewall. (What this means is that is a court you can say that I have logs showing that IP X sent traffic to IP Y and organization Z has verified that the logging of this devices is valid)
What you have been given is a list of your vulnerabilities. Now it's your turn to do Threat Risk Analysis, or convince your company to fund it.
Once the TRA has been done. Take it to management for their signoff. If they are not happy to sign off on the risks associated with your current IT stance use the TRA to prioritize the mitigation of these risks.
Yes audits are a pain in the arse however any competent IT tech should be able to fashion the report into a tool for improving the IT infrastructure.
If intel want to succeed in this space they have to slash their prices on the chip.
It must be a much better buy (bang/buck) than the existing CPU families.
Promote early adoption in the geek/research space and as those folks move into industry applications will follow.
At one stage the organisation that I worked for was approached to utilized the hardware beta for scientific analysis and we were very interested however the cost of the equipment never fell to a level that would allow it to compete with the X8 arch.
Intel recoup your losses, promote the chip at a very low price point. Ignore you marketing/sales people trying pleading that a many different model. It is a short term strategy that is applicable when you have a monopoly.
A friend's neighbour decided to build a ride on lawnmover. Problems arose when decided to take the mower for a test drive. The Blade guard was off and halfway through the test the seat collasped and he had to put his foot down. Needless to say he gets around really well on his new leg.
It would seem that in many cases gifted children have many traits in common with Autistic children.
The reality of the situation is that some children are bright and some children have social problems.
If there is a combination of these traits social problems are generally not addressed until far later in life, often with catatrophic consequences as the adult pyche is not as tough or maleable as that of the child.
That being said the isolation of these children often enhances their ability in scholastic benchmarks.
I used the system in question and was surprised by fact that they really tried hard to understand the issues.
I work in IT security was impressed with the approach they system to system security. Physical intervention was required at a number of points in the collating process. Ie Systems were not connected to any network during the polling process. Batched uploads of voting data occurred. Not rocket science just automating where it made sense.
In Australia if they would like to proceed with this they have link the alleged attacks with you. Do your homework, see a laywer . Some things that I would look at:
Does you workplace have video survellance?
If so is it admissable? Look for Big signs and entries in your employment contract
Do they have any evidence linking you to the events? These are things like auditing on whereever you're logging in, backups and archives that incorporate these audit logs, arpwatch also with an appropriate audit trail.
Do they have a recording of the attacks. Think tcpdump.
Have the remote sites been able to substantiate the events as attacks of are they false alarms (false positives). Have they been able to link your os as the source of the attack ie did they find nessus etc on your PC
Cases like this are extremely hard to prosecute even when you have a good chain of events, to maximise you chances at prosecution you should be able to show that you do this on a regular basis and archive previous logs, that the logs are kept in a secure environment etc. I have helped create enviroments where this type of charge will stick. Things may differ depending on your country of origin however most of the time key points remain.
USA subsidises wheat exports, the government subsidises inefficient farming practices and farmers. Both the USA and Europe buy votes through these practices.
Meanwhile I have relations on properties greater than 4000 acres with some of the most efficient production practices in the world having to worry about porkbarrelling in whenever an election occurs in the Northern Hemisphere. Tarrifs instigated through political pressure are a sign of an economy in decline. Subsidies would be better off going to educational institutions, at least these pay the taxpayer back in the long run.
Start with the assumption that all software has vulnerabilities.
Given enough resources everything is vulnerable.
Properly implemented SE linux reduces the risk of byzantine failure of the system.
Most people tend to think of layered security as being effective. SE linux allows the implementation of an encapsulated security policy, think of the internal structure of the pomygranite. IBMs gcc patch is also a good step in this direction however this merely eliminates a class of failures and doesn't make your system immune from attacks. http://www.trl.ibm.com/projects/security/ssp/main. html
Currently Telstra do not measure the signal loss on the line. They extrapolate signal loss by using the length of cable runs and the number of joins. Thus the comment about humidity impacting on their projected measurement is bogus.
Telstra does not currently allow for the testing of signal loss on a line either internally or via an independant body, even when this cost is met by the person requesting the testing. Some of the technicians doing the signal loss projection fail to understand the difference between a projected loss and actual loss.
Telsta currently budget for an estimated signal loss of of 48db over the length of the cable run. Their testing software currently projects this to be about 3.5km in most cases.
Even though telstra may refuse the provisioning of a service their process and justification for doing so remains opaque.
They don't allow the connection of the service even when the customer accepts the risks of a poor QOS.
Problems with Telstras ADSL process should be reasonably easy to fix and a process such as allowing customer to fund the physical testing of the line would relieve customer angst and provide a greater access to customers with known acceptable connections.
Come on Telstra, lift your game. (if any of the above is incorrect I would love to be corrected)
Patents are monopolies for a limited time span granted by the government.
The reason that they should not be incorporated into standards is that the standard gives the owner of the patent a huge financial boost and companies lobby to have their components as a mandatory or functional part of the standard.
Companies with techniques that are good enough are still free to implement and license technologies in a manner that can create a defacto standard or approach another standards body that does not have this requirement.
Good techniques don't need a standard their own excellence drive adoption!
There is a book published by Addison We... that relates specifically to these issues. Whilst it does screw with the MTU most modern OS have a dynamic MTU.If you are silly enough to block this control channel with your firewall you break the MTU discovery protocol. Some firewally realise that this is a legit control channel and will fix the from.
How do you justify 10%, why not 5% or 20%, why $80000 why not $50000 or the mean IT salary for workers in country X. Justify your figures, don't make up reasonable sounding values and earn your salary by. I think for this cost you would be able to request features added to the codebase. A better approach would be to identify the core developer and see what you have to offer to attract one to support your cause.
University generally is of benefit. A number of the people that I work with didn't go to university and it shows. Occasionally there is an individual whos knowledge and general interests take them down similiar paths to the structured learning that is practiced in most tertary institutions however they are very rare. Given a choice of employing people would generally employ someone with a degree. Some university have a practical focus and others tend more towards theory. Much to my surprise I have found that the theoretical knowledge has lasted really well and the practical stuff was a complete waste of time. (my opinion was different when I was first trying to get a job)
The problem with QOS and associated schemes is that it costs more to manage the bandwidth than the bandwidth costs. Each service type needs its own routing table. Routers that don't support this type of routing dissapear from the network leading to a service that is not utilising all the available hardware. Read the fat pipe hypothosis.
Modern routing protocols already can choose optimal routes for traffic but telecos only interconnect their network at designated points rather than multipoint connectivity.
Slashdot Mirror
HP could offer a B grade cartridge with inks of a slightly lower quality at a significantly lower cost and see what the market prefers.
A similar model works with CPU's and memory, or they could just be full of BS.
One thing that this article ignores is that software can be proven correct. The problem is that its expensive, time consuming and most programmers don't understand the techniques. In wikipedia look up Formal verification, if they can develop a provably correct OS then a provable correct braking system is achievable. The fact that programming has evolved into a trade rather than a profession has not improved matters. One thing of note is that Microsoft has employed the developer behind the coyotos operating system and has been throwing money at languages like haskell. How does a stratveegy of forcing carmakers to use a certified developer toolset made by microsoft sound from a business perspective.
I think a risk assessment would be the best way to proceed. That way you can develop a solution based upon somebody's perception of risk and develop an appropriately skewed solution. The reality is that your business is the most likely failure mode so a best effort mechanism for storage is appropriate.
Tape sucks, the reality is that it doesn't last, the drives themselves are fragile and prone to failure. Firmware changes in what appears to be the same product may make tapes unreadable and they are expensive. Whilst the tape companies survive they're not thriving and living on pure inertia. This may change if a new technology appears but...
Hard disk size will simplify your problem a couple of years. A 5 TB drive will give you appropriate storage and you can mirror this and offer the other one to the client. That way they are complicit in any data loss scenario.
If you're moving those amounts of data around your network, I assume that you've got at least Gig ethernet. You can leverage this by using ATAoE as the basis of network storage and ether buy coraid's disk enclosures or build one and export it using Qaoed or vblade http://aoetools.sourceforge.net/. In terms of bang for buck this is one of the cheapest network storage options.
Brakes make cars unsafe by encouraging us to drive at higher speeds. /. for promoting this to the front page
O out of 10 for the person making the comment
0 out of 10 for
Step 1 Decide on how you would like to teach. Look at moodle etc.
Step 2 Design infrastructure around this model.
For example a fast network can support a large number of diskless machines with good CPUs and graphics card that network boot which will allow you to support a number of different images depending upon the lesson being taught. The advantages with this system is that maintance is centralised and simplified with a single deployable hardware item. The local CPU and GPU allow graphics and intensive applications to be run locally without a performance hit. I have seen labs that have deployed this model which work superbly. The only negative is that Windows application don't typically run well using this approach so ensure that there is an RDP client allowing access to a central terminal server for those activities which require windows.
On balance
Global warming is probably real.
C02 emmissions probably will not be reduced.
If the above is true
The US will suffer through more severe weather events.
The US will need more/better weather sensors.
A satelite fits the bill
Most people have poor technical skills so you pay for those that have them.
Most people have poor managerial skills so you pay for those that have them.
Expect to pay heaps for good Technical and managerial skill in the one package.
There is a school of thought that technical people make poor managers. This is wrong. Most people make poor managers and training just makes these people believe that they are good managers.
First state which goverment. Lets assume that because you think that you're at the centre of the world that you're from USA.
Then request standards. What does "secret" mean. Security Standard are not classified to a high level so you can easily justify access.
It is ok to have win95 on a PC as long as the surrounding system meets the security requirements. These items may include evaluated locks, alarms amd access controls. What you demonstate is that the system is secure. How you do this is by using products evaluated to provide this degree of seperation or getting your own product evaluated to be able to fulfill this role.
Is the system expected to maintain seperation between an user with no clearance working on a doorbell and a user designing a new ignition system for fusion weapons?
Logic is your friend. Do a simple requirements analysis.
Your time is valuable.
You are protecting a number of computers.
You are not concerned about the inherent value of the information that is contained on the systems.
Your main worry are related to extra work rebuilding systems and the use of the systems as a vector to other systems.
I would suspect that centralized management is a requirement.
You don't have the resources for an IDS (they are expensive to maintain see time above)
Your options come down to a centralised management platform for windows host based firewalls OR a perimeter security model.
If you go secure perimeter you can go linux using fwbuilder, simple easy to maintain
Do resouce TWO computers for your perimeter (one backup) security and maintain both when pushing rulesets. Your HA is to unplug your network from the failed device and plug it into the backup.
At a later date you can investigate load HA arrangements however they are more costly in terms of time and skill. (keepalived is a good choice)
If the information on the network is valuable seek goverment advices as they have simple howto's on classifying material and protective requirements.
If you think that you will need to prosecute or utilise the logs for a evidentary purpose go for a certified firewall. (What this means is that is a court you can say that I have logs showing that IP X sent traffic to IP Y and organization Z has verified that the logging of this devices is valid)
What you have been given is a list of your vulnerabilities.
Now it's your turn to do Threat Risk Analysis, or convince your company to fund it.
Once the TRA has been done. Take it to management for their signoff. If they are not happy to sign off on the risks associated with your current IT stance use the TRA to prioritize the mitigation of these risks.
Yes audits are a pain in the arse however any competent IT tech should be able to fashion the report into a tool for improving the IT infrastructure.
If intel want to succeed in this space they have to slash their prices on the chip.
It must be a much better buy (bang/buck) than the existing CPU families.
Promote early adoption in the geek/research space and as those folks move into industry applications will follow.
At one stage the organisation that I worked for was approached to utilized the hardware beta for scientific analysis and we were very interested however the cost of the equipment never fell to a level that would allow it to compete with the X8 arch.
Intel recoup your losses, promote the chip at a very low price point. Ignore you marketing/sales people trying pleading that a many different model. It is a short term strategy that is applicable when you have a monopoly.
A friend's neighbour decided to build a ride on lawnmover. Problems arose when decided to take the mower for a test drive. The Blade guard was off and halfway through the test the seat collasped and he had to put his foot down. Needless to say he gets around really well on his new leg.
It would seem that in many cases gifted children have many traits in common with Autistic children.
The reality of the situation is that some children are bright and some children have social problems.
If there is a combination of these traits social problems are generally not addressed until far later in life, often with catatrophic consequences as the adult pyche is not as tough or maleable as that of the child.
That being said the isolation of these children often enhances their ability in scholastic benchmarks.
The real thrust of this article is that.
1. Current Network providers are struggling with the dumb network, smart edge.
2. Discriminated Service models expensive, alienate your client base and merely prop up existing revenue streams.
3. There are real opportunities for the providers who can supply a cheap dumb pipe to become the Dell of the telecoms world.
Hi all
I used the system in question and was surprised by fact that they really tried hard to understand the issues.
I work in IT security was impressed with the approach they system to system security. Physical intervention was required at a number of points in the collating process. Ie Systems were not connected to any network during the polling process. Batched uploads of voting data occurred. Not rocket science just automating where it made sense.
Have they been able to link your os as the source of the attack ie did they find nessus etc on your PC
Cases like this are extremely hard to prosecute even when you have a good chain of events, to maximise you chances at prosecution you should be able to show that you do this on a regular basis and archive previous logs, that the logs are kept in a secure environment etc. I have helped create enviroments where this type of charge will stick. Things may differ depending on your country of origin however most of the time key points remain.
USA subsidises wheat exports, the government subsidises inefficient farming practices and farmers. Both the USA and Europe buy votes through these practices.
Meanwhile I have relations on properties greater than 4000 acres with some of the most efficient production practices in the world having to worry about porkbarrelling in whenever an election occurs in the Northern Hemisphere.
Tarrifs instigated through political pressure are a sign of an economy in decline. Subsidies would be better off going to educational institutions, at least these pay the taxpayer back in the long run.
Security is all about modes of failure.
. html
Start with the assumption that all software has vulnerabilities.
Given enough resources everything is vulnerable.
Properly implemented SE linux reduces the risk of byzantine failure of the system.
Most people tend to think of layered security as being effective. SE linux allows the implementation of an encapsulated security policy, think of the internal structure of the pomygranite. IBMs gcc patch is also a good step in this direction however this merely eliminates a class of failures and doesn't make your system immune from attacks. http://www.trl.ibm.com/projects/security/ssp/main
Currently Telstra do not measure the signal loss on the line. They extrapolate signal loss by using the length of cable runs and the number of joins. Thus the comment about humidity impacting on their projected measurement is bogus.
Telstra does not currently allow for the testing of signal loss on a line either internally or via an independant body, even when this cost is met by the person requesting the testing. Some of the technicians doing the signal loss projection fail to understand the difference between a projected loss and actual loss.
Telsta currently budget for an estimated signal loss of of 48db over the length of the cable run. Their testing software currently projects this to be about 3.5km in most cases. Even though telstra may refuse the provisioning of a service their process and justification for doing so remains opaque.
They don't allow the connection of the service even when the customer accepts the risks of a poor QOS.
Problems with Telstras ADSL process should be reasonably easy to fix and a process such as allowing customer to fund the physical testing of the line would relieve customer angst and provide a greater access to customers with known acceptable connections.
Come on Telstra, lift your game. (if any of the above is incorrect I would love to be corrected)
Patents are monopolies for a limited time span granted by the government.
The reason that they should not be incorporated into standards is that the standard gives the owner of the patent a huge financial boost and companies lobby to have their components as a mandatory or functional part of the standard.
Companies with techniques that are good enough are still free to implement and license technologies in a manner that can create a defacto standard or approach another standards body that does not have this requirement.
Good techniques don't need a standard their own excellence drive adoption!
There is a book published by Addison We... that relates specifically to these issues. Whilst it does
screw with the MTU most modern OS have a dynamic MTU.If you are silly enough to block this control channel with your firewall you break the MTU discovery protocol. Some firewally realise that this is a legit control channel and will fix the from.
How do you justify 10%, why not 5% or 20%, why $80000 why not $50000 or the mean IT salary for workers in country X. Justify your figures, don't make up reasonable sounding values and earn your salary by .
I think for this cost you would be able to request features added to the codebase. A better approach would be to identify the core developer and see what you have to offer to attract one to support your cause.
University generally is of benefit. A number of the people that I work with didn't go to university and it shows. Occasionally there is an individual whos knowledge and general interests take them down similiar paths to the structured learning that is practiced in most tertary institutions however they are very rare. Given a choice of employing people would generally employ someone with a degree. Some university have a practical focus and others tend more towards theory. Much to my surprise I have found that the theoretical knowledge has lasted really well and the practical stuff was a complete waste of time. (my opinion was different when I was first trying to get a job)
The problem with QOS and associated schemes is that it costs more to manage the bandwidth than the bandwidth costs. Each service type needs its own routing table. Routers that don't support this type of routing dissapear from the network leading to a service that is not utilising all the available hardware. Read the fat pipe hypothosis. Modern routing protocols already can choose optimal routes for traffic but telecos only interconnect their network at designated points rather than multipoint connectivity.