I remember about 5 years ago a transformer fire at ev1servers (not sure if this is the same datacenter?) where a few of my servers were located. Luckly, that one was outside the building, and backup power took over. They had additional backup generators shipped into and kept the whole datacenter running for 4(?) days or so while the transformer was replaced.
The power to the server was never lost, and I didn't even find out about it till a couple of days into it.
The problem is that the underlying BGP is a trust based system. That's really what trust was taken advantage of. When you learn how that works and how BGP hijacking can happen, you realize how important HTTPS is and how vulnerable to man-in-the-middle attacks everything else is.
It depends on what you consider load. If server process load is your load that your balancing, then yes you have to check that load to balance it. If connections, bandwidth or people are your load, then round robin is best. For balancing something like serving static files, round robin is probably faster, cheaper and more reliable.
Most of you are forgetting the resale option. The main reason I stick to physical books. Not only can I find a used copy of the book for less (and buy it legally), I can sell it when I'm done. (and a few will actually sell for more than I paid for them) While some of you like to maintain libraries of your collected readings, I for one am happy to read most things only once and have them be gone.
Well, you don't have to just use waste. You can cut down and chop up a forest, and that will make gas as well.
First the Oil, then the food, then the forests. Please people, just stop burning up everything in your gas tank!
That's real interesting, but bees and many other pollinators find the flowers through the color. Granted, pollution may be diminishing the color, but I'm sure they can still find them. Once found, the bees give directions to the hive.
The not so funny thing about man in the middle attacks is that most non https sites are vulnerable to them.
Take the Chase.com homepage. It's got a login form right there (it doesn't matter if it's secure or not). If you were a victim of a man in the middle attack, the attacker could have rewritten the page to link to a different secure login server. Or, for example, could put in a different phone number to contact them.
Luckly some banks are FINALLY switching to all https, bankofamerica.com for example.
I agree that they conflict. It took expanding on the answer to clear up the first part of the first question, and the second part of the first question went completely unanswered.
The real problem is that he just stated his POLICY. He did not ANSWER the question.
It's the best market approach to fixing the problem. You add a small tax on carbon output, and the market will work to correct it by reducing carbon output. (or maybe it's taxes on the sources oil, coal, natural gas, etc) Then, spend the tax money on good things, like planting trees or developing new technologies. However, if it's done right, businesses will sink their own money into developing good new tech. Even Ron Paul should approve.
It's true. I've spoken to a few managers about this. They would flat out refuse to give me a card with out my ID.
I'm all like, I don't want you tracking my purchases and I don't want you sending me crap.
They are like, well then, shop elsewhere.
The banks are really just bringing this on themselves. They have marketed the idea of security as being more important than actual security.
Making me answer more questions about myself may make it harder to break in, but it leaves me even more vulnerable to identity theft if my answers are compromised.
Looking at what banks can do to improve security:
- Stop putting the "lock" icon on your login form. Users should look for the lock on the toolbar or part of browser frame. (chase.com, others)
- Stop using non secure login pages (not where the login form is being submitted to) (chase.com, usbank.com, wachovia.com)
- Stop using marketing emails from strange marketing addresses. This just gets people used to bank emails from weird places.
- Make a secure bookmarkable banking page. (my bank does not do this, I get an error screen if going to bookmark)
- Simplify navigation and operation and unify systems. (my bank does not do this, if I log out on one part of the site, I'm not logged out from the "very secure" part)
"'proving' that the design of the aircraft you're flying in won't crash and burn on takeoff"
They never prove the aircraft won't crash. That's why they still make test flights and final adjustments on actual aircraft. The whole CERN explosion should make you think twice about their models. Even top scientists and engineers screw up.
You can't just say your model is right and everyone who disagrees is wrong. They are predicting the climate, and only time will tell if they are right. (assuming we don't alter things. If we do alter things, we may never know if they were right.)
We've already seen this before
on
Web 2.0 Under Siege
·
· Score: 4, Interesting
It was reported as a problem with the google address book. These guys just generalized the problem because they saw it in many places.
It actually could be pretty nasty. I think the only solution is for you to pass authenticated tokens through the url or input parameters (not through cookies).
It might be a good time to use the firefox NoScript plugin if you're not using it already. Only allow javascript on sites you trust.
Yes and No. Javascript can be used in a lot of ways to preview image changes, but it's not going to rescaling the image before you upload it. That takes some processing power.
Here's some examples of what it can do in the way of previewing and rendering:
That list is hardly complete. There are others, the biggest probably being lunapic.com. Some things are just easier to do, lunapic for example has a lot of animations and fonts that you wouldn't normally have. Obviously, for high quality photo editing, you'd want to stay local for now. But, with bandwidth ever increasing, the online editors slowly get better and better.
Slashdot Mirror
The power to the server was never lost, and I didn't even find out about it till a couple of days into it.
Anyone know how long it takes Centos to follow through? I look forward to their stable updates.
The problem is that the underlying BGP is a trust based system. That's really what trust was taken advantage of. When you learn how that works and how BGP hijacking can happen, you realize how important HTTPS is and how vulnerable to man-in-the-middle attacks everything else is.
both have slightly older rack mounted computers on the cheap. in the order of $100 - $400. I've seen a dual xeon with 4 drives for like $250.
It depends on what you consider load. If server process load is your load that your balancing, then yes you have to check that load to balance it. If connections, bandwidth or people are your load, then round robin is best. For balancing something like serving static files, round robin is probably faster, cheaper and more reliable.
Most of you are forgetting the resale option. The main reason I stick to physical books. Not only can I find a used copy of the book for less (and buy it legally), I can sell it when I'm done. (and a few will actually sell for more than I paid for them) While some of you like to maintain libraries of your collected readings, I for one am happy to read most things only once and have them be gone.
Well, you don't have to just use waste. You can cut down and chop up a forest, and that will make gas as well. First the Oil, then the food, then the forests. Please people, just stop burning up everything in your gas tank!
Unlike google, they don't really have any technology to scale. ec2 does not count of course, because I doubt their app sdk scales.
Anyone can run the google sdk on their machine. you can download it straight from google.
Google's main lock in is that they run a scalable service that no one, not even amazon, is coming close to.
I think you got this from the old joke. You don't smell, I SMELL, and you stink.
That's real interesting, but bees and many other pollinators find the flowers through the color. Granted, pollution may be diminishing the color, but I'm sure they can still find them. Once found, the bees give directions to the hive.
I thought the slowness was part of the original feel that they were bringing back.
Even better is this article that describes the serf existance of most tibetans before the 1959 : http://www.michaelparenti.org/Tibet.html
Take the Chase.com homepage. It's got a login form right there (it doesn't matter if it's secure or not). If you were a victim of a man in the middle attack, the attacker could have rewritten the page to link to a different secure login server. Or, for example, could put in a different phone number to contact them.
Luckly some banks are FINALLY switching to all https, bankofamerica.com for example.
But seriously, those of you say money corrupts, they already have quite a bit of money going through with contributions.
They could certainly make the ads opt in. Pages and/or Users.
I agree that they conflict. It took expanding on the answer to clear up the first part of the first question, and the second part of the first question went completely unanswered.
The real problem is that he just stated his POLICY. He did not ANSWER the question.
It's the best market approach to fixing the problem. You add a small tax on carbon output, and the market will work to correct it by reducing carbon output. (or maybe it's taxes on the sources oil, coal, natural gas, etc) Then, spend the tax money on good things, like planting trees or developing new technologies. However, if it's done right, businesses will sink their own money into developing good new tech. Even Ron Paul should approve.
It's true. I've spoken to a few managers about this. They would flat out refuse to give me a card with out my ID. I'm all like, I don't want you tracking my purchases and I don't want you sending me crap. They are like, well then, shop elsewhere.
I know lots of places still installing CentOS 4.
yum updates for Centos 4 will not upgrade your php.
Is php that full of holes that they can't continue to support it?
Looking at what banks can do to improve security:
- Stop putting the "lock" icon on your login form. Users should look for the lock on the toolbar or part of browser frame. (chase.com, others)
- Stop using non secure login pages (not where the login form is being submitted to) (chase.com, usbank.com, wachovia.com)
- Stop using marketing emails from strange marketing addresses. This just gets people used to bank emails from weird places.
- Make a secure bookmarkable banking page. (my bank does not do this, I get an error screen if going to bookmark)
- Simplify navigation and operation and unify systems. (my bank does not do this, if I log out on one part of the site, I'm not logged out from the "very secure" part)
Bank sites driven by marketers
They never prove the aircraft won't crash. That's why they still make test flights and final adjustments on actual aircraft. The whole CERN explosion should make you think twice about their models. Even top scientists and engineers screw up.
You can't just say your model is right and everyone who disagrees is wrong. They are predicting the climate, and only time will tell if they are right. (assuming we don't alter things. If we do alter things, we may never know if they were right.)
It actually could be pretty nasty. I think the only solution is for you to pass authenticated tokens through the url or input parameters (not through cookies).
It might be a good time to use the firefox NoScript plugin if you're not using it already. Only allow javascript on sites you trust.
However, at least they are making the association of DRM free being better, by associating it with the higher quality encoding.
the US government will be the only OTHER institution that is able to spoof IP addresses.
whoever is the creator (icann?) of the master keys is also able to spoof DNSsec.
Here's some examples of what it can do in the way of previewing and rendering:
Scaling: Javascript image scaling
Color Saturation: Javascript color saturation preview
Drawing: Javascript drawing primatives
That list is hardly complete. There are others, the biggest probably being lunapic.com. Some things are just easier to do, lunapic for example has a lot of animations and fonts that you wouldn't normally have. Obviously, for high quality photo editing, you'd want to stay local for now. But, with bandwidth ever increasing, the online editors slowly get better and better.