Interesting spectrum, but all other obstacles aside, it's not likely to become "the next Wi-Fi", and therefore be as widely deployed or successful.
Wi-Fi as we all know it today falls in the ISM (industrial, scientific and medical) bands which are defined by the ITU, and are (with some channel-by-channel exceptions) internationally universal. In other words, your US Wi-Fi card will work and be (mostly) legal to operate in lots of the rest of the world.
This lets the chipset and device manufacturers build a small number of chips and devices, and handle the regulatory country-to-country differences in software, thus achieving great economies of scale, which means cheapass consumer price points for the devices.
There would seem to be a lot of obstacles to making that happen with this chunk of spectrum.
I have no interest in wasting any of my precious time taking classes in English, Philosophy, History, Art and the like. While these fields are useful and perhaps enriching, they will not contribute to making me better at my job. Moreover, I attended an excellent high school that covered these fields of study in great detail, and I feel no need or desire to spend more time studying these things.
I graduated college from a nationally prominent liberal arts college in 1984 with a BS in mathematics. Based on placement tests administered in orientation, I was exempted from english, foreign language and most of the other "gen ed" requirements you speak of, like you, based on a strong HS curriculum. I then spent the next FIVE years fighting a system that had exempted me from the requirements, but gave me no credits for them.
In other words, the "gen eds" I avoided ended up biting me in the ass HARD as I found my schedule "filled" with "the only courses available" to fulfill my credit requirements to graduate.
The good news is I ended up with almost enuf philosophy credits for a minor, and that my sound HS grounding in the basics have served me well in the past 30 years.
My advice: be careful what you ask for.
Place out of what you can, but realize you still have to have the credits to graduate. Take the gen eds, but get yourself exempted from the baseline requirements if you can, take the higher levels, and choose them carefully. Being literate in another (human) language is a good thing. I have been very grateful for the religion courses in Islam and Buddhism. Formal logic out of the philosophy department has helped me write airtight code over the years. All of this will not only make you better at your job, but stand out from the other illiterate ramen-slurping geeks who will likely be your peers in the first few years of your career.
Forget being a nice guy, and in this case, the EFF's recommendations. Aside from the issues you raise yourself, this story should be all it takes to convince you of the foolishness of such a policy these days.
To answer your question directly, yes, some consumer AP / Routers can shape traffic like you're asking. You will need to divide your network into multiple VLANs, I would suggest three: One wireless and wide open, one wireless and secure for your use, and one for the wired side. Then, bandwidth limit the free wireless, route appropriately, and apply a security policy to protect yourself. You might also consider logging all that "free" traffic so when the Feds show up with a warrant, you have some kind of audit trail to get yourself out of jail.
I'm not aware of any consumer grade equipment that will do this out of the box. On the other hand, there are several free / open firmware projects that replace the factory firmware that are linux based, and may be able to meet your needs. A couple (by no means all) of these projects are http://www.dd-wrt.com/site/index> dd-wrt and https://openwrt.org/> Open-wrt .
Beware though, that not all of the consumer hardware is created equally internally. Research carefully the hardware / replacement firmware combinations to make sure you can get where you want to be before spending money. You'll also be stressing the hardware far beyond it's original design, so opt for more RAM and a faster embedded processor.
Agree that IPv4 is gonna happen and that transition to v6 is inevitable, timing uncertain.
Post transition, there will be (by design) no address shortage and legacy v4 addresses might have some sentimental value, but will really just be part of the larger space.
How smoothly transition goes, i.e., how much of the IP world gets stuck in v4 land because their OS or software vendor didn't update their stacks or applications to support v6 will also greatly influence the value of v4 space DURING transition.
Immediately PRIOR to the transition, there will be a shortage of v4 addresses, and their value will be maximized because of decrease in supply and increase in demand.
That's when the companies and other organizations sitting on lots of allocated but dark space will cash in.
Do NOT, under any circumstances, connect the SCADA systems, including workstations which can control or monitor them, to anything which touches or has access to the Internet. Make SURE that your control and monitor workstations have current AV in place. Do NOT connect them to the net to update the AV, figure out how to do it with sneakernet.
Further, make SURE you use RFC 1918 addressing for the SCADA systems so that they are not readily routable to the 'net.
Map the interfaces, and have a AAA (Authentication, Authorization and Accountability) strategy for each. Log EVERYTHING.
If you use a carrier to link remote sites into a WAN, make them prove to you that their pipes are clean and secure.
Like a couple of other folks have said, it depends on several factors.
If you're thinking of a handheld with a rubber duck antenna, their wattage is typically 5 or below, and range on the rubber ducks suck. You can carry an additional compact antenna, but it only helps so much.
Line of sight to the other station (or repeater) is more or less required, and antenna height really helps on 2m for that reason. If you're in good shape and can get to a summit with LOS, great. If you're crippled up and can't "see" the other station (or repeater), you're screwed.
So, for 2m, you MUST contact the local Hams and get some understanding of the footprints of the repeaters (if any) in the areas you plan to traverse.
HF is a little different. The Yaesu Ft-817ND that someone else mentioned is an all mode, VHF/UHF/HF man portable rig. It has two antenna connectors, one for UHF/VHF just like a handheld, and outputs 5W at best. HF will require you to hump sort of HF antenna and you're still limited to 5w at best.
The other BIG "it depends" is your license status and level. A Technician license is relatively easy to come by and will allow you to operate an HT (or the 817) on the 2m (and a few other freqs). To get significant use privs on HF, you will need to stand the General exam (having passed the Tech first).
You will probably be best served by contacting local hams and asking these questions. Having the proper license, buying the radio, humping it in and calling for assistance in an emergency does you no good if there's no coverage in your area, or if no one is listening. These same guys can also help you with obtaining your license.
We would rather not install/uninstall antivirus software even for one-time use, due to various licensing issues, nor do we want to connect to the internet to use web-based online scanners. Is there any stand-alone anti-virus/anti-malware software for Windows that can be run directly from the write-protected flash drive itself?"
There many anti-virus vendors that offer free downloadable rescue disks that you can boot from and scan your system. F-Secure, Panda, Avira, AVAST, Bitdefender come to mind. McAfee offers an executable called Stinger.exe and Microsoft’s installable Microsoft Security Essential is free.
Try any one of those programs from a reputable security software vendor, there are more than listed above.
The reasons for not allowing those things aren't to do with safety.
The reasons have EVERYTHING to do with safety, just not the way most people think.
The airlines and the FAA don't want passengers to be distracted or rows and aisles to be encumbered. Passengers need to be alert enough take direction from the aircrew (pilots + flight attendants) and free to maneuver in times of emergency. The most likely times for emergencies are during takeoffs and landings, hence the ban.
It has nothing to with harmful interference with avionics, but with interrupting communications and encumbering maneuvering.
Consider trying to get up and use the head from a window seat when the passengers in the row ahead have their seats reclined, and those on your row have tables down and laptops out. Add earphones in ears impeding hearing, and you get a mess in an emergency.
- Make Electronics is very good. Available from the Make magazine folks.
- Become a Ham. Study and take the tests. Basics required for Technician and General, Extra will require you to crack the books. Practice tests are available free on-line, but best is hamtestonline.com, which will teach you the subject matter, as well as the test. If you're not from the US, you will have a different test and potentially different rules, so YMMV.
If the school district thinks they have trouble now....
One good wank or any other nudity captured by this webcam mechanism turns the school district into child pornographers.
If this numbnuts administrator is st00pid enuf to spy on this psrticular kid, odds are it ain't the first time, and he's probably got the goods on his workstation.
I'd love to pull a forensic image of that drive and give it a good once over.
A Couple of others have already mentioned it, but take a look at BRL-CAD.
It's pretty much the standard. It originated as a US Government backed project and was later open sourced. This is a VERY mature piece of software, unfortunately with a steep learning curve.
Indeed it does.... and you don't know the half of it.
IEEE operates with a completely different dynamic from what most internet folks are used to.
One of the big motivations for a company to sponsor a participant (an engineer, by paying him to prepare and to attend) is to get the company's intellectual property incorporated into the standard under development as a MUST. This is all above board, and the companies must declare up front if they believe they have IP in a proposal and to agree that if adopted they will license the IP to implementers at "fair and reasonable" rates.
When there is only one proposal, or when one is clearly superior, live is good and things typically move along smoothly.
On the other hand, when there are multiple proposals with relatively equal technical merit, it can drag out.
This happened in g, and in again in n.
We narrowly headed it off in i.... At one point the, the AES cypher in the draft as a MUST was OCB (Offset Code Book), and incumbered by no less than three independent patents. This had two implications that several of us strenuously objected to:
- First, implementers would have had to license three times to be certain they were in the clear, thus increasing the cost of the chips and the end product.
- Second, since the open source community has no real way to execute said license agreements or to pay royalties, this would have guaranteed that it would have been impossible for there to be a "legal" open source implementation.
In the end, we prevailed and the AES cypher in the spec is CCMP, which is not encumbered.
Sadly, this is just the way it is..... at least in -some- standards organizations.
Did you even read the paper or take the time to understand the attack?
I'm one of the authors of IEEE 802.11i. I did, and it's not good.
This is a significant advance in attack technique on TKIP. Get off of TKIP as quickly as you can. NOW.
On one hand, as the paper's authors point out, we got seven years of life out of a band-aid fix that was designed to buy us five. I'm pretty happy with that.
On the other hand, the Beck and Tews attack opened some cracks in the walls, this latest paper wedges that crack further open by a factor of 14, and provides some practical real-world exploit scenarios. The bad guys will come up with more, trust me.
This is bad.
Migrate off of TKIP NOW.
Your advice for the length of a passphrase is off as well, BTW. IEEE 802.11i CLEARLY states that a passphrase of less that 20 characters in length does not offer adequate security.
Use a strategy to choose a LONG, STRONG passphrase. Type it into notepad. Cut and paste it wherever it needs to go to eliminate typo errors.
- Why reboot? Uptime on this (linux) notebook is currently 7 days. I usually only reboot a linux box ONLY when a software upgrade requires it. I haven't rebooted my (accursed) XP office-mandated notebook since February (more than three weeks).
- Suspend / Hibernation (OS independent comment) are your friends. XP comes back pretty fast, linux not necessarily so quickly, but still LOTS faster than a cold boot for either OS.
- The heaver the OS (XP or linux) and the apps runnning, the longer the boot times, or for that matter the recovery from hibernation / suspension. There are lots of resources on the t00bz for slimming down XP, or for minimal linux. For linux suspend to disk, remember you need a swap partition at least as large as your ram.
- According to Slickdeals , Dell is selling Mini-9 netbooks with a SSD and Ubuntu for $199. Why screw with antique hardware when new schtuff is that cheap. Remember, your time setting this up is worth money.
- You're (planning on) rebooting linux every morning why (again)?
Hope this helps......
Red
Prepare to be "Planed"
on
Anathem
·
· Score: 2, Insightful
The reviewer is an intellectual liteweight, in other words a clueless fuck-wit without the ability to create, but literate enough (barely) to string words together into a critique.
Ah, Critics......
This is perhaps one of the finest pieces of speculative fiction I have read in the past 40 years. It ranks with Herbert's Dune, and shares many qualities with that masterwork. I will be surprised if it is not the Hugo winner.
---SPOILER ALERT---
The Reviewer gets it wrong from the beginning.... This is not about "religious orders", in fact a great deal of time is spent dealing with the difficulty (impossibility?) of establishing the existence of a god. Further, it's not set on a world "very similar to Earth, in a fairly distant future", but on a world in a parallel cosmos, probably not more than 100 years in our future, if that.
The "made-up words" factor that he takes to task is critical to the whole book. To a reader with a classical education, most, if not all, of the "made-up words" have roots that are familiar. When this fails, a trip to the provided references is sufficient. The fact that these words are just on the edge of understanding is subtle evidence of the "hylean flow".
Yes, it is "wordy". Welcome to Stevenson. If you're here, you're expected to bring enough wit and dedication to understand.
I wonder if the fuck-wit even finished the book. It's certain he did not understand it.
Well, the ARS writeup is much better that what dribbled out yesterday, and I actually understand what is going on here. I was one of the authors of IEEE 802.11i. The protection mechanism we built in to counter these type of attacks (TKIP Countermeasures triggered by two or more MIC failures within 60 seconds) is STILL present and functioning as designed. These guys figured out that the MIC counter is incremented separately for each QoS queue, so instead of one guess at the key per minute, you get LOTS more. The "flaw" then is in the interaction of 802.11i (the security enhancements) and 802.11e (QoS), not in 802.11i itself.
Remember that the key that is cracked is a per-frame temporal key, not the pairwise master key, and the scope of what you can do with this is severly limited. I am personally not at all convinced that that this attack or ones which build on it will improve. This attack is an active one, and it is detectable either by the AP under attack or by a wireless IDS. I can also predict that a simple change in the way MIC failures are tracked and rekeying the network when this attack is detected would defeat it, just as the original Michael MIC was designed to do.
Finally, remember that TKIP was intended to be a retrofit to band-aid the problem until the full AES based standard was finished. We published what became known as WPA more than 6 years ago, and didn't mandate the replacement of hardware to implement it.
My wife is an ophthalmic technician, and has worked for ophthalmic surgeons for 20 years. I had been wearing contacts (softs) for a couple of years before we hooked up.
She has seen, and I have heard the war stories, of all the myriad ways that soft lenses can go wrong. Based on that, and the rather strongly worded advice of one of her bosses in 1989, I switched to rigid gas permeable hard lenses, and have since upgraded to extended wear versions.
This is the best thing I have ever done with respect to my eyes. Since there is no fluid component to the lens, changes in humidity, gusts of air, dry eyes, etc., are no where near as big a deal.
They pass more Oxygen than ANY soft lens, and for this and many other reasons, are more healthy.
Unlike softlenses, if some "bug", fungal, bacterial, or whatever, gets into my eyes, the gas perms are not a medium for growth. The crap in the news about fungal growths associated with a particular B&L solution for softs are simply not an issue.
I wear my lenses 7x24. They are approved for 2 weeks of continuous wear. I have gone much longer with no issues.
They DO take a lot longer to get used to (weeks). Typically, they are harder for the practitioner to fit, more expensive, more uncomfortable until you are used to them, cost more per lens and per fitting session. An often overlooked benefit is that if (when) you get something foreign like dust, dirt or an eyelash in your eye, it is extraordinarily uncomfortable.... this typically causes the wearer to get lens out RIGHT NOW, and to deal with the comtamination. This is a good thing. As opposed to just tolerating it as a little uncomfortable, which is the norm for softs.
As far as Lasik goes.... well, what they don't tell you is a couple of things:
When it goes bad, it goes VERY bad. The options at that point are grim. it can get as bad as being legally blind.
Second, no one knows what the long term effects of lasic are. I plan to be alive for at least 50 more years, and there is no track record for this procedure anywhere near that long ago. Further, as we age, we ALL need cheaters or bifocals to deal with the fact that our eyes loose flexibility as we age. Lack of flexability translates into limited ability to change focus from close up to infinity. Lasic may set you free from your specs now, but you are still going to need cheaters or bifocals starting at around 40-45. FWIW, I keep several sets around... so you can guess my age....
Remember, these are your EYES. You only have two, and unless something changes radically, you can never get more. They can transplant hearts, kidneys, and lots of other things. Not eyes. Be conservative. Talk to a Doctor (not an optometrist) about hards. Find someone who specializes, not a refractive surgeon running a lasik mill. And finally, remember, we all are going to need cheaters when we get older.
In the US, we don't even have two phase power - we use a single split phase.
Um, Wrong.
We definitely have the power, it may not be universally connected residentially.... If you have 220 in the house (typically for an electric stove or a clothes dryer), you have two phase coming in from the street.
You may also have multiple phases coming in if you have a higher load. This office is that way.
The multiple phases may not be wired, but they are definitely available. I looked into setting up a 3-phase circuit to power an old SparcServer 2000E in my garage at one point. I had everything I needed for 2-phase, not for 3, and it was going to cost a bomb to bring in from the street. A colleague has a Cray running in his dining room (and an $800/month power bill), and it is definitely on 3-phase.
BTW, I think the previous posters observation about loose neutrals sounds like the most likely cause in the house. Call in a competent electrician. He can tell you whether you or the power company has the problem.
Slashdot Mirror
Interesting spectrum, but all other obstacles aside, it's not likely to become "the next Wi-Fi", and therefore be as widely deployed or successful.
Wi-Fi as we all know it today falls in the ISM (industrial, scientific and medical) bands which are defined by the ITU, and are (with some channel-by-channel exceptions) internationally universal. In other words, your US Wi-Fi card will work and be (mostly) legal to operate in lots of the rest of the world.
This lets the chipset and device manufacturers build a small number of chips and devices, and handle the regulatory country-to-country differences in software, thus achieving great economies of scale, which means cheapass consumer price points for the devices.
There would seem to be a lot of obstacles to making that happen with this chunk of spectrum.
Red
When I need a geek nostalgia fix, I fire up one of my old MAC SE-30's running AUX.
That's Apple's Unix for Macs, circa 1990. Server-class under the skin with MacOS on the desktop.
Red
I have no interest in wasting any of my precious time taking classes in English, Philosophy, History, Art and the like. While these fields are useful and perhaps enriching, they will not contribute to making me better at my job. Moreover, I attended an excellent high school that covered these fields of study in great detail, and I feel no need or desire to spend more time studying these things.
I graduated college from a nationally prominent liberal arts college in 1984 with a BS in mathematics. Based on placement tests administered in orientation, I was exempted from english, foreign language and most of the other "gen ed" requirements you speak of, like you, based on a strong HS curriculum. I then spent the next FIVE years fighting a system that had exempted me from the requirements, but gave me no credits for them.
In other words, the "gen eds" I avoided ended up biting me in the ass HARD as I found my schedule "filled" with "the only courses available" to fulfill my credit requirements to graduate.
The good news is I ended up with almost enuf philosophy credits for a minor, and that my sound HS grounding in the basics have served me well in the past 30 years.
My advice: be careful what you ask for.
Place out of what you can, but realize you still have to have the credits to graduate. Take the gen eds, but get yourself exempted from the baseline requirements if you can, take the higher levels, and choose them carefully. Being literate in another (human) language is a good thing. I have been very grateful for the religion courses in Islam and Buddhism. Formal logic out of the philosophy department has helped me write airtight code over the years. All of this will not only make you better at your job, but stand out from the other illiterate ramen-slurping geeks who will likely be your peers in the first few years of your career.
Red
Forget being a nice guy, and in this case, the EFF's recommendations. Aside from the issues you raise yourself, this story should be all it takes to convince you of the foolishness of such a policy these days.
To answer your question directly, yes, some consumer AP / Routers can shape traffic like you're asking. You will need to divide your network into multiple VLANs, I would suggest three: One wireless and wide open, one wireless and secure for your use, and one for the wired side. Then, bandwidth limit the free wireless, route appropriately, and apply a security policy to protect yourself. You might also consider logging all that "free" traffic so when the Feds show up with a warrant, you have some kind of audit trail to get yourself out of jail.
I'm not aware of any consumer grade equipment that will do this out of the box. On the other hand, there are several free / open firmware projects that replace the factory firmware that are linux based, and may be able to meet your needs. A couple (by no means all) of these projects are http://www.dd-wrt.com/site/index> dd-wrt and https://openwrt.org/> Open-wrt .
Beware though, that not all of the consumer hardware is created equally internally. Research carefully the hardware / replacement firmware combinations to make sure you can get where you want to be before spending money. You'll also be stressing the hardware far beyond it's original design, so opt for more RAM and a faster embedded processor.
Gee, this sounds like a PITA.....
Hope this helps, and that you don't get arrested.
--Red
Agree that IPv4 is gonna happen and that transition to v6 is inevitable, timing uncertain.
Post transition, there will be (by design) no address shortage and legacy v4 addresses might have some sentimental value, but will really just be part of the larger space.
How smoothly transition goes, i.e., how much of the IP world gets stuck in v4 land because their OS or software vendor didn't update their stacks or applications to support v6 will also greatly influence the value of v4 space DURING transition.
Immediately PRIOR to the transition, there will be a shortage of v4 addresses, and their value will be maximized because of decrease in supply and increase in demand.
That's when the companies and other organizations sitting on lots of allocated but dark space will cash in.
As the TLDs expand, the value of a ".com", even a sexy three letter one with some history decreases.
Ask instead which (pre CIDR) address block(s) Sun had and Larry E now has. IIRC, they're sitting on at least one "A" and potentially multiple "B"s.
Since "IPv4" is gonna implode this year (yeah, right, but just go with it.....), the IP space is gonna have much more real value.
Red
Do him a favor, load him up a copy of OSX (DO go buy a copy, $30) using Netbookinstaller.
Much less viral crap to worry about, and you're starting a youngster out on UNIX under the hood.
Red
It's simple......
Do NOT, under any circumstances, connect the SCADA systems, including workstations which can control or monitor them, to anything which touches or has access to the Internet. Make SURE that your control and monitor workstations have current AV in place. Do NOT connect them to the net to update the AV, figure out how to do it with sneakernet.
Further, make SURE you use RFC 1918 addressing for the SCADA systems so that they are not readily routable to the 'net.
Map the interfaces, and have a AAA (Authentication, Authorization and Accountability) strategy for each. Log EVERYTHING.
If you use a carrier to link remote sites into a WAN, make them prove to you that their pipes are clean and secure.
Have Fun......
Red...
It's inherently boring....
SO, Build hooks into the 'ware as you write it, and automate the testing.
Work smart, not hard.
Red
Like a couple of other folks have said, it depends on several factors.
If you're thinking of a handheld with a rubber duck antenna, their wattage is typically 5 or below, and range on the rubber ducks suck. You can carry an additional compact antenna, but it only helps so much.
Line of sight to the other station (or repeater) is more or less required, and antenna height really helps on 2m for that reason. If you're in good shape and can get to a summit with LOS, great. If you're crippled up and can't "see" the other station (or repeater), you're screwed.
So, for 2m, you MUST contact the local Hams and get some understanding of the footprints of the repeaters (if any) in the areas you plan to traverse.
HF is a little different. The Yaesu Ft-817ND that someone else mentioned is an all mode, VHF/UHF/HF man portable rig. It has two antenna connectors, one for UHF/VHF just like a handheld, and outputs 5W at best. HF will require you to hump sort of HF antenna and you're still limited to 5w at best.
The other BIG "it depends" is your license status and level. A Technician license is relatively easy to come by and will allow you to operate an HT (or the 817) on the 2m (and a few other freqs). To get significant use privs on HF, you will need to stand the General exam (having passed the Tech first).
You will probably be best served by contacting local hams and asking these questions. Having the proper license, buying the radio, humping it in and calling for assistance in an emergency does you no good if there's no coverage in your area, or if no one is listening. These same guys can also help you with obtaining your license.
Hope this helps
Red
(Amateur Extra)
We would rather not install/uninstall antivirus software even for one-time use, due to various licensing issues, nor do we want to connect to the internet to use web-based online scanners. Is there any stand-alone anti-virus/anti-malware software for Windows that can be run directly from the write-protected flash drive itself?"
There many anti-virus vendors that offer free downloadable rescue disks that you can boot from and scan your system. F-Secure, Panda, Avira, AVAST, Bitdefender come to mind. McAfee offers an executable called Stinger.exe and Microsoft’s installable Microsoft Security Essential is free.
Try any one of those programs from a reputable security software vendor, there are more than listed above.
The reasons for not allowing those things aren't to do with safety.
The reasons have EVERYTHING to do with safety, just not the way most people think.
The airlines and the FAA don't want passengers to be distracted or rows and aisles to be encumbered. Passengers need to be alert enough take direction from the aircrew (pilots + flight attendants) and free to maneuver in times of emergency. The most likely times for emergencies are during takeoffs and landings, hence the ban.
It has nothing to with harmful interference with avionics, but with interrupting communications and encumbering maneuvering.
Consider trying to get up and use the head from a window seat when the passengers in the row ahead have their seats reclined, and those on your row have tables down and laptops out. Add earphones in ears impeding hearing, and you get a mess in an emergency.
Red
- Make Electronics is very good. Available from the Make magazine folks.
- Become a Ham. Study and take the tests. Basics required for Technician and General, Extra will require you to crack the books. Practice tests are available free on-line, but best is hamtestonline.com, which will teach you the subject matter, as well as the test. If you're not from the US, you will have a different test and potentially different rules, so YMMV.
Red
If the school district thinks they have trouble now....
One good wank or any other nudity captured by this webcam mechanism turns the school district into child pornographers.
If this numbnuts administrator is st00pid enuf to spy on this psrticular kid, odds are it ain't the first time, and he's probably got the goods on his workstation.
I'd love to pull a forensic image of that drive and give it a good once over.
A Couple of others have already mentioned it, but take a look at BRL-CAD.
It's pretty much the standard. It originated as a US Government backed project and was later open sourced. This is a VERY mature piece of software, unfortunately with a steep learning curve.
Red
Indeed it does.... and you don't know the half of it.
IEEE operates with a completely different dynamic from what most internet folks are used to.
One of the big motivations for a company to sponsor a participant (an engineer, by paying him to prepare and to attend) is to get the company's intellectual property incorporated into the standard under development as a MUST. This is all above board, and the companies must declare up front if they believe they have IP in a proposal and to agree that if adopted they will license the IP to implementers at "fair and reasonable" rates.
When there is only one proposal, or when one is clearly superior, live is good and things typically move along smoothly.
On the other hand, when there are multiple proposals with relatively equal technical merit, it can drag out.
This happened in g, and in again in n.
We narrowly headed it off in i.... At one point the, the AES cypher in the draft as a MUST was OCB (Offset Code Book), and incumbered by no less than three independent patents. This had two implications that several of us strenuously objected to:
- First, implementers would have had to license three times to be certain they were in the clear, thus increasing the cost of the chips and the end product.
- Second, since the open source community has no real way to execute said license agreements or to pay royalties, this would have guaranteed that it would have been impossible for there to be a "legal" open source implementation.
In the end, we prevailed and the AES cypher in the spec is CCMP, which is not encumbered.
Sadly, this is just the way it is..... at least in -some- standards organizations.
Red
Did you even read the paper or take the time to understand the attack?
I'm one of the authors of IEEE 802.11i. I did, and it's not good.
This is a significant advance in attack technique on TKIP. Get off of TKIP as quickly as you can. NOW.
On one hand, as the paper's authors point out, we got seven years of life out of a band-aid fix that was designed to buy us five. I'm pretty happy with that.
On the other hand, the Beck and Tews attack opened some cracks in the walls, this latest paper wedges that crack further open by a factor of 14, and provides some practical real-world exploit scenarios. The bad guys will come up with more, trust me.
This is bad.
Migrate off of TKIP NOW.
Your advice for the length of a passphrase is off as well, BTW. IEEE 802.11i CLEARLY states that a passphrase of less that 20 characters in length does not offer adequate security.
Use a strategy to choose a LONG, STRONG passphrase. Type it into notepad. Cut and paste it wherever it needs to go to eliminate typo errors.
Cheers.....
Red
Random observations:
- Why reboot? Uptime on this (linux) notebook is currently 7 days. I usually only reboot a linux box ONLY when a software upgrade requires it. I haven't rebooted my (accursed) XP office-mandated notebook since February (more than three weeks).
- Suspend / Hibernation (OS independent comment) are your friends. XP comes back pretty fast, linux not necessarily so quickly, but still LOTS faster than a cold boot for either OS.
- The heaver the OS (XP or linux) and the apps runnning, the longer the boot times, or for that matter the recovery from hibernation / suspension. There are lots of resources on the t00bz for slimming down XP, or for minimal linux. For linux suspend to disk, remember you need a swap partition at least as large as your ram.
- According to Slickdeals , Dell is selling Mini-9 netbooks with a SSD and Ubuntu for $199. Why screw with antique hardware when new schtuff is that cheap. Remember, your time setting this up is worth money.
- You're (planning on) rebooting linux every morning why (again)?
Hope this helps......
Red
The reviewer is an intellectual liteweight, in other words a clueless fuck-wit without the ability to create, but literate enough (barely) to string words together into a critique.
Ah, Critics......
This is perhaps one of the finest pieces of speculative fiction I have read in the past 40 years. It ranks with Herbert's Dune, and shares many qualities with that masterwork. I will be surprised if it is not the Hugo winner.
---SPOILER ALERT---
The Reviewer gets it wrong from the beginning.... This is not about "religious orders", in fact a great deal of time is spent dealing with the difficulty (impossibility?) of establishing the existence of a god. Further, it's not set on a world "very similar to Earth, in a fairly distant future", but on a world in a parallel cosmos, probably not more than 100 years in our future, if that.
The "made-up words" factor that he takes to task is critical to the whole book. To a reader with a classical education, most, if not all, of the "made-up words" have roots that are familiar. When this fails, a trip to the provided references is sufficient. The fact that these words are just on the edge of understanding is subtle evidence of the "hylean flow".
Yes, it is "wordy". Welcome to Stevenson. If you're here, you're expected to bring enough wit and dedication to understand.
I wonder if the fuck-wit even finished the book. It's certain he did not understand it.
Red
Well, the ARS writeup is much better that what dribbled out yesterday, and I actually understand what is going on here. I was one of the authors of IEEE 802.11i. The protection mechanism we built in to counter these type of attacks (TKIP Countermeasures triggered by two or more MIC failures within 60 seconds) is STILL present and functioning as designed. These guys figured out that the MIC counter is incremented separately for each QoS queue, so instead of one guess at the key per minute, you get LOTS more. The "flaw" then is in the interaction of 802.11i (the security enhancements) and 802.11e (QoS), not in 802.11i itself.
Remember that the key that is cracked is a per-frame temporal key, not the pairwise master key, and the scope of what you can do with this is severly limited. I am personally not at all convinced that that this attack or ones which build on it will improve. This attack is an active one, and it is detectable either by the AP under attack or by a wireless IDS. I can also predict that a simple change in the way MIC failures are tracked and rekeying the network when this attack is detected would defeat it, just as the original Michael MIC was designed to do.
Finally, remember that TKIP was intended to be a retrofit to band-aid the problem until the full AES based standard was finished. We published what became known as WPA more than 6 years ago, and didn't mandate the replacement of hardware to implement it.
Not to bad, in my humble opinion....
My wife is an ophthalmic technician, and has worked for ophthalmic surgeons for 20 years. I had been wearing contacts (softs) for a couple of years before we hooked up.
She has seen, and I have heard the war stories, of all the myriad ways that soft lenses can go wrong. Based on that, and the rather strongly worded advice of one of her bosses in 1989, I switched to rigid gas permeable hard lenses, and have since upgraded to extended wear versions.
This is the best thing I have ever done with respect to my eyes. Since there is no fluid component to the lens, changes in humidity, gusts of air, dry eyes, etc., are no where near as big a deal.
They pass more Oxygen than ANY soft lens, and for this and many other reasons, are more healthy.
Unlike softlenses, if some "bug", fungal, bacterial, or whatever, gets into my eyes, the gas perms are not a medium for growth. The crap in the news about fungal growths associated with a particular B&L solution for softs are simply not an issue.
I wear my lenses 7x24. They are approved for 2 weeks of continuous wear. I have gone much longer with no issues.
They DO take a lot longer to get used to (weeks). Typically, they are harder for the practitioner to fit, more expensive, more uncomfortable until you are used to them, cost more per lens and per fitting session. An often overlooked benefit is that if (when) you get something foreign like dust, dirt or an eyelash in your eye, it is extraordinarily uncomfortable.... this typically causes the wearer to get lens out RIGHT NOW, and to deal with the comtamination. This is a good thing. As opposed to just tolerating it as a little uncomfortable, which is the norm for softs.
As far as Lasik goes.... well, what they don't tell you is a couple of things:
When it goes bad, it goes VERY bad. The options at that point are grim. it can get as bad as being legally blind.
Second, no one knows what the long term effects of lasic are. I plan to be alive for at least 50 more years, and there is no track record for this procedure anywhere near that long ago. Further, as we age, we ALL need cheaters or bifocals to deal with the fact that our eyes loose flexibility as we age. Lack of flexability translates into limited ability to change focus from close up to infinity. Lasic may set you free from your specs now, but you are still going to need cheaters or bifocals starting at around 40-45. FWIW, I keep several sets around... so you can guess my age....
Remember, these are your EYES. You only have two, and unless something changes radically, you can never get more. They can transplant hearts, kidneys, and lots of other things. Not eyes. Be conservative. Talk to a Doctor (not an optometrist) about hards. Find someone who specializes, not a refractive surgeon running a lasik mill. And finally, remember, we all are going to need cheaters when we get older.
Red
Um, Wrong.
We definitely have the power, it may not be universally connected residentially.... If you have 220 in the house (typically for an electric stove or a clothes dryer), you have two phase coming in from the street.
You may also have multiple phases coming in if you have a higher load. This office is that way.
The multiple phases may not be wired, but they are definitely available. I looked into setting up a 3-phase circuit to power an old SparcServer 2000E in my garage at one point. I had everything I needed for 2-phase, not for 3, and it was going to cost a bomb to bring in from the street. A colleague has a Cray running in his dining room (and an $800/month power bill), and it is definitely on 3-phase.
BTW, I think the previous posters observation about loose neutrals sounds like the most likely cause in the house. Call in a competent electrician. He can tell you whether you or the power company has the problem.
--RED
The elevators in the Marriott Marquis on Times Square work exactly like this, and they have been there for a while.
--RED
Pretend that I am Jon Postel, still alive, and I have cornered you an the hallway at IETF.
.XXX domain.
Defend to me, on grounds that you know I (Jon Postel) would accept, the decision to kill the
Remember (and I am not reminding you, sir) that registration in that domain is not mandatory for ANYONE.
Yes, we've met (at IETF), and no, I will not tell you who I am.
--Red