So, how about a hypothetical? I live in a state where both parties must be informed before a telephone conversation can be recorded. But not all states are that way. In some, only ONE party need know about the recording.
So, if somebody from such a state called me up, in which state does the law apply? I would be very curious to know.
IANAL but my understanding is the state that the law suit is filed in.
Google tracks the search terms from by ip address, ostensibly so that they can customize search results.
It would make sense for yahoo to do the same thing.
The opt out is only for ad tracking, and you need a cookie to make it stick, which implies that they do the same ip address tracking of search queries as google.
For example, assume that everyone at the San Jose Earthquakes (a professional soccer team in the USA) offices uses google, it would make sense for the search engine to learn that the term football, when coming from that IP address, even if it does not have a cookie, is probably referring to what Americans call soccer. So when ever google gets a query from that ip address it skews football to mean football as the rest of the world means it as opposed to US football.
So if you were searching for something about American Football from the San Jose Earthquakes offices, using the less used search engine might produce better results in this case.
Yahoo's search assist is interesting, but I don't think I would consistently use it unless I used Yahoo long enough to train myself to click on the little down button.
Google's Web history is also sort of interesting, but also a pretty blatant reminder of how little privacy there is in the world of map reduce clusters with petabytes of semi personally identifiable information. (it just lets you see what google already knows about you.)
I would assume that yahoo tracks your search history so they can give you semi personalized results, just like google does.
This would result in the search engine that you frequently use normally giving you better results.
It also explains why sometimes when you cannot find something with google or yahoo changing to the search engine that you infrequently use gets the result easier, as you are getting a more generic less personalized search.
I may not be fully understanding your complaints, but it sounds to me like you are complaining about the inherent problems of searching a map reduce database.
It might be interesting if someone came up with a way of dealing with partial part numbers, or at least the ability to wild card a single character.
I use libvirt virtual-machine manger, kvm (kernel virtual machine) and qemu for my desktop. It works well for my uses for windows 2K, windows xp, windows 7, FreeBSD, Debian and Cent OS virtual machines.
Sound took a little to get working and windows 7 is missing the aero effects because the virtualized graphics card sucks.
Over all as long as I run fewer virtual machines than cpu cores my desktop stay's pretty responsive,
The only problem I've had was windows update is running on win2k, XP and 7 at the same time, file system IO started to make every thing fairly painful.
Over all it is really nice to be able to look at IE6, 7, and 8 at the same time while debugging a website, which is most of what I do in windows.
I haven't really stressed the virtual machines much, I use Linux because I have more experience with UNIX type operating systems than I care to admit. So, If I have a choice I use Linux, but for when I need ot use Windows, the libvirt, kvm, qemu stack has been really nice.
VMware has been more or less unusable for testing javascript and flash animations. It is fine for servers, but when you launch a web browser, the experience has always been painful for me.
The point is that PulseAudio can be used anywhere.
The problem is that Pulse Audio is very new, has lots of debugging stuff in it, and is not yet at the point of optimization and more of the fixing breakage.
If you want to set your living room speakers to play your sounds, it should be just a matter of opening your sound settings and making a couple clicks and you are done.
PulseAudio is not there yet, but it is the only linux sound solution that I know of that looks like it is getting there.
The problem with Linux's darwinesque survival of the fittest environment is the showdowns that involve lots of carnage.
People complain about Linux developers not rallying around one desktops standard, but it is because most of the parts suck, in their current form. As parts stop sucking, people standardize on the non-sucking part. Xorg is slowly getting all the parts up to speed,
Sound on Linux still is one of the weak spots, but things like LTSP look like they might be almost plug and play simple to set up when pulse audio gets finished. (well at least the sound should be.)
I would suppose it would depend on the number of puts you have on Firm X in an offshore shell company as to how productive destroying the company is.
Your odds of facing consequences decline the more negative the banks net worth is. (as long as you are up enough that you can give back 100,000,000 or so from you gains.)
This is why I am prone to putting > tmp.sh at the end of commands that are very destructive. Deleting the wrong 30,000 files is something you only have to do once.
a 1989 compaq is probably worth several hundred dollars, IIRC.
I don't remember when they cut costs and stopped plating everything in gold but I think it was in the early nineties.
Open the case and see if you can see gold. If so, find out who pays top dollar for recycling computers in your area, and you should be able to pay for a new one with the proceeds of the old one.
Of course the new computer is going to be lucky to last more than five years.
Debian and RHEL use pgp signatures on packages by default and they check if the signature is good.
There are problems with both of them at the moment, but there are teams actively working on the problem. (and have been for some time now.)
Microsoft is trying to do this with windows drivers by demanding that they are signed. But that is not really working due to various issues.
Most *N*X distributions have used md5 sums to verify packages but that has been proven to be subvertable so there is a movement afoot to create proper pgp infrastructure.
It is amazing how many commercial apps for RHEL have as step one of the install process: Disable SELinux (Zimbra, Oracle)
Linux distributors are aware of the problem and are trying with limited success to implement solutions.
Debian seems the furthest along on creating the infrastructure, while Redhat seems to have the best tools.
So, while you could probably do something similar on Linux the preventative steps are being taken.
Mozilla has a reputation of making it fairly hard to kick upstream support that they don't want to do.
The Debian Mozilla schism was partially because of the fact that Mozilla basically told the Debian developers to bug off when they submitted patches to Firefox 1.0 when 2.0 was the oldest supported version.
Mozilla builds for OS 9 are very hard to find but they continued for years after Mozilla stopped supporting them.
One could cynically come to the conclusion that Mozilla only use for community contributions is to blame them for the poor quality of extensions.
The obvious solution would be to have unsupported OS9, Win2k, and windows XP, downloads that are labeled as community and allow the community to contribute to them, but Mozilla sees this as too anarchistic, (even though the extensions which are even worse, are OK.) for them.
I think you over estimate the security of passwords.
You admit that the weakest link is the user.
Passwords are very dependent on the user. They are generally selected by the user and if any of your users recycled a username password pair from http://www.google.com/search?ie=UTF8&q=myspace1.txt.bz2 even though they are eight characters with a letters and numbers and mixed case they are essentially known.
Passwords depend on users not recycling username password pairs that have have been phished.
I will admit to having had a few of my old passwords on cracking lists. (I don't use those passwords anymore, obviously)
key auth is much improved when it is used with something like mod_usb where the private key is stored on a usb key, preferably one that is attached to the persons key chain so it is generally not attached to the machine. (Yes, I know some people leave there keyrings attached to their machines all day, but hopefully they need their other keys at some point and pull the usb drive out.)
Security is about tricking the users into behaving in a secure manner, and with passwords you will be fighting with your users in ways you haven't really thought about. (I am still amazed the way users undermine security.)
my understanding of phalanx2 is that it is more or less a brute force of the keys in debians openssh-blacklist, missing most of openssh-blacklist-extra. (although it may have been updated since the last time I looked at it.)
You are right about being compromised thought. It will happen. have a second and third line of defense ready.
Tripwire and snort are the obvious things to have in place but configuring them so that they provide meaningful information without a million false positives is a little tricky. (or maybe I just haven't done it enough:) )
Because if you want to run anything besides sendmail you are stuck with the ports that occasionally have the quality control of "if it compiles ship it", especially if you head of the beaten tracks and try obscure ports like php and samba.
Debian has its short comings, but if you like FreeBSD because it is integrated, you should find that Debian is even more integrated.
FreeBSD tends to have the source readily available and builds without any black magic to hold together a billion dependencies, so it is a more fun system to hack on, and figuring out where a problem is much easier, if you have training in the Computer arts.
In Debian, simply enabling apt-src does not get you a fully populated/src tree, and getting the source to start looking at to see if you can make a patch is a pain.
Just a few thoughts from someone that uses Debian and FreeBSD as my two most common operating systems.
Linus Torvalds made the statement that you can write a kernel in six months with no prior knowledge. Proof, he did it.
I don't think of myself as a programmer, more a sys admin, but I have written multiple programs over 5,000 lines (maybe they shouldn't have been that long, but they worked for the task at hand.)
Personally I would advise going out and finding some $40 dollar piece of hardware that linux doesn't support, and write a driver for it.
Nice resume padding, and you'll get a fun project.
I know several COO's and former COO's and most of them were true geeks. (as in running there own custom linux on their home wireless access points, giving their curtains IPV6 addresses, grabbing manufacturing samples of chips to solder in to increase the memory of they PDA's, pocketing some of the old lead solder that their company was getting rid of for their home workshop, etc.).
I suspect that is why they advertised going to the CIO's and were silent about the COO's.
Slashdot Mirror
Do you know of any public gopher servers that are still alive?
My list died out in the last four years when I wasn't watching.
Fairly slow has been under a minute on most of the servers I tested it on.
Fortunately my servers are configured to be able to run either lighttpd or apache. (in case I have a problem with one.)
So I can pick my poison.
So, how about a hypothetical? I live in a state where both parties must be informed before a telephone conversation can be recorded. But not all states are that way. In some, only ONE party need know about the recording.
So, if somebody from such a state called me up, in which state does the law apply? I would be very curious to know.
IANAL but my understanding is the state that the law suit is filed in.
Google tracks the search terms from by ip address, ostensibly so that they can customize search results.
It would make sense for yahoo to do the same thing.
The opt out is only for ad tracking, and you need a cookie to make it stick, which implies that they do the same ip address tracking of search queries as google.
For example, assume that everyone at the San Jose Earthquakes (a professional soccer team in the USA) offices uses google, it would make sense for the search engine to learn that the term football, when coming from that IP address, even if it does not have a cookie, is probably referring to what Americans call soccer. So when ever google gets a query from that ip address it skews football to mean football as the rest of the world means it as opposed to US football.
So if you were searching for something about American Football from the San Jose Earthquakes offices, using the less used search engine might produce better results in this case.
Yahoo's search assist is interesting, but I don't think I would consistently use it unless I used Yahoo long enough to train myself to click on the little down button.
Google's Web history is also sort of interesting, but also a pretty blatant reminder of how little privacy there is in the world of map reduce clusters with petabytes of semi personally identifiable information. (it just lets you see what google already knows about you.)
I would assume that yahoo tracks your search history so they can give you semi personalized results, just like google does.
This would result in the search engine that you frequently use normally giving you better results.
It also explains why sometimes when you cannot find something with google or yahoo changing to the search engine that you infrequently use gets the result easier, as you are getting a more generic less personalized search.
I may not be fully understanding your complaints, but it sounds to me like you are complaining about the inherent problems of searching a map reduce database.
It might be interesting if someone came up with a way of dealing with partial part numbers, or at least the ability to wild card a single character.
An interesting problem anyways.
I use libvirt virtual-machine manger, kvm (kernel virtual machine) and qemu for my desktop. It works well for my uses for windows 2K, windows xp, windows 7, FreeBSD, Debian and Cent OS virtual machines.
Sound took a little to get working and windows 7 is missing the aero effects because the virtualized graphics card sucks.
Over all as long as I run fewer virtual machines than cpu cores my desktop stay's pretty responsive,
The only problem I've had was windows update is running on win2k, XP and 7 at the same time, file system IO started to make every thing fairly painful.
Over all it is really nice to be able to look at IE6, 7, and 8 at the same time while debugging a website, which is most of what I do in windows.
I haven't really stressed the virtual machines much, I use Linux because I have more experience with UNIX type operating systems than I care to admit. So, If I have a choice I use Linux, but for when I need ot use Windows, the libvirt, kvm, qemu stack has been really nice.
VMware has been more or less unusable for testing javascript and flash animations. It is fine for servers, but when you launch a web browser, the experience has always been painful for me.
This is part of the sovereign immunity that all US governments enjoy.
How many US governments are there?
51 (Fifty States, plus the federal.)
The point is that PulseAudio can be used anywhere.
The problem is that Pulse Audio is very new, has lots of debugging stuff in it, and is not yet at the point of optimization and more of the fixing breakage.
If you want to set your living room speakers to play your sounds, it should be just a matter of opening your sound settings and making a couple clicks and you are done.
PulseAudio is not there yet, but it is the only linux sound solution that I know of that looks like it is getting there.
The problem with Linux's darwinesque survival of the fittest environment is the showdowns that involve lots of carnage.
People complain about Linux developers not rallying around one desktops standard, but it is because most of the parts suck, in their current form. As parts stop sucking, people standardize on the non-sucking part. Xorg is slowly getting all the parts up to speed,
Sound on Linux still is one of the weak spots, but things like LTSP look like they might be almost plug and play simple to set up when pulse audio gets finished. (well at least the sound should be.)
I would suppose it would depend on the number of puts you have on Firm X in an offshore shell company as to how productive destroying the company is.
Your odds of facing consequences decline the more negative the banks net worth is. (as long as you are up enough that you can give back 100,000,000 or so from you gains.)
You open tmp.sh in a text editor and then run tmp.sh
A little check that you are doing what you expect to do.
This is why I am prone to putting > tmp.sh at the end of commands that are very destructive. Deleting the wrong 30,000 files is something you only have to do once.
Considering Andy Hertzfeld Designed Mac OS classic and Nautilus might have something to do with the similarity.
a 1989 compaq is probably worth several hundred dollars, IIRC.
I don't remember when they cut costs and stopped plating everything in gold but I think it was in the early nineties.
Open the case and see if you can see gold. If so, find out who pays top dollar for recycling computers in your area, and you should be able to pay for a new one with the proceeds of the old one.
Of course the new computer is going to be lucky to last more than five years.
Debian and RHEL use pgp signatures on packages by default and they check if the signature is good.
There are problems with both of them at the moment, but there are teams actively working on the problem. (and have been for some time now.)
Microsoft is trying to do this with windows drivers by demanding that they are signed. But that is not really working due to various issues.
Most *N*X distributions have used md5 sums to verify packages but that has been proven to be subvertable so there is a movement afoot to
create proper pgp infrastructure.
It is amazing how many commercial apps for RHEL have as step one of the install process: Disable SELinux (Zimbra, Oracle)
Linux distributors are aware of the problem and are trying with limited success to implement solutions.
Debian seems the furthest along on creating the infrastructure, while Redhat seems to have the best tools.
So, while you could probably do something similar on Linux the preventative steps are being taken.
unfortunately firefox.exe under wine is faster than native firefox under linux.
That's why we talk about phat pipes.
Mozilla has a reputation of making it fairly hard to kick upstream support that they don't want to do.
The Debian Mozilla schism was partially because of the fact that Mozilla basically told the Debian developers to bug off when they submitted patches to Firefox 1.0 when 2.0 was the oldest supported version.
Mozilla builds for OS 9 are very hard to find but they continued for years after Mozilla stopped supporting them.
One could cynically come to the conclusion that Mozilla only use for community contributions is to blame them for the poor quality of extensions.
The obvious solution would be to have unsupported OS9, Win2k, and windows XP, downloads that are labeled as community and allow the community to contribute to them, but Mozilla sees this as too anarchistic, (even though the extensions which are even worse, are OK.) for them.
s/mod_usb/pam_usb/
Time to head to bed.
I think you over estimate the security of passwords.
You admit that the weakest link is the user.
Passwords are very dependent on the user. They are generally selected by the user and if any of your users recycled a username password pair from http://www.google.com/search?ie=UTF8&q=myspace1.txt.bz2 even though they are eight characters with a letters and numbers and mixed case they are essentially known.
Passwords depend on users not recycling username password pairs that have have been phished.
I will admit to having had a few of my old passwords on cracking lists. (I don't use those passwords anymore, obviously)
key auth is much improved when it is used with something like mod_usb where the private key is stored on a usb key, preferably one that is attached to the persons key chain so it is generally not attached to the machine. (Yes, I know some people leave there keyrings attached to their machines all day, but hopefully they need their other keys at some point and pull the usb drive out.)
Security is about tricking the users into behaving in a secure manner, and with passwords you will be fighting with your users in ways you haven't really thought about. (I am still amazed the way users undermine security.)
my understanding of phalanx2 is that it is more or less a brute force of the keys in debians openssh-blacklist, missing most of openssh-blacklist-extra. (although it may have been updated since the last time I looked at it.)
You are right about being compromised thought. It will happen. have a second and third line of defense ready.
Tripwire and snort are the obvious things to have in place but configuring them so that they provide meaningful information without a million false positives is a little tricky. (or maybe I just haven't done it enough :) )
As opposed to cd src/
Yep.
Not that it is overly hard but I don't know how to do the equivalent to apt-get install to make debian a source based distro.
Would be cool if someone can tell me a magic incantation that I am ignorant of.
Because if you want to run anything besides sendmail you are stuck with the ports that occasionally have the quality control of "if it compiles ship it", especially if you head of the beaten tracks and try obscure ports like php and samba.
Debian has its short comings, but if you like FreeBSD because it is integrated, you should find that Debian is even more integrated.
FreeBSD tends to have the source readily available and builds without any black magic to hold together a billion dependencies, so it is a more fun system to hack on, and figuring out where a problem is much easier, if you have training in the Computer arts.
In Debian, simply enabling apt-src does not get you a fully populated /src tree, and getting the source to start looking at to see if you can make a patch is a pain.
Just a few thoughts from someone that uses Debian and FreeBSD as my two most common operating systems.
So buy with Pounds and pad the CV.
Unfortunately that requires paying with real money instead of dollars.
That is just depressing.
Linus Torvalds made the statement that you can write a kernel in six months with no prior knowledge. Proof, he did it.
I don't think of myself as a programmer, more a sys admin, but I have written multiple programs over 5,000 lines (maybe they shouldn't have been that long, but they worked for the task at hand.)
Personally I would advise going out and finding some $40 dollar piece of hardware that linux doesn't support, and write a driver for it.
Nice resume padding, and you'll get a fun project.
I know several COO's and former COO's and most of them were true geeks. (as in running there own custom linux on their home wireless access points, giving their curtains IPV6 addresses, grabbing manufacturing samples of chips to solder in to increase the memory of they PDA's, pocketing some of the old lead solder that their company was getting rid of for their home workshop, etc.).
I suspect that is why they advertised going to the CIO's and were silent about the COO's.