No meaningful method of limiting NTP access? What crack are you smoking? Firstly: firewalls, which can limit access to anything. Secondly: ntp access rules (only allow access to netblocks you care about). Thirdly: ntp keys (see the ntp docs). Fourthly: not putting your server on the public lists with no more than a "please" to protect it.
I fully appreciate that this guy is providing a useful service off his own back, it's certainly a shame that Denmark has no national time service. However, if the service is important to all the Danish ISPs, why don't they club together to pay for it? They presumably have quite a lot of bandwidth knocking about and all connect to DIX, so any one of them could easily decide to run such a server. Of course it's nice when cool things on the Internet are free, but you get what you pay for (since he presumably supplies no SLA for the service and so can feel free to change the hostname or access control at will).
My answer is not to not put the service up at all, but my suggestion is to approach the problem pragmatically - anything that is publically exposed on the internet will be probed, used, abused, etc. by world+dog and there is no changing that. Thus, you should understand the situation and ensure that your service is either suitably secured, or able to cope with the realities of life. Anyone accessing the server legitimately is a server (as per the NTP server's listing), thus has been set up by hand by a skilled admin, so presumably wouldn't mind a small amount of work to get access to the server.
As for your "by that logic" point, I put my email address all over the internet and I get a lot of spam, but I accept that that is the way of the Internet and do my best to mitigate it - temporary addresses, good filtering, sender verification and the Delete button. Slashdot chooses to obfuscate my email address, but you'll notice that it is listed, pure, in my.sig. If I wanted to keep it secret I wouldn't put it anywhere, or would use whitelisting, or a system that requires human interaction before a mail is sent to me, etc. As it is I prefer that people can talk to me and while I would of course love spam to go away tomorrow, I accept that it isn't going to happen, so I do my best to defeat it.
And with respect to your suggestion that my world is cynical and small, I would point out that a certain amount of cynicism is vital to existance and that my world has a blue lid and is very big and finds itself not even slightly concerned by arguments about NTP servers on/. on a Friday;)
Of course wrong is wrong and stupid is stupid, and DLink are both, but that does not make the "victim" blameless, despite his good intentions.
Oh well, that's what you get for publically publishing details of a publically accessible internet service.
Plenty of ntp servers manage, you can require keys for access, requests for access, etc, etc. Even just changing the hostname of the server would at least make the legitimate users notice, investigate and use the new address.
Of course D-Link should be using pool.ntp.org, but this is the Internet and the world is full of stupid people. Crying about it won't stop it, nor will $5000 consultants. I realise I'm being harsh, but things are what they are.
He could just firewall the server so only the DIX networks it is for can connect to it. That would have stopped all of this with zero expenditure. Or he could change the hostname and tell the few people that would affect. Again, zero expenditure.
Yet somehow he managed to piss $5k up the wall on a consultant to identify the source of the packets. Shenanigans.
Most people are too dumb to know what horde means anyway. Of far more concern is a discussion overheard by a non-techie that involves things like "oh I just use the gimp for that";)
I would say that you should not save all your questions for the end, but try and work them into the interview - then you are having more of a conversation with the people interviewing you because you will be asking questions in a relevant part of the interview; then any topics not covered you can ask about at the end when they ask you for questions. My point being that if you've been alert and more interactive in the interview you probably don't need to worry about if you had some awkward, canned questions for the end;)
"There really is nothing good to report on this game update."
How about it's now a game that sounds like *fun* and not a fucking farming/town simulation?;)
Seriously though, if you want to live in a game where you are interacting with a big social network (which is what Galaxies was afaics), go play The Real World. I want games to be about *play*!
Gnome is getting a lot better at this - the session management will remember many of the settings now, especially for gnome-terminal. I find I can put a terminal on a specific desktop, mark another as visible on all desktops, etc. and when I log out and save my session, these settings are obeyed. Or there's devilspie if you really want to manually force things. Anything is better than farting around with the nonsense that is Enlightenment (which really will be released soon, honest!);)
The imp in me wants to suggest that if you ask the liar "what would you say if I asked you which way I should go?" his answer would be "nothing", since he would be then lying about the fact that he'd say something if actually asked the question;)
If it's counter-intuitive to you it might be intuitive to me. How do I know I haven't just thought of the right answer, but dismissed it because you said I should expect the opposite of what I expect?;)
I didn't miss anything. For god's sake actually read the bloody question! Here is an extract:
"You can ask only one question (same question to each man)"
I asked the same question to each man. Ergo I am right, ner ner ner;)
Your question doesn't make sense though, if you ask the liar "what would YOU say if I asked you which way to go?" (I filled in half the question for you there, since you tailed off) he will say "go right" and the truthful dude will say "go left" (assuming left is the way to go). How does that help you?
Pansies. There are a zillion and one places you can do logic/math puzzles, this is for discussion, so discuss the questions and the range of answers - more often than we might think there are multiple solutions that not everyone may know. I'd rather know about that and run the risk of accidentally glancing at a solution before I find it;p
The question is "will he tell me to go left?", ie you ask each man how the other man will answer. If left is the correct way to go then the liar will say "no" (because the truthful man would indeed tell you to go left, and the liar has to lie). The truthful man will also say "no" (because he has to tell you the truth that the liar will tell you to go right). If left is not the correct way to go, the liar will say "yes" and the truthful man will say "yes".
(You can ask "will he tell me to go right?" and the same answers will occur)
These kinds of problems pop up a bit, the key is usually to play the liar and truthteller against each other and still, as you suggest, make the question about which direction to go:)
"These requirements apply to the modified work as a whole. If identifiable sections of that work are not derived from the Program, and can be reasonably considered independent and separate works in themselves, then this License, and its terms, do not apply to those sections when you distribute them as separate works."
Perhaps the line isn't where I drew it, but there has to be a line somewhere otherwise every bit of software you run on your PC is deriving from something GPL. What about if I separate mysql from the application via a message passing interface, so there's no actual linking, etc. etc.
Grey areas all, and IANAL so anything I say here is my opinion and you can keep your bollocks:)
The license is stupid, all you need to do is go via something like ODBC and you can ignore what mysql say because at that point the GPL linking clause ceases to apply. IANAL:)
Slashdot Mirror
No meaningful method of limiting NTP access? What crack are you smoking? Firstly: firewalls, which can limit access to anything. Secondly: ntp access rules (only allow access to netblocks you care about). Thirdly: ntp keys (see the ntp docs). Fourthly: not putting your server on the public lists with no more than a "please" to protect it.
.sig. If I wanted to keep it secret I wouldn't put it anywhere, or would use whitelisting, or a system that requires human interaction before a mail is sent to me, etc. As it is I prefer that people can talk to me and while I would of course love spam to go away tomorrow, I accept that it isn't going to happen, so I do my best to defeat it.
/. on a Friday ;)
I fully appreciate that this guy is providing a useful service off his own back, it's certainly a shame that Denmark has no national time service. However, if the service is important to all the Danish ISPs, why don't they club together to pay for it? They presumably have quite a lot of bandwidth knocking about and all connect to DIX, so any one of them could easily decide to run such a server. Of course it's nice when cool things on the Internet are free, but you get what you pay for (since he presumably supplies no SLA for the service and so can feel free to change the hostname or access control at will).
My answer is not to not put the service up at all, but my suggestion is to approach the problem pragmatically - anything that is publically exposed on the internet will be probed, used, abused, etc. by world+dog and there is no changing that. Thus, you should understand the situation and ensure that your service is either suitably secured, or able to cope with the realities of life. Anyone accessing the server legitimately is a server (as per the NTP server's listing), thus has been set up by hand by a skilled admin, so presumably wouldn't mind a small amount of work to get access to the server.
As for your "by that logic" point, I put my email address all over the internet and I get a lot of spam, but I accept that that is the way of the Internet and do my best to mitigate it - temporary addresses, good filtering, sender verification and the Delete button. Slashdot chooses to obfuscate my email address, but you'll notice that it is listed, pure, in my
And with respect to your suggestion that my world is cynical and small, I would point out that a certain amount of cynicism is vital to existance and that my world has a blue lid and is very big and finds itself not even slightly concerned by arguments about NTP servers on
Of course wrong is wrong and stupid is stupid, and DLink are both, but that does not make the "victim" blameless, despite his good intentions.
Cheers,
"2) What's to stop someone, including D-Link, from just pointing to the new address in the future?"
How about not making the service publically accessible? I don't put up an MTA and then expect people not to spam me - quite the reverse.
Oh well, that's what you get for publically publishing details of a publically accessible internet service.
Plenty of ntp servers manage, you can require keys for access, requests for access, etc, etc.
Even just changing the hostname of the server would at least make the legitimate users notice, investigate and use the new address.
Of course D-Link should be using pool.ntp.org, but this is the Internet and the world is full of stupid people. Crying about it won't stop it, nor will $5000 consultants. I realise I'm being harsh, but things are what they are.
Cheers,
He could just firewall the server so only the DIX networks it is for can connect to it. That would have stopped all of this with zero expenditure.
Or he could change the hostname and tell the few people that would affect. Again, zero expenditure.
Yet somehow he managed to piss $5k up the wall on a consultant to identify the source of the packets. Shenanigans.
because you play them!
:)
I say sod any "adult" who thinks they are too grown up to play anymore
Most people are too dumb to know what horde means anyway. Of far more concern is a discussion overheard by a non-techie that involves things like "oh I just use the gimp for that" ;)
There's no point any of us doing it, archive.org already has and as you point out, they have shedloads more bandwidth ;)
This happened back in March. it still sucks though.
w ww.holtmann.org/linux/bluetooth/devices.html
The list is available at: http://web.archive.org/web/20050310010832/http://
I would say that you should not save all your questions for the end, but try and work them into the interview - then you are having more of a conversation with the people interviewing you because you will be asking questions in a relevant part of the interview; then any topics not covered you can ask about at the end when they ask you for questions. ;)
My point being that if you've been alert and more interactive in the interview you probably don't need to worry about if you had some awkward, canned questions for the end
"There really is nothing good to report on this game update."
;)
How about it's now a game that sounds like *fun* and not a fucking farming/town simulation?
Seriously though, if you want to live in a game where you are interacting with a big social network (which is what Galaxies was afaics), go play The Real World. I want games to be about *play*!
Gnome is getting a lot better at this - the session management will remember many of the settings now, especially for gnome-terminal. ;)
I find I can put a terminal on a specific desktop, mark another as visible on all desktops, etc. and when I log out and save my session, these settings are obeyed.
Or there's devilspie if you really want to manually force things.
Anything is better than farting around with the nonsense that is Enlightenment (which really will be released soon, honest!)
/. is no place for bug reports - use the very excellent malone!
Eat complex carbohydrates for lunch and you won't fade so much in the afternoon.
Shame there's no 'doesn't make the first bit of sense' mod ;)
I see what you mean.
;)
The imp in me wants to suggest that if you ask the liar "what would you say if I asked you which way I should go?" his answer would be "nothing", since he would be then lying about the fact that he'd say something if actually asked the question
If it's counter-intuitive to you it might be intuitive to me. How do I know I haven't just thought of the right answer, but dismissed it because you said I should expect the opposite of what I expect? ;)
I didn't miss anything. For god's sake actually read the bloody question! Here is an extract:
;)
"You can ask only one question (same question to each man)"
I asked the same question to each man. Ergo I am right, ner ner ner
Your question doesn't make sense though, if you ask the liar "what would YOU say if I asked you which way to go?" (I filled in half the question for you there, since you tailed off) he will say "go right" and the truthful dude will say "go left" (assuming left is the way to go). How does that help you?
Pansies. There are a zillion and one places you can do logic/math puzzles, this is for discussion, so discuss the questions and the range of answers - more often than we might think there are multiple solutions that not everyone may know. I'd rather know about that and run the risk of accidentally glancing at a solution before I find it ;p
The question is "will he tell me to go left?", ie you ask each man how the other man will answer.
:)
If left is the correct way to go then the liar will say "no" (because the truthful man would indeed tell you to go left, and the liar has to lie). The truthful man will also say "no" (because he has to tell you the truth that the liar will tell you to go right). If left is not the correct way to go, the liar will say "yes" and the truthful man will say "yes".
(You can ask "will he tell me to go right?" and the same answers will occur)
These kinds of problems pop up a bit, the key is usually to play the liar and truthteller against each other and still, as you suggest, make the question about which direction to go
How about just using du's --max-depth option? ;)
I like:
/data/
:)
du -h --max-depth=1
for profiling disk usage quickly
"These requirements apply to the modified work as a whole. If identifiable sections of that work are not derived from the Program, and can be reasonably considered independent and separate works in themselves, then this License, and its terms, do not apply to those sections when you distribute them as separate works."
:)
Perhaps the line isn't where I drew it, but there has to be a line somewhere otherwise every bit of software you run on your PC is deriving from something GPL. What about if I separate mysql from the application via a message passing interface, so there's no actual linking, etc. etc.
Grey areas all, and IANAL so anything I say here is my opinion and you can keep your bollocks
The license is stupid, all you need to do is go via something like ODBC and you can ignore what mysql say because at that point the GPL linking clause ceases to apply. :)
IANAL
as a sign of how robustly lossy English is ;)
screw google!