I actually just use my T610 bluetooth phone on T-Mobile and get a gprs connection just fine for $5/month.
Technically, the $5/month is added on to my regular phone plan and is for the phone to be able to do mail and http itself (https, imap, pop, smtp and http being the only ports open). It turns out, with ANY t-mobile plan (as far as I've been able to see) you get port 80 access, so if you're up for tunneling anything across 80, you can do it for free with any tmo phone with data connectivity. I'm not sure whether t-mobile can't distinguish between a phone carrying data for a laptop, or simply doesn't care at this point, but it results in a darn cheap data connection.
I have to admit, I've only done it with windows so far, but no special drivers were required, just the stock bluetooth kernel, so I'm positive it would work on linux as well.
The phone shows up as a standard bluetooth modem and I dial #99* (or *99#, I can never remember and the laptop's off), use any user name or password and off we go.
It's not great, however. Though the connection shows up as 115kb/s, the latency is so high that it's nearly unusable for many applications. I use it in a pinch if I have to to get on and ssh, web, or email, but occasionally the network is so flaky that it's not usable at all, so I definitely wouldn't recommend it for an always on service.
That said, for a backup data connection plan if you've already got t-mobile, you can't beat it.
I'm assuming the dedicated 'data' plans that t-mobile offers are using the same data network, and therefore would be approximately the same service levels, but I could be totally off.
huh? Actually, the 'real' gmail is gmail.google.com. Check out the ssl cert for https://gmail.com/ if you don't believe me. I imagine it's done that way so all the google domains share the same cookie base.
Tell me when the last popular free book written in modern times came. Tell me when the last popular free 3d FPS was released. Tell me when the last amateur film made it big, got shown in cinemas world wide. You cant.
Yes, yes I can.
Books: "Free Culture", "Down and out in the Magic Kingdom"
Film: Blair Witch
FPS: Don't game much, but I'm quite sure others could fill the gap here and point out some amazing stuff done by amateurs without profit in mind.
Sure, lots of amateur stuff is shlock, but lots isn't, it just doesn't get the publicity of corporately sponsored products and thus often doesn't get noticed irrespective of any value. Don't you read whenever a story on major label music comes up on Slashdot and everyone starts posting about all the good indie music they've found once they tuned out the corporate media?
You can't understand it? It's quite simple. See, there's this website called Slashdot. What happens there is four or five people post the same story to the site. The shortest, most incoherent submission is further mangled by one of the editors and posted to the chosen (by their wallets) ones for an early read. These readers in turn notify the appropriate editor of half a dozen changes, suggestions, and fixes, all of which are ignored when it is posted to rest of the site.
Then some smart aleck in the comments doesn't have anything meaningful to say about the story itself, so he posts an amazed comment about how such an obvious typo could make it through the ever so thorough vetting process.
This is of course followed up by an even worse smart aleck who 'educates' the previous user and the entire thread is subsequently modded as not-funny and off-topic and hopefully removed from the visible comments for most users.
Welcome! Hope you enjoy it here. Oh yeah; almost forgot. You're supposed to make a spelling typo in your spelling correction so that other people can ridicule you too. All part of the fun.
0.10 is listed as a 'Technology Preview' so there's actually lots of new interesting bits thrown in. From the release notes:
Live Bookmarks
You can now subscribe to and read RSS feeds in your Bookmarks.
When you visit a page that advertises a RSS feed by using a
<link> tag, an (RSS) icon will appear in the status bar. Click it to view a list of feeds the page is offering. Click one to subscribe - this adds a
Bookmark Folder that contains all the recent posts from the feed.
Improved Find
Find is easier and more powerful now with our new Find toolbar.
The Find toolbar (which shows at the bottom of the browser window)
automatically highlights text in the page as you type and has a
useful highlight feature.
Managing Annoyances and Protecting Security
You can now open blocked popups, and the Extension install system
now blocks all attempts to install software from sites other than
update.mozilla.org. Users can add other sites to a list that allows
them to offer software, but software is never
automatically installed. In addition to these steps, several
other measures have been taken to prevent phishing attacks and to
highlight when a page is being viewed over a secure connection.
Better Bookmarks
Numerous improvements to bookmarks including more reliable
presentation of Site icons, and a split pane view in the
Bookmarks window.
Strong Encryption For Passwords Available
Passwords saved with the Password Manager can now be more easily
encrypted with strong encryption by creating a "Master Password".
If you create a Master Password, you are prompted once per session
to enter the Master Password so that Password Manager can
automatically fill in site logins. A useful feature for people who
share computers with others and want improved security.
Improved Compatibility for IE users
Undetectable document.all support for site compatibility and
improved compatibility for keyboard accelerators further smooth the
transition for IE users
Better System Integration for GNOME users
You can now configure Firefox as your Default Browser on GNOME, and Firefox will
adhere to your GNOME settings for edit field key bindings, etc.
That's nice, but you didn't tell them the whole story. I work at the as one of only three full-time security people for the whole university, so you probably know me. Let me fill in the gap.
The system is more than just a port scanner. If you think you can evade it simply by blocking probes, you're dead wrong. The system is more than that, it also incorporates passive monitoring. Here's a hint. There ain't no way to disguise high bandwidth. No encryption, no port changes, nothing that will hide that. If you're downloading massive amounts of data, you will be found. Period.
Also, for those people who are arguing about morality, ethics, service, responsibility, priveledges, whatever, it's a moot point.
When you move into the campus housing, you sign a legal document to the effect that you will not run P2P. No, it's not illegal to run it, but it ~is~ a violation of your living agreement, and housing is well within their rights to shut you off or take other action for P2P or abuse of services (as many other posters have noted, the few that abuse the service often make it unusable for those who legitimately need it).
It could, but there are many other, better, bootable distributions for that sort of thing. Three with a security (and thus forensics and recovery) twist that are all more useful in that sort of situation are:
Please, PLEASE folks, use the torrent. My desktop is one of the mirrors, and I suddenly noticed about 9Mb/s started flowing and couldn't figure it out. I joked to my officemate that one of the isos I was hosting musta been/.'ed. Then I thought about it and, well, yeah, it was.
This from the same group that declared definitively that IDS is dead.
I think the only thing that should be impacted by this report is gartner's credibility. I'm inclined to look more and more suspiciously at anything they say after this.
I'm relatively sure it ~is~ the old vulnerability. Notice in your very own hex dump.
It starts off with 04 (the same hex byte as in my IDS signature for the Server resolution service buffer overflow everyone thinks this is) and then a bunch of padding with 0101. I myself am skeptical based on volume alone how this could be an old vulnerability, but remember, Code Red and Nimda were old too, and they didn't have any problem finding lots of new hosts very quickly.
Best writeup I've seen is over at iss.net. They were the first to update their internet status homepage alerting of the vulnerability as far as I can tell.
Enter the Sharp Zaurus, using either the mplayer port, OpieMediaplayer2, or the commercial tkcVideo. Not exactly the screen size you're probably looking for, but hey, it works. Plus, the 640x480 zaurus is available in japan.
Story made a mistake. It's 240x320. Also, they made another mistake; the name was changed to SL-C700 to avoid confusion with the already released in japan A300.
That's not even close to a fair comparison. A $99 palm is so far from features compared to any of the high end PDAs, that it's not even reasonable.
The Palm Tungsten retails for $499, about what the Sl-5600 is projected to retail for. Except the zaurus has 4 times the memory, two memory slots, and a built in keyboard.
Because the sharp work was a complete hack. It was a sym-link nightmare, full of all sorts of oddities to make things work instead of being cleanly designed. OZ will (and already has) benefit greatly from being a fresh rewrite.
Slashdot Mirror
I actually just use my T610 bluetooth phone on T-Mobile and get a gprs connection just fine for $5/month.
Technically, the $5/month is added on to my regular phone plan and is for the phone to be able to do mail and http itself (https, imap, pop, smtp and http being the only ports open). It turns out, with ANY t-mobile plan (as far as I've been able to see) you get port 80 access, so if you're up for tunneling anything across 80, you can do it for free with any tmo phone with data connectivity. I'm not sure whether t-mobile can't distinguish between a phone carrying data for a laptop, or simply doesn't care at this point, but it results in a darn cheap data connection.
I have to admit, I've only done it with windows so far, but no special drivers were required, just the stock bluetooth kernel, so I'm positive it would work on linux as well.
The phone shows up as a standard bluetooth modem and I dial #99* (or *99#, I can never remember and the laptop's off), use any user name or password and off we go.
It's not great, however. Though the connection shows up as 115kb/s, the latency is so high that it's nearly unusable for many applications. I use it in a pinch if I have to to get on and ssh, web, or email, but occasionally the network is so flaky that it's not usable at all, so I definitely wouldn't recommend it for an always on service.
That said, for a backup data connection plan if you've already got t-mobile, you can't beat it.
I'm assuming the dedicated 'data' plans that t-mobile offers are using the same data network, and therefore would be approximately the same service levels, but I could be totally off.
huh? Actually, the 'real' gmail is gmail.google.com. Check out the ssl cert for https://gmail.com/ if you don't believe me. I imagine it's done that way so all the google domains share the same cookie base.
Tell me when the last popular free book written in modern times came. Tell me when the last popular free 3d FPS was released. Tell me when the last amateur film made it big, got shown in cinemas world wide. You cant.
Yes, yes I can.
Books: "Free Culture", "Down and out in the Magic Kingdom"
Film: Blair Witch
FPS: Don't game much, but I'm quite sure others could fill the gap here and point out some amazing stuff done by amateurs without profit in mind.
Sure, lots of amateur stuff is shlock, but lots isn't, it just doesn't get the publicity of corporately sponsored products and thus often doesn't get noticed irrespective of any value. Don't you read whenever a story on major label music comes up on Slashdot and everyone starts posting about all the good indie music they've found once they tuned out the corporate media?
You can't understand it? It's quite simple. See, there's this website called Slashdot. What happens there is four or five people post the same story to the site. The shortest, most incoherent submission is further mangled by one of the editors and posted to the chosen (by their wallets) ones for an early read. These readers in turn notify the appropriate editor of half a dozen changes, suggestions, and fixes, all of which are ignored when it is posted to rest of the site.
Then some smart aleck in the comments doesn't have anything meaningful to say about the story itself, so he posts an amazed comment about how such an obvious typo could make it through the ever so thorough vetting process.
This is of course followed up by an even worse smart aleck who 'educates' the previous user and the entire thread is subsequently modded as not-funny and off-topic and hopefully removed from the visible comments for most users.
Welcome! Hope you enjoy it here. Oh yeah; almost forgot. You're supposed to make a spelling typo in your spelling correction so that other people can ridicule you too. All part of the fun.
You can now subscribe to and read RSS feeds in your Bookmarks. When you visit a page that advertises a RSS feed by using a <link> tag, an (RSS) icon will appear in the status bar. Click it to view a list of feeds the page is offering. Click one to subscribe - this adds a Bookmark Folder that contains all the recent posts from the feed.
Find is easier and more powerful now with our new Find toolbar. The Find toolbar (which shows at the bottom of the browser window) automatically highlights text in the page as you type and has a useful highlight feature.
You can now open blocked popups, and the Extension install system now blocks all attempts to install software from sites other than update.mozilla.org. Users can add other sites to a list that allows them to offer software, but software is never automatically installed. In addition to these steps, several other measures have been taken to prevent phishing attacks and to highlight when a page is being viewed over a secure connection.
Numerous improvements to bookmarks including more reliable presentation of Site icons, and a split pane view in the Bookmarks window.
Passwords saved with the Password Manager can now be more easily encrypted with strong encryption by creating a "Master Password". If you create a Master Password, you are prompted once per session to enter the Master Password so that Password Manager can automatically fill in site logins. A useful feature for people who share computers with others and want improved security.
Undetectable document.all support for site compatibility and improved compatibility for keyboard accelerators further smooth the transition for IE users
You can now configure Firefox as your Default Browser on GNOME, and Firefox will adhere to your GNOME settings for edit field key bindings, etc.
Also, in case anyone's interested, you can first visit:
http://salon.com/news/cookie.html
And not have to watch the commercial. If, say, you don't have a browser that supports the flash advertisements, or are just really impatient.
That's nice, but you didn't tell them the whole story. I work at the as one of only three full-time security people for the whole university, so you probably know me. Let me fill in the gap.
The system is more than just a port scanner. If you think you can evade it simply by blocking probes, you're dead wrong. The system is more than that, it also incorporates passive monitoring. Here's a hint. There ain't no way to disguise high bandwidth. No encryption, no port changes, nothing that will hide that. If you're downloading massive amounts of data, you will be found. Period.
Also, for those people who are arguing about morality, ethics, service, responsibility, priveledges, whatever, it's a moot point.
When you move into the campus housing, you sign a legal document to the effect that you will not run P2P. No, it's not illegal to run it, but it ~is~ a violation of your living agreement, and housing is well within their rights to shut you off or take other action for P2P or abuse of services (as many other posters have noted, the few that abuse the service often make it unusable for those who legitimately need it).
It could, but there are many other, better, bootable distributions for that sort of thing. Three with a security (and thus forensics and recovery) twist that are all more useful in that sort of situation are:
F.I.R.E
knoppix-std
l.a.s.
There are other knoppix remasters of gnome. See the full list, or try a few direct (morphix has had gnome for a while) links.
Yup, it's also very similar to knoppix-std (which I ~highly~ recommend), it's just smaller.
Umm, why don't you read the copy above, or the original page itself. See those nice long numbers next to the image name? Yeah... md5.
You're welcome.
Argh, dang you, that's my desktop machine hosting the ONLY US mirror... .
Though the main problem isn't the load on my machine, but my boss's expression if she realizes the traffic spike I caused.
I can think of two:
knoppix-usb
and runt.
Knoppix-usb is based on (you guessed it!) and runt is based on slackware.
Please, PLEASE folks, use the torrent. My desktop is one of the mirrors, and I suddenly noticed about 9Mb/s started flowing and couldn't figure it out. I joked to my officemate that one of the isos I was hosting musta been /.'ed. Then I thought about it and, well, yeah, it was.
For a civil case, no. To effectively use the DMCA, maybe. For the details on what the requirements are to complain, see:
http://copyright.lib.uci.edu/pdmcaiv.html#a
This from the same group that declared definitively that IDS is dead.
I think the only thing that should be impacted by this report is gartner's credibility. I'm inclined to look more and more suspiciously at anything they say after this.
I'm relatively sure it ~is~ the old vulnerability. Notice in your very own hex dump.
It starts off with 04 (the same hex byte as in my IDS signature for the Server resolution service buffer overflow everyone thinks this is) and then a bunch of padding with 0101. I myself am skeptical based on volume alone how this could be an old vulnerability, but remember, Code Red and Nimda were old too, and they didn't have any problem finding lots of new hosts very quickly.
Best writeup I've seen is over at iss.net. They were the first to update their internet status homepage alerting of the vulnerability as far as I can tell.
Enter the Sharp Zaurus, using either the mplayer port, OpieMediaplayer2, or the commercial tkcVideo. Not exactly the screen size you're probably looking for, but hey, it works. Plus, the 640x480 zaurus is available in japan.
Any idea what software they were running? I've got a hefty-sized SD card and a sharp zaurus myself...
Story made a mistake. It's 240x320. Also, they made another mistake; the name was changed to SL-C700 to avoid confusion with the already released in japan A300.
Same photos in a more convienant format.
That's not even close to a fair comparison. A $99 palm is so far from features compared to any of the high end PDAs, that it's not even reasonable.
The Palm Tungsten retails for $499, about what the Sl-5600 is projected to retail for. Except the zaurus has 4 times the memory, two memory slots, and a built in keyboard.
I had hoped this was sarcastic, but maybe not. Please let me be wrong and this be a waste of typing.
"2.4.18 kernel". Nope, definitely doesn't run linux, it's a 2.4.18 GNU/Hurd kernel... <sigh>
Yes, it runs linux.
Because the sharp work was a complete hack. It was a sym-link nightmare, full of all sorts of oddities to make things work instead of being cleanly designed. OZ will (and already has) benefit greatly from being a fresh rewrite.