The concept is in many ways similar to the Java ring that McNealy
No it isn't anything like the Java Ring (aka iButton) which is actually much more like a SmartCard. SmarCards and iButtons have processors on them and have real security.
This thing is JUST A DISK there is NO security on it a key is the worst think this could have been called because people jump to the conclusion that it has the same purpose as a key.
As for updating PAM to use one of these it is just a disk there is NO security on it, if you do you will be throwing away any security you have. If you want this upgrade to Solaris 8 and use a real SmartCard like the JavaCard, MicroPayFlex Card or the iButton.
One more time in case you missed it This thing is JUST a Disk
No. SmartCards are NOT just data storage they have a processor on board that runs code and can thus provide protection against data removal. For example if I store my RSA key pair on the card I can ensure the private key never leaves the card because any encryption done using the private key is done on the card which has security mechanisms in place to stop the key data leaving it.
These small USB drives are just that physically small drives they are not Smart in the SmartCard sense.
No need to hack USB support for Keyboard and mice it is already in Solaris 8. All new Sun kit is using USB for keyboard and mouse connections. The Sun Type 6 keyboard has a USB variant. I belive the Type 6 Sun keyboard has even been made to run on Linux on Intel.
On a similar vain, there is a very populate DVD player in the UK (Warfdale branded) that claims it is region 2 only and only plays DVD, VCD and CD.
However it is multi region and multi standard (PAL/NTSC) and plays CDR and CDRW as well.
Best part it is one the the cheapest (in the UK at least) players around at 179 pounds sterling when I bought mine about 6months ago - and it was available in the supermarket!
Everything was pretty dark. It's really weird to walk through the hallways of one of the highest of high tech places and see people working in darkened offices with black hallways.
Actually it is pretty common around here (Sun - Solaris Software Engineering), and thats without any outages - just engineer geek preference;-)
You certainly do NOT lose Dynamic Reconfiguration. Infact the E10k was the first Sun shipped machine to have DR. As for Cluster you can cluster multiple E10k systems together and you can of course still use fiberchannel.
For many people the E10k is not about top notch power infact it is not Sun's fastest machine in terms of raw CPU power, what it provides is flexibility and scaling.
Given the number of sites worldwide that have these many people do need them - and before you ask Sun sales people will advise you to by an E450 or E4500 (or any other Sun hardware) if that better fits your needs.
Re:Ain't Nothin' Like the Real Thing, Baby.
on
Wine In New Skins
·
· Score: 1
But you can get GIMP for windows anyway, and it supports using TWAIN for getting data direct from a scanner (which is more than I can manage with GIMP on other platforms since my scanner is USB and not supported (yet) by SANE).
VNC also has the useful feature of being able to display the windows screen on another X display.
A 1998 study done for Illinois phone regulators found that of the 1.5 billion possible phone numbers created from the existing 193 area codes nationwide, about half a billion were not being used. The surplus is enough to eliminate more than 60 area codes.
Area codes are about routing as well as line identification, so it is quite common for large numbers to be unused.
First off, it ain't just the people who have to learn to use the new numbers. It implies the need to update all the auto-dialing devices like alarm systems, speed dial numbers, ISP's numbers for modems, and fax machines. Yet, this isn't the whole of it.
Boo hoo, its going to happen anyway just live with it!
BT/Oftel in the UK has changed the length of the telephone number 3 times in my recent memory, added and split area codes. London is onto its 3rd set of area codes in recent history. Actually make that 4 because where I grew up we had short std code dialing and that went away as some point as well.
In the UK you can now tell roughly what rate you are going to be charged based on the STD code (we don't call the prefix an area code because it isn't). We have prefixes for mobiles and pagers so they are easy to identify (all begin 07).
Sure people complained about it in the UK each time it happened - more from the point of having to reprint stationary than anything else.
As for getting charged differently based on how I type the number that to me just seems crazy and still confuses me (I now live in the Bay Area of CA). My electronic directories (in my Pilot and Mobile Phone) I always programmed + so that it just works.
Having said all that I must admit when it comes to hostnames in the same domain as me I like to beable to drop the xxx.sun.com bit;-)
Bomb Jack was a pretty big game in the arcades in the UK when I was a kid. I remember playing a clone (I think rather than a port) of it on the Atari ST for hours on end;-)
You mean much more like OS/2. I saw Windows ME running for the first time on Saturday and thought instantly hm another pixel off the shadows making it much more like OS/2. CDE under Solaris did a similar thing when we moved from Solaris 2.5.1 to Solaris 2.6;-)
Refusing to run unsigned code is far from being a new concept in the computing world. There seems (as usual) to be a lot of heat and shouting here on Slashdot about this because it is Microsoft pre-announcing that they may use this feature in a future OS.
Lots of other platforms and vendors have done this in the past and will continue to move in this direction in the future.
Sun's Trusted Solaris 1.x released over 5 years ago had a feature in a similar vain that meant the system failed to boot if all of the critical software (TCB - Trusted Computing Base) didn't verify its checksums (this was checksums rather than proper digital signatures but the end goal is the same).
Please people stop and think about the technical issues and goals before mouthing off and assuming just because it was announced by Microsoft that is is a bad thing technically.
If the article had s/Microsoft/Linux/g what then would have been the thread of converstation in Slashdot ? I guess it would have gone something along the lines of Linux making leaps and bounds in security something that Microsoft doesn't care about and would never implement because it was too useful and would get in the way of lame user doing any work.
This is good progress for Security on their platform.
Actually we do. There is IDE support in Solaris for the x86 platform and IDE support in the SPARC platform as well, since the Ultra5 and Ultra10 workstations have IDE disks in them!
I very much suspect that Irix is developed in a similar fashsion. I know for a fact that Solaris (aka SunOS) versioning is very similar to what the Linux model is represented as in this diagram.
For example the Solaris 8 source base is taken as a child of the Solaris 7 workspace before Solaris 7 is actually released, work then progresses on both source gates in parallel. When Solaris 7 is released a new child is taken and is nominated the patch gate, it is from here that patches to Solaris 7 are accumulated. Meanwhile Solaris 8 is developing on. The time comes to release a Solaris 7 Update release and a child is taken from the Solaris 7 patch gate and features are backported from the Solaris 8 gate into it. Repeat when Solaris 8 gets close to release and so on...
There are proceedures and tools inplace to ensure that when a fix is made to an "older" release it is forward ported to all relevant "newer" releases, similarly for important backporting of critical bugs.
The only real difference between Solaris and Linux in this respect is that in Linux you can see it is visible because you have source access, a similar software engineering and rolling development model is being used.
What is wrong with the interface provided by xclipboard ? If I understand your request it does exactly this by giving you prev next buttons that change what gets returned when an application asks for the contents of the clipboard and doesn't need any application modifications and it is part of the standard MIT X11 distribution.
Slashdot Mirror
The concept is in many ways similar to the Java ring that McNealy
No it isn't anything like the Java Ring (aka iButton) which is actually much more like a SmartCard. SmarCards and iButtons have processors on them and have real security.
This thing is JUST A DISK there is NO security on it a key is the worst think this could have been called because people jump to the conclusion that it has the same purpose as a key.
As for updating PAM to use one of these it is just a disk there is NO security on it, if you do you will be throwing away any security you have. If you want this upgrade to Solaris 8 and use a real SmartCard like the JavaCard, MicroPayFlex Card or the iButton.
One more time in case you missed it This thing is JUST a Disk
For the security relevant stuff you mention you want a SmartCard see my post further up as to why.
All that is fine if the data isn't sensitive so that you can put it somewhere public.
No. SmartCards are NOT just data storage they have a processor on board that runs code and can thus provide protection against data removal. For example if I store my RSA key pair on the card I can ensure the private key never leaves the card because any encryption done using the private key is done on the card which has security mechanisms in place to stop the key data leaving it.
These small USB drives are just that physically small drives they are not Smart in the SmartCard sense.
No need to hack USB support for Keyboard and mice it is already in Solaris 8. All new Sun kit is using USB for keyboard and mouse connections. The Sun Type 6 keyboard has a USB variant. I belive the Type 6 Sun keyboard has even been made to run on Linux on Intel.
microsoft would be scared to let a security audit of the code be performed by a 3rd party.
Actually Microsoft, Sun and many other closed source vendors do have their code verified by 3rd Parties in order to gain ITSEC (now CC) evaluations.
but Sony probably acquired a music or some other media company
You really are out of touch, Sony is one of the big players in the Music and Film industry!
On a similar vain, there is a very populate DVD player in the UK (Warfdale branded) that claims it is region 2 only and only plays DVD, VCD and CD.
However it is multi region and multi standard (PAL/NTSC) and plays CDR and CDRW as well.
Best part it is one the the cheapest (in the UK at least) players around at 179 pounds sterling when I bought mine about 6months ago - and it was available in the supermarket!
> Is there a work around for this problem?
Yep, by a new player that has the lasers to do the job.
So thats why Sony also sells a CD-RW drive !
Everything was pretty dark. It's really weird to walk through the hallways of one of the highest of high tech places and see people working in darkened offices with black hallways.
;-)
Actually it is pretty common around here (Sun - Solaris Software Engineering), and thats without any outages - just engineer geek preference
You certainly do NOT lose Dynamic Reconfiguration. Infact the E10k was the first Sun shipped machine to have DR. As for Cluster you can cluster multiple E10k systems together and you can of course still use fiberchannel. For many people the E10k is not about top notch power infact it is not Sun's fastest machine in terms of raw CPU power, what it provides is flexibility and scaling. Given the number of sites worldwide that have these many people do need them - and before you ask Sun sales people will advise you to by an E450 or E4500 (or any other Sun hardware) if that better fits your needs.
But you can get GIMP for windows anyway, and it supports using TWAIN for getting data direct from a scanner (which is more than I can manage with GIMP on other platforms since my scanner is USB and not supported (yet) by SANE).
VNC also has the useful feature of being able to display the windows screen on another X display.
There are also VNC clients for PalmPilot !!
A 1998 study done for Illinois phone regulators found that of the 1.5 billion possible phone numbers created from the existing 193 area codes nationwide, about half a billion were not being used. The surplus is enough to eliminate more than 60 area codes.
Area codes are about routing as well as line identification, so it is quite common for large numbers to be unused.
First off, it ain't just the people who have to learn to use the new numbers. It implies the need to update all the auto-dialing devices like alarm systems, speed dial numbers, ISP's numbers for modems, and fax machines. Yet, this isn't the whole of it.
;-)
Boo hoo, its going to happen anyway just live with it!
BT/Oftel in the UK has changed the length of the telephone number 3 times in my recent memory, added and split area codes. London is onto its 3rd set of area codes in recent history. Actually make that 4 because where I grew up we had short std code dialing and that went away as some point as well.
In the UK you can now tell roughly what rate you are going to be charged based on the STD code (we don't call the prefix an area code because it isn't). We have prefixes for mobiles and pagers so they are easy to identify (all begin 07).
Sure people complained about it in the UK each time it happened - more from the point of having to reprint stationary than anything else.
As for getting charged differently based on how I type the number that to me just seems crazy and still confuses me (I now live in the Bay Area of CA). My electronic directories (in my Pilot and Mobile Phone) I always programmed + so that it just works.
Having said all that I must admit when it comes to hostnames in the same domain as me I like to beable to drop the xxx.sun.com bit
Bomb Jack was a pretty big game in the arcades in the UK when I was a kid. I remember playing a clone (I think rather than a port) of it on the Atari ST for hours on end ;-)
> got flatter
;-)
You mean much more like OS/2. I saw Windows ME running for the first time on Saturday and thought instantly hm another pixel off the shadows making it much more like OS/2. CDE under Solaris did a similar thing when we moved from Solaris 2.5.1 to Solaris 2.6
Refusing to run unsigned code is far from being a new concept in the computing world. There seems (as usual) to be a lot of heat and shouting here on Slashdot about this because it is Microsoft pre-announcing that they may use this feature in a future OS.
Lots of other platforms and vendors have done this in the past and will continue to move in this direction in the future.
Sun's Trusted Solaris 1.x released over 5 years ago had a feature in a similar vain that meant the system failed to boot if all of the critical software (TCB - Trusted Computing Base) didn't verify its checksums (this was checksums rather than proper digital signatures but the end goal is the same).
Java has stuff like this as well.
Please people stop and think about the technical issues and goals before mouthing off and assuming just because it was announced by Microsoft that is is a bad thing technically.
If the article had s/Microsoft/Linux/g what then would have been the thread of converstation in Slashdot ? I guess it would have gone something along the lines of Linux making leaps and bounds in security something that Microsoft doesn't care about and would never implement because it was too useful and would get in the way of lame user doing any work.
This is good progress for Security on their platform.
Real freedom means everyone should be free to do anything, even things I may not personnally approve, as long as they are not criminal actions per se.
;-)
If you want to be free to do anything you can't have a definition of what is criminal because that would be a restriction on the freedom
Note quite true, SunOS 5.x is based on a combination of SysV and BSD with Sun extras.
The Solaris name has been used for SunOS 4.x releases as well. Solaris 1.1 has SunOS 4.1.3 is its core OS component.
Solaris is the name used to refer to everything that gets installed from the OS CDs; this is more than SunOS 5.x + Openwin + CDE + X11Rx.
Solaris is a essentially a marketing name, SunOS is the value used in the utsname structure - ie what you get back from uname -s.
>It would be nice to see Sun produce mobo's for the new chip that support standard PC hardware.
Have a look at the products.
> The only thing they DON'T support is IDE.
Actually we do. There is IDE support in Solaris for the x86 platform and IDE support in the SPARC platform as well, since the Ultra5 and Ultra10 workstations have IDE disks in them!
I very much suspect that Irix is developed in a similar fashsion. I know for a fact that Solaris (aka SunOS) versioning is very similar to what the Linux model is represented as in this diagram.
For example the Solaris 8 source base is taken as a child of the Solaris 7 workspace before Solaris 7 is actually released, work then progresses on both source gates in parallel. When Solaris 7 is released a new child is taken and is nominated the patch gate, it is from here that patches to Solaris 7 are accumulated. Meanwhile Solaris 8 is developing on. The time comes to release a Solaris 7 Update release and a child is taken from the Solaris 7 patch gate and features are backported from the Solaris 8 gate into it. Repeat when Solaris 8 gets close to release and so on...
There are proceedures and tools inplace to ensure that when a fix is made to an "older" release it is forward ported to all relevant "newer" releases, similarly for important backporting of critical bugs.
The only real difference between Solaris and Linux in this respect is that in Linux you can see it is visible because you have source access, a similar software engineering and rolling development model is being used.
What is wrong with the interface provided by xclipboard ? If I understand your request it does exactly this by giving you prev next buttons that change what gets returned when an application asks for the contents of the clipboard and doesn't need any application modifications and it is part of the standard MIT X11 distribution.
Since SCO no longer owns the UNIX trademark it couldn't have been passed on to Caldera anyway.
The UNIX registered trademark is owned by The Open Group, they also own Motif, OSF/1, X/Open.