No, it's not really full disk, just/home and swap. Swap is encrypted with the password from/dev/random and/home with password given during boot, hashed with sha.
I think one could get away with separate/boot partition and initrd to have even rootfs encrypted, but I fail to see the reason. I mean, if someone wants to get my / he can just download it from Debian server;)
You know, schoolgirls (well, at least those above 15yo) are perfectly legal in my country. And they are overrated, if you want to know my opinion;)
Robert
PS But they are cute as hell;)
PPS It's mostly mp3 and work related confidential stuff that needs protection on my notebook. Both for different reasons and against different individuals;)
Why in the world would they have to boot your computer simply to read your hard drive?
Because all the sectors on my hard drive are encrypted on the fly. When you read it directly in other computer all you get is nearly random gibberish. There's not even a proper filesystem on it. Only after you mount it giving my long and convoluted passphrase the OS decrypts the sectors on the fly, so you can read the files. Switch the power off, reboot my machine or unmount the partition and there is no way to access my data again.
An icon of videogame history; if things turn sour, it will be sad to see Atari go (again).
"Again" being the operative word... Which incarnation of the Atari is that? Third[1]? So what? It will go under, and another company will buy the name in some time... Nothing to see here, move along.
Robert
[1] There was the Atari that started the "computer games" business, and then there was the Atari under the leadership of Jack Tramiel (800XL, Atari ST etc), and now is this Atari, about to go belly up.
Standard way to handle SPIM in jabber network is to silently drop messages from people not on your contact list. And the only way to be added to my roster is to get my authorisation first.
Of course, one could still spim me with authorisation requests containing relevant viagra/penis/mortgage/nigerian information in description, but nothing prevents you from doing the same on closed networks...
In the end, the only way to stop spim would be to use aproaches similar to mail: some bayesian aproach, with the distinction that everybody on my roster is whitelisted. After all, forging sender on XMPP messages is for all intents and purposes impossible -- Jabber, later standardised as XMPP uses callback for sender authentication.
Robert
PS Someone already asked abou it: SPIM is Spam-over-IM
[...]not being fully i586 compatible. My little VIA M10000 MiniITX board springs immediately to mind as an example.
Well, I don't think so, VIA processors are rather compatible with i586. Slow as hell, but compatible. Quoting after cute page about some aspects of VIA processors, x86 processors are identified by family/model/stepping (F/M/S) triplet. My VIA Nehemiah processor identifies itself as 6/9/8, and family=6 means "i686 compatible" (i.e. compatible with original Pentium Pro instruction set).
Besides, if you have VIA 6/9/8 processor or higher (e.g. 6/10/0), you don't have to use aes-i586. Use "padlock" driver, which uses hardware AES engine on these processors, at least an order of magnitude faster than aes-i586, just as I wrote several levels higher, starting this thread;)
Does anyone know of any reason not to use aes-i586.ko?? I assume they are exactly equiv?
Yeah, it is only for 586 or better CPU. I believe that even today some people use x86 processor compatible only with 386 or 486. Geode? Other embedded x86? I'm not sure.
It's interesting to see xxxBSD user/developer comparing "just written" software for BSD with ancient versions of Linux counterparts and (surprisingly) finding xxxBSD version to be better. My point being: dm-crypt.
If you are interested in Linux 2.6 encrypted partition, use dm-crypt together with cryptsetup tool. It's much safer than AES loop and:
it allows to use encryption algorithms in CBC mode;
uses published linux kernel crypto API, which means that you can use any cipher known by kernel;
because of the above, if kernel has hardware support for some crypto algo, dm-crypt uses it automagically: I have a very low power VIA Epia MicroITX board (soon to be replaced by even lower power Nano ITX board by Epia) serving as my home fileserver. The processor, VIA Nehemiah is disgustingly slow at it's 800MHz, but it has VIA Padlock crypt engine doing AES in hardware -- access speed on encrypted AES256-CBC partition is indistinguishable from the speed on the same non-encrypted disk, and a lot higher than on my Pentium M 1.6GHz notebook with Blowfish (i.e. the fastest-yet-quite-safe) dm-crypt partition.
because it uses Crypto API, you can use any new safer or faster algo, whether it's done in software or hardware, as soon as there is crypto api driver for it (crypto using GPU anyone?;)
with existing cryptsetup tool you can create encrypted swap partition with random key taken from/dev/random; and since some platforms (e.g. VIA Epia, but also chipsets from Intel, AMD and others) have true hardware random generators with Linux drivers, I wish a lot of luck to someone trying to recover passwords from my swap device;)
while existing key generation method is not as kosher as described PKCS#5 PBKDF2 or multifactor solutions, cryptsetup is just a userspace tool controlling kernel space diskmapper virtual disk engine; you can write your own tool and initialize your dm-crypt partitions any way you want;
OK, I'm tired, go read the links and you'll be much wiser and better informed than after reading TFA;)
And who will exactly back US sanctions against Russia? US doesn't sell much to Russia. C'mon, with this trade deficit, does US actually sell anything abroad? And Russia doesn't sell much to US, so the actual sanctions could be funny...;)
As for American cronies in Europe... Just watch them sanction Russia and lose all the cheap natural gas from Russia. In Western Europe when Russia says "jump", every politician asks "how high?", whether he is from left, right or center.
I just can't wait to see Putin curl up and die of fear after hearing "protect our intelectual property or else..." from America.
Blockbusters on DVD still cost >$30 for first couple of months and (not only) hit music CDs tend to cost $25+. But while music doesn't get much cheaper over time, movies tend to slide down quite fast. Above mentioned "Underworld"[1] started at $30+, and sells for $8 only for last couple of weeks. Disney on the other hand keeps its prices well over $25, regardless of how little they sell.
On the other hand, good European productions (like "Z class" "Shawn of the Dead" or (absolutley fabulous) "Asterix & Obelix: Mission Cleopatra") start at low $8 mark and keep being reprinted for a long time.
Robert
[1] I know that it's crap, but it's The Kind of Crap I Like;)
Well, from my perspective, he's kinda right. The hotter the girls/women I dated were, the more screwed up and painful the relationships were. I married a woman the is not as hot, just cute and I feel rather happier and safer now.
As for the "issues", IMO the only guys that don't have issues with women are either stupid or gay;) After all, psychically they are like alien species and most men hurt a lot trying to undestand them, live with them etc.
US Copyright implementation is getting more and more stupid, but that's besides the point. You forgot to mention that other thing.
Movies on DVD priced $10-$20 sell like there was not tomorrow. Music on CDs, usually cheaper than movies to produce, doesn't sell for $20+. It doesn't even suprise anyone anymore to find that soundtrack from latest and greatest movie costs more than the movie itself...
Number of DVD-s bought by me in last couple of years : >200 Number of CD-s [...] : 3
Robert
PS In my country (Poland) you can buy perfectly legal DVDs with movies added to magazines as marketing gimmick. The price of such magazine: $3-$6. And some of them are actually better than the crap that runs in the cinema, with price of such DVD being lower than single movie ticket.
My last two purchases:
"Ghost in the Shell": DD5.1 and DTS, JP, EN and PL audio, 20pln (~$6) "Battle Royale": DD5.1 and DTS, JP and PL audio, 20pln (~$6)
The overall effect on the market is that now you can buy even movies from big houses (like Underworld from Sony) for ~$8 in big bookstores, without any tricks, rebates etc.
There's actually no incentive to burn movies rented or downloaded from the 'net: good quality DVD-R is ~$1.5, rental of hot item is ~$4 and I've actually seen DVDs with lower price in retail than in rental (e.g. Shawn of the Dead lately).
If you ask questions that are relevant to the company, it also shows that you've been paying attention, and that you're not just looking for a paycheck...
Well, I might want to work for your company, but not necesserily for you;) You see, honesty works both ways: just as I want you to tell me something about a basic day-to-day business of your business, I expect managment to be mature enough to know, that the most important reason for my seeking of employment is a paycheck!
If I wanted to broaden my knowledge, work in pleasent enviroment, answer new challenges alone, I'd go to work as some sysadm at university, or IT consultant for some charity etc.
And speaking as someone who does a lot of typing in my native language, I'd rather have my Ås, Äs and Ös as first-class letters, thankyouverymuch.
I, on the other hand, am glad, that some ppl at the beginning of the computer era in Poland decided to disregard official Polish Norms and create "Polish Programer's Keyboard" -- basically US QWERTY keyboard with all the nine Polish characters[1] accessible via Alt keys on their latin counterparts. Polish "typewriter keyboard" is QWERTZ with some "additions" which basically make it unusable for anything computer related due to all those removed special symbols, and it still lacks some Polsh characters in upper/lower case.
But still, typing "Alt+t, c" instead of "Alt+c" is plain dumb. The only good thing in this layout would be the ability to occasionally write diacritical characters from other latin-based languages w/o the necessity to switch keymaps.
I hear that it will be capable of doing CGI like in "Toy Story", in real time.
Robert
PS. What I do mean, is that I prefer to wait for actual product. And I've heard a lot of wild and unfounded promises from some marketing departments. Just the other day I've read that Sony announced the victory of Blu-Ray format. Before even manufacturing the first commercial disk...
If I buy shitty $10 watch and it breaks in an hour, or doesn't even work after I unpack it, I get a warranty replacement. The same applies to cars, buildings, airplanes, even computers. But not computer software. You pay through the nose for some software package, and creator's responsibility for "actuall fitness to any purpose", advertised or implied is none.
Just don't tell me, that software is more complex than Boeing 767. And if you count all the copies of Windows or Office, you'll see that Microsoft takes MUCH more money for its products than Boeing, while investing none of it in QA.
Software companies lobbied and bribed enough politicians around the world to effectively destroy the idea of warranty for software. Today even such an idea is so strange to the readers of a site like/. that some of the regulars will even defend big software houses for what is a blatant abuse of basic consumer right -- a right to working product.
I mean, that's all nice and good, but all those "normal telephone adapters" seem to require me to have my computer on all the time. And running Windows, while we're at that.
I would pay up to $100 for an ATA that would let me use my DECT/GAP cordless phone with Skype AND SIP at the same time. Maybe $20 more, if it was DECT/GAP station by itself. I will not pay double that for stupid usb-to-pstn or usb-to-dect adapter, that's useless w/o dedicated computer. I guess that's the real problem with closed, proprietary protocols.
Same goes for the software in the article. I can get the same or better functionality using bluetooth headset with bluetooth-audio software on the computer.
Are there areas under the rule of your country, where the Constitution and Bill of Rights don't apply, where the Government can disappear you without a trial under any pretense it feels like?
the fluke affects the snail's brain and causes the snail to become light-seeking rather than light-avoiding, which means the snails climb to the tops of plants, where they are easy prey for birds--the next host in the fluke's life cycle.
Wow, that would explain our "high altitude" snails we see on the nearby trees at work. See for yourself images 568 to 577. These are made from a balcony on the third floor.
Slashdot Mirror
Robert
You know, schoolgirls (well, at least those above 15yo) are perfectly legal in my country. And they are overrated, if you want to know my opinion ;)
;)
;)
Robert
PS But they are cute as hell
PPS It's mostly mp3 and work related confidential stuff that needs protection on my notebook. Both for different reasons and against different individuals
Why in the world would they have to boot your computer simply to read your hard drive?
Because all the sectors on my hard drive are encrypted on the fly. When you read it directly in other computer all you get is nearly random gibberish. There's not even a proper filesystem on it. Only after you mount it giving my long and convoluted passphrase the OS decrypts the sectors on the fly, so you can read the files. Switch the power off, reboot my machine or unmount the partition and there is no way to access my data again.
Is that easier to grok?
Robert
An icon of videogame history; if things turn sour, it will be sad to see Atari go (again).
"Again" being the operative word... Which incarnation of the Atari is that? Third[1]? So what? It will go under, and another company will buy the name in some time... Nothing to see here, move along.
Robert
[1] There was the Atari that started the "computer games" business, and then there was the Atari under the leadership of Jack Tramiel (800XL, Atari ST etc), and now is this Atari, about to go belly up.
Bluetooth 2.0+EDR (which is on Macs, I don't know about other computers) is 3.0 Mbps. Faster, but still not there.
You fell victim to marketing babling. It was going something like that:
With current Bluetooth connections you get only 1Mbps speeds and Bluetooth 2.0 is three times faster.
But since Bluetooth 1.x is only 768kbps, three times this is only ~2.3Mbps.
Robert
Standard way to handle SPIM in jabber network is to silently drop messages from people not on your contact list. And the only way to be added to my roster is to get my authorisation first.
Of course, one could still spim me with authorisation requests containing relevant viagra/penis/mortgage/nigerian information in description, but nothing prevents you from doing the same on closed networks...
In the end, the only way to stop spim would be to use aproaches similar to mail: some bayesian aproach, with the distinction that everybody on my roster is whitelisted. After all, forging sender on XMPP messages is for all intents and purposes impossible -- Jabber, later standardised as XMPP uses callback for sender authentication.
Robert
PS Someone already asked abou it: SPIM is Spam-over-IM
...I just see average Americans with there spelling writing about something they could care less... ;)
Robert
[...]not being fully i586 compatible. My little VIA M10000 MiniITX board springs immediately to mind as an example.
;)
/proc/cpuinfo.
Well, I don't think so, VIA processors are rather compatible with i586. Slow as hell, but compatible. Quoting after cute page about some aspects of VIA processors, x86 processors are identified by family/model/stepping (F/M/S) triplet. My VIA Nehemiah processor identifies itself as 6/9/8, and family=6 means "i686 compatible" (i.e. compatible with original Pentium Pro instruction set).
Besides, if you have VIA 6/9/8 processor or higher (e.g. 6/10/0), you don't have to use aes-i586. Use "padlock" driver, which uses hardware AES engine on these processors, at least an order of magnitude faster than aes-i586, just as I wrote several levels higher, starting this thread
Look up your F/M/S in
Robert
Does anyone know of any reason not to use aes-i586.ko?? I assume they are exactly equiv?
Yeah, it is only for 586 or better CPU. I believe that even today some people use x86 processor compatible only with 386 or 486. Geode? Other embedded x86? I'm not sure.
Robert
Ever tried the aes-i586.ko kernel module instead of default aes.ko?
Robert
It's interesting to see xxxBSD user/developer comparing "just written" software for BSD with ancient versions of Linux counterparts and (surprisingly) finding xxxBSD version to be better. My point being: dm-crypt.
If you are interested in Linux 2.6 encrypted partition, use dm-crypt together with cryptsetup tool. It's much safer than AES loop and:
OK, I'm tired, go read the links and you'll be much wiser and better informed than after reading TFA ;)
Robert
And who will exactly back US sanctions against Russia? US doesn't sell much to Russia. C'mon, with this trade deficit, does US actually sell anything abroad? And Russia doesn't sell much to US, so the actual sanctions could be funny... ;)
As for American cronies in Europe... Just watch them sanction Russia and lose all the cheap natural gas from Russia. In Western Europe when Russia says "jump", every politician asks "how high?", whether he is from left, right or center.
I just can't wait to see Putin curl up and die of fear after hearing "protect our intelectual property or else..." from America.
Robert
Not really the way ppl want :(
;)
Blockbusters on DVD still cost >$30 for first couple of months and (not only) hit music CDs tend to cost $25+. But while music doesn't get much cheaper over time, movies tend to slide down quite fast. Above mentioned "Underworld"[1] started at $30+, and sells for $8 only for last couple of weeks. Disney on the other hand keeps its prices well over $25, regardless of how little they sell.
On the other hand, good European productions (like "Z class" "Shawn of the Dead" or (absolutley fabulous) "Asterix & Obelix: Mission Cleopatra") start at low $8 mark and keep being reprinted for a long time.
Robert
[1] I know that it's crap, but it's The Kind of Crap I Like
Well, from my perspective, he's kinda right. The hotter the girls/women I dated were, the more screwed up and painful the relationships were. I married a woman the is not as hot, just cute and I feel rather happier and safer now.
;) After all, psychically they are like alien species and most men hurt a lot trying to undestand them, live with them etc.
As for the "issues", IMO the only guys that don't have issues with women are either stupid or gay
Robert
US Copyright implementation is getting more and more stupid, but that's besides the point. You forgot to mention that other thing.
Movies on DVD priced $10-$20 sell like there was not tomorrow. Music on CDs, usually cheaper than movies to produce, doesn't sell for $20+. It doesn't even suprise anyone anymore to find that soundtrack from latest and greatest movie costs more than the movie itself...
Number of DVD-s bought by me in last couple of years : >200
Number of CD-s [...] : 3
Robert
PS In my country (Poland) you can buy perfectly legal DVDs with movies added to magazines as marketing gimmick. The price of such magazine: $3-$6. And some of them are actually better than the crap that runs in the cinema, with price of such DVD being lower than single movie ticket.
My last two purchases:
"Ghost in the Shell": DD5.1 and DTS, JP, EN and PL audio, 20pln (~$6)
"Battle Royale": DD5.1 and DTS, JP and PL audio, 20pln (~$6)
The overall effect on the market is that now you can buy even movies from big houses (like Underworld from Sony) for ~$8 in big bookstores, without any tricks, rebates etc.
There's actually no incentive to burn movies rented or downloaded from the 'net: good quality DVD-R is ~$1.5, rental of hot item is ~$4 and I've actually seen DVDs with lower price in retail than in rental (e.g. Shawn of the Dead lately).
If you ask questions that are relevant to the company, it also shows that you've been paying attention, and that you're not just looking for a paycheck...
;) You see, honesty works both ways: just as I want you to tell me something about a basic day-to-day business of your business, I expect managment to be mature enough to know, that the most important reason for my seeking of employment is a paycheck!
.02$
Well, I might want to work for your company, but not necesserily for you
If I wanted to broaden my knowledge, work in pleasent enviroment, answer new challenges alone, I'd go to work as some sysadm at university, or IT consultant for some charity etc.
Just my
Robert
And speaking as someone who does a lot of typing in my native language, I'd rather have my Ås, Äs and Ös as first-class letters, thankyouverymuch.
/. filters unicode characters
I, on the other hand, am glad, that some ppl at the beginning of the computer era in Poland decided to disregard official Polish Norms and create "Polish Programer's Keyboard" -- basically US QWERTY keyboard with all the nine Polish characters[1] accessible via Alt keys on their latin counterparts. Polish "typewriter keyboard" is QWERTZ with some "additions" which basically make it unusable for anything computer related due to all those removed special symbols, and it still lacks some Polsh characters in upper/lower case.
But still, typing "Alt+t, c" instead of "Alt+c" is plain dumb. The only good thing in this layout would be the ability to occasionally write diacritical characters from other latin-based languages w/o the necessity to switch keymaps.
Robert
[1] aogonek, cacute, eogonek, lstroke, nacute, oacute, sacute, zacute, zabovedot -- frelling
Does it take into account a quality of script (or lack of)?
There's something I don't understand. From the article on Wikipedia:
Its exact makeup is a secret [...] Play-Doh was invented by Noah McVicker and Joseph McVicker in 1956 and awarded U.S. Patent 3,167,440 in 1965.
So, is its formula secret, or was it patented? If the patent was granted in 1965, shouldn't it expire already?
Robert
I hear that it will be capable of doing CGI like in "Toy Story", in real time.
Robert
PS. What I do mean, is that I prefer to wait for actual product. And I've heard a lot of wild and unfounded promises from some marketing departments. Just the other day I've read that Sony announced the victory of Blu-Ray format. Before even manufacturing the first commercial disk...
If I buy shitty $10 watch and it breaks in an hour, or doesn't even work after I unpack it, I get a warranty replacement. The same applies to cars, buildings, airplanes, even computers. But not computer software. You pay through the nose for some software package, and creator's responsibility for "actuall fitness to any purpose", advertised or implied is none.
/. that some of the regulars will even defend big software houses for what is a blatant abuse of basic consumer right -- a right to working product.
Just don't tell me, that software is more complex than Boeing 767. And if you count all the copies of Windows or Office, you'll see that Microsoft takes MUCH more money for its products than Boeing, while investing none of it in QA.
Software companies lobbied and bribed enough politicians around the world to effectively destroy the idea of warranty for software. Today even such an idea is so strange to the readers of a site like
Robert
I mean, that's all nice and good, but all those "normal telephone adapters" seem to require me to have my computer on all the time. And running Windows, while we're at that.
I would pay up to $100 for an ATA that would let me use my DECT/GAP cordless phone with Skype AND SIP at the same time. Maybe $20 more, if it was DECT/GAP station by itself. I will not pay double that for stupid usb-to-pstn or usb-to-dect adapter, that's useless w/o dedicated computer. I guess that's the real problem with closed, proprietary protocols.
Same goes for the software in the article. I can get the same or better functionality using bluetooth headset with bluetooth-audio software on the computer.
Robert
I've got another good test:
Are there areas under the rule of your country, where the Constitution and Bill of Rights don't apply, where the Government can disappear you without a trial under any pretense it feels like?
Robert
the fluke affects the snail's brain and causes the snail to become light-seeking rather than light-avoiding, which means the snails climb to the tops of plants, where they are easy prey for birds--the next host in the fluke's life cycle.
Wow, that would explain our "high altitude" snails we see on the nearby trees at work. See for yourself images 568 to 577. These are made from a balcony on the third floor.
Robert