Why do you call preventing inbound connections "false security"?
Maybe because a NAT misconfiguration could do all sorts of nasty things. With IPv6 and its tight IPSec integrations, I'd rather use an open encrypted network then a totally unencrypted network with a box that has all responsibility on not doing something wrong.
IPv6 comes with built-in IPSec support for end-to-end encryption, authentication and packet integrity features. I'd feel pretty safe using a full fledged IPv6 network.
As IPv6 will require some upgrades on internet infrastructure that you don't want to do too oftne, the team that designed it took the opportunity to fix and improve several parts of IPv4, where the well-known address space improvement is just one improvement in maybe a dozen. It's a bit unfortunate that this is the only change talked about, when the protocol offers so much more. I checked Wikipedia, and that one also just listed the address space changes.
Here's a bit more complete feature list, although this one might not be 100% complete either...
IPv6 is made to use a slimmer header than IPv4. For IPv6's extra functionality, "header modules" or "extension headers" are attached to the standard IPv6 header. Since IPv6 comes with so many new features, this was thought as necessary to not make it too bloated and minimize header overhead for each package. This will make header processing at routers more efficient as well.
IPv6 will provide support for around 3.4 * 10^38 addresses in theory, but the address space is designed to allow multiple levels of subnetting from the start. NAT's will no longer be necessary.
Features to greatly optimize routing tables on backbone routers. More "tidy" (or less "hacky") solutions than all those 192.168.* (and other) address spaces.
IPv6 will feature special support for ad hoc networking, which might be useful in catastrophic/disaster situations. This feature might make the DoD even more interested in the protocol.
IPv6 feature built-in IPSec support for end point-to-end point encryption, authentication, and data integrity support to know that the packets weren't tampered with while in transit.
Quality of Service (QoS) Support
Traffic types can be identified on a header level (using IPv6 extension headers) so intermediate routers can prioritize the information flow, etc.
Whatever happened to IPv5? What was special about it?
I'm not sure if IPv5 really existed using that name, and if it did, it only existed at an experimental level. After some quick "googling", it seems "IPv5" was the real-time streaming protocol using version number 5 and running alongside IP, having some parts in common. Some people might have called it "IPv5", and "IPv6" was probably chosen to avoid confusion with this one. Here's more info about the protocol:
That's great! I think this should be publicized as an anti-RIAA measure! Imagine if EVERYONE did this?
"Today, at 3:30pm, the RIAA sent legal notices to another 150 song swappers following a public statement. In a related story, at 3:32pm today Internet Service Providers saw a nearly crippling surge in traffic, the vast majority being related to p2p programs."
Quick!
Someone has found out an efficient way to combat our anti-piracy actions! Someone find out how to make that CowboyNeal guy delete this thread on Slashdot!
"After the uproar over the last batch of lawsuits, however, they're not (yet) suing the people in question, but intend to allow them to settle out of court, first."
Wow, what an improvement!
Now they aren't saying "we're going to sue your 12 year old for listening to Britney", but "we unfortunately have to take your daughter to court, since she's hurting our failing business model".
How pathetic. I'm glad to see all those actions taken by RIAA and losses in income though. That's evidence they'll die a slow and painful death. Since their business model has no real future, at least not in the state it's in today. Maybe CD's bought in a store and given as gifts perhaps, since they look better packaged, but casual purchases seems far better done on the Internet to me. Why visit a store, pay $40 for two music CD's which in total have 7 songs you're looking for, when you can buy the 7 songs on iTunes for $7?
We used it once to fool people into leaving a computer lab by sending it to some random computer with "Warning! Virus detected, please shut down your computer immediately". Ahh, the memories...;-)
But haven't used it since... We use it occasionally on our corporate LAN to send really important messages, like if we plan to bring down a server.
I, for one, welcome our new music distribution overlords!
Hmm, I definitely need to check this out. And prove that I will download music legally when there is a good electronic alternative out there, which this is!
I still think the jelly look of Mac OSX is horrible (not when I first saw it, but it's for some reason not growing on me), but the Expose feature do look great.:-) I never got into using virtual desktops either (too much work organizing stuff into desktops IMHO), so that feature looks nice.
Let's just the feature ripped off by Microsoft and shoved into Longhorn in 2005/6.:-)
This was the argument Bush made as a reason to attack Iraq (operation freedom!). Maybe USA should attack China to liberate their people? Oh right... They only attack weaker and undeveloped countries without nuclear weapons or anything like that, to stay safe. Forgot.
If you're right, it's not surprising. If I was in our government, I'd also like to adopt open source software, stay away from the US abomination named Microsoft, and go to the moon.:-)
I wouldn't like a great firewall though. They're useful for security, not isolation.
1. Take some drugs. (even Linus said they sounded like they were on drugs)
2. Claim that all Linux users must cough up some money because of [insert some insane reason as a result of #1 here]
3. ???
4. Profit!
As you can see above, if #3 would mean "explain why they did the stuff in #2", to stay to the truth, they'd need to tell the world that they're on drugs, which they don't want to. So, the only possible plan must be:
1. Take some drugs. 2. Claim that all Linux users must cough up some money because of [insert some random reason as a result of #1 here] 3. Lie about why they're doing what they are, and hope the ACCC will be stupid enough to believe them. Then proceed with the usual Linux license demands. 4. Profit!
To me, the problem would be similar to making the world switch to Betamax in the days when VHS was common, or getting rid of DVD-R and switching to DVD+R only, etc... Unless there's a big reason to (greater than something is a bit better than another), I don't really see that as happening.
Why do you call preventing inbound connections "false security"?
Maybe because a NAT misconfiguration could do all sorts of nasty things. With IPv6 and its tight IPSec integrations, I'd rather use an open encrypted network then a totally unencrypted network with a box that has all responsibility on not doing something wrong.
More secure, too.
IPv6 comes with built-in IPSec support for end-to-end encryption, authentication and packet integrity features. I'd feel pretty safe using a full fledged IPv6 network.
As IPv6 will require some upgrades on internet infrastructure that you don't want to do too oftne, the team that designed it took the opportunity to fix and improve several parts of IPv4, where the well-known address space improvement is just one improvement in maybe a dozen. It's a bit unfortunate that this is the only change talked about, when the protocol offers so much more. I checked Wikipedia, and that one also just listed the address space changes.
;-) )
Here's a bit more complete feature list, although this one might not be 100% complete either...
( beware -- MS links ahead!
Source document
Modularized Header Support
IPv6 is made to use a slimmer header than IPv4. For IPv6's extra functionality, "header modules" or "extension headers" are attached to the standard IPv6 header. Since IPv6 comes with so many new features, this was thought as necessary to not make it too bloated and minimize header overhead for each package. This will make header processing at routers more efficient as well.
Larger Address Space
IPv6 will provide support for around 3.4 * 10^38 addresses in theory, but the address space is designed to allow multiple levels of subnetting from the start. NAT's will no longer be necessary.
Unicast IPv6 Addresses
Features to greatly optimize routing tables on backbone routers. More "tidy" (or less "hacky") solutions than all those 192.168.* (and other) address spaces.
Ad Hoc Networking
IPv6 will feature special support for ad hoc networking, which might be useful in catastrophic/disaster situations. This feature might make the DoD even more interested in the protocol.
Built-in Security
IPv6 feature built-in IPSec support for end point-to-end point encryption, authentication, and data integrity support to know that the packets weren't tampered with while in transit.
Quality of Service (QoS) Support
Traffic types can be identified on a header level (using IPv6 extension headers) so intermediate routers can prioritize the information flow, etc.
Neighbor Discovery
ND replaces and improves upon ARP (Address Resolution Protocol) used by IPv4.
Whatever happened to IPv5? What was special about it?
I'm not sure if IPv5 really existed using that name, and if it did, it only existed at an experimental level. After some quick "googling", it seems "IPv5" was the real-time streaming protocol using version number 5 and running alongside IP, having some parts in common. Some people might have called it "IPv5", and "IPv6" was probably chosen to avoid confusion with this one. Here's more info about the protocol:
- Experimental Internet Stream Protocol, Version 2 (ST-II)
- Internet Stream Protocol Version 2 (ST2)
It even includes DirectShow filter, so you'll be able to play RealMedia shit using for example Microsoft's Media Player.
:-) MPC also use DirectShow filters
If the package includes MPC, why still bother with the bloated crap that's called WMP?
Regardless how good the deal is, someone is always going to whine.
That's great! I think this should be publicized as an anti-RIAA measure! Imagine if EVERYONE did this?
"Today, at 3:30pm, the RIAA sent legal notices to another 150 song swappers following a public statement. In a related story, at 3:32pm today Internet Service Providers saw a nearly crippling surge in traffic, the vast majority being related to p2p programs."
Quick!
Someone has found out an efficient way to combat our anti-piracy actions! Someone find out how to make that CowboyNeal guy delete this thread on Slashdot!
John Smith
RIAA Spy
"After the uproar over the last batch of lawsuits, however, they're not (yet) suing the people in question, but intend to allow them to settle out of court, first."
Wow, what an improvement!
Now they aren't saying "we're going to sue your 12 year old for listening to Britney", but "we unfortunately have to take your daughter to court, since she's hurting our failing business model".
How pathetic. I'm glad to see all those actions taken by RIAA and losses in income though. That's evidence they'll die a slow and painful death. Since their business model has no real future, at least not in the state it's in today. Maybe CD's bought in a store and given as gifts perhaps, since they look better packaged, but casual purchases seems far better done on the Internet to me. Why visit a store, pay $40 for two music CD's which in total have 7 songs you're looking for, when you can buy the 7 songs on iTunes for $7?
Ooh, it's that service. OK, got it now. :-)
;-)
We used it once to fool people into leaving a computer lab by sending it to some random computer with "Warning! Virus detected, please shut down your computer immediately". Ahh, the memories...
But haven't used it since... We use it occasionally on our corporate LAN to send really important messages, like if we plan to bring down a server.
I, for one, welcome our new music distribution overlords!
Hmm, I definitely need to check this out. And prove that I will download music legally when there is a good electronic alternative out there, which this is!
The exploit doesn't have anything to do with Microsoft's instant messaging client, so deleting MSN Messenger won't help.
Yes, if GNU/Linux becomes as common as Windows.
I don't really care how they work as long as they fix it before the vulnerability is exploited by virus developers.
What functionality do you lose when disabling the service? Is it one of those that never need to run, ever?
:-P
I thought the service description wasn't very clear, at least not after being translated to swedish.
I still think the jelly look of Mac OSX is horrible (not when I first saw it, but it's for some reason not growing on me), but the Expose feature do look great. :-) I never got into using virtual desktops either (too much work organizing stuff into desktops IMHO), so that feature looks nice.
:-)
Let's just the feature ripped off by Microsoft and shoved into Longhorn in 2005/6.
Yes, but that comes as no big surprise, with Miranda rocking the world of instant messaging. :-)
Things like that happen when you let IRC users post news stories. :-)
Why not? It's just a comment, like every other comment on Slashdot.
This was the argument Bush made as a reason to attack Iraq (operation freedom!). Maybe USA should attack China to liberate their people? Oh right... They only attack weaker and undeveloped countries without nuclear weapons or anything like that, to stay safe. Forgot.
If you're right, it's not surprising. If I was in our government, I'd also like to adopt open source software, stay away from the US abomination named Microsoft, and go to the moon. :-)
I wouldn't like a great firewall though. They're useful for security, not isolation.
Seems like not many noticed this was done with tongue-in-cheek... :-P Oh well :-)
???
:-)
The ISO date standard is YYYY-MM-DD. So be international and do like Sweden for example, following that standard.
Explaining stuff is definitely not in SCO's plan:
1. Take some drugs. (even Linus said they sounded like they were on drugs)
2. Claim that all Linux users must cough up some money because of [insert some insane reason as a result of #1 here]
3. ???
4. Profit!
As you can see above, if #3 would mean "explain why they did the stuff in #2", to stay to the truth, they'd need to tell the world that they're on drugs, which they don't want to. So, the only possible plan must be:
1. Take some drugs.
2. Claim that all Linux users must cough up some money because of [insert some random reason as a result of #1 here]
3. Lie about why they're doing what they are, and hope the ACCC will be stupid enough to believe them. Then proceed with the usual Linux license demands.
4. Profit!
As opposed to Win2k and WinXP on the same machine, where the converse is most definitely true.
:-)
Most definitely not true if you compare the boot up and shutdown times.
Windows 2000 = syruuuuup...
To me, the problem would be similar to making the world switch to Betamax in the days when VHS was common, or getting rid of DVD-R and switching to DVD+R only, etc... Unless there's a big reason to (greater than something is a bit better than another), I don't really see that as happening.