I remember working in a physics lab a long time ago (1985) and one of my coworkers brought back an interesting watch from Hong Kong. It was an analog watch with a small LCD panel just above the 6. The interesting thing was, it was a full-function calculator watch with a touchscreen instead of all the buttons of a "normal" calculator watch. It was really quite small and elegant. To use the calculator, you would draw the numbers on the face of the watch with your finger. So if you drew: 5 x 6 = the display would show 5 and then 6 and then finally 30 after you drew the = sign.
I was always surprised that I never ever saw anything like this watch again, even after all these years.
What it does is to spin the drive slower, but read 7 tracks in parallel. Now if they could get two read heads like this, it would be a 142x drive without having to spin the cd any faster.
I believe it's exactly the same as this model from IOGear, although that's not the name on the box. They cost just over $100 and switch 4 computers each.
On the back, there's a USB port and a video port for each computer. Then there's another port for the monitor and 4 ports for any USB peripherals. I use a sun type-6 usb keyboard, a microsoft optical usb mouse. I believe this should work with a mac too.
Now here's the reality of working with this setup: when you switch between computers, the USB devices are disconnected on one system, then enumerated on the new system. On windows, you get the busy cursor for about 2-3 seconds before the mouse and keyboard become active. On linux or solaris, you get a bunch of new devices in the log appearing or disappearing every time you switch over. Also, on redhat, it seems that if I boot the system without being switched to the keyboard and mouse the window system may not start until you log in and say startx.
Now belkin makes a USB & PS/2 kvm switch. It will even switch audio as well. I bought one of these, only to find out that I can't use my USB keyboard. What it does is accept a PS/2 style keyboard and pass those signals on to computers that need PS/2, and pretend to be a USB keyboard for the other systems. This could eliminate the switching problems (the systems never see a disconnect/reconnect), but you don't get the benefit of a USB keyboard.
Also, for what it's worth, Network Technologies makes a bunch of KVM switches. I had one of their rack-mount switches a while back and it worked fine. I could use a sun type-5 keyboard and mouse with lots of suns and PC's.
For instance, some cars will tell you when they need maintenance. I don't remember if it was honda or bmw that would cover over the odometer when an oil change was required.
There could be a message that appears:
This system has gone more than "x" months without a security update. Please remove/etc/security.snooze to go another "x" months or update your darn packages. "x" could be larger for openbsd and shorter for anything that depends on smoothwall;)
Another solution is the way the (commercial) redhat network works (I don't work for them, I'm a subscriber). I get periodic updates about the packages with security holes. I'm not sure if the email I have is tailored to the packages on my machines, but I can easily check to see what machines are up-to-date and what machines aren't.
Also, I can see "expiring software" being used for evil. Let's say a little company open-sourced some software, and it expires. When you go to download the latest version, you find that they've forked off a pay version and don't support the free version anymore. etc...
Also, maybe updating your software could be a way for people to compromise systems when they update.
Hmmm... I think the main point is that file access (scp, which uses the 'sftp' channel) and execution access (ssh, which uses the 'shell', 'pty-req' and 'exec' channels) are inextricably linked in sshd.
I think in some cases it would benefit from a clear separation, like the separation these guys have given sshd. The separation I would personally like is to allow certain people access to certain files WITHOUT giving them the ability to log in or access *all* files.
Possibly, people without login privs could invoke a different daemon than the sftp-server daemon which already exists, and that would be possible within the current sshd framework. It would perform most of the file-access functions of sftp-server with chroot and/or read-only access.
The sftp-server daemon is already a separate executable invoked by sshd. It translates raw file-access primitives that the remote ssh sends to file-system calls.
Let's say you wanted to give some people access to your contact list. Or you wanted some customers to be able to access beta versions of your application, but you didn't want their password to be in clear-text. Or if you want some people to be able to access their webserver html directories or logs, without interfering with each other. The current ssh doesn't allow that, and ftp isn't secure.
To be honest, I wasn't that interested in anonymous access, although if that was implemented, it would be a pretty good peer-to-peer setup.
From what I've seen of the details of the levy, that only counts for blank media. If they delivered the iPod with music already on it, it would not be taxable. Of course, that could change.
I don't think the 'dummy-shell' philosophy guarantees security.
The openssh version mentioned in this article has two daemons for increased security. If they're dealing with the extra complexity of two daemons for increased security, is a file-access-only or read-only file-access sshd a far-fetched idea?
How would you give someone limited access to your server for file-copy purposes with the current ssh? Are you *sure* they won't be able to write to their/etc/passwd entry or some shared library and gain full ssh shell access? What if there's a buffer overflow found in a couple of months?
Here is an interesting story about Penn Jillette (of Penn and Teller) and his experiences with zero-g. It's pretty long, but it's detailed and amusing.
I tink it would be cool to have a version of sshd that would ONLY allow secure file transfer.
I've done some porting work with ssh 2 and the protocol supports several types of "channels". Many of them deal with login and remote execution: "shell", "pty-req" and "exec".
However, when you run scp or sftp (included with ssh2), the daemon uses ssh to invokes a "subsystem" channel request, with the subsystem of "sftp". (At least with versionn2 of the protocol, I don't think this happens with ssh version 1). This usually starts a daemon sub-process/usr/local/bin/sftp-server and channels all the session stuff to it.
It would be cool if this was the only function available, and that the sftp directory was chosen on the fly per-user and chroot'd or something so that only a subset of files was available somehow. This would allow you to have a bunch of secure directories for your friends, or even anonymous sftp, without having to let people log into your machine.
Here are the things you'll have to deal with when trying to quiet your system:
cpu fan
disk drive
case fan
video card fan
power supply fan
cd spinning
Ok, so my way of solving the problem doesn't involve underclocking, but it works better:
I put the computer in another room.
Get a good monitor cable (one with ferrite cores) and a keyboard extension cable and run them through a wall to the computer in another room. Now *that* is quiet. And it costs maybe $50.
Now to be honest, that's not exactly my setup. I actually have a KVM switch and hook to several computers in the next room. I have a nice quiet bedroom with a keyboard, monitor, speakers and a usb KVM switch. If you look at http://www.belkin.com you'll find kvm switches that switch audio too.
The most contentious issue in the 3-1/2-year debate over UWB deployment was the potential for
interference with the Global Positioning System (GPS). Julius Knapp, deputy chief of the FCC's Office of
Engineering and Technology, said UWB communications devices will be required to operate above 3.1
GHz and that spurious transmissions in the 1.6-GHz GPS spectrum will have to be suppressed by 34 dB.
Slashdot Mirror
I remember working in a physics lab a long time ago (1985) and one of my coworkers brought back an interesting watch from Hong Kong. It was an analog watch with a small LCD panel just above the 6. The interesting thing was, it was a full-function calculator watch with a touchscreen instead of all the buttons of a "normal" calculator watch. It was really quite small and elegant. To use the calculator, you would draw the numbers on the face of the watch with your finger. So if you drew:
5 x 6 =
the display would show 5 and then 6 and then finally 30 after you drew the = sign.
I was always surprised that I never ever saw anything like this watch again, even after all these years.
Anyone heard of this or anything like it?
The Kenwood 72x drive is quite fast.
What it does is to spin the drive slower, but read 7 tracks in parallel. Now if they could get two read heads like this, it would be a 142x drive without having to spin the cd any faster.
Here's the info.
I have a few USB kvm switches in my home
I believe it's exactly the same as this model from IOGear, although that's not the name on the box. They cost just over $100 and switch 4 computers each.
On the back, there's a USB port and a video port for each computer. Then there's another port for the monitor and 4 ports for any USB peripherals. I use a sun type-6 usb keyboard, a microsoft optical usb mouse. I believe this should work with a mac too.
Now here's the reality of working with this setup: when you switch between computers, the USB devices are disconnected on one system, then enumerated on the new system. On windows, you get the busy cursor for about 2-3 seconds before the mouse and keyboard become active. On linux or solaris, you get a bunch of new devices in the log appearing or disappearing every time you switch over. Also, on redhat, it seems that if I boot the system without being switched to the keyboard and mouse the window system may not start until you log in and say startx.
Now belkin makes a USB & PS/2 kvm switch. It will even switch audio as well. I bought one of these, only to find out that I can't use my USB keyboard. What it does is accept a PS/2 style keyboard and pass those signals on to computers that need PS/2, and pretend to be a USB keyboard for the other systems. This could eliminate the switching problems (the systems never see a disconnect/reconnect), but you don't get the benefit of a USB keyboard.
Also, for what it's worth, Network Technologies makes a bunch of KVM switches. I had one of their rack-mount switches a while back and it worked fine. I could use a sun type-5 keyboard and mouse with lots of suns and PC's.
So what if you made a combo pill of provigil and viagra? ;)
Young kids don't understand they're being lied to...
Advertisers use this to their advantage when designing ads.
I think this is the same thing, but for a different (older) age group...
sigh.
I believe there are other solutions.
/etc/security.snooze to go another "x" months or update your darn packages. "x" could be larger for openbsd and shorter for anything that depends on smoothwall ;)
For instance, some cars will tell you when they need maintenance. I don't remember if it was honda or bmw that would cover over the odometer when an oil change was required.
There could be a message that appears:
This system has gone more than "x" months without a security update. Please remove
Another solution is the way the (commercial) redhat network works (I don't work for them, I'm a subscriber). I get periodic updates about the packages with security holes. I'm not sure if the email I have is tailored to the packages on my machines, but I can easily check to see what machines are up-to-date and what machines aren't.
Also, I can see "expiring software" being used for evil. Let's say a little company open-sourced some software, and it expires. When you go to download the latest version, you find that they've forked off a pay version and don't support the free version anymore. etc...
Also, maybe updating your software could be a way for people to compromise systems when they update.
Just some thoughts.
I think the CD is a way for the editors to marginally increase the cost of a book, but substantially increase the profit.
It seems like books with a CD attached seem to cost about $20 more than books without.
Maybe they should offer an extended warranty too.
...or getting to the stuff that interests you faster instead of having to hunt around.
Wouldn't everybody start sounding like the vietnam vet on south park??
Hmmm... I think the main point is that file access (scp, which uses the 'sftp' channel) and execution access (ssh, which uses the 'shell', 'pty-req' and 'exec' channels) are inextricably linked in sshd.
I think in some cases it would benefit from a clear separation, like the separation these guys have given sshd. The separation I would personally like is to allow certain people access to certain files WITHOUT giving them the ability
to log in or access *all* files.
Possibly, people without login privs could invoke a different daemon than the sftp-server daemon which already exists, and that would be possible within the current sshd framework. It would perform most of the file-access functions of sftp-server with chroot and/or read-only access.
The sftp-server daemon is already a separate executable invoked by sshd. It translates raw file-access primitives that the remote ssh sends to file-system calls.
Let's say you wanted to give some people access to your contact list. Or you wanted some customers to be able to access beta versions of your application, but you didn't want their password to be in clear-text. Or if you want some people to be able to access their webserver html directories or logs, without interfering with each other. The current ssh doesn't allow that, and ftp isn't secure.
To be honest, I wasn't that interested in anonymous access, although if that was implemented, it would be a pretty good peer-to-peer setup.
From what I've seen of the details of the levy, that only counts for blank media. If they delivered the iPod with music already on it, it would not be taxable. Of course, that could change.
I don't think the 'dummy-shell' philosophy guarantees security.
/etc/passwd entry or some shared library and gain full ssh shell access? What if there's a buffer overflow found in a couple of months?
The openssh version mentioned in this article has two daemons for increased security. If they're dealing with the extra complexity of two daemons for increased security, is a file-access-only or read-only file-access sshd a far-fetched idea?
How would you give someone limited access to your server for file-copy purposes with the current ssh? Are you *sure* they won't be able to write to their
Would you trust it to anonymous-ssh?
Seen on a bumper sticker the other day:
"Don't make me call out the flying monkeys"
Here is an interesting story about Penn Jillette (of Penn and Teller) and his experiences with zero-g. It's pretty long, but it's detailed and amusing.
I tink it would be cool to have a version of sshd that would ONLY allow secure file transfer.
/usr/local/bin/sftp-server and channels all the session stuff to it.
I've done some porting work with ssh 2 and the protocol supports several types of "channels". Many of them deal with login and remote execution: "shell", "pty-req" and "exec".
However, when you run scp or sftp (included with ssh2), the daemon uses ssh to invokes a "subsystem" channel request, with the subsystem of "sftp". (At least with versionn2 of the protocol, I don't think this happens with ssh version 1). This usually starts a daemon sub-process
It would be cool if this was the only function available, and that the sftp directory was chosen on the fly per-user and chroot'd or something so that only a subset of files was available somehow. This would allow you to have a bunch of secure directories for your friends, or even anonymous sftp, without having to let people log into your machine.
stronger magnets = higher storage density on magnetic devices.
also, stuff won't fall off the fridge when you slam it shut.
- cpu fan
- disk drive
- case fan
- video card fan
- power supply fan
- cd spinning
Ok, so my way of solving the problem doesn't involve underclocking, but it works better:I put the computer in another room.
Get a good monitor cable (one with ferrite cores) and a keyboard extension cable and run them through a wall to the computer in another room. Now *that* is quiet. And it costs maybe $50.
Now to be honest, that's not exactly my setup. I actually have a KVM switch and hook to several computers in the next room. I have a nice quiet bedroom with a keyboard, monitor, speakers and a usb KVM switch. If you look at http://www.belkin.com you'll find kvm switches that switch audio too.
yeah, haven't been able to view port 84 through
proxy...
I think he meant the UWB transmitters can have filters to prevent transmitting in the GPS frequency range...
Here is a comparison to cvs
I'm surprised that you'd ask the slashdot community. They might GPL their responses and that could work it's way into your code...
I'd guess one or both of the drives is not in DMA mode. It's probably configured as PIO mode.
This is a pretty common mistake - if the drive is in PIO mode, all i/o goes through the cpu.
Hmmm... I wouldn't have thought Cringely's articles are flamebait.
He continues this week with Well, then here's What's Really Behind Microsoft's New Commitment to Data Security