I actually fly international, and am currently overseas, and typing this on a laptop. Yes, they can probably search your laptop. I've yet to actually see anyone get their laptop searched in the airport... I've been in more than half a dozen airports in the last month and a half. I've been with teams of a half dozen, all with laptops, and none has gotten searched. I'm currently with a team of many more than that and none of them has been searched.
So, yes, it's probably possible for them to search it, but I don't think it's particularly common.
1) the local linux users group. Those folks are likely to have lots of knowledge
2) Bastille (http://bastille-linux.sourceforge.net/) which is nice for locking down boxes. When last I used it, it was pretty good about walking you through what needed to be done with a fairly good explanation
3) O'Reilly books - suggested above, but I learned a lot from them
4) Setting yourself a goal - it seems that you have done this already, but it's worth mentioning that you need to set small goals as well. I found with learning linux that I would say "I want to listen to my mp3s" and would go about it from a specific task perspective.
5) google and other online resources - good once you get going. I don't know how much linux experience you have, but if you have enough to know what you want, then it shouldn't be hard to track it down.
âoeIf the San Francisco experiment works, no one will have to murder anyone over a parking space,â said Donald Shoup, a professor of urban planning at the University of California, Los Angeles, whose work on the pricing of parking spaces and whether more spaces are good for cities has led to a revolution in ideas about relieving congestion." - from TOA
Wow... because you know, we all _have_ to murder people for a parking space now.
That having been said, I've seen the start of something like this in an airport (Portland, IIRC). Parking spots have a light over then that shows green when they are empty and red when they aren't. Very handy to look down an entire row and know it's all full. In this one, you might be able to check for parking in the area when you get close and get over there, all on your phone. An interesting side effect of this is that the parking authority would be able to determine rates of fill and determine if they need to build a parking garage in the area.
I'm sure it can be hacked. I'm also sure there are meter maids who can probably have an automated system to check that stuff, like one that says it's full when they go by and it's clearly not. A quick push of a button and it gets communicated back to parking central authority to fix it. Bear in mind, most folks are not hacking folks, so it's really going to be a small subset that ever need this treatment.
it's so heavy right now because they made all the parts easily replaceable to the scientists working on it. The scientist they interviewed on it also mentioned that if you stop wearing it, you tend to swing your leg harder for the first 3-10 steps, unaccustomed to the now-unpresent braking by the device. Really neat idea... while it makes sense to me, I didn't realize we actually braked our legs as we walked forward.
So, I had read that the PS3 was really great for IBM because they are easier to make, having less SPE's. you could essentially use the ones that missed quality specs by 1 SPE and put it into a PS3 just fine. Now we've got this one with 4 SPEs, which is half of what goes into a full Cell.
Not that I'm saying that this is bad (indeed, less waste I suppose, and probably a better profit margin for them), but it does seem like it's indicating that IBM is still having yield problems with the Cell. Feel free to show me how I'm wrong, I'm not trying to be snarky or negative about it
It's the country's biggest, but it's by no means huge. We probably have half a dozen within those specs on site. Not to mention it would be pretty easy for them to go to a non-embargoed country and bring some back, or work through a non-authorized resale agent.
is to get their phone number, call them up, and inform them that they will never buy/use whatever it is they are selling, and will be telling 25 of their closest friends in person because of this practice. Certainly, you aren't limited to 25, but that is the old saying.
Someone above mentioned using jigdo to get all of debian, but even using wget to get a full dvd or cd set of some distro will provide you with a good data point. That's been my standard test for quite a few years now.
lets start with the second goddamn line of the article
"A White House directive to federal chief information officers issued this week calls for all new Windows PC acquisitions, beginning 30 June, to use a common "secure configuration"."
You'll notice that there is no mention of Macs or Linux. That's because this only affects _new windows PC acquisitions". That means it only affects the box when you have windows on it.
"Applications (such as anti-virus, email etc) loaded onto systems remain flexible but what will be specified in the registry settings and which services would be turned on or off by default."
Look here... configuration management mandated. How about that??!
"Even more importantly, the directive calls for suppliers (integrators and software vendors) to certify that the products they supply operate effectively using these more secure configurations."
OMFG, vendors actually have to put out products that work in secure configurations. holy crap!!! end of the goddamn world. heaven forbid we make them code securely and force them to make it work in something other than the Administrator account.
"The federal government scheme builds on the "comply or don't connect" program of the US Air Force. The principal targets are Windows XP and Vista client systems but the same ideas might be applied in Unix and Windows Servers environments over time."
Lookie there, it only applies to windows again. later on, it'll apply to windows Desktops! Not even servers. wtf is this call of monoculture I keep seeing.
Every consumer should be happy to see this, because a huge client (the biggest?) of computer hardware and software says "that's quite enough. If you can't work in our secure environment, you are going to lose a lot of business. Fix it already".
I agree with Martin's comments here. RHEL is Enteprise for a reason. It has long term support, it's stable. One might liken it to Debian stable, although it tends to be a bit more cutting edge than that, although not quite as cutting edge as testing, I believe (I could be wrong here. It's not exactly like I have done a one for one comparison of every package, so feel free to correct me).
I've been running Red Hat in an "enterprise" environment for about 8 years now. I've seen it go from an upgrade every 6 months to not needing an upgrade for the life of a box. Taking a look at our satellite server, I see 210 machines still subscribed to the RHEL 3, and even 13 subscribed to 2.1 (itaniums, hey, they still run!). These boxes are stable and secure, and I'm happy with that. They are performing their functions.
No doubt, it's not for everyone. Many people can't afford it, including myself in my personal life (alright, I could, but I really don't feel the need). Fedora is fine for those. Ubuntu is fine for those. Whatever other version you like is fine for those. If you want it to run with minimal upgrades, you stick with something that has support in some fashion for a long long time afterwards, like RHEL, where you can get security fixes for 7 years after release.
I do not know if it will fit your requirements, but redhat does have solid crash dump support. While it's a little old, http://www.redhat.com/support/wpapers/redhat/netdu mp/ describes it, including it's ability to do crash dumps over the net. A nice feature that comes with the enterprise level versions.
Interesting that you mention this. i don't normally see this, but when I was travelling last month to Long Island (Ronkonkoma area) I experienced exactly the same thing.
It continually impresses me how advanced the system administrators for adult sites are. The continually push the boundaries of streaming video, audio, bandwidth, efficiency, and security. I don't know if I should be surprised or not, but the selling of sex seems to drive technology like nothing else.
So, did I do my math right? x*y*bytes per pixel*frames per second gives bytes per section/1024 gives kb/1024 gives mb/1024 gives gb 7680*4320*3*25/1024/1024/1024 = 2.3174 gigabytes per second
that's quite a chunk for streaming video. of course, there will be compression techs and other tricks, but that's pretty impressive.
... on the nuances of bluetooth. First off, it's likely that it will only work on discoverable devices. These are getting increasingly small in number, as cellphone companies and others learn to disable that by default.
Secondly, I'd be interested to see what information they plan on using. For instance, I have a Motorola V551.. so I have a cell phone. Now, my cellphone happens to have a name of Diwani (http://en.wikipedia.org/wiki/Diwani), so will I get Arab language stuff? I know another person who's cell phone is named Turd Ferguson...
I can agree with just about everything the above poster wrote. I have not run with FantasyGrounds, but I keep hearing good things. I don't have quite enough of a reason to invest in it yet. The documentation seemed a little light, but when I demoed it, I didn't look really hard.
I've used OpenRPG for a few years now and have been pretty happy with it. It has a solid whiteboard, and it runs on my mac and on another player's linux machine, as well as windows boxes. It also has a dice rolling mechanic that is nice for other game systems. In particular, it's shadowrun support is solid. While I personally don't play much SR, I have players who do.
I strongly second the teamspeak, ventrilo, or whatever application to do voice. If you are all familiar with each other, you won't get any wierd feelings talking to strangers, and you'll be able to verbally abuse each other much more easily:)
While i love the roadster design, and I applaud their efforts, and am happy to see them working on a sedan, I think I would have really liked to see a cheaper, less break-neck car for my commute. something in the $20k range would have been much easier to sell with the missus:) Yes, I've looked at the Smart Roadster, but it's not US available, and not that cheap.
4 pages to say defense in depth? Any person who's spent a little time reading about security on the internet could tell you that. Heck, with a touch of extrapolation, combined forces has been used for how long? A couple thousand years?
I agree with the poster above who said like it sounded like an ad for an all in one appliance. It spends the first page putting down best of breed security means, then says we need to use best of breed ones, only under this new definition. It ignores that these all in one solutions generally have the cost of integration factored into the cost of the very expensive product. It talks about the changing security environment, trying to pump up your fear, but it totally ignores insider threat, which constitute the larger chunk of threat.
Essentially, this is a document for security managers, not for anyone on the ground, so to speak. The language is unnecessarily obtuse and ornate.
Slashdot Mirror
I actually fly international, and am currently overseas, and typing this on a laptop. Yes, they can probably search your laptop. I've yet to actually see anyone get their laptop searched in the airport... I've been in more than half a dozen airports in the last month and a half. I've been with teams of a half dozen, all with laptops, and none has gotten searched. I'm currently with a team of many more than that and none of them has been searched.
So, yes, it's probably possible for them to search it, but I don't think it's particularly common.
1) the local linux users group. Those folks are likely to have lots of knowledge
2) Bastille (http://bastille-linux.sourceforge.net/) which is nice for locking down boxes. When last I used it, it was pretty good about walking you through what needed to be done with a fairly good explanation
3) O'Reilly books - suggested above, but I learned a lot from them
4) Setting yourself a goal - it seems that you have done this already, but it's worth mentioning that you need to set small goals as well. I found with learning linux that I would say "I want to listen to my mp3s" and would go about it from a specific task perspective.
5) google and other online resources - good once you get going. I don't know how much linux experience you have, but if you have enough to know what you want, then it shouldn't be hard to track it down.
âoeIf the San Francisco experiment works, no one will have to murder anyone over a parking space,â said Donald Shoup, a professor of urban planning at the University of California, Los Angeles, whose work on the pricing of parking spaces and whether more spaces are good for cities has led to a revolution in ideas about relieving congestion." - from TOA
Wow... because you know, we all _have_ to murder people for a parking space now.
That having been said, I've seen the start of something like this in an airport (Portland, IIRC). Parking spots have a light over then that shows green when they are empty and red when they aren't. Very handy to look down an entire row and know it's all full. In this one, you might be able to check for parking in the area when you get close and get over there, all on your phone. An interesting side effect of this is that the parking authority would be able to determine rates of fill and determine if they need to build a parking garage in the area.
I'm sure it can be hacked. I'm also sure there are meter maids who can probably have an automated system to check that stuff, like one that says it's full when they go by and it's clearly not. A quick push of a button and it gets communicated back to parking central authority to fix it. Bear in mind, most folks are not hacking folks, so it's really going to be a small subset that ever need this treatment.
He's got Balls of Steel!
Make sure that it's documented. Make sure that it's spread into multiple places who took responsibility for it.
Ask tough questions like "alright, this is exploited, what can happen? How much is that worth? What sort of risk reductions do we have in place?".
No really... I'm interested in seeing a real comparison between many of these boxes. Yes, I'm also too lazy to go do the research myself :)
it's so heavy right now because they made all the parts easily replaceable to the scientists working on it. The scientist they interviewed on it also mentioned that if you stop wearing it, you tend to swing your leg harder for the first 3-10 steps, unaccustomed to the now-unpresent braking by the device. Really neat idea... while it makes sense to me, I didn't realize we actually braked our legs as we walked forward.
So, I had read that the PS3 was really great for IBM because they are easier to make, having less SPE's. you could essentially use the ones that missed quality specs by 1 SPE and put it into a PS3 just fine. Now we've got this one with 4 SPEs, which is half of what goes into a full Cell.
Not that I'm saying that this is bad (indeed, less waste I suppose, and probably a better profit margin for them), but it does seem like it's indicating that IBM is still having yield problems with the Cell. Feel free to show me how I'm wrong, I'm not trying to be snarky or negative about it
It's the country's biggest, but it's by no means huge. We probably have half a dozen within those specs on site. Not to mention it would be pretty easy for them to go to a non-embargoed country and bring some back, or work through a non-authorized resale agent.
I don't see it or this news on the QUT IIS website.
shuuunnnnnnnnn the non-believer! shuuuuunnnnnnnna
is to get their phone number, call them up, and inform them that they will never buy/use whatever it is they are selling, and will be telling 25 of their closest friends in person because of this practice. Certainly, you aren't limited to 25, but that is the old saying.
Someone above mentioned using jigdo to get all of debian, but even using wget to get a full dvd or cd set of some distro will provide you with a good data point. That's been my standard test for quite a few years now.
I see nowhere where it says Jan 2008
GEEEZ
lets start with the second goddamn line of the article
"A White House directive to federal chief information officers issued this week calls for all new Windows PC acquisitions, beginning 30 June, to use a common "secure configuration"."
You'll notice that there is no mention of Macs or Linux. That's because this only affects _new windows PC acquisitions". That means it only affects the box when you have windows on it.
"Applications (such as anti-virus, email etc) loaded onto systems remain flexible but what will be specified in the registry settings and which services would be turned on or off by default."
Look here... configuration management mandated. How about that??!
"Even more importantly, the directive calls for suppliers (integrators and software vendors) to certify that the products they supply operate effectively using these more secure configurations."
OMFG, vendors actually have to put out products that work in secure configurations. holy crap!!! end of the goddamn world. heaven forbid we make them code securely and force them to make it work in something other than the Administrator account.
"The federal government scheme builds on the "comply or don't connect" program of the US Air Force. The principal targets are Windows XP and Vista client systems but the same ideas might be applied in Unix and Windows Servers environments over time."
Lookie there, it only applies to windows again. later on, it'll apply to windows Desktops! Not even servers. wtf is this call of monoculture I keep seeing.
Every consumer should be happy to see this, because a huge client (the biggest?) of computer hardware and software says "that's quite enough. If you can't work in our secure environment, you are going to lose a lot of business. Fix it already".
I agree with Martin's comments here. RHEL is Enteprise for a reason. It has long term support, it's stable. One might liken it to Debian stable, although it tends to be a bit more cutting edge than that, although not quite as cutting edge as testing, I believe (I could be wrong here. It's not exactly like I have done a one for one comparison of every package, so feel free to correct me).
I've been running Red Hat in an "enterprise" environment for about 8 years now. I've seen it go from an upgrade every 6 months to not needing an upgrade for the life of a box. Taking a look at our satellite server, I see 210 machines still subscribed to the RHEL 3, and even 13 subscribed to 2.1 (itaniums, hey, they still run!). These boxes are stable and secure, and I'm happy with that. They are performing their functions.
No doubt, it's not for everyone. Many people can't afford it, including myself in my personal life (alright, I could, but I really don't feel the need). Fedora is fine for those. Ubuntu is fine for those. Whatever other version you like is fine for those. If you want it to run with minimal upgrades, you stick with something that has support in some fashion for a long long time afterwards, like RHEL, where you can get security fixes for 7 years after release.
I do not know if it will fit your requirements, but redhat does have solid crash dump support. While it's a little old, http://www.redhat.com/support/wpapers/redhat/netdu mp/ describes it, including it's ability to do crash dumps over the net. A nice feature that comes with the enterprise level versions.
Interesting that you mention this. i don't normally see this, but when I was travelling last month to Long Island (Ronkonkoma area) I experienced exactly the same thing.
You on Long Island, by chance?
It continually impresses me how advanced the system administrators for adult sites are. The continually push the boundaries of streaming video, audio, bandwidth, efficiency, and security. I don't know if I should be surprised or not, but the selling of sex seems to drive technology like nothing else.
So, did I do my math right? /1024 gives kb /1024 gives mb /1024 gives gb
x*y*bytes per pixel*frames per second gives bytes per section
7680*4320*3*25/1024/1024/1024 = 2.3174 gigabytes per second
that's quite a chunk for streaming video. of course, there will be compression techs and other tricks, but that's pretty impressive.
... on the nuances of bluetooth. First off, it's likely that it will only work on discoverable devices. These are getting increasingly small in number, as cellphone companies and others learn to disable that by default.
:)
Secondly, I'd be interested to see what information they plan on using. For instance, I have a Motorola V551.. so I have a cell phone. Now, my cellphone happens to have a name of Diwani (http://en.wikipedia.org/wiki/Diwani), so will I get Arab language stuff? I know another person who's cell phone is named Turd Ferguson...
It may be good for a laugh
I can agree with just about everything the above poster wrote. I have not run with FantasyGrounds, but I keep hearing good things. I don't have quite enough of a reason to invest in it yet. The documentation seemed a little light, but when I demoed it, I didn't look really hard.
:)
I've used OpenRPG for a few years now and have been pretty happy with it. It has a solid whiteboard, and it runs on my mac and on another player's linux machine, as well as windows boxes. It also has a dice rolling mechanic that is nice for other game systems. In particular, it's shadowrun support is solid. While I personally don't play much SR, I have players who do.
I strongly second the teamspeak, ventrilo, or whatever application to do voice. If you are all familiar with each other, you won't get any wierd feelings talking to strangers, and you'll be able to verbally abuse each other much more easily
While i love the roadster design, and I applaud their efforts, and am happy to see them working on a sedan, I think I would have really liked to see a cheaper, less break-neck car for my commute. something in the $20k range would have been much easier to sell with the missus :) Yes, I've looked at the Smart Roadster, but it's not US available, and not that cheap.
Still, I'll be trying to afford it...
This is why badnews in politics is always released late on friday. By Monday, everyone has ignored it.
4 pages to say defense in depth? Any person who's spent a little time reading about security on the internet could tell you that. Heck, with a touch of extrapolation, combined forces has been used for how long? A couple thousand years?
I agree with the poster above who said like it sounded like an ad for an all in one appliance. It spends the first page putting down best of breed security means, then says we need to use best of breed ones, only under this new definition. It ignores that these all in one solutions generally have the cost of integration factored into the cost of the very expensive product. It talks about the changing security environment, trying to pump up your fear, but it totally ignores insider threat, which constitute the larger chunk of threat.
Essentially, this is a document for security managers, not for anyone on the ground, so to speak. The language is unnecessarily obtuse and ornate.