This looks like a hell of a package to slap onto a cheap PC (and hide behind my TV!)
Just buy an Xbox for $149, the remote kit for $20, the AV kit for another $20-30, and a mod chip for $60.
Total cost: aprox $260.
Lot cheaper than a PC w/a video out card and whatnot methinks. You don't even need to upgrade the hard drive if all you're going to do is use the Xbox as a media center, because you can store all your content on your main PC (which presumably has a larger hard drive:), and play them on the Xbox over the network using XBMC and SMB.
Absolutely! I like to say that XBMC is the "killer app" for the Xbox:) Don't even need a big hard drive in your Xbox, because you can watch movies, listen to mp3's, look at pictures, etc, all over SMB! And w/an AV adapter, you can get 5.1 out of it too.
XBMC was a little flaky a few months ago when it first came out, but they have made leaps and bounds lately. Kudos to the team that's working on the project, because they are constantly and actively working on it.
I still haven't really found much that I can throw at it that it won't play!
If you do not trust a user, then do not make them a trusted user. Leastaways don't make them a trusted user on the machine that is supposedly logging their actions.
That's pretty much what I was getting at... despite whatever sort of measures you put in place w/sudo or whatever, you still have to trust the people that you give root access:)
I keep track of system changes on our linux servers using sudo and CVS. Admittedly, my situation is on a much smaller scale (2 admins, handful of systems). I like to use sudo because then any command that's run as root is traceable back to who did it via the system logs. (of course someone could hide their tracks by editing the logs...) I trust the other admin here, but in the past, I've set up sudo so that people could NOT USE the su command. The reason I did this is so that someone couldn't do a sudo su -, and then do whatever they want as root, unlogged. There are still workarounds, as sudo is not a be-all-end-all of security. You still need standard procedures, and you have to make sure people follow them.
As for the CVS side of things, I just keep a "sysconf" module for each server. Whenever I make any changes to a system file, I will first add it into CVS. Then all subsequent changes are made to the CVS version'd file, and notes and stuff committed to CVS. After committing to CVS, the admin then moves the file into the proper system location and does whatever else is neccessary to make the changes take effect. Once again, it doesn't work unless people use it. There's nothing I have in place that would keep someone from editing the file in the system location (since they need root to put the file into place...), but I try to discourage people from doing that.
Eventually I'd like to write some scripts and a DB backend that will hold the locations of all the files, so it's easier to move them into the proper location. But I haven't started that yet...
I only allow a few select ip addresses access to my incoming SSH port. I'm not sure what kind of signature nmap is capable of getting from deny and reject compared to one that is simply not listening but I feel this is one step safer then simply allowing full access to my SSH machine to anyone that wants to try to get in.
Yes, I think that limiting the incoming IP range will give nmap some issues, but I'm not certain (I guess only fyodor or someone that read the code would know for sure). As long as the rejection is done before nmap can connect to port 22, I think it will register as a closed port. So if you are rejecting using IPTables or something like that, your ssh port is probably pretty well hidden. If you're doing the rejection with ssh once the machine connects (can you do that? dunno, never tried...:) then nmap might still be able to find something out.
Might be interesting to see what happens though. What's your IP?:)
Interesting ports on somehostname.somehost.com (123.456.789.101): PORT STATE SERVICE XXXXX/tcp filtered unknown XXXXX/tcp open unknown XXXXX/tcp open unknown Device type: general purpose Running: Microsoft Windows (blah, blah, blah)
I don't see the "VERSION" listed in your scans, which means you either aren't using the latest version of nmap, or you didn't use -A. Try nmap -A and see what it returns.... (or you could give me your IP and I'll see what I can find:)
obscure ports like 39492 (not the one I actually use, wouldn't want to give away my top secret network secrets!),
Using obscure ports doesn't really matter anymore... All I need is a recent version of nmap, and I can find out what services you're running and what ports they are on:)
Most of what you will learn in colledge has little to do with anything
Hear hear! All the programming and system administration knowledge that I use daily in my job wasn't taught to me in college. I learned perl in my off-time during college... I learned a lot of other things in college though... like how much you can drink and still go to work the next day. And then there was that pipe construction 101 class... but I guess that wasn't really a class after all...;)
or is this a lovely little piece of misinformation?
Speaking of misinformation... the article states that "Episode 33 debuted this week.". Is there a different redvsblue site that they're looking at, because on the redvsblue site that I'm seeing, it looks like there's only 30 episodes available...:)
Yeah, I'll be sure to get that ssh tunnel set up from my Pocket PC right away:)
Don't know if the commercial SSH apps for Pocket PC support tunnels, but I know that PocketPuTTy doesn't (yet!)...
Even so, while I agree that SSH tunnels are the coolest thing ever (ok, maybe not EVER, but they are pretty damn cool), I don't know that that is really the best solution for this particular instance... (on a PocketPC, that is)
That's cool that they at least still have it on their site. How did you find the link though? I looked briefly on their page and didn't find any references to winamp 2... did I not look far enough (or am I blind)?
Although I don't think I've heard many people ever talk about datum either... maybe because it's always always plural. When was the last time you had only one piece of datum?:)
Ok, so no reason to upgrade then. I'm pretty sure 2.81 does id3v2 tags, since when I click on "File Info", I see two tags, one ID3v1, and one for ID3v2.
hmmm... looks like Winamp2 isn't available on their site anymore (or at least I didn't dig far enough). Guess I'll have to make sure I keep my installer around:)
Aha! Then I'm safe! Just checked, and looks like I'm still using winamp 2.81...
Can anyone tell me why I would want to upgrade? It seems to me that every newer version of winamp just gets bigger and slower. All I want it to do is play mp3's, and this version seems to do that just fine...:)
I wonder how many "Microsoft" applications are using technology that is licensed to them from a third party? MS historically doesn't write something if they can just buy it, and I believe there are quite a few MS products that were "created" this way.
So anyway, my point was that I wonder if they would be unable to release the source to some of their products due to the licensing agreements that they have w/the people that they got the product from...?
Slashdot Mirror
Come on... that's really "I wanna download X-Box games from P2P on the Internet and be able to run them on my PC."
:P
C'mon, you don't need a PC for that...
You can actually replace the Xbox DVD drive with a standard Samsung drive, with a little soldering:
How to replace your Xbox DVD drive with a model 616T Samsung DVD-rom drive
This looks like a hell of a package to slap onto a cheap PC (and hide behind my TV!)
:), and play them on the Xbox over the network using XBMC and SMB.
:)
Just buy an Xbox for $149, the remote kit for $20, the AV kit for another $20-30, and a mod chip for $60.
Total cost: aprox $260.
Lot cheaper than a PC w/a video out card and whatnot methinks. You don't even need to upgrade the hard drive if all you're going to do is use the Xbox as a media center, because you can store all your content on your main PC (which presumably has a larger hard drive
It's a beautiful thing
Absolutely! I like to say that XBMC is the "killer app" for the Xbox :) Don't even need a big hard drive in your Xbox, because you can watch movies, listen to mp3's, look at pictures, etc, all over SMB! And w/an AV adapter, you can get 5.1 out of it too.
:)
XBMC was a little flaky a few months ago when it first came out, but they have made leaps and bounds lately. Kudos to the team that's working on the project, because they are constantly and actively working on it.
I still haven't really found much that I can throw at it that it won't play!
It just kicks ass
If you do not trust a user, then do not make them a trusted user. Leastaways don't make them a trusted user on the machine that is supposedly logging their actions.
:)
That's pretty much what I was getting at... despite whatever sort of measures you put in place w/sudo or whatever, you still have to trust the people that you give root access
I keep track of system changes on our linux servers using sudo and CVS. Admittedly, my situation is on a much smaller scale (2 admins, handful of systems). I like to use sudo because then any command that's run as root is traceable back to who did it via the system logs. (of course someone could hide their tracks by editing the logs...) I trust the other admin here, but in the past, I've set up sudo so that people could NOT USE the su command. The reason I did this is so that someone couldn't do a sudo su -, and then do whatever they want as root, unlogged. There are still workarounds, as sudo is not a be-all-end-all of security. You still need standard procedures, and you have to make sure people follow them.
As for the CVS side of things, I just keep a "sysconf" module for each server. Whenever I make any changes to a system file, I will first add it into CVS. Then all subsequent changes are made to the CVS version'd file, and notes and stuff committed to CVS. After committing to CVS, the admin then moves the file into the proper system location and does whatever else is neccessary to make the changes take effect. Once again, it doesn't work unless people use it. There's nothing I have in place that would keep someone from editing the file in the system location (since they need root to put the file into place...), but I try to discourage people from doing that.
Eventually I'd like to write some scripts and a DB backend that will hold the locations of all the files, so it's easier to move them into the proper location. But I haven't started that yet...
IANAL but I do believe this fits into the DMC. Violation of the DMC is ILLEGAL...
:)
Really? I didn't realize that it was illegal to violate the Delorean Motors Corporation
Yes, yes, I know... you meant the DMCA.
I only allow a few select ip addresses access to my incoming SSH port. I'm not sure what kind of signature nmap is capable of getting from deny and reject compared to one that is simply not listening but I feel this is one step safer then simply allowing full access to my SSH machine to anyone that wants to try to get in.
:) then nmap might still be able to find something out.
:)
Yes, I think that limiting the incoming IP range will give nmap some issues, but I'm not certain (I guess only fyodor or someone that read the code would know for sure). As long as the rejection is done before nmap can connect to port 22, I think it will register as a closed port. So if you are rejecting using IPTables or something like that, your ssh port is probably pretty well hidden. If you're doing the rejection with ssh once the machine connects (can you do that? dunno, never tried...
Might be interesting to see what happens though. What's your IP?
Interesting ports on somehostname.somehost.com (123.456.789.101):
:)
PORT STATE SERVICE
XXXXX/tcp filtered unknown
XXXXX/tcp open unknown
XXXXX/tcp open unknown
Device type: general purpose
Running: Microsoft Windows (blah, blah, blah)
I don't see the "VERSION" listed in your scans, which means you either aren't using the latest version of nmap, or you didn't use -A. Try nmap -A and see what it returns.... (or you could give me your IP and I'll see what I can find
obscure ports like 39492 (not the one I actually use, wouldn't want to give away my top secret network secrets!),
:)
Using obscure ports doesn't really matter anymore... All I need is a recent version of nmap, and I can find out what services you're running and what ports they are on
How many times in one day can I forget to put that / in the closing tag? sheesh...
This is because the banned drugs are abused much less due to the problems associated with illegality
:)
Uh-huh. So ask high school (or any other under-21 person) which is easier for them to get: weed or beer?
making it legal allows the government to better control it. making it illegal just creates a thriving black market.
is less of a problem than alcohol abuse right now, because it is illegal and thus the abuse is greatly limited.
:)
Bwahahahah. Good one. No, I don't have a point, I just wanted to laugh at that, and I have karma to burn
"when you lose small mind you free your life"
Dammit, I'm an idiot. I previewed that comment twice and I still forgot to close my italics...
argh...
Most of what you will learn in colledge has little to do with anything
;)
Hear hear! All the programming and system administration knowledge that I use daily in my job wasn't taught to me in college. I learned perl in my off-time during college... I learned a lot of other things in college though... like how much you can drink and still go to work the next day. And then there was that pipe construction 101 class... but I guess that wasn't really a class after all...
or is this a lovely little piece of misinformation?
:)
Speaking of misinformation... the article states that "Episode 33 debuted this week.". Is there a different redvsblue site that they're looking at, because on the redvsblue site that I'm seeing, it looks like there's only 30 episodes available...
More information about the Thunderball appearance can be found here: www.rocketbelt.nl... click on the Thunderball link on the left.
Yeah, I'll be sure to get that ssh tunnel set up from my Pocket PC right away :)
Don't know if the commercial SSH apps for Pocket PC support tunnels, but I know that PocketPuTTy doesn't (yet!)...
Even so, while I agree that SSH tunnels are the coolest thing ever (ok, maybe not EVER, but they are pretty damn cool), I don't know that that is really the best solution for this particular instance... (on a PocketPC, that is)
That's cool that they at least still have it on their site. How did you find the link though? I looked briefly on their page and didn't find any references to winamp 2... did I not look far enough (or am I blind)?
Should've used the preview... That last part should have read:
...
maybe because it's almost always plural
Data is the singular. DATUM IS THE PLURAL
:)
Merriam-Webster begs to differ: Etymology: Latin, plural of datum
Although I don't think I've heard many people ever talk about datum either... maybe because it's always always plural. When was the last time you had only one piece of datum?
Ok, so no reason to upgrade then. I'm pretty sure 2.81 does id3v2 tags, since when I click on "File Info", I see two tags, one ID3v1, and one for ID3v2.
:)
hmmm... looks like Winamp2 isn't available on their site anymore (or at least I didn't dig far enough). Guess I'll have to make sure I keep my installer around
Holy shit! Here's a reason not to upgrade:
in requirements:
500MHz Pentium III or comparable
One of the systems that I use winamp on is a Pentium-133 laptop that sits on my entertainment center and plays mp3's thru my stereo.
Why does it take a PIII-500 to play mp3's? It seems to be working fine on the p133 right now. Seems to me like too much extra bloat...
Aha! Then I'm safe! Just checked, and looks like I'm still using winamp 2.81 ...
:)
Can anyone tell me why I would want to upgrade? It seems to me that every newer version of winamp just gets bigger and slower. All I want it to do is play mp3's, and this version seems to do that just fine...
I wonder how many "Microsoft" applications are using technology that is licensed to them from a third party? MS historically doesn't write something if they can just buy it, and I believe there are quite a few MS products that were "created" this way.
So anyway, my point was that I wonder if they would be unable to release the source to some of their products due to the licensing agreements that they have w/the people that they got the product from...?