Somehow I don't think this will be retooling a Palm or PocketPC. There are lots of things that could be done to secure a PDA, like protected storage, an crupto chip to speed up operations, an integrated card reader (not a sled attachment or USB port either), integrated wifi with wpa or 802.11i. Lots and lots.
Somebody please explain to me: why would you go to all this trouble to get a close estimate of how many unique visitors your site draws?
Tracking the success of an advertising campaign. Ad-buyers want to get thier message out to eyeballs and they want to message to as many eyeballs as often as possible for their target demographic. Picking sites in their demographic is easy and they know how to do that. Picking a site that drives enough unique traffic is much more difficult.
I would expect, though I don't know, that large media sites have thier results or thier analytic methods audited similar to a financial audit. So if you can prove, using accepted practices, that your site is moving some number of unique visitors, and that number is more than a similar site, you will proably win hte business all other factos being equal.
I don't think they don't want to know. They just don't want to see a sudden drop of ~50% of their user count from a day to the other. And it really doesn't matter if it's the truth or not. A drop is a drop.
Replace the word "they" with "companies that are deriving revenue from web traffic." This guy makes his money from selling analytics software so that companies can track the success of thier web sites and based on tracking, make modifications, sell advertising, marketing, and so forth.
Seeing a 30-50% drop in unique visitors would be bad even if it were true. And would you want to be the only site out there competing for advetising dollars that shows a 30-50 less traffic even it if is more honest? Hell no, you wouldn't. You wouldn't be able to convince the media buyers that your right and your competition is wrong. For that matter, do you really want to go your board and explain that shiny new 6 figure website is really only serving 1/2 of your customers you thought you were serving?
Duuuude. Longitude is a brief history of the development of navigation and an interesting read. Whoda thunk that determining your longitude would be such a problem. Besides, it's short.
But what I have found is that many, many technical books are either way to general about things you need to know and way to specific about stuff you do.
Most web designers aren't programmers or even that techincal. They can see that there is a problem if they test with other browsers, but have no idea how to fix it.
This is because fiding out how different elements behave in different browsers is incredibly difficult.
As an example, I found after many hours of frustration that when using nested tables, IE will only size properly when each row element is sized where as netscape will enforce the widest size
I looked and looked for examples or explanations and found nothing but I was determined to make sure the site worked cross browser.
So I get it all done, test it in Opera, and guess what, the fucking fonts are not taking styles. Great.
This leads me to stating that people who write browsers interpret the standards in different ways, making life difficult for web site designers.
I have stopped sending webmasters emails pointing out that I won't visit thier IE only site and I point out the problems and I eithger get ignored or flamed. I haven't sent in a complaint in years and won't.
I can tell you from a corporate point of view that as long as people don't complain about non-compliance, the PHBs assume that as long as there are no complaints, then all is well.
Many of the books and other resources on HTML and web design blather on about non-essential issues and many of the browser compatablity charts are woefully out of date. Yet adding yet another chart or tutorial is pointless because you won't find it in the morass of bad information.
So I can't completely beleive that all web designers are inept. And to be frank, it's eaiser and more cost effective to design for one browser than all of them. Now don't tell me about how great standards are, I am a believer, but I also know that having a deep knowledege of IE and ActiveX will allow designers to do more, easily.
The stupidity of google is that they are arbitrarily applying a standard to their CEO. I am a nobody, but I bet if I spent time looking for my personal information via google, and then complained to google, would they do anything for me? If I were stalked via google, would google go to court with me to say the use of the search engine was 'wrong'? No, and no.It just so happens I am not CEO of google, therefore I haven't got the power to do anything about it.
Here's the second. This is just wrong of google and does this mean the benevolent giant is really a bully in disguise.
Sorry, google is a search engine that is used for all kinds of "interesting" things. If google doesn't like it, then they can pack up and go home.
sheesh.
I interpreted that to mean that technologists have to find ways to you as an individual can say what is bad for you so that when you search for it, you don't get those results.
It would be an interesting challenge to create a personally tailored, semi-auto-learning, smart filter.
But that's true, at least for extensive vulnerabilities that can require a lot of effort to fix and/or test!
As an Oracle customer, I don't care how bad they got it. I pay a butt load for a product and I expect it to be solid, robust, and secure. Part of that security is the timely remediation of security problems. Have you seen Oracles track record on fixes. It's measured in quarters and years!
I dont know why you'd want a mp3 player that small, interface would be a bitch compared to the slightly larger say, ipod mini.
You are obviously not a grrrl. Glue a chain and post on it and you got a music earring. In fact, I think it was at WalMart that I saw something just like it.
What I meant was, if their business model really works, they'll report vulns to their original "owners", the vulns will get fixed, and there will be less and less vulns to be rooted out, until eventually the money well is close to dry.
Nah. There will still be plenty of vulns in software until developer organizations start to make secure coding a priority. Even then, there will still be security problems made by well meaning people.
In addition, there will always be unpatched systems for whatever reason.
I don't think IPS is a really good defensive strategy, but it is a viable business.
As a followup, how does the port mirroring feature of smart switches compare to the passive Ethernet taps shown on snort.org?
There are two main differences. The first is that generally speaking, a swtich won't mirror frames that have errors. That's not really a big deal from an IDS/IPS deployment.
The more important one is that port mirroring is always half duplex--the mirror port can only send the rated capacity. This is important because a 100 Mb/s port full duplex (normal on a switch) is actually capable of sending and receiving 100 Mb/s both ways for a combined 200 Mb/s. If you try to mirror a port that has a combined capacity beyond 100 Mbps, some frames will be dropped. The benefit or port mirroring is that you only need one monitor port on your sensor. With in-line taps, you need to and bond them together.
The parent is not a troll. It's a fact of browser life. Like it or not, there are many, many enterprise web applications that depend on features found within IE (or at least claim to--Opera usually works OK when impersonating IE).
BTW, I am a staunch FF user, and Netscape before that all the way back to the 1.0 days.
Um, that won't stop spam, but it will increase the likelihood that you will get better quality spam.
I have been tracking me snail mail for a few months. 70% of the mail I receive I would classify as spam. Credit card offers and advertising circulars from companies I have never done business with (MBNA, Providian to name two). Then there is the mail I receive from companies I do business with, but are trying to extend thier reach.
All that mail costs money to print and mail. I don't know what the bulk rate is, but I bet it is larger than $.05 and the cost to the USPS to actually deliver it must be higher. HOwever, since they are going to spend the money sending out snail mail, they might as well go the incremental cost of making the mass mailing look good so that recipients will open it. I think the same principle will apply with per charge USPS email.
No, the driver for the USPS to charge $.05 send an email is pure profit (and to regain control of it's monopoly) because the costs to process and deliver snail mail outpaces the revenue collected to send it.
It's not just Microsoft's old tricks. Many 800 lb. gorillas (Cisco, IBM, Intel) have done the same with more or less success. Most of the time, wrangling is done in working groups where vendors start deploying products based on early standard drafts, which commits them to lock-in, which then motivates them to fight for thier methods regardless of technical requirements.
Besides, market dominant driven standardization is not always a bad thing. The anti-spam market is so fragmented that having a Microsoft force a decision may actually move a resolution.
What does this de-fuzz? The selection process? Someone else has made the fuzzy choices, but there's still no Classicometer that you point at a book to decide if it's worth reading.
*Sigh* The subtext in that statement is that programmers want clear cut answers. They can't or don't want to handle ideas or notions that have no answer or require some thoughtful reflection.
So AT&T is late to the game. ISS, Symantec, and others already provide this same "news" type of service to their customers as either an additional service or as part of thier existing service. And yes, they all have global scope.
This isn't that interesting and since there are many companies and people who are not AT&T customers, it not useful.
Geez, this is almost like shilling for AT&T--hardly worth a/. story.
Andrew Jaquith, senior analyst with The Yankee Group in Boston. "There is really no good, consistent source for security information on the Internet," he said.
Also in the TFA, there were statements that the news serviecs will be offered to ATT customers. Will non-customers also have access to the site for free? If not, how does this compare to other managed services offerings from the likes of Symantec, ISS, and others?
My wife is an author and has a web site, but she doesn't want a blog--she wants to be anti-hip. So one day she is telling me that she wants to have a journal kind of thing, where she can share seasonal things like gardening and cooking tips with her readers and open a dialog. Of course my response was, "Soooo, you want a blog then?" "No," she says, "I don't want a blog, I want an on-line journal." "But that is a blog," I responded. "I don't want a blog. I want a journal", she repeated.
So I set her up with an account on blogger anyway. She won't use it. Now I have to go re-invent the wheel.
When I first heard the term "blog", I thought it stood for brain log, which was kind of cool and represented what they seemed to be. Random thoughts and links elsewhere for reference. "Like, I saw this thing. Here's why it caught my interest, and you can look at it too."
When I found out blog was short for "web log", I was quite disappointed at the sheer lack of originality.
It's not a money maker for them. You gonna base an OS decision on the CLI? Nope, your gonna base it on whether or not it fits your needs as in does it run your shit.
This is probably a move to try to quell the cries that Windows isn't like Unix and MIcrosoft hopes that a better CLI (or the promise of one) will show that Windows is on par with Unix system on that front.
If you want a better CLI now, use bash and cygwin. Nearly all "unix" based scripting languages have Windows ports. It's just not an issue for "power users" anymore.
$28k/yr. $14/hr. I'd say that's about the quality level the fund administration appears to have received.
Yeah, that's about par for a small non-profit. Small non-profits are really run by people who believe in what they are doing strongly enough to work very, very hard for very little financial return. Get into larger ones in terms of revenue, and payroll tends to increase, but usually no where near comparable to what you can make in the private sector.
As for what should be done with it? Money donated for a cause must be used for that cause, so there yah go. Find that out and there is your answer.
Any reason to think this will be more widely adopted than liberty alliance initiatives?
The reason I ask is that the technology is a walk in the park compared to the much more difficult problem of trusting an external system to authenticate for you.
Slashdot Mirror
Somehow I don't think this will be retooling a Palm or PocketPC. There are lots of things that could be done to secure a PDA, like protected storage, an crupto chip to speed up operations, an integrated card reader (not a sled attachment or USB port either), integrated wifi with wpa or 802.11i. Lots and lots.
Tracking the success of an advertising campaign. Ad-buyers want to get thier message out to eyeballs and they want to message to as many eyeballs as often as possible for their target demographic. Picking sites in their demographic is easy and they know how to do that. Picking a site that drives enough unique traffic is much more difficult.
I would expect, though I don't know, that large media sites have thier results or thier analytic methods audited similar to a financial audit. So if you can prove, using accepted practices, that your site is moving some number of unique visitors, and that number is more than a similar site, you will proably win hte business all other factos being equal.
Replace the word "they" with "companies that are deriving revenue from web traffic." This guy makes his money from selling analytics software so that companies can track the success of thier web sites and based on tracking, make modifications, sell advertising, marketing, and so forth.
Seeing a 30-50% drop in unique visitors would be bad even if it were true. And would you want to be the only site out there competing for advetising dollars that shows a 30-50 less traffic even it if is more honest? Hell no, you wouldn't. You wouldn't be able to convince the media buyers that your right and your competition is wrong. For that matter, do you really want to go your board and explain that shiny new 6 figure website is really only serving 1/2 of your customers you thought you were serving?
The only way this might break is if a large number of people are sitting behind a proxy/cache. Three letters--AOL.
Duuuude. Longitude is a brief history of the development of navigation and an interesting read. Whoda thunk that determining your longitude would be such a problem. Besides, it's short. But what I have found is that many, many technical books are either way to general about things you need to know and way to specific about stuff you do.
- Most web designers aren't programmers or even that techincal. They can see that there is a problem if they test with other browsers, but have no idea how to fix it.
- This is because fiding out how different elements behave in different browsers is incredibly difficult.
- As an example, I found after many hours of frustration that when using nested tables, IE will only size properly when each row element is sized where as netscape will enforce the widest size
- I looked and looked for examples or explanations and found nothing but I was determined to make sure the site worked cross browser.
- So I get it all done, test it in Opera, and guess what, the fucking fonts are not taking styles. Great.
- This leads me to stating that people who write browsers interpret the standards in different ways, making life difficult for web site designers.
- I have stopped sending webmasters emails pointing out that I won't visit thier IE only site and I point out the problems and I eithger get ignored or flamed. I haven't sent in a complaint in years and won't.
- I can tell you from a corporate point of view that as long as people don't complain about non-compliance, the PHBs assume that as long as there are no complaints, then all is well.
- Many of the books and other resources on HTML and web design blather on about non-essential issues and many of the browser compatablity charts are woefully out of date. Yet adding yet another chart or tutorial is pointless because you won't find it in the morass of bad information.
So I can't completely beleive that all web designers are inept. And to be frank, it's eaiser and more cost effective to design for one browser than all of them. Now don't tell me about how great standards are, I am a believer, but I also know that having a deep knowledege of IE and ActiveX will allow designers to do more, easily.Yeah, but google still knows where I am, what I am doing, and who my friends are. Wait, I don't have any friends ... :)
The stupidity of google is that they are arbitrarily applying a standard to their CEO. I am a nobody, but I bet if I spent time looking for my personal information via google, and then complained to google, would they do anything for me? If I were stalked via google, would google go to court with me to say the use of the search engine was 'wrong'? No, and no.It just so happens I am not CEO of google, therefore I haven't got the power to do anything about it.
Here's the second. This is just wrong of google and does this mean the benevolent giant is really a bully in disguise. Sorry, google is a search engine that is used for all kinds of "interesting" things. If google doesn't like it, then they can pack up and go home. sheesh.
I interpreted that to mean that technologists have to find ways to you as an individual can say what is bad for you so that when you search for it, you don't get those results. It would be an interesting challenge to create a personally tailored, semi-auto-learning, smart filter.
But that's true, at least for extensive vulnerabilities that can require a lot of effort to fix and/or test! As an Oracle customer, I don't care how bad they got it. I pay a butt load for a product and I expect it to be solid, robust, and secure. Part of that security is the timely remediation of security problems. Have you seen Oracles track record on fixes. It's measured in quarters and years!
I dont know why you'd want a mp3 player that small, interface would be a bitch compared to the slightly larger say, ipod mini. You are obviously not a grrrl. Glue a chain and post on it and you got a music earring. In fact, I think it was at WalMart that I saw something just like it.
What I meant was, if their business model really works, they'll report vulns to their original "owners", the vulns will get fixed, and there will be less and less vulns to be rooted out, until eventually the money well is close to dry.
Nah. There will still be plenty of vulns in software until developer organizations start to make secure coding a priority. Even then, there will still be security problems made by well meaning people.
In addition, there will always be unpatched systems for whatever reason.
I don't think IPS is a really good defensive strategy, but it is a viable business.
As a followup, how does the port mirroring feature of smart switches compare to the passive Ethernet taps shown on snort.org? There are two main differences. The first is that generally speaking, a swtich won't mirror frames that have errors. That's not really a big deal from an IDS/IPS deployment. The more important one is that port mirroring is always half duplex--the mirror port can only send the rated capacity. This is important because a 100 Mb/s port full duplex (normal on a switch) is actually capable of sending and receiving 100 Mb/s both ways for a combined 200 Mb/s. If you try to mirror a port that has a combined capacity beyond 100 Mbps, some frames will be dropped. The benefit or port mirroring is that you only need one monitor port on your sensor. With in-line taps, you need to and bond them together.
The parent is not a troll. It's a fact of browser life. Like it or not, there are many, many enterprise web applications that depend on features found within IE (or at least claim to--Opera usually works OK when impersonating IE). BTW, I am a staunch FF user, and Netscape before that all the way back to the 1.0 days.
Um, that won't stop spam, but it will increase the likelihood that you will get better quality spam. I have been tracking me snail mail for a few months. 70% of the mail I receive I would classify as spam. Credit card offers and advertising circulars from companies I have never done business with (MBNA, Providian to name two). Then there is the mail I receive from companies I do business with, but are trying to extend thier reach. All that mail costs money to print and mail. I don't know what the bulk rate is, but I bet it is larger than $.05 and the cost to the USPS to actually deliver it must be higher. HOwever, since they are going to spend the money sending out snail mail, they might as well go the incremental cost of making the mass mailing look good so that recipients will open it. I think the same principle will apply with per charge USPS email. No, the driver for the USPS to charge $.05 send an email is pure profit (and to regain control of it's monopoly) because the costs to process and deliver snail mail outpaces the revenue collected to send it.
It's not just Microsoft's old tricks. Many 800 lb. gorillas (Cisco, IBM, Intel) have done the same with more or less success. Most of the time, wrangling is done in working groups where vendors start deploying products based on early standard drafts, which commits them to lock-in, which then motivates them to fight for thier methods regardless of technical requirements. Besides, market dominant driven standardization is not always a bad thing. The anti-spam market is so fragmented that having a Microsoft force a decision may actually move a resolution.
What does this de-fuzz? The selection process? Someone else has made the fuzzy choices, but there's still no Classicometer that you point at a book to decide if it's worth reading.
*Sigh* The subtext in that statement is that programmers want clear cut answers. They can't or don't want to handle ideas or notions that have no answer or require some thoughtful reflection.
If your a programmer, you should be insulted.
So AT&T is late to the game. ISS, Symantec, and others already provide this same "news" type of service to their customers as either an additional service or as part of thier existing service. And yes, they all have global scope.
/. story.
This isn't that interesting and since there are many companies and people who are not AT&T customers, it not useful.
Geez, this is almost like shilling for AT&T--hardly worth a
Andrew Jaquith, senior analyst with The Yankee Group in Boston. "There is really no good, consistent source for security information on the Internet," he said.
There are already a handful of really good sites out there. How will ATT compete with the likes of: The Internet Storm Center, Security Focus, Packet Storm, and Security Peline which are current and relevant.
Also in the TFA, there were statements that the news serviecs will be offered to ATT customers. Will non-customers also have access to the site for free? If not, how does this compare to other managed services offerings from the likes of Symantec, ISS, and others?
My wife is an author and has a web site, but she doesn't want a blog--she wants to be anti-hip. So one day she is telling me that she wants to have a journal kind of thing, where she can share seasonal things like gardening and cooking tips with her readers and open a dialog. Of course my response was, "Soooo, you want a blog then?" "No," she says, "I don't want a blog, I want an on-line journal." "But that is a blog," I responded. "I don't want a blog. I want a journal", she repeated.
So I set her up with an account on blogger anyway. She won't use it. Now I have to go re-invent the wheel.
When I first heard the term "blog", I thought it stood for brain log, which was kind of cool and represented what they seemed to be. Random thoughts and links elsewhere for reference. "Like, I saw this thing. Here's why it caught my interest, and you can look at it too."
When I found out blog was short for "web log", I was quite disappointed at the sheer lack of originality.
It's not a money maker for them. You gonna base an OS decision on the CLI? Nope, your gonna base it on whether or not it fits your needs as in does it run your shit.
This is probably a move to try to quell the cries that Windows isn't like Unix and MIcrosoft hopes that a better CLI (or the promise of one) will show that Windows is on par with Unix system on that front.
If you want a better CLI now, use bash and cygwin. Nearly all "unix" based scripting languages have Windows ports. It's just not an issue for "power users" anymore.
$28k/yr. $14/hr. I'd say that's about the quality level the fund administration appears to have received.
Yeah, that's about par for a small non-profit. Small non-profits are really run by people who believe in what they are doing strongly enough to work very, very hard for very little financial return. Get into larger ones in terms of revenue, and payroll tends to increase, but usually no where near comparable to what you can make in the private sector.
As for what should be done with it? Money donated for a cause must be used for that cause, so there yah go. Find that out and there is your answer.
Any reason to think this will be more widely adopted than liberty alliance initiatives?
The reason I ask is that the technology is a walk in the park compared to the much more difficult problem of trusting an external system to authenticate for you.