SMP is a big deal. OpenBSD does things, and it does them RIGHT. To do
SMP right, we'd need to make the kernel fully-reentrant. This means
that we'd clean up the kernel I/O functions so that they don't wait on
one another (that's a really dumbed-down, bad explanation of it.) By
making the kernel re-entrant, we wouldn't have the problem of spinlocks
(one processor waiting on the other to finish I/O, etc.) This would mean
almost a COMPLETE re-write of the kernel. This would be a six+ month ordeal
for quite a few coders working 40-60 hour weeks. Remember, such a huge
task needs to include not only the re-writing of existing code, but
checking it to make sure it works on all supported platforms without breaking
all the great existing features of OpenBSD.
That bit about doing things the Right Way is a major consideration for the
OpenBSD team. In
1998
jkatz pointed out that they probably wouldn't just
use the code from another BSD because they wanted to make sure that
OpenBSD's solution was more scaleable.
Am I the only one who is more excited about the prospect of another Dune movie?
No, you are not the only one. I was thrilled when I saw the commercial.
The SCIFI version of Dune was so much better than the Hollywood rendition. So much so that it was ridiculous.
I agree wholeheartedly. The CGI worms were a bit weak in some scenes, but certainly no worse than the rendering in major studio movies like spiderman. The thing that really shined in the sci-fi channel's adaptation was the character development. There's no way to get a book like Dune into a two hour movie without slaughtering it. By using the mini-series format, Sci-Fi allowed themselves more time to include details from the book.
A good example of this was their decision to show fremen-piloted 'thopters being used in the final battle. It's been years since I read DUNE, but I seem to remember a section in the book where Paul was shown a captured ornithopter.
Another good thing the sci-fi channel did was to have scenes that hinted at the future, like in Paul's vision of the sand worms prior to the battle. That scene showed the dunes turning into grass-covered hills. Obviously, that meant nothing to people new to Dune, but I was thrilled that they managed to slip that in.
Minor annoyance: I'd like to just once see a Dune adaptation with an ornithopter that takes off by flapping its wings.
Looks count. So if your webisite aint good to look at content can take a walk. This is a simple truth in this world.
I don't believe that holds true for all users or all types of information. The more detailed the information you seek, the less concerned you are with the look of the site. Example: I've been thinking about building a guitar, and have literally spent hours reading articles at Frank Ford's site. That's one of the plainest web pages you could imagine, but the information there is pure gold.
Spoonist said: Sites that do not use Flash get my Seal of Approval
I don't have a problem with sites using flash liberally, so long as they provide a non-flash way to get to the same information on the web site. This is especially important for an index page...you ought to allow people into the site without them having to wait for your animation to download.
In a discussion of live performance and royalties, Hanno said, "If you perform someone else's work in public...you have to pay royalties to the author(s) of a song."
72beetle replied "Wrong. Covers are royalty free when played live, even at a paid concert."
Actually, you are probably both correctly describing the situation in your country. Hanno identified his country as Germany. 72beetle
is probably from the USA, one of the few countries where live performances don't require
royalty payments. In most other nations, what Hanno said would be correct.
On pg. 57 of the June 2002 issue of
Performing Songwriter (i.e. the same issue that ran the print version of Janis Ian's
internet debacle column) contains an interview with Michael Hausman about his new organization
United Musicians. Their hope to a) help artists retain ownership of their masters and the copyrights on their songs instead of signing those rights over to publishing companies, and b) hire full time marketing people to help members get their CD's marketed. I think both of this is a great idea. Few indie musicians can afford a marketing person to get them national airplay, but a group of musicians could.
use Oasis for duplication
on
Ebay vs. Musician
·
· Score: 4, Informative
If you get 500 CDs from oasis, the price is
$2.51 per CD. They say that includes:
Injection-molded CDs manufactured to stringent quality specifications (These are NOT CDrs/CD-one offs)
Jewel boxes and shrink-wrap
Inclusion of a track from your CD on one of our OASIS SAMPLER CDs, with free distribution to the vast majority of radio stations in the US that specialize in your musical genre
National distribution directly through Amazon.com--the biggest retailer on the Web--as well as through cdstreet and the beloved indie store CD Baby
Free barcode if desired
Ten Retail-ready display boxes
Naturally, the prices go up if you want a nicer insert with more room for lyrics and band photos, and they go down if you buy more CDs.
No. I'm not affiliated with Oasis. Our band may put out a disc of our own soon, so we've been looking into duplication options, and they are the company that we like the best so far. If you want to look at some other good options for indie bands, check out the list of duplicators recommended by CD Baby. Some of them have even lower prices than Oasis. (but not as many free perks)
If you decided to use Oasis, you may want to talk to our rep, Alex (Alexandra) Vacek - she's been real helpful with all our odd questions.
Peter Biddle of Microsoft gave a palladium talk at the usenix security symposium in August. At this talk he said that he was unaware of any way that Palladium could be used to combat software piracy.
Lucky Green immediately wrote down several ways in which palladium could be used to do this, and filed patents on these methods.
Explain the above, then ask if Palladium have any method of preventing software piracy. Follow up by asking if they are utilizing the methods described in Lucky Green's patents.
Low cost software is making home recording very reasonable:
I spent last weekend playing studio engineer as a couple of my friends were laying down tracks. After the music sounds the way we want it to, we'll send it to XM and see if they'll play it on their "unsigned" channel. Presto, a chance at national exposure without any middle men involved.:)
On pg. 57 of the June 2002 issue of Performing Songwriter (i.e. the same issue that ran the print version of your
internet debacle column) contains an interview with Michael Hausman about his new organization United Musicians that seems to suggest that his group can help artists retain ownership of their masters and the copyrights on their songs instead of signing those rights over to publishing companies. Unfortunately, their website is very short on details.
What do you think about unitedmusicians.com? Will the idea work? What would you recommend as the best course of action for an independent musician who wants to maintain ownership of the publishing portion of their songs' mechanical and performance royalties? Should singer/songwriters start their own publishing companies in order to maintain control of their work?
I forgot to mention that the NPR interview with Clarke can be found here:
http://www.npr.org/me3.smil
It is segment number 11
He did say "...hackers can help" at his defcon talk, but is using a *VERY* limited definition of the H-word. During this morning's NPR interview Clarke said:
"the law currently says that if you discover a flaw, that's ok, but if you intentionally go out and reverse engineer code, unless you are somebody who is in the computer security business, the law assumes that you've done it for uh, nefarious purposes. So the only people we are encouraging to go out and find these flaws are computer security professionals, not people who are doing it just for the fun of it"
Be careful when you say that Clarke "encourages discovery of software bugs". On NPR this morning they mentioned Ed Felton and Dmitri (though not by name) asked Clarke if his statements at blackhat was consistent with the government's prosecution of people who find holes in software. Clarke responded that US law prohibits people who are not "security professionals" from intentionally looking for security holes in software, and that the reverse engineering of software to find holes in it is prohibited.
mesocyclone said:
I wonder if the poster realizes that melting the snow in his clothes with his body heat lowers his body temperature just as much as eating it???
That's not true. What I recommended is standard instruction for winter survival. As Genyin noted, there's a difference between core body temperature and skin surface temperature.
It is possible to chill the surface temp without lowering the the core enough to die. (Perhaps you have heard of frostbite?) Eating snow
will lower your core temperature, thus increasing your chance of dieing. Placing a bottle between your many layers of clothing (we are intelligent hikers) *may* cool you enough to damage some skin, although that's unlikely.
gripdamage said:
On the other hand, if you eat the snow you can freeze to death trying not to dehydrate. I'm sure a very slow but steady diet of snow is the best way to go.
I'd carry a plastic bottle that I could put snow into, then put the bottle into my clothes. After it melts, then you can drink it. That's much safer.
Think of it as the United Nations: Kelly Hu as cute girl with the gift of prophesy (chinese/hawaiian/english ancestry) Taiko drummers (japan) sword training with shinai (japan) Indian elephant (India and southeast asia) Monocled Cobra (India) Cutting hands off of thieves (Moslem countries of middle east) Bamboo laminate crossbows (Hmong people of cambodia/vietnam)
Bruce Schneier did a nice talk about why the SSSCA was futile back in October of 2001. The most important thing he mentioned in that column, IMHO, was:
"Digital files can be copied. Nothing anyone can say or do can change that. If you have a bucket of bits, you can easily create an identical bucket of bits and give it to me. You still have the bits, and now I have the bits too."
If you can get your senator to understand the above (i.e. that the bill is futile, anyway), and to understand that mandating features in software stifles innovation and violates the rights of the programmer, you have a chance of getting them to vote in a sane manner.
Finally after 20 years I've found the other people who like TRON as much as I do.
I loved that flick, but was amazed at the amount of detail some people can recall. One year at defcon a jeopardy question was "what was the password for the master control computer in TRON"....I was amazed that someone in the crowd actually knew it was "reindeer flotilla"
I don't like the idea of testing people for opiates without knowing *which* opiates you are testing for. Prescription medication or poppy seed bagels could be a major problem if this becomes a widely used testing method.
Hopefully they will only use this as a primary test, and use more discriminating tests to distinguish *which* opiates are present in people who test positive
This document is no more than a formalization of @Stake and Microsoft's desire to see the public disclosure that takes place on Security Focus and Cert come to a grinding halt.
That's possible, but I don't really think so. @stake obviously has roots in the non-corporate security community, so we know that they're aware of the benefits of disclosure. It is possible that they are angling for an RFC as a means of protecting amature security researchers who want to disclose what they find without suffering the fate of Dimitry Sklyarov. After that debacle, many people stopped disclosing anything because it was obvious that the DMCA would be used to make their lives miserable if they annoyed the companies too badly. A formal RFC that is approved by the IETF would go a long way towards discouraging prosecutors from bringing charges against researchers. ("Members of the jury, how
can my client's actions be construed as a crime?
He was only following the established procedures
laid out by the IETF....")
The problem with drafting an RFC is that not all bugs are created equal, and that usually doesn't get reflected in a standards document. If a popular server application has a local exploit in the installation/registration process, you might want to treat that differently than if the same server application has a remote exploit caused by an inability to handle malformed requests. Why? The first one will affect sites for a brief period of time while the sysadmin installs some software. The second example affects any site running the software, thus having the ability to impact many more people. I'd be much more likely to give the software manufacturer more time to fix a remote exploit...
If they were a little more reasonable about their terms of service, they could have charged a little more. I would gladly have paid a small fee for the opportunity to run my own web server, or to talk to tech support people who didn't think my problems were due to not running windows. I moved to speakeasy because I wanted a more freedom about what to do with my computers and didn't want to be treated like a clueless luser by people who naturally assume that if it is not windows, it is broken
The feds already used a third-party keylogger that could be delivered via
email.
It is called DIRT.
I
suspect the feature that makes this new keylogger more useful is that it is
incorporated in their "DragonWare" suite of software, just like carnivore's
lesser known post-processing programs
Packeteer and CoolMiner.
Slashdot Mirror
Am I the only one who is more excited about the prospect of another Dune movie?
No, you are not the only one. I was thrilled when I saw the commercial.
The SCIFI version of Dune was so much better than the Hollywood rendition. So much so that it was ridiculous.
I agree wholeheartedly. The CGI worms were a bit weak in some scenes, but certainly no worse than the rendering in major studio movies like spiderman. The thing that really shined in the sci-fi channel's adaptation was the character development. There's no way to get a book like Dune into a two hour movie without slaughtering it. By using the mini-series format, Sci-Fi allowed themselves more time to include details from the book.
A good example of this was their decision to show fremen-piloted 'thopters being used in the final battle. It's been years since I read DUNE, but I seem to remember a section in the book where Paul was shown a captured ornithopter.
Another good thing the sci-fi channel did was to have scenes that hinted at the future, like in Paul's vision of the sand worms prior to the battle. That scene showed the dunes turning into grass-covered hills. Obviously, that meant nothing to people new to Dune, but I was thrilled that they managed to slip that in.
Minor annoyance: I'd like to just once see a Dune adaptation with an ornithopter that takes off by flapping its wings.
I saw Incubus a while back on Sci-Fi, and thought the idea of having dialog in esperanto was neat. I hope someone mods the parent to this up.
I don't believe that holds true for all users or all types of information. The more detailed the information you seek, the less concerned you are with the look of the site. Example: I've been thinking about building a guitar, and have literally spent hours reading articles at Frank Ford's site. That's one of the plainest web pages you could imagine, but the information there is pure gold.
I don't have a problem with sites using flash liberally, so long as they provide a non-flash way to get to the same information on the web site. This is especially important for an index page...you ought to allow people into the site without them having to wait for your animation to download.
72beetle replied "Wrong. Covers are royalty free when played live, even at a paid concert."
Actually, you are probably both correctly describing the situation in your country. Hanno identified his country as Germany. 72beetle is probably from the USA, one of the few countries where live performances don't require royalty payments. In most other nations, what Hanno said would be correct.
On pg. 57 of the June 2002 issue of Performing Songwriter (i.e. the same issue that ran the print version of Janis Ian's internet debacle column) contains an interview with Michael Hausman about his new organization United Musicians. Their hope to a) help artists retain ownership of their masters and the copyrights on their songs instead of signing those rights over to publishing companies, and b) hire full time marketing people to help members get their CD's marketed. I think both of this is a great idea. Few indie musicians can afford a marketing person to get them national airplay, but a group of musicians could.
High-quality (175-line screen) four-color printing (4/1) printing
Direct on-disc printing
Injection-molded CDs manufactured to stringent quality specifications (These are NOT CDrs/CD-one offs)
Jewel boxes and shrink-wrap
Inclusion of a track from your CD on one of our OASIS SAMPLER CDs, with free distribution to the vast majority of radio stations in the US that specialize in your musical genre
National distribution directly through Amazon.com--the biggest retailer on the Web--as well as through cdstreet and the beloved indie store CD Baby
Free barcode if desired
Ten Retail-ready display boxes
Naturally, the prices go up if you want a nicer insert with more room for lyrics and band photos, and they go down if you buy more CDs. No. I'm not affiliated with Oasis. Our band may put out a disc of our own soon, so we've been looking into duplication options, and they are the company that we like the best so far. If you want to look at some other good options for indie bands, check out the list of duplicators recommended by CD Baby. Some of them have even lower prices than Oasis. (but not as many free perks)
If you decided to use Oasis, you may want to talk to our rep, Alex (Alexandra) Vacek - she's been real helpful with all our odd questions.
Peter Biddle of Microsoft gave a palladium talk at the usenix security symposium in August. At this talk he said that he was unaware of any way that Palladium could be used to combat software piracy.
Lucky Green immediately wrote down several ways in which palladium could be used to do this, and filed patents on these methods.
Explain the above, then ask if Palladium have any method of preventing software piracy. Follow up by asking if they are utilizing the methods described in Lucky Green's patents.
Low cost software is making home recording very reasonable:
:)
I spent last weekend playing studio engineer as a couple of my friends were laying down tracks. After the music sounds the way we want it to, we'll send it to XM and see if they'll play it on their "unsigned" channel. Presto, a chance at national exposure without any middle men involved.
What do you think about unitedmusicians.com? Will the idea work? What would you recommend as the best course of action for an independent musician who wants to maintain ownership of the publishing portion of their songs' mechanical and performance royalties? Should singer/songwriters start their own publishing companies in order to maintain control of their work?
http://www.npr.org/me3.smil
It is segment number 11
He did say "...hackers can help" at his defcon talk, but is using a *VERY* limited definition of the H-word. During this morning's NPR interview Clarke said:
"the law currently says that if you discover a flaw, that's ok, but if you intentionally go out and reverse engineer code, unless you are somebody who is in the computer security business, the law assumes that you've done it for uh, nefarious purposes. So the only people we are encouraging to go out and find these flaws are computer security professionals, not people who are doing it just for the fun of it"
Be careful when you say that Clarke "encourages discovery of software bugs". On NPR this morning they mentioned Ed Felton and Dmitri (though not by name) asked Clarke if his statements at blackhat was consistent with the government's prosecution of people who find holes in software. Clarke responded that US law prohibits people who are not "security professionals" from intentionally looking for security holes in software, and that the reverse engineering of software to find holes in it is prohibited.
The only "intuitive" interface is the nipple. After that, it's all learned.
Bruce Ediger, in comp.os.linux.misc, on X interfaces
I wonder if the poster realizes that melting the snow in his clothes with his body heat lowers his body temperature just as much as eating it???
That's not true. What I recommended is standard instruction for winter survival. As Genyin noted, there's a difference between core body temperature and skin surface temperature.
It is possible to chill the surface temp without lowering the the core enough to die. (Perhaps you have heard of frostbite?) Eating snow will lower your core temperature, thus increasing your chance of dieing. Placing a bottle between your many layers of clothing (we are intelligent hikers) *may* cool you enough to damage some skin, although that's unlikely.
You decide which option is preferable
On the other hand, if you eat the snow you can freeze to death trying not to dehydrate. I'm sure a very slow but steady diet of snow is the best way to go.
I'd carry a plastic bottle that I could put snow into, then put the bottle into my clothes. After it melts, then you can drink it. That's much safer.
Do not eat without melting! Eating snow and ice can reduce body temperature and will lead to more dehydration.
Melt ice or snow and boil it if possible. Don't eat crushed ice - it can injure your mouth and can also cause further dehydration.
Lundin says eating lots of snow is a common and potentially deadly mistake.
"Don't eat snow," said Mike Sheets. "Don't put it in your mouth and try to melt it if you're thirsty. You'll use up too much of your body's heat, and you need that energy for yourself."
Drink a lot of water, 8 to 12 glasses a day. But do not eat snow to satisfy your thirst. Eating snow can lower your body's core temperature, triggering deadly hypothermia.
Don't waste body heat by eating snow. Make a fire; heat water before drinking.
Do not eat snow as it tends to dehydrate the body
Do not eat snow to obtain water, it will just make you colder.
Think of it as the United Nations:
Kelly Hu as cute girl with the gift of prophesy (chinese/hawaiian/english ancestry)
Taiko drummers (japan)
sword training with shinai (japan)
Indian elephant (India and southeast asia)
Monocled Cobra (India)
Cutting hands off of thieves (Moslem countries of middle east)
Bamboo laminate crossbows (Hmong people of cambodia/vietnam)
"Digital files can be copied. Nothing anyone can say or do can change that. If you have a bucket of bits, you can easily create an identical bucket of bits and give it to me. You still have the bits, and now I have the bits too."
If you can get your senator to understand the above (i.e. that the bill is futile, anyway), and to understand that mandating features in software stifles innovation and violates the rights of the programmer, you have a chance of getting them to vote in a sane manner.
I loved that flick, but was amazed at the amount of detail some people can recall. One year at defcon a jeopardy question was "what was the password for the master control computer in TRON"....I was amazed that someone in the crowd actually knew it was "reindeer flotilla"
I don't like the idea of testing people for opiates without knowing *which* opiates you are testing for. Prescription medication or poppy seed bagels could be a major problem if this becomes a widely used testing method.
Hopefully they will only use this as a primary test, and use more discriminating tests to distinguish *which* opiates are present in people who test positive
That's possible, but I don't really think so. @stake obviously has roots in the non-corporate security community, so we know that they're aware of the benefits of disclosure. It is possible that they are angling for an RFC as a means of protecting amature security researchers who want to disclose what they find without suffering the fate of Dimitry Sklyarov. After that debacle, many people stopped disclosing anything because it was obvious that the DMCA would be used to make their lives miserable if they annoyed the companies too badly. A formal RFC that is approved by the IETF would go a long way towards discouraging prosecutors from bringing charges against researchers. ("Members of the jury, how can my client's actions be construed as a crime? He was only following the established procedures laid out by the IETF....")
The problem with drafting an RFC is that not all bugs are created equal, and that usually doesn't get reflected in a standards document. If a popular server application has a local exploit in the installation/registration process, you might want to treat that differently than if the same server application has a remote exploit caused by an inability to handle malformed requests. Why? The first one will affect sites for a brief period of time while the sysadmin installs some software. The second example affects any site running the software, thus having the ability to impact many more people. I'd be much more likely to give the software manufacturer more time to fix a remote exploit...
If they were a little more reasonable about their terms of service, they could have charged a little more. I would gladly have paid a small fee for the opportunity to run my own web server, or to talk to tech support people who didn't think my problems were due to not running windows. I moved to speakeasy because I wanted a more freedom about what to do with my computers and didn't want to be treated like a clueless luser by people who naturally assume that if it is not windows, it is broken
The feds already used a third-party keylogger that could be delivered via email. It is called DIRT.
I suspect the feature that makes this new keylogger more useful is that it is incorporated in their "DragonWare" suite of software, just like carnivore's lesser known post-processing programs Packeteer and CoolMiner.