Hibernate incurs the full POST cycle when you start back up (the machine is completely off and has to boot from scratch remember). This loses a decent amount of time. Sleep can wake up in under a second on some machines I've used.
Re:Harddrives wear worse from int Amps than 24/7 u
on
Why Vista Took So Long
·
· Score: 1
When you Hibernate, the machine *is* off. It writes the memory out to disk and physically turns off all power to the machine. The only difference is the startup time and the fact you can resume everything where you left off. The fact that resuming from Hibernation shows a BIOS boot screen should have clued you in on this.
When you Sleep, theoretically only the memory has power. This isn't quite true (some power is pushed around so you can detect wake events), but is close enough.
The reason people use sleep and hibernate is to save electricity. As machines draw more and more power, you realize more and more cost savings as you let the machines power down when not in use. Whether the cost saving matches the wear and tear inflicted by spin up/spin down cycles is another question.
Hadn't seen that one before, but a quick look seems to indicate it's one hellishly obnoxious piece of code, almost rivalling StarForce. I'm sure it will play merry hell with Linux and even Vista where syscall hooking is a great way to crash the OS. Thanks for the link.
Sony (at least SoE) doesn't have a "warden" process snooping around your computer looking for third party programs. They polled the user base about 5 years ago on this idea and got a resounding "f'off" response, so have never gone back to trying to monitor the other programs running on your PC at the time.
I don't get how Blizzard is the "good guys" for apologizing when their own snoop program returned a false positive, when they remain completely unrepentant for the fact their process deliberately fishes around the PC for things that may be totally unrelated to the game. That's not classy - that's just apologizing for getting caught.
Of course, if you meant Sony's rootkit fiasco then at least Sony recalled the rootkit. Blizzard is still running the warden last I looked.
I believe you're thinking about something different. The stuff he was talking about in those links has to do with the web page that shows when you click on them, not the bookmarks you can make.
IE7 lets you treat the lists as searchable tables that you can order or filter on fields in the XML. All the other browsers just show the lists as a plain non-interactive web page.
Your point misses the mark because you are misunderstanding the purpose of signing, and misunderstand what's happening:
i) The Windows Logo Program means Microsoft is signing off on a driver saying it's safe to run. This is just something that is a marketing bullet and isn't something required for the system to load the driver.
ii) The driver signing program allows anyone to sign the driver if they've ponied up the cash and identification requirements. It is NOT an indication the driver is safe, but it is an indication that you know who made the driver. Remember, if you really want to trust "Bill's Backdoors" as a software company that produces drivers then it's perfectly within your rights to do so and Microsoft isn't about to try to stop you. All they are doing here is making sure that the people writing drivers are actually signing their name to them.
They whole "eBay" thing is silly because of the levels of identification you need to go through to get the certificate in the first place, only to have it revoked on the next update Vista pulls down from the web. You don't see code signing certs on eBay now, what makes you think they'll be up there when Vista releases given nothing is actually changing in the certificate infrastructure?
It's exactly the same level of security you get in signed Java applications, or https, or any number of public key schemes on the internet now. You're just overdramatizing the possibilities.
Actually, the Windows system (MSI) is very much like the Debian system - it's all an opt-in thing that only works if you use the installer for everything you do. The MSI system keeps reference counts on all your shared libraries, makes sure directories are cleaned up on uninstall and manages pretty much everything else you can think of too.
However, if you choose to install stuff OUTSIDE the MSI system then it's the same as installing stuff outside the Debian package system - you end up with problems when Debian thinks that there's nothing using a library when that program (call it "Oracle" for instance) which you use every day suddenly can't find a library.
What you're noticing though is there's a lot more stuff outside the package system in Windows than there is in Linux. As Linux gets more popular and more closed source third party apps start running around with their own custom installers, you'll see it developing much the same problems in library management that Windows does.
The one thing Unix in general does better than Windows is unlink() works on files in use, while Windows makes you reboot.
The process to get a key accepted by the kernel is simple. You go to Verisign and get a Class 3 code signing cert. You give that cert to Microsoft. They give you a cert signed by their CA that the Vista kernel will accept. You can then sign whatever code you want with that cert and Vista will load it.
The drivers don't have to be signed by Microsoft's private key (I don't know where people keep getting this idea from - it's never been the case). They have to be signed by any third party that has a key that has Microsoft's key as their root CA - in short, third parties can sign their own drivers so long as they've shelled out the $300 for a Verisign key and then gone to MS as asked for a driver signing key.
You can turn off the driver signing requirement using a boot switch. This is necessary for driver development.
It is actually a good idea for a kernel to have some verification of code that it loads into kernel space. As long as the user has a method to actively turn the verification off (which they do) then it's not such a bad thing as you're making out.
Sysadmins can read everyone's email!!?? Wow - what else will they find out? Can't wait to see the furor when someone discovers HR's DBAs can see everyone's salary!
Idiots - of course sysadmins can read everyone's email. This is why you should take care in hiring them.
In the absence of external influence (ie China and South Korea) that solution may be a good one. The problem is neither China or SK want the North to collapse because it floods them with refugees that they can't afford. Hence, any direct action from the US onto North Korea brings the US into an indirect confrontation with China - which is something we are unlikely to come out of economically even if we win militarily.
So, the solution is to just tell China he's their problem and make North Korea aware that any aggressive act outside their own borders will be met with megatons for kilotons. It's called YAD - like MAD but with 'your' instead of 'mutually'.
It has nothing to do with memory bandwidth or use. The ASIC is about 1000 times faster than the CPU because it is using dedicated hardware designed to run very fast and parallel in 3D image processing, which is almost exactly the same problem as folding protiens.
Unless you are saying all CPUs are pegged at 99.9% use, or the GPU has memory three orders of magnitude faster then you're just looking at a effects that make a few percent difference here and there. The simple fact is the GPU is insanely faster at solving specific problems (3D processing) while it simply cannot ever run an operating system.
If we run around telling him he didn't really explode a nuke then it's only incentive for him to try again. Far better to pat him on the head and pretend it was the world's most wildly successful nuke test and get down to the business of what to do about it.
The problem is, it's short sentences like that which will be the most common scenario. Take others going to Arabic and back using Google:
"I surrender. What do you want me to do?" double translates to "No surrender. Why do you want to do?" (that's gonna be useful) "We will not harm you" double translates to "You will not harm" (interesting it mixes the subject so often) "Put your gun down" double translates to "Put your development Venice". (Helpful)
Remember, all of these are before any errors that Viavoice introduces in actually recognizing what is being spoken on the English side, and the response on the arabic side.
what? becoming a parent means you have to look over your children's shoulders 24/7 until they're 18 (and heaven help you if you have more than 1 child, they'll just have to share a bedroom so you can deny them both privacy at once) because you have absolute responsibility until they turn 18?
That's exactly what becoming a parent means. You are RESPONSIBLE for your child's behavior until they are legally responsible for themselves. If you can't cope with that then you shouldn't become a parent.
This isn't stupid, it's reality. The message about personal responsibility is supposed to be driven from the parents to the children, so if the parents let the kids get away with stuff then I have no sympathy when the bratty child gets the parents in trouble.
Typically the difference is a code-signing certificate that is signed by Microsoft. If rootkit.com forks out the $300 or so required to get one then there's no difference at all.
Of course, the first bug in a signed driver that allows unsigned code to be loaded into the kernel is a class break for the entire system. It sounds like in typical corporate fashion that Microsoft has been working hard to inconvenience lawful customers while doing little to stop the people who are deliberately unlawful.
The Enterprise licensing operates differently. Apparently you install a licensing server at your business and point the clients to that rather than pointing at Microsoft's servers.
Actually, that model loses a lot of functionality. Applications rarely put the entire data on the clipboard - they write a stub there and wait for the paste operation, when they dump in the data in the format requested by the app that is receiving it. If you have to write your clipboard model so that you need to put every conceivable format on the clipboard then you seriously reduce your system's usability.
Essentially, security and usability are often at odds and you need to chose one over the other. That's just a fact of life that extends way beyond computer systems.
This is actually the good side to the Trusted Platform Module - you can set up your machine to refuse to boot, warn you, whatever if anything in the boot process changes. As it's implemented in BIOS with hashing of the boot process before it even loads it from disk, there's no real way around this short of having physical access to the machine and turning off the TPM.
The bad side of the TPM is when you lose control of it - then the machine isn't yours any more but the xxAA's.
I think the primary concern is, what happens to a distro like MEPIS? Do they need to retain a full and publically available source repository for every package in Ubuntu? That could be an administrative and financial drain.
There is no requirement to have the source instantly available online. It is perfectly acceptable to simply present a written offer of the source code for a nominal handling fee on physical media such as DVD-R. This will eliminate most of the people who just want the code to annoy you rather than do something serious with it.
Re:Mil Grade Crypto... IS defined :-P
on
PGP & GPG
·
· Score: 1
It's not really the crypto algorithm that makes military grade crypto "military grade". It's how they implement key exchange and management.
Slashdot Mirror
Hibernate incurs the full POST cycle when you start back up (the machine is completely off and has to boot from scratch remember). This loses a decent amount of time. Sleep can wake up in under a second on some machines I've used.
When you Hibernate, the machine *is* off. It writes the memory out to disk and physically turns off all power to the machine. The only difference is the startup time and the fact you can resume everything where you left off. The fact that resuming from Hibernation shows a BIOS boot screen should have clued you in on this.
When you Sleep, theoretically only the memory has power. This isn't quite true (some power is pushed around so you can detect wake events), but is close enough.
The reason people use sleep and hibernate is to save electricity. As machines draw more and more power, you realize more and more cost savings as you let the machines power down when not in use. Whether the cost saving matches the wear and tear inflicted by spin up/spin down cycles is another question.
Hadn't seen that one before, but a quick look seems to indicate it's one hellishly obnoxious piece of code, almost rivalling StarForce. I'm sure it will play merry hell with Linux and even Vista where syscall hooking is a great way to crash the OS. Thanks for the link.
Sony (at least SoE) doesn't have a "warden" process snooping around your computer looking for third party programs. They polled the user base about 5 years ago on this idea and got a resounding "f'off" response, so have never gone back to trying to monitor the other programs running on your PC at the time.
I don't get how Blizzard is the "good guys" for apologizing when their own snoop program returned a false positive, when they remain completely unrepentant for the fact their process deliberately fishes around the PC for things that may be totally unrelated to the game. That's not classy - that's just apologizing for getting caught.
Of course, if you meant Sony's rootkit fiasco then at least Sony recalled the rootkit. Blizzard is still running the warden last I looked.
You're correct. Now think about how much time you must have spent looking at x86 assembly to know that sequence of hex digits off by heart. ;)
I believe you're thinking about something different. The stuff he was talking about in those links has to do with the web page that shows when you click on them, not the bookmarks you can make.
Here: http://www.chase.net.au/images/ie7rss.png
Picture is worth a thousand words. Look at the box on the top right.
Yep. I was wrong (and they also changed the price point). Do you want me to show you the number of times "Anonymous Coward" was wrong?
IE7 lets you treat the lists as searchable tables that you can order or filter on fields in the XML. All the other browsers just show the lists as a plain non-interactive web page.
Your point misses the mark because you are misunderstanding the purpose of signing, and misunderstand what's happening:
i) The Windows Logo Program means Microsoft is signing off on a driver saying it's safe to run. This is just something that is a marketing bullet and isn't something required for the system to load the driver.
ii) The driver signing program allows anyone to sign the driver if they've ponied up the cash and identification requirements. It is NOT an indication the driver is safe, but it is an indication that you know who made the driver. Remember, if you really want to trust "Bill's Backdoors" as a software company that produces drivers then it's perfectly within your rights to do so and Microsoft isn't about to try to stop you. All they are doing here is making sure that the people writing drivers are actually signing their name to them.
They whole "eBay" thing is silly because of the levels of identification you need to go through to get the certificate in the first place, only to have it revoked on the next update Vista pulls down from the web. You don't see code signing certs on eBay now, what makes you think they'll be up there when Vista releases given nothing is actually changing in the certificate infrastructure?
It's exactly the same level of security you get in signed Java applications, or https, or any number of public key schemes on the internet now. You're just overdramatizing the possibilities.
Actually, the Windows system (MSI) is very much like the Debian system - it's all an opt-in thing that only works if you use the installer for everything you do. The MSI system keeps reference counts on all your shared libraries, makes sure directories are cleaned up on uninstall and manages pretty much everything else you can think of too.
However, if you choose to install stuff OUTSIDE the MSI system then it's the same as installing stuff outside the Debian package system - you end up with problems when Debian thinks that there's nothing using a library when that program (call it "Oracle" for instance) which you use every day suddenly can't find a library.
What you're noticing though is there's a lot more stuff outside the package system in Windows than there is in Linux. As Linux gets more popular and more closed source third party apps start running around with their own custom installers, you'll see it developing much the same problems in library management that Windows does.
The one thing Unix in general does better than Windows is unlink() works on files in use, while Windows makes you reboot.
The process to get a key accepted by the kernel is simple. You go to Verisign and get a Class 3 code signing cert. You give that cert to Microsoft. They give you a cert signed by their CA that the Vista kernel will accept. You can then sign whatever code you want with that cert and Vista will load it.
The drivers don't have to be signed by Microsoft's private key (I don't know where people keep getting this idea from - it's never been the case). They have to be signed by any third party that has a key that has Microsoft's key as their root CA - in short, third parties can sign their own drivers so long as they've shelled out the $300 for a Verisign key and then gone to MS as asked for a driver signing key.
You can turn off the driver signing requirement using a boot switch. This is necessary for driver development.
It is actually a good idea for a kernel to have some verification of code that it loads into kernel space. As long as the user has a method to actively turn the verification off (which they do) then it's not such a bad thing as you're making out.
Sysadmins can read everyone's email!!?? Wow - what else will they find out? Can't wait to see the furor when someone discovers HR's DBAs can see everyone's salary!
Idiots - of course sysadmins can read everyone's email. This is why you should take care in hiring them.
In the absence of external influence (ie China and South Korea) that solution may be a good one. The problem is neither China or SK want the North to collapse because it floods them with refugees that they can't afford. Hence, any direct action from the US onto North Korea brings the US into an indirect confrontation with China - which is something we are unlikely to come out of economically even if we win militarily.
So, the solution is to just tell China he's their problem and make North Korea aware that any aggressive act outside their own borders will be met with megatons for kilotons. It's called YAD - like MAD but with 'your' instead of 'mutually'.
It has nothing to do with memory bandwidth or use. The ASIC is about 1000 times faster than the CPU because it is using dedicated hardware designed to run very fast and parallel in 3D image processing, which is almost exactly the same problem as folding protiens.
Unless you are saying all CPUs are pegged at 99.9% use, or the GPU has memory three orders of magnitude faster then you're just looking at a effects that make a few percent difference here and there. The simple fact is the GPU is insanely faster at solving specific problems (3D processing) while it simply cannot ever run an operating system.
If we run around telling him he didn't really explode a nuke then it's only incentive for him to try again. Far better to pat him on the head and pretend it was the world's most wildly successful nuke test and get down to the business of what to do about it.
The problem is, it's short sentences like that which will be the most common scenario. Take others going to Arabic and back using Google:
"I surrender. What do you want me to do?" double translates to "No surrender. Why do you want to do?" (that's gonna be useful)
"We will not harm you" double translates to "You will not harm" (interesting it mixes the subject so often)
"Put your gun down" double translates to "Put your development Venice". (Helpful)
Remember, all of these are before any errors that Viavoice introduces in actually recognizing what is being spoken on the English side, and the response on the arabic side.
That's exactly what becoming a parent means. You are RESPONSIBLE for your child's behavior until they are legally responsible for themselves. If you can't cope with that then you shouldn't become a parent.
This isn't stupid, it's reality. The message about personal responsibility is supposed to be driven from the parents to the children, so if the parents let the kids get away with stuff then I have no sympathy when the bratty child gets the parents in trouble.
Typically the difference is a code-signing certificate that is signed by Microsoft. If rootkit.com forks out the $300 or so required to get one then there's no difference at all.
Of course, the first bug in a signed driver that allows unsigned code to be loaded into the kernel is a class break for the entire system. It sounds like in typical corporate fashion that Microsoft has been working hard to inconvenience lawful customers while doing little to stop the people who are deliberately unlawful.
The Enterprise licensing operates differently. Apparently you install a licensing server at your business and point the clients to that rather than pointing at Microsoft's servers.
And there is the obvious weakness.
Lies!
Liquid cooling is never overdoing it, wait until you see my 500gph water cooled iPod!
Actually, that model loses a lot of functionality. Applications rarely put the entire data on the clipboard - they write a stub there and wait for the paste operation, when they dump in the data in the format requested by the app that is receiving it. If you have to write your clipboard model so that you need to put every conceivable format on the clipboard then you seriously reduce your system's usability.
Essentially, security and usability are often at odds and you need to chose one over the other. That's just a fact of life that extends way beyond computer systems.
This is actually the good side to the Trusted Platform Module - you can set up your machine to refuse to boot, warn you, whatever if anything in the boot process changes. As it's implemented in BIOS with hashing of the boot process before it even loads it from disk, there's no real way around this short of having physical access to the machine and turning off the TPM.
The bad side of the TPM is when you lose control of it - then the machine isn't yours any more but the xxAA's.
There is no requirement to have the source instantly available online. It is perfectly acceptable to simply present a written offer of the source code for a nominal handling fee on physical media such as DVD-R. This will eliminate most of the people who just want the code to annoy you rather than do something serious with it.
It's not really the crypto algorithm that makes military grade crypto "military grade". It's how they implement key exchange and management.