Sure, just show the evil ISP by forgoing Internet, right? Because the local government has seen fit to grant a monopoly to a certain corporation and will back up threats against would-be competitors with force.
It's the interplay between corporations and government that is the real danger. Corporations are creations of government, so you get positive feedback loops, legislation that strongly favors incumbents of new market entrants, regulatory capture, etc.
There's a good reason that the US did without corporations for close to a hundred years (except for short charters for public good) - they had proven dangerous to liberty under the European empires. Rockefeller/Standard Oil got that changed, and then not too long after in Santa Clara they got granted human rights, and such became immortal superbeings in the view of government.
They can have some positive benefits, but are they really worth it, on balance?
I don't want ISPs to ever be allowed to block any content, cripple any protocols, or artificially slow down any kind of traffic beyond whatever is necessary to ensure reliable service for all customers alike.
Neither does nearly anybody else. In a real market, the likes of Comcast's blocking would be quickly eliminated by competition. The problem is the governments grant monopolies, forcing certain corporations upon pockets of citizenry.
So, we need to stop patching bad law with more bad law and start fixing root-cause problems.
Despite the complaints against him and requests specifically to hire me on, the department chair kept the incumbent.
Well then maybe the department chair will think twice next time before he stores those photos of himself quicksorting that trollup on the department fileserver.
No sense of time passing, just one moment in the OR and then the next moment I'm in the recovery room.
That's only partially true. The conscious, 'higher' part of your mind does not remember or experience - the anaesthesia effectively turns it off, that's what they're designed to do.
But other parts of your brain, somewhat lower in evolutionary stature, are going, "holy fucking shit, my chest just got ripped open!" and it has its own sort of memory that is formed, sometimes experiencing intense trauma for hours. I've watched open heart surgery from the balcony, it's brutal.
Some people come out of it permanently altered, personality-wise. It's being likened to PTSD and it increases recovery times. Some people don't seem to have this effect, I don't think we yet know why.
US Army medical is pioneering this field, and recommends soldiers getting significant surgery get both the spinal and general. From a utilitarian perspective they're saving costs and getting soldiers back in the field faster, but that's the funding case, it's good research with wide-ranging positive benefits. NPR did a good story about it a couple years back.
getting traffic courts into income statements is a whole other level of hell, but... based on the assessed value of the vehicle involved in the incident - this may have merit.
So, I've written a few small apps that use OpenGL, but I must say they're quite bad and I don't really get OpenGL.
Does anybody have a good/favorite reference? I've got the official book and downloaded several online tutorials, but I'd prefer something along the lines of "Thinking in Java"(etc.) that doesn't focus on the API as much as the concepts.
I can look at code all day to see 'how' but often 'why' is much more instructive.
Streaming seems to have turned them into a negotiating machine that gives the studios what they want at the expense of the Netflix customer.
WB must be giving them a massive discount on discs to do this. In theory they can parley that savings into better customer experience in other ways, maybe first-run WB content on streaming.
Your scanning technology would need to be able to sense very small volumes of ink.
Maybe not. If you do something like a spiral CT, perhaps at multiple angles, you might be able to build a 3d volumetric model based solely on the statistical interpretation of the data points. Along a given ray you know the ink density, and if there are enough rays you could figure out the real possible solutions.
a) the bacteria has nothing to do with the taste. b) everybody who drinks soda drinks fountain sodas and problems are not wide-spread (though plausibly acute). c) we don't clean soda fountains with antibiotics, we use bleach and other destructive cleaners. Antibiotic resistance reflects the general population of bacteria, nothing to do with soda fountains specifically.
Visitors should be aware of Singapore's strict laws and penalties for a variety of actions that might not be illegal or might be considered minor offenses in the United States. These include jaywalking, littering and spitting. Singapore has a mandatory caning sentence for vandalism offenses. Caning may also be imposed for immigration violations and other offenses. Commercial disputes that may be handled as civil suits in the United States can escalate to criminal cases in Singapore and may result in heavy fines and prison sentences.
Just like how it has been working so well for oil, copper, gold, pretty much anything else we dig up from the ground or a mountain?
Aside from short-term fluctuations, things like the price of gold don't really go up, in real terms. Fake currencies certainly lose value relative to them, though.
Sure, you use something like racing sails are made from - kevlar laminated with various thin plastics. Very light, darn-near impossible to tear.
I'd guess that with such a large area, the wind speed through the greenhouse would be relatively low.
Good point on the weight - the large windmill turbines are 7MW, so such a tower would need to support a baker's dozen. But a regular steel windmill tower can support one of them, so if you had three towers, maybe a composite material, that should be possible.
Well, that's what I get for reading the summary more carefully than the article.:P
Looking at some rough pricing on Alibaba, a square mile of polycarbonate ought to cost about 3.3 million dollars for the ready-to-site-form material. That leaves plenty of budget to build the factory to make the sheets and hire the workers. Of course, that needs to sit on a frame (aluminum?) and it all needs to be assembled. Even at 10x, there still seems to be an order of magnitude problem.
I constantly run into people screwing stuff up because they get lost in the logic of stuff like "if this is part of that group but not contained in this set".
BTDT. Practice is probably important too. I once needed to write a 'like google' search parser, and the first one wasn't at all right. Then I stopped to think about it properly and it wasn't really all that hard.
The KLVY mast is just as tall. $500K in 1960 dollars is about $4M in today's dollars. I'd have guessed that you could build three of those and wrap them in plastic, with a turbine suspended among them. Greenhouses aren't millions of dollars per acre - using the half-assed technique I used to build my greenhouse the plastic sheeting (10-year polycarbonate) would cost under $150K/acre. And they'd be really dumb to buy it from Home Depot (I learned everybody is dumb to use the special order desk at Home Depot).
Maybe their plans are engineered for very-long-term quality. It would probably be easier to get funding for $25M towers which can start making a profit after a few years, though.
Disclaiemr: I have no idea what I'm talking about.
First off, private addresses are NOT unroutable, they just happen to be dropped on their way through your ISP (if they do their job properly)
I drop them at my firewall too.
Just try a traceroute to a private address and see how far the trace gets. (And try it from a public traceroute server;)
If a public traceroute server is tracing to a private block, it won't be my private block, but some other use of the same range.
Try putting a server on the other side of your beloved NAT and you might just discover that you can ping into your private network.
Most devices that do NAT would have to be specifically configured to allow this, by default they have an inbound deny rule. Even if they do, you've lowered your attack surface to things local to your ISP's router.
Second, even if this works as advertised it does not pose any great advantage over a stateful firewall.
Say I have 200 PC's behind a NAT box. Six of them have remote vulnerabilities. How can somebody in North Korea exploit those?
To the contrary, NAT not only tends to fuck up many L4 protocols
Quite true. That's not contrary to security, though, it's a separate problem.
but also introduces a complexity in address rewriting and therefore might introduce a whole bunch of security issues on its own.
That's plausible. Do you happen to know of any examples?
The third problem is the NAT admin's typical mentality... which goes so against any security reasoning.
Quite so. But that doesn't mean NAT doesn't add to the total security.
Such an admin will then be horrified by the mere thought of having IPv6, since that would put all of his naked boxes right on the evil Internet without the condom of NAT, OMG!
And IPv6 has an abysmal adoption rate...
Most client boxes run absolutely no services (maybe ssh), even windows can have a great deal of its server capability disabled.
When you say 'most', Windows is usually what exists as 'most'.
Further, service exploits were the music of the early 2000's, by now almost all of the services can withstand direct exposure to the Internet (with the exception of silly newcomers)
That's not so. Nearly every month, on Patch Tuesday, Microsoft puts out a bulletin about new exploits available to remote unauthenticated users. Go check out the US CERT archive to see for yourself.
The real security threat comes from outbound connections, people going to nasty sites, or people going to legit sites (banks) with silly passwords, flipped staff, and so on and so on.
"A very large security threat". Absolutely. That doesn't mean remote exploits are no longer a problem. Check our your Snort logs - people don't just do that because they feel like wasting bandwidth.
The NAT device that my mother was using defaulted to automatically forwarding all inbound connections to the first machine to appear on the network.
What kind of device was it? I've worked with dozens and have never seen this setup, unless you configure a 'DMZ' port. Was it a DSL modem, perhaps? Some of them are just scary-awful.
A stateful firewall almost invariably has a default deny policy on the hostile side. Nothing outside can initiate a connection to anything inside unless you explicitly open the port. NAT has nothing to do with this. NAT is just address and port mapping. It's a mechanism. The policy is orthogonal.
Normal NAT setups are 1-to-many IP sharing and are configured as such even with one device behind it. A random inbound connection has no forward rule in place because an outbound connection was never made.
Port 1234 on device 192.168.4.99 has a remotely exploitable security hole. It's behind a shared-IP NAT (PAT in Cisco parlance). How does a cracker in N. Korea casually exploit it?
Sure, just show the evil ISP by forgoing Internet, right? Because the local government has seen fit to grant a monopoly to a certain corporation and will back up threats against would-be competitors with force.
It's the interplay between corporations and government that is the real danger. Corporations are creations of government, so you get positive feedback loops, legislation that strongly favors incumbents of new market entrants, regulatory capture, etc.
There's a good reason that the US did without corporations for close to a hundred years (except for short charters for public good) - they had proven dangerous to liberty under the European empires. Rockefeller/Standard Oil got that changed, and then not too long after in Santa Clara they got granted human rights, and such became immortal superbeings in the view of government.
They can have some positive benefits, but are they really worth it, on balance?
I don't want ISPs to ever be allowed to block any content, cripple any protocols, or artificially slow down any kind of traffic beyond whatever is necessary to ensure reliable service for all customers alike.
Neither does nearly anybody else. In a real market, the likes of Comcast's blocking would be quickly eliminated by competition. The problem is the governments grant monopolies, forcing certain corporations upon pockets of citizenry.
So, we need to stop patching bad law with more bad law and start fixing root-cause problems.
Despite the complaints against him and requests specifically to hire me on, the department chair kept the incumbent.
Well then maybe the department chair will think twice next time before he stores those photos of himself quicksorting that trollup on the department fileserver.
No sense of time passing, just one moment in the OR and then the next moment I'm in the recovery room.
That's only partially true. The conscious, 'higher' part of your mind does not remember or experience - the anaesthesia effectively turns it off, that's what they're designed to do.
But other parts of your brain, somewhat lower in evolutionary stature, are going, "holy fucking shit, my chest just got ripped open!" and it has its own sort of memory that is formed, sometimes experiencing intense trauma for hours. I've watched open heart surgery from the balcony, it's brutal.
Some people come out of it permanently altered, personality-wise. It's being likened to PTSD and it increases recovery times. Some people don't seem to have this effect, I don't think we yet know why.
US Army medical is pioneering this field, and recommends soldiers getting significant surgery get both the spinal and general. From a utilitarian perspective they're saving costs and getting soldiers back in the field faster, but that's the funding case, it's good research with wide-ranging positive benefits. NPR did a good story about it a couple years back.
getting traffic courts into income statements is a whole other level of hell, but ... based on the assessed value of the vehicle involved in the incident - this may have merit.
But I thought the days of lobbyists drafting legislation behind closed doors ended on 20 January 2009?
Yeah, and the entire healthcare debate and negotiations will be aired on CSPAN... meet the new boss, same as the old boss.
Wouldn't it be nice if we lived in that world where nothing ever broke down and all roads were straight.
5) DirectX was easy to pick up
So, I've written a few small apps that use OpenGL, but I must say they're quite bad and I don't really get OpenGL.
Does anybody have a good/favorite reference? I've got the official book and downloaded several online tutorials, but I'd prefer something along the lines of "Thinking in Java"(etc.) that doesn't focus on the API as much as the concepts.
I can look at code all day to see 'how' but often 'why' is much more instructive.
and for not being buddies with the landlord
ah, yes, there's always corruption, the biggest drain on a society.
WB must be giving them a massive discount on discs to do this. In theory they can parley that savings into better customer experience in other ways, maybe first-run WB content on streaming.
Damn kids, get off my Syquest cart!
Maybe not. If you do something like a spiral CT, perhaps at multiple angles, you might be able to build a 3d volumetric model based solely on the statistical interpretation of the data points. Along a given ray you know the ink density, and if there are enough rays you could figure out the real possible solutions.
a) the bacteria has nothing to do with the taste.
b) everybody who drinks soda drinks fountain sodas and problems are not wide-spread (though plausibly acute).
c) we don't clean soda fountains with antibiotics, we use bleach and other destructive cleaners. Antibiotic resistance reflects the general population of bacteria, nothing to do with soda fountains specifically.
From US State dep't:
Just like how it has been working so well for oil, copper, gold, pretty much anything else we dig up from the ground or a mountain?
Aside from short-term fluctuations, things like the price of gold don't really go up, in real terms. Fake currencies certainly lose value relative to them, though.
See here: http://www.kitco.com/LFgif/au883-999.gif
Sure, you use something like racing sails are made from - kevlar laminated with various thin plastics. Very light, darn-near impossible to tear.
I'd guess that with such a large area, the wind speed through the greenhouse would be relatively low.
Good point on the weight - the large windmill turbines are 7MW, so such a tower would need to support a baker's dozen. But a regular steel windmill tower can support one of them, so if you had three towers, maybe a composite material, that should be possible.
Well, that's what I get for reading the summary more carefully than the article. :P
Looking at some rough pricing on Alibaba, a square mile of polycarbonate ought to cost about 3.3 million dollars for the ready-to-site-form material. That leaves plenty of budget to build the factory to make the sheets and hire the workers. Of course, that needs to sit on a frame (aluminum?) and it all needs to be assembled. Even at 10x, there still seems to be an order of magnitude problem.
BTDT. Practice is probably important too. I once needed to write a 'like google' search parser, and the first one wasn't at all right. Then I stopped to think about it properly and it wasn't really all that hard.
You took a wrong turn past the Economics Department and wound up at Political Science.
They've figured out how to turn water and junk petroleum wax into gold. What's the problem here?
$750M for both, or $375M each, eh?
The KLVY mast is just as tall. $500K in 1960 dollars is about $4M in today's dollars. I'd have guessed that you could build three of those and wrap them in plastic, with a turbine suspended among them. Greenhouses aren't millions of dollars per acre - using the half-assed technique I used to build my greenhouse the plastic sheeting (10-year polycarbonate) would cost under $150K/acre. And they'd be really dumb to buy it from Home Depot (I learned everybody is dumb to use the special order desk at Home Depot).
Maybe their plans are engineered for very-long-term quality. It would probably be easier to get funding for $25M towers which can start making a profit after a few years, though.
Disclaiemr: I have no idea what I'm talking about.
Well, if the router config still has the default password, he logs into the router and modifies the firewall to allow access to what he wants.
No, you can't log into a consumer-grade NAT/firewall via the public interface, you have to be on a local interface.
That's what milw0rm 9209 was about, an XSS exploit to avoid this most basic of protections.
Bah. You just gotta love that attitude.
It's terrible, yet it's pervasive.
First off, private addresses are NOT unroutable, they just happen to be dropped on their way through your ISP (if they do their job properly)
I drop them at my firewall too.
Just try a traceroute to a private address and see how far the trace gets. (And try it from a public traceroute server ;)
If a public traceroute server is tracing to a private block, it won't be my private block, but some other use of the same range.
Try putting a server on the other side of your beloved NAT and you might just discover that you can ping into your private network.
Most devices that do NAT would have to be specifically configured to allow this, by default they have an inbound deny rule. Even if they do, you've lowered your attack surface to things local to your ISP's router.
Second, even if this works as advertised it does not pose any great advantage over a stateful firewall.
Say I have 200 PC's behind a NAT box. Six of them have remote vulnerabilities. How can somebody in North Korea exploit those?
To the contrary, NAT not only tends to fuck up many L4 protocols
Quite true. That's not contrary to security, though, it's a separate problem.
but also introduces a complexity in address rewriting and therefore might introduce a whole bunch of security issues on its own.
That's plausible. Do you happen to know of any examples?
The third problem is the NAT admin's typical mentality ... which goes so against any security reasoning.
Quite so. But that doesn't mean NAT doesn't add to the total security.
Such an admin will then be horrified by the mere thought of having IPv6, since that would put all of his naked boxes right on the evil Internet without the condom of NAT, OMG!
And IPv6 has an abysmal adoption rate...
Most client boxes run absolutely no services (maybe ssh), even windows can have a great deal of its server capability disabled.
When you say 'most', Windows is usually what exists as 'most'.
Further, service exploits were the music of the early 2000's, by now almost all of the services can withstand direct exposure to the Internet (with the exception of silly newcomers)
That's not so. Nearly every month, on Patch Tuesday, Microsoft puts out a bulletin about new exploits available to remote unauthenticated users. Go check out the US CERT archive to see for yourself.
The real security threat comes from outbound connections, people going to nasty sites, or people going to legit sites (banks) with silly passwords, flipped staff, and so on and so on.
"A very large security threat". Absolutely. That doesn't mean remote exploits are no longer a problem. Check our your Snort logs - people don't just do that because they feel like wasting bandwidth.
The NAT device that my mother was using defaulted to automatically forwarding all inbound connections to the first machine to appear on the network.
What kind of device was it? I've worked with dozens and have never seen this setup, unless you configure a 'DMZ' port. Was it a DSL modem, perhaps? Some of them are just scary-awful.
A stateful firewall almost invariably has a default deny policy on the hostile side. Nothing outside can initiate a connection to anything inside unless you explicitly open the port. NAT has nothing to do with this. NAT is just address and port mapping. It's a mechanism. The policy is orthogonal.
Normal NAT setups are 1-to-many IP sharing and are configured as such even with one device behind it. A random inbound connection has no forward rule in place because an outbound connection was never made.
Time for an example.
Port 1234 on device 192.168.4.99 has a remotely exploitable security hole. It's behind a shared-IP NAT (PAT in Cisco parlance). How does a cracker in N. Korea casually exploit it?