You know most air conditiones cycle don't you? This means it runs for 5 minutes and then off for a few while the coils warm up enough so they don't ice up. If your computer is going to cook without 5 minutes of cooling, don't try this at home.
Static from the high speed air flows you get from compressed air can kill electronics. Don't do this on a day when your going to get zapped everytime you touch a door knob. A good rainy day is best.
You must be root to bind to any port <1024 as a form of "security" however this stupid rule has been the way in for most internet based security problems in the Unix world. Some systems (like Soalris) allow you to turn it off and that lets any process bind to any port but that has issues as well.
The correct solution is you let a process bind to any port >1024 and any port where the port number is in its group list. This means you put apache process owner in group 80 and 443 and then it can bind it its needed ports no matter who it runs as. Wiht the linux 2.0 kernal this required changing some of one line.
As far as the other problem of becoming someone else, there are no clean solutions to that but I think it would make sense to allow any process id 10 to become someone else. You also need to allow for some id's to give away files. The problem with this is that it intoduces magic numbers into the system which is bad.
Based in this, you could set up the ssh user as uid 1 in group 22 and it could bind to port 22 and then become any other user (or maybe any userid > 100). Bind would be running as user 53 with group 53 and have no special privs. The Apache user id would be in group 80 & 433 and its version of suexec would be uid 2 so it could change ownership to any user > 100 to run their cgis.
I can't count how many times a Kiwi have give me the wrong change because the Aussie $2 coin is smaller than the $1 while the Kiwi $2 is larger than the $1 coin. Unless the US picks a color scheme that is the same as most of the rest of the world, there will continue to be confusion. Maybe if they pick the same colors as the Euro$, they will confuse less people.
Its interesting that the AU$.2 coin is about the same as the NZ$.2 coin and seem to be interchangable (but I am seeing fewer of them these days)
About 4 out of 5 dns queries you do will hit vixies's box.
A few years ago some scrip kiddies decided they were going to take out Paul. At the time he was running a major chunk of the peering points (was it MAE or CIX? I don't remember...). Aparently some of the leaders of the script kiddies found out that you don't hit people with much more bandwidth than you've got. At that time Vixie may have had more bandwidth than god.
There are just some people on the net you can't screw with.
From what I've seen of Paul Vixie, he seems to convince many people that he has a bit of an ego issue. He also may be a control freak. I don't have a problem with either since 1) he runs the most hit DNS server in the world and its rock solid and 2) he's damn good and I don't see as an ego problem since he seems to be backing it up with a track record involving reality.
If he wants to play politcal games, I figure good luck to him. Its not his strong point but maybe he can get.org back to something other than dot com crapolla.
Ok so someone figures out how to put phone call data over ip. I'm still looking for someone that has a clue and isn't going to make the excessivly difficult. I currently have two 3com NBX100 (with only a small part GNU code but you can't get source even though they link it all together). These things are 486 boxes (that will boot linux!) that run a complete crap Os/custom app. I've got a cyclades pr4000 but they can't seem to figure out how to dump an analog call into a socket. I can do it fine on a cisco 5200 or a 2600 but not the only device I've got hooked up to a E1 (read T1 for the north american folks). They cyclades people came up with some lame ass excuse that "we figured people wanted "standards" which we couldn't do so we fucked it off. How lame. Oh well, its the last cyclades box I buy unless they seriously get ther act together...
I can take most of the devices that I've got that hook to decent phone lines and if I get a 64kbit data stream in (aka a phone call), I can dump it to a port. That port can dump audio out in ISDN format (mulaw or alaw depending on its place in the world) and the callie can get a nice message of "press 1 to do splat and press two for garfarbinsplat". Its trival to do an fft that can figure out which touchtone they are pressing and then I can cope with it in one of seval ways. All of this just by redirecting any call taffic to a tcp port on a linux box. Funny thing is I have yet to take advntage of any call set up or three way calling features in this code. It jusst answers the phone, plays back.wav files and figures out which buttons the press. Funny thing is I forgot all about h323 or h3 or any other protcolo but it does work. Maybe I sould got buy a few books on voip to find out how to do this right.
My sparc 1 thats now 13 years old has a bios that has network access and forth. It lets me boot remotely or write programs to reprogram the cmos after the battery dies.
with point to multi-point? To get good reception through the trees, you have to enough power that the stray signal will go at least 5km if not 25km. Since they are transmitting many bits per frequency cycle, they can't deal with too much noise. This is what killed the large rollouts in the US. 3.5 is line of sight to have it work but its interfeerance is near line of sight. One reason that the 3.5 band is mostly empty is the strange characteristics of the frequency.
Australia has about the same problems as the US. Syndney and Melbourne are large cities in both population and size. Melbourne covers an area about the size of LA but has more people than Chicago. Sydney isn't as spread out but there are more people. This results in needing to cover huge areas and some are very high density while others are quite low. Once you get out of the major cities, the population density goes way down. The power requirements for 2.4 are about the same as in the US (but different just to make life fun for importers) but you end up with more people attempting to run long runs since telecom expenses are way out of hand.
They intend to offer voice and data in mostly the same areas that you can get adsl and optus (cable tv, cable phone, cable internet). They will be going after the holes left by the other players and the newer urban areas.
3.5Ghz sucks when you get too many people in a an area. Most places max out with about 6000 real broadband users. Some places went upto 18,000. Now figure spending 100 million for 18,000 in two major markets and three minor markets, whats the payoff on this. They also will be offering service that is slower than current adsl.
The good thing is it will keep Telstra from increasing rates until they buy these guys out. Telstra just happens to be doing something with Unwired Australia but I'm not sure what. That assumes that Telstra won't plop down a few dslams to take these people out of the picture. I figure Telstra can drop 1.5/256/1G ADLS service down to about AU$15/mo and still cover their technology and upstream costs.
Have you considered why they want to kill you? You can go into a bad area and find people that want to kill you--maybe for just wearing the wrong colors. You can even find people on the highways that want to kill you. (even more likly if you drive a SUV).
In the Real World [tm], if your doing something that pisses off someone else so much that they want to kill you, you have options 1) stop doing whats pissing them off or 2) avoid them. Most people learn about this when their brothers or sisters annoy the hell out of them. Its part of the learning process for normal children.
If the US made SUV's illegal (and anything else that got worse than 27mpg) illegal to use for noncomerical use, the US could ignore all the oil problems in the middle east forever. That means no more spending hundreds of billions to peace in the area. Just let it go and ignore it. But theres thouse pesky sports utility cars.
I live 15 minutes from Downtown DC. How would you react if one of these could go off in your backyard?
It wouldn't be the first time. The US has dumped lots of radioactive junk on the American plublic just to see how it turns out. Only about 5 years ago they found out a test in St Louis caused lots of birth defects. The tests were done in several cities.
The french keep tring nuke even more of Polynesia.
Hey, I'm not an aussie, I just got this info from the Pommies that work (illegally) for the electrial people. I just report what I've been lead to understand is th truth. Too bad its not the truth. Just because I get lots of nasty letters about not voting, I'm still not allowed (or obligated) to put the numbers down.
I tend to watch the US$/AU$ exchange rate and I find it funny to see how the US traders treat news with the Liberal party. In gneraly when they do things the US Republican party way, they AU$ should rise aginst the US$. However if they party is mentioned the rate goes the other way. When the Rebublican party (the people that want to tell the queen to take a hike) get news, that sometimes would raise the AU$. Anytime the labor party does something the AU$ drops.
I wonder how high the AU$ would go if one of the major parties (Labor or Liberals) would change ther name to the Republican party.
But you did vote for them (if you filled out the paper work corrctly).
Aussies have to go vote or they get fined. They have this list of canidates and they have to put numbers down for each of them. If there are ten canidates, they have to rank them all one to ten where 1 is your preferred and ten is least preferred -- or is it the other way around. If you don't put all the numbers in, your vote isn't counted. The result is that you vote for everyone at some level and with canidates like the skinhead party and too may others deserving a 0, you have to give someone you don't like a positive vote.
The elections dates are already called by the party in power so that puts things massivly in their favor.
At the S11 protests in Melbourne a few years ago, there was no way the police would have been able to stop an angry mob. They had just about every cop they could find in the state. It took them about a half hour to resuce on of the morons from his car who tried to drive through the mob. There were people in the crowed that were prepaired to rush the police and take their stores of riot gear should things turn ugly. If any one of the large unions get mad and stormed parlment, there isn't anything the guards could do other than shoot a few of them. The unions routinely have large prostest within three blocks of the parelment building. Guns would not be needed to put the state govement up aginst the wall. That would imply that the local goverment does have a real security issue and they will fight to fix it. Lucky for them most people don't care what the goverment does.
So is this like the system in Singapore?
on
Hong Kong's Octopus
·
· Score: 3, Insightful
The Signapore goverment has a system that has been cracked wide open. Its not a major problem because if you get caught, your in jail for decades and can never get a job. The result is most of the people who have the ability to casually hack the system aren't about to even try.
Once cool thing with these (and Mondex) is that if you lose the card, someone else keeps the cash. Anyone who has ever worked in a student ID office or drivers license department can tell you how offten people lose these things.
So far no one has built a smart card that has enough grunt to do real hard crypto in a reasonable about of time while making the chip so it can't be inspected in a way to find out its secrets. We have a long way to go before someone comes up with a contactless card that can do a transaction faster than two people who are good at handling cash.
Re:It's not as bad as the post says.
on
Hong Kong's Octopus
·
· Score: 2, Informative
The good senators from Illinois are the ones keeping the penny alive. They have some sentimental thing going on with Lincoln and they step in everytime anyone gets serious about killing the penny. The only way the mint will get around this problem is to make a $2 coin with Lincoln on it. They have to reserve the $1 for Washinton when they drop the paper dollar except for some limited edition ones but that will cause even more of a political problem.
If Global crossing goes bust, then other compaines will pick up their load and that may just get more of the traffic from Asia to Europe to flow around the other way and not through the US like it does now. Its much easier to tap at MAE-West than it is in some place like off the cost of Inida.
You understand that some of us edit live binaries don't you?
For example I've got a 3com nbx 100 system. Its closed source (mostly, 'cept for a few things that got linked in). They won't tell me what I want to know so I find out. For example, its password decryption stuff. I need to be able to have an automated program go tell me how much voice mail everyone has and the easy way is use IMAP and their password. Thats kept in a file that I can grab and now I can decode it. Some of the dealers don't like calling 3com to find out how to reset a master password so I wrote up some script kiddie like instructions. They only work if you have physical access to the device and a way to talk to a serial port so it won't compromise the security of the device. If you were going to crack this thing, you would most likly brute force the password since the user id is forced to be "administrator" and the default password can be entered on a phone. A 4 line perl program calling lynx will open it quite nicely.
I've see quite a few $60,000 planes with more than a quarter million dollars worth of gear installed in their dash. A good NAV/COM radio will set you back 4 to 8 grand. A stromscope will go for at least 20k. Considering most of the general aviaion aircraft that are now flying were purchased for less than $20,000 its going to be quite hard to get thier owners to put in a expensive gear. The major expense of typical Cessna purchased used 15 years ago is the replacement engines and they are about 20 grand and last almost 2000 hours.
You know most air conditiones cycle don't you? This means it runs for 5 minutes and then off for a few while the coils warm up enough so they don't ice up. If your computer is going to cook without 5 minutes of cooling, don't try this at home.
Static from the high speed air flows you get from compressed air can kill electronics. Don't do this on a day when your going to get zapped everytime you touch a door knob. A good rainy day is best.
You must be root to bind to any port <1024 as a form of "security" however this stupid rule has been the way in for most internet based security problems in the Unix world. Some systems (like Soalris) allow you to turn it off and that lets any process bind to any port but that has issues as well.
The correct solution is you let a process bind to any port >1024 and any port where the port number is in its group list. This means you put apache process owner in group 80 and 443 and then it can bind it its needed ports no matter who it runs as. Wiht the linux 2.0 kernal this required changing some of one line.
As far as the other problem of becoming someone else, there are no clean solutions to that but I think it would make sense to allow any process id 10 to become someone else. You also need to allow for some id's to give away files. The problem with this is that it intoduces magic numbers into the system which is bad.
Based in this, you could set up the ssh user as uid 1 in group 22 and it could bind to port 22 and then become any other user (or maybe any userid > 100). Bind would be running as user 53 with group 53 and have no special privs. The Apache user id would be in group 80 & 433 and its version of suexec would be uid 2 so it could change ownership to any user > 100 to run their cgis.
Because TeraTerm Pro w/ TTSSH is much better?
I can't count how many times a Kiwi have give me the wrong change because the Aussie $2 coin is smaller than the $1 while the Kiwi $2 is larger than the $1 coin. Unless the US picks a color scheme that is the same as most of the rest of the world, there will continue to be confusion. Maybe if they pick the same colors as the Euro$, they will confuse less people.
Its interesting that the AU$.2 coin is about the same as the NZ$.2 coin and seem to be interchangable (but I am seeing fewer of them these days)
This has happned man times in many places in Africa and South America.
There were fake new $100 bills floating around the middle east before they were released in the US.
About 4 out of 5 dns queries you do will hit vixies's box.
.org back to something other than dot com crapolla.
A few years ago some scrip kiddies decided they were going to take out Paul. At the time he was running a major chunk of the peering points (was it MAE or CIX? I don't remember...).
Aparently some of the leaders of the script kiddies found out that you don't hit people with much more bandwidth than you've got. At that time Vixie may have had more bandwidth than god.
There are just some people on the net you can't screw with.
From what I've seen of Paul Vixie, he seems to convince many people that he has a bit of an ego issue. He also may be a control freak. I don't have a problem with either since 1) he runs the most hit DNS server in the world and its rock solid and 2) he's damn good and I don't see as an ego problem since he seems to be backing it up with a track record involving reality.
If he wants to play politcal games, I figure good luck to him. Its not his strong point but maybe he can get
MasterCard is a non profit company and I think they run about $.9 trillion cash flow a year.
Ok so someone figures out how to put phone call data over ip. I'm still looking for someone that has a clue and isn't going to make the excessivly difficult. I currently have two 3com NBX100 (with only a small part GNU code but you can't get source even though they link it all together). These things are 486 boxes (that will boot linux!) that run a complete crap Os/custom app. I've got a cyclades pr4000 but they can't seem to figure out how to dump an analog call into a socket. I can do it fine on a cisco 5200 or a 2600 but not the only device I've got hooked up to a E1 (read T1 for the north american folks). They cyclades people came up with some lame ass excuse that "we figured people wanted "standards" which we couldn't do so we fucked it off. How lame. Oh well, its the last cyclades box I buy unless they seriously get ther act together...
.wav files and figures out which buttons the press. Funny thing is I forgot all about h323 or h3 or any other protcolo but it does work. Maybe I sould got buy a few books on voip to find out how to do this right.
I can take most of the devices that I've got that hook to decent phone lines and if I get a 64kbit data stream in (aka a phone call), I can dump it to a port. That port can dump audio out in ISDN format (mulaw or alaw depending on its place in the world) and the callie can get a nice message of "press 1 to do splat and press two for garfarbinsplat". Its trival to do an fft that can figure out which touchtone they are pressing and then I can cope with it in one of seval ways. All of this just by redirecting any call taffic to a tcp port on a linux box. Funny thing is I have yet to take advntage of any call set up or three way calling features in this code. It jusst answers the phone, plays back
My sparc 1 thats now 13 years old has a bios that has network access and forth. It lets me boot remotely or write programs to reprogram the cmos after the battery dies.
with point to multi-point? To get good reception through the trees, you have to enough power that the stray signal will go at least 5km if not 25km. Since they are transmitting many bits per frequency cycle, they can't deal with too much noise. This is what killed the large rollouts in the US. 3.5 is line of sight to have it work but its interfeerance is near line of sight. One reason that the 3.5 band is mostly empty is the strange characteristics of the frequency.
Australia has about the same problems as the US. Syndney and Melbourne are large cities in both population and size. Melbourne covers an area about the size of LA but has more people than Chicago. Sydney isn't as spread out but there are more people. This results in needing to cover huge areas and some are very high density while others are quite low. Once you get out of the major cities, the population density goes way down. The power requirements for 2.4 are about the same as in the US (but different just to make life fun for importers) but you end up with more people attempting to run long runs since telecom expenses are way out of hand.
They intend to offer voice and data in mostly the same areas that you can get adsl and optus (cable tv, cable phone, cable internet). They will be going after the holes left by the other players and the newer urban areas.
3.5Ghz sucks when you get too many people in a an area. Most places max out with about 6000 real broadband users. Some places went upto 18,000. Now figure spending 100 million for 18,000 in two major markets and three minor markets, whats the payoff on this. They also will be offering service that is slower than current adsl.
The good thing is it will keep Telstra from increasing rates until they buy these guys out. Telstra just happens to be doing something with Unwired Australia but I'm not sure what. That assumes that Telstra won't plop down a few dslams to take these people out of the picture. I figure Telstra can drop 1.5/256/1G ADLS service down to about AU$15/mo and still cover their technology and upstream costs.
Have you considered why they want to kill you? You can go into a bad area and find people that want to kill you--maybe for just wearing the wrong colors. You can even find people on the highways that want to kill you. (even more likly if you drive a SUV).
In the Real World [tm], if your doing something that pisses off someone else so much that they want to kill you, you have options 1) stop doing whats pissing them off or 2) avoid them. Most people learn about this when their brothers or sisters annoy the hell out of them. Its part of the learning process for normal children.
If the US made SUV's illegal (and anything else that got worse than 27mpg) illegal to use for noncomerical use, the US could ignore all the oil problems in the middle east forever. That means no more spending hundreds of billions to peace in the area. Just let it go and ignore it. But theres thouse pesky sports utility cars.
I live 15 minutes from Downtown DC. How would you react if one of these could go off in your backyard?
It wouldn't be the first time. The US has dumped lots of radioactive junk on the American plublic just to see how it turns out. Only about 5 years ago they found out a test in St Louis caused lots of birth defects. The tests were done in several cities.
The french keep tring nuke even more of Polynesia.
Winning lottery tickets.
Stock symbols.
Hey, I'm not an aussie, I just got this info from the Pommies that work (illegally) for the electrial people. I just report what I've been lead to understand is th truth. Too bad its not the truth. Just because I get lots of nasty letters about not voting, I'm still not allowed (or obligated) to put the numbers down.
I tend to watch the US$/AU$ exchange rate and I find it funny to see how the US traders treat news with the Liberal party. In gneraly when they do things the US Republican party way, they AU$ should rise aginst the US$. However if they party is mentioned the rate goes the other way. When the Rebublican party (the people that want to tell the queen to take a hike) get news, that sometimes would raise the AU$. Anytime the labor party does something the AU$ drops.
I wonder how high the AU$ would go if one of the major parties (Labor or Liberals) would change ther name to the Republican party.
But you did vote for them (if you filled out the paper work corrctly).
Aussies have to go vote or they get fined. They have this list of canidates and they have to put numbers down for each of them. If there are ten canidates, they have to rank them all one to ten where 1 is your preferred and ten is least preferred -- or is it the other way around. If you don't put all the numbers in, your vote isn't counted. The result is that you vote for everyone at some level and with canidates like the skinhead party and too may others deserving a 0, you have to give someone you don't like a positive vote.
The elections dates are already called by the party in power so that puts things massivly in their favor.
At the S11 protests in Melbourne a few years ago, there was no way the police would have been able to stop an angry mob. They had just about every cop they could find in the state. It took them about a half hour to resuce on of the morons from his car who tried to drive through the mob. There were people in the crowed that were prepaired to rush the police and take their stores of riot gear should things turn ugly. If any one of the large unions get mad and stormed parlment, there isn't anything the guards could do other than shoot a few of them. The unions routinely have large prostest within three blocks of the parelment building. Guns would not be needed to put the state govement up aginst the wall. That would imply that the local goverment does have a real security issue and they will fight to fix it. Lucky for them most people don't care what the goverment does.
The Signapore goverment has a system that has been cracked wide open. Its not a major problem because if you get caught, your in jail for decades and can never get a job. The result is most of the people who have the ability to casually hack the system aren't about to even try.
Once cool thing with these (and Mondex) is that if you lose the card, someone else keeps the cash. Anyone who has ever worked in a student ID office or drivers license department can tell you how offten people lose these things.
So far no one has built a smart card that has enough grunt to do real hard crypto in a reasonable about of time while making the chip so it can't be inspected in a way to find out its secrets. We have a long way to go before someone comes up with a contactless card that can do a transaction faster than two people who are good at handling cash.
The good senators from Illinois are the ones keeping the penny alive. They have some sentimental thing going on with Lincoln and they step in everytime anyone gets serious about killing the penny. The only way the mint will get around this problem is to make a $2 coin with Lincoln on it. They have to reserve the $1 for Washinton when they drop the paper dollar except for some limited edition ones but that will cause even more of a political problem.
If Global crossing goes bust, then other compaines will pick up their load and that may just get more of the traffic from Asia to Europe to flow around the other way and not through the US like it does now. Its much easier to tap at MAE-West than it is in some place like off the cost of Inida.
You understand that some of us edit live binaries don't you?
For example I've got a 3com nbx 100 system. Its closed source (mostly, 'cept for a few things that got linked in). They won't tell me what I want to know so I find out. For example, its password decryption stuff. I need to be able to have an automated program go tell me how much voice mail everyone has and the easy way is use IMAP and their password. Thats kept in a file that I can grab and now I can decode it. Some of the dealers don't like calling 3com to find out how to reset a master password so I wrote up some script kiddie like instructions. They only work if you have physical access to the device and a way to talk to a serial port so it won't compromise the security of the device. If you were going to crack this thing, you would most likly brute force the password since the user id is forced to be "administrator" and the default password can be entered on a phone. A 4 line perl program calling lynx will open it quite nicely.
I've see quite a few $60,000 planes with more than a quarter million dollars worth of gear installed in their dash. A good NAV/COM radio will set you back 4 to 8 grand. A stromscope will go for at least 20k. Considering most of the general aviaion aircraft that are now flying were purchased for less than $20,000 its going to be quite hard to get thier owners to put in a expensive gear. The major expense of typical Cessna purchased used 15 years ago is the replacement engines and they are about 20 grand and last almost 2000 hours.