CNAMEs are your friend if your using DNS authentication for lets encrypt.
What scares me is that millions of people fully trust what the default scripts are doing to their computers. Every 90 days certs and the scripts get updated which means someone in the chain of trust has the ability to completely p0wn a machine. How many black-hats are going through those scripts hunting for a way to exploit any bugs? The certbot-auto does enough scary things and it only needs to be run once.
I set up backup servers that simply rsync the NAS data into a ZFS file system with daily snapshots. The ZFS is encrypted and mirrored at the zpool level with weekly scrubs. Half of the mirror is removable so I can simply pull the disk and then attach the previous disk and rerun the scrub. ZFS seems to rebuild the new disk with the changed data first so the risks of the dreaded RAID rebuild failure is minimized.
When I first started playing with ZFS for a backup system, I played lots of games with it like removing active disks, removing and replacing all the disks, wiping parts of the raw partitions. I didn't get it real confused until I built a 3 disk mirror, removed two disks, updated the 3rd, powered down the server, removed the 3rd disk, put in the older 2, booted, scrubbed and then tried to sync the 3rd which had newer stuff. I forgot to do snapshots before that experiment but it didn't let me break it. I was trying to simulate the old school problem of restoring tapes in the wrong order.
And where do the VC get the money? They get the money from your retirement funds. They do seeding investment and they turn a profit by selling at an IPO. The big buyers at an IPO are retirement funds. The retirement funds have a real problem as some of the tech funds have a billion to invest every week and not enough places to go around. There are popular UK retirement packages that only can invest in about 20 companies and I suspect everyone one of them is way over valued.
Forms of XP are still being sent out on brand new systems and will be for years. These devices tend to be the all in one industrial computers or the ones that integrate with car systems like the ones used in police cars. Because no one is making a secure browsers for XP anymore (developers repeat the lie "it isn't supported by MS anymore"), their users may be leaking data about you.
Free support for home XP users stopped but to many, it is still a current product. While it would be great to have it disappear, I expect its use will far outlive Windows 10 simply because of the old hardware the can't run anything newer that is often attached to even more expensive hardware in a way the prevents upgrades.
All I could read seemed to imply this was for Intel and AMD architectures. Do you know if Sparc64 or ARM are susceptible?
The attacks done by Qualys are near to the top of the stack. That is very hard to do on sparc64 as it has a hardware stack. I expect it can be done but it would be a real pain since you would have to attack a deeper level of the stack.
The sparc (and a few other non-x86 cpus) have "Register Windows" for their stack. What happens is the real stack is in static L0 ram just about like the registers are. Early systems would have 4 pages of 8 32 bit values. The means when you pushed up to 8 values on the stack, they went into register like memory. When you called a subroutine, those 8 where shifted 8 and the subroutine had 8 values that it could access, plus the 8 from the calling function and 16 from its callers. The stack was only written to main memory (or cache) after the depth went deeper.
-- ARS-33? get a real terminal. Blits are nice and use slightly less power.
I see this as a rehash of the attacks often used in the late 1980s.
It is exactly like scanning IPv6 addresses, the problem is hard but computers can do billions of operations a second now. Throw in human issues and then the search space is much lower. Just like scanning systems trying..:1::MAC or..:1::ipv4 or probing the infinite space of SNMP starting with 1.3.6.1.4.1...
This is much harder to do on systems that have hardware stacks (sparc, some mips and others but not x86) since they can never ever run code near the top of the stack. Exploits require far deeper levels to get enough junk on the stack to be useful.
New Field of AI? MIT was doing AI in 1963 and Marvin Minksy set up a dedicated AI lab in 1970. While he wrote many books on the subject, Society of Mind is a good one to start with.
AI gets to the point were it solves a set of previously unsolvable problems, the algorithms are then researched and better non-AI solutions are then used to solve the same problems. Then AI falls out of fashion for a while and computer power increases thanks to Moore's law. Then it all repeats.
I have a 2.3 kw split airconditioner in a bedroom in my house. I have never managed to get it to use more than 85 watts. The only time I saw 85 watts was when the room was about 40 deg C (104F) and it was set to cool it to 17C (62F). It tends to cycle between about 45 watts and 1.8 watts when it is just set to run all the time. That keeps it cool and uses less power than the ceiling fan. The worst part of ceiling fans is they often use the J series halogen tube bulbs that often add 150 watts of heat to a room when someone leaves the light on.
A modern inverter based 2.5kw split system with a 4.5 efficiency can move 2.5kw of heat out of the room using 550 watts of energy. 2.5kw is about a 3/4 ton of A/C for people who prefer to think of cooling in tons of melting ice per day.
The reason those stocks are increasing is that millions of people have their 401K investing in "tech stocks" The people who manage some of those get a billion a week that they are obligated to invest before the next billion shows up next week. The result is the tech stocks are over valued and the price keeps going up as the game continues.
This gets worse when they go to prove their investment works. Say they bought a billion in shares in GOOG 5 years ago at $300. They can sell them this week for $950 or so they make a 2.16 billion profit which they can keep for weeks since it was a result of a sale of stock. Next week they dump another billion into GOOG stock at say $1000 and they other 3.16 billion from last weeks sale may go to something else like IBM and MSFT just after the investment firm reports wonderful profits.
There is a class of investment in the UK that is limited to something like 60 tech companies and there are retirement funds that are limited to those 60.
The high speed computer traders know this and have been gaming the system for decades.
5 to 7 minutes sounds like the reboot time of a major router when the admin didn't understand the redundancy features.
MasterCard is connected to my local peering exchange via their DDoS protection provider. There is no way that route would go via Russia unless the DDoS provider globally dropped all their other routes. Some of the listed companies also have a large global peering presence as well.
You have to get me to stop cussing at the stupid app if you want me to have any respect for anything you do. Sorry but since the skinny guy died, Apple is just following the Apple ][e days without any innovation which will be followed by the impending stock crash followed by the takeover attempts to withdraw the cash and then Apple will be dead and gone forever. Or they could fix their stuff.
The small home wood heating systems are toxic to everyone near by so that won't be lasting long. Studies are showing that moderate levels of PM2.5 smog is a major health problem and excessively deadly
Wood isn't 100% renewable in most cases. If you remove a bunch of trees, there is a very good chance that the total mass of trees that grow back will be smaller. In places with heavy deforestation, the amount of trees that can grow back may only be 50% of what was logged in the 1st round.
Trees are delicately balanced bags of water. Their height and mass is related to how much wind other trees can protect them from along with hundreds of millions of years of evolution optimizing their density. It is an example of applied use of fractals.
I agree with the cross app access but I hate tabs. I've got lots of big screens full of pixels for a reason and I like using multiple windows and I like the windows arranged by task and I'll have many tasks stacked up.
It seems that for some stupid reason, OS X after 10.5 has decided to resort the window order after a command-tab or command ~ which means using them like a stack simply no longer works and you get to play the find the right buried window game and time you switch between stacked tasks.
The core of the problem is Representational Democracy when votes can be bought. The winning party will claim to have a mandate from the people when they won by an stistcically insignificant majority. If you can't get 2/3 or 3/5 of the people's representatives to agree to something, chances are it shouldn't be law.
Seasons used to average about 25 episodes so they could hit the magic 100 required for syndication. Where you find older shows that shows that had 24, one episode would be a double length season premiere or finale and would get cut in half for syndication.
In the 1950s shows would often have 40 episodes a year. Things like the The Burns and Allen Show would be written and produced in a week.
There is too much new original content. The problem is if anyone make any of the new original content, someone else will come out of the woodwork and say they wrote that story with a few details that are different, sue for copyright violation and win.
That is why everything is a remake. They have to have a very long paper trail showing that anything made is simply a derivative work of something they already have rights to. It a problem of Hollywoods own making as they extended the copyright.
A major problem with copy on write is that users can not scrub their data and that has to be done by a root user.
The Posix committee needs to get its act together and provide a F_OVERWRITE fcntl system call that says "when I write a block back to the disk for this file, put it in the same place".
As an example of why this is needed: echo "123SomeMagic" >file echo "XYZZY123" >file grep "123SomeMagic"/dev/sda You get the same results if you do a open, write, sync, seek 0, write.
dd if=/dev/zero of=file&rm zero; won't even scrub the data off the disk most of the time with ZFS, APFS or BTRFS. Encryption won't help either since the OS will happily give you a bunch of unencrypted blocks if you have the right privilege levels.
Slashdot Mirror
CNAMEs are your friend if your using DNS authentication for lets encrypt.
What scares me is that millions of people fully trust what the default scripts are doing to their computers. Every 90 days certs and the scripts get updated which means someone in the chain of trust has the ability to completely p0wn a machine. How many black-hats are going through those scripts hunting for a way to exploit any bugs? The certbot-auto does enough scary things and it only needs to be run once.
I set up backup servers that simply rsync the NAS data into a ZFS file system with daily snapshots. The ZFS is encrypted and mirrored at the zpool level with weekly scrubs. Half of the mirror is removable so I can simply pull the disk and then attach the previous disk and rerun the scrub. ZFS seems to rebuild the new disk with the changed data first so the risks of the dreaded RAID rebuild failure is minimized.
When I first started playing with ZFS for a backup system, I played lots of games with it like removing active disks, removing and replacing all the disks, wiping parts of the raw partitions. I didn't get it real confused until I built a 3 disk mirror, removed two disks, updated the 3rd, powered down the server, removed the 3rd disk, put in the older 2, booted, scrubbed and then tried to sync the 3rd which had newer stuff. I forgot to do snapshots before that experiment but it didn't let me break it. I was trying to simulate the old school problem of restoring tapes in the wrong order.
And where do the VC get the money? They get the money from your retirement funds. They do seeding investment and they turn a profit by selling at an IPO. The big buyers at an IPO are retirement funds. The retirement funds have a real problem as some of the tech funds have a billion to invest every week and not enough places to go around. There are popular UK retirement packages that only can invest in about 20 companies and I suspect everyone one of them is way over valued.
Forms of XP are still being sent out on brand new systems and will be for years. These devices tend to be the all in one industrial computers or the ones that integrate with car systems like the ones used in police cars. Because no one is making a secure browsers for XP anymore (developers repeat the lie "it isn't supported by MS anymore"), their users may be leaking data about you.
Free support for home XP users stopped but to many, it is still a current product. While it would be great to have it disappear, I expect its use will far outlive Windows 10 simply because of the old hardware the can't run anything newer that is often attached to even more expensive hardware in a way the prevents upgrades.
All I could read seemed to imply this was for Intel and AMD architectures. Do you know if Sparc64 or ARM are susceptible?
The attacks done by Qualys are near to the top of the stack. That is very hard to do on sparc64 as it has a hardware stack. I expect it can be done but it would be a real pain since you would have to attack a deeper level of the stack.
The sparc (and a few other non-x86 cpus) have "Register Windows" for their stack. What happens is the real stack is in static L0 ram just about like the registers are. Early systems would have 4 pages of 8 32 bit values. The means when you pushed up to 8 values on the stack, they went into register like memory. When you called a subroutine, those 8 where shifted 8 and the subroutine had 8 values that it could access, plus the 8 from the calling function and 16 from its callers. The stack was only written to main memory (or cache) after the depth went deeper.
--
ARS-33? get a real terminal. Blits are nice and use slightly less power.
I see this as a rehash of the attacks often used in the late 1980s.
It is exactly like scanning IPv6 addresses, the problem is hard but computers can do billions of operations a second now. Throw in human issues and then the search space is much lower. Just like scanning systems trying ..:1::MAC or ..:1::ipv4 or probing the infinite space of SNMP starting with 1.3.6.1.4.1...
This is much harder to do on systems that have hardware stacks (sparc, some mips and others but not x86) since they can never ever run code near the top of the stack. Exploits require far deeper levels to get enough junk on the stack to be useful.
New Field of AI? MIT was doing AI in 1963 and Marvin Minksy set up a dedicated AI lab in 1970. While he wrote many books on the subject, Society of Mind is a good one to start with.
AI gets to the point were it solves a set of previously unsolvable problems, the algorithms are then researched and better non-AI solutions are then used to solve the same problems. Then AI falls out of fashion for a while and computer power increases thanks to Moore's law. Then it all repeats.
Polaroid cameras used a thin flat 6 V battery that could deliver 10 A for a short time. A typical 9V battery is 6 AAAA sized batteries in a case.
The system in Australia is too expensive for student pilots to get proper training in controlled systems.
With a "user pays" ATC, do I use the system every day a plane doesn't crash into my house?
If you can't visualize the code, you can't write it. I don't care how you see it, but you must see it.
Ok, outside of one of the coolest open source gurus...
Henry promoted the concept of a one way trip to mars.
The FORTRAN source can be found here:
http://rickadams.org/adventure...
Ceiling fans in all bedrooms.
I have a 2.3 kw split airconditioner in a bedroom in my house. I have never managed to get it to use more than 85 watts. The only time I saw 85 watts was when the room was about 40 deg C (104F) and it was set to cool it to 17C (62F). It tends to cycle between about 45 watts and 1.8 watts when it is just set to run all the time. That keeps it cool and uses less power than the ceiling fan. The worst part of ceiling fans is they often use the J series halogen tube bulbs that often add 150 watts of heat to a room when someone leaves the light on.
A modern inverter based 2.5kw split system with a 4.5 efficiency can move 2.5kw of heat out of the room using 550 watts of energy. 2.5kw is about a 3/4 ton of A/C for people who prefer to think of cooling in tons of melting ice per day.
The reason those stocks are increasing is that millions of people have their 401K investing in "tech stocks" The people who manage some of those get a billion a week that they are obligated to invest before the next billion shows up next week. The result is the tech stocks are over valued and the price keeps going up as the game continues.
This gets worse when they go to prove their investment works. Say they bought a billion in shares in GOOG 5 years ago at $300. They can sell them this week for $950 or so they make a 2.16 billion profit which they can keep for weeks since it was a result of a sale of stock. Next week they dump another billion into GOOG stock at say $1000 and they other 3.16 billion from last weeks sale may go to something else like IBM and MSFT just after the investment firm reports wonderful profits.
There is a class of investment in the UK that is limited to something like 60 tech companies and there are retirement funds that are limited to those 60.
The high speed computer traders know this and have been gaming the system for decades.
5 to 7 minutes sounds like the reboot time of a major router when the admin didn't understand the redundancy features.
MasterCard is connected to my local peering exchange via their DDoS protection provider. There is no way that route would go via Russia unless the DDoS provider globally dropped all their other routes. Some of the listed companies also have a large global peering presence as well.
How about $30 mil to stop the anti-broadband nonsense run by other Microsofties? That would help the economy far more.
You have to get me to stop cussing at the stupid app if you want me to have any respect for anything you do. Sorry but since the skinny guy died, Apple is just following the Apple ][e days without any innovation which will be followed by the impending stock crash followed by the takeover attempts to withdraw the cash and then Apple will be dead and gone forever. Or they could fix their stuff.
I see lambdas as the opposite end of the pendulum swing from the goto statement.
They have their place but they both lead to lots of confusion with poor coders who are trying to maintain very old code.
The small home wood heating systems are toxic to everyone near by so that won't be lasting long. Studies are showing that moderate levels of PM2.5 smog is a major health problem and excessively deadly
Wood isn't 100% renewable in most cases. If you remove a bunch of trees, there is a very good chance that the total mass of trees that grow back will be smaller. In places with heavy deforestation, the amount of trees that can grow back may only be 50% of what was logged in the 1st round.
Trees are delicately balanced bags of water. Their height and mass is related to how much wind other trees can protect them from along with hundreds of millions of years of evolution optimizing their density. It is an example of applied use of fractals.
I agree with the cross app access but I hate tabs. I've got lots of big screens full of pixels for a reason and I like using multiple windows and I like the windows arranged by task and I'll have many tasks stacked up.
It seems that for some stupid reason, OS X after 10.5 has decided to resort the window order after a command-tab or command ~ which means using them like a stack simply no longer works and you get to play the find the right buried window game and time you switch between stacked tasks.
The core of the problem is Representational Democracy when votes can be bought. The winning party will claim to have a mandate from the people when they won by an stistcically insignificant majority. If you can't get 2/3 or 3/5 of the people's representatives to agree to something, chances are it shouldn't be law.
Seasons used to average about 25 episodes so they could hit the magic 100 required for syndication. Where you find older shows that shows that had 24, one episode would be a double length season premiere or finale and would get cut in half for syndication.
In the 1950s shows would often have 40 episodes a year. Things like the The Burns and Allen Show would be written and produced in a week.
There is too much new original content. The problem is if anyone make any of the new original content, someone else will come out of the woodwork and say they wrote that story with a few details that are different, sue for copyright violation and win.
That is why everything is a remake. They have to have a very long paper trail showing that anything made is simply a derivative work of something they already have rights to. It a problem of Hollywoods own making as they extended the copyright.
The raw block device will give you decrypted blocks on all 3 of the file systems mentioned. Doesn't anyone test this stuff anymore?
A major problem with copy on write is that users can not scrub their data and that has to be done by a root user.
The Posix committee needs to get its act together and provide a F_OVERWRITE fcntl system call that says "when I write a block back to the disk for this file, put it in the same place".
As an example of why this is needed: /dev/sda
echo "123SomeMagic" >file
echo "XYZZY123" >file
grep "123SomeMagic"
You get the same results if you do a open, write, sync, seek 0, write.
dd if=/dev/zero of=file&rm zero; won't even scrub the data off the disk most of the time with ZFS, APFS or BTRFS. Encryption won't help either since the OS will happily give you a bunch of unencrypted blocks if you have the right privilege levels.