He bails out of sun and init(8) grows so it includes 800 times more code and it still doesn't do anything new? Maybe they should looking to hiring more people with a clue.
Some of us have been using vi (or Emacs) for 20 years and because they are so programmable, we have some very impressive private macros that do all sorts of things and what you mention is trivial.
Most vi users don't even know about tags (:ta foo to find function foo). I still see:wq when that died 20+ years ago when:x was included to fix the ambiguity with:wq!
It was only 2 years ago when I found a real argument about which is better, vi or emacs? Emacs works better when cats type on your keyboard but thats not going to get me to switch to their side.
I've noticed a second tier of testing that spamers use. They will often use their test account several times in the 1st 100 or so messages.
When spamers sell their services to the suckers that pay them, they will often do a free run of 10,000 to 100,000 and those end up with a very high hit rate on the suckers server so it looks like they will get far more when they pay up for the 800 million messages.
Its almost election time. Have you asked your running Attorney General why they haven't busted anyone for selling drugs to school kids over the net?
There are two major issues at play that I see that make it hard to find solutions. They are International issues and customers are getting older.
The international issues are a real problem because it is hard for the FBI to shut down servers even in the UK. It gets very difficult for a NZ bank shutting down a server in Russia and nearly impossible for a bank in Columbia to shut down one in Gambia. Many people complain about the lack of international law enforcement but until a new world order happens, that just isn't viable. There are two groups that do have resources and connections to stop this nonsense. Its Visa and MasterCard. Both of them are mostly owned by their member banks so it seems to me that the member banks should be screaming to get Merchant accounts pulled for companies that refuse to stop phishing sites. All it would take is a change in terms and in less than a year any ISP in the world could be given the choice between shutting down a site or losing the ability to have the customers pay them. I expect it would be very effective.
The second issue is that as people get older, they almost always lose some ability for rationality. Sometimes its quick and sometimes its not. This can result in people who knew better one week giving all their money to someone in Nigeria the next. The scary thing for/. readers is that it appears that security conscious geeks are hit the hardest. The part of the brain that decides if there is a risk goes before the part of the brain that knows it knows how the scams work. The result is typically a stubborn retired engineer that you couldn't scam 3 months ago that just got cleaned out. There is plenty of research that shows that con men also suffer from this as they age even if they gave up crime decades before.
Many smaller banks (the ones that may still be a Bank and Trust) are starting to open senior accounts where most of the money is in one account that is controlled much like a trust and it transfers money to a second account. Some banks are even using a third account for use with checks and ATM cards that pulls money from the 2nd with a limited overdraft like mechanism or dual signature mechanism. This way if grandma writes a $10,000 check to someone, it will bounce unless approved by the trustee or family member.
The trick is follow the money. A standard disclaimer with the advertising rate of $1000 per line per day that is legally enforceable. Then a co-op of member all over the world to catch the problem of the advertiser being outside the law.
The best solution of course is start getting people arrested in the US under existing drug dealing laws. If you offer drugs to children within so many feet of a school, the punishment is years in jail. Its damn close to election time an thousands of Attorney Generals are up for reelection. Call their office and ask how many internet drug pushes they have prosecuted. When they say none, tell them that your vote will be going to someone who isn't dinosaur and understands technology use in crimes. If every slashdoter in the US did this today, spamers would be in jail by the end of the week.
When the Europeans stole Arabic numbers they didn't reverse them. When reading 1005 in Arabic text you read the lowest precision 1st. It also means when they add subtract, multiply and divide they don't have to work backwards.
How bad did it suck during Carter? While the interest rates were bad, I'm not sure much of the other factors are any worse than the last few years. Housing availability compared to income is now is worse than in Carters terms and large industry job loss is about the same since the US doesn't make hardly anything anymore.
I've been looking into the rumors of higher interest rates and I wouldn't have a problem with home loans going up another 8 or 9% because I think it would end up helping more people in the long run because it would end the housing price hyper-inflation. If I buy an overpriced house now, I'll be over-paying for it for 40 years (which statistically I don't have). If I buy at the hight of a 15% interest rate bubble, I only overpay for the house for a few years until interest rates come down.
Its the new way to build stuff. And by new, I mean its the way every failed software project in the history of software has been built. Ever look at how complex the core OS functions are in an early BSD unix? Its simple. read(2) fits on a single page of a printout as do most other system calls and their underlying structures. The only reason these new mega-complex projects don't fall apart is that debuggers are getting much better. Increases in working software complexity has never been about computer languages but its been about the debuggers.
I figure I'l wait a few years before I start using zfs. I don't need its features now and I know extra complexity will bite me. The real question about zfs is "is it less complex that what its replacing?" From a ground up development, it looks like it will be less complex but when you start hacking in alongside an existing system, that looks nasty.
Or is it 4) keeping a stupid patent that only cost them $100m is cheaper than reinforcing the fact that the patent office will approve obvious patents which can be proven to be obvious by having lots of other people asking for the same feature.
I've been involved with breaking several bad patents in the past. This one should have never been issued.
The real problem is that once the new patent rules come into place, 1st to invent won't save your company form being sued out of excistance by someone else. One cool thing about the US's patent law change is that it invalidates all the wrold wide treatys involving US patents.
Didn't Apple's leagl team search the internet archives for prior art on this? There was a hack for the RIO300 that did this in 2000 and people begging for the option in 1999. The SnowBlind Alliance was the place to get you linux friendly rio software at that time and they had lots of users asking for new features.
There is a nearly infinite number of vendors. Every business plan reference claims you need to advertise. Go to google and put in search terms about low cost advertising and poke around until you find something that isn't regional and you find a spamer or a front for one.
The other trick is that if you contact an "opt in" list you will find that they will do a free run of 100 to 1000 so you can see how it works. You will find that you get several tentative orders. I know a guy who did that and got about a 4% response rate so he send the spamer $5000. The spamer said they sent out like a million or 10 million messages and he got 3 hits on his web site and no orders. None of the tentative orders ever panned out either for a wide variety of odd excuses.
About the only spam that moves products is the embarrassment spam. Thats enhancement drug stuff. Of course thats also selling illegal drugs to children yet no DA seems to be interested. It is nearly election time in the US. If your DA is up for reelection, how about asking them (in public if you can) why they haven't done anything to stop the people selling drugs to children over the net.
I used to fly a piper turbo arrow out of St Louis. I had to move a server from NYC to St Louis. My coworker and I both left at the same time. He flew commercial and I flew the arrow. He arrived at the NYC air port, picked up a rental car and got to the small airport to pick me up just about the time I was on final approach. Not bad for a flight close to 1/2 way across the country. I didn't have any security problem, I had plenty of leg room and no one was worried about what was in my bag. My flight cost less than his too.
A pilots license isn't that hard to get if you fly every week.
He seems to lose his product delivery charisma after the point where he no longer has to explain himself to the board. In the past it has gotten him fired. Most big name CEOs today don't seem to have anything at all to answer to when it comes to the board but Jobs has been in the situation where he appears to be almost sucking up to the board.
Doesn't this follow his trend for last quarter century? When he has to prove something to the board or other people in the company he can pull off some impressive stuff. Once he is crowned king of the company, his performance slips. He's done this with apple how many times? And there is a chain of other companies he has also done it with. I'm guessing the next cool stuff he does will be with Disney since he sill has to prove himself there.
I'm finding most software I'm running today is far more complex than it needs to be. With open source you can look at the source code and maybe understand why its too complex but most of the time its just a developer taking a short cut.
We all have examples of complex software gone bad. I'm guessing the 1st open source example of this is sendmail 5. Its complexity was required for what it used to do and that ended up leaving lots of holes in lots of systems over the decades. For a while people learned from that mistake. IDA Sendmail cleaned up the config. Bind's config files were redesigned. CERNS web server was excessively complex and the developers of NCSA http learned lots of lessons from that. The Apache team learned from there mistakes. Today Apache 2 is much simpler in most cases that CERN's server was even though it does far more.
The major issue with complexity today is the confusion between an Operating System and an Operating Environment. Linux is an OS but Ubuntu is an OE. OS X has Mach as an OS but several OEs including FreeBSD.
I like the KISS (Keep it Simple Stupid) for daemons and opening systems. That means every step of starting the system should be clear and easy to understand. That means being able to read the config files (no binaries or unreadable XML please). It means that programs should use a limited set of shared libraries (Solaris init needs a buggy XML? why?) The OE can be as complex as needed but the OS should be simple and clean. If you forget that, your system is going to be owned by some script kiddie.
Why should a vote in the Senate from a Rectangle State count 40 times more than mine? Because you let the federal government control things that should be done at a state level. Had the federal government kept with its original goal, most of the things it would be doing won't have any effect on you at all.
What ease of use has OS X given up for security? I can't think of anything. Have you ever used Mac OS, or are you just saying that because you think it sounds plausible?
How about pasting passwords into its dialog boxes? That discourages the use of very strong passkeys.
the original IBM ML wasn't even adequate for the simple text formatting that it was designed for and there was a good reason that IBM abandoned it nearly 30 years ago for anything except applications that were stuck with it. XML is a bad way of parsing according to any applicable research paper over the last 50 years.
The new standards are a complete mess as well. One example is why is CSS a completely different parsing style than HTML?
Keep in mind that while the station is orbiting the earth, its also orbiting everything in its local gravity well. That means the drifting astronaut and station are also orbiting each other. This is why stuff that falls off the station is such a problem since it will result in a collision at some point in the future.
The stories aren't completely false. They are false in saying that poison pills were issued. The true bit is there was some stuff in the med kit that could kill but that was there as a last ditch effort to compensate for unknown medical conditions in space such as bad blood pressure or incorrect respiratory rates. I expect thats where the rumors come from.
The other bit about the space race was there was a great deal of trying to show the Russians that the American space program was vastly superior to theirs and of course the Russians did the same thing. That resulted in a great deal of misinformation flowing about. One example of this is the space suit was designed to "keep the astronauts warm in space" but they were designed to dissipate heat. It gets even stranger when the Russians didn't do things the same way. The Peltier based heat pump based suit was classified well into the early 90s because they Russians hadn't figured that out even though the they would have gladly told you that their compressor based suits were vastly more reliable.
Salting only makes the MD5 rainbow hash problem harder. Because MD5 works on a block by block way, if the salt is equal to the block size, you can pre-compute the starting state of all possible salts and combined with something close to the hash collision trick used to break MD5, you end up with not needing to do much more work. Its not as trivial as just looking up the MD5 in a table, but if you've got a few terra bits of pre computed hashes, your likely to have the compute hardware to turn it into a 20 second problem. A simple solution is xor the salt with the password.
There are already attack dictionaries to cover this. Other people like songs and claim its secure. Go find someone that shares your taste in music where you both have at least 3 cds by one group. For each song on their most popular CD, write down 3 lines. Then compare the list.
Is the two factor stuff secure? How do you know? One company wants me to install several meg of code on my servers and the others requires a massive number of new packages that I've already thrown out for having too many holes. How do I know the two factor auth code doesn't include a back door? Out of the 3 major companies making this kind of stuff, two have a bunch of high level staff that used to work for spook agencies.
It depends on if your doing decimal or fractional math. Decimal math wasn't universally taught in grade schools the US until the 1960's with the introduction of "new math". Your argument also supposes that there is a need to convert 1.25 yards into inches yet in the real world, that type of conversion is incredibly rare. In the fields where such things might happen, it would be more like 3 ft 9 into 45 inches and more importantly, dividing that into thirds (like a roofer might do) results in 1 ft 3 but rarely 15 inches. I think there is something deeply wired into the brain thats base 12. Why else would nearly every society use it? Look at words for numbers, ten, eleven, twelve and thirteen. Why not twoteen? This is common in nearly every language in the world.
I have a best seller that was published in London in the late 1400's that has "color". The spelling in the book is very consistent and much more consistent than books from the 1800's.
Slashdot Mirror
He bails out of sun and init(8) grows so it includes 800 times more code and it still doesn't do anything new?
Maybe they should looking to hiring more people with a clue.
Some of us have been using vi (or Emacs) for 20 years and because they are so programmable, we have some very impressive private macros that do all sorts of things and what you mention is trivial.
:wq when that died 20+ years ago when :x was included to fix the ambiguity with :wq!
Most vi users don't even know about tags (:ta foo to find function foo).
I still see
It was only 2 years ago when I found a real argument about which is better, vi or emacs? Emacs works better when cats type on your keyboard but thats not going to get me to switch to their side.
I've noticed a second tier of testing that spamers use. They will often use their test account several times in the 1st 100 or so messages.
When spamers sell their services to the suckers that pay them, they will often do a free run of 10,000 to 100,000 and those end up with a very high hit rate on the suckers server so it looks like they will get far more when they pay up for the 800 million messages.
Its almost election time. Have you asked your running Attorney General why they haven't busted anyone for selling drugs to school kids over the net?
There are two major issues at play that I see that make it hard to find solutions. They are International issues and customers are getting older.
/. readers is that it appears that security conscious geeks are hit the hardest. The part of the brain that decides if there is a risk goes before the part of the brain that knows it knows how the scams work. The result is typically a stubborn retired engineer that you couldn't scam 3 months ago that just got cleaned out. There is plenty of research that shows that con men also suffer from this as they age even if they gave up crime decades before.
The international issues are a real problem because it is hard for the FBI to shut down servers even in the UK. It gets very difficult for a NZ bank shutting down a server in Russia and nearly impossible for a bank in Columbia to shut down one in Gambia. Many people complain about the lack of international law enforcement but until a new world order happens, that just isn't viable. There are two groups that do have resources and connections to stop this nonsense. Its Visa and MasterCard. Both of them are mostly owned by their member banks so it seems to me that the member banks should be screaming to get Merchant accounts pulled for companies that refuse to stop phishing sites. All it would take is a change in terms and in less than a year any ISP in the world could be given the choice between shutting down a site or losing the ability to have the customers pay them. I expect it would be very effective.
The second issue is that as people get older, they almost always lose some ability for rationality. Sometimes its quick and sometimes its not. This can result in people who knew better one week giving all their money to someone in Nigeria the next. The scary thing for
Many smaller banks (the ones that may still be a Bank and Trust) are starting to open senior accounts where most of the money is in one account that is controlled much like a trust and it transfers money to a second account. Some banks are even using a third account for use with checks and ATM cards that pulls money from the 2nd with a limited overdraft like mechanism or dual signature mechanism. This way if grandma writes a $10,000 check to someone, it will bounce unless approved by the trustee or family member.
The trick is follow the money. A standard disclaimer with the advertising rate of $1000 per line per day that is legally enforceable. Then a co-op of member all over the world to catch the problem of the advertiser being outside the law.
The best solution of course is start getting people arrested in the US under existing drug dealing laws. If you offer drugs to children within so many feet of a school, the punishment is years in jail. Its damn close to election time an thousands of Attorney Generals are up for reelection. Call their office and ask how many internet drug pushes they have prosecuted. When they say none, tell them that your vote will be going to someone who isn't dinosaur and understands technology use in crimes. If every slashdoter in the US did this today, spamers would be in jail by the end of the week.
When the Europeans stole Arabic numbers they didn't reverse them. When reading 1005 in Arabic text you read the lowest precision 1st. It also means when they add subtract, multiply and divide they don't have to work backwards.
How bad did it suck during Carter? While the interest rates were bad, I'm not sure much of the other factors are any worse than the last few years. Housing availability compared to income is now is worse than in Carters terms and large industry job loss is about the same since the US doesn't make hardly anything anymore.
I've been looking into the rumors of higher interest rates and I wouldn't have a problem with home loans going up another 8 or 9% because I think it would end up helping more people in the long run because it would end the housing price hyper-inflation. If I buy an overpriced house now, I'll be over-paying for it for 40 years (which statistically I don't have). If I buy at the hight of a 15% interest rate bubble, I only overpay for the house for a few years until interest rates come down.
Its the new way to build stuff.
And by new, I mean its the way every failed software project in the history of software has been built.
Ever look at how complex the core OS functions are in an early BSD unix? Its simple. read(2) fits on a single page of a printout as do most other system calls and their underlying structures.
The only reason these new mega-complex projects don't fall apart is that debuggers are getting much better. Increases in working software complexity has never been about computer languages but its been about the debuggers.
I figure I'l wait a few years before I start using zfs. I don't need its features now and I know extra complexity will bite me. The real question about zfs is "is it less complex that what its replacing?" From a ground up development, it looks like it will be less complex but when you start hacking in alongside an existing system, that looks nasty.
Or is it 4) keeping a stupid patent that only cost them $100m is cheaper than reinforcing the fact that the patent office will approve obvious patents which can be proven to be obvious by having lots of other people asking for the same feature.
I've been involved with breaking several bad patents in the past. This one should have never been issued.
The real problem is that once the new patent rules come into place, 1st to invent won't save your company form being sued out of excistance by someone else. One cool thing about the US's patent law change is that it invalidates all the wrold wide treatys involving US patents.
Didn't Apple's leagl team search the internet archives for prior art on this? There was a hack for the RIO300 that did this in 2000 and people begging for the option in 1999.
The SnowBlind Alliance was the place to get you linux friendly rio software at that time and they had lots of users asking for new features.
There is a nearly infinite number of vendors. Every business plan reference claims you need to advertise. Go to google and put in search terms about low cost advertising and poke around until you find something that isn't regional and you find a spamer or a front for one.
The other trick is that if you contact an "opt in" list you will find that they will do a free run of 100 to 1000 so you can see how it works. You will find that you get several tentative orders. I know a guy who did that and got about a 4% response rate so he send the spamer $5000. The spamer said they sent out like a million or 10 million messages and he got 3 hits on his web site and no orders. None of the tentative orders ever panned out either for a wide variety of odd excuses.
About the only spam that moves products is the embarrassment spam. Thats enhancement drug stuff. Of course thats also selling illegal drugs to children yet no DA seems to be interested. It is nearly election time in the US. If your DA is up for reelection, how about asking them (in public if you can) why they haven't done anything to stop the people selling drugs to children over the net.
I used to fly a piper turbo arrow out of St Louis. I had to move a server from NYC to St Louis. My coworker and I both left at the same time. He flew commercial and I flew the arrow. He arrived at the NYC air port, picked up a rental car and got to the small airport to pick me up just about the time I was on final approach. Not bad for a flight close to 1/2 way across the country. I didn't have any security problem, I had plenty of leg room and no one was worried about what was in my bag. My flight cost less than his too.
A pilots license isn't that hard to get if you fly every week.
He seems to lose his product delivery charisma after the point where he no longer has to explain himself to the board. In the past it has gotten him fired. Most big name CEOs today don't seem to have anything at all to answer to when it comes to the board but Jobs has been in the situation where he appears to be almost sucking up to the board.
Doesn't this follow his trend for last quarter century? When he has to prove something to the board or other people in the company he can pull off some impressive stuff. Once he is crowned king of the company, his performance slips. He's done this with apple how many times? And there is a chain of other companies he has also done it with. I'm guessing the next cool stuff he does will be with Disney since he sill has to prove himself there.
I'm finding most software I'm running today is far more complex than it needs to be. With open source you can look at the source code and maybe understand why its too complex but most of the time its just a developer taking a short cut.
We all have examples of complex software gone bad. I'm guessing the 1st open source example of this is sendmail 5. Its complexity was required for what it used to do and that ended up leaving lots of holes in lots of systems over the decades. For a while people learned from that mistake. IDA Sendmail cleaned up the config. Bind's config files were redesigned. CERNS web server was excessively complex and the developers of NCSA http learned lots of lessons from that. The Apache team learned from there mistakes. Today Apache 2 is much simpler in most cases that CERN's server was even though it does far more.
The major issue with complexity today is the confusion between an Operating System and an Operating Environment. Linux is an OS but Ubuntu is an OE. OS X has Mach as an OS but several OEs including FreeBSD.
I like the KISS (Keep it Simple Stupid) for daemons and opening systems. That means every step of starting the system should be clear and easy to understand. That means being able to read the config files (no binaries or unreadable XML please). It means that programs should use a limited set of shared libraries (Solaris init needs a buggy XML? why?) The OE can be as complex as needed but the OS should be simple and clean. If you forget that, your system is going to be owned by some script kiddie.
Why should a vote in the Senate from a Rectangle State count 40 times more than mine?
Because you let the federal government control things that should be done at a state level. Had the federal government kept with its original goal, most of the things it would be doing won't have any effect on you at all.
What ease of use has OS X given up for security? I can't think of anything. Have you ever used Mac OS, or are you just saying that because you think it sounds plausible?
How about pasting passwords into its dialog boxes? That discourages the use of very strong passkeys.
the original IBM ML wasn't even adequate for the simple text formatting that it was designed for and there was a good reason that IBM abandoned it nearly 30 years ago for anything except applications that were stuck with it.
XML is a bad way of parsing according to any applicable research paper over the last 50 years.
The new standards are a complete mess as well. One example is why is CSS a completely different parsing style than HTML?
Keep in mind that while the station is orbiting the earth, its also orbiting everything in its local gravity well. That means the drifting astronaut and station are also orbiting each other. This is why stuff that falls off the station is such a problem since it will result in a collision at some point in the future.
The stories aren't completely false. They are false in saying that poison pills were issued. The true bit is there was some stuff in the med kit that could kill but that was there as a last ditch effort to compensate for unknown medical conditions in space such as bad blood pressure or incorrect respiratory rates. I expect thats where the rumors come from.
The other bit about the space race was there was a great deal of trying to show the Russians that the American space program was vastly superior to theirs and of course the Russians did the same thing. That resulted in a great deal of misinformation flowing about. One example of this is the space suit was designed to "keep the astronauts warm in space" but they were designed to dissipate heat. It gets even stranger when the Russians didn't do things the same way. The Peltier based heat pump based suit was classified well into the early 90s because they Russians hadn't figured that out even though the they would have gladly told you that their compressor based suits were vastly more reliable.
Salting only makes the MD5 rainbow hash problem harder.
Because MD5 works on a block by block way, if the salt is equal to the block size, you can pre-compute the starting state of all possible salts and combined with something close to the hash collision trick used to break MD5, you end up with not needing to do much more work. Its not as trivial as just looking up the MD5 in a table, but if you've got a few terra bits of pre computed hashes, your likely to have the compute hardware to turn it into a 20 second problem. A simple solution is xor the salt with the password.
There are already attack dictionaries to cover this. Other people like songs and claim its secure. Go find someone that shares your taste in music where you both have at least 3 cds by one group. For each song on their most popular CD, write down 3 lines. Then compare the list.
Is the two factor stuff secure? How do you know? One company wants me to install several meg of code on my servers and the others requires a massive number of new packages that I've already thrown out for having too many holes. How do I know the two factor auth code doesn't include a back door? Out of the 3 major companies making this kind of stuff, two have a bunch of high level staff that used to work for spook agencies.
It depends on if your doing decimal or fractional math. Decimal math wasn't universally taught in grade schools the US until the 1960's with the introduction of "new math".
Your argument also supposes that there is a need to convert 1.25 yards into inches yet in the real world, that type of conversion is incredibly rare. In the fields where such things might happen, it would be more like 3 ft 9 into 45 inches and more importantly, dividing that into thirds (like a roofer might do) results in 1 ft 3 but rarely 15 inches.
I think there is something deeply wired into the brain thats base 12. Why else would nearly every society use it? Look at words for numbers, ten, eleven, twelve and thirteen. Why not twoteen? This is common in nearly every language in the world.
I have a best seller that was published in London in the late 1400's that has "color". The spelling in the book is very consistent and much more consistent than books from the 1800's.