I'd get a cheap laptop that has the ability to read all of the media you're putting into the chest, into the chest as well. I'm sure you can find something cheap on ebay. Make sure to remove the battery and DO NOT put it in the chest. If the battery blows, there goes all of your data... You can run most laptops just from the power cord without an attached battery.
You may even have an old laptop laying around that you can donate to the cause. Just remember. Remove the battery. Don't even think about putting it in the chest. throw it away so someone else doesn't throw it in there "just because there is room". =)
CD-Rs and DVD-R's tend to loose their 'readability' due to heat and light. If they are stored properly, the data on them should be readable in 25+ years. That being said, if that's your media of choice make sure to make duplicate copies of your data, and store it on different brand's / types of media.
32GB of data, whether it's on DVD, USB hard drives, or SD cards, is extremely affordable nowadays. I think SD cards may loose their charge after 10 years or so but hard drives will always be readable as long as they spin up. For Hard Drives, 25 years ago from today, SCSI/IDE drives were the standard, and I know I can still read them today using a cheap USB interface.
I guess what i'm trying to say here is you have options. Depending on how important this data is, use multiple options to ensure the data is readable. If you include a reader in your chest (the laptop sans battery) you increase your chances of easily being able to read the data.
Oh, and if you do put a laptop in the chest? Don't forget the power cord.;-)
People aren't worried ENOUGH about spam. for you to be saying the above means you really have no clue as to what ISP's do to try to reduce the amount of spam you, as one of their customers, ever received even BEFORE you go to work with spamassassin and/or clamav...
Every major ISP spends hundreds of thousands in hardware and manhours every year to control the spam problem. I should know, I work for one!
Spam is a major problem. If you own any major e-mail accounts (gmail, yahoo, hotmail, roadrunner, comcast, etc) you are being "saved" by your ISP.
Did you know for every legitimate message that makes it through, roughly 20-30 spam messages are thrown away?
I can continue on for a very long time as to why spam is something to worry about. But I'll just say this, all the man hours and equipment costs that your ISP runs into get's passed down to you, the consumer. SPAM has a detrimental effect on your pocketbook as well as our servers.
RoadRunner does NOT block all e-mails from residential IP ranges, at least not automatically.
If you 're blocked from sending e-mail to RoadRunner users, the SMTP error you receive will give you a website to go to so you can contact the individual responsible for putting the block in place and have it removed.
Also, if your ISP has outbound SMTP servers, why not set your internal SMTP server to smarthost to your ISP's outbound SMTP servers?
When's the last time you ever received dark fiber from a telco?
If the fiber run is going to be over 50 miles or so, it will usually go through repeaters of some type.
HOWEVER if the runs are shorter than that, it's really not the telco's responsibility to put in repeaters for you. As soon as repeaters come into play, you end up with a limitation on that fiber, regardless of what equipment you have at the ends.... OC3, OC12, OC48, whatever the repeaters are rated at is now your limitation.
For the short spans (<50 miles)that don't require repeaters, you're free to go as high as you can with whatever equipment you can afford. There are short range, medium range, long range, and extended long range cards (that I have experience with) that will do more than get the job done. And you're free to choose the speed of card you wish to purchase, as long as the fiber that is run is the correct type for the card you purchase.
Short range cards if I remember correctly, are usually Multi-Mode fiber. Medium to Extended Long Range cards are almost aloways single mode.
Stop running around and saying that having dark fiber means it's lit up by the Telco. It's not. The telco's responsibility is to provide fiber connectivity however is most appropriate considering the distances involved.
Obviously he is co-locating his equipment in the ISP's RDC. Usually, the ISP has different tiers of access for Co Located equipment. If you're co-locating and paying for a web server, they're more than likely ensure that you can't run IRC, ftp, nfs, or any other types of service, when all you're paying for is http/https.
Now, there are a few solutions to this problem:
1. Tunnel ntp through ssh (not recommended on a regular basis)
2. Use the routers as NTP servers (please ask the isp in question before using their routers as NTP servers)
3. Check or ask the isp to broadcast NTP updates on the subnet in question. That's relatively easy to do, and would be a recommended solution. I believe it does require multicast turned on though, but don't quote me on that! You'd then set up your ntp client to accept broadcasted updated, and wala, your clients have pretty darn accurate time, without the isp having to open up firewalls, or use their routers as NTP servers.
To uncap a cable modem, you need certain software on your PC, in addition to modified modem "control" files.
Most people (especially with Windows!) don't have snmpwriting programs, cable modem md5 editing programs/tools, or tftp servers, all of which are needed to modify and change the settings on a cable modem...
In all honesty, that is a good idea. Common usernames/passwords and root/passwords on an similarly configured machines eases administration, and makes it easier to memorize what the password is.
I admin over 30 machines. Do you think I'm going to remember 60 different passwords? (one for the user, one for root, because we all know ssh/telnet should beallowed to login directly as root, right?) Hell no. Even if I used my palm, it would still be cumbersome. Instead, each class of server has it's own username/password structure... the linux boxes are of one type, and the "other" boxes are different.. This leaves me with around 10 passwords total to memorize, with one or two of the less used ones in a pgp locked spreadsheet on my laptop.
Memorizing 60 distinctly different login/passwords is almost impossible.
Other things other posters have said also have merit. Have the same directory structure on as many servers as possible (not possible when you compoare windows to unix for example). Have the same set of tools available for troubleshooting on the different platforms also.... GNU tools compile on almost any unix flavor. Use that to your advantage! There's no reason to remember the different key sequences to the various unix versions of "df" for example, when you can install the GNU version, and have the same command with the same switches do the same things on all of your unix servers. But please, leave your OS version there, just in case. =)
In addition, you need someone hell bent on security. Have a couple of people install and setup Nessus and scan your network once a month or so, AND FIX THE HOLES. Every network/system has holes. Different servers will have different holes to patch. Only by actively looking for them will you find them. If a server cannot be patched for whatever reason, isolate it on the network with separate password/logins from the "secure" servers, and ACL/ACI's implemented to prevent that server from being able to access other servers it doesn't absolutely need access to.
Eternal Vigelence. It is difficult to get to this point in a large network with 20+ specialized servers. But with a team that large, you should be able to do it...
You've got to be kidding right? You can't compare the Xserve to a Sun Netra X1... The X1 has a SINGLE 500 Mhz Ultra IIe processor and it is slow as dirt (we have 5 of them) but they serve their purpose for us.
The Xserve is meant to handle much more cpu intensive tasks than the X1's are. Not to mention the X1's don't support Hardware Raid (forcing you to use crappy Disksuite or pay a premium for a Veritas Volume Manager license). Heck, the X1's only hold two fricken disk drives, the Xserv holds 4!
No matter how you look at it, the Xserve trounces the Sun Netra X1/T1.
While the Cobalt is a little closer processor wise (1.26 Ghz PIII, hardware Raid on higher end models) it still only supports 2 Disk drives and a single processor.
All that I see missing from the Xserve is a redundant power supply, but I guess that was hard to fit into a 1U package...
It's amazing to think, each one of these 1U servers has more CPU than a Sun 280R with dual 900 MHz processors. Why do you think Sun doesn't make a 1U box with this much power? It would take away from selling their 4U boxes. Oh that and the size of a U3 processor is about half the size of the Xserve already..:) j/k
PLease forward me any information you have on this "block" roadrunner has for you. I'll do some digging, and find the reasl reason, but I can guarantee that RR has NOT stopped all forwarded e-mails from working correctly.
I believe Microsoft was offering cash to everyone but AOL/TimeWarner because while the other companies may not specifically be pro or anti microsoft, AOL is definately Pro Sun/Solaris and only uses Microsoft products sparingly, if at all....
It's interesting to see which Company (@home vs. RoadRunner) survived...
The unfortunate part of this is that RoadRunner alone will stand out in the field of Cable ISP's.. But it's not like there was any competition to begin with, you usually don't have a choice which cable company's "zone" you fall under....
I work for an ISP also that has quite a few customers throught the country...
There are multiple methods currently in use to help deal with the IP utilization scheme, but I think the two methods that we use on a per-city/regional basis would assist you the most...
One highly overlooked way of assisting with IP deligation is... DNS! Please, do yourself a favor, and complete full reverses and forwards for every ip you have.. If it's a subscriber IP, make sure the reverse has -sub- or some other method of knowing what that IP is utilized for.
In addition, if it's appropriate for your subscriber base, and you''re allowed, put something about where that ip space is being deployed also in the dns entry...
Something like this: aabbcc-westside-sub.(router interface).(domain) helps out greatly when troubleshooting ip problems, routing, etc because you don't need to do any additional checking to know where this IP space is (supposed to be) utilized.
In addition, don't forget to keep track, in a spreadsheet or database of some sort, where the ip range/block is deployed, and keep it updated when new ip's are deployed. Mark if the range is for dynamically assigned ip's (subscribers) or static IP's (special customers and/or head end equipment, router loopbacks, interfaces, etc). Stick to your assignment. Don't have multiple IP networks on the same wire if it can be avoided (unless you use Trunking of course)....
Hmmm.. Now that I think about it, it really isn't so simple, is it?:-)
the xbox has a unit to output an hdtv signal. This means the xbox is rendering a significantly higher resolution image, since the resolution of an hdtv is higher than the resolution of a standard television....
He's comparing Bluetooth and USB because they both "serialize" the data with "proprietary" protocols. Of course, the USB protocol isn't considered "proprietary" because it's the "standard" nowadays...
The author is basically stating that the techonology *should* be used for simple device connection, and not complex network connections..
I work for a pretty decent Internet Access company, and am on call two weeks out of the month.
For each day on call, I recieve $15.00 regardless of whether I was paged or not.
I get paid per hour regular rate for any work I need to do while on call if I can do it from home.
If I need to travel at all, I get paid for the miles, and a two hour minimum. So if I travel somewhere, and it takes me 5 minutes to fix, I get paid for 2 hours plus milage. If I work for 3 hours, then I get paid 3 hours.
It's not too bad, considering things work very well around here, and there are hardly any serious problems.
How fundamentally hard is it to change the code so different memory management techniques are used for different architectures? I'm not a coder by heart, much less a low level c or assembly coder, so I don't even know if this is possible.
It seems to me if IBM submitted a patch that fundamentally changed memory management for all architectures, of course it would get thrown out. What's the problem for having additional or different code for "mainframe" type computers vs. "desktop" or "server" type computers?
The way portsentry works is by setting up an ipchains statement blocking the ip address in question on the input chain.
If your gateway is running any services for you, then those services are now blocked. Many ISP's use a true router as the gateway, while other ISP's/companies use Solaris or other unix type solutions.
What if the gateway ip was also your DNS server? Wow. That sucks. No more DNS. How about your DHCP server? maybe your smtp gateway? All of the sudden, you've got the appearance of a downed network all because your gateway IP was blocked by portsentry.
This works because it happened to me.:-)
Either way, the solution is to simply add the IP's you do not want to be blocked into the portsentry.ignore file....
This doesn't seem to be that interesting snce alot of us have been doing this for some time. The one place I do see this blooming, and it was mentioned in the article, is faxing, color or otherwise!
This is going to be a great way for businesses who send alot of faxes to save on LD charges for faxing, as long as the reciever/sender has one of these IPP printers...
Lets see how long it takes for these things to take off!
Slashdot Mirror
I'd get a cheap laptop that has the ability to read all of the media you're putting into the chest, into the chest as well. I'm sure you can find something cheap on ebay. Make sure to remove the battery and DO NOT put it in the chest. If the battery blows, there goes all of your data... You can run most laptops just from the power cord without an attached battery.
;-)
You may even have an old laptop laying around that you can donate to the cause. Just remember. Remove the battery. Don't even think about putting it in the chest. throw it away so someone else doesn't throw it in there "just because there is room". =)
CD-Rs and DVD-R's tend to loose their 'readability' due to heat and light. If they are stored properly, the data on them should be readable in 25+ years. That being said, if that's your media of choice make sure to make duplicate copies of your data, and store it on different brand's / types of media.
32GB of data, whether it's on DVD, USB hard drives, or SD cards, is extremely affordable nowadays. I think SD cards may loose their charge after 10 years or so but hard drives will always be readable as long as they spin up. For Hard Drives, 25 years ago from today, SCSI/IDE drives were the standard, and I know I can still read them today using a cheap USB interface.
I guess what i'm trying to say here is you have options. Depending on how important this data is, use multiple options to ensure the data is readable. If you include a reader in your chest (the laptop sans battery) you increase your chances of easily being able to read the data.
Oh, and if you do put a laptop in the chest? Don't forget the power cord.
People aren't worried ENOUGH about spam. for you to be saying the above means you really have no clue as to what ISP's do to try to reduce the amount of spam you, as one of their customers, ever received even BEFORE you go to work with spamassassin and/or clamav...
Every major ISP spends hundreds of thousands in hardware and manhours every year to control the spam problem. I should know, I work for one!
Spam is a major problem. If you own any major e-mail accounts (gmail, yahoo, hotmail, roadrunner, comcast, etc) you are being "saved" by your ISP.
Did you know for every legitimate message that makes it through, roughly 20-30 spam messages are thrown away?
I can continue on for a very long time as to why spam is something to worry about. But I'll just say this, all the man hours and equipment costs that your ISP runs into get's passed down to you, the consumer. SPAM has a detrimental effect on your pocketbook as well as our servers.
RoadRunner does NOT block all e-mails from residential IP ranges, at least not automatically.
If you 're blocked from sending e-mail to RoadRunner users, the SMTP error you receive will give you a website to go to so you can contact the individual responsible for putting the block in place and have it removed.
Also, if your ISP has outbound SMTP servers, why not set your internal SMTP server to smarthost to your ISP's outbound SMTP servers?
Gaim .70 is not working any longer. I'm sure it'll be a matter of minutes before it does. ;-)
Okay.
This is getting silly...
When's the last time you ever received dark fiber from a telco?
If the fiber run is going to be over 50 miles or so, it will usually go through repeaters of some type.
HOWEVER if the runs are shorter than that, it's really not the telco's responsibility to put in repeaters for you. As soon as repeaters come into play, you end up with a limitation on that fiber, regardless of what equipment you have at the ends.... OC3, OC12, OC48, whatever the repeaters are rated at is now your limitation.
For the short spans (<50 miles)that don't require repeaters, you're free to go as high as you can with whatever equipment you can afford. There are short range, medium range, long range, and extended long range cards (that I have experience with) that will do more than get the job done. And you're free to choose the speed of card you wish to purchase, as long as the fiber that is run is the correct type for the card you purchase.
Short range cards if I remember correctly, are usually Multi-Mode fiber. Medium to Extended Long Range cards are almost aloways single mode.
Stop running around and saying that having dark fiber means it's lit up by the Telco. It's not. The telco's responsibility is to provide fiber connectivity however is most appropriate considering the distances involved.
Obviously he is co-locating his equipment in the ISP's RDC. Usually, the ISP has different tiers of access for Co Located equipment. If you're co-locating and paying for a web server, they're more than likely ensure that you can't run IRC, ftp, nfs, or any other types of service, when all you're paying for is http/https.
Now, there are a few solutions to this problem:
1. Tunnel ntp through ssh (not recommended on a regular basis)
2. Use the routers as NTP servers (please ask the isp in question before using their routers as NTP servers)
3. Check or ask the isp to broadcast NTP updates on the subnet in question. That's relatively easy to do, and would be a recommended solution. I believe it does require multicast turned on though, but don't quote me on that! You'd then set up your ntp client to accept broadcasted updated, and wala, your clients have pretty darn accurate time, without the isp having to open up firewalls, or use their routers as NTP servers.
Hope this helps,
Ricardo
This is amazing... The admin from unix.com responds, and someone mods it down?
Please mod parent up!
I know I'm going to get modded down for this but..
A T3 and an OC3 are not even in the same class..
T3=45MB/s
OC3=155 MB/s.
And yes, OC# can be provisioned on a per GB basis, whereas T1's and T3 usually are not.
To uncap a cable modem, you need certain software on your PC, in addition to modified modem "control" files.
Most people (especially with Windows!) don't have snmpwriting programs, cable modem md5 editing programs/tools, or tftp servers, all of which are needed to modify and change the settings on a cable modem...
Come on now..
In all honesty, that is a good idea. Common usernames/passwords and root/passwords on an similarly configured machines eases administration, and makes it easier to memorize what the password is.
I admin over 30 machines. Do you think I'm going to remember 60 different passwords? (one for the user, one for root, because we all know ssh/telnet should beallowed to login directly as root, right?) Hell no. Even if I used my palm, it would still be cumbersome. Instead, each class of server has it's own username/password structure... the linux boxes are of one type, and the "other" boxes are different.. This leaves me with around 10 passwords total to memorize, with one or two of the less used ones in a pgp locked spreadsheet on my laptop.
Memorizing 60 distinctly different login/passwords is almost impossible.
Other things other posters have said also have merit. Have the same directory structure on as many servers as possible (not possible when you compoare windows to unix for example). Have the same set of tools available for troubleshooting on the different platforms also.... GNU tools compile on almost any unix flavor. Use that to your advantage! There's no reason to remember the different key sequences to the various unix versions of "df" for example, when you can install the GNU version, and have the same command with the same switches do the same things on all of your unix servers. But please, leave your OS version there, just in case. =)
In addition, you need someone hell bent on security. Have a couple of people install and setup Nessus and scan your network once a month or so, AND FIX THE HOLES. Every network/system has holes. Different servers will have different holes to patch. Only by actively looking for them will you find them. If a server cannot be patched for whatever reason, isolate it on the network with separate password/logins from the "secure" servers, and ACL/ACI's implemented to prevent that server from being able to access other servers it doesn't absolutely need access to.
Eternal Vigelence. It is difficult to get to this point in a large network with 20+ specialized servers. But with a team that large, you should be able to do it...
You Can manually eject the CD Drive on a flat panel iMac. The hole is just hidden behind the cd door...
You've got to be kidding right? You can't compare the Xserve to a Sun Netra X1... The X1 has a SINGLE 500 Mhz Ultra IIe processor and it is slow as dirt (we have 5 of them) but they serve their purpose for us.
:) j/k
The Xserve is meant to handle much more cpu intensive tasks than the X1's are. Not to mention the X1's don't support Hardware Raid (forcing you to use crappy Disksuite or pay a premium for a Veritas Volume Manager license). Heck, the X1's only hold two fricken disk drives, the Xserv holds 4!
No matter how you look at it, the Xserve trounces the Sun Netra X1/T1.
While the Cobalt is a little closer processor wise (1.26 Ghz PIII, hardware Raid on higher end models) it still only supports 2 Disk drives and a single processor.
All that I see missing from the Xserve is a redundant power supply, but I guess that was hard to fit into a 1U package...
It's amazing to think, each one of these 1U servers has more CPU than a Sun 280R with dual 900 MHz processors. Why do you think Sun doesn't make a 1U box with this much power? It would take away from selling their 4U boxes. Oh that and the size of a U3 processor is about half the size of the Xserve already..
>>I'M an Electrical Engineer, and I didn't know what the heck Vff was!!!
:)
Of course, I went to college in the late 1990's..
Did anyone other than me see the AOL Selling Price diagram on the 2nd sheet?
I seriously doubt that sheet was made as far back as the 1970's!
Cliff,
PLease forward me any information you have on this "block" roadrunner has for you. I'll do some digging, and find the reasl reason, but I can guarantee that RR has NOT stopped all forwarded e-mails from working correctly.
E-mail me, and we'll work through the details...
Thanks,
Ricardo
I believe Microsoft was offering cash to everyone but AOL/TimeWarner because while the other companies may not specifically be pro or anti microsoft, AOL is definately Pro Sun/Solaris and only uses Microsoft products sparingly, if at all....
It's interesting to see which Company (@home vs. RoadRunner) survived...
The unfortunate part of this is that RoadRunner alone will stand out in the field of Cable ISP's.. But it's not like there was any competition to begin with, you usually don't have a choice which cable company's "zone" you fall under....
I work for an ISP also that has quite a few customers throught the country...
:-)
There are multiple methods currently in use to help deal with the IP utilization scheme, but I think the two methods that we use on a per-city/regional basis would assist you the most...
One highly overlooked way of assisting with IP deligation is... DNS! Please, do yourself a favor, and complete full reverses and forwards for every ip you have.. If it's a subscriber IP, make sure the reverse has -sub- or some other method of knowing what that IP is utilized for.
In addition, if it's appropriate for your subscriber base, and you''re allowed, put something about where that ip space is being deployed also in the dns entry...
Something like this: aabbcc-westside-sub.(router interface).(domain) helps out greatly when troubleshooting ip problems, routing, etc because you don't need to do any additional checking to know where this IP space is (supposed to be) utilized.
In addition, don't forget to keep track, in a spreadsheet or database of some sort, where the ip range/block is deployed, and keep it updated when new ip's are deployed. Mark if the range is for dynamically assigned ip's (subscribers) or static IP's (special customers and/or head end equipment, router loopbacks, interfaces, etc). Stick to your assignment. Don't have multiple IP networks on the same wire if it can be avoided (unless you use Trunking of course)....
Hmmm.. Now that I think about it, it really isn't so simple, is it?
gogo is no longer under development (it was a college CS project I believe) and the latest beta LAME is now faster than gogo...
Don't believe me? Try the latest Lame!
the xbox has a unit to output an hdtv signal. This means the xbox is rendering a significantly higher resolution image, since the resolution of an hdtv is higher than the resolution of a standard television....
HDTV is not doing all the work.
He's comparing Bluetooth and USB because they both "serialize" the data with "proprietary" protocols. Of course, the USB protocol isn't considered "proprietary" because it's the "standard" nowadays...
The author is basically stating that the techonology *should* be used for simple device connection, and not complex network connections..
I think..
:)
I work for a pretty decent Internet Access company, and am on call two weeks out of the month.
For each day on call, I recieve $15.00 regardless of whether I was paged or not.
I get paid per hour regular rate for any work I need to do while on call if I can do it from home.
If I need to travel at all, I get paid for the miles, and a two hour minimum. So if I travel somewhere, and it takes me 5 minutes to fix, I get paid for 2 hours plus milage. If I work for 3 hours, then I get paid 3 hours.
It's not too bad, considering things work very well around here, and there are hardly any serious problems.
How fundamentally hard is it to change the code so different memory management techniques are used for different architectures? I'm not a coder by heart, much less a low level c or assembly coder, so I don't even know if this is possible.
It seems to me if IBM submitted a patch that fundamentally changed memory management for all architectures, of course it would get thrown out. What's the problem for having additional or different code for "mainframe" type computers vs. "desktop" or "server" type computers?
Maybe you're the one who should get a clue?
:-)
The way portsentry works is by setting up an ipchains statement blocking the ip address in question on the input chain.
If your gateway is running any services for you, then those services are now blocked. Many ISP's use a true router as the gateway, while other ISP's/companies use Solaris or other unix type solutions.
What if the gateway ip was also your DNS server? Wow. That sucks. No more DNS. How about your DHCP server? maybe your smtp gateway? All of the sudden, you've got the appearance of a downed network all because your gateway IP was blocked by portsentry.
This works because it happened to me.
Either way, the solution is to simply add the IP's you do not want to be blocked into the portsentry.ignore file....
Rick
This doesn't seem to be that interesting snce alot of us have been doing this for some time. The one place I do see this blooming, and it was mentioned in the article, is faxing, color or otherwise!
This is going to be a great way for businesses who send alot of faxes to save on LD charges for faxing, as long as the reciever/sender has one of these IPP printers...
Lets see how long it takes for these things to take off!