>Yes, there's a fix for this, but what is the likelihood of every person who owns a Wifi router fixing this flaw?
I would use your question to defeat your argument... I can't think of another user community who would be MORE security conscious regarding firmware updates. If you thought about this before posting, you would also have come up empty.
Even the dd-wrt "newbs" know to check for updates, if for nothing else than shiny new features.
>We talk about the dangers of homogeny, but this is exactly the type of thing that homogeny causes. All the routers with DD-WRT implemented to save costs, but in the end everyone is screwed.
This does not follow.
The dd-wrt flaw is caused by a STUPID programming error, and would not be mitigated by "homogeny". You might as well claim that "Windows would be more secure if there were more versions of Windows".
Firmware bugs are always nasty face-palm slaps of stupidity. It doesn't matter if you are open source or closed.
dd-wrt will have a lower ratio of developers:users compared to say Ubuntu. With fewer developers, a bug is less likely to be caught in code review, testing, or if someone walks into the error that they recognize it for what it is.
>Just because we love Linux doesn't mean that we should sacrifice the entire ecosystem to that love. We need to nurture other implementations to prevent this type of virus from wiping out our entire networking infrastructure.
Why do you think this is a "Linux" problem? If you could take the dd-wrt code and run it on top of Windows (which you probably could..), it would STILL have the same vulnerability. Please learn what "CGI" is before conflating it with something else.
Look, the dev team obviously made some stupid design errors (httpd as root...). But also know now that dd-wrt has a huge community... folks will start looking REAL closely at the code for other security gaffes. Paid developers are starting to look at the dd-wrt code now, as some shrinkwrapped routers come with open source firmwares pre-installed.
Besides all that, you can't get any more fragmented (dd-wrt or not) than the router market.
Using this example as for why "Linux [would] sacrifice the entire ecosystem" is just rubbish, sorry to say.
>What's more, Google is the ultimate data mining company. They have tools like no one else for looking through vast amounts of data to find what they want.
Please clarify. Do you KNOW that Google mines "your" hosted email? I don't think they do in the way most would take your statement as saying.
Google can show you ads based on foundkeywords, but that's Javascript code running in your browser, and it's done in a black box sort of way.
The point you just made is "inability to control your data". This is precisely why a lot of people want to move AWAY from Microsoft.
As for 'where' your data is located - but even then, there's no physical barrier preventing Microsoft to having the same access to your email as Google would. True, data kept on Google's server might "seem" easier, but Microsoft has played along with US government (and other governments, if it helps sell their systems elsewhere).
You might feel safe behind your LAN based Exchange server and ISA firewall, but if Microsoft "wants" to get your email, remotely fetching it is only slightly more difficult for them than it would be if you hosted mail on someone's servers. I am suggesting that neither Microsoft nor Google snoops this type of data, but you're suggesting only Google "could" while I am saying both could, easily.
If you want to "control" your data, you need open source systems, on hardened open source OSS, and you follow other best practices like sandboxing your servers. That's probably overkill for many, but it is misleading to suggest that a LAN based Exchange server might be more secure/private than something hosted on Google, and it is that point I am responding to.
You know some people own MORE THAN ONE GPS for exactly the reasons you describe. If you hike more than once or twice a year, you're not going to take along your car GPS with you anymore, unless you are desperate. You're going to buy a rugged waterproof GPS like your example.
At some point, your car's needs for a GPS can be served by the smart phones. For some people the phone's GPS meets their need NOW, for others it will be served soon.
If you look through some REALLY old Sears or JC Penny catalogs, you'll see that they used to market "electric motors", all by themselves. People would buy add-on kits to make the motors do different things. The motors were too expensive and novel to have been embedded into another appliance, such as a washer machine.
Nowadays you do NOT hook up a motor to a washer machine's crank - it's just another cog in the machine and you never think about it. You can still buy electric motors for specialized applications but for all intents and purposes, as a device it has 'gone away'. That's where the GPS is heading -- it's not just going to be built into every phone, but also every car, pedal bike, laptop, etc.
You can expect "sporting GPS" sales to continue to rise until they are the most popular type sold, not because more people are exercising but because the car GPS market will fold into something else. It will be harder to replace a sporting GPS or fold it into something else, but that day will come (GPS in your boat's fish sonar?). Why not?
And charging people who disagree with your viewpoint is not 'Insightful', it's trolling for attention. This isn't a debate about science vs. creation myth, it's just GPS. Relax!
I'm wondering what the hell the federal government is doing mandating what kinds of light bulbs we can buy and use?!?!
What's next...federal mandates on underwear design?
Cayenne8: Building a rhetorical strawman out of underwear design is NOT very helpful to the discussion.
You -should- be concerned about unsustainable energy waste hitting your pocketbook. Energy conservation is both patriotic, and smart. Anything we can do to reduce energy waste will reduce the trade defecit, or the flow of dollars to terrorist states. Just because there is no draft in the USA does NOT mean we shouldn't do everything we can to support the troops.
Even people who want to see the USA destroyed, are still concerned about rising emissions levels and shrinking ice caps (like in Pakistan, where parts depend on glaciers used to be renewed, providing year round access to water).
PS - The government is not dictating that incandescents be banned.. they're only requiring all bulbs to meet a certain efficiency level. It just so happens that incandescent bulbs are typically 10-20% efficient, instead of the 70-80% where it needs to be.
There exists a huge investment in incandescent manufacturing. You can't deny that manufacturers are (grudgingly) innovating... this is the second recent breakthrough that could save that technology. If not, we'll move on to something else. I'm sure the luddites will find something else to complain about.
You'd be AMAZED at how many clueless admins use Spamhaus ZEN as a content filter. For a SMTP blocklist, Zen is great.
For a content-filter, it's broken. Yes, content filter. Some anti-spams apparently let you select Zen for filtering, which is wrong. Residential IP email clients and servers get blocked even though they relayed THROUGH their ISPs mailserver. They could just be using Outlook, as standard for a home user.
Spamhaus needs a non-engineer to document how to use their blacklists. They DO say no not "deep header parse" messages with Zen, but it's like one line out of 12 paragraphs on the page. It's not emphasised in a FAQ. It's not translated.
I would go insane without Spamhaus Zen... it's great. But I also go insane with what some mail sites do with it, and looking at the Spamhaus documentation I can't say they're making it difficult for those sites to make such mistakes...
>"Let's assume that on one piece they currently have a dimension of 12 inches +/- 0.01 inches. So they convert this dimension to metric giving a new value of 30.48 cm +/- 0.025 cm.... using the metric measurements would make that rocket utterly hell to construct."
If the part needs to be that certain length and tolerance, it will be, end of story. There's no inaccuracy and it will be machined like so. I doubt every part on the Japanese rockets is EXACTLY in 1mm increments.
The biggest payoff is in all the NON-MACHINED parts... fasteners and tiles and such. For some parts suppliers, they have to manufacture TWO of the part... one for the US market and one for the normal world. This raises costs due to assembly changes.
Next consider that not every manufacturers will even want to BOTHER making parts this way, and just make world standard. You'll still be able to source your parts somewhere else... but you have fewer bids on the contract... also leading to higher costs.
Lastly, if the parts are made in the US, there's no where in hell you can export them to. I think the only other country left on "English" measurements is Burma. Nice company, them.
I'm trying to assume you are American anyways, and how you think this is good for the USA. If you are not American... well, I -totally- recognize your motivation to keep the US on 'English' measurements.
It wouldn''t be a bad thing if the US were able to manufacture and export things again.
This is pure politics at it's most evil. Even if the budget allocated the conversion money to NASA, all the rightist wingnuts would say it's a UN conspiracy, and somehow serve as enough of a distraction or delay as to hurt other more pressing items, like healthcare reform.
Maintaining "imperial" measurements just gives away more jobs to emerging markets. Or rather, it SHOVES them away.
The US painted itself into a competitive corner long ago by clinging to "imperial" measurements. If NASA can not do it, no other US agency will even try... no matter what the consequences are.
Filter? I *block* SMTP based on Spamhaus and SpamCop.
Filtering is very expensive in terms of CPU.
FYI the test you do not like GoDaddy using is called URIBL_SBL, and it's part of SpamAssassin. The test normally adds a few points to a message (not block). That is how I use the test (other things must be wrong with the email for it to be filtered).
If GoDaddy actually blackholes messages based on URIBL_SBL, it would be far smarter for them to BLOCK SMTP before end of DATA. (OT: Then again, GoDaddy is a Microsoft shop and that means their admins come in and leave through a revolving door, and such admins have no interest in solving problems on their own as that's what UPGRADES are for!)
And yes, if you webhost on a ISP or server that's INFESTED with spammers, you deserve to have email containing your URL blocked... same as if your email came from a blacklisted IP. It's not about punishing bad ISPs; it's about the very low probability one of their hosted sites ISN'T spam. Some ISPs make a lot of money off pop-tart day old domain registration spammers.. ironically, GoDaddy is one of the largest spammer registrars after China.
>"The best people to hire are usually complete nerds because they alone tend to have the kind of basic grasp of software development that is needed because they acquire it in their spare time."
We have a winner! A dedicated problem-solver is what you want, and how much more dedicated can you get than this?
I'm suspicious of a lot of recent graduates, especially the ones who minored with an MBA. Call me a cynic, but I'm even more skeptical of graduates whose academic background is overseas and not easily verifiable (ie, the Mumbai equivalent of "ITT Technical Institute").
>Why can't we expect to hire fresh programmers who know how to... program?
Code wizards, Visual Studio, and a focus on 'hiding' underlying or fundamental technologies?
I work in email, and you would not believe how many Microsoft Exchange administrators do not know how to do a barebones SMTP session (for testing) over a Telnet port 25 connection.
There are plenty of talented programmers who have good work (or open source) experience, but never make it to your pile of resumes because HR wants "Masters or 10 years experience in Web 3.0".
I agree - most Americans and Brits do not know what you say. History with Iran begins in 1979.
If the US got independence from England BUT England got to keep all rights to industrial commodities, the population of the US would be as agitated as Iran's was. The UK left Iran's CITIES, but kept control of their oil.
Now when Rome left England, they did not sign some treaty giving Rome all the copper and coal contracts... funny, that.
>You see those 90 people with jobs will need someone to serve them burgers
Sadly, by burger-flippers, you mean Americans.
It's interesting how Microsoft cried for YEARS that the US was not spending enough on education... OK.. but Microsoft doesn't want to pay their fair share of taxse to fund it. Now that Obama is trying to close their tax loophole, Microsoft's been threatening to swear an oath to another nation who will take them (and many would).
Microsoft shareholders would do well to tell Balmer to shut his fat hole before he ruins the company.
First of all, he doesn't GET to make these types of decisions that he is suggesting.
Second, it's his job to SELL, not to get involved with national politics... particularly since he has not even SEEN any proposal. All that has been talked about is closing loopholes. This administration is very pro-jobs and has some kick ass advisors, advisors that the president will actually LISTEN to (instead of just calling them calling disloyal).
Third, the world is moving to open standards the way it has moved to Metric. We can expect the US to CLING to Microsoft long after the world has moved on to Linux, or whatever replaces Linux. Microsoft is a very rich house of cards... they only really make a profit on the OS and Office, yet they have a very VERY large product line dragging on expenses. A lot of those products (Visual Studio, IIS, Exchange) come close to losing money, and only exist to make it uncomfortable for any enterprise to move AWAY from Microsoft services.
So if Microsoft thinks it can do better outside America, screw them... I hope it creates a backlash. Ask In-bev how their Budweiser sales are doing since they stopped being "America's beer".
I've had older (Atari 1200XL 64K w/300 baud modem), but I still have a pristine Atari 520ST 1MB with a 19.2K modem.
I know I can get the ST on the 'net using a SLIP or PLIP route (hosted off a Linux box), but what I really want for it is an Ethernet adapter, but I can't find one. There's a myriad of dead-link ST hardware pages, but no clear path as to what hardware and software can be used.
Slashdot Mirror
>Yes, there's a fix for this, but what is the likelihood of every person who owns a Wifi router fixing this flaw?
I would use your question to defeat your argument... I can't think of another user community who would be MORE security conscious regarding firmware updates. If you thought about this before posting, you would also have come up empty.
Even the dd-wrt "newbs" know to check for updates, if for nothing else than shiny new features.
>We talk about the dangers of homogeny, but this is exactly the type of thing that homogeny causes. All the routers with DD-WRT implemented to save costs, but in the end everyone is screwed.
This does not follow.
The dd-wrt flaw is caused by a STUPID programming error, and would not be mitigated by "homogeny". You might as well claim that "Windows would be more secure if there were more versions of Windows".
Firmware bugs are always nasty face-palm slaps of stupidity. It doesn't matter if you are open source or closed.
dd-wrt will have a lower ratio of developers:users compared to say Ubuntu. With fewer developers, a bug is less likely to be caught in code review, testing, or if someone walks into the error that they recognize it for what it is.
>Just because we love Linux doesn't mean that we should sacrifice the entire ecosystem to that love. We need to nurture other implementations to prevent this type of virus from wiping out our entire networking infrastructure.
Why do you think this is a "Linux" problem?
If you could take the dd-wrt code and run it on top of Windows (which you probably could..), it would STILL have the same vulnerability. Please learn what "CGI" is before conflating it with something else.
Look, the dev team obviously made some stupid design errors (httpd as root...). But also know now that dd-wrt has a huge community... folks will start looking REAL closely at the code for other security gaffes. Paid developers are starting to look at the dd-wrt code now, as some shrinkwrapped routers come with open source firmwares pre-installed.
Besides all that, you can't get any more fragmented (dd-wrt or not) than the router market.
Using this example as for why "Linux [would] sacrifice the entire ecosystem" is just rubbish, sorry to say.
>What's more, Google is the ultimate data mining company. They have tools like no one else for looking through vast amounts of data to find what they want.
Please clarify. Do you KNOW that Google mines "your" hosted email? I don't think they do in the way most would take your statement as saying.
Google can show you ads based on foundkeywords, but that's Javascript code running in your browser, and it's done in a black box sort of way.
The point you just made is "inability to control your data".
This is precisely why a lot of people want to move AWAY from Microsoft.
As for 'where' your data is located - but even then, there's no physical barrier preventing Microsoft to having the same access to your email as Google would. True, data kept on Google's server might "seem" easier, but Microsoft has played along with US government (and other governments, if it helps sell their systems elsewhere).
You might feel safe behind your LAN based Exchange server and ISA firewall, but if Microsoft "wants" to get your email, remotely fetching it is only slightly more difficult for them than it would be if you hosted mail on someone's servers. I am suggesting that neither Microsoft nor Google snoops this type of data, but you're suggesting only Google "could" while I am saying both could, easily.
If you want to "control" your data, you need open source systems, on hardened open source OSS, and you follow other best practices like sandboxing your servers. That's probably overkill for many, but it is misleading to suggest that a LAN based Exchange server might be more secure/private than something hosted on Google, and it is that point I am responding to.
You're correct -- but so is the article hype.
You know some people own MORE THAN ONE GPS for exactly the reasons you describe. If you hike more than once or twice a year, you're not going to take along your car GPS with you anymore, unless you are desperate. You're going to buy a rugged waterproof GPS like your example.
At some point, your car's needs for a GPS can be served by the smart phones. For some people the phone's GPS meets their need NOW, for others it will be served soon.
If you look through some REALLY old Sears or JC Penny catalogs, you'll see that they used to market "electric motors", all by themselves. People would buy add-on kits to make the motors do different things. The motors were too expensive and novel to have been embedded into another appliance, such as a washer machine.
Nowadays you do NOT hook up a motor to a washer machine's crank - it's just another cog in the machine and you never think about it. You can still buy electric motors for specialized applications but for all intents and purposes, as a device it has 'gone away'. That's where the GPS is heading -- it's not just going to be built into every phone, but also every car, pedal bike, laptop, etc.
You can expect "sporting GPS" sales to continue to rise until they are the most popular type sold, not because more people are exercising but because the car GPS market will fold into something else. It will be harder to replace a sporting GPS or fold it into something else, but that day will come (GPS in your boat's fish sonar?). Why not?
And charging people who disagree with your viewpoint is not 'Insightful', it's trolling for attention. This isn't a debate about science vs. creation myth, it's just GPS. Relax!
I'm wondering what the hell the federal government is doing mandating what kinds of light bulbs we can buy and use?!?!
What's next...federal mandates on underwear design?
Cayenne8: Building a rhetorical strawman out of underwear design is NOT very helpful to the discussion.
You -should- be concerned about unsustainable energy waste hitting your pocketbook. Energy conservation is both patriotic, and smart. Anything we can do to reduce energy waste will reduce the trade defecit, or the flow of dollars to terrorist states. Just because there is no draft in the USA does NOT mean we shouldn't do everything we can to support the troops.
Even people who want to see the USA destroyed, are still concerned about rising emissions levels and shrinking ice caps (like in Pakistan, where parts depend on glaciers used to be renewed, providing year round access to water).
PS - The government is not dictating that incandescents be banned.. they're only requiring all bulbs to meet a certain efficiency level. It just so happens that incandescent bulbs are typically 10-20% efficient, instead of the 70-80% where it needs to be.
There exists a huge investment in incandescent manufacturing. You can't deny that manufacturers are (grudgingly) innovating... this is the second recent breakthrough that could save that technology. If not, we'll move on to something else. I'm sure the luddites will find something else to complain about.
Someone tell the Japanese we already HAVE "super tuna"... it's called a "whale", and the Japanese are harvesting them into extinction.
The Japanese could do a lot of good for the world's fisheries if they gave up fish for 1 hear, and hunted JELLYFISH.
Jellyfish are about all that is left of marine life, near the Japanese coast.
I think you missed the part that the fasteners would be standard metric. At least if you looked, that's how the rest of the world would understand it.
This measurement war is over. English measurements are not even used by England anymore. It is a dead parrot.
You'd be AMAZED at how many clueless admins use Spamhaus ZEN as a content filter. For a SMTP blocklist, Zen is great.
For a content-filter, it's broken. Yes, content filter. Some anti-spams apparently let you select Zen for filtering, which is wrong. Residential IP email clients and servers get blocked even though they relayed THROUGH their ISPs mailserver. They could just be using Outlook, as standard for a home user.
Spamhaus needs a non-engineer to document how to use their blacklists. They DO say no not "deep header parse" messages with Zen, but it's like one line out of 12 paragraphs on the page. It's not emphasised in a FAQ. It's not translated.
I would go insane without Spamhaus Zen... it's great. But I also go insane with what some mail sites do with it, and looking at the Spamhaus documentation I can't say they're making it difficult for those sites to make such mistakes...
The GPL license does not at all say what julesh says.. just ignore his error/fud.
>"Let's assume that on one piece they currently have a dimension of 12 inches +/- 0.01 inches. So they convert this dimension to metric giving a new value of 30.48 cm +/- 0.025 cm.... using the metric measurements would make that rocket utterly hell to construct."
If the part needs to be that certain length and tolerance, it will be, end of story.
There's no inaccuracy and it will be machined like so.
I doubt every part on the Japanese rockets is EXACTLY in 1mm increments.
The biggest payoff is in all the NON-MACHINED parts... fasteners and tiles and such. For some parts suppliers, they have to manufacture TWO of the part... one for the US market and one for the normal world. This raises costs due to assembly changes.
Next consider that not every manufacturers will even want to BOTHER making parts this way, and just make world standard. You'll still be able to source your parts somewhere else... but you have fewer bids on the contract... also leading to higher costs.
Lastly, if the parts are made in the US, there's no where in hell you can export them to. I think the only other country left on "English" measurements is Burma. Nice company, them.
I'm trying to assume you are American anyways, and how you think this is good for the USA.
If you are not American... well, I -totally- recognize your motivation to keep the US on 'English' measurements.
It wouldn''t be a bad thing if the US were able to manufacture and export things again.
This is pure politics at it's most evil. Even if the budget allocated the conversion money to NASA, all the rightist wingnuts would say it's a UN conspiracy, and somehow serve as enough of a distraction or delay as to hurt other more pressing items, like healthcare reform.
Maintaining "imperial" measurements just gives away more jobs to emerging markets. Or rather, it SHOVES them away.
The US painted itself into a competitive corner long ago by clinging to "imperial" measurements.
If NASA can not do it, no other US agency will even try... no matter what the consequences are.
We just have to live with it for now.
Filter? I *block* SMTP based on Spamhaus and SpamCop.
Filtering is very expensive in terms of CPU.
FYI the test you do not like GoDaddy using is called URIBL_SBL, and it's part of SpamAssassin. The test normally adds a few points to a message (not block). That is how I use the test (other things must be wrong with the email for it to be filtered).
If GoDaddy actually blackholes messages based on URIBL_SBL, it would be far smarter for them to BLOCK SMTP before end of DATA. (OT: Then again, GoDaddy is a Microsoft shop and that means their admins come in and leave through a revolving door, and such admins have no interest in solving problems on their own as that's what UPGRADES are for!)
And yes, if you webhost on a ISP or server that's INFESTED with spammers, you deserve to have email containing your URL blocked... same as if your email came from a blacklisted IP. It's not about punishing bad ISPs; it's about the very low probability one of their hosted sites ISN'T spam. Some ISPs make a lot of money off pop-tart day old domain registration spammers.. ironically, GoDaddy is one of the largest spammer registrars after China.
>"The best people to hire are usually complete nerds because they alone tend to have the kind of basic grasp of software development that is needed because they acquire it in their spare time."
We have a winner!
A dedicated problem-solver is what you want, and how much more dedicated can you get than this?
I'm suspicious of a lot of recent graduates, especially the ones who minored with an MBA. Call me a cynic, but I'm even more skeptical of graduates whose academic background is overseas and not easily verifiable (ie, the Mumbai equivalent of "ITT Technical Institute").
>Why can't we expect to hire fresh programmers who know how to... program?
Code wizards, Visual Studio, and a focus on 'hiding' underlying or fundamental technologies?
I work in email, and you would not believe how many Microsoft Exchange administrators do not know how to do a barebones SMTP session (for testing) over a Telnet port 25 connection.
There are plenty of talented programmers who have good work (or open source) experience, but never make it to your pile of resumes because HR wants "Masters or 10 years experience in Web 3.0".
I agree - most Americans and Brits do not know what you say. History with Iran begins in 1979.
If the US got independence from England BUT England got to keep all rights to industrial commodities, the population of the US would be as agitated as Iran's was. The UK left Iran's CITIES, but kept control of their oil.
Now when Rome left England, they did not sign some treaty giving Rome all the copper and coal contracts... funny, that.
Dugg for being insightful.
Oh, wait...
>You see those 90 people with jobs will need someone to serve them burgers
Sadly, by burger-flippers, you mean Americans.
It's interesting how Microsoft cried for YEARS that the US was not spending enough on education... OK.. but Microsoft doesn't want to pay their fair share of taxse to fund it. Now that Obama is trying to close their tax loophole, Microsoft's been threatening to swear an oath to another nation who will take them (and many would).
Anyone notice that Slashdot bans certain tags on this story?
Try entering the tag: americafirst - it gets changed.
Can't be a string length issue, because "nukeitfromorbit" works. Good enough for the mood of many.
Beautiful. I wish this were Digg, so you could get more than +5 points.
>What is this, the electronic version of submitting to a drug test?
Not quite. For some, this is the equivalent of demanding the user install hidden cameras and microphones throughout the home... INCLUDING the bedroom.
Man I'm glad I live in a blue state, where we're busy ripping OUT street surveillance cameras...
Microsoft shareholders would do well to tell Balmer to shut his fat hole before he ruins the company.
First of all, he doesn't GET to make these types of decisions that he is suggesting.
Second, it's his job to SELL, not to get involved with national politics... particularly since he has not even SEEN any proposal. All that has been talked about is closing loopholes. This administration is very pro-jobs and has some kick ass advisors, advisors that the president will actually LISTEN to (instead of just calling them calling disloyal).
Third, the world is moving to open standards the way it has moved to Metric. We can expect the US to CLING to Microsoft long after the world has moved on to Linux, or whatever replaces Linux. Microsoft is a very rich house of cards... they only really make a profit on the OS and Office, yet they have a very VERY large product line dragging on expenses. A lot of those products (Visual Studio, IIS, Exchange) come close to losing money, and only exist to make it uncomfortable for any enterprise to move AWAY from Microsoft services.
So if Microsoft thinks it can do better outside America, screw them... I hope it creates a backlash. Ask In-bev how their Budweiser sales are doing since they stopped being "America's beer".
Thank heavens!
If China invaded Taiwan and the US responded... I was worried that China would sue the US to keep those Hummers off the battlefield!
I've had older (Atari 1200XL 64K w/300 baud modem), but I still have a pristine Atari 520ST 1MB with a 19.2K modem.
I know I can get the ST on the 'net using a SLIP or PLIP route (hosted off a Linux box), but what I really want for it is an Ethernet adapter, but I can't find one. There's a myriad of dead-link ST hardware pages, but no clear path as to what hardware and software can be used.
Damn. You'd have enough time to brew beer, from scratch (crushed grains). That's one of my hobbies, and I never have enough time for it.
All I can say is I am glad Fallout 3 is not a MMORPG.