Re:Don't dis the invisible car
on
Review: Solaris
·
· Score: 2
I didn't see the movie, so I can't entirley refute the concept, but it leaves me wondering: what if you're not looking at the car from the exact same angle as one of the finite number of cameras and LCDs? It's a very valid concept if you're looking either exactly at the front/rear/side of the car, but if you look at it from an angle, you'll see the cameras and the rest of the car.
Uh, there is no Solaris 2.7 or Solaris 2.8, or Solaris 8.0. The naming convention goes like this: ... Solaris 2.6 Solaris 7 (the 2.x was dropped) Solaris 8 Solaris 9 This is nitpicky stuff, but some people insist on using the obsolete 2.x naming, which is simply wrong. which is called 2.8 when talking about compiling software IIRC, the configure scripts of some software looks in the machine's uname output for SunOS 5.x and puts that x into Solaris 2.x to determine the machine's OS. Or something like that.
LX50 runs a sun version of Linux, hence the 'LX'. You can order the LX50 preloaded with either SunLinux 5.0 or Solaris 8 x86. The website also mentions that the LX50 will be supported under Solaris 9 x86.
If you really want an SVR4-ish nix, use a bsd Huh? That's like saying "If you really want an apple, have an orange."
Re:.. and in the darkness bind them
on
More on Longhorn
·
· Score: 2
Microsoft: The new version of windows will be faster, more stable, and more fun! The public: Oh, Windows is great, I can surf the web and send email and have a great web experience because I run Windows!
Tobacco: Cigarettes are stylish, fun, and we don't know anything about them causing cancer, honest! The public: Cigarettes kill, and I'll sue you if they cause me to have cancer.
Sure, the tobacco companies are blatantly lying to everyone, but then again, nobody believes them, either. On the other hand, Microsoft insists that it's not a monopoly, and insists that its products are secure/reliable/inexpensive to own, and 90% of people believe them. That's a big difference. Maybe it will change in the future - before it was widely known that smoking caused cancer, it was considered a good thing (or at least it wasn't considered deadly.)
I used to randomly hear short interjections of the conversations between CBers on my home stereo. The funny thing is, I'd swear it was the same guy every time, although I only heard a few seconds at a time, so who knows. All I had was an NAD CD player directly feeding into a Parasound amplifier, with nothing but 1/2 meter Audioquest interconnects connecting the two. Nevertheless, once in a while I'd suddenly hear 4 or 5 words come crackling out of the speakers, in and out like a flash. It was quite spooky until I figured out that it must have been truckers going by on the highway, which was about 1 mile away from my apartment.
When the top-of-the-line graphics card costs half of what it does today Why would high-end graphics cards come down in price? For instance, 3DLabs Wildcat-series cards are, conceivably, always going to be priced in the several thousand dollar range. This is the high-end. What you are referring to is the upper level of gaming video cards. IMO the upper level of that segment has come down, but it's a matter of economics, as always. In these days of 3 GHz processors, people aren't so willing to pay $400 for a good gaming card anymore, so economic factors have caused the "high-end" or near high-end of gaming cards to come down. This has nothing to do with the 0.13 micron process, and I don't think anybody has been saying that the 0.13 micron process would drive costs down. If anything, it's to cram more transistors onto a chip and reduce heat/power. Look, there will always be a high-end. For example, even nowadays with the $200 Wal-Mart PC, you can still pay as much as you want at the high-end.
Why would they allow pinging anyways? Right, some high profile sites do just that. www.microsoft.com, for example, does not reply to ICMP echo-requests. It goes along with the idea of only allowing what's absolutely necessary, in terms of daemons and open ports. I suppose pinging might suck bandwidth Yeah, even if they decide not to respond to the pings, the ICMP traffic is still coming down the wire. In that case, the traffic can be filtered upstream. However, from what I read, it sounds like this attack was not echo requests, but apparently syn packets. Whether they were TCP or UDP and what port is unknown, but if they were UDP port 53, there wouldn't be much anybody could do to separate DDOS traffic from legitimate traffic.
Enough said Not really... what are you trying to say? Can DJBDNS prevent thousands of trojaned Windows systems from pinging it incessantly? I didn't think so, and you had no point.
Good point; MCSEs always boast of Windows' clustering ability (needed for reliability more than anything,) although IIRC it's more high-availability clustering than parallel computational clustering. That said, as highly as MS touts Windows Datacenter server, it's surprising (well, OK not really) that a system running Datacenter Server hasn't even cracked the top 500.
Oracle has recently replaced their very large Sun servers with arrays of Dell machines running a commodity OS Yes, Solaris likely is in more danger than the BSDs; if Sun keeps decreasing in viability. Solaris may go away. However, IMO Sun's problem is on the hardware side. Sun makes great hardware, and Solaris on Sun hardware is a tough combination to beat. But Sun hardware is expensive, and cheap x86 systems can run circles around Sun hardware at the same price point, so this is where Sun is in danger. If SPARC hardware ever goes away, Solaris could likely go away with it.
...their "The only real Unix is Solaris; Linux and *BSD are toys" mindset... All I can say is that on SPARC hardware, Solaris really is the best OS. OpenBSD and NetBSD run nicely on SPARC (it's a very mature port,) but IME Linux is sketchy at best on SPARC. In the past Sun has criticized Linux (and rightfully so as it applies to SPARC hardware) but I don't recall any negativity towards OpenBSD or NetBSD.
I doubt anyone achieved anywhere near 2.5MBps Funny thing is, the article claims that one of the poor guys achieved 100Mbps. I'm no cable system expert, but I don't think that's even possible. Doesn't DOCSIS top out at something like 37 Mbps?
If you know anything at all about what happened with Kevin Poulsen, you'll remember that PacBell (a large corporation, no less) had to try very hard to get the FBI and the US attorney involved in the case against Poulsen. And his crimes were way more serious than these uncapping incidents. That said, it sounds as if the buffoons at Buckeye pulled some strings and hyped up the monetary figures to get the FBI's attention.
Time Warner putting a stop to a monopoly? Now there's a first! Sounds like poetic justice. The big fish in the little pond (Block/Buckeye) will get chewed up and spit out by the big fish, period. In my opinion local monopolies are worse than large monopolies, because all of their energies are focused on one locality, so they are especially pervasive. This one should be stopped, and if it takes Time Warner to do it, so be it.
Config files in *nix are often inconsistent and obscure The article specifically talks about FreeBSD, so maybe you should take a look at FreeBSD's configuration files. What could be easier than/etc/defaults/rc.conf (unless you can't read)? To wit: sshd_enable=YES. OMG that was soooo inconsistent and obscure?!?! Or how about: hostname="foo.bar.com" WTF? Where do I press OK? What is this, text? Wow, who uses text anymore... Seriously, you have a point about sendmail.cf, but most config files aren't so bad, and even then the defaults are usually what you need, and they're already there, so all that's needed is to turn daemons on or off.
We probably don't need a whitepaper to tell us what we already knew No, but this paper shows us that Microsoft already knew what we knew: that FreeBSD is much better in terms of reliability, configuration, and administration. I'd read the "marketingized" version of the (attempted, partially successful) Hotmail conversion before, but this document sheds light on what really happened and why.
Heh, I had only looked at the first few lines or so, and didn't think anything of it. Did anyone look in the parent directory from where that services file is? Or if the trojan gets any other files besides services?
Siltakoski Petri is apparently just the guy who registered that domain. It could be that a user from that domain is involved or, as you said, that server has been r00ted. Funny, though, http://mars.raketti.net/~mash/services is nothing but a FreeBSD/etc/services file.
How did it get into tcpdump.org's sources exactly? Presumably the tcpdump.org FTP server got 0wned, and the trojan was planted, but the people that found the trojan aren't the server admins - they just found it in the source they downloaded. And I doubt we will find out how the perpetrators got in, either. It would have been nice to find out in more detail what happened when the OpenBSD FTP server was compromised, but people are usually tight-lipped in these cases.
This guy's running Windows, OS X, and 2 Linux distributions that try to be Windows-like. Some Unix wizard. He's not even actually running Unix. Add in a SPARC/Solaris machine (to actually lend some credibility to his Solaris credentials,) an RS/6000 running AIX, and a PA-RISC running HP-UX, and then I might start to be impressed.
These aren't "Become the Master of UNIX in 24 hours", Clearly not, but with such a suggestive title (not "Become a Unix user" or "learning Unix" but flat-out "become a system administrator") that's a pretty lofty claim. I suspect one could learn basic skills applicable to a small, friendly, very lightly loaded network with a very capricious IT manager, but forget about it if it's a large, hostile network with PHBs around.
What part of The boards are linked by a network assembled by Linux Networx into a clustered system that will have 960 server nodes. didn't you understand?
Here's a related nVidia story about a commercial studio using Linux and nVidia Related? How so? The article you quote concerns the use of the Quadro4 card with Linux. The Slashdot story concerns drivers for Nvidia cards for FreeBSD. Do you realize that FreeBSD and Linux are two very different operating systems? This is a FreeBSD story, with a nice vote of support from a large graphics manufacturer, so your Linux plug really comes off as trollish. Let FreeBSD enjoy the spotlight when it gets it.
While I have a linksys router, this still does not concern me Is it only this vulnerability that doesn't concern you, or home network security issues in general don't concern you? Just because your life doesn't depend on your home network security doesn't mean you shouldn't be responsible and vigilant with security. Script kiddies just love folks like you, and if some bored teenager happens upon your DOS'able router, he'll keep shutting you down just as fast as you can power cycle, just for the fun of it. After the first few times, your tune will change. I have enough problems with AT&T cables fluctuating speeds You want to know one factor in the speed problem? People that don't care or know about security are constantly consuming bandwidth due to viruses and worms. Every day I see numerous attempts to spread Code Red/Nimda/whatever, and most of them come from ATTBI. So, stop being a part of the problem and be part of the solution.
I don't think there should be any expectation of anonymity, since libraries are public institutions, after all. I'm also of the opinion that it's OK to have cameras on street corners, because how is that really different from the cop walking down the street watching for anything suspicious? Or just some guy staring at you while you walk by. It's a public place, other people can see you, so why pretend that you have any inherent privacy? On the other hand, if the feds are looking for people that check out controversial books, then it almost seems like entrapment: the books are there for the taking, but you better not touch them, or else. Of course, the alternative is for the libraries to remove the aforementioned "flagged" titles, but that would be outright censorship.
Slashdot Mirror
I didn't see the movie, so I can't entirley refute the concept, but it leaves me wondering: what if you're not looking at the car from the exact same angle as one of the finite number of cameras and LCDs? It's a very valid concept if you're looking either exactly at the front/rear/side of the car, but if you look at it from an angle, you'll see the cameras and the rest of the car.
Uh, there is no Solaris 2.7 or Solaris 2.8, or Solaris 8.0. The naming convention goes like this:
... Solaris 2.6
Solaris 7 (the 2.x was dropped)
Solaris 8
Solaris 9
This is nitpicky stuff, but some people insist on using the obsolete 2.x naming, which is simply wrong.
which is called 2.8 when talking about compiling software
IIRC, the configure scripts of some software looks in the machine's uname output for SunOS 5.x and puts that x into Solaris 2.x to determine the machine's OS. Or something like that.
LX50 runs a sun version of Linux, hence the 'LX'.
You can order the LX50 preloaded with either SunLinux 5.0 or Solaris 8 x86. The website also mentions that the LX50 will be supported under Solaris 9 x86.
If you really want an SVR4-ish nix, use a bsd
Huh? That's like saying "If you really want an apple, have an orange."
Microsoft: The new version of windows will be faster, more stable, and more fun!
The public: Oh, Windows is great, I can surf the web and send email and have a great web experience because I run Windows!
Tobacco: Cigarettes are stylish, fun, and we don't know anything about them causing cancer, honest!
The public: Cigarettes kill, and I'll sue you if they cause me to have cancer.
Sure, the tobacco companies are blatantly lying to everyone, but then again, nobody believes them, either. On the other hand, Microsoft insists that it's not a monopoly, and insists that its products are secure/reliable/inexpensive to own, and 90% of people believe them. That's a big difference. Maybe it will change in the future - before it was widely known that smoking caused cancer, it was considered a good thing (or at least it wasn't considered deadly.)
I used to randomly hear short interjections of the conversations between CBers on my home stereo. The funny thing is, I'd swear it was the same guy every time, although I only heard a few seconds at a time, so who knows. All I had was an NAD CD player directly feeding into a Parasound amplifier, with nothing but 1/2 meter Audioquest interconnects connecting the two. Nevertheless, once in a while I'd suddenly hear 4 or 5 words come crackling out of the speakers, in and out like a flash. It was quite spooky until I figured out that it must have been truckers going by on the highway, which was about 1 mile away from my apartment.
When the top-of-the-line graphics card costs half of what it does today
Why would high-end graphics cards come down in price? For instance, 3DLabs Wildcat-series cards are, conceivably, always going to be priced in the several thousand dollar range. This is the high-end. What you are referring to is the upper level of gaming video cards. IMO the upper level of that segment has come down, but it's a matter of economics, as always. In these days of 3 GHz processors, people aren't so willing to pay $400 for a good gaming card anymore, so economic factors have caused the "high-end" or near high-end of gaming cards to come down. This has nothing to do with the 0.13 micron process, and I don't think anybody has been saying that the 0.13 micron process would drive costs down. If anything, it's to cram more transistors onto a chip and reduce heat/power. Look, there will always be a high-end. For example, even nowadays with the $200 Wal-Mart PC, you can still pay as much as you want at the high-end.
Why would they allow pinging anyways?
Right, some high profile sites do just that. www.microsoft.com, for example, does not reply to ICMP echo-requests. It goes along with the idea of only allowing what's absolutely necessary, in terms of daemons and open ports.
I suppose pinging might suck bandwidth
Yeah, even if they decide not to respond to the pings, the ICMP traffic is still coming down the wire. In that case, the traffic can be filtered upstream. However, from what I read, it sounds like this attack was not echo requests, but apparently syn packets. Whether they were TCP or UDP and what port is unknown, but if they were UDP port 53, there wouldn't be much anybody could do to separate DDOS traffic from legitimate traffic.
Enough said
Not really... what are you trying to say? Can DJBDNS prevent thousands of trojaned Windows systems from pinging it incessantly? I didn't think so, and you had no point.
Good point; MCSEs always boast of Windows' clustering ability (needed for reliability more than anything,) although IIRC it's more high-availability clustering than parallel computational clustering. That said, as highly as MS touts Windows Datacenter server, it's surprising (well, OK not really) that a system running Datacenter Server hasn't even cracked the top 500.
Oracle has recently replaced their very large Sun servers with arrays of Dell machines running a commodity OS
...their "The only real Unix is Solaris; Linux and *BSD are toys" mindset...
Yes, Solaris likely is in more danger than the BSDs; if Sun keeps decreasing in viability. Solaris may go away. However, IMO Sun's problem is on the hardware side. Sun makes great hardware, and Solaris on Sun hardware is a tough combination to beat. But Sun hardware is expensive, and cheap x86 systems can run circles around Sun hardware at the same price point, so this is where Sun is in danger. If SPARC hardware ever goes away, Solaris could likely go away with it.
All I can say is that on SPARC hardware, Solaris really is the best OS. OpenBSD and NetBSD run nicely on SPARC (it's a very mature port,) but IME Linux is sketchy at best on SPARC. In the past Sun has criticized Linux (and rightfully so as it applies to SPARC hardware) but I don't recall any negativity towards OpenBSD or NetBSD.
I doubt anyone achieved anywhere near 2.5MBps
Funny thing is, the article claims that one of the poor guys achieved 100Mbps. I'm no cable system expert, but I don't think that's even possible. Doesn't DOCSIS top out at something like 37 Mbps?
If you know anything at all about what happened with Kevin Poulsen, you'll remember that PacBell (a large corporation, no less) had to try very hard to get the FBI and the US attorney involved in the case against Poulsen. And his crimes were way more serious than these uncapping incidents. That said, it sounds as if the buffoons at Buckeye pulled some strings and hyped up the monetary figures to get the FBI's attention.
Time Warner putting a stop to a monopoly? Now there's a first!
Sounds like poetic justice. The big fish in the little pond (Block/Buckeye) will get chewed up and spit out by the big fish, period. In my opinion local monopolies are worse than large monopolies, because all of their energies are focused on one locality, so they are especially pervasive. This one should be stopped, and if it takes Time Warner to do it, so be it.
Config files in *nix are often inconsistent and obscure /etc/defaults/rc.conf (unless you can't read)? To wit: sshd_enable=YES. OMG that was soooo inconsistent and obscure?!?! Or how about: hostname="foo.bar.com" WTF? Where do I press OK? What is this, text? Wow, who uses text anymore... Seriously, you have a point about sendmail.cf, but most config files aren't so bad, and even then the defaults are usually what you need, and they're already there, so all that's needed is to turn daemons on or off.
The article specifically talks about FreeBSD, so maybe you should take a look at FreeBSD's configuration files. What could be easier than
We probably don't need a whitepaper to tell us what we already knew
No, but this paper shows us that Microsoft already knew what we knew: that FreeBSD is much better in terms of reliability, configuration, and administration. I'd read the "marketingized" version of the (attempted, partially successful) Hotmail conversion before, but this document sheds light on what really happened and why.
Heh, I had only looked at the first few lines or so, and didn't think anything of it. Did anyone look in the parent directory from where that services file is? Or if the trojan gets any other files besides services?
Siltakoski Petri is apparently just the guy who registered that domain. It could be that a user from that domain is involved or, as you said, that server has been r00ted. Funny, though, http://mars.raketti.net/~mash/services is nothing but a FreeBSD /etc/services file.
How did it get into tcpdump.org's sources exactly?
Presumably the tcpdump.org FTP server got 0wned, and the trojan was planted, but the people that found the trojan aren't the server admins - they just found it in the source they downloaded. And I doubt we will find out how the perpetrators got in, either. It would have been nice to find out in more detail what happened when the OpenBSD FTP server was compromised, but people are usually tight-lipped in these cases.
This guy's running Windows, OS X, and 2 Linux distributions that try to be Windows-like. Some Unix wizard. He's not even actually running Unix. Add in a SPARC/Solaris machine (to actually lend some credibility to his Solaris credentials,) an RS/6000 running AIX, and a PA-RISC running HP-UX, and then I might start to be impressed.
These aren't "Become the Master of UNIX in 24 hours",
Clearly not, but with such a suggestive title (not "Become a Unix user" or "learning Unix" but flat-out "become a system administrator") that's a pretty lofty claim. I suspect one could learn basic skills applicable to a small, friendly, very lightly loaded network with a very capricious IT manager, but forget about it if it's a large, hostile network with PHBs around.
What part of
The boards are linked by a network assembled by Linux Networx into a clustered system that will have 960 server nodes.
didn't you understand?
Here's a related nVidia story about a commercial studio using Linux and nVidia
Related? How so? The article you quote concerns the use of the Quadro4 card with Linux. The Slashdot story concerns drivers for Nvidia cards for FreeBSD. Do you realize that FreeBSD and Linux are two very different operating systems? This is a FreeBSD story, with a nice vote of support from a large graphics manufacturer, so your Linux plug really comes off as trollish. Let FreeBSD enjoy the spotlight when it gets it.
While I have a linksys router, this still does not concern me
Is it only this vulnerability that doesn't concern you, or home network security issues in general don't concern you? Just because your life doesn't depend on your home network security doesn't mean you shouldn't be responsible and vigilant with security. Script kiddies just love folks like you, and if some bored teenager happens upon your DOS'able router, he'll keep shutting you down just as fast as you can power cycle, just for the fun of it. After the first few times, your tune will change.
I have enough problems with AT&T cables fluctuating speeds
You want to know one factor in the speed problem? People that don't care or know about security are constantly consuming bandwidth due to viruses and worms. Every day I see numerous attempts to spread Code Red/Nimda/whatever, and most of them come from ATTBI. So, stop being a part of the problem and be part of the solution.
I don't think there should be any expectation of anonymity, since libraries are public institutions, after all. I'm also of the opinion that it's OK to have cameras on street corners, because how is that really different from the cop walking down the street watching for anything suspicious? Or just some guy staring at you while you walk by. It's a public place, other people can see you, so why pretend that you have any inherent privacy? On the other hand, if the feds are looking for people that check out controversial books, then it almost seems like entrapment: the books are there for the taking, but you better not touch them, or else. Of course, the alternative is for the libraries to remove the aforementioned "flagged" titles, but that would be outright censorship.