I got this in reply to my queries to msn/hotmail about frequent failed delivery of messages to their servers:
From: "J**** H****" To: "Phil Dier" Subject: RE: Problems with failed delivery Date: Tue, 1 Jun 2004 16:10:11 -0700
Hello,
In the last couple of weeks, MSN Hotmail was experiencing an unusually heavy volume of incoming mail and this has placed us in the condition of having our incoming mail servers temporarily saturated with incoming connections. I would suggest that you make sure that your system is trying to make connections to more than one IP at a time, that it rotates connections between different IPs in our MX record, and that you use persistent connections when you do connect. Many domains will suspect a server of being a spammer if they stay connected beyond, say, 50 RSET commands, but our system does not do that. We encourage unlimited RSETs for efficiency's sake.
Our experience shows that the condition will abate sometime around 7 pm Pacific, so your queues should begin draining at that time, especially if you follow the recommendations above.
I wish there was something I could tell you for sure but we don't know what is causing this or when it will clear up.
As a web app deveoper, I'd love to add another browser to the lists that I can support. Unfortunately, the list of unsupported features is longer than the list of supported ones. Hopefully they'll stick with the standard and implement the useful features of the dom (the ones they support now leave much to be desired).
--- From the Paper --- The simple fact is that Microsoft KNOW that they cannot fix these flaws. The mechanism used is the Win32 API, which has been fairly static since Windows NT 3.5 was released in July 1993. Microsoft cannot change it. The only way they could stop these attacks is to prevent applications from running on the desktop with privileges higher than those of the user logged on. Microsoft believe that the desktop is a security boundary, and that any window on it should be classed as untrusted. This is true, but only for Windows, and because of these flaws. Either way, Microsoft break their own rules; there's numerous windows on a standard desktop that run as localsystem. Use my shatter tool to verify this - there's a whole load of unnamed windows which might be running as Localsystem, and a few invisible windows (like the DDE server) that definitely are. Security boundary my arse. ------ (emphasis mine)
When ms quits writing desktop apps that are vulnerable, I guess everyone else will follow suit?
Well, after a rough start, the Nashville meetup turned out pretty well. We met at TGIFridays in a local mall, and while they were expecting us, I don't think they were expecting quite as many ppl as showed up. First they put us outside on the patio, then it started raining:/ We got moved inside, and after some table shuffling, we finally got settled down and got some drinks:) Oh, did I mention that about 18 ppl showed up (more than had rsvp'd). Conversation on my side of the table ranged from port concentrators to programming to handguns to counterstrike. We covered pretty much everything geek. After getting run out of friday's at 10, about half of the group continued to stand in the parking lot and talk for about an hour. Then the mall security got suspicious! ha, there weren't any computers around, so we were completely harmless. So, it was a great success and I look forward to doing it again next month.
But, like the command line, you don't think its slowing you down becuse you're working with subjective time and hte apple tests were using objective time.
spoken like a true point and click gui'er. anyone that's reasonably well experienced with the command line would laugh. ha ha ha!
cli offers a lot of power to the user through things such as shell scripting, tab completion, command history, pipes!, *low bandwidth* remote management, etc etc etc. and don't tell me that you can script a gui, because you'll spend much more time doing simple things in a gui script that you could do much much easier in a shell script.
these misconceptions come from a lack of experience with the command line. if you work with it *every* day (as i do), and *truly* explore all its features, only then will you see its true worth, grasshopper.
Anyone who runs production systems expects (demands?) even-numbered releases to be stable.
There's no serious linux admin out there that wants to have to test a new supposedly "stable" kernel for a week before employing it on a bunch of mission critical boxes. Say I want/need a feature in the new release of the "stable" kernel, should i expect anything less that a kernel that is rock solid? There's people still running 2.2 series kernels because of the whole 2.4 feature creep fiasco.
All the stability issues should be worked out before a kernel is considered "stable." Seems to make sense to me...
while()/list() bug in php
on
Pet Bugs?
·
· Score: 1
Here's one that stumped me for a while (no pun intended...)
when using: while(list($k,$v)=each($array) && list($a,$b)=each($anotherarray));
php hangs. no errors. no warnings. just hangs. at least, it did in 4.0.6
i managed to take down two webservers because of this bug. php and apache would run away with memory and eventually new processes couldn't spawn. it was loads of fun...
Am i the only one that's had problems compiling 2.4.7 with slack 8? Every time i compile, the bzImage gets smaller (anywhere from 400k to 61k). This is monolithic with usb and other bloat in it. 2.4.6 is ~900. I have successfully compiled on slack 7.1. any ideas?
"...felt Vorbis was the least realistic, with MP3Pro sounding better and Windows Media Audio best of all -- but none of these formats achieved CD quality."
Slashdot Mirror
...and lots of other mail...
I got this in reply to my queries to msn/hotmail
about frequent failed delivery of messages to
their servers:
From: "J**** H****"
To: "Phil Dier"
Subject: RE: Problems with failed delivery
Date: Tue, 1 Jun 2004 16:10:11 -0700
Hello,
In the last couple of weeks, MSN Hotmail was experiencing an unusually
heavy volume of incoming mail and this has placed us in the condition of
having our incoming mail servers temporarily saturated with incoming
connections. I would suggest that you make sure that your system is
trying to make connections to more than one IP at a time, that it
rotates connections between different IPs in our MX record, and that you
use persistent connections when you do connect. Many domains will
suspect a server of being a spammer if they stay connected beyond, say,
50 RSET commands, but our system does not do that. We encourage
unlimited RSETs for efficiency's sake.
Our experience shows that the condition will abate sometime around 7 pm
Pacific, so your queues should begin draining at that time, especially
if you follow the recommendations above.
I wish there was something I could tell you for sure but we don't know
what is causing this or when it will clear up.
Sincerely,
J****, MSN Hotmail
Intel Telecom products:o ducts/telec om/index.htm
/ 7972web. htm
http://www.intel.com/design/network/pr
Intel Dialogic Drivers for Linux:
http://www.intel.com/network/csp/products
As a web app deveoper, I'd love to add another browser to the lists that I can support. Unfortunately, the list of unsupported features is longer than the list of supported ones. Hopefully they'll stick with the standard and implement the useful features of the dom (the ones they support now leave much to be desired).
The simple fact is that Microsoft KNOW that they cannot fix these flaws. The mechanism used is the Win32 API, which has been fairly static since Windows NT 3.5 was released in July 1993. Microsoft cannot change it. The only way they could stop these attacks is to prevent applications from running on the desktop with privileges higher than those of the user logged on. Microsoft believe that the desktop is a security boundary, and that any window on it should be classed as untrusted. This is true, but only for Windows, and because of these flaws. Either way, Microsoft break their own rules; there's numerous windows on a standard desktop that run as localsystem. Use my shatter tool to verify this - there's a whole load of unnamed windows which might be running as Localsystem, and a few invisible windows (like the DDE server) that definitely are. Security boundary my arse.
------ (emphasis mine)
When ms quits writing desktop apps that are vulnerable, I guess everyone else will follow suit?
Well, after a rough start, the Nashville meetup turned out pretty well. We met at TGIFridays in a local mall, and while they were expecting us, I don't think they were expecting quite as many ppl as showed up. First they put us outside on the patio, then it started raining :/ We got moved inside, and after some table shuffling, we finally got settled down and got some drinks :) Oh, did I mention that about 18 ppl showed up (more than had rsvp'd). Conversation on my side of the table ranged from port concentrators to programming to handguns to counterstrike. We covered pretty much everything geek. After getting run out of friday's at 10, about half of the group continued to stand in the parking lot and talk for about an hour. Then the mall security got suspicious! ha, there weren't any computers around, so we were completely harmless. So, it was a great success and I look forward to doing it again next month.
phil
actually, that was 2.4.11
But, like the command line, you don't think its slowing you down becuse you're working with subjective time and hte apple tests were using objective time.
spoken like a true point and click gui'er. anyone that's reasonably well experienced with the command line would laugh. ha ha ha!
cli offers a lot of power to the user through things such as shell scripting, tab completion, command history, pipes!, *low bandwidth* remote management, etc etc etc. and don't tell me that you can script a gui, because you'll spend much more time doing simple things in a gui script that you could do much much easier in a shell script.
these misconceptions come from a lack of experience with the command line. if you work with it *every* day (as i do), and *truly* explore all its features, only then will you see its true worth, grasshopper.
What's a mouse? My keyboard has 104 buttons!
Anyone who runs production systems expects (demands?) even-numbered releases to be stable.
There's no serious linux admin out there that wants to have to test a new supposedly "stable" kernel for a week before employing it on a bunch of mission critical boxes. Say I want/need a feature in the new release of the "stable" kernel, should i expect anything less that a kernel that is rock solid? There's people still running 2.2 series kernels because of the whole 2.4 feature creep fiasco.
All the stability issues should be worked out before a kernel is considered "stable." Seems to make sense to me...
Here's one that stumped me for a while (no pun intended...)
when using:
while(list($k,$v)=each($array) && list($a,$b)=each($anotherarray));
php hangs. no errors. no warnings. just hangs.
at least, it did in 4.0.6
i managed to take down two webservers because of this bug. php and apache would run away with memory and eventually new processes couldn't spawn. it was loads of fun...
ok, i noticed that in the document they expanded the 'PERL' acronym. what would they write if Brian had used GNU software in some way?
gcc 2.95.3
Am i the only one that's had problems compiling 2.4.7 with slack 8? Every time i compile, the bzImage gets smaller (anywhere from 400k to 61k). This is monolithic with usb and other bloat in it. 2.4.6 is ~900. I have successfully compiled on slack 7.1. any ideas?
"...felt Vorbis was the least realistic, with MP3Pro sounding better and Windows Media Audio best of all -- but none of these formats achieved CD quality."
...microsoft probably agreed to ignore all license violations in the NM govenment offices.
Well, i would have read the whole article, but i just remembered that i need to go rewrite /etc/termcap
--phil