Oh no, I absolutely agree, PHP would probably be a nightmare in those 'enterprise' situations. And that is an absolutely great point, right tool, right job.
From what I've read, and in searching for an inexpensive webhost that supports JSP / servlets, it doesn't fit in well in a shared hosting environment. However, there are a few that make it work. Again, contrast that to PHP, it makes server stuff easy in a web hosting environment.
And as for what I like, well, my weblog thing is managed by a big ugly (but very useful) Perl script, my link archive is PHP, the shopping cart I'm setting up is PHP / MySQL. But the reading and 'playing' to learn and the fascination is with servlets / JSP / other Java solutions.
Because Java / JSP is just getting to the point of ease of use that PHP was a couple of years ago? In terms of strength as a language and a platform, JSP and Servlets have PHP beat. But the entry level is much higher, think of the arcane xml files to get your programs working in the directories you want. With PHP you just drop things in and they work, often easier than CGI. Consider how many people start, diving in and messing with code. Now imagine you wanna do that with a servlet? Not that it is difficult, it is just a little harder than with PHP.
Because PHP / MySQL are standard at many cheap webhosts and with many Linux distros? And jsp / servlets aren't.
The OSS community's mistrust of Java and Sun and anything related to them.
Momentum and established codebase. Need a shopping cart, weblog, photogallery, or bulletin board? Head over to freshmeat and take your pick of PHP and Perl solutions. Want it in Java? Hmm, slim pickings...
Thats OK, I fought with tomcat in Debian unstable, it installed but wouldn't do it's magic with servlets and jsp like it was supposed to. I finally gave up and grabbed the tomcat 4 beta binary from Apache's site and everything worked properly. I might have another go round once this makes it into sid.
Maybe you could write a script that did the configs for you?
Re:WTC bombing prophesyed on rap album cover.
on
More WTC News
·
· Score: 2
Someone mentioned on metafilter.com that the intro to Command & Conqueror also had images that came close to real life on 9-11. Does anyone have these?
I'll let you make your own judgements, cause mine aren't worth too much, but read some other stories on that site before you take that version as gospel.
Personally, I've have found ishipress.com to be somewhat entertaining in a slightly twisted way.
Cool! I've got the Debian package installed, didn't even think to check it for SVG support. The fact that it is implemented in Python is an added bonus!
On Windows? Tons of tools. On the high end, Adobe seems to be embracing SVG, possibly as something to break Macromedia's stranglehold on.swg. Their Illustrator has support for SVG and they are probably the ones doing the most to effectively promote the format by distributing a SVG viewer plugin with the Acrobat 5 reader. Corel Draw and even Macromedia's vector drawing tools also support SVG. Going a bit easier on the pocketbook, JASC software has done work on a tool to do SVG and I believe there is a very nice free tool to do at least basic vector drawings.
On the Linux side of things, there is something called Sodipodi that has great promise as a SVG tool, unfortunately it isn't close to being done. Kontour has support for SVG. There are also a myriad of command line tools for conversion from other vector formats.
Yeah thats about what I thought, why hasn't someone turned all those code red rooted boxes into D.net clients? Seems like that could move someone into the lead fairly quickly, the minimum requirements for the susceptible OS make for good crypto cracking machines.
But what do you do so that you get credit for it without getting blamed for the worm?
Someone mentioned it already, but it is definately the cookie settings. Try setting your cookies back to 'promiscuous mode' - allowing all the third party cookies and other funk that passport wants to send you. You can also change your browser identifier to Netscape and not get the warning screen. I always set my browser id back to Opera so that maybe it will show up in stats and they'll get the hint that designing to standards would work a little better for their site.
Yes, but we're talking schools here. The vast majority of shockwave is not content, it is entertainment. I'm sure we could find some genuinely educational content authored for shockwave but it is vastly outnumbered by the material authored in a cross platform format.
In reality it isn't a religious war between operating systems, browsers and technologies, it is a simple cost/benefit problem for these schools. With windows they have all these nifty browser plugins and rotten administration capabilities, with Linux they loose some plugins and some sites look different but the parent or two that knows what they are doing can easily take care of the box in their spare time.
The reason we have effective encryption (when it is implemented right) available to use is because of the large amount of research that has gone into breaking encryption. Because of the community of mathematicians and others actively trying to break weak algorithms we know the strengths and weaknesses of various ways to encrypt data.
Now we have more people looking at steganography. This can only make it more effective. Sure, the methods we have now might be broken but what about the next ones, the ones that don't show up on the statistical analysis that he appears to be using.
A groundbreaking paper to be published next week in the field's most prestigious journal was withdrawn today after the results were found to be spurious results of a computer bug.
The research, which showed that some of the fundamental constants of the universe may be changing as they aged, had been computed on a supercomputer known as a Beowulf Cluster. Some of the components of that cluster used the Intel Pentium processor which was affected by a well known bug which performed certain mathematical calculations incorrectly.
The University of New South Wales in Sydney, Australia had assembled the supercomputer over several years using cast off computers and special software originally developed at NASA. The calculations were run over several months to process the huge amount of data the scientists accumulated from the Keck Telescope on Mauna Kea, in Hawaii.
Team leader Dr. Webb said, "This finding is devastating to myself and my team members, as we worked very hard to eliminate every source of error in our observations".
Dr. Rocky Kolb, an astrophysicist at the Fermi National Accelerator Laboratory who was not involved in the work, is worried about other projects using this and similar supercomputer clusters, "This means that a great many other 'findings' are going to have to be reviewed. This sets the physics field back several years but renews hope in areas such as cold fusion".
The bad: Microsoft, having the greatest exposure to exploits now, is getting the most experience with dealing with exploits. Dealing with them at a
business, PR, and technical level.
I read this and think of the 'ping of death' or WinNuke attacks that plagued Windows in early '97. As I recall, there were two or three relatively similar vulnerabilities in the TCP/IP stack or winsock and maybe related software, one was widely exploited to lock up and BSOD machines. MS suffered a little over that, maybe drove some of us to Linux but in the long run it didn't make much difference one way or the other.
Dealing with them at a business, PR, and
technical level.
Obviously they haven't quite gotten the hang of them at a technical level. Winnuke wasn't the only one, weren't there a few Front Page vulnerabilities back in '97 or '98 as well? But then the OSS community hasn't either, we continually have our share of buffer overflow pain and other security problems.
The worm that takes everyone offline will exploit multiple holes in multiple operating systems and network services. It may very well operate in a stealth mode, trying to stay under the radar for as long as possible instead of defacing web sites and leaving obvious back doors. It may make a coordinated search of the IP space as described in a recent article.
We are cursed to live in interesting times...
Observe them before dawn...
on
Meteor Showers
·
· Score: 4, Interesting
...wherever you live. Although there may be a peak time around then, generally the best viewing is before dawn as that is when the night sky is rotated round to face the direction the earth is moving. With the leftover particles from the comet in an orbit crossing earth's, we hit them head on in the morning sky. The article says August 12th between 14 and 17 UT will be the peak, I'll let you correlate that to where you live.
Quake 4: Attack of the Clones
on
Quake 4 Announced
·
· Score: 2, Redundant
Take a look at id software's corporateQuake engine licensing page. Second paragraph under 'The GPL'd Quake Engine'.
Remember this engine is the foundation for what Valve did with Half-Life, and the software and OpenGL rendering is still as fast as it ever was.
For some reason this is a common misconception, maybe because Half-Life came out after Quake II.
It is an important point because Counterstrike, a mod of a game based on a five year old engine, is the most popular online 3D shooter (based on number of servers).
Ok, then both of you would be liable under the laws prohibiting 'unauthorized computer access'. And how would a judge decide, when faced with an act of negligence on one hand (dimwit didn't patch their MS boxe) and intentional action on the other hand (knowingly access a compromised box without authorization from the owner).
But, yeah, what if a web page on your box was named default.ida and responded to a GET request with a response that caused some action on their machine.
After all, they initiated the transaction, right? Same as browsing a web page, that causes an action on their box that originated on your web server.
An above poster compares this to having medical treatment forced upon you. Using this analogy, this 'disease' forces specific behavior upon the host, in effect forcing the host to go around asking for something. Can it be unethical to give the host something it was asking for?:P
Actually, it would be, the only ethical thing to do is to try to bring the problem to the attention of the owner of the machine. Obviously this means enlisting the help of the ISP, as many of these machines are on dynamic IPs.
Think about it, you've got a bunch of closed source stuff written by some shady companies, can't imagine that is all the best quality code.
But then, it might be a difficult one to exploit, not as easy as, say, a buffer in an index server extension...
Most of this spyware won't have ports listening, they'll be initiating the contact with only certain hosts. Still, the fact that Webhancer patches Winsock leaves some room open for problems.
So is it possible? Can you imagine the consequences? Instead of 300,000 unpatched IIS servers, you might have 6,000,000 targets (number of Kazaa downloads).
Wonderful idea, unfortunately Palm is hurting right now also.
But imagine the possibilities for Palm. Many pundits feel that wireless messaging (often suggesting the RIM Blackberry as the example) is the next killer app. If Palm could pony up the capital (it is an auction, might be going for pennies on the dollar) and even better, keep expanding it, they might be able to come out shining. Who else might buy it? Other Telco / Wireless types? They're having a hard time right now as they stand on the brink of 3G with no compelling need in sight. MS? Maybe they'd position it for CE just as Palm could use it for the Pilots. Add on a bonus 'MSWireless' subscription to MSN and you've got some possibilities. AOL? Are they doing anything in this area? 'AOL Anywhere' kind of thing?
Its too bad, too, as we would have been able to use something like ricochet here in Vegas.
Years back we looked at some wireless modems of some kind but it was so long ago that I haven't a clue as to what they were. Lotta help, eh?
I don't think you're gonna get much cheaper or easier than 802.11b stuff. You can get USB cards for less than $100 each, 300' is pushing their range but definately possible out of the box. With custom antennas, people get miles outta the things. Bonus advantage, you get the network stack and all the software that works with that.
If you feel like hacking hardware you might be able to come up with other solutions. Do you have line of sight? Then how about modulating a laser diode? Low bandwidth requirements? How about an old modem and a cordless phone?
the two I received had the extension.pif but digging around with a hex editor just about convinced me they were a standard executable. I'm not sure how windows handles.pif files though, there are definately some different things going on there.
The 2 copies I received had the extension.pif. Windows hid that extension from me, only displaying filename.doc. Pegasus Mail displays the entire filename.
Windows also brought up a different right click context menu with the file.
don't ask about accidently double clicking the thing...
On the other hand, Microsoft currently has a software license that disallows the use of Free Software tools. So it is still possible that Microsoft will be able to throw up legal obstacles to Mono. But my guess is that it is all smoke and mirrors.
Wasn't Microsoft's anti free software license for one toolkit that wasn't even out of beta yet? That license didn't apply to everything that can be downloaded from MSDN, does it?
I got the distinct feeling that they were floating that to gauge the reaction from the developer community, that it was a timed and calculated move to fit in with Mr. Mundie's speeches and the other stuff that was being flung around.
As for what I consider the core of.NET (C# and CLR) there is the SharpDevelop IDE/Code editor which is released under the GPL.
Slashdot Mirror
From what I've read, and in searching for an inexpensive webhost that supports JSP / servlets, it doesn't fit in well in a shared hosting environment. However, there are a few that make it work. Again, contrast that to PHP, it makes server stuff easy in a web hosting environment.
And as for what I like, well, my weblog thing is managed by a big ugly (but very useful) Perl script, my link archive is PHP, the shopping cart I'm setting up is PHP / MySQL. But the reading and 'playing' to learn and the fascination is with servlets / JSP / other Java solutions.
Maybe you could write a script that did the configs for you?
Someone mentioned on metafilter.com that the intro to Command & Conqueror also had images that came close to real life on 9-11. Does anyone have these?
I'll let you make your own judgements, cause mine aren't worth too much, but read some other stories on that site before you take that version as gospel. Personally, I've have found ishipress.com to be somewhat entertaining in a slightly twisted way.
Cool! I've got the Debian package installed, didn't even think to check it for SVG support. The fact that it is implemented in Python is an added bonus!
On the Linux side of things, there is something called Sodipodi that has great promise as a SVG tool, unfortunately it isn't close to being done. Kontour has support for SVG. There are also a myriad of command line tools for conversion from other vector formats.
Want links? start with the DMOZ category.
But what do you do so that you get credit for it without getting blamed for the worm?
Someone mentioned it already, but it is definately the cookie settings. Try setting your cookies back to 'promiscuous mode' - allowing all the third party cookies and other funk that passport wants to send you. You can also change your browser identifier to Netscape and not get the warning screen. I always set my browser id back to Opera so that maybe it will show up in stats and they'll get the hint that designing to standards would work a little better for their site.
In reality it isn't a religious war between operating systems, browsers and technologies, it is a simple cost/benefit problem for these schools. With windows they have all these nifty browser plugins and rotten administration capabilities, with Linux they loose some plugins and some sites look different but the parent or two that knows what they are doing can easily take care of the box in their spare time.
Now we have more people looking at steganography. This can only make it more effective. Sure, the methods we have now might be broken but what about the next ones, the ones that don't show up on the statistical analysis that he appears to be using.
A groundbreaking paper to be published next week in the field's most prestigious journal was withdrawn today after the results were found to be spurious results of a computer bug.
The research, which showed that some of the fundamental constants of the universe may be changing as they aged, had been computed on a supercomputer known as a Beowulf Cluster. Some of the components of that cluster used the Intel Pentium processor which was affected by a well known bug which performed certain mathematical calculations incorrectly.
The University of New South Wales in Sydney, Australia had assembled the supercomputer over several years using cast off computers and special software originally developed at NASA. The calculations were run over several months to process the huge amount of data the scientists accumulated from the Keck Telescope on Mauna Kea, in Hawaii.
Team leader Dr. Webb said, "This finding is devastating to myself and my team members, as we worked very hard to eliminate every source of error in our observations".
Dr. Rocky Kolb, an astrophysicist at the Fermi National Accelerator Laboratory who was not involved in the work, is worried about other projects using this and similar supercomputer clusters, "This means that a great many other 'findings' are going to have to be reviewed. This sets the physics field back several years but renews hope in areas such as cold fusion".
An Intel spokesman declined to comment.
The worm that takes everyone offline will exploit multiple holes in multiple operating systems and network services. It may very well operate in a stealth mode, trying to stay under the radar for as long as possible instead of defacing web sites and leaving obvious back doors. It may make a coordinated search of the IP space as described in a recent article.
We are cursed to live in interesting times...
...wherever you live. Although there may be a peak time around then, generally the best viewing is before dawn as that is when the night sky is rotated round to face the direction the earth is moving. With the leftover particles from the comet in an orbit crossing earth's, we hit them head on in the morning sky. The article says August 12th between 14 and 17 UT will be the peak, I'll let you correlate that to where you live.
I'm all confused...
Take a look at id software's corporateQuake engine licensing page. Second paragraph under 'The GPL'd Quake Engine'.
For some reason this is a common misconception, maybe because Half-Life came out after Quake II.It is an important point because Counterstrike, a mod of a game based on a five year old engine, is the most popular online 3D shooter (based on number of servers).
But, yeah, what if a web page on your box was named default.ida and responded to a GET request with a response that caused some action on their machine.
After all, they initiated the transaction, right? Same as browsing a web page, that causes an action on their box that originated on your web server.
An above poster compares this to having medical treatment forced upon you. Using this analogy, this 'disease' forces specific behavior upon the host, in effect forcing the host to go around asking for something. Can it be unethical to give the host something it was asking for? :P
Actually, it would be, the only ethical thing to do is to try to bring the problem to the attention of the owner of the machine. Obviously this means enlisting the help of the ISP, as many of these machines are on dynamic IPs.
Think about it, you've got a bunch of closed source stuff written by some shady companies, can't imagine that is all the best quality code.
But then, it might be a difficult one to exploit, not as easy as, say, a buffer in an index server extension...
Most of this spyware won't have ports listening, they'll be initiating the contact with only certain hosts. Still, the fact that Webhancer patches Winsock leaves some room open for problems.
So is it possible? Can you imagine the consequences? Instead of 300,000 unpatched IIS servers, you might have 6,000,000 targets (number of Kazaa downloads).
But imagine the possibilities for Palm. Many pundits feel that wireless messaging (often suggesting the RIM Blackberry as the example) is the next killer app. If Palm could pony up the capital (it is an auction, might be going for pennies on the dollar) and even better, keep expanding it, they might be able to come out shining. Who else might buy it? Other Telco / Wireless types? They're having a hard time right now as they stand on the brink of 3G with no compelling need in sight. MS? Maybe they'd position it for CE just as Palm could use it for the Pilots. Add on a bonus 'MSWireless' subscription to MSN and you've got some possibilities. AOL? Are they doing anything in this area? 'AOL Anywhere' kind of thing?
Its too bad, too, as we would have been able to use something like ricochet here in Vegas.
I enjoyed Eon, Eternity and the books that start with the Forge of God, Greg certainly does have some original ideas.
And of course the sadness is felt for the loss of Poul, one who became nearly immortal in his words and worlds he created.
That just about sums up Slashdot, doesn't it?
I don't think you're gonna get much cheaper or easier than 802.11b stuff. You can get USB cards for less than $100 each, 300' is pushing their range but definately possible out of the box. With custom antennas, people get miles outta the things. Bonus advantage, you get the network stack and all the software that works with that.
If you feel like hacking hardware you might be able to come up with other solutions. Do you have line of sight? Then how about modulating a laser diode? Low bandwidth requirements? How about an old modem and a cordless phone?
Chris Cothrun
Curator of Chaos
the two I received had the extension .pif but digging around with a hex editor just about convinced me they were a standard executable. I'm not sure how windows handles .pif files though, there are definately some different things going on there.
Chris Cothrun
Curator of Chaos
Windows also brought up a different right click context menu with the file.
don't ask about accidently double clicking the thing...
Chris Cothrun
Curator of Chaos
Wasn't Microsoft's anti free software license for one toolkit that wasn't even out of beta yet? That license didn't apply to everything that can be downloaded from MSDN, does it?
I got the distinct feeling that they were floating that to gauge the reaction from the developer community, that it was a timed and calculated move to fit in with Mr. Mundie's speeches and the other stuff that was being flung around.
As for what I consider the core of .NET (C# and CLR) there is the SharpDevelop IDE/Code editor which is released under the GPL.
Chris Cothrun
Curator of Chaos