I depend on linux, sendmail, bind (shaddap), and pine for my email. This keeps me in touch with friends, family, and work; if my email goes down, I'm completely out of the loop as I never answer my phone anymore (thanks, telemarketers!).
I've had problems here and there; I hate configuring sendmail (as opposed to just about every other package out there), mod_ssl is a picky bitch, and kernel upgrades without menuconfig make my want to club baby seals with my spare monitor... but in all those cases, google found the answer. I got the support I needed quickly and for free.
In fact, the ONLY thing I haven't been able to fix with OSS is a strange problem with active ftp from any nat'ed client behind a slackware box running netfilter's iptables with all those ip_nat_ftp/ip_contrack_ftp modules loaded (or compiled into the damn kernel). However, as I never liked active ftp anyway, I can live with that one small quirk.
Opera 6 is a VERY nice browser with features that win over every other browser out there. For the few sites that don't play nice with Opera, keep a copy of Mozilla (or Phoenix) on your drive. Perfect; no legions of popups, drive-by downloads, potential root-level CSS hacks, blah blah blah... And it's all free, although I did choose to pay $39 for Opera. I believe it is well worth the price.
Remember MS DOS 7? Where did that go? Nowhere, but it kept people from buying the then latest version of DR DOS, which was better in all aspects and had more cool features.
It's hard to believe MS could do better than Adobe, but when MS controls the OS and seems to be able to do whatever they damn well please... I'd start having my own doubts about Adobe.
I'm in the same boat; got my own DNS/mail servers behind a static DSL link, but I'm moving within the year. You DO know how long it takes to get DSL hooked up, right? Well, then you're borked.
Only alternative I can see is getting hooked up with a good managed hoster like rackspace or rackshack or something.
Think hard about AC's question... they are both URIs that are typed in, and both produce undesirable (for the server owners) results.
True, AC's might exploit a flaw with the server itself while the one in the posted story simply access unlinked content, but how would one explain that to a non-technical user like a typical judge/jury?
Either way, this could turn into a bad, bad precident.
It's just that while the more intelligent folks are less willing to trust things in the physical world without more explanations or research, they may not know much about things that deal with computers. NO ONE I know likes spyware... the problem is, not many know what to look for. They're told they need to install a program, so what choice do they have? This is somewhat similar to taking a car to a shady mechanic; unless you're clued in, they can take your pocketbook for a ride.
As explained to me, PPPoE requires more "overhead" per packet than plain Ethernet. That, in addition to the dial-up-like delay and inability to keep an IP address causes me to go right to the "little guy" ISP if at all possible. I frankly would prefer cable over DSL with PPPoE... It's all about squeezing every last dime from the customers.
... easy as pie! You flip open a little door on the battery and pour more fuel in! This is a highly complex operation, I know, but with practice, one day you too may be able to do it.
You'll no longer be looking for a spare outlet; you'll look for a can of butane/whatever.
The Java engine is about 6MB by itself!
on
Phoenix 0.3 Is Out
·
· Score: 2
The actual Phoenix browser is probably only 4MB or so. Opera 6, without the Java engine, is about 3.5MB.
Considering NS and IE are somewhere around 40-60MB, I believe you need to lay off the crack. 9MB for a browser with all the browser-specific fixins is NOT large.
No holes this time.. just minor fixes and upgrades
on
OpenSSH 3.5 Released
·
· Score: 3, Informative
There are numerous "fixes" which strengthen openssh in general, but there's no security hole mentioned. Looks like this is just something to do during the next weekend! That is, after everyone ELSE puts it on their production servers, heh heh.
"Try browsing the Internet without enabling cookies and Java to see how easy it is for pervasive options to become non-optional."
It's a valid point, tho. I like some of the workarounds, such as Opera's willingness to throw out all cookies at the end of the current session, if said options are selected.
Still, the author appears rather alarmist; DRM is a licensing technology, not a security technology, as the author stated. Thus, WHY would consumer-grade "hardware" be found in professional-grade medical hardware? That's like buying a Packard Bell for IBM's web server... it just won't happen. On that note, it'd be interesting to see if Intel/AMD/MS/blah will try to include DRM in "server" versions of hardware and software...
1) Claims trademark on "pets" and "warehouse" (Count II, #30)
2) Claims the defendants personally monitor each link's rank (Count II, #31)
3) Blatantly false statement about "sponsored links", claiming that
a) top ranked links are purchased and
b) that advertizements are not marked as such
(Count II, #32)
4) Another blatant lie (against Google, specifically): not a single competitor is listed in the first page of results for "pets warehouse" (Count II, #33)
And of course, the Judgement section lists that asinine list that claims Novak owns every possible comination of the four words "pet", "pets", "warehouse", and "warehouses".
I mean, this guy literally makes my head ache. Why must people be so useless?
Did you read the court's PDF? Apparently, Novak wants Google, etc. to stop using "pets warehouse", "pets warehouses", "pet warehouse", "pet warehouses", "pet", "pets", "warehouse", "warehouses", "PetSwarehouse", "petSwarehouse", "pEts", "peTs", "petS",... ad infinium.
This page, right?... It is NOT encrypted! (at least not when you browse to it from here. Opera bug, or wacked design? You decide.)
You want interest supporters to send their CC and personal contact info over the net in plaintext? I sure as hell wouldn't sign up as a member online...
There was no reason to buy anything but 3dfx
on
The Last Days at 3dfx
·
· Score: 4, Insightful
Up until the TNT (TNT2), 3dfx was still king of the hill... It would be like buying a Maxtor drive back in Western Digital's heyday.
You *know* what works, so why buy anything else? On the other hand, that's why I like hardware review sites like anantech and Tom's. You may not want to trust them completely, but they do give you a free peek at hardware capabilities.:)
Was overseas for several months, and no less than two weeks after I'd arrived at my home away from home, bugtraq had postings related to the wu-ftpd remote root vuln. Since I was on an insecure network (they were blocking port 22), I had to have a friend back home block the port on the router since he didn't know the root password on the ftp server.
It's not that hard (at all) to install Eudora Light and PGP for Windows (since that's what all my non-techie friends use). Urging them to use a different email proggie and/or browser should be simple if they get bitten by "drive-by downloads" that randomly spawn porn windows; that's how I got my folks to use Eudora and Mozilla.:) However, PGP has Outlook Epress plugins, so it will work even if they refuse to use a different email client.
Encryption does not have to be a major pain to deal with, either. Frankly, the secret key DOES NOT need a passphrase to decrypt a message. I've set my folks up with a strong private key with no passphrase so they just open the message to read it as normal. (To encrypt, it's just another button.) Yes, I know this means that I shouldn't ultimately trust that a signed message is from them, but the whole point of encryption, in this case, is to "put your letter in an envelope"; to make it harder to arbitrarily read. This solution does that nicely.
It looks to me like they're going to market it as a tool for extra paranoid sysadmins. On one hand, I think it would be cool to be able to easily reconstruct common types of traffic on my own network. (Think Cuckoo's Egg reborn!)
Of course, it would be foolish to think that Carnivore won't ever be replaced with something new and "better."
They might see that it is SMTP traffic, but they can't see what you wrote. They might see it's web traffic, but they can't see exactly what it is. They might see an ssh session, but they can't sniff your root password. (Thanks to sftp, they can't grab your password there, either!)
Since some protocol headers can't very well be encrypted, there's no good reason to try running services on alternate ports; maybe now I can finally get my friends to install PGP (or similar) on their machines.
Nope, there are not EULAs for CDs! (Yet, anyway.)
on
CD Copy Stopper
·
· Score: 1
When I, Joe Consumer, go into a store and buy a CD, I am purchasing a physical object with data burned on to it. I am not purchasing a license to "listen to the contents in specific situations"... not even the RIAA is dumb enough to suggest such a thing! (As a matter of fact, the ??AA doesn't even consider copying ONE CD for a friend to be illegal! Apparently, the bigger fish get their goat.)
Once I have that physical disc that I purchased, I can convert it to whatever format and as many formats as I please, as I have paid for the disc. As long as I am the only person using the music derived from the original disc, I am merely exercising my Fair Use rights. Thus, your starement that there is no such thing as a "legal rip" is a complete and utter falsehood. I can burn a spare (or "backup") for the car, make an OGG for my portable music device, and leave a high quality mp3/OGG on my computer for Winamp to play... all completely legal.
Slashdot Mirror
$ ftp rs.internic.net
Connected to rs.internic.net (198.41.0.6).
in.ftpd: error in loading shared libraries: libdl.so.2: cannot open shared object file: Error 23
ftp>
Slashdotted an FTP server. On some sort of *nix. Ouch.
RTFM. Mods are picked from the middle of the pack. Periodic posts, average karma; not the -1 trolls and not the +49 folks.
I depend on linux, sendmail, bind (shaddap), and pine for my email. This keeps me in touch with friends, family, and work; if my email goes down, I'm completely out of the loop as I never answer my phone anymore (thanks, telemarketers!).
I've had problems here and there; I hate configuring sendmail (as opposed to just about every other package out there), mod_ssl is a picky bitch, and kernel upgrades without menuconfig make my want to club baby seals with my spare monitor... but in all those cases, google found the answer. I got the support I needed quickly and for free.
In fact, the ONLY thing I haven't been able to fix with OSS is a strange problem with active ftp from any nat'ed client behind a slackware box running netfilter's iptables with all those ip_nat_ftp/ip_contrack_ftp modules loaded (or compiled into the damn kernel). However, as I never liked active ftp anyway, I can live with that one small quirk.
Opera 6 is a VERY nice browser with features that win over every other browser out there. For the few sites that don't play nice with Opera, keep a copy of Mozilla (or Phoenix) on your drive. Perfect; no legions of popups, drive-by downloads, potential root-level CSS hacks, blah blah blah... And it's all free, although I did choose to pay $39 for Opera. I believe it is well worth the price.
Remember MS DOS 7? Where did that go? Nowhere, but it kept people from buying the then latest version of DR DOS, which was better in all aspects and had more cool features.
It's hard to believe MS could do better than Adobe, but when MS controls the OS and seems to be able to do whatever they damn well please... I'd start having my own doubts about Adobe.
I'm in the same boat; got my own DNS/mail servers behind a static DSL link, but I'm moving within the year. You DO know how long it takes to get DSL hooked up, right? Well, then you're borked.
Only alternative I can see is getting hooked up with a good managed hoster like rackspace or rackshack or something.
Think hard about AC's question... they are both URIs that are typed in, and both produce undesirable (for the server owners) results.
True, AC's might exploit a flaw with the server itself while the one in the posted story simply access unlinked content, but how would one explain that to a non-technical user like a typical judge/jury?
Either way, this could turn into a bad, bad precident.
It's just that while the more intelligent folks are less willing to trust things in the physical world without more explanations or research, they may not know much about things that deal with computers. NO ONE I know likes spyware... the problem is, not many know what to look for. They're told they need to install a program, so what choice do they have? This is somewhat similar to taking a car to a shady mechanic; unless you're clued in, they can take your pocketbook for a ride.
As explained to me, PPPoE requires more "overhead" per packet than plain Ethernet. That, in addition to the dial-up-like delay and inability to keep an IP address causes me to go right to the "little guy" ISP if at all possible. I frankly would prefer cable over DSL with PPPoE... It's all about squeezing every last dime from the customers.
I wish.
... easy as pie! You flip open a little door on the battery and pour more fuel in! This is a highly complex operation, I know, but with practice, one day you too may be able to do it.
You'll no longer be looking for a spare outlet; you'll look for a can of butane/whatever.
I care very little about how a product looks...
I care quite a lot about how a product WORKS.
The actual Phoenix browser is probably only 4MB or so. Opera 6, without the Java engine, is about 3.5MB.
Considering NS and IE are somewhere around 40-60MB, I believe you need to lay off the crack. 9MB for a browser with all the browser-specific fixins is NOT large.
There are numerous "fixes" which strengthen openssh in general, but there's no security hole mentioned. Looks like this is just something to do during the next weekend! That is, after everyone ELSE puts it on their production servers, heh heh.
"Try browsing the Internet without enabling cookies and Java to see how easy it is for pervasive options to become non-optional."
It's a valid point, tho. I like some of the workarounds, such as Opera's willingness to throw out all cookies at the end of the current session, if said options are selected.
Still, the author appears rather alarmist; DRM is a licensing technology, not a security technology, as the author stated. Thus, WHY would consumer-grade "hardware" be found in professional-grade medical hardware? That's like buying a Packard Bell for IBM's web server... it just won't happen.
On that note, it'd be interesting to see if Intel/AMD/MS/blah will try to include DRM in "server" versions of hardware and software...
-
a) top ranked links are purchased and
-
b) that advertizements are not marked as such
(Count II, #32)And of course, the Judgement section lists that asinine list that claims Novak owns every possible comination of the four words "pet", "pets", "warehouse", and "warehouses".
I mean, this guy literally makes my head ache. Why must people be so useless?
Did you read the court's PDF? Apparently, Novak wants Google, etc. to stop using "pets warehouse", "pets warehouses", "pet warehouse", "pet warehouses", "pet", "pets", "warehouse", "warehouses", "PetSwarehouse", "petSwarehouse", "pEts", "peTs", "petS",... ad infinium.
He's seriously been smoking some bad crack.
This page, right? ... It is NOT encrypted! (at least not when you browse to it from here. Opera bug, or wacked design? You decide.)
You want interest supporters to send their CC and personal contact info over the net in plaintext? I sure as hell wouldn't sign up as a member online...
Up until the TNT (TNT2), 3dfx was still king of the hill... It would be like buying a Maxtor drive back in Western Digital's heyday.
:)
You *know* what works, so why buy anything else? On the other hand, that's why I like hardware review sites like anantech and Tom's. You may not want to trust them completely, but they do give you a free peek at hardware capabilities.
Was overseas for several months, and no less than two weeks after I'd arrived at my home away from home, bugtraq had postings related to the wu-ftpd remote root vuln. Since I was on an insecure network (they were blocking port 22), I had to have a friend back home block the port on the router since he didn't know the root password on the ftp server.
;)
:P
However, pureftpd works great!
Seems to me that the really nasty vulns lie in wait while you get yourself into the worst situation possible for handling it.
In that case, they merely charge you $60,000.
It's not that hard (at all) to install Eudora Light and PGP for Windows (since that's what all my non-techie friends use). Urging them to use a different email proggie and/or browser should be simple if they get bitten by "drive-by downloads" that randomly spawn porn windows; that's how I got my folks to use Eudora and Mozilla. :) However, PGP has Outlook Epress plugins, so it will work even if they refuse to use a different email client.
Encryption does not have to be a major pain to deal with, either. Frankly, the secret key DOES NOT need a passphrase to decrypt a message. I've set my folks up with a strong private key with no passphrase so they just open the message to read it as normal. (To encrypt, it's just another button.) Yes, I know this means that I shouldn't ultimately trust that a signed message is from them, but the whole point of encryption, in this case, is to "put your letter in an envelope"; to make it harder to arbitrarily read.
This solution does that nicely.
It looks to me like they're going to market it as a tool for extra paranoid sysadmins. On one hand, I think it would be cool to be able to easily reconstruct common types of traffic on my own network. (Think Cuckoo's Egg reborn!)
Of course, it would be foolish to think that Carnivore won't ever be replaced with something new and "better."
Sigh.
Encrypt your traffic!
They might see that it is SMTP traffic, but they can't see what you wrote. They might see it's web traffic, but they can't see exactly what it is. They might see an ssh session, but they can't sniff your root password. (Thanks to sftp, they can't grab your password there, either!)
Since some protocol headers can't very well be encrypted, there's no good reason to try running services on alternate ports; maybe now I can finally get my friends to install PGP (or similar) on their machines.
When I, Joe Consumer, go into a store and buy a CD, I am purchasing a physical object with data burned on to it. I am not purchasing a license to "listen to the contents in specific situations"... not even the RIAA is dumb enough to suggest such a thing! (As a matter of fact, the ??AA doesn't even consider copying ONE CD for a friend to be illegal! Apparently, the bigger fish get their goat.)
Once I have that physical disc that I purchased, I can convert it to whatever format and as many formats as I please, as I have paid for the disc. As long as I am the only person using the music derived from the original disc, I am merely exercising my Fair Use rights. Thus, your starement that there is no such thing as a "legal rip" is a complete and utter falsehood. I can burn a spare (or "backup") for the car, make an OGG for my portable music device, and leave a high quality mp3/OGG on my computer for Winamp to play... all completely legal.