Seen a similar need from non-european manufacturers who want to sell into the European market. By doing some final assembly in a European country (but only a token, like putting already prebuilt appliance electronics into a case and sealing it) they can label the final product as "assembled in ".
Similarly, I can see Apple shipping phones missing only the backs and (say) the battery into the US to a "final assembly center", claiming a government tax credit for the expense, but only creating a handful of relatively low-skilled and low-paid jobs.
I suspect in this particular case, it won't be needed.
the devices in question are virtual appliances, and are some sort of *nix (probably bsd) under the hood. I haven't tried this yet, but it would make sense that booting from a rescue disk would let you go mess with the ssh keys and config directly.. now, all these boxes have a remote support functionality built in. I am suspecting (also) that this uses the key to get a true ssh shell (a bash prompt, again presumably) so they can do fixes at the os level. So, if we can find these new fixed keys, we may be able to hop onto the boxes, assign a new, better keypair, and have os level access ourselves for repairs:D
... if the drone was actually physically in the way of the fire department's approach path, or would just have been hit by a few hundred tonnes of retardant. If the latter, it seems a fairly simple decision... Go for it anyhow, and any drone in the way copes as best it can, as it shouldn't be in the airspace in the first place.
Nothing the NYT links to says the NSA used the system to give early warning of Sony (or even after-the-fact analysis of Sony) - It simply says that the NSA had extensively penetrated NK in the late 2000's, and if that system were still in place, *could* have gained insight into the attack, either before it happened, or after the fact. However, given the FBI have raw access into the NSA's databases, its possible that this is why the FBI won't back up its claims with actual facts - it is relying on the database that the NSA have that is in breach of a LOT of laws, and use of which usually is subject to "parallel construction".
To be fair, the programming world used to be divided into analysts (who documented the novel problem then worked out a solution) and programmers (who then took the abstract solution and coded it in the language de jour. Some shops still are.....
Not seeing why, if a publisher doesn't want to sell though the Amazon store, they can't as easily sell though their own website or even though traditional brick and mortar stores. For that matter, I don't see why an author can't do that themselves and cut out the other middleman, unless they are tied into an exclusive contract.
kindle books are just files - you can sell them from anywhere.
The reality was both more interesting and much worse than the above implies.
The OpenSSL project had one full time programmer as gatekeeper; he passed the code and added it to the tree, when in fact it missed a bounds check the RFC it implements says should be made.
As an OSS project that accepts patches from the community, the submitter could have been anyone, of any level of ability. In practice, the submitter was a student, who had written not only this patch but the RFC that describes the change, as part of his thesis project. The idea was to increase the efficiency of SSL *in UDP* for applications such as OpenVPN, by adding a "are you still there?" heartbeat exchange.
The final patch was submitted (and accepted) on the evening of Dec 31; I am at least slightly suspicious of the timing, as it smells of trying to meet some arbitrary deadline (and a student throwing in his work "under the wire") rather than the "when its as perfect as I can get it" criteria that should govern a submission to a security product.
Nothing in Android prevents Microsoft just taking the existing core and putting it on as many phones as they want. There is no restriction, you can do what you want with it.
However, getting access to the play store and many of the "standard" apps requires signing an agreement with Google - that doesn't get you android, just the play store access and apps. No amount of cleanroom re-implimentation of android core will entitle MS to connect to google's play store - that's not a "feature" of android, its a contractual agreement with Google.
Given that jagex have always stated that in-game objects are theirs, and can't be (eg) sold outside the game, I wonder if having a court ruling to the contrary will (again for example) make disabling accounts for real-world trading "theft" by jagex?
To be fair, you can usually get away with using better targeted, more directional lighting.
Not only does focussing all the light down with appropriate reflectors mean less escapes skywards, but it means you can achieve the same levels of illumination with much lower power levels, saving money too..
I have seen such high failure rates in the wild - cross batch, cross manufacturer even.
But invariably, they were proceeded by a thermal event - I have never, ever seen worse than 10% failure in a datacenter that has a clean aircon record, and would expect 5% or better unless there were power issues too.
if you are seeing that sort of failure rate, I would be giving special care and attention to any "service visits" the ups or aircon guys may have made in the two months prior to the problem starting.
MariaDB is not much if any better - Ok, I can see his original point - he shared the source to MySQL so that he could get the benefits of community bugfixing, but retained the commercial rights so that he could sell commercial usage licences and still make money.
I can also see how, when offered a buttload of money by SUN, he could get up front and in one lump sum what he might make in years of normal trading - and SUN, having no db solution of its own to compete, was as good a new owner as any.
However, with MariaDB he is trying to have his cake and eat it too - he wishes to start a new "community" edition of MySQL so he can still steer the project, despite having taken his pieces of silver and ran once already. Despite (or even because of) his "experience" in running the MySQL project, I would not consider him a particularly good choice to control a fork.
You don't get to tell a search provider how they are supposed to use the content they index from you. I am ok with the idea that you should be able to tell them not to index you, if you don't want that done, but if you choose to be indexed you don't get to say "You can only do it in the way we specify, or using the terms we specify."
Actually, that plays to a second danger. If you can get a court order like this, then presumably at some point they can convince a Belgian judge that "Official Belgian newspapers" should automagically get a higher rating on news.google.be than foreign/unofficial ones... Google search results could end up ordered by lawsuit rank not pagerank:(
Google is a private, foreign, totally unaccountable organisation.
Clearly it is a private, foreign, but {within the jurisdiction of Belgian courts and accountable to said courts} organization, or this article wouldn't exist.
A Belgian judge has said "Remove all content from all your sites, but in particular, for google.com and google.be, for articles, images or graphic representations of the newspapers bringing this case"
Search engines work by indexing the content, comparing the index with the search terms, and using that to generate results. No content = no search = no result in the list. how is that hard to follow unless you are a Belgian landshark looking for cash damages not actual results (given robots.txt, as is repeatedly pointed out, can let you fine tune what google does or doesn't show)?
Why not look into contributing to an Open Source solution in your chosen area? see if you can find (for example) some PM tools that almost are good enough, and make them better?
This is largely an issue with the "front end" - dynamic changes to iptables don't auto-write themselves, but that is true also for (for example) Cisco IOS. it used to be that you couldn't even insert a rule in an ios access list (you had to append, or failing that, blank out the whole list and start over) but like IPTables, you can now insert and delete from the list on-the-fly.
A competent front end should write "hot" to the loaded list, but also update a static file so that they can be re-loaded on reboot. iptables has a built in "save" method that can generate such a file, but you don't always want to commit every change to the startup config.- but blaming the engine for the poor quality of coding involved in what is only a pretty front end onto a very competent packet filter is a bit unfair.
Interesting. Walmart took over a UK chain called ASDA some years ago, who has a scheme for doing this - staff go and "pick" the goods from the shelves in a real store, just like a normal shopper would, bag them up, do a CNP transaction for the payment, then ship them out in a van to the homes.
Cisco's support is very good - its expensive, but you get what you pay for.
I am not sure why that means their kit is noticeably any better though; you tend to find, particularly with their higher end kit, your choices are
a) pick which set of bugs you can live with or
b) go with a beta that is near untested
In fairness, (a) is usually good enough; MS have set the bar for "enterprise level" so low nobody expects perfection. But still, its not cheap, and *having* to have bought from an approved vendor, and have bought support, in order to get bugfix patches is a major pain.
What is really needed is for someone else to up their game to match the level of support.
I would say that the desktop should be the *last* thing you replace.
First come the servers - migrate from windows or unix to linux, keeping the front-end as similar to the original as possible. Main problem here is if you are a exchange and outlook site, most exchange replacements are simply not up to scratch, or cost as much as just going with exchange - you want an outlook front end, with support for folder sharing and calendar busy searches, and in most cases that just isn't going to happen.
Next come the apps - and in most cases, this is easier. As you upgrade and replace, select those which have cross platform clients that look pretty much the same on both linux and windows; if they are in fact entirely platform independent (java?) so much the better, and if you can arrange for them to be web deliverable than better still.
Finally you can swap out the desktop - on the given day, the start button becomes a penguin button - but gives pretty much the same menu, with the same apps, looking and acting the same.
However, all this may change - the new target is no longer the server or desktop, but cloud computing - at which point, it no longer matters what you have front end or back, provided the front can render and the back run whatever cloud format comes out on top.
Seconded. The purpose of this is not to hinder your use of the files, but to make them traceable back to the original purchaser if they are shared online.
as you don't have a licence to share online, that's fine - nobody but you should be in a position to care what data is in those files.
That none of the hosts I admin responded to ping. Personally, I think blocking ping at the firewall a useless security technique if I am responding to http or IKE packets, but the expensive security firm we hired to audit us pointed proudly *every single time* to that response as being a security issue, so I got sick of having to argue it out and just blocked inbound icmp that wasn't a response to an outgoing query.
Even if it didn't, which host would they expect to reply? most of my IP space is overloaded - if I have http and smtp open on the same IP, you can bet a bundle they aren't going to the same internal host, and the ASA isn't going to be responding to ping on behalf of the NATs it hosts.
If that wasn't bad enough, back when I had service from Demon Internet's business DSL service, they blocked all icmp even if you wanted it - that made monitoring line uptime a pain for our monitoring software back at head office, and led to us changing provider.
What it comes down to is that a pingsweep of the internet will tell you how many IP addresses respond to pings - no more, no less.
For example, one I play from time to time (runescape) has quests, and some alter the world state - objects are removed from one town and placed in another, depopulated villages become populated again, sick/infected npcs become cured and able to interact again and so forth.
And yes, this is per user - you can walk around the same area, with another pc, and both have a different view of the world where not all objects are rendered for all users (and/or interact is turned off)
this is limited in some ways, but seems to work well.
PGP is a good choice for either email or file encryption (done right, s/mime isn't terrible for the former either) provided the recipient can support it.
if this is just a oneshot deal, its probably easier to provide them with a password protected archive and give them the password verbally (over the phone) - good choices here are anything that uses 256 bit aes or the equivalent, so rar, winzip and 7z (which is opensource/free) are good choices.
Slashdot Mirror
Force is enough though; businesses across the US are obliged to accept it, and heaven help any country that threatens the petrodollar....
Seen a similar need from non-european manufacturers who want to sell into the European market. By doing some final assembly in a European country (but only a token, like putting already prebuilt appliance electronics into a case and sealing it) they can label the final product as "assembled in ". Similarly, I can see Apple shipping phones missing only the backs and (say) the battery into the US to a "final assembly center", claiming a government tax credit for the expense, but only creating a handful of relatively low-skilled and low-paid jobs.
I suspect in this particular case, it won't be needed. the devices in question are virtual appliances, and are some sort of *nix (probably bsd) under the hood. I haven't tried this yet, but it would make sense that booting from a rescue disk would let you go mess with the ssh keys and config directly.. now, all these boxes have a remote support functionality built in. I am suspecting (also) that this uses the key to get a true ssh shell (a bash prompt, again presumably) so they can do fixes at the os level. So, if we can find these new fixed keys, we may be able to hop onto the boxes, assign a new, better keypair, and have os level access ourselves for repairs :D
... if the drone was actually physically in the way of the fire department's approach path, or would just have been hit by a few hundred tonnes of retardant. If the latter, it seems a fairly simple decision... Go for it anyhow, and any drone in the way copes as best it can, as it shouldn't be in the airspace in the first place.
Nothing the NYT links to says the NSA used the system to give early warning of Sony (or even after-the-fact analysis of Sony) - It simply says that the NSA had extensively penetrated NK in the late 2000's, and if that system were still in place, *could* have gained insight into the attack, either before it happened, or after the fact. However, given the FBI have raw access into the NSA's databases, its possible that this is why the FBI won't back up its claims with actual facts - it is relying on the database that the NSA have that is in breach of a LOT of laws, and use of which usually is subject to "parallel construction".
To be fair, the programming world used to be divided into analysts (who documented the novel problem then worked out a solution) and programmers (who then took the abstract solution and coded it in the language de jour. Some shops still are.....
Not seeing why, if a publisher doesn't want to sell though the Amazon store, they can't as easily sell though their own website or even though traditional brick and mortar stores. For that matter, I don't see why an author can't do that themselves and cut out the other middleman, unless they are tied into an exclusive contract.
kindle books are just files - you can sell them from anywhere.
The reality was both more interesting and much worse than the above implies.
The OpenSSL project had one full time programmer as gatekeeper; he passed the code and added it to the tree, when in fact it missed a bounds check the RFC it implements says should be made.
As an OSS project that accepts patches from the community, the submitter could have been anyone, of any level of ability. In practice, the submitter was a student, who had written not only this patch but the RFC that describes the change, as part of his thesis project. The idea was to increase the efficiency of SSL *in UDP* for applications such as OpenVPN, by adding a "are you still there?" heartbeat exchange.
The final patch was submitted (and accepted) on the evening of Dec 31; I am at least slightly suspicious of the timing, as it smells of trying to meet some arbitrary deadline (and a student throwing in his work "under the wire") rather than the "when its as perfect as I can get it" criteria that should govern a submission to a security product.
Nothing in Android prevents Microsoft just taking the existing core and putting it on as many phones as they want. There is no restriction, you can do what you want with it.
However, getting access to the play store and many of the "standard" apps requires signing an agreement with Google - that doesn't get you android, just the play store access and apps. No amount of cleanroom re-implimentation of android core will entitle MS to connect to google's play store - that's not a "feature" of android, its a contractual agreement with Google.
Given that jagex have always stated that in-game objects are theirs, and can't be (eg) sold outside the game, I wonder if having a court ruling to the contrary will (again for example) make disabling accounts for real-world trading "theft" by jagex?
To be fair, you can usually get away with using better targeted, more directional lighting. Not only does focussing all the light down with appropriate reflectors mean less escapes skywards, but it means you can achieve the same levels of illumination with much lower power levels, saving money too..
I have seen such high failure rates in the wild - cross batch, cross manufacturer even.
But invariably, they were proceeded by a thermal event - I have never, ever seen worse than 10% failure in a datacenter that has a clean aircon record, and would expect 5% or better unless there were power issues too.
if you are seeing that sort of failure rate, I would be giving special care and attention to any "service visits" the ups or aircon guys may have made in the two months prior to the problem starting.
MariaDB is not much if any better - Ok, I can see his original point - he shared the source to MySQL so that he could get the benefits of community bugfixing, but retained the commercial rights so that he could sell commercial usage licences and still make money.
I can also see how, when offered a buttload of money by SUN, he could get up front and in one lump sum what he might make in years of normal trading - and SUN, having no db solution of its own to compete, was as good a new owner as any.
However, with MariaDB he is trying to have his cake and eat it too - he wishes to start a new "community" edition of MySQL so he can still steer the project, despite having taken his pieces of silver and ran once already. Despite (or even because of) his "experience" in running the MySQL project, I would not consider him a particularly good choice to control a fork.
Not sure if this is applicable, but - many torrent trackers accept donations via paypal....
You don't get to tell a search provider how they are supposed to use the content they index from you. I am ok with the idea that you should be able to tell them not to index you, if you don't want that done, but if you choose to be indexed you don't get to say "You can only do it in the way we specify, or using the terms we specify."
Actually, that plays to a second danger. If you can get a court order like this, then presumably at some point they can convince a Belgian judge that "Official Belgian newspapers" should automagically get a higher rating on news.google.be than foreign/unofficial ones... Google search results could end up ordered by lawsuit rank not pagerank :(
Google is a private, foreign, totally unaccountable organisation.
Clearly it is a private, foreign, but {within the jurisdiction of Belgian courts and accountable to said courts} organization, or this article wouldn't exist.
A Belgian judge has said "Remove all content from all your sites, but in particular, for google.com and google.be, for articles, images or graphic representations of the newspapers bringing this case"
Search engines work by indexing the content, comparing the index with the search terms, and using that to generate results. No content = no search = no result in the list. how is that hard to follow unless you are a Belgian landshark looking for cash damages not actual results (given robots.txt, as is repeatedly pointed out, can let you fine tune what google does or doesn't show)?
Why not look into contributing to an Open Source solution in your chosen area? see if you can find (for example) some PM tools that almost are good enough, and make them better?
A competent front end should write "hot" to the loaded list, but also update a static file so that they can be re-loaded on reboot. iptables has a built in "save" method that can generate such a file, but you don't always want to commit every change to the startup config.- but blaming the engine for the poor quality of coding involved in what is only a pretty front end onto a very competent packet filter is a bit unfair.
Interesting. Walmart took over a UK chain called ASDA some years ago, who has a scheme for doing this - staff go and "pick" the goods from the shelves in a real store, just like a normal shopper would, bag them up, do a CNP transaction for the payment, then ship them out in a van to the homes.
Maybe some stuff does flow upstream?
Cisco's support is very good - its expensive, but you get what you pay for. I am not sure why that means their kit is noticeably any better though; you tend to find, particularly with their higher end kit, your choices are a) pick which set of bugs you can live with or b) go with a beta that is near untested In fairness, (a) is usually good enough; MS have set the bar for "enterprise level" so low nobody expects perfection. But still, its not cheap, and *having* to have bought from an approved vendor, and have bought support, in order to get bugfix patches is a major pain. What is really needed is for someone else to up their game to match the level of support.
I would say that the desktop should be the *last* thing you replace.
First come the servers - migrate from windows or unix to linux, keeping the front-end as similar to the original as possible. Main problem here is if you are a exchange and outlook site, most exchange replacements are simply not up to scratch, or cost as much as just going with exchange - you want an outlook front end, with support for folder sharing and calendar busy searches, and in most cases that just isn't going to happen.
Next come the apps - and in most cases, this is easier. As you upgrade and replace, select those which have cross platform clients that look pretty much the same on both linux and windows; if they are in fact entirely platform independent (java?) so much the better, and if you can arrange for them to be web deliverable than better still.
Finally you can swap out the desktop - on the given day, the start button becomes a penguin button - but gives pretty much the same menu, with the same apps, looking and acting the same.
However, all this may change - the new target is no longer the server or desktop, but cloud computing - at which point, it no longer matters what you have front end or back, provided the front can render and the back run whatever cloud format comes out on top.
Seconded. The purpose of this is not to hinder your use of the files, but to make them traceable back to the original purchaser if they are shared online. as you don't have a licence to share online, that's fine - nobody but you should be in a position to care what data is in those files.
That none of the hosts I admin responded to ping. Personally, I think blocking ping at the firewall a useless security technique if I am responding to http or IKE packets, but the expensive security firm we hired to audit us pointed proudly *every single time* to that response as being a security issue, so I got sick of having to argue it out and just blocked inbound icmp that wasn't a response to an outgoing query.
Even if it didn't, which host would they expect to reply? most of my IP space is overloaded - if I have http and smtp open on the same IP, you can bet a bundle they aren't going to the same internal host, and the ASA isn't going to be responding to ping on behalf of the NATs it hosts.
If that wasn't bad enough, back when I had service from Demon Internet's business DSL service, they blocked all icmp even if you wanted it - that made monitoring line uptime a pain for our monitoring software back at head office, and led to us changing provider.
What it comes down to is that a pingsweep of the internet will tell you how many IP addresses respond to pings - no more, no less.
And yes, this is per user - you can walk around the same area, with another pc, and both have a different view of the world where not all objects are rendered for all users (and/or interact is turned off)
this is limited in some ways, but seems to work well.
if this is just a oneshot deal, its probably easier to provide them with a password protected archive and give them the password verbally (over the phone) - good choices here are anything that uses 256 bit aes or the equivalent, so rar, winzip and 7z (which is opensource/free) are good choices.