Let me dispel some myths. The phones are standard 2G phones. The phone has to transmit slightly earlier the further away from the cell it is. Light, although fast still takes time to travel. And when you only have a tiny split-second time slot to get into, it needs careful timing.
The networks have had this ability for a while, but it's only recently that they've opened up their networks via APIs that other people can use. It's accurate to about 500 metres in towns (due to the higher number of cells), and to up to about 2 kms in the countryside.
It gets updates the network whenever the phone has to transmit - SMS, phonecall, MMS, GPRS, or when the phone moves cells. So you can only query the last known place and time that a phone was "seen". I am writing an application that takes advantage of this - but I'm not going to tell you what it is.
I don't know... I'd rather some nice tried and tested kernel module, as opposed to some companies get-a-proxy-out-the-door-and-make-some-money-quick proxy.
I hear what you're saying about it being complicated - but the ftp connection tracking module works fine, doesn't it, and that uses separate ports for control and data.
Why would SIP be much different to that?
The one thing that we (in Linux world) need is an IPTables module for handling SIP packets. There used to be an H323 module, but SIP is fast becoming the standard for VoIP. insmod ipt_SIP.o anyone?
Then Linux firewalls can be used in companies, rather than application layer proxies (yuk).
Could I convert an existing Redhat server to Gentoo - without rebuilding from scratch? Can I not download "emerge" and start emerging system? Has anyone done it? How did it work? How to get rid of the "cruft"?
I don't have a backup of that server, so I can't go for the wipe and rebuild - also, it is running a 24/7 e-commerce site.
Erm, I don't think corporate finance systems work like that..:)
Me: I downloaded this, and saved $40, but could I raise a purchase order so that they still get the money? Them: Have you been sat out in the sun too long?
Gentoo!! Noooooooooo! You've let me down.... gentoo root # emerge an Calculating dependencies emerge: there are no masked or unmasked ebuilds to satisfy "an".
Are there any precautions that I should know about? There are a couple of them. First, BACK UP YOUR PCR-1000 EEPROM! There are many programs to do this with, mostly under Windows and DOS.
I like:
1. The very large collection of packages. For example, I don't believe you can apt-get install vmware.
2. The very sensible defaults. After emerge wine, I could run Lotus Notes 5 with no changes at all. I tried to set that up on a RH box with wine compiled from source, and it chucked up loads of errors and didn't work.
That said, it does take a long time to set up from stage 1. You're probably looking at about 3-4 days for the base system, X, KDE, Mozilla, and OpenOffice. I'll use it for my personal machines, but I can't be arsed with all that for run of the mill boxes.
It's no different to shredding your ~/.gnupg/secrin*, apart from the fact that you want the encryption/decryption to be transparent. Hence GPG isn't an option.
Try searching for root bin daemon adm sync shutdown operator or other common usernames - quite a few muppets seem to have aliased / with something.
Mind you - it's the ultimate security test - let everyone see your server as a non-root user - it should still be safe.
I suppose it's like not using a firewall - it means your network has to be completely secure on its own merits.
Big gripe - when someone puts about 20 words in a.doc, and then sends that via email, rather than just typing it in the email natively. I'd even rather have an HTML email than a.doc attachment... Pah.
I made a slight mod to that. I use a file full of random crap **plus** a passphrase as my key to encrypt my data. In an emergency, shred -uvz/path/to/key will render the data absolutely useless, even if I give up my key. I wrote a little init script to help out with this.
Slashdot Mirror
Let me dispel some myths. The phones are standard 2G phones. The phone has to transmit slightly earlier the further away from the cell it is. Light, although fast still takes time to travel. And when you only have a tiny split-second time slot to get into, it needs careful timing.
The networks have had this ability for a while, but it's only recently that they've opened up their networks via APIs that other people can use. It's accurate to about 500 metres in towns (due to the higher number of cells), and to up to about 2 kms in the countryside.
It gets updates the network whenever the phone has to transmit - SMS, phonecall, MMS, GPRS, or when the phone moves cells. So you can only query the last known place and time that a phone was "seen". I am writing an application that takes advantage of this - but I'm not going to tell you what it is.
I don't know... I'd rather some nice tried and tested kernel module, as opposed to some companies get-a-proxy-out-the-door-and-make-some-money-quick proxy.
I hear what you're saying about it being complicated - but the ftp connection tracking module works fine, doesn't it, and that uses separate ports for control and data.
Why would SIP be much different to that?
A H323? You can't say that, you heathen!
One is actually supposed to say "an hotel" too, don't you know?
-
Microsoft IIS is to webserving as KFC is to healthy eating
But I like KFC....
Then Linux firewalls can be used in companies, rather than application layer proxies (yuk).
I wonder if the person writing the dcom worm is wondering what payload to put in their worm.... :)
Sign up, get some karma, and do some modding then.
Could I convert an existing Redhat server to Gentoo - without rebuilding from scratch? Can I not download "emerge" and start emerging system? Has anyone done it? How did it work? How to get rid of the "cruft"?
I don't have a backup of that server, so I can't go for the wipe and rebuild - also, it is running a 24/7 e-commerce site.
(Of course I have a backup.)
calum@falstaff:~$ uname -a ; uptime
Linux falstaff 2.4.18 #2 Thu Apr 11 14:37:17 EDT 2002 sparc64 unknown
07:03:59 up 242 days, 18:24, 2 users, load average: 0.17, 0.05, 0.01
calum@falstaff:~$
Erm, I don't think corporate finance systems work like that.. :)
Me: I downloaded this, and saved $40, but could I raise a purchase order so that they still get the money?
Them: Have you been sat out in the sun too long?
Gentoo!! Noooooooooo! You've let me down....
gentoo root # emerge an
Calculating dependencies
emerge: there are no masked or unmasked ebuilds to satisfy "an".
!!! Error calculating dependencies. Please correct.
gentoo root #
I will never be able to look my Debian using friends in the eye again... Please make this your top priority!
So it's gamble, or install Windows to use it?
Some people would pronounce it pyoo. Myself included. As in "take a pew".
vs
emerge vmware
No comparison ;)
1. The very large collection of packages. For example, I don't believe you can apt-get install vmware.
2. The very sensible defaults. After emerge wine, I could run Lotus Notes 5 with no changes at all. I tried to set that up on a RH box with wine compiled from source, and it chucked up loads of errors and didn't work.
That said, it does take a long time to set up from stage 1. You're probably looking at about 3-4 days for the base system, X, KDE, Mozilla, and OpenOffice. I'll use it for my personal machines, but I can't be arsed with all that for run of the mill boxes.
It's no different to shredding your ~/.gnupg/secrin*, apart from the fact that you want the encryption/decryption to be transparent. Hence GPG isn't an option.
I noticed, but it wouldn't have been funny.
And who is this maste of the web that the speak of? :)
# The webmaster for this site is <webmaste@us.ibm.com>
Mind you - it's the ultimate security test - let everyone see your server as a non-root user - it should still be safe.
I suppose it's like not using a firewall - it means your network has to be completely secure on its own merits.
Big gripe - when someone puts about 20 words in a .doc, and then sends that via email, rather than just typing it in the email natively. I'd even rather have an HTML email than a .doc attachment... Pah.
I'm aware of it, yep. For some people though (not me), that 2 years might be a much better option though.
I did that using a script - check it out.
I of course meant even if I give up my passphrase.
I made a slight mod to that. I use a file full of random crap **plus** a passphrase as my key to encrypt my data. In an emergency, shred -uvz /path/to/key will render the data absolutely useless, even if I give up my key. I wrote a little init script to help out with this.
If people can reverse-engineer Microsofts file formats without help, why wouldn't they be able to work out a jpeg, or and mp3?