The US tried that in the 1950s. Atlas ICBMs were deployed from 1969 to 1965, but those missiles were replaced with solid fuel ICBMs as soon as it was possible to do so. Atlas boosters are still used as launchers, but their ICBM career was short.
Although the first generation Atlas and Titan ICBM's were phased out by 1965, the US continued to operate the liquid fuel Titan II until 1987. SAC actually introduced Titan II two years after the solid fuel Minuteman series. Although more difficult and dangerous to operate and maintain (not to mention much greater launch time), the Titan had a much greater payload than the Minuteman.
Actually, based on these Treasury Department figures, I calculate the foreign held percentage of US Treasury securities at about 21%. Another 41% of the public debt is held by the federal government itself (in the Social Security, Medicare and Highway trust funds). The Treasury Department publishes lots of good data about the public debt on the web.
From the first link you can see that China controls about 8.6% of the foreign debt, trailing the UK (9.8%) and Japan (33%).
Now here's a question. If Federal trusts control 41% of the public debt, who is going to lend us than $2.8 Trillion (more by then) when the Republicans "privatize" Social Security and Medicare? I'll go out on a limb and speculate that US private citizens and pension funds will not fill that void.
I think you are confusing English with French. As any descriptive grammarian will tell you, the common usage is to substitute the plural "they" for the missing sex ambiguous pronoun in English. Prescriptive grammarians may argue otherwise, but prescriptive grammar is stupid. This usage was common enough by the 17th century (IIRC) that the British parliament passed a law mandating the use of "he" in order to reinforce patriarchy in the language. My ex wrote her Linguistics thesis on the issue. Her argument was that that it was empirically demonstrable (via eye scans etc.) that it was faster to construe number than sex from context in most sentences and almost all paragraphs.
You can't beat an army with a stronger will and with greater numbers. It's why the US lost in Vietnam...
According to Colonel William E. Le Gro, writing for the U.S. Army Center for Military History, the total strength of Communist forces in South Vietnam at the time of the 1973 cease fire was a mere 235,000. That pales in comparison to the peak American presence of 541,000 in 1969, much less the combined South Vietnamese government forces 1973 strength of 1,075,000.
Military strength was less important than political legitimacy as a cause of the US withdrawal, much less the Communist victory three years later.
c) Apple did not move BACK to UNIX, because Apple never used UNIX before.
Apparently you never encountered A/UX, Apple's ass kicking System V implementation (literally UNIX). It sported a System 7-like GUI and ran System 7, A/UX and unix/X11 software.
Apple also used to be the main sponsor and developer of MkLinux, the PowerPC implementation of GNU/Linux over Mach. Not unix of course, but a unix-like OS for sure.
But this doesn't rule out running your own internal mail server. You just have to configure it to relay all outbound mail (that is, everything leaving your LAN) through your ISP's mail server instead of sending directly to the recipient's server. I know that sendmail can be configured to do this (I've done this on my Linux PC in order to allow me to use/usr/ucb/mail.) I would assume that any other halfway decent mail server should be able to do the same thing.
Unfortunately, AOL rejects mail from "private" addresses. I used to configure sendmail to listen only on the loopback address, and Mail.app to relay off localhost. That way, wherever my powerbook went I had a reliable relay (because of my office an ISP's policies, this used to be a problem.) At some point AOL started sending me reject notices when I mailed my dad. What business of theirs is it where I choose to relay?
Let me see if I get this straight. The company from which I paid $40 to buy a box set of Red Hat Linux 9 is now saying their product is "not ready for the desktop"?
This is the same Linux with the swell GUI, Bluecurve; which, to quote the press release offers a "[c]onveniently organized, user-friendly desktop with numerous graphical enhancements and icons."
No, you are misquoting Szulik. He did not say it wasn't ready for the desktop. he said it wasn't the best choice for the consumer desktop. He still thinks it is superior for the enterprise desktop. Also, his reason for this has nothing to do with the GUI, it is about driver support for consumer electronics.
"Consumers want USB drivers and digital camera support; but for the enterprise desktop, that is a little bit different--that area is ripe," he said. "We think that the enterprise desktop market place is much more strategic and has buyers whose needs we can exceed."
Re:TV Product Placement is Illegal
on
Linux in Movies?
·
· Score: 1
I am pretty sure the regs are still on the books. Or at least they were as recently as 2000. That was when the National Organization for the Reform of Marijuana Laws (NORML) filed a complaint with the FCC alleging the broadcast networks were in violation because they accepted Public Service Announcement (PSA) credits from the Office of National Drug Control Policy (ONDCP) in return for airing anti-drug content in its regular programming. NORML maintained that because the networks did not disclose the compensation they violated the sponsorship disclosure requirements.
I don't see how this ever worked for you. I was never able to get Jaguar to browse across subnets. And this Apple technote says, "SMB browsing is only supported on the local subnet."
Are you authenticating against Active Directory or something?
Amazingly, even with completely new Samba and browser implementations, WINS resolved browsing on a routed network is STILL hosed. It works a little better than before. I see a few shares for a few seconds before the window goes blank and reports zero shares. I replicated the failure on three machines, then a report with Apple, including a tcpdump.
The other big problem I have had stemmed from being short of space after doing an upgrade install. Using the new Disk Utility, I backed up my whole home directory to a disk image on my iPod and did a reformat install of Panther. Next time I mounted the disk image, the file system was unrecoverably corrupted. So much for my data.
This is a bit off topic, as it is pertains only to pre-Panther revs of the OS, but @stake is reporting a kernel buffer overflow in 10.0-10.2.8. I submitted this as a story, but it was rejected. Does @stake have a bad reputaiton or something? Apparently our Windows team subscribes to it. One of them forwarded the advisery to me.
TV Product Placement is Illegal
on
Linux in Movies?
·
· Score: 1
As has been noted all over, Macs show up a lot in movies & tv shows. This probably isn't a coincidence: the machines may look nicer than the typical beige box PC, but the product placement was probably paid for [apple.com] (also see here, at the bottom [wired.com]) in most cases, just as it would be for any other identifiable consumer product in a show.
Actually, in the US product placement on television is prohibited under the FCC sponsorship identification requirements of 47 U.S.C. 317 and 508, and 47 C.F.R. 73.1211. My wife used to be Director of Marketing of a well known consumer goods manufacturer. She says that back in her day TV placement for gratis product was already common, but the shows didn't even ask for money, probably more because it devalued advertising slots than because they were afraid of the FCC. Apparently this is no longer the case.
Hollywood, without advertisers or the FCC to answer to, was never so shy. She didn't pay them, because she was always able to place gratis product, but they always asked.
I agree that right now MA taxes are not unreasonable. The worst I encountered was a 12% short term Capital Gains tax, but I think even that has been reduced to around 5% in the past couple of years. The income tax fell from 5.9% to 5.3% in the past 5 years.
IIRC there is still a higher short term rate for people who hold equities less than a year. OTOH short term losses are deductable against long term gains. Overall, it should apply to a very small segment of the population. Until mid 2002 the long term capital gains rate graduated down to 0% after seven years. Now it is a flat 5.3% (same as earned income), slightly more than offsetting the five point reduction in the Federal capital gains rate.
Did you notice the "optional" tax rate on the MA tax return form this year? Yes that's right, you had the option to be taxed at a higher rate if you wanted to!
Yes, a legacy of the battle over the rate reduction. What pisses me off is the partisan bickering over what to name the northbound Central Artery tunnel. How our Democrats could oppose naming it after the late beloved Silvio Conte is beyond me. Conte worked closely with the House Democratic leadership under Tip O'Neill and endorsed Democrat John Olver as his successor before he died.
Did you catch Paul Krugman's latest tax article (free reg.) in the NYT Magazine Section? Nothing earth shattering, but appropos of this discussion.
Uninstall the sendmail and BIND Solaris pacakges and the patches will stop trying to patch them. You could also install your custom software in/usr/local like everyone else
Not to mention it should be chrooted. Seems to me the problem he describes is not bad packages but a bad package manager. Even RPM allows you to manipulate the clobberability of packages.
*sigh* sitting there happy behind firewalls with servers with little exposure, can I have your job??
You mean unix sysadmin? Our network architecture is total hamburger, particularly from a security standpoint. My point was that I implement my own fortifications and treat each machine as if it were a bastion on the internet. But that doesn't mean rushing to apply every new patch the second it is released. Every time there is a new BIND patch my CIO calls me to ask if we are vulnerable. Usually my answer is no, because the exploit is for some feature we don't have compiled in.
However all the same being naive and thinking you have little exposure can get you burnt.
Which is why I work with our security officer (a linux guy and developer, thank god) the evaluate the exposurer level on each "critical" erratum.
I still remember around the slammer worm time thinking "oh look at the little script kiddies toy running smack into our RPC/NetBios filter at the firewall..." until an employee downloaded something she shouldn't have, and infected the entire network with this "Script Kiddie toy" known as the slammer worm....our network was near comatose for about 2 days....bad memories there.
Now that IS naive. You can't rely on an institutional network firewall for host level security. When I mentioned firewalling I was referring to the stateful firewalls on my servers themselves. Slammer killed us in much the same way, but it didn't take us by surprise. It happens every time there is one of those MS worms. All it takes is one laptop. Of course, with the network hosed I was pretty much as buggered as the Windows guys, but I can say with confidence that my machines are very unlikely to cause such a problem.
I have a regular patch cycle, based on availability requirement (i.e short for DNS's, longer for application servers). If an emergency erratum shows up I evaluate our exposure and balance it against the risk of breakage. For me, that risk is usually quite low, since all my machines are unix or linux. Very few errata require me to reboot or pose a serious threat to my service level. I also run minimal services and local firewalls to reduce my exposure. Hence I can usually sit back and wait to see how a patch performs in the wild before applying it. If that process fails, it is usually quite simple to back out.
It helps that relatively few unix exploits are packaged and widely distributed in kits. In the past eight years I have encountered such a compromise twice. Once at work (sorta, it was at a University affiliated with my employer) and once at a consulting gig. Both were on vanilla, wide open RedHat 6.2/wu-ftpd installs (blech). I have seen other compromises, but they were manual entry into archaic crap SunOS 4 and Irix 5 (double blech!) machines.
Windows is another story. Luckily I don't manage any of our 80 or so Windows servers. I have no idea how I would handle patching them. It seems like their exposure is quite high. More importantly, the patch process appears fatally flawed. Our admins are afraid to apply patches because of the frequency with which they break machines. And almost all of them require rebooting. The recent round of RPC exploits hit us hard and we had no choice but to patch all our Windows servers. Unfortunately, the patches broke our backup system. That left me working 14 hours a day for six days (I admin the backup server) with backline engineers from two vendors. We got the overall system back up, although it meant rebooting every Windows server (some more than once), but a couple of Windows backups still fail every night. Not much we can do about it, as we have no access to the source code. Besides, backing out of the patches would not only be suicidal but would require another massive disruption of service.
It's not so much the tax burden that warrants the moniker it also has to do with mismanagement and misappropriation of funds that becomes prevalent in a state that is so predominantly democratic. One such glaring example would be the "Big Dig", another might be the fact that people are still paying tolls on the mass turnpike even thought it has already been paid for. Things have been getting better since Romney was elected but what can he really do when his veto is moot due to the overwhelming majority of democrats in the house and the senate?
The Big Dig fiasco was the result of collusion amongts Bechtel/Parsons Brinckerhoff, the Republican governor's office and the predominantly Democratic Legislature on Beacon Hill. Both the Governor's office and the Legislature made the project a patronage bonanza. When this corruption resulted in fiascos, they simple payed Bechtel and Parsons Brinkerhoff to clean up the messes.
Regarding the Turnpike Authority, you are really taliking about the same problem. The main reason we still have tolls, and in fact they have gone up, is to finance the Big Dig. Two board members (one Democrat one Republican) at the Mass Turnpike Authority spoke out on Bechtel/BP corruption at the Big Dig, and in fact threatened to terminate their contracts in 2001. Republican Governor Jane Swift quickly fired them and increase tolls on the Mass Pike. Her predecessor's, predecessor Bill Weld (also Republican) at one point considered selling the whole Mass Pike, but instead used it as collateral on $2.7 billion in loans to pay for, you guessed it, the Big Dig.
Painting the Big Dig as partisan issue is ridiculous. It cuts across every level and wing of Mass politics.
I'm not sure what makes you think Romney is so much better than the last three governors, all of whom were Republican. I happen to know he is a lying sack of crap. He openly claimed my rep, who is a prominant Democratic known for his honesty and independence (one of the few who voted to fund the Clean Elections law we passed by referendum) endorsed him, which was an outright lie.
Yes, but Taxachusettes sounds funny, and therefore is easy to remember and must be true (as are all things if you are able to convince enough people).
You mean like Rumsfeld's repeated assertions that Iraq "threw the inspectors out?" Oh wait, that wasn't funny. It was just a lie. I guess I just can't get the hang of this stuff.
I see little difference between the government taking over the companies and the companies taking over the government.
"The first stage of fascism should more appropriately be called Corporatism because it is a merger of State and corporate power" --Benito Mussolini
I don't get the Taxachusetts moniker. I live here and pay 5% income tax, 5% sales tax and $.21/gallon gas tax. Doesn't seem so bad to me. New York has 4-6.85% income, 4% sales (plus $1.50 on cigarettes) and $.226 gas tax. Li'l Rhodie has 7% sales, $.31/gallon gas and a flat 1/4 of your federal income tax liability. West Virginians pay 6% sales, $.2535/gallon gas and 3-6.5% income tax. Californians endure a 7.25-8.25% sales tax, $.18/gallon sales tax and 1-9.3% income tax. Sure, I could move to Wyoming and pay less, but how many unix sysadmin jobs are there in Wyoming and what do they pay?
In my industry, the law requires us to keep every scrap of data for 30 years. Some of this data may actually need retrieval for business purposes after years of dormancy. Other data is fire and forget, but the law still dictates we retain it. We need our data to transparently migrate from online storage (i.e. EMC DMX or HP XP) to secondary storage (i.e. EMC Clarion, HP EVA), to nearline storage (tape), based on content and age. Much of the nearline is for all intents and purposes archived. Since our archive requirement is pushing the limits of tape life, we really need to refresh tape media at least once in the data lifecycle. That adds painful complexity and cost to the process. MO and WORM (write once read many) optical frames are the only formats I know of which meets our archive criteria right out of the box. Hell, they're even EMP resistant.
One vendor recommended MO and pointed to a large customer using it.
Apple has great education bundles. I bought my wife an iBook 900/CD-RW w/ WiFi and a three year warranty for $1099 and they threw in a $200 iPod rebate. List on the 10 gig 'Pod was $269, so it ended up costing me $69. I could have also tacked on a free HP printer, but I get sick of throwing out broken inkjets.
Apple was also remarkably prompt with the rebate. It arrived two weeks after I posted the form.
Thanks. That is exactly the kind of feedback I was looking for.
I found some documentation and it looks to me like the basic SMTP service is part of IIS, but that the routing functionality is AD dependent and only added to the service when you install Exchange. As you say, that means putting Exchange and AD, in the DMZ, not to mention whatever other parts of IIS you can't disable. It also looks like the AD access is by necessity read/write. Gack!
You have a small problem. First of all, Exchange 5.5 will be unsupported by the end of this year, so the upgrade to 2k/2k3 is somewhat mandatory.
Second, as noted before, both 2k and 2k3 require active directory, which means upgrading at least your pdc and bdc's to windows 2k or windows server 2k3.
Exchange 2k and 2k3 are both more secure and more reliable than Exchange 5.5, but I would not recommend them for DMZ use (if you want to sleep at night). Also, it will take you quite a bit of work to move your working Sendmail setup to Exchange.
Luckily these aren't my problems:-) Or at least, no more than they are any other user's problems. I'm a unix guy. If they decide to ditch sendmail I won't be doing the work. I maintain the current systems. The domain controllers are already WMM, they just aren't running AD.
I would recommend building a test lab closely mirroring your current production environment, and see for yourself the impact of the migration to Exchange 2003.
Slashdot Mirror
Actually, based on these Treasury Department figures, I calculate the foreign held percentage of US Treasury securities at about 21%. Another 41% of the public debt is held by the federal government itself (in the Social Security, Medicare and Highway trust funds). The Treasury Department publishes lots of good data about the public debt on the web.
From the first link you can see that China controls about 8.6% of the foreign debt, trailing the UK (9.8%) and Japan (33%).
Now here's a question. If Federal trusts control 41% of the public debt, who is going to lend us than $2.8 Trillion (more by then) when the Republicans "privatize" Social Security and Medicare? I'll go out on a limb and speculate that US private citizens and pension funds will not fill that void.
Who spells potato with an -e?
Dan Quayle.
I think you are confusing English with French. As any descriptive grammarian will tell you, the common usage is to substitute the plural "they" for the missing sex ambiguous pronoun in English. Prescriptive grammarians may argue otherwise, but prescriptive grammar is stupid. This usage was common enough by the 17th century (IIRC) that the British parliament passed a law mandating the use of "he" in order to reinforce patriarchy in the language. My ex wrote her Linguistics thesis on the issue. Her argument was that that it was empirically demonstrable (via eye scans etc.) that it was faster to construe number than sex from context in most sentences and almost all paragraphs.
According to Colonel William E. Le Gro, writing for the U.S. Army Center for Military History, the total strength of Communist forces in South Vietnam at the time of the 1973 cease fire was a mere 235,000. That pales in comparison to the peak American presence of 541,000 in 1969, much less the combined South Vietnamese government forces 1973 strength of 1,075,000.
Military strength was less important than political legitimacy as a cause of the US withdrawal, much less the Communist victory three years later.
Apple also shipped PPC servers running AIX under license from IBM. They have a rich unix history.
Apparently you never encountered A/UX, Apple's ass kicking System V implementation (literally UNIX). It sported a System 7-like GUI and ran System 7, A/UX and unix/X11 software.
Apple also used to be the main sponsor and developer of MkLinux, the PowerPC implementation of GNU/Linux over Mach. Not unix of course, but a unix-like OS for sure.
Unfortunately, AOL rejects mail from "private" addresses. I used to configure sendmail to listen only on the loopback address, and Mail.app to relay off localhost. That way, wherever my powerbook went I had a reliable relay (because of my office an ISP's policies, this used to be a problem.) At some point AOL started sending me reject notices when I mailed my dad. What business of theirs is it where I choose to relay?
"Consumers want USB drivers and digital camera support; but for the enterprise desktop, that is a little bit different--that area is ripe," he said. "We think that the enterprise desktop market place is much more strategic and has buyers whose needs we can exceed."
I am pretty sure the regs are still on the books. Or at least they were as recently as 2000. That was when the National Organization for the Reform of Marijuana Laws (NORML) filed a complaint with the FCC alleging the broadcast networks were in violation because they accepted Public Service Announcement (PSA) credits from the Office of National Drug Control Policy (ONDCP) in return for airing anti-drug content in its regular programming. NORML maintained that because the networks did not disclose the compensation they violated the sponsorship disclosure requirements.
The FCC rejected NORML's complaint, but instructed the networks to identify the ONDCP as a sponsor in the future.
The thing about regulation is that someone has to enforce it.
I don't see how this ever worked for you. I was never able to get Jaguar to browse across subnets. And this Apple technote says, "SMB browsing is only supported on the local subnet."
Are you authenticating against Active Directory or something?
Amazingly, even with completely new Samba and browser implementations, WINS resolved browsing on a routed network is STILL hosed. It works a little better than before. I see a few shares for a few seconds before the window goes blank and reports zero shares. I replicated the failure on three machines, then a report with Apple, including a tcpdump.
The other big problem I have had stemmed from being short of space after doing an upgrade install. Using the new Disk Utility, I backed up my whole home directory to a disk image on my iPod and did a reformat install of Panther. Next time I mounted the disk image, the file system was unrecoverably corrupted. So much for my data.
This is a bit off topic, as it is pertains only to pre-Panther revs of the OS, but @stake is reporting a kernel buffer overflow in 10.0-10.2.8. I submitted this as a story, but it was rejected. Does @stake have a bad reputaiton or something? Apparently our Windows team subscribes to it. One of them forwarded the advisery to me.
Actually, in the US product placement on television is prohibited under the FCC sponsorship identification requirements of 47 U.S.C. 317 and 508, and 47 C.F.R. 73.1211. My wife used to be Director of Marketing of a well known consumer goods manufacturer. She says that back in her day TV placement for gratis product was already common, but the shows didn't even ask for money, probably more because it devalued advertising slots than because they were afraid of the FCC. Apparently this is no longer the case.
Hollywood, without advertisers or the FCC to answer to, was never so shy. She didn't pay them, because she was always able to place gratis product, but they always asked.
IIRC there is still a higher short term rate for people who hold equities less than a year. OTOH short term losses are deductable against long term gains. Overall, it should apply to a very small segment of the population. Until mid 2002 the long term capital gains rate graduated down to 0% after seven years. Now it is a flat 5.3% (same as earned income), slightly more than offsetting the five point reduction in the Federal capital gains rate.
Yes, a legacy of the battle over the rate reduction. What pisses me off is the partisan bickering over what to name the northbound Central Artery tunnel. How our Democrats could oppose naming it after the late beloved Silvio Conte is beyond me. Conte worked closely with the House Democratic leadership under Tip O'Neill and endorsed Democrat John Olver as his successor before he died.
Did you catch Paul Krugman's latest tax article (free reg.) in the NYT Magazine Section? Nothing earth shattering, but appropos of this discussion.
Not to mention it should be chrooted. Seems to me the problem he describes is not bad packages but a bad package manager. Even RPM allows you to manipulate the clobberability of packages.
You mean unix sysadmin? Our network architecture is total hamburger, particularly from a security standpoint. My point was that I implement my own fortifications and treat each machine as if it were a bastion on the internet. But that doesn't mean rushing to apply every new patch the second it is released. Every time there is a new BIND patch my CIO calls me to ask if we are vulnerable. Usually my answer is no, because the exploit is for some feature we don't have compiled in.
Which is why I work with our security officer (a linux guy and developer, thank god) the evaluate the exposurer level on each "critical" erratum.
Now that IS naive. You can't rely on an institutional network firewall for host level security. When I mentioned firewalling I was referring to the stateful firewalls on my servers themselves. Slammer killed us in much the same way, but it didn't take us by surprise. It happens every time there is one of those MS worms. All it takes is one laptop. Of course, with the network hosed I was pretty much as buggered as the Windows guys, but I can say with confidence that my machines are very unlikely to cause such a problem.
I have a regular patch cycle, based on availability requirement (i.e short for DNS's, longer for application servers). If an emergency erratum shows up I evaluate our exposure and balance it against the risk of breakage. For me, that risk is usually quite low, since all my machines are unix or linux. Very few errata require me to reboot or pose a serious threat to my service level. I also run minimal services and local firewalls to reduce my exposure. Hence I can usually sit back and wait to see how a patch performs in the wild before applying it. If that process fails, it is usually quite simple to back out.
It helps that relatively few unix exploits are packaged and widely distributed in kits. In the past eight years I have encountered such a compromise twice. Once at work (sorta, it was at a University affiliated with my employer) and once at a consulting gig. Both were on vanilla, wide open RedHat 6.2/wu-ftpd installs (blech). I have seen other compromises, but they were manual entry into archaic crap SunOS 4 and Irix 5 (double blech!) machines.
Windows is another story. Luckily I don't manage any of our 80 or so Windows servers. I have no idea how I would handle patching them. It seems like their exposure is quite high. More importantly, the patch process appears fatally flawed. Our admins are afraid to apply patches because of the frequency with which they break machines. And almost all of them require rebooting. The recent round of RPC exploits hit us hard and we had no choice but to patch all our Windows servers. Unfortunately, the patches broke our backup system. That left me working 14 hours a day for six days (I admin the backup server) with backline engineers from two vendors. We got the overall system back up, although it meant rebooting every Windows server (some more than once), but a couple of Windows backups still fail every night. Not much we can do about it, as we have no access to the source code. Besides, backing out of the patches would not only be suicidal but would require another massive disruption of service.
The Big Dig fiasco was the result of collusion amongts Bechtel/Parsons Brinckerhoff, the Republican governor's office and the predominantly Democratic Legislature on Beacon Hill. Both the Governor's office and the Legislature made the project a patronage bonanza. When this corruption resulted in fiascos, they simple payed Bechtel and Parsons Brinkerhoff to clean up the messes.
Regarding the Turnpike Authority, you are really taliking about the same problem. The main reason we still have tolls, and in fact they have gone up, is to finance the Big Dig. Two board members (one Democrat one Republican) at the Mass Turnpike Authority spoke out on Bechtel/BP corruption at the Big Dig, and in fact threatened to terminate their contracts in 2001. Republican Governor Jane Swift quickly fired them and increase tolls on the Mass Pike. Her predecessor's, predecessor Bill Weld (also Republican) at one point considered selling the whole Mass Pike, but instead used it as collateral on $2.7 billion in loans to pay for, you guessed it, the Big Dig.
Painting the Big Dig as partisan issue is ridiculous. It cuts across every level and wing of Mass politics.
I'm not sure what makes you think Romney is so much better than the last three governors, all of whom were Republican. I happen to know he is a lying sack of crap. He openly claimed my rep, who is a prominant Democratic known for his honesty and independence (one of the few who voted to fund the Clean Elections law we passed by referendum) endorsed him, which was an outright lie.
You mean like Rumsfeld's repeated assertions that Iraq "threw the inspectors out?" Oh wait, that wasn't funny. It was just a lie. I guess I just can't get the hang of this stuff. "The first stage of fascism should more appropriately be called Corporatism because it is a merger of State and corporate power" --Benito Mussolini
Trite Perhaps, but appropriate nonetheless.
I don't get the Taxachusetts moniker. I live here and pay 5% income tax, 5% sales tax and $.21/gallon gas tax. Doesn't seem so bad to me. New York has 4-6.85% income, 4% sales (plus $1.50 on cigarettes) and $.226 gas tax. Li'l Rhodie has 7% sales, $.31/gallon gas and a flat 1/4 of your federal income tax liability. West Virginians pay 6% sales, $.2535/gallon gas and 3-6.5% income tax. Californians endure a 7.25-8.25% sales tax, $.18/gallon sales tax and 1-9.3% income tax. Sure, I could move to Wyoming and pay less, but how many unix sysadmin jobs are there in Wyoming and what do they pay?
In my industry, the law requires us to keep every scrap of data for 30 years. Some of this data may actually need retrieval for business purposes after years of dormancy. Other data is fire and forget, but the law still dictates we retain it. We need our data to transparently migrate from online storage (i.e. EMC DMX or HP XP) to secondary storage (i.e. EMC Clarion, HP EVA), to nearline storage (tape), based on content and age. Much of the nearline is for all intents and purposes archived. Since our archive requirement is pushing the limits of tape life, we really need to refresh tape media at least once in the data lifecycle. That adds painful complexity and cost to the process. MO and WORM (write once read many) optical frames are the only formats I know of which meets our archive criteria right out of the box. Hell, they're even EMP resistant.
One vendor recommended MO and pointed to a large customer using it.
Apple has great education bundles. I bought my wife an iBook 900/CD-RW w/ WiFi and a three year warranty for $1099 and they threw in a $200 iPod rebate. List on the 10 gig 'Pod was $269, so it ended up costing me $69. I could have also tacked on a free HP printer, but I get sick of throwing out broken inkjets.
Apple was also remarkably prompt with the rebate. It arrived two weeks after I posted the form.
Thanks. That is exactly the kind of feedback I was looking for.
I found some documentation and it looks to me like the basic SMTP service is part of IIS, but that the routing functionality is AD dependent and only added to the service when you install Exchange. As you say, that means putting Exchange and AD, in the DMZ, not to mention whatever other parts of IIS you can't disable. It also looks like the AD access is by necessity read/write. Gack!
You have pretty much exactly described the current setup, except we use sendmail.
The boss just wants to know if windows can do the work. It couldn't when I built the current system.
Luckily these aren't my problems:-) Or at least, no more than they are any other user's problems. I'm a unix guy. If they decide to ditch sendmail I won't be doing the work. I maintain the current systems. The domain controllers are already WMM, they just aren't running AD. You obviously don't work here