That list looks pretty comprehensive, at least for the handful of ISPs I've used. I trust you'll be adding firewall exceptions for other APNIC states such as New Zealand, right?
Nonetheless, I still think this kind of blocking is a bad idea. It relies upon an up-to-date list of netblocks, and you'll never know if a legitimate customer from a netblock you've deemed suspicious has simply taken their business elsewhere. But that's for you to worry about, not me.
Every IP address I can ever remember having falls in one of those 'ALLOCATED' blocks. In particular, 61/8, 121/8, 203/8, 210/8, and 211/8, but there are definitely more.
I guess by checking.gov.au sites and the like, you've only found organizations who jumped on the internet bandwagon pre-APNIC.
Sorry dude. I block whole netblocks that I/we don't have any business with, and that fill up my logs with annoying connection attempts, and portscans, etc.
I'll show you my method for blocking about 80% of probes, scans, password guessing bots, etc:
# wget -o/dev/null -O - http://www.iana.org/assignments/ipv4-address-space/ | grep whois.apnic.net | grep ALLOCATED | cut -d " " -f 1 | xargs
# need to add in.0.0.0 though
for asia in 58.0.0.0/8 59.0.0.0/8 60.0.0.0/8 61.0.0.0/8 112.0.0.0/8 113.0.0.0/8 114.0.0.0/8 115.0.0.0/8 116.0.0.0/8 117.0.0.0/8 118.0.0.0/8 119.0.0.0/8 120.0.0.0/8 121.0.0.0/8 122.0.0.0/8 123.0.0.0/8 124.0.0.0/8 125.0.0.0/8 126.0.0.0/8 202.0.0.0/8 203.0.0.0/8 210.0.0.0/8 211.0.0.0/8 218.0.0.0/8 219.0.0.0/8 220.0.0.0/8 221.0.0.0/8 222.0.0.0/8
do
$fw -A INPUT -s $asia -j DROP
done
I don't get why you are getting annoyed that I (and probably many others) do things like this?
Your rule blocks most Australian IP addresses, for starters.
When was a device built by Apple a democratic system?
Oh I don't know, the entire Mac range?
I can run any software I please on my MacBook Pro, even format and install Windows or Linux if I want. On an iPhone, I can only run Apple-approved software, unless the phone is jailbroken.
24 years after their iconic '1984' ad, Apple look like hypocrites with their complete about-face on the iPhone.
If you want to know what a general purpose PC which can only reliably run software blessed by a central authority looks like, go install Debian, then try and install a program that isn't included in the repositories. It'll probably make jailbreaking an iPhone look like a stroll through a grassy meadow.
./configure
make && make install
Same as any other Linux distribution. Why has the parent been modded up?
You realize that you're giving all your data and control over to a machine that you don't control.
Isn't that what you already do with your own ISP? How do you know that some bored guy there isn't already eavesdropping on your data? Or even someone at your ISP's upstream provider?
And what about those of us who aren't living in a capital city?
A choice of overpriced ADSL1 or overpriced Telstra-only ADSL2 isn't what I'd consider to be "decent ISP competition".
I won't speculate as to whom you refer to as 'SI Nazis', but as I said, the metric system is much, much older than the idea of a byte, which was only conceived in the last century.
The problem with breaking the SI standard is that even if you accept byte units based on powers of 2, it doesn't make actual usage consistent.
I could go out and purchase a gigabyte of RAM, and it should be 1,073,741,824 bytes, but if I dig up an old one gigabyte hard drive, I should only expect it to have 1,000,000,000 bytes. WTF?
You can't even simply make an exception for data storage, because some software reports file sizes using powers of two, and some uses powers of ten.
The sensible solution would be to let SI prefixes keep the meaning they've had from the start, and if people want to have a different system, use different names for it.
If you don't like referring to tebibytes and mebibytes, then come up with something else and persuade people to use it, but in the meantime, it's not that difficult to write KB when you mean 1000 bytes and KiB when you mean 1024.
SI is the older, historical standard, dating back to the nineteenth century. And you are using the 'inanely stupid' SI names, but breaking the standard by redefining them for your own purposes. How difficult is it to write TiB instead of TB when you want to be unambiguous?
That would be very impressive. I would love to see how a human eye can see motion at 60Hz, especially since films are 24Hz and north american TV is at 30 Hz, and the human eye doesn't respond fast enough to see individual frames.
Presumably the same way people notice a CRT flickering at 60Hz. It's not that uncommon.
You probably should check it at least once a month (since spam messages are deleted after thirty days)—I've had several important messages show up there, and I always use the Not Spam/Report Spam buttons when needed.
Potentially losing genuine mail is far more of a problem than briefly seeing spam in the inbox.
Speculation on Three's blog comments was that Apple wouldn't allow Three to plaster their logo all over the phone and have built-in links to their online content the way Three do with all their other handsets.
Of course, after the comments turned against Three, commenting was disabled, but some of them are still in the Google cache.
No, Telstra does have two 3G networks. The first was developed together and shared with Three covering a rather small portion of the major cities, and the second is the NextG network, using a different frequency, covering much more of Australia, and not shared with Three.
While Telstra may have ulterior motives for the lower frequency, using 850MHz instead of 2100MHz means they can cover a larger area with less towers (albeit with less bandwidth too), making it feasible to provide 3G service to rural areas.
Suppose you want to de-install GarageBand because you decided to install Logic Express/Pro (or, hell, any non-Apple DAW, too). Would you appreciate the OS automatically removing all your customised loops? What about the stock loops - which you still might want to (and are entitled to) access? If the OS had an interface in place for removing software, it could, you know, just ask me.
Apple's way of de-installing stuff is, in most cases, way more user-friendly and less likely to screw things up for other apps. In any case, the worst thing that leftover prefs, etc. can do is eat up a few kB of HD space. Big deal. As I said in my original post, for some applications, leftover data is much more than that. In the case of Garageband, it's well over 3 gigabytes (/Library/Audio/Apple Loops and/Library/Application Support/Garageband).
.....built and loaded with software from the manufacturer is my Mac laptop....
A nice feature of Macs is that any programs you don't want are easy to delete. Just drag them to the trash. No need for uninstallers. No registry cleaners or other crap removal problems. Why can't Windows be like that?
Unfortunately even Apple's own applications aren't usually self-contained within their.app icon package like you suggest. If you drag a program like Garageband or iPhoto to the Trash, you're only removing part of the program. For example, the Garageband icon in/Applications is ~86 megabytes, but there are nearly 2 gigabytes of sound loops and such in/Library/Application Support that would be left behind, not to mention individual user preferences and caches in ~/Library.
In my opinion Windows is actually ahead of OS X here, by providing a central location (the Add/Remove Programs control panel) to completely remove (well-behaved) applications.
And, Macs aren't exactly bloatware free. Quicktime is a trial version with a nag screen to upgrade. Macs come with trial versions of Office (how much does Microsoft pay for that) and Omni outliner. The OmniOutliner included with Macs is the fully-functional Standard edition, same as if you bought it yourself.
Slashdot Mirror
That list looks pretty comprehensive, at least for the handful of ISPs I've used.
I trust you'll be adding firewall exceptions for other APNIC states such as New Zealand, right?
Nonetheless, I still think this kind of blocking is a bad idea. It relies upon an up-to-date list of netblocks, and you'll never know if a legitimate customer from a netblock you've deemed suspicious has simply taken their business elsewhere. But that's for you to worry about, not me.
Every IP address I can ever remember having falls in one of those 'ALLOCATED' blocks. In particular, 61/8, 121/8, 203/8, 210/8, and 211/8, but there are definitely more.
I guess by checking .gov.au sites and the like, you've only found organizations who jumped on the internet bandwagon pre-APNIC.
Sorry dude. I block whole netblocks that I/we don't have any business with, and that fill up my logs with annoying connection attempts, and portscans, etc. I'll show you my method for blocking about 80% of probes, scans, password guessing bots, etc:
I don't get why you are getting annoyed that I (and probably many others) do things like this?
Your rule blocks most Australian IP addresses, for starters.
When was a device built by Apple a democratic system?
Oh I don't know, the entire Mac range?
I can run any software I please on my MacBook Pro, even format and install Windows or Linux if I want. On an iPhone, I can only run Apple-approved software, unless the phone is jailbroken.
24 years after their iconic '1984' ad, Apple look like hypocrites with their complete about-face on the iPhone.
If you want to know what a general purpose PC which can only reliably run software blessed by a central authority looks like, go install Debian, then try and install a program that isn't included in the repositories. It'll probably make jailbreaking an iPhone look like a stroll through a grassy meadow.
make && make install
Same as any other Linux distribution. Why has the parent been modded up?
Wow. Patent against software being sold for illegal phones. I'd sue, but I'm not quite sure where to start on that one.
How can a phone in and of itself be illegal?
You realize that you're giving all your data and control over to a machine that you don't control.
Isn't that what you already do with your own ISP? How do you know that some bored guy there isn't already eavesdropping on your data? Or even someone at your ISP's upstream provider?
both of whom had gay software
Their software was homosexual? Or are you just an asshole who uses the word 'gay' when you really mean 'stupid'?
You're about an hour behind.
Apparently kids are not allowed to use chrome.
You say that like it's a bad thing.
Hopefully they'll add a spelling and grammar proficiency requirement, too.
They are disincentivizing ownership.
Why would you use that horrible marketspeak term instead of a simpler word like discouraging?
And what about those of us who aren't living in a capital city?
A choice of overpriced ADSL1 or overpriced Telstra-only ADSL2 isn't what I'd consider to be "decent ISP competition".
I won't speculate as to whom you refer to as 'SI Nazis', but as I said, the metric system is much, much older than the idea of a byte, which was only conceived in the last century.
The problem with breaking the SI standard is that even if you accept byte units based on powers of 2, it doesn't make actual usage consistent. I could go out and purchase a gigabyte of RAM, and it should be 1,073,741,824 bytes, but if I dig up an old one gigabyte hard drive, I should only expect it to have 1,000,000,000 bytes. WTF? You can't even simply make an exception for data storage, because some software reports file sizes using powers of two, and some uses powers of ten.
The sensible solution would be to let SI prefixes keep the meaning they've had from the start, and if people want to have a different system, use different names for it. If you don't like referring to tebibytes and mebibytes, then come up with something else and persuade people to use it, but in the meantime, it's not that difficult to write KB when you mean 1000 bytes and KiB when you mean 1024.
SI is the older, historical standard, dating back to the nineteenth century. And you are using the 'inanely stupid' SI names, but breaking the standard by redefining them for your own purposes. How difficult is it to write TiB instead of TB when you want to be unambiguous?
As soon as 'the kids' can transfer music phone 2 phone there goes the music biz.
That can be done now in countries where phones don't routinely have their Bluetooth crippled.
* Yes, I know that's not an accepted English word, but I'd like to introduce it.
Thanks, but we already have the word you're looking for, it's 'aurally'.
Do we have to have the same tired, lame jokes every time version 3 of something is discussed?
I'm buying made in the USA or Canada - first, less pollution in transportation, saves jobs, and (should) be higher quality and safer.
I assume you typed this on your American- or Canadian-made computer?
That would be very impressive. I would love to see how a human eye can see motion at 60Hz, especially since films are 24Hz and north american TV is at 30 Hz, and the human eye doesn't respond fast enough to see individual frames.
Presumably the same way people notice a CRT flickering at 60Hz. It's not that uncommon.
You probably should check it at least once a month (since spam messages are deleted after thirty days)—I've had several important messages show up there, and I always use the Not Spam/Report Spam buttons when needed.
Potentially losing genuine mail is far more of a problem than briefly seeing spam in the inbox.
Speculation on Three's blog comments was that Apple wouldn't allow Three to plaster their logo all over the phone and have built-in links to their online content the way Three do with all their other handsets.
Of course, after the comments turned against Three, commenting was disabled, but some of them are still in the Google cache.
No, Telstra does have two 3G networks. The first was developed together and shared with Three covering a rather small portion of the major cities, and the second is the NextG network, using a different frequency, covering much more of Australia, and not shared with Three.
While Telstra may have ulterior motives for the lower frequency, using 850MHz instead of 2100MHz means they can cover a larger area with less towers (albeit with less bandwidth too), making it feasible to provide 3G service to rural areas.
.....built and loaded with software from the manufacturer is my Mac laptop....A nice feature of Macs is that any programs you don't want are easy to delete. Just drag them to the trash. No need for uninstallers. No registry cleaners or other crap removal problems. Why can't Windows be like that?
Unfortunately even Apple's own applications aren't usually self-contained within their .app icon package like you suggest. If you drag a program like Garageband or iPhoto to the Trash, you're only removing part of the program. For example, the Garageband icon in /Applications is ~86 megabytes, but there are nearly 2 gigabytes of sound loops and such in /Library/Application Support that would be left behind, not to mention individual user preferences and caches in ~/Library.
In my opinion Windows is actually ahead of OS X here, by providing a central location (the Add/Remove Programs control panel) to completely remove (well-behaved) applications.