So now that it's patched Yahoo users should change their passwords again. Presumably if your account was on "the list" and you changed your password after the first disclosure, your credentials could have been compromised again - prior to the security hole being closed.
While this may sound obvious, I bet many folks don't realize the distinction between a disclosure announcement and correction of the problem. Many people probably assume that when a massive password disclosure is made, that the problem has already been fixed. In this case apparently not.
It's pretty safe and has been tested over a very long time period. They've even given certain THz frequencies their own names.
440THz is sometimes called "red"
560THz is sometimes called "green"
640THz is sometimes called "blue"
And they stopped there because 640 THz should be enough for everybody.
So if my router can't get to the Internet (my static IP changed or something), and I can't log in locally to the router, how do I configure it? Surely we are missing part of the story.
Thank you, now I know to never buy absolutely anything from this company and never recommend it to anyone, as a matter of fact warning people about buying anything from them would be the responsible thing to do.
Personally, I continue to shop with them. They have a good selection, reasonable prices, and they ship quickly. Returns have never been a problem for me. In the original posters case, if he had restored the machine to factory settings (returned the product in the state it was shipped), he would have had no problems. Most (all?) machines shipping with Windows ship with a recovery partition that you can boot into to restore the machine to the way you got it. If you want to blow away the recovery partition, there is a documented procedure to generate your own recovery disks, which can usually be done by clicking on "yes I want to create my recovery disks", when you first boot the machine.
Or you could just build a set of recovery disks like the manufacturer tells you to (you know, RTM...) If you have a problem, then you can use the recovery disks to restore to factory settings and then return the thing.
Is there any reason the SIM card would have to be physical?
Yes. The SIM is a physical container that protects the computer and data inside it. Note that the SIM is actually a complete computer, not just a hunk of flash memory. When you access the SIM, the security sensitive stuff never actually leaves the SIM card. You don't have any actual access to the security sensitive stuff - the little computer inside the SIM accesses it on your behalf. If it were a software solution (virtual), you would have direct access (via a debugger or similar) to the security sensitive stuff (private keys). Since it is a very physically small hardware solution, you would have to physically disassemble it and hook up microscopic probes to the computer inside, which is very difficult.
First, they will use Windows Active Directory for NTP because someone will say "it's authoritative for the whole network". And their clocks will be off.
Then they will run into config hell, and blaming that for clocks being off - they will load balance the domain controllers. Which is precisely what you're not supposed to do with NTP. And their clocks will be off.
Active Directory time synchronization works properly if you have a competent sysadmin and set it up correctly. If you don't have competent sysadmin it doesn't matter the technology or vendor you are using, you will get it wrong.
Active Directory domain controllers don't need external load balancing, they automatically distribute work out of the box. When configured correctly they also set up a proper NTP time hierarchy.
Seems a bit redundant really, I mean everything is moving over the next two decades to electric anyway.
Perhaps. It will depend on if we can figure out how to store electricity in the car less expensively then we can store the equivalent energy in a liquid fuel tank.
So, basically, what you're asking for is a lap cluster, right?
Depends on how you define cluster, but in some cases, yes.
You would not get the CPU or IO necessary in a laptop environment to do any practical testing of clusters in the performance sense. You might however, want to lab up clustered failover scenarios and make sure that your Kerberos, naming, and certificate designs work in the event of a node failure. It is really more about topology simulation.
This is especially important if you are building infrastructure tools in a corporate Microsoft environment. It takes a lot of memory to stand up Active Directory, Exchange, SQL Server, SharePoint, UAG, ADFS, ADLDS, RMS, FIM, Certificate Services, etc.
Must support lots of RAM. "lots" as in 16-32 GB. This is necessary to support the multiple virtual machines necessary to represent a complex distributed infrastructures (directory server, database server, email server, web server, application server, firewall, client workstations, etc..) While you can combine roles for some testing, other testing can only be properly be tested / developed with your distributed functions actually distributed.
Granted that a lot of application development stuff can be done in smaller memory footprints, but when you get into building infrastructure labs, you need lots of memory.
My work violates that second rule of yours. Sorry!
Fair enough. I probably should have titled it "alternate rule" instead of "second rule". While I commend you for your rigor in disassembly and reassembly, I suspect that most folks don't and end up falling into the "parts left over" camp. In this case, my rule gets to apply.
Given that every time you take something apart and put it back together you always have parts left over (and it usually still works), if you take something apart and put it back together enough times you will eventually have two of them.
I don't get why it matters who I am. As long as I am not carrying anything that is dangerous to the plane and its passengers, what difference does it make?
Myself, I usually remember how to get to a place after I've driven there 2-3 times. I can't imagine ever using a GPS to tell me how to get to some place I visit frequently. And I contend that this makes me a better driver than my lost friend, because if you don't know your own local streets and byways for getting to someplace you visit on a weekly basis after nearly a decade of driving there, you're a wandering, lost, road hazard.
I use my GPS to tell me how to get to places I have already been to all the time. Yes, I could drive there myself on the second or third time easily without using the GPS, but what I can't do is know about is significant traffic on the road during my current trip. When I am in a familiar area, the traffic information is more important to me then the navigational information. Sure I could listen to traffic reports on the radio and do my own routing, but then I would have to listen to commercials; that and I live in an area that has bad traffic but not bad enough where there are 5 minute traffic updates on the radio.
On the the main topic, I don't find the GPS distracting at all because the information it provides is a one way communication and is predictable and doesn't require much thought attention. Things like cell phones and texting are more distracting because they are two way communication and I have to think about (be distracted by) the communication from me to the device.
For sites I don't visit often, I just reset the password every time I go there. Sure it takes a couple of extra minutes, but these are sites that I visit a couple of times a year or less. For sites I visit a lot, remembering the password is not a big deal.
Think of it as poor man's federation with you email password.
I still hear the most inverters are good for only about 5 years before their electrolytics dry up and you have to replace them. Still a fragile part of the whole system. Plan B would be to put route 3-phase to new construction to allow inverters that did not have to store power at the zero crossings (i.e. Biphase has power ripple, 3-phase does not).
My guess is that due to this that most systems will not actually pay for themselves, as after a few years when the inverter craps out most folks will shrug their shoulders and let the system rot.
I just had solar installed on my roof. The inverters have a 25 year warranty (along with the panels). With the various incentives my break even point is 5-8 years depending on what electricity prices do. Since the warranty is much longer than the breakeven point, I am not worried.
For those reading the rest of the discussion, without the various government incentives, my breakeven point would be like 30-40 years, so no, solar is not ready to stand on its own yet. I am taking advantage of the incentives and hoping that by doing so I will help build a market so that in the future solar will be more competitive on its own.
Now it doesn't matter how much you're ordered to comply with the police. They come in, cut the power to your computer...
When law enforcement officers confiscate a computer, they usually (in the US at least) try to transport the computer without powering it down. Standard procedure is to plug a portable generator into the wall outlet powering the computer, unscrew the outlet, and take the whole apparatus (including wall outlet, generator, and computer) to the forensics lab, without interrupting power to the computer. If all the jacks in an outlet are in use, they will unscrew the wall outlet and splice the generator's power cables into the outlet.
This is why the parent poster mentioned keeping the screen locked.
Research into emergency evacuations by the Civil Aviation Authority in 2006 found that a significant number of passengers struggle with the most basic of tasks such as releasing the seat belt.
In terms of our genetic future, does this class of passenger need to be saved?
Slashdot Mirror
So now that it's patched Yahoo users should change their passwords again. Presumably if your account was on "the list" and you changed your password after the first disclosure, your credentials could have been compromised again - prior to the security hole being closed.
While this may sound obvious, I bet many folks don't realize the distinction between a disclosure announcement and correction of the problem. Many people probably assume that when a massive password disclosure is made, that the problem has already been fixed. In this case apparently not.
It's pretty safe and has been tested over a very long time period. They've even given certain THz frequencies their own names.
440THz is sometimes called "red"
560THz is sometimes called "green"
640THz is sometimes called "blue"
And they stopped there because 640 THz should be enough for everybody.
So if my router can't get to the Internet (my static IP changed or something), and I can't log in locally to the router, how do I configure it? Surely we are missing part of the story.
carrot for the top 1%, stick for the rest.
The 1% can have carrot top.
Thank you, now I know to never buy absolutely anything from this company and never recommend it to anyone, as a matter of fact warning people about buying anything from them would be the responsible thing to do.
Personally, I continue to shop with them. They have a good selection, reasonable prices, and they ship quickly. Returns have never been a problem for me. In the original posters case, if he had restored the machine to factory settings (returned the product in the state it was shipped), he would have had no problems. Most (all?) machines shipping with Windows ship with a recovery partition that you can boot into to restore the machine to the way you got it. If you want to blow away the recovery partition, there is a documented procedure to generate your own recovery disks, which can usually be done by clicking on "yes I want to create my recovery disks", when you first boot the machine.
Or you could just build a set of recovery disks like the manufacturer tells you to (you know, RTM...) If you have a problem, then you can use the recovery disks to restore to factory settings and then return the thing.
Is there any reason the SIM card would have to be physical?
Yes. The SIM is a physical container that protects the computer and data inside it. Note that the SIM is actually a complete computer, not just a hunk of flash memory. When you access the SIM, the security sensitive stuff never actually leaves the SIM card. You don't have any actual access to the security sensitive stuff - the little computer inside the SIM accesses it on your behalf. If it were a software solution (virtual), you would have direct access (via a debugger or similar) to the security sensitive stuff (private keys). Since it is a very physically small hardware solution, you would have to physically disassemble it and hook up microscopic probes to the computer inside, which is very difficult.
Good read. The bottom line apparently hasn't changed: If you allow physical access, security can be compromised.
Sorry about the extra "the". It is late.
...if TFA were in the same language as the TFS?
First, they will use Windows Active Directory for NTP because someone will say "it's authoritative for the whole network". And their clocks will be off.
Then they will run into config hell, and blaming that for clocks being off - they will load balance the domain controllers. Which is precisely what you're not supposed to do with NTP. And their clocks will be off.
Active Directory time synchronization works properly if you have a competent sysadmin and set it up correctly. If you don't have competent sysadmin it doesn't matter the technology or vendor you are using, you will get it wrong.
Active Directory domain controllers don't need external load balancing, they automatically distribute work out of the box. When configured correctly they also set up a proper NTP time hierarchy.
Seems a bit redundant really, I mean everything is moving over the next two decades to electric anyway.
Perhaps. It will depend on if we can figure out how to store electricity in the car less expensively then we can store the equivalent energy in a liquid fuel tank.
Maybe these systems should be on isolated networks.
So, basically, what you're asking for is a lap cluster, right?
Depends on how you define cluster, but in some cases, yes.
You would not get the CPU or IO necessary in a laptop environment to do any practical testing of clusters in the performance sense. You might however, want to lab up clustered failover scenarios and make sure that your Kerberos, naming, and certificate designs work in the event of a node failure. It is really more about topology simulation.
This is especially important if you are building infrastructure tools in a corporate Microsoft environment. It takes a lot of memory to stand up Active Directory, Exchange, SQL Server, SharePoint, UAG, ADFS, ADLDS, RMS, FIM, Certificate Services, etc.
Must support lots of RAM. "lots" as in 16-32 GB. This is necessary to support the multiple virtual machines necessary to represent a complex distributed infrastructures (directory server, database server, email server, web server, application server, firewall, client workstations, etc..) While you can combine roles for some testing, other testing can only be properly be tested / developed with your distributed functions actually distributed.
Granted that a lot of application development stuff can be done in smaller memory footprints, but when you get into building infrastructure labs, you need lots of memory.
My work violates that second rule of yours. Sorry!
Fair enough. I probably should have titled it "alternate rule" instead of "second rule". While I commend you for your rigor in disassembly and reassembly, I suspect that most folks don't and end up falling into the "parts left over" camp. In this case, my rule gets to apply.
Given that every time you take something apart and put it back together you always have parts left over (and it usually still works), if you take something apart and put it back together enough times you will eventually have two of them.
I don't get why it matters who I am. As long as I am not carrying anything that is dangerous to the plane and its passengers, what difference does it make?
Myself, I usually remember how to get to a place after I've driven there 2-3 times. I can't imagine ever using a GPS to tell me how to get to some place I visit frequently. And I contend that this makes me a better driver than my lost friend, because if you don't know your own local streets and byways for getting to someplace you visit on a weekly basis after nearly a decade of driving there, you're a wandering, lost, road hazard.
I use my GPS to tell me how to get to places I have already been to all the time. Yes, I could drive there myself on the second or third time easily without using the GPS, but what I can't do is know about is significant traffic on the road during my current trip. When I am in a familiar area, the traffic information is more important to me then the navigational information. Sure I could listen to traffic reports on the radio and do my own routing, but then I would have to listen to commercials; that and I live in an area that has bad traffic but not bad enough where there are 5 minute traffic updates on the radio.
On the the main topic, I don't find the GPS distracting at all because the information it provides is a one way communication and is predictable and doesn't require much thought attention. Things like cell phones and texting are more distracting because they are two way communication and I have to think about (be distracted by) the communication from me to the device.
Why not just use the reptilian version of python and skip the AI?
For sites I don't visit often, I just reset the password every time I go there. Sure it takes a couple of extra minutes, but these are sites that I visit a couple of times a year or less. For sites I visit a lot, remembering the password is not a big deal.
Think of it as poor man's federation with you email password.
I still hear the most inverters are good for only about 5 years before their electrolytics dry up and you have to replace them. Still a fragile part of the whole system. Plan B would be to put route 3-phase to new construction to allow inverters that did not have to store power at the zero crossings (i.e. Biphase has power ripple, 3-phase does not).
My guess is that due to this that most systems will not actually pay for themselves, as after a few years when the inverter craps out most folks will shrug their shoulders and let the system rot.
I just had solar installed on my roof. The inverters have a 25 year warranty (along with the panels). With the various incentives my break even point is 5-8 years depending on what electricity prices do. Since the warranty is much longer than the breakeven point, I am not worried.
For those reading the rest of the discussion, without the various government incentives, my breakeven point would be like 30-40 years, so no, solar is not ready to stand on its own yet. I am taking advantage of the incentives and hoping that by doing so I will help build a market so that in the future solar will be more competitive on its own.
Now it doesn't matter how much you're ordered to comply with the police. They come in, cut the power to your computer...
When law enforcement officers confiscate a computer, they usually (in the US at least) try to transport the computer without powering it down. Standard procedure is to plug a portable generator into the wall outlet powering the computer, unscrew the outlet, and take the whole apparatus (including wall outlet, generator, and computer) to the forensics lab, without interrupting power to the computer. If all the jacks in an outlet are in use, they will unscrew the wall outlet and splice the generator's power cables into the outlet.
This is why the parent poster mentioned keeping the screen locked.
What's the probability that someone breaks into your car and steals computer tapes?
Maybe not as high as an employee selling the tapes and claiming that they were stolen.
Research into emergency evacuations by the Civil Aviation Authority in 2006 found that a significant number of passengers struggle with the most basic of tasks such as releasing the seat belt.
In terms of our genetic future, does this class of passenger need to be saved?