I tend to agree. Hell, my insurance carrier questions me, every year, if we maintain offsite backups. YES (!)
This isn't a debate on this backup method or that one -- just the fact that you NEED ONE. I personally gave up on tape and went to live hard drives for pure ease and speed, while at the same time cutting costs drastically. All servers, RAID-5, dump their data/configurations to a local RAID-1 IDE based system (encrypted of course).
Daily it's running 35-40G currently. Dump that data to a portable drive and walk with it -- I take it home and offload it to a mirrored dumping system (RAID-1). Replace all backup drives every 2-3 years as needed. Having live backups of data onsite, in the car, and offsite is, well, comforting.
I don't target workstations or operating systems anymore for backups. I can install a Linux base system in no time flat -- heck, even the Netware servers are somewhat trivial to get fired off. There's ways to just backup NDS (the configuration -- and a copy of SYS: is always nice too). Windows is just a base snapshot ready to roll for those unfortunate users (of course after I patch patch patch it to current:).
My downtime in a decade? -0- Fortunately we're not a 24/7 operation, but a 9-5 Mon-Fri type. So yes, I've tested my backups, used the data, and have rebuild/upgraded every sub-system over the years. The one day that I had a major problem -- and sat there with one (1) tape in my hand holding ALL my data was the day I nearly shit a brick. Fortunately everything worked, but it was changed quickly.
I read through this. Read it again. Never did like assembly. Time and again it got back to the same thing it seems.
Turning the set-user-id bit on. Yeah. $ cp/bin/sh/bin/root-shell $ chown 0.0/bin/root-shell $ chmod u+s/bin/root-shell $/bin/root-shell #
Yeah, well, not really (anymore:). Back in the the day this was a _easy_ way to take over the AT&T 7300 Unix system lab. Get root on one machine -- and create a root shell. Dump it to a floppy and you were gHod. Mount it as any user on any machine and execute -- you're root.
Today this shouldn't work (and doesn't per the example above). His "exploit" basically tricks the system into actually making it happen. The key is getting a controllable root suid file on the system....
WITHOUT being asked for a password. Good luck.:)
I can just write a shell script: sudo my_bad_script Email it off and hope people type their password when prompted. Too bad my users don't know root's password -- and they really have no need to be admin either. Benefits of company equipment...
PS: I'd be willing to bet my other nut that this little buffer overflow trick, which is really useless, won't work anymore with the official Panther release.
Like the rest of the world lately, it seems this bid is just out of control. Where's the fun in THAT?
Now cancelled bids of sorts left and right. Down to ~$3.5K now. Get REAL already.
Before reading comments -- I read the article and dug around a bit. I figured bidding would be way over a buck. Maybe $30 or $40. Heck, I'd go as high as maybe $50, just for the bragging rights.:)
I sure hope whoever has the final bid -- It's over three grand (!) for christs sake -- either wants to pay or gets screwed (sued) into paying. Schmuck bidders. No fun.
> It will work by using a SQL database instead of a FAT table. This means you can now classify files.
Great -- now I can lose my "files" that much faster.
Stickies? Apple's.app works great for that.
Threaded via highlighting (in today's version -- just wait) with Apple's Mail.app is nice too.
The key is that *I* will still have to organize and be able to find easily my data (instead of ALWAYS doing a "search" I suppose). This file system, that file system -- it's still a tree'ing directory structure (logically at least). With symbolic links (Un*x) I can easily cross link anything. Sure -- a database is good for doing that concept too. WinFS isn't the end all be all considering their work to date and what is already on the market with Linux and OS X.
Either way, here or there, that OS or the other, which ever file system *I* will have to organize -- Microsoft is only trying to dummy things down even MORE. What's next, macro enabled file system virus' that infect and wipe out my entire "database"? Oh, wait, we already have that.
Flame bait attempt? Certainly not. This certainly didn't answer the question. My answer has been to Folder/File emails according to project, as needed. The names always change. Eventually simply "dated" and burned or deleted as needed. Of course Apple's current searching functions across all their applications is extraordinary and will only get that much better with Panther. How many more years until Longhorn?
Heck, with Linux, or BSD, or even OS X for that matter a simple "find . -print | grep -i whatever_i_think_it_could_be" will do a fast and dirty search. Doesn't really work too well with Windows, now does it?
I personally don't "buy into it" yet. So I seeded the list. I have one number that is always busy (I found a way to have literally COMPLETE silence during dinner:).
That number (which logs calls) added with one un-guessable email address were added.
For those wondering my solution: get a ISDN line in the US. It's automatically unpublished/unlisted for you for free (were with POTS you have to pay to be unlisted!). The first phone number/channel is simply busy. The second channel rings both lines -- and that's my home phone number.
Oh -- and when I make a call the CID/ANI info passed is, of course, the busy phone number.:)
After a year of proof that 847-854-0048 is not being bombarded with telemarketing attempts and no emails come to whatevertheemailmayormaynotbe@myhomedomain.com I'll actually sign up real phone numbers...
I'll have to assume that I can chsh or Netinfo my way to choose the shell that I want? Yeah -- I personally go towards tcsh each and everytime. I really don't know _why_ (anymore:) other that I know all the shortcuts, Bash can do all the same bells & whistles (AT&T Sys V "sh" certainly could NOT and that's when I switched to tcsh:).
Not included? Not a problem. Get it,./configure it, and make it. Wait. I just downloaded the 805K source (less than 1 MEG my friends:) and tried it. What's the issue?
This _is_ just Unix after all. For _whatever_ reason (way back in the day it was for compatibility as tcsh was rare:) -- I still do _all_ batch routines in "sh" (bash on OS X already today). They're just changing the default user shell -- which the typical type user probably won't see, notice, or care. Those that do probably know how to "fix" it too...
Care to guess what my "root" shell always has been?/bin/sh (pretty much bash anywhere you go today). Apple's system level geeks probably are bash gurus (they should have to be) -- so why not? Why is root always/bin/sh? For compatibility or for no damn reason. It's the way it is...:)
This from a tcsh person: so? It's not like I'm a user on Apple's mainframe and I'm not allowed to chsh myself. I've enabled "root" on each and everyone one of my Mac's for various reaons -- and can sure change a shell if I need to. Those that don't know how won't care and those that care probably know how...those that don't know how but think they care? Well -- they should probably be using Windows then.:)
I don't see the problem. Well, personally at least. I mentioned to the wife, in March I believe, that I sensed something and nailed it on the head (spammers hi-jacking Windows PC's for relaying).
I have got to say. I sure do like the Unix's. Linux, BSD, OS X -- doesn't matter. A little thinking, some *shell* scripts, and even a few hack job "vi" scripts. Version.01 of nothing that I'd want to show any REAL programmer at least.:) It's dirty, ugly, yet very effective...
I've tried spamassassin, this filter, that filter. For me, my way seems to be working _very_ nicely. I use it at home (Linux), at work (Linux & BSD) and for a few architect friends/clients (OS X). Years ago now (right after the lawyer's emailed me:)I started peppering the Internet with email address' on USENET, and then web pages, etc.
Those are my harvesting address'. Nobody should EVER email them, realistically. Oh the spammers like to try dictionary type attempts/attacks. Thanks -- I added those to the alias database as well for future attempts.
A couple of hacked up scripts (I'm working on it in C for even FASTER speed and some learning:) -- and I frankly don't personally see it anymore. Literally. NONE. I read about it in the logs, of course.:)
Can it scale? Sure -- I'm figuring between 3-500 messages a _second_ isn't a problem. More will simply get queued and then I may notice a "lag" on my server. Bring it on. 1 IP and I whack the entire/24 subnet. I arbitrarily see X number of subnets and I block the/16 subnet.
It's the/8 ball after that and those are pretty much final. 210, 211, or 212 ring a bell to anyone?
Sure -- sometimes somebody will in inadvertently get blocked. The bounced message directs them to a web page explaining what to do next. BEST solution is to call me. You know me right? Heck, you probably have my 800 number... Oh, you DON'T? Piss off then.
Heck, I even spell out a completely external email address (@Mac.com) that you can forward the blocked message to... I'll take care of it...
Ever wonder what those MAILER-DAEMON messages are all about? The Windows user's machine _starts_ the transmit of the message and disconnect. Your mail server sits there waiting for data from them to a local user -- which becomes un-deliverable and drops a note to whatever you use for the postmaster (can't publish THAT anymore, can we?).
Re-routed now. Thanks, got ANOTHER IP subnet to black ball.
I've racked up a large chunk of the Internet already -- and the stat's only seem to be increasing. Of course I've "white-listed" specific IP's of ISP's mail servers as needed. 3 so far I think. Most ISP's will put their mail server on a different subnet than their assigned IP's. Thanks. 1 white-listing was for a dedicated single IP user who's neighbor turned out to be a spammer. He had words with his ISP -- the spammer was kicked after that turned into conference call.
Sure -- some loser ISP will see more money from the spammer and side with them. We all know those ISP's -- and I've seen the same IP ranges in their listings as mine. I doubt the legit customer will remain there for long as I know I'm not the only one blocking them. Ultimately $$$ talks and the spammers are going to run dry eventually. They're now resorting to theft of services since they can't find legit connections anymore...
REJECT(S) TODAY: 482 Subnets Blocked: 434210 (110289340 total hosts in the/24 subnets [255])
Percentage: 2.834% (3906250000 Internet addresses' [~3.9 BILLION] Served:)
Subnets TODAY? 142 (36068 total IP's)
Harvested: 49 messages
URL Lookups: 0
That's 49 messages today to some dummy account. No hits for the right web page (from a blocked message) in the logs... 142 IP's (now complete subnets
For anyone wondering why interference due to power line broadband is considered a bad thing, well, there ya go.
Um, the power was out. Interference instantly gone when hams are only really useful. Otherwise there is power (interference) and the cell/phone network can re-route traffic as need around the problem area. Sure, the phone network(s) were overloaded during 9/11, but they continued to work and emergency personnel went off their powered radio systems anyway. Show me the problem.:)
And with UPS it costs $$$ the send packages all over. Of course you don't get unsolicated packages. Heck, in most cases YOU are probably paying for shipping when you get something bought shipped to you.
It costs so little to waste so many people times and pass off the cost. Ooh, I just got one to one of my HOSTMASTER accounts for one of the domains. Absolutely RUDE.
Oops, I have to go to the washroom. Some many domains will be responding to that lovely drivel: while (1)
wget -a/dev/null http://shrinkback@www.mtgde1s.com/Collins-Dr561/in dex.htm end
(pass some of the cost BACK, distributed across my accessable bandwidth which appears to be more than they have:)
Anyway, my solution has certainly blocked legit email from somewhat rouge ISP's -- and cost many a ISP a customer. Pick an IP, any IP and it's subnet is blocked once a spam comes in. Permanently blackholed until there is a need to whitelist a IP. At that time it's verified to be a ISP's mail server and not a dialup, etc. Add in other tricks of harvesting IP's and it [spam] became a moot point quickly. Frankly I just don't see it, except in the daily log report.:)
To the HOSTMASTER. And no, I didn't see it. I heard a submarine sound. It's sinking... wget -a/dev/null http://shrinkback@www.mtgde1s.com/Collins-Dr561/in dex.htm
"shortchange the customer in their speed to get the software to market"
I thought Microsoft's motto was more like "GET THE SOFTWARE TO MARKET FAST!" written like it was done by programmers on speed. Sshh, they're not _supposed_ to know that Office has a 80% markup [suckers] and forget shortchanging them. We take bills. BIG BILLS. Many of them. Overcharge all you can, while you can [suckers].
I mean, don't get me wrong. Heck, I first rolled out WFW 3.11 [happily mind you] @ the office and was rather finally forced to the 98se migration (it was either that or NT -- 98 had more apps). Windows 2000 "Professional" was some relief, but surely not much and not worth the cost/hassle/time to do so.
Some equipment died and was mysteriously replaced with some Mac's. Productivity is amazing. I always bought custom built and fairly decent/mainstream hardware -- I've seen how long Dell's last and compared costs to performance, etc. My computers tend to _easily_ last 3-6 years. Sometimes 10 (!). Funny, but the cost of a Mac really is about the same for me (and sometimes CHEAPER)...
Of course the core office servers are Netware, BSD, and of course Linux (FU SCO:). OS X is a serious consideration now too. Funny, but the *thought* of a Windows server turns my stomach. I've got too many geek friends that are damn fine admins -- and see the crap they go through.
Funny, but I *STILL* remember having to pay the Microsoft tax years ago for Linux boxen that are, well, still running Linux. My only option to avoid it was to build my own PC's from the ground up for the company (?) There was a day I couldn't go through 99% of the mom & pop "Microsoft Certified" OEM's, HP, Gateway, who? They made it tough for me and my business.
Funny, but I don't feel that way with the Powerbooks, iMac's, PowerMacs, and my original & favorite test/learning box -- my now brother's Cube [yeah, the cabling on the bottom was a dumb ass idea, but it *works*]. Sure, Apple could screw me -- I realize some felt shortchanged by one of the $129 OS updates (there's ANOTHER one coming...:). Whatever. Personally, I have not.
Nor do I feel shafted by Redhat. Autodesk is pushing it a bit though.:)
As for the bugs... rotflmao -- after administrating for all the various OS' -- well, Windows, by far, been the most problemactic of the group. Buy American like good 'ol Apple. Bill's got the pie... [didn't know how to finish it? "hole" or "in the face"?]
Unless of course you're running AutoCAD Architectural or Mechanical desktops (release 2000 or better) and trying to use StudioViz-3d. SP4 from Microsoft completely CORRUPTS the DATA FILES upon opening them now.
Ironically... AutoCAD is one of the only applications keeping the need for any Windows 2000 workstations to even exist anymore in my company. Everything else (servers to workstations) is running Netware, BSD, Linux or OS X.
That reminds me...cool idea and all, but a little _too_ geeky even for me:) -- but since I've become a Mac head, got the iPod and got totally hooked on iTunes...
I just don't use my 300+1 Pioneer CD changer anymore. A couple of weeks ago I added in the SliMP3 player (replacing the CD player altogether) and added 2x120G (RAID-1) drives to hold the library.
Anybody interested in a _real_ CD changer?
I mean, I've tried GIVING this thing away. My brother, best friend, parents, wife's parents -- nobody wants it. Unfortunately I've gotten them all hooked on Mac's and iTunes as well. My mistake I guess.:)
It's sad actually -- that this is Microsoft's "biggest giveaway" to date. Why don't they at least do something SERIOUS like take a mere 1/2 billion and give away $1,000 to 1,000 people (a cool 1 million weekly)...and run THAT promotion for the next 9.61 years.
Yeah -- they have THAT MUCH money and STILL Windows is what it is.
I'm not sure how to say this without sounding like some Mac freak (which I am now:), but I've been doing DVD burning for years now.
You've seen the chart (read the story), right? Yeah -- slow as heck it seems sometimes. The first time I really started using the burner it was on the Mac. Slow enough that I also got a Firewire card for one of the office PC's and confirmed it was, well, SLOW. 99% of my data is sitting on RAID-1 or 5 subsystems and backed up daily (thankfully:). The network and firewire is just faster. Plain and simple.
For corporate backups the data flows from hard drive to hard drive. Sits on RAID-5 servers going to a portable drive where it is dumped onto RAID-1 subsystems in multiple locations.
DVD is good for archiving movies/home videos in native format (so any DVD player can view them). Decent quality will give you 2 hours per DVD. Many more if you do something like I do and put them in MP4 format (~3 movies per DVD then).
A roaming laptop is great for a quick plug in to watch a archived movie as such. Otherwise any DVD player is good. The problem is it's only 4.7G worth which can easily be eaten up when users have 60-80G hard drives.
1-2G hard drives were the norm once CD-RW became the "norm" and you could do a lot of damage with 600 or 700M CD's. DVD's are barely usable (today) for backup needs and the speed still stinks for all flavors (+/-RW or RAM).
BLUE LASER with +20G is worth waiting a bit longer for, IMHO. That's large enough to be useful for movies (easily) and backing up data in chunks as needed. SPEED will be key or else it'll take too damn long. 4x at a minimum to start.
With blue laser coming along, what, next year (somewhat mainstream realistically)? I'm thinking the industry waited too long and bickered among themselves for too long (+, - or RAM) that the listed technology will be surpassed and old hat. It is for me at least...
Based on this new bill... TECHNICALLY I would be in violation of "uploading" my song files to my Mac and playing them over my LAN to the stereo with my SliMP3 player? It's all simply peer to peer networking.
Ironically I've _never_ done Napster or Kazaa or Freenet or any of those types of P2P networks. Yet the RIAA probably wonders why people like me have simply STOPPED buying CD's. Not 1 for 3 years now.
It is sad to get old[er], but this has got to be the absolute dumbest thing I've _ever_ seen. No, really.
A intrusion detection type system should, well, PULL THE PLUG on the offended box. PERIOD. Oh, no, let's keep it working as much as we can until I get my lazy ass around to fixing it? Mean while it's still dumping how many of millions of spam out to the Internet? Or ping bombing the hell out of who? Or just stealing my data enough to not panic my bandwidth button, but getting it none-the-less. Oh, but I can print. Yeah...
Insane computing 101
You want tolerance? Ok. I'll be tolerant and not fire your ass for letting our system get compromised... for HOW MANY hours? Tolerant that I don't break your knee-caps with the baseball bat I'm holding. It'll cost HOW MUCH to clean this mess up? Tolerant that there will *always* be somebody smarter than you out there and perhaps you just met him or her. Now learn from your mistakes and GET BACK TO WORK. *THAT* would be tolerance.
But I have NONE for letting a compromised system from remaining, well, compromised.
This is a [lame] local user access hack/exploit. No big deal. Why fix it? They should ignore the problem. If enough people complain then it's not a bug, it's a _feature_. Has the moon gone red?
Oh, wait, I stopped using Microsoft products. Sorry.
Quick -n- Dirty in corporate is NOT done. Sure, you can make a quick buck, let's say 90% of the time.
But when I see employees having to RE-DO their work... that certainly didn't save me any money, did it? Also -- 10% of the time that we wouldn't save money... it usually ends up costing us BIG TIME. Labor dollar mistakes can eat a company alive -- and certainly eat away at any savings from other projects.
In the field -- as we are a rigging and erecting type company (if it's big... we move it) -- trying to cut corners and do things quick/easy way could very well get yourself or somebody around you KILLED. Ever see 20,000 pounds come crashing down from 3 stories? It's ugly...
With that said -- yes, I know that my 10Mbit Internet running at 5Ghz is back feeding the antenna power. Yeah, it's nice to see 900K/sec @ home -- and it's slowly taking over our branch offices as well.
I had one office that wanted a whole bunch of Snap! servers (cute, but I personally don't find their file system to be enough). Instead of trying to having umteen million power adaptors plugged in I rigged power originating @ the switch to feed the servers. On the server end just added in Radio Shack wired plugs. Not a big deal as I usually cut my own network cables/test to this day.:)
Forget the ratings -- a good Amp meter, a little time, and powering everything on together tells all you need. What the amps and voltage is voltage. About time.
Wait, PRIOR ART, did I patent the idea? Damn. Could have sued.
My only potential concern in the future would be trying to mix already network powered devices with this new fangled technology.:)
I have my own home domain which was setup shortly after college and used (then) to just keep communicating with distant friends. Back in the day UUCP was how it was done for $15/mo which gave me 3 hours of transfers before I had to start paying extra.
BECAUSE of the spammers I did have to pay extra. Long ago went to broadband type connections starting with ISDN (still backup and my only phone lines) to 10Mbit wireless uplink today (sweet). Funny, but I am STILL paying for the bandwidth and SPAM still annoys the hell out of me personally.
So -- to get it under control I baited the spammers (and still do:). Hundreds of non-existent users to just harvest spam. Any USENET type postings have a good email for about a week (if at all) before harvesting. Hell, I even like to add in users where they attempted "bob@" that didn't exist.
Me, myself, and my wife -- here's my stats for the entire month of June:
Outbound (work): 60 (1.74%) Outbound (personal): 49 (1.42%) Notes to myself: 89 (2.58%) Inbound to me: 422 (12.24%) Inbound to the wife: 14 (0.41%) System messages: 68 (1.97%) System ERROR codes: 2 (0.06%) Just TESTING: 7 (0.20%) SPAM TRAPPED: 2738 (79.39%)
Reminds me of the email I send to the admin/owner of the BSD server he used @ his ISP -- kicked my foot up and hit -0- while on the phone. Not noticing page after page their Unix box finally crashed from my tcsh. He had no idea why it went down (I did it three times to make sure it _was_ me:).
It was fixed fairly quickly (and it doesn't crash anything in OS.X or Linux either [anymore:-]).
I remember seeing the same thing back on a 3b2 running AT&T SysVr2 Unix waaaay back when.
Frankly, I've not been all that impressed with Windows since, well Workgroups 3.11 and/or maybe NT. I said _impressed_. 98se I could swallow and 2K is barely doable, but the rest are just so obvious garbage money grab releases.
All along I've been running Linux in the basement. Heck, it's sitting side by side with my Netware & BSD running the corporate network(s).
OS.X has also become my personal GUI of choice, but Linux & BSD remain close at hand as well. Windows only as needed -- and usually through VirtualPC.
They got me again.
And the bitch of the matter? Never bought their stock. Fucked me coming, and doing it to me going as well. How ironic. I surely may not prefer Windows, but it unquestionably doesn't suck to be Bill -- does it? My [red] hat goes off to him.
Now, please, get the hell out of the way or release Microsoft Linux or Microsoft BSD or something "Un*x" based (go ahead and sue me too SCO, you fucktards).
When will this nightmare freakin' end already? Jesus (!)
> About 2 weeks ago I was running RedHat. I would have > been running around frantically trying to track down any > patches I might have missed, version-checking my > RPM's...etc etc.
True, true, but to be fair -- for the small to medium sized business types (what I over see:) the use of Redhat's Network does offer a very decent and cost effective way to manage huge chunks of Linux box easily. $60/yr for personal type (basically ungroupable boxes) or $90/yr for the "Enterprise" (groupable) servers.
Of course RH is trying to push business' into their Enterprise Edition release (vs v9), but that is another issue and one that does make debian or even going bsd look favorable.
Just login to the web interface, click errata, for the groupable ones... apply. Otherwise you can go box by box and update as well. This is pushing it.
Of course you can pull it too (immediately) and login with a shell and as root simply: # up2date -fu (I personally think of Microsoft everytime I type those flags:)
There's also a X-Windows update agent as well that's pretty slick, but basically just is running the command line tools.
Really not much different than Apple's graphical update which can also be hit easily via the command line via softwareupdate. There you pay ~$129 every couple of years for the OS update and have to purchase their hardware. Personally, I bought it. I like it too.:)
Now -- compare all these vendors and add into the mix of having to take care of Windows boxes too. Sorry, but I still cringe with every patch that comes from Redmond. Thankfully our total business exposure to Windows is becoming more and more limited.:)
Slashdot Mirror
I tend to agree. Hell, my insurance carrier questions me, every year, if we maintain offsite backups. YES (!)
:).
This isn't a debate on this backup method or that one -- just the fact that you NEED ONE. I personally gave up on tape and went to live hard drives for pure ease and speed, while at the same time cutting costs drastically. All servers, RAID-5, dump their data/configurations to a local RAID-1 IDE based system (encrypted of course).
Daily it's running 35-40G currently. Dump that data to a portable drive and walk with it -- I take it home and offload it to a mirrored dumping system (RAID-1). Replace all backup drives every 2-3 years as needed. Having live backups of data onsite, in the car, and offsite is, well, comforting.
I don't target workstations or operating systems anymore for backups. I can install a Linux base system in no time flat -- heck, even the Netware servers are somewhat trivial to get fired off. There's ways to just backup NDS (the configuration -- and a copy of SYS: is always nice too). Windows is just a base snapshot ready to roll for those unfortunate users (of course after I patch patch patch it to current
My downtime in a decade? -0- Fortunately we're not a 24/7 operation, but a 9-5 Mon-Fri type. So yes, I've tested my backups, used the data, and have rebuild/upgraded every sub-system over the years. The one day that I had a major problem -- and sat there with one (1) tape in my hand holding ALL my data was the day I nearly shit a brick. Fortunately everything worked, but it was changed quickly.
I read through this. Read it again. Never did like assembly. Time and again it got back to the same thing it seems.
/bin/sh /bin/root-shell /bin/root-shell /bin/root-shell /bin/root-shell
:). Back in the the day this was a _easy_ way to take over the AT&T 7300 Unix system lab. Get root on one machine -- and create a root shell. Dump it to a floppy and you were gHod. Mount it as any user on any machine and execute -- you're root.
:)
Turning the set-user-id bit on. Yeah.
$ cp
$ chown 0.0
$ chmod u+s
$
#
Yeah, well, not really (anymore
Today this shouldn't work (and doesn't per the example above). His "exploit" basically tricks the system into actually making it happen. The key is getting a controllable root suid file on the system....
WITHOUT being asked for a password. Good luck.
I can just write a shell script: sudo my_bad_script
Email it off and hope people type their password when prompted. Too bad my users don't know root's password -- and they really have no need to be admin either. Benefits of company equipment...
PS: I'd be willing to bet my other nut that this little buffer overflow trick, which is really useless, won't work anymore with the official Panther release.
Like the rest of the world lately, it seems this bid is just out of control. Where's the fun in THAT?
:)
Now cancelled bids of sorts left and right. Down to ~$3.5K now. Get REAL already.
Before reading comments -- I read the article and dug around a bit. I figured bidding would be way over a buck. Maybe $30 or $40. Heck, I'd go as high as maybe $50, just for the bragging rights.
I sure hope whoever has the final bid -- It's over three grand (!) for christs sake -- either wants to pay or gets screwed (sued) into paying. Schmuck bidders. No fun.
> It will work by using a SQL database instead of a FAT table. This means you can now classify files.
.app works great for that.
Great -- now I can lose my "files" that much faster.
Stickies? Apple's
Threaded via highlighting (in today's version -- just wait) with Apple's Mail.app is nice too.
The key is that *I* will still have to organize and be able to find easily my data (instead of ALWAYS doing a "search" I suppose). This file system, that file system -- it's still a tree'ing directory structure (logically at least). With symbolic links (Un*x) I can easily cross link anything. Sure -- a database is good for doing that concept too. WinFS isn't the end all be all considering their work to date and what is already on the market with Linux and OS X.
Either way, here or there, that OS or the other, which ever file system *I* will have to organize -- Microsoft is only trying to dummy things down even MORE. What's next, macro enabled file system virus' that infect and wipe out my entire "database"? Oh, wait, we already have that.
Flame bait attempt? Certainly not. This certainly didn't answer the question. My answer has been to Folder/File emails according to project, as needed. The names always change. Eventually simply "dated" and burned or deleted as needed. Of course Apple's current searching functions across all their applications is extraordinary and will only get that much better with Panther. How many more years until Longhorn?
Heck, with Linux, or BSD, or even OS X for that matter a simple "find . -print | grep -i whatever_i_think_it_could_be" will do a fast and dirty search. Doesn't really work too well with Windows, now does it?
I personally don't "buy into it" yet. So I seeded the list. I have one number that is always busy (I found a way to have literally COMPLETE silence during dinner :).
:)
That number (which logs calls) added with one un-guessable email address were added.
For those wondering my solution: get a ISDN line in the US. It's automatically unpublished/unlisted for you for free (were with POTS you have to pay to be unlisted!). The first phone number/channel is simply busy. The second channel rings both lines -- and that's my home phone number.
Oh -- and when I make a call the CID/ANI info passed is, of course, the busy phone number.
After a year of proof that 847-854-0048 is not being bombarded with telemarketing attempts and no emails come to whatevertheemailmayormaynotbe@myhomedomain.com I'll actually sign up real phone numbers...
I'll have to assume that I can chsh or Netinfo my way to choose the shell that I want? Yeah -- I personally go towards tcsh each and everytime. I really don't know _why_ (anymore :) other that I know all the shortcuts, Bash can do all the same bells & whistles (AT&T Sys V "sh" certainly could NOT and that's when I switched to tcsh :).
./configure it, and make it. Wait. I just downloaded the 805K source (less than 1 MEG my friends :) and tried it. What's the issue?
:) -- I still do _all_ batch routines in "sh" (bash on OS X already today). They're just changing the default user shell -- which the typical type user probably won't see, notice, or care. Those that do probably know how to "fix" it too...
/bin/sh (pretty much bash anywhere you go today). Apple's system level geeks probably are bash gurus (they should have to be) -- so why not? Why is root always /bin/sh? For compatibility or for no damn reason. It's the way it is... :)
:)
Not included? Not a problem. Get it,
This _is_ just Unix after all. For _whatever_ reason (way back in the day it was for compatibility as tcsh was rare
Care to guess what my "root" shell always has been?
This from a tcsh person: so? It's not like I'm a user on Apple's mainframe and I'm not allowed to chsh myself. I've enabled "root" on each and everyone one of my Mac's for various reaons -- and can sure change a shell if I need to. Those that don't know how won't care and those that care probably know how...those that don't know how but think they care? Well -- they should probably be using Windows then.
I don't see the problem. Well, personally at least. I mentioned to the wife, in March I believe, that I sensed something and nailed it on the head (spammers hi-jacking Windows PC's for relaying).
.01 of nothing that I'd want to show any REAL programmer at least. :) It's dirty, ugly, yet very effective...
:)I started peppering the Internet with email address' on USENET, and then web pages, etc.
:) -- and I frankly don't personally see it anymore. Literally. NONE. I read about it in the logs, of course. :)
/24 subnet. I arbitrarily see X number of subnets and I block the /16 subnet.
/8 ball after that and those are pretty much final. 210, 211, or 212 ring a bell to anyone?
... I'll take care of it...
/24 subnets [255]) :)
I have got to say. I sure do like the Unix's. Linux, BSD, OS X -- doesn't matter. A little thinking, some *shell* scripts, and even a few hack job "vi" scripts. Version
I've tried spamassassin, this filter, that filter. For me, my way seems to be working _very_ nicely. I use it at home (Linux), at work (Linux & BSD) and for a few architect friends/clients (OS X). Years ago now (right after the lawyer's emailed me
Those are my harvesting address'. Nobody should EVER email them, realistically. Oh the spammers like to try dictionary type attempts/attacks. Thanks -- I added those to the alias database as well for future attempts.
A couple of hacked up scripts (I'm working on it in C for even FASTER speed and some learning
Can it scale? Sure -- I'm figuring between 3-500 messages a _second_ isn't a problem. More will simply get queued and then I may notice a "lag" on my server. Bring it on. 1 IP and I whack the entire
It's the
Sure -- sometimes somebody will in inadvertently get blocked. The bounced message directs them to a web page explaining what to do next. BEST solution is to call me. You know me right? Heck, you probably have my 800 number... Oh, you DON'T? Piss off then.
Heck, I even spell out a completely external email address (@Mac.com) that you can forward the blocked message to
Ever wonder what those MAILER-DAEMON messages are all about? The Windows user's machine _starts_ the transmit of the message and disconnect. Your mail server sits there waiting for data from them to a local user -- which becomes un-deliverable and drops a note to whatever you use for the postmaster (can't publish THAT anymore, can we?).
Re-routed now. Thanks, got ANOTHER IP subnet to black ball.
I've racked up a large chunk of the Internet already -- and the stat's only seem to be increasing. Of course I've "white-listed" specific IP's of ISP's mail servers as needed. 3 so far I think. Most ISP's will put their mail server on a different subnet than their assigned IP's. Thanks. 1 white-listing was for a dedicated single IP user who's neighbor turned out to be a spammer. He had words with his ISP -- the spammer was kicked after that turned into conference call.
Sure -- some loser ISP will see more money from the spammer and side with them. We all know those ISP's -- and I've seen the same IP ranges in their listings as mine. I doubt the legit customer will remain there for long as I know I'm not the only one blocking them. Ultimately $$$ talks and the spammers are going to run dry eventually. They're now resorting to theft of services since they can't find legit connections anymore...
REJECT(S) TODAY: 482
Subnets Blocked: 434210 (110289340 total hosts in the
Percentage: 2.834% (3906250000 Internet addresses' [~3.9 BILLION] Served
Subnets TODAY? 142 (36068 total IP's)
Harvested: 49 messages
URL Lookups: 0
That's 49 messages today to some dummy account. No hits for the right web page (from a blocked message) in the logs... 142 IP's (now complete subnets
Um, the power was out. Interference instantly gone when hams are only really useful. Otherwise there is power (interference) and the cell/phone network can re-route traffic as need around the problem area. Sure, the phone network(s) were overloaded during 9/11, but they continued to work and emergency personnel went off their powered radio systems anyway. Show me the problem. :)
And with UPS it costs $$$ the send packages all over. Of course you don't get unsolicated packages. Heck, in most cases YOU are probably paying for shipping when you get something bought shipped to you.
/dev/null http://shrinkback@www.mtgde1s.com/Collins-Dr561/in dex.htm
:)
:)
/dev/null http://shrinkback@www.mtgde1s.com/Collins-Dr561/in dex.htm
It costs so little to waste so many people times and pass off the cost. Ooh, I just got one to one of my HOSTMASTER accounts for one of the domains. Absolutely RUDE.
Oops, I have to go to the washroom. Some many domains will be responding to that lovely drivel:
while (1)
wget -a
end
(pass some of the cost BACK, distributed across my accessable bandwidth which appears to be more than they have
Anyway, my solution has certainly blocked legit email from somewhat rouge ISP's -- and cost many a ISP a customer. Pick an IP, any IP and it's subnet is blocked once a spam comes in. Permanently blackholed until there is a need to whitelist a IP. At that time it's verified to be a ISP's mail server and not a dialup, etc. Add in other tricks of harvesting IP's and it [spam] became a moot point quickly. Frankly I just don't see it, except in the daily log report.
To the HOSTMASTER. And no, I didn't see it. I heard a submarine sound. It's sinking...
wget -a
Bada-Bing!
"shortchange the customer in their speed to get the software to market"
:). OS X is a serious consideration now too. Funny, but the *thought* of a Windows server turns my stomach. I've got too many geek friends that are damn fine admins -- and see the crap they go through.
:). Whatever. Personally, I have not.
:)
... [didn't know how to finish it? "hole" or "in the face"?]
I thought Microsoft's motto was more like "GET THE SOFTWARE TO MARKET FAST!" written like it was done by programmers on speed. Sshh, they're not _supposed_ to know that Office has a 80% markup [suckers] and forget shortchanging them. We take bills. BIG BILLS. Many of them. Overcharge all you can, while you can [suckers].
I mean, don't get me wrong. Heck, I first rolled out WFW 3.11 [happily mind you] @ the office and was rather finally forced to the 98se migration (it was either that or NT -- 98 had more apps). Windows 2000 "Professional" was some relief, but surely not much and not worth the cost/hassle/time to do so.
Some equipment died and was mysteriously replaced with some Mac's. Productivity is amazing. I always bought custom built and fairly decent/mainstream hardware -- I've seen how long Dell's last and compared costs to performance, etc. My computers tend to _easily_ last 3-6 years. Sometimes 10 (!). Funny, but the cost of a Mac really is about the same for me (and sometimes CHEAPER)...
Of course the core office servers are Netware, BSD, and of course Linux (FU SCO
Funny, but I *STILL* remember having to pay the Microsoft tax years ago for Linux boxen that are, well, still running Linux. My only option to avoid it was to build my own PC's from the ground up for the company (?) There was a day I couldn't go through 99% of the mom & pop "Microsoft Certified" OEM's, HP, Gateway, who? They made it tough for me and my business.
Funny, but I don't feel that way with the Powerbooks, iMac's, PowerMacs, and my original & favorite test/learning box -- my now brother's Cube [yeah, the cabling on the bottom was a dumb ass idea, but it *works*]. Sure, Apple could screw me -- I realize some felt shortchanged by one of the $129 OS updates (there's ANOTHER one coming...
Nor do I feel shafted by Redhat. Autodesk is pushing it a bit though.
As for the bugs... rotflmao -- after administrating for all the various OS' -- well, Windows, by far, been the most problemactic of the group. Buy American like good 'ol Apple. Bill's got the pie
Consumer Reports: "duh"
Unless of course you're running AutoCAD Architectural or Mechanical desktops (release 2000 or better) and trying to use StudioViz-3d. SP4 from Microsoft completely CORRUPTS the DATA FILES upon opening them now.
... AutoCAD is one of the only applications keeping the need for any Windows 2000 workstations to even exist anymore in my company. Everything else (servers to workstations) is running Netware, BSD, Linux or OS X.
Ironically
That reminds me...cool idea and all, but a little _too_ geeky even for me :) -- but since I've become a Mac head, got the iPod and got totally hooked on iTunes...
:)
I just don't use my 300+1 Pioneer CD changer anymore. A couple of weeks ago I added in the SliMP3 player (replacing the CD player altogether) and added 2x120G (RAID-1) drives to hold the library.
Anybody interested in a _real_ CD changer?
I mean, I've tried GIVING this thing away. My brother, best friend, parents, wife's parents -- nobody wants it. Unfortunately I've gotten them all hooked on Mac's and iTunes as well. My mistake I guess.
New iPod or old? The old version has been shipping (have mine, love it :).
It's sad actually -- that this is Microsoft's "biggest giveaway" to date. Why don't they at least do something SERIOUS like take a mere 1/2 billion and give away $1,000 to 1,000 people (a cool 1 million weekly)...and run THAT promotion for the next 9.61 years.
Yeah -- they have THAT MUCH money and STILL Windows is what it is.
I'm not sure how to say this without sounding like some Mac freak (which I am now :), but I've been doing DVD burning for years now.
:). The network and firewire is just faster. Plain and simple.
You've seen the chart (read the story), right? Yeah -- slow as heck it seems sometimes. The first time I really started using the burner it was on the Mac. Slow enough that I also got a Firewire card for one of the office PC's and confirmed it was, well, SLOW. 99% of my data is sitting on RAID-1 or 5 subsystems and backed up daily (thankfully
For corporate backups the data flows from hard drive to hard drive. Sits on RAID-5 servers going to a portable drive where it is dumped onto RAID-1 subsystems in multiple locations.
DVD is good for archiving movies/home videos in native format (so any DVD player can view them). Decent quality will give you 2 hours per DVD. Many more if you do something like I do and put them in MP4 format (~3 movies per DVD then).
A roaming laptop is great for a quick plug in to watch a archived movie as such. Otherwise any DVD player is good. The problem is it's only 4.7G worth which can easily be eaten up when users have 60-80G hard drives.
1-2G hard drives were the norm once CD-RW became the "norm" and you could do a lot of damage with 600 or 700M CD's. DVD's are barely usable (today) for backup needs and the speed still stinks for all flavors (+/-RW or RAM).
BLUE LASER with +20G is worth waiting a bit longer for, IMHO. That's large enough to be useful for movies (easily) and backing up data in chunks as needed. SPEED will be key or else it'll take too damn long. 4x at a minimum to start.
With blue laser coming along, what, next year (somewhat mainstream realistically)? I'm thinking the industry waited too long and bickered among themselves for too long (+, - or RAM) that the listed technology will be surpassed and old hat. It is for me at least...
I'll need to call my lawyer shortly...
... TECHNICALLY I would be in violation of "uploading" my song files to my Mac and playing them over my LAN to the stereo with my SliMP3 player? It's all simply peer to peer networking.
Based on this new bill
Ironically I've _never_ done Napster or Kazaa or Freenet or any of those types of P2P networks. Yet the RIAA probably wonders why people like me have simply STOPPED buying CD's. Not 1 for 3 years now.
It is sad to get old[er], but this has got to be the absolute dumbest thing I've _ever_ seen. No, really.
... for HOW MANY hours? Tolerant that I don't break your knee-caps with the baseball bat I'm holding. It'll cost HOW MUCH to clean this mess up? Tolerant that there will *always* be somebody smarter than you out there and perhaps you just met him or her. Now learn from your mistakes and GET BACK TO WORK. *THAT* would be tolerance.
A intrusion detection type system should, well, PULL THE PLUG on the offended box. PERIOD. Oh, no, let's keep it working as much as we can until I get my lazy ass around to fixing it? Mean while it's still dumping how many of millions of spam out to the Internet? Or ping bombing the hell out of who? Or just stealing my data enough to not panic my bandwidth button, but getting it none-the-less. Oh, but I can print. Yeah...
Insane computing 101
You want tolerance? Ok. I'll be tolerant and not fire your ass for letting our system get compromised
But I have NONE for letting a compromised system from remaining, well, compromised.
This is a [lame] local user access hack/exploit. No big deal. Why fix it? They should ignore the problem. If enough people complain then it's not a bug, it's a _feature_. Has the moon gone red?
Oh, wait, I stopped using Microsoft products. Sorry.
Aw cripes. NO WONDER I'm feeling dragged by the lagging economy and wishy-washy business recently.
... I'm screwed?
It must have NOTHING to do with the fact that I'm now in my early 30's and married just over one year now. So, basically
At least I won't knock over the 7-11 on whim while out on my midnight smoke run. Oh, wait, pussy whipped...Quitting.
Damn it Spock, we need more testosterone.
Quick -n- Dirty in corporate is NOT done. Sure, you can make a quick buck, let's say 90% of the time.
... that certainly didn't save me any money, did it? Also -- 10% of the time that we wouldn't save money ... it usually ends up costing us BIG TIME. Labor dollar mistakes can eat a company alive -- and certainly eat away at any savings from other projects.
... we move it) -- trying to cut corners and do things quick/easy way could very well get yourself or somebody around you KILLED. Ever see 20,000 pounds come crashing down from 3 stories? It's ugly...
But when I see employees having to RE-DO their work
In the field -- as we are a rigging and erecting type company (if it's big
FIREWIRE
:)
:)
Been there, done that. GREAT IDEA though...
With that said -- yes, I know that my 10Mbit Internet running at 5Ghz is back feeding the antenna power. Yeah, it's nice to see 900K/sec @ home -- and it's slowly taking over our branch offices as well.
I had one office that wanted a whole bunch of Snap! servers (cute, but I personally don't find their file system to be enough). Instead of trying to having umteen million power adaptors plugged in I rigged power originating @ the switch to feed the servers. On the server end just added in Radio Shack wired plugs. Not a big deal as I usually cut my own network cables/test to this day.
Forget the ratings -- a good Amp meter, a little time, and powering everything on together tells all you need. What the amps and voltage is voltage. About time.
Wait, PRIOR ART, did I patent the idea? Damn. Could have sued.
My only potential concern in the future would be trying to mix already network powered devices with this new fangled technology.
I have my own home domain which was setup shortly after college and used (then) to just keep communicating with distant friends. Back in the day UUCP was how it was done for $15/mo which gave me 3 hours of transfers before I had to start paying extra.
:). Hundreds of non-existent users to just harvest spam. Any USENET type postings have a good email for about a week (if at all) before harvesting. Hell, I even like to add in users where they attempted "bob@" that didn't exist.
... we have a problem.
BECAUSE of the spammers I did have to pay extra. Long ago went to broadband type connections starting with ISDN (still backup and my only phone lines) to 10Mbit wireless uplink today (sweet). Funny, but I am STILL paying for the bandwidth and SPAM still annoys the hell out of me personally.
So -- to get it under control I baited the spammers (and still do
Me, myself, and my wife -- here's my stats for the entire month of June:
Outbound (work): 60 (1.74%)
Outbound (personal): 49 (1.42%)
Notes to myself: 89 (2.58%)
Inbound to me: 422 (12.24%)
Inbound to the wife: 14 (0.41%)
System messages: 68 (1.97%)
System ERROR codes: 2 (0.06%)
Just TESTING: 7 (0.20%)
SPAM TRAPPED: 2738 (79.39%)
TOTAL EMAILS: 3449
Um, Houston
Couldn't get it to crash with 10.2.6.
:).
:-]).
Reminds me of the email I send to the admin/owner of the BSD server he used @ his ISP -- kicked my foot up and hit -0- while on the phone. Not noticing page after page their Unix box finally crashed from my tcsh. He had no idea why it went down (I did it three times to make sure it _was_ me
It was fixed fairly quickly (and it doesn't crash anything in OS.X or Linux either [anymore
I remember seeing the same thing back on a 3b2 running AT&T SysVr2 Unix waaaay back when.
Windows certainly isn['t much better...
You know, I'm sitting here thinking...
Frankly, I've not been all that impressed with Windows since, well Workgroups 3.11 and/or maybe NT. I said _impressed_. 98se I could swallow and 2K is barely doable, but the rest are just so obvious garbage money grab releases.
All along I've been running Linux in the basement. Heck, it's sitting side by side with my Netware & BSD running the corporate network(s).
OS.X has also become my personal GUI of choice, but Linux & BSD remain close at hand as well. Windows only as needed -- and usually through VirtualPC.
They got me again.
And the bitch of the matter? Never bought their stock. Fucked me coming, and doing it to me going as well. How ironic. I surely may not prefer Windows, but it unquestionably doesn't suck to be Bill -- does it? My [red] hat goes off to him.
Now, please, get the hell out of the way or release Microsoft Linux or Microsoft BSD or something "Un*x" based (go ahead and sue me too SCO, you fucktards).
When will this nightmare freakin' end already? Jesus (!)
> About 2 weeks ago I was running RedHat. I would have
:) the use of Redhat's Network does offer a very decent and cost effective way to manage huge chunks of Linux box easily. $60/yr for personal type (basically ungroupable boxes) or $90/yr for the "Enterprise" (groupable) servers.
... apply. Otherwise you can go box by box and update as well. This is pushing it.
:)
:)
:)
> been running around frantically trying to track down any
> patches I might have missed, version-checking my
> RPM's...etc etc.
True, true, but to be fair -- for the small to medium sized business types (what I over see
Of course RH is trying to push business' into their Enterprise Edition release (vs v9), but that is another issue and one that does make debian or even going bsd look favorable.
Just login to the web interface, click errata, for the groupable ones
Of course you can pull it too (immediately) and login with a shell and as root simply:
# up2date -fu
(I personally think of Microsoft everytime I type those flags
There's also a X-Windows update agent as well that's pretty slick, but basically just is running the command line tools.
Really not much different than Apple's graphical update which can also be hit easily via the command line via softwareupdate. There you pay ~$129 every couple of years for the OS update and have to purchase their hardware. Personally, I bought it. I like it too.
Now -- compare all these vendors and add into the mix of having to take care of Windows boxes too. Sorry, but I still cringe with every patch that comes from Redmond. Thankfully our total business exposure to Windows is becoming more and more limited.