The piecemeal "lab" releases that were functional but only 75-85% complete were okay 10 years ago. Anymore, they just give the appearance of not really giving a crap. Overlay that with an Apple-esque approach to usability and terms of use and it just becomes gWorld over and over again.
At least one study has shown that it isn't out of the question that electronic devices can have an impact on cockpit GPS systems. Inherently this is really only vital for landings.
But the rule isn't really the problem. The problem is cheating.
Day in and day out we all abide by questionable rules not because we agree with them, but because we are civilized human beings. Flaunting rules which could, even in the most remote chance, endanger not just your life but the lives of everyone around you is bad. Forget politics, forget gender, forget class, forget intelligence. If you aren't going to abide by the rules, then don't play the game.
Stunning eh? I'll challenge anyone to prove that it is possible to recover anything from a modern hard disk that has been overwritten once with anything other than a magnetic microscope. And even that is questionable.
Modern drives are so dense that drive makers have a hard enough time getting data back off of them after its been written.
More bullshit from zealots... For the vast majority of OS X users the steps would be:
1) Go to site (only reason porn is used is due to effectiveness) 2) Get told you have to install something to view content... agree to download (never seen that before? laughable.) 3).dmg will auto mount/installer will auto-play (For the vast majority of Safari users) 4) Get told to that it needs admin privileges to install... give credentials (never seen that before? laughable.)
So, I guess OS X users don't download, nor install software. Even more telling, by your logic, there must not be any dumb OS X users.
Its "in the wild" because its being publicly distributed (read: not a proof of concept.) And, of course the operator of the page in questions know what they are doing.
That's *the* valid excuse. They were in fact drinking the kool-aid - they believed that by contributing to the codebase, that it would make everyone's project stronger. As it happened, they kept giving and the competition kept taking. The community didn't give back.
I guess they didn't gain anything from Linux, libwhisker, nmap, Bugzilla (MPL, I know - but they use it, and the argument still works), or any of the countless other open source projects. Why is it that coders always feel they don't get their just rewards? Why ever release under the GPL to begin with? Didn't gain anything... pfft.
Nessus gained a reputation as a premier vulnerability scanner because it was open and free -- period. Nessus isn't terribly more special than Retina or ISS Internet Scanner. Look up "vulnerability scanner" in google and your first hit is Nessus because it was free AND open. Had it just been free it never would have gotten off the ground. Seems to me Linux probably wouldn't have gotten very far either. Hey its their code (I guess), so they can do what they want with it. I guess they just weren't making enough of their own black box implementation - but they'll need to have some insane tricks up their sleaves if they think they'll make money against whoever forks Nessus 2.x and keeps it free.
Hell the only reason anyone buys ISS's scanner is because it ties in with their whole SiteProtector line.
*shrug*
Some people do manage to make some money from their open source projects... SourceFire. Odd day in open source security land.
You finally develop the 'pocket-fit' all-in-one portable media-player, gaming system, telephone that some people want, but everyone ends up needing. You did it with science but without the artful eye you never would have caught and kept the public.
You debug scp code for weeks until you stumble upon a new trick to exploit the code. Without the science you wouldn't have known what was required to find the exploit. Without the art you wouldn't have had the out of the box vision that became your exploit. (And probably ended up being an issue in a lot of other code)
You develop a worm which targets countries using a geographical ip base. Worms communicate peer-to-peer and download new versions of themselves in order to avoid signature detection, and gain new features for new exploits. Targetting of core country routing areas through onine research [ie you stick in the ips you want to attack], or through distributed traceroute comparisons [or a combination of the two to account for infrastructure failover] becomes instantly trivial. Assume a relatively normal distribution rate, snag 500-2000 zombies your first day - instantly attack infrastructure or continue scanning and mutating in hopes of growing to an 80,000 zombie network. Average 10K/s uploads speed. Knocking countries off the face of the internet for long periods of time - doesn't seem to unrealistic. Make it work, and spread through social engineering, and artful coding (hiding existance, sticking communication code into what looks like exploit calls, signature evasion) - but without the science - never happen.
If its a real hack, its artful. And as for the definition of 'hack', it all applies. You hack every day, and it doesn't mean your sitting in front of a computer.
How would you dial 911 if your telephone service is down?
I don't know about you, but I generally don't lose Internet service unless I've also lost my land line (at least not within the past 6 years). In my particular situation (and thousands of other's) my television, internet and telephone are all coming in on one RJ-6 line.
I haven't used Vonage, but if as others are saying in this thread, they give you a setup procedure for what is going to be called if you dial '911' - that certainly seems like due diligence to me.
These are quotes directly from they guy heading up EDS's strategic alliances. Not from members of the strategic alliance - has anyone asked Ellison if he thinks Linux is insecure, prone to unfriendly forking? Guess not. http://www.oracle.com/events/unbreakablelinux/inde x.html. Guess not.
Really, do you think sniffing traffic and breaking into "warez" machines played an integral role in these busts? I doubt it.
The real problem (or the real solution depending on your point of view) is that warez groups are nothing without an audience. They are also nothing without new crackers, suppliers, distribution sites, hangers-on...
Its a problem with a social solution primarily and a technological solution secondarily. As what good is a VPN network of warez creation and distribution if you can still have one weak link, one infiltration, one "Donnie Brasco" to blow your whole house of cards down.
Encryption and authentication and access control are terrific for protecting your assets, only when you have a strong legal system to take over when there is a breach of authority/conduct.
And while I certainly would not put people who pirate software in the same criminal class as those who manufacture and distribute drugs, run prostitution rings, or fraudulently manage mutual funds... what they are doing is against the law in most of the world -- and they are organized.
Out of the top 5 super computers... there is 1 self-made. Out of the top 10... 1 self-made. Out of the top 50... 1 self-made.
This speaks volumes. Apple didn't come in and build this thing for them. They dumped a few trucks with 1,100 computers at their door and VA Tech built it.
Personally, I'd like to know how many they got that were DOA. Any?
My house cats are 'serious' predators and often take out rabbits and the occasional village of chipmunks (often leaving a nice head or fluffy tail as a present for me at the back door.)
Fact is MOST 'domesticated' (???) cats are still serious predators. So why NOT a Sabre Tooth?
Take your average house cat at 7-13 pounds. X8 it up, and you have a nice large man eating feline.
Aren't you being a bit ignorant here? Don't you think they know about sex at the age of 6? What do you think they talk with the other kids about? Didn't you know back then?
What's this business about waiting until you can mention the finer things in life (sorry, I mean sex of course)? Waiting for what? It must be some American thing...
It must be... No, I don't think they talk about "sex" at age six (no, I didn't either). I think they talk about butts and penises, and giggle their little asses off when one of them shows the other either of the afformentioned body parts.
Exploring ones own body, and exploring the bodies of others is a naturual part of growth and awareness. Seeing a woman with a mouth full of horse cum and a chicken stuck up her ass is not... at least not in my part of the country.
That's a terrible analogy. my dad gave me a cigarette when i was like 12, and i coughed for like 15 minutes. There was no way anyone could ever talk me into smoking a cigarette after that.
I plan on drinking my kid's first beers with them, and i plan on smoking the first joint with them as well. Both are very dangerous, but also quite normal and socially acceptable in moderation. similarly, it would be wise to talk openly with children about sex and sexuality (both must be done carefully of course) because if my kid is gonna be a perv, i would rather know about it than have him hide it and end up being a murderer/rapist because of pent up sexual frustration and aggression.
Your right that is a terrible analogy. My mom laid out a pack in front of me at 10... I smoked five of them... got nice and sick. Now at 33 I smoke 5 a day (after going through my stint of 15 years of a half a pack to two packs a day).
Its all about timing. At 9 years old I didn't know shit from shinola. It was a stupid age for my parents to try to keep me from doing something (especially using that lame tactic). No, I didn't smoke for another 5 years, but I got around to it because my friends were doing it, and my father did it.
That said... My kid is 6 (almost 7) and I just recently put an aged 350Mhz G4 in his room (nice 15" Apple Flat Screen (Boy, when I was your age we had 40 colums, and we LIKED it!))
The computer, much like the television, is here to stay. I for one want my kids to be comfortable using the computer from the get go. And like the television, my kids use of the computer has rules attached to it (btw, no TV in the room, just the computer... and snake... and skink... sigh.) I don't log what my kids do and I'm hoping never to need to. Parenting isn't about spying for me. Its about teaching my kids right from wrong. Making them understand boundaries they set for themselves, and ones soiciety sets for them. Rules and morals... tough fucking job... I can certainly undestand why some parents might log, even if I don't agree with it.
My kids will eventually find pornography online. But through diligent effort on mine and my wifes behalf I'm confident we can keep them from getting to it through rules and personal watchdogging until we have a chance to teach them and watch them learn about love, desire, respect, sex, and general intrapersonal relationships.
I've only seen one answer thus far that even comes close to solving the problem as the user attempted to describe it. But I think the problem was that the person didn't know exactly what they really wanted, and therefore worded the question poorly.
The correct answer to this question is a mixture of solutions... as it makes no sense to completely mirror a filesystem accross multiple workstations. You'll never need to carry that entire filesystem with you at all times unless it carries your booting operating system.
Therefore I present my solution:
For the home user... dedicate two machines (your servers) to the redundant raid of your choice and means. RAID 5 could be the answer, RAID 1 could be the answer... RAID 5+1 could be the answer... not enough information is given to know just how much and what CRITICAL data you could possibly have at home. However this does give you a level of redundancy at the drive level. I would highly suggest making use of LVM in servers with more space to add drives later down the line.
Next step is to mirror the data accross the two servers. I suggest CODA. Not terribly difficult to install, RPMs available if thats the way you bend, lots of time under its belt and because of what we are about to do, Windows is not required.
So how do my Linux and Windows clients get to the data? Well. There are a bunch of ways to accomplish this. You could install multiple types of network filesystems to support multiple operating systems. Which to me has always seemed rather crappy. Who wants to match all those user ids one might use. Or, horror of horrors, allow SMB or NFS (or Appletalk) out of the local network? Not me. BUT... what about WebDAV? Still somewhat in its infancy - and its already had a rather significant remote hole - it is fairly elegant. Linux, Windows 2000+, and MacOS X all support it... its web based (so your going to be running a web server too)... and your can run the whole thing under SSL. This makes it available to you from just about anywhere, and using just about anyones computer (though there are certainly security issues when authenticating if you want to do this). And it will natively pass through just about any firewall (including Application Proxy firewalls).
BUT... and this does suck, you cannot manipulate files directly on the WebDAV share. Files must be copied to local storage, editted, then copied back over.
So... your looking at Linux, LVM, RAID (hardware preferably), CODA, LVS (if you so desire), Apache, and WebDAV. Reading between the lines this really sounds more like what you are really looking for.
Of course, thats just my opinion. I could be wrong.
The fact that RedHat has to wait for months to get a possible injunction, while SCO & Co keep pumping their stocks and FUD - well.. this is a direct indictment on the way the justice system works(?) in the US.
It took all of 7 days fot LinuxTAG to shut up SCO in Germany, likewise in Poland and Australia. If SCO is yet to prove it's case, why is it possible for it to keep yelling everyday? The US justice system is too free, maybe
Or it could be something more akin to the fact that the economy and hence corporate legal load in the US is 10 fold what there is in Poland...
Slashdot Mirror
The piecemeal "lab" releases that were functional but only 75-85% complete were okay 10 years ago. Anymore, they just give the appearance of not really giving a crap. Overlay that with an Apple-esque approach to usability and terms of use and it just becomes gWorld over and over again.
At least one study has shown that it isn't out of the question that electronic devices can have an impact on cockpit GPS systems. Inherently this is really only vital for landings.
But the rule isn't really the problem. The problem is cheating.
Day in and day out we all abide by questionable rules not because we agree with them, but because we are civilized human beings. Flaunting rules which could, even in the most remote chance, endanger not just your life but the lives of everyone around you is bad. Forget politics, forget gender, forget class, forget intelligence. If you aren't going to abide by the rules, then don't play the game.
Um... what about NerdBullies?
I suppose if the US was 1/3 its present size it might have better coverage.
Sure. The answer, on any drive > 15GB, is 1-Pass.
Stunning eh? I'll challenge anyone to prove that it is possible to recover anything from a modern hard disk that has been overwritten once with anything other than a magnetic microscope. And even that is questionable.
Modern drives are so dense that drive makers have a hard enough time getting data back off of them after its been written.
But you asked for documentation:
NIST Guidelines for Media Sanitization
http://csrc.nist.gov/publications/nistpubs/800-88/NISTSP800-88_rev1.pdf
Storage Networking Discussion
http://storage-networking.org/Discussion/forum_posts.asp?TID=59&PN=1
Guttman's Revised Paper
http://www.cs.auckland.ac.nz/~pgut001/pubs/secure_del.html
More bullshit from zealots... For the vast majority of OS X users the steps would be:
... agree to download (never seen that before? laughable.) .dmg will auto mount/installer will auto-play (For the vast majority of Safari users)
1) Go to site (only reason porn is used is due to effectiveness)
2) Get told you have to install something to view content
3)
4) Get told to that it needs admin privileges to install... give credentials (never seen that before? laughable.)
So, I guess OS X users don't download, nor install software. Even more telling, by your logic, there must not be any dumb OS X users.
Its "in the wild" because its being publicly distributed (read: not a proof of concept.) And, of course the operator of the page in questions know what they are doing.
RPC under HTTPS requires XP SP2 (or SP1 with http://support.microsoft.com/?kbid=331320) -- which Crossover currently doesn't support.
Let me know when 720x400 video is available for download.
That's *the* valid excuse. They were in fact drinking the kool-aid - they believed that by contributing to the codebase, that it would make everyone's project stronger. As it happened, they kept giving and the competition kept taking. The community didn't give back.
I guess they didn't gain anything from Linux, libwhisker, nmap, Bugzilla (MPL, I know - but they use it, and the argument still works), or any of the countless other open source projects. Why is it that coders always feel they don't get their just rewards? Why ever release under the GPL to begin with? Didn't gain anything... pfft.
Nessus gained a reputation as a premier vulnerability scanner because it was open and free -- period. Nessus isn't terribly more special than Retina or ISS Internet Scanner. Look up "vulnerability scanner" in google and your first hit is Nessus because it was free AND open. Had it just been free it never would have gotten off the ground. Seems to me Linux probably wouldn't have gotten very far either. Hey its their code (I guess), so they can do what they want with it. I guess they just weren't making enough of their own black box implementation - but they'll need to have some insane tricks up their sleaves if they think they'll make money against whoever forks Nessus 2.x and keeps it free.
Hell the only reason anyone buys ISS's scanner is because it ties in with their whole SiteProtector line.
*shrug*
Some people do manage to make some money from their open source projects... SourceFire. Odd day in open source security land.
Art.
You finally develop the 'pocket-fit' all-in-one portable media-player, gaming system, telephone that some people want, but everyone ends up needing. You did it with science but without the artful eye you never would have caught and kept the public.
You debug scp code for weeks until you stumble upon a new trick to exploit the code. Without the science you wouldn't have known what was required to find the exploit. Without the art you wouldn't have had the out of the box vision that became your exploit. (And probably ended up being an issue in a lot of other code)
You develop a worm which targets countries using a geographical ip base. Worms communicate peer-to-peer and download new versions of themselves in order to avoid signature detection, and gain new features for new exploits. Targetting of core country routing areas through onine research [ie you stick in the ips you want to attack], or through distributed traceroute comparisons [or a combination of the two to account for infrastructure failover] becomes instantly trivial. Assume a relatively normal distribution rate, snag 500-2000 zombies your first day - instantly attack infrastructure or continue scanning and mutating in hopes of growing to an 80,000 zombie network. Average 10K/s uploads speed. Knocking countries off the face of the internet for long periods of time - doesn't seem to unrealistic. Make it work, and spread through social engineering, and artful coding (hiding existance, sticking communication code into what looks like exploit calls, signature evasion) - but without the science - never happen.
If its a real hack, its artful. And as for the definition of 'hack', it all applies. You hack every day, and it doesn't mean your sitting in front of a computer.
How would you dial 911 if your telephone service is down?
I don't know about you, but I generally don't lose Internet service unless I've also lost my land line (at least not within the past 6 years). In my particular situation (and thousands of other's) my television, internet and telephone are all coming in on one RJ-6 line.
I haven't used Vonage, but if as others are saying in this thread, they give you a setup procedure for what is going to be called if you dial '911' - that certainly seems like due diligence to me.
... by the demands of the market.
(to finish your incomplete thought.)
Good article from all the way back in 2004 regarding where this is actually pointed. http://www.crn.com/showArticle.jhtml?articleID=510 00391&flatPage=true
e x.html. Guess not.
m l
s p
Would Sun rather see Linux go away? Sure, but they also believe in it enough to sell it. http://www.sun.com/servers/entry/v20z/index.jsp
These are quotes directly from they guy heading up EDS's strategic alliances. Not from members of the strategic alliance - has anyone asked Ellison if he thinks Linux is insecure, prone to unfriendly forking? Guess not. http://www.oracle.com/events/unbreakablelinux/ind
Cisco? Well lets see they have linux running on some of their hardware, and apparently its good enough for their engineers to run http://www.nwfusion.com/news/2005/0216cislinux.ht
So lets round out the list...
EMC - http://www.emc.com/products/systems/linux/index.j
Dell - http://linux.dell.com/
Microsoft - http://www.mslinux.org/ Err, umm - ok maybe not.
Looks like old Outlook to me. *shrug*
Really, do you think sniffing traffic and breaking into "warez" machines played an integral role in these busts? I doubt it.
The real problem (or the real solution depending on your point of view) is that warez groups are nothing without an audience. They are also nothing without new crackers, suppliers, distribution sites, hangers-on...
Its a problem with a social solution primarily and a technological solution secondarily. As what good is a VPN network of warez creation and distribution if you can still have one weak link, one infiltration, one "Donnie Brasco" to blow your whole house of cards down.
Encryption and authentication and access control are terrific for protecting your assets, only when you have a strong legal system to take over when there is a breach of authority/conduct.
And while I certainly would not put people who pirate software in the same criminal class as those who manufacture and distribute drugs, run prostitution rings, or fraudulently manage mutual funds... what they are doing is against the law in most of the world -- and they are organized.
you might remember from other high quality works, like...
.NET with VB .NET, Visual Basic Developer's Guide to Asp and IIS,
Mastering ASP
and...
How To Kill Penguins With Broken Shards of Windows.
*YAWN*
Out of the top 5 super computers... there is 1 self-made.
Out of the top 10... 1 self-made.
Out of the top 50... 1 self-made.
This speaks volumes. Apple didn't come in and build this thing for them. They dumped a few trucks with 1,100 computers at their door and VA Tech built it.
Personally, I'd like to know how many they got that were DOA. Any?
It was a joke... Compared most dogs (have two of those as well) cats rarely seemed domesticated to me.
Yeah. Kind of like a house cat.
My house cats are 'serious' predators and often take out rabbits and the occasional village of chipmunks (often leaving a nice head or fluffy tail as a present for me at the back door.)
Fact is MOST 'domesticated' (???) cats are still serious predators. So why NOT a Sabre Tooth?
Take your average house cat at 7-13 pounds. X8 it up, and you have a nice large man eating feline.
Aren't you being a bit ignorant here? Don't you think they know about sex at the age of 6? What do you think they talk with the other kids about? Didn't you know back then?
What's this business about waiting until you can mention the finer things in life (sorry, I mean sex of course)? Waiting for what? It must be some American thing...
It must be... No, I don't think they talk about "sex" at age six (no, I didn't either). I think they talk about butts and penises, and giggle their little asses off when one of them shows the other either of the afformentioned body parts.
Exploring ones own body, and exploring the bodies of others is a naturual part of growth and awareness. Seeing a woman with a mouth full of horse cum and a chicken stuck up her ass is not... at least not in my part of the country.
That's a terrible analogy. my dad gave me a cigarette when i was like 12, and i coughed for like 15 minutes. There was no way anyone could ever talk me into smoking a cigarette after that.
I plan on drinking my kid's first beers with them, and i plan on smoking the first joint with them as well. Both are very dangerous, but also quite normal and socially acceptable in moderation. similarly, it would be wise to talk openly with children about sex and sexuality (both must be done carefully of course) because if my kid is gonna be a perv, i would rather know about it than have him hide it and end up being a murderer/rapist because of pent up sexual frustration and aggression.
Your right that is a terrible analogy. My mom laid out a pack in front of me at 10... I smoked five of them... got nice and sick. Now at 33 I smoke 5 a day (after going through my stint of 15 years of a half a pack to two packs a day).
Its all about timing. At 9 years old I didn't know shit from shinola. It was a stupid age for my parents to try to keep me from doing something (especially using that lame tactic). No, I didn't smoke for another 5 years, but I got around to it because my friends were doing it, and my father did it.
That said... My kid is 6 (almost 7) and I just recently put an aged 350Mhz G4 in his room (nice 15" Apple Flat Screen (Boy, when I was your age we had 40 colums, and we LIKED it!))
The computer, much like the television, is here to stay. I for one want my kids to be comfortable using the computer from the get go. And like the television, my kids use of the computer has rules attached to it (btw, no TV in the room, just the computer... and snake... and skink... sigh.) I don't log what my kids do and I'm hoping never to need to. Parenting isn't about spying for me. Its about teaching my kids right from wrong. Making them understand boundaries they set for themselves, and ones soiciety sets for them. Rules and morals... tough fucking job... I can certainly undestand why some parents might log, even if I don't agree with it.
My kids will eventually find pornography online. But through diligent effort on mine and my wifes behalf I'm confident we can keep them from getting to it through rules and personal watchdogging until we have a chance to teach them and watch them learn about love, desire, respect, sex, and general intrapersonal relationships.
I've only seen one answer thus far that even comes close to solving the problem as the user attempted to describe it. But I think the problem was that the person didn't know exactly what they really wanted, and therefore worded the question poorly.
The correct answer to this question is a mixture of solutions... as it makes no sense to completely mirror a filesystem accross multiple workstations. You'll never need to carry that entire filesystem with you at all times unless it carries your booting operating system.
Therefore I present my solution:
For the home user... dedicate two machines (your servers) to the redundant raid of your choice and means. RAID 5 could be the answer, RAID 1 could be the answer... RAID 5+1 could be the answer... not enough information is given to know just how much and what CRITICAL data you could possibly have at home. However this does give you a level of redundancy at the drive level. I would highly suggest making use of LVM in servers with more space to add drives later down the line.
Next step is to mirror the data accross the two servers. I suggest CODA. Not terribly difficult to install, RPMs available if thats the way you bend, lots of time under its belt and because of what we are about to do, Windows is not required.
So how do my Linux and Windows clients get to the data? Well. There are a bunch of ways to accomplish this. You could install multiple types of network filesystems to support multiple operating systems. Which to me has always seemed rather crappy. Who wants to match all those user ids one might use. Or, horror of horrors, allow SMB or NFS (or Appletalk) out of the local network? Not me. BUT... what about WebDAV? Still somewhat in its infancy - and its already had a rather significant remote hole - it is fairly elegant. Linux, Windows 2000+, and MacOS X all support it... its web based (so your going to be running a web server too)... and your can run the whole thing under SSL. This makes it available to you from just about anywhere, and using just about anyones computer (though there are certainly security issues when authenticating if you want to do this). And it will natively pass through just about any firewall (including Application Proxy firewalls).
BUT... and this does suck, you cannot manipulate files directly on the WebDAV share. Files must be copied to local storage, editted, then copied back over.
So... your looking at Linux, LVM, RAID (hardware preferably), CODA, LVS (if you so desire), Apache, and WebDAV. Reading between the lines this really sounds more like what you are really looking for.
Of course, thats just my opinion. I could be wrong.
As everyone should know this by now, and I'm sure it was just a typo... but its not 444, its 445.
SCO has recently announced their new corporate logo, and policy for dealing with IP piracy.
The fact that RedHat has to wait for months to get a possible injunction, while SCO & Co keep pumping their stocks and FUD - well.. this is a direct indictment on the way the justice system works(?) in the US.
It took all of 7 days fot LinuxTAG to shut up SCO in Germany, likewise in Poland and Australia. If SCO is yet to prove it's case, why is it possible for it to keep yelling everyday? The US justice system is too free, maybe
Or it could be something more akin to the fact that the economy and hence corporate legal load in the US is 10 fold what there is in Poland...
Purchasing Power Parity;
US: 10.082T
Germany: 2.184T
Australia: 528B
Poland: 368.1B
Lets figure 5x PPP against Germany... 5x court load; 5x7=35 business days... gets you right close to 2 months...
Not very scientific, but neither is your completely UNINSIGHTFUL (who the hell mods this crap?) indictment of the US justice system.