I don't have a problem with the way it's currently done, but i have a possible solution that _might_ keep everybody happy.
based-10 numbered like an array.
You version numbers (minus the first significant digit) all go from 0-9, and once a minor-revision pushes a.9 up, it doesn't goto.10 it then reset back to a 1.0
The original goal of Phoenix(?) or whatever name they chose for the code-split from Navigator; was to build a fast, responsive and resource-minimal web-browser. When it was first released it was a HUGE success because not everybody wanted an all-in-one email/browser/calendar/contact/NNTP client.
Then they added the ability to run 3rd-party scripts, they called those 'extensions' (omg what is this new thing!) and that was super popular.
I like many of the/. readership was there at the birth of what we now call Firefox. We have loved it for what it was, and have tolerated it for what it became.
It is still my primary browser, but if I ever find a minimal-resource browser that offers functionality equal to 'NoScript' and 'Adblock-Edge' I'll switch.
A couple of the items were interesting (i.e. ntp-lite). I think the biggest take-away from this is that in the very near future every 'application' will be its own container. While this has some very good merits I am not sure how I feel about it. Cautiously optimistic?
As a server admin I hate systemd and all of its hell-spawn, but as an end-user i like some of these features.
While a lot of people are jumping on the "..it wasn't encrypted.." "..FBI grabbed it while he was logged in.." You are missing the point. Step 1) NEVER carry incriminating evidence with you. Encrypted or not. 2) use a VPN/SSH Tunnel/etc (and/or both) to connect to the server where your data is. (make sure that server is located in a non-extraditing country, and filtered from you by a few shell companies) 3) keep an absurdly low 'idle-timeout' on your ssh sessions 4) use a dead-mans switch on that servers encrypted data (i.e. run command "I_am_not_in_jail_yet.sh" every 15minutes.) {be more vague then this*} 5) ALWAYS assume that your local system is compromised. (boot/run from a read-only media) 6) don't brag about it! If more then 1 person knows; then your secret is not safe.
I have learned this the hard way so please take heed;
NB! most of the guides online have the syntax (order of wording) wrong for pf.conf included the beloved OBSD FAQ. This is accurate and works on OBSD v5.6 99% of the online howto & guides will get your firewall almost working.
Use this as an example from my working pf.conf
pass in log on egress inet proto { tcp, udp } to $pub_ip port { ssh } rdr-to $workstation
You can spot the variables. Use 'LOG' for all of your entries and keep a "tcpdump -nettti em0 host 192.168.0.x" running while testing your setup.
This is a start! It's this kind of thinking that will bring us closer to Vorlon tech, LEXX, or even Moya! =) (did I miss any?)
Seriously, as others have pointed out, the most expensive valuable parts are not the airframe, but the motors/camera/radio/battery so stop the hippy-dippy crap and don't worry about making it out of biodegradable material.
But seriously, keep working/thinking in this direction.
I'm not sure if you are intentionally be obtuse or not seeing the forest for the trees.
Bitcoin allows the seller to directly receive payment from the purchaser. Whenever a seller depends on a 3rd party intermediary to pass money through then that seller becomes dependant on the whims of that third party.
In some cases that 3rd party has enough clout to enforce change that is beneficial to society. But that power can be abused easily.
Lets take an imaginary scenario: Payment processor "Money Buddy" discovers that website "slave-labour-goods.com" is forcing children to work 23hrs a day for a nickle. "Money Buddy" tells them to stop being assholes or they will stop processing their payments.
Nobody can really argue that this forced-change is a bad thing. Now lets change the scenario to something more ambigious.
"Money Buddy" discovers that "imported-cheap-stuff.com" forces that any female employees wear a hijab. The "Money Buddy" CEO is a feminist and thinks that this is an oppressive rule. But "imported-cheap-stuff.com" is located in a country that enforces that law, and the president of the company proudly wears her Hijab during the press conference proclaiming that "Money-Buddy" is actively trying to oppress her religion and national law.
Bitcoin bypasses that middleman. If you want to support child-labour and buy your sneakers for $2 less then the competitor offers then you can. If you want to make sure your money goes directly to the people you want you can. Why allow these fat-cats to continue getting their cut when they offer no added value for their services?
Bitcoin can be an incredibly powerful tool for change in society.
You have obviously R'd TFS, TFA, and TFM. What are you doing on/.? You are too perfect an imposter. No spelling or grammar errors either. Probably some AI.
If you have a system that you can test against (i.e. a server at your work with a fatter-pipe then you have at home, or a hosted server/VPS/etc.)
iperf
run "iperf -s" on the server and "iperf -c server.ip.address" on the client. Read the man pages for more options.
If you don't have a 'known better then you' to test against try this to test your maximum download bandwidth. Simple test: download a large file from Microsoft (i.e. a 'network install' service pack, or similar) or other big-host
More complicated: run several (4-20) 'wget' concurrently. If you use Linux.iso's as your target download, make sure you grab the files from *.edu sites. Schools should have a lot more bandwidth then the average.com that is hosting files.
Your ISP might have several things in place from preventing DDOS attacks from there customer machines. So each 'download' might be throttled by your ISP. If you open several download threads to different locations, downloading different things you can maximize your usage.
Also, don't download the same thing twice from the same source. Caching can/will interfere with accurate measurements.
Step 1: make a ZFS array and save your data there. Step 2: copy the data to single hard-drives and store them in a different location then home. Step 3: upload a copy to some online 'cloud storage' provider.
Use checksums/md5 hashes to determine data integrity.
Based on your budget pick any of the above 3. If you are paranoid, do all 3.
The hardware is easy: Either get a router that you can add DD-WRT/tomato to or build your own PC.
Software answer: OS = OpenBSD VPN = OpenVPN
BUT you are not asking the right questions. VPN's only work when 2 ends connect. So what VPN server/client will the other end of your connection use? What are you actually trying to do? Does your work have a fat-connection that they will let you use? Are you planning on paying for VPN service from a 3rd party? Do you want to create a VPN between your home and your laptop while you travel?
If you want to build yourself a solid, dependable, 'solution' follow this guide:
Slashdot Mirror
I don't have a problem with the way it's currently done, but i have a possible solution that _might_ keep everybody happy.
based-10 numbered like an array.
You version numbers (minus the first significant digit) all go from 0-9, and once a minor-revision pushes a .9 up, it doesn't goto .10 it then reset back to a 1.0
i.e. so v4.9.0.10 = v4.9.1
The original goal of Phoenix(?) or whatever name they chose for the code-split from Navigator; was to build a fast, responsive and resource-minimal web-browser. When it was first released it was a HUGE success because not everybody wanted an all-in-one email/browser/calendar/contact/NNTP client.
Then they added the ability to run 3rd-party scripts, they called those 'extensions' (omg what is this new thing!) and that was super popular.
I like many of the /. readership was there at the birth of what we now call Firefox. We have loved it for what it was, and have tolerated it for what it became.
It is still my primary browser, but if I ever find a minimal-resource browser that offers functionality equal to 'NoScript' and 'Adblock-Edge' I'll switch.
The only thing missing was kitchensinkd!
A couple of the items were interesting (i.e. ntp-lite). I think the biggest take-away from this is that in the very near future every 'application' will be its own container. While this has some very good merits I am not sure how I feel about it. Cautiously optimistic?
As a server admin I hate systemd and all of its hell-spawn, but as an end-user i like some of these features.
While a lot of people are jumping on the "..it wasn't encrypted.." "..FBI grabbed it while he was logged in.."
You are missing the point.
Step 1) NEVER carry incriminating evidence with you. Encrypted or not.
2) use a VPN/SSH Tunnel/etc (and/or both) to connect to the server where your data is. (make sure that server is located in a non-extraditing country, and filtered from you by a few shell companies)
3) keep an absurdly low 'idle-timeout' on your ssh sessions
4) use a dead-mans switch on that servers encrypted data
(i.e. run command "I_am_not_in_jail_yet.sh" every 15minutes.) {be more vague then this*}
5) ALWAYS assume that your local system is compromised. (boot/run from a read-only media)
6) don't brag about it! If more then 1 person knows; then your secret is not safe.
I have learned this the hard way so please take heed;
NB! most of the guides online have the syntax (order of wording) wrong for pf.conf included the beloved OBSD FAQ.
This is accurate and works on OBSD v5.6
99% of the online howto & guides will get your firewall almost working.
Use this as an example from my working pf.conf
You can spot the variables. Use 'LOG' for all of your entries and keep a "tcpdump -nettti em0 host 192.168.0.x" running while testing your setup.
Nice reference.
it always surprises me that people actively trying to avoid detection by law enforcement do so many dumb things.
This is a start!
It's this kind of thinking that will bring us closer to Vorlon tech, LEXX, or even Moya! =)
(did I miss any?)
Seriously, as others have pointed out, the most expensive valuable parts are not the airframe, but the motors/camera/radio/battery so stop the hippy-dippy crap and don't worry about making it out of biodegradable material.
But seriously, keep working/thinking in this direction.
I'm not sure if you are intentionally be obtuse or not seeing the forest for the trees.
Bitcoin allows the seller to directly receive payment from the purchaser. Whenever a seller depends on a 3rd party intermediary to pass money through then that seller becomes dependant on the whims of that third party.
In some cases that 3rd party has enough clout to enforce change that is beneficial to society. But that power can be abused easily.
Lets take an imaginary scenario:
Payment processor "Money Buddy" discovers that website "slave-labour-goods.com" is forcing children to work 23hrs a day for a nickle. "Money Buddy" tells them to stop being assholes or they will stop processing their payments.
Nobody can really argue that this forced-change is a bad thing. Now lets change the scenario to something more ambigious.
"Money Buddy" discovers that "imported-cheap-stuff.com" forces that any female employees wear a hijab. The "Money Buddy" CEO is a feminist and thinks that this is an oppressive rule. But "imported-cheap-stuff.com" is located in a country that enforces that law, and the president of the company proudly wears her Hijab during the press conference proclaiming that "Money-Buddy" is actively trying to oppress her religion and national law.
Bitcoin bypasses that middleman. If you want to support child-labour and buy your sneakers for $2 less then the competitor offers then you can. If you want to make sure your money goes directly to the people you want you can. Why allow these fat-cats to continue getting their cut when they offer no added value for their services?
Bitcoin can be an incredibly powerful tool for change in society.
This is one of the many problems that Bitcoin solves.
Easy answer, build N+1 of them and use the 'average' value of time that they generate.
One of my favourite quotes applies here:
"When you have a clock you always know what time it is. When you have two you are never quite sure." - Mark Twain.
You have obviously R'd TFS, TFA, and TFM. /.?
What are you doing on
You are too perfect an imposter. No spelling or grammar errors either. Probably some AI.
Should I refer to you as Wintermute?
I've heard a rumour that he can also smell things behind him too!
(yes I just started that rumour)
If you have a system that you can test against (i.e. a server at your work with a fatter-pipe then you have at home, or a hosted server/VPS/etc.)
iperf
run "iperf -s" on the server and "iperf -c server.ip.address" on the client.
Read the man pages for more options.
If you don't have a 'known better then you' to test against try this to test your maximum download bandwidth.
Simple test: download a large file from Microsoft (i.e. a 'network install' service pack, or similar) or other big-host
More complicated: .iso's as your target download, make sure you grab the files from *.edu sites. Schools should have a lot more bandwidth then the average .com that is hosting files.
run several (4-20) 'wget' concurrently. If you use Linux
Your ISP might have several things in place from preventing DDOS attacks from there customer machines. So each 'download' might be throttled by your ISP. If you open several download threads to different locations, downloading different things you can maximize your usage.
Also, don't download the same thing twice from the same source. Caching can/will interfere with accurate measurements.
It appears that TFS has been edited to answer my question.
Thanks.
There was a Batman TV show in the 90's?
I thought the only Batman TV show was the campy 70's version. Or are they referring to a cartoon?
SSH into your host.
from the bash prompt just paste the above string.
i.e. :;}; echo vulnerable' bash -c "echo this is a test"
user@host $env x='() {
--------------------
If you see:
vulnerable
this is a test
Then you are vulnerable and need to update your system.
If all you see is:
this is a test
Then you are ok.
=)
I too was suspicious of that fork-bomb potential. So the first time I ran it was on a test-vm.
I'm glad I am not the only paranoid one.
This is the test to see if you are vulnerable:
:;}; echo vulnerable' bash -c "echo this is a test"
env x='() {
Doesn't this sound like using an elephant gun to try to kill a fruit fly?
Very similar results with me too, although for me that effect waited until I was 35'ish.
Plural of anecdote = data?
I wonder if this will silence or encourage the separatists that want Quebec to leave Canada?
If you really want to save your data:
Step 1: make a ZFS array and save your data there.
Step 2: copy the data to single hard-drives and store them in a different location then home.
Step 3: upload a copy to some online 'cloud storage' provider.
Use checksums/md5 hashes to determine data integrity.
Based on your budget pick any of the above 3. If you are paranoid, do all 3.
The hardware is easy:
Either get a router that you can add DD-WRT/tomato to or build your own PC.
Software answer:
OS = OpenBSD
VPN = OpenVPN
BUT you are not asking the right questions.
VPN's only work when 2 ends connect. So what VPN server/client will the other end of your connection use? What are you actually trying to do? Does your work have a fat-connection that they will let you use? Are you planning on paying for VPN service from a 3rd party? Do you want to create a VPN between your home and your laptop while you travel?
If you want to build yourself a solid, dependable, 'solution' follow this guide:
http://www.bsdnow.tv/tutorials...
Which pairs taste good?
A: adenosine
C: cytosine
G: guanine
T: thymine
Tastes better to who?
Have there been any studies correlating MRI's to better memory?
And/or everybody gets an MRI as part part of your 'getting older checkups' like a colonoscapy?
I had a brain tumour, and lobectomy to remove it. my memory is kinda crappy (except for things that I deem are *VERY* important (like wifes birthday).
I want something to fix me!