Actually, I prefer my x86 laptop running OpenBSD personally. But my point has nothing to do with remoting X11 apps. I don't have the bandwidth on my puny 144k dsl to do any decent X11 forwarding (using SSH compression or not - which is kinda pointless anyway considering the VPN is compressed already). Further, this doesn't help me work when I'm not network attached (ie. I'm on a train, plane, at a bookstore - incidently I tend to do some of my best work in the coffee shop at Borders *sigh*).
Let's agree to disagree. I see good uses for this laptop, I see good reasons to spend the $$$ on it (although I'm not likely to myself). And I also agree that this isn't for everyone. To each his own, we'll all use what works best for us, this just gives us another option.
Someone who just plain prefers Solaris to Linux (believe it or not, they exist)
What a fantastic marketplace! There could be... dozens of folks like that! No, really - I'm CERTAIN there are at least 30!
Is it so hard to believe that some administrators of Solaris networks don't want to learn Linux? It's NOT the same OS, why get confused with the differences if you don't have to? I'm no Sun bigot, I'm not terribly fond of the OS myself, but having to use three different unix flavors (and three different Solaris releases) each day, I can attest to the pain in the ass it is to have to context switch command syntax for every OS.
It's also quite conceivable that for the same reason you don't want to run Windows on your laptop and prefer to run Linux, they'd prefer to run Solaris on their laptop.
I'd buy one if I had either the money or my work would actually pay for it. We use Solaris quite heavily and I do a fair amount of development work. Some of which I enjoy enough to take home with me and work on at home. For that I have to VPN in and work on the code at work through SSH because I'm not about to take up the space of yet ANOTHER desktop at home. For me, it'd be extremely convenient to pull down the code via CVS to my nice SPARC laptop, take it home and work on it from anywhere in my house.
Is this right for everyone, no. Is it right for people that god forbid prefer Solaris over Linux? Yes. Is it right for someone that does work or support from home (and god knows that EVERY tech person is on call 24/7), yes.
In Chicago I'm seeing roughly 384kbps down and 128kbps up. Understanding that they're going through network changes, it's worth noting that this is significantly slower download rate than last week...change the 384kbps to KBps and you'd have the right figure. The nice thing about it (and it's likely only due to nobody using the network yet) is that ping times to both of the OC-3 connections we have at work (diff providers) are under 10ms now where previously they were around 50ms (still not bad at all).
I'm in Chicago also and after releasing my IP, removing the stupid cxxxxxx-x @home/excite remnant from my dhcp client config, I renewed and acquired a new IP address this morning. Been online for about 8 hours (at least) now...haven't had time to do speed tests yet though.
The only way he could possibly honor the DMCA now would be to _not_ provide the source code to his changes. Of course, since source code isn't written language, providing the source to the fix may not be against the law, but reading it and understanding it is. I do believe that the US and the UK have deportation treaties so if he really does have legitimate DMCA concerns he should consider this before releasing any more information to anyone. Hell, the US is happily bombing Afghanistan without any difinitive proof that bin laden is behind the 9-11 attacks and that he's even _in_ Afghanistan; what might they do to poor Alan Cox?
Oh and he's right about "US kernel developers cannot be told. Period." Sorry Linus, you can't participate in your kernel anymore, you might understand what changes were made. Hell, Linus might get tossed in jail just because he authorizes kernel releases, by authorizing the release of the source he'd be providing access to the ACL circumvention.
For those that haven't figured it out, the above is mostly sarcasm. Seriously, I don't appreciate the DMCA and can't stand Linux, but Alan has gone _way_ overboard with this one. While he's at it, he should just pull the Changelogs, who knows what laws he might be violating, it's well documented fact that linux developers have reverse engineered many hardware devices, the obscurity of which could easily be considered an access control.
Or use your local network test lab. Surely, a company of any decent size (and I can only imagine large corporations stuck on Token Ring) would have a test network that you can bring new hardware/software combinations to and get certified for use. Also, when adding new network software to your network, even though it _should_ work, calling your network support staff and informing them of it is always a good idea.
Do you have any clue how difficult and time consuming it is to rewire nearly 15,000 workstations? Most of us running Token Ring are large shops that deployed it before ethernet was a truly viable option. We were running Token Ring back when there was no such thing as an ethernet switch.
And why the hell weren't they working on it when the advisory first came out in June? They aren't doing their job if it takes an infection of this scale to make them patch this hole. And let's face it, if it took them one and a half months to get around to patching this one hole, how many others have they left unpatched? See ya around when the next worm hits. I don't have one bit of sympathy for these people, the bottom line is they weren't doing their job.
I've had better service, but it's hard to tell if it was MediaOne or AT&T at the time. When I lived in Hawaii, I had Roadrunner cable, heard all the horror stories about them and then proceeded to have _excellant_ service (after they removed their infernal authentication server). Then moved into the Chicago, IL area and had to resort to MediaOne @Home, which then turned into AT&T. Interestingly enough the IP (that I've had for almost a year now) address I'm assigned is owned by Roadrunner, go figger.
Anyways, I get service turned on, I'm nice enough to the tech that I install win98 on a spare drive to humor them when they get there and insist on only installing on Windoze. Spend 3 HOURS with the idiot while he calls support trying to get it configured and working. For some reason the modem couldn't get signal (this was my first sign of bad happenings) for 30 minutes or more. Finally, everything get's installed and working although slowly (very slowly), the tech insists that they're having problems in the neighborhood and that it was just a bad day for the install. Sure enough in two days the problems clear up and everything works just fine. About a month later, I'm having problems again, call up tech support and they claim no problems. So I troubleshoot my setup, swap cables, reboot firewall, swap NIC on firewall. Doesn't fix it. Call them back tell them it's still not working, spend an hour on the phone and finally get told "oh there's network problems in your area, it'll be fixed soon" *sigh*.
Another couple weeks go by and same shit happens again...I call them back and they make an appointment for a tech to come out. Guy comes out pokes around finds the splitter they used and tells me it's no good for a cable modem and replaces it with a good one (according to him). Things get better for a while. Then the wierd 50% packet loss shit starts happening which they insist isn't possible, I show them ping statistics and traceroute stats...finally after another month or so I get a tech out. They measure the line and find nothing wrong with it but decide to look a little further (luckily they came out during one of the days I'd have my intermittent packet loss problem). Open up the wall jack and pull out the splitter...the original techs had put me on a higher loss pole of the three way splitter. They fix it and things clear up a bit, but I'm still having problems.
Shit finally hit the fan when I come home one day and can't get on the net at all, nothing works. I call them up and they tell me that the whole area is down and that we'll be out of service for up to two WEEKS! And that they'd called me previously (uh no they didn't) to tell me that. Ever since that outage life has been _much_ better...I managed to get two months credit out of them for the shitty service. Download speeds approach 400KB/sec (with multiple downloads going), and around 14KB/sec upload (*uggh*). I've called them for smaller issues since and they insist that I don't have a valid DHCP lease; regardless my internet connection works.
I'd switch to DSL, but even though I have a CO 500 feet from me, my line comes from a CO 16,000 feet away and the best I can get is 144K SDSL, no thanks. After all I've gone through to get this cable connection reliable (and it has been for about 6 months now *knock on wood*) I'm not about to switch providers.
On a side note, anyone notice that about three hops out from your cable modem (on AT&T) they're using (and routing) RFC1918 addresses?
What ever happened to going to the local library, checking out a few CDs that you like (or hate but like one track on it) and burning a copy? I can just get it from the library for free and make my _own_ high quality mp3z (or just dupe the damn disc). Soooooooo....why isn't RIAA going after them? Cause they can't, cause it's legal (not the copying part of course:) ). Everyone in the US has better access to a library than to some l33t mp3 channel on IRC or P2P network that really requires cable or DSL to get what you want. For those that have never been to their local library for music, go there and be amazed at how many titles you can burn for free!
Heh, yeah, I was in Best Buy the other day and the guy mentioned they were getting a shipment of PS2's in the next week. When asked how many that shipment included, he said "two". 2!!!! And Sony is worried about pirating, shit, if they actually had enough units (let alone at affordable pricing) then they might have cause for concern.
Hmmm...this works if and only if they are attacking an IP address you own. What if then endpoint for the DDoS isn't a host, but the serial interface of your router? You can't stop advertising it, you don't have a choice, the data _still_ comes across the wire and you are _still_ DoS'd. Multiple routers only helps, but doesn't solve the problem.
Well, seeing that DreamCasts are in larger supply than PS2's, Iraq could build a nice little cluster of these puppies and write nuclear modeling software for it and get around trade restrictions. Right now I'd bet they can get two or three DC's for the price of one PS2.
Slashdot Mirror
Actually, I prefer my x86 laptop running OpenBSD personally. But my point has nothing to do with remoting X11 apps. I don't have the bandwidth on my puny 144k dsl to do any decent X11 forwarding (using SSH compression or not - which is kinda pointless anyway considering the VPN is compressed already). Further, this doesn't help me work when I'm not network attached (ie. I'm on a train, plane, at a bookstore - incidently I tend to do some of my best work in the coffee shop at Borders *sigh*).
Let's agree to disagree. I see good uses for this laptop, I see good reasons to spend the $$$ on it (although I'm not likely to myself). And I also agree that this isn't for everyone. To each his own, we'll all use what works best for us, this just gives us another option.
Further, there is no x86 version of Solaris 9. Sun has dropped support for Solaris x86 after purchasing Cobalt Linux.
Is it so hard to believe that some administrators of Solaris networks don't want to learn Linux? It's NOT the same OS, why get confused with the differences if you don't have to? I'm no Sun bigot, I'm not terribly fond of the OS myself, but having to use three different unix flavors (and three different Solaris releases) each day, I can attest to the pain in the ass it is to have to context switch command syntax for every OS.
It's also quite conceivable that for the same reason you don't want to run Windows on your laptop and prefer to run Linux, they'd prefer to run Solaris on their laptop.
I'd buy one if I had either the money or my work would actually pay for it. We use Solaris quite heavily and I do a fair amount of development work. Some of which I enjoy enough to take home with me and work on at home. For that I have to VPN in and work on the code at work through SSH because I'm not about to take up the space of yet ANOTHER desktop at home. For me, it'd be extremely convenient to pull down the code via CVS to my nice SPARC laptop, take it home and work on it from anywhere in my house.
Is this right for everyone, no. Is it right for people that god forbid prefer Solaris over Linux? Yes. Is it right for someone that does work or support from home (and god knows that EVERY tech person is on call 24/7), yes.
Just my two cents.
Naw, you can "turn it off" assuming you do so the same way Bin Ladin turned off the World Trade Center towers.
Since SecurityFocus is already /.'d I've mirrored the article on my site.
http://www.computersecuritynow.com/article.php?sid =192
hear hear
Exactly what I did, worked great :)
In Chicago I'm seeing roughly 384kbps down and 128kbps up. Understanding that they're going through network changes, it's worth noting that this is significantly slower download rate than last week...change the 384kbps to KBps and you'd have the right figure. The nice thing about it (and it's likely only due to nobody using the network yet) is that ping times to both of the OC-3 connections we have at work (diff providers) are under 10ms now where previously they were around 50ms (still not bad at all).
I'm in Chicago also and after releasing my IP, removing the stupid cxxxxxx-x @home/excite remnant from my dhcp client config, I renewed and acquired a new IP address this morning. Been online for about 8 hours (at least) now...haven't had time to do speed tests yet though.
The only way he could possibly honor the DMCA now would be to _not_ provide the source code to his changes. Of course, since source code isn't written language, providing the source to the fix may not be against the law, but reading it and understanding it is. I do believe that the US and the UK have deportation treaties so if he really does have legitimate DMCA concerns he should consider this before releasing any more information to anyone. Hell, the US is happily bombing Afghanistan without any difinitive proof that bin laden is behind the 9-11 attacks and that he's even _in_ Afghanistan; what might they do to poor Alan Cox?
Oh and he's right about "US kernel developers cannot be told. Period." Sorry Linus, you can't participate in your kernel anymore, you might understand what changes were made. Hell, Linus might get tossed in jail just because he authorizes kernel releases, by authorizing the release of the source he'd be providing access to the ACL circumvention.
For those that haven't figured it out, the above is mostly sarcasm. Seriously, I don't appreciate the DMCA and can't stand Linux, but Alan has gone _way_ overboard with this one. While he's at it, he should just pull the Changelogs, who knows what laws he might be violating, it's well documented fact that linux developers have reverse engineered many hardware devices, the obscurity of which could easily be considered an access control.
--Dox
Or use your local network test lab. Surely, a company of any decent size (and I can only imagine large corporations stuck on Token Ring) would have a test network that you can bring new hardware/software combinations to and get certified for use. Also, when adding new network software to your network, even though it _should_ work, calling your network support staff and informing them of it is always a good idea.
--Dox
Do you have any clue how difficult and time consuming it is to rewire nearly 15,000 workstations? Most of us running Token Ring are large shops that deployed it before ethernet was a truly viable option. We were running Token Ring back when there was no such thing as an ethernet switch.
And why the hell weren't they working on it when the advisory first came out in June? They aren't doing their job if it takes an infection of this scale to make them patch this hole. And let's face it, if it took them one and a half months to get around to patching this one hole, how many others have they left unpatched? See ya around when the next worm hits. I don't have one bit of sympathy for these people, the bottom line is they weren't doing their job.
Soooooo....if NetBSD links to Google and Google being a search engine provides a means to find ac3dec, does that still mean that NetBSD is infringing?
I've had better service, but it's hard to tell if it was MediaOne or AT&T at the time. When I lived in Hawaii, I had Roadrunner cable, heard all the horror stories about them and then proceeded to have _excellant_ service (after they removed their infernal authentication server). Then moved into the Chicago, IL area and had to resort to MediaOne @Home, which then turned into AT&T. Interestingly enough the IP (that I've had for almost a year now) address I'm assigned is owned by Roadrunner, go figger.
Anyways, I get service turned on, I'm nice enough to the tech that I install win98 on a spare drive to humor them when they get there and insist on only installing on Windoze. Spend 3 HOURS with the idiot while he calls support trying to get it configured and working. For some reason the modem couldn't get signal (this was my first sign of bad happenings) for 30 minutes or more. Finally, everything get's installed and working although slowly (very slowly), the tech insists that they're having problems in the neighborhood and that it was just a bad day for the install. Sure enough in two days the problems clear up and everything works just fine. About a month later, I'm having problems again, call up tech support and they claim no problems. So I troubleshoot my setup, swap cables, reboot firewall, swap NIC on firewall. Doesn't fix it. Call them back tell them it's still not working, spend an hour on the phone and finally get told "oh there's network problems in your area, it'll be fixed soon" *sigh*.
Another couple weeks go by and same shit happens again...I call them back and they make an appointment for a tech to come out. Guy comes out pokes around finds the splitter they used and tells me it's no good for a cable modem and replaces it with a good one (according to him). Things get better for a while. Then the wierd 50% packet loss shit starts happening which they insist isn't possible, I show them ping statistics and traceroute stats...finally after another month or so I get a tech out. They measure the line and find nothing wrong with it but decide to look a little further (luckily they came out during one of the days I'd have my intermittent packet loss problem). Open up the wall jack and pull out the splitter...the original techs had put me on a higher loss pole of the three way splitter. They fix it and things clear up a bit, but I'm still having problems.
Shit finally hit the fan when I come home one day and can't get on the net at all, nothing works. I call them up and they tell me that the whole area is down and that we'll be out of service for up to two WEEKS! And that they'd called me previously (uh no they didn't) to tell me that. Ever since that outage life has been _much_ better...I managed to get two months credit out of them for the shitty service. Download speeds approach 400KB/sec (with multiple downloads going), and around 14KB/sec upload (*uggh*). I've called them for smaller issues since and they insist that I don't have a valid DHCP lease; regardless my internet connection works.
I'd switch to DSL, but even though I have a CO 500 feet from me, my line comes from a CO 16,000 feet away and the best I can get is 144K SDSL, no thanks. After all I've gone through to get this cable connection reliable (and it has been for about 6 months now *knock on wood*) I'm not about to switch providers.
On a side note, anyone notice that about three hops out from your cable modem (on AT&T) they're using (and routing) RFC1918 addresses?
--Dox
Nah, they'd have to send a copy of deCSS with a DVD. Of course, if the Martians actually used it, then we could see our first interplanetary lawsuit.
--Dox
They do if they work for NASA :0
What ever happened to going to the local library, checking out a few CDs that you like (or hate but like one track on it) and burning a copy? I can just get it from the library for free and make my _own_ high quality mp3z (or just dupe the damn disc). Soooooooo....why isn't RIAA going after them? Cause they can't, cause it's legal (not the copying part of course :) ). Everyone in the US has better access to a library than to some l33t mp3 channel on IRC or P2P network that really requires cable or DSL to get what you want. For those that have never been to their local library for music, go there and be amazed at how many titles you can burn for free!
--Dox
Heh, yeah, I was in Best Buy the other day and the guy mentioned they were getting a shipment of PS2's in the next week. When asked how many that shipment included, he said "two". 2!!!! And Sony is worried about pirating, shit, if they actually had enough units (let alone at affordable pricing) then they might have cause for concern.
--Dox
Hmmm...now we just need a few tesla coils and we can even do away with the power cables :)
--Dox
Some of us don't have dialup ISPs anymore :)
Hmmm...this works if and only if they are attacking an IP address you own. What if then endpoint for the DDoS isn't a host, but the serial interface of your router? You can't stop advertising it, you don't have a choice, the data _still_ comes across the wire and you are _still_ DoS'd. Multiple routers only helps, but doesn't solve the problem.
Well, seeing that DreamCasts are in larger supply than PS2's, Iraq could build a nice little cluster of these puppies and write nuclear modeling software for it and get around trade restrictions. Right now I'd bet they can get two or three DC's for the price of one PS2.
I don't know about Canadian law, but in the US I believe the limit to non-taxable gift income is $9,999.00.
--Dox
Linux kernel 1.2.13 I believe had a buffer overflow in the kernel that was exploitable and was exploited.