This book isn't being published by me, so I'm not taking anybody's comments and publishing them. It's being published by Andover. I didn't select the postings in it.
Throughout this whole "saga" you've been at the forefront. Now you seem to be left out of the proverbial loop. I'm just curious why.
This book isn't being published by me, so I'm not taking anybody's comments and publishing them. It's being published by Andover. I didn't select the postings in it. I'm actually surprised at this. Throughout this whole "saga" you've been at the forefront. Now you seem to be left out of the proverbial loop. I'm just curious why. LiNT
Sometime I don't understand you people. You freely post your comments to a public forum. Then someone comes along and tries to assemble the jist of the discussion in an easily comprehendible book and you run around screaming willy-nilly? CmdrTaco and Jon already explained that _no one_ was going to be making money on this. All profits will be going to charity. Yet a year after the fact you think your comments are suddenly worth something and wish to be compensated. Get a life. If you were that protective over your comments you shouldn't have posted them in the first place. On an off note, I think it would be nice to give the charity money to an organization that in some way relates to the topic at hand. LiNT
You know, most respectable security experts I know don't hide behind some pseudonym. That's only in Hollywood.
Mudge, Route, Dildog, RainForestPuppy, etc, etc
The times I've been on gnutella I've not seen those strings. EVER. Not once. Not once in 15 minutes. Not once in 150 minutes. NOT EVER.
You must be looking at the wrong times. I've seen teen, mpg, avi, young and others many times. I've only seen *pre or preteen a couple of times, but it's still there.
I'm not trying to troll here, I just wanted to correct you on a few parts I felt were wrong
They don't let you run servers, which I understand, but technically if you follow their rules: You can't get on EFNet irc! Take a look at this motd on irc.home.com (yes, I realize there are other servers... but this is their own): "**** We will be banning non-identd users effective 11/11/99 ****" Is identd not a server? I know thats kinda stretching it, but they have all these weird rules.
I agree it's quite ironic and it pisses me off quiet a bit. What it eventually it comes down to the fact that if you want the speed, you gotta live with the rules. I'm sure excite@home is raking in the money but you also have to realize that there are a few users who are routinely pushing and pulling gig's of bandwidth a day. Even though most people aren't, these few ruin it for the rest of us. Rather than solve the problem by kicking the larger users they impose mandatory caps on all thier users cause they don't want to spend the money to police the few bad apples.
I am a user, who had read the agreement when I signed up, and I didn't learn until today that I had a 500mb upload a day limit!
If I'm correct, this is for just the news servers. I read something similar on usenet the other day and as I understood it, your only limited to uploading 500MB per day per @home newsserver. And some of the newsservers still don't have the cap, so it's not difficult to get around at all.
Oh, and if you are a Cox@Home user and want to block their scans. Download BlackIce Defender, and then block these 2 IP addresses: 24.0.94.130 (authorized-scan.security.home.net) 24.0.16.94 (lump.eos.home.net)
The first one is @home scanning for users running news servers. They started implementing this after the dreaded blacklist threat. Again, I'm fine with this one. If an home user wants to run a news server which is sucking gigs a day, let them pay for a T1 rather than stealing all my bandwidth.
I hate bieng policed just as much as anyone. But I've also realized that the few bad apples will always be ruining it for the rest of us. If @home is going to police us I'd rather that they do it right and kick the users that are running 0-day iso sites than start instituting mandatory upload caps.
I'm pretty new to OpenBSD myself. So far, I think it's the greatest OS ever.
My advice to new users would be under ideal conditions, use a seperate computer and a full hard disk. Don't try dual booting or you'll end up kicking yourself in the end. On your first install, leave out X. See how things run and get used to the OS, then install X. Start off by completely reading through the FAQ and the install walkthrough for your architecture. Finally, once you've got it installed don't forget to check man afterboot.
ahhh, I still remember my first install. I kept thinking I did something wrong because it went by so fast. 10 minutes in and out.
btw a good book on using OpenBSD for this stuff is Configuring Linux and OpenBSD Firewalls, it's like $35
I'm going to have to disagree with you on this one. While I do think the book is decent overall, I found Linux Firewalls by Robert Ziegler goes into much more detail on what exactly needs to be let in and out to get a working firewall. Even for OpenBSD I think this book will help people more in the long run. All the information in "Building Linux and OpenBSD Firewalls" as it pertains to OpenBSD is readily available in the OpenBSD FAQ and the IPFilter how-to.
Of course, I'd also recommend Orielly's Building Internet Firewalls as an excellent resource for those looking into building a firewall. Yeah, yeah, it's a little out of date but the majority of the material still stands today.
Jeez, where to start.... Welp, you can start by checking the Linux Documentation Project for the Linux Security How-to. If you'd like more, check out Security Focus for a b*ttload of security texts. If you got even more spare time, do a search on Google for "Linux Security"
As for books, Maximum Linux Security is pretty decent. It's a little more fun to read as opposed to the Orielly books which are more technical. Hacking Exposed is good but it covers cracking in general, not just Linux. There is plenty of information out there if your willing to look.
I too have been working on the same type of setup for quite awhile and have had about the same results. Forewarning, if your anything like me, the $200 you planned on spending will easily turn into $1000.
First off, the rackmount chassis. Although you made no mention about cabinets, I think it's on topic and others might be interested as well. My only advice: check Ebay. I spent months looking for EIA rails to mount in a custom desk/lan station I was building but I couldn't find them cheaper than $100 for a pair. I was so close to buying them when I found a rackmount chassis on Ebay for $150. It wasn't the prettiest but it was exactly what I wanted. $300 later and countless hours, I was sick from getting paint in my system but I had a beautiful painted rackmount cabinet. However, I'm still looking for doors:(.
The cases I'm currently still working on. For right now, I have some telescoping rails that I bought with the cabinet with some melamine screwed in between as a shelf. I religously check ebay for used rackmount cases. Do a search for rack and rackmount. The stuff seems pretty popular because it usually get's bid up pretty high.
I pretty much gave up on looking for a case to buy. They're just too damned expensive. $300 times 5 computers adds up real quick. Within the last couple of days I've been talking to a buddy who works in a metal fabrication shop. He seems to think it wouldn't be too expensive to build a _simple_ case. If you decide to go this route, consider looking at some old computer shops for some ATX cases. You can rivet in an ATX back panel to a flat piece of sheet metal perfectly. The cost alone to get that fabricated I'm sure would be at least $50. You can also get power supplies in old cases, just make sure they don't have the fan sticking out 'cause you need all the room you can get. I was lucky enough to be able to bastardize all the old computers at work here, so I got most of the complex pieces for free. I'm hoping my case will be a couple of simple folds, some riveting and I'm done.
Too make a very long story short, BE PREPARED. It's a hell of a lot of fun to build, but it gets _extremely_ expensive, _extremely_ quick. There are a lot of things you have to buy. Cabinet, cases, power supplies, new motherboards, ps/2 extension cables, moniter extension cables depending on where you moniters are, old ATX cases for parts, fans or air conditioning units to remove the heat from the rack, everything. A good place to find misc rackmount parts is Bud Industries
Everyone in my department at work got one of the Aeron chairs. Me, the department lacky even managed to steal one a few months ago. When I first saw them I thought they were the coolest thing. After using one for quite awhile I'm not that impressed.
While I'm not going to knock the chairs that much, I'm still much happier with the $200 leather executive chair I got for home. At home I squish right in without a care in the world. At work I'm constantly fidgeting and trying to find a comfortable position. I'm very pleased to have the chair at work, it's much better than something like one of those cheap kindergarten plastic chairs but overall I prefer my nice leather executive chair at home.
As far as ergonomics go, I'm not the greatest person to ask. A few years ago I fractured my back and have a hard time sitting in a "ergonomic" postion. The only relief I feel is if I slack down in my chair. The doctors have told me it's not the best thing to do, but if I try to sit right I end up with an unbearable pain after a few hours. So my opinions on the ergonomicity (is that a word?) of the chair may not suit everyone.
Anyways, if your company can afford them, I think they're great chairs, but for me, I'd certainly prefer a nice leather executive chair. Better yet, one of those leather recliners with the massager's in them, add a refrigerator, a toilet, and an mp3 player. As long as it reclines enough for me to sleep, I won't even go home.
Do you actually think these guys are gonna pay? After reading the article I could only laugh to myself. Every legal attempt that was made was laughed off by these guys! Your getting sued by AOL and you don't retain counsel??? Something tells me these guys are now living on the West Coast with new names.
Actually Freedom's out. Came out December 1st. You probably won't even read this but hey, what the hell. Anyways, check out there new site at http://www.freedom.net . It's $49.95 for 5 nyms which can be used for a year each. If you only use 1 nym you can use it for 5 years. Pretty good deal inmy opinion. And if you were a beta tester they should have sent you a release email with a promo code for 10 bucks off. I tried to order a couple of times and they're web based purchase crap was broken:-/ I called and the lady said she call me back in ten minutes, about 30 hours later I'm still waiting.
I've seen a number of comments already dealing with this subject but none have asked specifically what I want to know. As a new user to linux if anyone has a simple answer to my question, please answer
I've been wanting to try Debian for awhile now, the only thing holding me back is the tendency for Debian to fall behind by one current kernel release. With the upcoming release of pototo based on the 2.2 Kernel as well as the 2.4 kernel is Debian destined to fall behind once again? Are there any plans to adjust the release schedules or come up with a new release system to keep more up to date with the new software we're seeing more frequently?
IMO opinion most of the die hard Linux fans are faithful devotees of Debian yet they also want to be on the bleeding edge. It seems to me Debain would benefit greatly by keeping more up to date even if it was with sub-releases incorperating things such as KDE 2.0 and the 2.4 kernel. As I said before I'm releatively new to Linux and since I've had literally no experience I would not be surprised to find all of this is easily solved with dpkg or something similar. Please let me know if it can be.
Yes, packetstorm did retrieve all of the information that was stored on the Harvard server. The new packetstorm is run by the Kroll-O'Gara security group and can be found at: http://www.packetstorm.securify.com
No one is saying Toshiba or other computer manufacturers shouldn't be punished for faulty equipment. WE are saying that a $2,000,000,000 settlement of which the lawyers recieve the majority of the money is unfair. Did you also read the part about the plaintifs not even _owning_ a Toshiba laptop?
Slashdot Mirror
This book isn't being published by me, so I'm not taking anybody's comments and publishing them. It's being published by Andover. I didn't select the postings in it.
Throughout this whole "saga" you've been at the forefront. Now you seem to be left out of the proverbial loop. I'm just curious why.
LiNT
This book isn't being published by me, so I'm not taking anybody's comments and publishing them. It's being published by Andover. I didn't select the postings in it. I'm actually surprised at this. Throughout this whole "saga" you've been at the forefront. Now you seem to be left out of the proverbial loop. I'm just curious why. LiNT
Sometime I don't understand you people. You freely post your comments to a public forum. Then someone comes along and tries to assemble the jist of the discussion in an easily comprehendible book and you run around screaming willy-nilly? CmdrTaco and Jon already explained that _no one_ was going to be making money on this. All profits will be going to charity. Yet a year after the fact you think your comments are suddenly worth something and wish to be compensated. Get a life. If you were that protective over your comments you shouldn't have posted them in the first place. On an off note, I think it would be nice to give the charity money to an organization that in some way relates to the topic at hand. LiNT
Well I do applaud you for voicing your opinion.
You know, most respectable security experts I know don't hide behind some pseudonym. That's only in Hollywood.
Mudge, Route, Dildog, RainForestPuppy, etc, etc
The times I've been on gnutella I've not seen those strings. EVER. Not once. Not once in 15 minutes. Not once in 150 minutes. NOT EVER.
You must be looking at the wrong times. I've seen teen, mpg, avi, young and others many times. I've only seen *pre or preteen a couple of times, but it's still there.
I'm not trying to troll here, I just wanted to correct you on a few parts I felt were wrong
LiNTThey don't let you run servers, which I understand, but technically if you follow their rules: You can't get on EFNet irc! Take a look at this motd on irc.home.com (yes, I realize there are other servers... but this is their own): "**** We will be banning non-identd users effective 11/11/99 ****" Is identd not a server? I know thats kinda stretching it, but they have all these weird rules.
I agree it's quite ironic and it pisses me off quiet a bit. What it eventually it comes down to the fact that if you want the speed, you gotta live with the rules. I'm sure excite@home is raking in the money but you also have to realize that there are a few users who are routinely pushing and pulling gig's of bandwidth a day. Even though most people aren't, these few ruin it for the rest of us. Rather than solve the problem by kicking the larger users they impose mandatory caps on all thier users cause they don't want to spend the money to police the few bad apples.
I am a user, who had read the agreement when I signed up, and I didn't learn until today that I had a 500mb upload a day limit!
If I'm correct, this is for just the news servers. I read something similar on usenet the other day and as I understood it, your only limited to uploading 500MB per day per @home newsserver. And some of the newsservers still don't have the cap, so it's not difficult to get around at all.
Oh, and if you are a Cox@Home user and want to block their scans. Download BlackIce Defender, and then block these 2 IP addresses: 24.0.94.130 (authorized-scan.security.home.net) 24.0.16.94 (lump.eos.home.net)
The first one is @home scanning for users running news servers. They started implementing this after the dreaded blacklist threat. Again, I'm fine with this one. If an home user wants to run a news server which is sucking gigs a day, let them pay for a T1 rather than stealing all my bandwidth.
I hate bieng policed just as much as anyone. But I've also realized that the few bad apples will always be ruining it for the rest of us. If @home is going to police us I'd rather that they do it right and kick the users that are running 0-day iso sites than start instituting mandatory upload caps.
LiNT
I'm pretty new to OpenBSD myself. So far, I think it's the greatest OS ever.
My advice to new users would be under ideal conditions, use a seperate computer and a full hard disk. Don't try dual booting or you'll end up kicking yourself in the end. On your first install, leave out X. See how things run and get used to the OS, then install X. Start off by completely reading through the FAQ and the install walkthrough for your architecture. Finally, once you've got it installed don't forget to check man afterboot.
ahhh, I still remember my first install. I kept thinking I did something wrong because it went by so fast. 10 minutes in and out.
LiNT
I'm going to have to disagree with you on this one. While I do think the book is decent overall, I found Linux Firewalls by Robert Ziegler goes into much more detail on what exactly needs to be let in and out to get a working firewall. Even for OpenBSD I think this book will help people more in the long run. All the information in "Building Linux and OpenBSD Firewalls" as it pertains to OpenBSD is readily available in the OpenBSD FAQ and the IPFilter how-to.
Of course, I'd also recommend Orielly's Building Internet Firewalls as an excellent resource for those looking into building a firewall. Yeah, yeah, it's a little out of date but the majority of the material still stands today.
LiNT
Jeez, where to start.... Welp, you can start by checking the Linux Documentation Project for the Linux Security How-to. If you'd like more, check out Security Focus for a b*ttload of security texts. If you got even more spare time, do a search on Google for "Linux Security"
As for books, Maximum Linux Security is pretty decent. It's a little more fun to read as opposed to the Orielly books which are more technical. Hacking Exposed is good but it covers cracking in general, not just Linux. There is plenty of information out there if your willing to look.
Good Luck
LiNT
I too have been working on the same type of setup for quite awhile and have had about the same results. Forewarning, if your anything like me, the $200 you planned on spending will easily turn into $1000.
First off, the rackmount chassis. Although you made no mention about cabinets, I think it's on topic and others might be interested as well. My only advice: check Ebay. I spent months looking for EIA rails to mount in a custom desk/lan station I was building but I couldn't find them cheaper than $100 for a pair. I was so close to buying them when I found a rackmount chassis on Ebay for $150. It wasn't the prettiest but it was exactly what I wanted. $300 later and countless hours, I was sick from getting paint in my system but I had a beautiful painted rackmount cabinet. However, I'm still looking for doors :( .
The cases I'm currently still working on. For right now, I have some telescoping rails that I bought with the cabinet with some melamine screwed in between as a shelf. I religously check ebay for used rackmount cases. Do a search for rack and rackmount. The stuff seems pretty popular because it usually get's bid up pretty high.
I pretty much gave up on looking for a case to buy. They're just too damned expensive. $300 times 5 computers adds up real quick. Within the last couple of days I've been talking to a buddy who works in a metal fabrication shop. He seems to think it wouldn't be too expensive to build a _simple_ case. If you decide to go this route, consider looking at some old computer shops for some ATX cases. You can rivet in an ATX back panel to a flat piece of sheet metal perfectly. The cost alone to get that fabricated I'm sure would be at least $50. You can also get power supplies in old cases, just make sure they don't have the fan sticking out 'cause you need all the room you can get. I was lucky enough to be able to bastardize all the old computers at work here, so I got most of the complex pieces for free. I'm hoping my case will be a couple of simple folds, some riveting and I'm done.
Too make a very long story short, BE PREPARED. It's a hell of a lot of fun to build, but it gets _extremely_ expensive, _extremely_ quick. There are a lot of things you have to buy. Cabinet, cases, power supplies, new motherboards, ps/2 extension cables, moniter extension cables depending on where you moniters are, old ATX cases for parts, fans or air conditioning units to remove the heat from the rack, everything. A good place to find misc rackmount parts is Bud Industries
Have fun and good luck!!
See above
Everyone in my department at work got one of the Aeron chairs. Me, the department lacky even managed to steal one a few months ago. When I first saw them I thought they were the coolest thing. After using one for quite awhile I'm not that impressed.
While I'm not going to knock the chairs that much, I'm still much happier with the $200 leather executive chair I got for home. At home I squish right in without a care in the world. At work I'm constantly fidgeting and trying to find a comfortable position. I'm very pleased to have the chair at work, it's much better than something like one of those cheap kindergarten plastic chairs but overall I prefer my nice leather executive chair at home.
As far as ergonomics go, I'm not the greatest person to ask. A few years ago I fractured my back and have a hard time sitting in a "ergonomic" postion. The only relief I feel is if I slack down in my chair. The doctors have told me it's not the best thing to do, but if I try to sit right I end up with an unbearable pain after a few hours. So my opinions on the ergonomicity (is that a word?) of the chair may not suit everyone.
Anyways, if your company can afford them, I think they're great chairs, but for me, I'd certainly prefer a nice leather executive chair. Better yet, one of those leather recliners with the massager's in them, add a refrigerator, a toilet, and an mp3 player. As long as it reclines enough for me to sleep, I won't even go home.
LiNT
Do you actually think these guys are gonna pay? After reading the article I could only laugh to myself. Every legal attempt that was made was laughed off by these guys! Your getting sued by AOL and you don't retain counsel??? Something tells me these guys are now living on the West Coast with new names.
Actually Freedom's out. Came out December 1st. You probably won't even read this but hey, what the hell. Anyways, check out there new site at http://www.freedom.net . It's $49.95 for 5 nyms which can be used for a year each. If you only use 1 nym you can use it for 5 years. Pretty good deal inmy opinion. And if you were a beta tester they should have sent you a release email with a promo code for 10 bucks off. I tried to order a couple of times and they're web based purchase crap was broken :-/ I called and the lady said she call me back in ten minutes, about 30 hours later I'm still waiting.
Heh, I'm surprised they didn't buy www.eBusiness.com, that would have guaranteed them at least another 10 million in venture capital.
I've seen a number of comments already dealing with this subject but none have asked specifically what I want to know. As a new user to linux if anyone has a simple answer to my question, please answer
I've been wanting to try Debian for awhile now, the only thing holding me back is the tendency for Debian to fall behind by one current kernel release. With the upcoming release of pototo based on the 2.2 Kernel as well as the 2.4 kernel is Debian destined to fall behind once again? Are there any plans to adjust the release schedules or come up with a new release system to keep more up to date with the new software we're seeing more frequently?
IMO opinion most of the die hard Linux fans are faithful devotees of Debian yet they also want to be on the bleeding edge. It seems to me Debain would benefit greatly by keeping more up to date even if it was with sub-releases incorperating things such as KDE 2.0 and the 2.4 kernel. As I said before I'm releatively new to Linux and since I've had literally no experience I would not be surprised to find all of this is easily solved with dpkg or something similar. Please let me know if it can be.
LiNT
Yes, packetstorm did retrieve all of the information that was stored on the Harvard server. The new packetstorm is run by the Kroll-O'Gara security group and can be found at: http://www.packetstorm.securify.com
No one is saying Toshiba or other computer manufacturers shouldn't be punished for faulty equipment. WE are saying that a $2,000,000,000 settlement of which the lawyers recieve the majority of the money is unfair. Did you also read the part about the plaintifs not even _owning_ a Toshiba laptop?