I used to do a bit of work at the local police department. In my time I set them up a forensics station for PC's.
The most important part of the entire project was ensuring the data was not tampered with (or deleted on accident!) in order to actually use what was found for anything useful.
Wasn't a very hard project what we did was setup a PC with two removable bays and a write protect jumper and showed the officers which part needs to come out of PC brought in as evidence and how to put it into the removable caddy and launch the script that made an image of the drive. At no time while in police custody would the hard drive have power unless it was write protected, and was in an sealed evidence bag if not being used. Once the image was completed they would remove the original and do all the forensics on the copy, which got the same evidence bag treatment as the original.
McMurdie said the device was needed because of a record number of PCs were being seized by police and because the majority of cops don't have the skills to forensically analyse a computer."
This is the part I was hoping for clarification on. It almost sounds to me as if you feel programmers should just build off UDP to achieve what they want from TCP. Looking through your arguments it looks as if your reasoning is because most applications use TCP then have to recreate various functions of TCP to work correctly anyway. So they should just use UDP to begin with [and build the other bits in thier application]?
Sorry for reasserting this question but I'm not a real programmer (tiny personal projects and report parsers at work) or in a position where I need to know the very nitty gritty workings of all the networking layers but still find this topic very interesting, in particular these thoughts on UDP v TCP you have brought up. Mostly because they seem to be backward from what I've learned but still seem to make good sense.
Yes. Why? Are you going to dismiss the reality that all other utilities run out of capacity as well? Because every utility has run out of capacity at some point. And, they will again. The Internet is no different, other than running out of capacity is less urgent of a problem.
Because if it has happened since perhaps part of the original problem was that there weren't enough resources to begin with. If its continuing to happen perhaps its time to invest in more resources? Will you do as the ISP's have done and wait till you have maxed out your capacity several times a day then come up with an over elaborate line sharing plan for those at your office or will you increase capacity?
I'm betting on option 2, but the ISP's seem to have adopted option 1 while continuing to sell! sell! sell!
At home (NW Indiana) I have 16mbit most of my downloads run their course at around 25 (not bursting sustained through 4-8GB downloads from news.giganews.com)
Our backup wireless connection at work is 6mbit and I more-often-than-not (hopefully a grammar nazi can educate me as to when you're supposed to hyphenate a phrase) get ~13 from it.
I had to upgrade to the SSL account at giganews because comcast was throttling usenet connections as well. Even though my speeds for most things are great and above average it still pisses me off to no end when something is throttled. Why is it OK for me to saturate the connection with one protocol but not the other?
(In my case I'm speaking about Usenet. Not sure why I'm even here I despise bit torrent and wish it would just go away... )
No, you don't. A dedicated 10 Mbps link would run thousands of dollars a month (a T1, which is 1.5 each way, is ~$300 in the US) and most consumers can't swing that sort of dedicated line. Instead, you paid for a connection that is 10 Mbps maximum and you knew damn well that you would be sharing it with others in your neighborhood. How else could you rationalize paying only $60/month for faster-than-T1 level service?
Pretending that you don't understand the difference between a dedicated line and a shared line is utterly unconvincing to me.
You've never talked to anyone outside your field about anything regarding the internet have you?
Again you're making my point for me. Because TCP-level connections are not appropriate for Web browsing, various Procrustean hacks get brought into play.
Just asking a question but I don't think UDP is appropriate. How is the web browser to know if it received the right data? Isn't part of TCP making sure it received it correctly? With bit torrent you have a file on both ends that say whats expected, you don't have such a luxury when requesting web pages or many of the other examples you have given for mis-uses of TCP.
It almost sounds to me as if you feel programmers should just build off UDP to achieve what they want from TCP. Looking through your arguments it looks as if your reasoning is because most applications use TCP then have to recreate various functions of TCP to work correctly anyway. So they should just use UDP to begin with?
You require medication and dedicated professional counseling to deal with depression. A pep talk from your parents isn't going to cut it.
Odd how we've gotten along for so long without the medication and professional counseling eh? We could also as a society that if you want to kill yourself so long. If someone else doesn't want to live anymore who are you to force them to? Survival of the fittest. If your tiny brain is so unstable that you feel that the only release would be death then so long. I don't want you making any decisions that may impact the rest of us anyway.
Before anyone says, You say that now but what if your mom or sister/brother tried to commit suicide?!! HUH WHAT THEN!? My mom has been hospitalized twice for depression with several weeks of suicide watch under her belt. I've thought the above for quite some time before any of that. The first time she was hospitalized I changed my tune a bit. However after the second time I realized its just a cycle that will continue until she is gone by natural or her own power and there is really no point in fighting it. Yes we are fairly close and get along quite well, no ill will for anything.
I think s/he was implying that they already are immune or, at the very least, once they pay up the 300k and finish up their sentence they'll still be rich and can co back to sitting out in the sun with the extra cash they have saved up by being in jail and unable to spend it.
I can't tell in this case but maybe not. Most contract/break-fix shops are some level of microsoft partner. Place I used to work could do the same thing.
Being a partner has perks, for example the Microsoft action pack. A package of nearly every CD you could need to repair a Microsoft server with any Microsoft software configuration. The action pack included things like SQL Server, Exchange 5.0 - 2007, every imaginable oem/retail/vol combination of office 2003 and 2007, Vista, XP, Server 2003 and 2008, that awful proxy server/gateway/content filter/firewall software... (I've been lucky enough to forget the name but not the pain it has caused so many...)
You were also allowed free usage of any license for testing purposes, they all came with a perfectly valid and no activation required cd-key (except for office, the keys would require validation (which all conformed to the other rules; where re-installs become valid again after 6 months, 3 installs and you need to do phone validation, (which you can do any number of times without question no matter what your calling about) and the vol version expects you to use your valid volume key.
Our production equipment all required licenses as did office. For our machines we had retail copies of windows so no oem lock, and generally the first task of a new hire was to put their computer and arrange their desk/office how they see fit, so no OEM to deal with anyway...
Seems you could argue that its not the companies computer and therefore invalid or that it was for more than just merely testing but it could also be said that as an employee you are tasked with staying up on vista and have to approve patches and whatnot so it is in fact a test machine, that you happen to use full time because you need to test it...
The new Microsoft key validation isn't all as bad as its made out to be. I've never had to wait more then 2 minutes on hold. The only issues I can say I've had was when I requested the wrong key. I needed to keys and swapped which key I needed for which machine. Just had to call back and request the opp key, but that was my fault. They now allow you to try out any software they provide for 30-90 days fully functioning for free, as long as it uses the new activation system. This includes software like Exchange.
And I've only ran into one machine in all my time that had any issues activating but what really happened was spyware.. when the machine has a repair install completed (cleaning destroyed the OS) it wanted activated and would pass but would forget after any reboot. Clean reinstall fixed everything of course.
Why does everyone assume that just because we bring them back they will need to breed with others of the same species? If we're already making clones, why couldn't we just make more clones?
These things haven't been around in ages so its fairly clear we don't really need them wandering the earth. I suspect they would be cloned to live in zoo's and when one is close to dying a brand new ugly ass baby clone would be created.
Actually you are wrong. There REALLY are plenty of reasons why an employer cannot fire you.
Although all the employer needs to say to work around all those reasons is "Your services are no longer needed." Which it looks like you tried to say but couldn't quite get there without being a gigantic richard about the whole thing.
Well, I emptied mine out on the first and have come up with an average of 29 per day to my personal email account hosted by google. This account also has 4 other accounts forward to it as well as about 12 aliases.
My work account receives 5-10 external mails a day and once a week one comes through tagged as spam. No aliases, no other accounts forwarding to it. Using a local provider to facilitate spam scrubbing. They built a cluster of spam assassin servers which do a decent job.
When I used to be on the other side providing the spam scrubbing services I though gray listing was the best thing since sliced bread. Being on the other side I'm not convinced. It takes out a great deal of spam but waiting for the retry can be killer. Especially when you need a confirmation letter or such and the last time you were mailed by the domain was never or more than the filter allows for.
I guess it could be painful if you don't know how to reinstall grub or lilo from a downed box and have no way of looking up a document on how to do it.
IME, you just need to boot off your linux install media, go to the recovery mode, enter the command for your bootloader that tells it to reinstall itself to your hard disk then edit the boot list to include windows and your set. Its really nothing too complicated for someone who will be dual booting...
Its always been easier to install windows first because the linux boot loaders make setting up dual boot an automatic process (for the most part). The process to fix windows is just the same if you mess up its boot loader as well. Boot from media, recovery console, and fixboot and/or fixmbr.
When a browser requests google.com/code.js then slashdot.org/code.js (assuming code.js are the same library of code) the browser will still need to request it from slashdot. org. However if slashdot's website indicated it needed the library from google.com/code.js the browser would inject the cached version instead. This way the file is already read and processed before the request to retrieve it would have even gotten to the remote server. Unfortunately, the only methods I can think of would require an even greater overhead. The next best solution would be to provide a handful of domains offing the same type of service instead of relaying solely on google..
Everyones comments are valid if the human element is removed. In reality people don't choose a service on price alone. They also consider things like how well they like or trust the owner. In reality people will consider their local community.
I had a client who was having ongoing connectivity issues with a local wisp. We tried to get them to be done with the problems (all wireless related) and switch to comcast (rock solid in our area) and they would not simply due to the current standings with the local chamber of commerce. They instead choose to stick it out for several weeks longer than any one else would have. Eventually the wisp tracked down the issue but during those weeks they dealt with a consistent 10% packet loss.
So now that everyone has been reminded of the human element can anyone provide anything more useful than "dont do it"?
My goal is to one day open a home computer shop with some kind of basic hosting for personal email or small business web and email. I spend quit a bit of time staying up to date with apache, bind, mysql, and postfix configuration. Postfix can be easily configured for use of a database back end. Apache and Bind are both dead simple to automate. You don't need anything too fancy for this kind of thing. Small businesses do not require all types of bandwidth or server power though these other posters seem to think you want to open a data center with their talks of racks full of equipment. For what I am shooting for two boxes will be plenty. I'll load balance because the option is there but the second box is just for redundancy not computing power.
I also make use of built in components where possible , such as using the skel directories when creating a user. The skel directories contain all the separate application directories with template files. Then I awk the template replacing the template token with the specifics for the new domain. Each user account is limited to scp/sftp and is chrooted. When logging in it appears to be a full filesystem but they cannot escape their home directories. In the case of the CMS's I use symlinks to point to their chrooted user configuration files. Apache and Bind each have their own template which is awked then I simply echo a line out to the main configuration file to include it (ie: echo "include/var/bind/zones/newdomain.com" >>/etc/bind/named.conf.local) and load the new config using rndc. Apache is very similar except I use a template in/etc/apache2/sites-available then use "a2ensite newdomain" to start the new site. Lastly, the script setups up the database account, creates some databases, inserts information into the postfix database to setup their email domain and administrative account.
This adds the benefit of making disabling sites just as easy because then I can just grep -v "newdomain.com"/etc/bind/named.conf.local > named.tmp && mv named.tmp/etc/bind/named.conf.local. I can also use the built in tools like a2dissite to disable the website and simple sql queries to disable email and lastly using the built in adduser command to lock the shell account. All of this gets done with a script as well.
Learn the configuration of your services and then find the best way for you to automate the creation is my suggestion. Billing is simple, quickbooks is very cheap and is well suited for simple recurring bills for services, including late notices and all.
A few years ago one of the features of invision power boards would let you track which users have read a post. I don't remember too much about the software but iirc it would send a PM to the users you specified. Like any good forum software it could then be configured to send an email to the users registered email address when they receive an personal message. Like I said though, it's been several years but it might be a place to look.
I'm wondering when the 'NoOneInThisThreadComprehendsTheQuestion' tag will appear.
For the love of all thats good, the question is should the IT staff manage THEIR PC's? Most people are responding as if the question is asking if IT should let Susie H. R. and Tom Salesman manage theirs.
Slashdot Mirror
I used to do a bit of work at the local police department. In my time I set them up a forensics station for PC's.
The most important part of the entire project was ensuring the data was not tampered with (or deleted on accident!) in order to actually use what was found for anything useful.
Wasn't a very hard project what we did was setup a PC with two removable bays and a write protect jumper and showed the officers which part needs to come out of PC brought in as evidence and how to put it into the removable caddy and launch the script that made an image of the drive. At no time while in police custody would the hard drive have power unless it was write protected, and was in an sealed evidence bag if not being used. Once the image was completed they would remove the original and do all the forensics on the copy, which got the same evidence bag treatment as the original.
And how is this the end users problem?
points... where... troll mod is uncalled for.
Damn, you replied to the wrong questions! =P
This is the part I was hoping for clarification on.
It almost sounds to me as if you feel programmers should just build off UDP to achieve what they want from TCP. Looking through your arguments it looks as if your reasoning is because most applications use TCP then have to recreate various functions of TCP to work correctly anyway. So they should just use UDP to begin with [and build the other bits in thier application]?
Sorry for reasserting this question but I'm not a real programmer (tiny personal projects and report parsers at work) or in a position where I need to know the very nitty gritty workings of all the networking layers but still find this topic very interesting, in particular these thoughts on UDP v TCP you have brought up. Mostly because they seem to be backward from what I've learned but still seem to make good sense.
Yes. Why? Are you going to dismiss the reality that all other utilities run out of capacity as well? Because every utility has run out of capacity at some point. And, they will again. The Internet is no different, other than running out of capacity is less urgent of a problem.
Because if it has happened since perhaps part of the original problem was that there weren't enough resources to begin with. If its continuing to happen perhaps its time to invest in more resources? Will you do as the ISP's have done and wait till you have maxed out your capacity several times a day then come up with an over elaborate line sharing plan for those at your office or will you increase capacity?
I'm betting on option 2, but the ISP's seem to have adopted option 1 while continuing to sell! sell! sell!
At home (NW Indiana) I have 16mbit most of my downloads run their course at around 25 (not bursting sustained through 4-8GB downloads from news.giganews.com)
Our backup wireless connection at work is 6mbit and I more-often-than-not (hopefully a grammar nazi can educate me as to when you're supposed to hyphenate a phrase) get ~13 from it.
I had to upgrade to the SSL account at giganews because comcast was throttling usenet connections as well. Even though my speeds for most things are great and above average it still pisses me off to no end when something is throttled. Why is it OK for me to saturate the connection with one protocol but not the other?
(In my case I'm speaking about Usenet. Not sure why I'm even here I despise bit torrent and wish it would just go away... )
No, you don't. A dedicated 10 Mbps link would run thousands of dollars a month (a T1, which is 1.5 each way, is ~$300 in the US) and most consumers can't swing that sort of dedicated line. Instead, you paid for a connection that is 10 Mbps maximum and you knew damn well that you would be sharing it with others in your neighborhood. How else could you rationalize paying only $60/month for faster-than-T1 level service?
Pretending that you don't understand the difference between a dedicated line and a shared line is utterly unconvincing to me.
You've never talked to anyone outside your field about anything regarding the internet have you?
Again you're making my point for me. Because TCP-level connections are not appropriate for Web browsing, various Procrustean hacks get brought into play.
Just asking a question but I don't think UDP is appropriate. How is the web browser to know if it received the right data? Isn't part of TCP making sure it received it correctly? With bit torrent you have a file on both ends that say whats expected, you don't have such a luxury when requesting web pages or many of the other examples you have given for mis-uses of TCP.
It almost sounds to me as if you feel programmers should just build off UDP to achieve what they want from TCP. Looking through your arguments it looks as if your reasoning is because most applications use TCP then have to recreate various functions of TCP to work correctly anyway. So they should just use UDP to begin with?
You require medication and dedicated professional counseling to deal with depression. A pep talk from your parents isn't going to cut it.
Odd how we've gotten along for so long without the medication and professional counseling eh? We could also as a society that if you want to kill yourself so long. If someone else doesn't want to live anymore who are you to force them to? Survival of the fittest. If your tiny brain is so unstable that you feel that the only release would be death then so long. I don't want you making any decisions that may impact the rest of us anyway.
Before anyone says, You say that now but what if your mom or sister/brother tried to commit suicide?!! HUH WHAT THEN!? My mom has been hospitalized twice for depression with several weeks of suicide watch under her belt. I've thought the above for quite some time before any of that. The first time she was hospitalized I changed my tune a bit. However after the second time I realized its just a cycle that will continue until she is gone by natural or her own power and there is really no point in fighting it. Yes we are fairly close and get along quite well, no ill will for anything.
I didn't read it at all as they SHOULD be immune.
I think s/he was implying that they already are immune or, at the very least, once they pay up the 300k and finish up their sentence they'll still be rich and can co back to sitting out in the sun with the extra cash they have saved up by being in jail and unable to spend it.
I can't tell in this case but maybe not. Most contract/break-fix shops are some level of microsoft partner. Place I used to work could do the same thing.
Being a partner has perks, for example the Microsoft action pack. A package of nearly every CD you could need to repair a Microsoft server with any Microsoft software configuration. The action pack included things like SQL Server, Exchange 5.0 - 2007, every imaginable oem/retail/vol combination of office 2003 and 2007, Vista, XP, Server 2003 and 2008, that awful proxy server/gateway/content filter/firewall software... (I've been lucky enough to forget the name but not the pain it has caused so many...)
You were also allowed free usage of any license for testing purposes, they all came with a perfectly valid and no activation required cd-key (except for office, the keys would require validation (which all conformed to the other rules; where re-installs become valid again after 6 months, 3 installs and you need to do phone validation, (which you can do any number of times without question no matter what your calling about) and the vol version expects you to use your valid volume key.
Our production equipment all required licenses as did office. For our machines we had retail copies of windows so no oem lock, and generally the first task of a new hire was to put their computer and arrange their desk/office how they see fit, so no OEM to deal with anyway...
Seems you could argue that its not the companies computer and therefore invalid or that it was for more than just merely testing but it could also be said that as an employee you are tasked with staying up on vista and have to approve patches and whatnot so it is in fact a test machine, that you happen to use full time because you need to test it...
The new Microsoft key validation isn't all as bad as its made out to be. I've never had to wait more then 2 minutes on hold. The only issues I can say I've had was when I requested the wrong key. I needed to keys and swapped which key I needed for which machine. Just had to call back and request the opp key, but that was my fault. They now allow you to try out any software they provide for 30-90 days fully functioning for free, as long as it uses the new activation system. This includes software like Exchange.
And I've only ran into one machine in all my time that had any issues activating but what really happened was spyware.. when the machine has a repair install completed (cleaning destroyed the OS) it wanted activated and would pass but would forget after any reboot. Clean reinstall fixed everything of course.
Why does everyone assume that just because we bring them back they will need to breed with others of the same species? If we're already making clones, why couldn't we just make more clones?
These things haven't been around in ages so its fairly clear we don't really need them wandering the earth. I suspect they would be cloned to live in zoo's and when one is close to dying a brand new ugly ass baby clone would be created.
Actually you are wrong. There REALLY are plenty of reasons why an employer cannot fire you.
Although all the employer needs to say to work around all those reasons is "Your services are no longer needed." Which it looks like you tried to say but couldn't quite get there without being a gigantic richard about the whole thing.
Well, I emptied mine out on the first and have come up with an average of 29 per day to my personal email account hosted by google. This account also has 4 other accounts forward to it as well as about 12 aliases.
My work account receives 5-10 external mails a day and once a week one comes through tagged as spam. No aliases, no other accounts forwarding to it. Using a local provider to facilitate spam scrubbing. They built a cluster of spam assassin servers which do a decent job.
When I used to be on the other side providing the spam scrubbing services I though gray listing was the best thing since sliced bread. Being on the other side I'm not convinced. It takes out a great deal of spam but waiting for the retry can be killer. Especially when you need a confirmation letter or such and the last time you were mailed by the domain was never or more than the filter allows for.
I guess it could be painful if you don't know how to reinstall grub or lilo from a downed box and have no way of looking up a document on how to do it.
IME, you just need to boot off your linux install media, go to the recovery mode, enter the command for your bootloader that tells it to reinstall itself to your hard disk then edit the boot list to include windows and your set. Its really nothing too complicated for someone who will be dual booting...
Its always been easier to install windows first because the linux boot loaders make setting up dual boot an automatic process (for the most part). The process to fix windows is just the same if you mess up its boot loader as well. Boot from media, recovery console, and fixboot and/or fixmbr.
Thanks for clarifying ^^
I'm guessing DEX is short for Dextromethorphan. This is the main active in cough medicine.
Religion shouldn't exist to begin with. We'd all be better off for it.
It's just a long winded way of saying, "I'm afraid of death"
I use both firebug and IE development toolbar. I'm not sure which came first but one has clearly ripped the other off. ;)
http://www.microsoft.com/downloads/details.aspx?familyid=e59c3964-672d-4511-bb3e-2d5e1db91038&displaylang=en
Its not about size its about latency.
When a browser requests google.com/code.js then slashdot.org/code.js (assuming code.js are the same library of code) the browser will still need to request it from slashdot. org. However if slashdot's website indicated it needed the library from google.com/code.js the browser would inject the cached version instead. This way the file is already read and processed before the request to retrieve it would have even gotten to the remote server. Unfortunately, the only methods I can think of would require an even greater overhead. The next best solution would be to provide a handful of domains offing the same type of service instead of relaying solely on google..
Did you use the same set of files? Gmail has a small attachment size limit combined with a small daily file upload limit.
Everyones comments are valid if the human element is removed. In reality people don't choose a service on price alone. They also consider things like how well they like or trust the owner. In reality people will consider their local community.
/var/bind/zones/newdomain.com" >> /etc/bind/named.conf.local) and load the new config using rndc. Apache is very similar except I use a template in /etc/apache2/sites-available then use "a2ensite newdomain" to start the new site. Lastly, the script setups up the database account, creates some databases, inserts information into the postfix database to setup their email domain and administrative account.
/etc/bind/named.conf.local > named.tmp && mv named.tmp /etc/bind/named.conf.local. I can also use the built in tools like a2dissite to disable the website and simple sql queries to disable email and lastly using the built in adduser command to lock the shell account. All of this gets done with a script as well.
I had a client who was having ongoing connectivity issues with a local wisp. We tried to get them to be done with the problems (all wireless related) and switch to comcast (rock solid in our area) and they would not simply due to the current standings with the local chamber of commerce. They instead choose to stick it out for several weeks longer than any one else would have. Eventually the wisp tracked down the issue but during those weeks they dealt with a consistent 10% packet loss.
So now that everyone has been reminded of the human element can anyone provide anything more useful than "dont do it"?
My goal is to one day open a home computer shop with some kind of basic hosting for personal email or small business web and email. I spend quit a bit of time staying up to date with apache, bind, mysql, and postfix configuration. Postfix can be easily configured for use of a database back end. Apache and Bind are both dead simple to automate. You don't need anything too fancy for this kind of thing. Small businesses do not require all types of bandwidth or server power though these other posters seem to think you want to open a data center with their talks of racks full of equipment. For what I am shooting for two boxes will be plenty. I'll load balance because the option is there but the second box is just for redundancy not computing power.
I also make use of built in components where possible , such as using the skel directories when creating a user. The skel directories contain all the separate application directories with template files. Then I awk the template replacing the template token with the specifics for the new domain. Each user account is limited to scp/sftp and is chrooted. When logging in it appears to be a full filesystem but they cannot escape their home directories. In the case of the CMS's I use symlinks to point to their chrooted user configuration files. Apache and Bind each have their own template which is awked then I simply echo a line out to the main configuration file to include it (ie: echo "include
This adds the benefit of making disabling sites just as easy because then I can just grep -v "newdomain.com"
Learn the configuration of your services and then find the best way for you to automate the creation is my suggestion. Billing is simple, quickbooks is very cheap and is well suited for simple recurring bills for services, including late notices and all.
And then host it on SF! ;)
A few years ago one of the features of invision power boards would let you track which users have read a post. I don't remember too much about the software but iirc it would send a PM to the users you specified. Like any good forum software it could then be configured to send an email to the users registered email address when they receive an personal message. Like I said though, it's been several years but it might be a place to look.
I'm wondering when the 'NoOneInThisThreadComprehendsTheQuestion' tag will appear.
For the love of all thats good, the question is should the IT staff manage THEIR PC's? Most people are responding as if the question is asking if IT should let Susie H. R. and Tom Salesman manage theirs.