Yeah, ofcourse. It's obviously so much easier to get all your fellow terrorists into a closed child-porn ring in order to exchange messages via steganography than to just install FireGPG and use any friggin' public message board, usenet or, *gasp*, e-mail.
Seriously, how brain damaged do you have to be to buy into such bullshit?
Ehm, isn't islam the religion where they constantly doodle off their disharmonic sing-sang? Even through loudspeakers, at 5 in the morning, etc.? These guys are seriously nuts.
Let me refer you to my other post. I don't know what software you used but with any half-decent product (TrueCrypt would be the main contender on windows, iirc) you'll be hard-pressed to even measure a slowdown. Much less actually have a human notice it under a normal workload.
Could it be that your machines were simply overloaded with the usual antivirus crapware, low on RAM and swapping to death?
What kind of CPU are you using that you can even measure a slowdown? Anything above 1GHZ should be able to perform transparent encryption without breaking a sweat.
For reference: My Athlon64 3500+, which is a few years old now, encrypts AES-256 at roughly 80MB/s. Most harddrives can't even burst at that rate, much less sustain it. Furthermore, for full-disk encryption you'll often use a less CPU intensive algorithm such as blowfish.
Thus, unless your CPU is completely saturated by something else (very unlikely in an office scenario), there is absolutely no difference in latency or throughput, whether you run with encryption on or off.
If you think dealing with encryption won't waste $50/mo of each employees productivity, you're mistaken
Bullshit. Encryption can and should be transparent to the employee. He enters his password, as he always does, and doesn't even need to know that his data is encrypted. Yes, encryption puts a small burden on the admin. But usually only once or, at worst, once per workstation. So, where exactly are $50/month wasted per employee here?
Ehm, people will just slack off those 2 minutes in other ways. For example by chatting around the coffee-maker. Boosting productivity by shaving *minutes* off of a workflow (especially a once-a-day one) is a myth.
Premature optimization in business processes is just as harmful as it is in computing. Try to optimize tasks that amount to hours of overhead each day first - then look after the 2 minute thingies.
The most common sources of overhead in modern organizations are, still, unclear communication-paths and dependencies. Those imaginary 10 hours are very likely wasted in *your* company every day (or even every hour in big companies) only because processes are not properly decoupled. You know, A is waiting for B and C is waiting for A. People just love excuses and "I'm waiting for X" is so much better of an excuse for not getting shit done than "I had to wait for computer to boot".
Also see: Chain of Blame and The mythical man month
Well, *if* those figures are real then I guess I should reconsider my career path. $400k a month, heck, only $10k a month is a whole lot of dough for running a few shell-scripts...
Well, the fine makes that $400k/month figure look all the more dubious. Smells like a sensationalist headline to me, maybe the NYT added a 0 or two?
I mean, if they really made $400k a month then why would a judge - who deems them guilty - set such a ridiculous fine?
Also please ponder for a second how much $400.000 dollars really is. Let's assume the average viagra victim pays $20 for his fix. Let's further assume they never actually send out any boxes, thus turnover equals profit. That still means they had no less than 20.000 "customers" a month, every month.
I mean, we all know that there are lots and lots of stupid people on this planet. But 20000 a month? A credit card cashflow of ~400k monthly without drawing attention from the feds for years?
Ehm, that UI is a joke, right? I mean, otherwise it looks like someone tried really, really hard here - and failed completely.
Re:This is a huge amount of work
on
Linux 2.6.27 Out
·
· Score: 1
apparently, two programmers using this technique are more than twice as productive as a single programmer.
That's nothing. Once you pick up AGILE strategies and switch to SCRUM methologies all your developers will suddenly become 400% as effective and introduce 99% less bugs to your codebase - overnight! Better yet, once you're truly AGILE you can boost your productivity even more by implementing advanced team models, such as hourly workplace-rotation. Mary from accounting should swap seats with Bob the Database Administrator multiple times a day for maximum productivity and best results in both business areas.
And the best of it all? You can do all of this right now. You don't need the slightest clue about programming or people management, heck, you don't even need a highschool-degree.
All you have to do is buy my latest book-series: "AGILE for mouthbreathers", "How to build a billion dollar internet-startup in only two SCRUM iterations" and "Why using different colors for SCRUM cards really matters". I strongly suggest to buy multiple copies, at least two for each of your team members (keeping backups is important).
Oh, sh*t and it gets even better! To top it all off: You don't even have to *read* the books! Now, how amazing is that? All you have to do is memorize as many of the acronyms from the index as you can [ed. cheatsheets allowed during the first two weeks of adoption] and then announce them randomly during any of your future meetings. Overall business success will improve instantly.
PS: While you're buying the books please consider our amazing collection of T-Shirts, Mugs and Posters, too. Studies have shown that developers wearing AGILE merchandise in the workplace are, on average, 50% more productive.
Blech, nagios is probably the most disgusting hack currently in wide use. It was overdue for a complete rewrite after Nagios2 - but nagios hackers don't seem to have any pain treshold. Nowadays it's not even funny anymore. Nagios has gone *way* over its expiration date. The closest analogy would be a pot of milk that has been sitting in direct sunlight for 6 months straight...
I strongly suggest that anyone looking for a monitoring solution stays away from the dead horse and looks at the modern alternatives first. There are plenty: Munin, Cacti, Zenoss, Pandora, OpenNMS, just to name a few.
Most importantly: Take your time before you decide and evaluate thoroughly. A monitoring solution will stick with you for a long time and migrating to a different software is usually a very painful process. Which, btw, is the main reason why so many sites still ride the dead horse...
I'm not going to get into the myriad ways that this is absurd and impossible
Ehm, and since when has that stopped the casemodder and overclocker crowd? Note that he never said that such a setup would actually work. He only said that somebody will be stupid enough to try it...
Well, these "valuable oldtimers" are a rare exception. Yes, I have met them, too. Ofcourse your "Mary in accounting" (who is probably in her 40s these days) should *not* be laid off. I'm talking about those Jane's and Bob's in their 30s or 20s(!) whose reluctance to pick up even basic computer skills often reflects their general attitude towards work.
You can usually tell how good someone is in their profession just by looking at how they use their tools. A good accountant will probably blaze through Excel sheets at a pace that makes your head spin. A good sales-guy will juggle his outlook and Blackberry in a way that makes them look like capable tools. Nobody who has mastered their tool of choice (which all happen to live on a PC-screen nowadays) would be seriously confused by a "missing blue e".
Well, to every rule there are exceptions. Yes, there may be a few senior members that *do* add value despite their lack of computer skills, e.g. by being the CEO or by "knowing people". But training the VP of a department on a new computer system should really be the least of your worries, these people commonly either pick up stuff really fast or have secretaries anyways. The keyword is few here. I was talking about the majority of non-skilled workers where nobody knows "why on earth they were hired in first place".
I know these people and I have always wondered how anyone so computer-illiterate could add any productivity to any business. After plenty of observation the answer more often than not was: They don't.
Thus the solution to your concern is really simple: Fire the person who cannot work when "the blue e has moved" and fill the position with someone who can.
Meh, of all things did you have to choose oracle for your counter-example?
They have pretty much lost the low-end and midrange to Postgres and MySQL already (guess why they bought the dolphin?) and are struggling even in the high-end. Just as you say, there are really not so many differentiating features between oracle and postgres anymore.
I really don't understand why people keep making excuses like that. Yes, ofcourse someone screwed up (intentional or not) and that someone was a human.
Processes, and especially security processes, exist to prevent that very situation.
Why was the process of trashing the equipment not properly monitored? How can it happen that a critical device goes out of the inventory without a supervised cleansweep? Why did nobody feel responsible for signing off the now missing hardware?
Well, obviously because nothing of that was part of the process. Probably because no process exists in first place. If there had been a process then they would have announced the device as stolen, not "gone missing".
That said, most cloud services today ARE very expensive. EC2, for example, can be trivially beaten with managed hosting, and in some cases totally crushed by maintaining your own servers.
I call myth. Cloud providers benefit heavily from economies of scale which is something that you as a little startup simply can't. On Amazon you can run a "midrange" server (i.e. ec2 large-instance) with plenty of traffic and a few hundred gigs of persistent storage for roughly $350/month. That is pretty close the amount that elsewhere you'll pay monthly for some empty rackspace and a bit of traffic without a single server in it.
As a rule of thumb you may assume circa $300/month for each additional server on amazon. Without upfront hardware-costs, without maintenance costs (as in fixing and replacing stuff if it's your own hardware), and with a provisioning-latency that is really hard to beat.
Yes, amazon is not "cheap" by any means. But it cannot be "trivially beaten" either.
Well, yes that's probably the exact lame excuse that they will make.
In reality security is a process and their processes are obviously broken. No person (no matter whether it is the one who set up their network or not) should be allowed to just go pick up a router and sell it on eBay. If they feel a need to cash in on their old hardware then there must be a clear process for that which includes "make really sure that all sensitive data is wiped from any device you intend to sell".
Anyways, what happened here is likely the same old story:
Clueless-Bob asks Clueless-Joe: "Hey, what do we do with this old router?" Clueless-Joe: "No idea, just give it to secretary Jane and tell her to get rid of it anyhow"
The bittersweet ending is usually that if someone gets fired over this then it will be Jane. Not Bob, not Joe, and most certainly not their supervisors who are responsible for the broken/missing processes in first place.
Well, given how carelessly they treat their first layer of defense (VPN access) I wouldn't put much confidence in their other layers (if any) either. This whole story just screams INCOMPETENCE in bold and all caps. I doubt very much that the same people who are stupid enough to sell critical hardware on eBay are in any way capable of maintaining a secure network, even if their life depended on it.
Slashdot Mirror
Yeah, ofcourse. It's obviously so much easier to get all your fellow terrorists into a closed child-porn ring in order to exchange messages via steganography than to just install FireGPG and use any friggin' public message board, usenet or, *gasp*, e-mail.
Seriously, how brain damaged do you have to be to buy into such bullshit?
Ehm, isn't islam the religion where they constantly doodle off their disharmonic sing-sang? Even through loudspeakers, at 5 in the morning, etc.?
These guys are seriously nuts.
Doh, who is that fatwa? Can I hire her for a job?
Well, then your admins are incompetent.
Let me refer you to my other post.
I don't know what software you used but with any half-decent product (TrueCrypt would be the main contender on windows, iirc) you'll be hard-pressed to even measure a slowdown. Much less actually have a human notice it under a normal workload.
Could it be that your machines were simply overloaded with the usual antivirus crapware, low on RAM and swapping to death?
What kind of CPU are you using that you can even measure a slowdown?
Anything above 1GHZ should be able to perform transparent encryption without breaking a sweat.
For reference: My Athlon64 3500+, which is a few years old now, encrypts AES-256 at roughly 80MB/s.
Most harddrives can't even burst at that rate, much less sustain it. Furthermore, for full-disk encryption you'll often use a less CPU intensive algorithm such as blowfish.
Thus, unless your CPU is completely saturated by something else (very unlikely in an office scenario), there is absolutely no difference in latency or throughput, whether you run with encryption on or off.
Bullshit. Encryption can and should be transparent to the employee. He enters his password, as he always does, and doesn't even need to know that his data is encrypted. Yes, encryption puts a small burden on the admin. But usually only once or, at worst, once per workstation. So, where exactly are $50/month wasted per employee here?
Where do I sign up? And do I get to choose hair-color and such?
Ehm, people will just slack off those 2 minutes in other ways. For example by chatting around the coffee-maker.
Boosting productivity by shaving *minutes* off of a workflow (especially a once-a-day one) is a myth.
Premature optimization in business processes is just as harmful as it is in computing.
Try to optimize tasks that amount to hours of overhead each day first - then look after the 2 minute thingies.
The most common sources of overhead in modern organizations are, still, unclear communication-paths and dependencies.
Those imaginary 10 hours are very likely wasted in *your* company every day (or even every hour in big companies) only because processes are not properly decoupled. You know, A is waiting for B and C is waiting for A. People just love excuses and "I'm waiting for X" is so much better of an excuse for not getting shit done than "I had to wait for computer to boot".
Also see: Chain of Blame and The mythical man month
Huh, windows vista is still 32bit?
Didn't know that. Boggles the mind anyhow.
All my linux machines have been 64bit for years...
My faith in mankind is sinking rapidly...
Well, *if* those figures are real then I guess I should reconsider my career path.
$400k a month, heck, only $10k a month is a whole lot of dough for running a few shell-scripts...
Well, the fine makes that $400k/month figure look all the more dubious.
Smells like a sensationalist headline to me, maybe the NYT added a 0 or two?
I mean, if they really made $400k a month then why would a judge - who deems them guilty - set such a ridiculous fine?
Also please ponder for a second how much $400.000 dollars really is. Let's assume the average viagra victim pays $20 for his fix. Let's further assume they never actually send out any boxes, thus turnover equals profit. That still means they had no less than 20.000 "customers" a month, every month.
I mean, we all know that there are lots and lots of stupid people on this planet. But 20000 a month? A credit card cashflow of ~400k monthly without drawing attention from the feds for years?
Ehm, that UI is a joke, right?
I mean, otherwise it looks like someone tried really, really hard here - and failed completely.
That's nothing. Once you pick up AGILE strategies and switch to SCRUM methologies all your developers will suddenly become 400% as effective and introduce 99% less bugs to your codebase - overnight!
Better yet, once you're truly AGILE you can boost your productivity even more by implementing advanced team models, such as hourly workplace-rotation. Mary from accounting should swap seats with Bob the Database Administrator multiple times a day for maximum productivity and best results in both business areas.
And the best of it all? You can do all of this right now. You don't need the slightest clue about programming or people management, heck, you don't even need a highschool-degree.
All you have to do is buy my latest book-series: "AGILE for mouthbreathers", "How to build a billion dollar internet-startup in only two SCRUM iterations" and "Why using different colors for SCRUM cards really matters". I strongly suggest to buy multiple copies, at least two for each of your team members (keeping backups is important).
Oh, sh*t and it gets even better!
To top it all off: You don't even have to *read* the books! Now, how amazing is that?
All you have to do is memorize as many of the acronyms from the index as you can [ed. cheatsheets allowed during the first two weeks of adoption] and then announce them randomly during any of your future meetings. Overall business success will improve instantly.
PS: While you're buying the books please consider our amazing collection of T-Shirts, Mugs and Posters, too. Studies have shown that developers wearing AGILE merchandise in the workplace are, on average, 50% more productive.
Blech, nagios is probably the most disgusting hack currently in wide use. It was overdue for a complete rewrite after Nagios2 - but nagios hackers don't seem to have any pain treshold. Nowadays it's not even funny anymore. Nagios has gone *way* over its expiration date. The closest analogy would be a pot of milk that has been sitting in direct sunlight for 6 months straight...
I strongly suggest that anyone looking for a monitoring solution stays away from the dead horse and looks at the modern alternatives first. There are plenty: Munin, Cacti, Zenoss, Pandora, OpenNMS, just to name a few.
Most importantly: Take your time before you decide and evaluate thoroughly. A monitoring solution will stick with you for a long time and migrating to a different software is usually a very painful process. Which, btw, is the main reason why so many sites still ride the dead horse...
Ehm, and since when has that stopped the casemodder and overclocker crowd? Note that he never said that such a setup would actually work. He only said that somebody will be stupid enough to try it...
Well, these "valuable oldtimers" are a rare exception. Yes, I have met them, too. Ofcourse your "Mary in accounting" (who is probably in her 40s these days) should *not* be laid off.
I'm talking about those Jane's and Bob's in their 30s or 20s(!) whose reluctance to pick up even basic computer skills often reflects their general attitude towards work.
You can usually tell how good someone is in their profession just by looking at how they use their tools. A good accountant will probably blaze through Excel sheets at a pace that makes your head spin. A good sales-guy will juggle his outlook and Blackberry in a way that makes them look like capable tools. Nobody who has mastered their tool of choice (which all happen to live on a PC-screen nowadays) would be seriously confused by a "missing blue e".
Python!
Well, to every rule there are exceptions. Yes, there may be a few senior members that *do* add value despite their lack of computer skills, e.g. by being the CEO or by "knowing people". But training the VP of a department on a new computer system should really be the least of your worries, these people commonly either pick up stuff really fast or have secretaries anyways. The keyword is few here. I was talking about the majority of non-skilled workers where nobody knows "why on earth they were hired in first place".
I know these people and I have always wondered how anyone so computer-illiterate could add any productivity to any business.
After plenty of observation the answer more often than not was: They don't.
Thus the solution to your concern is really simple: Fire the person who cannot work when "the blue e has moved" and fill the position with someone who can.
Meh, of all things did you have to choose oracle for your counter-example?
They have pretty much lost the low-end and midrange to Postgres and MySQL already (guess why they bought the dolphin?) and are struggling even in the high-end. Just as you say, there are really not so many differentiating features between oracle and postgres anymore.
Amen. Furthermore remember that gambling even without a stake is illegal in many states of the USA. Think about it...
I really don't understand why people keep making excuses like that.
Yes, ofcourse someone screwed up (intentional or not) and that someone was a human.
Processes, and especially security processes, exist to prevent that very situation.
Why was the process of trashing the equipment not properly monitored?
How can it happen that a critical device goes out of the inventory without a supervised cleansweep?
Why did nobody feel responsible for signing off the now missing hardware?
Well, obviously because nothing of that was part of the process. Probably because no process exists in first place. If there had been a process then they would have announced the device as stolen, not "gone missing".
I call myth. Cloud providers benefit heavily from economies of scale which is something that you as a little startup simply can't. On Amazon you can run a "midrange" server (i.e. ec2 large-instance) with plenty of traffic and a few hundred gigs of persistent storage for roughly $350/month. That is pretty close the amount that elsewhere you'll pay monthly for some empty rackspace and a bit of traffic without a single server in it.
As a rule of thumb you may assume circa $300/month for each additional server on amazon. Without upfront hardware-costs, without maintenance costs (as in fixing and replacing stuff if it's your own hardware), and with a provisioning-latency that is really hard to beat.
Yes, amazon is not "cheap" by any means. But it cannot be "trivially beaten" either.
Well, yes that's probably the exact lame excuse that they will make.
In reality security is a process and their processes are obviously broken. No person (no matter whether it is the one who set up their network or not) should be allowed to just go pick up a router and sell it on eBay. If they feel a need to cash in on their old hardware then there must be a clear process for that which includes "make really sure that all sensitive data is wiped from any device you intend to sell".
Anyways, what happened here is likely the same old story:
Clueless-Bob asks Clueless-Joe: "Hey, what do we do with this old router?"
Clueless-Joe: "No idea, just give it to secretary Jane and tell her to get rid of it anyhow"
The bittersweet ending is usually that if someone gets fired over this then it will be Jane. Not Bob, not Joe, and most certainly not their supervisors who are responsible for the broken/missing processes in first place.
Well, given how carelessly they treat their first layer of defense (VPN access) I wouldn't put much confidence in their other layers (if any) either. This whole story just screams INCOMPETENCE in bold and all caps. I doubt very much that the same people who are stupid enough to sell critical hardware on eBay are in any way capable of maintaining a secure network, even if their life depended on it.