I also have a triple headed machine at home with a Geforce2 and older matrox cards. I agree with your advice about keeping the cards separate.
If you want a 3 head machine for cheap, I'd reccommend getting Matrox Millenium II PCI cards ($20 on ebay). You can stick up to 4 of them in one machine. I have an AGP Geforce2 as my center display, and use that for games. The Mellenium IIs are plenty enough for stuff like xterms and web browser windows, and the geforce card runs games well. It was all surprisingly easy to get working.
I dual boot linux and XP, both OSses support the display set up fine. XP acts kind of bizarre when you start a game on the center display and it changes resolutions though.
If anyone wants my XF86Config file I'd be happy to post it.
To confirm your belief about running separate X servers on each display: yes that is possible, I've done it before. Its a good way to get everything debugged as you're getting it all configured. The problem with separate X servers is that they would be conflicting for your input devices. A better way would be to use 1 X server, but configure it for multiple displays. Each display will be separate and will have its own minor display number (:0.0,:0.1,:0.2) and can be at separate resolutions/refresh rates. The mouse can be moved across displays and keyboard input will follow mouse focus. However with separate displays, you can't do things like drag windows across monitors. Its better to use Xinerama, which makes them all into one big display. Enlightenment works well with multi heads.
How stupid. You typed Jabber into Google and copied and pasted most of the first 20 links. In EXACT SAME ORDER too, with the exception of that oreilly link... LOL.
You might want to check out the CODA Filesystem. Its a secure network filesystem like AFS and it has transparent replication support for offline access. Also, there's AFS, but that doesn't provide offline access, but I believe it supports more operating systems than CODA is currently ported to.
One thing this article doesn't really talk about is the difference between online and offline password cracking. Online passowrd cracking means you are asking another computer (a server) if your password guess is correct - only the server can tell you if the password is correct. In offline cracking you don't need the cooperation of the server - you can try every possible combination and determine if a guess is correct without the help of the server.
Obviously there's a big difference. Online password cracking can be easily defeated - just lock the account out after a certain number of tries. The attack they performed in this article was an offline password crack.
The article says it would take 13 years for the fastest pentium 4 to run through all 8 character possible passwords. But how long would it take an easily affordable cluster of them? A cracker could use trojaned machines out there to search a portion of the keyspace. Or just recruit workstations at your job or school to help. Or easier yet, just rent a bunch of fast servers for a month or two from one of those managed colo places like rackspace.
Bottom line is, the average human cannot be expected to remember a password that is insusceptible to offline cracking. That's what real crypto keys are for, and is why passwords should not be trusted as crypto keys or in any situation where an offline attack could be performed on them.
Piracy does hurt everyone. When someone forcibly boards a ship on the high seas, rapes all women on baord, murders the crew, steals their cargo and burns their ship into the sea (possibly with people still alive on board), its a horrible thing.
On the other hand, I thought Rosen was trying to promote some sort of copyright violation police. I have no idea why she's talking about piracy though, which has nothing to do with copyright violation.
> Java is very much still entirely controlled by
> Sun which hasn't stopped a vibrant Free Software
> community to grow around Java
Sun owns the "Java" trademark. Only sun can say what gets called Java. Only sun publishes official Java specifications, and can say what goes into those specs.
But on the otherhand, when published, those specs are publicly available. You can get the spec, read it, and create a complete programming language that implements the spec without paying sun a dime. Now you can't call it anything "Java" without paying sun a lot of money, but you can still create a piece of software that runs java programs and is for all intents and purposes a Java implementation.
There is at least one project out there that set out to do exactly that, Kaffe. They made a complete open-source java 1.1 implementation (with parts of 1.2). There are also a number of open source JVMs... not to mention JBoss, an open source j2ee app server.
I don't closely follow.NET development, but I hear people talking about patents on it. If that is the case, well then there's your difference. You can't implement.NET because of the patents. You can however implement java, just get the specs.
Their images won't load for me, something is screwed up with their javascript. But here are direct links to the linux images... you might want to turn off javascript first.
How is java closed and controlled by a corporate entity? There are open source JVMs: LaTTe, japhar, and whatever Kaffe uses if not one of those. IBM has open source java stuff too (jikes, a compiler).
Kaffe is a complete open source JDK1.1 implementation, with most of JDK1.2 implemented as well. There doesn't seem to be much going on with it now unfortunately, but that isn't sun's fault.
There's also Blackdown which brings Java to linux on a variety of platforms, but I cant tell if its real opensource or not ("community source")...
I believe there are also several independant commercial java implementations. I believe IBM has one. Intel was going to release one as open source, but I don't know if they scrapped it or not.
There is even an open source EJB implementation, JBoss.
Closed and controlled by one corporate entity java obviously is not...
subscription software = fewer holes??
on
Code Red Refunds?
·
· Score: 1
The irony is that this will probably end up just pushing subscription software.
What does subscription software have to do with Qwest's infrastructure getting hammered by Code Red? Does paying for software more frequently somehow result in fewer bugs?
IIS security fixes were available long after Code Red was still romping around, and at no cost to the users at all.
A while ago I thought of another way spam could be blocked. Instead of checksumming the whole message, why not just create a database of say, phone numbers and fax numbers and domains included in spams? MTAs could check to see if an inbound email contains any spammer-advertised phone numbers or domains in a database and flag the message appropriately. Spammers cannot easily change telephone numbers.
Spammers could write the phone numbers or domains oddly in the email to try and pass the filter, but a sufficiently liberal regular expression could pick it out.
Speaking of regexps, maybe this database could be a giant database of regular expressions which match snippets of spam messages?
> I believe it is the only ACL-enabled file system
> for Linux which has such utilities (unless you
> count AFS).
well, AFS is really a network filesystem (kinda like NFS or SMB), rather than a "local" filesystem, like ext2, NTFS, reiserfs, etc. AFAIK XFS is among the later. An AFS server stores the files it holds in an ordinary local filesystem, like ext2 or xfs. Its ACLs are implemented in network daemons.
I don't see how you could have a CDRW in there. When making the CDs, the data has to be fed to the drive in a continuous, realtime stream. There is usually only a small buffer available to handle short interruptions.
What is there to format? The time is just an integer which is converted to readable formats by math operations. And nobody has to do that sort of thing by hand anyhow. Plenty of library routines exist for converting time to other formats.
There's already a site that fills most of the criteria you've listed... rootprompt. Its like slashdot without the politics.... well sort of. Its one of the few tech sites I visit regularly.
What's so hard about installing perl modules? Seriously, just run "perl -MCPAN -e shell" at your prompt. After you answer all the initial setup questions, type "install Your::Module", and it does it all for you. It even installs any prerequisite modules too. It couldn't possibly be simpler.
> You sir are clueless.. any GOOD administrator
> will change the default of VBS files
> from "OPEN" to "EDIT".. this can be done
> through a software distribution, or even simple
> instructions to the end user. PROBLEM OF VBS
> FILES IS SOLVED FOREVER. Perhaps unix/nt admins
> should stop blaming the users and the os and
> learn what the os can actually do for you.
Did you read the parent message of my reply? I said virus scanners at the entry point is a mere band-aid for a screwed up email client that blindly executes things. Yes, fixing the root of the problem at the client is exactly what a good administrator should do...
> OutLook has security problems. But step 1 is to
> put in a GOOD anti-virus app at your entry point
> to Exchange, and all other mailbox servers if
> you really want to cover yourself.
I can never believe it when I hear people saying things like this. Outlook blindly executes certain script attachments without prompting the user. That's a serious sercurity problem. The solution to the problem is not to try and stop such scripts from ever getting into exchage. That's just treating the symptoms. The solution is to fix the PROBLEM, not the symptoms, and the problem is outlook, not the viruses themselves.
Is the hard disk encrypted with a key that is stored in the motherboard somehow? Or will the hard disk itself only work with that specific motherboard or something? If not, what's to stop someone from sticking the disk in anohter computer and just reading raw data off of it? You don't need to boot from it...
Re:How can I assert my own ethics on FreeNet?
on
Freenet 0.3 Released
·
· Score: 1
Since when does supporting freedom of speech mean supporting what people say with it?
If I see a skinhead standing on a street corner handing out NAZI propaganda, because I support his right to speak, I will not do anything to silence him. But I am not going to stand there alongside him handing out flyers as well and support his message.
Some people seem to be recommending PPTP and PoPTop... I've used it before, its a great piece of software. PPTP isn't secure though. Counterpane did an analysis of it. Offline password cracking is possible with PPTP... Counterpane's reccommendation (see the link): "At this point we still do not recommend Microsoft PPTP for applications where security is a factor".
One thing that's odd - This only applies to Tripwire for Linux.
I don't understand that... the code is either GPLed or it isn't. If they GPL the source of the linux version, whtat's to stop anyone from porting & compling on another platform? Open source is not platform dependant...
I was searching around on their site, and found something here:
This license only applies to the currently distributed version of Linux 2.2.1 available from www.tripwire.com. It is offered here as a service to the Linux community, who may already be using Tripwire for Linux. This does not apply to the upcoming Open Source release which will use the GPL
So, they just changed the current license on the downloadable linux version (not open source). That's the only thing I can find that only pertains only to linux. Does anyone see it explicitly mentioned on the site that the open source release is going to be "linux only" somehow?
> No, this is not true at all. Samba doesn't > *need* this PAC format except as an > optimization. See my posting below in this.
Oops...I stand corrected. I read your other post, that Samba can support Kerberos authentication once the neccessary code has been added. Slightly offtopic, but is this support being developed by anyone? I'm curious, as I've been hoping Samba would support this for a while now. I asked about it a few months back on one of the Samba mailing list, but haven't heard anything. Thanks for the info.
Slashdot Mirror
I also have a triple headed machine at home with a Geforce2 and older matrox cards. I agree with your advice about keeping the cards separate.
:0.1, :0.2) and can be at separate resolutions/refresh rates. The mouse can be moved across displays and keyboard input will follow mouse focus. However with separate displays, you can't do things like drag windows across monitors. Its better to use Xinerama, which makes them all into one big display. Enlightenment works well with multi heads.
If you want a 3 head machine for cheap, I'd reccommend getting Matrox Millenium II PCI cards ($20 on ebay). You can stick up to 4 of them in one machine. I have an AGP Geforce2 as my center display, and use that for games. The Mellenium IIs are plenty enough for stuff like xterms and web browser windows, and the geforce card runs games well. It was all surprisingly easy to get working.
I dual boot linux and XP, both OSses support the display set up fine. XP acts kind of bizarre when you start a game on the center display and it changes resolutions though.
If anyone wants my XF86Config file I'd be happy to post it.
To confirm your belief about running separate X servers on each display: yes that is possible, I've done it before. Its a good way to get everything debugged as you're getting it all configured. The problem with separate X servers is that they would be conflicting for your input devices. A better way would be to use 1 X server, but configure it for multiple displays. Each display will be separate and will have its own minor display number (:0.0,
How stupid. You typed Jabber into Google and copied and pasted most of the first 20 links. In EXACT SAME ORDER too, with the exception of that oreilly link... LOL.
You might want to check out the CODA Filesystem. Its a secure network filesystem like AFS and it has transparent replication support for offline access. Also, there's AFS, but that doesn't provide offline access, but I believe it supports more operating systems than CODA is currently ported to.
One thing this article doesn't really talk about is the difference between online and offline password cracking. Online passowrd cracking means you are asking another computer (a server) if your password guess is correct - only the server can tell you if the password is correct. In offline cracking you don't need the cooperation of the server - you can try every possible combination and determine if a guess is correct without the help of the server.
Obviously there's a big difference. Online password cracking can be easily defeated - just lock the account out after a certain number of tries. The attack they performed in this article was an offline password crack.
The article says it would take 13 years for the fastest pentium 4 to run through all 8 character possible passwords. But how long would it take an easily affordable cluster of them? A cracker could use trojaned machines out there to search a portion of the keyspace. Or just recruit workstations at your job or school to help. Or easier yet, just rent a bunch of fast servers for a month or two from one of those managed colo places like rackspace.
Bottom line is, the average human cannot be expected to remember a password that is insusceptible to offline cracking. That's what real crypto keys are for, and is why passwords should not be trusted as crypto keys or in any situation where an offline attack could be performed on them.
Piracy does hurt everyone. When someone forcibly boards a ship on the high seas, rapes all women on baord, murders the crew, steals their cargo and burns their ship into the sea (possibly with people still alive on board), its a horrible thing.
On the other hand, I thought Rosen was trying to promote some sort of copyright violation police. I have no idea why she's talking about piracy though, which has nothing to do with copyright violation.
> and you would have no idea what you are talking
.NET devel... but if that's the case", not "I know that it is the case".
.NET, not C#. It is obvious that C# is an open standard. Is .NET? Is .NET patent-free?
> about.
I said "I don't closely follow
> you can implement a c# compiler/jitter/runtime
> without infringing on any patents. In fact,
> there are several such projects already.
I said
And you think the Mono/.NET trolling is bad?
.NET development, but I hear people talking about patents on it. If that is the case, well then there's your difference. You can't implement .NET because of the patents. You can however implement java, just get the specs.
> Java is very much still entirely controlled by
> Sun which hasn't stopped a vibrant Free Software
> community to grow around Java
Sun owns the "Java" trademark. Only sun can say what gets called Java. Only sun publishes official Java specifications, and can say what goes into those specs.
But on the otherhand, when published, those specs are publicly available. You can get the spec, read it, and create a complete programming language that implements the spec without paying sun a dime. Now you can't call it anything "Java" without paying sun a lot of money, but you can still create a piece of software that runs java programs and is for all intents and purposes a Java implementation.
There is at least one project out there that set out to do exactly that, Kaffe. They made a complete open-source java 1.1 implementation (with parts of 1.2). There are also a number of open source JVMs... not to mention JBoss, an open source j2ee app server.
I don't closely follow
Their images won't load for me, something is screwed up with their javascript. But here are direct links to the linux images... you might want to turn off javascript first.
http://www.consolewire.com/view/res.asp?in=107-07
http://www.consolewire.com/view/res.asp?in=107-07
Some simple URL hacking will bring up other images at whatever event this is.
these "all your base" jokes are really really old. i dont know how they get modded up anymore, this was not funny at all...
How is java closed and controlled by a corporate entity? There are open source JVMs: LaTTe, japhar, and whatever Kaffe uses if not one of those. IBM has open source java stuff too (jikes, a compiler).
Kaffe is a complete open source JDK1.1 implementation, with most of JDK1.2 implemented as well. There doesn't seem to be much going on with it now unfortunately, but that isn't sun's fault.
There's also Blackdown which brings Java to linux on a variety of platforms, but I cant tell if its real opensource or not ("community source")...
I believe there are also several independant commercial java implementations. I believe IBM has one. Intel was going to release one as open source, but I don't know if they scrapped it or not.
There is even an open source EJB implementation, JBoss.
Closed and controlled by one corporate entity java obviously is not...
This guy just ripped off someone else's comment... see the original here:
http://slashdot.org/comments.pl?sid=22712&cid=244The irony is that this will probably end up just pushing subscription software.
What does subscription software have to do with Qwest's infrastructure getting hammered by Code Red? Does paying for software more frequently somehow result in fewer bugs?
IIS security fixes were available long after Code Red was still romping around, and at no cost to the users at all.
A while ago I thought of another way spam could be blocked. Instead of checksumming the whole message, why not just create a database of say, phone numbers and fax numbers and domains included in spams? MTAs could check to see if an inbound email contains any spammer-advertised phone numbers or domains in a database and flag the message appropriately. Spammers cannot easily change telephone numbers.
Spammers could write the phone numbers or domains oddly in the email to try and pass the filter, but a sufficiently liberal regular expression could pick it out.
Speaking of regexps, maybe this database could be a giant database of regular expressions which match snippets of spam messages?
> for Linux which has such utilities (unless you
> count AFS).
well, AFS is really a network filesystem (kinda like NFS or SMB), rather than a "local" filesystem, like ext2, NTFS, reiserfs, etc. AFAIK XFS is among the later. An AFS server stores the files it holds in an ordinary local filesystem, like ext2 or xfs. Its ACLs are implemented in network daemons.
I don't see how you could have a CDRW in there. When making the CDs, the data has to be fed to the drive in a continuous, realtime stream. There is usually only a small buffer available to handle short interruptions.
It would be messy over ethernet...
What is there to format? The time is just an integer which is converted to readable formats by math operations. And nobody has to do that sort of thing by hand anyhow. Plenty of library routines exist for converting time to other formats.
There's already a site that fills most of the criteria you've listed... rootprompt. Its like slashdot without the politics.... well sort of. Its one of the few tech sites I visit regularly.
What's so hard about installing perl modules? Seriously, just run "perl -MCPAN -e shell" at your prompt. After you answer all the initial setup questions, type "install Your::Module", and it does it all for you. It even installs any prerequisite modules too. It couldn't possibly be simpler.
> You sir are clueless.. any GOOD administrator
> will change the default of VBS files
> from "OPEN" to "EDIT".. this can be done
> through a software distribution, or even simple
> instructions to the end user. PROBLEM OF VBS
> FILES IS SOLVED FOREVER. Perhaps unix/nt admins
> should stop blaming the users and the os and
> learn what the os can actually do for you.
Did you read the parent message of my reply? I said virus scanners at the entry point is a mere band-aid for a screwed up email client that blindly executes things. Yes, fixing the root of the problem at the client is exactly what a good administrator should do...
> OutLook has security problems. But step 1 is to
> put in a GOOD anti-virus app at your entry point
> to Exchange, and all other mailbox servers if
> you really want to cover yourself.
I can never believe it when I hear people saying things like this. Outlook blindly executes certain script attachments without prompting the user. That's a serious sercurity problem. The solution to the problem is not to try and stop such scripts from ever getting into exchage. That's just treating the symptoms. The solution is to fix the PROBLEM, not the symptoms, and the problem is outlook, not the viruses themselves.
Is the hard disk encrypted with a key that is stored in the motherboard somehow? Or will the hard disk itself only work with that specific motherboard or something? If not, what's to stop someone from sticking the disk in anohter computer and just reading raw data off of it? You don't need to boot from it...
Since when does supporting freedom of speech mean supporting what people say with it?
If I see a skinhead standing on a street corner handing out NAZI propaganda, because I support his right to speak, I will not do anything to silence him. But I am not going to stand there alongside him handing out flyers as well and support his message .
Some people seem to be recommending PPTP and PoPTop... I've used it before, its a great piece of software. PPTP isn't secure though. Counterpane did an analysis of it. Offline password cracking is possible with PPTP... Counterpane's reccommendation (see the link): "At this point we still do not recommend Microsoft PPTP for applications where security is a factor".
I don't understand that... the code is either GPLed or it isn't. If they GPL the source of the linux version, whtat's to stop anyone from porting & compling on another platform? Open source is not platform dependant...
I was searching around on their site, and found something here:
So, they just changed the current license on the downloadable linux version (not open source). That's the only thing I can find that only pertains only to linux. Does anyone see it explicitly mentioned on the site that the open source release is going to be "linux only" somehow?
> No, this is not true at all. Samba doesn't
> *need* this PAC format except as an
> optimization. See my posting below in this.
Oops...I stand corrected. I read your other post, that Samba can support Kerberos authentication once the neccessary code has been added. Slightly offtopic, but is this support being developed by anyone? I'm curious, as I've been hoping Samba would support this for a while now. I asked about it a few months back on one of the Samba mailing list, but haven't heard anything. Thanks for the info.