Wrong. This is exactly the kind of post we want, even if it has that touch of intellectual 'smarmyness' to it.. Makes you think, makes you go 'Now how the hell did he get Karl Marx's trade union stuff tied into the GPL and Microsoft'
Think about it..Add up just the OS and the stuff needed to get it to init. Kernel, LILO, the kernel daemons, the contents of/boot.. I bet together that comes close to 10 M. Save Jon!
They won't help the client data, but the server will be fine.. Besides, a virus like that wouldn't make it in the wild. Replication and stealth must outweigh destructiveness.
Besides, after the hypothetical virii explosion, you restore from last night's backup. You don't lose much, if anything. Fileserver data is usually relativly static, changing incrementally over time.
I use and enjoy Solaris on Ultra, but for some odd reason every time I touch Solaris x86 I feel.. Dirty.. I suppose its philosophical, since theres nothing terribly amiss with the OS itself, though I miss the Forth.
It's kind of like the feeling you get when you walk into a gay bar without knowing it... There's something wrong, not with any one thing in particular, but with the thing as a whole, in the way the individual elements fit together. I have no problem with homosexuals, nor with getting a beer in a convenient gay bar, but the feeling you get from the place is different in a subtle, intangible way. I suppose I'll one day be using Solaris and it will dawn on me, much like the revelation that hits you when you notice that the two burly red-neck types are really dancing with each other..
At present, with comparably primitive equipment, the abuses are endless. Even if we were to do away with the weak societal construct that makes morally reprochable monitoring popular, what happens when we up the ante of power and control to that offered by nanotech devices?
As is, only a small fragment of the population would invade someones privacy, through a balance of risk/gain. Today's devices are easily caught, so in most cases the risk outweighs the benefit. But tomorrow's nano-devices don't have the same risk. They're virtually undetectable. Even if the practice were punishable by death, many prople would still illegally/immorally monitor others because the risk/gain ratio approaches zero.
'Power corrupts; Absolute power corrupts absolutly.'
They should, yes. But some scan every file, every time, regardless if it is prudent or efficient to do so. CA's package does it that way. Others scan only when needed, or only when infection is probable. Think of the overhead in scanning every file every access. By the time the file reaches the user and is opened/executed, it has been scanned at least three times more than needed. On a well-loaded server this can be death.
NAI/McAfee Netshield comes closest of any I have seen.. It performs a full scan on the first read and a cursory examination on every subsequent read (it can't keep track of what 100% of what NT writes, so it just takes a peek). Every write is scanned. It's a pretty good product, but NT 4.0/Alpha support is going to be short lived, so if you run any Alpha's, you might look elsewhere.
Samba with an integrated scan-on-first-read, scan-on-every-write would make for a killer fileserver! No scheduled, system hogging scans, none of the gross overhead associated with the popular scan-on-every-read method some others use, and little-to-no chance of known viral spread via the server!
Of course, many systems are multi-use (ftp+samba, apache+samba, sendmail+samba, etc). Samba with integrated scanner can't address these issues. Perhaps a kernel hack that implemented SOER/SOFR at the filesystem level would be a better all-around solution.
I'm digging for my copy of 'Linux Device Drivers' now..
Whoa! Every Linux fileserver that has Windows clients needs to be scanned! Just because the server can't get knocked-up doesn't mean it won't keep handing out copies of 'Win-CIM' or 'Spiro-2' to the clients from a shared executable. This just means we can scan locally now instead of keeping around a low-power NT box to do it.
I just hope someone else comes out with a better product than CA's, and fast. I have never touched a bit of CA-*IT ware I could tolerate..
Massivly parallel creations are largely very close to what the programmer wrote, good compiler or no. Compilers for this case are especially weak, and only make vague and half correct assumptions.
For someone who is looking at a 100% uptime box it does make a difference.. And Augustin is right, they overengineer to death! Powersupplies often double the required wattage, extra case fans, fans on the drive rails, cable routing clips, bigger heatsinks, hi-grade cables, and everything burned way beyond norm. If you can deal with slight interruptions like bad cables, memory error, don't buy VA. But I can honestly say the party that uses that VA is oh so very happy with it..
Great.. Now that you've told the first posters that they can have advance shots at first posts, they inevitably will. The rest of us have been keeping it under our hats, why didn't you?
IBM already makes them.. They're the Model 'M' and Model 'F' keyboards. Vomit-proof, coffee-proof, and if you get one of the older incarnations (Model Mx where 13 > x, or Model Fx where 10 > x) they've got a metal shell that makes them bulletproof and handy for repelling intruders. I've had a F6 working properly after inadvertantly spilling four shots of espresso in it. The keys didn't click right, but neither it nor its integrated touchpoint missed a beat. Downside is they're not (l)user-proof. We lost so many keycaps from them we kept a full keyboards worth in the bottom of out service boxes, and forcefully sticking a paperclip into the PS/2 expansion jack will kill them if done just right.
An outside box is what I had in mind.. The company firewall can be, er, restrictive sometimes, so I use a combination of rdir and IP masquerading on my private (outside) boxen to get what I need. I've run AIM, ICQ, Napster, use it to check my POP3 box and also use it to peruse the grey hat web circuit. (banned; the network people are using a dialup and a 'free' ISP cus they got sick of arguing with the powers-that-be)
And I do know a thing or two about routing. I'm not godlike, but I get by..
Yeah.. On a Linux box you could use rdir to redirect traffic on localip:80/napsterport to napsterserver:napsterport, then ensure that napsterserver has an implicit route. No actual proxy would be needed.
I hesitate to call VB a standard. (Okay, it is a standard pain in my ass) It is produced and marketed by only one company. Java has implementations done by IBM, Blackdown, Sun, Microsoft, Novell, etc. There are a lot more balls of wax dependant on Java.
Yes, if Microsoft licensed the Win32 API to Sun, and Sun screwed around with in such a way that the near monopoly market share of Sun's Windows2008-enabled applications were hurting Microsoft, sure! Sun didn't follow the terms of the licensing agreement, and Microsoft was financially damaged.
The year is 2048, and I'm on my deathbed dying from Allen's syndrome. My brain is scanned and implanted into a computer neural network inside a hulking metal shell. Know what? I'd be criminally insane inside of a year. No simula-replacement is going to be as good as my old, decrepit body, and I will quickly go crazy from the nagging sensory differences. And what if they haven't come far enough to provide me with rudimentary senses? Just me with a pair of CCD cameras and touch sensors on me hands? I'd be nuts in a week or two, perhaps even quicker.
They better get working on good electronic replacements for the senses..
The 'state' quarters are minted in Philidelphia or Denver. We'd probably lose all the Susan B's the government stockpiled 'in case of world economic collapse.
Some of that 20 were probably intentionally wasted on a bill that they ordinarily wouldn't have touched. The Republican legislators that did it are probably hoping to use a line like 'supported moral reform on our nations college campuses' in popular propaganda.
'Look at the Gimp' complete with a logo of the Gimp. 'I love you, Hemos!' 'Does anyone have a tubesock I can borrow?' 'Me, you, and ide.c. Lets get it on!'
why should sun support java natively on a crappy platform with idiotic trolls running it ?
1. They're Daemons, not Trolls. 2. FreeBSD is better than Linux in many roles. For example, in many server applications FreeBSD is a better choice. 3. FreeBSD is only a figurative stone's throw from NetBSD and OpenBSD. By supporting a native FreeBSD port we are greatly shortening the distance the other two will have to travel. 4. We are brethren of the 'Opened Source'. What benefits FreeBSD inevitably will come back to benefit Linux someday.
Slashdot Mirror
Wrong. This is exactly the kind of post we want, even if it has that touch of intellectual 'smarmyness' to it.. Makes you think, makes you go 'Now how the hell did he get Karl Marx's trade union stuff tied into the GPL and Microsoft'
Think about it..Add up just the OS and the stuff needed to get it to init. Kernel, LILO, the kernel daemons, the contents of /boot.. I bet together that comes close to 10 M.
Save Jon!
They won't help the client data, but the server will be fine.. Besides, a virus like that wouldn't make it in the wild. Replication and stealth must outweigh destructiveness.
Besides, after the hypothetical virii explosion, you restore from last night's backup. You don't lose much, if anything. Fileserver data is usually relativly static, changing incrementally over time.
I use and enjoy Solaris on Ultra, but for some odd reason every time I touch Solaris x86 I feel.. Dirty.. I suppose its philosophical, since theres nothing terribly amiss with the OS itself, though I miss the Forth.
It's kind of like the feeling you get when you walk into a gay bar without knowing it... There's something wrong, not with any one thing in particular, but with the thing as a whole, in the way the individual elements fit together. I have no problem with homosexuals, nor with getting a beer in a convenient gay bar, but the feeling you get from the place is different in a subtle, intangible way. I suppose I'll one day be using Solaris and it will dawn on me, much like the revelation that hits you when you notice that the two burly red-neck types are really dancing with each other..
This is way off-topic, butI've found it to be a 45/35/20 US/foreign/don't know split.
Also, I've found NT 4.0 to be suprisingly popular; I get more NT hits than any other.
the possibilities for abuse are endless
At present, with comparably primitive equipment, the abuses are endless. Even if we were to do away with the weak societal construct that makes morally reprochable monitoring popular, what happens when we up the ante of power and control to that offered by nanotech devices?
As is, only a small fragment of the population would invade someones privacy, through a balance of risk/gain. Today's devices are easily caught, so in most cases the risk outweighs the benefit. But tomorrow's nano-devices don't have the same risk. They're virtually undetectable. Even if the practice were punishable by death, many prople would still illegally/immorally monitor others because the risk/gain ratio approaches zero.
'Power corrupts; Absolute power corrupts absolutly.'
They should, yes. But some scan every file, every time, regardless if it is prudent or efficient to do so. CA's package does it that way. Others scan only when needed, or only when infection is probable. Think of the overhead in scanning every file every access. By the time the file reaches the user and is opened/executed, it has been scanned at least three times more than needed. On a well-loaded server this can be death.
NAI/McAfee Netshield comes closest of any I have seen.. It performs a full scan on the first read and a cursory examination on every subsequent read (it can't keep track of what 100% of what NT writes, so it just takes a peek). Every write is scanned. It's a pretty good product, but NT 4.0/Alpha support is going to be short lived, so if you run any Alpha's, you might look elsewhere.
Samba with an integrated scan-on-first-read, scan-on-every-write would make for a killer fileserver! No scheduled, system hogging scans, none of the gross overhead associated with the popular scan-on-every-read method some others use, and little-to-no chance of known viral spread via the server!
Of course, many systems are multi-use (ftp+samba, apache+samba, sendmail+samba, etc). Samba with integrated scanner can't address these issues. Perhaps a kernel hack that implemented SOER/SOFR at the filesystem level would be a better all-around solution.
I'm digging for my copy of 'Linux Device Drivers' now..
Whoa! Every Linux fileserver that has Windows clients needs to be scanned! Just because the server can't get knocked-up doesn't mean it won't keep handing out copies of 'Win-CIM' or 'Spiro-2' to the clients from a shared executable. This just means we can scan locally now instead of keeping around a low-power NT box to do it.
I just hope someone else comes out with a better product than CA's, and fast. I have never touched a bit of CA-*IT ware I could tolerate..
Massivly parallel creations are largely very close to what the programmer wrote, good compiler or no. Compilers for this case are especially weak, and only make vague and half correct assumptions.
For someone who is looking at a 100% uptime box it does make a difference.. And Augustin is right, they overengineer to death! Powersupplies often double the required wattage, extra case fans, fans on the drive rails, cable routing clips, bigger heatsinks, hi-grade cables, and everything burned way beyond norm. If you can deal with slight interruptions like bad cables, memory error, don't buy VA. But I can honestly say the party that uses that VA is oh so very happy with it..
Great.. Now that you've told the first posters that they can have advance shots at first posts, they inevitably will. The rest of us have been keeping it under our hats, why didn't you?
IBM already makes them.. They're the Model 'M' and Model 'F' keyboards. Vomit-proof, coffee-proof, and if you get one of the older incarnations (Model Mx where 13 > x, or Model Fx where 10 > x) they've got a metal shell that makes them bulletproof and handy for repelling intruders. I've had a F6 working properly after inadvertantly spilling four shots of espresso in it. The keys didn't click right, but neither it nor its integrated touchpoint missed a beat.
Downside is they're not (l)user-proof. We lost so many keycaps from them we kept a full keyboards worth in the bottom of out service boxes, and forcefully sticking a paperclip into the PS/2 expansion jack will kill them if done just right.
Apologies. The kernel port forwarding hasn't been called rdir since the 1.1.xx's.. It's ipportfw these days... I'm terminally stuck in the past..
An outside box is what I had in mind.. The company firewall can be, er, restrictive sometimes, so I use a combination of rdir and IP masquerading on my private (outside) boxen to get what I need. I've run AIM, ICQ, Napster, use it to check my POP3 box and also use it to peruse the grey hat web circuit. (banned; the network people are using a dialup and a 'free' ISP cus they got sick of arguing with the powers-that-be)
And I do know a thing or two about routing. I'm not godlike, but I get by..
Yeah.. On a Linux box you could use rdir to redirect traffic on localip:80/napsterport to napsterserver:napsterport, then ensure that napsterserver has an implicit route. No actual proxy would be needed.
b1tChn00g1tZ4nDl33t455b45tRdZf0rM3r1YKn0Wn4Zl0pht
'Bitch nuggets and elite ass bastards formerly known as l0pht'?
Sorry, I didn't take Skr1ptk1dd13 as my elective foreign language in college.
I hesitate to call VB a standard. (Okay, it is a standard pain in my ass) It is produced and marketed by only one company. Java has implementations done by IBM, Blackdown, Sun, Microsoft, Novell, etc. There are a lot more balls of wax dependant on Java.
Yes, if Microsoft licensed the Win32 API to Sun, and Sun screwed around with in such a way that the near monopoly market share of Sun's Windows2008-enabled applications were hurting Microsoft, sure! Sun didn't follow the terms of the licensing agreement, and Microsoft was financially damaged.
The year is 2048, and I'm on my deathbed dying from Allen's syndrome. My brain is scanned and implanted into a computer neural network inside a hulking metal shell. Know what? I'd be criminally insane inside of a year. No simula-replacement is going to be as good as my old, decrepit body, and I will quickly go crazy from the nagging sensory differences. And what if they haven't come far enough to provide me with rudimentary senses? Just me with a pair of CCD cameras and touch sensors on me hands? I'd be nuts in a week or two, perhaps even quicker.
They better get working on good electronic replacements for the senses..
The 'state' quarters are minted in Philidelphia or Denver. We'd probably lose all the Susan B's the government stockpiled 'in case of world economic collapse.
Some of that 20 were probably intentionally wasted on a bill that they ordinarily wouldn't have touched. The Republican legislators that did it are probably hoping to use a line like 'supported moral reform on our nations college campuses' in popular propaganda.
Proposed signe for Bruce Perens to wave
'Look at the Gimp' complete with a logo of the Gimp.
'I love you, Hemos!'
'Does anyone have a tubesock I can borrow?'
'Me, you, and ide.c. Lets get it on!'
Most of us noticed.
/. big-time when you start accumulating groupies. Sig11 has his own groupie, as do 'MEEPT!' and 'Grits Boy'.
;-P
You know you've hit the
How 'bout a 'technos' groupie? It would make me feel so 1970's Mick Jagger
why should sun support java natively on a crappy platform with idiotic trolls running it ?
1. They're Daemons, not Trolls.
2. FreeBSD is better than Linux in many roles. For example, in many server applications FreeBSD is a better choice.
3. FreeBSD is only a figurative stone's throw from NetBSD and OpenBSD. By supporting a native FreeBSD port we are greatly shortening the distance the other two will have to travel.
4. We are brethren of the 'Opened Source'. What benefits FreeBSD inevitably will come back to benefit Linux someday.