Re:Obligatory reminder that an alternative exists
on
OpenSSL 1.0.2 Released
·
· Score: 4, Informative
You _can_ do so, but the hardcoded reliance on the master signature authorities in nearly every popular software tool makes such efforts problematic. It's exceedingly difficult to _excise_ these master keys, or to display them as "not trusted due to federal key access", without breaking many tools.
Decades ago, Buckminster Fuller described this as a means to live forever: suspend all organic processes for increasingly long periods to re-activate for increasingly short durations. The ideas was that even as the universe approached heat death from uniform entropy, the little remaining energy could still be used to extend life perpetually.
Like many of his ideas, such as the "Fuller dome" to encase entire stars to collect all energy and provide enormous living space, it's extremely impractical, But it's a wonderful thought experiment.
It protects the power plugs from being jarred and dislodged by someone poking around the back of an ill-managed server cabinet, and it can be labeled to indicate which machines or rack it currently powers. It can even be marked with the relevant fuse from the wiring closet.
> You probably could stop someone's heart with 15 mV.
Applied where, and when? Even the 'action potential' of a nerve involves a roughly 25 mV change to trigger the nerve to fire. ( http://en.wikipedia.org/wiki/A... ) Thinking about this, I realize that I was only thinking about pulses, not DC. I'm not sure if you could ruin nerves or disable them with an extended 1 mV DC, or 15 mV DC at the right place.
As near as I can tell from my limited work with machine room safety, and limited work with the results of machine room accidents and personal research, the results of electrical damage can be very confusing. Getting the current past human skin is critical to doing real damage: skin typically has about 1 MOhm impedance measured with a household voltmeter. But the paths it will take can become very strange, very quickly, depending on sweat, penetration of skin, and many other factors.
If I wished to be certain of killing someone with household voltage, personally, I'd go for the head. Where to put the electrodes gets very macabre, very quickly.
> (a) has no temperature of its own, and (b) is a wonderful insulator.
Oh, my. I'm afraid that both these assumptions are overstated. The background temperature of the universe is only a few degrees Kelvin, but the "vacuum" in near Earth orbit is considerably warmer and more dense than the universe at large. It's also a very good insulator as you state, but when exposed to sun light it has to cope with roughly 2 Watts/square inch of solar radiation. Even left to itself, in the shadow of some astronomical body, it will continue to cool from 'black body radiation', even if it is white or reflective.
The effects may be much more insulating than planetside environments, but these kinds of factors do affect space craft power supplies.
I do believe that you're thinking of "mA", not "mV". 15 mV is even less than the trigger voltage of an ordinary nerve cell. A few mA, through the right nerves of the heart at the right moment, can _decouple_ the heart's normal pulsing rhythm, causing fibrillation. It's well worth a bit of research into how "defibrillators" work: I'm afraid I'm old enough that I have some acquaintances with implanted pacemakers to control just that sort of problem.
I'm afraid you need to look up his case. His employers said "stop" and ended the funding, especially of technician time and equipment. He then completed the work on his own time, out of his own salary, with equipment and materials he bought. The company did wind up owning the patent. But this is a case where the inventor did, indeed, act as a dedicated scientist and engineer, not merely as an employee under managerial direction.
> As for being the source of the innovation, there is no question that he is a brilliant scientist. But there are lots of brilliant scientists. If another had been given the same job as him there is nothing to say they wouldn't have been the one to have come up with blue leds.
Anyone who knows the field would say so. Other colors for LED's were a long sought goal at the time, and the new technologies required several genuine developments and insights. When told to stop working on it at his company, he continued the research on his own, with materials he paid for out of his own salary. His was a classic case of a dedicated scientist completing a tack considered too difficult by his superiors.
I've been professionally using, recommending, and supporting actual SMTP servers for email servers, a clean IMAP service and client for the email access. The interwoven account management very complex database storage of email in Microsoft Office have proven extremely fragile and not helpful to system automation or security. Note particularly that almost no company can run an MS Exchange server directly exposed to outside email: almost all use a commercial or in-house service to pre-filter the spam, and these are almost entirely Linux applicances.
The only compelling reasons I've seen to remain with MS Exchange ahve been legacy workflow, and the quite good calendar integration of MS Outlook with the MS Exchange server.
The Clipper Chip, and the SkipJack tools based on it, mandated, were a high grade hardware encryption for which the government would hold all the private keys. It had several flaws, and was discarded when it turned out to violated several patents of Silvio Micali, an MIT professor. It also turned out to be possible to generate your own private session key, which the government would not have, by running it for about 45 minutes communicating to another such chip and testing keys until you found one that passed the "Law Enforcement Agency Field" hash check. It was also expensive, about $25/chip.
Unfortunately, Microsoft and the "Palladium" technology, renamed "Trusted Computing", have achieved most of that chip's goals with even less legal protection. The "Trusted Computing" tools used to lock modern computers from booting with unauthorized kernels and built into hardware encryption and DRM for modern Windows systems has pretty much the same capability, with _Microsoft_ holding all the private keys in escrow. They hold the master keys, they hold they key signing keys, and they have the ability to _revoke_ and replace keys on active systems so you cannot even access your own hardware after such a revocation. And there is no direct judicial oversight even _available_ for such a company owned private repository. It's even more dangerous than the central signature authorities for SSL keys, which mostly protect transient communications. It's like a central, corporate owned repository for GPG private keys, along with the ability to rip the keys out of your hardware with normal software security updates.
Amusingly, it has a fundamental and embarrassing technological flaw, much like the Clipper Chip. It can be software emulated in virtualization environments. So the DRM capability, which is a major factor in _funding_ its development, has been made somewhat poiintless. "Trusted Computing" protected documents and especially visual and audio media can have their displayable content tapped from the byte streams of the video and audio outputs.
> Incorrect. The House passed numerous bills since 2010 and made numerous concessions to Democrats. Only the Democrats (Reid, Obama) would not negotiate. It's well documented.
"Well documented" by a "fair and balanced" news channel, perhaps? I suggest you take a look at the voting records on the "Obamacare" health bill, on anything that involves birth control, and on anything that affects Latin American immigration.
I'm afraid its primary use will be as an NSA honey trap, to allow federal agencies to be able to look up reported vulnerabilities and use them without warrants, due process, or notification of the victims of federal monitoring.
> For external conversions, all what matters that the internal format can be easily converted into the widely used encodings.
And this is the difficulty. It's not the _ease_. It's the consistency, predictability, and portability. Many external displays of Unicode content have varied between platforms in alarming ways, especially due to mishandled character displays which the programmer has little control over. It may have gotten better since my last go-around with it, but even simply layout issues like column alignment have been screwed up, especially when the legitimate Unicode character generates an erroneous on-screen error code instead of a single character display. And _that_ can ruin Nethack layouts, in ways unpredictable to the maintainers.
> Everybody has already settled on the little-endian presentation.
What makes you think this? There are plenty of old Motrola architecture based systems still in legacy environment use, preserved for stable scientific or business computing environments. NASA has a great deal of it still in use, because they've been forced to keep old earthbound hardware in use to support old spacebound mission hardware. And there is a significant amount of new, bi-endian hardware being produced now,
I'm afraid I have quite a lot of experience with Unicode compatibility and cross compatibility. Frankly, for a multi-platform tool like Nethack, I'd stay with the 8-bit, one byte, extremely stable 'POSIX' standard.
The old POSIX compliant user-group-others model does have some limitations. The non-root user can't arbitrarily add another individual user to have access or deny access, and only root users or site admins have access to create new groups. In the older systems, such as in UNIX's/etc/group and/etc/passwd, groups cannot contain other groups directly and there's a maximum line length on the number of characters in the "/etc/group" line. This gets quite awkward if you have hundreds of members of a group, or want to be able to say "all members of this group, *except* this one account, should have access to this". It means you have to add a new group and reset all files to owned and managed by that group: it can become painful to administer.
When compared to the obscure rat's nest of ownership in NTFS, however, I can see why the old POSIX ACL's have remained in use. And let's make not be confused, in the Windows world it is _extremely_ common to leave file ownership profoundly broken.
> Unix/Linuxs permission system is 70-era bit-saving stupid. There is no other way to put it.
It's extremely simple, and extremely fast to handle computationally. Those "bit-savings" come out of every file system access, including pipes and symlinks and block and character devices. When a developer "meets the limit of what can be expressed with a single-group me-us-everybody", it's usually a sign that they're doing something fundamentally wrong and trying to invent special groups of their own on the fly. It can also be the case that they're trying to allow access for one other person at a time, which I acknowledge can be problematic if you don't have easy access to create or remove user groups.
There are network based file systems that support more complex Access Control Lists, ACL's. NFSv4, for example, supports it. But it also tends to be confused, abused, and unstable in use.
Telephones actually ringing. Rotary dials. Hand-cranked telephones, which I've heard in equipment that I restored as an act of technological homage. Children playing outside in most suburban streets.
> While pshycology is not as easy as other medicine and physics, there is no doubt that it is a science,
There is certainly _some_ science. But a tremendous amount of it is theory driven nonsense. Look at how psychological and psychiatric was limited until the discovery of seasonal affective disorder, the better diagnosis and treatment of post-traumatic stress disorder, and the unfurling of phobias from the "hidden memory theories" that Freud popularized.
The reference to David Miscavige and Tom Cruise looks like a reference to Scientology, which makes clearly fraudulent claims about "scientific" discovers but are actually rooted in hypnosis and conditioning under a lie detector.
That sort of thing pays a lot of my salary and consulting fees for my group. Code even six months old can be nightmarish to dissassemble and replace when the original programmer is no longer available, or doesn't care enough to remember why they did things. I find myself treasuring the experience that helps me rember _why_ we did things certain ways before a new application or operating system even existed.
It's true today. Many of have to deal with internal corporate web services that do not have a signed SSL key, or deal with intervening proxies which we have no choice but to use in our environments.
I'm afraid I'm quite aware of it. But I'm also afraid that diagrams on a white board taught in grade school leave out quite a lot: the slowing of mixing when water is collected in various bodies, the uneven mixing caused by oceanic or lake thermoclines, the weather barriers caused by mountains, and even the equatorial isolation of hurricanes to northern and southern hemisphere all act to reduce the maximum mixing of water. Even over the course of centuries of mixing, I'd expect nothing in Africa or the Americas south of the equator, even with the bottling and sales of French fluids such as wine and Perrier water.
Slashdot Mirror
You _can_ do so, but the hardcoded reliance on the master signature authorities in nearly every popular software tool makes such efforts problematic. It's exceedingly difficult to _excise_ these master keys, or to display them as "not trusted due to federal key access", without breaking many tools.
You're quite right. That was my error: I was confusing it with the geodesic dome, for which Buckminster Fuller is indeed renowned.
Decades ago, Buckminster Fuller described this as a means to live forever: suspend all organic processes for increasingly long periods to re-activate for increasingly short durations. The ideas was that even as the universe approached heat death from uniform entropy, the little remaining energy could still be used to extend life perpetually.
Like many of his ideas, such as the "Fuller dome" to encase entire stars to collect all energy and provide enormous living space, it's extremely impractical, But it's a wonderful thought experiment.
And _this_ is why I use things like these, wehre possible, in machine rooms and office spaces.
http://www.homedepot.com/b/Ele...
It protects the power plugs from being jarred and dislodged by someone poking around the back of an ill-managed server cabinet, and it can be labeled to indicate which machines or rack it currently powers. It can even be marked with the relevant fuse from the wiring closet.
> You probably could stop someone's heart with 15 mV.
Applied where, and when? Even the 'action potential' of a nerve involves a roughly 25 mV change to trigger the nerve to fire. ( http://en.wikipedia.org/wiki/A... ) Thinking about this, I realize that I was only thinking about pulses, not DC. I'm not sure if you could ruin nerves or disable them with an extended 1 mV DC, or 15 mV DC at the right place.
As near as I can tell from my limited work with machine room safety, and limited work with the results of machine room accidents and personal research, the results of electrical damage can be very confusing. Getting the current past human skin is critical to doing real damage: skin typically has about 1 MOhm impedance measured with a household voltmeter. But the paths it will take can become very strange, very quickly, depending on sweat, penetration of skin, and many other factors.
If I wished to be certain of killing someone with household voltage, personally, I'd go for the head. Where to put the electrodes gets very macabre, very quickly.
> (a) has no temperature of its own, and (b) is a wonderful insulator.
Oh, my. I'm afraid that both these assumptions are overstated. The background temperature of the universe is only a few degrees Kelvin, but the "vacuum" in near Earth orbit is considerably warmer and more dense than the universe at large. It's also a very good insulator as you state, but when exposed to sun light it has to cope with roughly 2 Watts/square inch of solar radiation. Even left to itself, in the shadow of some astronomical body, it will continue to cool from 'black body radiation', even if it is white or reflective.
The effects may be much more insulating than planetside environments, but these kinds of factors do affect space craft power supplies.
I do believe that you're thinking of "mA", not "mV". 15 mV is even less than the trigger voltage of an ordinary nerve cell. A few mA, through the right nerves of the heart at the right moment, can _decouple_ the heart's normal pulsing rhythm, causing fibrillation. It's well worth a bit of research into how "defibrillators" work: I'm afraid I'm old enough that I have some acquaintances with implanted pacemakers to control just that sort of problem.
I'm afraid you need to look up his case. His employers said "stop" and ended the funding, especially of technician time and equipment. He then completed the work on his own time, out of his own salary, with equipment and materials he bought. The company did wind up owning the patent. But this is a case where the inventor did, indeed, act as a dedicated scientist and engineer, not merely as an employee under managerial direction.
> As for being the source of the innovation, there is no question that he is a brilliant scientist. But there are lots of brilliant scientists. If another had been given the same job as him there is nothing to say they wouldn't have been the one to have come up with blue leds.
Anyone who knows the field would say so. Other colors for LED's were a long sought goal at the time, and the new technologies required several genuine developments and insights. When told to stop working on it at his company, he continued the research on his own, with materials he paid for out of his own salary. His was a classic case of a dedicated scientist completing a tack considered too difficult by his superiors.
I've been professionally using, recommending, and supporting actual SMTP servers for email servers, a clean IMAP service and client for the email access. The interwoven account management very complex database storage of email in Microsoft Office have proven extremely fragile and not helpful to system automation or security. Note particularly that almost no company can run an MS Exchange server directly exposed to outside email: almost all use a commercial or in-house service to pre-filter the spam, and these are almost entirely Linux applicances.
The only compelling reasons I've seen to remain with MS Exchange ahve been legacy workflow, and the quite good calendar integration of MS Outlook with the MS Exchange server.
Gnome.
The Clipper Chip, and the SkipJack tools based on it, mandated, were a high grade hardware encryption for which the government would hold all the private keys. It had several flaws, and was discarded when it turned out to violated several patents of Silvio Micali, an MIT professor. It also turned out to be possible to generate your own private session key, which the government would not have, by running it for about 45 minutes communicating to another such chip and testing keys until you found one that passed the "Law Enforcement Agency Field" hash check. It was also expensive, about $25/chip.
Unfortunately, Microsoft and the "Palladium" technology, renamed "Trusted Computing", have achieved most of that chip's goals with even less legal protection. The "Trusted Computing" tools used to lock modern computers from booting with unauthorized kernels and built into hardware encryption and DRM for modern Windows systems has pretty much the same capability, with _Microsoft_ holding all the private keys in escrow. They hold the master keys, they hold they key signing keys, and they have the ability to _revoke_ and replace keys on active systems so you cannot even access your own hardware after such a revocation. And there is no direct judicial oversight even _available_ for such a company owned private repository. It's even more dangerous than the central signature authorities for SSL keys, which mostly protect transient communications. It's like a central, corporate owned repository for GPG private keys, along with the ability to rip the keys out of your hardware with normal software security updates.
Amusingly, it has a fundamental and embarrassing technological flaw, much like the Clipper Chip. It can be software emulated in virtualization environments. So the DRM capability, which is a major factor in _funding_ its development, has been made somewhat poiintless. "Trusted Computing" protected documents and especially visual and audio media can have their displayable content tapped from the byte streams of the video and audio outputs.
> Incorrect. The House passed numerous bills since 2010 and made numerous concessions to Democrats. Only the Democrats (Reid, Obama) would not negotiate. It's well documented.
"Well documented" by a "fair and balanced" news channel, perhaps? I suggest you take a look at the voting records on the "Obamacare" health bill, on anything that involves birth control, and on anything that affects Latin American immigration.
I'm afraid its primary use will be as an NSA honey trap, to allow federal agencies to be able to look up reported vulnerabilities and use them without warrants, due process, or notification of the victims of federal monitoring.
> For external conversions, all what matters that the internal format can be easily converted into the widely used encodings.
And this is the difficulty. It's not the _ease_. It's the consistency, predictability, and portability. Many external displays of Unicode content have varied between platforms in alarming ways, especially due to mishandled character displays which the programmer has little control over. It may have gotten better since my last go-around with it, but even simply layout issues like column alignment have been screwed up, especially when the legitimate Unicode character generates an erroneous on-screen error code instead of a single character display. And _that_ can ruin Nethack layouts, in ways unpredictable to the maintainers.
It's a tax on a system that profoundly affects interstate commerce, and a great deal of "Internet traffic" and "Internat commerce" are interstate.
> Everybody has already settled on the little-endian presentation.
What makes you think this? There are plenty of old Motrola architecture based systems still in legacy environment use, preserved for stable scientific or business computing environments. NASA has a great deal of it still in use, because they've been forced to keep old earthbound hardware in use to support old spacebound mission hardware. And there is a significant amount of new, bi-endian hardware being produced now,
I'm afraid I have quite a lot of experience with Unicode compatibility and cross compatibility. Frankly, for a multi-platform tool like Nethack, I'd stay with the 8-bit, one byte, extremely stable 'POSIX' standard.
The old POSIX compliant user-group-others model does have some limitations. The non-root user can't arbitrarily add another individual user to have access or deny access, and only root users or site admins have access to create new groups. In the older systems, such as in UNIX's /etc/group and /etc/passwd, groups cannot contain other groups directly and there's a maximum line length on the number of characters in the "/etc/group" line. This gets quite awkward if you have hundreds of members of a group, or want to be able to say "all members of this group, *except* this one account, should have access to this". It means you have to add a new group and reset all files to owned and managed by that group: it can become painful to administer.
When compared to the obscure rat's nest of ownership in NTFS, however, I can see why the old POSIX ACL's have remained in use. And let's make not be confused, in the Windows world it is _extremely_ common to leave file ownership profoundly broken.
> Unix/Linuxs permission system is 70-era bit-saving stupid. There is no other way to put it.
It's extremely simple, and extremely fast to handle computationally. Those "bit-savings" come out of every file system access, including pipes and symlinks and block and character devices. When a developer "meets the limit of what can be expressed with a single-group me-us-everybody", it's usually a sign that they're doing something fundamentally wrong and trying to invent special groups of their own on the fly. It can also be the case that they're trying to allow access for one other person at a time, which I acknowledge can be problematic if you don't have easy access to create or remove user groups.
There are network based file systems that support more complex Access Control Lists, ACL's. NFSv4, for example, supports it. But it also tends to be confused, abused, and unstable in use.
Pinball.
Telephones actually ringing.
Rotary dials.
Hand-cranked telephones, which I've heard in equipment that I restored as an act of technological homage.
Children playing outside in most suburban streets.
> While pshycology is not as easy as other medicine and physics, there is no doubt that it is a science,
There is certainly _some_ science. But a tremendous amount of it is theory driven nonsense. Look at how psychological and psychiatric was limited until the discovery of seasonal affective disorder, the better diagnosis and treatment of post-traumatic stress disorder, and the unfurling of phobias from the "hidden memory theories" that Freud popularized.
The reference to David Miscavige and Tom Cruise looks like a reference to Scientology, which makes clearly fraudulent claims about "scientific" discovers but are actually rooted in hypnosis and conditioning under a lie detector.
That sort of thing pays a lot of my salary and consulting fees for my group. Code even six months old can be nightmarish to dissassemble and replace when the original programmer is no longer available, or doesn't care enough to remember why they did things. I find myself treasuring the experience that helps me rember _why_ we did things certain ways before a new application or operating system even existed.
It's true today. Many of have to deal with internal corporate web services that do not have a signed SSL key, or deal with intervening proxies which we have no choice but to use in our environments.
I'm afraid I'm quite aware of it. But I'm also afraid that diagrams on a white board taught in grade school leave out quite a lot: the slowing of mixing when water is collected in various bodies, the uneven mixing caused by oceanic or lake thermoclines, the weather barriers caused by mountains, and even the equatorial isolation of hurricanes to northern and southern hemisphere all act to reduce the maximum mixing of water. Even over the course of centuries of mixing, I'd expect nothing in Africa or the Americas south of the equator, even with the bottling and sales of French fluids such as wine and Perrier water.