FlightAware's PiAware software and FlightAware's FlightFeeder hardware both allow access to unfiltered access over TCP ports 10001, 30002, and 30003 as well as a live web interface on port 8080.
False. Have you ever signed a merchant contract? I have.
The merchant whose billing data was compromised is liable as well -- both for the charges, the cost of replacing cards, and fines by the issuer and/or credit card network.
It's easy to take a bunch of fraudulent charges and see which merchant they have in common to determine the source of the data. Merchants are fined more if they don't disclose a breach of data before the credit card companies discover it.
The card is required to be signed for the transaction to be completed to ensure that you have agreed to the cardholder contract.
Like many things, if you don't understand them, they're quite easy to mock. In this case, the policy for an unsigned card is to make the customer sign it and then sign the receipt and compare the two.
When that is completed, the merchant can rest assured that the customer has agreed to the cardholder agreement and agreed to the terms on the receipt provided by the merchant.
Other conditions can contribute to being totally disoriented (like the cause of JFK Jr.'s crash). In his case, he wasn't authorized to fly at night due to the fact that he wasn't instrument-only rated.
You are just making that up; there is no requirement in the US for pilots to have an instrument rating to fly at night; VFR flight at night is legal and common.
I'm the head of technology for a company that provides connectivity and management solutions to telcos/cable cos that are providing these sorts of services to neighborhoods and can clear up a handful of the issues that have come up here.
A lot of the benefit in these fiber deployments is the technology and ability to scale for the telco, so it's not just that everything else is equal except it's faster to the consumer. Accordingly, there's no need to have an OC12 or anything to realize the benefit of fiber installations in a community. In lots of cases, telcos which to provide a superior solution to the consumer/homeowner but still feel like they shouldn't be overly ahead of the competition (DSL, cable, etc), so speed is limited below 10Mbps. In many installations, although the hardware will ultimately scale up, the consumers are currently only receiving 10Mbps half-duplex ethernet to their router. Given the incredible scale and management issues of fiber installations to cable cos and telcos, it's not true that there's no incentive to build fiber into new developments.
Additionally, even if you were giving everyone 100Mbps full duplex to the home, it's not like it's going to require 100Mbps * [number of consumers] upstream bandwidth. 99% of people are still just hitting cnn.com, weather.com, etc. These fiber installations are less common in urban areas, too, so the population is generally older and less likely to be, say, Bearsharing. Given the cost of overbuilding (as opposed to new construction), there's not a huge motivation to upgrade from traditional copper to fiber at this point in urban areas or inside cities.
There are two main technologies right now -- FTTC (Fiber To the Curb) and FTTH (Fiber To The Home). With FTTC, most installations have fiber running to an optical unit in someone's front yard and eight people share that connection. With FTTH, there's a box outside everyone's home and the fiber is individually run to them. The huge advantage of FTTH is that there's limited overhead to a deployment until the homeowner moves in. With FTTC, you have to throw all your money down as soon as the first of eight (or whatever the hardware supports) potential customers moves in.
I disagree that residential services are not where the money is. It entirely depends on the overhead and your pricing structure, of course, but the statement just isn't true that you need to target businesses or apartments.
There's no reason why you should feel like a pre-wired house is lame because it won't meet your expectations. My experience has been that the telco/cable operator schedules a meeting with the new homeowner a week or so before they plan to move into the house. They go through with the homeowner and decide where they wish to have ethernet/phone/cable/etc jacks throughout the house. Additionally, most homes have a little hatch in the laundry room that's sized to fit a router, hub, etc. The cable techs are getting pretty clued and offer advice to homeowners on how to wire things, where they could put APs, etc. It's totally customized and there's no reason to think that you wouldn't be satisfied. After all, they just do what you tell them to and it's profesionally installed.
I don't see why security is an issue in a way that it isn't for DSL/Cable/etc. To the consumer, FTTH/FTTC (fiber to the home / fiber to the curb) installations are just the same as cable/dsl/etc. It's not like you just plug into Ethernet and you're on a subnet with a million other windows machines discovering domains and workgroups, etc. Everyone's connection is separate, it's all switched, there's no easy way to packet sniff, there's no fighting for bandwidth, and some communities even use PPPoE. Additionally, with most homes having more than one computer, practically everyone has a router in the little hatch in the laundry room.
Overall, it's a really great technology and getting better. I'm pretty jealous to not have our service at my home. We have thousands of homeowners online with the majority being FTTC in neighborhoods that we've had online for over two years, and FTTH being newer and those homes in the minority.
Such a product (I'm uncomfortable calling it a 'feature') would encourage domain squatting and further pollute the available namespace.
However, I'm not oblivious to the fact that it would be profitable for registrars that are involved. I miss the days of the non-profit Internic. With all of the 'progress,' I don't really see a single thing that's better about root management and domain registration today than it was in, say, 1994. In 8 years, all that we've done is create a handful of useless companies and waste a significant amount of money. That's without even mentioning the countless leeches (domain squatters) that are encouraged by this system.
This is the wrong step to take for Internet DNS. Luckily, this is only a proposal and thus not much should be made of it. I'd be quite shocked if this made it much further, especially in the state that it's in.
If you think that Grand Cayman is a poor choice for Internet connectivity then you are sorely mistaken.
In the past years, Cable and Wireless has invested hundreds of millions of dollars into their Cable and Wireless: Cayman Islands subsidiary. They offer nearly every high-tech Internet solution that you would expect in a well-funded area.
Although many companies simply use the Cayman Islands as a place to incorporate, there is significant business presence there, so the viability of locating there is not out of the question.
-dbaker
-- Daniel Baker - dbaker@(cuckoo.com|distributed.net|FreeBSD.org)
I'd like to again thank everyone for their support throughout this project. distributed.net is nothing without the amazing user support that we receive.
For the record, we received official confirmation and congratulations from CS Communications & Systems on our CS-Cipher solution.
For those that missed it:
Contest: CS-CIPHER Solution: 61 A3 9E 36 BF 4F F0
The secret message is: CS-Cipher a ete presente en mars 97 a Fast Software Encryption (PARIS). Congratulations to the winner!
Moo!
-dbaker -- Daniel Baker - dbaker@cuckoo.com - dbaker@distributed.net
We've already started serving keys and our users' clients are happily crunching. Anyone firing up a new CSC client should expect to receive CSC blocks immediately.
As of the time of this post (04:00UTC), we're just about to hit 200Mkey/second. We've completed a little over.007% of the keyspace. Although this seems very slow, it's an amazing start for a project with clients that we just released. At this point, we've distributed thousands of clients, but most won't report back until they've completed ten blocks. I expect the rate to have a huge increase in the next few hours as clients start submitting their first blocks.
Daniel
-- Daniel Baker - dbaker@cuckoo.com - dbaker@distributed.net
Although some competition would be great among the distributed computing projects, dcypher.net seems to have picked a bad contest to try and get off the ground with. Perhaps more of a "marathon" challenge would be optimal, instead of the "sprint" that CSC provides.
We had already announced our intent to do CSC, and have an enormous amount of computing power in comparison to the newly-formed dcypher. Dcypher really can't expect to beat us to the CSC key, and after one unsuccessful challenge, their users will likely be unmotivated to stay around.
At this point, our CSC/OGR clients are only in a beta testing phase; however, based on the few hours that we've been running this public beta, our key-checking rate is at least twice that of dcypher. We'll probably be releasing the final clients in the next week or two, and at that point, our rate will be large enough that we should be able to exhaust the entire keyspace in a few weeks.
Daniel
-- Daniel Baker - dbaker@cuckoo.com - dbaker@distributed.net
Well, it appears that Sun's mood is to acquire anything that will help them crush Linux. Although Linux has been quite popular with small organizations that want computing power with limited funds or resources, Linux has not conquered the market of the major players like Exxon, Sprint, AT&T, Boeing, etc. Accordingly, Sun needs to protect the Solaris/Sun market.
Furthering their vision of the network computer, java, and running "dot com" businesses while making Linux less and less of a viable product for large corporations will allow Linux to remain a small-time operating systems. Now that Sun's Solaris license allows free use to non-commercial users, they're on the "Free OS" turf, too. (Yes, I know about the open source issues, let's not even go there.)
Sun Microsystems is making some very smart moves and I'll be interested to see where it plays out. Although their popularity with Slashdot users and other OSS fans is probably low right now, it's worthwhile to realize that OSS users is not where the significant market share is. Sun is strong with the big boys, and getting stronger. I'll be interested to see how it plays out in the long run. -- Daniel Baker - dbaker@cuckoo.com - dbaker@distributed.net
Although the article is quite interesting and encouraging for those of us that would like to see more relaxed crypto laws, I do have to wonder why Linux is such a popular topic in this article:
"...in a possible move acknowledging the growing importance of Linux, a top export official said Tuesday."
How does this acknowledge Linux? Is this just an attempt for the government to sound clued? Of course we know the government is clued; our vice president invented the Internet! -- Daniel Baker - dbaker@cuckoo.com - dbaker@distributed.net
I think it's a little too early to talk about what it will be like without Cowpland leading Corel. At this point, he hasn't admitted to any wrongdoing, nor has he been convicted of such. False accusations are made all the time, and this could possibly be one of those unfortunate situations. Naturally, the evidence that we've seen thus far doesn't look too promising, but it's possible that he could clear his name in this situation. I would hate to have his name ruined based on assumptions and rumors before we actually hear the facts. -- Daniel Baker - dbaker@cuckoo.com - dbaker@distributed.net
It's really the concept, not the current result.
on
Be Inc. IPO-bound
·
· Score: 2
When an investor considers investing in Be, they are not investing in the current quality of the product; they are investing in the concept of Be and the mission of the company. As long as the current result falls in line with the general mission of the company, it can be assumed that the company in question is on course.
If a company had to be extremely successful, popular, and reliable before they IPOed, trying to have a startup (especially tech startups) in this world would be extremely different than it is today. Companies such as Yahoo (NSDQ: YHOO) and Amazon.com (NSDQ: AMZN) are fairly accurate examples of this situation.
While Be doesn't currently have the application base to be a strong competitor against the other OSes, one should evaluate the possibilities that will evolve as the company (and software!) develops. -- Daniel Baker - dbaker@cuckoo.com - dbaker@distributed.net
No matter how many books you read on security, it's typically experience that pays off in the long run. You should likely investigate hiring a UNIX admin that's been handling security for several years.
Regardless, one would be best off using FreeBSD; it has far fewer exploits than the slashdot-preferred Linux.
Multiple layers of security is best for any machine; redundancy is the absolute key for security. You don't just have one level of restrictions which could be possibly exploited or tricked. For example, for ssh, restrict hosts in the sshd_config file, and compile in libwrap support, and use ipfw. By those actions alone, ssh is amazingly more secure.
In terms of web-specific stuff, make sure to closely look over your httpd.conf to see what is available to your users. You should also make an educated decision about if you want to allow CGIs.
Overall: Stay up to date with software versions. -- Daniel Baker - dbaker@cuckoo.com - dbaker@distributed.net
I'm quite satisfied that Scott Adams seems to be accurately representing the clue level of the average Linux user.
It's quite funny how foaming-at-the-mouth Linux users don't realize that "LINUX RULES" emails, etc, actually have a negative effect on people's view of Linux, and Linux users.
It's nice to know that Linux can dig it's own grave. -- Daniel Baker - dbaker@cuckoo.com - dbaker@distributed.net
Slashdot Mirror
FlightAware's PiAware software and FlightAware's FlightFeeder hardware both allow access to unfiltered access over TCP ports 10001, 30002, and 30003 as well as a live web interface on port 8080.
FlightAware, for years, has offered APIs and data feeds: https://flightaware.com/commer...
FlightAware makes it available in data feeds and APIs: https://flightaware.com/commer...
False. Have you ever signed a merchant contract? I have.
The merchant whose billing data was compromised is liable as well -- both for the charges, the cost of replacing cards, and fines by the issuer and/or credit card network.
It's easy to take a bunch of fraudulent charges and see which merchant they have in common to determine the source of the data. Merchants are fined more if they don't disclose a breach of data before the credit card companies discover it.
That is real applause and laughter. The incident occured at Comdex in front of a large audience. Welcome to last century.
By "hardly anybody," do you mean NBC's 9,200,000 viewers ? Or the 24,000,000 combined that watch national evening news on the major networks?
The card is required to be signed for the transaction to be completed to ensure that you have agreed to the cardholder contract.
Like many things, if you don't understand them, they're quite easy to mock. In this case, the policy for an unsigned card is to make the customer sign it and then sign the receipt and compare the two.
When that is completed, the merchant can rest assured that the customer has agreed to the cardholder agreement and agreed to the terms on the receipt provided by the merchant.
I'm the head of technology for a company that provides connectivity and management solutions to telcos/cable cos that are providing these sorts of services to neighborhoods and can clear up a handful of the issues that have come up here.
A lot of the benefit in these fiber deployments is the technology and ability to scale for the telco, so it's not just that everything else is equal except it's faster to the consumer. Accordingly, there's no need to have an OC12 or anything to realize the benefit of fiber installations in a community. In lots of cases, telcos which to provide a superior solution to the consumer/homeowner but still feel like they shouldn't be overly ahead of the competition (DSL, cable, etc), so speed is limited below 10Mbps. In many installations, although the hardware will ultimately scale up, the consumers are currently only receiving 10Mbps half-duplex ethernet to their router. Given the incredible scale and management issues of fiber installations to cable cos and telcos, it's not true that there's no incentive to build fiber into new developments.
Additionally, even if you were giving everyone 100Mbps full duplex to the home, it's not like it's going to require 100Mbps * [number of consumers] upstream bandwidth. 99% of people are still just hitting cnn.com, weather.com, etc. These fiber installations are less common in urban areas, too, so the population is generally older and less likely to be, say, Bearsharing. Given the cost of overbuilding (as opposed to new construction), there's not a huge motivation to upgrade from traditional copper to fiber at this point in urban areas or inside cities.
There are two main technologies right now -- FTTC (Fiber To the Curb) and FTTH (Fiber To The Home). With FTTC, most installations have fiber running to an optical unit in someone's front yard and eight people share that connection. With FTTH, there's a box outside everyone's home and the fiber is individually run to them. The huge advantage of FTTH is that there's limited overhead to a deployment until the homeowner moves in. With FTTC, you have to throw all your money down as soon as the first of eight (or whatever the hardware supports) potential customers moves in.
I disagree that residential services are not where the money is. It entirely depends on the overhead and your pricing structure, of course, but the statement just isn't true that you need to target businesses or apartments.
There's no reason why you should feel like a pre-wired house is lame because it won't meet your expectations. My experience has been that the telco/cable operator schedules a meeting with the new homeowner a week or so before they plan to move into the house. They go through with the homeowner and decide where they wish to have ethernet/phone/cable/etc jacks throughout the house. Additionally, most homes have a little hatch in the laundry room that's sized to fit a router, hub, etc. The cable techs are getting pretty clued and offer advice to homeowners on how to wire things, where they could put APs, etc. It's totally customized and there's no reason to think that you wouldn't be satisfied. After all, they just do what you tell them to and it's profesionally installed.
I don't see why security is an issue in a way that it isn't for DSL/Cable/etc. To the consumer, FTTH/FTTC (fiber to the home / fiber to the curb) installations are just the same as cable/dsl/etc. It's not like you just plug into Ethernet and you're on a subnet with a million other windows machines discovering domains and workgroups, etc. Everyone's connection is separate, it's all switched, there's no easy way to packet sniff, there's no fighting for bandwidth, and some communities even use PPPoE. Additionally, with most homes having more than one computer, practically everyone has a router in the little hatch in the laundry room.
Overall, it's a really great technology and getting better. I'm pretty jealous to not have our service at my home. We have thousands of homeowners online with the majority being FTTC in neighborhoods that we've had online for over two years, and FTTH being newer and those homes in the minority.
The entire concept is absolutely absurd.
Such a product (I'm uncomfortable calling it a 'feature') would encourage domain squatting and further pollute the available namespace.
However, I'm not oblivious to the fact that it would be profitable for registrars that are involved. I miss the days of the non-profit Internic. With all of the 'progress,' I don't really see a single thing that's better about root management and domain registration today than it was in, say, 1994. In 8 years, all that we've done is create a handful of useless companies and waste a significant amount of money. That's without even mentioning the countless leeches (domain squatters) that are encouraged by this system.
This is the wrong step to take for Internet DNS. Luckily, this is only a proposal and thus not much should be made of it. I'd be quite shocked if this made it much further, especially in the state that it's in.
Cheers.
If you think that Grand Cayman is a poor choice for Internet connectivity then you are sorely mistaken.
In the past years, Cable and Wireless has invested hundreds of millions of dollars into their Cable and Wireless: Cayman Islands subsidiary. They offer nearly every high-tech Internet solution that you would expect in a well-funded area.
Although many companies simply use the Cayman Islands as a place to incorporate, there is significant business presence there, so the viability of locating there is not out of the question.
-dbaker
--
Daniel Baker - dbaker@(cuckoo.com|distributed.net|FreeBSD.org)
I'd like to again thank everyone for their support throughout this project. distributed.net is nothing without the amazing user support that we receive.
For the record, we received official confirmation and congratulations from CS Communications & Systems on our CS-Cipher solution.
For those that missed it:
Contest: CS-CIPHER
Solution: 61 A3 9E 36 BF 4F F0
The secret message is: CS-Cipher a ete presente en mars 97 a Fast Software Encryption (PARIS). Congratulations to the winner!
Moo!
-dbaker
--
Daniel Baker - dbaker@cuckoo.com - dbaker@distributed.net
Feel free to hop on over and check it out.
Daniel
--
Daniel Baker - dbaker@cuckoo.com - dbaker@distributed.net
As of the time of this post (04:00UTC), we're just about to hit 200Mkey/second. We've completed a little over .007% of the keyspace. Although this seems very slow, it's an amazing start for a project with clients that we just released. At this point, we've distributed thousands of clients, but most won't report back until they've completed ten blocks. I expect the rate to have a huge increase in the next few hours as clients start submitting their first blocks.
Daniel
--
Daniel Baker - dbaker@cuckoo.com - dbaker@distributed.net
Moo!
Although some competition would be great among the distributed computing projects, dcypher.net seems to have picked a bad contest to try and get off the ground with. Perhaps more of a "marathon" challenge would be optimal, instead of the "sprint" that CSC provides.
We had already announced our intent to do CSC, and have an enormous amount of computing power in comparison to the newly-formed dcypher. Dcypher really can't expect to beat us to the CSC key, and after one unsuccessful challenge, their users will likely be unmotivated to stay around.
At this point, our CSC/OGR clients are only in a beta testing phase; however, based on the few hours that we've been running this public beta, our key-checking rate is at least twice that of dcypher. We'll probably be releasing the final clients in the next week or two, and at that point, our rate will be large enough that we should be able to exhaust the entire keyspace in a few weeks.
Daniel
--
Daniel Baker - dbaker@cuckoo.com - dbaker@distributed.net
Furthering their vision of the network computer, java, and running "dot com" businesses while making Linux less and less of a viable product for large corporations will allow Linux to remain a small-time operating systems. Now that Sun's Solaris license allows free use to non-commercial users, they're on the "Free OS" turf, too. (Yes, I know about the open source issues, let's not even go there.)
Sun Microsystems is making some very smart moves and I'll be interested to see where it plays out. Although their popularity with Slashdot users and other OSS fans is probably low right now, it's worthwhile to realize that OSS users is not where the significant market share is. Sun is strong with the big boys, and getting stronger. I'll be interested to see how it plays out in the long run.
--
Daniel Baker - dbaker@cuckoo.com - dbaker@distributed.net
"...in a possible move acknowledging the growing importance of Linux, a top export official said Tuesday."
How does this acknowledge Linux? Is this just an attempt for the government to sound clued? Of course we know the government is clued; our vice president invented the Internet!
--
Daniel Baker - dbaker@cuckoo.com - dbaker@distributed.net
I think it's a little too early to talk about what it will be like without Cowpland leading Corel. At this point, he hasn't admitted to any wrongdoing, nor has he been convicted of such. False accusations are made all the time, and this could possibly be one of those unfortunate situations. Naturally, the evidence that we've seen thus far doesn't look too promising, but it's possible that he could clear his name in this situation. I would hate to have his name ruined based on assumptions and rumors before we actually hear the facts.
--
Daniel Baker - dbaker@cuckoo.com - dbaker@distributed.net
If a company had to be extremely successful, popular, and reliable before they IPOed, trying to have a startup (especially tech startups) in this world would be extremely different than it is today. Companies such as Yahoo (NSDQ: YHOO) and Amazon.com (NSDQ: AMZN) are fairly accurate examples of this situation.
While Be doesn't currently have the application base to be a strong competitor against the other OSes, one should evaluate the possibilities that will evolve as the company (and software!) develops.
--
Daniel Baker - dbaker@cuckoo.com - dbaker@distributed.net
Regardless, one would be best off using FreeBSD; it has far fewer exploits than the slashdot-preferred Linux.
Multiple layers of security is best for any machine; redundancy is the absolute key for security. You don't just have one level of restrictions which could be possibly exploited or tricked. For example, for ssh, restrict hosts in the sshd_config file, and compile in libwrap support, and use ipfw. By those actions alone, ssh is amazingly more secure.
In terms of web-specific stuff, make sure to closely look over your httpd.conf to see what is available to your users. You should also make an educated decision about if you want to allow CGIs.
Overall: Stay up to date with software versions.
--
Daniel Baker - dbaker@cuckoo.com - dbaker@distributed.net
It's quite funny how foaming-at-the-mouth Linux users don't realize that "LINUX RULES" emails, etc, actually have a negative effect on people's view of Linux, and Linux users.
It's nice to know that Linux can dig it's own grave.
--
Daniel Baker - dbaker@cuckoo.com - dbaker@distributed.net