Kills the httpd demon and doesn't allow remote execution (or web management) until rebooted, where router-adress is the netgear. That is work around enough.
"...You hadn't exactly gone out of your way to call attention to them had you? I mean like actually telling anyone or anything.' But the plans were on display...' o n display? I eventually had to go down to the cellar to find them.' `That's the display department.' `With a torch.' `Ah, well the lights had probably gone.' `So had the stairs.' `But look you found the notice didn't you?' `Yes,' said Arthur, `yes I did. It was on display in the bottom of a locked filing cabinet stuck in a disused lavatory with a sign on the door saying "Beware of The Leopard".' -- Douglas Adams.
It's about the same to turn off the ads. Or will be soon. You get what you pay for.
I've enjoyed Steve Jackson Games for years. I have Zombie Dice, Illuminati and Munchkin and have enjoyed Ogre and Car Wars in table top and computer form. I've played GURPS as well. That is a diverse bunch of games from one company.
It supports the Essex version and will support the next rev when released, but this part bothers me:
"What are the requirements for using the preview software?
A: The preview version of the Red Hat OpenStack software only works with Red Hat Enterprise Linux 6.3 or higher. You'll need a Red Hat Enterprise Linux subscription for each server you install with the Red Hat OpenStack software."
It maybe less work than with Fedora 17- but 17 includes OpenStack and has a how to get started (some bash-ing required).
"Each campus or office got a/48 address block, which meant that it was allotted 280 addresses. In turn, each building got a/56 block of those addresses (or about 272 addresses) and each VLAN (Virtual Local Area Network) received a/64 block, or about 264 addresses."
a/48 block is 65536 subnets for each campus. A/64 has 18,446,744,073,709,551,616 IP addresses.
The RFCs on this type of thing are RFC 6177 which replaced 3177 and RFC 5375. For a itworld/usenix article, fact checking is really low.
You should check out the Palo Alto Networks firewall. It does some interesting things, and came to that obvious conclusion a while ago.
And it deals with Port 80 and Port 443 really well.
My other favorite thing is applications- ever try to let ftp through a firewall (or stop skype?)- port hopping, neither a client nor a server, very interesting. Well the PAN stuff has that nailed down- you can't depend on port and protocol anymore, you need multiple ways to identify an app- and it has them.
1. Download the desired.img or.iso file
2. Open a Terminal (under Utilities)
3. Run diskutil list to get the current list of devices
4. Insert your flash media
5. Run diskutil list again and determine the device node assigned to your flash media (e.g./dev/disk2)
6. Run diskutil unmountDisk/dev/diskN
7. Execute sudo dd if=/path/to/downloaded.img of=/dev/diskN bs=1m
8. Run diskutil eject/dev/diskN and remove your flash media when the command completes
UTM is a crock. It loads multiple single purpose apps on to a general purpose computing device and then tries to do it quickly.
The best thing in this field I've seen recently is Palo Alto Networks firewall (www.paloaltonetworks.com).
Knows the applications, even web apps. It can tell the difference between Gmail and gchat. Bittorent and wow torrent patching. Can do user based rules when integrated with AD. And can proxy SSL to look in the SSL stream if necessary. Malware blocking, url filtering via subscription. Because ports or protocols != applications and IP address != user anymore.
Either they don't use McAfee secure ( http://www.mcafeesecure.com/us/ Probably the right website, who knows really ), or their own dog food is garbage.
Either way it is bad gaffe. XSS is pretty well known in security circles. And this mistake is a relatively simple one (output validation or output filtering? please. After you read the linked article, you'll be even more sad they didn't catch this.
I hope not. There are a few pieces that are critical in education that are very difficult to do with distance learning:
1- make relationships with students and teachers. Sometimes the relationships with other students or teachers are what makes the difference in life.
2- the moral component is very hard to teach with distance learning. I'd rather nuclear chemistry or even computer science be taught within a moral framework- because it is easy to use great knowledge for the wrong purpose
3- subtlety of expression- sometimes lost in distance learning- actually it is lost in large classroom sizes sometimes as well.
Read a little further along the article for your answer;
Price? it can be built for less than $250, including packaging. Add in fixed costs and other stuff you have to deal with (like returns), and you can sell it for $300 and probably not go out of business.
I'd like to see that business plan. I suspect if you build it at 250$ the least you could sell it for and not go out of business is 500$. That might be normal.
83% cost of manufacture? At a price point of a few hundred dollars, it is almost impossible to break even, much less turn a profit.
You could survive 80%+ cost of manufacture if you had a very low price point (1$ or less), had no support or return costs, and very low advertising and could sell millions or billions of them. Even then you would want to get down to 50% or less.
I know I shouldn't feed the troll but I can't help it. I can tell you've never used both in more than a cursory way. They have very similar functionality now. Except RPM and yum is actually better with multi-architecture (which is very common with 64bit/32bit mixed on a 64bit system) than apt/dpkg.
And yum is every bit as usable as apt. So I'd say actually yum/rpm has the upperhand until everything goes single architecture again and the migration to 64bit is over. Or if someone fixes apt/dpkg.
On the other hand, for a desktop, the end user should normally never see either. They are likely to see synaptic or some front end.
As with all recommended books- make sure you read critically:
System and Practice of Network Administration by Limoncelli and Hogan. Not a how to book a why to book. It should be required reading for everyone in IT. How to Win Friends and Influence People by Dale Carnegie. Also should be required reading for everyone in IT.
If you are a router jockey: Routing TCP/IP vol 1, by Doyle, covers the IGPs. Internet Routing Architectures by Sam Halabi
And the new world: MPLS and VPN Architectures (probably vol. 1 and 2 if you have to do Service Provider or VRF) by Pepelnjak
If you are a sysadmin- you should read every shred of manufacturer's documentation on their website especially the login required. But if you can't always read the installation and configuration guides.
If you are a software dev guy: Mythical Man Month- Fred Brooks Peopleware- DeMarco and Lister
It will teach you about the why and how of managing the development cycle. Of course the algorithms and tools, and languages books are important, but so is understanding the development cycle and how the rest of the business sees it.
I wish I had a good intro to business text for the slot to recommend to all the types.
There is Out of Crisis by Deming for managers. I could probably come up with more...
1- NFS performance is amazing. It isn't the protocol you have performance problems with it is the transport (layer 1 or layer 2). The protocol in a transport might make a couple % points difference, and that even rarely.
The transport is where it is at. Comparing gigabit with FC is a losing battle for NFS, but compare 10G with FC (even 8G FC) and you have NFS at the top of the performance heap right now for mass storage, only iSCSI is in the same ballpark- but it is also on... 10G ethernet. iSCSI also cannot do simultaneous reads/writes like POSIX compliant NFS can. Direct attach is miserable because you invest loads in disk and can only use it on one server. What if you want to share that data around? Replicate? Islands of storage?
2) use automounter. Seriously, this hasn't been a problem for 5-10 years. Automounter, hostnames, don't use IP addresses (better if you can reverse the addresses).
You obviously haven't maintained NFS either recently or in a large environment.
NFSv4 does things your post doesn't even mention (security and ACL improvements, some performance in some cases).
A:For USB Mass Storage devices (that is, devices which use the usb-storage driver) max_sectors controls the maximum amount of data that will be transferred to or from the device in a single command. As the name implies this transfer length is measured in sectors, where a sector is 512 bytes (that's a logical sector size, not necessarily the same as the size of a physical sector on the device). Thus for example, max_sectors = 240 means that a single command will not transfer more than 120 KB of data.
But for almost all the same functionality and the ability to do presos, documents and spreadsheet collaboratively and simultaneously Google Docs is pretty awesome.
I have had a mac notebook (okay a couple different notebooks) for about 10 years for just that type of thing.
I don't boot, I just let it sleep all the time. It sleeps for days. When I need it, open, wake, login. I require login from wake but you could speed it up by not requiring the security, and then text edit.
OS X wakes from sleep, login, and start vi-ing in under 10 seconds on my current MacBook, the stop watch test just did 7 sec (closed, slept, then timed waking and continuing this post). And it is pretty reliable. The only thing that has ruined that reliability is sleeping virtualized servers in VmWare or Parallels, then sometimes it takes longer.
I could see there was a Zerg base and the player was building some Zerg stuff (could barely see what it was). Then some grey blobs came in and pointed some yellow flashing triangles and then the player played poorly, made some Zerg that ate only some of the marines. Then something happend and some tanks came. I couldn't watch anymore because my eyesight was going from trying to focus on the blurry video.
LOC measures something that has a some relation to complexity (more lines is usually more complex) but has nothing to do with quality or functionality. It is also almost impossible to draw specific conclusions by comparing on project's LOC to another's LOC.
Pretty much the same with ratio of IT to over employees. You can't really compare very well between companies, and more employees in IT doesn't mean better service or higher value in return to the company.
No Outlook for Mac..;)...though they do have a mail/schedule/calendar app...
It is called Entourage on the Mac. The full version of Office 2008 includes the Exchange enabled Entourage on OS X is about as functional as Outlook is on Windows. It interfaces with Exchange (I heard the Student/Teacher edition doesn't- don't know if that is true) which is the only reason to use Outlook (as there are many mail readers superior to Outlook on almost every OS).
Look at the description. Does it run RH? If it exports a Lustre filesystem, I think Lustre only runs on *nix.
Does anyone know the real implementation details behind this system? Is it part Linux, part Windows? Was it linux and now Windows? Did they port Lustre to Windows?
Re:Finally, developers' ignorance and childish
on
The State of X.Org
·
· Score: 2, Informative
He could run X apps on the mac, but you can't export native OS X apps over X from the mac.
And to be pedantic from a mac to a linux box, it is actually "ssh -Y linuxserver" for whatever reason the X auth doesn't work but the Y option for the auth works fine.
I run X apps from the server to the macbook all the time. The other way doesn't work as well because Quartz doesn't have network transparency.
I've done a couple clusters of 2200 machines per cluster (small for google). I'd bet Google does geographic IP addressing, using the RFC1918 10.0.0.0/8 network. We did. With 40 or 80 servers in a rack we did L3 bounds pretty easily for every rack or so. Since L3 switching at the edge is cheap and fast, solves scaling at L2, and L3 routing protocols have quick predictable ways to route around failure, it was easy to aggregate. If you can subnet and supernet, you too can build huge networks for clusters without too much trouble.
It really isn't that hard to build huge networks anymore. I wouldn't say it was non-trivial, but it didn't require as much smarts and research as building some really good software. The operational end can be a pain sometimes, but there are some really nice datacenter switches available now.
Slashdot Mirror
1.0.5.48_1.1.79 is vulnerable. As I had one laying around, plugged it in and it would execute code when I shot it the url.
Updated to V1.0.7.2_1.1.93 also vulnerable.
http://router-address/cgi-bin/...'
Kills the httpd demon and doesn't allow remote execution (or web management) until rebooted, where router-adress is the netgear. That is work around enough.
" ...You hadn't exactly gone out of your way to call attention to them had you? I mean like actually telling anyone or anything.' But the plans were on display...' o n display? I eventually had to go down to the cellar to find them.' `That's the display department.' `With a torch.' `Ah, well the lights had probably gone.' `So had the stairs.' `But look you found the notice didn't you?' `Yes,' said Arthur, `yes I did. It was on display in the bottom of a locked filing cabinet stuck in a disused lavatory with a sign on the door saying "Beware of The Leopard".' -- Douglas Adams.
It's about the same to turn off the ads. Or will be soon. You get what you pay for.
I've enjoyed Steve Jackson Games for years. I have Zombie Dice, Illuminati and Munchkin and have enjoyed Ogre and Car Wars in table top and computer form. I've played GURPS as well. That is a diverse bunch of games from one company.
What is your game design process like?
What elements do computer game design and tabletop design have in common?
I'd rather use Fedora 17.
From the FAQ:
It supports the Essex version and will support the next rev when released, but this part bothers me:
"What are the requirements for using the preview software?
A: The preview version of the Red Hat OpenStack software only works with Red Hat Enterprise Linux 6.3 or higher. You'll need a Red Hat Enterprise Linux subscription for each server you install with the Red Hat OpenStack software."
It maybe less work than with Fedora 17- but 17 includes OpenStack and has a how to get started (some bash-ing required).
http://fedoraproject.org/wiki/Getting_started_with_OpenStack_on_Fedora_17
"Each campus or office got a /48 address block, which meant that it was allotted 280 addresses. In turn, each building got a /56 block of those addresses (or about 272 addresses) and each VLAN (Virtual Local Area Network) received a /64 block, or about 264 addresses."
a /48 block is 65536 subnets for each campus. A /64 has 18,446,744,073,709,551,616 IP addresses.
The RFCs on this type of thing are RFC 6177 which replaced 3177 and RFC 5375. For a itworld/usenix article, fact checking is really low.
You should check out the Palo Alto Networks firewall. It does some interesting things, and came to that obvious conclusion a while ago.
And it deals with Port 80 and Port 443 really well.
My other favorite thing is applications- ever try to let ftp through a firewall (or stop skype?)- port hopping, neither a client nor a server, very interesting. Well the PAN stuff has that nailed down- you can't depend on port and protocol anymore, you need multiple ways to identify an app- and it has them.
DD on OSX is what I use.
1. Download the desired .img or .iso file /dev/disk2) /dev/diskN /dev/diskN and remove your flash media when the command completes
2. Open a Terminal (under Utilities)
3. Run diskutil list to get the current list of devices
4. Insert your flash media
5. Run diskutil list again and determine the device node assigned to your flash media (e.g.
6. Run diskutil unmountDisk
7. Execute sudo dd if=/path/to/downloaded.img of=/dev/diskN bs=1m
8. Run diskutil eject
UTM is a crock. It loads multiple single purpose apps on to a general purpose computing device and then tries to do it quickly.
The best thing in this field I've seen recently is Palo Alto Networks firewall (www.paloaltonetworks.com).
Knows the applications, even web apps. It can tell the difference between Gmail and gchat. Bittorent and wow torrent patching. Can do user based rules when integrated with AD. And can proxy SSL to look in the SSL stream if necessary. Malware blocking, url filtering via subscription. Because ports or protocols != applications and IP address != user anymore.
Either they don't use McAfee secure ( http://www.mcafeesecure.com/us/ Probably the right website, who knows really ), or their own dog food is garbage.
Either way it is bad gaffe. XSS is pretty well known in security circles. And this mistake is a relatively simple one (output validation or output filtering? please. After you read the linked article, you'll be even more sad they didn't catch this.
I hope not. There are a few pieces that are critical in education that are very difficult to do with distance learning:
1- make relationships with students and teachers. Sometimes the relationships with other students or teachers are what makes the difference in life.
2- the moral component is very hard to teach with distance learning. I'd rather nuclear chemistry or even computer science be taught within a moral framework- because it is easy to use great knowledge for the wrong purpose
3- subtlety of expression- sometimes lost in distance learning- actually it is lost in large classroom sizes sometimes as well.
Read a little further along the article for your answer;
Price? it can be built for less than $250, including packaging. Add in fixed costs and other stuff you have to deal with (like returns), and you can sell it for $300 and probably not go out of business.
I'd like to see that business plan. I suspect if you build it at 250$ the least you could sell it for and not go out of business is 500$. That might be normal.
83% cost of manufacture? At a price point of a few hundred dollars, it is almost impossible to break even, much less turn a profit.
You could survive 80%+ cost of manufacture if you had a very low price point (1$ or less), had no support or return costs, and very low advertising and could sell millions or billions of them. Even then you would want to get down to 50% or less.
I know I shouldn't feed the troll but I can't help it. I can tell you've never used both in more than a cursory way. They have very similar functionality now. Except RPM and yum is actually better with multi-architecture (which is very common with 64bit/32bit mixed on a 64bit system) than apt/dpkg.
And yum is every bit as usable as apt. So I'd say actually yum/rpm has the upperhand until everything goes single architecture again and the migration to 64bit is over. Or if someone fixes apt/dpkg.
On the other hand, for a desktop, the end user should normally never see either. They are likely to see synaptic or some front end.
75$ in 1897 would be a large sum as of recently:
What cost $75 in 1897 would cost $1846.03 in 2007.
According to one inflation calculator. But the linked article as a man in 1989 cursing and that 75$ isn't as interesting:
What cost $75 in 1989 would cost $123.93 in 2007.
As with all recommended books- make sure you read critically:
System and Practice of Network Administration by Limoncelli and Hogan. Not a how to book a why to book. It should be required reading for everyone in IT.
How to Win Friends and Influence People by Dale Carnegie. Also should be required reading for everyone in IT.
If you are a router jockey:
Routing TCP/IP vol 1, by Doyle, covers the IGPs.
Internet Routing Architectures by Sam Halabi
And the new world:
MPLS and VPN Architectures (probably vol. 1 and 2 if you have to do Service Provider or VRF) by Pepelnjak
If you are a sysadmin- you should read every shred of manufacturer's documentation on their website especially the login required. But if you can't always read the installation and configuration guides.
If you are a software dev guy:
Mythical Man Month- Fred Brooks
Peopleware- DeMarco and Lister
It will teach you about the why and how of managing the development cycle. Of course the algorithms and tools, and languages books are important, but so is understanding the development cycle and how the rest of the business sees it.
I wish I had a good intro to business text for the slot to recommend to all the types.
There is Out of Crisis by Deming for managers. I could probably come up with more...
??
1- NFS performance is amazing. It isn't the protocol you have performance problems with it is the transport (layer 1 or layer 2). The protocol in a transport might make a couple % points difference, and that even rarely.
The transport is where it is at. Comparing gigabit with FC is a losing battle for NFS, but compare 10G with FC (even 8G FC) and you have NFS at the top of the performance heap right now for mass storage, only iSCSI is in the same ballpark- but it is also on... 10G ethernet. iSCSI also cannot do simultaneous reads/writes like POSIX compliant NFS can. Direct attach is miserable because you invest loads in disk and can only use it on one server. What if you want to share that data around? Replicate? Islands of storage?
2) use automounter. Seriously, this hasn't been a problem for 5-10 years. Automounter, hostnames, don't use IP addresses (better if you can reverse the addresses).
You obviously haven't maintained NFS either recently or in a large environment.
NFSv4 does things your post doesn't even mention (security and ACL improvements, some performance in some cases).
make sure you are on USB 2.0- interface can kill you.
Also did you check the faq-
No seriously:
http://www.linux-usb.org/FAQ.html#i5
especially the section on:
Q: What is max_sectors and how should I use it?
A:For USB Mass Storage devices (that is, devices which use the usb-storage driver) max_sectors controls the maximum amount of data that will be transferred to or from the device in a single command. As the name implies this transfer length is measured in sectors, where a sector is 512 bytes (that's a logical sector size, not necessarily the same as the size of a physical sector on the device). Thus for example, max_sectors = 240 means that a single command will not transfer more than 120 KB of data.
I love sub-etha edit and used it for a long time.
But for almost all the same functionality and the ability to do presos, documents and spreadsheet collaboratively and simultaneously Google Docs is pretty awesome.
Don't boot.
I have had a mac notebook (okay a couple different notebooks) for about 10 years for just that type of thing.
I don't boot, I just let it sleep all the time. It sleeps for days. When I need it, open, wake, login. I require login from wake but you could speed it up by not requiring the security, and then text edit.
OS X wakes from sleep, login, and start vi-ing in under 10 seconds on my current MacBook, the stop watch test just did 7 sec (closed, slept, then timed waking and continuing this post). And it is pretty reliable. The only thing that has ruined that reliability is sleeping virtualized servers in VmWare or Parallels, then sometimes it takes longer.
I could see there was a Zerg base and the player was building some Zerg stuff (could barely see what it was). Then some grey blobs came in and pointed some yellow flashing triangles and then the player played poorly, made some Zerg that ate only some of the marines. Then something happend and some tanks came. I couldn't watch anymore because my eyesight was going from trying to focus on the blurry video.
Here it looked like this:
"OOO {iii"
And now you've seen the crummy movie.
Is a bit like lines of code (LOC) as a metric.
LOC measures something that has a some relation to complexity (more lines is usually more complex) but has nothing to do with quality or functionality. It is also almost impossible to draw specific conclusions by comparing on project's LOC to another's LOC.
Pretty much the same with ratio of IT to over employees. You can't really compare very well between companies, and more employees in IT doesn't mean better service or higher value in return to the company.
No Outlook for Mac.. ;) ...though they do have a mail/schedule/calendar app...
It is called Entourage on the Mac. The full version of Office 2008 includes the Exchange enabled Entourage on OS X is about as functional as Outlook is on Windows. It interfaces with Exchange (I heard the Student/Teacher edition doesn't- don't know if that is true) which is the only reason to use Outlook (as there are many mail readers superior to Outlook on almost every OS).
http://www.top500.org/system/8757
Look at the description. Does it run RH? If it exports a Lustre filesystem, I think Lustre only runs on *nix.
Does anyone know the real implementation details behind this system? Is it part Linux, part Windows? Was it linux and now Windows? Did they port Lustre to Windows?
He could run X apps on the mac, but you can't export native OS X apps over X from the mac.
And to be pedantic from a mac to a linux box, it is actually "ssh -Y linuxserver" for whatever reason the X auth doesn't work but the Y option for the auth works fine.
I run X apps from the server to the macbook all the time. The other way doesn't work as well because Quartz doesn't have network transparency.
I've done a couple clusters of 2200 machines per cluster (small for google). I'd bet Google does geographic IP addressing, using the RFC1918 10.0.0.0/8 network. We did. With 40 or 80 servers in a rack we did L3 bounds pretty easily for every rack or so. Since L3 switching at the edge is cheap and fast, solves scaling at L2, and L3 routing protocols have quick predictable ways to route around failure, it was easy to aggregate. If you can subnet and supernet, you too can build huge networks for clusters without too much trouble.
It really isn't that hard to build huge networks anymore. I wouldn't say it was non-trivial, but it didn't require as much smarts and research as building some really good software. The operational end can be a pain sometimes, but there are some really nice datacenter switches available now.