Good point, that is just asking for trouble. I have no idea why I thought that was a good idea. The only other alternative I can think of is to expose you LDAP server's SSL port to the Internet and require verified client certificates. Even if somebody gets a hold of your client certificate, all they can do is start trying to brute force. Of course, as far as I know, there's no way to lock an account if they try LDAP auth directly. Guess it's time to start believing the truth: LDAP isn't an authentication protocol. But hey, it works for me at home.
The only problem with it is, and this is only on my laptop (it's supposed to work), is changing passwords has to be done on the master LDAP server. Has something to do with update referrals, maybe PAM_LDAP doesn't follow them, but right now it's not a big issue for me so I haven't really looked into it.
Other than that, it works great (when it works). Replication goes through immedately, and any changes made when disconnected are pushed through as soon as the connection is re-established. It should be fairly easy to make up a script that copies over the configuration to a laptop, the hard part will be bringing down the LDAP server to add the slave. Your best bet is probably to have a slave server that does nothing but replicate to other slaves, that way you don't hang half the network an crash the other half.
I've been running LDAP auth at home for a couple years, and just set up the disconnected auth recently, so I don't know much about that specifically, but if you're going to set up LDAP auth in general, be prepared to do a lot of "crunch" work. An update will frequently change something that screws up authentication, and sometimes it's an hour or more before I can find the solution. Don't put root on it, and have a "machine" account that can su if you have SSH locked to not allow root logins. I can't imagine doing that in a production environment, which means testing, which means work (less than fucking something up though), and your test eventually won't catch something anyway (more work). Hopefully someday this stuff will be stable, NIS is a joke, and I don't know of any other distributed auth for Linux that includes groups.
One more thing, with the newer NSS_LDAP, make sure to set your bind_policy to "soft". I can't figure out why in the hell they changed that, but if you don't your machine will more than likely hang on boot (waits for the LDAP server before network is up. Stupid.)
Well, you're one of the only ones. My co-workers love me because I get shit done on time, and am nice most of the time. But, in order to be able to do those things, you have to stand up for yourself and not let little jerks try to manipulate you into rearranging your priority list to suit them instead of helping as many people as possible in whatever order they're actually important. Treating someone badly who's trying to screw you over isn't being an asshole, learn that and life gets a lot easier.
All you're doing is forcing your desired communication method on other people. Have you even tried picking up the phone? It usually takes less time than an e-mail. Learn which ones respond well to e-mail, which ones always pick up the phone, and you'll not only get better responses, but you'll also not be such an asshole. Try that shit on me and you'll get a blunt reply, CC'd wherever you feel like it, that I'm just too busy and can't do anything for you until tomorrow, if you're lucky. Unless you legitimately have an extremely important (to the managers you're CCing, not just yourself) issue (in which case I'll help you, but you'll pay later), it's pretty easy to come up with a justification for letting you cool your heels for a day or two. Hell, try it twice and your e-mails will start "getting caught by the spam filter."
See? You can be trained too.
Re:It's like nothing we've seen .. since Linux
on
A New Kind of OS
·
· Score: 1
No mod points, I refuse 'em, but right now I wish I had them all so I could mod this up to the front page. You've summed up exactly the way I feel about learning, using, and programming computers, and I only hope more people get it like you. My hat's off to ya.
Unfortunately, I'm certain that if I made a special lunch sandwich with razorblades, and some bastard stole it and hurt himself, the police would come after me.
That's 'cause you're fucking psycho, psycho.
Re:Youtube Wins
on
Bob Saget 2.0
·
· Score: 4, Informative
You should see his stand-up. The guy's hilarious, and his stuff is dirty as hell. He just sold out completely for Full House.
I understand the point and tone of your post, but other than the actual selfishness part I disagree.
Unless you're taking something away from somebody else, the only reason to give it to them is that you want to or it won't cost you anything. This includes your children. You should want to give them a good, comfortable, fulfilling, and educational life, but sacrifice doesn't have to be involved. It's not sacrifice to raise a child, it's a privilege in my book. But that doesn't mean you can't have a career too, you just have to have one that's able to accept that isn't particularly affected by taking fair amounts of unpredictable time off. In fact, sacrificing for your children is plain stupid. You need to plan so that you don't have to sacrifice to raise them. If you screw yourself over to raise children, you may end up resenting them (if you're an idiot--many are) and at the very least you'll be unhappy, which will affect your social instruction of the children. You are literally screwing your children over by making yourself miserable. If a career that doesn't take over your life isn't compatible with your happiness and your partner's the same way, you shouldn't have children, no ifs, ands, or buts about it.
The secret though, is the same as the secret to, well, maybe life itself. Always, always, leave them wanting more, unless you don't want them to want it any more. That goes for absolutely everything, including yourself. Leave the party maybe half an hour before you think you'd want to. The first side to want to end is the one that decides that time. You can exchange party for playing ball with your kid, or pretty much anything else. Enough to enjoy thouroughly, not enough to have any boredom associated with it. Don't fuck until you're sick of fucking every single time. Sometimes is good though. Above all, make sure that you yourself are having a good time, you will be more fun to be around if you are, people will sense when you're not having fun even if you're a fairly good actor (most people are horrible.)
Be selfish. Don't take something from somebody else to get what you want, but don't give to someboy else until you have (most, never wait for all) of what you want first. Then give freely, and you can do it happily because it doesn't involve stupid sacrifice. When you do that you're just making somebody else involuntarily act in the (bad) selfish way, and fucking them over for it in an odd roundabout way that has a very real effect.
This probably came off as insane babbling because I'm about 3 seconds from bed, but try to pull the concepts out of the blather, and it's good advice that'll help with your whole life, social especially, and being popular with your children gives you a lot more power to be a good parent. Gives you the opportunity to be authoratative instead of just authoritarian (sp?), look up the somewhat subtle difference if you don't know it already (especially in the parenting style psychological sense) and you'll see what I mean.
One final note, sacrifice comes sometimes, it's not necessarily bad, but you avoid the need for it as much as you possibly can, seeking it out is flat out stupid and doesn't help anyone. If you know you'll have to sacrifice to have kids and have them anyway knowing it'll make you a worse parent to have to sacrifice it's like buying a car you can't afford, and you're just being another asshole American.
It's 2.4Ghz, about the same as a microwave, which picked that frequency specifically because water absorbs it so well. I wouldn't be surprised if a much thinner layer of water ate the signal.
He's right everybody. I just got back... from The Future... in my flying DeLorean, and they try the cloning cow thing, and just like in Jurassic Park, the cows turn un-sterile, go mad and eat people.
Lesson learned: Everything that happens in a movie will someday happen, or is at least possible.
Don't forget the fanatical discipline it takes to get there. Getting to that level of fitness hurts, but they keep going, and do it again the next day. I have immense respect for anyone that can run a 4-minute mile or cycle 100 miles in a day.
A really nice part of this is that as more companies open-source their drivers, more companies can. How many times have we heard that the would, but they're dependant on closed-source code? As it is, the Intel open-sourcing has opened at least some of the paths to open-sourcing other chipsets on Intel boards.
This is of course assuming those companies aren't full of it.
Using that exact same argument, explain why you can't replace a picture of a dog with a picture of an ice cream cone and call it the same thing. Even better, explain why you can't photoshop a gun into someone's hand when they meet the President. Right now it sounds like you're saying that would be reasonable.
A majority of the benefit of going to school is the social integration. If you think you've found a way around that, you're wrong. I'm sure there is a way around it, but you haven't found it.
Re:Come on people, give the moon a break...
on
Moon's Bulge Explained
·
· Score: 4, Funny
(Wait, the moon IS a chick, isn't it?)
Hmm. So beautiful it inspires poetry, so attractive it pulls the sea, and men feel compelled to spend more than they can afford just to walk all over it. Oh, and let's not forget, every 28 days it swells and causes dogs to howl.
LoTR sucked. Or at least, I didn't enjoy it at all. I was bored, and when I wasn't bored I was confused. No, I never read the books--well, I got halfway through the series when I was thirteen--but they sucked too. I was about to go on a long diatrabe about exactly why and how they sucked, but I'm sure it's been done a thousand times better than I could do it already, so I'm just going to express my opinion and take the -1 flamebait -1 troll -1 omgwtfhedoesntlikelotrburnhim.
I just don't understand why so many people love this movie. Even non-geeks, and people who have even less of an idea what's going on than I do. Maybe it's the best fantasy movies out there. I'll concede that at least, but rather than spawning a bunch of good fantasy movies (Chronicles of Thomas Covenant is over-verbose and yet simple enough story-wise to compress to a trilogy movie, Discworld would be an awesome fantasy/comedy, WoT for an HBO series that runs for 3-6 years, etc.) it just seems to have fizzled out. I don't get it. If the people love a crappy fantasy movie, why wouldn't you follow that up with something good?
I'm looking at this from a purely selfish viewpoint; if everyone did the same this problem would not exist. Condoms are a great way to protect yourself, and that's it. I don't expect to change any behavior, in fact I expect that most people have way more unprotected sex than they admit to.
Traditional morals? I'll bet you dollars to dohnuts that in the '50s cheating was at best half of what it is to today, and 90% of the white dresses sold should have been pearl.
In any case, you're(sic) statistics about illegitimate children are just not really relevant.
Sure they are. They establish that infidelity is a reality. The difference is, if someone cheats when the couple is still using condoms the chance of transmitting a disease is greatly reduced. But if someone cheats in a commited relationship and catches something it's practially guaranteed that they'll pass it on. I'd say even if you go by the 2.5% statistic that infidelity is extremely common; I doubt more than 10% of cheating women are actually dumb enough to get pregnant, so you can estimate that at least 25% cheat. I'd say that based on my own observations and experiences too, even without the statistic. You can also estimate that the men cheat about the same; maybe more, maybe less, but not much either way. So with all this cheating going on, STDs propogate almost as well as if we were all "hitting it raw dog" the whole time, at least among cheaters and those that love them.
The issue with your plan is, people won't use condoms. I've been in a relationship commited enough to stop using them twice in my life. We were both tested beforehand, and at the time at least, I trusted them completely. But otherwise, it's a constant battle to use one all the time. They'll say, "Just once without won't hurt," if you don't have one on you, or figure after you've been together 5 times that's enough, or even try to take it off during. One girl even started taking it off--without using her hands--and got it most of the way before I realized what was going on. Not to mention breakage, or pinholes, or people allergic to latex--I had a married woman proposition me, but she was allergic to latex so she never used a condom.
What I'm saying is, your advocacy solution is no solution at all. There is no social solution, people's sex drives are just too strong. The best you'll manage is to make them hide it even more. The only real solution is a cure.
And once we have everything cured, it'll be the free love era again. there'll be so much fuckin' going on even a Slashdotter could get laid. Now what's wrong with that?
Slashdot Mirror
I know! It's like they expect you to know LDAP in order to set up LDAP authentication! The nerve!
If you don't even know what replication is in the context of LDAP, you probably should do some reading before you try to set it up.
Good point, that is just asking for trouble. I have no idea why I thought that was a good idea. The only other alternative I can think of is to expose you LDAP server's SSL port to the Internet and require verified client certificates. Even if somebody gets a hold of your client certificate, all they can do is start trying to brute force. Of course, as far as I know, there's no way to lock an account if they try LDAP auth directly. Guess it's time to start believing the truth: LDAP isn't an authentication protocol. But hey, it works for me at home.
I followed this guide: Implementing a Disconnected Authentication and PDC/BDC Relationships Using Samba and OpenLDAP.
The only problem with it is, and this is only on my laptop (it's supposed to work), is changing passwords has to be done on the master LDAP server. Has something to do with update referrals, maybe PAM_LDAP doesn't follow them, but right now it's not a big issue for me so I haven't really looked into it.
Other than that, it works great (when it works). Replication goes through immedately, and any changes made when disconnected are pushed through as soon as the connection is re-established. It should be fairly easy to make up a script that copies over the configuration to a laptop, the hard part will be bringing down the LDAP server to add the slave. Your best bet is probably to have a slave server that does nothing but replicate to other slaves, that way you don't hang half the network an crash the other half.
I've been running LDAP auth at home for a couple years, and just set up the disconnected auth recently, so I don't know much about that specifically, but if you're going to set up LDAP auth in general, be prepared to do a lot of "crunch" work. An update will frequently change something that screws up authentication, and sometimes it's an hour or more before I can find the solution. Don't put root on it, and have a "machine" account that can su if you have SSH locked to not allow root logins. I can't imagine doing that in a production environment, which means testing, which means work (less than fucking something up though), and your test eventually won't catch something anyway (more work). Hopefully someday this stuff will be stable, NIS is a joke, and I don't know of any other distributed auth for Linux that includes groups.
One more thing, with the newer NSS_LDAP, make sure to set your bind_policy to "soft". I can't figure out why in the hell they changed that, but if you don't your machine will more than likely hang on boot (waits for the LDAP server before network is up. Stupid.)
If you're anywhere near college-age, Boston is greener than just about anywhere else.
Well, you're one of the only ones. My co-workers love me because I get shit done on time, and am nice most of the time. But, in order to be able to do those things, you have to stand up for yourself and not let little jerks try to manipulate you into rearranging your priority list to suit them instead of helping as many people as possible in whatever order they're actually important. Treating someone badly who's trying to screw you over isn't being an asshole, learn that and life gets a lot easier.
All you're doing is forcing your desired communication method on other people. Have you even tried picking up the phone? It usually takes less time than an e-mail. Learn which ones respond well to e-mail, which ones always pick up the phone, and you'll not only get better responses, but you'll also not be such an asshole. Try that shit on me and you'll get a blunt reply, CC'd wherever you feel like it, that I'm just too busy and can't do anything for you until tomorrow, if you're lucky. Unless you legitimately have an extremely important (to the managers you're CCing, not just yourself) issue (in which case I'll help you, but you'll pay later), it's pretty easy to come up with a justification for letting you cool your heels for a day or two. Hell, try it twice and your e-mails will start "getting caught by the spam filter."
See? You can be trained too.
No mod points, I refuse 'em, but right now I wish I had them all so I could mod this up to the front page. You've summed up exactly the way I feel about learning, using, and programming computers, and I only hope more people get it like you. My hat's off to ya.
Maybe. Sometimes our anti-biases mechanisms end up fooling us into being biased. I think he'd be hilarious even if I had never heard of him before.
That's 'cause you're fucking psycho, psycho.
You should see his stand-up. The guy's hilarious, and his stuff is dirty as hell. He just sold out completely for Full House.
I understand the point and tone of your post, but other than the actual selfishness part I disagree.
Unless you're taking something away from somebody else, the only reason to give it to them is that you want to or it won't cost you anything. This includes your children. You should want to give them a good, comfortable, fulfilling, and educational life, but sacrifice doesn't have to be involved. It's not sacrifice to raise a child, it's a privilege in my book. But that doesn't mean you can't have a career too, you just have to have one that's able to accept that isn't particularly affected by taking fair amounts of unpredictable time off. In fact, sacrificing for your children is plain stupid. You need to plan so that you don't have to sacrifice to raise them. If you screw yourself over to raise children, you may end up resenting them (if you're an idiot--many are) and at the very least you'll be unhappy, which will affect your social instruction of the children. You are literally screwing your children over by making yourself miserable. If a career that doesn't take over your life isn't compatible with your happiness and your partner's the same way, you shouldn't have children, no ifs, ands, or buts about it.
The secret though, is the same as the secret to, well, maybe life itself. Always, always, leave them wanting more, unless you don't want them to want it any more. That goes for absolutely everything, including yourself. Leave the party maybe half an hour before you think you'd want to. The first side to want to end is the one that decides that time. You can exchange party for playing ball with your kid, or pretty much anything else. Enough to enjoy thouroughly, not enough to have any boredom associated with it. Don't fuck until you're sick of fucking every single time. Sometimes is good though. Above all, make sure that you yourself are having a good time, you will be more fun to be around if you are, people will sense when you're not having fun even if you're a fairly good actor (most people are horrible.)
Be selfish. Don't take something from somebody else to get what you want, but don't give to someboy else until you have (most, never wait for all) of what you want first. Then give freely, and you can do it happily because it doesn't involve stupid sacrifice. When you do that you're just making somebody else involuntarily act in the (bad) selfish way, and fucking them over for it in an odd roundabout way that has a very real effect.
This probably came off as insane babbling because I'm about 3 seconds from bed, but try to pull the concepts out of the blather, and it's good advice that'll help with your whole life, social especially, and being popular with your children gives you a lot more power to be a good parent. Gives you the opportunity to be authoratative instead of just authoritarian (sp?), look up the somewhat subtle difference if you don't know it already (especially in the parenting style psychological sense) and you'll see what I mean.
One final note, sacrifice comes sometimes, it's not necessarily bad, but you avoid the need for it as much as you possibly can, seeking it out is flat out stupid and doesn't help anyone. If you know you'll have to sacrifice to have kids and have them anyway knowing it'll make you a worse parent to have to sacrifice it's like buying a car you can't afford, and you're just being another asshole American.
It's 2.4Ghz, about the same as a microwave, which picked that frequency specifically because water absorbs it so well. I wouldn't be surprised if a much thinner layer of water ate the signal.
He's right everybody. I just got back ... from The Future ... in my flying DeLorean, and they try the cloning cow thing, and just like in Jurassic Park, the cows turn un-sterile, go mad and eat people.
Lesson learned: Everything that happens in a movie will someday happen, or is at least possible.
Don't forget the fanatical discipline it takes to get there. Getting to that level of fitness hurts, but they keep going, and do it again the next day. I have immense respect for anyone that can run a 4-minute mile or cycle 100 miles in a day.
Ahh, Windows. Stick a log file in a configuration directory, then take that configuration directory and stick it in a system file directory. Brillant!
I don't think of myself as a lion. You may as well though, I do have a mighty roar.
A really nice part of this is that as more companies open-source their drivers, more companies can. How many times have we heard that the would, but they're dependant on closed-source code? As it is, the Intel open-sourcing has opened at least some of the paths to open-sourcing other chipsets on Intel boards.
This is of course assuming those companies aren't full of it.
Using that exact same argument, explain why you can't replace a picture of a dog with a picture of an ice cream cone and call it the same thing. Even better, explain why you can't photoshop a gun into someone's hand when they meet the President. Right now it sounds like you're saying that would be reasonable.
A majority of the benefit of going to school is the social integration. If you think you've found a way around that, you're wrong. I'm sure there is a way around it, but you haven't found it.
Hmm. So beautiful it inspires poetry, so attractive it pulls the sea, and men feel compelled to spend more than they can afford just to walk all over it. Oh, and let's not forget, every 28 days it swells and causes dogs to howl.
I think you're on the right track.
Go make MySpace stop sucking.
LoTR sucked. Or at least, I didn't enjoy it at all. I was bored, and when I wasn't bored I was confused. No, I never read the books--well, I got halfway through the series when I was thirteen--but they sucked too. I was about to go on a long diatrabe about exactly why and how they sucked, but I'm sure it's been done a thousand times better than I could do it already, so I'm just going to express my opinion and take the -1 flamebait -1 troll -1 omgwtfhedoesntlikelotrburnhim.
I just don't understand why so many people love this movie. Even non-geeks, and people who have even less of an idea what's going on than I do. Maybe it's the best fantasy movies out there. I'll concede that at least, but rather than spawning a bunch of good fantasy movies (Chronicles of Thomas Covenant is over-verbose and yet simple enough story-wise to compress to a trilogy movie, Discworld would be an awesome fantasy/comedy, WoT for an HBO series that runs for 3-6 years, etc.) it just seems to have fizzled out. I don't get it. If the people love a crappy fantasy movie, why wouldn't you follow that up with something good?
I'm looking at this from a purely selfish viewpoint; if everyone did the same this problem would not exist. Condoms are a great way to protect yourself, and that's it. I don't expect to change any behavior, in fact I expect that most people have way more unprotected sex than they admit to.
Traditional morals? I'll bet you dollars to dohnuts that in the '50s cheating was at best half of what it is to today, and 90% of the white dresses sold should have been pearl.
I forgot you were a Mormon--nevermind that last paragraph.
Sure they are. They establish that infidelity is a reality. The difference is, if someone cheats when the couple is still using condoms the chance of transmitting a disease is greatly reduced. But if someone cheats in a commited relationship and catches something it's practially guaranteed that they'll pass it on. I'd say even if you go by the 2.5% statistic that infidelity is extremely common; I doubt more than 10% of cheating women are actually dumb enough to get pregnant, so you can estimate that at least 25% cheat. I'd say that based on my own observations and experiences too, even without the statistic. You can also estimate that the men cheat about the same; maybe more, maybe less, but not much either way. So with all this cheating going on, STDs propogate almost as well as if we were all "hitting it raw dog" the whole time, at least among cheaters and those that love them.
The issue with your plan is, people won't use condoms. I've been in a relationship commited enough to stop using them twice in my life. We were both tested beforehand, and at the time at least, I trusted them completely. But otherwise, it's a constant battle to use one all the time. They'll say, "Just once without won't hurt," if you don't have one on you, or figure after you've been together 5 times that's enough, or even try to take it off during. One girl even started taking it off--without using her hands--and got it most of the way before I realized what was going on. Not to mention breakage, or pinholes, or people allergic to latex--I had a married woman proposition me, but she was allergic to latex so she never used a condom.
What I'm saying is, your advocacy solution is no solution at all. There is no social solution, people's sex drives are just too strong. The best you'll manage is to make them hide it even more. The only real solution is a cure.
And once we have everything cured, it'll be the free love era again. there'll be so much fuckin' going on even a Slashdotter could get laid. Now what's wrong with that?