Disagree. C problems are in no way improved by making code less readable.
Including data type in variable names is bad. If your functions are so long that you can't even see where your variables are declared, you need to break them into smaller pieces. And with C inlining, you don't even have the performance argument from Java.
Well, the L SHape is not considered too strong. You are right in that it would takea bit to capture. I guess the relative strength or weakness would depend on the rest of the board. To me it looks like "Thickness"
Perhaps Life from Go: +++++++ This line is all blank ++OOOO+ This line is the top +O+O+O+ This line is the middle +OOOO++ This line is the botttom +++++++ And the board goes on
If you are really concerned, read everything written by Bruce Schneier
Applied Cryptography will take you trhough the technical aspects of it, as well as presenting some of the attacks you can/might expect.
Secrets and Lies is a more business focused book, and while it won't give you technical tools, the discussion on attack trees is a great intro to building a coherent security policy.
The thing to remember about security is that it is an active process. In simplest terms: Put up an obstacle, identify when someone is trying to breach it, and have a response prepared.
Some of the basics are: sending all communication over encrypted channels, using key based authentication, lock accounts after some number of failed attempts, provide an audit trail for transactions, and only allow people sufficient permissions to get their work done.Using a Queueing or other type of well developed remoting system will minimize buffer overruns. Again, most of that type of stuff is in Applied Crypto.
Have no single point of a failure.Multiple UPS,network connections inside and outside, routers, firewalls, switches, etc. If anythinggoes down, you need to be able to replace it as quick as possible.
Are you in an earthquake zone (The Bay ARea)? If so, make sure 1, the building is earthquake retrofit, 2) the racks are all bolted to the wals suck that a little shake up doesn't turn into a shake down.
Make sure you are getting enough power to the building. Have Generators in case power goes out. UPS should only keep things going long enough for the generators to kick in.
Off site backups, of course. It is hard to beat the bandwidth of a stationwagon full of storage. Daily backups should be moved out of the building, I'd suggest on firewire/SCSI hotswappable hard drives, but there are many ways to solve this problem. Longer term backups should be a geographically out of disater range (east coast to west coast ideally)
Did I mention redundancy? Make sure you havea duplicate of everything.
OK, you have it built? Now test it. Kill the power and see if the UPSs can hold it long enough for the generators kick in. Now do it again, but pull out one generator.
Get one of those devices that allows you to remotely power cycle your machines as well, incase it locks up.
Havea back door (IE a dial up) to get into your data center unless you are going to have it manned 24/7. THis will keep you from coming in at 2 AM when a router blows.
Thats all off the top of my head. If I am wrong, please point out where, as the alternative viewpoints will be wuite helpful.
My take on it is that Webmin is a single program, so it runs as a specific user, but in order to admin multiple services, it needs root permissions. I like webmin, but I don't trust it.
For example, most Apache setups run apache as nobody (or some other non-login account) and save the config files as root. THis way, if someone hacks apache, they can't rewrite their own config files and get more privs. If someone hacks webmin, they have privs for everything that webmin administers.
You can make webmin run under a non standard port (actually I think it does by default), routable only locally, and accessable only via ssh. That is fine if you want it for Root only. Ideally, the user space stuff would run as the user specified, and I don't think that is the case.
Webmin is a step in the right direction. I think it needs some work on the security model to really be usable.
SPARC is a better 64 bit platform than opteron
on
Merrill Lynch Rips Sun
·
· Score: 2, Interesting
I am not too sure why people think that Sun should go the Opteron route. Just because the Opteron is new and sexy does not mean it is a better architecture than the SPARC. Opteron is targeted as a connection strategy for people that are on Windows platform, and need a 64 bit solution. While this will not be the case if MS doesn't support the Opteron, currently the Opteron is performing the same role for the Linux Market. 32 bit apps run on it fine, and you can get the few critical applications tweaked for 64 bit to get the full power you need.
SPARC has no such need for backward compatability. SPARC runs solaris apps, all of which are 64 bit native. They can optimize for it with out have to have a parallel instruction path for 32 bit apps. There are years of upon years of scientist time dedicated to optimizing the SPARC chip, and tuning the Solaris code to make the most of it.
Saying that Sun should abandon SPARC for Opteron hides a fundamental difference between these two processors.
Thank you for keeping me from replying. I typed in haste and did not proofread. When I reread what had been posted, I was embarrassed by the number of mistakes, but there is no editing after it is posted.
I can't blame a guy for being annoyed an officer wouldn't check his work. But then, I am no longer an officer.
I know this guy. He was a classmate of mine back at the Academy. The guy is sharp. He went from West Point, the Army's academyh, into the Air Force (A handful of people do this each year). I note went out to our class list about his companies sale, which made us all quite jealous.
The thing about West Point is that it drives home a commitment to the Country (Duty, Honor, Country is the School Moto). At least we have someone who stood up, raised his right hand, and swore to support and defend the Constitution. Yes, I am sure he is a savvy business man, but he's as honest as we are going to get.
I assume you mean Ada, the DOD language, since you talk about the benefits. I am not just being pedantic here, it really took me a few seconds to realize you weren't talking about some checking tool. Ada was named for Ada, countess of Lovelace and recurring character in After Y2K
If you did mean ADA was that?
Air Defense Artillery Americans with Disabilities Act. Aint Dat Assonine? Art Deco Association
An Ada version of the linux kernel would be cool, but you loose a few of the neat features (like tasks and exceptions) in Kernel mode, no matter what the language.
Ah, but the telephone is indeed a weapon of mass distraction.
Sorry I couldn't resist that.
I mean, come on. What ever you are doing...it just breaks your concentration and even if you don't have to asnswer it, the zone is gone. So the only real answer is to not answer, and that is no answer. I swear.
Either email me, or come over to talk to me. If it is not super time senstive, I will get it in email. If it is super time sensative, commit as much time to it as you ask me to by walking over to my desk.
Actually, the best way I've found to get into the zone is to leave a compiltation error from the previous day. It is the mental equivalent of a stack pointer from which you can pop all of your registers, reinitialize the idle process, and start cranking.
example//Working here, trying to get the right objects from iterator BadObject b = iterator.next();
Yes, I work in Java. Compiler will shout about bad object types, and I'm off.
1) Put everything into one huge directory. Create all the symlinks and path extensions etc.
2) Out things in the 'correct' directories (/usr/bin for exectuables,/ur/lib for libraries etc).
THe first ie easier to install and for the user to find and wipe out. The second is easier for users that have many apps on theri system (especially if config files for $app are in/etc/$app).
On windows you don't really have that option, but you don't tend to run as many apps from the command line (which is the real reason there is a space in c:\Program Files\) And the tendancy is to put config stuff in the registry.
Check out Ant. As part of a build process it knows about jars, rpms , cabs and zips. I'll bet there is a taks out there for creating.debs as well. I realize this is a "hand rolled solution" but it is probably the most extansible.
Slashdot Mirror
I finally tried to get this to run.
$ apps/armyops/armyops
GL_EXT_bgra not supported - bailing out.
History:
Exiting due to error
Here is my setup.
ATI all in wonder running Debian, XFree86
XFree86 Version 4.2.1.1 (Debian 4.2.1-12.1 20031003005825
This seems to be a supported extension, according to most docs.
Do I really need xfree 4.3? Or is this a config value somewhere?
Disagree. C problems are in no way improved by making code less readable.
Including data type in variable names is bad. If your functions are so long that you can't even see where your variables are declared, you need to break them into smaller pieces. And with C inlining, you don't even have the performance argument from Java.
Hungarian notation bad.
Code generation bad.
Simple readable code good.
Duh. and that is why I get my ass kicked at Go
Although easy to convert to life by Addin a piece at A or B
++++++
+OOO++
+O+OA+
+BO+O+
++OOO+
++++++
Either half can be captured:
++++++
+OOO++
+O+OX+
+XOXOX
+XOOOX
++XXX+
Well, the L SHape is not considered too strong. You are right in that it would takea bit to capture. I guess the relative strength or weakness would depend on the rest of the board. To me it looks like "Thickness"
Yeah, but that is not a very strong go position.
Perhaps Life from Go:
+++++++ This line is all blank
++OOOO+ This line is the top
+O+O+O+ This line is the middle
+OOOO++ This line is the botttom
+++++++ And the board goes on
I've heard that the Decades shelf life is not quite the case. Never had a chance to find out first hand, though.
(You Have Been Teased)
If you are really concerned, read everything written by Bruce Schneier
Applied Cryptography will take you trhough the technical aspects of it, as well as presenting some of the attacks you can/might expect.
Secrets and Lies is a more business focused book, and while it won't give you technical tools, the discussion on attack trees is a great intro to building a coherent security policy.
The thing to remember about security is that it is an active process. In simplest terms: Put up an obstacle, identify when someone is trying to breach it, and have a response prepared.
Some of the basics are: sending all communication over encrypted channels, using key based authentication, lock accounts after some number of failed attempts, provide an audit trail for transactions, and only allow people sufficient permissions to get their work done.Using a Queueing or other type of well developed remoting system will minimize buffer overruns. Again, most of that type of stuff is in Applied Crypto.
Good Luck
Have no single point of a failure.Multiple UPS,network connections inside and outside, routers, firewalls, switches, etc. If anythinggoes down, you need to be able to replace it as quick as possible.
Are you in an earthquake zone (The Bay ARea)? If so, make sure 1, the building is earthquake retrofit, 2) the racks are all bolted to the wals suck that a little shake up doesn't turn into a shake down.
Make sure you are getting enough power to the building. Have Generators in case power goes out. UPS should only keep things going long enough for the generators to kick in.
Off site backups, of course. It is hard to beat the bandwidth of a stationwagon full of storage. Daily backups should be moved out of the building, I'd suggest on firewire/SCSI hotswappable hard drives, but there are many ways to solve this problem. Longer term backups should be a geographically out of disater range (east coast to west coast ideally)
Did I mention redundancy? Make sure you havea duplicate of everything.
OK, you have it built? Now test it. Kill the power and see if the UPSs can hold it long enough for the generators kick in. Now do it again, but pull out one generator.
Get one of those devices that allows you to remotely power cycle your machines as well, incase it locks up.
Havea back door (IE a dial up) to get into your data center unless you are going to have it manned 24/7. THis will keep you from coming in at 2 AM when a router blows.
Thats all off the top of my head. If I am wrong, please point out where, as the alternative viewpoints will be wuite helpful.
My take on it is that Webmin is a single program, so it runs as a specific user, but in order to admin multiple services, it needs root permissions. I like webmin, but I don't trust it.
For example, most Apache setups run apache as nobody (or some other non-login account) and save the config files as root. THis way, if someone hacks apache, they can't rewrite their own config files and get more privs. If someone hacks webmin, they have privs for everything that webmin administers.
You can make webmin run under a non standard port (actually I think it does by default), routable only locally, and accessable only via ssh. That is fine if you want it for Root only. Ideally, the user space stuff would run as the user specified, and I don't think that is the case.
Webmin is a step in the right direction. I think it needs some work on the security model to really be usable.
County Jail. Is this County Law or Federal?
I am not too sure why people think that Sun should go the Opteron route. Just because the Opteron is new and sexy does not mean it is a better architecture than the SPARC. Opteron is targeted as a connection strategy for people that are on Windows platform, and need a 64 bit solution. While this will not be the case if MS doesn't support the Opteron, currently the Opteron is performing the same role for the Linux Market. 32 bit apps run on it fine, and you can get the few critical applications tweaked for 64 bit to get the full power you need.
SPARC has no such need for backward compatability. SPARC runs solaris apps, all of which are 64 bit native. They can optimize for it with out have to have a parallel instruction path for 32 bit apps. There are years of upon years of scientist time dedicated to optimizing the SPARC chip, and tuning the Solaris code to make the most of it.
Saying that Sun should abandon SPARC for Opteron hides a fundamental difference between these two processors.
Make sure it is explicite that the code you write is your Copyright. Make sure the clasue Work-for-hire or anything to that effect is not in there.
The difference is major. If you do it as work for hire, they own it. If you do it and own the copyright, you are building equity.
Yeahm the RIAAA should give away the music and then just sell support.
Er, Umm, Hmmmmmmm
Thank you for keeping me from replying. I typed in haste and did not proofread. When I reread what had been posted, I was embarrassed by the number of mistakes, but there is no editing after it is posted.
I can't blame a guy for being annoyed an officer wouldn't check his work. But then, I am no longer an officer.
I know this guy. He was a classmate of mine back at the Academy. The guy is sharp. He went from West Point, the Army's academyh, into the Air Force (A handful of people do this each year). I note went out to our class list about his companies sale, which made us all quite jealous.
The thing about West Point is that it drives home a commitment to the Country (Duty, Honor, Country is the School Moto). At least we have someone who stood up, raised his right hand, and swore to support and defend the Constitution. Yes, I am sure he is a savvy business man, but he's as honest as we are going to get.
BTW Amit, is an Israeli name.
I assume you mean Ada, the DOD language, since you talk about the benefits. I am not just being pedantic here, it really took me a few seconds to realize you weren't talking about some checking tool. Ada was named for Ada, countess of Lovelace and recurring character in After Y2K
If you did mean ADA was that?
Air Defense Artillery
Americans with Disabilities Act.
Aint Dat Assonine?
Art Deco Association
An Ada version of the linux kernel would be cool, but you loose a few of the neat features (like tasks and exceptions) in Kernel mode, no matter what the language.
Ah, but the telephone is indeed a weapon of mass distraction.
Sorry I couldn't resist that.
I mean, come on. What ever you are doing...it just breaks your concentration and even if you don't have to asnswer it, the zone is gone. So the only real answer is to not answer, and that is no answer. I swear.
Either email me, or come over to talk to me. If it is not super time senstive, I will get it in email. If it is super time sensative, commit as much time to it as you ask me to by walking over to my desk.
Well, Worst cas is it is something you can remove and continue the compile. My builds are minimal so it isn't a problem here.
Drink Coffee
//Working here, trying to get the right objects from iterator
Read Email
Read Slashdot
Actually, the best way I've found to get into the zone is to leave a compiltation error from the previous day. It is the mental equivalent of a stack pointer from which you can pop all of your registers, reinitialize the idle process, and start cranking.
example
BadObject b = iterator.next();
Yes, I work in Java. Compiler will shout about bad object types, and I'm off.
Look at the O'REilly series for NT/2K/XP system admin. They talk about doing the types of things you are used to on Unix (Scripting etc).
Go see yosemite valley. Go rock climbing. Yes, you can climb in the Arapiles and BLue mountains in Australia. But go see the Valley.
Seems that there are two ways people go on this.
1) Put everything into one huge directory. Create all the symlinks and path extensions etc.
2) Out things in the 'correct' directories (/usr/bin for exectuables,
THe first ie easier to install and for the user to find and wipe out. The second is easier for users that have many apps on theri system (especially if config files for $app are in
On windows you don't really have that option, but you don't tend to run as many apps from the command line (which is the real reason there is a space in c:\Program Files\) And the tendancy is to put config stuff in the registry.
Check out Ant. As part of a build process it knows about jars, rpms , cabs and zips. I'll bet there is a taks out there for creating
They left a message...
We apolpogize for the inconvenience.
Oh no, wait, that was someone else.