Anyone who'se had to manage redhat/fc servers would tell you that it's a nightmare. That anyone would be me. I actually have to deal with shit like.... oh... will this update BREAK the system with inconsistent packages, or some random yum screwup?
This mean you end up running uber-patched FC1 systems... that are well... FC1 systems and not FC4. Sure, Debian has no ``corporate support'', but then again, being rock solid, it necessarily need any.
I don't want to even go into how useless iptables is. Sure. the basic router functionality is there, but any ``interesting'' matches never make it past experimental and into the main tree, necessitating kernel/iproute2 patching, meaning you would be suicidal to bet money on it in a real business. Of course, fw under Linux always ends up being a useless convoluted hodgepodge of iptables, ebtables, ip6tables, tc, eurgh... just use OpenBSD.
Strange, all the many many times I have spent in a Pizzeria, I distinctly remember paying after eating. This was both at La Terazza in Poggio dei Pini, at Maddalena Spiaggia, an outfit on Via Roma in Cagliari and at a Pizzeria in Rome on God-knows-what-street.
I don't know what you're talking about. ``American Pizza'' may be Italian in origin, but it's an insult to claim it to have anything to do with real Italian pizza.
Maybe if we didn't spend funds and lives carving out an empire for a certain little country in the middle east, we wouldn't have to constantly live under the threat of pissing the rest of the world and having to deal with nukes, eh?
Actually, laugh all you want, but you would be surprised just *how* much Microsoft pushes the whole security/testing/debugging/safe code aspect during its college presentations.
Heck, if you decide to go for an internship you have pretty much 3 choices - Program Manager (specs), SDE (Software Development Engineer) and SDET (Software Development Engineer in Test). That last position is very much QA.
One thing that I noticed in my two years of college now is that Microsoft is *very active*, always coming to CS orientation classes to give talks (UIC alums working at MS), giving talks to the CS college, actively looking for interns two times a year, actively partecipating in job fairs.
Kudos to them. They realize that if they want future talent, they need to sell the idea of working for MS as early as possible. Why don't I see Apple, Sun, IBM doing this?
Too bad it still runs Garnet. These are about as useful as running Windows 3.1 or a 3.2Ghz P4. Sure it's fast, but, ummm... right.
What the hell happened to OS6, PalmOne? OS6 has supposedly been out already for a year and yet we still get Garnet-based devices. What good does "WiFi" do if the `OS' still sucks? I for one am not looking forward to the inability to multitask, "ARMlets" that couple with emulated 68k code, PDBs, lack of a real filesystem, the ability of a single app to bring the whole device to its knees etc.
I did not know this. This is the most absolutely freaking coolest thing I've seen. I never knew Q3 had its onw VM that actually executed the game code. Do sorta-derived games like HL do the same?
95/96 I had a F1 racing game, which amusing enough installed from *within* 95, but required you to boot off a diskette.
DOS4GW was a 32-bit extender (read: it provided some normal 32-bit kernel-like functionality under DOS, sorta). I never had anything DOS4GW actually work correectly under Win95, since Win95 by itself a 32-bit extender of sorts. Some DOS4GW versions were able to knock out EMM/HIMEM/VM86-monitors, but they certainly cannot break out of real 32-bit system.
I don't follow. Quake 3 was not its own OS and still had to rely on Windows (or Linux) to provide resource allocation and management.
The example you're looking for is pretty much ANY complex game ~95/96 which still required you to launch it off a special dos bootdisk. It was these games that had their own video drivers, their own sound drivers, their own protected mode kernel, their own task management, their own memory allocation routines, etc. An older example of this phenomenon is Doom (the original one).
The question I pose to you regarding your codebase-comment, is... are you just spouting off or do you have credible evidence you can list?
I don't have a 3 GHz machine. OOo 1.9 runs acceptably both on my Athlon 2400+ (2 GHz) and my Thinkpad 600X (500 MHz).
So? Java VM? Microsoft is pushing.NET/MSIL into all of their products. This is different how? Never mind that any relatively-recent MS Office version has full blown Visual Basic interpreter...
What kind of screen does the nano have? My mini has what feels like a glass plate over the LCD, which is very smooth, so far scratch resistant (more so than the rest of case) and flush with the case.
I use, for example, GPG when I email people. The purpose of this is twofold - a) Keep potentially sensitive information away from prying eyes of Joe Average. Haven't actually needed this yet, and probably won't. b) Provide a mechanism by which others can verify whether an email came from me. This is my primary use of GPG (signature).
Call me a cynic, but it's painfully obvious that the FBI, CIA, NSA or another $AGENCY have the technology and the science to break my encryption. I guess I don't really care. I use it to CYA against the occasional moron with a packet sniffer or someone with an axe to grind (and an email server to exploit). I wear neither a tinfoil hat nor have any need to hide anything from spooks. If they want to waste their precious time reading up on my boring life, more power to them.
So, getting back to VoIP. $AGENCY requesting for taps in a $COMMUNICATION_MEDIUM is nothing new. We have CALEA for PSTN. Regular mail is probably reviewed through about a 1000 different sensors too. If you're getting the exclusive scrutiny of $AGENCY on your life, you have more problems than being phone tapped.
1) That works fine within the confines of your home basement. You try telling your client that their webserver is coming because you need to crawl the filesystem looking for suspicious modifications. Electrical switch on disk? Go find me one - they don't exist. You could use a modified cable, if it's IDE. If it's SCSI or SATA, heh - no.
2) See 1. Amateurish.
3) Volume analysis is pointless. As many posters pointed out, half the time Windows doesn't know what goes on with it's core system files. Programs modify the registry left and right, programs modify/update system libraries at will. How does this help with rootkits that know better than to store themselves within files? Is your volume analysis smart enough to deal with mltiple file streams? Can it look beyond FS level and see if anything nasty is hidden in parts of the disk? If I was a rootkit developer I would put extra code within some NTFS administrative struct or in unused space. How about the MBR and the bootcode? Sure nothing is patching ntkernel.exe on the fly?
Slashdot Mirror
Anyone who'se had to manage redhat/fc servers would tell you that it's a nightmare. That anyone would be me. I actually have to deal with shit like.... oh... will this update BREAK the system with inconsistent packages, or some random yum screwup?
This mean you end up running uber-patched FC1 systems... that are well... FC1 systems and not FC4. Sure, Debian has no ``corporate support'', but then again, being rock solid, it necessarily need any.
I don't want to even go into how useless iptables is. Sure. the basic router functionality is there, but any ``interesting'' matches never make it past experimental and into the main tree, necessitating kernel/iproute2 patching, meaning you would be suicidal to bet money on it in a real business. Of course, fw under Linux always ends up being a useless convoluted hodgepodge of iptables, ebtables, ip6tables, tc, eurgh... just use OpenBSD.
Can't wait to DCC GET this from some chan on undernet...
I neither expect, nor desire my *online* MUA to vendor lock me in. No thanks, I already have that dubious honor with my gaming habits...
Strange, all the many many times I have spent in a Pizzeria, I distinctly remember paying after eating. This was both at La Terazza in Poggio dei Pini, at Maddalena Spiaggia, an outfit on Via Roma in Cagliari and at a Pizzeria in Rome on God-knows-what-street.
I don't know what you're talking about. ``American Pizza'' may be Italian in origin, but it's an insult to claim it to have anything to do with real Italian pizza.
With a last name like that, I find it hard to believe someone takes this guy seriously!
(If you feel confused, Look up wat Szulik means in Russian (?????).)
Maybe if we didn't spend funds and lives carving out an empire for a certain little country in the middle east, we wouldn't have to constantly live under the threat of pissing the rest of the world and having to deal with nukes, eh?
No that makes too much sense.
Actually, laugh all you want, but you would be surprised just *how* much Microsoft pushes the whole security/testing/debugging/safe code aspect during its college presentations.
Heck, if you decide to go for an internship you have pretty much 3 choices - Program Manager (specs), SDE (Software Development Engineer) and SDET (Software Development Engineer in Test). That last position is very much QA.
...MS running their site with mod_mono and Linux. Please...
One thing that I noticed in my two years of college now is that Microsoft is *very active*, always coming to CS orientation classes to give talks (UIC alums working at MS), giving talks to the CS college, actively looking for interns two times a year, actively partecipating in job fairs.
Kudos to them. They realize that if they want future talent, they need to sell the idea of working for MS as early as possible. Why don't I see Apple, Sun, IBM doing this?
Too bad it still runs Garnet. These are about as useful as running Windows 3.1 or a 3.2Ghz P4. Sure it's fast, but, ummm... right.
What the hell happened to OS6, PalmOne? OS6 has supposedly been out already for a year and yet we still get Garnet-based devices. What good does "WiFi" do if the `OS' still sucks? I for one am not looking forward to the inability to multitask, "ARMlets" that couple with emulated 68k code, PDBs, lack of a real filesystem, the ability of a single app to bring the whole device to its knees etc.
Also with magazines I do not have a choice - can't remove them, plus at least they don't obscure content as some of the more-annoying popus do.
Eyesore. Waste of screen real estate. Invasion of privacy.
My Al Gore.
I can't wait till the 'net becomes even more partitioned. I'm already enjoying the fruits of the Cogent/Level3 hissy fight.
I did not know this. This is the most absolutely freaking coolest thing I've seen. I never knew Q3 had its onw VM that actually executed the game code. Do sorta-derived games like HL do the same?
d e/qcommon/vm.c?rev=1&view=markup
Cool...
http://quake3.delphigl.com:8080/viewsvn/source/co
95/96 I had a F1 racing game, which amusing enough installed from *within* 95, but required you to boot off a diskette.
DOS4GW was a 32-bit extender (read: it provided some normal 32-bit kernel-like functionality under DOS, sorta). I never had anything DOS4GW actually work correectly under Win95, since Win95 by itself a 32-bit extender of sorts. Some DOS4GW versions were able to knock out EMM/HIMEM/VM86-monitors, but they certainly cannot break out of real 32-bit system.
I don't follow. Quake 3 was not its own OS and still had to rely on Windows (or Linux) to provide resource allocation and management.
The example you're looking for is pretty much ANY complex game ~95/96 which still required you to launch it off a special dos bootdisk. It was these games that had their own video drivers, their own sound drivers, their own protected mode kernel, their own task management, their own memory allocation routines, etc. An older example of this phenomenon is Doom (the original one).
Am I the only one who expected the actual newly-discovered method to be described, but didn't find it in this fluff article?
I feel... cheated. RTFAing doesn't pay.
The question I pose to you regarding your codebase-comment, is... are you just spouting off or do you have credible evidence you can list?
.NET/MSIL into all of their products. This is different how? Never mind that any relatively-recent MS Office version has full blown Visual Basic interpreter...
I don't have a 3 GHz machine. OOo 1.9 runs acceptably both on my Athlon 2400+ (2 GHz) and my Thinkpad 600X (500 MHz).
So? Java VM? Microsoft is pushing
What kind of screen does the nano have? My mini has what feels like a glass plate over the LCD, which is very smooth, so far scratch resistant (more so than the rest of case) and flush with the case.
Ahmed? Habib? Nice stereotyping there buddy.
That said, your example is probably one that would set off alarms as it doesn't make a whole lot of sense as a *conversation*.
I use, for example, GPG when I email people. The purpose of this is twofold -
a) Keep potentially sensitive information away from prying eyes of Joe Average. Haven't actually needed this yet, and probably won't.
b) Provide a mechanism by which others can verify whether an email came from me. This is my primary use of GPG (signature).
Call me a cynic, but it's painfully obvious that the FBI, CIA, NSA or another $AGENCY have the technology and the science to break my encryption. I guess I don't really care. I use it to CYA against the occasional moron with a packet sniffer or someone with an axe to grind (and an email server to exploit). I wear neither a tinfoil hat nor have any need to hide anything from spooks. If they want to waste their precious time reading up on my boring life, more power to them.
So, getting back to VoIP. $AGENCY requesting for taps in a $COMMUNICATION_MEDIUM is nothing new. We have CALEA for PSTN. Regular mail is probably reviewed through about a 1000 different sensors too. If you're getting the exclusive scrutiny of $AGENCY on your life, you have more problems than being phone tapped.
He's dead, Jim.
m an
http://en.wikipedia.org/wiki/Richard_Feyn
1) That works fine within the confines of your home basement. You try telling your client that their webserver is coming because you need to crawl the filesystem looking for suspicious modifications. Electrical switch on disk? Go find me one - they don't exist. You could use a modified cable, if it's IDE. If it's SCSI or SATA, heh - no. 2) See 1. Amateurish. 3) Volume analysis is pointless. As many posters pointed out, half the time Windows doesn't know what goes on with it's core system files. Programs modify the registry left and right, programs modify/update system libraries at will. How does this help with rootkits that know better than to store themselves within files? Is your volume analysis smart enough to deal with mltiple file streams? Can it look beyond FS level and see if anything nasty is hidden in parts of the disk? If I was a rootkit developer I would put extra code within some NTFS administrative struct or in unused space. How about the MBR and the bootcode? Sure nothing is patching ntkernel.exe on the fly?
If you want to know more about the topic of rootkit detection, please see Phrack Volume 0x0b, Issue 0x3d, Phile #0x08 of 0x14. http://www.phrack.org/phrack/63/p63-0x08_Raising_T he_Bar_For_Windows_Rootkit_Detection.txt