Not sure where you got the 82% figure, but if you design your site based on the most popular browser according to market research rather than the audience most likely to visit your site you may run into trouble.
Consider a "Best Viewed with Internet Explorer" logo on a Linux Howto site. Probably won't get much traffic...
Sure, most sites require 4.x+ browsers, but they don't have to. Coding should be done on the server, not the client. CSS should be inlined rather than included, and IE3 works just fine.
Making incentives to upgrade is not a design decision; it's a capitalist decision.
...do you care if your money comes directly from the fans...
What we care about is getting a direct response from the people we play for. Hooting and howling from fans having a good time at our shows. We hope they buy our CD's at the show, online, mail order, or at the record store. We strongly dislike the legacy A & R process and are especially fond of the new technologies that help us get our material unfettered to our potential audience. I would be extremely saddened to hear that one of my fans went to jail for listening to my music: even if obtained through currently deemed illegal means.
I ran across this a couple days ago and it looks like a publicity stunt for Qualysis to get some attention. Here's a Deja discussion that sheds a little more light on it.
In all my years using Linux/AIX/Unix I can't recall ever receiving an e-mail/web/ftp download that chmod +x's itself on the client. Unless of course you're overwriting a file +x-ed with that name. Good thing I don't have any scripts named "R00tMePlz.sh" laying around.
KDE is a window manager, not an OS. Slackware is a distribution, not Linux. Linux is the OS, period. Slackware is an assortment of applications that may or may not include BSD Games in Slackware 8.1, depending on whether the customer base wants it. Red Hat may or may not include Gnome in the next release depending on whether licensing/patent issues get in the way.
KDE is an application. Gnome is an application. Linux is an OS. Enlightenment for Windows might be a possibility. (Feel free to laugh at that.)
If Windows was just an OS, then everyone writing applications for any OS would have an easier time porting their applications and thus competition in applications would be restored.
Clearly that isn't going to happen, but bundling a browser in a Window Manager is entirely different from bundling it in the OS. I'm quite certain I don't see:
Konqueror Browser brought to you by http://www.kde.org/ in my dmesg output.
I think I'm a little disappointed in a move away from prioritizing web-based office functionality. I can't say I love Star Office, but I certainly don't love Office2k. The only useful piece is FrontPage to manage Apache FrontPage servers. If Word2k worked buglessly, it would be great but after 17 years; it still doesn't. And, it seems to corrupt your docs at the worst possible times (crashed 5 times before printing my set list and notes before a gig I was playing the boards at on Saturday: more than irritating).
I've been using a web-based application for about 3 years that I wrote myself to keep my most important stuff in one application. Time-Tracking; knowledge-base; invoicing; journal and it's taken a while to get it to do what it needs, but it's written browser-independent and I can get at it anywhere.
I like those types of applications. It's also mirrored to several other servers in case of failure or network problems. I hope this is the way of the future 'cause I only want one application: browser.
It's been said before, but bears repeating: "Backups are for wimps. Real men upload their data to an FTP site and have everyone else mirror it."
The point we as coders seem to consistently miss is that code isn't supposed to be pretty. It's supposed to provide utility to the human using it to make them more productive. Don't misinterpret me, pretty (better stated: more concisely and completely documented) code can co-exist within software that meets this goal.
At the time I started using Dr. T's music sequencing software on a Commodore 128 I had no fscking idea what C was. I don't know what that thing was written in to this day. But I wrote over 75 songs in 2 years and haven't created that level of product in the past 13 years.
I used Cakewalk 2.0 on Win3.1 for a couple years and was equally productive there until 1995. That's when music went away and I started hacking Linux because MickeySoft pissed me off so much with their "innovations" in Win95 that it completely killed my machine's ability to perform my most important task (writing music).
Thankfully, with Win2k and it's better stability Cakewalk 9 and my killer 128Mbit Creative Platinum with built in MIDI have brought songwriting back as an option. Yeah, it's Windows, I hate it, and it screws me sometimes, but not so bad that I can't write songs now. Honestly, I'm not that interested in coding C, now that I can write music again. Trust me: my music is better than my coding, although my coding isn't lousy.
What I want is Cakewalk for Linux and then I'll leave you talented hackers to your domain and drift back into that which I've wanted to remain in before all this sloppy coding pulled my sorry ass out of it.
I don't care what the source looks like, but you should comment your code. I just want results. I'm sure most others do as well.
Just change the 192.168.1.2 to dedserius.com and you'll see the content. That machine is one of several hot-swaps on a private LAN. Sorry. I need to update the httpd.conf file, but it's the least likely swap to go and as an Alpha I don't spend much time keeping it current except for security.
The Link has helped quite a few people get their Apache/PHP/FrontPage server on Linux implementations working so hope that helps you out.
True, you can play with 64-bit DEC Alpha in the home user space, but my EV5 is no screaming eagle at 300MHz. 64-Bit Intel chips will certainly bring this level of computing closer to home. Not that I'd run Windoze on it, but it would be nice to have a 64-Bit 1GHz x86 box around.
While the author may think the racy expletives lend an edge to the article, it probably won't be read by enough people for mainstream processing of the message.
Ironically, this story at CNN from May 1999 has an interesting quote:
"I don't think there'll be a formation of [an IT] union until the bubble bursts -- [when] the Dow [Jones Industrial Average] drops, and IPOs sink," said Bill Lessard, a seven-year denizen of Silicon Alley. In December, he co-founded a Web site for disgruntled technologists called NetSlaves (www.netslaves.com).
So, a NetSlaves co-founder predicted the failure of the dot coms 2 years ago [psychic?], and a web site for disgruntled technologists publishes a rant about poor technical journalist ethics (mostly aimed at it's competition) by what appears to be a disgruntled technical journalist. Pretty fringe stuff actually.
Mr. Gilliard's article bespeaks a lot of technical journalism, especially about the article he wrote which takes no different approach than the journalists he blasts.
Now on the Slashdot matter; he clearly doesn't get it, as many don't. This is not journalism here. It's a fuckin' free-for-all intermixed with decent technical and other ecclectic discussions occasionally. Don't critique it as a journalism site: it's not. It won't ever be.
Re:Where's the outrage for the other crap going on
on
Sklyarov Indicted
·
· Score: 3, Insightful
It'd be cool if this tirade actually focused enough media attention on this situation to effect a repeal of this law. It's possible. The law is wrong and there are many in the/. community who are vocal; sometimes get noticed; and, don't have a hobby besides technology.
You might be off doing art, but you'll probably continue geeking out your machines to those graphic ends regardless.
The "minions" you appear to refer to on/. are your silent friend while you're off painting.
Acknowledge that and don't alienate those who'll rabidly be defending your interests while you're painting your ideas.
If you can help them, you should. If you're part geek/part artist, you shouldn't criticize those who are just geek. They might be helpful to you when you're more focused on your art.
Artists tend not be judgemental. I am one. I'm also a geek, but respect the diverse opinions this forum depicts and don't make judgements. I couldn't since I'm an artist.
and increasing data storage and processing capacity should concern everyone.
You go to the Circle K and buy a couple packs of cigarettes. There's footage of your car and your face. Just analog data, no problem, right? Some are starting to scan your driver's license to validate your age when you buy beer.
While driving home, you pass through 2 red light cameras and a photo speed trap. More data.
You also remember to swing by the local Meijer's (Michigan Supermarket) and pick up those tampons for your girlfriend (you're a sensitive guy, or just have a wierd hangup.) More movies. You pay with your debit card. More data.
If the local police dep't picks up one of those sweet daddy new IBM z-series servers with enough capacity to store and process all the data passing from our daily meanderings into digital form, we should be very concerned.
They would now know you drink on Monday, smoke too much and your girlfriend is on the rag. Cross-checking the police dep't's databanks they might find a couple domestic violence incidents that coincide with certain lunar phases and this Monday happens to be at the beginning of one. You might have a new guardian angel hanging around for the next 5 days.
Borders did the right thing. But, they could undo it in 3 months. I'd be amazed if there weren't at least 5 other major outlets that were implementing this technology with less media attention.
We should be canvasing the hell out of our legislators to make illegal any mass accumulation of visual data that can single us out by digital processing equipment, now before we're no longer in a position to do so.
NAT can be implemented trivially to each of the "business" ip's behind that router directly to the firewall which will route it appropriately.
This isn't rocket science. NAT each of the public IP's to the same firewall machine and set up the rules to redirect to the private servers as appropriate. Done.
BTW, this is a business network. I just threw out a simple rule for the 99.9% user. Tweaking it is like eating popcorn.
Cisco was negligent. They didn't give Qwest the proper firmware for the routers they sold Qwest customers. 675, or 678s. Trust me. I toasted one of them and turned it into a door-stop. Qwest took the unit and gave me a new one. Probably RMA-ed it at Cisco's expense.
Disabling the port isn't enough.
cbos#set web disabled
cbos#set nat entry add 10.0.0.2
Problem solved. (You might want to write that.)
Cisco up for 34 days, 10:15:12.60.
CBOS (tm) 678 Software (C678-I-M), Version v2.3.5.012
Clearly I haven't patched. Keep in mind remote syslog is enabled, so testing the veracity of my cisco's configuration might be legally problematic. If anyone tries to kill my router, it's without authorization and will be logged. The router will survive it and the syslog server will record it and I will report it. Sorry for the disclaimer, but it needs to be there. >:)
Clearly Code Red hasn't killed my router. I am typing this from my DSL connection.
At 16:05 MST, Qwest (Phoenix) started having some routing problems. 80-90% packet loss to all destinations until 21:05 MST. I have this data because my Slackware Alpha runs this home-rolled MRTG monitoring application. It wasn't a complete disruption of service. After 10 or 15 minutes the password prompt for an ssh request would appear from a remote ssh server. Occasionally you'd receive bits of a web page, and other times you'd get a "connection timed-out" in Linux Netscape 4.7x, or in IE: "couldn't find site, dns problem or server error" message. IE error messages are so incredibly unuseful in situations like these where you need information about why you can't reach a site, not just Micro$oft's packaged 40x client-side dll. Anyone know why they do that anyway? I can't see any reason why your browser should override the server's error message. BTW, you can disable this through options. WRT the "cannot connect to host" error, why would it say DNS server issue when the status bar shows the ip of the server you're trying connect to? Should say: can't establish a session with the server and not spew dns problem messages. Obfuscation. Probably FUD.
Actually, I don't know that we'll ever learn why Qwest had issues today, but the segment of the Qwest network affected did have a fairly pronounced Code Red II infestation. About 2/3rds of the infections reported at this Code Red report are from a monitor on the Phoenix Qwest DSL network. I can only suspect that the disruption was the result of having all those compromised hosts with root.exe running on them undetected.
With:
tcpdump -i eth0 host not myhost.my.lan and not arp
while true; do ping myexternalserver.com -c 100; sleep 1; echo; done
cat tmp.txt | while read a; do traceroute $a; done
iptraf -i -q
running on separate Eterms for the day, I've learned that Qwest shut down the router from the Phoenix DSL network a couple times and brought it back up only to find the behavior was the same. After some (infered) head-scratching after a period where they turned the router off for about 35 minutes, I saw a new hop beyond loop1.phnx-dsl-gw8.phnx.uswest.net but then dropped. This new router (not putting it out here since I'll leave that forensic recon to any potentially involved individuals in this outtage who are interested) had a new IP. No further hops for about 20 minutes (configuring this new router with new routes?). And, then it popped. All ETerms started showing smooth flow of traffic.
Perhaps a fairy tale inspired by a consultant who just lost a billable day. Perhaps a clue to solving a riddle that probably affected anyone on the Qwest Phoenix DSL network today. Potentially, a clue as to what people out there are doing with infected IIS machines.
If these conjectures have any modicum of merit; we're in trouble. Serius trouble.
Of course, this could all be my own imagination and the outtage the result of a backhoe operator on a Cottonwood corn farm.
You be the judge. If you're using Qwest DSL in Phoenix, this probably happened to you also.
"...Apache hasn't introduced any significant user features in two years. (For example, has Apache even managed to deliver a standard GUI configuration tool in all this time?)"
And, why is a GUI necessary for configuration of a web server. It's already (finally) becoming clear that server administrators need to know how to do more than just aim their mouse and click. Insufficient security training is being acknowledged as a business liability.
Sure web services are useful and may very well become the business model of tomorrow, but define it. Your company's soon-to-be-released new revolutionary product line won't be authored in WordXP or ExcelXP documents on some other company's server. If that's a "Web Service" the author is thinking of, it's not and won't become a business model anyone will buy. Interactive applications is probably one of the more viable prospects, and Apache does not offer such interactivity natively. Apache hasn't really advanced much in a couple years, but does that mean it's dead? You can plug a helluva lot more into Apache to make it an interactive, secure, and functional application server for the web than anything IIS will ever produce.
And, you don't need to reboot your whole flipping server when Apache, PHP, MySQL, PostgreSQL, or mod_mp3, or whatever else you've rolled into that application server submits a security patch. Just apply the patch and kick start the service. Ouch! That was painful....
Apache is far from dead or dying. It probably won't come with a GUI configurator/wizard thingy. Should it?
Qwest is Calling Their DSL Customers
on
Code Red III
·
· Score: 1
Qwest: Hi, we're calling all of our customers to find out if they've been affected by the Code Red virus. Have you been affected?
Nope.
Q: Huh?
I nat everything through the router to an internal firewall. Disable the web interface.
Q: Okay. Thanks.
Don't mention it.
= = =
Qwest in Phx. Impressive customer service effort.
The server hosting your web site is infected with the "Code Red" Worm. Just thought you might want to notify your sys admin or hosting company. We have received thousands of connection requests from this server and others on the www.xxx.yyy.zzz IP network.
So someone has finally ported Code Red to Apache? >:)
Frustrated by the lack of any current stats on this from DShield, or Incidents short of the update on the 4th, I collected some stats that might give some indication of where this thing is going. Peak times at 1300 and 1400 MST. Not sure what this means, but seems consistent.
A crash dump is a snap-shot of all memory in the system at dump time. If the variable username=tswinzig is resident at that time, along with any passwords still cached, they'll be in there. Personally I'd prefer to keep that type of info on the machine. Not to mention the size of the transfer if you have more than 32 MBytes (RAM), which you will since XP requires 128MBytes, if I'm not mistaken.
Slashdot Mirror
Not sure where you got the 82% figure, but if you design your site based on the most popular browser according to market research rather than the audience most likely to visit your site you may run into trouble.
Consider a "Best Viewed with Internet Explorer" logo on a Linux Howto site. Probably won't get much traffic...
Sure, most sites require 4.x+ browsers, but they don't have to. Coding should be done on the server, not the client. CSS should be inlined rather than included, and IE3 works just fine.
Making incentives to upgrade is not a design decision; it's a capitalist decision.
...do you care if your money comes directly from the fans...
What we care about is getting a direct response from the people we play for. Hooting and howling from fans having a good time at our shows. We hope they buy our CD's at the show, online, mail order, or at the record store. We strongly dislike the legacy A & R process and are especially fond of the new technologies that help us get our material unfettered to our potential audience. I would be extremely saddened to hear that one of my fans went to jail for listening to my music: even if obtained through currently deemed illegal means.
Speaking as one songwriter, of course.
Ded Serius at MP3.com
Also below in sig.
Sec. 103: Prohibited Acts
(a) Removal or Alteration of Security -- No person may --
(1) remove or alter any certified security technology in an interactive digital device; or
I wasn't aware those flavors of Windoze had security...
This is dangerous:
# mv binary_attach
Please:
$sudo rm binary_attach
would be preferable. Some recent RH converts still don't know what a device file is...
I ran across this a couple days ago and it looks like a publicity stunt for Qualysis to get some attention. Here's a Deja discussion that sheds a little more light on it.
In all my years using Linux/AIX/Unix I can't recall ever receiving an e-mail/web/ftp download that chmod +x's itself on the client. Unless of course you're overwriting a file +x-ed with that name. Good thing I don't have any scripts named "R00tMePlz.sh" laying around.
KDE is a window manager, not an OS. Slackware is a distribution, not Linux. Linux is the OS, period. Slackware is an assortment of applications that may or may not include BSD Games in Slackware 8.1, depending on whether the customer base wants it. Red Hat may or may not include Gnome in the next release depending on whether licensing/patent issues get in the way.
KDE is an application. Gnome is an application. Linux is an OS. Enlightenment for Windows might be a possibility. (Feel free to laugh at that.)
If Windows was just an OS, then everyone writing applications for any OS would have an easier time porting their applications and thus competition in applications would be restored.
Clearly that isn't going to happen, but bundling a browser in a Window Manager is entirely different from bundling it in the OS. I'm quite certain I don't see:
Konqueror Browser brought to you by http://www.kde.org/
in my dmesg output.
I think I'm a little disappointed in a move away from prioritizing web-based office functionality. I can't say I love Star Office, but I certainly don't love Office2k. The only useful piece is FrontPage to manage Apache FrontPage servers. If Word2k worked buglessly, it would be great but after 17 years; it still doesn't. And, it seems to corrupt your docs at the worst possible times (crashed 5 times before printing my set list and notes before a gig I was playing the boards at on Saturday: more than irritating).
I've been using a web-based application for about 3 years that I wrote myself to keep my most important stuff in one application. Time-Tracking; knowledge-base; invoicing; journal and it's taken a while to get it to do what it needs, but it's written browser-independent and I can get at it anywhere.
I like those types of applications. It's also mirrored to several other servers in case of failure or network problems. I hope this is the way of the future 'cause I only want one application: browser.
It's been said before, but bears repeating: "Backups are for wimps. Real men upload their data to an FTP site and have everyone else mirror it."
The point we as coders seem to consistently miss is that code isn't supposed to be pretty. It's supposed to provide utility to the human using it to make them more productive. Don't misinterpret me, pretty (better stated: more concisely and completely documented) code can co-exist within software that meets this goal.
At the time I started using Dr. T's music sequencing software on a Commodore 128 I had no fscking idea what C was. I don't know what that thing was written in to this day. But I wrote over 75 songs in 2 years and haven't created that level of product in the past 13 years.
I used Cakewalk 2.0 on Win3.1 for a couple years and was equally productive there until 1995. That's when music went away and I started hacking Linux because MickeySoft pissed me off so much with their "innovations" in Win95 that it completely killed my machine's ability to perform my most important task (writing music).
Thankfully, with Win2k and it's better stability Cakewalk 9 and my killer 128Mbit Creative Platinum with built in MIDI have brought songwriting back as an option. Yeah, it's Windows, I hate it, and it screws me sometimes, but not so bad that I can't write songs now. Honestly, I'm not that interested in coding C, now that I can write music again. Trust me: my music is better than my coding, although my coding isn't lousy.
What I want is Cakewalk for Linux and then I'll leave you talented hackers to your domain and drift back into that which I've wanted to remain in before all this sloppy coding pulled my sorry ass out of it.
I don't care what the source looks like, but you should comment your code. I just want results. I'm sure most others do as well.
once was. >:)
It's probably supported by M$ on all currently supported processors: Intel and AMD chips and any in that family...
...for now.
On Paper and Online, News Publishers Rapidly Adopting Microsoft BackOffice Technologies
The Center for Democracy and Technology? When the hell did M$'s business goal coalesce with Democracy as Franklin, Jefferson and co. enacted it?
This friendly public service announcement posted from:
vanboers@tempe:~$ uname -a
Linux tempe 2.4.9-ac1 #2 Sun Sep 2 22:20:55 MST 2001 alpha unknown
Nope, not even a Linus Torvalds kernel. Alan Cox rocks, too.
Choice is.
Just change the 192.168.1.2 to dedserius.com and you'll see the content. That machine is one of several hot-swaps on a private LAN. Sorry. I need to update the httpd.conf file, but it's the least likely swap to go and as an Alpha I don't spend much time keeping it current except for security.
The Link has helped quite a few people get their Apache/PHP/FrontPage server on Linux implementations working so hope that helps you out.
True, you can play with 64-bit DEC Alpha in the home user space, but my EV5 is no screaming eagle at 300MHz. 64-Bit Intel chips will certainly bring this level of computing closer to home. Not that I'd run Windoze on it, but it would be nice to have a 64-Bit 1GHz x86 box around.
While the author may think the racy expletives lend an edge to the article, it probably won't be read by enough people for mainstream processing of the message.
Ironically, this story at CNN from May 1999 has an interesting quote:
"I don't think there'll be a formation of [an IT] union until the bubble bursts -- [when] the Dow [Jones Industrial Average] drops, and IPOs sink," said Bill Lessard, a seven-year denizen of Silicon Alley. In December, he co-founded a Web site for disgruntled technologists called NetSlaves (www.netslaves.com).
So, a NetSlaves co-founder predicted the failure of the dot coms 2 years ago [psychic?], and a web site for disgruntled technologists publishes a rant about poor technical journalist ethics (mostly aimed at it's competition) by what appears to be a disgruntled technical journalist. Pretty fringe stuff actually.
Mr. Gilliard's article bespeaks a lot of technical journalism, especially about the article he wrote which takes no different approach than the journalists he blasts.
Now on the Slashdot matter; he clearly doesn't get it, as many don't. This is not journalism here. It's a fuckin' free-for-all intermixed with decent technical and other ecclectic discussions occasionally. Don't critique it as a journalism site: it's not. It won't ever be.
It'd be cool if this tirade actually focused enough media attention on this situation to effect a repeal of this law. It's possible. The law is wrong and there are many in the /. community who are vocal; sometimes get noticed; and, don't have a hobby besides technology.
/. are your silent friend while you're off painting.
You might be off doing art, but you'll probably continue geeking out your machines to those graphic ends regardless.
The "minions" you appear to refer to on
Acknowledge that and don't alienate those who'll rabidly be defending your interests while you're painting your ideas.
If you can help them, you should. If you're part geek/part artist, you shouldn't criticize those who are just geek. They might be helpful to you when you're more focused on your art.
Artists tend not be judgemental. I am one. I'm also a geek, but respect the diverse opinions this forum depicts and don't make judgements. I couldn't since I'm an artist.
and increasing data storage and processing capacity should concern everyone.
You go to the Circle K and buy a couple packs of cigarettes. There's footage of your car and your face. Just analog data, no problem, right? Some are starting to scan your driver's license to validate your age when you buy beer.
While driving home, you pass through 2 red light cameras and a photo speed trap. More data.
You also remember to swing by the local Meijer's (Michigan Supermarket) and pick up those tampons for your girlfriend (you're a sensitive guy, or just have a wierd hangup.) More movies. You pay with your debit card. More data.
If the local police dep't picks up one of those sweet daddy new IBM z-series servers with enough capacity to store and process all the data passing from our daily meanderings into digital form, we should be very concerned.
They would now know you drink on Monday, smoke too much and your girlfriend is on the rag. Cross-checking the police dep't's databanks they might find a couple domestic violence incidents that coincide with certain lunar phases and this Monday happens to be at the beginning of one. You might have a new guardian angel hanging around for the next 5 days.
Borders did the right thing. But, they could undo it in 3 months. I'd be amazed if there weren't at least 5 other major outlets that were implementing this technology with less media attention.
We should be canvasing the hell out of our legislators to make illegal any mass accumulation of visual data that can single us out by digital processing equipment, now before we're no longer in a position to do so.
He would obviously pull out a rock and a pointy stick and code directly into punch cards...
And, some languages defy any attempt to not look like a mess, regardless of commenting:
Private Sub Combo91336_AfterUpdate()
' Find the record that matches the control.
Me.RecordsetClone.FindFirst "[IndexField] = " & Me.Combo91336.Text
Me.Bookmark = Me.RecordsetClone.Bookmark
End Sub
Wait; sorry that's not a language. >:)
NAT can be implemented trivially to each of the "business" ip's behind that router directly to the firewall which will route it appropriately.
This isn't rocket science. NAT each of the public IP's to the same firewall machine and set up the rules to redirect to the private servers as appropriate. Done.
BTW, this is a business network. I just threw out a simple rule for the 99.9% user. Tweaking it is like eating popcorn.
Wrong on both.
Cisco was negligent. They didn't give Qwest the proper firmware for the routers they sold Qwest customers. 675, or 678s. Trust me. I toasted one of them and turned it into a door-stop. Qwest took the unit and gave me a new one. Probably RMA-ed it at Cisco's expense.
Disabling the port isn't enough.
cbos#set web disabled
cbos#set nat entry add 10.0.0.2
Problem solved. (You might want to write that.)
Cisco up for 34 days, 10:15:12.60.
CBOS (tm) 678 Software (C678-I-M), Version v2.3.5.012
Clearly I haven't patched. Keep in mind remote syslog is enabled, so testing the veracity of my cisco's configuration might be legally problematic. If anyone tries to kill my router, it's without authorization and will be logged. The router will survive it and the syslog server will record it and I will report it. Sorry for the disclaimer, but it needs to be there. >:)
Clearly Code Red hasn't killed my router. I am typing this from my DSL connection.
Peace.
Actually, I don't know that we'll ever learn why Qwest had issues today, but the segment of the Qwest network affected did have a fairly pronounced Code Red II infestation. About 2/3rds of the infections reported at this Code Red report are from a monitor on the Phoenix Qwest DSL network. I can only suspect that the disruption was the result of having all those compromised hosts with root.exe running on them undetected.
With:
running on separate Eterms for the day, I've learned that Qwest shut down the router from the Phoenix DSL network a couple times and brought it back up only to find the behavior was the same. After some (infered) head-scratching after a period where they turned the router off for about 35 minutes, I saw a new hop beyond loop1.phnx-dsl-gw8.phnx.uswest.net but then dropped. This new router (not putting it out here since I'll leave that forensic recon to any potentially involved individuals in this outtage who are interested) had a new IP. No further hops for about 20 minutes (configuring this new router with new routes?). And, then it popped. All ETerms started showing smooth flow of traffic.
Perhaps a fairy tale inspired by a consultant who just lost a billable day. Perhaps a clue to solving a riddle that probably affected anyone on the Qwest Phoenix DSL network today. Potentially, a clue as to what people out there are doing with infected IIS machines.
If these conjectures have any modicum of merit; we're in trouble. Serius trouble.
Of course, this could all be my own imagination and the outtage the result of a backhoe operator on a Cottonwood corn farm.
You be the judge. If you're using Qwest DSL in Phoenix, this probably happened to you also.
"...Apache hasn't introduced any significant user features in two years. (For example, has Apache even managed to deliver a standard GUI configuration tool in all this time?)"
And, why is a GUI necessary for configuration of a web server. It's already (finally) becoming clear that server administrators need to know how to do more than just aim their mouse and click. Insufficient security training is being acknowledged as a business liability.
Sure web services are useful and may very well become the business model of tomorrow, but define it. Your company's soon-to-be-released new revolutionary product line won't be authored in WordXP or ExcelXP documents on some other company's server. If that's a "Web Service" the author is thinking of, it's not and won't become a business model anyone will buy. Interactive applications is probably one of the more viable prospects, and Apache does not offer such interactivity natively. Apache hasn't really advanced much in a couple years, but does that mean it's dead? You can plug a helluva lot more into Apache to make it an interactive, secure, and functional application server for the web than anything IIS will ever produce.
And, you don't need to reboot your whole flipping server when Apache, PHP, MySQL, PostgreSQL, or mod_mp3, or whatever else you've rolled into that application server submits a security patch. Just apply the patch and kick start the service. Ouch! That was painful....
Apache is far from dead or dying. It probably won't come with a GUI configurator/wizard thingy. Should it?
Qwest: Hi, we're calling all of our customers to find out if they've been affected by the Code Red virus. Have you been affected?
Nope.
Q: Huh?
I nat everything through the router to an internal firewall. Disable the web interface.
Q: Okay. Thanks.
Don't mention it.
= = =
Qwest in Phx. Impressive customer service effort.
Interesting e-mail someone just sent me:
So someone has finally ported Code Red to Apache? >:)
Are here.
Frustrated by the lack of any current stats on this from DShield, or Incidents short of the update on the 4th, I collected some stats that might give some indication of where this thing is going. Peak times at 1300 and 1400 MST. Not sure what this means, but seems consistent.
A crash dump is a snap-shot of all memory in the system at dump time. If the variable username=tswinzig is resident at that time, along with any passwords still cached, they'll be in there. Personally I'd prefer to keep that type of info on the machine. Not to mention the size of the transfer if you have more than 32 MBytes (RAM), which you will since XP requires 128MBytes, if I'm not mistaken.