I have a blackbelt in directory management (AD, eDir and OpenLDAP)
eDirectory has a nasty habit of being virtually unkillable and is by far and away the most flexible. With 8.8 you can run multiple trees on a host (in MS speak think of multiple domains on a single DC) No waste of a system to just do DC duties for one bit of your system.
If you want the most powerfull directory option then use eDir as your metadirectory and then use IDM to populate other directories and applications as needed (eg MySQL, Oracle, text files, Exchange, GroupWise, NIS, etc ad nauseam)
IDM is phenomenally powerfull, the iManager plugin is as a shining example of how to do a webapp or use Designer, an Eclipse based thingie is great too and has a huge feature set -even churns out your documentation.
AD doesn't really cut it as a LDAP system - compare the rich schema of eDir to AD for example, also you can put replicas where ever you want (it is not DNS federated unless you want it to be)
Steep learning curve but really well worth it.
Grab an eval of Open Enterprise Server 2 (SuSE based), try it out properly, wedge in Identity Manager and you'll be spending cash on the product.
Mr haireyfeet - thank you for reminding me why I have been reading/. for the last GKHL.
That is a beautifully pitched diatribe with a good measure of sarcasm and humour, mixed in with a few typographical conventions that I don't really understand but could make an educated guess at.
However, there are an awfull lot of Linux (and *BSD et al) systems that are being put in the hands of Tuxvelma. You see, like it as not we Linux admins are not the only folk who access these things or even (shock, horror) actually own them.
My wife is not exactly the most technologically sharp person but she insists (after a bit of a demo) on FF for her browser.
Also, after Vista went a bit wonky on her identical to mine laptop, she asked me to put whatever I was running on it. So (1 year) now (5 months) we (20 days) have another Gentoo user - belting!
Incidentaly I'm an MCSE as well (crap). Oh and an NCP and an LCP and a complete and utter nerd. I'm also an MD. Nerd or MD - I'm not sure which I prefer most.
To be honest I have found vMotion to be pretty much "instant". Is this thing *more* instant and if so is it more instant enough to justify its existence over vMotion?
I present my opinions as a non AC - if you are afraid of speaking freely then you work for the wrong firm.
Interestingly, the first three-digit emergency number was 999, in London, and it was picked precisely because it was so hard to dial. The thought was (possibly incorrectly) that it would reduce the number of calls that weren't "real" emergencies.
On the other hand there is one three digit number you can dial on a rotary phone when you can't see it.
I suggest that the real reason 999 was chosen was it allows the blind or a seeing person who is temporarily blinded by darkness or smoke or whatever to dial the emergency services.
IIRC (IANAL) a patent can be (in a simplistic sense) granted for a business process but is invalidated if "prior art" can be demonstrated. I also believe that an "obvious" invention is invalidated as a patent.
How on earth does this even get accepted for inspection?
Does this story even need debating? Is it conceivable that the patent will be granted? (in the US or anywhere else). This last question I'd love to be answered by someone who is an expert in this sort of thing.
FOSS is great for infrastructure stuff--apache, MySQL, etc., but it's been 5 years away from the desktop for the last 20 years...
I cry foul: My KDE 4.2x desktops look absolutely stunning along with all my KDE apps. My Gnome desktops look pretty stunning too. My Enlightenment desktops look rather good.
Need I go on.
I have the choice to have a free (not just given away but the source too) system with multiple desktop look 'n' feels. Some of these DO meet the polish of "high quality commercial software" or exceed it.
I wont whitter on about other related arguements but on this particular one, I feel you are just plain wrong.
5 years from the desktop
- bollocks! I have had plenty of Microsofties compliment my OpenGL+KDE fired desktop. It just looks bloody lovely.
As for internationalized - there are translations for many languages etc.
Kontrast etc - it scores pretty well.
Have you actually used a modern ( less than two year old) Linux distro?
"my Netware servers were an order of magnitude mroe reliable than my Windows servers"
Get a grip. A NetWare system runs nearly everything unhealthily close to itself (can't remember the correct technical term). This means its rather fast and lean on resources but rather unstable, unless you have an optimal mix of things running on it and the right patch set.
However a NW server does not have to have a GUI with a bloated window manager with masses of extras bolted on (eg Explorer)
I have several 100s of NetWare systems under my belt from the last 18 odd years and feel qualified to comment. Oh I have 1000s of Windows ones and 10s of Linuxs (shame but growing as fast as I can shift them).
I will however concur that eDirectory beats seven shades of whatever out of Active Directory. There is barely any comparison. Despite several of my customer's best efforts they have not killed their eDir but others have found that their AD fell to pieces on its own (although to be fair that only happened to two and one of those *may* have been self inflicted)
To sum up - a NetWare server or a Windows server (both - any version) can be wildly unstable or very stable. It just depends what you run on them. Neither is more inherently more unstable out of the box and patched appropriately. That is because neither of them disassociate kernel and userspace properly.
FWIW - My firm have sold, configured and maintain around 200 Drayteks from 2600 onwards. Like all devices they have some good and bad points. My personal peeves are: 2800 to 2820 IPSEC tunnels are a no no (what sort of QA testing can possibly have been done! The tunnel comes up but data does not pass) The SNMP stack is partial
On the bright side they are seriously reliable. We've only ever replaced one. Uptimes on them can be of the order of months and usually a reboot is only because a VPN wont connect. The manual is dreadful but then the online support site is stuffed with howtos.
I don't expect some sort of bot to go off on one when this sort of nonsense is posted (because I doubt that it is yet possible to construct one that wont missfire on/.) but I would hope that a supa dupa meta whatever from/. would have picked up on it and binned it by now.
In the time of the later Roman Republic and early Empire (when most of the famous Latin literature comes from) whether "h" was pronounced was a class thing; dropping "h"s was supposed to be a mark of ignorance or low status.
People insecure about their status would put in "h"s where they didn't belong (the poet Catullus has a whole poem mocking somebody who does this). We quite often see the same thing in England (at least) in modern day usage. Many a book, film or TV program has poked fun at this. In "Keeping up appearances" for example, Hyacinth Bucket ("Bouquet"!) manages to get many an aitch in where they don't belong, along with many other abuses of pronunciation perceived to be better or posher.
I don't believe that there is any such thing as "best practice" in IT. There is good practice and there is bad practice but using a phrase like "best practice" is asking for trouble.
It really gets on my nerves having to read some of the drivel that some vendors put out with best practice scrawled all over it. It comes across as arrogant at the very least. What annoys me even more is reading web sites that have very obviously ripped off content from another larger site (eg one with lots of blue in it) and then have the nerve to whitter on about best practice.
I've always maintained that a good unix guy can do anything on windows with a bit of training, but a windows guy will generally be completely out of his element in unix. Not sure why, exactly, as best practices are best practices. I think you are probably correct but please don't use an MSCS's favorite phrase 8)
I've just been through the ISO9001:2000 mill and I think that is an excellent standard.
I don't know much about the ISO process or about previous ISO standards, but it's entirely possible that this is the first time that an ISO standards process has been gamed so thoroughly. One of the things close to the/. home that I could personally find fault with in the ISO standards is "GB" as the ISO 3166 code for the United Kingdom of Great Britain and Northern Ireland (blah blah blah). I'm aware that the little islands that I call home have a bit of a grand name. Most people I know will refer to the UK or talk about "Britain" but rarely use GB as an abbreviation.
I believe that they were used as the TLDs for countries. However most people will look for.uk on the end of our domains and not.gb. Mind you the United States of America is not abbreviated to "" in common parlance or by the standard. Few people I know of use.co.us and.uk.com etc aren't too popular either. Is that gaming or an example of a standard being out of step with usage?
I can't remember hearing much beating of breasts over that recently.
As is often said: "The great thing about standards is that there are so many to choose from" (1)
So there are "good" ISO standards and there are "bad" ones.
Oh, and is it ISO or OSI - what's the standard here: should Francophones be forced to use ISO or Anglophones OSI? I wouldn't dream of comparing French and English to ODF and OOXML but if someone were to do so, then which would match up with which?
Why do you hang around/. if you don't have the occasional use for Ether^H^H^H^H^Wireshark. It does run on Windows nicely.
Award, hmmm, award...
It really doesn't matter what awards WS has won.
It is a classic example of FOSS at its best. In the dim and distant past you paid serious money for packet capture software. Now you get the absolute dog's nadgers on a plate for nowt. It shows me everything from what a NetWare cluster is up to to a well, what more do you want? Also you can follow streams etc etc etc etc
I personally put it up there with Apache and Samba (oh and that Linux kernel thing) as important software. OK there are quite a few others but I trust you get my point.
Whenever someone says something like "Whenever some product claims to be "award-winning", I always wonder what that award is." I trust they know what they are on about.
>In the first stage, 30 human participants were asked to rate from 1-7 the beauty of several dozen pictures. >>For a masters project (which this was), that's a decent sample size. For research and practice, I do not think that will suffice.
Many moons ago I studied maths and stats. As far as I can remember a decent sample size for a normal population is 30 but is such a subjective thing as "beauty" open to this sort of analysis.
Personally speaking, I think that all they have done is shown that the particular 30 people that participated preferred {whatever they preferred}... and now I have actually read the article: What a pile of cobblers. I can only hope it does not do justice to the quality of the research, however on the off chance that it does then I hope that no-one takes this seriously:
"Our software allows the computer to complete a much more complex task of esthetic judgment, which humans cannot define exactly how they do it. Esthetic judgment is linked to sentiment and more abstract considerations, but now we have made the computer do it. This constitutes a substantial advance in the development of artificial intelligence."
Hmm, fancy - and as it turns out there are more than 30 varieties of esthetic judgment. Most humans that I know will not give a flying wotsit about "how they do it" they will rely on things such as pheromonal response, blood rushing to parts of the body etc. Analyze that, bearing in mind that staring at a picture and giving a response to a questionnaire is not the same as a hard on (or feminine equivalent - I'm not an expert, I lurk on/.)
Oh, and I don't fancy the bird in the piccy at the head of the article - should I? I probably should being a WASP - ooo she's blonde and has such a lovely smile.
Please, someone either post some news or tell me why my diatribe is bollocks.
I had to look up ATF (I'm not from 'round there). BATF - Bureau of Alcohol Tobacco and Firearms. Interesting combination. I don't know where to start taking the piss.
Interestingly enough, if you install Gentoo it will not only blow up your car but actually build you a new one.
From raw materials.
Make sure you specify USE="steeringwheel trunk windshield". You'll have to wait a while though but it will be worth it. It will rebuild itself every week or so and occasionally change colour for no accountable reason.
After three years you will discover that USE="-clutch" would have been a good idea when it suddenly becomes a manual shift without warning. You should have paid attention to the build logs when emerging --deep --newuse world. Oh, and it goes like stink most of the time. Ok so sometimes you have to fix it yourself by renting a foundry and full workshop and talking to Formula 1 mechanics but hey, this is a ~x86 car.
To do the job properly they need to intercept file accesses before the rest of the system and to do that they use a filter driver (which needs a reboot to install - hah!)
So, app or whatever request a file. The OS gets it off disc and the AV software reads it and approves it (or bins it) before the app gets it.
Filter drivers are inserted directly into the kernel I believe a bit like a module under Linux et al. Sadly they seem unable to make these things properly dynamic. You are probably patching the running kernel or something else equally daft but I am not a kernel hacker (Win or otherwise)
To be fair if you were going to do the same under Linux or anything else for that matter the above still applies. To get there first you have to run your AV scanner at the kernel level to intercept the calls transparently unless your file system driver has a built in mechanism to filter things through userspace.
So following your reasoning to a rather ridiculous end, I should block any mail originating from the US (and possibly Canada) because that is apparently where the bulk of spam mail (sorry UCE) comes from.
I don't think so somehow.
I also had my IP plugged by MAPS in this way as a result of an over zealous vigilante. Large parts of.plus.com were blocked (UK ISP). Ironically my brother's company use MAPS.
Fine, I thought, I'll just have a look at the web site and find out what I'd done wrong. I had just compiled up a new Exim MTA with Spamassassin and Sophos but perhaps I'd done something wrong (no it isn't open).
A quick check showed all the links to info I really needed pointing to product info for Kelkea. E-mails resulted in automated responses.
In the past I'd thought of MAPS as one of the good guys, oh well...
So, my opinion:
I don't think you should go after an entire block of addresses - it's just not fair to the innocent
Don't use address lists that you can't trust - ie those in the hands of a company that seem to try and impress with the size of their lists (I'm male and a Company Managing Director and I'm not impressed by that sort of size 8) )
If you look after anti spam systems, then don't just tick the boxes (especially if you use say Mailsweeper on Win). Evaluate the lists that you use for blacklists and if you do use lists, then consider how you use them. Most of the responsible ones eg SURBL via Spamassassin means that you score spam according to hand sorting, ie people have spent a great deal of time with huge volumes of spam and ham, creating scores that are justifiable.
I'm off to install DSpam now for a really large customer now - no lists, no scores - just opinion from those who count - THE CUSTOMER (they *know* what is spam wrt them)
I thoroughly agree with much of the paper but it does not really address the real snags that anyone with half an interest in security has to deal with.
I'll give you a classic example: I have over 60 customer (sites). Yes, you think you have problems with admin passwords. You should see the storage methods I use for those (and no they aren't stored anywhere else than my bonce - as to what those customers do with them)!! I have rather more than my PC passord, ATM card and a few website passwords to deal with.
Yes, pretty password generators are all very well as some posters have whittered on about but in the end its just another case of "something you know".
Anyone care to come up with something that works for wholesale access methods.
That nasty Open Source stuff has been pervading MS for some time. Here's a few examples off the top of my head. Now if it is "inside" then presumably some pretty serious surgery is needed in Redmond quickly before the cancer spreads even more.
In the Group Policy editor (2000/XP) there is a setting to use unencrypted passwords with third party SMB servers - this is transparently a support option for Samba which used to require it, many moons ago.
Smoothwall has been registered by several MS employees (see http://www.smoothwall.org) in preference to using Internet Connection Sharing, which is not described favourably.
This just made me laugh: http://www.microsoft.com/technet/treeview/default. asp?url=/technet/prodtechnol/iis/deploy/rollout/la pa2iis.asp "SAMBA is also useful for transferring files between computers running UNIX and Windows operating systems." - so that's alright then!
MS really needs to get its own house in order pretty damn quickly. That GPL stuff is everywhere.
It appears not many posters have actually read the CNet story properly.
This licensing model might affect Enterprise agreements only. We are on "Select" with 3,500 and even that is not included in the 3 year thing. However, I suppose time will tell.
Time to demo the Mandrake 8.0 box I've just put together ("Well, KOffice hasn't been around for long... give them 2 years to put some real polish on it and we'll see if you really need XP")
Slashdot Mirror
and +1 for eDir from me as well.
I have a blackbelt in directory management (AD, eDir and OpenLDAP)
eDirectory has a nasty habit of being virtually unkillable and is by far and away the most flexible. With 8.8 you can run multiple trees on a host (in MS speak think of multiple domains on a single DC) No waste of a system to just do DC duties for one bit of your system.
If you want the most powerfull directory option then use eDir as your metadirectory and then use IDM to populate other directories and applications as needed (eg MySQL, Oracle, text files, Exchange, GroupWise, NIS, etc ad nauseam)
IDM is phenomenally powerfull, the iManager plugin is as a shining example of how to do a webapp or use Designer, an Eclipse based thingie is great too and has a huge feature set -even churns out your documentation.
AD doesn't really cut it as a LDAP system - compare the rich schema of eDir to AD for example, also you can put replicas where ever you want (it is not DNS federated unless you want it to be)
Steep learning curve but really well worth it.
Grab an eval of Open Enterprise Server 2 (SuSE based), try it out properly, wedge in Identity Manager and you'll be spending cash on the product.
I've taken a cursory look over the comments here and they seem to be directed at the medium rather than the message.
It's not about MS, it's about the right to speak out on issues that you care about via whatever medium is available.
Whomever decreed this has absolutely no idea of what they are doing.
A quick follow up of the referenced article shows that it was MS itself unilateraly decreeing this. The reason is:
"but the one that apparently concerns Microsoft is that the US has put embargoes on each of them."
Charming.
So now we have an American company deciding who may say things.
I personally say "bollocks".
"Land of the Free" - crap.
You allow a corporation to decide who can say something.
Nice.
Mr haireyfeet - thank you for reminding me why I have been reading /. for the last GKHL.
That is a beautifully pitched diatribe with a good measure of sarcasm and humour, mixed in with a few typographical conventions that I don't really understand but could make an educated guess at.
However, there are an awfull lot of Linux (and *BSD et al) systems that are being put in the hands of Tuxvelma. You see, like it as not we Linux admins are not the only folk who access these things or even (shock, horror) actually own them.
My wife is not exactly the most technologically sharp person but she insists (after a bit of a demo) on FF for her browser.
Also, after Vista went a bit wonky on her identical to mine laptop, she asked me to put whatever I was running on it. So (1 year) now (5 months) we (20 days) have another Gentoo user - belting!
Incidentaly I'm an MCSE as well (crap). Oh and an NCP and an LCP and a complete and utter nerd. I'm also an MD. Nerd or MD - I'm not sure which I prefer most.
Instant eh? Define instant in this context.
To be honest I have found vMotion to be pretty much "instant". Is this thing *more* instant and if so is it more instant enough to justify its existence over vMotion?
I present my opinions as a non AC - if you are afraid of speaking freely then you work for the wrong firm.
Interestingly, the first three-digit emergency number was 999, in London, and it was picked precisely because it was so hard to dial. The thought was (possibly incorrectly) that it would reduce the number of calls that weren't "real" emergencies.
On the other hand there is one three digit number you can dial on a rotary phone when you can't see it.
I suggest that the real reason 999 was chosen was it allows the blind or a seeing person who is temporarily blinded by darkness or smoke or whatever to dial the emergency services.
IIRC (IANAL) a patent can be (in a simplistic sense) granted for a business process but is invalidated if "prior art" can be demonstrated. I also believe that an "obvious" invention is invalidated as a patent.
How on earth does this even get accepted for inspection?
Does this story even need debating? Is it conceivable that the patent will be granted? (in the US or anywhere else). This last question I'd love to be answered by someone who is an expert in this sort of thing.
FOSS is great for infrastructure stuff--apache, MySQL, etc., but it's been 5 years away from the desktop for the last 20 years...
I cry foul: My KDE 4.2x desktops look absolutely stunning along with all my KDE apps. My Gnome desktops look pretty stunning too. My Enlightenment desktops look rather good.
Need I go on.
I have the choice to have a free (not just given away but the source too) system with multiple desktop look 'n' feels. Some of these DO meet the polish of "high quality commercial software" or exceed it.
I wont whitter on about other related arguements but on this particular one, I feel you are just plain wrong.
5 years from the desktop
- bollocks! I have had plenty of Microsofties compliment my OpenGL+KDE fired desktop. It just looks bloody lovely.
As for internationalized - there are translations for many languages etc.
Kontrast etc - it scores pretty well.
Have you actually used a modern ( less than two year old) Linux distro?
Sorry, I should probably point out that "twat" is not a past tense of "twit".
In English we have the verb "to twat" which may help you in your efforts to assist someone to "Tweet this, bitch".
Why does FF insist on putting a red line under "twat" - its been in the language for at least 10 years ...
"my Netware servers were an order of magnitude mroe reliable than my Windows servers"
Get a grip. A NetWare system runs nearly everything unhealthily close to itself (can't remember the correct technical term). This means its rather fast and lean on resources but rather unstable, unless you have an optimal mix of things running on it and the right patch set.
However a NW server does not have to have a GUI with a bloated window manager with masses of extras bolted on (eg Explorer)
I have several 100s of NetWare systems under my belt from the last 18 odd years and feel qualified to comment. Oh I have 1000s of Windows ones and 10s of Linuxs (shame but growing as fast as I can shift them).
I will however concur that eDirectory beats seven shades of whatever out of Active Directory. There is barely any comparison. Despite several of my customer's best efforts they have not killed their eDir but others have found that their AD fell to pieces on its own (although to be fair that only happened to two and one of those *may* have been self inflicted)
To sum up - a NetWare server or a Windows server (both - any version) can be wildly unstable or very stable. It just depends what you run on them. Neither is more inherently more unstable out of the box and patched appropriately. That is because neither of them disassociate kernel and userspace properly.
FWIW - My firm have sold, configured and maintain around 200 Drayteks from 2600 onwards. Like all devices they have some good and bad points. My personal peeves are:
2800 to 2820 IPSEC tunnels are a no no (what sort of QA testing can possibly have been done! The tunnel comes up but data does not pass)
The SNMP stack is partial
On the bright side they are seriously reliable. We've only ever replaced one. Uptimes on them can be of the order of months and usually a reboot is only because a VPN wont connect. The manual is dreadful but then the online support site is stuffed with howtos.
I don't expect some sort of bot to go off on one when this sort of nonsense is posted (because I doubt that it is yet possible to construct one that wont missfire on /.) but I would hope that a supa dupa meta whatever from /. would have picked up on it and binned it by now.
What a wanker - whoever AC is.
People insecure about their status would put in "h"s where they didn't belong (the poet Catullus has a whole poem mocking somebody who does this). We quite often see the same thing in England (at least) in modern day usage. Many a book, film or TV program has poked fun at this. In "Keeping up appearances" for example, Hyacinth Bucket ("Bouquet"!) manages to get many an aitch in where they don't belong, along with many other abuses of pronunciation perceived to be better or posher.
Now how OT can we get, following this thread 8)?
It really gets on my nerves having to read some of the drivel that some vendors put out with best practice scrawled all over it. It comes across as arrogant at the very least. What annoys me even more is reading web sites that have very obviously ripped off content from another larger site (eg one with lots of blue in it) and then have the nerve to whitter on about best practice. I've always maintained that a good unix guy can do anything on windows with a bit of training, but a windows guy will generally be completely out of his element in unix. Not sure why, exactly, as best practices are best practices. I think you are probably correct but please don't use an MSCS's favorite phrase 8)
Nope. Never used Kilos for force.
...
Kilos for mass and Newtons for force. End of chat!
I do also use "Rule of Thumb" and "Imperial" mensuration systems as well though
I believe that they were used as the TLDs for countries. However most people will look for
Mind you the United States of America is not abbreviated to "" in common parlance or by the standard. Few people I know of use
I can't remember hearing much beating of breasts over that recently.
As is often said: "The great thing about standards is that there are so many to choose from" (1)
So there are "good" ISO standards and there are "bad" ones.
Oh, and is it ISO or OSI - what's the standard here: should Francophones be forced to use ISO or Anglophones OSI? I wouldn't dream of comparing French and English to ODF and OOXML but if someone were to do so, then which would match up with which?
----
(1) Many people, probably including Anon.
Why do you hang around /. if you don't have the occasional use for Ether^H^H^H^H^Wireshark. It does run on Windows nicely.
...
... and PHP, Python, PERL, MySQL, PostgreSQL, *BSD, Firefox, KDE, Gnome, E{n} ...
Award, hmmm, award
It really doesn't matter what awards WS has won.
It is a classic example of FOSS at its best. In the dim and distant past you paid serious money for packet capture software. Now you get the absolute dog's nadgers on a plate for nowt. It shows me everything from what a NetWare cluster is up to to a well, what more do you want? Also you can follow streams etc etc etc etc
I personally put it up there with Apache and Samba (oh and that Linux kernel thing) as important software. OK there are quite a few others but I trust you get my point.
Whenever someone says something like "Whenever some product claims to be "award-winning", I always wonder what that award is." I trust they know what they are on about.
By gum it's a good world when it comes to software.
AWARD - PAH - use the bloody thing and give out your own awards!
>In the first stage, 30 human participants were asked to rate from 1-7 the beauty of several dozen pictures.
... and now I have actually read the article: What a pile of cobblers. I can only hope it does not do justice to the quality of the research, however on the off chance that it does then I hope that no-one takes this seriously:
/.)
>>For a masters project (which this was), that's a decent sample size. For research and practice, I do not think that will suffice.
Many moons ago I studied maths and stats. As far as I can remember a decent sample size for a normal population is 30 but is such a subjective thing as "beauty" open to this sort of analysis.
Personally speaking, I think that all they have done is shown that the particular 30 people that participated preferred {whatever they preferred}
"Our software allows the computer to complete a much more complex task of esthetic judgment, which humans cannot define exactly how they do it. Esthetic judgment is linked to sentiment and more abstract considerations, but now we have made the computer do it. This constitutes a substantial advance in the development of artificial intelligence."
Hmm, fancy - and as it turns out there are more than 30 varieties of esthetic judgment. Most humans that I know will not give a flying wotsit about "how they do it" they will rely on things such as pheromonal response, blood rushing to parts of the body etc. Analyze that, bearing in mind that staring at a picture and giving a response to a questionnaire is not the same as a hard on (or feminine equivalent - I'm not an expert, I lurk on
Oh, and I don't fancy the bird in the piccy at the head of the article - should I? I probably should being a WASP - ooo she's blonde and has such a lovely smile.
Please, someone either post some news or tell me why my diatribe is bollocks.
ISO 9001 external audits are carried out yearly for us by the BSI.
I had to look up ATF (I'm not from 'round there). BATF - Bureau of Alcohol Tobacco and Firearms. Interesting combination. I don't know where to start taking the piss.
Interestingly enough, if you install Gentoo it will not only blow up your car but actually build you a new one.
From raw materials.
Make sure you specify USE="steeringwheel trunk windshield". You'll have to wait a while though but it will be worth it. It will rebuild itself every week or so and occasionally change colour for no accountable reason.
After three years you will discover that USE="-clutch" would have been a good idea when it suddenly becomes a manual shift without warning. You should have paid attention to the build logs when emerging --deep --newuse world. Oh, and it goes like stink most of the time. Ok so sometimes you have to fix it yourself by renting a foundry and full workshop and talking to Formula 1 mechanics but hey, this is a ~x86 car.
To do the job properly they need to intercept file accesses before the rest of the system and to do that they use a filter driver (which needs a reboot to install - hah!)
So, app or whatever request a file. The OS gets it off disc and the AV software reads it and approves it (or bins it) before the app gets it.
Filter drivers are inserted directly into the kernel I believe a bit like a module under Linux et al. Sadly they seem unable to make these things properly dynamic. You are probably patching the running kernel or something else equally daft but I am not a kernel hacker (Win or otherwise)
To be fair if you were going to do the same under Linux or anything else for that matter the above still applies. To get there first you have to run your AV scanner at the kernel level to intercept the calls transparently unless your file system driver has a built in mechanism to filter things through userspace.
So following your reasoning to a rather ridiculous end, I should block any mail originating from the US (and possibly Canada) because that is apparently where the bulk of spam mail (sorry UCE) comes from.
.plus.com were blocked (UK ISP). Ironically my brother's company use MAPS.
...
I don't think so somehow.
I also had my IP plugged by MAPS in this way as a result of an over zealous vigilante. Large parts of
Fine, I thought, I'll just have a look at the web site and find out what I'd done wrong. I had just compiled up a new Exim MTA with Spamassassin and Sophos but perhaps I'd done something wrong (no it isn't open).
A quick check showed all the links to info I really needed pointing to product info for Kelkea. E-mails resulted in automated responses.
In the past I'd thought of MAPS as one of the good guys, oh well
So, my opinion:
I don't think you should go after an entire block of addresses - it's just not fair to the innocent
Don't use address lists that you can't trust - ie those in the hands of a company that seem to try and impress with the size of their lists (I'm male and a Company Managing Director and I'm not impressed by that sort of size 8) )
If you look after anti spam systems, then don't just tick the boxes (especially if you use say Mailsweeper on Win). Evaluate the lists that you use for blacklists and if you do use lists, then consider how you use them. Most of the responsible ones eg SURBL via Spamassassin means that you score spam according to hand sorting, ie people have spent a great deal of time with huge volumes of spam and ham, creating scores that are justifiable.
I'm off to install DSpam now for a really large customer now - no lists, no scores - just opinion from those who count - THE CUSTOMER (they *know* what is spam wrt them)
I thoroughly agree with much of the paper but it does not really address the real snags that anyone with half an interest in security has to deal with.
I'll give you a classic example: I have over 60 customer (sites). Yes, you think you have problems with admin passwords. You should see the storage methods I use for those (and no they aren't stored anywhere else than my bonce - as to what those customers do with them)!! I have rather more than my PC passord, ATM card and a few website passwords to deal with.
Yes, pretty password generators are all very well as some posters have whittered on about but in the end its just another case of "something you know".
Anyone care to come up with something that works for wholesale access methods.
I need "something you REALLY are"
That nasty Open Source stuff has been pervading MS for some time. Here's a few examples off the top of my head. Now if it is "inside" then presumably some pretty serious surgery is needed in Redmond quickly before the cancer spreads even more.
. asp?url=/technet/prodtechnol/iis/deploy/rollout/la pa2iis.asp "SAMBA is also useful for transferring files between computers running UNIX and Windows operating systems." - so that's alright then!
In the Group Policy editor (2000/XP) there is a setting to use unencrypted passwords with third party SMB servers - this is transparently a support option for Samba which used to require it, many moons ago.
Smoothwall has been registered by several MS employees (see http://www.smoothwall.org) in preference to using Internet Connection Sharing, which is not described favourably.
This just made me laugh: http://www.microsoft.com/technet/treeview/default
MS really needs to get its own house in order pretty damn quickly. That GPL stuff is everywhere.
It appears not many posters have actually read the CNet story properly.
... give them 2 years to put some real polish on it and we'll see if you really need XP")
This licensing model might affect Enterprise agreements only. We are on "Select" with 3,500 and even that is not included in the 3 year thing. However, I suppose time will tell.
Time to demo the Mandrake 8.0 box I've just put together ("Well, KOffice hasn't been around for long