When I taught a Operations Research design and programming course several years ago, I had a somewhat similar approach.
As the first part of the project, the teams had to create a work breakdown for each member and assign various team members their roles in the project. This involved a preliminary scope analysis of the project as well as an assessment of team member capabilities.
This was worth 25% of project and was submitted jointly and signed by all members, somewhat like an RFP is done in business.
Each team member was then marked on the quality of their contribution to the result ( the documenter was given marks for documentation, coder for code quality etc.) for 50%. Then 25% was given for overall project results.
This emphasized the team approach while allowing marking individual expertise.
I am finding that many corporate bosses don't really want to hire competent people.
Competent people get the job done with half the resources and with half the people making a boss's empire that much smaller.
Many bosses in bureaucracies (especially government ones) are rated because of the size of their budget and staff. Having a bunch of time fillers needing off-the-shelf GUI's running on Windows means the the empire is very big.
Having one or two geeks who don't fit into the corporate mold makes the boss look bad. Linux scares them because it gets the job done without need for a bigger budget and more toys.
The Canadian government has a job opening for technical people to work on this new copyright legislation.
The job description is at Jobs Canada .
Apply now and work on the inside.
The most important rule that courts use to determine the validity of digital evidence is to ask if there is a chain of diligence from the creation of the data to the presentation in court.
That is, have the data been kept in a secure manner from their creation to their presentation?
This generally means that log files are saved on read only media, in a regular procedure, that they are dated and signed by at least 2 people as to validity and that they are physically kept in a secure manner until presented.
There has been a discussion on the forensics mailing list this last week about how to guarantee that disk images can be certified valid in court. see SecurityFocus forensics for the mailing list archives.
Although you can't just stop paying a bill, you can put the payment in escrow by handing it to a notary with a notice to the contractor (Rogers in this case) that you are doing so until service is satisfactory.
You have a contract with Rogers to provide you with a service. You have the right not to pay for the service until it is deliverd, but you have to show "good faith" by ensuring that the money is available when the contract is delivered. That is what the escrow account is for.
The advantage of the GPL is that the original creator of a work is also entitled to get the additions that later developers add to it. This is why it is actually useful to commmercial concerns who are interested in using the GPL software rather than just selling it.
If IBM, say, gives the GPLed Linux to its consultants to use, their contribution is open to other firms to use, but (and this is crucial), if other companies develop extensions to a GPL product, IBM will get to use and have the source for those as well. This is important.
Even though I give away what I develop to the community, I have a guarantee that what others develop, I also get to use.
The BSD license, on the other hand, allows further extension to my work to be hidden from me and restricted in availability. It does not force the incorporation of creativity into the whole body of work so limits the growth of the whole system.
Actually there is a lot of computer work but the fact it is not obvious shows how good it is.
It may not be computer animation, in the sense of Disney/Anime animation but it is a lot of computer grpahics techniques. The better the computer work, the less you can tell.
Lack of understanding from those involved often create more harm than they help. UDP packets coming in to a website? And the admins couldn't think firsthand network skills SYN --> ACK --> SYN, 3 way TCP handshaking? They need to go back and study up using some Cisco Press material.
Well your network skills are rusty if you think that UDP has the 3 way handshake. UDP packets are datagrams, each independent of any other. No handshake needed (and no stream or validation either). That is why UDP can cause problems.
Each packet can have a different source port/source address dest address/dest port so there is no simple filtering rules other than default deny all. That is hard through a general purpose router.
Yes and if they said in a welcome message:
"This is a private web site. Unauthorised access is forbidden",
you would have legal obligation to leave immediately and never visit again.
You are only really authorised to go to web sites because of the intent of the owner. "Common Sense" says you are authorised. "Common Sense" says that you are not authorised to go to a SQL server database. The law is based on common sense rather than logic.
I find that the most useful comments are those that explain the data structures used and the reasons for the approach taken in the code.
I can normally read code but I often need to kn ow the range of possible valuies of a function return or the assumptions made about string sizes etc. These are not part of the code iteslef so they need to be in comments.
But comments that just repeat the code in English get in the way.
Code like
x++;/* Increment x */ waste time and space.
But comments like
linecounter++;/* Line counter has count of lines printed so far */
Actually there has been a historical distinction between British citizens (thos born or naturalized in the United Kingdom) and British subjects (those living in countries that recognize Queen Elizabeth II as queen such as Canada and Australia). British citizens are also British subjects but not the reverse.
The concept of British subject has almost disappeared but my mother, born in Australia, was able to vote in Canada for 30 years before she became a Canadian citizen because she was a British subject. She became a Canadian citizen only when the changed the law to only allow Canadian citizens to vote.
My management did this as part of the Y2K business recovery plan (BRP) along with all kinds of inventories, alternate routing plans etc.
But they haven't been touched since Jan 1, 2000 so they no longer reflect reality. I wonder how many other companies have left their Y2K disaster planning to bit rot on shelves somewhere. After spending millions of dollars creating these BRP documents, they are wasting all this work when it could be easily maintained for other contigencies.
Re:RBL not opt-in for individuals
on
MAPS Sued Again
·
· Score: 1
I know an ISP that offers the choice of two email servers. One uses ORBS, RBL, RSS etc. and one does not. The customer gets to publish either
address@nospam.isp.com
or
address@isp.com
Science and reason are built on faith. Not faith in a remote intelligence that somehow orders everything, but faith that the laws and order that we observe on this small planet also apply over all time and all space. You have not been to IO to personally observe the volcano's. You have faith that the instruments that returned photographs's were not doctored. Saying that you only believe what you can see/touch/hear/measure/understand means that you don't belive in science in a field where you are not an expert. We believe in science because it is consistent and open to change. As Karl Popper has said, things can only really be scientifically true if they could also be false with different data, but that is not the reality of most work in science. You don't see much published that says some experiment didn't prove our hyposthesis. But more great science has come of experiments that failed than those that just confirmed prevailing wisdom (Michelson-Morley, Darwin's finches etc.) Science has faith in Occam's Razor, science has faith in the laws of thermodynamics, science has faith that mathematics can adequately describe physical phenomena. The difference between scientific faith and relgious faith is that science is willing to change its dogma if it finds a counter example, but most religions will deny the counter example if it disagrees with dogma. But even religions gradually change belief over time, witness the Catholic churces acceptance of evolution.
Only problem is that 90% of the time the reply address on a spam is fake and often points to an innocent bystander. They already get the bounce messages from truly invalid addresses and hate mail from those idiots who reply to spam without you increasing their punishment. A host that I administer was put on the reply address of a spam to AOL. We got 100,000 bounces and replies in a day to a host that doesn't even run email and never has.
Actually your problem is caused by the spammers. Last summer somebody on your segment ran continual Smurf ICMP flood against your subnet causing most users to slow to a crawl. Much of the problem with cable network slowdowns are the spammers and script kiddies clogging up the shared bandwith. Lately the Ottawa East end network (SLNT1 is St. Laurent Road in Ottawa Canada) has been the source of ping flooders and spammers blocking others out of connectivity.
You said: Interestingly, it's an example of anarchism in action. Anybody can publish such a list. Anybody can hack their sendmail to use such a list - and pick any such list they chose. (As far as I know there's only one such list at the moment - probably a sign that it's doing a good job.)
The RBH client code is included in current Linux distributions. (I saw it as a {recommended} sendmail configuration option in Red Hat 6.1, for instance.) I've heard estimates that about 60% of the email inboxes in the world are now behind mail transfer agents that subscribe to RBH and thus bounce mail from any site on the list. ------------------------------------------------ -
There are several other DNS based "blackhole lists", several of which are more useful in stopping spam than the RBL. The DUL (dial up list) is a list of IP numbers of PPP connections to prevent spammers from spewing from a dialup without going through the ISP's mail server.
The Relay Spam Stopper (RSS) list is a list of servers that are mis-configured to be open spam relays AND have allowed spam to be relayed through them. More about these can be found at http://www.mail-abuse.org Another list called ORBS actively test servers for relaying. It is much more controversial because it proactively adds servers whether they have been used to send spam or not.
I have found the worst problem with Conducent (TimeSink)is that it becomes persistent in trying to connect if it can't get its information through. I have monitored it and found it retries about 10 times per second it if gets 504 (Forbidden) messages on an attempt. This will really mess up someones computer throughput.
I have found the worst problem with Conducent (TimeSink)is that it becomes persistent in trying to connect if it can't get its information through. I have monitored it and found it retries about 10 times per second it if gets 504 (Forbidden) messages on an attempt. This will really mess up someones computer throughput.
Slashdot Mirror
When I taught a Operations Research design and programming course several years ago, I had a somewhat similar approach.
As the first part of the project, the teams had to create a work breakdown for each member and assign various team members their roles in the project. This involved a preliminary scope analysis of the project as well as an assessment of team member capabilities.
This was worth 25% of project and was submitted jointly and signed by all members, somewhat like an RFP is done in business.
Each team member was then marked on the quality of their contribution to the result ( the documenter was given marks for documentation, coder for code quality etc.) for 50%. Then 25% was given for overall project results.
This emphasized the team approach while allowing marking individual expertise.
I am finding that many corporate bosses don't really want to hire competent people.
Competent people get the job done with half the resources and with half the people making a boss's empire that much smaller.
Many bosses in bureaucracies (especially government ones) are rated because of the size of their budget and staff. Having a bunch of time fillers needing off-the-shelf GUI's running on Windows means the the empire is very big.
Having one or two geeks who don't fit into the corporate mold makes the boss look bad. Linux scares them because it gets the job done without need for a bigger budget and more toys.
The Canadian government has a job opening for technical people to work on this new copyright legislation.
The job description is at Jobs Canada .
Apply now and work on the inside.
The most important rule that courts use to determine the validity of digital evidence is to ask if there is a chain of diligence from the creation of the data to the presentation in court.
That is, have the data been kept in a secure manner from their creation to their presentation?
This generally means that log files are saved on read only media, in a regular procedure, that they are dated and signed by at least 2 people as to validity and that they are physically kept in a secure manner until presented.
There has been a discussion on the forensics mailing list this last week about how to guarantee that disk images can be certified valid in court. see SecurityFocus forensics for the mailing list archives.
Any password that you can remember without writing is down is most likely easy to crack.
People just can't remember a 8+ character random sequence without some practice and anything less is crackable
Although you can't just stop paying a bill, you can put the payment in escrow by handing it to a notary with a notice to the contractor (Rogers in this case) that you are doing so until service is satisfactory.
You have a contract with Rogers to provide you with a service. You have the right not to pay for the service until it is deliverd, but you have to show "good faith" by ensuring that the money is available when the contract is delivered. That is what the escrow account is for.
The advantage of the GPL is that the original creator of a work is also entitled to get the additions that later developers add to it. This is why it is actually useful to commmercial concerns who are interested in using the GPL software rather than just selling it.
If IBM, say, gives the GPLed Linux to its consultants to use, their contribution is open to other firms to use, but (and this is crucial), if other companies develop extensions to a GPL product, IBM will get to use and have the source for those as well. This is important.
Even though I give away what I develop to the community, I have a guarantee that what others develop, I also get to use.
The BSD license, on the other hand, allows further extension to my work to be hidden from me and restricted in availability. It does not force the incorporation of creativity into the whole body of work so limits the growth of the whole system.
Actually there is a lot of computer work but the fact it is not obvious shows how good it is.
It may not be computer animation, in the sense of Disney/Anime animation but it is a lot of computer grpahics techniques. The better the computer work, the less you can tell.
Lack of understanding from those involved often create more harm than they help. UDP packets coming in to a website? And the admins couldn't think firsthand network skills SYN --> ACK --> SYN, 3 way TCP handshaking? They need to go back and study up using some Cisco Press material.
Well your network skills are rusty if you think that UDP has the 3 way handshake. UDP packets are datagrams, each independent of any other. No handshake needed (and no stream or validation either). That is why UDP can cause problems.
Each packet can have a different source port/source address dest address/dest port so there is no simple filtering rules other than default deny all. That is hard through a general purpose router.
Yes and if they said in a welcome message:
"This is a private web site. Unauthorised access is forbidden",
you would have legal obligation to leave immediately and never visit again.
You are only really authorised to go to web sites because of the intent of the owner. "Common Sense" says you are authorised. "Common Sense" says that you are not authorised to go to a SQL server database. The law is based on common sense rather than logic.
I find that the most useful comments are those that explain the data structures used and the reasons for the approach taken in the code. /* Increment x */ waste time and space.
/* Line counter has count of lines printed so far */
I can normally read code but I often need to kn ow the range of possible valuies of a function return or the assumptions made about string sizes etc. These are not part of the code iteslef so they need to be in comments.
But comments that just repeat the code in English get in the way.
Code like
x++;
But comments like
linecounter++;
help me understand code.
Actually there has been a historical distinction between British citizens (thos born or naturalized in the United Kingdom) and British subjects (those living in countries that recognize Queen Elizabeth II as queen such as Canada and Australia). British citizens are also British subjects but not the reverse.
The concept of British subject has almost disappeared but my mother, born in Australia, was able to vote in Canada for 30 years before she became a Canadian citizen because she was a British subject. She became a Canadian citizen only when the changed the law to only allow Canadian citizens to vote.
My management did this as part of the Y2K business recovery plan (BRP) along with all kinds of inventories, alternate routing plans etc.
But they haven't been touched since Jan 1, 2000 so they no longer reflect reality. I wonder how many other companies have left their Y2K disaster planning to bit rot on shelves somewhere. After spending millions of dollars creating these BRP documents, they are wasting all this work when it could be easily maintained for other contigencies.
I know an ISP that offers the choice of two email servers. One uses ORBS, RBL, RSS etc. and one does not. The customer gets to publish either
address@nospam.isp.com
or
address@isp.com
(or both).
What is the problem?
The open source ethereal network analyser Ethereal at zing.org has a large number of protocols defined.
Another good analysis package is the SNORT intrusion detection system at snort.org
Of course the Republicans were originally a third party so we should return to the original party system: Whigs versus Republican-Democrats.
Abraham Lincoln was a third party candidate and I don't think he was too bad of a President.
Except the first thing the worm did was to change that timeout to 0 (which means no timeout). Your idea was forseen by the writer of the worm.
Science and reason are built on faith. Not faith in a remote intelligence that somehow orders everything, but faith that the laws and order that we observe on this small planet also apply over all time and all space. You have not been to IO to personally observe the volcano's. You have faith that the instruments that returned photographs's were not doctored. Saying that you only believe what you can see/touch/hear/measure/understand means that you don't belive in science in a field where you are not an expert. We believe in science because it is consistent and open to change. As Karl Popper has said, things can only really be scientifically true if they could also be false with different data, but that is not the reality of most work in science. You don't see much published that says some experiment didn't prove our hyposthesis. But more great science has come of experiments that failed than those that just confirmed prevailing wisdom (Michelson-Morley, Darwin's finches etc.)
Science has faith in Occam's Razor, science has faith in the laws of thermodynamics, science has faith that mathematics can adequately describe physical phenomena.
The difference between scientific faith and relgious faith is that science is willing to change its dogma if it finds a counter example, but most religions will deny the counter example if it disagrees with dogma. But even religions gradually change belief over time, witness the Catholic churces acceptance of evolution.
Only problem is that 90% of the time the reply address on a spam is fake and often points to an innocent bystander.
They already get the bounce messages from truly invalid addresses and hate mail from those idiots who reply to spam without you increasing their punishment.
A host that I administer was put on the reply address of a spam to AOL. We got 100,000 bounces and replies in a day to a host that doesn't even run email and never has.
Actually your problem is caused by the spammers. Last summer somebody on your segment ran continual Smurf ICMP flood against your subnet causing most users to slow to a crawl.
Much of the problem with cable network slowdowns are the spammers and script kiddies clogging up the shared bandwith. Lately the Ottawa East end network (SLNT1 is St. Laurent Road in Ottawa Canada) has been the source of ping flooders and spammers blocking others out of connectivity.
You said:
- -
Interestingly, it's an example of anarchism in action. Anybody can publish such a list. Anybody can hack their sendmail to use such a list - and pick any such list they chose. (As far as I know there's only one such list at the moment - probably a sign that it's doing a good job.)
The RBH client code is included in current Linux distributions. (I saw it as a {recommended} sendmail configuration option in Red Hat 6.1, for instance.) I've heard estimates that about 60% of the email inboxes in the world are now behind mail transfer agents that subscribe to RBH and thus bounce mail from any site on the list.
-----------------------------------------------
There are several other DNS based "blackhole lists", several of which are more useful in stopping spam than the RBL.
The DUL (dial up list) is a list of IP numbers of PPP connections to prevent spammers from spewing from a dialup without going through the ISP's mail server.
The Relay Spam Stopper (RSS) list is a list of servers that are mis-configured to be open spam relays AND have allowed spam to be relayed through them.
More about these can be found at
http://www.mail-abuse.org
Another list called ORBS actively test servers for relaying. It is much more controversial because it proactively adds servers whether they have been used to send spam or not.
I have found the worst problem with Conducent (TimeSink)is that it becomes persistent in trying to connect if it can't get its information through. I have monitored it and found it retries about 10 times per second it if gets 504 (Forbidden) messages on an attempt. This will really mess up someones computer throughput.
If this is not a Trojan, what is?
I have found the worst problem with Conducent (TimeSink)is that it becomes persistent in trying to connect if it can't get its information through. I have monitored it and found it retries about 10 times per second it if gets 504 (Forbidden) messages on an attempt. This will really mess up someones computer throughput.
If this is not a Trojan, what is?
The headers indicate that it was generated by MSWord as this is probably the standard word processor available to him.
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=windows-1252">
<META NAME="Generator" CONTENT="Microsoft Word 97">
The headers indicate that it was generated by MSWord as this is probably the standard word processor available to him.