Look into Radius authentication. Your AD DC's can act as Radius servers and your *nix boxes can act as Radius clients thus unifying your logins across almost any platform including a lot of routers/switches.
I really don't think this will fly. I know it doesn't work where I am employed; and I know for a fact it doesn't work in quite a few other shops.
I have seen this type of situation at work in our accouting department. A middle age guy who was very talented took a demotion and a cut in pay to allow him to work only 40 hours per week which enabled him to spend time with his family (something he was unable to do with his previous position). When he was offered another more responsible position he declined for the same reasons he took the demotion. He was let go the next day.
In my experience anytime you get into a situation like that it is better to take a package, get a new job doing what you like with a company that is going to treat you better. Anywhere that is going to treat you poorly is a place you don't want to be anyway.
Sit down personally with management one on one and explain in detail your reasoning for not wanting the promotion _right now_. Don't tell them (or even let them assume) that you never want to move up. Tell them you would rather stay in the position you are currently in for x reasons. If they think you don't want the position ever they are likely to assume that when you are ready to change jobs you will move elsewhere.
Why don't you try following BugTraq a little. If you did then you might have seen this message from Weld Pond which explains the reasoning behind the switch.
Date: Wed, 13 Dec 2000 16:24:53 -0500
From: Weld Pond
To: BUGTRAQ@SECURITYFOCUS.COM
Subject: @stake Advisory Notification Format
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
I think everyone out there knows that we are committed to full disclosure
and the concept of freely available security advisories. Many vendors do
not issue bulletins after we report problems to them, even after they
subsequently fix the problems. Without advisories from independant
researchers there is no check on product vendors. This is a service that we
give to the security community because we think it is the right thing to do
with the fruits of our research. With our new mailing list notification
format we have not changed this one bit.
We are giving out more information now in our advisories than we ever have
before, so we are certainly not witholding anything. Quite the opposite.
Over the past few months we have expanded our overview sections that allow
non-technical people to scope the problem. We have expanded our detailed
technical discussions of issues, many times including detailed source code
examples. And, I think most importantly, we have greatly expanded our
solutions discussion so that people are not always reliant on vendor
patches. We need many was to mitigate vulnerabilities because there are
many environments.
The advisory notifiction format we are using has about the same amount of
information as the paraphrased advisories that Elias posted for the latest
Microsoft advisories and the same amount of information that some other
researchers post in their advisories. This is more than enough information
to decide if the issue at hand effects you and you need to dive deeper into
our analysis.
What we are doing is adding more information than we have in the past and we
are adding it on our web site. There are plans to add much more. We think
that our web site and its accompanying web technology is the best place to
expand our free information dissemination into the future. We have many
ideas in store that I know people will appreciate. Of course, notifications
of important information releases will be made to mailing lists that accept
them so everyone who wishes to can read and use the information. We may
even set up our own notification list if there is a demand for that.
We have stayed away from cluttering up our advisories with marketing gorp,
like ads about our services or ads about our company like many commercial
research teams do. We pride ourselves in publishing our research on an
academic level and always have. This will not change.
Then, there's other companies that just figured they could read it 'because it would be stupid to put out a new version that can't read the old data'.
There are definitely a lot of people like that, and I am sure there are a lot of companies like that. I guess when I look at it from my environment (and the others I have worked in) you don't do anything without testing it as completely as possible. When it comes to the financial data around here they are fanatical. Since there is a possibility of legal trouble if we can't access the data they take great pains to ensure we have no problems getting the data.
My own experience with that is probably why I can't see why everyone doesn't take those same pains. I suggest that most decent sized companies do take this sort of time, but I am sure a lot of small businesses do some stupid things (upgrading without testing etc.).
I was never trying to say that having to track licenses was easier or cheap. I was only trying to point out that it isn't as difficult or expensive as some people are trying to make it out to be. I used MS as an example because it is probably the most installed software around (WinXX and Office).
With regard to financial data, being able to retrieve it is something that businesses are (and have to be) concious of. When we tossed out our mainframe for an SAP system they took great pains to ensure that all the data we had backed up from the mainframe would be able to be restored and read in case of an audit (financial not software). This may only be one example, but I am positive we aren't the only company who ensures they can read antiquated financial data.
I don't know many decent sized companies who keep their financial records in a spreadsheet. And they had better be able to pull up their financials from 5 years ago, they are required by law to keep 7 years worth of financial data.
Needing to pay for software and keep track of licensing doesn't mean you need to add a ton of beurocracy and red tape to the process. It all depends on the people you have working for you. It is extrodinarily easy to get/buy and install software if you have a Select Agreement with Microsoft. You already have all the cd's. You want it? Install it and call MS and tell them you just bought it. Done, and you have it immediately.
This of course doesn't mean there aren't a ton of shops out there that put un-necessary red tape into the process, but it doesn't have to be that difficult.
Ahh, but you miss my point. If you already have someone doing that type of job for you then you canmake tracking licensing a part of their job. No where did I say that was free, just not as difficult as people make it sound.
I also never said free software couldn't be good. There is a lot of good (and great) free software and a lot of bad free software. Likewise there is a lot of good (and great) non free (pay) software and a lot of bad non free (pay) software.
Funnily enough, I got a SPAM in my Inbox about this very same DVD player. Although it isn't from this website, I thought it was a bit odd especially the timing.
Well, I wouldn't say you would need a person who does nothing but track licenses. This is something you can spread across a few people who are already doing similar jobs. If you are in an Enterprise or Select agreement all you need to do is call MS everytime you install something and tell them. They will bill you for it. Then all you need to track is the financial aspect of it.
Only because they glibly installed software without keeping track of their licenses. It really isn't that difficult a thing to do, storing and filing is something that business people have been doing with financial data for a very long time, and they don't generally lose financial information often.
That said, when some salesmen starts talking about TCO, my boss and I stop listening and move on to the next guy.
Asking the ccTLD's to pay their dues but get no representation sounds like an old Union practice. Substitute teachers have to pay Union dues but get no Union representation or protection. The teachers Unions may be so entrenched that they are highly difficult to get rid of, but we shouldn't be letting ICANN get away with something like that.
Aren't they here just to approve registrars and TLD's?
NSI has been silently doing this for years. At least 3 years ago (possibly more) someone I know wanted slut.com which NSI refused to register for him based solely on the word. What is odd about them is that they are inconsistent. They later registered slut.com to someone else.
I am pretty surprised they are still doing it now that they have competition. They are effectively driving business to their competitors. Given the attitude NSI has always displayed (being in it for the money) I am highly surprised that they have clung to this censorship of domain names.
Registrant:
STATUS QUO ANTE (FUCK17-DOM)
United States District Court, District of
New Hampshire, 55 Pleasant Street
Concord, NH 03301
Domain Name: FUCK.COM
Administrative Contact, Technical Contact:
Network Solutions, Inc. (NSOL-NOC) noc@NETSOL.COM
Network Solutions, Inc.
505 Huntmar Park Drive
Herndon, VA 20170
US
703-742-4777
Billing Contact:
Accounts Payable (AP5173-ORG) ap@NETSOL.COM
Network Solutions, Inc.
505 Huntmar Park Drive
Herndon, VA 20170
US
703-742-0400
Record last updated on 04-Oct-2000.
Record expires on 24-Mar-2002.
Record created on 24-Mar-2000.
Database last updated on 23-Nov-2000 10:07:20 EST.
Sure, that sucks but as you say you don't have to be their customer.
What I was trying to point out was that it is perfectly reasonable for a company to automatically delete mp3 files from their servers to avoid potential law suits (however unlikely).
If they strictly follow the rest of the restrictions from their AUP, I'd suggest finding a new hosting company. Once who wants to keep your business.
The ISP is simply trying to show that they are being proactive about mp3's so they can't be held liable for any illegal mp3's hosted on their servers. I am sure they are not going to try and claim that their automated script is perfect nor are they trying to claim it is the best solution.
Seems to me like this was a logical thing for a hosting company to do, lots of sysadmins do similar things on their systems to ensure they don't run out of disk space. Especially university systems. This is nothing new.
A lot of software companies are starting to sell you a license only, no media. If you want the media (or additional media) you need to pay a nominal fee. We bought a Symantec product like this recently, and more than a few independant programmers are following this model.
We own a program or two that we don't have any media for at all, we just download the install files.
It seems that according to the Merilus page the Firewall card is independant of the PC, so as long sa you don't physically power the machine off the firewall should remain up even if you reboot your PC.
We have a similar setup. We all have pagers which we carry 24/7 but only the on call person gets paged (unless there is a major problem, disaster etc.) The on call person gets a minimum of 4 hours of time and a half for their 7 days of being on call. If I end up working 6 hours I get 6 hours of time and a half. If I work 3 hours, I get 4.
I bill them overtime if I get called. If I can fix it in 15 minutes, too bad, I charge for an hour. If I can fix it over the phone, via dialup or if I have to come in I bill them overtime for all of it. They haven't had a problem with it yet.
I hereby extend my application to the USPTO for a patent on 'Hands free porn surfing' hereby known as the 'Slideshow'. This is a concept I developed during many sleepless nights spent scouring the web for images of naked and naughty women. The concept is to allow users to choose a category of pictures then display all the pictures in that group automatically one by one so the user can have both hands free.
I asked many high priced lawyers to search the four corners of the earth to ensure that my application would not be hampered by foolish and unfounded rebutals claiming prior art. No such prior art exists, don't even bother to waste your time looking, just approve my silly patent.
It's not _the_ backend, it is SAP's db backend for SAP R/3. You can use Informix, DB2, Oracle MSSQL etc. in place of SAP DB.
Most SAP implementations I have heard of are using one of the more popular DB products, and up until recently SAP's own internal systems were running on Oracle.
What your logs are even more useful for is determining what pages and services people are really using on your site. Perhaps there is a service that is costing you money to offer that not one person has used yet.
That way you can determine what parts of your site to focus on and perhaps what services to start advertising;)
Slashdot Mirror
Look into Radius authentication. Your AD DC's can act as Radius servers and your *nix boxes can act as Radius clients thus unifying your logins across almost any platform including a lot of routers/switches.
forgey
I really don't think this will fly. I know it doesn't work where I am employed; and I know for a fact it doesn't work in quite a few other shops.
I have seen this type of situation at work in our accouting department. A middle age guy who was very talented took a demotion and a cut in pay to allow him to work only 40 hours per week which enabled him to spend time with his family (something he was unable to do with his previous position). When he was offered another more responsible position he declined for the same reasons he took the demotion. He was let go the next day.
In my experience anytime you get into a situation like that it is better to take a package, get a new job doing what you like with a company that is going to treat you better. Anywhere that is going to treat you poorly is a place you don't want to be anyway.
Sit down personally with management one on one and explain in detail your reasoning for not wanting the promotion _right now_. Don't tell them (or even let them assume) that you never want to move up. Tell them you would rather stay in the position you are currently in for x reasons. If they think you don't want the position ever they are likely to assume that when you are ready to change jobs you will move elsewhere.
forge
Date: Wed, 13 Dec 2000 16:24:53 -0500
From: Weld Pond
To: BUGTRAQ@SECURITYFOCUS.COM
Subject: @stake Advisory Notification Format
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
I think everyone out there knows that we are committed to full disclosure and the concept of freely available security advisories. Many vendors do not issue bulletins after we report problems to them, even after they subsequently fix the problems. Without advisories from independant researchers there is no check on product vendors. This is a service that we give to the security community because we think it is the right thing to do with the fruits of our research. With our new mailing list notification format we have not changed this one bit. We are giving out more information now in our advisories than we ever have before, so we are certainly not witholding anything. Quite the opposite. Over the past few months we have expanded our overview sections that allow non-technical people to scope the problem. We have expanded our detailed technical discussions of issues, many times including detailed source code examples. And, I think most importantly, we have greatly expanded our solutions discussion so that people are not always reliant on vendor patches. We need many was to mitigate vulnerabilities because there are many environments.
The advisory notifiction format we are using has about the same amount of information as the paraphrased advisories that Elias posted for the latest Microsoft advisories and the same amount of information that some other researchers post in their advisories. This is more than enough information to decide if the issue at hand effects you and you need to dive deeper into our analysis.
What we are doing is adding more information than we have in the past and we are adding it on our web site. There are plans to add much more. We think that our web site and its accompanying web technology is the best place to expand our free information dissemination into the future. We have many ideas in store that I know people will appreciate. Of course, notifications of important information releases will be made to mailing lists that accept them so everyone who wishes to can read and use the information. We may even set up our own notification list if there is a demand for that.
We have stayed away from cluttering up our advisories with marketing gorp, like ads about our services or ads about our company like many commercial research teams do. We pride ourselves in publishing our research on an academic level and always have. This will not change.
weld
-----BEGIN PGP SIGNATURE-----
q e2RtlSn7gAoOzg
Version: PGP 7.0
iQA/AwUBOjfpbaKvhX2AQSGyEQL27gCeKYX8tX++ormy4c/v1
C9aiKSrI694BEHvkh8uRE+mn
=MyCw
-----END PGP SIGNATURE-----
There are definitely a lot of people like that, and I am sure there are a lot of companies like that. I guess when I look at it from my environment (and the others I have worked in) you don't do anything without testing it as completely as possible. When it comes to the financial data around here they are fanatical. Since there is a possibility of legal trouble if we can't access the data they take great pains to ensure we have no problems getting the data.
My own experience with that is probably why I can't see why everyone doesn't take those same pains. I suggest that most decent sized companies do take this sort of time, but I am sure a lot of small businesses do some stupid things (upgrading without testing etc.).
forge
I was never trying to say that having to track licenses was easier or cheap. I was only trying to point out that it isn't as difficult or expensive as some people are trying to make it out to be. I used MS as an example because it is probably the most installed software around (WinXX and Office).
With regard to financial data, being able to retrieve it is something that businesses are (and have to be) concious of. When we tossed out our mainframe for an SAP system they took great pains to ensure that all the data we had backed up from the mainframe would be able to be restored and read in case of an audit (financial not software). This may only be one example, but I am positive we aren't the only company who ensures they can read antiquated financial data.
forge
I don't know many decent sized companies who keep their financial records in a spreadsheet. And they had better be able to pull up their financials from 5 years ago, they are required by law to keep 7 years worth of financial data.
Needing to pay for software and keep track of licensing doesn't mean you need to add a ton of beurocracy and red tape to the process. It all depends on the people you have working for you. It is extrodinarily easy to get/buy and install software if you have a Select Agreement with Microsoft. You already have all the cd's. You want it? Install it and call MS and tell them you just bought it. Done, and you have it immediately.
This of course doesn't mean there aren't a ton of shops out there that put un-necessary red tape into the process, but it doesn't have to be that difficult.
forge
Ahh, but you miss my point. If you already have someone doing that type of job for you then you canmake tracking licensing a part of their job. No where did I say that was free, just not as difficult as people make it sound.
I also never said free software couldn't be good. There is a lot of good (and great) free software and a lot of bad free software. Likewise there is a lot of good (and great) non free (pay) software and a lot of bad non free (pay) software.
forge
Funnily enough, I got a SPAM in my Inbox about this very same DVD player. Although it isn't from this website, I thought it was a bit odd especially the timing.
Well, I wouldn't say you would need a person who does nothing but track licenses. This is something you can spread across a few people who are already doing similar jobs. If you are in an Enterprise or Select agreement all you need to do is call MS everytime you install something and tell them. They will bill you for it. Then all you need to track is the financial aspect of it.
forge
Only because they glibly installed software without keeping track of their licenses. It really isn't that difficult a thing to do, storing and filing is something that business people have been doing with financial data for a very long time, and they don't generally lose financial information often.
That said, when some salesmen starts talking about TCO, my boss and I stop listening and move on to the next guy.
forge
Actually, they passed a new law this year. You can transfer your H1B to a different employer within 2 weeks of applying to have it transfered.
forge
Asking the ccTLD's to pay their dues but get no representation sounds like an old Union practice. Substitute teachers have to pay Union dues but get no Union representation or protection. The teachers Unions may be so entrenched that they are highly difficult to get rid of, but we shouldn't be letting ICANN get away with something like that.
Aren't they here just to approve registrars and TLD's?
forge
If you hit their website at http://www.networksolutions .co m/c gi- bin/whois/whois you can get contact info for domains that are registered with NSI.
You can also get the contact info by doing:
whois fuck.com@whois.networksolutions.com
at a commandline.
forge
NSI has been silently doing this for years. At least 3 years ago (possibly more) someone I know wanted slut.com which NSI refused to register for him based solely on the word. What is odd about them is that they are inconsistent. They later registered slut.com to someone else.
I am pretty surprised they are still doing it now that they have competition. They are effectively driving business to their competitors. Given the attitude NSI has always displayed (being in it for the money) I am highly surprised that they have clung to this censorship of domain names.
forge
Or for the full reg info:
Registrant:
STATUS QUO ANTE (FUCK17-DOM)
United States District Court, District of
New Hampshire, 55 Pleasant Street
Concord, NH 03301
Domain Name: FUCK.COM
Administrative Contact, Technical Contact:
Network Solutions, Inc. (NSOL-NOC) noc@NETSOL.COM
Network Solutions, Inc.
505 Huntmar Park Drive
Herndon, VA 20170
US
703-742-4777
Billing Contact:
Accounts Payable (AP5173-ORG) ap@NETSOL.COM
Network Solutions, Inc.
505 Huntmar Park Drive
Herndon, VA 20170
US
703-742-0400
Record last updated on 04-Oct-2000.
Record expires on 24-Mar-2002.
Record created on 24-Mar-2000.
Database last updated on 23-Nov-2000 10:07:20 EST.
Sure, that sucks but as you say you don't have to be their customer.
What I was trying to point out was that it is perfectly reasonable for a company to automatically delete mp3 files from their servers to avoid potential law suits (however unlikely).
If they strictly follow the rest of the restrictions from their AUP, I'd suggest finding a new hosting company. Once who wants to keep your business.
forge
The ISP is simply trying to show that they are being proactive about mp3's so they can't be held liable for any illegal mp3's hosted on their servers. I am sure they are not going to try and claim that their automated script is perfect nor are they trying to claim it is the best solution.
Seems to me like this was a logical thing for a hosting company to do, lots of sysadmins do similar things on their systems to ensure they don't run out of disk space. Especially university systems. This is nothing new.
forge
People here are being ignorant.
If he had read the links and looked at the spec page for the Nokia phone he would have immediately noticed what they meant by Dual Band.
forge
Looks like someone beat you to it. This patent about A method for fulfilling requests of a web browser seems to be indicating any dynamically created web page.
Oops.
Someone should teach the patent guys about job security and self preservation.
forge
A lot of software companies are starting to sell you a license only, no media. If you want the media (or additional media) you need to pay a nominal fee. We bought a Symantec product like this recently, and more than a few independant programmers are following this model.
We own a program or two that we don't have any media for at all, we just download the install files.
forge
It seems that according to the Merilus page the Firewall card is independant of the PC, so as long sa you don't physically power the machine off the firewall should remain up even if you reboot your PC.
Sounds great if it works.
forge
We have a similar setup. We all have pagers which we carry 24/7 but only the on call person gets paged (unless there is a major problem, disaster etc.) The on call person gets a minimum of 4 hours of time and a half for their 7 days of being on call. If I end up working 6 hours I get 6 hours of time and a half. If I work 3 hours, I get 4.
I bill them overtime if I get called. If I can fix it in 15 minutes, too bad, I charge for an hour. If I can fix it over the phone, via dialup or if I have to come in I bill them overtime for all of it. They haven't had a problem with it yet.
forge
I hereby extend my application to the USPTO for a patent on 'Hands free porn surfing' hereby known as the 'Slideshow'. This is a concept I developed during many sleepless nights spent scouring the web for images of naked and naughty women. The concept is to allow users to choose a category of pictures then display all the pictures in that group automatically one by one so the user can have both hands free.
I asked many high priced lawyers to search the four corners of the earth to ensure that my application would not be hampered by foolish and unfounded rebutals claiming prior art. No such prior art exists, don't even bother to waste your time looking, just approve my silly patent.
It's not _the_ backend, it is SAP's db backend for SAP R/3. You can use Informix, DB2, Oracle MSSQL etc. in place of SAP DB.
Most SAP implementations I have heard of are using one of the more popular DB products, and up until recently SAP's own internal systems were running on Oracle.
Phil
What your logs are even more useful for is determining what pages and services people are really using on your site. Perhaps there is a service that is costing you money to offer that not one person has used yet.
;)
That way you can determine what parts of your site to focus on and perhaps what services to start advertising
forge