There were a few comments about detecting guns and knives.
Yes, there are guns and knives with little metal. My point is that the metal detectors at airports are set to a default setting. (usually turned up if the attendants are bored or see a hot chick.)This default setting is just enough to detect whatever amount the gun with the least metal sold in the US is. Ergo, if you take less metal through - you won't get caught *at a default setting.*
(I used to have a friend who tested airport security. If I repeat what I heard him gripe about - no one would like it.)
Similarly, you can check stuff in your baggage. Say a crude altimiter. Plane goes up, it goes off. Personal baggage seems only to be checked well at certain airports.
Finally, Most of the items being transported on a plane are freight: Overnight packges, perishable items, toys shipped from china for Xmas at the last minute,... Without screening here, planes cannot be made "relatively save" in any case.
The Government in general, and specifically this administration, seems to want to be Orwellian in what it knows about everyone.
I remember in the 90's when the Secret Service first started closing off traffic near the White House. The easy North/South move on the West side got bogged down from the traffic problems: Penn Ave N of the White House is shut down; E Street S. of the White House is shut down. There is now an area of eight blocks where you can't go West without going North, or South. Under Clinton, the street got opened - for about a week until some bombing far away.
It's not that I object to security. It's just I object to security that pushes attacks onto innocents & away from those who "incited" the attacks in the first place.
I also remember being able to get onto planes without any time consuming security screening. Now we have to wait for everything to be checked forever. The screening does not make us any more secure*, it just takes longer.
Go big propaganda fear-mongering! we didn't need the free time to get to anywhere anyhow. If we did, we'd all be rich enough to have our own planes.
*: The airline screening does not really make us more secure, as there are still ways to get shit on a plane: Metal Detectors test for guns sold in the US, not guns sold outside the US with lower metal content. Or Ceramic guns. Or Knives without metal (say those nice expensive Kyoceria ceramic knives).
If you like: 2/3rds of a passenger planes cargo is other than passengers and their baggage: It's Air Freight packages. Those packages could easily hold a bomb. Or a passenger could check a bomb with a wireless control that can be carried in the cabin.
the only thing that has been done in the name of security that makes planes more secure was making real security doors on the Pilot's compartment.
I have installed this for a few clients who insisted on it. It's a bit junky (pages on asexual reproduction needed for biology get blocked if you have the filters on) but does do filtering of a several classes of stuff. (Sex, Social Sites,.....)
It even lets you do logging of IM chats & sites visited.
On the downside, after finding the timezones off a few times - I figured out that that was a way around the Off-Limits-Hours feature.
Personally, I think the only thing that will work for that is a electrical timer, on a small switch to the restricted hours PC, in a locked hub-room.
I can see every major component being connected with a TCP/IP stack. Everyone can write whatever calls they want to be available & manufacturers could choose the ones they want.
However I can also see the case (of my 1996 Mitsubishi Eclipse spyder) that I can't get through inspection because it won't complete a drive cycle... (For example: I have to cold start, then drive at 60MPH without sloshing the fuel for the EVAP test. Considering I live in the middle of a city & have to drive 20min before hitting a highway where I can drive 60 - this is a problem...)
Though it hurts the wallet like to dickens (ducks and hides)
My wife will accept Lavatzza espresso grind cooked in a Mokka though she would rather have Illy. Both Lavatzza (Espresso) & Illy (almost any)do a good job of pulling bad beans out of the grind.
Why should I have to pay for Gold support over a generic warranty?
While the lawsuit seems to be largely about Dell and financial shenanigans (Billing for returned merchandise & opening accounts improperly), I rarely find "decent" support on the "user" line.
While I have occasionally found someone who would shortcut the script based on what I told them. (Gee, it works if I remove the modem-pci-card, but not if I put it back in. and that's only because I put in a new hard drive with all the current support.dell.com drivers...) I find that I spend the next hour verifying "who is the owner of this machine," "Where do they live," "Please give me enough identification to steal the owners identity please" so that the 5 minute diagnosis takes over an hour to resolve. For a $5 part. That still has to be sent back to Dell.
Generically, as soon as a subcontractor gets familiar enough with the troubleshooting script to shortcut it, (Oh, you have tried turning off the machine - and you say it works if you plug in the powersupply from another machine...)then that subcontractor is replaced. ("Ok, you say the machine works if you put in another power supply. Very good, now can you please try turning off the machine and turning it back on. Do any lights turn on?....")
I usually don't even bother calling Dell support for clients with non-gold support. Buying new hardware at OverpricedShack (tm) is usually cheaper that the time it will take Dell to replace it. When a standard warranty customer wants to make a point, they almost always end up making mine.
The voice of user experience has clearly told me that you should use Dry Ice to cool off your hand. This way, you don't have to worry about infections caused by something in the water...
Actually, the sad thing is the vendors who insist that their (cough Deltek, cough) application not be on a machine with any other applications.
We have at my work some old boxes that should be retired & would be great canidates for virutualization (two tier db app on old xeon500) where the vendor won't support the app in a virtual environment due to resource issues - but the will support it on old crap hardware.
It's not really an interesting article. To summarize:
Guy says you need 4GB for sweet spot.
Same Guy says you need 2GB for XP sweet spot.
I'll give you that nowadays you might want 1GB for XP, but 2GB is excessive for most. I know plenty who are happy with 512MB running OS + AV + Word + Browser. (Although 768MB is better.)
Take Minimum Spec, Multiply by 4. That's more likely to be the minimum usable. (See minimum specs for previous MS operating systems for comparison purposes.)
As a Microsoft Administrator, I find this trend of Linux supporters implementing key Microsoft features disturbing & espouse the necessity to improve on our proven methods. (/me throws cubicle wall at person on chair.)
The permission resetting that most people think the origional author is speaking of (no I haven't RTFA) is the same as setting permissions on files and directories under Linux. (Or if you like, like setting file and directory permissions on a Windows Terminal Server - almost no one locks down a PC that hard.)
From time to time, when you install new programs (often done as updates)- the group permissions on some directories will be changed. when you run the disk tools, one of them (I don't remember off hand) check the permissions on directories and files to be sure that the group/user permissions are what it expects. I have almost never seen this actually affect operations. (I did see it once.)
and for fair handedness: My personal windows box has been running XP for about three years since I installed it. (Athlon XP(?) 1700, 1GB, smallish HD) I have some personal clients with kids of an age where "their friends" visit porn sites & wreck their computers with Viruii & the like. I have never seen this happen to a Mac. (Since OS4...)
I think this is more of an attempt to get into the Shuttle XPC market than the Mac-Mini market. Or if you prefer, a way to expand the XPC market - thus giving AMD a bigger piece of a bigger pie.
The poster who pointed out that the "Smashing of air over the processor" not being feasible hit it on the head. The Shuttles (and some other SFF makers) generally try to make a heatsink fan that pushes air out of the case.
There is an article on this at: http://theinquirer.net/default.aspx?article=36833 with a pic of a mobo. Perhaps by the time the thing gets to market, the fan will have a housing to push air out of the case...
Let's see,
I am at a non-profit, I have
2x old HP 700MHz dual Xeon Servers.
these servers are mostly used for File,Print - but there are some funky programs on them
I can migrate them to One new server (use MS FSMT, then fiddle with funky settings for a bunch of programs), or I can get two new servers and use VMware's Physical2Virtual tool to make the old machines virtual.
If I do the virtual thing, I can set one of my new servers up at the main site, and one at the remote site across the Gig wireless link - and set up high availibility using a big NAS. One of my VMWare servers goes down, the server automatically restarts on the new one.
alternately, I can take my useless 500MHz server with a donation history database, and put it on a virutal machine & upgrade my worthless old win2K system to 2k3 - without having to spend a few days reading about how the database works, what databases get backed up & so on. (Aka, no documentation exists.)
(Hey, I have 20 old POS servers. I can put them on three machines, with three machines at two sites & good NAS -I can have failover & better backups.)
The issue is not one of the company's obligation, but that of the consultant to the company. So the first issue is not that the consultant is required to tell anyone outside the company, but weither the company should. Generically, if there is a security issue - the obligation for the security consultant it to inform "the company" of this fact. Write up your recommendation, and send it off to everyone to whom you deal with, who should know. CC yourself.
It is the C-Suite that is responsible for the security of the company. It is the responsibility of the Technical Staff to give the C-Suite the information necessary to make informed security decisions. If your friend is a senior enough professional, it may be his situation to recommend disclosure, but it is in no way his call to actually do it. INAL, but if the company does not wish disclosure, I suspect that the only ethical way to disclose this is with a whistleblower lawsuit.
I have had to deal with similar issues before, and recommend speaking with a Lawyer if you are really concerned. At a minimum you will find out your legal obligations and liabilities.
I see that you have never tried to actually use "Safe Harbor" provisions. Lucky you. Paypal operates as a wire transfer service, and as a bank - with the regulations of neither.
I actually tried to use the "Safe Harbor" once. First they told me that I had to wait for the account to be cleaned out. Then they told me to file with my credit card company. Some "Safe Harbor" I'm actually surprised it did not happen sooner, they really have screwed a lot of people along the way.
Before resorting to ask slashdot, I did try to look for information on low-mid level gigabit switches. The last roundup I found was dated 2002. Effectively, because the technology has reached commodity status - no one wants to review this stuff anymore.
So, I can look at NewEgg Comments, and CDW information - but that's it. Toms Hardware looked at a 24-port 10/100 + 2 Gigabit port smart switch, but that's about it. Except for one guy who wrote about cheapo dumb switches that he tried at lan parties. Some of them did not have jumbo frames.
So what did I learn from looking around: For my purposes, at home and a couple of clients, I want to be able to run bittorrent; VoIP; have web availibility. This means spanning tree (or fast spanning tree), Class of Service, port aggrigation for uplinks 802.1p, and Virtual LANs 802.1q. In a smart switch you can get three switches (maby six)for about $330. Linksys, Dlink, and SMC. The D-link seems to have slightly better features than the Linksys, and I swore off SMC because of crappy customer service.
I asked Slashdot, because I want advice by people who have used this stuff in real life. You can't even find the information on Google Groups. My two assumptions were: People had used this in the business and could say how they held up over time. People had used this junk at LAN parties. (A smart switch costs less than a high end video card) This is why I asked Slashdot.
Actually, sometimes I'm completely flummoxed by what gets on Ask Slashdot. If you ask about a really specific problem that only applies to you, you might get on (TV Station on Linux, Audio Card for Poscasting,...)
When I ask about a Smart Network Switch, I get rejected. (Specifically, I wanted advice on a 24-port gigabit switch with some management features, including VLAN & CoS. I was thinking that LAN party people & people who use in SMB would know. This is where the world is going, and the $300 range is Linksys, DLink, and a company I don't like - I thought that a lot of people here might have the same issues, but noooooooo.)/vent-off
The only real reason to upgrade to Vista, is to support Office 2007. If you are in an office where you need Knowledge Management features (ILM, CRM, DM, ETC) - they are supported by 3rd parties in the next version of office. As an example, see this article on EMC Documentum integration with Office 2007 ( http://www.theregister.com/2006/10/04/microsoft_em c_office_documentum/ ).
If you are a small office, there is really no point to upgrading before your hardware support costs go up. (And probabily can switch to OpenOffice and Linux for everyone not using MustHave Software (QuickBooks...)
Slashdot Mirror
There were a few comments about detecting guns and knives.
... Without screening here, planes cannot be made "relatively save" in any case.
Yes, there are guns and knives with little metal. My point is that the metal detectors at airports are set to a default setting. (usually turned up if the attendants are bored or see a hot chick.)This default setting is just enough to detect whatever amount the gun with the least metal sold in the US is. Ergo, if you take less metal through - you won't get caught *at a default setting.*
(I used to have a friend who tested airport security. If I repeat what I heard him gripe about - no one would like it.)
Similarly, you can check stuff in your baggage. Say a crude altimiter. Plane goes up, it goes off. Personal baggage seems only to be checked well at certain airports.
Finally, Most of the items being transported on a plane are freight: Overnight packges, perishable items, toys shipped from china for Xmas at the last minute,
$.02
The Government in general, and specifically this administration, seems to want to be Orwellian in what it knows about everyone.
I remember in the 90's when the Secret Service first started closing off traffic near the White House. The easy North/South move on the West side got bogged down from the traffic problems: Penn Ave N of the White House is shut down; E Street S. of the White House is shut down. There is now an area of eight blocks where you can't go West without going North, or South. Under Clinton, the street got opened - for about a week until some bombing far away.
It's not that I object to security. It's just I object to security that pushes attacks onto innocents & away from those who "incited" the attacks in the first place.
I also remember being able to get onto planes without any time consuming security screening. Now we have to wait for everything to be checked forever. The screening does not make us any more secure*, it just takes longer.
Go big propaganda fear-mongering! we didn't need the free time to get to anywhere anyhow. If we did, we'd all be rich enough to have our own planes.
*: The airline screening does not really make us more secure, as there are still ways to get shit on a plane: Metal Detectors test for guns sold in the US, not guns sold outside the US with lower metal content. Or Ceramic guns. Or Knives without metal (say those nice expensive Kyoceria ceramic knives).
If you like: 2/3rds of a passenger planes cargo is other than passengers and their baggage: It's Air Freight packages. Those packages could easily hold a bomb. Or a passenger could check a bomb with a wireless control that can be carried in the cabin.
the only thing that has been done in the name of security that makes planes more secure was making real security doors on the Pilot's compartment.
If I remember sneakers, the republican party war-chest disappeared - but greenpeace received a record donation from an anonymous donor.
http://en.wikipedia.org/wiki/Sneakers_(movie)
I have installed this for a few clients who insisted on it. It's a bit junky (pages on asexual reproduction needed for biology get blocked if you have the filters on) but does do filtering of a several classes of stuff. (Sex, Social Sites, .....)
It even lets you do logging of IM chats & sites visited.
On the downside, after finding the timezones off a few times - I figured out that that was a way around the Off-Limits-Hours feature.
Personally, I think the only thing that will work for that is a electrical timer, on a small switch to the restricted hours PC, in a locked hub-room.
I can see every major component being connected with a TCP/IP stack. Everyone can write whatever calls they want to be available & manufacturers could choose the ones they want.
However I can also see the case (of my 1996 Mitsubishi Eclipse spyder) that I can't get through inspection because it won't complete a drive cycle... (For example: I have to cold start, then drive at 60MPH without sloshing the fuel for the EVAP test. Considering I live in the middle of a city & have to drive 20min before hitting a highway where I can drive 60 - this is a problem...)
"2^32 addresses should be enough for EVERYBODY."
Though it hurts the wallet like to dickens (ducks and hides)
My wife will accept Lavatzza espresso grind cooked in a Mokka though she would rather have Illy. Both Lavatzza (Espresso) & Illy (almost any)do a good job of pulling bad beans out of the grind.
Why should I have to pay for Gold support over a generic warranty? While the lawsuit seems to be largely about Dell and financial shenanigans (Billing for returned merchandise & opening accounts improperly), I rarely find "decent" support on the "user" line. While I have occasionally found someone who would shortcut the script based on what I told them. (Gee, it works if I remove the modem-pci-card, but not if I put it back in. and that's only because I put in a new hard drive with all the current support.dell.com drivers...) I find that I spend the next hour verifying "who is the owner of this machine," "Where do they live," "Please give me enough identification to steal the owners identity please" so that the 5 minute diagnosis takes over an hour to resolve. For a $5 part. That still has to be sent back to Dell. Generically, as soon as a subcontractor gets familiar enough with the troubleshooting script to shortcut it, (Oh, you have tried turning off the machine - and you say it works if you plug in the powersupply from another machine...)then that subcontractor is replaced. ("Ok, you say the machine works if you put in another power supply. Very good, now can you please try turning off the machine and turning it back on. Do any lights turn on?....") I usually don't even bother calling Dell support for clients with non-gold support. Buying new hardware at OverpricedShack (tm) is usually cheaper that the time it will take Dell to replace it. When a standard warranty customer wants to make a point, they almost always end up making mine.
yeah, right.
ain't no artists who kin write
ain't no more songs that have bite
pop music today it just blows
stuff bout shooting 'n' bitches 'n' ho's
stuff today gets me depressed
more 'bout showing off yo' breasts
public enemy said "fight the power"
You wanna say that
gotta pay lawyer by the hour
I was wondering: Can I photoshop pictures of the school administration into similar poses & have them all summarily fired?
No, No,
The voice of user experience has clearly told me that you should use Dry Ice to cool off your hand. This way, you don't have to worry about infections caused by something in the water...
Actually, the sad thing is the vendors who insist that their (cough Deltek, cough) application not be on a machine with any other applications.
We have at my work some old boxes that should be retired & would be great canidates for virutualization (two tier db app on old xeon500) where the vendor won't support the app in a virtual environment due to resource issues - but the will support it on old crap hardware.
It's not really an interesting article. To summarize:
Guy says you need 4GB for sweet spot.
Same Guy says you need 2GB for XP sweet spot.
I'll give you that nowadays you might want 1GB for XP, but 2GB is excessive for most. I know plenty who are happy with 512MB running OS + AV + Word + Browser. (Although 768MB is better.)
Take Minimum Spec, Multiply by 4. That's more likely to be the minimum usable. (See minimum specs for previous MS operating systems for comparison purposes.)
As a Microsoft Administrator, I find this trend of Linux supporters implementing key Microsoft features disturbing & espouse the necessity to improve on our proven methods. (/me throws cubicle wall at person on chair.)
The permission resetting that most people think the origional author is speaking of (no I haven't RTFA) is the same as setting permissions on files and directories under Linux. (Or if you like, like setting file and directory permissions on a Windows Terminal Server - almost no one locks down a PC that hard.)
From time to time, when you install new programs (often done as updates)- the group permissions on some directories will be changed. when you run the disk tools, one of them (I don't remember off hand) check the permissions on directories and files to be sure that the group/user permissions are what it expects. I have almost never seen this actually affect operations. (I did see it once.)
and for fair handedness: My personal windows box has been running XP for about three years since I installed it. (Athlon XP(?) 1700, 1GB, smallish HD) I have some personal clients with kids of an age where "their friends" visit porn sites & wreck their computers with Viruii & the like. I have never seen this happen to a Mac. (Since OS4...)
I think this is more of an attempt to get into the Shuttle XPC market than the Mac-Mini market. Or if you prefer, a way to expand the XPC market - thus giving AMD a bigger piece of a bigger pie.
The poster who pointed out that the "Smashing of air over the processor" not being feasible hit it on the head. The Shuttles (and some other SFF makers) generally try to make a heatsink fan that pushes air out of the case.
There is an article on this at: http://theinquirer.net/default.aspx?article=36833 with a pic of a mobo. Perhaps by the time the thing gets to market, the fan will have a housing to push air out of the case...
I wonder, could IBM buy sco - then sue the "current" board of directors for mismanagement?
EG: Suing IBM
Did you work in a Atlantic City Trump Casino?
Let's see, I am at a non-profit, I have 2x old HP 700MHz dual Xeon Servers. these servers are mostly used for File,Print - but there are some funky programs on them I can migrate them to One new server (use MS FSMT, then fiddle with funky settings for a bunch of programs), or I can get two new servers and use VMware's Physical2Virtual tool to make the old machines virtual. If I do the virtual thing, I can set one of my new servers up at the main site, and one at the remote site across the Gig wireless link - and set up high availibility using a big NAS. One of my VMWare servers goes down, the server automatically restarts on the new one. alternately, I can take my useless 500MHz server with a donation history database, and put it on a virutal machine & upgrade my worthless old win2K system to 2k3 - without having to spend a few days reading about how the database works, what databases get backed up & so on. (Aka, no documentation exists.) (Hey, I have 20 old POS servers. I can put them on three machines, with three machines at two sites & good NAS -I can have failover & better backups.)
The issue is not one of the company's obligation, but that of the consultant to the company. So the first issue is not that the consultant is required to tell anyone outside the company, but weither the company should. Generically, if there is a security issue - the obligation for the security consultant it to inform "the company" of this fact. Write up your recommendation, and send it off to everyone to whom you deal with, who should know. CC yourself.
It is the C-Suite that is responsible for the security of the company. It is the responsibility of the Technical Staff to give the C-Suite the information necessary to make informed security decisions. If your friend is a senior enough professional, it may be his situation to recommend disclosure, but it is in no way his call to actually do it. INAL, but if the company does not wish disclosure, I suspect that the only ethical way to disclose this is with a whistleblower lawsuit.
I have had to deal with similar issues before, and recommend speaking with a Lawyer if you are really concerned. At a minimum you will find out your legal obligations and liabilities.
$.04
I see that you have never tried to actually use "Safe Harbor" provisions. Lucky you. Paypal operates as a wire transfer service, and as a bank - with the regulations of neither.
I actually tried to use the "Safe Harbor" once. First they told me that I had to wait for the account to be cleaned out. Then they told me to file with my credit card company. Some "Safe Harbor" I'm actually surprised it did not happen sooner, they really have screwed a lot of people along the way.
Before resorting to ask slashdot, I did try to look for information on low-mid level gigabit switches. The last roundup I found was dated 2002. Effectively, because the technology has reached commodity status - no one wants to review this stuff anymore.
So, I can look at NewEgg Comments, and CDW information - but that's it. Toms Hardware looked at a 24-port 10/100 + 2 Gigabit port smart switch, but that's about it. Except for one guy who wrote about cheapo dumb switches that he tried at lan parties. Some of them did not have jumbo frames.
So what did I learn from looking around: For my purposes, at home and a couple of clients, I want to be able to run bittorrent; VoIP; have web availibility. This means spanning tree (or fast spanning tree), Class of Service, port aggrigation for uplinks 802.1p, and Virtual LANs 802.1q. In a smart switch you can get three switches (maby six)for about $330. Linksys, Dlink, and SMC. The D-link seems to have slightly better features than the Linksys, and I swore off SMC because of crappy customer service.
I asked Slashdot, because I want advice by people who have used this stuff in real life. You can't even find the information on Google Groups. My two assumptions were: People had used this in the business and could say how they held up over time. People had used this junk at LAN parties. (A smart switch costs less than a high end video card) This is why I asked Slashdot.
Because I can't end anyone.
Actually, sometimes I'm completely flummoxed by what gets on Ask Slashdot. If you ask about a really specific problem that only applies to you, you might get on (TV Station on Linux, Audio Card for Poscasting, ...)
/vent-off
When I ask about a Smart Network Switch, I get rejected.
(Specifically, I wanted advice on a 24-port gigabit switch with some management features, including VLAN & CoS. I was thinking that LAN party people & people who use in SMB would know. This is where the world is going, and the $300 range is Linksys, DLink, and a company I don't like - I thought that a lot of people here might have the same issues, but noooooooo.)
The only real reason to upgrade to Vista, is to support Office 2007. If you are in an office where you need Knowledge Management features (ILM, CRM, DM, ETC) - they are supported by 3rd parties in the next version of office. As an example, see this article on EMC Documentum integration with Office 2007 ( http://www.theregister.com/2006/10/04/microsoft_em c_office_documentum/ ).
If you are a small office, there is really no point to upgrading before your hardware support costs go up. (And probabily can switch to OpenOffice and Linux for everyone not using MustHave Software (QuickBooks...)
Try a Wall Clock with a wifi camera and microphone.
Something like this: http://www.spycameras.com/item4.htm
I'd look for a more real office type wall clock, but you get the idea. After all, what corporate meeting room doesn't have wifi?