How is this modded as "Interesting"? Is it becuase it bashes a protocol used by MS? Hell, the guy doesn't even know what he's talking about.
The name resolution used while browsing the network is NetBIOS. SMB/CIFS is the protocol used to "talk" to the server once you have it located.
It sounds like this guy had machines on seperate subnets and expected to find them by using a protcol that relies on broadcasts. That's what WINS is for.
Anyway, I will be one happy camper when MS drops support completely for NetBIOS and relies solely on DNS & LDAP. Dynamic DNS is one step towards supporting that reality.
Dell's sizing tools are horribly off. You can go with a 2650 over their 4600 any day at half the price...assuming you don't need more than 2 processors and 6 GB of memory.
Some people may want the 4600 for upgradeability...but in my 6 years in IT, I have only added CPUs to one server, and have rarely added memory. Usually you're looking at replacing the machine by the time upgrades are needed.
I am in the same position. We will either need to license 4 processors on our current Xeon 500 system, or upgrade it to a new dual system.
From my research and testing, the dual 2.8GHz Xeon system we are purchsing will be considerably faster than our current quad CPU system. Of course, we will also have more, higher bandwidth memory too. Tack on another 20-30% increase due to hyperthreading (results may vary depending on your SQL usage), and you can't beat a new system. Not to mention a new 3 year warranty that was up on the old system.
So, in the end, we will license 2 SQL Enterprise processors, purchase a new dual 2.8 GHz system with 6 GB of memory, and an addition 350 GB of 15,000 storage all for the price of the original 4 enterprise licenses. It's a win-win situation.
Something that is a very serious issue but is just brushed over in that paper is a method to remember who users are, long term....the "Remember Me" feature.
Personally, I have left this "feature" out of my web-apps, but users are really demanding it, so how should it be handled?
Obviously storing a username and password, or a user id number in a cookie is a problem. I am already generating session GUIDs, so it would be possible to store the GUID in a cookie, and then do a look up when they return to match the user account (which is already done on every page for state managment). This almost has the same problem as storing the username/password, as a malicous user would just need to find someone else's GUID and stuff it in their own cookie.
So, was is the most secure method for remembering a user assuming you are already doing form-based authentication with SSL?
Here's all this OWASP document has to say:
Session tokens that do not expire on the HTTP server can allow an attacker unlimited time to guess or brute force a valid authenticated session token. An example is the "Remember Me" option on many retail websites. If a user's cookie file is captured or brute-forced, then an attacker can use these static-session tokens to gain access to that user's web accounts. Additionally, session tokens can be potentially logged and cached in proxy servers that, if broken into by an attacker, may contain similar sorts of information in logs that can be exploited if the particular session has not been expired on the HTTP server.
A lot of universities have campus (enterprise) agreements with Microsoft. The original poster probably didn't realize that his university probably already shelled out several million dollars to MS to license the entire campus. His $5 is probably just recouping the distribution costs for the university.
Where I went to school, it was $20 for just about any MS product (Office, VS, Windows), and faculty/staff received every thing for free. Of course, the university had already paid for the software at a "higher" level. In the end, people got MS software cheap and the university cut it's Microsoft costs by 20% or so.
I've administered Exchange 5.5 and Exchange 2000. Now I'm working on a GroupWise 6 system....it has got to be the biggest kludge out there.
Once again, Novell had a great idea but their execute sucks. They really need to scrap the antiquated code and rebuild it from scratch (client included).
Well, I've been a sysadmin on both the academia side and administrative side of a university.
First, I'm not sure where you were at, but both Universities I have worked for offered great beneifits (paid medial, dental, drug Rx, life, tuition reimbursment, good vacation time, retirement plan), and these were public universities. The pay is about 20% lower than the corporate world, but the benifits made up for half of that. Job security was great....there is no chance for layoffs.:)
An the academic side, we were well funded. We had plenty of equipment to play with. However, dealing with faculty is a lot different than dealing with staff. Faculty want to do everything their way, and for the most part, you have to listen. This meant you had very little control over the desktop and had to accomodate a lot of different configurations on the server end (Win9x/NT/200/XP, Linux, Sun, Macs). Of course, our department did have a lot of research $$$ coming in....others did not, so I guess it's the luck of the draw.
On the administrative side, we didn't have as much money for equipment. We were mostly self-funded becuase we offered paid services to the university (stores, printing, etc), so occasionally we could get a chunk of coin to spend. Administrative deparments that are funded by the university's general fund probably have much less money for IT. Anyway, the administrative side of the university was much more corporate like, but still laid back and informal.
You're not going to get rich working for a university or the government, but it certainly has a lot to offer during these down times.
Just wait until you get an email from someone who is going to start selling support for your product to his customers.
Is it legal under the GPL? Yes.
Do you feel used becuase someone is making money off of your hard work? Yes.
Will they actually make money? Hell No! My developers and users already provide kick-ass support for free. Why would someone pay this guy's dumb ass when he probably doesn't even understand the source code.
In talking with friends around the country, it sounds like I'm not the only one who got up at 6:30 AM to find out that the local ABC station was not covering the World Cup final.
Why the fuck would a station rather schedule informercials instead of the World Cup final?? The most watched event on TV in the world and Americans are shown an easier way to roast chickens.
Luckily I'm in Michigan and have CBC available, or else I would have been watching it en espanol on Univision.
Was there anyone else here who didn't have ABC/ESPN coverage?
Slashdot Mirror
That's a good point that I would have to agree with.
How is this modded as "Interesting"? Is it becuase it bashes a protocol used by MS? Hell, the guy doesn't even know what he's talking about.
The name resolution used while browsing the network is NetBIOS. SMB/CIFS is the protocol used to "talk" to the server once you have it located.
It sounds like this guy had machines on seperate subnets and expected to find them by using a protcol that relies on broadcasts. That's what WINS is for.
Anyway, I will be one happy camper when MS drops support completely for NetBIOS and relies solely on DNS & LDAP. Dynamic DNS is one step towards supporting that reality.
Microsoft considers their NT version numbers to be the following:
.NET are not considered major version upgrades. Longhorn will be huge upgrade to the Windows platform.
Windows 2000 = NT 5.0
Windows XP = NT 5.1
Windows.NET = NT 5.5
Longhorn = NT 6.0
Yes, XP and
Dell's sizing tools are horribly off. You can go with a 2650 over their 4600 any day at half the price...assuming you don't need more than 2 processors and 6 GB of memory.
Some people may want the 4600 for upgradeability...but in my 6 years in IT, I have only added CPUs to one server, and have rarely added memory. Usually you're looking at replacing the machine by the time upgrades are needed.
I am in the same position. We will either need to license 4 processors on our current Xeon 500 system, or upgrade it to a new dual system.
From my research and testing, the dual 2.8GHz Xeon system we are purchsing will be considerably faster than our current quad CPU system. Of course, we will also have more, higher bandwidth memory too. Tack on another 20-30% increase due to hyperthreading (results may vary depending on your SQL usage), and you can't beat a new system. Not to mention a new 3 year warranty that was up on the old system.
So, in the end, we will license 2 SQL Enterprise processors, purchase a new dual 2.8 GHz system with 6 GB of memory, and an addition 350 GB of 15,000 storage all for the price of the original 4 enterprise licenses. It's a win-win situation.
In fact, AOL was available on Macs before Windows.
Negative.... 802.11a does not allow for external antennas.
Being a relative newbie to FreeBSD, how do I go about upgrading my 4.6.2 box to 4.7?
I'm at MSU.
Merit, the provider for most Michigan schools, had some major problems yesterday. This is totally unrelated to Worldcom.
On a related note, our OC12 connection to the outside world has been saturated since classes started a month ago. Damn students and their MP3s.
Yea....mouse gestures certainly make mentor easier/quicker to use.
New wire - New wire - New wire
Personally, I have left this "feature" out of my web-apps, but users are really demanding it, so how should it be handled?
Obviously storing a username and password, or a user id number in a cookie is a problem. I am already generating session GUIDs, so it would be possible to store the GUID in a cookie, and then do a look up when they return to match the user account (which is already done on every page for state managment). This almost has the same problem as storing the username/password, as a malicous user would just need to find someone else's GUID and stuff it in their own cookie.
So, was is the most secure method for remembering a user assuming you are already doing form-based authentication with SSL?
Here's all this OWASP document has to say:
Hey, Damien, how's it going?
;)
This is Doug from Liberum.
A lot of universities have campus (enterprise) agreements with Microsoft. The original poster probably didn't realize that his university probably already shelled out several million dollars to MS to license the entire campus. His $5 is probably just recouping the distribution costs for the university.
Where I went to school, it was $20 for just about any MS product (Office, VS, Windows), and faculty/staff received every thing for free. Of course, the university had already paid for the software at a "higher" level. In the end, people got MS software cheap and the university cut it's Microsoft costs by 20% or so.
No, please don't!
I've administered Exchange 5.5 and Exchange 2000. Now I'm working on a GroupWise 6 system....it has got to be the biggest kludge out there.
Once again, Novell had a great idea but their execute sucks. They really need to scrap the antiquated code and rebuild it from scratch (client included).
Some tell Novell it's no longer 1996 please.
Well, I've been a sysadmin on both the academia side and administrative side of a university.
:)
First, I'm not sure where you were at, but both Universities I have worked for offered great beneifits (paid medial, dental, drug Rx, life, tuition reimbursment, good vacation time, retirement plan), and these were public universities. The pay is about 20% lower than the corporate world, but the benifits made up for half of that. Job security was great....there is no chance for layoffs.
An the academic side, we were well funded. We had plenty of equipment to play with. However, dealing with faculty is a lot different than dealing with staff. Faculty want to do everything their way, and for the most part, you have to listen. This meant you had very little control over the desktop and had to accomodate a lot of different configurations on the server end (Win9x/NT/200/XP, Linux, Sun, Macs). Of course, our department did have a lot of research $$$ coming in....others did not, so I guess it's the luck of the draw.
On the administrative side, we didn't have as much money for equipment. We were mostly self-funded becuase we offered paid services to the university (stores, printing, etc), so occasionally we could get a chunk of coin to spend. Administrative deparments that are funded by the university's general fund probably have much less money for IT. Anyway, the administrative side of the university was much more corporate like, but still laid back and informal.
You're not going to get rich working for a university or the government, but it certainly has a lot to offer during these down times.
Damn n00b.
They are removing the copyright information.
Their feedback URL is http://download.com.com/1200-20-750060.html?tag=su bnav
Just wait until you get an email from someone who is going to start selling support for your product to his customers.
Is it legal under the GPL? Yes.
Do you feel used becuase someone is making money off of your hard work? Yes.
Will they actually make money? Hell No! My developers and users already provide kick-ass support for free. Why would someone pay this guy's dumb ass when he probably doesn't even understand the source code.
I've found that alltheweb generaly has more results than Google, but Google is much more accurate.
ATW works well for those very obscure searches.
Merit Network
You forgot...
4) Be your own boss.
Yea, becuase this schedule:
6:30AM Paid Programming
7:00AM Paid Programming
7:30AM Living Word Outreach
8:00AM Coral Ridge Hour
would pick up more viewers than the World Cup Finals. Whatever...
In talking with friends around the country, it sounds like I'm not the only one who got up at 6:30 AM to find out that the local ABC station was not covering the World Cup final.
Why the fuck would a station rather schedule informercials instead of the World Cup final?? The most watched event on TV in the world and Americans are shown an easier way to roast chickens.
Luckily I'm in Michigan and have CBC available, or else I would have been watching it en espanol on Univision.
Was there anyone else here who didn't have ABC/ESPN coverage?
Maybe you should read this and edumacate yourself.