Richard Stallman for the usual reasons (see the page edit history for, oh, 500 edits if you don't know what this means). -- Grunt ?? 23:13, 2004 Sep 20 (UTC)
I've purchased one of their smaller appliances, and it works very well. It handles about 30,000 emails a day, with about 1,000 being legit emails. False positives are VERY low, and even then are tagged and let through.
The biggest thing I like, though, is the hourly updates that they provide for spam and virus definitions.
Just out of curiosity, how are you proposing to duplicate that effort with your project? Or are you?
That format would be sitting in a theater and making fun of a bad movie? Guess they better start suing most groups of teenagers I've ever seen at a movie
I actually experienced something almost like MST3k when I went and saw Jason X. It was soooo bad and over the top that it was funny. There were only a handfull of us in the theatre, as it was a matinee, and everyone was openly laughing at and commenting on the movie.
I've got a similar background (rifle/handgun competition since I was 14, Range Safety Officer for years, etc.)
I was in the CDN Air Force for a while, and while I was on Basic Officer Training, some nimrod thought it'd be cool to act all Rambo-ish with his newly acquired rifle... started shoving it into people's faces and dry-firing it. He did it to me, so I grabbed his barrel and smashed his face with the butt of the rifle. Only once, but it was a "good one".
He ended up having a busted nose and a few missing teeth, and tried to get me charged.
I'll admit I was very concerned (after all, I didn't mean to make him spit chicklets), but once the RSM (Regimental Seargent Major) heard the story, he told me to go back to the barracks, and we never saw the other idiot again. (To this day, I'd REALLY like to know what he did to piss off the RSM, as that dry-fire alone shouldn't have been enough to have him booted out... oh well).
At best, IFS initially was a cheesy cluge that involved putting a SAMBA front-end on the DB, and it almost provides some of the features that we're talking about, via some custom application development. I was involved with the beta testing of the product with their developers (see my website for more information).
In no way was it a case of "WinFS was done before... look at IFS".
You are correct in that Oracle can read the content of certain files, and index those files for searching, but it is not effectively integrated into the OS; you couldn't just search from the OS itself... you had to open a web browser for it, or implement other applications.
And there's no way in HELL that my parents will be setting it up and using it on their home machine any time soon.
Just so you know, the main piece doing the heavy lifting is Oracle's Ultra Search engine (previously their Context engine), which allows you to do what you're talking about RIGHT NOW, IFS or not. That provides the ability to read the content of text-based files, or files of known/understood formats (PDF's, etc), and have the ability to perform context searches on it.
Last time I checked, it didn't let you assign search criteria to files it didn't understand (without some hacking/programming), or provide your own custom search tags, from within the OS/File System itself. All of those capabilities required application development and access.
Now, that being said, Oracle has taken IFS and rolled it into their Content Management SDK, that allows you to do a whole bunch of programming to do all the neat stuff that we're talking about, from an Application level, not the OS.
Once again, though, it is by NO means an OS level utility available "out of the box".
IFS is a SAMBA interface to an Oracle database... there's nothing special about it.
iFS can manage all content -- which is scattered across PC desktops, document management systems, and websites -- in a single repository, he said. It supports the storage and management of more than 150 different file types, including documents created using XML.
Gee, whaddayaknow... that doesn't say SFA about being able to search for content using meta-tags, etc.... all it does is act as a network drive in a SAMBA environment.
I agree. Based on their destruction of property, and they're "borrowing" cameras from Walmart, they've become no better than a bunch of idiots on a crime spree.
It would be one thing if they marched in front of the store with signs, or put bumber stickers on their car, or put flyers on cars in the parking lot, or handed out pamphlets, but to actively go in and physically deface property that is not theirs, regardless of their "moral high ground", is wrong.
It actually looks like it's hanging from a line of some sort, as there appears to be some pendulum action going on... as if it was swinging side to side while being raised and lowered on a string.
You have absolutely no idea at ALL about what you're talking about.
You actually think "talent" has anything to do with getting a record deal? (Let's not even THINK about William Hung!) I've seen some of the most incredibly jaw-droppingly unbelieveable musicians not get signed for lots of reasons, such as not being willing to sign over the control that the label wants, but primarily they didn't fit the "look" or latest fad.
For instance, when Stevie Ray Vaughn was presented to the powers that be at EMI, they didn't sign him because they didn't think he'd sell at all. Yeah, right.
Regardless, I've seen bands get signed to an exclusive deal that were awesome, and yet the label arbitrarily changed their minds and didn't do anything with them. The bands still wrote and demo'd, but the label wouldn't put them into the studio to record... never mind put together the marketing campaign, tour, etc. FYI, it usually takes about a year to a year and a half to record and promote the album, and then comes the touring.
"NOT YOUNG ENOUGH" is PRECISELY why this kind of thing happens... because in the year since a band gets signed, some fuckwad in marketing realizes that the target demographic is now looking for 16-18 year old faggy boy bands with attitude (or whatever other "fad of the day" is relevent) rather than 25+ year old quality musicians that they have just signed.
Oh... one other thing. This "getting signed for thousands of dollars" thing is pretty funny... you have no clue at all. When a band gets signed, they basically enter into an agreement saying that the record company will provide them with all sorts of money (under strict control/supervision of the label) to record, tour, and MAYBE to live off, etc., but THEY WILL PAY IT ALL BACK, plus some serious interest (userous in most cases). This is BEFORE the artist sees a penny in "profit".
A newly signed band, in 99.999% of the time, will not get a whack of cash to go buy the Porsches or H2's. That's the myth, the dream, and feeds the greed that allows artists to make incredibly stupid decisions at the most important time of their carreer... at the beginning when they sign their contracts. They're lucky if they can afford to keep gas in the 15 year old tour van that they MIGHT already own/rent.
Once they've proven their ability to sell product, then they gain some leverage when renegotiating their next ADVANCE. And there's a reason why they call it an ADVANCE.
Say what you like, but I've been in the thick of it for almost 15 years, and have seen it play out a thousand times.
Then you're extremely uninformed as to how the industry works. I've headed up some of the IT initiateives in the mid-90's (database driven web sites, streaming audio, etc.) for Nettwerk, EMI, Virgin, BMG, and Sony, and as a result have met a LOT of musicians, and can vouch for this happening for more than just a few of the acts.
I didn't say he had anything at all to do with it. I made a general statement about the heads of terrorist groups.
The 911 incident had nothing to do with the war in Iraq, but there are similarities between the two leaders and their actions.
For instance, Saddam told all his followers to "fight the US troops to the death! Die for the cause!" and yet when he was found he was cowering in a dirt hole in someone's back yard. Not just a LITTLE hypocritical.
A friend of mine has an Apple Airport, and an AT&T 2.4 phone, and whenever the phone was turned on the wireless network disappeared TOTALLY. You could be 10 feet from the Airport and it would still disappear. They did not work and play well together at ALL. You could occasionally force a new phone channel and it would have minimal effect, but still an effect. (The 802.11 connection would flicker in and out of existance). All in all, it was quickly a learned behaviour that the network was not available when his wife was on the phone.;)
That being said, I have a LinkSys and an Airport WAP co-existing with a Panasonic 2.4 cordless phone, and there is absolutely no discernable interferance between them.
Personally, I don't know enough of the details of the frequencies used to figure out why, but all I know is that it works.
My point was that he said to install it into a sandbox "first"... and none of the precautions he mentioned would help you determine if there was a rootkit installed. So, he would in essence install it into the sandbox, and everything would appear fine. At that point, it would then appear to pass the tests he was using, and he'd presumable put it into "production", rootkit and all.
Regardless of whether or not it's running in a VM, it could still be hackable and exploitable.
If you're using Office or some other app, then the VM instance can still be exploitable and your content is hacked... VM or not. As well, a LOT of people run Virtual PC with a mapped drive to the host... so there are potential issues there as well.
For that matter, a spambot running within a VM is just as annoying to the rest of the spam-hating world, VM or not.
Sure, it's a good idea to sandbox test something if you're looking for "evil and intentional corruption". In other words, if someone rigged the patch to erase everything during/after install, then the VM is a good thing.
The issue I was raising was that if the patch has been hacked to include a sleeper of some sort, or a root kit, then sandboxing it does absolutely nothing for you, unless you know how to find/recognize such things, which can be incredibly difficult.
For instance, what if there was a simple app that was set to fire up after the 30th restart of the system, and it deleted everything... how does sandboxing help in that case?
To sum up... I would never trust any source other than MS for this kind of patch, for as much as I hate them, I trust them enough that I don't think that they are intentionally including malicious code, spambots, trojans, etc., within their patch; they just have shit design and code that is prone to failure and attack.
It would be incredibly simple to hack such a patch to include content that would easily bypass or "pass" any testing you want to do with the patch; virus scanners, ad aware, VM ware, etc.
The only safe thing to do is to checksum the patch and compare it with the checksums provided by MS.
And there's nothing saying that the messages have to be sent via electronic means at ALL.
Simple want ads in the local paper, or a personal ad, etc., can be just as, if not more effective... especially when the ad is placed 100% annonimously... no electronic trail at all.
I think it's also important to keep in mind that not all terrorists are the same... there are some that are the planners, and some that are the implementors.
In this case, the morons (or fanatics, or whatever you want to call them) are the ones that actually DO THE DEED.
When did Sadaam or Bin Laden ever actually DO the deed? They generally thought it out (with lots of staff/assistance, I'm sure) and took credit for it after the fact.
And don't kid yourself... as has been mentioned in the news over the past few days, terrorist intel-gathering and communication skills seem to be quite excellent.
There's also been discussions of how they use various international ISP's for email addresses, where the addresses are used once or twice, and there's still the element of "old school" physical delivery of messages involved.
I hear ya... people tend to over-complicate air navigation a lot.
When I got my pilots license, in the Toronto / Central Ontario region, THE best navigation aid was a plain old road map.
Depending on the purpose of the flight (screwing around or actually going somewhere), and where you were going, it was generally easier to follow the 401 (4 lane highway) than it was to figure out a bearing/heading. That part of the province has got a whack of highways that are pretty easy to distinguish from the air.
It would have been quite trivial for them to figure out where they had to go from visual cues... as long as they knew roughly where they were in relation to where they were going. (roughly north-west, etc.).
I agree totally. I've seen too many "enterprise" apps that reside on DMZ boxes that have JDBC connections straight into the data tables in the DB. Not really that great from a security standpoint, IMO.
I prefer to make all remote calls via Stored Procedure API's, via a "proxy" database schema that only has execute permissions on the procedures, and no direct data table access.
This also means that the middle-tier devs can write code for a published API, and the DBA's can screw with the data model to their hearts content without (theoretically) breaking the app.
It also lets the DBA deal with SQL tuning, etc., while the middle-tier (typically Java) devs don't have to worry about understanding SQL tuning details.
I'm sure there are a number of views on this, but this has worked out very well for me over the years.
However, Oracle is free to change their licensing once again.
Oracle Licensing is like mountain weather... if you don't like it, wait 10 minutes and it'll change.
Seriously, though, Oracle changes their licensing more than any other software company I've ever dealt with.
I won't be surprised to see their licensing change after they get some push-back from their customers.
The other thing they DO have a history for, though, is NOT helping customer out when it comes to a license change. I've seen customers sign the deal on a Monday, only to have new pricing come out on the Tuesday. If they'd waited a single day, their software licensing would have been around half of what they paid.
Slashdot Mirror
lol!
I love the entry for Richard Stallman:
Richard Stallman for the usual reasons (see the page edit history for, oh, 500 edits if you don't know what this means). -- Grunt ?? 23:13, 2004 Sep 20 (UTC)
I've purchased one of their smaller appliances, and it works very well. It handles about 30,000 emails a day, with about 1,000 being legit emails. False positives are VERY low, and even then are tagged and let through.
The biggest thing I like, though, is the hourly updates that they provide for spam and virus definitions.
Just out of curiosity, how are you proposing to duplicate that effort with your project? Or are you?
Well, in case you're wondering, neither Mad, Heavy Metal, or Hustler had the GLAT insert.
*sigh*
What does that say about MY background?
This userFriendly strip says it all. :)
That format would be sitting in a theater and making fun of a bad movie? Guess they better start suing most groups of teenagers I've ever seen at a movie
I actually experienced something almost like MST3k when I went and saw Jason X. It was soooo bad and over the top that it was funny. There were only a handfull of us in the theatre, as it was a matinee, and everyone was openly laughing at and commenting on the movie.
It was fun/funny as hell.
Here here.
I've got a similar background (rifle/handgun competition since I was 14, Range Safety Officer for years, etc.)
I was in the CDN Air Force for a while, and while I was on Basic Officer Training, some nimrod thought it'd be cool to act all Rambo-ish with his newly acquired rifle... started shoving it into people's faces and dry-firing it. He did it to me, so I grabbed his barrel and smashed his face with the butt of the rifle. Only once, but it was a "good one".
He ended up having a busted nose and a few missing teeth, and tried to get me charged.
I'll admit I was very concerned (after all, I didn't mean to make him spit chicklets), but once the RSM (Regimental Seargent Major) heard the story, he told me to go back to the barracks, and we never saw the other idiot again. (To this day, I'd REALLY like to know what he did to piss off the RSM, as that dry-fire alone shouldn't have been enough to have him booted out... oh well).
At best, IFS initially was a cheesy cluge that involved putting a SAMBA front-end on the DB, and it almost provides some of the features that we're talking about, via some custom application development. I was involved with the beta testing of the product with their developers (see my website for more information).
In no way was it a case of "WinFS was done before... look at IFS".
You are correct in that Oracle can read the content of certain files, and index those files for searching, but it is not effectively integrated into the OS; you couldn't just search from the OS itself... you had to open a web browser for it, or implement other applications.
And there's no way in HELL that my parents will be setting it up and using it on their home machine any time soon.
Just so you know, the main piece doing the heavy lifting is Oracle's Ultra Search engine (previously their Context engine), which allows you to do what you're talking about RIGHT NOW, IFS or not. That provides the ability to read the content of text-based files, or files of known/understood formats (PDF's, etc), and have the ability to perform context searches on it.
Last time I checked, it didn't let you assign search criteria to files it didn't understand (without some hacking/programming), or provide your own custom search tags, from within the OS/File System itself. All of those capabilities required application development and access.
Now, that being said, Oracle has taken IFS and rolled it into their Content Management SDK, that allows you to do a whole bunch of programming to do all the neat stuff that we're talking about, from an Application level, not the OS.
Once again, though, it is by NO means an OS level utility available "out of the box".
For that, I'll wait for the next release of OS X.
IFS is a SAMBA interface to an Oracle database... there's nothing special about it.
iFS can manage all content -- which is scattered across PC desktops, document management systems, and websites -- in a single repository, he said. It supports the storage and management of more than 150 different file types, including documents created using XML.
Gee, whaddayaknow... that doesn't say SFA about being able to search for content using meta-tags, etc.... all it does is act as a network drive in a SAMBA environment.
I agree. Based on their destruction of property, and they're "borrowing" cameras from Walmart, they've become no better than a bunch of idiots on a crime spree.
It would be one thing if they marched in front of the store with signs, or put bumber stickers on their car, or put flyers on cars in the parking lot, or handed out pamphlets, but to actively go in and physically deface property that is not theirs, regardless of their "moral high ground", is wrong.
Welcome to the MTV "Bam" generation.
Link can be found here or here.
One of my favourite bits by Denis Leary... that and "Marv, Marv, Marv, Marv"
"Mr. Kennedy (if that is really your name) please step away from the vehicle..."
If that's Ted we're talking about, I'm sure he's heard that LOTS of times.
It actually looks like it's hanging from a line of some sort, as there appears to be some pendulum action going on... as if it was swinging side to side while being raised and lowered on a string.
You have absolutely no idea at ALL about what you're talking about.
You actually think "talent" has anything to do with getting a record deal? (Let's not even THINK about William Hung!) I've seen some of the most incredibly jaw-droppingly unbelieveable musicians not get signed for lots of reasons, such as not being willing to sign over the control that the label wants, but primarily they didn't fit the "look" or latest fad.
For instance, when Stevie Ray Vaughn was presented to the powers that be at EMI, they didn't sign him because they didn't think he'd sell at all. Yeah, right.
Regardless, I've seen bands get signed to an exclusive deal that were awesome, and yet the label arbitrarily changed their minds and didn't do anything with them. The bands still wrote and demo'd, but the label wouldn't put them into the studio to record... never mind put together the marketing campaign, tour, etc. FYI, it usually takes about a year to a year and a half to record and promote the album, and then comes the touring.
"NOT YOUNG ENOUGH" is PRECISELY why this kind of thing happens... because in the year since a band gets signed, some fuckwad in marketing realizes that the target demographic is now looking for 16-18 year old faggy boy bands with attitude (or whatever other "fad of the day" is relevent) rather than 25+ year old quality musicians that they have just signed.
Oh... one other thing. This "getting signed for thousands of dollars" thing is pretty funny... you have no clue at all. When a band gets signed, they basically enter into an agreement saying that the record company will provide them with all sorts of money (under strict control/supervision of the label) to record, tour, and MAYBE to live off, etc., but THEY WILL PAY IT ALL BACK, plus some serious interest (userous in most cases). This is BEFORE the artist sees a penny in "profit".
A newly signed band, in 99.999% of the time, will not get a whack of cash to go buy the Porsches or H2's. That's the myth, the dream, and feeds the greed that allows artists to make incredibly stupid decisions at the most important time of their carreer... at the beginning when they sign their contracts. They're lucky if they can afford to keep gas in the 15 year old tour van that they MIGHT already own/rent.
Once they've proven their ability to sell product, then they gain some leverage when renegotiating their next ADVANCE. And there's a reason why they call it an ADVANCE.
Say what you like, but I've been in the thick of it for almost 15 years, and have seen it play out a thousand times.
Then you're extremely uninformed as to how the industry works. I've headed up some of the IT initiateives in the mid-90's (database driven web sites, streaming audio, etc.) for Nettwerk, EMI, Virgin, BMG, and Sony, and as a result have met a LOT of musicians, and can vouch for this happening for more than just a few of the acts.
I didn't say he had anything at all to do with it. I made a general statement about the heads of terrorist groups.
The 911 incident had nothing to do with the war in Iraq, but there are similarities between the two leaders and their actions.
For instance, Saddam told all his followers to "fight the US troops to the death! Die for the cause!" and yet when he was found he was cowering in a dirt hole in someone's back yard. Not just a LITTLE hypocritical.
A friend of mine has an Apple Airport, and an AT&T 2.4 phone, and whenever the phone was turned on the wireless network disappeared TOTALLY. You could be 10 feet from the Airport and it would still disappear. They did not work and play well together at ALL. You could occasionally force a new phone channel and it would have minimal effect, but still an effect. (The 802.11 connection would flicker in and out of existance). All in all, it was quickly a learned behaviour that the network was not available when his wife was on the phone. ;)
That being said, I have a LinkSys and an Airport WAP co-existing with a Panasonic 2.4 cordless phone, and there is absolutely no discernable interferance between them.
Personally, I don't know enough of the details of the frequencies used to figure out why, but all I know is that it works.
My point was that he said to install it into a sandbox "first"... and none of the precautions he mentioned would help you determine if there was a rootkit installed. So, he would in essence install it into the sandbox, and everything would appear fine. At that point, it would then appear to pass the tests he was using, and he'd presumable put it into "production", rootkit and all.
Regardless of whether or not it's running in a VM, it could still be hackable and exploitable.
If you're using Office or some other app, then the VM instance can still be exploitable and your content is hacked... VM or not. As well, a LOT of people run Virtual PC with a mapped drive to the host... so there are potential issues there as well.
For that matter, a spambot running within a VM is just as annoying to the rest of the spam-hating world, VM or not.
Sure, it's a good idea to sandbox test something if you're looking for "evil and intentional corruption". In other words, if someone rigged the patch to erase everything during/after install, then the VM is a good thing.
The issue I was raising was that if the patch has been hacked to include a sleeper of some sort, or a root kit, then sandboxing it does absolutely nothing for you, unless you know how to find/recognize such things, which can be incredibly difficult.
For instance, what if there was a simple app that was set to fire up after the 30th restart of the system, and it deleted everything... how does sandboxing help in that case?
To sum up... I would never trust any source other than MS for this kind of patch, for as much as I hate them, I trust them enough that I don't think that they are intentionally including malicious code, spambots, trojans, etc., within their patch; they just have shit design and code that is prone to failure and attack.
It would be incredibly simple to hack such a patch to include content that would easily bypass or "pass" any testing you want to do with the patch; virus scanners, ad aware, VM ware, etc.
The only safe thing to do is to checksum the patch and compare it with the checksums provided by MS.
And that stops a rootkit how?
And there's nothing saying that the messages have to be sent via electronic means at ALL.
Simple want ads in the local paper, or a personal ad, etc., can be just as, if not more effective... especially when the ad is placed 100% annonimously... no electronic trail at all.
I think it's also important to keep in mind that not all terrorists are the same... there are some that are the planners, and some that are the implementors.
In this case, the morons (or fanatics, or whatever you want to call them) are the ones that actually DO THE DEED.
When did Sadaam or Bin Laden ever actually DO the deed? They generally thought it out (with lots of staff/assistance, I'm sure) and took credit for it after the fact.
And don't kid yourself... as has been mentioned in the news over the past few days, terrorist intel-gathering and communication skills seem to be quite excellent.
There's also been discussions of how they use various international ISP's for email addresses, where the addresses are used once or twice, and there's still the element of "old school" physical delivery of messages involved.
I hear ya... people tend to over-complicate air navigation a lot.
When I got my pilots license, in the Toronto / Central Ontario region, THE best navigation aid was a plain old road map.
Depending on the purpose of the flight (screwing around or actually going somewhere), and where you were going, it was generally easier to follow the 401 (4 lane highway) than it was to figure out a bearing/heading. That part of the province has got a whack of highways that are pretty easy to distinguish from the air.
It would have been quite trivial for them to figure out where they had to go from visual cues... as long as they knew roughly where they were in relation to where they were going. (roughly north-west, etc.).
I've had great results with the Toshiba Satelite M30, personally.
Stored procedures facilitate better safety.
I agree totally. I've seen too many "enterprise" apps that reside on DMZ boxes that have JDBC connections straight into the data tables in the DB. Not really that great from a security standpoint, IMO.
I prefer to make all remote calls via Stored Procedure API's, via a "proxy" database schema that only has execute permissions on the procedures, and no direct data table access.
This also means that the middle-tier devs can write code for a published API, and the DBA's can screw with the data model to their hearts content without (theoretically) breaking the app.
It also lets the DBA deal with SQL tuning, etc., while the middle-tier (typically Java) devs don't have to worry about understanding SQL tuning details.
I'm sure there are a number of views on this, but this has worked out very well for me over the years.
However, Oracle is free to change their licensing once again.
Oracle Licensing is like mountain weather... if you don't like it, wait 10 minutes and it'll change.
Seriously, though, Oracle changes their licensing more than any other software company I've ever dealt with.
I won't be surprised to see their licensing change after they get some push-back from their customers.
The other thing they DO have a history for, though, is NOT helping customer out when it comes to a license change. I've seen customers sign the deal on a Monday, only to have new pricing come out on the Tuesday. If they'd waited a single day, their software licensing would have been around half of what they paid.
Joy.