Just make sure your tools are all compiled with large file support and that your filesystem supports large files as well. I would have figured most everybody was using large file enabled tools by now:P
What most people think of as NAT boxes, are actually combination NAT/Firewalls. The fact that you have non-unique private IP addresses on the hosts behind it does not make anything more secure. If the NAT box is compromised, its real easy to go after the machines behind it. This is no different than having public IP addresses on the devices behind your firewall. Firewall gets compromised, same deal. Now if you have firewall configured correctly, it will block packets to the hosts behind it. With a NAT device, this is really the only mode of operation it has, short of port forwarding certain things to internal addresses.
Now, does this make sense to any of you people, or are you all slow?
Last I checked the US is authorized by the nuclear non-proliferation treaty to posses nuclear weapons. So are France, the UK, China and Russia. All other signatories agree not to develop nukes, and the five nations already possessing them, agree not to aid in the transfer of weapons technology to them.
Well see, private networks should still have public addresses. Just because the address space is public doesn't mean that you still don't use firewalls. NAT != firewall nor does it equal security. As for Nancy's printer, it can keep using its IPv4 address, as IPv6 machines can talk to anyways.
Now consider this, say if your internal networks are using 10.0.0.0/8 for its addresses. What happens when your company merges with another and the networks get integrated and suddenly you realize that the other company you are merging with also uses the same address space. Now suddenly you are faced with the task of renumbering lots and lots of devices, reconfiguring routers, firewalls, servers, printers, etc, etc.
I'll agree that NAT can be useful given the current situation, but its a hack to put off the fact that we are running out of IP addresses. With IPv4 you can't even assign one address per person in the world.
Also I noticed in your parent post of having ISPs give their customers private addresses. Consider if internally they number one way themselves, and then customers NAT themselves. You end up going through how many layers of NAT? And what does this solve, other than breaking whole design philosophy of IP in the first place.
Ever here of fixing the cause rather than the effect?
I disagree. Using unique IP addresses whenever possible is the way the internet is supposed to work. This NAT stuff is just an awful, awful hideous hack. The correct solution is IPv6, not NAT ourselves forwards and backwards.
Or perhaps have it say, sorry, but I'm a Civic, even though you slapped a bunch of shit on me and included a type-R sticker, I am still a Civic. I cannot a beat a mustang in a race. There is a good possiblity I cannot beat a golf cart in a race. Please don't do this to yourself. Your friends will laugh at you and its possible the spoiler you superglued on to me will blow off if you go much faster than 35MPH.
I wonder if in Texas this would fall under the trespassing law and you'd be able to shoot on site? Hrmm...could be fun. Sometimes you need to use the absurdity of dumb laws against themselves. To be honest, I say let something like this go through. And then just watch the reaction that it causes. There are going to be a lot of very, very pissed off people because their 11 year old installed kazaa and there computer system which they had various bits of important information on is now about as useful as a paperweight. Some people have enough problems having their computers function properly without stuff like this that would intentionally destroy them.
I say, bring it on, I wanna see the firestorm. Maybe *that* will get the attention of the general public.
Actually I was replying to this AC and not you in particular. I thought your comments were quite valid and I agree that a lot of it probably was in part to get attention for the company and it worked out well.
I think people forget Linus' real talent is managing people. Getting people to do stuff because they want to, not because they have to. If he is managing patches from other programmers and coordinating things, that takes a level of vision and skill that a lot of programmers don't have. Seeing the big picture and seeing which direction you want to go, and getting countless number of people to go in the same direction. I'd like to see you do that
You realize that me, you and probably like 2 other people know who Welle:Erdball is, which is unfortunate because you've got to give a band credit that actually uses a C-64 as an instrument. Also, hell they've got a song called Bill Gates Komm' Fick Mitt Mir(translates out to "Bill Gates Come Fuck with me").
Now people are just being plain old retarded. Get a fucking clue and read the article. Sheesh..Its like a collection of chicken littles running around screaming the sky is falling.
And for something like Ad-Aware to be 'ruled illegal', a ruling generally entails a court case. To me it seems to make sense to have somebody who has seen both sides of the privacy fence. Somebody who has seen abusers and has worked to at least attempt to get them to clean up their act.
Even better, here is a good interview with Ian MacKaye, from the good folks at the Onion. http://www.theonionavclub.com/avclub3517/avfeatu re 3517.html
Dischord records I'm 99.99995% certain will never belong to RIAA. Dischord exists as a vehicle to distribute the music, not to make money. You should know this by now, heh.
Sanjay writes "Official from Slashdot spokesman. Slashdot is considering using Slashdot's Slashdot chip in a server it expects to deliver to the market shortly. Intead of fighting Slash of Slashdot (like Slashdot is doing), Slashdot can choose to fight both with Slashdot's servers and also fight with/. as Slashdot is anyway a non starter. Slashdot can rise again! "
Well...replacing most all of the proper nouns with Slashdot at least gave me a chuckle. Okay, so I'm retarded.
Security by its nature *is* obfuscation. Consider that public key encryption works on the fact that it takes a long time to factor the product of large prime numbers. Well having a phone number that is unlisted is sort of the same way. Its takes a very long time to find somebody by dialing through all possible numbers in an exchange and attempt to find the person.
Now consider this. How exactly do you purpose entering in a name on your grandma's old 1960s phone that still has a rotary dial?
Consider further how IP works, by your logic we should get rid of IP addresses completely and use hostnames instead of IP addresses. Well if you want names to go with phone numbers, they have these things called phone books or you could use one of the online phone directories.
The other thing about going to names only, they aren't unique. Look at a large city in the US, how many people do you think there are with a name like say "John Smith"? How do you know which John Smith you are calling?
Nextel uses SIM cards as well. There network is a varation on GSM and I believe they even sell phones that are GSM capable and will work in Europe with an approriate SIM chip.
This is what I intended by the statement. In my mind consumerism is the blindness of it all. Don't get me wrong here, I'm not bashing capitalism. In fact its the opposite, capitalism works better when the consumer is educated and less likely to be ripped off by substandard products, or worse, force fed merchandise via societial influence.
Its the blind people, who I'll refer to as sheeples for the remander of this post, that worry me. These are the people who are content with not thinking for themselves, these are the people who aren't participating in the political process. And to be quiet honest the thought scares me that are so many sheeples. Sheeples can be easily manipulated and therefore abused and taken advantage of, and will buy into whatever they are sold. Taken to an extreme, you end up with something like Nazi Germany.
Well it seems that at least in some situations the record labels are in a very funny cycle of self-flagellation. Pissing off consumers AND reducing air play of the crap. Maybe it will teach them a lesson. It might be possible a lot of stations are just dealing with the cds directly though, so I can't comment on that end of things.
Then again most of the crap that has the copy protection on it I won't be listening to in the first place. I try to make a point of supporting labels like Projekt Records who are vocal advocates of music sharing. Of course Projekt is only useful if you are into goth type music.
I think the answer is simple for dealing with crap like this as a consumer, stop supporting major record labels period. There is a plethora of music out there on small labels, or even DIY labels. Even better, use that $18 you were going to spend on the latest bit of top 40 crap and go see some live music. Stop being a consumer and think;)
Yes 6bone itself is going away, which means the 3ffe::/16 address allocation is going to be reclaimed down the road. What this means is tunnel brokers like freenet6 are just going to need to get a new address allocation. There are a number of tunnel brokers already using other addresses, mainly under 2001::/16. So for all the posters who are going all doom and gloom, get a clue, wait, this is slashdot.
I wish people would *read* the articles first and *understand* what they mean before blathering on about them.
Well unless you live in the District itself, you can still 7 digit dial there. I don't forsee the 202 area code getting split up anytime soon. As for the suburbs Northern Virginia is doing a overlay with 703 and 571, before this the 703 area code was split into 703 and 585, with the 585 area code being the part that was way out in the sticks.
Slashdot Mirror
Just make sure your tools are all compiled with large file support and that your filesystem supports large files as well. I would have figured most everybody was using large file enabled tools by now :P
I'll scream. Lets get the facts straight.
What most people think of as NAT boxes, are actually combination NAT/Firewalls. The fact that you have non-unique private IP addresses on the hosts behind it does not make anything more secure. If the NAT box is compromised, its real easy to go after the machines behind it. This is no different than having public IP addresses on the devices behind your firewall. Firewall gets compromised, same deal. Now if you have firewall configured correctly, it will block packets to the hosts behind it. With a NAT device, this is really the only mode of operation it has, short of port forwarding certain things to internal addresses.
Now, does this make sense to any of you people, or are you all slow?
I know this is flamebait, but I'll bite anyways..
Last I checked the US is authorized by the nuclear non-proliferation treaty to posses nuclear weapons. So are France, the UK, China and Russia. All other signatories agree not to develop nukes, and the five nations already possessing them, agree not to aid in the transfer of weapons technology to them.
Are we talking US or British cable lengths? Though if you want nautical measurements, that'll be about 1620 knots
In Soviet Russia authority questions you..oh wait, that really did happen in Soviet Russia, nevermind.
Well see, private networks should still have public addresses. Just because the address space is public doesn't mean that you still don't use firewalls. NAT != firewall nor does it equal security. As for Nancy's printer, it can keep using its IPv4 address, as IPv6 machines can talk to anyways.
Now consider this, say if your internal networks are using 10.0.0.0/8 for its addresses. What happens when your company merges with another and the networks get integrated and suddenly you realize that the other company you are merging with also uses the same address space. Now suddenly you are faced with the task of renumbering lots and lots of devices, reconfiguring routers, firewalls, servers, printers, etc, etc.
I'll agree that NAT can be useful given the current situation, but its a hack to put off the fact that we are running out of IP addresses. With IPv4 you can't even assign one address per person in the world.
Also I noticed in your parent post of having ISPs give their customers private addresses. Consider if internally they number one way themselves, and then customers NAT themselves. You end up going through how many layers of NAT? And what does this solve, other than breaking whole design philosophy of IP in the first place.
Ever here of fixing the cause rather than the effect?
Shame on you for wanting to break the Internet.
I disagree. Using unique IP addresses whenever possible is the way the internet is supposed to work. This NAT stuff is just an awful, awful hideous hack. The correct solution is IPv6, not NAT ourselves forwards and backwards.
Dude just got his ass flamed to the Sun. Damn I'm impressed.
Or perhaps have it say, sorry, but I'm a Civic, even though you slapped a bunch of shit on me and included a type-R sticker, I am still a Civic. I cannot a beat a mustang in a race. There is a good possiblity I cannot beat a golf cart in a race. Please don't do this to yourself. Your friends will laugh at you and its possible the spoiler you superglued on to me will blow off if you go much faster than 35MPH.
But I thought only goths did this?
Hrmm..
Somebody got the little pun there ;)
I wonder if in Texas this would fall under the trespassing law and you'd be able to shoot on site? Hrmm...could be fun. Sometimes you need to use the absurdity of dumb laws against themselves. To be honest, I say let something like this go through. And then just watch the reaction that it causes. There are going to be a lot of very, very pissed off people because their 11 year old installed kazaa and there computer system which they had various bits of important information on is now about as useful as a paperweight. Some people have enough problems having their computers function properly without stuff like this that would intentionally destroy them.
I say, bring it on, I wanna see the firestorm. Maybe *that* will get the attention of the general public.
Actually I was replying to this
AC and not you in particular. I thought your comments were quite valid and I agree that a lot of it probably was in part to get attention for the company and it worked out well.
I think people forget Linus' real talent is managing people. Getting people to do stuff because they want to, not because they have to. If he is managing patches from other programmers and coordinating things, that takes a level of vision and skill that a lot of programmers don't have. Seeing the big picture and seeing which direction you want to go, and getting countless number of people to go in the same direction. I'd like to see you do that
You realize that me, you and probably like 2 other people know who Welle:Erdball is, which is unfortunate because you've got to give a band credit that actually uses a C-64 as an instrument. Also, hell they've got a song called Bill Gates Komm' Fick Mitt Mir(translates out to "Bill Gates Come Fuck with me").
Now people are just being plain old retarded. Get a fucking clue and read the article. Sheesh..Its like a collection of chicken littles running around screaming the sky is falling.
And for something like Ad-Aware to be 'ruled illegal', a ruling generally entails a court case. To me it seems to make sense to have somebody who has seen both sides of the privacy fence. Somebody who has seen abusers and has worked to at least attempt to get them to clean up their act.
Even better, here is a good interview with Ian MacKaye, from the good folks at the Onion.
u re 3517.html
http://www.theonionavclub.com/avclub3517/avfeat
Dischord records I'm 99.99995% certain will never belong to RIAA. Dischord exists as a vehicle to distribute the music, not to make money. You should know this by now, heh.
Sanjay writes "Official from Slashdot spokesman. Slashdot is considering using Slashdot's Slashdot chip in a server it expects to deliver to the market shortly. Intead of fighting Slash of Slashdot (like Slashdot is doing), Slashdot can choose to fight both with Slashdot's servers and also fight with /. as Slashdot is anyway a non starter. Slashdot can rise again! "
Well...replacing most all of the proper nouns with Slashdot at least gave me a chuckle. Okay, so I'm retarded.
-AS
Security by its nature *is* obfuscation. Consider that public key encryption works on the fact that it takes a long time to factor the product of large prime numbers. Well having a phone number that is unlisted is sort of the same way. Its takes a very long time to find somebody by dialing through all possible numbers in an exchange and attempt to find the person.
Now consider this. How exactly do you purpose entering in a name on your grandma's old 1960s phone that still has a rotary dial?
Consider further how IP works, by your logic we should get rid of IP addresses completely and use hostnames instead of IP addresses. Well if you want names to go with phone numbers, they have these things called phone books or you could use one of the online phone directories.
The other thing about going to names only, they aren't unique. Look at a large city in the US, how many people do you think there are with a name like say "John Smith"? How do you know which John Smith you are calling?
Nextel uses SIM cards as well. There network is a varation on GSM and I believe they even sell phones that are GSM capable and will work in Europe with an approriate SIM chip.
-AS
This is what I intended by the statement. In my mind consumerism is the blindness of it all. Don't get me wrong here, I'm not bashing capitalism. In fact its the opposite, capitalism works better when the consumer is educated and less likely to be ripped off by substandard products, or worse, force fed merchandise via societial influence.
Its the blind people, who I'll refer to as sheeples for the remander of this post, that worry me. These are the people who are content with not thinking for themselves, these are the people who aren't participating in the political process. And to be quiet honest the thought scares me that are so many sheeples. Sheeples can be easily manipulated and therefore abused and taken advantage of, and will buy into whatever they are sold. Taken to an extreme, you end up with something like Nazi Germany.
-AS
Well it seems that at least in some situations the record labels are in a very funny cycle of self-flagellation. Pissing off consumers AND reducing air play of the crap. Maybe it will teach them a lesson. It might be possible a lot of stations are just dealing with the cds directly though, so I can't comment on that end of things.
;)
Then again most of the crap that has the copy protection on it I won't be listening to in the first place. I try to make a point of supporting labels like Projekt Records who are vocal advocates of music sharing. Of course Projekt is only useful if you are into goth type music.
I think the answer is simple for dealing with crap like this as a consumer, stop supporting major record labels period. There is a plethora of music out there on small labels, or even DIY labels. Even better, use that $18 you were going to spend on the latest bit of top 40 crap and go see some live music. Stop being a consumer and think
-AS
Yes 6bone itself is going away, which means the 3ffe::/16 address allocation is going to be reclaimed down the road. What this means is tunnel brokers like freenet6 are just going to need to get a new address allocation. There are a number of tunnel brokers already using other addresses, mainly under 2001::/16. So for all the posters who are going all doom and gloom, get a clue, wait, this is slashdot.
I wish people would *read* the articles first and *understand* what they mean before blathering on about them.
-AS
Well unless you live in the District itself, you can still 7 digit dial there. I don't forsee the 202 area code getting split up anytime soon. As for the suburbs Northern Virginia is doing a overlay with 703 and 571, before this the 703 area code was split into 703 and 585, with the 585 area code being the part that was way out in the sticks.