We just launched myracloud which is an IaaS for protecting sites from DDoS attacks.
This is a very affordable solution which proxies your website, and we filter out all bad traffic.
Compared to Verisign/Prolexic/Akamai this is a very affordable solution which offers even more fantastic features.
E.g. InstantDisplay delays executing Javascript (inline+external) until the page has rendered.
Why don't you stop whining and fix your servers? If you need to operate relays, limit them to your customers. It's that easy.
ORBS is an automated service. If your server is an open relay (the tests ORBS employs are the best around), you will be put into the list automatically. Yes, you will be notified about this. But there is no way to stop or delay this block, unless you fix your servers.
Bugtraq and a few other domains are living in the netblock of a supplier who would rather try and hide their open relays than actually fix them and is prepared to block the tester to do so.
Bugtraq's admin has his own agenda in this and has refused to post any ORBS-related material for the last year, including multiple announcements of sightings of new spammer tricks as they have been surfacing.
As for Bugtraq's claim about ORBS not replying to his email - their upstream is blocking our packets, so we are unable to.
This is the current listing of open relays in above.net space known to ORBS. There are probably more, as we only discovered the block after several people faxed in, complaining that they could no longer submit open relay reports via email. Claims that above.net made any requests to ORBS to stop testing are untrue.
As the ORBS tester is also gatewaying to several south pacific countries, Above.net have cut off access to those countries for their clients. We suggest that the best thing any above.net client can do is change their supplier as they appear to be rogue.
Yes, I second that. The combination of Apache and PHP is a very powerful set of tools for delivering dynamic web pages.
<buzzmode> mod_php is the leading Apache module in absolute terms. mod_php is installed on 23.85% of all Apache sites according to the Netcraft statistics of December 1999. Of course, the overall number of installations is higher. Many large providers support the CGI version of PHP. </buzzmode>
Please note that the expression "PHP 4.0" and "Zend" are not synonymous. PHP 4.0 makes use of the Zend scripting engine.
Re:And I thought they were going straight to M11..
on
Mozilla M10 Released
·
· Score: 1
Many multi-threaded programs have problems with glibc-2.1.2 (previous releases are ok). Maybe you are hitting this..
If you need to page that much, you need more RAM anyway...
Nope, a large swap area is necessary/useful for shell servers. I.e. if you have users who ssh/telnet into your box and stay connected for days or weeks, but don't work persistently, the inactive process are swapped out, hence physical memory is freed.
Btw, it's not so easy to use more than 2GB with Linux on Alpha. The architecture allows it, but there seem to be some restrictions in the O/S IIRC (there were some patches floating around on l-k).
They mention that the swap file is limited to 128MB.
This was true once with the old swap format on x86. mkswap(8)
because most distributions dont run too many programs as suid root.
Depends on what you mean with "too many." Every standard distro has many entries in/etc/inetd.conf which are hardly used. On every system you will find suid root binaries which you have never heard of. Recently, SuSE 6.2 shipped with new suid root programs--bang, a few weeks later they had to post a security update to BugTraq.
have some sort of bug tracking system
The problem here is that there is no "The Linux." There is no point of central power. Problems which have been fixed in Debian might be unresolved in Red Hat, and so on. This has been recently shown when ZDNet's Red Hat box was "rooted" using a cron exploit which had been fixed in Debian almost two years ago.
They refer to things like POSIX AIO. Linux' implementation of AIO is new and rather bad (well, the standard is not great as well). AIO can be used to schedule I/O events which helps I/O intensive applications. The HTTP proxy squid is an example for an application which uses this.
Someone please tell them about sudo!
Certainly, but the owner-group-world model of ACLs is not that great, and it's the only one which is available on Linux AFAIK. All major UNIX vendors have extended this scheme with their own proprietary ACLs. This is an area where Linux will play catch up again.
They do however have a valid point on Journaling FS and fine grained kernel locks which are both in development.
Especially journaled fs will be a big win for shops with large storage requirements.
The previous poster said that FreeBSD would not run on his or her Alpha.
That might be correct, depending on which Alpha he or she referred to.
Some systems (often marketed as NT/Alpha) use a boot system called ARC which isn't currently supported in FreeBSD. Thus, you cannot boot FreeBSD on these machines which renders the port virtually unuseable.
Btw, NetBSD won't run on these systems as well. From http://www.de.netbsd.org/Ports/alpha/faq.html#nt-f irmware
Can NetBSD/alpha be run on systems with only NT (ARC) firmware? (top)
Not currently. NetBSD/alpha requires the SRM Console firmware (used by OSF/1 and OpenVMS) to function. There are two main reasons for this: the console software is what's responsible for loading the operating system's primary bootstrap program, but the NT firmware's method of doing this is undocumented; and the firmware provides the PALcode for the system, which handles low-level memory management and interrupt handling details on a system-specific basis. (NetBSD uses the Digital Unix PALcode.)
The Alpha port of Linux, can boot on systems with NT firmware not because they can use the NT PALcode, but because MILO, the Alpha Linux loader, includes its own PALcode. (This of course means you need a different loader for each system type.) The PALcode they use is based on older Digital Unix PALcode and is missing a few functions. There is a possibility that this could be used for NetBSD, assuming someone wizardly enough wants to do the work.
The system is a Ruffian (21164a) at 633MHz w/ 256MB RAM, the installation is based on Red Hat 6.
gcc is gcc version 2.95.1 19990816 (release). Compile time options: -O9 -mcpu=ev56
ccc is Compaq C T6.2-001 on Linux 2.2.13pre6 alpha. Compile time options: -fast -noifo -arch ev56
The benchmark consisted of running two scripts through the CGI version of PHP4. We compare user times as measured by time(1). The tests were run three times, the shown results are mean values. The scripts are available from the Zend homepage. PHP was configured with --disable-debug.
Quicksort (script ran 50 times)
ccc version: 27s gcc version: 30s
Mandelbrot (script ran 50 times)
ccc version: 35s gcc version: 39s
The test shows that the code ccc produced was about 10% faster than gcc's. Other conclusions are left as an exercise to the reader.
Slashdot Mirror
We just launched myracloud which is an IaaS for protecting sites from DDoS attacks.
This is a very affordable solution which proxies your website, and we filter out all bad traffic.
Compared to Verisign/Prolexic/Akamai this is a very affordable solution which offers even more fantastic features. E.g. InstantDisplay delays executing Javascript (inline+external) until the page has rendered.
No changes necessary, we do all the hard work.
Check out myracloud.com DDoS protection.
The lba32 feature was added to lilo in version 21.3, released on Feb 24 2000.
With devfs, modules can create /dev entries as well (if devfs is mounted there).
What do you prefer? One single email all 21-45 days announcing the probe or a real spammer who uses your server to send thousands of emails?
If your SMTP servers don't relay, no probing message will make it through. There is no harm done by this method.
They don't attack you. It's a free service to help you defend your SMTP servers against spammers.
ORBS is an automated service. If your server is an open relay (the tests ORBS employs are the best around), you will be put into the list automatically. Yes, you will be notified about this. But there is no way to stop or delay this block, unless you fix your servers.
On the Bugtraq issue, read this page
http://www.orbs.org/bugtraq.html
<buzzmode>
mod_php is the leading Apache module in absolute terms. mod_php is installed on 23.85% of all Apache sites according to the Netcraft statistics of December 1999. Of course, the overall number of installations is higher. Many large providers support the CGI version of PHP.
</buzzmode>
Please note that the expression "PHP 4.0" and "Zend" are not synonymous. PHP 4.0 makes use of the Zend scripting engine.
See this bug report. No solution yet.
You cannot expect objectivity from a competitor. UNIX vendors compete in some markets with Linux, thus no objectivity (at least in marketing).
Does NT have a journaling file system?
NTFS.
Yeah, you're right, Linux doesn't have anything like NT's permission system which is a rip off of unix
I think you might want to take a deep look at NT's ACL model before continuing to display your ignorance.
Nope, a large swap area is necessary/useful for shell servers. I.e. if you have users who ssh/telnet into your box and stay connected for days or weeks, but don't work persistently, the inactive process are swapped out, hence physical memory is freed.
Or Linux 2.4 on x86. Yes, it's supported.
Btw, it's not so easy to use more than 2GB with Linux on Alpha. The architecture allows it, but there seem to be some restrictions in the O/S IIRC (there were some patches floating around on l-k).
They mention that the swap file is limited to 128MB.
This was true once with the old swap format on x86. mkswap(8)
because most distributions dont run too many programs as suid root.
Depends on what you mean with "too many." Every standard distro has many entries in /etc/inetd.conf which are hardly used. On every system you will find suid root binaries which you have never heard of. Recently, SuSE 6.2 shipped with new suid root programs--bang, a few weeks later they had to post a security update to BugTraq.
have some sort of bug tracking system
The problem here is that there is no "The Linux." There is no point of central power. Problems which have been fixed in Debian might be unresolved in Red Hat, and so on. This has been recently shown when ZDNet's Red Hat box was "rooted" using a cron exploit which had been fixed in Debian almost two years ago.
They refer to things like POSIX AIO. Linux' implementation of AIO is new and rather bad (well, the standard is not great as well). AIO can be used to schedule I/O events which helps I/O intensive applications. The HTTP proxy squid is an example for an application which uses this.
Someone please tell them about sudo!
Certainly, but the owner-group-world model of ACLs is not that great, and it's the only one which is available on Linux AFAIK. All major UNIX vendors have extended this scheme with their own proprietary ACLs. This is an area where Linux will play catch up again.
They do however have a valid point on Journaling FS and fine grained kernel locks which are both in development.
Especially journaled fs will be a big win for shops with large storage requirements.
That probably should read
/usr/obj.
make buildworld
make installworld
since "make world" includes the install step.
Do you have to do the whole make world seven hour process for any update?
Nope, only if you rm -rf
Or is there an easy semi-automatic way to just rebuild and restart the
services that were patched?
make will rebuild things, if necessary.
Obviously a kernel patch would need a reboot, but why reboot for other updates?
So, skip the reboot step.
The only advantage I see to the make world approach is that everything can be built optimized for your system.
Another advantage is that you can "install" many "patches" in one turn. Simply cvsup and recompile.
Let me try to clarify the 'bad' things:
- Really poor regex matching/replacing operations (should be as close to Perl as possible)
The PCRE extension does Perl-like regexes. See the manual.
- Poor loop functions (no 'next', or 'last')
PHP3 has supported these since the beginning. For example, to loop over the associative array $a:
for(reset($a); $key = key($a); next($a)) {
echo "current key is $key\n";
}
See the array reference of the PHP manual.
- cant assign variables like ($hi, $there) = 1, 3
Well, not that way. For example:
list($hi, $there) = array(1, 3);
This is also covered in the array reference.
As you mentioned, session support is integrated into PHP4.
That depends very much on your definition of ``runs on Alpha.''
FreeBSD and NetBSD run on almost all Alphas, but not on those which use ARC to boot. See my previous comment for more information.
That might be correct, depending on which Alpha he or she referred to.
Some systems (often marketed as NT/Alpha) use a boot system called ARC which isn't currently supported in FreeBSD. Thus, you cannot boot FreeBSD on these machines which renders the port virtually unuseable.
Btw, NetBSD won't run on these systems as well. From http://www.de.netbsd.org/Ports/alpha/faq.html#nt-
They have absolutely no need for sorting data or for doing calculations?
gcc is gcc version 2.95.1 19990816 (release). Compile time options: -O9 -mcpu=ev56
ccc is Compaq C T6.2-001 on Linux 2.2.13pre6 alpha. Compile time options: -fast -noifo -arch ev56
The benchmark consisted of running two scripts through the CGI version of PHP4. We compare user times as measured by time(1). The tests were run three times, the shown results are mean values. The scripts are available from the Zend homepage. PHP was configured with --disable-debug.
The test shows that the code ccc produced was about 10% faster than gcc's. Other conclusions are left as an exercise to the reader.