Pudge, you have to realize that Apple has no experience when it comes to the world of Unix security. MacOS (=9) hasn't traditionally been the target of as much scrutiny, and it doesn't have things like SUID binaries that will turn a simple bug into a security problem. Apple needs to play catchup for a while.
Um, why is Quake out of the question again? These machines are plenty fast enough to play the original quake all though Quake3. If 3D rendering is a problem (binary module issue or licensing or something), try the original Quake1 NetQuake in software rendering mode.
The only benchmarks run were comparing OpenSSL computation in native UnixWare mode versus Linux Kernel Personality (LKP) mode. This is an extremely poor test and shows that the reviewer doesn't know what he's talking about.
LKP is basicly system call emulation like that which is available in FreeBSD. This has NOTHING to do with pure user-space number crunching required of crypto computations! This kind of test would only show the most eggregrarious scheduling or interrupt handler errors in providing the LKP functionality. This wouldn't (shouldn't?) even show up any compiler differences between UnixWare's cc and GCC since OpenSSL is heavily assembly optimzed on x86.
These numbers arn't even compared to running under a real Linux kernel, which would be the most logical course of action given the reviewer's incomplete understanding.
But regardless, with comments like the following, it becomes painfully obvious the reviewer knows little about this:
The Linux kernel version number piqued my interest, because of the recent kernel vulnerability responsible for the compromise of some Debian project servers. I'm not sure if the same kernel exploit would work in the LKP, but it'd be an interesting test.
If anything, benchmarking system calls should have been done. Something along the lines of these tests.
The reviewer makes his bias very plain with passages such as:
I want to be as objective as possible, but I'd be a fool to think such a review could possibly avoid the controversy and raw emotions surrounding the company offering the product I've chosen to evaluate.
This combined with the lack of objective and useful benchmarks makes this article little more than a piece of cheerleading propoganda.
The whole point of Gattaca was that these systems are not fool-proof. The main character was able to get around these systems with various tricks (urine replacement, blood sample pouches on the finger, etc.).
For those that don't know, there is a mplayer for debian apt source available. It includes all of the codecs, win32, quicktime, realplayer, etc. Best part is mplayer-plugin (works with Mozilla for sites that embed their videos in a webpage). Go here:
Normal usb-storage devices will work. The only issue is for ATAPI devices that have been using ide-scsi in the past. (cd-r drives, ide tape drives, ide zip drives, etc.)
ide-scsi is mainly used by cd-burning software such as cdrdao and cdrecord (and their frontends). This works fairly well in the 2.2 and 2.4 kernels. However, it does lack some serious functionality: DMA support. Not having DMA support for ide-scsi means that burning takes up a lot of cpu time and it is very easy to cpu-starve the cd-burning software resulting in a bad burn.
This might have never came up if ide-scsi was properly functioning.. but somewhere along the 2.5 series, it became mostly broken.
Linus's solution? Fix the ide-cd interface to pass ATAPI generic instructions (analogous to SCSI generic) and enable DMA for those devices. This requires userspace software changes in cdrecord and cdrdao's scsilib (they share that code). This enables you to run cdrecord --dev=/dev/hdc and have it work.
ide-scsi in 2.6 remains mostly broken. This is a problem for people who use ide-scsi for devices other than cd-r drives, such as zip drives or IDE tapes. A lot of zip drive and tape software was written only for scsi interfaces. ide-scsi lets people use their cheaper ide components with that software.
Where does this leave us? 1. the kernel should have supported burning to atapi devices directly a long time ago. 2. the cd-r software should certainly support burning to atapi devices now (cvs versions of cdrecord and cdrdao support this). 3. ide-scsi should be fixed, but NO ONE IS SENDING PATCHES. 4. ide-cd works for most people, but is not 100%. It doesn't work with my hardware (even for reading CDs). This makes me go back to 2.4 for CD burning.
What should be done? 1. if you use ide-scsi for things other than cd burning and you want to upgrade to 2.6, take a look at the driver and try to fix it. Submit a patch. 2. upgrade your cd-r software. 3. report ide-cd problems to Jens Axboe and the LKML.
Oh, and the author of cdrtools (cdrecord) just wants to talk SCSI to everything and not care what the device actually is. I'm not quite sure why.
Thats it. End of story. Try ide-cd. Drop ide-scsi.
The FSF Savannah server has been hacked. The statement indicates a similar attack vector as the exploit against the Debian systems. However, it had been hacked nearly a month ago and was not detected until December 1st. For those that are not familar with it, Savannah is the FSF version of Sourceforge, hosting both GNU and non-GNU Free Software projects. It has not yet been determined whether any of the projects' source code has been modified. Read the full statement for details. One thing is certain though, with Debian, Gentoo and now the FSF being exploited in the same month, the open source/free software community is clearly under attack.
I think a large portion of the nation's traffic could be served by a couple of high-speed rail lines. Boston-Washington, San Diego-Seattle, and maybe New York-Chicago.
The best feature of gnomemeeting is that it supports 1394 AV/C cameras (aka DV camcorders). That means you can plug in you standard firewire camcorder and use that as your webcam! This requires a recent (and maybe customized) build, but it works quite well.
I used to use Cyber Warrior back in the day (the company that does Rubies). They were an ISP located in Fair Lawn, NJ with a POP in Ridgewood that I used. I used to know the sysadmin there (Hi Rich) and even got to visit the facilities. This was back in 1995 or so, and they were running the ISP on a fractional T1.
They have been developing this game the whole time too. I was just happy to have a shell account and a dialup, and never tried the game. Unfortunately, they never made much progress with the game. They had a limited following and only like 4 people working on the game. One or two developers and a couple artists.
I kinda got the impression that they were going nowhere fast. After Rich left, it seems they went downhill quickly on the ISP side of things. I'm not sure about the game side.
# Galeon 1.2 + Recent Mozilla built against gtk1.2 deb http://people.spacelabs.nl/~paul browser-gtk1.2/ deb-src http://people.spacelabs.nl/~paul browser-gtk1.2/
I have this running on my unstable system. I was holding out with Mozilla 1.2.1 until I found this. Good deal, thanks to the packager!
Sources are there, so you should be able to check out what configure options were used. Hope this helps.
> > God Bless America, with the worst crime levels in the first world > Where even criminals have civil rights.
Unless they're "Illegal Combantants". Then we send them off without trial, access to legal council, or without the ability to consult their embassies.
> > God Bless America, so happy to violate international law". > When those laws are put together by the dictator's club called the UN, you > bet. You know, the place that puts Syria and Libya on the "human rights > committee"?
The Geneva Convention has nothing to do with Syria and Libya. However, I agree, Syria should not advise anyone on human rights.
> > God Bless America, where "freedom of speech" means race-hate groups like KKK > Where freedom of speech applies to EVERYBODY, even the ones with unpopular > causes. Hint: popular causes don't NEED freedom of speech.
I agree here.
> > God Bless America, with barely 300 years of dire history and culture > Hint: we're still on our first Republic. France is on their fifth, with > intervening Reigns of Terror, anarchy, kings, emperors, and Nazi > collaborationist regimes.
Actually, this is our second. Remember the Articles of Confederation?
> > God Bless America, with the highest obesity levels in the developed world > Where food is so cheap that even the poorest can (over)eat.
I wish that were true. http://www.dispatch.com/news/newsfea00/apr00/249 67 4.html
> > God Bless America, wasting billions to attack foreign countries > They're ours to "waste", Saddam-lover.
Well, actually, no. We're doing defecit spending to finance all of this. How can you have a war and lower taxes at the same time? Prentend you don't have to pay for it.
In California? Try DSL Extreme. I'm getting 1.5 Mbit downstream, 256 kbit upstream plus one static IP for $65/month. No blocked ports. Additional IPs available at $8/month. I'm running SMTP, DNS, HTTP.. no problems.
Routing is good, just a couple hops from major backbones. I often ping 100ms to the east coast.
No questions asked, they just provide the pipe. Works great, fast installation. I don't work for them or anything, I'm just a satisfied customer.
Thanks for all the good info. I'll be looking into this. You are happy with the output of inkjet printers? What printing processes do you prefer from the labs?
Hi, I'm an amateur. I don't have a lot of contact with pros, so I was wondering if you could tell us about how you print these digital shots? And how does it vary from the 4x6s to the 20x30s?
Quake 1 NetQuake (not quakeworld) was capped at 72 fps. Since QW, Q2 and up does client-side movement/prediction, this has been an issue on the client.
The thing that players need to worry about is MINIMUM FPS. During a firefight, there will be more elements to draw, and hence a longer render time. Having this drop below your framerate cap is a bad thing.
The issue with jumps being variable depending on ticrate has been a problem in Quake1 days too. In NetQuake, it was only the server ticrate which mattered. Today with client-side prediction, its the clients too.
This just makes me say to id: fix your damn physics model! Why should the jump distance be dependant on ticrate?! Some weird quantization errors you have there.
If telling someone that they can disable autorun via the shift key is fellonious, I want to see what these guys thing of the official Microsoft description of this feature. Go ahead, sue Microsoft too, I dare you.
Here is the snippet from the page http://www.donotcall.gov/ Note that the img tag is embedded in the noscript tag. That is, this img is only loaded in graphical browsers that don't use javascript. Since AT&T has the government contract to implement the DNC list, I don't think there's anything sinister going on here, they just want a count of the number of users that don't use/enable javascript.
When Q3A was in development, the ppl at iD issued a Q3Test package which was more of a technology test than a demo. It was meant to test rendering systems, drivers, etc. The gameplay was totally not an issue. The NPC bots didn't work. Multiplayer barely worked. It was also issued cross-platform, for Windows, Linux & MacOS.. each platform had a number of issues.
None of the problems stopped Q3A from being a commercial success across all of the above platforms. Indeed, I would think that the release of q3test actually helped the popularity of the game.
Slashdot Mirror
Pudge, you have to realize that Apple has no experience when it comes to the world of Unix security. MacOS (=9) hasn't traditionally been the target of as much scrutiny, and it doesn't have things like SUID binaries that will turn a simple bug into a security problem. Apple needs to play catchup for a while.
-molo
Um, why is Quake out of the question again? These machines are plenty fast enough to play the original quake all though Quake3. If 3D rendering is a problem (binary module issue or licensing or something), try the original Quake1 NetQuake in software rendering mode.
-molo
LKP is basicly system call emulation like that which is available in FreeBSD. This has NOTHING to do with pure user-space number crunching required of crypto computations! This kind of test would only show the most eggregrarious scheduling or interrupt handler errors in providing the LKP functionality. This wouldn't (shouldn't?) even show up any compiler differences between UnixWare's cc and GCC since OpenSSL is heavily assembly optimzed on x86.
These numbers arn't even compared to running under a real Linux kernel, which would be the most logical course of action given the reviewer's incomplete understanding.
But regardless, with comments like the following, it becomes painfully obvious the reviewer knows little about this:
If anything, benchmarking system calls should have been done. Something along the lines of these tests.
The reviewer makes his bias very plain with passages such as:
This combined with the lack of objective and useful benchmarks makes this article little more than a piece of cheerleading propoganda.
-molo
The whole point of Gattaca was that these systems are not fool-proof. The main character was able to get around these systems with various tricks (urine replacement, blood sample pouches on the finger, etc.).
-molo
Doesn't work with my hardware. If I leave DMA on, it breaks. I have to specificly disable DMA with hdparm to be able to burn cds.
-molo
For those that don't know, there is a mplayer for debian apt source available. It includes all of the codecs, win32, quicktime, realplayer, etc. Best part is mplayer-plugin (works with Mozilla for sites that embed their videos in a webpage). Go here:
http://marillat.free.fr/
-molo
Normal usb-storage devices will work. The only issue is for ATAPI devices that have been using ide-scsi in the past. (cd-r drives, ide tape drives, ide zip drives, etc.)
-molo
ide-scsi is mainly used by cd-burning software such as cdrdao and cdrecord (and their frontends). This works fairly well in the 2.2 and 2.4 kernels. However, it does lack some serious functionality: DMA support. Not having DMA support for ide-scsi means that burning takes up a lot of cpu time and it is very easy to cpu-starve the cd-burning software resulting in a bad burn.
This might have never came up if ide-scsi was properly functioning.. but somewhere along the 2.5 series, it became mostly broken.
Linus's solution? Fix the ide-cd interface to pass ATAPI generic instructions (analogous to SCSI generic) and enable DMA for those devices. This requires userspace software changes in cdrecord and cdrdao's scsilib (they share that code). This enables you to run cdrecord --dev=/dev/hdc and have it work.
ide-scsi in 2.6 remains mostly broken. This is a problem for people who use ide-scsi for devices other than cd-r drives, such as zip drives or IDE tapes. A lot of zip drive and tape software was written only for scsi interfaces. ide-scsi lets people use their cheaper ide components with that software.
Where does this leave us?
1. the kernel should have supported burning to atapi devices directly a long time ago.
2. the cd-r software should certainly support burning to atapi devices now (cvs versions of cdrecord and cdrdao support this).
3. ide-scsi should be fixed, but NO ONE IS SENDING PATCHES.
4. ide-cd works for most people, but is not 100%. It doesn't work with my hardware (even for reading CDs). This makes me go back to 2.4 for CD burning.
What should be done?
1. if you use ide-scsi for things other than cd burning and you want to upgrade to 2.6, take a look at the driver and try to fix it. Submit a patch.
2. upgrade your cd-r software.
3. report ide-cd problems to Jens Axboe and the LKML.
Oh, and the author of cdrtools (cdrecord) just wants to talk SCSI to everything and not care what the device actually is. I'm not quite sure why.
Thats it. End of story. Try ide-cd. Drop ide-scsi.
-molo
The FSF Savannah server has been hacked. The statement indicates a similar attack vector as the exploit against the Debian systems. However, it had been hacked nearly a month ago and was not detected until December 1st. For those that are not familar with it, Savannah is the FSF version of Sourceforge, hosting both GNU and non-GNU Free Software projects. It has not yet been determined whether any of the projects' source code has been modified. Read the full statement for details. One thing is certain though, with Debian, Gentoo and now the FSF being exploited in the same month, the open source/free software community is clearly under attack.
I think a large portion of the nation's traffic could be served by a couple of high-speed rail lines. Boston-Washington, San Diego-Seattle, and maybe New York-Chicago.
Too bad Amtrak sucks.
The best feature of gnomemeeting is that it supports 1394 AV/C cameras (aka DV camcorders). That means you can plug in you standard firewire camcorder and use that as your webcam! This requires a recent (and maybe customized) build, but it works quite well.
-molo
You should try iptables/netfilter for your nat machine. There is a H.323 module available in the patch-o-matic.
t fi lter-extensions-HOWTO-5.html#ss5.3
http://www.netfilter.org/documentation/HOWTO/ne
-molo
I used to use Cyber Warrior back in the day (the company that does Rubies). They were an ISP located in Fair Lawn, NJ with a POP in Ridgewood that I used. I used to know the sysadmin there (Hi Rich) and even got to visit the facilities. This was back in 1995 or so, and they were running the ISP on a fractional T1.
They have been developing this game the whole time too. I was just happy to have a shell account and a dialup, and never tried the game. Unfortunately, they never made much progress with the game. They had a limited following and only like 4 people working on the game. One or two developers and a couple artists.
I kinda got the impression that they were going nowhere fast. After Rich left, it seems they went downhill quickly on the ISP side of things. I'm not sure about the game side.
-molo
For Debian, from /etc/apt/sources.list:
# Galeon 1.2 + Recent Mozilla built against gtk1.2
deb http://people.spacelabs.nl/~paul browser-gtk1.2/
deb-src http://people.spacelabs.nl/~paul browser-gtk1.2/
I have this running on my unstable system. I was holding out with Mozilla 1.2.1 until I found this. Good deal, thanks to the packager!
Sources are there, so you should be able to check out what configure options were used. Hope this helps.
-molo
> > God Bless America, with the worst crime levels in the first world
9 67 4.html
> Where even criminals have civil rights.
Unless they're "Illegal Combantants". Then we send them off without trial,
access to legal council, or without the ability to consult their embassies.
> > God Bless America, so happy to violate international law".
> When those laws are put together by the dictator's club called the UN, you
> bet. You know, the place that puts Syria and Libya on the "human rights
> committee"?
The Geneva Convention has nothing to do with Syria and Libya. However, I
agree, Syria should not advise anyone on human rights.
> > God Bless America, where "freedom of speech" means race-hate groups like KKK
> Where freedom of speech applies to EVERYBODY, even the ones with unpopular
> causes. Hint: popular causes don't NEED freedom of speech.
I agree here.
> > God Bless America, with barely 300 years of dire history and culture
> Hint: we're still on our first Republic. France is on their fifth, with
> intervening Reigns of Terror, anarchy, kings, emperors, and Nazi
> collaborationist regimes.
Actually, this is our second. Remember the Articles of
Confederation?
> > God Bless America, with the highest obesity levels in the developed world
> Where food is so cheap that even the poorest can (over)eat.
I wish that were true.
http://www.dispatch.com/news/newsfea00/apr00/24
> > God Bless America, wasting billions to attack foreign countries
> They're ours to "waste", Saddam-lover.
Well, actually, no. We're doing defecit spending to finance all of this. How
can you have a war and lower taxes at the same time? Prentend you don't have
to pay for it.
-molo
No other filesystem supports FileIDs for example.
How are FileIDs different than inodes then?
-molo
In California? Try DSL Extreme. I'm getting 1.5 Mbit downstream, 256 kbit upstream plus one static IP for $65/month. No blocked ports. Additional IPs available at $8/month. I'm running SMTP, DNS, HTTP.. no problems.
Routing is good, just a couple hops from major backbones. I often ping 100ms to the east coast.
No questions asked, they just provide the pipe. Works great, fast installation. I don't work for them or anything, I'm just a satisfied customer.
Pricing varies by local telco and region.
-molo
FreeVxFS
There's nothing magical about Veritas's implementation. Today we have FreeVxFS read-only support on Linux 2.4 and 2.6.
QuickIO is a hack, leaving some ugly metadata symlinks around on the filesystem.
-molo
Thanks for the advice.
-molo
Thanks for all the good info. I'll be looking into this. You are happy with the output of inkjet printers? What printing processes do you prefer from the labs?
Thanks again,
-molo
Hi, I'm an amateur. I don't have a lot of contact with pros, so I was wondering if you could tell us about how you print these digital shots? And how does it vary from the 4x6s to the 20x30s?
Thanks,
-molo
Quake 1 NetQuake (not quakeworld) was capped at 72 fps. Since QW, Q2 and up does client-side movement/prediction, this has been an issue on the client.
The thing that players need to worry about is MINIMUM FPS. During a firefight, there will be more elements to draw, and hence a longer render time. Having this drop below your framerate cap is a bad thing.
The issue with jumps being variable depending on ticrate has been a problem in Quake1 days too. In NetQuake, it was only the server ticrate which mattered. Today with client-side prediction, its the clients too.
This just makes me say to id: fix your damn physics model! Why should the jump distance be dependant on ticrate?! Some weird quantization errors you have there.
-molo
If telling someone that they can disable autorun via the shift key is fellonious, I want to see what these guys thing of the official Microsoft description of this feature. Go ahead, sue Microsoft too, I dare you.
= /library/en-us/shellcc/platform/Shell/programmersg uide/shell_basics/shell_basics_extending/autorun/a utoplay_reg.asp
http://msdn.microsoft.com/library/default.asp?url
-molo
Here is the snippet from the page http://www.donotcall.gov/ Note that the img tag is embedded in the noscript tag. That is, this img is only loaded in graphical browsers that don't use javascript. Since AT&T has the government contract to implement the DNC list, I don't think there's anything sinister going on here, they just want a count of the number of users that don't use/enable javascript.
/ njs.gif?dcsuri=/nojavascript">
-molo
<noscript>
<img BORDER="0" NAME="DCSIMG" WIDTH="1" HEIGHT="1" SRC="http://g6589dcs.nyc2.aens.net/DCS000003_6D4Q
</noscript>
When Q3A was in development, the ppl at iD issued a Q3Test package which was more of a technology test than a demo. It was meant to test rendering systems, drivers, etc. The gameplay was totally not an issue. The NPC bots didn't work. Multiplayer barely worked. It was also issued cross-platform, for Windows, Linux & MacOS.. each platform had a number of issues.
None of the problems stopped Q3A from being a commercial success across all of the above platforms. Indeed, I would think that the release of q3test actually helped the popularity of the game.
Just my 2 cents.
-molo