Alex, don't worry about the haters out there. They're just miffed that they couldn't pull off this very nice mix of social engineering and image hacking like you did.
I think what you did was great and I actually enjoyed it more now that I found out that it was a hoax.
Congrats and I hope you continue on to bigger and better tricks in the future.
Actually, in Le Guin's later books, Ged and Tenar do get married. Granted, that's not until they're very old and Ged has lost his powers. He becomes merely a side character to the stories.
Who says that you can't take it out of the office? There merely needs to be a system set up where you can "check out" the laptop for business trips. After x number of days, if the laptop is not back at the home office, it gets disabled.
So you spend time remapping keyboard keys while your computer is being hammered by a couple hundred viruses and worms? That's a bit dangerous if you ask me.
Personally, the first thing I do when installing a new OS is get any security patches installed. *Then* I deal with frivilous things like neutering the functionality of my keyboard.
***Finally, the presence of air bags everywhere all over the car frame is great, they can explode at random times.***
Yeah, I bought a new car recently with side impact airbags. I was driving down the interstate last week and *whammo* the passenger side airbag went off. Completely at random.
They should make those airbag things safe or something...
Yes, and they will smile, pat you on your head and let you know that they'll consider your suggestion while forgetting your name, face and anything about you at the same time.
Back in 1994 when he originally did this project, I don't think there were any 2.4 GHz Xeon processors around. In fact, I'm pretty darned sure of that.
Perhaps if you could tell us what kind of processing power you consumed for your research back in 1994 we'd be able to better compare which project is "peanuts" or not.
Airlock? I'd expect that the rest of the "tribe" would like to have a bit of fresh red meat on their dinner plates instead of the veggies that they've been having for the past 3 months.
He's on the side of EV1. The business world isn't about "the good guys" and "the bad guys" and which side you chose. It's about getting a product out the door that you can make money with.
No because the other servers aren't going to throw up their hands and say "I quit" just because they don't get that file. They're all very redundant and can operate without each other if they really have to.
Yeah, he sure is following the money, because there are no "ethical" people anymore. Every single person in the world is out for their piece of the pie and nothing else.
EOS
"end of sarcasm"
Has it occured to you that sometimes people do tell the truth and that on a rare occasion, a person will attempt to do something for the betterment of society?
At any rate, I challenge you to at least provide some circumstantial evidence to back up your claims.
I don't understand, you get an e-mail saying that they're gonna transfer your information unless you state otherwise, and then you complain that you weren't told about it. Did you get the e-mail or didn't you?
Well, for one thing, you don't mention if your theoretical company has signed the NDA and joined the BIND list or not. If so, that company would have their NDA revoked and probably be sued by whoever got hacked. If they didn't sign the NDA, then the problem is exactly the same as it is now.
I can't believe there are so many people on slashdot looking at this and thinking that Vixie wants this to be a panacea for all BIND security problems. Has Slashdot really gone downhill that much?
Let's look at some scenarios, shall we? First, we have Cracker A that cracks BIND and posts the exploit. Everybody that is using BIND scrambles to fix it and some boxes get broken into. Some of those boxes may be very important to the smooth operation of the Internet.
Second, we have Cracker B cracking djbdns and posts the exploit. Djbdns is probably fixed in the same amount of time BIND would be fixed and a few boxes get broken into. Same as above.
Next, we have the makers of djbdns finding a possible exploit in djbdns, he fixes it and posts the fix immediately to the public community. A cracker happens to be a bit faster than a sysadmin that is running djbdns at a TLD. That TLD is cracked and causes major problems. Same as above except the crackers didn't have advanced warning.
Finally, we have the ISC finding a bug in BIND. The bug is fixed. Root, TLD, and BIND developers are notified securely. They fix their versions of BIND. The flaw is released to the public and the crackers will be able to break into a few boxes, but none of the major root or TLD's. That is the difference here. A single break-in will not disrupt a large portion of the internet because of this. This is, of course, assuming that the TLD's will be vigilant about patching their dns servers.
So, you see, this is not supposed to be a cure-all for problems with BIND, it is simply supposed to help prevent large internet outages.
Wow, I didn't think anybody on slashdot would know so little about the history of computers.
Didn't you know that computers have been around since the early 40's? The first being Colossus. It's main purpose was to decypher German cryptography.
So, tell me why they wouldn't use computers for these sequences when 10 years previously computers had proven themselves usefull for cryptographical purposes?
Yes, PC-133 is here now and many chipsets support it. It costs very little more than PC-100 memory and does offer a performance increase. I really don't think that there is a future for PC-150 memory until after DDR RAM becomes more abundant. After DDR, upping the MHz will probably be the next speed trick. Unless, of course, you have a child to sell on the black market to buy some RDRAM. DDR memory is not here yet. It is supposed to be out the second half of this year. It would be great it it appeard at the same time as the Duron. More on that later.. The Durons will probably be your best bet given your description of your previous buying practices. As the article stated, the Durons will start at 600 MHz and go up to 700. Really, I would NOT buy a new mainboard/RAM/processor right now. There are going to be too many changes later on this year. I can tell you what I'm going to probably do though. Assuming that the Duron's are released on time, I will probably upgrade my home system in September to a 650 or 700 MHz Duron. Hopefully, by that time, DDR RAM will be available and I will get that as well. As for other variables... Well, there's always AGP 2x vs 4x, but that's a really stupid argument...
When they say that current Athlons do not have any integrated secondary cache, they mean that it does not have any L2 cache on die. Currently, all shipping Athlons have L2 cache situated next to the processor on the slot card thing (whatever they are called). The new Athlons (tbirds) and the Durons will have integrated L2 cache. This is the same as the Celery cpu's. Integrated L2 cache enables these processors to be put in cheaper socket form rather than the slotted form. Integrated L2 is also a heck of a lot faster in that it runs at the processor speed. Off-die L2 cache typically runs at 1/2 to 1/4 (and occasionally 1/5) the processors speed. FWIW, I agree that they should have used standard techie terms instead of primary, secondary, and integrated cache. Those terms mean different things to different people.
Didn't you read the article? It said that they couldn't use crash test dummies because they didn't know how much punishment a human body can take before it breaks or what not.
AMD has already made a chipset of their own, VIA is almost done with their chipset and there are 27 known mainboards that are in development or shipping now for the Athlon. Even if mainboard companies stop production of their Athlon mainboards, AMD has the capability to produce thier own mainboards.
Besides, Fab30 is online. I fully believe that AMD has the capability to start shipping a 1GHz.18 copper Athlon right now. They aren't because they realize that Intel is stumbling over themselves right now and AMD can afford to sit back and wait a while. In the meantime, Fab30 get's all the bugs worked out. However, AMD cannot afford to pull a Camino like Intel did.
At any rate, Intel, just like Microsoft, is not going away any time soon. They are still going to be a major player for a couple years to come at least, even though they are getting their butt kicked right now.
Slashdot Mirror
Alex, don't worry about the haters out there. They're just miffed that they couldn't pull off this very nice mix of social engineering and image hacking like you did.
I think what you did was great and I actually enjoyed it more now that I found out that it was a hoax.
Congrats and I hope you continue on to bigger and better tricks in the future.
Actually, in Le Guin's later books, Ged and Tenar do get married. Granted, that's not until they're very old and Ged has lost his powers. He becomes merely a side character to the stories.
Who says that you can't take it out of the office? There merely needs to be a system set up where you can "check out" the laptop for business trips. After x number of days, if the laptop is not back at the home office, it gets disabled.
So you spend time remapping keyboard keys while your computer is being hammered by a couple hundred viruses and worms? That's a bit dangerous if you ask me.
Personally, the first thing I do when installing a new OS is get any security patches installed. *Then* I deal with frivilous things like neutering the functionality of my keyboard.
***Finally, the presence of air bags everywhere all over the car frame is great, they can explode at random times.***
Yeah, I bought a new car recently with side impact airbags. I was driving down the interstate last week and *whammo* the passenger side airbag went off. Completely at random.
They should make those airbag things safe or something...
</sarcasm>
Yes, and they will smile, pat you on your head and let you know that they'll consider your suggestion while forgetting your name, face and anything about you at the same time.
Back in 1994 when he originally did this project, I don't think there were any 2.4 GHz Xeon processors around. In fact, I'm pretty darned sure of that.
Perhaps if you could tell us what kind of processing power you consumed for your research back in 1994 we'd be able to better compare which project is "peanuts" or not.
Airlock? I'd expect that the rest of the "tribe" would like to have a bit of fresh red meat on their dinner plates instead of the veggies that they've been having for the past 3 months.
He's on the side of EV1. The business world isn't about "the good guys" and "the bad guys" and which side you chose. It's about getting a product out the door that you can make money with.
That's nice. Too bad the FAA doesn't have any jurisdiction in Japan where this is being built.
I wonder what the charges are for a shredded paper that had printing on both sides of the paper.
That they'd rather put up money for shows like Tremors: The Series instead of Farscape. I mean.. it's Tremors for crying out loud!
No because the other servers aren't going to throw up their hands and say "I quit" just because they don't get that file. They're all very redundant and can operate without each other if they really have to.
I'm pretty sure they mean that UUNet handles about half of the net traffic in the world, not those two servers.
Imagine--instant corrections, no returns... it'd be great! Great, in the future we'll have books titled: The Great Gatsby, 3.2.18, RC2-SP3a/9-b
I love the HP Laserjet IIIsi that our office uses. Quite simply the best printer ever.
Yeah, he sure is following the money, because there are no "ethical" people anymore. Every single person in the world is out for their piece of the pie and nothing else.
EOS
"end of sarcasm"
Has it occured to you that sometimes people do tell the truth and that on a rare occasion, a person will attempt to do something for the betterment of society?
At any rate, I challenge you to at least provide some circumstantial evidence to back up your claims.
I don't understand, you get an e-mail saying that they're gonna transfer your information unless you state otherwise, and then you complain that you weren't told about it. Did you get the e-mail or didn't you?
Well, for one thing, you don't mention if your theoretical company has signed the NDA and joined the BIND list or not. If so, that company would have their NDA revoked and probably be sued by whoever got hacked. If they didn't sign the NDA, then the problem is exactly the same as it is now.
I can't believe there are so many people on slashdot looking at this and thinking that Vixie wants this to be a panacea for all BIND security problems. Has Slashdot really gone downhill that much?
Let's look at some scenarios, shall we? First, we have Cracker A that cracks BIND and posts the exploit. Everybody that is using BIND scrambles to fix it and some boxes get broken into. Some of those boxes may be very important to the smooth operation of the Internet.
Second, we have Cracker B cracking djbdns and posts the exploit. Djbdns is probably fixed in the same amount of time BIND would be fixed and a few boxes get broken into. Same as above.
Next, we have the makers of djbdns finding a possible exploit in djbdns, he fixes it and posts the fix immediately to the public community. A cracker happens to be a bit faster than a sysadmin that is running djbdns at a TLD. That TLD is cracked and causes major problems. Same as above except the crackers didn't have advanced warning.
Finally, we have the ISC finding a bug in BIND. The bug is fixed. Root, TLD, and BIND developers are notified securely. They fix their versions of BIND. The flaw is released to the public and the crackers will be able to break into a few boxes, but none of the major root or TLD's. That is the difference here. A single break-in will not disrupt a large portion of the internet because of this. This is, of course, assuming that the TLD's will be vigilant about patching their dns servers.
So, you see, this is not supposed to be a cure-all for problems with BIND, it is simply supposed to help prevent large internet outages.
Wow, I didn't think anybody on slashdot would know so little about the history of computers.
Didn't you know that computers have been around since the early 40's? The first being Colossus. It's main purpose was to decypher German cryptography.
So, tell me why they wouldn't use computers for these sequences when 10 years previously computers had proven themselves usefull for cryptographical purposes?
Yes, PC-133 is here now and many chipsets support it. It costs very little more than PC-100 memory and does offer a performance increase. I really don't think that there is a future for PC-150 memory until after DDR RAM becomes more abundant. After DDR, upping the MHz will probably be the next speed trick. Unless, of course, you have a child to sell on the black market to buy some RDRAM. DDR memory is not here yet. It is supposed to be out the second half of this year. It would be great it it appeard at the same time as the Duron. More on that later.. The Durons will probably be your best bet given your description of your previous buying practices. As the article stated, the Durons will start at 600 MHz and go up to 700. Really, I would NOT buy a new mainboard/RAM/processor right now. There are going to be too many changes later on this year. I can tell you what I'm going to probably do though. Assuming that the Duron's are released on time, I will probably upgrade my home system in September to a 650 or 700 MHz Duron. Hopefully, by that time, DDR RAM will be available and I will get that as well. As for other variables... Well, there's always AGP 2x vs 4x, but that's a really stupid argument...
When they say that current Athlons do not have any integrated secondary cache, they mean that it does not have any L2 cache on die. Currently, all shipping Athlons have L2 cache situated next to the processor on the slot card thing (whatever they are called). The new Athlons (tbirds) and the Durons will have integrated L2 cache. This is the same as the Celery cpu's. Integrated L2 cache enables these processors to be put in cheaper socket form rather than the slotted form. Integrated L2 is also a heck of a lot faster in that it runs at the processor speed. Off-die L2 cache typically runs at 1/2 to 1/4 (and occasionally 1/5) the processors speed. FWIW, I agree that they should have used standard techie terms instead of primary, secondary, and integrated cache. Those terms mean different things to different people.
Didn't you read the article? It said that they couldn't use crash test dummies because they didn't know how much punishment a human body can take before it breaks or what not.
AMD has already made a chipset of their own, VIA is almost done with their chipset and there are 27 known mainboards that are in development or shipping now for the Athlon. Even if mainboard companies stop production of their Athlon mainboards, AMD has the capability to produce thier own mainboards.
.18 copper Athlon right now. They aren't because they realize that Intel is stumbling over themselves right now and AMD can afford to sit back and wait a while. In the meantime, Fab30 get's all the bugs worked out. However, AMD cannot afford to pull a Camino like Intel did.
Besides, Fab30 is online. I fully believe that AMD has the capability to start shipping a 1GHz
At any rate, Intel, just like Microsoft, is not going away any time soon. They are still going to be a major player for a couple years to come at least, even though they are getting their butt kicked right now.
AMD is planning on releasing the Athlon for notebooks sometime next year.
The Register mentioned it in a piece recently here.