(i think the default is 5 failed attempts in 20 minutes)
Ubuntu server 10.04 LTS from April, 2010 has this default: AGE_RESET_VALID=5d
So 7200 minutes, not 20, in the case of my unmodified defaults.
So I think you're wrong about staying below the threshold of denyhosts. I've collected about 2400 IP addresses in/etc/hosts.deny since 2010. I suspect all of us that pay attention to log files and set up denyhosts back then have collected approximately the same set of 2400. Incidentally, about 50% of those IPs are Chinese, the last time I looked.
As for the article I had the same thought as the GP; this `problem' has been solved for a long, long time. His analysis of the attempt pattern is mildly interesting, but many of us defeated that stuff years ago.
I don't advise that anyone else do as we have done, however. If everyone starts reading log files and defending themselves the attackers will stop being simple minded and try harder.
At some point in the (hopefully) near future, better batteries with several times the energy content of Lithium-Ion will be commonplace. Then, one day, one of those batteries is going to spontaneously burst into a white hot fire inside an integral garage right underneath the four kids living upstairs.
They will burn to death and the world will know it. Downplaying things like this Tesla incident today will not work. It does not matter that gasoline powered cars burn people to death every day.
The argument must be that these things are not without risk, fires will happen, people will get killed in them and that this is the price of mobility.
Keep that in mind when your training has you outraged when someone uses exactly the same argument to rationalize something you oppose. Nuclear power, for example.
430 liters is about 2x 55 gallon drums. It's nothing. The level of radioactivity is also rather low; 200kBq is literally 200,000 decay events per liter. A 7' long granite counter top radiates over 100kBq into your food.
This is small and inconsequential. That it was even noticed is outstanding. The fact that the media has hysterical people like you in a lather is SOP.
Don't worry; the hype has had the intended effect; the idiots are convinced TEPCO is destroying the planet. Yurts and Hobby Farms Now!!!11 herp derp.
The fact that they're wasting resources to store water this clean is tragic. It should be pumped to the bottom of some ocean trench and the resources wasted storing it should be spent on useful work recovering the cores, spent fuel, etc. Instead, they're carpeting the area with water tanks in a monumentally stupid act of Nuclear Theater.
Actually, my favorite comments are at the right-wing rag Daily Caller. Every single comment thread devolves into one party accusing the other party of being closet democrats.
More relevant to the topic at hand is this story about the Global Warming hysteria spun from the latest IPCC report. Did you know that if all the heat "caused by" CO2 and retained by the oceans had "gone into the atmosphere" then air temperatures would be 212 degrees?
<blink> 212 DEGREES!!!!!!1</blink> herp derp
How can we expect our lay discourse on science to be anything other than a heinous cacophony when people are fed that crap all day?
Science ruins science. Science used to advance controversial agendas, exaggerated by partisans, unchallenged because the "scientists" are paid tools of the policy makers and have pissed away their credibility.
No. The green is clearly labeled "Less than 20". The yellow is 20-50 mSv / year, 50 being the annual limit for workers in the US.
There is a lot of red on the map.
Looks like about 15 sq. miles of red, unintended nature preserve, with >50 mSv/year. All the iodine-131 is long gone so that map is depicting cesium and strontium decay, which will persist for 300 years.
I really don't think there is hope. Ubuntu/Canonical/Shuttleworth have shown a level of stubbornness and indifference that I don't believe can be explained as a function of any rational thought process. Distrowatch, for what it's worth, has Ubuntu in the #3 spot behind Debian itself during the last six months. Mint is coming up on x2 Ubuntu's hits.
Ubuntu hasn't hit bottom yet. It is going to have to fall much further before these people get the message, apparently.
The best thing we can do is continue the ridicule. In the mean time Fedora works fine; there may be hope for Gnome 3 yet. OpenSuse does KDE justice. Mageia also provides a well sorted KDE experience. And the many boutique Linux distros continue to thrive as they always have.
That's what I thought when I read the summary. Water intakes have been getting plugged up with all sorts of schooling critters forever. I've read at least a dozen NRC reports about everything from seaweed to beaver dams interfering with power plants.
Our infrastructure just isn't as fragile as gullible office people seem to wish it were. Jellyfish aren't going to revert us to yurts and hobby farms anytime soon. Sorry.
hiding the cursor when it's over a text field that's being typed in
I just opened Dolphin, clicked on the location control to edit, leaving the mouse cursor over the control, and when I type the mouse cursor disappears. In Kate the mouse cursor vanishes when over the edit area while typing. Same behavior with the search control in the main menu.
allowing for pure alphabetical sorting in file dialogs (not by-inode-type, then alphabetical)
Open Kate, click File, Open; note that folders appear before non-folders. Click the wrench icon in the upper right, click "Sorting" and turn off the extremely useful "Folders First" feature; the file dialog will now sort "pure alphabetical."
Both of these have long-standing bug reports in KDE and are the kind of "little things" that drive people crazy
Someone should probably close those bug reports then; they're clearly both fixed.
Does anyone actually use it?
Yep. Also, some of us even update our systems to benefit from the ongoing and diligent work by KDE developers. That way we're not complaining about flaws from five years ago.
The under-the-table business-to-employee market is nothing compared to the $8.3 Quadrillion in unfunded pension liabilities. We'll need 221 Earths to pay that off.
but I can see how they are feeling a bit hard done by with all these accusations that they should have used subsequent products instead of the ones they wrote first.
The question one must ask at this point is why has Canonical's work on all these products not been widely accepted? They do all this work, create lots of stuff, and the rest of the world routes around it.
Are we all participants in some global anti-Canonical conspiracy? Are Linus and Kristian Høgsberg and Redhat and Gnome and github.com and the Mint guys and everyone else meeting every second Tuesday to plot the demise of Canonical?
Obviously not. What I believe we have here is an insular and unapproachable organization that independent contributors and peer organizations simply will not tolerate. Until that changes we're going to continue to see more Canonical work rejected.
By failing to engage its peers, Canonical is squandering its early success at nailing together a tolerable desktop rendition of Linux. I for one hope that changes, but Canonical has demonstrated a truly amazing level of stubbornness and indifference.
Yet no relevant data for scale to understand the shift.
There no point to such data. You can predict the consensus either way: either the event is within the expected annual fluctuation and the consensus AGW science is secure, or the event is an outlier, demonstrating the erratic consequences of AGW, demanding accelerated action.
There is no data that can possibly threaten AGW 'science', so be cool. There is nothing to worry about.
5 million dues-paying members. Better than 1.5% of the population of the US voluntarily buy an NRA membership. When you exclude organizations that have as their mandate establishing or protecting some government provided benefit there are damn few left with that level of direct citizen participation. To my mind that puts the NRA among the most legitimate pressure groups in existence.
This isn't some endowment funded outfit that claims to represent some part of the population. Millions pay to be counted. So the next time you feel that malcontent rage bubble up inside when your statist-in-chief fails to march the nation into the gun-free romper room, try to understand that they're facing people — large numbers of actual people — that think otherwise and put their names and their money behind their rights.
I think the GP did address the, erm... "points", which all amount to "it's bad, they're lying, it's getting much worse," etc.
This is BBC fear-mongering. There isn't one new substantiated fact in the whole story. Its 100% pure US Grade A hyperbole. That the hyperbole coincidentally aligns with the worldview of BBC anti-anything-bigger-than-a-hobby-farm readers doesn't make this story or the fact-free activists/experts they quote any more credible.
And Mycle Schneider is an activist. He isn't "something" of an activist. He is a die-hard professional anti-nook and has been so for decades.
You show me a bubble growing by 5-8-10% a year and I'll show you a mass of government involvement; subsidies, tax breaks, guaranteed debt, etc.
Housing bubble? Fannie, Freddie, Ginnie Mae, Home Mortgage Interest Deductions, capital gains exclusion, etc. When the music stopped the GSE's held $0.5E12 of subprime, alt-a, no-doc, stated income garbage loans. Government was the Market Maker.
Healthcare bubble? Medicaid, Medicare, VHA, CHIP, TRICARE, untaxed employer health care benefits, etc. Obamacare is going to subsidize tens of millions of exchange policies. 46% of all US health care spending is via government and the costs are spiraling out of control.
Education bubble? Pell grants, Sallie Mae's government backed tuition debt, huge state subsidies to public universities, Student Loan Interest Deduction, etc.
There is nothing "free market" about any of this. It's all government policy and government money.
Why wouldn't you just use/dev/urandom (or better,/dev/random) instead? More layers for more chances to fuck it up?
This is ignorant and needs to be called out.
/dev/(u)random draw on a finite entropy pool. The pool is easily depleted. When there is too little entropy/dev/random blocks on read(2), ruining performance, and/dev/urandom output is cryptographically compromised. From random(4):
The kernel random-number generator is designed to produce a small amount of high-quality seed material to seed a cryptographic pseudo-random number generator (CPRNG). It is designed for security, not speed, and is poorly suited to generating large amounts of random data. Users should be very economical in the amount of seed material that they read from/dev/urandom (and/dev/random); unnecessarily reading large quantities of data from this device will have a negative impact on other users of the device.
Initializing a CSPRNG such as SecureRandom is exactly the intended purpose of/dev/(u)random.
Cryptography does not belong in the hands of second string hacks like the parent AC. It is possible that/dev/(u)random is a bit too easily abused by fools.
This has the appearance of being planned by adults. Put a bow on Plasma and shift resources to the Qt 5 port, refactoring oversize bits and reducing interdependence.
At least it makes sense. Sometimes GUI/DE people fail to do that. Make sense, I mean.
The Russians have always been the best in the world at propaganda.
Nonsense. The triumph of pre-revolution, bolshevik/soviet and post-soviet Russia has been fear. The subjects generally do not believe the lies; they pretend they do to avoid notice. Outside Russia, the only people that believe the lies are leftists; academics, media people, statists, hate-filled malcontents, etc., lapping up what they are fed.
Good propaganda should be expected to influence more than just the terrorized and the retarded.
It's a drama about a HS chemistry teacher turned meth cook/dealer who discovers his true calling as a cunning and ambitious criminal. It's ok. It's presently a big fad among people that watch a lot of TV.
I've watched it and it's ok. It won't redefine Hollywood or anything but it's entertaining. Sometimes I think I'm watching Laurel & Hardy Make Meth. There are a number of gaping plot holes and implausibilities, but it's good enough to warrant the necessary suspension of disbelief.
Should you be ashamed? Only if you're spending the time equivalent watching porn or something.
Slashdot Mirror
(i think the default is 5 failed attempts in 20 minutes)
Ubuntu server 10.04 LTS from April, 2010 has this default:
AGE_RESET_VALID=5d
So 7200 minutes, not 20, in the case of my unmodified defaults.
So I think you're wrong about staying below the threshold of denyhosts. I've collected about 2400 IP addresses in /etc/hosts.deny since 2010. I suspect all of us that pay attention to log files and set up denyhosts back then have collected approximately the same set of 2400. Incidentally, about 50% of those IPs are Chinese, the last time I looked.
As for the article I had the same thought as the GP; this `problem' has been solved for a long, long time. His analysis of the attempt pattern is mildly interesting, but many of us defeated that stuff years ago.
I don't advise that anyone else do as we have done, however. If everyone starts reading log files and defending themselves the attackers will stop being simple minded and try harder.
CNN, NBC, CBS, ABC and the BBC all have big, front page pictures and caption for this story.
Do they have a throbbing AR-15 silhouette against a spattered blood background up yet?
all the other TEPCO blunders..
...are almost all the same sort of media hype designed to feed the prefered narrative of sheeple like you.
At some point in the (hopefully) near future, better batteries with several times the energy content of Lithium-Ion will be commonplace. Then, one day, one of those batteries is going to spontaneously burst into a white hot fire inside an integral garage right underneath the four kids living upstairs.
They will burn to death and the world will know it. Downplaying things like this Tesla incident today will not work. It does not matter that gasoline powered cars burn people to death every day.
The argument must be that these things are not without risk, fires will happen, people will get killed in them and that this is the price of mobility.
Keep that in mind when your training has you outraged when someone uses exactly the same argument to rationalize something you oppose. Nuclear power, for example.
Signed binaries running from a signed kernel, booted on UEFI Secure Boot hardware you can't legally compromise.
Alan Cox explained this 12 years ago.
That is the dream these people have.
scary
430 liters is about 2x 55 gallon drums. It's nothing. The level of radioactivity is also rather low; 200kBq is literally 200,000 decay events per liter. A 7' long granite counter top radiates over 100kBq into your food.
This is small and inconsequential. That it was even noticed is outstanding. The fact that the media has hysterical people like you in a lather is SOP.
Don't worry; the hype has had the intended effect; the idiots are convinced TEPCO is destroying the planet. Yurts and Hobby Farms Now!!!11 herp derp.
The fact that they're wasting resources to store water this clean is tragic. It should be pumped to the bottom of some ocean trench and the resources wasted storing it should be spent on useful work recovering the cores, spent fuel, etc. Instead, they're carpeting the area with water tanks in a monumentally stupid act of Nuclear Theater.
Actually, my favorite comments are at the right-wing rag Daily Caller. Every single comment thread devolves into one party accusing the other party of being closet democrats.
More relevant to the topic at hand is this story about the Global Warming hysteria spun from the latest IPCC report. Did you know that if all the heat "caused by" CO2 and retained by the oceans had "gone into the atmosphere" then air temperatures would be 212 degrees?
<blink> 212 DEGREES!!!!!!1</blink> herp derp
How can we expect our lay discourse on science to be anything other than a heinous cacophony when people are fed that crap all day?
Science ruins science. Science used to advance controversial agendas, exaggerated by partisans, unchallenged because the "scientists" are paid tools of the policy makers and have pissed away their credibility.
Green is 50
No. The green is clearly labeled "Less than 20". The yellow is 20-50 mSv / year, 50 being the annual limit for workers in the US.
There is a lot of red on the map.
Looks like about 15 sq. miles of red, unintended nature preserve, with >50 mSv/year. All the iodine-131 is long gone so that map is depicting cesium and strontium decay, which will persist for 300 years.
There's hope
I really don't think there is hope. Ubuntu/Canonical/Shuttleworth have shown a level of stubbornness and indifference that I don't believe can be explained as a function of any rational thought process. Distrowatch, for what it's worth, has Ubuntu in the #3 spot behind Debian itself during the last six months. Mint is coming up on x2 Ubuntu's hits.
Ubuntu hasn't hit bottom yet. It is going to have to fall much further before these people get the message, apparently.
The best thing we can do is continue the ridicule. In the mean time Fedora works fine; there may be hope for Gnome 3 yet. OpenSuse does KDE justice. Mageia also provides a well sorted KDE experience. And the many boutique Linux distros continue to thrive as they always have.
That's what I thought when I read the summary. Water intakes have been getting plugged up with all sorts of schooling critters forever. I've read at least a dozen NRC reports about everything from seaweed to beaver dams interfering with power plants.
Our infrastructure just isn't as fragile as gullible office people seem to wish it were. Jellyfish aren't going to revert us to yurts and hobby farms anytime soon. Sorry.
hiding the cursor when it's over a text field that's being typed in
I just opened Dolphin, clicked on the location control to edit, leaving the mouse cursor over the control, and when I type the mouse cursor disappears. In Kate the mouse cursor vanishes when over the edit area while typing. Same behavior with the search control in the main menu.
allowing for pure alphabetical sorting in file dialogs (not by-inode-type, then alphabetical)
Open Kate, click File, Open; note that folders appear before non-folders. Click the wrench icon in the upper right, click "Sorting" and turn off the extremely useful "Folders First" feature; the file dialog will now sort "pure alphabetical."
Both of these have long-standing bug reports in KDE and are the kind of "little things" that drive people crazy
Someone should probably close those bug reports then; they're clearly both fixed.
Does anyone actually use it?
Yep. Also, some of us even update our systems to benefit from the ongoing and diligent work by KDE developers. That way we're not complaining about flaws from five years ago.
Shoe stores? Please....
Terrestrial economics is so provincial. We need more exoeconomists to get a grip on alien finance.
The under-the-table business-to-employee market is nothing compared to the $8.3 Quadrillion in unfunded pension liabilities. We'll need 221 Earths to pay that off.
but I can see how they are feeling a bit hard done by with all these accusations that they should have used subsequent products instead of the ones they wrote first.
The question one must ask at this point is why has Canonical's work on all these products not been widely accepted? They do all this work, create lots of stuff, and the rest of the world routes around it.
Are we all participants in some global anti-Canonical conspiracy? Are Linus and Kristian Høgsberg and Redhat and Gnome and github.com and the Mint guys and everyone else meeting every second Tuesday to plot the demise of Canonical?
Obviously not. What I believe we have here is an insular and unapproachable organization that independent contributors and peer organizations simply will not tolerate. Until that changes we're going to continue to see more Canonical work rejected.
By failing to engage its peers, Canonical is squandering its early success at nailing together a tolerable desktop rendition of Linux. I for one hope that changes, but Canonical has demonstrated a truly amazing level of stubbornness and indifference.
Yet no relevant data for scale to understand the shift.
There no point to such data. You can predict the consensus either way: either the event is within the expected annual fluctuation and the consensus AGW science is secure, or the event is an outlier, demonstrating the erratic consequences of AGW, demanding accelerated action.
There is no data that can possibly threaten AGW 'science', so be cool. There is nothing to worry about.
...and I need to change my blinker fluid, lubricate my muffler bearings and put winter air in my tires before it gets cold.
5 million dues-paying members. Better than 1.5% of the population of the US voluntarily buy an NRA membership. When you exclude organizations that have as their mandate establishing or protecting some government provided benefit there are damn few left with that level of direct citizen participation. To my mind that puts the NRA among the most legitimate pressure groups in existence.
This isn't some endowment funded outfit that claims to represent some part of the population. Millions pay to be counted. So the next time you feel that malcontent rage bubble up inside when your statist-in-chief fails to march the nation into the gun-free romper room, try to understand that they're facing people — large numbers of actual people — that think otherwise and put their names and their money behind their rights.
If only we had planned ahead and fully funded waste disposal we might be able to do something about all of this.
Do you think that King would want his speech (of historical importance) locked up behind copyright?
King sued for copyright infringement of the speech in 1963. That's what got the whole copyright ball rolling.
So yeah, this is exactly what he wanted.
address the points he makes directly
I think the GP did address the, erm... "points", which all amount to "it's bad, they're lying, it's getting much worse," etc.
This is BBC fear-mongering. There isn't one new substantiated fact in the whole story. Its 100% pure US Grade A hyperbole. That the hyperbole coincidentally aligns with the worldview of BBC anti-anything-bigger-than-a-hobby-farm readers doesn't make this story or the fact-free activists/experts they quote any more credible.
And Mycle Schneider is an activist. He isn't "something" of an activist. He is a die-hard professional anti-nook and has been so for decades.
"It's teh free marketz!!! herp!"
You show me a bubble growing by 5-8-10% a year and I'll show you a mass of government involvement; subsidies, tax breaks, guaranteed debt, etc.
Housing bubble? Fannie, Freddie, Ginnie Mae, Home Mortgage Interest Deductions, capital gains exclusion, etc. When the music stopped the GSE's held $0.5E12 of subprime, alt-a, no-doc, stated income garbage loans. Government was the Market Maker.
Healthcare bubble? Medicaid, Medicare, VHA, CHIP, TRICARE, untaxed employer health care benefits, etc. Obamacare is going to subsidize tens of millions of exchange policies. 46% of all US health care spending is via government and the costs are spiraling out of control.
Education bubble? Pell grants, Sallie Mae's government backed tuition debt, huge state subsidies to public universities, Student Loan Interest Deduction, etc.
There is nothing "free market" about any of this. It's all government policy and government money.
Why wouldn't you just use /dev/urandom (or better, /dev/random) instead? More layers for more chances to fuck it up?
This is ignorant and needs to be called out.
/dev/(u)random draw on a finite entropy pool. The pool is easily depleted. When there is too little entropy /dev/random blocks on read(2), ruining performance, and /dev/urandom output is cryptographically compromised. From random(4):
The kernel random-number generator is designed to produce a small amount of high-quality seed material to seed a cryptographic pseudo-random number generator (CPRNG). It is designed for security, not speed, and is poorly suited to generating large amounts of random data. Users should be very economical in the amount of seed material that they read from /dev/urandom (and /dev/random); unnecessarily reading large quantities of data from this device will have a negative impact on other users of the device.
Initializing a CSPRNG such as SecureRandom is exactly the intended purpose of /dev/(u)random.
Cryptography does not belong in the hands of second string hacks like the parent AC. It is possible that /dev/(u)random is a bit too easily abused by fools.
This has the appearance of being planned by adults. Put a bow on Plasma and shift resources to the Qt 5 port, refactoring oversize bits and reducing interdependence.
At least it makes sense. Sometimes GUI/DE people fail to do that. Make sense, I mean.
The Russians have always been the best in the world at propaganda.
Nonsense. The triumph of pre-revolution, bolshevik/soviet and post-soviet Russia has been fear. The subjects generally do not believe the lies; they pretend they do to avoid notice. Outside Russia, the only people that believe the lies are leftists; academics, media people, statists, hate-filled malcontents, etc., lapping up what they are fed.
Good propaganda should be expected to influence more than just the terrorized and the retarded.
It's a drama about a HS chemistry teacher turned meth cook/dealer who discovers his true calling as a cunning and ambitious criminal. It's ok. It's presently a big fad among people that watch a lot of TV.
I've watched it and it's ok. It won't redefine Hollywood or anything but it's entertaining. Sometimes I think I'm watching Laurel & Hardy Make Meth. There are a number of gaping plot holes and implausibilities, but it's good enough to warrant the necessary suspension of disbelief.
Should you be ashamed? Only if you're spending the time equivalent watching porn or something.