Digital Security - What do You Think?

Similar Messages

• Oracle Security : what do you think about the following policy violation ?

  If you install OEM10, you will be able to see if you violate some security guidelines :
  Interresting is revoking UTL_FILE from public, which is critical. Also revoke UTL_TCP and UTL_SMTP. This is going to upset an expert I know...
  Take care about the failed login attempts. If you set it to 10 to the default profile, and if your DBSNMP password is NOT the default password, then Oracle will lock your account after node discovery!
  In Solaris, you can disable execution of the user stack with the system parameters set noexec_user_stack=1
  set noexec_user_stack_log=1. I did not find how to do it on AIX. However, those settings may have side effects.
  About the ports, it complains about open ports, even if this is the port oracle listener is using! Simply ignore most of the violations there.
  About JAccelerator (NCOMP), it is located on the "companion" CD.
  Ok, Waiting for your feedback
  Regards
  Laurent
  [High]      Critical Patch Advisories for Oracle Homes     Configuration     Host     Checks Oracle Homes for missing critical patches          
  [High]      Insufficient Number of Control Files     Configuration     Database     Checks for use of a single control file          
  [High]      Open ports     Security     Host     Check for open ports          
  [High]      Remote OS role     Security     Database     Check for insecure authentication of remote users (remote OS role)          
  [High]      EXECUTE UTL_FILE privileges to PUBLIC     Security     Database     Test for PUBLIC having EXECUTE privilege on the UTIL_FILE package          
  [High]      Listener direct administration     Security     Listener     Ensure that listeners cannot be administered directly          
  [High]      Remote OS authentication     Security     Database     Check for insecure authentication of remote users (remote OS authentication)          
  [High]      Listener password     Security     Listener     Test for password-protected listeners          
  [High]      HTTP Server Access Logging     Security     HTTP Server     Check that HTTP Server access logging is enabled          
  [High]      Web Cache Access Logging     Security     Web Cache     Check that Web Cache access logging is enabled          
  [High]      Web Cache Dummy wallet     Security     Web Cache     Check that dummy wallet is not used for production SSL load.          
  [High]      HTTP Server Dummy wallet     Security     HTTP Server     Check that dummy wallet is not used for production SSL load.          
  [High]      Web Cache owner and setuid bit'     Security     Web Cache     Check that webcached binary is not owned by root and setuid is not set          
  [High]      HTTP Server Owner and setuid bit     Security     HTTP Server     Check the httpd binary is not owned by root and setuid bit is not set.          
  [High]      HTTP Server Directory Indexing     Security     HTTP Server     Check that Directory Indexing is disabled on this HTTP Server          
  [High]      Insufficient Redo Log Size     Storage     Database     Checks for redo log files less than 1 Mb          
  [Medium]      Insufficient Number of Redo Logs     Configuration     Database     Checks for use of less than three redo logs          
  [Medium]      Invalid Objects     Objects     Database     Checks for invalid objects          
  [Medium]      Insecure services     Security     Host     Check for insecure services          
  [Medium]      DBSNMP privileges     Security     Database     Check that DBSNMP account has sufficient privileges to conduct all security tests          
  [Medium]      Remote password file     Security     Database     Check for insecure authentication of remote users (remote password file)          
  [Medium]      Default passwords     Security     Database     Test for known accounts having default passwords          
  [Medium]      Unlimited login attempts     Security     Database     Check for limits on the number of failed logging attempts          
  [Medium]      Web Cache Writable files     Security     Web Cache     Check that there are no group or world writable files in the Document Root directory.          
  [Medium]      HTTP Server Writable files     Security     HTTP Server     Check that there are no group or world writable files in the Document Root directory          
  [Medium]      Excessive PUBLIC EXECUTE privileges     Security     Database     Check for PUBLIC having EXECUTE privileges on powerful packages          
  [Medium]      SYSTEM privileges to PUBLIC     Security     Database     Check for SYSTEM privileges granted to PUBLIC          
  [Medium]      Well-known accounts     Security     Database     Test for accessibility of well-known accounts          
  [Medium]      Execute Stack     Security     Host     Check for OS config parameter which enables execution of code on the user stack          
  [Medium]      Use of Unlimited Autoextension     Storage     Database     Checks for tablespaces with at least one datafile whose size is unlimited          
  [Informational]      Force Logging Disabled     Configuration     Database     When Data Guard Broker is being used, checks primary database for disabled force logging          
  [Informational]      Not Using Spfile     Configuration     Database     Checks for spfile not being used          
  [Informational]      Use of Non-Standard Initialization Parameters     Configuration     Database     Checks for use of non-standard initialization parameters          
  [Informational]      Flash Recovery Area Location Not Set     Configuration     Database     Checks for flash recovery area not set          
  [Informational]      Installation of JAccelerator (NCOMP)     Installation     Database     Checks for installation of JAccelerator (NCOMP) that improves Java Virtual Machine performance by running natively compiled (NCOMP) classes          
  [Informational]      Listener logging status     Security     Listener     Test for logging status of listener instances          
  [Informational]      Non-uniform Default Extent Size     Storage     Database     Checks for tablespaces with non-uniform default extent size          
  [Informational]      Not Using Undo Space Management     Storage     Database     Checks for undo space management not being used          
  [Informational]      Users with Permanent Tablespace as Temporary Tablespace     Storage     Database     Checks for users using a permanent tablespace as the temporary tablespace          
  [Informational]      Rollback in SYSTEM Tablespace     Storage     Database     Checks for rollback segments in SYSTEM tablespace          
  [Informational]      Non-System Data Segments in System Tablespaces     Storage     Database     Checks for data segments owned by non-system users located in tablespaces SYSTEM and SYSAUX          
  [Informational]      Users with System Tablespace as Default Tablespace     Storage     Database     Checks for non-system users using SYSTEM or SYSAUX as the default tablespace          
  [Informational]      Dictionary Managed Tablespaces     Storage     Database     Checks for dictionary managed tablespaces (other than SYSTEM and SYSAUX)          
  [Informational]      Tablespaces Containing Rollback and Data Segments     Storage     Database     Checks for tablespaces containing both rollback (other than SYSTEM) and data segments          
  [Informational]      Segments with Extent Growth Policy Violation     Storage     Database     Checks for segments in dictionary managed tablespaces (other than SYSTEM and SYSAUX) having irregular extent sizes and/or non-zero Percent Increase settings

  Interresting is revoking UTL_FILE from public, which is critical. Also revoke UTL_TCP and UTL_SMTP. This is going to upset an expert I know...Okay, as this is (I think) aimed at me, I'll fall for it ;)
  What is the point of revoking UTL_FILE from PUBLIC? Yes I know what you think the point is, but without rights on an Oracle DIRECTORY being able to execute UTL_FILE is useless. Unless of course you're still using the init.ora parameter
  UTL_FILE_DIR=*which I sincerely hope you're not.
  As for UTL_SMTP and UTL_TCP, I think whether a program is allowed to send e-mail to a given SMTP server is really in the remit of the e-mail adminstrator rather than the DBA.
  Look, DBAs are kings of their realm and can set their own rules. The rest of us have to live with them. A couple of years ago I worked a project where I was not allowed access to the USER_DUMP_DEST directory. So every time I generated a TRC file I had to phone up the DBA and a couple of hours later I got an e-mail with an attachment. Secure yes, but not very productive when I was trying to debug a Row Level Security implementation.
  I have worked on both sides of the DBA/Developer fence and I understand both sides of the argument. I think it is important for developers to document all the privileges necessary to make their app run. Maybe you don't have a better way of doing that than revoking privileges from PUBLIC. Or maybe you just want to generate additional communication with developers. That's fine. I know sometimes even DBAs get lonely.
  Cheers, APC

• Adobe, what do you think about that ?

  - one day I was demoing DPS to 35 people in Paris. The whole day the servers were barely accessible. For the reputation and reliability of DPS that was wonderful.
  - another day I was doing a little DPS demo for Adobe. Again the same problem.
  - another day, the demo was ruined because the servers were so slow.
  - this Monday morning, I open my iPad and I can see my latest Folio in ACV.
  In the afternoon I join Adobe reps and partners and other VIPs in London for the launch of CS6. There I go with my iPad and what a surprise when I want to show the Folio to an Adobe representative ?
  Despite being signed in, all my folios where archived and all in Download state. I could not access a WiFi and even if I could I think that downloading 500 Mb would be impossible.
  Many people where asking me :
  —"And are you teaching DPS ?"
  – I said "Yes, I'm even working on it for real projects."
  — "Do you have one to show us ?"
  – "No, because Adobe's software, for a reason that I don't understand, deleted all my folios a few moments ago and I would have to redownload them again. ACV sucks".
  People to who I have talked to where Adobe people, chiefs of graphic studios (newspaper, agency,...), potential clients for DPS,...
  There was even of Adobe person that told me : "We are receiving a lot of complaints about the technical model of DPS, and you're right, it's terrible".
  There are so many problems with this app and with the servers.
  DPS's reputation will may be better when one day we just play offline with the folios like a PDF in GoodReader for instance.
  DPS is exploding my bandwidth.

  Peter, that is sad. If a publisher decides to pull the issue from the
  server, that's like burning down their own library of things.
  Apple wanted adobe to stop downloading such large data into the storage
  that will be backed up. So issues now go into the cache, that will not be
  uploaded to the Icloud storage.
  Because you buy a 64gb iPad, but get only 2Gb of online storage.
  —Johannes
  (mobil gesendet)
  Am 26.04.2012 18:35 schrieb "Peter Villevoye" <[email protected]>:
     Re: Adobe, what do you think about that ?  created by Peter Villevoye<http://forums.adobe.com/people/Peter+Villevoye>in
  Digital Publishing Suite - View the full discussion<http://forums.adobe.com/message/4363125#4363125

• Hi! i have a macbook pro 3.1 with a 10.6.8 version. I want a 10.7 but i dont want any speed problems, what do you think?

  Hi! i have a macbook pro 3.1 with core 2 duo, 3gb ram and a 10.6.8 version. I want a 10.7 version but i dont want any speed problems, what do you think?

  Some MacBook Pro versions cannot be upgraded past 10.6.8; others are maxed out at 10.7.5. newer models can go all the way to 10.10. So it is important to know exactly what version you have--there may be close to 40 variants produced since the MB made its debut in 2006.
  You can safely give us a snapshot of your model and its current config that will allow us to deternmmine your model and its upgrade potential, plus show it you have any software that may impede any upgrades. Please download and install this free utility:
  http://www.etresoft.com/etrecheck
  It is secure and written by one of our most valued members to allow users to show details of their computer's configuration in Apple Support Communities without revealing any sensitive personal data.
  Run the program and click the "Copy report to clipboard" button when it displays the results. Then return here and paste the report into a response to your initial post. It can often show if any harmful files/programs are dragging down your performance.
  Remember that, on leaving OS10.6.8, you lose the ability to run older softare written for older PowerPC Macs (yours in Intel-based). Programs such as Office 2004 will no longer work (min of Office 2008 needed to work on newer OS versions), and AppleWorks will stop working completely

• Another account user is using my apple id as their rescue email. Apple know this but expect me to contact him directly rather that let lim know his error. Seem strange and a recipe for conflict. What do you think?

  Another apple account user has put my apple id as their rescue email. Apple know this but expect me to contact him directly rather that let lim know his error. Seem strange and a recipe for conflict. What do you think?

  Primary and alternate email addresses need to be verified but a rescue email address doesn't, it can be added to an account and used without being verified (you will get a verify button when adding/changing it, but the system doesn't force it to be verified). I would hope that the person using the email address as their rescue email address will notice that they aren't getting reset emails and that after contacting Support to get their security questions / password reset he/she will check what they've set it to and change it. The OP won't be able to log into the other account as he/she won't know its primary or alternate ids.

• Did you know that Verizonwireless is saving your checking account information when you pay your bill by check and then making it part of your "MyVerizon"? This means of course if they get hacked that information could be compromised. What do you think of

  Did you know that Verizonwireless is saving your checking account information when you pay your bill by check and then making it part of your "MyVerizon"  without you adding it? This means of course if they get hacked that information could be compromised. What do you think of this?

  Credit card and debit card and checking and savings information is encrypted so it is possible to be hacked, but the odds are greater to get hit by the Love Boat then to have a wide scale hack.
  Oh yes they do happen, Bank of America, Chase, Citibank, Target and quite a few others. But in all the years I have paid my invoice with saved card information I never been hacked.
  You use good passwords and the risk is minimal.
  Good Luck

• What do you think of my Bash Script? What about the error checking?

  Well what do you think of this Bash script
  It works
  I gave it some problems (i.e. unpluged the ethernet, messed up the URL's, uninstaled some programs...) to see if would report errors and stop or just keep going... But it did
  I just kind of thought up a way to do some error checking with the commands that I know.....
  What is a better way to do error checking?
  What do you think I should add/Do to this script?
  #!/bin/bash
  # Shell script to make a USB Tumb Drive for Flashing BIOS on a Lenovo Ideapad Y510.
  # This script needs to be owned and run as ROOT with the "sudo command"
  # i.e. sudo usbbiosflasher
  # If you have anyideas send me a PM on ubuntufourms.org my user name is HunterThomson
  # Name/Rename this script usbbiosflasher and save it to the ~/home directory.
  # Then run the command- chown root:root usbbiosflasher
  # Then run the command- chmod 755 usbbiosflasher
  # Then copy the script to the directory /usr/bin.
  # Run this comand to do that- sudo cp ~/usbbiosflasher /usr/bin
  # You also must have the program "mbr" installed
  # You can install the mbr program by running this comand in the shell on Ubuntu
  # sudo apt-get install mbr
  # In Arch Linux you have to get it from Aur
  # First you will need to know a few things...
  # You will also need to know the Mount Point i.e. /media/disk and the /dev path i.e. /dev/sdb1.
  # You can find these by using the df -T comand.
  # Run df -T in the shell. Then plug in the USB Thumb Drive and run the df -T comand agin.
  # The new listing is the USB Thumb Dirve.
  # Also check to make sure the File System tipe is vFAT or FAT16 or FAT32.
  # If it is not use gparted to format it to FAT32.
  # I am farly certen that all USB Thumb drives come formated with FAT file system out of the BOX.
  # You may want to fromat it anyway just to make sure.
  echo "Interactive Shell Script to Make a USB Thumb Drive \for Flashing BIOS On a Lenovo Ideapad Y510"
  echo ""
  echo "You will need to have the program mbr installed"
  echo "If you are on Ubuntu Linux you can retreve it form the repositories"
  echo "If you are on Arch Linux you will need to get it from the Aur repository"
  echo "Open anuther shell and \do that now..."
  echo ""
  verify="n"
  while [ "$verify" != y ]
  do
  printf "Do you have mbr installed... yes or no?"
  read AN1
  echo ""
  printf "You answered... $AN1 I have installed mbr. Is this correct... y or n?"
  read verify
  done
  echo ""
  if [ "$AN1" == "no" ]
  then
  echo "Install mbr now. Then run this script agin"
  exit
  else
  echo "contunuing script"
  fi
  echo ""
  # The next comand will make a directory to put needed files into. Note this file and everything init will be owned by root.
  mkdir ~/usbbiosfiles && check1="yes"
  if [ "$check1" = "yes" ]
  then
  echo "Made directory usbbiosfiles... OK"
  else
  echo "Could not \make directory usbbiosfiles"
  echo "look above \for \info"
  echo "Fix the problem and run this scrip agin"
  exit
  fi
  # The next two comands will get the FreeDOS file and the .ROM file.
  cd ~/usbbiosfiles && checka="yes"
  if [ "$checka" = "yes" ]
  then
  echo "Changing to the usbbiosfiles directory... OK"
  else
  echo "Could not Change to the usbbiosfiles directory"
  echo "look above \for \info"
  echo "Fix the problem and run this scrip agin"
  echo ""
  echo "removeing directory usbbiosfiles..."
  echo ""
  rm -r ~/usbbiosfiles
  exit
  fi
  wget "http://www.fdos.org/bootdisks/autogen/FDOEM.144.gz" && check2="yes"
  if [ "$check2" = "yes" ]
  then
  echo "Download of FreeDOS... OK"
  else
  echo "Could not Download FreeDOS"
  echo "look above \for \info"
  echo "Fix the problem and run this scrip agin"
  echo ""
  echo "removeing directory usbbiosfiles..."
  echo ""
  rm -r ~/usbbiosfiles
  exit
  fi
  wget "http://ubuntuforums.org/attachment.php?attachmentid=78460&d=1216648756" && check3="yes"
  if [ "$check3" = "yes" ]
  then
  echo "Download of the BIOS.ROM \file... OK"
  else
  echo "Could not Downlad the BIOS.ROM \file"
  echo "look above \for \info"
  echo "Fix the problem and run this scrip agin"
  echo ""
  echo "removeing directory usbbiosfiles..."
  echo ""
  rm -r ~/usbbiosfiles
  exit
  fi
  # The next comand will name the .ROM file to the right name.
  mv ~/usbbiosfiles/attachment.php?attachmentid=78460\&d=1216648756 ~/usbbiosfiles/06CN29WW.bios.update.tar.bz2 && check4="yes"
  if [ "$check4" = "yes" ]
  then
  echo "Renameing of the BIOS.ROM \file... OK"
  else
  echo "Could not rename the BIOS.ROM \file"
  echo "look above \for \info"
  echo "Fix the problem and run this scrip agin"
  echo ""
  echo "removeing directory usbbiosfiles..."
  echo ""
  rm -r ~/usbbiosfiles
  exit
  fi
  echo ""
  # The next two comands set the variables. DEVX for the path i.e. /dev/xxx and MOUNTX for the mount point i.e. /media/xxx
  verify="n"
  while [ "$verify" != y ]
  do
  echo "You will need to know the Mount Point and the dev Path. You will also need to \make sure the File System \type is vFAT, FAT16 or FAT32."
  echo ""
  echo "With the USB Thumb Drive unpluged, Open another shell and run the comand df -T Then plug \in the USB Thumb Drive and run the comand df -T one \more time. The new device listed is the USB Thumb Drive. Note the Mount Point and The dev Path and the File system Type i.e. vFAT... If the File System \type is not vFAT, FAT16 or FAT32 you will need to fromat it with gparted. You may want to format the USB Thumb Drive anyway just to \make sure. In any \case delete all files and directorys on the USB drive before you go any ferther with this program."
  echo ""
  printf "Enter the dev path the USB Thumb Drive is at?"
  read DEVX
  echo ""
  echo "Are you sure $DEVX is the dev path of the USB Thumb Drive... y or n?"
  read verify
  done
  echo ""
  verify="n"
  while [ "$verify" != y ]
  do
  printf "What is the Mount Point of the USB Thumb Drive?"
  read MOUNTX
  echo ""
  echo "Are you sure $MOUNTX is the Mount Point of the USB Drive... y or n?"
  read verify
  done
  echo ""
  install-mbr --enable A1 --partition 1 --force --timeout 0 $DEVX && check5="yes"
  if [ "$check5" = "yes" ]
  then
  echo "Installing MBR on USB Thumb Dirve... OK"
  else
  echo "Could not install MBR on USB Thumb Drive"
  echo "look above \for \info"
  echo "Fix the problem and run this scrip agin"
  echo ""
  echo "removeing directory usbbiosfiles..."
  echo ""
  rm -r ~/usbbiosfiles
  exit
  fi
  tar xjf ~/usbbiosfiles/*.tar.bz2 && check7="yes"
  if [ "$check7" = "yes" ]
  then
  echo "Unpacking BIOS.ROM file... OK"
  else
  echo "Could not unpack BIOS.ROM file"
  echo "look above \for \info"
  echo ""
  echo "Reformat the USB Stick to FAT32 with gparted"
  echo "Fix the problem and run this scrip agin"
  echo ""
  echo "removeing directory usbbiosfiles..."
  echo ""
  rm -r ~/usbbiosfiles
  exit
  fi
  gunzip ~/usbbiosfiles/FDOEM.144.gz && check8="yes"
  if [ "$check8" = "yes" ]
  then
  echo "Unpacking FreeDOS files... OK"
  else
  echo "Could not unpack FreeDOS files"
  echo "look above \for \info"
  echo ""
  echo "Reformat the USB Stick to FAT32 with gparted"
  echo "Fix the problem and run this scrip agin"
  echo ""
  echo "removeing directory usbbiosfiles..."
  echo ""
  rm -r ~/usbbiosfiles
  exit
  fi
  mkdir ~/usbbiosfiles/fdoem144 && check9="yes"
  if [ "$check9" = "yes" ]
  then
  echo "Made directory fdoem144 in direcoty usbbiosfiles... OK"
  echo ""
  echo "Going to \sleep \for 5secs"
  else
  echo "Could not make directory fdoem144 in usbbiosfiles directory"
  echo "look above \for \info"
  echo ""
  echo "Reformat the USB Stick to FAT32 with gparted"
  echo "Fix the problem and run this scrip agin"
  echo ""
  echo "removeing directory usbbiosfiles..."
  echo ""
  rm -r ~/usbbiosfiles
  exit
  fi
  modprobe loop && sleep 5 && check0="yes"
  if [ "$check0" = "yes" ]
  then
  echo "Modprobeing loop... OK"
  else
  echo "Could not \modprobe loop"
  echo "look above \for \info"
  echo ""
  echo "Reformat the USB Stick to FAT32 with gparted"
  echo "Fix the problem and run this scrip agin"
  echo ""
  echo "removeing directory usbbiosfiles..."
  echo ""
  rm -r ~/usbbiosfiles
  exit
  fi
  mount -o loop ~/usbbiosfiles/FDOEM.144 ~/usbbiosfiles/fdoem144 && check10="yes"
  if [ "$check10" = "yes" ]
  then
  echo "Mounting FreeDOS on the fdoem144 directory... OK"
  else
  echo "Could not \mount FreeDOS on the fdoem144 directory"
  echo "look above \for \info"
  echo ""
  echo "Reformat the USB Stick to FAT32 with gparted"
  echo "Fix the problem and run this scrip agin"
  echo ""
  echo "removeing directory usbbiosfiles..."
  echo ""
  rm -r ~/usbbiosfiles
  exit
  fi
  cp ~/usbbiosfiles/fdoem144/* $MOUNTX && check11="yes"
  if [ "$check11" = "yes" ]
  then
  echo "Copying FreeDOS files to $MOUNTX... OK"
  else
  echo "Could not copy FreeDOS files to $MOUNTX"
  echo "look above \for \info"
  echo ""
  echo "Reformat the USB Stick to FAT32 with gparted"
  echo "Fix the problem and run this scrip agin"
  echo ""
  echo "removeing directory usbbiosfiles..."
  echo ""
  rm -r ~/usbbiosfiles
  exit
  fi
  cp ~/usbbiosfiles/*.ROM $MOUNTX && check12="yes"
  if [ "$check12" = "yes" ]
  then
  echo "Copying BIOS.ROM files to $MOUNTX... OK"
  else
  echo "Could not copy BIOS.ROM files to $MOUNTX"
  echo "look above \for \info"
  echo ""
  echo "Reformat the USB Stick to FAT32 with gparted"
  echo "Fix the problem and run this scrip agin"
  echo ""
  echo "removeing directory usbbiosfiles..."
  echo ""
  rm -r ~/usbbiosfiles
  exit
  fi
  sync && check13="yes"
  if [ "$check13" = "yes" ]
  then
  echo "Runing the syncing command... OK"
  else
  echo "Could not run the syncing command"
  echo "look above \for \info"
  echo ""
  echo "Reformat the USB Stick to FAT32 with gparted"
  echo "Fix the problem and run this scrip agin"
  echo ""
  echo "removeing directory usbbiosfiles..."
  echo ""
  rm -r ~/usbbiosfiles
  exit
  fi
  umount ~/usbbiosfiles/fdoem144 && check14="yes"
  if [ "$check14" = "yes" ]
  then
  echo "Unmounting of FreeDOS... OK"
  else
  echo "Could not unmount FreeDOS"
  echo "Look above for errors or problems reported and fix the problem"
  echo ""
  echo "removeing directory usbbiosfiles..."
  echo ""
  echo "Reformat the USB Stick to FAT32 with gparted"
  echo "Fix the problem and run this script agin"
  rm -r ~/usbbiosfiles
  exit
  fi
  verify="n"
  while [ "$verify" != y ]
  do
  printf "Do you see any errors... yes or no?"
  read AN2
  echo ""
  printf "You answered... $AN2 to errors. Is this correct... y or n?"
  read verify
  done
  echo ""
  if [ "$AN2" == "yes" ]
  then
  echo "User Repoted... Error"
  echo "Look above for errors or problems reported and fix the problem"
  echo ""
  echo "removeing directory usbbiosfiles..."
  echo ""
  echo "Reformat the USB Stick to FAT32 with gparted"
  echo "Fix the problem and run this script agin"
  rm -r ~/usbbiosfiles
  exit
  else
  echo "Success"
  echo "I did a lot of error checking too and didnt find anything"
  echo ""
  echo "Go get a pen and paper to write down these instructions"
  printf "Then hit the Enter to continue"
  read WAIT
  echo ""
  echo "Now leave the USB Thumb Drive pluged into your computer and Reboot. When the Lenovo Logo POST screen appears hit F2 to enter the CMOS setup utility. Go over to BOOT tab and go down to HardDrive \(Not Boot Order) \then \select the USB Thumb Drive as the 1st hard drve. Then F10 and yes to save changes. Your compter will reboot agin. Then when the Lenovo Logo POST Screen appers on reboot hit F4 to enter the BIOS FLASHING program. The USB Thumb Drive will be seen as the C drive \in the list on the Left, Select it. Then \select the .ROM \file \in the list on the Right and start the BIOS FLASH. \(NOTE Your hart may stop beating... This is normal) Pray to any God you know of and your computer should restart just like normal. Hit F2 and the BIOS will now stay it is 06CN29WW. You will need to \set the boot order to the way you like it and other things \if you need to because they have been changed to the default."
  fi
  echo ""
  echo "End of script"
  Last edited by hunterthomson (2008-08-10 11:17:47)

  Personally.....  (this is just how I would have written it - if it works, then it's good enough for me though )
  I would change this whole block:
  verify="n"
  while [ "$verify" != y ]
  do
  printf "Do you have mbr installed... yes or no?"
  read AN1
  echo ""
  printf "You answered... $AN1 I have installed mbr. Is this correct... y or n?"
  read verify
  done
  echo ""
  if [ "$AN1" == "no" ]
  then
  echo "Install mbr now. Then run this script agin"
  exit
  else
  echo "contunuing script"
  fi
  To this much shorter code:
  MBR='/usr/bin/install-mbr' # Or where ever you expect it to be
  if [ ! -x $MBR ] ; then
  echo "mbr doesn't appear to be installed."
  echo "If it is installed, check it's location, make sure it's executable and then make sure the MBR variable in this script is correct"
  exit 1
  fi
  I wouldn't have used the checkXX variables for each stage:
  mkdir ~/usbbiosfiles
  if [ $? != 0 ] ; then
  #failed
  echo "Could not \make directory usbbiosfiles"
  echo "look above \for \info"
  echo "Fix the problem and run this scrip agin"
  exit 1
  else
  echo "Made directory usbbiosfiles... OK"
  fi
  There is an issue with the way you do your verifications - the user can never get out unless they answer 'y' or hit CTRL+C. Something like this gives them options:
  verify="n"
  while [ "$verify" != "y" && "$verify" != "n" ]; do
  echo "You need to answer 'y'es or 'n'o"
  read verify
  echo $verify | tr "[:upper:]" "[:lower:]" # This converts the answer to lowercase so replies entered in upper case will still work
  done
  if [ $verify != 'y' ] ; then
  exit 1
  fi
  One last thing I try to do in scripts... Declare all your binaries as variables at the start of the program, then execute the binary program by using the variable. For example:
  # Binaries
  TAR='/bin/tar'
  CP='/bin/cp'
  CHMOD='/bin/chmod'
  # Execute tar and chmod the created file
  $TAR cvzf /tmp/tarfile.tar.gz /etc/*.conf
  $CHMOD 400 /etc/*.conf
  This way, it's easy to change the path in future without having to hunt through the script if the paths change, and it also ensures you're calling the programs using the full paths to make sure you're not executing some strange variant or alias that someone has setup. If I use `chmod` 30 times in a script, and the path changes in the future or on a different system (`chmod` is a bad example cause it's highly unlikely to change, but you know what I mean), then all you need to do is update the variable at the start of the script, and it all works again without having to script-hunt and change it 30 times.

• Lack of SD card slots what do you think

  I don't know about the rest of you, but I like my stuff on an SD card. Not in a cloud. It seems Motorola, Verizon, and android all want you to put your stuff in the cloud. I'm sorry but I like my privacy and I like to access my content even when I have no signal. The cloud is for morons who don't realize their stuff can be hacked. If the Pentagon can be hacked, so can the cloud. Verizon, give us the option. Quit force feeding us stuff that a bunch of techno geeks sitting around and dream up. I have been a loyal customer for years and your trying my patience. I like my Droid Razr MAXX HD. It has served me well for 2 years in some of the worst environments. It has never failed me and I think you hit the nail on the head when you introduced it. But you took a moronic stance and quit offering it. You got it right and then screwed it up. The only complaint I had was all the bloat ware. Give us the choice. We buy the phone, it is ours, we should be the ones to decide what stays and what goes. Not some ***** sitting in marketing. If you want to introduce it, then do so but allow the people the choice of what stays and what goes. It will cost you customers in the future if you don't, including me. Have a nice day!!!!

  You ask "what do you think".
  I think that your message would/will be better received if you didn't resort to name calling and "colorful" language.
  You/we will never win the "argument" over what you term "bloatware".  Verizon enters into financial agreements with the providers of that software to be able to install it on the devices.  They make a lot of money (presumably) on this, so it is not likely to end.

• Still in a quandary about hardware specs. What do you think?

  I need to build a new system as editing machine for CS4. Everything is more or less clear as to what I need, there are only two issues remaining:
  1. How much RAM to install, and
  2. Disk setup.
  As always there is the balance between performance and costs. Since this is not "an unlimited means available" type of machine, you will not see much esoteric components, like SSD raids or nVidia Quadro CX card. It is a dual E5472 Harpertown system (8 core), running Vista 64 Business.
  1. How much RAM would be a good balance in price/performance? 8 or 16 GB? We are talking about Kingston Value Ram DDR2-6400 ECC FBDIMM, either 4 x 2 GB ( 420) or 4 x 4 GB ( 650), with the possibility to double memory in the future. If you do not make a habit of continuously switching between PP, AE, EN, PS etc. and are mainly using only 1 application at the time, I wonder if there is a noticeable performance gain to justify the additional cost. The choice is obvious if the total cost of the machine would not be stretching available means. So what do you think?
  2. Main storage is 8 x WD Caviar Black 1 TB disks in raid50 for media, renders, scratch etc. But what about the boot disk? Either a 300 GB WD Velociraptor ( 240), or 4 x WD Scorpio (7200 RPM) 160 GB in raid10 ( 250), using on-board ESB2 chipset.
  While we are at it, does it make sense to add 4 x WD Scorpio 250 GB in Raid5 (on an Areca ARC controller with free ports) only for pagefile, projects and temporary export. Final export will be transferred over the network to a burning machine for DVD's. Backups of projects is to external USB disks and on a separate machine over VPN.
  The case has room for 8 hot swappable 3.5" disks and 8 hot swappable 2.5" laptop disks plus another disk and a DVD/BR burner internally. There are still 4 external eSATA ports available for future expansion. Foreseen video card is ATI 4870 512MB. Network is currently a 1 Gb connection, but can be enhanced to 2 Gb with 2 NIC's.
  Look forward to your reactions.

  Bill,
  The case is the
  Supermicro SC743TQ-865SQ
  and the storage bay for the 2.5" disks is the
  Addonics AE4RCS25NSA (2.5 Disk Array 4SA)
  Thanks for your remark about the difficulty of troubleshooting boot arrays. That might be an advantage for the Velociraptor.
  Dag, no. I don't make the mistake of visiting Amsterdam, unless it is absolutely necessary, like visiting the IBC, let alone visiting those bars. I came to realize that Vista has grown up a bit with SP1 and with full support for 64 it now makes a bit more sense than XP64. It does imply a couple of days tweaking Vista (= removing 'features') to make it work decently, but after that is accomplished I will make a slip streamed DVD version for future installs, so that is a one time investment. With recent enhancements in Nullsoft that is easily accomplished, including all intermediate patches and 'Patch Tuesday' versions.

• I accidentally deleted my iPhoto when i empty my trash? i think 1year ago.i want it back but i heard that its difficult...my 2nd option is i'll buy iPhoto from apps. what do you think guys? thank you and god bless!

  i accendentaly deleted my iphoto when i empty my trash. i think 1 year ago. i want it back but they say its difficult. now i think i'll buy iphoto to apps. what do you think guys??? ty and god bless!

  A bunch of totally different questions
  iPhoto is an application and it is in your applications folder - is it there? It must be in teh Applications folder on your boot drive - it can not be on an external drive
  The photos are kept in the iPhoto library (by default and highly recommended) - is that what you deleted? It can be anyplace by by default it is in your pictrues folder
  Time Machine is a backup program that backuse your your Mac - you do NOT directly access its backup files but you use the Time Machine application to restore files - see http://support.apple.com/kb/HT1427?viewlocale=en_US&locale=en_US for details
  Your post is not at all clear as to what you have or what you want to do
  If in fact you do have a copy of the photos on an external hard drive as you say you thikyou do them you launch iPhoto and import them to iPhoto (file menu import  --  or drag them to the iPhoto icon in the Dock)
  If you have a time machine backup of your iPhoto library and you want to use that then you launch TM and go to the time you wna tto restore from, select the iPhoto library and click restore
  If the above does not cover what you have and what you want please post back with exact details of what you have and what you want to do
  LN

• My IPhone all of a sudden pops up saying sim card failed. I turn it off and turn it back on and it works but the next day it happens again. what do you think is wrong with it?

  My IPhone all of a sudden pops up saying sim card failed. I turn it off and turn it back on and it works but the next day it happens again. what do you think is wrong with it?

  Hello brittbend
  Check out the article to further troubleshoot your SIM card issues with your iPhone.
  iPhone: Troubleshooting No SIM
  http://support.apple.com/kb/TS4148
  Regards,
  -Norm G.

• I have a question can you please add so the iphone also have 5 icon dock like the iPad have it would make my day easy as h..:) maby in the next update? What do you think?

  I have a question can you please add so the iphone also have 5 icon dock like the iPad have it would make my day easy as h..:) maby in the next update? What do you think? What do everyone think?

  I have a question can you please add so the iphone also have 5 icon dock like the iPad have it would make my day easy as h..:) maby in the next update? What do you think? What do everyone think?

• Best IDE & Platform Configuration? What do you think?

  What do you think the best IDE is out there? I want to compile and create applications as well as servlets and beans, but my focus would be on the beans, servlets, jsp, etc, the web stuff. Once I have the IDE for that, what is the best configuration for developing under that environment. For example I would like to use the the JavaMail API as well, and that is available for the J2EE. So I can install both the J2SE and J2EE SDK's right? Should I accept their default installation directories? Is it possible to move files, the .jar files for example over the to a single directory for centralization? Help, trying to get an understaning how to create a nice development environment. Simple, efficient, etc.
  Thanks so much!!
  Terry

  I personally think Eclipse is outstanding. I used JBuilder for a while, but it insisted on formatting code the JBuilder way. Eclipse also has refactoring, which is a major bonus. Moving classes is now a few clicks instead of performing a search-replace on all your files. There are UML and dozens of other types of plug-in.
  As far as setting-up your environment, I normally duplicate a web application's deployment. So, the external JAR's I need are in WEB-INF/lib. The IDE should take care of classpath issues, if you perform the initial project set-up properly. I would also learn Jakarta's Ant. It makes deployment a lot easier, at the expense of some up-front development.
  - Saish
  "My karma ran over your dogma." - Anon

• What do you think of new Cisco NSS 300 Smart Storage?

  Did you see the press release of the new Cisco NSS 30 Smart Storage?
  http://newsroom.cisco.com/dlls/2010/prod_060910.html
  What did you think?
  More informaion about the product can be found at http://www.cisco.com/go/smartstorage

  I guess no one from Cisco is going to repond to your post Johnny.
  I agree with your thoughts, and was excitedly looking forward to Cisco's entry in the small NAS market and rushed out to buy a NSS326 (Equiv to QNAP TS-659) Unit.  I already own a QNAP TS-639 older model for 1.5 years and loved it - and expected Cisco just to make this even a better unit.  Which in some ways they have (Syslog and Radius features) - although as you've already noticed, elimation of QPKG application support which numbers up to almost 2 dozen applications that are not available on Cisco's version
  Unfortunately if you look on eBay, you'll see my NSS326 up for sale.
  To address your points (from my point of view)
  1) ROCK SOLID:  I've found the hardware to be just that (on both units).  Built well, and I'm sure will last for years.   As for software stability, - see next
  2) FAST FIRMWARE UPDATES:  It's for this reason that the unit is up for sale.   V3.0 of the firmware was a major release.  And there have been issues - although many/most of them have been addressed with still a few (somewhat serious) issues still lingering.   QNAP seems to be attacking these fairly quickly.   Unfortunately there has been 2 releases from QNAP addressing issues since Cisco's adoption of this unit since v3.2.6.   As you'll see in these posts, Cisco is not following QNAPs releases, and will be releasing their own line of firmware.  For me, this is a serious issue - and I wish I knew this before purchasing.  I feel Cisco is already 2 releases behind which includes many fixes to their current platform. (Also see QPKG note above - many missing applications)
  3) SUPPORT:  This is where Cisco excels and always has.   To start 5yr vs 1yr warranty, and of course Cisco TAC is one of the best in the world.  In contrast, QNAP's support quite frankly isn't great - although, it's support community for forums are excellent.   Unfortunately I can't speak specifically on NSS support since I haven't called them for this, so I'm speaking more generally.
  So it really boils down to whats more important for your situation.
  Cheers

• Idea of a product development for Apple (what do you think)

  This is a photoshopped picture I did of an Apple Macbook charger, were there is the ability to disconnect the cable with the magsafe unit.
  This gives Apple users the ability to change the broken electric cord for a new one without out having to change the whole charger unit
  as also it can be considered good for the environment
    I am not sure if this has come up before, but it would be very usefull to have this option.
  what do you think and is there a way to influence Apple to do this modification?

  Thank you Keith for your information.
    In this case I am not worried about the origin of the idea and some compensation to the creator. If this modification will lead to happier costumers of Apple and more efficient use of material and thus better for the environment (as Apple claim they are always improving ) then I am satisfied.
  It is good that Apple has this Policy and I agree that they can use any idea submission to them as their own. This Idea is so basic and easy to carry out that I believe that many others have thought of it.
  Sometimes it can be good to get a pair of extra eyes or brain to spot were you can improve.
  thanks again for your info