28 posts • joined 19 Oct 2008
Re: Encryption is not the whole answer
"Decoding a BER (or worse, PER) datastream from scratch is a mugs game; that's what libraries and tools are for."
Oh, so that's your answer. The details are hard - let someone else do it...
I'm one of the people who have to do it from scratch. ASN.1 utterly *sucks* I'm afraid. Far too complex for its own good. Type tagging is a bad idea. The software needs to understand the marshalling/unmarshalling format, so type tagging is irrelevant IMHO. You either completely understand the stream format, or you have no business trying to parse it (that way lies security holes for sure).
I'm old :-). ONC/RPC xdr format is nice, simple, and has already had its share of security holes so it's now pretty well understood. Give me an xdr stream any day...
Re: Encryption is not the whole answer
I take it you've never written or debugged an ASN.1 stack.
That thing is a f&%king nightmare. DO NOT USE ASN.1 for new protocols please, unless you are having a competition to see how many CVE's you can get for your software ("look Ma, we beat LDAP... !" :-).
Re: Target audience vs target revenue
The USA and UK showed the way. Spy on everyone, everywhere, anytime with no restrictions. Any wonder you're starting to see the balkanization of the Internet. This will get a lot worse, in a lot more places I expect.
"So the theory for higher-fidelity playback of stored music through the Sonos system is to get a FLAC copy of the music, convert it to ALAC, import that into iTunes, re-set the Sonos music index, and then play the music."
WHAT ? Why are you messing about with all these steps. To play flac:
1). Rip the CD to flac format onto your NAS drive.
2). Re-index the SONOS music library.
3). Play the flac file on the SONOS from your NAS drive.
That's what I do...
Oh, wait a minute. iTunes and Apple - there's your problem mate. FLAC is a *Free Software* created format. That's like garlic to a vampire for Mac's :-).
Re: Real coding!
We can't have something like that because Microsoft won't build it into their clients :-(.
Same reason we can't have decent filesystems (ext4 anyone ?) on USB sticks - Microsoft insist on FATxxxx-only to keep the monopoly rent on the patents I'm afraid.
Still, SMB is pretty multiplatform these days - with the unix extensions turned on in the Linux CIFSFS client and Samba as a server it's pretty close to UNIX->UNIX semantics. Reminds me of RFS it does :-).
And it's *certainly* better than NFS (which turned into a monster the moment they tried to import wholesale some of the CIFS/SMB stateful semantics, and the ACLs, god help me don't mention the ACLs :-).
Thanks for the shout-out ! It's lovely to hear someone mentioning Samba in an article (sounds like 1997 again :-).
To be honest, many of the vendors who 'move on' from Samba are pushed to do so by their marketing department - not be the engineers. The marketing people like to say "our implementation is unique" - hoping to mean "better" of course :-). That's not always the case :-).
I know of at least 2 vendors mentioning no names of course :-) whose engineers have privately told me that's what happened..
Still, there's enough work to keep everyone busy on Samba for a good number of years yet !
As I keep telling the young-'uns - if you're a qualified Samba coder I can get you a job tomorrow (many postitions in Silicon Valley). But they keep wanting to do the webby stuff... :-(.
Error in article.
The article states:
> The only big SaaS alternative is Google, with Docs. This does not support ODF and is not listed on
> G-Cloud – instead you need to go through small suppliers.
In Google docs there is "Download As" -> "OpenDocument Format" (.odt).
I think that qualifies as ODF support.
Re: You guys.
Yep. SONOS systems are Linux boxes. You can even download the source code (not to their fancy proprietary bits of course, but to the bog-standard GPL components).
I'm with Chris on this one. I *LOVE* the SONOS systems. I have a bunch of them in my house (3 play-5's, 2 play-1's in the kitchen and 4 connects to drive the surround-sound systems in various rooms).
I do have some really fancy audiophile speakers (JM Labs Focal Beryllium speakers) but the systems I find myself listening to the most are the stereo paired SONOS Play-1's in the kitchen, and the stereo paired Play-5's in the master bedroom, linked with a SONOS sub.
The sound really is amazing. Regular non-audiophile people listen to the bedroom system and just go "Oooh, that sounds different. How does it do that ?" It's the depth and richness of the sound that the SONOS sub adds I think. I now listen to music all the time at home as it's just so easy and convenient (controlled by my Android phone).
Oh yeah, one other thing. Wired is the way to go. Wireless just *SUCKS*. Always :-). All my SONOS boxes are wired (the house came with gigabit already plumbed into every room so that was easier :-). Even the one too far away from the wall-plate is wired via a ethernet-over-power box. Wireless *SUCKS* :-).
Only problem is convincing the wife to let me add more zones :-).
Re: There is one big leguacy with the QL...
Yep. Here's Linus telling me about his QL whilst we were hanging out at Sao Paulo Zoo (great Zoo by the way :-). For some strange reason this wasn't a popular video :-). I was also a QL fan :-).
Hit them where it hurts.
Good way to annoy the NSA and GCHQ, evil fucks that they are:
Refuse to hire ex-NSA/GCHQ people into private industry. Let the grunts know that working for the NSA/GCHQ is a one-way street. You are forever after tainted and no one will ever trust you again.
That should stick a spike into their University recruiting pipeline. Those government pensions not looking so guaranteed now eh ?
Re: Synology - are you receiving me... ?
Just FYI Trevor, I got an email from a Synology UK support person today, so I think we might be off to the races.. Here's hoping :-).
Thanks (and if you want to email I'm firstname.lastname@example.org).
Synology - are you receiving me... ?
QNAP at least talk to me (as do most of the other NAS vendors). I can't get any response from Synology, even though they're shipping our stuff embedded in their OS (see here:
for their source code - it's got Samba 3.6.x). Trevor, if you have any contacts at Synology that might want to talk to the people who create their SMB1/SMB2/SMB3 server, please send 'em my way. I don't bite, I'll even give them advanced notice of our security fixes (I do for all the other vendors :-) and help them fix any customer issues they might have. I have tried to find someone there to talk to, but got no joy :-(.
Time to remind people of the real purpose of DRM.
Everyone seems to forget - it's nothing to do with controlling pirates or users, it's to keep the device makers brought to heel to protect obsolete business models.
Hicksie nails it here:
Disclaimer (I work with Hicksie, when he turns up in the office :-).
Re: Would you want your storage array running windows ?
Pure FUD I'm afraid, and the kind I'm getting less and less inclined to tolerate. Do you have any *specific* Samba bugs you're complaining about, or are you just repeating what your NetApp or EMC rep. told you ?
You do realize Samba powers IBM Sonas storage, which is used by some of the most demanding NAS customers in the world ?
DRM does work.
See Ian Hickson (author of the HTLM5 spec) on this.
DRM works just fine. It's just not designed to stop people copying, but to restrict innovative devices.
Re: rules change
So long as they don't screw up the access to Ranch99 Chinese Market on Wolfe+Homestead whilst they're building it I'm good.
It'll make the house prices go up anyway :-).
Re: ANY closed source software might have secret back doors
Sure you can get the source code. But unless you build it yourself, you can't know that what you are running matches the source code you were given under the contracted NDA.
That always amuses me about the Microsoft claims of "but we gave the organization the source code, so it's the same as Open Source/Free Software, honest !"
Unless the organization has the build system as well, and does their own builds, then no it really isn't the same.
The wonderful thing about the Linux-based Open Source/Free Software releases is that you get the build systems as well and they're really widely understood - so if you're really paranoid yes you *can* build everything yourself. From scratch - just like CentOS does.
Of course then you have to trust the compiler, but now we're going into an interesting recursive problem :-).
Re: Napoleon Was Right
As my brother famously (*) said, "Never mind the economy, we can always just sell each other haircuts over the Internet".
Sad, so sad to see the UK manufacturing base gone..
(*) Famous to me, at least.
Re: Microsoft Lock In
Stop the anti-GPLv3 fud, it won't wash here. I was on one of the committees tasked with creating the GPLv3 and I can tell you it's a *better* license for shippinging commercial FLOSS product than GPLv2. If you don't believe me believe IBM, EMC, Symantec, Dell, etc. All of whom ship and support enterprise storage products based on GPLv3 Samba code.
Re: What a waste of time
You' re missing the point. The "free" in free software isn't about the money, it's about the freedom and control. The only thing I can say FOR SURE about what people will use the Samba 4 AD server for is that they'll want to do things with it that we in the Samba Team haven't thought of yet.
That flexibility is priceless. No one cares about spending the money, it's about doing things that are simply not possible with a Windows AD controller because you Don' get the source code.
That was then
But this is now...
He's finally admitted he has some funding from Microsoft, which is as pro-patent as you get. I really wish people would stop quoting him, but he's the lazy journalists 'rent-a-patent-quote' machine. I think it's his business model, like Rob Enderle.
Samba does not infringe any Microsoft patents.
Just want to be *very* clear about that. Microsoft has to notify us of any patents they claim cover the implemented protocols. See the EU agreement for details.
Nick Thompson wrote:
"Thanks for the personal insults. Grow up."
and then followed it up with:
"and cretins like Stallman and the FSF are trying to force it on everyone"
Pot, have a seat over here next to kettle :-).
There are other views :-)
Try a Linux based NAS
Rather than trying to set up Ubuntu or Red Hat Fedora by hand, try just buying a Linux based NAS such ReadyNAS, or even one of the HP MediaVault based servers. There's a lot of different brands to chose from and you won't have to set up a Samba share by hand on any of them.
Or if you don't want to pay..
Download the OpenFiler distro from www.openfiler.com, or the FreeNAS build from www.freenas.org. Again, an easy web based setup on your choice of hardware. There's really no excuse for complaining that Linux or FreeBSD home storage is hard to set up.
Or try any number of Samba-based NAS appliances
All of which support Win2008 and Vista.
Don't need to use mount.cifs - use the GUI
As one of the authors of mount.cifs it is insane to tell newbies to use this tool.
Linux distributions these days include Gnome or KDE, and libsmbclient, the SMB browsing and file/print sharing service is integrated directly into Nautilus, the file browser for Gnome, and Konqueror, the file browser for KDE.
Just bring up the GUI file browser and click on 'Network', for heavens sake.