spread the dot jenett.radio.randomizer - click to visit a random Radio weblog - for information, contact randomizer@coolstop.com

Cox Crow

Asking the Stupid Questions Since 1971
 Monday, May 20, 2002

Slippery When Wet

Alan Cox said some nice things (question #3) about XML-RPC and SOAP, and Dave Winer responded politely. SOAP's overloading of tcp/80 is not really new; the exposure of more powerful APIs is.

Remember that "the Internet treats censorship as damage and routes around it." That's a catchy way of saying that people want to communicate, and prefer things that allow them to do so with a minimum of fuss. Firewalls, like broken routers, limit the flexibility of the environment, restricting the ability to communicate. They do this by blockading unknown ports, or by relaying both halves of the conversation, in order to achieve some semblance of control over the environment. It's known that people use tcp/80 for HTTP, so that port likely will be open. The easiest way to communicate is thus through tcp/80.

Now, this doesn't mean that firewalls are bad, or that SOAP is bad, but that an open hole will be used. Firewalls reduce your environment to a smaller set of variables. They are not the be-all and end-all of data security. So how do you secure your environment against SOAP scum? By following the same methods that you would to protect against any scum: simplify. Is it necessary to expose that API? Do you need all that clutter?

The flow of data is like water, finding any hole, no matter how small, and passing through it.

5:39:21 PM # Google It!
categories: Writing Online, Security, System Administration

Where does he get all those wonderful toys?

Finally, Apple is making a rack-mount server. As usual, there're opinions on the Xserve. I like the looks of the box, the software is keen, but it misses a few options, particularly hardware RAID. And with a paucity of inexpensive backup devices for huge amounts of data, one really needs the security of RAID-5 or equivalent.

There are few boxes that can make a home network simple enough that you can buy it at Sears. This will be one of them.

5:07:20 PM # Google It!
categories: Industry, System Administration

The Chicken or the Egg

Wired reports that the University of Missouri may own the rights to clones, not just to a particular cloning process. The USPTO, and the associated judiciary, has gone horribly awry in interpreting patents, in general, to apply both to processes and to product. Not only do we get overly broad patents out of it, but we get panicky articles like Wired's.

"The U of M patent is for the process and not for the product," said R. Alta Charo, a professor of law and medical ethics at the University of Wisconsin. "It is akin to getting a patent on a new kind of manufacturing technique without getting a patent on any of the products that might be made by the technique. Thus, the U of M will have no property interest in any mammalian organisms made by the patented process."

That's one opinion. Given their past behaviour, the contrary may be the case, but I don't think the USPTO is that obtuse.

2:31:42 PM # Google It!
categories: Law

There but for the grace of God

We're back from our trip. I saw families living in houses smaller than our sheds. :-( I'm thankful I had the geographical luck to be born in the United States.

"American by birth. Southern by the grace of God."

1:17:06 PM # Google It!
categories: Family