INFO-VAX Wed, 02 Jan 2008 Volume 2008 : Issue 3 Contents: Re: M$ IE implementation of MD5 Digest OT: The penultimate legal schmuckery of 2007. Re: OT: The penultimate legal schmuckery of 2007. Re: OT: The penultimate legal schmuckery of 2007. Re: OT: The penultimate legal schmuckery of 2007. Re: OT: The penultimate legal schmuckery of 2007. Re: OT: The penultimate legal schmuckery of 2007. Re: OT: The penultimate legal schmuckery of 2007. RE: Samba Gains Legal Access to Microsoft Network File Protocols Re: Samba Gains Legal Access to Microsoft Network File Protocols ---------------------------------------------------------------------- Date: Tue, 01 Jan 2008 20:41:11 GMT From: VAXman- @SendSpamHere.ORG Subject: Re: M$ IE implementation of MD5 Digest Message-ID: In article , VAXman- @SendSpamHere.ORG writes: > > >I have a VMS app that I have incorporated with MD5 Digest Authentication. > >It works like a champ on virtually every MODERN web browser I have tested >save for M$IE. V5, V6 and V7 all fail. I been googling for details as I >did find that there's an issue with M$IE and a query string when there is >MD5 Digest involved. > >Since there is such a knowledgeable base here with M$IE as well as network >security, I was wondering if anybody knows what it is that M$IE does wrong >in its implementation of MD5 Digest. I've found pointers to discussion of >Apache having a "hack" parameter to make MD5 function with M$IE but I can >not seem to find any details about what it is that is passed between M$IE >and server that is problematic and or how to hack around it. The M$ site >database has been pretty useless in my searches too. > >Any pointers welcome... and, hopefully for all, a Happy New Year. Nevermind. After googling all weekend and into the New Year, I finally figured it out. I finally found a site that also used MD5 Digest Authentication and wrote a bit of code to watch the HTTP header data to and fro. I also found mention of a "hack" in Apache to fix a problem with M$IE MD5 Digest Authentication. Of course, there was little detail on the actual problem(s), just mention of an Apache config parameter to enable the hack. Needless to say, Micro$haft, did their very best to NOT implement RFC2617 correctly. Happy New Year! -- VAXman- A Bored Certified VMS Kernel Mode Hacker VAXman(at)TMESIS(dot)COM "Well my son, life is like a beanstalk, isn't it?" http://tmesis.com/drat.html ------------------------------ Date: Tue, 01 Jan 2008 20:51:36 GMT From: VAXman- @SendSpamHere.ORG Subject: OT: The penultimate legal schmuckery of 2007. Message-ID: This group of scum never ceases to amaze me... http://tmesis.com/r_scum -- VAXman- A Bored Certified VMS Kernel Mode Hacker VAXman(at)TMESIS(dot)COM "Well my son, life is like a beanstalk, isn't it?" http://tmesis.com/drat.html ------------------------------ Date: Tue, 01 Jan 2008 16:47:42 -0600 From: David J Dachtera Subject: Re: OT: The penultimate legal schmuckery of 2007. Message-ID: <477AC30E.C02C3F5B@spam.comcast.net> VAXman-, @SendSpamHere.ORG wrote: > > This group of scum never ceases to amaze me... > > http://tmesis.com/r_scum The linked article begs the question: Why was M$ not identified as a co-defendant for complicity by enabling (the alleged violations) thru it's MediaPlayer product? David J Dachtera DJE Systems ------------------------------ Date: Tue, 01 Jan 2008 23:09:24 GMT From: ChrisQuayle Subject: Re: OT: The penultimate legal schmuckery of 2007. Message-ID: VAXman- @SendSpamHere.ORG wrote: > This group of scum never ceases to amaze me... > > http://tmesis.com/r_scum > > Have probably said this before, but that's the sort of culture you get when you allow your country to be run by big bisiness and gangsters. Don't get me wrong - some of us weep for America at the mo, but there sure will be a lot of crap to shovel up in a year or so's time. However, the clock is ticking along nicely :-)... Chris ------------------------------ Date: Wed, 02 Jan 2008 00:49:23 +0100 From: "P. Sture" Subject: Re: OT: The penultimate legal schmuckery of 2007. Message-ID: In article , VAXman- @SendSpamHere.ORG wrote: > This group of scum never ceases to amaze me... > > http://tmesis.com/r_scum Unfortunately, this seems to be sensationalist reporting: http://www.cio-today.com/story.xhtml?story_id=13300C81I5JE&page=1 Mind you, I am not denying that they are scum... -- Paul Sture Sue's OpenVMS bookmarks: http://eisner.encompasserve.org/~sture/ovms-bookmarks.html ------------------------------ Date: Tue, 1 Jan 2008 18:01:25 -0700 From: "Michael D. Ober" Subject: Re: OT: The penultimate legal schmuckery of 2007. Message-ID: <13nlojoh6lpdna6@corp.supernews.com> "P. Sture" wrote in message news:paul.sture.nospam-C52B3A.00492302012008@mac.sture.ch... > In article , VAXman- @SendSpamHere.ORG > wrote: > >> This group of scum never ceases to amaze me... >> >> http://tmesis.com/r_scum > > Unfortunately, this seems to be sensationalist reporting: > > http://www.cio-today.com/story.xhtml?story_id=13300C81I5JE&page=1 > > Mind you, I am not denying that they are scum... > > -- > Paul Sture > > Sue's OpenVMS bookmarks: > http://eisner.encompasserve.org/~sture/ovms-bookmarks.html > Take a look at the link in the inquirer's article. It's to an article in the Washington Post. Sounds like RIAA has crossed the line (AGAIN). Maybe it's time for the recording industry to die. Mike Ober. ------------------------------ Date: Wed, 02 Jan 2008 01:22:40 GMT From: VAXman- @SendSpamHere.ORG Subject: Re: OT: The penultimate legal schmuckery of 2007. Message-ID: In article <13nlojoh6lpdna6@corp.supernews.com>, "Michael D. Ober" writes: > > >"P. Sture" wrote in message >news:paul.sture.nospam-C52B3A.00492302012008@mac.sture.ch... >> In article , VAXman- @SendSpamHere.ORG >> wrote: >> >>> This group of scum never ceases to amaze me... >>> >>> http://tmesis.com/r_scum >> >> Unfortunately, this seems to be sensationalist reporting: >> >> http://www.cio-today.com/story.xhtml?story_id=13300C81I5JE&page=1 >> >> Mind you, I am not denying that they are scum... >> >> -- >> Paul Sture >> >> Sue's OpenVMS bookmarks: >> http://eisner.encompasserve.org/~sture/ovms-bookmarks.html >> > >Take a look at the link in the inquirer's article. It's to an article in >the Washington Post. Sounds like RIAA has crossed the line (AGAIN). Maybe >it's time for the recording industry to die. Just the RIAA. I know many bands and musicians, and they would not like the inductry to die -- just the RIAA. -- VAXman- A Bored Certified VMS Kernel Mode Hacker VAXman(at)TMESIS(dot)COM "Well my son, life is like a beanstalk, isn't it?" http://tmesis.com/drat.html ------------------------------ Date: Tue, 1 Jan 2008 21:10:37 -0700 From: "Michael D. Ober" Subject: Re: OT: The penultimate legal schmuckery of 2007. Message-ID: <13nm3mh40v7uu39@corp.supernews.com> wrote in message news:AHBej.3$HQ2.1@newsfe09.lga... > In article <13nlojoh6lpdna6@corp.supernews.com>, "Michael D. Ober" > writes: >> >> >>"P. Sture" wrote in message >>news:paul.sture.nospam-C52B3A.00492302012008@mac.sture.ch... >>> In article , VAXman- @SendSpamHere.ORG >>> wrote: >>> >>>> This group of scum never ceases to amaze me... >>>> >>>> http://tmesis.com/r_scum >>> >>> Unfortunately, this seems to be sensationalist reporting: >>> >>> http://www.cio-today.com/story.xhtml?story_id=13300C81I5JE&page=1 >>> >>> Mind you, I am not denying that they are scum... >>> >>> -- >>> Paul Sture >>> >>> Sue's OpenVMS bookmarks: >>> http://eisner.encompasserve.org/~sture/ovms-bookmarks.html >>> >> >>Take a look at the link in the inquirer's article. It's to an article in >>the Washington Post. Sounds like RIAA has crossed the line (AGAIN). >>Maybe >>it's time for the recording industry to die. > > Just the RIAA. I know many bands and musicians, and they would not like > the inductry to die -- just the RIAA. > Good point. Mike. > -- > VAXman- A Bored Certified VMS Kernel Mode Hacker > VAXman(at)TMESIS(dot)COM > > "Well my son, life is like a beanstalk, isn't it?" > > http://tmesis.com/drat.html > ------------------------------ Date: Tue, 1 Jan 2008 19:40:05 +0000 From: "Main, Kerry" Subject: RE: Samba Gains Legal Access to Microsoft Network File Protocols Message-ID: > -----Original Message----- > From: JF Mezei [mailto:jfmezei.spamnot@vaxination.ca] > Sent: January 1, 2008 11:49 AM > To: Info-VAX@Mvb.Saic.Com > Subject: Re: Samba Gains Legal Access to Microsoft Network File > Protocols > > Main, Kerry wrote: > > > Remember that SWIFT cut AIX at the same time. > > Wrong. SWIFT Terminal Services (the software arm of SWIFT) had cut > other > platforms for its "official" software package and had signed a deal > with > Digital in early 1990s or late 1980s to have VMS as its one stragetic > platform. > It would appear that we have different sources. My source stated that the decision to move to Solaris was made by SWIFT and Digital had little or no feedback on this - same as for IBM and AIX. Btw, it looks like OpenVMS still has SWIFT presence - check out these new job openings in London: (note SWIFT reference) [typical caution applies here as I do not know this site. Perhaps someone could validate this?] http://tinyurl.com/2hjpo6 " VMS Applications Consultants x 5 - Central London / The City - Investment Banking Key skills OpenVMS VMS C or VMS COBOL Environ. OpenVMS C COBOL INGRES ORACLE DCL OPENROAD VISUAK BASIC VB6 DECFORMS ACMSVBA CLEARCASE BEA WEBLOGIC SWIFT TIBCO Rendezvous Our client's business is at the very heart of the London banking community and is a stable member and well regarded institution within city finance circles. Our client's IT systems help support the trading of items such as derivatives swaps and fixed income products. Our client wish to directly recruit 5 VMS Application Support Engineers. Key skills VMS OpenVMS VMS C VMS COBOL Regards Kerry Main Senior Consultant HP Services Canada Voice: 613-592-4660 Fax: 613-591-4477 kerryDOTmainAThpDOTcom (remove the DOT's and AT) OpenVMS - the secure, multi-site OS that just works. Regards ------------------------------ Date: Tue, 01 Jan 2008 22:57:39 GMT From: ChrisQuayle Subject: Re: Samba Gains Legal Access to Microsoft Network File Protocols Message-ID: Bill Gunshannon wrote: > > The whole company has no problem noticing Microsoft Windows. And the > money from that just goes into someone else's coffers. Great way to > run a business. > > bill > The amazing thing to me, even years after the event, was the way that HP took an industry leading architecture and tossed it away as though it were worthless. Even now, such a decision doesn't look like the product of sound minds - irrational from any view. How can anyone take such a company seriously after such a fiasco and all the politics and other crap that's gone down since ?. At least Sun is still flying the flag of innovation - have you looked at Solaris 10 yet ? - Everything Tru64 would have grown into and a company that looks like it understands the meaning of the phrases 'business ethics' and 'pursuit of excellence'. Remember, it took Intel 10 years to catch up with Alpha - that's how far ahead it was. Rest in Peace perhaps, but not forgotten :-)... Chris ------------------------------ End of INFO-VAX 2008.003 ************************