Free pain demolition trophies software for linux

Module::Install::Philosophy Perl module contains the concepts behind Module::Install.

SYNOPSIS

This document describes the personal philosophy behind the creation of CPAN::MakeMaker (the predecessor of Module::Install). The views expressed here belong to Brian Ingerson; if they are not of interest to you, you can safely ignore this document.

The above is obviously a mutation of the monumental speech by great Martin Luther King (http://web66.coled.umn.edu/new/MLK/MLK.html). While the contexts are vastly different, I feel that there are some serious parallelisms.
The CPAN has become a place that is not free of injustice. This situation has arisen not out of directed oppression, but from a failure of our community to keep its tools sharp. It is the culmination of many small decisions made in the name of practicality. This is a sad state for an institution that was created to allow all interested people to contribute equally to the best of their ability.

This assertion is rooted in my personal experience as an author. When I created my first Perl module, Inline.pm, I knew that I had done something important. But how was I to make a dent in vast Perl community?

As a complete unknown in the Perl community, my voice did not travel far. I repeatedly tried to get even an acknowledgment from the gurus familiar with XS. No success. I resorted to sending messages with ridiculous subjects to modules@perl.org. (http://www.xray.mpe.mpg.de/mailing-lists/modules/2000-08/msg00078.html) No response. Through sheer determination and shameless self-promotion I eventually got the word out, and I hope the world is a slightly better place for it.
Since then, Inline has won awards and I have had the privilege to meet almost all of Perls finest. But I still remember the pain of starting out, and want to help invite more people into this wonderful world.

One thing I have learned from experience is that the Perl community (and throw in the Python and Ruby people as well) is a small drop in the vast ocean of programming. Its a giant pot of Java out there; and a sea of C. Perl may not be the biggest fish, but with some care and cunning we could become a much bigger school.

These are the current problems that I see with CPAN and the core modules:

New Modules dont help Older Perls
If I were to guess what percent of all Perl5 installations were at the current release level (5.8.0 in October 2002) I would say 3-5%. That may even be generous. Id say that over 40% of installations might still be at 5.005 or earlier.
The biggest problem with adding a module to the core is that it only helps a small subset of Perl users for a long long time. Worse yet, a good module author will still probably avoid using the core additions as prerequisites, because they want their new module to work as well on 5.005 as on 5.8.
CPAN::MakeMaker should be able to help in this regard. For example, instead of putting Inline.pm into the core for 5.9, I can now effectively get it into the core for every version of Perl that Inline supports.
Author Exclusiveness
Not just anybody can get a module into the core. It seems you have to know people in high places. If I were a brilliant new talent with a great new module, it would have a harder time getting the ear of the pumpking, then if I were, say, Damian Conway. In fact, I probably wouldnt even know where to start.
Reduced Competition
One comment Ive heard from some very good Perl programmers is "Everything important has already been done". Their feeling is that even though a module is suboptimal, it would be a waste of time to write a competing module. Who would use it instead of the one already in the core?
When I write a competing module, I know that I have to make it at least twice as good as the existing one to even get noticed. Thats not a bad thing, but should everybody be forced into that situation?
For example, lets say that you have created a really useful CGI script. Lets also say that it makes use of your own CGI::Special module, because CGI.pm doesnt meet your needs. Even though your script might be generally useful and worth sharing, the fact that it requires a non-standard module can only negatively affect its acceptance. Trying to get general acceptance for the superior CGI::Special module will be harder still.
Core modules are assumed by the general public to be "Best of Breed". While this may be true for some modules at some point in time, it keeps talented people from attempting to "breed" something better.
Core Bloat
Every time we add a module to the core it gets bigger and bigger. And we cant ever remove modules from the core, once theyve been added.
If I had my druthers, wed remove all modules from the core that werent necessary for either running Perl or installing modules. Of course, wed need to set things up so that installing modules was so easy, that it could be done on the fly if necessary. Is this easily accomplishable? Nope. Is it impossible? Nope. We have the best language in the world to help us do it!
Maintenance Bitrot
Believe it or not, Perl authors can sometimes acquire a "Life Beyond Perl". They get families or new hobbies or even hit by a bus. (This would be a "Death Beyond Perl".) The fact is, that once somebody writes a piece of code and shares it with the world, they are expected to maintain it for all time.
That is being generous. There are others that think that once their module has become popular or made it into the core, they dont need to keep fixing and improving it. I have personally been guilty of this sin.
And then theres the Damian Conway Effect. This plagues the exceptional authors who are so innovative and prolific they simply dont have time to maintain everything they have written.

I initially formalized these opinions at the YAPC (Yet Another Perl Conference) in June 2001. Since then I have been trying to think of technological solutions to fix these social problems.

One idea was dubbed NAPC. NAPC is CPAN backwards. It is a large system of precompiled modules that can be installed on the fly, with the goal of reducing the number of modules in the core. NAPC hasnt got started yet. Id still like to do it someday, but its a big problem with a lot of issues.

CPAN::MakeMaker (and now Module::Install) on the other hand, is simple and ultimately flexible. It should work with all of the existing CPAN processes without requiring any changes from them. And new features can be continuously added. Even though it doesnt scratch all of my philosophical CPAN itches, its a good start.

Americas Army is one of the five most popular action games played online. It provides players with the most authentic military experience available, from exploring the development of Soldiers in individual and collective training to their deployment in simulated missions in the War on Terror.
Americas Army: Special Forces is the follow-up to Americas Army: Operations, which was released on July 4, 2002.
In Americas Army: Special Forces, players attempt to earn Green Beret status by completing individual and collective training missions drawn from the Special Forces Assignment and Selection (SFAS) process.
Players who complete the SFAS process have the opportunity to take on elite Special Forces roles and are qualified to play in multiplayer missions with units ranging from the elite 82d Airborne Division to the 75th Ranger Regiment.
Includes the complete game Americas Army: Operations.
Main features:
- Authentic U.S. Army experience Realistic depiction of the values, units, equipment and career opportunities that make the Army the worlds premier land force continually updated to incorporate new occupations, units, technologies and adventures.
- Realistic roles Including Weapons Specialist (18B), Intelligence (18F), Engineer (18C), Communications (18E) and Combat Medic (18D).
- Challenging Green Beret training Complete training missions drawn from the SFAS process at Fort Bragg. Successfully complete SFAS and advance to Special Forces Qualification Course (Q-Course) missions to explore new Special Forces roles.
- Intense Special Forces action Intense Special Forces action Experience multiplayer missions in simulated combat environments. Take part in missions that span the capabilities of a Special Forces detachment, including unconventional warfare, direct action, surveillance and reconnaissance and Combat Search and Rescue.
- Detailed Special Forces equipment and military hardware Building on the equipment available in Americas Army: Operations, Americas Army: Special Forces adds the M4 Carbine featuring the Picatinny rail mod system for attaching laser-aiming devices and sighting systems; the MP5SD6 Remington 870 shotgun for forced entry; the AT4, a shoulder-fired anti-tank rocket and the BDM, a shoulder-fired bunker demolition munition.
- Accurate Soldier behavior Players are bound by the laws of land warfare, Army values (honor, duty and integrity) and realistic rules of engagement as they navigate challenges in teamwork-based multiplayer force vs. force operations. Mission accomplishment standings are evaluated based on team effort and adherence to a set of values and norms of conduct.

Albatross library is a small and flexible Python toolkit for developing highly stateful web applications.
The toolkit has been designed to take a lot of the pain out of constructing intranet applications although you can also use Albatross for deploying publicly accessed web applications.
In slightly less than 2600 lines of Python (according to pycount), you get the following:
An extensible HTML templating system similar to DTML that promotes separation of presentation and implementation for improved program maintainability. The templating system includes tags for:
- Conditional processing,
- Macro definition and expansion,
- Sequence iteration and pagination,
- Tree browsing,
Lookup tables to translate Python values to arbitrary template text. The ability to place Python code for each page in a dynamically loaded module, or to place each page in its own class in a single mainline.
Optional sessions, which can be either:
- Browser based sessions via automatically generated hidden form fields (cryptographically signed to ensure integrity),
- Server-side sessions via a supplied TCP session server,
- Server-side file based session store.
Applications that can be deployed as either CGI programs or as mod_python module with minor changes to program mainline. Custom deployment can be achieved by developing your own Request class.
Over 120 pages of documentation including many installable samples. A primary design goal of Albatross is that it be small and easy to use and extend. The toolkit application functionality is defined by a collection of fine grained mixin classes. Eight different application types and four different execution contexts are prepackaged, allowing you to define your own drop in replacements for any of the mixins to alter any aspect of the toolkit semantics.
Object Craft developed Albatross because there was nothing available with the same capabilities which they could use for consulting work. For this reason the toolkit is important to Object Craft and so is actively maintained and developed.
Albatross is licensed under a liberal BSD open-source license.
Enhancements:
- Improvements and fixes were made to < al-for >, < al-macro >, < al-option >, NameRecorderMixin, and the FastCGI driver.

Americas Army is one of the five most popular action games played online. It provides players with the most authentic military experience available, from exploring the development of Soldiers in individual and collective training to their deployment in simulated missions in the War on Terror.
Americas Army: Special Forces is the follow-up to Americas Army: Operations, which was released on July 4, 2002.
In Americas Army: Special Forces, players attempt to earn Green Beret status by completing individual and collective training missions drawn from the Special Forces Assignment and Selection (SFAS) process.
Players who complete the SFAS process have the opportunity to take on elite Special Forces roles and are qualified to play in multiplayer missions with units ranging from the elite 82d Airborne Division to the 75th Ranger Regiment.
Includes the complete game Americas Army: Operations.
Main features:
- Authentic U.S. Army experience Realistic depiction of the values, units, equipment and career opportunities that make the Army the worlds premier land force continually updated to incorporate new occupations, units, technologies and adventures.
- Realistic roles Including Weapons Specialist (18B), Intelligence (18F), Engineer (18C), Communications (18E) and Combat Medic (18D).
- Challenging Green Beret training Complete training missions drawn from the SFAS process at Fort Bragg. Successfully complete SFAS and advance to Special Forces Qualification Course (Q-Course) missions to explore new Special Forces roles.
- Intense Special Forces action Intense Special Forces action Experience multiplayer missions in simulated combat environments. Take part in missions that span the capabilities of a Special Forces detachment, including unconventional warfare, direct action, surveillance and reconnaissance and Combat Search and Rescue.
- Detailed Special Forces equipment and military hardware Building on the equipment available in Americas Army: Operations, Americas Army: Special Forces adds the M4 Carbine featuring the Picatinny rail mod system for attaching laser-aiming devices and sighting systems; the MP5SD6 Remington 870 shotgun for forced entry; the AT4, a shoulder-fired anti-tank rocket and the BDM, a shoulder-fired bunker demolition munition.
- Accurate Soldier behavior Players are bound by the laws of land warfare, Army values (honor, duty and integrity) and realistic rules of engagement as they navigate challenges in teamwork-based multiplayer force vs. force operations. Mission accomplishment standings are evaluated based on team effort and adherence to a set of values and norms of conduct.

Trophy project is an action car racing game.

Trophy is an action car racing game for Linux. Its 2D (top-view) but aims to provide high quality graphics.

You can shoot, drop bombs, and drive against the other players.

gladder is an extension that eases the pain of Internet censorship in mainland China.
Get over Great Firewall with Great Ladder!
This extension eases the pain of Internet censorship in mainland China.
Main features:
- Automatically try to open a banned page with a online proxy after you entered the address
- Only auto-redirects pages when you are not using a proxy
- Automatically redirects banned links to visitable URLs in ThunderBird
- If you failed to open a page, click the button on the status bar, it will use a default online proxy to open the page
- List of banned pages is being updated from the Internet every hour

stephanie is a program for hardening OpenBSD for multiuser environments.

Mmmmm, OpenBSD. Functional, secure, free. With an emphasis on security and integrated cryptography, it carries an excellent reputation for plain old "you-just-cant-hack-this-ness". Not perfect, but nothing is, at least theyre not wearing suits and lying to you.

There are a few roles where i believe OpenBSD fits perfectly. One of these is in multiuser environments, where you have large numbers of possibly malicious users with local access. Here the OpenBSD teams commitment to auditing and fixing code provides a level trust in the environment which is hard to find elsewhere. Also, their efforts to provide integrated cryptography means setting up secure access is easy. So, lets take advantage of the freely available source and tailor it to our specific needs.

Details:

In Phrack 54, route|Mike Schiffman wrote a series of patches for OpenBSD 2.4 for Trusted Path Execution (TPE). Stephanie brings a modified version of these up to speed for OpenBSD 2.8 - 3.0, along with some additional features. A trusted path is one where the parent directory is owned by root and is neither group or other writeable. The TPE works off an internal list of trusted user ids. If a given user tries to execute a file not in a trusted path, and their user id is not in the kernels trusted list, they are denied execution privileges. In real terms, this means they cant download, compile and run krad-sploit.c.

In addition to the TPE, a series of privacy patches came along too. Originally supplied as patches for the individual utilities, these are now implemented through kvm(3), and honour trusted users (ie, trusted users are allowed to see all system information). As a practical example, this means that untrusted users will only be able to see information about processes they own, and the stat tools (netstat, iostat, vmstat, etc) will generally be broken for them. It has been pointed out that by going through trying to kill every possible process id you can find other users processes, but you cant really gain any information on them, so this is not really a great concern.

The original TPE patches had one known way of bypassing the execution restrictions, which was using shell redirection to allow arbitrary interpreted language scripts to be run (perl, sh, etc). This has been fixed up, but could possibly be a big pain in the ass, so please pay attention. When an interpreter is invoked, like most things, it creates a new process group with a job count of one. When a series of commands are connected via the | character on the command line, all the commands belong to the same process group and the job count represents the number of commands eg ps -ax | grep something | awk {print $1} has a job count of three, and the ps, grep and awk processes all belong to the same process group.

The one exception to this is when a user logs in, where we find their shell has its job count set to zero. So how can we use this to prevent shell redirection for a given set of programs? We need to be able to distinguish between ordinary commands and interpreters. At the moment this is done by setting the immutable flag on them. So, in kern_exec(), if we find an untrusted user executing something with the immutable flag set and a job count greater than zero, we flag the process as being potentially dodgy. Then in other system calls we disallow read()ing from fd 0 (stdin) and things like dup2(0, n) if the process has been flagged.

There are two main disadvantages to this. First is the system will need to be brought down to single user mode if the interpreter needs to be patched, and secondly, people will have a hard time suing to an untrusted user. Of course, when a user has shell, they can still type any commands that could otherwise be placed in a shell script, but at the least, this will raise the bar a bit.

Finally, Stephanie brings restricted symbolic links, ala the openwall patches for linux. As time permits, im still working on adding additional features, and will add bits of the openwall stuff i like. The basic goal is to add an extra layer of security without being a monumental pain in the ass to legitimate users, so some things wont be there. I havent added the additional hard link restrictions of the openwall patch, but will do something about this later as time permits.

Installing:

Step by step instructions are presented in the install guide which comes with the source. Read it all first, but its reasonably straight forward. It would be a good idea to read the original article (local copy) if you havent already.

Its distributed under the original two clause BSD license, mess with it all you want, but dont get cranky at me if it breaks something.

You can also read the tpe_adm(8) man page online.