Slashdot Mirror

cfelde writes "A Windows Web server is more secure than a similarly set-up Linux server, according to a study presented yesterday by two Florida researchers." In addition to the Seattle Times article, there is also coverage on VNUnet. From the article: "The researchers, appearing at the RSA Conference of computer-security professionals, discussed the findings in an event, 'Security Showdown: Windows vs. Linux.' One of them, a Linux fan, runs an open-source server at home; the other is a Microsoft enthusiast. They wanted to cut through the near-religious arguments about which system is better from a security standpoint."

MerlinTheGreen asks: "I read a recent interview with Microsoft's Nick McGrath in which he claimed, 'There a myth in the market that there are hundreds of thousands of people writing code for the Linux kernel. This is not the case; the number is hundreds, not thousands.' This annoyed me a little as it perpetuates the idea it is Linux rather than the distribution that, in Microsoft-speak, would represent the value proposition. Recognizing that it's the distro that really counts, I wondered how many people were involved in mine. My answer is that, for FC3, I found 16921 unique e-mail address just by running a simple script over /usr/share/doc. What other estimates are there for the number of people who are involved in your distribution, and what method did you use to come up with that number?"

Martin Taylor is Microsoft's global general manager of platform strategy, but he's best-known as the man the company trots out to refute claims of Linux superiority. Here are links to several interviews he's done in the past two years: vnunet.com; CMP; Computerworld; and one on Microsoft's own site. As usual, please submit one question per post. We'll present 10 - 12 of the highest-moderated questions to Mr. Taylor about 24 hours after this post appears, and we expect to publish his answers within the next week.

black hole sun writes "Microsoft bigwig Nick McGrath claims that Linux security is highly exaggerated, and that the open source development model is 'fundamentally flawed.' The gist of his argument appears to be his claim of lack of accountability among distributors, coupled with generic statements short on facts. 'Who is accountable for the security of the Linux kernel? Does Red Hat, for example, take responsibility? It cannot, as it does not produce the Linux kernel. It produces one distribution of Linux.' He goes on to say that 'Linux is not ready for mission-critical computing. There are fundamental things missing,' pointing out the lack of a development environment and no single 'sign-on system' giving reference to Microsoft's foundering .Net passport program." I guess Linux can only aspire to the greatness of Windows when it has such secure applications as Outlook and Internet Explorer. Historically those have been proven to be of a caliber all their own.

AlanS2002 points out today's article from Iain Thomson on vnu.net, which says that "Linux systems are getting tougher for hackers to crack, security experts have reported today," summarizing "A study conducted by the Honeynet Project has found that it takes about 3 months before a unpatched Linux machine will be owned, compared with about 72 hours in the past. According to a report on the study default installations are now more secure with less services enabled by default, added to this is newer versions of software such as OpenSSH being more secure. Interestingly Solaris 8 and 9 did not fare so well."

indierockboy writes "It seems that SCO is bringing its dodgy 'Linux licenses' over here to the UK. Vnunet.com reports that SCO's expansion of their 'Linux licensing programme' makes legal action against UK users 'imminent'. Does anyone know if the ongoing cases in the USA can be used as a defense? Since SCO has yet to prove anything..."

indierockboy writes "It seems that SCO is bringing its dodgy 'Linux licenses' over here to the UK. Vnunet.com reports that SCO's expansion of their 'Linux licensing programme' makes legal action against UK users 'imminent'. Does anyone know if the ongoing cases in the USA can be used as a defense? Since SCO has yet to prove anything..."

Christopher writes "SCO has actually sold its first Linux licenses in the UK. These licenses permit the use of SCO's intellectual property that is apparently present in Linux distributions, and in binary form only. To my understanding SCO hasn't won yet and these licenses don't grant you any freedoms you didn't already have, but SCO's vice president Chris Sontag says that 20 to 30 organisations worldwide have purchased these licenses."

mjxg writes "Halo 2 has finally hit the shelves for hardcore fans. VNUnet speaks about the long lines and the 12:01am release that many stores participated in. Many people obtained the Limited Collector's Edition. Eventually we'll get word of the final first day sales to see if Halo 2 can top the sales charts for the year, or possibly become the most popular console game in history. It is already estimated to top the all-time opening day entertainment sales charts."

yeremein writes "SCO says it has found a new smoking gun in its battle with IBM. This 'bombshell' was not found in a court document; instead it came from a reporter's interview at SCOforum. The scoop? 'SCO alleges that since 2001, AIX has contained code for which IBM does not have a license. Moreover SCO claims to have found internal IBM e-mails in which IBMers acknowledge this shortcoming.' With the announcement comes a hefty boost in SCO's stock price." SCO is also going to bundle its worthless linux licenses with its Unix operating systems.

ack154 writes "An article on VNUNet gives a sharp response from Real regarding Apple's recent claims of Real using "hacker tactics" to allow music from the Real store to play on the iPod. Real states: 'Compatibility, choice and quality are critically important to consumers and Harmony provides all of these to users of the iPod and over 70 other music devices including those from Creative, Rio, iRiver and others.' The article goes on to outline what they say is a 'clear precedent' for what they have done. And in case you were under a rock it all seemed to start here earlier this week."

Barry's uncle writes "vnunet.com has an interesting interview with William Weinberg of the Open Source Development Lab (OSDL), talking about new Linux trends, challenges and security."

An anonymous reader writes "VNUnet has a story about Longhorn having the ability to run unix or linux code via SFU." Microsoft's site has a lot more information about SFU itself. Regardless of ideological bent, it's an interesting piece o' technology.

securitas writes "Computerworld's Todd R. Weiss reports that the USA, Britain and Australia have signed a Memorandum of Understanding (MoU) for six agencies to share resources to fight spam. The MoU lets the government agencies 'share information and work together to detect, investigate and track spammers' as well as 'exchange evidence and coordinate enforcement efforts.' The agencies involved include the US Federal Trade Commission (FTC), its counterparts in the UK and Australia, and several other consumer protection agencies. You can get a full list of participating government bodies from the FTC press release, 'Consumer Protection Cops Join Forces to Fight Illegal Spam'. You can also get the spam MoU full text in PDF format from the FTC. More at The Register, vnunet, The Age/Sydney Morning Herald and InfoWorld."

drizst 'n drat writes "Article posted recently on ZDNet that 'companies outside the United States that use Linux now face the threat of legal action from the SCO Group, following the announcement on Wednesday that SCO's licenses are available worldwide.'" And cbiltcliffe writes "Vnunet is reporting that SCO is now threatening legal action against UK businesses that run Linux. Yet again, they claim they're going to initiate legal action against Linux users 'within a couple of weeks.' (Funny...weren't they saying that back in September?) They also claim that Novell and HP indemnification schemes are essentially useless (similar to SCO's Linux licences). It definitely appears the media is getting somewhat wiser to the FUD, however, as the story reports 'The run-time licence only permits use of what SCO says is its IP,' rather than 'The licence permits use of SCO's IP' like we would have heard a couple of months ago."

Erik Rauch writes "The European Beagle 2 Mars Lander, set to touch down on Mars on Christmas Day, will be controlled by a single Linux-based workstation. I wonder if the Spacecraft Control Operating System is free software?"

Bootsy Collins managed to combine all of today's SCO stories. He writes "The firm of David Boies, SCO's attorney in charge of their Linux IP cases, has announced their compensation (so far) from SCO: $1 million USD in cash, and $8 million in SCO stock. Keeping that stock price high until they can sell is clearly of some importance to Boies, Schiller and Flexner LLP. Given the cost of selling a $50 million convertible note to fund their legal actions, the actual cost to SCO is more like $17 million USD. Meanwhile, SCO CEO Darl McBride is saying that Novell's purchase of SuSE violates a non-competition agreement reached when SCO bought the Unix source, and thus is legally actionable by SCO. Over at the Register, they've noticed that SCO's latest SEC filings indicate how firmly they're putting all their eggs in the legal basket: the filings effectively say that 'SCO has already lost business from its loyal customer base, and it expects to lose more.' And finally, in response to a poor response to SCO's attempts to get Fortune 1000 companies to pay $699/server for 'Linux licenses' before the fee jumped to $1399, SCO has announced that the $699 discount rate will apply to the end of 2003. Hurry before time runs out again."

orbital3 writes "The UK, as of October 31, 2003, became the sixth nation to implement the laws required to comply with the European Union Copyright Directive with its Copyright and Related Rights Regulations 2003 legislation. This is a short little article about it and here is a copy of the law itself."

geoff313 writes: "It would appear that Microsoft is making a real push for the migration of existing COBOL applications to Windows and their .Net platform. Micro Focus, a company who makes COBOL migration products and last year became a member of Microsoft's Visual Studio Industry Partner (VSIP) program, announced their Net Express with .Net product, a plug-in to Microsoft Visual Studio .Net 2003. It allows for COBOL code to be integrated and manged with other code in Visual Studio. In an interview with eWeek he declares that 'Micro Focus and Microsoft are bringing the mainframe to Windows and .Net'. This makes me wonder, are there any Open Source projects working to provide for this eventual migration? Gartner estimates that over 75% of business data is processed by an approximately 200 billions lines of COBOL, so this seems like a huge potential market to lose to Microsoft."

scrm writes "Plaxo is an interesting new service from Sean Parker, co-founder of Napster. It's a P2P-based add-on to Outlook that confronts the old problem of keeping contact lists up-to-date. Mozilla mail support is on the cards, and yes, the company does 'take privacy very seriously'. Check the press here(1), here(2) and here(3). You can also access your contact list over the web."

jmhowitt writes "Tests by IT Week Labs show the latest version of the open-source Samba file and print server software is 2.5 times faster than Windows Server 2003 in the same role. The news comes as many firms are grappling with the consequences of Microsoft ending support for NT4, coupled with uncertainty about when Microsoft will next update Windows. The performance difference between Windows Server 2003 and Samba 3 has increased dramatically compared with Samba 2 and Windows 2000 Server."

yeremein writes "According to this vnunet.com article, SCO's code changes Update: 10/04 20:51 GMT by T : (This should read "SGI's" rather than "SCO's.") removing arguably System-V-related code from SGI's Linux submissions is 'not enough.' According to Blake Stowell of SCO, 'Making minor amendments to its XFS file system doesn't cure the breach. SGI must do more as outlined [in the August letter] to cure all of their breaches.' But later on in the article, we learn what was outlined in the August letter: 'We don't believe that SGI has taken all of the steps necessary to cure all of the breaches, and in fact in our letter to them, we state "SGI's breaches of these agreements cannot be cured."' So SCO essentially told SGI, 'You're in violation of our contract and unless you remedy the violations, we'll pull your UNIX license. Oh, BTW, you can't remedy the violations.' This looks to me like the clearest example yet of how SCO is acting in bad faith." Read on below for another snippet of SCO strangeness.

An anonymous reader writes "As many are aware, SCO has sought (and got) a 4 month extension to its IBM lawsuit. According to the Salt Lake Tribune: 'SCO spokesman Blake Stowell said Tuesday that he understood the extension is being sought "for the purpose of gaining documents from IBM related to the patents they claim. . . . Some of the patents aren't even filed with the U.S. Patent Office, as far as we can learn."' I thought this was worth looking at, and quickly found that the patents in question are 4,814,746, 4,821,211, 4,953,209, and 5,805,785 - which can be found by typing in their numbers in this USPTO form."

Tonight's Slashback brings updates and clarifications to several previous Slashdot stories, so read on below for information on the (over-stated) recall of Segway scooters, the fate of RAV AntiVirus's Linux development team, VeriSign's Site Finder, the (latest) Lindows v. Microsoft scuffle, and more.

Linux antivirus developers join Kaspersky Labs prostoalex writes "The Linux development team of Romania-based RAV AntiVirus, acquired this June by US-based Microsoft, joined Russia-based Kaspersky Labs. This transition took place after Microsoft confirmed there will be no Linux or Novell version of antivirus software. Kaspersky Labs now works on RAV Migration program for Unix/Linux users, since the company officials deem this market as one of the fastest-growing."

VeriSign must love attention. talon77 writes "Netsys is reporting that a class action lawsuit has been filed against Verisign due to their Sitefinder. It's about time."

And Anonymous Brave Guy writes "VeriSign are in legal trouble yet again, this time for handing over a domain name to a former employee of the former holder. Also some interesting tidbits in here about the impact of the sex.com case, the fact that since July domain names are regarded as property under U.S. law, and the idea that VeriSign might themselves be held accountable for punitive damages awarded against someone who takes over a domain name improperly."

Piling on, Anonymous submits: "Verisign seems to have issues with returning proper response packets for DNS queries on unused domains, so we thought we would give them a quick reminder in case they forgot what the right answer was. You can find pictures here. (This was on their building in Mountain View, and the signs said 'Verisign/Netsol, as if people didn't hate you enough already... How greedy/stupid are you? [Made with figlet/vim/a2ps/poster.c]')"

Update: 10/02 00:37 GMT by T : And (ooops!) this part got chopped off: "Note that the Verisign web search is powered by Inktomi for search and overture for ads, both of which are now owned by Yahoo. You can always vote with your dollars and your clicks."

Ohio uncappers peer at the ToS. Mike writes "Looks like Broadband Reports has posted a follow up to what happened to those Ohio Cable broadband users who had FBI agents confiscate their hardware for uncapping their modems (See original BBR story here, Slashdot story here). Looks like most of the offenders settled for fines and community service, but one took the case all the way, and eventually got it overturned because the cable company's AUP failed to clearly mention their legal stance on uncapping."

Thorn-in-side lessons, part IIXIIXV. jlechem writes "Lindows and Microsoft are at it again. Wired News is running a story about Lindows refusing to take down the settlement website reported on by Slashdot earlier. CEO Michael Robertsone stated 'Our plan is to continue to offer the MSfreePC service in spite of your threats. If required, we will be a voice in the courtroom defending a consumer's right to use technology and an online process to secure their settlement claims.'"

MPAA Scratches Oscar Screeners xstein writes "In a follow up to this story, the major studios have agreed to go along the MPAA's proposal to stop sending out screener tapes and DVDs to Academy members. The agreement would include MPAA's seven studio members, Disney, WB, Sony, Universal, 20th Century Fox, Paramount, and MGM, as well as their affiliates, which include New Line, Miramax, Focus Features and Sony Pictures Classics. Dreamworks, although not an MPAA member, also agreed to the ban. This move scratches a longstanding tradition, and is seen to hurt smaller, independent-minded movies distributed by MPAA members the most, though may allow truly independent studios such as Lions Gate to gain extra attention with their screener tapes. E! Online and Salon.com have the scoop."

Phantom Offices? Ray B writes "On September 18th, Slashdot posted about an article on the Phantom video game console. Of particular note in the primary article investigating the Phantom's founder(s), was that the company did not even have physical offices.

Just four days later, the Phantom email Newsletter #2 is issued, with the first bit of news being:

"Infinium Labs recently signed a five-year lease on 10,000 sq. ft. of prime office space to locate its corporate offices in the Centre Pointe Building in downtown Sarasota, Florida. The Centre Pointe offices are in close proximity to many of the company's early investors, its corporate legal counsel and the industrial design firm that is developing the Phantom Game System(TM) prototypes"

Coincidence or damage control?"

Well, start with the Python then and work your way up. Wolfbone writes "A recent edition of 'Global Business,' a BBC World Service programme available here in RealAudio form, contains an admission that the BBC cannot afford to put it's entire archive online, contradicting an earlier Slashdot story and the BBC's own report. Even though it only has 11.56 Petabytes of the stuff, some of it recorded on wax cylinders, it would be too expensive, apparently, to keep their earlier promise. The rest of the programme is about the more general problems of long term archiving of data and how some organizations still don't trust digital electronic formats and prefer to stick with paper and microfiche."

Segway recall: in and out in 10 minutes! ptorrone writes "I got my Segway HT updated today, the 'recall' is a simple software update, it took 10 minutes and that was about it. To clarify what the recall is ...the HTs are not being sent back, Segway has people in each state of the USA and they update them. So far all owners have been notified and thousands have updated. The update makes it harder for people to ride after numerous low battery alerts (3 people out of 6,000 thought something else). Here are my pictures from the update procedure."

akb writes "Indymedia UK is reporting that after protests against the trial of RFID tags by Gillette at a Tesco store in Cambridge, increasing press coverage, a boycott, and the growing mobilisation of campaigners against the intrusive use of the technology, Gillette have withdrawn their trial. RFID (Radio Frequency ID) tags are small tags containing a microchip which can be 'read' by radio sensors over short distances (for background see SchNEWS Feature / 2 part Guardian Article)."

uninet writes "The SCO Group, Inc. today released a statement concerning the lawsuit filed against it yesterday by Red Hat, Inc. The release quotes Darl McBride, SCO's President and CEO, as being 'disappointed' with Red Hat CEO Matthew Szulik for not being 'forthcoming' about Red Hat's intentions in a previous discussion." Reader psykocrime adds "According to this SuSE press release, SuSE has publically announced their support for RedHat's actions against SCO. Quoting from the press release: 'SCO has already been halted in Germany and we applaud Red Hat's actions to help end their activities in the US -- and beyond. We applaud their efforts to restrict the rhetoric of the SCO group -- and the FUD they are trying to instill -- and will determine quickly what actions SuSE can take to support Red Hat in their efforts.'" Read on for a few more links.

Vladimir writes "What no one has really touched upon is that the SCO vs. IBM court date is in April 2005, which could mean that the resolution of this case could be somewhere in 2006-2007, by which time Linux or any other OS may be irrelevant. People please keep your wallets in your pocket. Also, this lawyer has a long analysis of SCO extortion attempts and debunks a lot of their FUD."

Besides which, Omega writes "VNUnet has a story on how the economic analysis firm The Butler Group predicts that even if SCO can demonstrate there is offending code in the Linux kernel, it could easily be replaced."

mpsmps writes "vnunet.com has a long interview with SCO CEO Darl McBride devoted entirely to the SCO/IBM suit. McBride radiates confidence, describing SCO's contracts as "bullet-proof." He says he thinks IBM is desperate to buy SCO because "the last thing [IBM wants] to hear is the testimony that is going to come out," but that SCO isn't interested in being acquired. Read the interview for much more on these and other topics." See also part 2 and part 3 of the interview.

mpsmps writes "vnunet.com has a long interview with SCO CEO Darl McBride devoted entirely to the SCO/IBM suit. McBride radiates confidence, describing SCO's contracts as "bullet-proof." He says he thinks IBM is desperate to buy SCO because "the last thing [IBM wants] to hear is the testimony that is going to come out," but that SCO isn't interested in being acquired. Read the interview for much more on these and other topics." See also part 2 and part 3 of the interview.

mpsmps writes "vnunet.com has a long interview with SCO CEO Darl McBride devoted entirely to the SCO/IBM suit. McBride radiates confidence, describing SCO's contracts as "bullet-proof." He says he thinks IBM is desperate to buy SCO because "the last thing [IBM wants] to hear is the testimony that is going to come out," but that SCO isn't interested in being acquired. Read the interview for much more on these and other topics." See also part 2 and part 3 of the interview.

mpsmps writes "vnunet.com has a long interview with SCO CEO Darl McBride devoted entirely to the SCO/IBM suit. McBride radiates confidence, describing SCO's contracts as "bullet-proof." He says he thinks IBM is desperate to buy SCO because "the last thing [IBM wants] to hear is the testimony that is going to come out," but that SCO isn't interested in being acquired. Read the interview for much more on these and other topics." See also part 2 and part 3 of the interview.

An anonymous reader writes "Developers implementing 'weekend inspiration' are more dangerous than hackers. Vnunet.com has this article about how eager developers and administrators create more troubles than hackers and viruses do for websites. How about those of us who start the week with a cup of coffee and the morning online-news? My inspiration and new ideas for development are definitely not the cause of the Monday-crash hour ... I think."

An anonymous reader writes "Developers implementing 'weekend inspiration' are more dangerous than hackers. Vnunet.com has this article about how eager developers and administrators create more troubles than hackers and viruses do for websites. How about those of us who start the week with a cup of coffee and the morning online-news? My inspiration and new ideas for development are definitely not the cause of the Monday-crash hour ... I think."

So, today's one of those days when every bit of news is dominated by Microsoft. To spare you six different stories about the Borg, we'll assimilate them all into this one. You have seen the stupid Passport hole in an earlier story; also the iLoo, although that hasn't stopped you from submitting stories about it, oh no. New news: a report paid for by Microsoft shows that Windows is a better server than Red Hat. A class-action suit has been filed charging that MSN and Best Buy combined to scam customers. The WINHEC conference is ongoing - Steve Ballmer says DRM is an opportunity, not a prison, the Xbox is going to be your home communications center, Wired talks about how hardware will be changed to imprison users, and once you're locked in to Microsoft you get to pay more each year. An article describes why user desktops are locked down. Oh, and here's another on DRM, just because.

prestidigital writes "vnunet has a brief but interesting article in which Craig Fiebig, general manager of Microsoft's security business unit, is quoted as saying "In dollar terms, patching is the most expensive security measures and keeping your antivirus descriptions up to date is the least." That seems like an important statement coming from a company who's patches are possibly responsible for 45% of traffic on some networks."

ntmonkey writes "According to this article, Microsoft has authorized InterVideo to port Windows Media Player to Linux. However, WMP will not be available to normal folks...Microsoft will only allow it to be distributed via set top boxes and the like."

AEton writes "Vnunet and others are reporting that Windows XP's Service Pack 1 has introduced a flaw into the operating system. Changes to memory handling code result in programs which often allocate memory (which is many of them) can take up to ten times longer than normal to start. Microsoft has acknowledged the problem in Q815411, and while a patch is available by request from Microsoft Product Services, it will not be widely released until Service Pack 2."

AEton writes "Vnunet and others are reporting that Windows XP's Service Pack 1 has introduced a flaw into the operating system. Changes to memory handling code result in programs which often allocate memory (which is many of them) can take up to ten times longer than normal to start. Microsoft has acknowledged the problem in Q815411, and while a patch is available by request from Microsoft Product Services, it will not be widely released until Service Pack 2."

ackthpt writes "One year ago Bill Gates issued forth an email directing the company to work toward Trustworthy Computing, making Microsoft operating systems, applications and services secure and reliable. Where is that effort at today? vnunet has this Q&A with Microsoft security chief Stuart Okin. Slow, steady progress seems to be the result. They've targeted Security, Privacy, Reliability and Business Integrity, but so far have had a go at Privacy. Okin indicates the strategy may take 5 to 15 years, but more immediate milestones are targeted within the next two years and focusing on reducing vulnerabilities in the next version of Windows, rather than attempting to fix 2000 or XP. I'd chalk this up as a frank and honest interview, rather than madly spun, and paints a picture of the massive cat herding effort undertaken."

ackthpt writes "One year ago Bill Gates issued forth an email directing the company to work toward Trustworthy Computing, making Microsoft operating systems, applications and services secure and reliable. Where is that effort at today? vnunet has this Q&A with Microsoft security chief Stuart Okin. Slow, steady progress seems to be the result. They've targeted Security, Privacy, Reliability and Business Integrity, but so far have had a go at Privacy. Okin indicates the strategy may take 5 to 15 years, but more immediate milestones are targeted within the next two years and focusing on reducing vulnerabilities in the next version of Windows, rather than attempting to fix 2000 or XP. I'd chalk this up as a frank and honest interview, rather than madly spun, and paints a picture of the massive cat herding effort undertaken."

Versaj writes "In a move that may further escalate the growing rift between Apple and Microsoft, Apple openly condemned Microsoft's $1.1bn settlement to in the recent class action lawsuit. Apple interprets the settlement as Microsoft's attempt to thwart competition in the California education market. "Remember: this is a settlement imposed against Microsoft for breaking the law. It should not allow Microsoft to unfairly compete in education, one of the few remaining markets where it doesn't have monopoly power.""

hether writes "Customers of the auction site eBay have been targeted by a site called ebayupdates.com. The site attempts to steal credit card details from eBay's 55 million customers. The SANS Institute Internet Storm Center issued the warning on this one. Info about the scam can be found on the BBC site, CNN, CNet, vnunet, and more. Funny enough there's no mention of this on the eBay site..."

An anonymous reader writes "The European arm of Banco do Brasil, the largest bank in South America, is switching from Windows to Linux to cut costs and centralise support. The long-term strategy is to phase out Windows completely. Linux is also being used to replace Windows on desktops. Vnunet has the whole story."

An anonymous reader writes "The European arm of Banco do Brasil, the largest bank in South America, is switching from Windows to Linux to cut costs and centralise support. The long-term strategy is to phase out Windows completely. Linux is also being used to replace Windows on desktops. Vnunet has the whole story."

An anonymous reader writes "According to this InfoWorld article, a buffer overflow exploit has been discovered for Microsoft's PPTP implementation, which leaves Microsoft VPN solutions vulnerable to exploit. This overflow was discovered by the German security firm Phion; they have posted more info on this page." We might as well throw in yet another remote exploit for FrontPage, too. No, not last week's remote exploits - these are new. Coincidentally, the front group Microsoft organized for the purpose of quashing bug disclosure (that is, reducing Microsoft's bad press) is just now getting underway.

fjordboy writes "Scholars from MIT, the University of California in LA, and the University of London have worked together to oppose laws restricting children from playing violent video games. The battle is currently taking place in the US Court of Appeals and the case seems to hold a decent amount of merit. From Vnunet:"Experts on childhood and adolescence have long recognised the importance of violent fantasy play in overcoming anxieties, processing anger, and providing outlets for aggression." Similar article from Reuters as well."

randomErr writes "The worms, Slapper.B and Slapper.C, which exploits a known buffer overrun vulnerability in the Secure Sockets Layer 2.0 (SSLv2) handshake process has infected thousands of Web servers worldwide, according to Helsinki-based F-Secure Corp., a computer and network security company. "

An anonymous reader writes "Vnunet reports on the low adoption of Apache 2 has caused its producers to advocate freezing development of the open-source Web server until makers of add-in software catch up. Almost six months after the launch of Apache 2, less than one percent of sites use it, due to a lack of suitable third-party modules." I'm not sure where they are getting the freezing Apache development part, more talk about forking for 2.1 right now on the httpd mailing list. The article does have it right though that until there is a reason to upgrade and the modules are in place that adoption is not going to happen. While the cores of both Perl and PHP are thread-safe, the third-party modules are not. This renders one the larger reasons to use Apache 2.0, the threaded http support, useless for applications using either of these application layers. It comes down to the question of whether the third-party module writers are better off supporting what is used or what is new.

An anonymous reader writes "Vnunet reports on the low adoption of Apache 2 has caused its producers to advocate freezing development of the open-source Web server until makers of add-in software catch up. Almost six months after the launch of Apache 2, less than one percent of sites use it, due to a lack of suitable third-party modules." I'm not sure where they are getting the freezing Apache development part, more talk about forking for 2.1 right now on the httpd mailing list. The article does have it right though that until there is a reason to upgrade and the modules are in place that adoption is not going to happen. While the cores of both Perl and PHP are thread-safe, the third-party modules are not. This renders one the larger reasons to use Apache 2.0, the threaded http support, useless for applications using either of these application layers. It comes down to the question of whether the third-party module writers are better off supporting what is used or what is new.

An anonymous reader writes "I found this story on UnixReview.com - vnunet has some commentary about UnitedLinux and it sounds like it's struggling." I dunno - I plan on still giving them the benefit of the doubt, and see what comes out. Heck, I might even try installing a machine with the "united distro" - but it's still an interesting pickle some of the primary members are in.

the special sauce writes "This vnunet.com article discusses the trend of attacks this year as compared to last. Over all, according to mi2g, attacks are on the rise. However, though attacks on Linux systems are up, attacks on Windows based systems have actually dropped dramatically when compared to last year. If the trend continues, by the end of the year, attacks on Linux systems may surpass attacks on Windows systems."

the special sauce writes "This vnunet.com article discusses the trend of attacks this year as compared to last. Over all, according to mi2g, attacks are on the rise. However, though attacks on Linux systems are up, attacks on Windows based systems have actually dropped dramatically when compared to last year. If the trend continues, by the end of the year, attacks on Linux systems may surpass attacks on Windows systems."