A developer's peers will generally know whether they provide good value or not. When preparing to do a performance review of a developer, ask for feedback about that developer from other developers on the team (and other co-workers they interact with on other teams).
A developer's peers will generally know whether they provide good value or not. When preparing to do a performance review of a developer, ask for feedback about that developer from other developers on the team (and other co-workers they interact with on other teams).
Some corporations aspire to higher levels of decency.
B Corps are for-profit companies certified by the nonprofit B Lab to meet rigorous standards of social and environmental performance,
accountability, and transparency.
The company I work for (as a software developer) is a B Corp.
You can find out more at https://www.bcorporation.net/what-are-b-corps
It's all fine until you start modifying triggers and templates. First there's the evil, kludgey combination of bad perl and bad Mason which you have to write overlays to, then once you've done this, you can't upgrade! If you upgrade, all of your overlays break. So you end up stuck with an out of date version with patch on top of patch.
Yes. If you make customizations, then you need to maintain them and update your patches to the current version.
This issue is not specific to RT. It is a fundamental issue of software development and revision control, and will affect you any time you make local customizations to software.
Perhaps you think it would be (easier|cheaper|Soviet America) if you had some shrink-wrapped proprietary software which you couldn't customize?
Why would botnet harvesting be done by domain name anyways? Wouldn't it be easier to collect systems by just running through accessible IP addresses?
RTFA. The bots are generating domain names which they then attempt to contact in order to re-connect with botnet control.
It's very clever, really. The algorithm can generate a near-endless list of domain names, and all the botnet owners have to do is register one of them and set it up to respond to the bots.
On the other hand, in order to block this attempt by the bots to re-connect with the botnet owner, you have to pre-emptively register ALL domains which the algorithm generates. So in the long run, it's not financially feasible to block this.
I assume that the researchers are now going to try to make arrangements directly with the registrars to block registration of such domains in the future -- hope they can get co-operation on this.
(i.e. create a harmless file which can't be overwritten; which will prevent the worm from installing itself. This assumes you don't run apache as root. God help you if you do.)
Another program, called the Global Intellectual Property Rights Academy, would train foreign judges, enforcement officials and other stakeholders in international intellectual property obligations and best practices
"More than a third of the 493 PC users surveyed by the nonprofit National Cyber Security Alliance (NCSA) said they had a greater chance of winning the lottery or being struck by lightning than of being hit by malicious code."
I abandoned PHP several years ago after having to deal with its many warts. It's not like you can't get things done in PHP, but it's often kludged and awkward.
If you want a toolkit/language that won't make site maintenance hell, OpenACS (tcl) or Zope (python) is probably a better bet.
I discovered Webware, which is an application server, framework and toolkit. It's python, but doesn't force an ideology on you (like Zope does). I've been using it for 3 years and I haven't looked back.
Does anyone honestly think that putting that bit of money elsewhere would solve whatever domestic problems you want fixed? Have we yet cured hunger, poverty, or undereducation? No? Well, we've been throwing billions at them so far.
Perhaps part of the problem is that the US is more interested in "solving problems" in other countries than dealing with domestic problems. The US currently spends 4-5 times more on the military than it does on educating its own citizens. See page 51.
Why is it the Free software community is seen as showing its "dark side" simply when they defend their own intellectual property? Any commercial entity does exactly the same thing.
Contributors to the Linux kernel have chosen to license their work under the GPL, and that lays down the terms for usage of Linux. If Cisco doesn't want to use the software under these terms, they are obligated to switch to a different OS.
The enforcement of the GPL is not backhanded and should not be unexpected; the FSF is simply ensuring that technology based on GPL code is contributed back to the community. This is the primary goal of the FSF, after all, which they've never tried to hide: to foster development of public software and ensure that it remains public.
Slashdot Mirror
A developer's peers will generally know whether they provide good value or not. When preparing to do a performance review of a developer, ask for feedback about that developer from other developers on the team (and other co-workers they interact with on other teams).
Reply to This
Duh, sorry. Posted to the wrong story. :(
A developer's peers will generally know whether they provide good value or not. When preparing to do a performance review of a developer, ask for feedback about that developer from other developers on the team (and other co-workers they interact with on other teams).
Some corporations aspire to higher levels of decency.
B Corps are for-profit companies certified by the nonprofit B Lab to meet rigorous standards of social and environmental performance,
accountability, and transparency.
The company I work for (as a software developer) is a B Corp.
You can find out more at https://www.bcorporation.net/what-are-b-corps
"Transplantation" sounds like a Bushism to me. "Transplant" is already a noun, thank you very much.
It's all fine until you start modifying triggers and templates. First there's the evil, kludgey combination of bad perl and bad Mason which you have to write overlays to, then once you've done this, you can't upgrade! If you upgrade, all of your overlays break. So you end up stuck with an out of date version with patch on top of patch.
Yes. If you make customizations, then you need to maintain them and update your patches to the current version.
This issue is not specific to RT. It is a fundamental issue of software development and revision control, and will affect you any time you make local customizations to software.
Perhaps you think it would be (easier|cheaper|Soviet America) if you had some shrink-wrapped proprietary software which you couldn't customize?
Why would botnet harvesting be done by domain name anyways? Wouldn't it be easier to collect systems by just running through accessible IP addresses?
RTFA. The bots are generating domain names which they then attempt to contact in order to re-connect with botnet control.
It's very clever, really. The algorithm can generate a near-endless list of domain names, and all the botnet owners have to do is register one of them and set it up to respond to the bots.
On the other hand, in order to block this attempt by the bots to re-connect with the botnet owner, you have to pre-emptively register ALL domains which the algorithm generates. So in the long run, it's not financially feasible to block this.
I assume that the researchers are now going to try to make arrangements directly with the registrars to block registration of such domains in the future -- hope they can get co-operation on this.
Don't say "The article about Novell" because there might be 3 in the last 2 days.
Two of which are dupes.I'd recommend actually fixing the vulnerable scripts, but if you like hackish, temporary solutions, here's a better one:
/tmp/lupii /tmp/lupii /tmp/lupii /tmp/lupii
# rm -f
# touch
# chown root:
# chmod go-rx
(i.e. create a harmless file which can't be overwritten; which will prevent the worm from installing itself. This assumes you don't run apache as root. God help you if you do.)
Green is not black and white.
You must be new here.
The internet has all the answers. Just swallow the blue pill:
http://www.geobytes.com/IpLocator.htm
I've already been boycotting IE6 for the last 4 years.
These are the people whose computers are being used to send spam while they sleep.
Was this ever in doubt?
I abandoned PHP several years ago after having to deal with its many warts. It's not like you can't get things done in PHP, but it's often kludged and awkward.
I discovered Webware, which is an application server, framework and toolkit. It's python, but doesn't force an ideology on you (like Zope does). I've been using it for 3 years and I haven't looked back.
Not according to the budget. Do you have a source for this information?
Perhaps part of the problem is that the US is more interested in "solving problems" in other countries than dealing with domestic problems. The US currently spends 4-5 times more on the military than it does on educating its own citizens. See page 51.
Why is it the Free software community is seen as showing its "dark side" simply when they defend their own intellectual property? Any commercial entity does exactly the same thing.
Contributors to the Linux kernel have chosen to license their work under the GPL, and that lays down the terms for usage of Linux. If Cisco doesn't want to use the software under these terms, they are obligated to switch to a different OS.
The enforcement of the GPL is not backhanded and should not be unexpected; the FSF is simply ensuring that technology based on GPL code is contributed back to the community. This is the primary goal of the FSF, after all, which they've never tried to hide: to foster development of public software and ensure that it remains public.