> MS isn't able to judge who is and isn't a pirate.
Sure, they have eyepatches and say things like "Aarrrrrr." Also, if there are 20 people in completely different IP ranges connecting to Windows Update, all have the same key, it's a good bet that it was copied. Of course, if they are volume-license keys, it could be a little less clear.
At that point, MS would have to decide which one really has the right to use it, which would be difficult, to say the least. Unless they just block all access for that key, assuming the person who "owns" the original broke their license by distributing copies to begin with. (Yeah, someone else could have copied it, I'm just "thinking aloud")
> Anyway, does it really surprise you that it is and old WinNT security hole
Yes, but no thanks to MS of course. I figured there are enough crackers/hackers/etc out there looking really hard for these vulnerabilities, so by the time 2000 came out (let alone XP & 2003s), most of the "good ones" from NT would be well-known.
> on Solaris, you can change the behavior to allow/disallow root login.
True, I should have thought longer about it before posting. There probably is a simple way to do it... The problem is finding out exactly where that simple fix is. I suppose this is a symptom of the greatness of Linux. You can change anything at all, but since there are so many options, it can be hard to find the location of the one tiny thing you want to change... Since I'm lazy, and all, I don't feel like reading a book just to configure something only slightly important.
> Unfortunately because of microsofts licensing fun, her key doesn't work with my copy,
Even better is when your business buys a set of 15 licenses (all under the same key) but the key doesn't work on any version of Win2K you own -- f'ing brilliant.
> The Pentium M architecture has a relatively high IPC,
Please excuse my ignorance, but what is IPC? Initial Product Cost? Wouldn't make much sense in context, but it's the only acronym of IPC I know. Well, International Pissing Contest too, but that's a politics thing, unrelated to tech.
> If i ask about anthrax and suitcase nukes i expect to be watched and arrested (if i am doing something wrong)
What? How is someone going to know whether or not the request is from curiosity or animosity? No, screw that. If I do complete research on how to build a nuke that could destroy the world and even write up plans for it, they still have no frigging business to even have it footnoted on a piece of paper in the basement of a library in Puxatawnee. If I buy a gram of fissible material, however, I should be hauled in for questioning. If I attempt to give that information to another person, I should be questioned.
UNDER NO CIRCUMSTANCES should the FBI even look me in the eye unless I did something, or they have evidence that I did something, illegal. Preventative action is the lie of a cause that started the bullshit in Iraq, and I don't expect our government to see its citizens as the enemy, but it does. (Geez, and I told some OTHER guy to take off the tinfoil...)
Underground passageways? Sounds interesting to me. Actually, if I wouldn't get arrested for it, I'd ask about it too.
I used to love this country and defend it, but it's crap like this that makes me say "Fuck the USA." Yeah, I'm going overboard, but I'm a bit worked up right now because of the constant ass-fucking of EVERYONE that this country has started.
> You talk about tinfoil hat wearers, but you are defending paranoia on the part of the government? Hypocrite.
You don't see a difference between the responsibility of a government and the responsibility of a citizen? Geez. If the government is not paranoid they don't get reelected. The populace is a bunch of fear-eating morons who think it's a good thing.
Maybe you pissed off a Scientologist or two -- lord knows it's easy to do, because that's not offtopic, it's perfectly in-line with the direction of that thread. Scientologists ARE litigous bastards. Oh, well maybe the offtopic part is that they already were, so therefore can't inherit a title they already have.
> Sasser is the exploit that took the less time to infect a machine after the vulnerability has been know : 18 days. > This is more than enough for a vulnerability to be patched on Linux.
Which implies it is not long enough for Windows? The patch to protect you from Sasser was out before the worm was, so unless I'm missing something, your statement proves nothing. And what do those numbers mean? Wasn't the aforementiond patch out for more than 18 days? I believe so, so your numbers are incorrect. Maybe before the vuln was known by the public, but either way, someone who keeps their Windows patches up to date will not get infected by current worms. Anyone who keeps their Linux box patched up-to-the-week will not be infected by any current worms (what, all one of them?).
No, because the underlying system (the window manager, any programs you run outside the su'ed shell) still have normal privileges. There are a ton of programs that run when you log into an X session that will have regular access. Logging into the console as root, however, does not run all that crap. Therefore, it pisses me off that I can't log into a text session as root on Mandrake 10. What f*#$ing brilliance.
> The "run as" command has no problems running installers or other graphical applications.
Unfortunately, in some cases it won't work -- if a "Run As" program calls another program, (at least in the circumstances I've seen, it may work somehow) that second program doesn't get admin privileges. With su, it keeps the user as root.
Also, I would like to be able to use "Run As" on Windows Explorer so I can move/work with admin files while logged in as a user, but sadly the file explorer will not let you do that. Well, you can use Run As, but you still can't get any of those files.
Those two problems that I have seen with "Run As" that su does not. Other than those two minor gripes, yes, it works very well.
> It's a real shame, because it's absolutely beautiful here.
Which part of Pittsburgh do you live in? Last time I was there (less than a year ago, I lived in Wheeling WV at the time) it was still a dirt hole. Nothing like Detroit, mind you, but Pittsburgh is dark, dank, dirty, and the downtown road system had to have been designed by a gaggle of morons. aA billion one-way streets, 167 degree turns -- and who the hell was the civil engineering wizard that decided it should straddle a river? There aren't enough bridges for the terrible infrastucture. What about the South Side bridge (don't recall the real name) that goes by Hooters? 5 lanes. Sometimes the middle lane goes one way, sometimes it goes another. If you're there on really "special" events, there are four lanes going one way and one lane the other. Christ, I'm surprised the city hasn't been bankrupted from lawsuits on just that bridge. Ridiculous.
I know, the problem with Pittsburgh was that it grew up from a very old city, when city planners weren't a reality, and with all the tall buildings today it would be impossible to redo everything, but they could certainly clean up the mess a little. There isn't any logical need for a three-lane one-way road through the center of downtown.
> the new one obsolete the old one, it does not append.
That right there would be the single best improvement MS could make to their patches. Unfortunately, they require so many of them that you would basically have to install a new service pack every month.
> MS isn't able to judge who is and isn't a pirate.
Sure, they have eyepatches and say things like "Aarrrrrr." Also, if there are 20 people in completely different IP ranges connecting to Windows Update, all have the same key, it's a good bet that it was copied. Of course, if they are volume-license keys, it could be a little less clear.
At that point, MS would have to decide which one really has the right to use it, which would be difficult, to say the least. Unless they just block all access for that key, assuming the person who "owns" the original broke their license by distributing copies to begin with. (Yeah, someone else could have copied it, I'm just "thinking aloud")
> Anyway, does it really surprise you that it is and old WinNT security hole
Yes, but no thanks to MS of course. I figured there are enough crackers/hackers/etc out there looking really hard for these vulnerabilities, so by the time 2000 came out (let alone XP & 2003s), most of the "good ones" from NT would be well-known.
> The hole exist since 1996. They got 8 years to patch it.
The hole that Sasser exploits was? I was unaware. Foot? Meet my buddy, Mouth.
> on Solaris, you can change the behavior to allow/disallow root login.
True, I should have thought longer about it before posting. There probably is a simple way to do it... The problem is finding out exactly where that simple fix is. I suppose this is a symptom of the greatness of Linux. You can change anything at all, but since there are so many options, it can be hard to find the location of the one tiny thing you want to change... Since I'm lazy, and all, I don't feel like reading a book just to configure something only slightly important.
> You must not know what GOOGLE stands for either.
Umm. Short for a Googolplex, inferring that they index a whole lot of pages? Or maybe it's Get On Our Great Life Engine.
> If I'm pirating the OS, I'll pirate the patches.
Yeah, really. I have a PC at work where I can just download the patches & burn them to CD. Then I don't have to worry about Windows Update at all!
> Unfortunately because of microsofts licensing fun, her key doesn't work with my copy,
Even better is when your business buys a set of 15 licenses (all under the same key) but the key doesn't work on any version of Win2K you own -- f'ing brilliant.
> The Pentium M architecture has a relatively high IPC,
Please excuse my ignorance, but what is IPC? Initial Product Cost? Wouldn't make much sense in context, but it's the only acronym of IPC I know. Well, International Pissing Contest too, but that's a politics thing, unrelated to tech.
> If i ask about anthrax and suitcase nukes i expect to be watched and arrested (if i am doing something wrong)
What? How is someone going to know whether or not the request is from curiosity or animosity? No, screw that. If I do complete research on how to build a nuke that could destroy the world and even write up plans for it, they still have no frigging business to even have it footnoted on a piece of paper in the basement of a library in Puxatawnee.
If I buy a gram of fissible material, however, I should be hauled in for questioning. If I attempt to give that information to another person, I should be questioned.
UNDER NO CIRCUMSTANCES should the FBI even look me in the eye unless I did something, or they have evidence that I did something, illegal. Preventative action is the lie of a cause that started the bullshit in Iraq, and I don't expect our government to see its citizens as the enemy, but it does. (Geez, and I told some OTHER guy to take off the tinfoil...)
Underground passageways? Sounds interesting to me. Actually, if I wouldn't get arrested for it, I'd ask about it too.
I used to love this country and defend it, but it's crap like this that makes me say "Fuck the USA." Yeah, I'm going overboard, but I'm a bit worked up right now because of the constant ass-fucking of EVERYONE that this country has started.
> You talk about tinfoil hat wearers, but you are defending paranoia on the part of the government? Hypocrite.
You don't see a difference between the responsibility of a government and the responsibility of a citizen? Geez. If the government is not paranoid they don't get reelected. The populace is a bunch of fear-eating morons who think it's a good thing.
> you're saying that asking why he wears long hair is relevant to making sure he's on the "up and up'?
No, but he didn't have to answer. He was not jailed, he could leave at any time. Take off the fucking tinfoil suit.
> they stuck in their IP into the memory standard via some (shady?) deal with the govt
Watch the paranoia, son, there's no government involvement in this except for the legal system in which the case is tried.
> RAMBUS died to show that there *is* a god after all.
Just like Jesus, except that he died for OTHER people's sins.
> Scientology
Maybe you pissed off a Scientologist or two -- lord knows it's easy to do, because that's not offtopic, it's perfectly in-line with the direction of that thread. Scientologists ARE litigous bastards. Oh, well maybe the offtopic part is that they already were, so therefore can't inherit a title they already have.
> with Windows all sorts of system administration tasks are expected of the end user.
I'm no fan of MS, but what admin tasks do (or can, even) an end user perform?
> Sasser is the exploit that took the less time to infect a machine after the vulnerability has been know : 18 days.
> This is more than enough for a vulnerability to be patched on Linux.
Which implies it is not long enough for Windows? The patch to protect you from Sasser was out before the worm was, so unless I'm missing something, your statement proves nothing. And what do those numbers mean? Wasn't the aforementiond patch out for more than 18 days? I believe so, so your numbers are incorrect. Maybe before the vuln was known by the public, but either way, someone who keeps their Windows patches up to date will not get infected by current worms. Anyone who keeps their Linux box patched up-to-the-week will not be infected by any current worms (what, all one of them?).
(FD: I hate MS, but don't like FUD from any side)
> It's not like you have to worry about The Sims needing administrative access to run.
Does your company have a CEO?
> Isn't "su" effectively logging in as root?
No, because the underlying system (the window manager, any programs you run outside the su'ed shell) still have normal privileges. There are a ton of programs that run when you log into an X session that will have regular access. Logging into the console as root, however, does not run all that crap. Therefore, it pisses me off that I can't log into a text session as root on Mandrake 10. What f*#$ing brilliance.
> The "run as" command has no problems running installers or other graphical applications.
Unfortunately, in some cases it won't work -- if a "Run As" program calls another program, (at least in the circumstances I've seen, it may work somehow) that second program doesn't get admin privileges. With su, it keeps the user as root.
Also, I would like to be able to use "Run As" on Windows Explorer so I can move/work with admin files while logged in as a user, but sadly the file explorer will not let you do that. Well, you can use Run As, but you still can't get any of those files.
Those two problems that I have seen with "Run As" that su does not. Other than those two minor gripes, yes, it works very well.
> I get so sick of this "I am more jaded than you" crap that permeates /.
Hey, I'm sicker of the jadedness than you'll be ANY day! Hah, take that!
> I want a pony.
Ask and ye shall receive!
If yer willing to pay for it, that is...
> you are already demonstrating your non-involvment in the genesis of |
What the heck is Kaos te>?
> It's a real shame, because it's absolutely beautiful here.
Which part of Pittsburgh do you live in? Last time I was there (less than a year ago, I lived in Wheeling WV at the time) it was still a dirt hole. Nothing like Detroit, mind you, but Pittsburgh is dark, dank, dirty, and the downtown road system had to have been designed by a gaggle of morons. aA billion one-way streets, 167 degree turns -- and who the hell was the civil engineering wizard that decided it should straddle a river? There aren't enough bridges for the terrible infrastucture.
What about the South Side bridge (don't recall the real name) that goes by Hooters? 5 lanes. Sometimes the middle lane goes one way, sometimes it goes another. If you're there on really "special" events, there are four lanes going one way and one lane the other. Christ, I'm surprised the city hasn't been bankrupted from lawsuits on just that bridge. Ridiculous.
I know, the problem with Pittsburgh was that it grew up from a very old city, when city planners weren't a reality, and with all the tall buildings today it would be impossible to redo everything, but they could certainly clean up the mess a little. There isn't any logical need for a three-lane one-way road through the center of downtown.
> Prepare to fast forward...FAST FORWARDING SIR!
Missed a few lines...
Prepare to fast forward!
Preparing to fast forward.
FAST FORWARD!
FAST FORWARDING SIR!
> the new one obsolete the old one, it does not append.
That right there would be the single best improvement MS could make to their patches. Unfortunately, they require so many of them that you would basically have to install a new service pack every month.