> abusing its dominance in search to benefit its own advertising business
Yeah, but those aren't separate businesses. They're the same thing. Google accepts questions (search queries) from users and gives them back answers (relevant information, including information from people who paid to be considered relevant). Even advertising embedded in pages is the same; the page information constitutes an expression of interest in a topic, and the advertisements are intended to answer that interest. That's one coherent business. It's not one I like, but that doesn't make them separate businesses.
You wouldn't accuse Schick of abusing its dominance in re-usable handles to benefit its own razor-selling business.
If the rumors are true, the iPhone 7 will have no audio jack, and a Lightning port.
The MacBook already uses USB-C for power. How far into the future does Apple expect to get before the iPhone does as well? A transition to Lightning headphones is going to cost users a whole bunch of money, and a lot of people who aren't very technical are going to spend that money on Lightning headphones instead of an audio adapter.
The day Apple migrates to USB-C, making those lightning headphones useless (or requiring a USB-C to Lightning adapter), even the most loyal users are going to throw a fit.
The entire concept of open source is about flexibility
"flexibility" does not mean "the community will do your work for you." It means that you have the means and the right to modify the software that you use so that it works the way you need/want it to.
I'm not sure what problem you're seeing. Your URL works for me regardless of which browser I use.
The only time I see Let's Encrypt certs throw warnings are when the server isn't set up with the intermediate certs. Maybe check that you're serving the complete cert chain.
Actually, it's not. It's a GNU system running on Windows. There's no Linux involved, at all. There's just a compatibility layer that implements the Linux system calls on the Windows kernel.
This is GNU/Windows, and it only serves to highlight the fact that the correct name was always GNU/Linux.
I see a lot of comments about Firefox's security but no references so far. So, let's look at cvedetails code execution counts:
2016: Edge: 6 Chrome: 0 Safari: 0 Firefox: 3
2015: Edge: 19 (Nov 12 - Dec 31, a projected rate of 142 per year) Chrome: 8 Safari: 101 Firefox: 83
2014: Chrome: 4 Safari: 65 Firefox: 55
So while Firefox is getting a lot of hate here today, I think the unbiased view is that Firefox is clearly more secure than any browser other than Chrome, which has by far the best record. I struggle to imagine an objective reason to exclude Firefox from any evaluation while including Safari. Edge hasn't been out very long, but based on the very small amount of data we have so far, it looks significantly worse than Firefox.
No modern computer user can honestly say they'd prefer searching through dropdown menus over the ribbon that focuses on putting the most used features at the users fingertips.
The ribbon wasn't introduced to improve the UI, it was introduced to create a UI that was consistent between desktop and web applications.
I'm aware of the Windows DLL load behavior, and how it creates "DLL Hell." I never thought of the security implications, because I assumed that Windows behaved more... sanely.
The root of the problem is that the affected applications are installers, which need to be run with elevated rights. On Linux systems, for example, when an application is run with escalated rights (through SUID or sudo), the dynamic library loader uses only the system library paths and ignores user specified paths (such as the LD_LIBRARY_PATH environment variable).
Why the HELL doesn't Windows do the same for apps run as administrator?
I'd second "use the thunderbird archive" and add "use IMAP."
Thunderbird can archive mail into a single folder, or per-year folders, or per-month folders. When you are using IMAP, those folders are on the server, and accessible from any client. All of the clients I'm aware of allow you to "subscribe" or not to folders of your choosing, and most offer more fine grained control to choose what to download and keep locally in order to control client storage and bandwidth use.
Thunderbird has an excellent search engine built in, so searching is straightforward.
Thunderbird also supports IMAP tags (labels), so you can apply an arbitrary number of tags/labels to each message. This is a lot more flexible than sorting messages into folders manually. Once you start tagging messages, a clear and simple workflow becomes clear:
Your inbox should contain only messages that require you to act on them in some way. Once a message no longer requires action, tag it if necessary and archive it. Or, if it is definitely not required, delete it.
Simple. Now your inbox is cleaner, you'll spend less time sorting mail, and a lot less time searching for it. You can unsubscribe from older archives if you like, or simply choose not to keep them locally to save disk space on the client.
One of the issues if that if you need a high-resolution measurement of the real time that has passed between one event and another, it simply isn't available under POSIX systems. For scientific purposes, that sucks.
As I recall, Square Enix released a complete collection of Final Fantasy, but only with Japanese language. I'd love to see the same thing translated into English.
Mission creep. Your init system now has a logon shell, and handles DHCPD tasks. Why is init handling logons and dhcpds?
Neither of those things are true, which is a bad place to start your argument. It shows that you don't understand systemd, at all.
systemd added a command in which to start a new shell instance, using the same shell as before, while creating a new environment for it. It did not add a new shell.
systemd is also building new network configuration client components, not server components. If they can do a better job than NetworkManager, it'll replace that project. Right now, it hasn't.
Binary log files (PUKE)
The old logs are still available. The new ones allow administrators to check the status of a process and view logs and stdout/stderr from that process. This is a significant improvement.
Extremely poor documentation
systemd has some of the best, or at least the most complete documentation among any system component I can name.
And then when you ask a fan of it why they like it, the response is "My system boots faster."
Ask an administrator rather than an end user. Or ask a developer. If you're getting "my system boots faster" as an answer, then you're clearly asking the wrong people.
Systemd has very good documentation, unit files are very clear and concise, it actually makes use of Linux features which were not widely used beforehand (cgroups). There are lots of reasons to believe that systemd is good software.
"No replacement for displacement" trades meaning for rhyme
No, it doesn't. In the context of engines, "no replacement for displacement" and "no substitute for cubic inches" are equally meaningful. At least to Americans. To everyone else, the latter sacrifices BOTH meaning and rhyme.
And attitude.
Really, that's the big one. When a gearhead says, "There's no replacement for displacement," it conveys exactly the kind of macho attitude that you'd expect from someone who revels in big engines. The statement "there's no substitute for cubic inches" does not. It doesn't just lack rhyme or finesse, it lacks attitude and meaning.
Google says: "there no substitute for cubic inches" About 7,850 results "no replacement for displacement" About 266,000 results...so while I can't say for sure when the latter first entered common use, I'm reasonably certain that it's the more common phrase, by a ratio of about 35 to 1.
C is an excellent system programming language and nothing else has managed to supersede it. All major operating systems are written in C, including Linux, the BSD/MacOS kernel and the Windows kernel.
Both the XNU kernel (OS X and iOS) and Windows kernel are written, in part, in C++. A subset of C++, in both cases, to be fair, but C++ all the same.
Actually, that clarifies that the zram feature did not make it to the Linux kernel until 2014, meaning that OSX had it prior to Linux.
zswap, which is similar to the OS X feature, was merged into the Linux kernel mainline in kernel version 3.11, released on September 2, 2013. OS X 10.9 "Mavericks" was released on October 22, 2013.
But compressed memory isn't new. It's old tech, and quibbling about which of the many implementations was released first is silly as it ignores decades of such products.
It appears to be enabled currently in both Ubuntu, Fedora, and RHEL and CentOS.
Oh, great, it's experimental.
It was marked experimental in 2013. In the context of a discussion about a feature that hasn't even been introduced in Windows, it's fair to note that Linux developers have been working on such a feature, and made it generally available several years earlier.
Wonderful! If I turn it on, it may suddenly turn itself off when I get a kernel update for 14.04.
It was disabled in Ubuntu while they tried to diagnose instability in a PPC kernel. The feature was not related to the instability.
If you don't like Ubuntu's method of kernel maintenance, by all means, use a different distribution. However, the practices of one company should not be considered a defect in *Linux*.
Saying you have something when it's experimental, not enabled by default, enables and disables with updates, and not easily available to the vast majority of your users is silly.
It would be, perhaps, but you have all of your facts wrong.
but osx being exploitable if you have console/local access? that's not really news.
I don't know why so many people don't get this.
The bug doesn't require a human at the console. Any code-execution bug can be escalated to root access because of this bug. It is not, by itself, a remote root, but security vulnerabilities can be combined, and a combination of bugs typically rates at the highest threat level of any individual element of the combined attack.
That is, imagine that you have a bug in your browser that causes it to automatically open PDF files in an external viewer. This rates as a minor security threat. You also have a PDF reader that allows code execution, but code executes as the user, with limited rights, so this rates as a moderate security threat. You also have a dynamic linker that allows any process that can call system() to write to protected files. This is a critical security vulnerability.
An attacker can now infect a server that you visit, or maybe convince you to visit a server that they control, and combine those to get root access on your system.
Slashdot Mirror
> abusing its dominance in search to benefit its own advertising business
Yeah, but those aren't separate businesses. They're the same thing. Google accepts questions (search queries) from users and gives them back answers (relevant information, including information from people who paid to be considered relevant). Even advertising embedded in pages is the same; the page information constitutes an expression of interest in a topic, and the advertisements are intended to answer that interest. That's one coherent business. It's not one I like, but that doesn't make them separate businesses.
You wouldn't accuse Schick of abusing its dominance in re-usable handles to benefit its own razor-selling business.
If the rumors are true, the iPhone 7 will have no audio jack, and a Lightning port.
The MacBook already uses USB-C for power. How far into the future does Apple expect to get before the iPhone does as well? A transition to Lightning headphones is going to cost users a whole bunch of money, and a lot of people who aren't very technical are going to spend that money on Lightning headphones instead of an audio adapter.
The day Apple migrates to USB-C, making those lightning headphones useless (or requiring a USB-C to Lightning adapter), even the most loyal users are going to throw a fit.
Yeah he's no slouch, but he acknowledges that the attack probably used a password that leaked and wasnt changed. So, there's nothing to see here...
The entire concept of open source is about flexibility
"flexibility" does not mean "the community will do your work for you." It means that you have the means and the right to modify the software that you use so that it works the way you need/want it to.
You still have those means and rights.
I'm not sure what problem you're seeing. Your URL works for me regardless of which browser I use.
The only time I see Let's Encrypt certs throw warnings are when the server isn't set up with the intermediate certs. Maybe check that you're serving the complete cert chain.
"because it is Linux"
Actually, it's not. It's a GNU system running on Windows. There's no Linux involved, at all. There's just a compatibility layer that implements the Linux system calls on the Windows kernel.
This is GNU/Windows, and it only serves to highlight the fact that the correct name was always GNU/Linux.
McAfee is clearly off his rocker. The only person or persons who he could expect to socially engineer his way through are dead.
I see a lot of comments about Firefox's security but no references so far. So, let's look at cvedetails code execution counts:
2016:
Edge: 6
Chrome: 0
Safari: 0
Firefox: 3
2015:
Edge: 19 (Nov 12 - Dec 31, a projected rate of 142 per year)
Chrome: 8
Safari: 101
Firefox: 83
2014:
Chrome: 4
Safari: 65
Firefox: 55
So while Firefox is getting a lot of hate here today, I think the unbiased view is that Firefox is clearly more secure than any browser other than Chrome, which has by far the best record. I struggle to imagine an objective reason to exclude Firefox from any evaluation while including Safari. Edge hasn't been out very long, but based on the very small amount of data we have so far, it looks significantly worse than Firefox.
https://www.cvedetails.com/pro...
http://www.cvedetails.com/prod...
http://www.cvedetails.com/prod...
https://www.cvedetails.com/pro...
No modern computer user can honestly say they'd prefer searching through dropdown menus over the ribbon that focuses on putting the most used features at the users fingertips.
The ribbon wasn't introduced to improve the UI, it was introduced to create a UI that was consistent between desktop and web applications.
The tool you were after was Adobe FrameMaker
Or Scribus. Or TeX. Or anything that makes PDFs.
That's not app-specific behavior. That's how the Windows library loader works.
I'm aware of the Windows DLL load behavior, and how it creates "DLL Hell." I never thought of the security implications, because I assumed that Windows behaved more ... sanely.
The root of the problem is that the affected applications are installers, which need to be run with elevated rights. On Linux systems, for example, when an application is run with escalated rights (through SUID or sudo), the dynamic library loader uses only the system library paths and ignores user specified paths (such as the LD_LIBRARY_PATH environment variable).
Why the HELL doesn't Windows do the same for apps run as administrator?
I'd second "use the thunderbird archive" and add "use IMAP."
Thunderbird can archive mail into a single folder, or per-year folders, or per-month folders. When you are using IMAP, those folders are on the server, and accessible from any client. All of the clients I'm aware of allow you to "subscribe" or not to folders of your choosing, and most offer more fine grained control to choose what to download and keep locally in order to control client storage and bandwidth use.
Thunderbird has an excellent search engine built in, so searching is straightforward.
Thunderbird also supports IMAP tags (labels), so you can apply an arbitrary number of tags/labels to each message. This is a lot more flexible than sorting messages into folders manually. Once you start tagging messages, a clear and simple workflow becomes clear:
Your inbox should contain only messages that require you to act on them in some way. Once a message no longer requires action, tag it if necessary and archive it. Or, if it is definitely not required, delete it.
Simple. Now your inbox is cleaner, you'll spend less time sorting mail, and a lot less time searching for it. You can unsubscribe from older archives if you like, or simply choose not to keep them locally to save disk space on the client.
Did you watch the video, or are you one of the "80%" who didn't?
You don't need practice to lightly tap a lock on its side for 5-10 seconds. There's no technique to practice. It's light tension and tapping.
One of the issues if that if you need a high-resolution measurement of the real time that has passed between one event and another, it simply isn't available under POSIX systems. For scientific purposes, that sucks.
http://www.madore.org/~david/c...
If you're on a PC, that's still a virtual terminal, emulating a terminal.
As I recall, Square Enix released a complete collection of Final Fantasy, but only with Japanese language. I'd love to see the same thing translated into English.
Mission creep. Your init system now has a logon shell, and handles DHCPD tasks. Why is init handling logons and dhcpds?
Neither of those things are true, which is a bad place to start your argument. It shows that you don't understand systemd, at all.
systemd added a command in which to start a new shell instance, using the same shell as before, while creating a new environment for it. It did not add a new shell.
systemd is also building new network configuration client components, not server components. If they can do a better job than NetworkManager, it'll replace that project. Right now, it hasn't.
Binary log files (PUKE)
The old logs are still available. The new ones allow administrators to check the status of a process and view logs and stdout/stderr from that process. This is a significant improvement.
Extremely poor documentation
systemd has some of the best, or at least the most complete documentation among any system component I can name.
And then when you ask a fan of it why they like it, the response is "My system boots faster."
Ask an administrator rather than an end user. Or ask a developer. If you're getting "my system boots faster" as an answer, then you're clearly asking the wrong people.
Systemd has very good documentation, unit files are very clear and concise, it actually makes use of Linux features which were not widely used beforehand (cgroups). There are lots of reasons to believe that systemd is good software.
"No replacement for displacement" trades meaning for rhyme
No, it doesn't. In the context of engines, "no replacement for displacement" and "no substitute for cubic inches" are equally meaningful. At least to Americans. To everyone else, the latter sacrifices BOTH meaning and rhyme.
And attitude.
Really, that's the big one. When a gearhead says, "There's no replacement for displacement," it conveys exactly the kind of macho attitude that you'd expect from someone who revels in big engines. The statement "there's no substitute for cubic inches" does not. It doesn't just lack rhyme or finesse, it lacks attitude and meaning.
Google says: ...so while I can't say for sure when the latter first entered common use, I'm reasonably certain that it's the more common phrase, by a ratio of about 35 to 1.
"there no substitute for cubic inches" About 7,850 results
"no replacement for displacement" About 266,000 results
C is an excellent system programming language and nothing else has managed to supersede it. All major operating systems are written in C, including Linux, the BSD/MacOS kernel and the Windows kernel.
Both the XNU kernel (OS X and iOS) and Windows kernel are written, in part, in C++. A subset of C++, in both cases, to be fair, but C++ all the same.
Why guess?
https://lists.fedoraproject.or...
Fedora, September 14.
http://www.ubuntuupdates.org/p...
Ubuntu, September 17
I honestly believe that arguing about this is silly, but it's especially silly when you're wrong. :-)
Actually, that clarifies that the zram feature did not make it to the Linux kernel until 2014, meaning that OSX had it prior to Linux.
zswap, which is similar to the OS X feature, was merged into the Linux kernel mainline in kernel version 3.11, released on September 2, 2013. OS X 10.9 "Mavericks" was released on October 22, 2013.
But compressed memory isn't new. It's old tech, and quibbling about which of the many implementations was released first is silly as it ignores decades of such products.
What you want is zram, not zswap. ... zswap is about compressing the swap file
Not according to the documentation.
https://www.kernel.org/doc/Doc...
[Zswap] takes pages that are in the process of being swapped out and attempts to compress them into a dynamically allocated RAM-based memory pool.
http://askubuntu.com/questions...
That document is several years old now.
Oh, so it's not enabled by default in my distro?
It appears to be enabled currently in both Ubuntu, Fedora, and RHEL and CentOS.
Oh, great, it's experimental.
It was marked experimental in 2013. In the context of a discussion about a feature that hasn't even been introduced in Windows, it's fair to note that Linux developers have been working on such a feature, and made it generally available several years earlier.
Wonderful! If I turn it on, it may suddenly turn itself off when I get a kernel update for 14.04.
It was disabled in Ubuntu while they tried to diagnose instability in a PPC kernel. The feature was not related to the instability.
If you don't like Ubuntu's method of kernel maintenance, by all means, use a different distribution. However, the practices of one company should not be considered a defect in *Linux*.
Saying you have something when it's experimental, not enabled by default, enables and disables with updates, and not easily available to the vast majority of your users is silly.
It would be, perhaps, but you have all of your facts wrong.
but osx being exploitable if you have console/local access? that's not really news.
I don't know why so many people don't get this.
The bug doesn't require a human at the console. Any code-execution bug can be escalated to root access because of this bug. It is not, by itself, a remote root, but security vulnerabilities can be combined, and a combination of bugs typically rates at the highest threat level of any individual element of the combined attack.
That is, imagine that you have a bug in your browser that causes it to automatically open PDF files in an external viewer. This rates as a minor security threat. You also have a PDF reader that allows code execution, but code executes as the user, with limited rights, so this rates as a moderate security threat. You also have a dynamic linker that allows any process that can call system() to write to protected files. This is a critical security vulnerability.
An attacker can now infect a server that you visit, or maybe convince you to visit a server that they control, and combine those to get root access on your system.