... and squint your eyes, you'll see the 'clear' results.
The researchers used reported vulnerabilites as their guideline, and 'days of risk;' quote: "the period from when a vulnerability is first reported to when a patch is issued."
Windows Server 2003 had 30 days of risk, Linux (Red Hat Enterprise Server 3) 71 days.
But which reports of vulns are they considering? Microsoft often provides their own reports, which are released WITH THE PATCH. I wouldn't give those reports the same weight, since the vuln could have been there (and unofficially known) for MONTHS.
I fully expect Linux to have MORE vulns in any case, since Linux ultimately is a collection of separate programs working together, each of which has their own potential insecurities. But, a vuln in sendmail is NOT going to affect my webserver, because I'm going to turn that OFF (if I'm a smart admin).
In fact, the researchers only used a "hypothetical" system to show "what an average system administrator may do." I'm sorry, but if an admin is using anything like a default setup he is BELOW average.
In conclusion, this really sounds like a comparison of how vulnerable the respective systems with a 'default' install. Wake me up when they go head-to-head with OpenBSD.
Certainly, it encourages carpooling and other mileage-saving techniques ("Hey neighbor, I'm going to the supermarket, need anything? You can return the favor next week.")
The tax can't be *too* much, or using a delivery service becomes more economical. Also can't you write off some expenses driving to/from work??
Either way, there's a disincentive to "just drive around"... which is good for people's wallets, and the environment. Of course. the CA. gov't might see even more decreases in revenues because of this...
Just a moment of googling "kitadeya microsoft" and bingo. Here's a snip:
"Matsushita Electric, in close cooperation with Microsoft, will develop a high-performance personal computer suited to the advanced image-processing demands of the 21st century," said Dr. Yoshitomi Nagaoka, vice president of Matsushita Electric's AVC Company..."
Who stands to profit if this software is knocked off the market?
What bugs me about Media Factory's actions is what also bugs me about the general crackdown on fan sites, fanfiction, etc.- it amounts to a form of thought crime.
I understand the goal of all entertainment producers is to make content which thousands- millions- of people will enjoy. They want us to fall in love with their shows/books/movies, buy all the merchandise- dolls, shirts, DVD special editions, etc.- to become fans of their product/content.
But they don't want us to think about what they create. We can't speculate (publicly) about what our favorite character would do in a particular situation. We can't include a picture of our favorite anime babe on a website. In this case, we can't even translate their product to a different language, potentially opening up a new market for them, with no financial gain on the fan's part.
Maybe, deep down, they fear us; our ability to see implications in their story that they didn't (The Matrix), to mix two pieces of their music together and come up with someting unexpected (Gray Album); to do simple things (like translating) that they can't.
I've even seen screenshots of major commercial aeroplanes with Windows 2000-based operating systems
He's (probably) talking about in the cabin. If that's the case, so what? Worst case: passengers can't watch the inflight movie. (I might even be grateful for that)
Cars are an obvious target for viruses. It's okay if you don't use the operating system for the engine and the brakes, but when you do...
... but we don't. This is the Navigational System- and it isn't clear that it was adversely affected by the virus! I'm glad they caught this now, BEFORE it caused major problems.
One of the BIG things drummed into me during flight training was: fly the airplane. It doesn't matter if the nav systems are acting up. The same applies to automobiles. (Though I'm sure there will be accidents "caused" by crashed Nav. systems)
Bill Gates is a known Lexus driver. In 1999 he auctioned one for charity.
I can't decide if this a non-sequitir, or a wonderfully subversive way to relate insecurity and viruses with Microsoft/Bill Gates.
Which means that *someone* who receives a file from a MPAA/RIAA is getting a LEGAL copy, since said copy is being LEGALLY distributed with permission... right?
Hence the push to 'normalize' patent and IP laws worldwide, so that a US company can sue a company in another country and win. (And vice versa)
Thankfully, we have seen the EU balk at software patents (a little bit, anyway), and I suspect many other countries will start to realize that 'Just Say No' is enough to stop this nonsense.
We are supposed to be leaders in innovation- we *need* to stop thinking 'lawsuit' and innovate, damnit!
Correction: #4 should read "The omission of Saruman's destruction..."
And Jackon had FIVE endings in ROTK, not six: 1. Frodo awakens (after rescue from Mt. Doom), everyone's glad 2. Arwen and Aragorn marry 3. Hobbits return to the Shire (Sam & Rosie, happy times, etc.) 4. Frodo & Bilbo sail away 5. Sam goes back home to his family
The site author makes reference to four "Major Mistakes" that Jackson made in his adaptation, but then fails to list them together, so they'd be easier to find.
1. Expanding Arwen's role 2. Changing Faramir's storyline 3. Frodo sending Sam home 4. Saruman's destruction of the Shire
Of these, I sort of agree with #2, and that didn't bother me as much as the Elves showing up at Helm's Deep- that was just SO WRONG. In the introduction of Jackson's FOTR, the narrator refers to the LAST ALLIANCE of elves... not the PENULTIMATE alliance, or NEXT-TO-THE-LAST alliance! Grrr.
And I TOTALLY disagree with #4. Jackson already had, like, SIX endings in ROTK. What works so well in the book would just be *torture* on the screen, as much as I'd like to have seen it.
I'm on my second installation of LFS. It's not for those in a hurry, that's for sure- It takes me about a month to get a VERY basic system. (Think X and Firefox, and not much else!). I inevitably make some bone-headed mistake, and I don't back up while installing, so it's my fault.
Also, building something like gnome from source really teaches you the meaning of 'dependency hell.' Seems like every single package requires exactly version "1.1211-1243pm" of every OTHER package, and even some obscure RedHat patches too, in some cases. *Shudder*gDesklets*Shudder*.
However, I have a VERY good idea of what's on my system and what libraries are being used where. There's NO 'fat' or extra stuff that I didn't put there. I used to shy away from compiling from source- which makes sense on a package-based system. Now there's NO fear. There's even a few interesting package management schemes for compiling from source.
Booting into my brand new, hand-built, bare-bones system- it's almost as good as if I'd written the software myself:) (And as close as I'll ever get)
Initial Developers grant You the the right to use, modify and sell ("under Patent claims infringed", whatever that means) their software.
Contributors (who modify the Initial Developer's code) grant You the same rights. This applies to the whole work with modifications, or just the modifications themselves.
You must provide the License text when you distribute Your software, including the modifications. If you distribute executable code, You must make the source code available.
All code remains under this version of the license. You (essentially) can't modify the license. Sun could revise the license, but it isn't retroactive unless specified.
You can include softare with this License in a "Larger Work" that's under a different license, as long as doing so doesn't break this license.
No Warranty, Limitation of Liability, jurisdiction, etc.
It was quite a trip to see my then 3-year-old boy walk over to my computer, close my applications by clicking the close buttons(s), and then clicking on the icons to start his own games.
Even more fun: watching him arrange those magnet-letters on the 'fridge to 'QWERTYUIOP' etc.
With a 0-1.5 year old, 'up' often equals 'out of reach'. Besides, there's FAR too many interesting things near the floor that mum & dad don't want her to reach- why look any higher? So, your average computer desk should be fine. Make sure it's off when you're not around and it probably won't seem so interesting, for a while:)
All bets are off once they master climbing, though. That's where distraction comes in. Sacrifice that laptop to the gods by installing programs like flabbergasted. Give the tyke her own computer, so she'll be less interested in yours.
Caution: kids learn computers quickly with this method. My 7yo boy tried to social-engineer my Linux password the other day.
But if I follow your argument further than you have, I am required to click the link as well. Then I'm required to buy something, right? Or else I'm ripping off the advertiser.
What if I don't block the ads, but I never click on any of them. Isn't that a form of theft? I mean, the ads are LINKS, after all. I should be clicking them.
I wonder how much of the appeal of an EA job is related to its location... Would an "equal-pay" job (relative to local economy) in, say, Nebraska, Kansas, etc. be as attractive?
Use an anonymizer that redirects ports, or one of the hundreds of rewriting proxies on the net that can do this for you, and you should be able to get to the Coralized URL from work.
...only to be fired twenty seconds later when IT detects you trying to circumvent their firewall policy...
Where I work, anonymizer sites themselves are blacklisted. Too many attempts to contact blacklisted sites raises the red flag. It's best to just get back to work...
Internet Chess Club has more than 30,000 members worldwide and claims Madonna, Nicolas Cage, Will Smith and Gary Kasparov as players.
One of these things is not like the others, One of these things just doesn't belong, Can you tell which thing is not like the others By the time I finish my song?
Sorry, you (parent and gp) BOTH missed the point... If you try to use a hotspot without having proper access info, you would be redirected to, say, a login page, describing what to do. That's reasonsable behaviour for a freely-accessible hotspot. Otherwise you'd need signs posted near the spot, etc.
Only now, TWO companies are claiming patents to this trivial fscking idea. One of which bought the idea from some other company!
Forgot to mention- that first rule does NOT guarantee you are protected. If the 'nasty' program initiates a connection of its own, then it WILL BE ACCEPTED because of the second rule. I'm just saying that someone can't initiate contact with it from the outside.
Set the default INPUT policy (P) to DENY all incoming connections. (Even if you do catch something nasty, there's a good chance that any attempt to access it from the outside world will be blocked.)
# iptables -A INPUT -m state --state=ESTABLISHED,RELATED -j ACCEPT
Add (A) a rule to the INPUT table: for every connection initiated from this machine, ACCEPT net traffic. This is called 'stateful' packet filtering, meaning that iptables is 'aware' that a connection with a remote site has been ESTABLISHED. iptables will also allow any packets RELATED to this connection.
Slashdot Mirror
... and squint your eyes, you'll see the 'clear' results.
The researchers used reported vulnerabilites as their guideline, and 'days of risk;' quote: "the period from when a vulnerability is first reported to when a patch is issued."
Windows Server 2003 had 30 days of risk, Linux (Red Hat Enterprise Server 3) 71 days.
But which reports of vulns are they considering? Microsoft often provides their own reports, which are released WITH THE PATCH. I wouldn't give those reports the same weight, since the vuln could have been there (and unofficially known) for MONTHS.
I fully expect Linux to have MORE vulns in any case, since Linux ultimately is a collection of separate programs working together, each of which has their own potential insecurities. But, a vuln in sendmail is NOT going to affect my webserver, because I'm going to turn that OFF (if I'm a smart admin).
In fact, the researchers only used a "hypothetical" system to show "what an average system administrator may do." I'm sorry, but if an admin is using anything like a default setup he is BELOW average.
In conclusion, this really sounds like a comparison of how vulnerable the respective systems with a 'default' install. Wake me up when they go head-to-head with OpenBSD.
P.S. Hey researchers- RED HAT IS NOT LINUX.
Certainly, it encourages carpooling and other mileage-saving techniques ("Hey neighbor, I'm going to the supermarket, need anything? You can return the favor next week.")
The tax can't be *too* much, or using a delivery service becomes more economical. Also can't you write off some expenses driving to/from work??
Either way, there's a disincentive to "just drive around"... which is good for people's wallets, and the environment. Of course. the CA. gov't might see even more decreases in revenues because of this...
I did indeed notice.
I also read the article...
"[Matsushita] first approached Justsystem in 1998, asking that it recognise its patent and agree to pay royalties, but received no response, he said."
"Matsushita Electric, in close cooperation with Microsoft, will develop a high-performance personal computer suited to the advanced image-processing demands of the 21st century," said Dr. Yoshitomi Nagaoka, vice president of Matsushita Electric's AVC Company..."
Who stands to profit if this software is knocked off the market?
What bugs me about Media Factory's actions is what also bugs me about the general crackdown on fan sites, fanfiction, etc.- it amounts to a form of thought crime.
I understand the goal of all entertainment producers is to make content which thousands- millions- of people will enjoy. They want us to fall in love with their shows/books/movies, buy all the merchandise- dolls, shirts, DVD special editions, etc.- to become fans of their product/content.
But they don't want us to think about what they create. We can't speculate (publicly) about what our favorite character would do in a particular situation. We can't include a picture of our favorite anime babe on a website. In this case, we can't even translate their product to a different language, potentially opening up a new market for them, with no financial gain on the fan's part.
Maybe, deep down, they fear us; our ability to see implications in their story that they didn't (The Matrix), to mix two pieces of their music together and come up with someting unexpected (Gray Album); to do simple things (like translating) that they can't.
We *so* need to name a 'Lynx' day in protest. Hit all your favorite sites with a text-based browser in a non-windows OS for one day.
Of course, with all the embedded Flash around, some sites will be totally inaccessible... which would maybe teach them a lesson about accessibility.
I've even seen screenshots of major commercial aeroplanes with Windows 2000-based operating systems
... but we don't. This is the Navigational System- and it isn't clear that it was adversely affected by the virus! I'm glad they caught this now, BEFORE it caused major problems.
He's (probably) talking about in the cabin. If that's the case, so what? Worst case: passengers can't watch the inflight movie. (I might even be grateful for that)
Cars are an obvious target for viruses. It's okay if you don't use the operating system for the engine and the brakes, but when you do...
One of the BIG things drummed into me during flight training was: fly the airplane. It doesn't matter if the nav systems are acting up. The same applies to automobiles. (Though I'm sure there will be accidents "caused" by crashed Nav. systems)
Bill Gates is a known Lexus driver. In 1999 he auctioned one for charity.
I can't decide if this a non-sequitir, or a wonderfully subversive way to relate insecurity and viruses with Microsoft/Bill Gates.
Which means that *someone* who receives a file from a MPAA/RIAA is getting a LEGAL copy, since said copy is being LEGALLY distributed with permission... right?
Nonsense! He just moves his limbs and breaks the spin. Even with traditional planes most spins are recoverable, given enough altitude.
Hence the push to 'normalize' patent and IP laws worldwide, so that a US company can sue a company in another country and win. (And vice versa)
Thankfully, we have seen the EU balk at software patents (a little bit, anyway), and I suspect many other countries will start to realize that 'Just Say No' is enough to stop this nonsense.
We are supposed to be leaders in innovation- we *need* to stop thinking 'lawsuit' and innovate, damnit!
Correction: #4 should read "The omission of Saruman's destruction..."
And Jackon had FIVE endings in ROTK, not six:
1. Frodo awakens (after rescue from Mt. Doom), everyone's glad
2. Arwen and Aragorn marry
3. Hobbits return to the Shire (Sam & Rosie, happy times, etc.)
4. Frodo & Bilbo sail away
5. Sam goes back home to his family
Oh, and Happy Holidays.
The site author makes reference to four "Major Mistakes" that Jackson made in his adaptation, but then fails to list them together, so they'd be easier to find.
1. Expanding Arwen's role
2. Changing Faramir's storyline
3. Frodo sending Sam home
4. Saruman's destruction of the Shire
Of these, I sort of agree with #2, and that didn't bother me as much as the Elves showing up at Helm's Deep- that was just SO WRONG. In the introduction of Jackson's FOTR, the narrator refers to the LAST ALLIANCE of elves... not the PENULTIMATE alliance, or NEXT-TO-THE-LAST alliance! Grrr.
And I TOTALLY disagree with #4. Jackson already had, like, SIX endings in ROTK. What works so well in the book would just be *torture* on the screen, as much as I'd like to have seen it.
I'm on my second installation of LFS. It's not for those in a hurry, that's for sure- It takes me about a month to get a VERY basic system. (Think X and Firefox, and not much else!). I inevitably make some bone-headed mistake, and I don't back up while installing, so it's my fault.
:) (And as close as I'll ever get)
Also, building something like gnome from source really teaches you the meaning of 'dependency hell.' Seems like every single package requires exactly version "1.1211-1243pm" of every OTHER package, and even some obscure RedHat patches too, in some cases. *Shudder*gDesklets*Shudder*.
However, I have a VERY good idea of what's on my system and what libraries are being used where. There's NO 'fat' or extra stuff that I didn't put there. I used to shy away from compiling from source- which makes sense on a package-based system. Now there's NO fear. There's even a few interesting package management schemes for compiling from source.
Booting into my brand new, hand-built, bare-bones system- it's almost as good as if I'd written the software myself
Initial Developers grant You the the right to use, modify and sell ("under Patent claims infringed", whatever that means) their software.
Contributors (who modify the Initial Developer's code) grant You the same rights. This applies to the whole work with modifications, or just the modifications themselves.
You must provide the License text when you distribute Your software, including the modifications. If you distribute executable code, You must make the source code available.
All code remains under this version of the license. You (essentially) can't modify the license. Sun could revise the license, but it isn't retroactive unless specified.
You can include softare with this License in a "Larger Work" that's under a different license, as long as doing so doesn't break this license.
No Warranty, Limitation of Liability, jurisdiction, etc.
Exactly.
It was quite a trip to see my then 3-year-old boy walk over to my computer, close my applications by clicking the close buttons(s), and then clicking on the icons to start his own games.
Even more fun: watching him arrange those magnet-letters on the 'fridge to 'QWERTYUIOP' etc.
With a 0-1.5 year old, 'up' often equals 'out of reach'. Besides, there's FAR too many interesting things near the floor that mum & dad don't want her to reach- why look any higher? So, your average computer desk should be fine. Make sure it's off when you're not around and it probably won't seem so interesting, for a while :)
All bets are off once they master climbing, though. That's where distraction comes in. Sacrifice that laptop to the gods by installing programs like flabbergasted. Give the tyke her own computer, so she'll be less interested in yours.
Caution: kids learn computers quickly with this method. My 7yo boy tried to social-engineer my Linux password the other day.
But if I follow your argument further than you have, I am required to click the link as well. Then I'm required to buy something, right? Or else I'm ripping off the advertiser.
What if I don't block the ads, but I never click on any of them. Isn't that a form of theft? I mean, the ads are LINKS, after all. I should be clicking them.
I wonder how much of the appeal of an EA job is related to its location... Would an "equal-pay" job (relative to local economy) in, say, Nebraska, Kansas, etc. be as attractive?
Linux.
.rpm? .deb? Pfft! I got your package management scheme right here.
from.
scratch.
And another thing...
Use an anonymizer that redirects ports, or one of the hundreds of rewriting proxies on the net that can do this for you, and you should be able to get to the Coralized URL from work.
...only to be fired twenty seconds later when IT detects you trying to circumvent their firewall policy...
Where I work, anonymizer sites themselves are blacklisted. Too many attempts to contact blacklisted sites raises the red flag. It's best to just get back to work...
Internet Chess Club has more than 30,000 members worldwide and claims Madonna, Nicolas Cage, Will Smith and Gary Kasparov as players.
One of these things is not like the others,
One of these things just doesn't belong,
Can you tell which thing is not like the others
By the time I finish my song?
Sorry, you (parent and gp) BOTH missed the point... If you try to use a hotspot without having proper access info, you would be redirected to, say, a login page, describing what to do. That's reasonsable behaviour for a freely-accessible hotspot. Otherwise you'd need signs posted near the spot, etc.
Only now, TWO companies are claiming patents to this trivial fscking idea. One of which bought the idea from some other company!
Forgot to mention- that first rule does NOT guarantee you are protected. If the 'nasty' program initiates a connection of its own, then it WILL BE ACCEPTED because of the second rule. I'm just saying that someone can't initiate contact with it from the outside.
# iptables -P INPUT -j DENY
Set the default INPUT policy (P) to DENY all incoming connections. (Even if you do catch something nasty, there's a good chance that any attempt to access it from the outside world will be blocked.)
# iptables -A INPUT -m state --state=ESTABLISHED,RELATED -j ACCEPT
Add (A) a rule to the INPUT table: for every connection initiated from this machine, ACCEPT net traffic. This is called 'stateful' packet filtering, meaning that iptables is 'aware' that a connection with a remote site has been ESTABLISHED. iptables will also allow any packets RELATED to this connection.
HTH
You're right, of course... that's what I get for reading computerworld :)