Slashdot Mirror


User: Jeremiah+Cornelius

Jeremiah+Cornelius's activity in the archive.

Stories
0
Comments
6,917
First seen
Last seen
Profile
(view on slashdot.org)

Comments · 6,917

  1. Re:IDE for end-user... on SCSI vs. IDE In The Real World · · Score: 1
    You have a good working 4D!

    Much coolness. I don't go farther back than Indigo R3000, but I love those little machines.

    Hard as hell to compile software for these! The R4000 makes up for speed, abit - but doesn't really help for your 4Ds.

    Not just SCSI disk - the GREAT SCSI DAT that was supplied by SGI is fantastic. With audio support in firmware - combined with 1992-era SCSI disks, this is still a great realtime-audio tool.

  2. Re:Windows, hands down. on Building A High-End Gaming Workstation · · Score: 1
    Gaming Workstation?

    Is anyone else stuck buy the self-cancelling nature of this description?

    Laugh time!

    I guess if you are going to strech the idea of a workstation this far, then you can probably call a Windows computer a workstation with a straight face.

  3. Re:DEBIAN on Linux Source Distribution for Firewalls? · · Score: 1
    What would make me REALLY happy is a pf syntax frontend for the Linux Netfilter code.

    I'd be in Groovopolis!

  4. Re:What the hell! on SCO gets $50 Million Investment · · Score: 1
    Owning the rights to Unix is like owning a ten-year-old good milker. Maybe it's making money now, but you know it's going to the knacker's before too long.

    God bless you!

    You have broken the endless chain of car analogies for software!

    Of course, I don't know how familiar most folks would be with dairy farminganalogies...

  5. DEBIAN on Linux Source Distribution for Firewalls? · · Score: 2, Informative
    Debian.

    Seriously.

    It can build a TIGHT little install, on the base system. I can purge packages like Perl when it's done building - could even script dpkg/apt if I had to do this often.

    You wanted a source distro? you can do this with apt-source. Seems more painful than need be - with signed binaries available. I have been using the Adamantix packages (used to be Trusted Debian) and Bastille by Jay Beale and crew. I am pulling binary packages from my own apt-repository, so the firewall itself doesn't pull from the Internet, but only a dedicated admin segment.

  6. Re:Great! kind of on Apple Releases iTunes for Windows · · Score: 1
    Wow.

    At least it builds now.

    Still, I have ESD and it just complains about not fiding OSS. I use ESD, and have it as my aRts back-end too.

    Pardon my ignorance. Does GStreamer play nice with ESD?

  7. Re:fanning the flames... on Advances in Fire and Rescue Technology? · · Score: 1
    Two words:

    "FIRE PASTE!"

  8. Re:I for one on Chinese Experiment Creates Three-Parent Fetuses · · Score: 0, Offtopic

    It has two heads! And... tentacles!!!!

  9. Re:No more accidents on Could 'Fire Paste' Replace Shuttle Tiles? · · Score: 2

    I beleive him. Did you see the Bear Suit? That guy even looks like Buzz Lightyear! I bet a guy who goes around looking like Buzz Lightyear knows a heckuvalot more about "flying through space" and things like that. More than some guys who make tile.

  10. Re:Pledges on Supreme Court Will Hear Pledge of Allegiance Case · · Score: 1

    You, Sir, are a credit to us all.

  11. Re:Push 'em. on Sending Files w/o Sending Clear Passwords? · · Score: 1
    1) Digest Auth HTTP. (http://www.ietf.org/rfc/rfc2617.txt) For IIS it's a check-button, Apache it's a mod: mod_auth_digest (Requires capable browser: IE or Moz).

    2) One-time Passwords - think S/Key. I think Apache needs mod_auth_pam, and the PAM module for S/Key needs to be configured. I havn't done this, but the buzz is opiepasswd is the most flexible PAM module.

    KERBEROS. A whole bunch of work to kerberize one service, but if you start here, you can move to K5 for most of your infrastructure. I like the approach. K5 and LDAP - this was the Windows 2000 approach, and it works great on Unix. GSSAPI software, like NFS v4, will support K5 extensions. Samba 3 is now a final release, and gets you there too.

  12. Re:I Pledge... on Supreme Court Will Hear Pledge of Allegiance Case · · Score: 1

    Americans! They take everything so seriously! They can't be said to have a sense of humor at all - not in the normal meaning.

  13. Re:I Pledge... on Supreme Court Will Hear Pledge of Allegiance Case · · Score: 1
    Oh great. Some "Intellectual Colossus" decided that juvenile humor is an attempt to incite.

  14. I Pledge... on Supreme Court Will Hear Pledge of Allegiance Case · · Score: 0, Flamebait
    In school, we recited the following for years without detection or rebuke:

    I pledge annoyance to the rag

    And the divided fates of America

    As to the republican rubber-band:

    One nation, a plundered mob

    With visible injustice for all.

    Thank you very much. I'll be here all week, tell your friends.

  15. Pledges on Supreme Court Will Hear Pledge of Allegiance Case · · Score: 2, Interesting
    Pledges of this sort are not reprehensible because of the mention of deity.

    Made compulsory, such a pledge is worthless, meaningless and a supression of intellectual activity. It represents a repudiation of Jeffersonian ideals, as embodied in the Declaration of Independance and U.S. Constitution.

    Do we get to wear armbands, too?

  16. Re:Keep putting it off. Please ! on Longhorn in 2006 · · Score: 1

    What do you got? ;-)

  17. Re:Keep putting it off. Please ! on Longhorn in 2006 · · Score: 1
    Out of date.

    Oughta Update.

  18. Re:Skewed perspective? on Using Macs In The Work Place · · Score: 1

    Windows operating systems are like some horribly septic public toilet.

  19. Re:Keep putting it off. Please ! on Longhorn in 2006 · · Score: 1
    Yeah!

    Wait 'till "Web Services" API's deliver RPC flaws into your protected core over port 443.

    It's a long, dark road, and it'll get much darker for the MS world before it gets lighter.

    "Execute remotely on my machines please!" This is their new technology model...

  20. Re:Keep putting it off. Please ! on Longhorn in 2006 · · Score: 1
    Windows is really like some horribly septic public toilet.

    Every so often Microsoft tells you to wade through the stench and dripping muck - so you can flush the bowl.

    "There!" they say. "We've fixed that problem, and our track-record has improved greatly since the beginning of our sanitary-discharge initiative began two years ago."

  21. Re:Keep putting it off. Please ! on Longhorn in 2006 · · Score: 1
    I take your point that any platform - no matter how well designed - can be insecurely deployed and operated. For instance, no SERVER should ever be allowed outbound access to untrusted networks on common protocols like HTTP and FTP, without fulfilling a spefic role such as a proxy.

    You take this point an unwarranted and undemonstrated assumption: That these issues are the basic enabler for all of the security woes that beset Micosoft's product line from top to bottom.

    I have worked in It for 14 years, and in security as a specialty for more than 7. I even have the vaunted MCSE+I... bfd.

    The sites I responded to over Slammer/Blaster/Welchia since last Feb. were all sophisticated in the management of the perimeter. Worms came in through badly managed partner connections for the sharing of Databases, and via mobile computers which were more loosely managed than fixed workstations and servers.

    There have been plenty of operating systems that can have mail messages delivered to them without compromising the host platform with a trojan that violates MIME-type handling. They certainly don't lead to "root" level compromise by non-privileged mail user access.
    You want MIME and HTML handling done right in a modern message agent? KMail on any POSIX-ish host.

    Inclusion of UI gew-gaw laden browser components on SERVER OS's is foolhardy. Requiring them for operation is almost a criminal enabler.

    Your virus signatures and patches are often a day late, frequently a dollar short. The first MS patch for Blaster did not adequately protect DCOM - actual effectiveness seems to have been about 70%. A new exploit rendered even that useless, and 03-039 had to come 48 hours after Welchia did its worst. There is a new Russian exploit in the works which will be refined over the next 2-7 days. When that again targets the same basic, flawed Windows mechanism, then hundreds of thousands will lose their faith even in patching.

    The Slapper worm against Linux systems was a deeper individual flaw than DCOM. It was also targeting a service intended for public network connectivity. How many Apache server farms went dark, or flooded their nets with so much garbage traffic as to render them useless? Not one. I could tell you of five major WANs that I saw dumped over Welchia and Slammer. part of what I am paid for is keeping certain confidences.

  22. Re:Screenshots on Longhorn in 2006 · · Score: 1

    I think it says "2:05 PM" about seven different places in that screenshot!

  23. Re:Screenshots on Longhorn in 2006 · · Score: 1
    Yeah,

    But it's magic XML blue! The entire UI is one, big, parseable markup!

    I can't wait for the exploits here.

    Mom! my whole UI is embedded VBscript.NET! I re-defined robust!

  24. Re:My predictions for 2006 on Longhorn in 2006 · · Score: 1
    "And only little girls will ride horses."

    They were Longhorns, no... short-horns... Kinda medium-sized maybe?

  25. Re:Keep putting it off. Please ! on Longhorn in 2006 · · Score: 2, Insightful
    SANS also had a "Green" condition on their Stormwatch site, through two weeks of MSBlaster, Welchia and SoBigF. Go figure.

    Windows 2003 Server Extra-Long Name Edition for Domains (tm) has every RPC/DCOM issue as WinXP. Both of the production deployments were affected.

    Seriously - after a year of "trustworthy computing" audits with source and third-parties are able to craft 3 successive exploits against this service and its patches with only object code available to them?

    That's why you are a Troll, and MS are racketeers.