Re:Don't advertise version number
on
Hardening Apache
·
· Score: 1
That's just another form of security by obscurity: The exploits for the new version aren't known yet -- at least not to you -- the real pros have vast catalogues of exploits that have never been disclosed yet.
Re:Don't advertise version number
on
Hardening Apache
·
· Score: 1
And what security isn't derived from obscurity? Unless your system is provably perfect, the only security you have is the obscurity of its defects. And no system is provably perfect, in reality -- only under blocks-world assumptions.
Yeah, I'd rather use a system which had correctness proofs within some domain of discourse than one that doesn't, but this 'security by obscurity' shibboleth gets my goat. Or is it dander up?
If you are going to take the Mikkelson's whiggish ideological rants on their sensationalist website as a higher authority than your board-reviewed psychology textbook...well...
I guess it takes all kinds to make a world... suck.
> I think a word is something that must be pronounceable.
Like 0x77CF?
Anything you pronounce is demonstrated thereby to be pronouncable. I admit that XML isn't pronounced kzmul, but rather eksemel, but it's still being pronounced. The word knight isn't pronounced kunigit (as it was in the 1300s) either. That doesn't mean it's no longer pronouncable. It just means the pronounciation has diverged from the standards more commonly applied to similar sequences of letters.
Reading this, I think I wasn't explicit enough: I'm suggesting daisy-chaining the imaging process. Pop in the CDs in order, boot the machines in order, and start the dd from the upstream machine in order. You'd want to adapt the Live CD image to mount the finished disk and set host, network parameters according to MAC address from a table.
It's free in the sense that burning it doesn't put any net carbon into the air. It's unlimited in the sense that using it as fuel for a few generations doesn't extinct all life on the planet.
That's why I like IBM Thinkpads. They have reliably run Debian or RedHat for me since the 600X back in '97.
When you are competing on price in a commodity market, you make your profit on the last 10% of the sales. The difference between a 90% target market and a 99% target is the difference between success and bankruptcy.
The only reasons any vendor of consumer-level mass sales hardware gets away with not documenting their interfaces are (1) lack of competition in an early-adoption market or (2) lack of competition due to collusion. ATI/NVIDIA is a perfect example of the latter. If one of them opened their interface specifications, the other would soon do likewise, or be roadkill.
It is necessary for the same reason corporations build defensive patent portfolios: Cross-licensing agreements. In this case, in the public interest, since the government long since abdicated the role of defending the public interest.
Actually, we duct tape our doors and cower while the tall buildings come down because rough men with broomsticks are raping little boys in foreign lands.
You're certainly right about those inequalities. I don't think I need to fill in all the blanks, though. I do think that as long as innocent persons vastly outnumber guilty ones, innocent persons are much more likely to be the target of a lawsuit. They really don't care if you are innocent or guilty, because it just doesn't matter to their pocket books. What matters is the chilling effect. By the time guilty persons outnumber the innocent, the law will adapt to redraw the line between guilt and innocence -- if it is determined by democracy, at least.
Slashdot Mirror
That's just another form of security by obscurity:
The exploits for the new version aren't known yet
-- at least not to you -- the real pros have vast
catalogues of exploits that have never been
disclosed yet.
And what security isn't derived from obscurity?
Unless your system is provably perfect, the only
security you have is the obscurity of its defects.
And no system is provably perfect, in reality --
only under blocks-world assumptions.
Yeah, I'd rather use a system which had correctness
proofs within some domain of discourse than one
that doesn't, but this 'security by obscurity'
shibboleth gets my goat. Or is it dander up?
Or so they say.
Where is the +1 obscenity menu item?
If you are going to take the Mikkelson's whiggish
ideological rants on their sensationalist website
as a higher authority than your
board-reviewed psychology textbook...well...
I guess it takes all kinds to make a world...
suck.
> I think a word is something that must be pronounceable.
Like 0x77CF?
Anything you pronounce is demonstrated thereby to
be pronouncable. I admit that XML isn't pronounced
kzmul, but rather eksemel, but it's still being
pronounced. The word knight isn't pronounced
kunigit (as it was in the 1300s) either. That
doesn't mean it's no longer pronouncable. It
just means the pronounciation has diverged from
the standards more commonly applied to similar
sequences of letters.
Hey, what goes around, comes around.
> While this application may lower bandwidth for existing thin clients. Its not the real drawl.
And as anybody who's been to the great state of Jaw-juh knows, a real drawl will dramatically lower your bandwidth!
I think he just misspelled ..AA.
Ari gatou is a Greek cake in France.
Ori gato is Jewish cat in Spain.
Domo arigato is what you say to Mr. Roboto.
Reading this, I think I wasn't explicit enough:
I'm suggesting daisy-chaining the imaging process.
Pop in the CDs in order, boot the machines in order, and start the dd from the upstream machine
in order. You'd want to adapt the Live CD image
to mount the finished disk and set host, network parameters
according to MAC address from a table.
You can boot a CD, mount a network drive, and
dd a disk image over the hard drive. I recommend
a Knoppix PPC live cd.
Ladies and gentlemen! I smell a brass rat;)
It's free in the sense that burning it doesn't put any net carbon into the air. It's unlimited in the sense that using it as fuel for a few generations doesn't extinct all life on the planet.
What's will all this reasonableness and decency today? Didn't *any* of you people go to MIT?
That's why I like IBM Thinkpads. They have reliably run Debian or RedHat for me since the 600X back in '97.
When you are competing on price in a commodity market, you make your profit on the last 10% of the sales. The difference between a 90% target market and a 99% target is the difference between success and bankruptcy.
The only reasons any vendor of consumer-level mass sales hardware gets away with not documenting their interfaces are (1) lack of competition in an early-adoption market or (2) lack of competition due to collusion. ATI/NVIDIA is a perfect example of the latter. If one of them opened their interface specifications, the other would soon do likewise, or be roadkill.
It is necessary for the same reason corporations
build defensive patent portfolios: Cross-licensing
agreements. In this case, in the public interest,
since the government long since abdicated the role
of defending the public interest.
It's funny that you should use the marijuana story,
since the heaviest pot smoker I ever met was a
driver developer for ATI. I never met Carl Sagan.
The EFF should be patenting open source technologies right and left.
Actually, if they'd drop the size by about 25%,
they'd do much better. Then it would fit in a
shirt pocket.
...this can be dangerous...
Moreover, it fully justifies the complaints made in the comments above about iPods corrupting data.
Word to other muggers: Marsupials keep their wallets in their gestation pouches.
Actually, we duct tape our doors and cower while the tall buildings come down because rough men
with broomsticks are raping little boys in foreign lands.
That's what you get for living in a free country.
You're certainly right about those inequalities. I don't think I need to fill in all the blanks, though. I do think that as long as innocent persons vastly outnumber guilty ones, innocent persons are much more likely to be the target of a lawsuit. They really don't care if you are innocent or guilty, because it just doesn't matter to their pocket books. What matters is the chilling effect. By the time guilty persons outnumber the innocent, the law will adapt to redraw the line between guilt and innocence -- if it is determined by democracy, at least.