You may have had the best intentions, but in reality (by uploading untrusted SSH binarys) you are encouraging people to take stupid risks.
They're very trusted. I downloaded them from the vendor's site and built them myself. Anyone who trusts me (note the link to my homepage if you care to do research on myself or my company) can go download them. Anyone who has doubts can wait a week for their distro to put out updated RPMS.
I think anyone like yourself can be an armchair "security expert." Come up with something USEFUL yourself instead of whining at those of us who are trying to make life easier for others.
With the self-imposed rules, the DMA requires members to give consumers notice and choice before sending commercial e-mail or before selling, sharing or renting their e-mail addresses to a third party. In addition, commercial e-mail must clearly identify the sender, represent the subject line accurately, and provide contact information. Above all, the marketer must let consumers opt out of further communications in every e-mail.
Taking the cynical approach to reading this section in the article, we can expect that it will be acceptable for DMA members to send out the 'permission to spam' spam that so many spamming morons already do.
I'd like to see federal law that provides some disincentive to spam-sending critters. Making spamming illegal makes spammers into official criminals. I just can't see 'industry' self-regulation working very well when most spammers aren't even a part of any legitimate industry.
Comparing RMS to OBL is sinking pretty damn low. It's pretty easy to stand on the sidelines and call names, but the truth of the matter is that RMS has sacrificed a great deal of his personal time producing Free software, and working to get the concept of Freedom in software across to people who otherwise would be totally clueless that such a thing existed in a quality form.
Comparing his actions with those of a murderer is extremely offensive to me.
Don't forget the best form of protest, negate the effectiveness of the arrest by distributing the software. It looks like something's wrong with cryptome.org's dns at the moment, so here's the IP address where you can download the program in question. You can get the key to unlock it from Dr. Dave's site.
Download from cryptome.org here
I have been using a piece of software on my site
for several years, a useful bulletin board program which was originally released by the author under
the GPL.
The author has since removed any reference to the
GPL in his latest releases, and is now using a
proprietary license.
I would like to take the GPL'd version of the code
which he previously released and use it as a base
for a continued open source project, but I'm not sure that I can legally do that if the author objects- after all, I'll be using his code to "compete" with his own commercial "fork" of the project.
Slashdot Mirror
BTW for those who want to do this themselves it's not hard. If you have a server without gnome libs installed you need to do it this way:
/usr/src/redhat/SPECS/openssh.spec
/usr/src) and do:
../RPMS/i386/
rpm -ivh openssh-3.1p1-1.src.rpm
then edit
and set the options as you like, in my case I changed the 0 to a 1 where the gnome-askpass bit is.
Then use rpm to build it, cd to the SPECS directory on your system (may also be
rpm -bb openssh.spec
Then watch the messages at the end which tell you where the finished RPM's are. Usually
For those who want the gnome-askpass, just do
rpm --rebuild openssh-3.1p1-1.src.rpm
You may have had the best intentions, but in reality (by uploading untrusted SSH binarys) you are encouraging people to take stupid risks.
They're very trusted. I downloaded them from the vendor's site and built them myself. Anyone who trusts me (note the link to my homepage if you care to do research on myself or my company) can go download them. Anyone who has doubts can wait a week for their distro to put out updated RPMS.
I think anyone like yourself can be an armchair "security expert." Come up with something USEFUL yourself instead of whining at those of us who are trying to make life easier for others.
Haha, gimme a break. =) I guess I should know better than to let my helpful side show on slashdot. Download mine or go build it yourself, sheesh.
Done. The reason I put em up was the only mirror that has the active file is ftp.openbsd, and it will probably be swamped pretty promptly hereafter.
Did a md5sum that anyone's free to check against the original also for the paranoid among you.
Yup, but there are folks here who know and trust me. =)
If you're concerned, just don't download em.
Help yourselves:
http://www.geniusweb.com/RPMS/
SSH 3.1p1 RPM's compiled without gnome-askpass, everything else is default vanilla.
You mean RIAA right? MPAA is the movie people.
I have a feeling she will give you an enthusiastic "Yes"
Be sure to UPDATE: us and congratulations on your courageous proposal.
=)
Taking the cynical approach to reading this section in the article, we can expect that it will be acceptable for DMA members to send out the 'permission to spam' spam that so many spamming morons already do.
I'd like to see federal law that provides some disincentive to spam-sending critters. Making spamming illegal makes spammers into official criminals. I just can't see 'industry' self-regulation working very well when most spammers aren't even a part of any legitimate industry.
To be fair, the guy complaining has 9 negatives and 12 neutrals.
Not exactly ebay premo himself.
I just can't get past clicking on an ugly foot to "start" my computing adventure.
Feet are smelly and nasty. I just don't want a foot on my desktop.
I suspect that this would ensure far less software gets produced by smaller vendors and individuals who can't afford the liability.
Another good move for corporate America.
Microsoft is able to defend itself against the government. Are you?
Thanks for the comments.
/;x.doc" I wouldn't open it. Anyone who would deserves what they get 8)
If I got an attachment called ";rm -rf
Error checking... this is a kludge mate. If it doesn't open, I go have a look.
I use "o" out of habit. Doesn't hurt to have it there.
Haha, no!
That's why I said "kludge" since it's for my personal use on files that I eyeball before opening...
Here's a perl kludge I use to convert doc on the fly into PDF and open in acrobat from kmail:
/_/g;
/\\ /g;
#!/usr/bin/perl
my $fn=shift;
my $or=$fn;
$fn=~s/.*\/(.*)\.doc$/$1/o;
$fn=~s/
$or =~ s/
`antiword -p letter $or | ps2pdf - > $HOME/tmp/$fn.pdf `;
exec("/usr/bin/acroread $HOME/tmp/$fn.pdf");
It does require antiword which you can obtain from freshmeat.
By creating this scandal, they'll cash in on the hoopla big time. What's everyone doing? Linking to them, giving them free press and promo.
Guess they're paid the big bucks for a reason eh?
The above should be moderated 'troll'
Comparing RMS to OBL is sinking pretty damn low. It's pretty easy to stand on the sidelines and call names, but the truth of the matter is that RMS has sacrificed a great deal of his personal time producing Free software, and working to get the concept of Freedom in software across to people who otherwise would be totally clueless that such a thing existed in a quality form.
Comparing his actions with those of a murderer is extremely offensive to me.
Just give Radio Shack your current address, the address of the store. What can they say?
(bill gates currently pictured laying back on a loveseat surrounded by half lit lightbulbs)
There's a bit on the asia CNN site, US site doesn't seem to work.
http://asia.cnn.com/
Don't forget the best form of protest, negate the effectiveness of the arrest by distributing the software. It looks like something's wrong with cryptome.org's dns at the moment, so here's the IP address where you can download the program in question. You can get the key to unlock it from Dr. Dave's site. Download from cryptome.org here
"Microsoft has made a practice of "eating its own dog food"
Yet another well reasoned and insightful solution by Taco.
Pun intended. Deal with it.
The author has since removed any reference to the GPL in his latest releases, and is now using a proprietary license.
I would like to take the GPL'd version of the code which he previously released and use it as a base for a continued open source project, but I'm not sure that I can legally do that if the author objects- after all, I'll be using his code to "compete" with his own commercial "fork" of the project.
Can I fork his code to start my own project?
Don't worry, he'll get better at it with practice.