The idea of change management is to ensure that changes are tracked, but this sounds like bureaucratic crap. Setup WSUS so you can track what patches are applied where, and then talk to the CAB to approve monthly (or whatever schedule) patches en-masse. Otherwise you'll end up not patching, and that's an even worse result.
I don't mind change management when it's done with some amount of sanity.
I reviewed a company's offering a few years ago that was recording the relative timing between keystrokes when you entered a password. Any subsequent attempts had to match that relative pattern in order to be verified.
It failed miserably.
I had a demo with the company. They showed me a nice fake online banking login screen. They then told me the name and password and said "Go ahead and try to login." I did so. And it let me right in. The woman giving the demo couldn't believe it. I took a screenshot and sent it to her as verification. Sure enough, their system did not stop me from logging in.
So she reset the password to something else, ran through a couple of calibration runs to make sure she could login, and then again gave me the password. I once again logged in immediately.
Once more she changed the password, and again asked me to try it. I couldn't login. So I tried a few more times, and on the third try I was once again staring at fake bank accounts.
I realized two things from this demo. First, its easily breakable by a human with comparable typing skills to the victim when the password is known. Second, the only thing this (particular product) could defeat was an automated system attempting to login....I don't think that review ever got published...
ZFS is not ready for prime time - at least not on Solaris.
I setup ZFS on some SAN storage in a new system. The internal boot disks were mirrored UFS. When one of the HBAs fried, the SAN storage disappeared - and the system panic'd.
Every reboot thereafter stopped in a panic. The ZFS subsystem panic'd the system at every boot when it couldn't find all its volumes. After calling Sun support, I found out that they need to do a massive code redesign to catch that issue, and it wouldn't be out for at least 6 months.
I'm sure ZFS will be great - once they clean up these type of showstopper bugs.
I've been annoyed with CMP recently, and I only freelance for them on occasion.
People coming/going for various reasons (I've heard more than I remember, but some were just fed up with the way things were going), shuffling things around, losing paperwork...
Like I said, only a freelancer, but still annoyed with how they do things.
then again, most people on/. are stupid college kids who think programming 101 is the axis of computer knowledge and and have no idea what and edge trigger even is.
Things I've learned about outsourcing spam filtering...
Number 1 - Too many missed messages. I've been adding domains to the block list for a year now. I still get more spam messages.
Number 2 - Poor configuration options. The only things I can change is the "aggressiveness" in 4 or 5 catagories (bulk email, porn, attachments, etc), or adding addresses/domains to a white/blacklist. Spam Assassin lets me change scores for different things, which is very nice.
Number 3 - Dependance on offsite server. Generally not a big deal, with redundancy and all, but occasionally it happens. And it blows.
For the record, my experience is with Postini. It wasn't my choice, but I still use that account anyway. My work account, using Spam Assassin, lets no spam through, and has only the occasional "false positive" (meaning it caught it according to my rules because a valid sender did something dumb, like send HTML mail).
Your recommendations are the same things we tell our users.
People will still attempt to get simple passwords through the password checker just because they don't want to remember something hard. Some people are so stupid they use variants of their usernames.
Unfortunately, there is little admins can do with stupid users beyond explain to them why they're stupid and try to convince them to change their ways.
I will admit that I enjoy surfing around and watching TV, but there's only so much of that I can handle. I need to go outside, breathe fresh air, feel the sun, to DO something.
Although there are a lot of things that you can do online, there are many, many things that you just can't do without leaving the dimly-lit basement and going outside.
As wonderful as it is to see a young child able to use Linux, is it really necessary for children use computers? They are wonderful tools, and there are many games for young children that help them learn, but really, couldn't the parents teach the children just as well?
The real problem is when parents let their children sit in front of a TV or computer all day. There's a lot more to life than just staring at screens.
Thank you for that explaination. Short, sweet, and to the point.
Now, the question I have to ask is this: How can the GPL apply to "an entire work"? If I write something, only the part that I'm writing (or modify) should be under the GPL. If I write something and link to another non-GPL library, and I follow all requirements of the license said library is under, why should the GPL suddenly apply to it? Just because I want to link against something under a different license shouldn't mean that suddenly that other thing is under the GPL. That's not right.
That doesn't make any sense whatsoever. Just because I link against your BSD licensed library doesn't change the license for your library.
I'm going to have to go read the GPL more carefully before I say much more. However, if this is the case, then I can understand how Microsoft can claim that it's a 'viral' license.
I just read over the XFree86 license versions 1.0 and 1.1. I see the difference, but why is this seemingly minor change causing such a huge commotion with the major distributions?
Of course, some of us care more about the fact that it is still free (as in beer and in speech) than the exact wording of the license.
They don't want to get DDoSed on the 1st, so they decide to give out a huge reward.
I bet they didn't think about the number of people (not just from Slashdot, but everywhere) that were going to DDoS them just by reading their press release...
"...he admits that the company was failing and the Linux-related lawsuits were a last-ditch effort to prevent bankruptcy."
I'm sorry, I just don't see that. Nowhere in that article did I see an admission that it was a last-ditch effort to prevent bankruptcy. I see him talking about "protecting UNIX IP rights"...I'm not even touching that part.
Let's let people read the article and draw their own conclusions instead of making some up to make Darl sound worse. He can do that all on his own.
Slashdot Mirror
This sounds like change management gone wrong.
The idea of change management is to ensure that changes are tracked, but this sounds like bureaucratic crap. Setup WSUS so you can track what patches are applied where, and then talk to the CAB to approve monthly (or whatever schedule) patches en-masse. Otherwise you'll end up not patching, and that's an even worse result.
I don't mind change management when it's done with some amount of sanity.
I reviewed a company's offering a few years ago that was recording the relative timing between keystrokes when you entered a password. Any subsequent attempts had to match that relative pattern in order to be verified.
It failed miserably.
I had a demo with the company. They showed me a nice fake online banking login screen. They then told me the name and password and said "Go ahead and try to login." I did so. And it let me right in. The woman giving the demo couldn't believe it. I took a screenshot and sent it to her as verification. Sure enough, their system did not stop me from logging in.
So she reset the password to something else, ran through a couple of calibration runs to make sure she could login, and then again gave me the password. I once again logged in immediately.
Once more she changed the password, and again asked me to try it. I couldn't login. So I tried a few more times, and on the third try I was once again staring at fake bank accounts.
I realized two things from this demo. First, its easily breakable by a human with comparable typing skills to the victim when the password is known. Second, the only thing this (particular product) could defeat was an automated system attempting to login. ...I don't think that review ever got published...
Headline should read "VirtualBox 2.1 Supports 64 Bit VM in 32 Bit Host Operating System".
Big difference between a 32-bit host and a 32-bit host OS.
ZFS is not ready for prime time - at least not on Solaris.
I setup ZFS on some SAN storage in a new system. The internal boot disks were mirrored UFS. When one of the HBAs fried, the SAN storage disappeared - and the system panic'd.
Every reboot thereafter stopped in a panic. The ZFS subsystem panic'd the system at every boot when it couldn't find all its volumes. After calling Sun support, I found out that they need to do a massive code redesign to catch that issue, and it wouldn't be out for at least 6 months.
I'm sure ZFS will be great - once they clean up these type of showstopper bugs.
I've been annoyed with CMP recently, and I only freelance for them on occasion.
People coming/going for various reasons (I've heard more than I remember, but some were just fed up with the way things were going), shuffling things around, losing paperwork...
Like I said, only a freelancer, but still annoyed with how they do things.
Amen.
Ads are fine, if they aren't intrusive. Once they overtake the content of the page, its time to go.
Yup.
Been there, seen the destruction. Video cards smoke really well...
If he's a network security engineer, shouldn't he realize that NAT actually hides the real source of some network threats?
If everyone has a real IP, problems are much easier to track down.
Things I've learned about outsourcing spam filtering...
Number 1 - Too many missed messages. I've been adding domains to the block list for a year now. I still get more spam messages.
Number 2 - Poor configuration options. The only things I can change is the "aggressiveness" in 4 or 5 catagories (bulk email, porn, attachments, etc), or adding addresses/domains to a white/blacklist. Spam Assassin lets me change scores for different things, which is very nice.
Number 3 - Dependance on offsite server. Generally not a big deal, with redundancy and all, but occasionally it happens. And it blows.
For the record, my experience is with Postini. It wasn't my choice, but I still use that account anyway. My work account, using Spam Assassin, lets no spam through, and has only the occasional "false positive" (meaning it caught it according to my rules because a valid sender did something dumb, like send HTML mail).
We've all heard this before. It's not a "legal" DVD player, blah blah blah.
If I spend the $15 - $20 on a DVD, I'm going to play it on whatever I damn well please.
Well, that's the way it happens when you replace the VM system in the middle of a "stable" release. I know people who still run 2.2 because of that.
"Meanwhile, average users are no longer tech savvy."
No, this doesn't mean that the average users were at some point tech savvy. It just means more idiots are buying them.
More open networks for the rest of us, I guess.
Your recommendations are the same things we tell our users.
People will still attempt to get simple passwords through the password checker just because they don't want to remember something hard. Some people are so stupid they use variants of their usernames.
Unfortunately, there is little admins can do with stupid users beyond explain to them why they're stupid and try to convince them to change their ways.
I will admit that I enjoy surfing around and watching TV, but there's only so much of that I can handle. I need to go outside, breathe fresh air, feel the sun, to DO something.
Although there are a lot of things that you can do online, there are many, many things that you just can't do without leaving the dimly-lit basement and going outside.
As wonderful as it is to see a young child able to use Linux, is it really necessary for children use computers? They are wonderful tools, and there are many games for young children that help them learn, but really, couldn't the parents teach the children just as well?
The real problem is when parents let their children sit in front of a TV or computer all day. There's a lot more to life than just staring at screens.
I see how that's an issue now, thanks to the other replies.
Got it. Now I see.
And, quite frankly, I find it stupid. But, whatever. I only write things for myself, and thus I don't worry about licensing.
If I ever do release anything, I'll have to look into licenses more. I don't like that piece of the GPL.
Thank you for that explaination. Short, sweet, and to the point.
Now, the question I have to ask is this: How can the GPL apply to "an entire work"? If I write something, only the part that I'm writing (or modify) should be under the GPL. If I write something and link to another non-GPL library, and I follow all requirements of the license said library is under, why should the GPL suddenly apply to it? Just because I want to link against something under a different license shouldn't mean that suddenly that other thing is under the GPL. That's not right.
That doesn't make any sense whatsoever. Just because I link against your BSD licensed library doesn't change the license for your library.
I'm going to have to go read the GPL more carefully before I say much more. However, if this is the case, then I can understand how Microsoft can claim that it's a 'viral' license.
So the entire argument is about being forced to give credit where credit is due?
That's fucking awesome.
Nothing is stopping me from using XFree86 on my debian box, so if they decide to stop using it, I'll just compile it myself.
So long as minor issues like this are blown out of proportion, people are going to shy away from Linux. It's a shame, too.
I just read over the XFree86 license versions 1.0 and 1.1. I see the difference, but why is this seemingly minor change causing such a huge commotion with the major distributions?
Of course, some of us care more about the fact that it is still free (as in beer and in speech) than the exact wording of the license.
Too bad we can't moderate the articles...
They don't want to get DDoSed on the 1st, so they decide to give out a huge reward.
I bet they didn't think about the number of people (not just from Slashdot, but everywhere) that were going to DDoS them just by reading their press release...
Yet another showing of intelligence from SCO.
Thank you.
I must have misread it. My apologies.
But it still doesn't claim it's a last ditch effort. This was not the only course of action. It was just the easiest.
"...he admits that the company was failing and the Linux-related lawsuits were a last-ditch effort to prevent bankruptcy."
I'm sorry, I just don't see that. Nowhere in that article did I see an admission that it was a last-ditch effort to prevent bankruptcy. I see him talking about "protecting UNIX IP rights"...I'm not even touching that part.
Let's let people read the article and draw their own conclusions instead of making some up to make Darl sound worse. He can do that all on his own.