I'm not making any argument against Mongrel technically. I was trying to soft play it, but here's the hard version: Do you really want a piece of code in your software stack from a guy that is a loose cannon like that?
No worries, Zed does not maintain Mongrel anymore. See Mongrel's attributions page (http://mongrel.rubyforge.org/attributions.html) for current team. Therefore, you don't have to be worried about loose cannons developing your favorite HTTP library and server. (Mongrel is actually a fantastic piece of software written)
What makes me scratch my head... if these guys can find holes in a few hours, why can't Apple? It's not like these guys spent months to find some really obscure bug. They banged away with known attack vectors and got near-instant results.
Given enough eyeballs, all bugs are shallow. I would assume that Safari for Windows development and testing teams aren't really that large and there's always only so many man-months to allocate for testing, QA and all the rest of it. Not to mention security and vulnerability testing, "ordinary" developers may not have the skills and tools of most security experts, black hats, etc.
That's why 10k people find "obvious" bugs very fast on software that twenty strong development team spent last twelve months working on.
While not necessary e-mail validation tools, greylisting and SBL+XBL blocking lists by Spamhaus have eradicated nearly all spam I used to get through all of the other filters.
Greylisting alone helped to lower e-mail traffic drastically and blocking lists take care of known spamming hosts. I'd recommend using both to anyone running a e-mail server.
(can you tell me about a US computer mag, which actually features news?)
Linux Journal and Linux Maganize come to my mind. Even though their news lag several months behind, they're still a treat to read. I go online for my news, magazines for insight and articles.
* A generic company's IT staff probably (maybe?) is not competent enough to support adequately a company-wide Open Source initiative.
This argument leaves me always wondering, how many company have the IT staff really competent enough to manage their Windoze-based IT environment efficiently, and most importantly, more efficiently than OSS alternative.
Having worked as an Linux & Open Source entrepreneur, my experience tells me that there are lots of organizations whose IT infrastructure is on the verge of collapsing and cracking down because it's poorly managed. Poor management is usually the result of incompetent staff for Windoze sysadmin jobs. The-kid-next-door-who-knows-computers make good tech support, who will fix individual workstations, but when it comes to servers and complete IT environments, knowing how to (un)install programs and set up trivial stuff won't get you too far.
A lot of organizations' IT departments need great deal of training, no matter what the platform is.
Right-click My Computer -> Advanced -> Performance -> Advanced -> Memory Usage. Set to Programs. Now, click Change under Virtual Memory. Set your cache size small. For 1G of RAM, you prolly don't need a biggun. I usually set it to 100M for Inital and Max and then up it based on how often the machine swaps.
Then, make the following changes to the registry... [ lots of registry entries ]
Wow, I really appreciate that Windows swap control is much more intuitive than doing 'echo 0 >/proc/vm/swappiness' in Linux.;P
In short, laugh about it now, let it distract you from what's coming, let it lull you into thinking Linux will always have the security edge, go right ahead. It won't change anything.
Yeah, we will laugh. But can a business or governmental organization wait "a few years" and suffer from security problems that can put them out of business or cause leakage of confidential information?
What matters is that Linux has the security edge *now*, and with current rate of Windoze bugs/vulnerabilities, it is feasible to presume that Linux will maintain that edge for a long time. That's why individuals, businesses and organizations are switching now, to get the benefits immediately. Nobody wants a working and secure system "in a few years", everybody wants it now.
Microsoft really should live up to their Trustworthy Computing campaign or stop telling 'facts' based on lies, lies and more lies. Put up or shut up, fix the system or keep your mouth shut.
I'm getting a little tired of all leet desktop gurus here on Slashdot who every time, as/. posts a new story on Linux Desktop, whine about better clipboard support or some other feature that is in their opinion a must-have in order to gain competitive advantage and ease of use over Windows.
Why don't you fellas just shut up and go participate in OSS projects (such as GNOME & KDE) that are trying to achieve creating the best Linux Desktop experience for users. Write that damn clippy thingy instead of whining on Slashdot discussions. Participate in testing, file bug reports and really, I mean really, push those projects forward. Even a smallest contribution gets us a step closer to the goal: useable, friendly, engaging Linux desktop.
If you are like me and have puny C/C++ coding skills, there's a ton of work to do in QA, documentation and such. Get out there and involved!
All right, that's enough rant.:) G'day.
Use Scribus' PDF engine
on
PDF Writers?
·
· Score: 1
Open Source DTP application Scribus includes an excellent PDF engine, which conforms with ISO standard PDF/X-3 and is capable of producing high-quality, press-ready PDF files.
Tinker around the source and you should be able to extract necessary pieces from there.
Starting nmap 3.40PVT16 ( http://www.insecure.org/nmap/ ) at 2003-09-06 19:49 PDT Interesting ports on www.insecure.org (205.217.153.53): (The 1206 ports scanned but not shown below are in state: filtered) PORT STATE SERVICE VERSION 22/tcp open ssh OpenSSH 3.1p1 (protocol 1.99) 25/tcp open smtp Qmail smtpd 53/tcp open domain ISC Bind 9.2.1 80/tcp open http Apache httpd 2.0.39 ((Unix) mod_perl/1.99_07-dev Perl/v5.6.1) 113/tcp closed auth Device type: general purpose Running: Linux 2.4.X|2.5.X OS details: Linux Kernel 2.4.0 - 2.5.20 Uptime 108.307 days (since Wed May 21 12:27:44 2003)
Nmap run completed -- 1 IP address (1 host up) scanned in 34.962 seconds
Geez, I really thought black hats like Fyodor would use latest stuff and know security inside out.
Running OpenSSH version that old is going to get insecure.org down, especially with the new OpenSSH bug.;)
There was a quite good article on EnterpriseITPlanet about upcoming Samba 3 and they discuss the possibility to run Samba 3-only network. Which is very feasible IMHO because you don't have to manage headaches such as AD. Of course, this works with Linux/Unix fellas only, not you, my dear MCSEs. Samba is way too complex software package for you GUI people to comprehend.;)
I think it is very significant. When people get used to Linux-based desktops at work, they'll more likely try one at home, thus spreading the adoption of Linux to home computing environments also. Which is very important, since there might be other users at home (spouse/kids) who also get used to "new computing environment".
What all desktop environment projects should focus more on is to develop applications, that are/might be used by school kids and students. Educating the youngsters with the beauty of Linux is the most essential thing. Kids at my age (I'm 22) are using mostly Windows, because it was *the* OS for playing games and doing homework back then when I was at high school.
Changes do not happen overnight. It took many many years for Microsoft to get to the point where they now are (desktop dominance) and Linux may have to face similar, unfortunately even longer growth phase and time.
What makes you think that Linux is secure software? Or FreeBSD for that matter. I'd argue that OpenBSD is more secure but so is Trusted Solaris. Given the same marketshare as Windows, Linux would be just as much targetted by the black hats and script kiddies alike as Windows is these days.
You maybe right with your last sentence, but isn't it very much fun to laugh your ass off for Microsoft embarrassing itself with these kinds of security issues.:)
Redmond folks should keep their mouths shut about greatly improved security, when these kind of exploits and issues surface once in a while. I just can't remember any even distantly similar security vulnerability in Linux all alone, ever. Somebody might want to prove me wrong on this, I'm happy to become enlightened.
Haven't you yet figured it out? SCO keeps throwing these accusations and claims so ridicolous that they'll surely end up on Slashdot. Then Boies and rest of the lawyer team read all your top-notch IANAL-advices and pick up the best ones for even more insane claims! Let's not help them too much to destroy the company with these lawsuits, it'll be more entertaining to see them screwing themselves on their own.;)
I'm still able to play good ol' Lucasarts adventures like DOTT, Sam'n'Max and Full Throttle even though I don't have "compatible hardware" for running them in "native DOS mode".
Previously I tried to play them under Win98s DOS, but audio and especially speech support was flaky because I have SB Live 1024. Now with ScummVM, no problems at all. Props to the development team!
Though US is the major consumer of IPv4 addresses, it might be the last country to switch over as the article suggested. And though one billion vacant addresses may sound a lot, think about India, China and other developing countries. For example in China the use of Internet has exploded to hundreds of millions of users in past years and the number of systems, be it workstations or servers, connected to Internet has certainly risen to a *very* large number. So, in Asia there'll be a shortage of IPs in next couple of years.
IPv6 isn't all about greater address space. It also brings improvements on routing and network autoconfiguration. The packets can also be classified into different categories, etc.
I agree to some point with this. Adding new (major) features to 2.2 kernel series, like USB & AGP & DRM code, is against the principle of kernel development, at least as I see it.
These features might have serious impact on existing source code, creating new bugs and incompatibilities etc. Shouldn't 2.3/2.4 tree be the one where new features are developed?
I was also quite unpleased, when I found that RedHat didn't build Pinstripe (7.0beta) around 2.4. It's not that building a distribution around old, stable software is a bad idea, but when we're dumping all kinds of new features into 2.2 series, it just don't make sense that distributors (like RedHat) stay in 2.2 release and don't push 2.4 as an up-n-coming standard for Linux kernel.
We have yet to see a distribution or a beta which is built around 2.4 series. Shouldn't beta releases be tested so that bugs could be ironed out and stable software would appear in the release version? This kind of delaying is not good for Linux evolvement on business side, if thinking about RedHat and others. I think they'd really need to push 2.4 development so that it'd be ready ASAP for bigger businesses demanding SMP code, clustering, high availability and such features.
Probably just Calvin & Hobbes playing, like with the Viking probe.:) Or extra-terrestials trying to contact us.
Anyway, these space programs must be quite expensive because NASA has been hunting & hoping for signals from the probe since the 'crash' and still keep going.
Actually it'd be very nice to see their programs advance and not get setbacks like this. Because I want to code my last lines of Linux code in outer space.:)
It's great to see the Linux community so actively participating in 64-bit Linux development. Or actually is it the big guys who are crunching the code?:)
Now that the (0.01 alpha) compiler is out, community hackers can get their hands on I64 code, if they manage to acquire a I64 chip to do testing on. Consult VA Linux on this one...:)
If Linux is in the game with full throttle, I'd like to know what's going to happen to Redmond based OS. I've never heard Windows mentioned when talking or reading about I64 technology and chips, only Linux. We'll (soon(?)) be pushing Microsoft deeper underground if Linux beats Windows family on I64 field.
Slashdot Mirror
No worries, Zed does not maintain Mongrel anymore. See Mongrel's attributions page (http://mongrel.rubyforge.org/attributions.html) for current team. Therefore, you don't have to be worried about loose cannons developing your favorite HTTP library and server. (Mongrel is actually a fantastic piece of software written)
Given enough eyeballs, all bugs are shallow. I would assume that Safari for Windows development and testing teams aren't really that large and there's always only so many man-months to allocate for testing, QA and all the rest of it. Not to mention security and vulnerability testing, "ordinary" developers may not have the skills and tools of most security experts, black hats, etc.
That's why 10k people find "obvious" bugs very fast on software that twenty strong development team spent last twelve months working on.
Parent post is not funny, it's insightful. Few weeks ago Microsoft exec Jeff Raikes was quoted "If they're going to pirate somebody, we want it to be us rather than somebody else". Information Week covered this. http://www.informationweek.com/shared/printableAr
While not necessary e-mail validation tools, greylisting and SBL+XBL blocking lists by Spamhaus have eradicated nearly all spam I used to get through all of the other filters.
Greylisting alone helped to lower e-mail traffic drastically and blocking lists take care of known spamming hosts. I'd recommend using both to anyone running a e-mail server.
I think you misspelled the classification. Shouldn't it be "Won't fix" or "Expected behaviour"? :-)
(can you tell me about a US computer mag, which actually features news?)
Linux Journal and Linux Maganize come to my mind. Even though their news lag several months behind, they're still a treat to read. I go online for my news, magazines for insight and articles.
* A generic company's IT staff probably (maybe?) is not competent enough to support adequately a company-wide Open Source initiative.
This argument leaves me always wondering, how many company have the IT staff really competent enough to manage their Windoze-based IT environment efficiently, and most importantly, more efficiently than OSS alternative.
Having worked as an Linux & Open Source entrepreneur, my experience tells me that there are lots of organizations whose IT infrastructure is on the verge of collapsing and cracking down because it's poorly managed. Poor management is usually the result of incompetent staff for Windoze sysadmin jobs. The-kid-next-door-who-knows-computers make good tech support, who will fix individual workstations, but when it comes to servers and complete IT environments, knowing how to (un)install programs and set up trivial stuff won't get you too far.
A lot of organizations' IT departments need great deal of training, no matter what the platform is.
Right-click My Computer -> Advanced -> Performance -> Advanced -> Memory Usage. Set to Programs. Now, click Change under Virtual Memory. Set your cache size small. For 1G of RAM, you prolly don't need a biggun. I usually set it to 100M for Inital and Max and then up it based on how often the machine swaps.
/proc/vm/swappiness' in Linux. ;P
Then, make the following changes to the registry... [ lots of registry entries ]
Wow, I really appreciate that Windows swap control is much more intuitive than doing 'echo 0 >
Does this also affect my current version of XMMS?!
Oh wait, wrong OS. Never mind.
In short, laugh about it now, let it distract you from what's coming, let it lull you into thinking Linux will always have the security edge, go right ahead. It won't change anything.
Yeah, we will laugh. But can a business or governmental organization wait "a few years" and suffer from security problems that can put them out of business or cause leakage of confidential information?
What matters is that Linux has the security edge *now*, and with current rate of Windoze bugs/vulnerabilities, it is feasible to presume that Linux will maintain that edge for a long time. That's why individuals, businesses and organizations are switching now, to get the benefits immediately. Nobody wants a working and secure system "in a few years", everybody wants it now.
Microsoft really should live up to their Trustworthy Computing campaign or stop telling 'facts' based on lies, lies and more lies. Put up or shut up, fix the system or keep your mouth shut.
I'm getting a little tired of all leet desktop gurus here on Slashdot who every time, as /. posts a new story on Linux Desktop, whine about better clipboard support or some other feature that is in their opinion a must-have in order to gain competitive advantage and ease of use over Windows.
:) G'day.
Why don't you fellas just shut up and go participate in OSS projects (such as GNOME & KDE) that are trying to achieve creating the best Linux Desktop experience for users. Write that damn clippy thingy instead of whining on Slashdot discussions. Participate in testing, file bug reports and really, I mean really, push those projects forward. Even a smallest contribution gets us a step closer to the goal: useable, friendly, engaging Linux desktop.
If you are like me and have puny C/C++ coding skills, there's a ton of work to do in QA, documentation and such. Get out there and involved!
All right, that's enough rant.
Open Source DTP application Scribus includes an excellent PDF engine, which conforms with ISO standard PDF/X-3 and is capable of producing high-quality, press-ready PDF files.
Tinker around the source and you should be able to extract necessary pieces from there.
Geez, I really thought black hats like Fyodor would use latest stuff and know security inside out.
Running OpenSSH version that old is going to get insecure.org down, especially with the new OpenSSH bug.
There was a quite good article on EnterpriseITPlanet about upcoming Samba 3 and they discuss the possibility to run Samba 3-only network. Which is very feasible IMHO because you don't have to manage headaches such as AD. Of course, this works with Linux/Unix fellas only, not you, my dear MCSEs. Samba is way too complex software package for you GUI people to comprehend. ;)
What all desktop environment projects should focus more on is to develop applications, that are/might be used by school kids and students. Educating the youngsters with the beauty of Linux is the most essential thing. Kids at my age (I'm 22) are using mostly Windows, because it was *the* OS for playing games and doing homework back then when I was at high school.
Changes do not happen overnight. It took many many years for Microsoft to get to the point where they now are (desktop dominance) and Linux may have to face similar, unfortunately even longer growth phase and time.
You maybe right with your last sentence, but isn't it very much fun to laugh your ass off for Microsoft embarrassing itself with these kinds of security issues. :)
Redmond folks should keep their mouths shut about greatly improved security, when these kind of exploits and issues surface once in a while. I just can't remember any even distantly similar security vulnerability in Linux all alone, ever. Somebody might want to prove me wrong on this, I'm happy to become enlightened.
Haven't you yet figured it out? SCO keeps throwing these accusations and claims so ridicolous that they'll surely end up on Slashdot. Then Boies and rest of the lawyer team read all your top-notch IANAL-advices and pick up the best ones for even more insane claims! Let's not help them too much to destroy the company with these lawsuits, it'll be more entertaining to see them screwing themselves on their own. ;)
Sam: "I hope there was nobody on that bus."
Max: "Nobody we know, at least!"
Previously I tried to play them under Win98s DOS, but audio and especially speech support was flaky because I have SB Live 1024. Now with ScummVM, no problems at all. Props to the development team!
Another fine tactic is to remove the RJ-45 cable from NIC, works pretty well too. ;)
IPv6 isn't all about greater address space. It also brings improvements on routing and network autoconfiguration. The packets can also be classified into different categories, etc.
Enable your box with IPv6 today, Freenet6 provides free IPv6 connectivity over IPv4. Get some IPv6-enabled apps and use some IPv6-enabled servers/services, FTP and IRC being among the available ones.
Gee, I wonder if they really have the 25 000 CD roasters ready to rumble when the concert ends.
Imagine guys running around in tights, collecting ready CDs from the recorders.
These features might have serious impact on existing source code, creating new bugs and incompatibilities etc. Shouldn't 2.3/2.4 tree be the one where new features are developed?
I was also quite unpleased, when I found that RedHat didn't build Pinstripe (7.0beta) around 2.4. It's not that building a distribution around old, stable software is a bad idea, but when we're dumping all kinds of new features into 2.2 series, it just don't make sense that distributors (like RedHat) stay in 2.2 release and don't push 2.4 as an up-n-coming standard for Linux kernel.
We have yet to see a distribution or a beta which is built around 2.4 series. Shouldn't beta releases be tested so that bugs could be ironed out and stable software would appear in the release version? This kind of delaying is not good for Linux evolvement on business side, if thinking about RedHat and others. I think they'd really need to push 2.4 development so that it'd be ready ASAP for bigger businesses demanding SMP code, clustering, high availability and such features.
-- whitmer
Anyway, these space programs must be quite expensive because NASA has been hunting & hoping for signals from the probe since the 'crash' and still keep going.
Actually it'd be very nice to see their programs advance and not get setbacks like this. Because I want to code my last lines of Linux code in outer space. :)
Now that the (0.01 alpha) compiler is out, community hackers can get their hands on I64 code, if they manage to acquire a I64 chip to do testing on. Consult VA Linux on this one... :)
If Linux is in the game with full throttle, I'd like to know what's going to happen to Redmond based OS. I've never heard Windows mentioned when talking or reading about I64 technology and chips, only Linux. We'll (soon(?)) be pushing Microsoft deeper underground if Linux beats Windows family on I64 field.
The future's interesting. Just you wait. :)