That's exactly what I meant by "serious network problems". Reverse DNS being broken seems to be the number one cause of slow SSH. If reverse DNS is missing / broken, ssh won't be the only thing slow.
It's time to start forcing ISP's do do something about the massive botnet's on their networks, and install technology to automatically identify and block hosts that are actively participating in a DOS or spam run. No, it's not cheap, and it's not easy, but it needs to be done. The amount of portscanning going on is incredible. Looking at firewall statistics, it's amazing to see how many compromised hosts pound on you day after day, weeks at a time. There was one such host that has been portscanning my network for nearly a YEAR.
No, zero day means that an exploit was released before or on the same day as the vendor / community found out about it. Ethical security researchers notify the vendor first, and at LEAST give them a few days / weeks to resolve the problem before releasing the full details to the public.
Since apparently Sun is negligent enough to have telnet enabled by default, it is an important story. This reminds me of the old NT4 days, where every service on the machine was enabled by default, and the first thing you had to do was turn everything off. Come on Sun, get with program here...
If ssh on your cisco boxes is slow, you either have serious network problems or your cisco box has been end-of-life for 10 years. If you don't practice security inside your network, you are asking for trouble. Perimeter-only security is Sooo 1990. Time to join the next century.
Does ANYONE run telnet anymore? There has been no need to run telnet for at least 10 years. If you ARE nuts enough to run it, you would would be even more nuts to have it open to the internet. Can anyone confirm if telnet is enabled by default on Solaris for new installs? I would doubt it - I haven't seen telnet being enabled by default on any unix flavor in at least a decade.
Cluebat: Someone who expresses certain attitudes and beliefs on/. are probably not going to express the same as the attitudes and beliefs to a potential employer, just like you don't talk to your peers the way you talk to your kids. But you knew that... Or should have.
And there is a huge difference between an "average" programmer and a "talented" one. Microsoft only wants really good people but are only paying average wages. The only talented people they can find to work for average wages are H1-B visa folks. It's Sooo freaking easy to get around the regulations.
Or, they have lived in the same house for 30 years, and paid $50K for it rather than the $800K it's now worth. While the average person may move every 3 years, not everyone is average.
Maybe, just MAYBE, Microsoft isn't really paying competitive wages. Maybe you are paying $90K for jobs that really should be $130K jobs. In that case, it's no wonder you have to look overseas to find people willing to get paid crap wages. Frankly, $90K is crap for talented people in this industry. So you satisfy the requirements for H1B by underpaying for the position. Nice. You have pointy hair, right?
I guess I don't understand your friend. If you tell him that DRM is the software lock on music file that is prohibiting him from converting it to an MP3, what else is there to understand? Is he asking for the gory technical details that he has no hope of understanding anyway? It's pretty damn straight forward.
DRM is like carbon monoxide. You can't "see" it, but when it's there it can cause you serious problems.
Exactly, which means that you can't give one group full control, and another read only. You really do need full ACL's to do it right, and more than just RWXSst.
A terabyte of consumer desktop grade disk may be $300, but enterprise class storage is MUCH MUCH more expensive, especially when you factor in the array controllers, hot-swap disk shelves, redundant power supplies, etc. Then you have to back the crap up, and keep it for how long???
Yeah. SELinux is great. SCP a conf file over from another machine, and the security context gets lost, requiring you to manually fix it. Security contexts are also not supported on NFS partitions. About the only time it's viable to use SELinux in enforcing mode is on simple dedicated single purpose machines, like DNS / mail servers. Unless you have a very trivial (static) web site, Even web servers fail due to the sheer complexity of getting the security contexts all set just exactly right. I spent two weeks trying to work up proper security contexts for our web application... It touches too many things and has too many components to effectively support it from a time / money aspect.
The concept of SELinux is great. Actually USING it is a total PITA. It's not just complexity that requires knowledge, it's complexity that requires a GREAT deal of time (which equals money in most business cases). I would bet that you are MUCH better off running these types of servers in a dedicated, minimal VM.
But let's assume that this is true for the sake of argument... Maybe they feel that babies have an inherent right to life, where some criminals behaved so poorly that they have forfeited that right. Our prison system doesn't seem to have a good alternative to the death penalty, such as a "hard labor" option, and we tend to keep letting really bad people go free to murder / offend again.
But let's get back on track, because this is WAY WAY off topic.
This corporate behavior is just insane. It sure sounds like someone needs to see a shrink and take some strong medications, because there is no way they have a case at all. This is simple malicious harassment driven from undeserved anger.
I was in a startup once that had about 25 people. Due to the wacky behavior of the founder / president, 20 people (including myself) quit within a 1 month period (I was early - number 2.) He tried to convince me to stay, claiming that he would double my salary, but I declined, saying that the new job offered a much more challenging and interesting position. Truth is that I would rather have taken a cut in pay than stay (which was true, but not necessary - I ended up with a job that paid 50% more.) Ironically, nearly the same thing happened 3 years later, when I quit that job, and had happened before at the 2 jobs prior. Everyone wanted me to stay and always offered a significant pay raise, but to me job satisfaction is more important than cash - even when I wasn't making very much.
On that note, just how do others feel about someone who makes a decision to leave, accepting another job offer, but then changes his mind when cash is thrown on the table? I guess it depends on the reason you are leaving. Is it for career development? To get away from a bad boss? To find something more interesting? Or just pay?
The problem has nothing to do Emulation or anything related to it. The problem is that some businesses CHOSE to lock themselves into Microsoft proprietary applications, protocols, and file formats. If you design your entire infrastructure to be based on Microsoft products, then you will be unable to use anything BUT Microsoft products.
The answer is simple. Develop an IT strategy that does not get you locked into proprietary systems. You don't have to do it "tomorrow", but do it over 5 years or so. This doesn't mean you have to throw out windows entirely, just don't put it and all the other MS proprietary cruft at the core of everything you do.
This article is not about integrating Linux into a business environment, it's about integrating with a MICROSOFT environment. Of COURSE you are going to have trouble integrating with a Microsoft environment because Microsoft has gone to extraordinary lengths to make that very very difficult (hence the reason they are in trouble with the EU.)
If you structure your IT to not be Microsoft centric, then Linux, Mac's, and Windows can all work together. If you design your entire infrastructure around Microsoft technologies, then good fracking luck.
Dimmable CFL's are not available in my town. Neither Lowes nor Home Depot carry them here. I'd have to buy them on the internet for 5x the price of a standard CFL. That sucketh. Anyway, I want LED instead.
Slashdot Mirror
That's exactly what I meant by "serious network problems". Reverse DNS being broken seems to be the number one cause of slow SSH. If reverse DNS is missing / broken, ssh won't be the only thing slow.
It's time to start forcing ISP's do do something about the massive botnet's on their networks, and install technology to automatically identify and block hosts that are actively participating in a DOS or spam run. No, it's not cheap, and it's not easy, but it needs to be done. The amount of portscanning going on is incredible. Looking at firewall statistics, it's amazing to see how many compromised hosts pound on you day after day, weeks at a time. There was one such host that has been portscanning my network for nearly a YEAR.
No, zero day means that an exploit was released before or on the same day as the vendor / community found out about it. Ethical security researchers notify the vendor first, and at LEAST give them a few days / weeks to resolve the problem before releasing the full details to the public.
Since apparently Sun is negligent enough to have telnet enabled by default, it is an important story. This reminds me of the old NT4 days, where every service on the machine was enabled by default, and the first thing you had to do was turn everything off. Come on Sun, get with program here...
Time to sell Sun stock then (well, it's already in the toilet) because that is not just stupid, it's gross negligence.
If ssh on your cisco boxes is slow, you either have serious network problems or your cisco box has been end-of-life for 10 years. If you don't practice security inside your network, you are asking for trouble. Perimeter-only security is Sooo 1990. Time to join the next century.
Does ANYONE run telnet anymore? There has been no need to run telnet for at least 10 years. If you ARE nuts enough to run it, you would would be even more nuts to have it open to the internet. Can anyone confirm if telnet is enabled by default on Solaris for new installs? I would doubt it - I haven't seen telnet being enabled by default on any unix flavor in at least a decade.
More people need to stop running fascist websites that require javascript be on for simple text content...
How the USA is becoming a police state
Hey, turn on Javascript!
Yes, you!
Turn it on!
Ahh - noscript.
Cluebat: Someone who expresses certain attitudes and beliefs on /. are probably not going to express the same as the attitudes and beliefs to a potential employer, just like you don't talk to your peers the way you talk to your kids. But you knew that... Or should have.
And there is a huge difference between an "average" programmer and a "talented" one. Microsoft only wants really good people but are only paying average wages. The only talented people they can find to work for average wages are H1-B visa folks. It's Sooo freaking easy to get around the regulations.
He LIKES to work. So does my father, who at age 85 is still engaged professionally. He doesn't HAVE to, he WANTS to.
Or, they have lived in the same house for 30 years, and paid $50K for it rather than the $800K it's now worth. While the average person may move every 3 years, not everyone is average.
Maybe, just MAYBE, Microsoft isn't really paying competitive wages. Maybe you are paying $90K for jobs that really should be $130K jobs. In that case, it's no wonder you have to look overseas to find people willing to get paid crap wages. Frankly, $90K is crap for talented people in this industry. So you satisfy the requirements for H1B by underpaying for the position. Nice. You have pointy hair, right?
live the life of luxory (sic) and do whatever the hell you want.
You mean he's not doing that now???
I guess I don't understand your friend. If you tell him that DRM is the software lock on music file that is prohibiting him from converting it to an MP3, what else is there to understand? Is he asking for the gory technical details that he has no hope of understanding anyway? It's pretty damn straight forward.
DRM is like carbon monoxide. You can't "see" it, but when it's there it can cause you serious problems.
if you are one of those extremes who's spent $30k on iTunes music, you probably don't care that it locks you into the iPod as your portable player.
Such wealthy people include Apple executives... Hmm.
Exactly, which means that you can't give one group full control, and another read only. You really do need full ACL's to do it right, and more than just RWXSst.
Hello freenet.
If I had a broker, I'd be calling him and buying
Dude: get with the program. We do that on the internet now...
A terabyte of consumer desktop grade disk may be $300, but enterprise class storage is MUCH MUCH more expensive, especially when you factor in the array controllers, hot-swap disk shelves, redundant power supplies, etc. Then you have to back the crap up, and keep it for how long???
Yeah. SELinux is great. SCP a conf file over from another machine, and the security context gets lost, requiring you to manually fix it. Security contexts are also not supported on NFS partitions. About the only time it's viable to use SELinux in enforcing mode is on simple dedicated single purpose machines, like DNS / mail servers. Unless you have a very trivial (static) web site, Even web servers fail due to the sheer complexity of getting the security contexts all set just exactly right. I spent two weeks trying to work up proper security contexts for our web application... It touches too many things and has too many components to effectively support it from a time / money aspect.
The concept of SELinux is great. Actually USING it is a total PITA. It's not just complexity that requires knowledge, it's complexity that requires a GREAT deal of time (which equals money in most business cases). I would bet that you are MUCH better off running these types of servers in a dedicated, minimal VM.
Most? You know this for a fact?
But let's assume that this is true for the sake of argument... Maybe they feel that babies have an inherent right to life, where some criminals behaved so poorly that they have forfeited that right. Our prison system doesn't seem to have a good alternative to the death penalty, such as a "hard labor" option, and we tend to keep letting really bad people go free to murder / offend again.
But let's get back on track, because this is WAY WAY off topic.
This corporate behavior is just insane. It sure sounds like someone needs to see a shrink and take some strong medications, because there is no way they have a case at all. This is simple malicious harassment driven from undeserved anger.
I was in a startup once that had about 25 people. Due to the wacky behavior of the founder / president, 20 people (including myself) quit within a 1 month period (I was early - number 2.) He tried to convince me to stay, claiming that he would double my salary, but I declined, saying that the new job offered a much more challenging and interesting position. Truth is that I would rather have taken a cut in pay than stay (which was true, but not necessary - I ended up with a job that paid 50% more.) Ironically, nearly the same thing happened 3 years later, when I quit that job, and had happened before at the 2 jobs prior. Everyone wanted me to stay and always offered a significant pay raise, but to me job satisfaction is more important than cash - even when I wasn't making very much.
On that note, just how do others feel about someone who makes a decision to leave, accepting another job offer, but then changes his mind when cash is thrown on the table? I guess it depends on the reason you are leaving. Is it for career development? To get away from a bad boss? To find something more interesting? Or just pay?
The problem has nothing to do Emulation or anything related to it. The problem is that some businesses CHOSE to lock themselves into Microsoft proprietary applications, protocols, and file formats. If you design your entire infrastructure to be based on Microsoft products, then you will be unable to use anything BUT Microsoft products.
The answer is simple. Develop an IT strategy that does not get you locked into proprietary systems. You don't have to do it "tomorrow", but do it over 5 years or so. This doesn't mean you have to throw out windows entirely, just don't put it and all the other MS proprietary cruft at the core of everything you do.
This article is not about integrating Linux into a business environment, it's about integrating with a MICROSOFT environment. Of COURSE you are going to have trouble integrating with a Microsoft environment because Microsoft has gone to extraordinary lengths to make that very very difficult (hence the reason they are in trouble with the EU.)
If you structure your IT to not be Microsoft centric, then Linux, Mac's, and Windows can all work together. If you design your entire infrastructure around Microsoft technologies, then good fracking luck.
Dimmable CFL's are not available in my town. Neither Lowes nor Home Depot carry them here. I'd have to buy them on the internet for 5x the price of a standard CFL. That sucketh. Anyway, I want LED instead.