When it comes down to it, you need to have overseen the design, manufacturing, and programming (at machine-code level) of every IC on every component of every computer in your network. Even then, who knows what "they" can do with the electromagnetic waves all your components give off.
In short, your philosophy toward security is demonstrably absurd.
My question is shorter: Is Hardy Heron ready? It seems major core packages (like xorg) are updated EVERY DAY! I would expect nothing but minor tweaks in the days before a release. What I am seeing is last-minute scrambling to get changes in. That's disconcerting.
"we formed a data security team - it's just one dedicated person right now, but since he's really only involved with the policy stuff, that's enough for us"
Not only do you have a paper-tiger security team, but you under-staff it, at that! Epic fail.
NVDA was down 7% in the stock market today. As an Nvidia shareholder, that hurts!
If you don't believe Intel will ever compete with Nvidia, now is probably a good time to buy. NVDA has a forward P/E of 14. That's a "value stock" price for a leading tech company... you don't get opportunities like that often. NVDA also has no debt on the books, so the credit crunch does not directly affect them.
If you really had a Masters in business, you would know that executive pay is between the shareholders and the executives, and NOBODY ELSE.
If AMD's sales are falling, and the people who were hired to support those nonexistent sales are sitting idle, of course it makes sense to axe them. That frees up wasted money so they can invest it in R&D to take the lead from Intel once more.
It takes methodical planning to coordinate the near-simultaneous slamming of four planes, especially when starting with nothing but some money and a group of suicidal, sex-starved Saudis who have no flight training.
Engineers will be better than scientists or academics, despite similarly high intelligence levels, because engineers actually have to show results with their projects.
Instead of profiling and waging wars, though, America's efforts to stop terrorism would best be served by a policy aimed at getting everyone on the planet a good fuck and some cold beer.
When the Earth's gravitationally pole flips once again, humans will have to carry super-conducting electromagnet umbrellas with them to avoid the mass-extinction causing radiation.
I do lots of things too much: too much alcohol, too much coffee, too much online gaming. But every once in a while, I quit for a week or two and have no withdrawal symptoms, so I conclude I am not addicted.
I conclude there is a difference between obsessive behavior and addiction.
Lenders make the rules. They are they only ones that matter. They only care about their own time.
I don't care what you do with the goods or how much you age in the time I age. If I loan you money, all I care about is that the payments are in my bank account regularly according to my time.
A uni shouldn't let the kids have +ExecCGI at all on a shared system. You will absolutely get hacked if you do that, no matter what your directory structure is.
What does that help? First, an attacker who found a way to control a cgi script would only have permissions of the web server, so he wouldn't be able to WRITE new files anywhere without privilege escalation. If he did have privilege escalation, he could write files anywhere with equal ease.
Again, where is the security benefit of cgi-bin either way?
/cgi-bin/ doesn't jail anything. Please explain how finding a SQL injection in crappybank.com/cgi-bin/index.cgi has any less risk than finding a SQL injection in crappybank.com/index.cgi?
Here's something to cook up: Kill the/cgi-bi/ nonsense already! It was a bad idea from the start. If a file is in my web directory and it has execute permissions, just treat it as a CGI file. Forget that AddHandler business, too. If a file is executable and the directory has +ExecCGI turned on, treat it as CGI already!
Slashdot Mirror
When it comes down to it, you need to have overseen the design, manufacturing, and programming (at machine-code level) of every IC on every component of every computer in your network. Even then, who knows what "they" can do with the electromagnetic waves all your components give off.
In short, your philosophy toward security is demonstrably absurd.
If you think the science is open-and shut that ostrich is healthy[sic] (you mean healthful), but steak is not, then you are confused.
Yeah. It's LTS so it should have had a feature freeze weeks ago.
My question is shorter: Is Hardy Heron ready? It seems major core packages (like xorg) are updated EVERY DAY! I would expect nothing but minor tweaks in the days before a release. What I am seeing is last-minute scrambling to get changes in. That's disconcerting.
"we formed a data security team - it's just one dedicated person right now, but since he's really only involved with the policy stuff, that's enough for us"
Not only do you have a paper-tiger security team, but you under-staff it, at that! Epic fail.
As long as people watch DVDs on their laptops, widescreen will be preferred.
NVDA is a chip maker. They make the best GPUs, period. Their chips are used in high-end PCs, but also in Sony's PS3.
There is an inherent bias in this method. It fails to elicit any responses from those who found the most effective suicide methods.
NVDA was down 7% in the stock market today. As an Nvidia shareholder, that hurts!
If you don't believe Intel will ever compete with Nvidia, now is probably a good time to buy. NVDA has a forward P/E of 14. That's a "value stock" price for a leading tech company... you don't get opportunities like that often. NVDA also has no debt on the books, so the credit crunch does not directly affect them.
If you really had a Masters in business, you would know that executive pay is between the shareholders and the executives, and NOBODY ELSE.
If AMD's sales are falling, and the people who were hired to support those nonexistent sales are sitting idle, of course it makes sense to axe them. That frees up wasted money so they can invest it in R&D to take the lead from Intel once more.
Perhaps you could apply at a think tank or a school which researches string theory or some other far-out stuff.
It takes methodical planning to coordinate the near-simultaneous slamming of four planes, especially when starting with nothing but some money and a group of suicidal, sex-starved Saudis who have no flight training.
Engineers will be better than scientists or academics, despite similarly high intelligence levels, because engineers actually have to show results with their projects.
Instead of profiling and waging wars, though, America's efforts to stop terrorism would best be served by a policy aimed at getting everyone on the planet a good fuck and some cold beer.
Think of the children!
Oh the humanity!!
When the Earth's gravitationally pole flips once again, humans will have to carry super-conducting electromagnet umbrellas with them to avoid the mass-extinction causing radiation.
Scientific success found to be inversely correlated with social success!
Chemists who invent new drugs were shown to be exceptions to this rule.
Debt can be bad, especially if they borrow short like those poor suckers with ARMs. And in bankruptcy, shareholders get paid AFTER bond holders!
You're right that it's not always bad. But there are some very good things about being debt free.
I do lots of things too much: too much alcohol, too much coffee, too much online gaming. But every once in a while, I quit for a week or two and have no withdrawal symptoms, so I conclude I am not addicted.
I conclude there is a difference between obsessive behavior and addiction.
NVDA shares are down over 50% and are trading at 14 times earnings. Their balance sheet is beautiful, though. No debt on the books!
http://finance.yahoo.com/q?s=nvda
Lenders make the rules. They are they only ones that matter. They only care about their own time.
I don't care what you do with the goods or how much you age in the time I age. If I loan you money, all I care about is that the payments are in my bank account regularly according to my time.
The Microchip PIC is an example of a "very low power RISC proc" but it doesn't even have an OS. With no OS, the instruction set matters.
A uni shouldn't let the kids have +ExecCGI at all on a shared system. You will absolutely get hacked if you do that, no matter what your directory structure is.
What does that help? First, an attacker who found a way to control a cgi script would only have permissions of the web server, so he wouldn't be able to WRITE new files anywhere without privilege escalation. If he did have privilege escalation, he could write files anywhere with equal ease.
Again, where is the security benefit of cgi-bin either way?
/cgi-bin/ doesn't jail anything. Please explain how finding a SQL injection in crappybank.com/cgi-bin/index.cgi has any less risk than finding a SQL injection in crappybank.com/index.cgi?
That's not a jail by any definition.
Here's something to cook up: Kill the /cgi-bi/ nonsense already! It was a bad idea from the start. If a file is in my web directory and it has execute permissions, just treat it as a CGI file. Forget that AddHandler business, too. If a file is executable and the directory has +ExecCGI turned on, treat it as CGI already!