Could it thus be argued that the intention never was for the US to have a standing Army capable of invading other countries but instead a militia of the people that could be assembled if and when it was necessary (due to foreign countries trying to invade the US) ?
No the bug was found because some one was looking at the code. In fact it was a company developing a static code analyzer that used the available source of OpenSSL to test their analyzer that found it, interestingly enough also a Security Engineer from Google found it at roughly the same time. So yes it was found exactly because people where looking at the sources.
Had this been close source then none of the above would have found it.
Not really ad-hoc, in protocols such as this which is well defined any way, you know that there is a lenght. Playing tricks with that length to see what the server does is black hat 101. In my youth I used this to create cracks for copy protected games, if we have had access to the source code of these games it would still have been faster for us to attack the protocols, and I'm sure that black hats attacking systems such as these feels the same these days. Hard to explain the enormous exploits in the wild for closed sources otherwise don't you think?
Thas was becaue Codenomicon tried to develop a scanner cabable of catching errors such as this. Which is another side of the many eyeballs, i.e companies such as these uses the large amount of available source to develop and fine tune their scanners and we the community thus gets a free analysis of the sources.
Yes the public referendums are not mandatory for the politicians to obey in Sweden, that is not the same as "results are often discarded". If we look at the large referendums done since 1922 I can think of only one who was disregarded and that was to keep the left side traffic. In some eyes the nuclear referendum was also discarded but in reality it was followed, that we now 30 years later changed our minds a bit is not the same as discaring the result of the referendum.
You seriously think that black hats bother with reading millions of lines of code in the hope of finding an exploit when all they have to do is play with the data sent to services/applications and see if it misbehaves. Which is why exploits are equally found among closed and open softwares.
AFAIK Netflix kind of already does that by handing out those free Netflix proxy servers to ISPs so that they can serve Netflix to their customers without having to peer with Comgest.
How would that help. If you don't use Youtube then you won't get traffic from Youtube so whatever they do won't affect you. That whatever ISP you use don't sell a connection under 25MBps (if that really is the case) has nothing to do with net neutrality, even with the change that you propose you would still be forced to pay the for your 25MBps connection and with the same price.
AFAIK the problem that journal tries to solve is logging of meta data, i.e beeing able to log variables in a well defined manner and not only plain messages
tail of a file is nothing more than exporting the content of that file, it doesn't matter if the file was in binary or text, that you could tail or cat from it is what is important and that has not changed. If your older log couldn't been found then that is a problem with log rotation and has nothing to do with wither the log was binary or text in it's storage format.
And if I'm not mistaken your script can be set to start when/var/run/mysql.socket becomes ready instead of being started directly after/etc/init.d/mysql started and the mysql process decides to do a major table check so that the server is not accessible for 5 minutes which makes your daemon exit with an error since the database was not available at start.
Slashdot Mirror
If you called MS support you will think that you live in India.
Could it thus be argued that the intention never was for the US to have a standing Army capable of invading other countries but instead a militia of the people that could be assembled if and when it was necessary (due to foreign countries trying to invade the US) ?
No the bug was found because some one was looking at the code. In fact it was a company developing a static code analyzer that used the available source of OpenSSL to test their analyzer that found it, interestingly enough also a Security Engineer from Google found it at roughly the same time. So yes it was found exactly because people where looking at the sources.
Had this been close source then none of the above would have found it.
Not really ad-hoc, in protocols such as this which is well defined any way, you know that there is a lenght. Playing tricks with that length to see what the server does is black hat 101. In my youth I used this to create cracks for copy protected games, if we have had access to the source code of these games it would still have been faster for us to attack the protocols, and I'm sure that black hats attacking systems such as these feels the same these days. Hard to explain the enormous exploits in the wild for closed sources otherwise don't you think?
So you and your classmates drove through millions of lines of code during class?
Thas was becaue Codenomicon tried to develop a scanner cabable of catching errors such as this. Which is another side of the many eyeballs, i.e companies such as these uses the large amount of available source to develop and fine tune their scanners and we the community thus gets a free analysis of the sources.
Yes the public referendums are not mandatory for the politicians to obey in Sweden, that is not the same as "results are often discarded". If we look at the large referendums done since 1922 I can think of only one who was disregarded and that was to keep the left side traffic. In some eyes the nuclear referendum was also discarded but in reality it was followed, that we now 30 years later changed our minds a bit is not the same as discaring the result of the referendum.
He is talking about public referendums and not the elections.
Heartbleed is a server exploit
Well some one must have been looking since the bug was found?
You seriously think that black hats bother with reading millions of lines of code in the hope of finding an exploit when all they have to do is play with the data sent to services/applications and see if it misbehaves. Which is why exploits are equally found among closed and open softwares.
+1
Because in his view the ISPs should be paid for the bandwidth more than once (what a wonderful model...), sounds like a corporate troll to me.
s/Comgest/Cogent
AFAIK Netflix kind of already does that by handing out those free Netflix proxy servers to ISPs so that they can serve Netflix to their customers without having to peer with Comgest.
How would that help. If you don't use Youtube then you won't get traffic from Youtube so whatever they do won't affect you. That whatever ISP you use don't sell a connection under 25MBps (if that really is the case) has nothing to do with net neutrality, even with the change that you propose you would still be forced to pay the for your 25MBps connection and with the same price.
It does matter since that is how ISPs have set up the pricing model, that it's completely illogical is besides the point.
It might not be logical but that is how the ISPs have decided to handle peering.
AFAIK the problem that journal tries to solve is logging of meta data, i.e beeing able to log variables in a well defined manner and not only plain messages
tail of a file is nothing more than exporting the content of that file, it doesn't matter if the file was in binary or text, that you could tail or cat from it is what is important and that has not changed. If your older log couldn't been found then that is a problem with log rotation and has nothing to do with wither the log was binary or text in it's storage format.
And if I'm not mistaken your script can be set to start when /var/run/mysql.socket becomes ready instead of being started directly after /etc/init.d/mysql started and the mysql process decides to do a major table check so that the server is not accessible for 5 minutes which makes your daemon exit with an error since the database was not available at start.
Yes, a two or three line ini file for SystemD is soo much harder than a 5k SysV script ;)
Well good then that the ini files for SystemD is text and that you can export the textlogs from the logger.
Won't work, you can only build ip address tracking applications in Visual Basic
I don't think that vikings needed the fourth step.