I think the spyware has been a radioactive enough issue that any derivatives are going to make a point of cutting it out.
That said, I don't see the need. As much as I don't like what Ubuntu did with the shopping lens, I've long switched to Xubuntu anyway, which is more sanely managed. (The original reason was to get away from Unity, and their avoidance of subsequent Canonical brain damage cemented the deal.)
Significantly, when you use [KX]ubuntu, you still benefit from all the release engineering work of Ubuntu proper, including security updates---a point on which I'm a little more wary of derivatives like Mint.
I know it's not always easy, but most data input into web forms is quite straightforward. The application should not be checking whether the data is invalid - it should be checking that it's valid. That's a subtle distinction, and I'm probably going to fail to explain it!
You'd probably have an easier time explaining it as whitelisting versus blacklisting. A developer can't hope to ever enumerate all the bad things an app should reject, so s/he should instead enumerate the much smaller set of things it should accept. Same deal if you're using a regex or whatnot to sanitize input instead of matching against a list.
You're thinking about HIV, you're right, that takes months. The clap (ghonorhea) will show up the next day as will several others (actually, most STIs will show positive the next day). There's no cheap test that separately identifies Herpes Simplex 1 from Simplex 2, there is a cheap test that does not distinguish and will show positive if you have either.
The cheap herpes test works that quickly, too? My understanding is that HSV is harder to detect, not least because the virus isn't always being shed.
If the test is reliable, and quick to yield a positive, that would be pretty good---given that condoms don't necessarily protect against HSV, and we don't have a cure for it as yet...
What I'd like to know is, does this test have the problem of most STD tests where you have to wait ~6 months after infection to get a positive result, since it only detects STD-antibodies (and not the STD itself) and it takes about that long for them to build up sufficiently high?
Since you've got real stratum-1 NTP servers, you could skip the pool altogether and add them to the official NTP time server list.
AFAIU, the NTP pool is meant more for lower-stratum servers, like users on static-IP cable modems, so your machines wouldn't be doing as much good there.
PGP/GPG is overkill. Just drop messages that fail an SPF check. Spoofing is part of the problem here, and SPF was tailor-made to address spoofing.
If you do use PGP/GPG, you don't need an extra header for the signature; it's usually added as a small attachment, and better mail clients already pick up on that for verification.
"Sir, there are some gentlemen here who say they are from an organization called the BSA. They want to see the license certificates for those Windows CDs we've been handing out..."
it is my fervent wish that there were no such camps and that the deaths of millions were through ignorance, starvation and disease rather than through evil.
You cannot assert that "no human being/society would ever do evil thing X." It may be unthinkable for you, and unimaginable for all but the most deranged of your fellow countrymen. But if you look throughout the world, and throughout history, you will find that every iron-clad boundary that you believe to exist has not only been crossed before, but been crossed many, many times.
It seems to me that the most convincing evidence you'll find that the Holocaust is real is the present-day horror taking place in Sudan. If you were to absorb the totality of that tragedy, the Third Reich would become less a difference of kind, and more of degree.
An embryo is human (Homo sapiens) and living (not dead tissue), in the technical sense. That has nothing to do with whether it is "a person who { is, should be } granted societal protection from being killed." After all, a brainless vegetable is also human and living, and most folks don't see a problem with pulling the plug on one. (The Terry Schiavo case hinged on whether she really was "brainless," in the public consciousness.)
GPL'ed code is protected by copyright, but makes an exception to standard copyright protections by allowing distribution if you comply with certain conditions.
If the GPL is invalidated, then the exception is invalidated, and you're left with... standard copyright protections. Which includes a prohibition on unauthorized distribution.
(Reverting to public domain would mean that the court is voiding a legitimate copyright, which is majorly bad juju.)
Which makes you wonder exactly what Skype is trying to accomplish with this appeal....
I have to admit, in reading the summary, Tomas Rokicki's name seemed very familiar....
And of course! He's the author of dvips! So we have him to thank not only for this cutting-edge breakthrough in mathematical solutions to Rubik's Cube, but also for turning our not-overly-portable DVI files into beautiful, beautiful Postscript.
You know what I find humorous; how everyone tries to place their preconceived notions on who GOD is... do you really think that GOD would fit the form of our notions of who he is? Do you really think that if GOD exists... that this GOD would fit our preformed views?
IMHO the better education for the gifted isn't worth that type of society.
I would certainly agree with that, but come on---your experience is at the other extreme end of the spectrum, and having different proficiency levels doesn't necessarily imply that the whole system will go to that extreme. Heck, you already have many cases (in the U.S.) of parents complaining that too much homework is being assigned. People are pretty well on guard against childhoods being lost.
There's something to be said for allowing bright students to move ahead faster, while keeping workloads reasonable for everyone. Getting U.S. school systems to that point may not be easy, but I think that kind of balance would serve everyone better than the current ("egalitarian") approach.
Same idea in KDE, and I'm sure GNOME has a similar mechanism. Whether these are "OS-level" or "application-level" is a subtler question, but this has more to do with the situation that Linux desktop systems don't necessarily have a centrally-planned infrastructure in the manner of Windows or MacOS X, rather than that they haven't addressed this problem at all.
To that, I would add that Epson is a particularly good choice. They've cooperated with the SANE project in providing hardware specs, sometimes even for hardware not yet released. They even make available a binary-only Linux driver and scanning utility through their Japanese division, though of course the open-source SANE support is preferable.
I have a Perfection Photo 2400, from a couple years back. It works flawlessly with xsane. (Do double check against the supported-hardware list, however, because some Epson models actually use third-party components for which no specs are available.)
I will speak from mine: I have no doubt. Nerds are actually very attractive to certain women. They like the reliability and equality. Many have been seriously burned being arm candy for jocks & preps.
I've asked myself that very same question recently. Some answers:
1. Ubuntu has proper AMD64 support, if you've got such a chip. Debian is coming along, and amd64 is gaining full "supported architecture" status, but when I tried installing etch around late February, a lot of stuff was broken. (I couldn't install X because some of the dependencies had "no installation candidate," etc.)
2. Newer, shinier stuff in general. (Kinda goes without saying, but still...)
3. The version of apt in sarge doesn't check signatures on Release files, which leaves you open to trojaned packages. You can install a newer apt from backports.org... but Ubuntu has the archive keys right on the CD.
For the most part, working with either distro is the same. The real difference is at the policy level---how the software repositories are set up, how often releases are made, etc.
Slashdot Mirror
I think the spyware has been a radioactive enough issue that any derivatives are going to make a point of cutting it out.
That said, I don't see the need. As much as I don't like what Ubuntu did with the shopping lens, I've long switched to Xubuntu anyway, which is more sanely managed. (The original reason was to get away from Unity, and their avoidance of subsequent Canonical brain damage cemented the deal.)
Significantly, when you use [KX]ubuntu, you still benefit from all the release engineering work of Ubuntu proper, including security updates---a point on which I'm a little more wary of derivatives like Mint.
I know it's not always easy, but most data input into web forms is quite straightforward. The application should not be checking whether the data is invalid - it should be checking that it's valid. That's a subtle distinction, and I'm probably going to fail to explain it!
You'd probably have an easier time explaining it as whitelisting versus blacklisting. A developer can't hope to ever enumerate all the bad things an app should reject, so s/he should instead enumerate the much smaller set of things it should accept. Same deal if you're using a regex or whatnot to sanitize input instead of matching against a list.
Assuming no one can hack SSL
The bad guys don't have to hack SSL. They only have to hack a certificate authority.
(IIRC, this is how the Chinese government broke into the Gmail accounts of various dissidents/activists.)
Fixed that for you.
You're thinking about HIV, you're right, that takes months. The clap (ghonorhea) will show up the next day as will several others (actually, most STIs will show positive the next day). There's no cheap test that separately identifies Herpes Simplex 1 from Simplex 2, there is a cheap test that does not distinguish and will show positive if you have either.
The cheap herpes test works that quickly, too? My understanding is that HSV is harder to detect, not least because the virus isn't always being shed.
If the test is reliable, and quick to yield a positive, that would be pretty good---given that condoms don't necessarily protect against HSV, and we don't have a cure for it as yet...
What I'd like to know is, does this test have the problem of most STD tests where you have to wait ~6 months after infection to get a positive result, since it only detects STD-antibodies (and not the STD itself) and it takes about that long for them to build up sufficiently high?
Is this what you're looking for?
Since you've got real stratum-1 NTP servers, you could skip the pool altogether and add them to the official NTP time server list.
AFAIU, the NTP pool is meant more for lower-stratum servers, like users on static-IP cable modems, so your machines wouldn't be doing as much good there.
PGP/GPG is overkill. Just drop messages that fail an SPF check. Spoofing is part of the problem here, and SPF was tailor-made to address spoofing.
If you do use PGP/GPG, you don't need an extra header for the signature; it's usually added as a small attachment, and better mail clients already pick up on that for verification.
What about a Windows XP Live CD?
"Sir, there are some gentlemen here who say they are from an organization called the BSA. They want to see the license certificates for those Windows CDs we've been handing out..."
Yeah, I thought so too---quite a slip for the Onion's usual pitch-perfect satire.
They should have gone with something like, "One day, I found her staring at herself in the mirror, wearing her older brother's football helmet..."
it is my fervent wish that there were no such camps and that the deaths of millions were through ignorance, starvation and disease rather than through evil.
You cannot assert that "no human being/society would ever do evil thing X." It may be unthinkable for you, and unimaginable for all but the most deranged of your fellow countrymen. But if you look throughout the world, and throughout history, you will find that every iron-clad boundary that you believe to exist has not only been crossed before, but been crossed many, many times.
It seems to me that the most convincing evidence you'll find that the Holocaust is real is the present-day horror taking place in Sudan. If you were to absorb the totality of that tragedy, the Third Reich would become less a difference of kind, and more of degree.
What makes you think homosexuality is immutable?
Uh... gay people getting arrested, beaten, shot, hanged, beheaded in other countries for what they are?
Things would be so much easier for them if they would just stop being gay....
An embryo is human (Homo sapiens) and living (not dead tissue), in the technical sense. That has nothing to do with whether it is "a person who { is, should be } granted societal protection from being killed." After all, a brainless vegetable is also human and living, and most folks don't see a problem with pulling the plug on one. (The Terry Schiavo case hinged on whether she really was "brainless," in the public consciousness.)
GPL'ed code is protected by copyright, but makes an exception to standard copyright protections by allowing distribution if you comply with certain conditions.
If the GPL is invalidated, then the exception is invalidated, and you're left with... standard copyright protections. Which includes a prohibition on unauthorized distribution.
(Reverting to public domain would mean that the court is voiding a legitimate copyright, which is majorly bad juju.)
Which makes you wonder exactly what Skype is trying to accomplish with this appeal....
I have to admit, in reading the summary, Tomas Rokicki's name seemed very familiar....
And of course! He's the author of dvips! So we have him to thank not only for this cutting-edge breakthrough in mathematical solutions to Rubik's Cube, but also for turning our not-overly-portable DVI files into beautiful, beautiful Postscript.
You know what I find humorous; how everyone tries to place their preconceived notions on who GOD is... do you really think that GOD would fit the form of our notions of who he is? Do you really think that if GOD exists... that this GOD would fit our preformed views?
:-)
The way I like to put it:
Man created God in his own image
Goodness, I'm glad you got out!
IMHO the better education for the gifted isn't worth that type of society.
I would certainly agree with that, but come on---your experience is at the other extreme end of the spectrum, and having different proficiency levels doesn't necessarily imply that the whole system will go to that extreme. Heck, you already have many cases (in the U.S.) of parents complaining that too much homework is being assigned. People are pretty well on guard against childhoods being lost.
There's something to be said for allowing bright students to move ahead faster, while keeping workloads reasonable for everyone. Getting U.S. school systems to that point may not be easy, but I think that kind of balance would serve everyone better than the current ("egalitarian") approach.
Same idea in KDE, and I'm sure GNOME has a similar mechanism. Whether these are "OS-level" or "application-level" is a subtler question, but this has more to do with the situation that Linux desktop systems don't necessarily have a centrally-planned infrastructure in the manner of Windows or MacOS X, rather than that they haven't addressed this problem at all.
To that, I would add that Epson is a particularly good choice. They've cooperated with the SANE project in providing hardware specs, sometimes even for hardware not yet released. They even make available a binary-only Linux driver and scanning utility through their Japanese division, though of course the open-source SANE support is preferable.
I have a Perfection Photo 2400, from a couple years back. It works flawlessly with xsane. (Do double check against the supported-hardware list, however, because some Epson models actually use third-party components for which no specs are available.)
I will speak from mine: I have no doubt. Nerds are actually very attractive to certain women. They like the reliability and equality. Many have been seriously burned being arm candy for jocks & preps.
You might be on to something there...
Don't use self-signed certificates. Create a private CA, generate a real root certificate, and then distribute that to all the clients that need it.
That way, you don't get a warning dialog, and you get real protection from MitM attacks.
Also: If you find the openssl(1) tool annoying, try certtool(1) from GnuTLS. I've found it a lot easier to work with.
I've asked myself that very same question recently. Some answers:
1. Ubuntu has proper AMD64 support, if you've got such a chip. Debian is coming along, and amd64 is gaining full "supported architecture" status, but when I tried installing etch around late February, a lot of stuff was broken. (I couldn't install X because some of the dependencies had "no installation candidate," etc.)
2. Newer, shinier stuff in general. (Kinda goes without saying, but still...)
3. The version of apt in sarge doesn't check signatures on Release files, which leaves you open to trojaned packages. You can install a newer apt from backports.org... but Ubuntu has the archive keys right on the CD.
For the most part, working with either distro is the same. The real difference is at the policy level---how the software repositories are set up, how often releases are made, etc.
The downside is that their "free" WiFi will be paid for by us lucky US taxpayers.
Yeah, just like their "free" roads and "free" levees. Yay for private ownership of all public infrastructure!