VMs and Containers (e.g. Docker) are exactly as secure as the software you install inside of them.
Most developers who like containers like them because they don't have to use the OS versions of Apache or whatever and aren't stuck dealing with the sysadmin constantly breaking things with his security updates.
The containers these developers build tend to be woefully insecure.
Okay, great for ditching systemd but why did we need yet another packaging system? Was something wrong with dpkg or rpm? Maybe you wouldn't need so many packagers if you could leverage the scripts already written for rpm and deb derived systems?
The difference is pre-railroad and post-railroad. Pre-railroad cities usually grew from hamlets laid out based on topography and geography, often the nearby river or bay. Post-railroad cities had a plan by the time they grew beyond a single main drag, with roads and blocks laid out on a north/south east/west basis.
If you use all its features, C++ is an atrocity. If you treat it as C plus objects and stay away from operator overloading, stick with char arrays instead of strings, etc. then it's really just modernized C with all the benefits and pitfalls thereof.
There are now. Ten years ago you couldn't get a newly made keyboard with decent tactile feedback if your life depended on it. The Norton Omniclick keyboards from the 80's had long since died so if you wanted a decent click it was: find one of the old ridiculously reliable model M's.
RTFA. It reported that Amazon said the small business owner could eventually expect to make a profit of $300k per year after growing to 40 vans and 100 employees.
$300k/year on 100 employees is a razor thin margin for a small business. $3000 per employee per year? That's one mistake, one serious problem away from bankruptcy.
Wut? Carbon is carbon. Fresh carbon and fossilized carbon become the exact same carbon dioxide molecule when burned or allowed to decay. When buried instead (like in a landfill) carbon-containing materials re-enter the cycle that created fossilized carbon in the first place.
Metal and plastics are relatively easy to separate.
Paper = wood = carbon. We keep talking about carbon sequestration. How about burying it in a landfill and planting replacement trees to cycle yet more carbon dioxide in to oxygen?
And audiovisual work in this context would not tend to include the apparatus which displays the work. If they re-used the graphics and sounds then sure. It doesn't read like they did.
Get ready for another reversal: Unless created by a direct employee (someone who gets a W2 form from you at the end of the year) "works made for hire" must fall under one of 9 categories established under the law. If the work doesn't fit in to one of the nine, it doesn't matter what the contract says: the copyright vests in the company that made it not the company that paid.
Bethesda hopes Behaviour's work is a "contribution to a collective work" but generally that means a -small- contribution like one article for an encyclopedia.
Here's the lesson: don't write a contract which says you own the contractors work. The law may contradict you. Write a contract which says the contractor agrees to assign you all rights to their work. That's enforceable in court.
2. Inductive coupling like the charger for your electric toothbrush.
There are a frustrating number of thermostats which must be wired in to the furnace and have wifi but don't have ethernet. Why? Why would you make the product that way?
Are you sure it's because of the initial hissing sound? I would expect it to be due to the sudden air pressure change. Halon and comparable systems work by rapidly adding enough gas to an area that the partial pressure of oxygen drops below what's needed to sustain a fire.
There's an old TV ad about a Internet bubble startup that's only going to sell products to people who have a laser-focus on what they want to buy. The point of the ad was to remind folks that they can hold the item in their hands before having to pay money at a brick and mortar store.
There are lots of items where you can't be sure it's what you wanted before you actually have it in your hands. Clothes and parts that might not fit right. 80% confidence of compatibility. That sort of thing. Without generous return policies, it's not safe to buy them online. And Amazon really wants you to buy them online.
Any email program which respects html instructions to automatically load external content was badly broken from a security perspective even before you consider the errors the researchers here exposed.
Any email program which directly fixes the hack without barring external content from loading when the email opens remains badly insecure.
Symantec revoked our SSL cert last week. It didn't expire. They didn't ask. They just published a revocation and suddenly, unexpectedly, our web site could not be reached.
Slashdot Mirror
VMs and Containers (e.g. Docker) are exactly as secure as the software you install inside of them.
Most developers who like containers like them because they don't have to use the OS versions of Apache or whatever and aren't stuck dealing with the sysadmin constantly breaking things with his security updates.
The containers these developers build tend to be woefully insecure.
Okay, great for ditching systemd but why did we need yet another packaging system? Was something wrong with dpkg or rpm? Maybe you wouldn't need so many packagers if you could leverage the scripts already written for rpm and deb derived systems?
The difference is pre-railroad and post-railroad. Pre-railroad cities usually grew from hamlets laid out based on topography and geography, often the nearby river or bay. Post-railroad cities had a plan by the time they grew beyond a single main drag, with roads and blocks laid out on a north/south east/west basis.
If you use all its features, C++ is an atrocity. If you treat it as C plus objects and stay away from operator overloading, stick with char arrays instead of strings, etc. then it's really just modernized C with all the benefits and pitfalls thereof.
I'm using my model M with a macbook so the couple times a month I need to use the option key I reach forward.
In my defense, that was 30 years ago.
I remap command to alt on my mac. It's in the system preferences.
The model M has plastic key caps that fit over each key. You can take them off, move them around, whatever you want.
https://cdn.arstechnica.net/wp...
There are loads of great boards out there
There are now. Ten years ago you couldn't get a newly made keyboard with decent tactile feedback if your life depended on it. The Norton Omniclick keyboards from the 80's had long since died so if you wanted a decent click it was: find one of the old ridiculously reliable model M's.
Reasonable quality PS2->USB adapters work fine. Poor ones... work poorly.
The lack of a Windows key is a nuisance. Especially when using it with a Macbook.
Maintenance = buy a few extras (even now they're not terribly expensive) and when the current one finally gives up the ghost, get out a new one.
Ha! I suppose that's fair. I should have said: a sole source vendor is a single point of failure in any high availability system.
You can't get high availability with any single vendor. Including yourself.
RTFA. It reported that Amazon said the small business owner could eventually expect to make a profit of $300k per year after growing to 40 vans and 100 employees.
$300k/year on 100 employees is a razor thin margin for a small business. $3000 per employee per year? That's one mistake, one serious problem away from bankruptcy.
Wut? Carbon is carbon. Fresh carbon and fossilized carbon become the exact same carbon dioxide molecule when burned or allowed to decay. When buried instead (like in a landfill) carbon-containing materials re-enter the cycle that created fossilized carbon in the first place.
If you burn it, it releases carbon dioxide back in to the air.
The non-obvious solution: stop recycling paper.
Metal and plastics are relatively easy to separate.
Paper = wood = carbon. We keep talking about carbon sequestration. How about burying it in a landfill and planting replacement trees to cycle yet more carbon dioxide in to oxygen?
And audiovisual work in this context would not tend to include the apparatus which displays the work. If they re-used the graphics and sounds then sure. It doesn't read like they did.
worst case, I have to spin the knob
Worst case someone hacks your wifi from the street and cranks your thermostat to 90. IoT security is not great.
Get ready for another reversal: Unless created by a direct employee (someone who gets a W2 form from you at the end of the year) "works made for hire" must fall under one of 9 categories established under the law. If the work doesn't fit in to one of the nine, it doesn't matter what the contract says: the copyright vests in the company that made it not the company that paid.
https://www.copyright.gov/circ...
Bethesda hopes Behaviour's work is a "contribution to a collective work" but generally that means a -small- contribution like one article for an encyclopedia.
Here's the lesson: don't write a contract which says you own the contractors work. The law may contradict you. Write a contract which says the contractor agrees to assign you all rights to their work. That's enforceable in court.
Two easy ways to power a lock:
1. With a wire from the hinge side of the door.
2. Inductive coupling like the charger for your electric toothbrush.
There are a frustrating number of thermostats which must be wired in to the furnace and have wifi but don't have ethernet. Why? Why would you make the product that way?
Are you sure it's because of the initial hissing sound? I would expect it to be due to the sudden air pressure change. Halon and comparable systems work by rapidly adding enough gas to an area that the partial pressure of oxygen drops below what's needed to sustain a fire.
There's an old TV ad about a Internet bubble startup that's only going to sell products to people who have a laser-focus on what they want to buy. The point of the ad was to remind folks that they can hold the item in their hands before having to pay money at a brick and mortar store.
There are lots of items where you can't be sure it's what you wanted before you actually have it in your hands. Clothes and parts that might not fit right. 80% confidence of compatibility. That sort of thing. Without generous return policies, it's not safe to buy them online. And Amazon really wants you to buy them online.
Any email program which respects html instructions to automatically load external content was badly broken from a security perspective even before you consider the errors the researchers here exposed.
Any email program which directly fixes the hack without barring external content from loading when the email opens remains badly insecure.
Symantec revoked our SSL cert last week. It didn't expire. They didn't ask. They just published a revocation and suddenly, unexpectedly, our web site could not be reached.
They can burn.
Correct security is about depth of defense. If you -have- to patch immediately every time then you've already failed.
Take your time. Do it right. If you understand your security posture and have designed it well, patching once or twice a year may well be sufficient.