It's not that hard. Given your example has a hyphen (making it a "bit" harder), but lets use the following example. sudoers has "test*" listed. An new employee has a foreign name, lets call him "Timothy Estovan". The clerk given the job of creating new users (using a locked down script that only lets him pick the name) creates the user "testovan" BOOM security breach. And that's only how it can happen by ACCIDENT!
God I wish! Open format, group/private chat, ability to host your own server, PROPER logging, ability to slam the BAN HAMMER, no javascript. Most people don't realize just how perfect the protocol really is. I just fear everyone would flock to a single server owned by some 20-year-old that stole the idea from their grandfather full of twilight MUDs:(
You've obviously never had to boot a windows computer with 5 anti-viruses, an updater for EVERY camera/printer/webcam/mp3player/flashlight the owner has ever connected, 2 connection managers from their ISP, 4 "buddies" offering to help you write a letter, a waterfall screensaver (with christmas theme) and my personal favorite: SMILEY apps all running when the user boots up. Oh yeah, don't forget that they decided to dump the photos from the last 8 years worth of vacations onto the desktop. I *still* don't understand why that slows down login...
Long story short, it doesn't matter WHAT platform they use, people will figure out how to cripple it.
Because you have 2 options:
A) Perform the majority of the processing on a server in another language. This causes lock-in, prevents "off-line" use and requires access to external hardware.
B) Perform ALL the processing in the browser. This is SLOW compared to native apps and seriously limits hardware access. Ever tried to use a scanner in html5?
On a well built system, why would the (non-sysadmin) user need unrestricted root access for anything?
FTFY. sudo allows you to specify WHAT each user is allowed to do (and even as which other user). A common use is allowing your webmaster to reload or restart apache. With sudo, you can authorize "sudo/etc/rc.d/httpd reload" but deny them from installing software, modifying iptables, etc.
There are also some VERY creative things you can do such as setting up an internal repository (with limited applications/libraries) and allow desktop users to install extra software from it, but not add further repositories. This would allow your desktop users to pick their web browser, text editor (vim, emacs, geany, eclipse, etc) without allowing them to install a web server or something that needs proper securing.
If you create a group (testgroup) and add that to the sodoers file, all you need to do is add your new users to that group. It requires no sudoers editing what-so-ever.
It sounds stupid, but judging by the past actions of almost every financial institution in the world, any encryption they use will not even be worth it.
Gas prices have already gone up to 3 times what they were 5-10 years ago and you think a "moderate" increase in taxing is going to reduce consumption by 25%???
Would you really want to use a nuclear plant built in a country known for exporting children's toys with lead paint and dog food that killed pets? Nuclear is NOT something you want done by the lowest bidder (especially a one out of China).
Disclaimer: I have nothing against the Chinese people, just the quality of their exports.
Except that in the majority of cases (ignoring screwed up states where they shorten the yellow), as you approach the intersection there are 3 zones.
1) Far: Will not make it through the red, must stop
2) Middle: Could make it through the red (maintaining speed) or stop in time, you can CHOSE!
3) Close: You are too close to stop in time, you MUST go through.
Note: This is the normal setup when DOING the speed limit, if you are going too slow (takes a couple seconds to get THROUGH the intersection) or too fast (stopping time exceeds yellow light), then you are screwed.
Taking Over:
A LOT of iWhatever apps (and Android apps for that matter) are simply portals to html5+javascript apps. If facebook (or any other game site not still obsessed with flash) decides to start letting people play free (or cheap) games directly through safari, you can bet your butt it will at lest create a huge dent in the apple store. I'm still convinced that one of the main reasons Steve Jobs kept flash off the iPod and iPhone was so that people would pay for small mini-games through the app store instead of just connecting to addictinggames.com for free.
Security:
Other than possible browse exploits, I don't see this affecting the security of the device at all.
Please, for the love of god, NEVER EVER create a pdf with a bitmap of text in it. That is the absolute worst representation of information I have *ever* witnessed. It's even worse than a photo copy/pasted into word!
I've had some issues where pdf forms created in Adobe, then filled out in something else (evince, foxit, etc) could NOT be opened in Adobe again. The same document could be opened perfectly in ANY other viewer and if filled out with Adobe worked in Adobe.
Apparently there is some license thing where if you use the free Adobe creator, it will check which program last opened it and generate a bogus error message if it has been edited with anything other than Adobe. SERIOUS PITA! However that is more about Adobe reader than the format itself...
Slashdot Mirror
By that logic, so is your shirt.
He may not need to. There are some web languages (python used to, but wsgi has fixed that) where modifying the site itself needs a simple "reload".
It's not that hard. Given your example has a hyphen (making it a "bit" harder), but lets use the following example. sudoers has "test*" listed. An new employee has a foreign name, lets call him "Timothy Estovan". The clerk given the job of creating new users (using a locked down script that only lets him pick the name) creates the user "testovan" BOOM security breach. And that's only how it can happen by ACCIDENT!
I never said the others weren't, I was just pointing out that your "not funded by a corporation" statement was false.
God I wish! Open format, group/private chat, ability to host your own server, PROPER logging, ability to slam the BAN HAMMER, no javascript. Most people don't realize just how perfect the protocol really is. I just fear everyone would flock to a single server owned by some 20-year-old that stole the idea from their grandfather full of twilight MUDs :(
Yes, but the newest version is so confusing and badly designed that only a 15-year-old can decipher it!
You've obviously never had to boot a windows computer with 5 anti-viruses, an updater for EVERY camera/printer/webcam/mp3player/flashlight the owner has ever connected, 2 connection managers from their ISP, 4 "buddies" offering to help you write a letter, a waterfall screensaver (with christmas theme) and my personal favorite: SMILEY apps all running when the user boots up. Oh yeah, don't forget that they decided to dump the photos from the last 8 years worth of vacations onto the desktop. I *still* don't understand why that slows down login...
Long story short, it doesn't matter WHAT platform they use, people will figure out how to cripple it.
Because you have 2 options:
A) Perform the majority of the processing on a server in another language. This causes lock-in, prevents "off-line" use and requires access to external hardware.
B) Perform ALL the processing in the browser. This is SLOW compared to native apps and seriously limits hardware access. Ever tried to use a scanner in html5?
On a well built system, why would the (non-sysadmin) user need unrestricted root access for anything?
FTFY. sudo allows you to specify WHAT each user is allowed to do (and even as which other user). A common use is allowing your webmaster to reload or restart apache. With sudo, you can authorize "sudo /etc/rc.d/httpd reload" but deny them from installing software, modifying iptables, etc.
There are also some VERY creative things you can do such as setting up an internal repository (with limited applications/libraries) and allow desktop users to install extra software from it, but not add further repositories. This would allow your desktop users to pick their web browser, text editor (vim, emacs, geany, eclipse, etc) without allowing them to install a web server or something that needs proper securing.
If you create a group (testgroup) and add that to the sodoers file, all you need to do is add your new users to that group. It requires no sudoers editing what-so-ever.
Mozilla IS funded. You should see how much money they get from Google alone!
It sounds stupid, but judging by the past actions of almost every financial institution in the world, any encryption they use will not even be worth it.
Unless it's counterfeit.
After seeing your username I'm not sure if that was a joke or if you are secretly working for a windturbine company...
Gas prices have already gone up to 3 times what they were 5-10 years ago and you think a "moderate" increase in taxing is going to reduce consumption by 25%???
Would you really want to use a nuclear plant built in a country known for exporting children's toys with lead paint and dog food that killed pets? Nuclear is NOT something you want done by the lowest bidder (especially a one out of China).
Disclaimer: I have nothing against the Chinese people, just the quality of their exports.
I've been told rock salt works quite well also. And hurts like a #^$3& when you try to wash it out :P
Except that in the majority of cases (ignoring screwed up states where they shorten the yellow), as you approach the intersection there are 3 zones.
1) Far: Will not make it through the red, must stop
2) Middle: Could make it through the red (maintaining speed) or stop in time, you can CHOSE!
3) Close: You are too close to stop in time, you MUST go through.
Note: This is the normal setup when DOING the speed limit, if you are going too slow (takes a couple seconds to get THROUGH the intersection) or too fast (stopping time exceeds yellow light), then you are screwed.
My guess is the new ones won't use flash, and thus be a direct competitor to all the $0.99 minigames apple is making a KILLING on (angrybirds, etc).
Taking Over:
A LOT of iWhatever apps (and Android apps for that matter) are simply portals to html5+javascript apps. If facebook (or any other game site not still obsessed with flash) decides to start letting people play free (or cheap) games directly through safari, you can bet your butt it will at lest create a huge dent in the apple store. I'm still convinced that one of the main reasons Steve Jobs kept flash off the iPod and iPhone was so that people would pay for small mini-games through the app store instead of just connecting to addictinggames.com for free.
Security:
Other than possible browse exploits, I don't see this affecting the security of the device at all.
Neither would I. They could potentially become WAY to powerful!
Because most programmers need to be database designers as well.
Please, for the love of god, NEVER EVER create a pdf with a bitmap of text in it. That is the absolute worst representation of information I have *ever* witnessed. It's even worse than a photo copy/pasted into word!
I've had some issues where pdf forms created in Adobe, then filled out in something else (evince, foxit, etc) could NOT be opened in Adobe again. The same document could be opened perfectly in ANY other viewer and if filled out with Adobe worked in Adobe.
Apparently there is some license thing where if you use the free Adobe creator, it will check which program last opened it and generate a bogus error message if it has been edited with anything other than Adobe. SERIOUS PITA! However that is more about Adobe reader than the format itself...
Interesting. At the school I went to it went more like this:
CIT - mostly website stuff & some UI stuff
IT - Networking (network admin)
CST - Broken up into different "options" including Client-Server, Database, Technical Writing (mostly docs), IS (websites), DataCommunications (unix, security & low level serial, IPC, etc i/o)