Or put a script on a share and execute it as part of login policy.
If you are running 4,000 pc's w/o a domain, quit.
Re:If if changes the Unix/Linux security model, fi
on
Analyzing Palladium
·
· Score: 2
"and neither has Windows [been designed as a secure OS] which is why it is the most hack OS of all time."
This is simply untrue -- and password cracking is out of scope for this argument.
Do not confuse bugs in IIS/IE with the core Windows components. Windows NT 4.0 and 2000 can be configured to be just as secure as Trusted Solaris and Trusted AIX.
One of the primary goals when Microsoft developed Windows NT was to allow the stock Windows OS to be secured to the standards required by the DoD and Dep't of Energy for secure computing platforms. To do this, MS borrowed heavily from the DEC Vax model.
If you properly setup groups and so forth in Windows 2000, no user other than the domain user you specify can have a SID to allow access or modification of a file. I have seen this implemented in a state agency which handles medicaid records -- it works.
In a non-Trusted Unix operating environment, there is absolutely no guarantee of data security or integrity for the data on the computer. Anyone with access to the root user or root group can trivially read, write or delete any file on the system. If you can obtain physical access to the machine, pulling the plug and booting with a CD allows you unfettered access to everything on the machine.
Trusted Solaris and AIX implement ACLs which allow strict role-based levels of privlege that are superior to NT or VMS, but few organizations outside of the Federal government use Trusted OS's.
Re:If if changes the Unix/Linux security model, fi
on
Analyzing Palladium
·
· Score: 2
In a standalone environment, there is a super-user for each machine.
In a Domain, you can assign user privledges to whatever level of detail you require.
Re:If if changes the Unix/Linux security model, fi
on
Analyzing Palladium
·
· Score: 2
That is simply wrong.
In Windows you want to read a file whose access is denied to only a limited group of people, even having administrative access doesn't allow that. You must take ownership of the file, and generally admins are not given that privledge.
In the non-trusted Unix world, root can do anything anytime. It has alot to to with network security because any sysadmin or anyone with access to a sysadmin has the ability to usurup the security model and do whatever they wish.
If if changes the Unix/Linux security model, fine
on
Analyzing Palladium
·
· Score: 2
The whole concept of having a "root" super-user who can so anything and everything erases whatever security models we erect.
If this Palladium project encourages general-purpose Unix to move towards a more trusted model with ACLs and other features, then it is a good thing for all of us.
Yet another
crippling bombshell hit the beleaguered Linux community when recently
MSNBC confirmed that Linux accounts for less than a fraction of 27
percent of all servers. Coming on the heels of the latest Netcraft
survey which plainly states that Linux has lost more market share,
this news serves to reinforce what we've known all along. Linux
is collapsing in complete disarray, as further exemplified by
failing dead last in the recent Sys Admin
comprehensive networking test.
You don't need to be a Kreskin
to predict Linux's future. The hand writing is on the wall: Linux
faces a bleak future. In fact there won't be any future at all for
Linux because Linux is dying. Things are looking very bad for
Linux. As many of us are already aware, Linux continues to lose market
share. Red ink flows like a river of blood. Red Hat Linux is the most
endangered of them all, having lost $4.8 million last quarter. The constant and unpleasant conflict between long time Linux advocates Linus Tordvalds and Richard Stallman only serve to underscore the point more clearly. There can no longer be any question doubt: Red Hat Linuxis continuing its slow downward spiral into darkness.
Let's keep to the facts and look at the numbers.
Debian leader
Theo states that there are 7000 users of Debian. How many users
of Slackware are there? Let's see. The number of Debian versus Slackware
posts on Usenet is roughly in ratio of 5 to 1. Therefore there are
about 7000/5 = 1400 Slackware users. BSD/OS posts on Usenet are about
half of the volume of Slackware posts. Therefore there are about 700
users of BSD/OS. A recent article put Red Hat at about 80 percent
of the Linux market. Therefore there are (7000+1400+700)*4 = 36400
Red Hat users. This is consistent with the number of Red Hat Usenet
posts.
Due to the troubles of SCO, abysmal sales and
so on, OpenServer went out of business and was taken over by
Caldera who sell another troubled OS. Now Caldera is also dead,
its corpse turned over to yet another charnel house.
All major
surveys show that Linux has steadily declined in market share. Linux is
very sick and its long term survival prospects are very dim. If Linux
is to survive at all it will be among OS hobbyist dabblers. Linux
continues to decay. Nothing short of a miracle could save it at
this point in time. For all practical purposes, Linux is dead.
It's probaly the same place using your card. Make sure to file a complaint with your local police department and stop shopping at porn sites or shady vendors.
For online purchases, use one-time cc numbers -- American Express and most Mastercard/Visa banks allow you to do this.
You may have difficulty finding a mirror willing to face possible heat from whatever vendors produced the software.
I've noticed that alot of free-to-download software comes with EULA restrictions prohibiting you from redistributing them. I'm not sure about old browsers, but I would hardly be suprised if you are probhibited from disributing them, even though they are abandonware.
The Colorado wasn't always a little stream. Since huge numbers of people started moving to Arizona and Southern California, and others started growing crops in the desert, the Colorado has been tapped for irrigation.
Do you expect websites and companies to adhere to privacy policies or be careful with your personal data?
Until 'Trusted' OSs are feasible for general business use, I cannot ensure that sysadmins, developers, contractors or other personnel aren't stealing personal information and account information.
It depends on the size of the company and the reporting requirements.
Some brokerages record all conversations between brokers and clients and retain them for seven years. Other places like insurance companies keep logs of when calls are made.
It is very expensive to do, but less expensive than multi-million dollar lawsuits.
IM has been recognized as written communication by the courts. Watch what you say on IM, especially if you don't trust the person whom you are dealing with.
Do you want two HMO employees discussing your medical records over Yahoo! IM? I didn't think so.
Many companies are moving into solutions like jabber, which allow you to own the actual server, provide SSL, log the traffic and provide logging & auditing to ensure that information is being shared properly.
If you did that in the organization that I worked for, we'd notice the high traffic on port 443 and call security. If you couldn't justify what was happening, you'd most likely be suspended and possibly terminated by the end of the business day.
The problem is many businesses, such as Healthcare, Insurance and Financial Services have mandatory federal data retention and auditing guidelines that they must meet.
If communication between employees about a client is made via IM, not only is it insecure, but it is not logged or otherwise recorded anywhere. Without a paper trail, the company cannot defend itself against lawsuits or regulators.
If Ford sold a vehicle that didn't have working locks, insurance companies would not insure them and the attorneys general of many states would sue them to have the defects fixed or vehicles replaced.
If you have a system which is vulnerable to computer "viruses" and is only vulnerable because your poorly-designed application provides a backdoor to foreign software -- then you are liable for the bug.
Xerox found SourceForge "Enterprise" Edition to be a complete joke and waste of money.
I'm not suprised. I would have difficulty convincing my managment to spend money on a product that uses stupid star wars and lord of the rings jokes in a pathetic attempt to sell itself.
After spending months and years working for free to create a windows environment in Linux... some scumbags are using your donated time and energy to hoodwink ignorant customers into buying cheap pcs.
I think that you're going to find that having an open posting area for general news is going to result in alot of rumors and libelous rants being posted by angry and/or disturbed people.
When I was looking at buying property in a town in Northern New York, I ran across a newspaper (now defunct) that offered uncensored forums for users. It was basically a Slashdot "BSD" section, with users accusing the police chief of being a member of a satanic cult, claiming the mayor was molesting 6th graders and similar stuff.
The Albany Times-Union ( www.timesunion.com ) offers discussion forums on a few selected issues on a regular basis. They are heavily moderated and only discuss national or very big local stories.
Is it really necessary to allow your hobby or profession take over your entire life?
Go look at some art. Take a hike. Learn how to fix your car.
You are only on this earth for a finite period of time. Do something less lame with your life. There is no reason for anyone to have that much network connectivity or that many computers in the house period.
So now Perl regexs are going to be completely different from every other language and more complex than ever... wonderful.
I certainly hope that someone is going to be maintaining Perl 5. I certainly cannot see the Perl community moveing en masse to Perl 6, or whatever they decide to call it.
Slashdot Mirror
Or put a script on a share and execute it as part of login policy.
If you are running 4,000 pc's w/o a domain, quit.
"and neither has Windows [been designed as a secure OS] which is why it is the most hack OS of all time."
This is simply untrue -- and password cracking is out of scope for this argument.
Do not confuse bugs in IIS/IE with the core Windows components. Windows NT 4.0 and 2000 can be configured to be just as secure as Trusted Solaris and Trusted AIX.
One of the primary goals when Microsoft developed Windows NT was to allow the stock Windows OS to be secured to the standards required by the DoD and Dep't of Energy for secure computing platforms. To do this, MS borrowed heavily from the DEC Vax model.
If you properly setup groups and so forth in Windows 2000, no user other than the domain user you specify can have a SID to allow access or modification of a file. I have seen this implemented in a state agency which handles medicaid records -- it works.
In a non-Trusted Unix operating environment, there is absolutely no guarantee of data security or integrity for the data on the computer. Anyone with access to the root user or root group can trivially read, write or delete any file on the system. If you can obtain physical access to the machine, pulling the plug and booting with a CD allows you unfettered access to everything on the machine.
Trusted Solaris and AIX implement ACLs which allow strict role-based levels of privlege that are superior to NT or VMS, but few organizations outside of the Federal government use Trusted OS's.
In a standalone environment, there is a super-user for each machine.
In a Domain, you can assign user privledges to whatever level of detail you require.
That is simply wrong.
In Windows you want to read a file whose access is denied to only a limited group of people, even having administrative access doesn't allow that. You must take ownership of the file, and generally admins are not given that privledge.
In the non-trusted Unix world, root can do anything anytime. It has alot to to with network security because any sysadmin or anyone with access to a sysadmin has the ability to usurup the security model and do whatever they wish.
The whole concept of having a "root" super-user who can so anything and everything erases whatever security models we erect.
If this Palladium project encourages general-purpose Unix to move towards a more trusted model with ACLs and other features, then it is a good thing for all of us.
Yet another crippling bombshell hit the beleaguered Linux community when recently MSNBC confirmed that Linux accounts for less than a fraction of 27 percent of all servers. Coming on the heels of the latest Netcraft survey which plainly states that Linux has lost more market share, this news serves to reinforce what we've known all along. Linux is collapsing in complete disarray, as further exemplified by failing dead last in the recent Sys Admin comprehensive networking test.
You don't need to be a Kreskin to predict Linux's future. The hand writing is on the wall: Linux faces a bleak future. In fact there won't be any future at all for Linux because Linux is dying. Things are looking very bad for Linux. As many of us are already aware, Linux continues to lose market share. Red ink flows like a river of blood. Red Hat Linux is the most endangered of them all, having lost $4.8 million last quarter. The constant and unpleasant conflict between long time Linux advocates Linus Tordvalds and Richard Stallman only serve to underscore the point more clearly. There can no longer be any question doubt: Red Hat Linuxis continuing its slow downward spiral into darkness.
Let's keep to the facts and look at the numbers.
Debian leader Theo states that there are 7000 users of Debian. How many users of Slackware are there? Let's see. The number of Debian versus Slackware posts on Usenet is roughly in ratio of 5 to 1. Therefore there are about 7000/5 = 1400 Slackware users. BSD/OS posts on Usenet are about half of the volume of Slackware posts. Therefore there are about 700 users of BSD/OS. A recent article put Red Hat at about 80 percent of the Linux market. Therefore there are (7000+1400+700)*4 = 36400 Red Hat users. This is consistent with the number of Red Hat Usenet posts.
Due to the troubles of SCO, abysmal sales and so on, OpenServer went out of business and was taken over by Caldera who sell another troubled OS. Now Caldera is also dead, its corpse turned over to yet another charnel house.
All major surveys show that Linux has steadily declined in market share. Linux is very sick and its long term survival prospects are very dim. If Linux is to survive at all it will be among OS hobbyist dabblers. Linux continues to decay. Nothing short of a miracle could save it at this point in time. For all practical purposes, Linux is dead.
Fact: Linux is dead
It's probaly the same place using your card. Make sure to file a complaint with your local police department and stop shopping at porn sites or shady vendors.
For online purchases, use one-time cc numbers -- American Express and most Mastercard/Visa banks allow you to do this.
You may have difficulty finding a mirror willing to face possible heat from whatever vendors produced the software.
I've noticed that alot of free-to-download software comes with EULA restrictions prohibiting you from redistributing them. I'm not sure about old browsers, but I would hardly be suprised if you are probhibited from disributing them, even though they are abandonware.
Uhhh...
When the canyon was formed, the river was a raging, fast river. Plus during the ice age, melting glaciers produced ever more water.
All irrigation is not south of the canyon. The Colorado is dammed and tapped upstream as well.
The Colorado wasn't always a little stream. Since huge numbers of people started moving to Arizona and Southern California, and others started growing crops in the desert, the Colorado has been tapped for irrigation.
Do you expect websites and companies to adhere to privacy policies or be careful with your personal data?
Until 'Trusted' OSs are feasible for general business use, I cannot ensure that sysadmins, developers, contractors or other personnel aren't stealing personal information and account information.
It depends on the size of the company and the reporting requirements.
Some brokerages record all conversations between brokers and clients and retain them for seven years. Other places like insurance companies keep logs of when calls are made.
It is very expensive to do, but less expensive than multi-million dollar lawsuits.
IM has been recognized as written communication by the courts. Watch what you say on IM, especially if you don't trust the person whom you are dealing with.
It's just not a good idea.
Do you want two HMO employees discussing your medical records over Yahoo! IM? I didn't think so.
Many companies are moving into solutions like jabber, which allow you to own the actual server, provide SSL, log the traffic and provide logging & auditing to ensure that information is being shared properly.
If you did that in the organization that I worked for, we'd notice the high traffic on port 443 and call security. If you couldn't justify what was happening, you'd most likely be suspended and possibly terminated by the end of the business day.
The problem is many businesses, such as Healthcare, Insurance and Financial Services have mandatory federal data retention and auditing guidelines that they must meet.
If communication between employees about a client is made via IM, not only is it insecure, but it is not logged or otherwise recorded anywhere. Without a paper trail, the company cannot defend itself against lawsuits or regulators.
How do you guys manage thousands of servers spread throughout multiple datacenters?
How do you handle user accounts? Event notification?
Do you guys use "enterprise" software like Tivoli or Openview, or did you roll your own solution?
Too bad that won't happen.
Slashdot gets a little tedious with the same worn out topics and tired arguments all the time.
If Ford sold a vehicle that didn't have working locks, insurance companies would not insure them and the attorneys general of many states would sue them to have the defects fixed or vehicles replaced.
If you have a system which is vulnerable to computer "viruses" and is only vulnerable because your poorly-designed application provides a backdoor to foreign software -- then you are liable for the bug.
Xerox found SourceForge "Enterprise" Edition to be a complete joke and waste of money.
I'm not suprised. I would have difficulty convincing my managment to spend money on a product that uses stupid star wars and lord of the rings jokes in a pathetic attempt to sell itself.
After spending months and years working for free to create a windows environment in Linux... some scumbags are using your donated time and energy to hoodwink ignorant customers into buying cheap pcs.
It's kind of sad, really.
While you licensed the software, you purchased the media. There is a 7-20 charge for replacement usually.
The easiest solution is to force your kid to put his cds away.
The airforce is moving away from the whole idea of using fighter-bombers as heavily loaded bomb dump trucks as a result of the gulf war.
The USAF retired about 150 F-16's from active service due to cracks which developed on the wings as a result of the heavy loads they were carrying.
In one month they went through 25 years worth of wear.
I think that you're going to find that having an open posting area for general news is going to result in alot of rumors and libelous rants being posted by angry and/or disturbed people.
When I was looking at buying property in a town in Northern New York, I ran across a newspaper (now defunct) that offered uncensored forums for users. It was basically a Slashdot "BSD" section, with users accusing the police chief of being a member of a satanic cult, claiming the mayor was molesting 6th graders and similar stuff.
The Albany Times-Union ( www.timesunion.com ) offers discussion forums on a few selected issues on a regular basis. They are heavily moderated and only discuss national or very big local stories.
This is a new low for all of humanity.
Is it really necessary to allow your hobby or profession take over your entire life?
Go look at some art. Take a hike. Learn how to fix your car.
You are only on this earth for a finite period of time. Do something less lame with your life. There is no reason for anyone to have that much network connectivity or that many computers in the house period.
So now Perl regexs are going to be completely different from every other language and more complex than ever... wonderful.
I certainly hope that someone is going to be maintaining Perl 5. I certainly cannot see the Perl community moveing en masse to Perl 6, or whatever they decide to call it.