Getting the source for Solaris legally was pretty easy too, I recieved the code for Sol8 about 2 years ago. All I did was fill out a questionnaire and sign a pretty reasonable NDA and I had me some code. Not free as in speech, but still free as in I want to exploit whatever holes I can find.
Re:IT hasn't lost its value
on
Why I.T. Matters
·
· Score: 2, Insightful
Sure its blue collar, being an IT Guy is more like being a General Contractor.. they're "jacks of all trades, masters of none".
The skills you listed are what I consider "standard IT", these are baselines any "real" IT professional should know. White-collar IT will continue to be specialized skills like DBAs, architects and engineers.
Any mechanic can change your oil but you take your porshe to a porshe mechanic for servicing, the specialization is the difference.
I don't see how the restrictions are any worse than what you'd get at any school computer lab.
Schools have liability too and it is their responsibility to ensure their equipment is used properly. And yes, who owns _does_ decide.. it is their equipment after all. Just because the school loans you something (be it a laptop, a textbook or a pair of gym shorts), if you are using it in a manner they deem inappropriate they should have the right to take it away.
The GNN article states that the Gates foundation donated something like $6bil and the "giveaway" they are corrupt is the $200mil they invested in a big pharma company.. not exactly damning evidence in my book. Even when doing good he's doing bad, c'mon.
Guh, I noticed this forever ago when downloading tracks from the game for my amusement. Here is more info: http://www.bunker306.com/gta_music/gta3_music.shtm l
Must be a slow day, I know it is over here and these crap-ass articles aren't helping! I smell a dupe in our future..
I don't see how a VB programmer can speak with any authority about the security of servers since that is most likely not their primary job function. I'd rather hear what Windows admins think (preferrably ones who also admin Unix systems).
I administer a large network of both Windows and Unix server. Yes, I patch my Windows systems more often, but that is because patches are brought to my attention more often (via email as well as released more often _and_ they are easier to apply. Get SMS into the works and patching servers/desktops is even easier.
I see no reason to apply every security patch Microsoft (or Sun or Red Hat) releases, a large number of them are for apps/services I don't utilize. Not patching them immediately (or ever) doesn't necessarily compromize my security model, nor have I had any issues in the past re: this scheme. Good luck exploiting a hole in WMP on my servers.
As for which is more secure, its hard to say. That is really up to the administrator. I can make a Windows server more secure than most Linux installs out there.. but nothing is inherently secure.
Yer damn right. Dell has fucked me a few times when I've called for support. Last one that dicked me was during an NT4 to Win2k upgrade. I was upgrading my PDC and the fucking PERC raid controller drivers wouldn't work. I spent about 6hrs total on the phone w/Dell's support monkeys only to have them point the finger at MSFT because THEIR PERC drivers were fucked up. Pathetic. Compounded by the fact that I had to restore the server for each test (the failed driver load in the middle of the install rendered the old NT4 install totally worthless).
Moral of story? Fuck Dell, we're back on HP/Compaq, I still get great support on a number of 5+yr old ProLiants I've got, and Compaq won't leave me out in the cold.
Ok, so Apple is still playing catch-up with XP in 2003, nothing new there. All this article does it point out the shortcomings of OS X and hint at some things that could be fixed. Is this a slow news day or something?
Untrue. Certain applications require access to different parts of the file system or registry to run. This by no means that you need to have admin access to run the app, it only means you need to give the user access to those files/keys. Its as simple as that. - A
Feel free to email my users a rootkit, it won't do anything. My users don't have the ability to install software or run macros in their Office products, they just don't need it. ActiveX components have been disabled in IE as well, once again not necessary. Security is only as good as you make it, if you don't use the tools provided (or don't know they exist) of course your network will be insecure. - A
Well, that isn't entirely true. You can kill explorer, then start it as another user thru runas, altho this causes really funky behavior. Anyways, if all you need to do is change file permissions, just mount the drives remotely. I very rarely have to log onto any of my windows workstations as an administrator, I do all my hands-on work using runas, this way I don't have to log a user off and interrupt their work. - A
What admin is going to install software on a production system w/o testing it? You are just asking for trouble doing stupid shit like that. There are many services in UNIX that also must be run as a privledged user, this isn't a windows-only problem. Windows vs Unix on security is quickly becoming a non-issue, just like Windows vs Unix on stability. - Adam
Wanna see some src of his page? Just change the url to view the files in the/moto dir.
example: http://projectmoto.org/index.moto is the page, the source is http://projectmoto.org/moto/index.moto. I am not sure if this is by design or by accident, altho this problem does not seem to exist on his other sites.
I care because I don't want to see open-source security products viewed as a lesser-quality product due to funding issues on the part of its contributors. If the government is going to install something as important as security software, they should have the right to choose the best product period, not just the best commercial product.
If the cost of certification is too great, that may also stop smaller security companies from being evaluated as well, also due to funding problems.
We shouldn't trust our nation's security only to those with deep pockets.
"In an interview with Computerworld last month, Clarke said the plan may include a governmentwide policy that requires all IT purchases to be independently certified for security prior to approval."
I would like to know what it takes for a product to get "independently certified for security", and how would/does this affect OSS?
(If this has been posted and answered in the past, please mod me down.)
I'll tell you what, before Excite shit the bed, I really really liked my cable modem experience. I had plenty of bandwidth, no noticable peak hours, and they were reliable. After AT&T switched me to their new network I've had nothing but problems. DNS is always down or crippled, the lines seem oversold, DHCP server is down, etc. I often have outages in excess of 1 hour. But all in all, I am paying $40/mo for a connection that is much faster than my other alternative (dial-up), so I can't complain that much.. I guess I just miss the speed and stability of Excite's network.
When you start using several different languages, you now need a person with several skills to maintain it. Trying to find a mid-level programmer who is strong in 5 unrelated languages is much more expensive than a mid-level programmer with 2 primary languages in his toolbox.
Personally, I write something end-to-end with one language because its nice to be consistent.
Slashdot Mirror
Getting the source for Solaris legally was pretty easy too, I recieved the code for Sol8 about 2 years ago. All I did was fill out a questionnaire and sign a pretty reasonable NDA and I had me some code. Not free as in speech, but still free as in I want to exploit whatever holes I can find.
Sure its blue collar, being an IT Guy is more like being a General Contractor.. they're "jacks of all trades, masters of none".
The skills you listed are what I consider "standard IT", these are baselines any "real" IT professional should know. White-collar IT will continue to be specialized skills like DBAs, architects and engineers.
Any mechanic can change your oil but you take your porshe to a porshe mechanic for servicing, the specialization is the difference.
ir.sco.com is using win2k/iis5 and coldfusion. Whee!
35% of all statistics are total crap.
I don't see how the restrictions are any worse than what you'd get at any school computer lab.
Schools have liability too and it is their responsibility to ensure their equipment is used properly. And yes, who owns _does_ decide.. it is their equipment after all. Just because the school loans you something (be it a laptop, a textbook or a pair of gym shorts), if you are using it in a manner they deem inappropriate they should have the right to take it away.
The GNN article states that the Gates foundation donated something like $6bil and the "giveaway" they are corrupt is the $200mil they invested in a big pharma company.. not exactly damning evidence in my book. Even when doing good he's doing bad, c'mon.
Thats funny, it kind of reminds me of Lzip, the lossy data compression tool. http://lzip.sourceforge.net/
Guh, I noticed this forever ago when downloading tracks from the game for my amusement. Here is more info: http://www.bunker306.com/gta_music/gta3_music.shtm l
Must be a slow day, I know it is over here and these crap-ass articles aren't helping! I smell a dupe in our future..
I don't see how a VB programmer can speak with any authority about the security of servers since that is most likely not their primary job function. I'd rather hear what Windows admins think (preferrably ones who also admin Unix systems).
I administer a large network of both Windows and Unix server. Yes, I patch my Windows systems more often, but that is because patches are brought to my attention more often (via email as well as released more often _and_ they are easier to apply. Get SMS into the works and patching servers/desktops is even easier.
I see no reason to apply every security patch Microsoft (or Sun or Red Hat) releases, a large number of them are for apps/services I don't utilize. Not patching them immediately (or ever) doesn't necessarily compromize my security model, nor have I had any issues in the past re: this scheme. Good luck exploiting a hole in WMP on my servers.
As for which is more secure, its hard to say. That is really up to the administrator. I can make a Windows server more secure than most Linux installs out there.. but nothing is inherently secure.
Yer damn right. Dell has fucked me a few times when I've called for support. Last one that dicked me was during an NT4 to Win2k upgrade. I was upgrading my PDC and the fucking PERC raid controller drivers wouldn't work. I spent about 6hrs total on the phone w/Dell's support monkeys only to have them point the finger at MSFT because THEIR PERC drivers were fucked up. Pathetic. Compounded by the fact that I had to restore the server for each test (the failed driver load in the middle of the install rendered the old NT4 install totally worthless).
Moral of story? Fuck Dell, we're back on HP/Compaq, I still get great support on a number of 5+yr old ProLiants I've got, and Compaq won't leave me out in the cold.
Ok, so Apple is still playing catch-up with XP in 2003, nothing new there. All this article does it point out the shortcomings of OS X and hint at some things that could be fixed. Is this a slow news day or something?
Untrue. Certain applications require access to different parts of the file system or registry to run. This by no means that you need to have admin access to run the app, it only means you need to give the user access to those files/keys. Its as simple as that.
- A
Feel free to email my users a rootkit, it won't do anything. My users don't have the ability to install software or run macros in their Office products, they just don't need it. ActiveX components have been disabled in IE as well, once again not necessary. Security is only as good as you make it, if you don't use the tools provided (or don't know they exist) of course your network will be insecure.
- A
Well, that isn't entirely true. You can kill explorer, then start it as another user thru runas, altho this causes really funky behavior.
Anyways, if all you need to do is change file permissions, just mount the drives remotely. I very rarely have to log onto any of my windows workstations as an administrator, I do all my hands-on work using runas, this way I don't have to log a user off and interrupt their work.
- A
What admin is going to install software on a production system w/o testing it? You are just asking for trouble doing stupid shit like that.
There are many services in UNIX that also must be run as a privledged user, this isn't a windows-only problem.
Windows vs Unix on security is quickly becoming a non-issue, just like Windows vs Unix on stability.
- Adam
The "hole" you noticed was not with Windows but with the website itself. Blame the web developers, not MS.
Wanna see some src of his page? Just change the url to view the files in the /moto dir.
example: http://projectmoto.org/index.moto is the page, the source is http://projectmoto.org/moto/index.moto. I am not sure if this is by design or by accident, altho this problem does not seem to exist on his other sites.
Lets see how Moto handles a slashdotting!
- A
I care because I don't want to see open-source security products viewed as a lesser-quality product due to funding issues on the part of its contributors. If the government is going to install something as important as security software, they should have the right to choose the best product period, not just the best commercial product.
If the cost of certification is too great, that may also stop smaller security companies from being evaluated as well, also due to funding problems.
We shouldn't trust our nation's security only to those with deep pockets.
- A
Did anyone else notice this statement:
"In an interview with Computerworld last month, Clarke said the plan may include a governmentwide policy that requires all IT purchases to be independently certified for security prior to approval."
I would like to know what it takes for a product to get "independently certified for security", and how would/does this affect OSS?
(If this has been posted and answered in the past, please mod me down.)
I wonder how long it'll be before IBM snaps Linus up. What better way to get support from the Linux masses than to snap up its creator?
- A
who cares. (sorry, i had to post _something_ it was so barren up here.)
- A
Its obvious this guy didn't even read the article. Why bother making informed decisions when its so much easier to post knee-jerk reactions to things.
Please, mod this moron down.
I'll tell you what, before Excite shit the bed, I really really liked my cable modem experience. I had plenty of bandwidth, no noticable peak hours, and they were reliable. After AT&T switched me to their new network I've had nothing but problems. DNS is always down or crippled, the lines seem oversold, DHCP server is down, etc. I often have outages in excess of 1 hour. But all in all, I am paying $40/mo for a connection that is much faster than my other alternative (dial-up), so I can't complain that much.. I guess I just miss the speed and stability of Excite's network.
When you start using several different languages, you now need a person with several skills to maintain it. Trying to find a mid-level programmer who is strong in 5 unrelated languages is much more expensive than a mid-level programmer with 2 primary languages in his toolbox.
Personally, I write something end-to-end with one language because its nice to be consistent.
- A
C'mon, this all seems a bit paranoid..