_NO_ application supports SElinux. SElinux is implemented at the kernel/filesystem level, not the application level.
It is possible to write SElinux policies for Cpanel. Perhaps no one has done it yet.
Like anything, it's all about the appropriate tool for the job. For my home desktop? Don't need it. For my nothing-really-important-hosted-here dedicated server? Don't need it. For the server at work which has confidential information on it? Absolutely. I sleep better at night knowing that regardless of your Unix uid, if you're not going through the application that retrieves this data, then you will be denied access. I sleep better at night knowing that application absolutely cannot open a network socket. Going through a few hours pain and headache to work out how it works is worthwhile for this application, if it means I sleep at night. Improvements to the process of designing SElinux policies, such as new tools in RHEL5, is a good move.
The Windowsesque practise of one service per server is still no substitute for SElinux. Presuming you have one service per server, without SElinux, if someone pwns that buggy web app, they can still turn your box into a spam zombie. However, with an SElinux policy, you can lock that web app down so it can _only_ do what's authorized - so when the spammer pwns it, they find they can't actually make any use of what they've managed to pwn, because the SElinux policy on that application prevents it from opening any new network sockets, or even starting any other executables.
Or to give another example, if on a webserver, you have a particular module that performs authentication for obtaining certain files, you can write an SElinux policy that only allows that module access - so if someone hacks your apache instance, they still can't steal the data you want to protect, because the apache process itself (even though it runs as the same unprivileged user as the module) can't actually get into that part of the filesystem. The SElinux policy can be written such that not even root can access that part of the filesystem unless the root user is logged onto the physical console.
I don't do graphics editing so I can't comment on that, but I've used NeoOffice/J for around 18 months or so and found it to be perfectly stable for doing wordprocessing and spreadsheets. Indeed, I've never seen NeoOffice/J crash on my PowerBook. How did you come to the conclusion that NeoOffice needs X11? I don't even have X11 installed, yet I quite happily use NeoOffice. How is NeoOffice hard to install? It's trivially easy to install. Indeed, pretty much all the free stuff is trivially easy to install - just drag the folder to Applications. I can't think of any other OS that has an easier installer.
It does seem a teeny bit like you had your mind made up before starting the review, with a glaring error like that one.
Before you ask, no, I'm not a Mac zealot; my main workstation runs Fedora.
As the guy who wrote the evaluation, how come you didn't find the mountains of free open source software for the Mac? I've never bought a utility for my PowerBook, save a piano tuning utility (and I've not found an open source piano tuning utility yet for any platform).
Firstly, Slashdot posts a link of the subitter's choice for ALL submissions that are accepted, not just Roland's.
The only reason you remember Roland Piquepaille is that his name is very memorable - there are submitters who have had more Slashdot stores posted than Piquepaille - they just don't have a memorable username that stands out.
The UK model will meet US safety and emissions standards, but it won't be street legal as-is, due to minor things such as the differences in the kinds of lighting allowed on the vehicle. In the UK fog lights are mandatory, in the US they are illegal. In the UK, flashing brake lights are legal as turn signals, in the UK (on a new car) flashing brake lights are illegal. The steering wheel will be on the wrong side for the US, although that's probably not a street legality problem as the USPS drive right hand drive vehicles.
It is very likely that BMW makes their cars to pass the country who has the strictest emissions and safety standards, so they can build one body shell and one engine for the whole world as this decreases manufacturing costs.
Does it still (E)ventually (M)alloc (A)ll (C)ore (S)torage?
Or is it just now Eight Hundred Megs And Constantly Swapping?:-)
Re:Why we stayed clear of the GPL
on
GPLv2 Vs. GPLv3
·
· Score: 1
The GPLv3 wouldn't affect you. The typical way the GPL is used, the code says "..under the GPL version 2 or later, at your choice" (paraphrased). So you could simply continue to use the GPL2 regardless of the existence of GPL3 or later.
In any case, the GPL is a copyright license, not an EULA. The GPL applies to _redistribution_ only, not the use of the code. It basically says if you want to _redistribute_ this code, you cannot deprive those you distribute the code to of the freedoms you got in the first place. If you think the GPL is only 'free as in beer' you don't understand the GPL.
Here is a 30 minute film (shown in the 80s by the BBC, in the TV programme 'QED') that will just remind you why we must never, ever have a nuclear war. It is in three parts on YouTube. Here is a link to the first part:
70-80% Where do you get those figures from? They are completely WRONG for today's solar technology.
I have a monocrystalline panel as a test project. It's a new, high quality panel. Monocrystalline is the most efficient that's easily available on the open market at the moment.
Here are the real figures, from a real panel powering a real load:
Direct sunlight, absolutely perpendicular to the panel: 100% of peak Two hours before or after mid-day on a hazeless cloudless day: 40% of peak Light cirrus cloud, at mid day, where there are still shadows being cast: 30% of peak Bright overcast: 10-15% of peak (if you're lucky) Dull overcast: Barely deflects the ammeter, too small to measure %age of peak
Solar panels perform very badly in anything other than full sun absolutely perpendicular to the panel.
Actually, space really isn't that much of a problem. Even with today's production cells (about 15% efficiency), just quarter of my roof space would be sufficient to completely power my house (when coupled to suitable storage).
The trouble is right now it's prohibitively expensive to do so. If I want to save energy, I can save far more energy by simply riding my bicycle into work instead of driving (which I do). The only time solar is actaully cost effective is when you have a building a long way from the grid (i.e. expensive to hook to the grid) that needs power.
Cells of half the efficiency of what we have now, but 1/20th of a cost, would be a far more significant breakthrough than 40% efficiency cells which don't reduce the cost per watt.
The putative EU constitution begins with "The Royal King of Belgium".
I think that tells you all you need to know why the people of Europe firmly rejected the constitution in its current form. It's about bureacrats, not we the people.
The Smart is NOT at all flimsy. (On the contrary, it's usually the SUVs that are suprisingly un-crashworthy).
Take a look at this video of a Smart Car being crashed head on into a concrete barrier at 70 mph. The passenger area is barely deformed. Indeed, you can still open and close the doors. (Unfortunately, the deceleration forces from hitting a concrete barrier head on will kill you regardless of what you're driving, well, unless you have a ten metre long crumple zone):
Many people in their 60s can hear the TV whine. They certainly can hear that 'Mosquito' device that's supposed to drive away teenagers. I think if you've not been exposed to loud noise much, your hearing won't deteriorate all that much as you age. At 35, I can certainly still hear the TV whine clearly, and also the switch mode power supply in the charger for my digital camera.
If you have a washing machine, microwave or car, you probably use an 8-bit computer. 8 bit processors still sell in HUGE numbers which eclipse the volumes of Intel space heater chips that are sold. Zilog even still sell the 'classic' Z80 CPU, because it's still used for embedded computers. I have a Z80 CPU sitting on my table datestamped manufactured late 2006.
No it's not cheaper to implement for a 16 core space heater. The majority of computers sold today are not the mini tower room heater that you may have beside you, but embedded devices. ARM cores outsell x86 by a large margin. Atmel and Microchip sell billions of 8 bit devices every year. Zilog still manufactures the Z80, as well as microcontroller style Z80 chips. For every space heater PC, there are ten other devices that use a small processor (washing machines, microwaves, phones, cars, televisions etc.)
You _have_ to write efficient code for those. The laws of physics say that these small processors will *not* get substantially faster, because they need to be very low power and have very small die sizes, so you can't just throw MHz and extra transistors at them to compensate for software bloat. Anybody working with embedded computers still has to write efficient code, and get as close to the metal as they can. This means assembly language or C.
The cost of developer time in an embedded device that will ship millions of units is trivial compared to having to use a more powerful microcontroller to compensate for bloated code. In the PC world, of course, the opposite holds true - since the software developer is only shipping a software device, they can just rely on the customer to buy beefier hardware at no cost to the software developer. Embedded developers cannot push the cost of bloat onto their customers without losing out to their competitors.
You'll always find C programmers - doing low level system programming, or writing code for microcontrollers. This is where C's strength lies in 2007 - doing low level stuff that you don't really want to do in assembler, but you still need performance as close to as possible as hand-written assembler. So operating system kernels, embedded programming - anything that needs a low powered CPU (i.e. something that uses very little electricity, and as a consequence has a relatively low clock speed and transistor count) will need C if you don't want to hand-write assembly language.
COBOL on the other hand can be allowed to die - in COBOL's sphere, there are now better tools. But C is still the best tool for the job in low level programming.
I was earning that in Houston, and had no trouble paying off my student debts. $60K is completely adequate if you are willing to live within your means. I didn't buy my car with debt - I bought a vehicle that I could pay with cash (the extra cost in maintenance was well below just the interest on a car repayment, and not having another $200/month debt service was money that could go to paying off student debts). I chose to live close to work, which kept commuting costs to a minimum. I actually had enough money left over to learn to fly - so hardly a monastic lifestyle.
Actually - it is an obvious choice if you expect to settle somewhere for a good long while. I'd not advocate buying a house as "investment".
Rent goes up inexorably, year on year. Your mortgage, on the other hand, doesn't (save the odd interest rate fluctuation - the severity of which goes down over time as the proportion paid to principal increases relative to the proportion that's interest). I've owned a 4 bedroom house for just under 5 years now (in the Isle of Man, with property prices comparable to the nice parts of California). Already, the rent on the 1 bedroom apartment I used to rent in Houston is approaching my current mortgage repayment (i.e. both interest and capital - the rent on the apartment in Texas is already greater than what I currently pay in mortgage interest). In a few years time, it will be greater than my mortgage payment and annual insurance put together. In fifteen years time (when I only have 5 years left to pay on my mortgage, and almost the entire repayment will be on the capital) a one bedroom apartment will probably be approaching double my mortgage repayment. In real terms, if you own, it's likely your housing costs will fall in real terms over time. If you rent, at the very least they will keep up with inflation, and if there's a squeeze on property because you live in a nice area, then they may end up busting inflation.
There are other side benefits, too. I get tax relief on the interest repayments for my house. There is no tax relief for the money you pay in rent. Once I add in the tax relief, the 1 bedroom apartment's rent is already (after only 5 years of owning a home) level pegging with my house repayment.
Investing in the stock market's nice, but I like to remember when the market crashes, as it inevitably does from time to time - even if the money value gets wiped off my house, I can still live in it. A share certificate on the other hand doesn't provide an awful lot of shelter from the hurricane force winds in a typical Manx winter!
The datasheet on how to make a piece of hardware work is NOT the blueprints. It is absolutely moronic that hardware manufacturers won't tell you how to make the card work in software. It's only the "IP paranoid" who are stupid enough not to release a datasheet. Most Far Eastern manufacturers seem very happy to give you the datasheet for the hardware, after all, it may well result in more sales. Once again, a datasheet is not a blueprint.
That's what RoHS is for. There are still some unintended consequences of RoHS - such as lead-free solders tend to form tin whiskers that may cause the premature failure of electronics, and therefore, more electronics to be thrown away - but RoHS is generally to reduce the amount of hazardous chemicals in electronics.
Slashdot Mirror
_NO_ application supports SElinux. SElinux is implemented at the kernel/filesystem level, not the application level.
It is possible to write SElinux policies for Cpanel. Perhaps no one has done it yet.
Like anything, it's all about the appropriate tool for the job. For my home desktop? Don't need it. For my nothing-really-important-hosted-here dedicated server? Don't need it. For the server at work which has confidential information on it? Absolutely. I sleep better at night knowing that regardless of your Unix uid, if you're not going through the application that retrieves this data, then you will be denied access. I sleep better at night knowing that application absolutely cannot open a network socket. Going through a few hours pain and headache to work out how it works is worthwhile for this application, if it means I sleep at night. Improvements to the process of designing SElinux policies, such as new tools in RHEL5, is a good move.
The Windowsesque practise of one service per server is still no substitute for SElinux. Presuming you have one service per server, without SElinux, if someone pwns that buggy web app, they can still turn your box into a spam zombie. However, with an SElinux policy, you can lock that web app down so it can _only_ do what's authorized - so when the spammer pwns it, they find they can't actually make any use of what they've managed to pwn, because the SElinux policy on that application prevents it from opening any new network sockets, or even starting any other executables.
Or to give another example, if on a webserver, you have a particular module that performs authentication for obtaining certain files, you can write an SElinux policy that only allows that module access - so if someone hacks your apache instance, they still can't steal the data you want to protect, because the apache process itself (even though it runs as the same unprivileged user as the module) can't actually get into that part of the filesystem. The SElinux policy can be written such that not even root can access that part of the filesystem unless the root user is logged onto the physical console.
No! It's
public LegalThreats Ballmer(Developers developers) throws Chair
I don't do graphics editing so I can't comment on that, but I've used NeoOffice/J for around 18 months or so and found it to be perfectly stable for doing wordprocessing and spreadsheets. Indeed, I've never seen NeoOffice/J crash on my PowerBook. How did you come to the conclusion that NeoOffice needs X11? I don't even have X11 installed, yet I quite happily use NeoOffice. How is NeoOffice hard to install? It's trivially easy to install. Indeed, pretty much all the free stuff is trivially easy to install - just drag the folder to Applications. I can't think of any other OS that has an easier installer.
It does seem a teeny bit like you had your mind made up before starting the review, with a glaring error like that one.
Before you ask, no, I'm not a Mac zealot; my main workstation runs Fedora.
As the guy who wrote the evaluation, how come you didn't find the mountains of free open source software for the Mac? I've never bought a utility for my PowerBook, save a piano tuning utility (and I've not found an open source piano tuning utility yet for any platform).
Firstly, Slashdot posts a link of the subitter's choice for ALL submissions that are accepted, not just Roland's.
The only reason you remember Roland Piquepaille is that his name is very memorable - there are submitters who have had more Slashdot stores posted than Piquepaille - they just don't have a memorable username that stands out.
The UK model will meet US safety and emissions standards, but it won't be street legal as-is, due to minor things such as the differences in the kinds of lighting allowed on the vehicle. In the UK fog lights are mandatory, in the US they are illegal. In the UK, flashing brake lights are legal as turn signals, in the UK (on a new car) flashing brake lights are illegal. The steering wheel will be on the wrong side for the US, although that's probably not a street legality problem as the USPS drive right hand drive vehicles.
It is very likely that BMW makes their cars to pass the country who has the strictest emissions and safety standards, so they can build one body shell and one engine for the whole world as this decreases manufacturing costs.
Does it still (E)ventually (M)alloc (A)ll (C)ore (S)torage?
:-)
Or is it just now Eight Hundred Megs And Constantly Swapping?
The GPLv3 wouldn't affect you. The typical way the GPL is used, the code says "..under the GPL version 2 or later, at your choice" (paraphrased). So you could simply continue to use the GPL2 regardless of the existence of GPL3 or later.
In any case, the GPL is a copyright license, not an EULA. The GPL applies to _redistribution_ only, not the use of the code. It basically says if you want to _redistribute_ this code, you cannot deprive those you distribute the code to of the freedoms you got in the first place. If you think the GPL is only 'free as in beer' you don't understand the GPL.
Here is a 30 minute film (shown in the 80s by the BBC, in the TV programme 'QED') that will just remind you why we must never, ever have a nuclear war. It is in three parts on YouTube. Here is a link to the first part:
http://www.youtube.com/watch?v=1vdzyqQIEAI
Also, look up "The War Game", and "Threads".
And as usual, with this current posturing, Europe gets it in the shorts _again_. Nuclear war between US and Russia? Europe gets carpet bombed.
70-80% Where do you get those figures from? They are completely WRONG for today's solar technology.
I have a monocrystalline panel as a test project. It's a new, high quality panel. Monocrystalline is the most efficient that's easily available on the open market at the moment.
Here are the real figures, from a real panel powering a real load:
Direct sunlight, absolutely perpendicular to the panel: 100% of peak
Two hours before or after mid-day on a hazeless cloudless day: 40% of peak
Light cirrus cloud, at mid day, where there are still shadows being cast: 30% of peak
Bright overcast: 10-15% of peak (if you're lucky)
Dull overcast: Barely deflects the ammeter, too small to measure %age of peak
Solar panels perform very badly in anything other than full sun absolutely perpendicular to the panel.
Actually, space really isn't that much of a problem. Even with today's production cells (about 15% efficiency), just quarter of my roof space would be sufficient to completely power my house (when coupled to suitable storage).
The trouble is right now it's prohibitively expensive to do so. If I want to save energy, I can save far more energy by simply riding my bicycle into work instead of driving (which I do). The only time solar is actaully cost effective is when you have a building a long way from the grid (i.e. expensive to hook to the grid) that needs power.
Cells of half the efficiency of what we have now, but 1/20th of a cost, would be a far more significant breakthrough than 40% efficiency cells which don't reduce the cost per watt.
It'll certainly be a "stiff" sentence when his cell-mate's knob is rammed up his jacksy...
The US constitution begins with "We the People".
The putative EU constitution begins with "The Royal King of Belgium".
I think that tells you all you need to know why the people of Europe firmly rejected the constitution in its current form. It's about bureacrats, not we the people.
The Smart is NOT at all flimsy. (On the contrary, it's usually the SUVs that are suprisingly un-crashworthy).
Take a look at this video of a Smart Car being crashed head on into a concrete barrier at 70 mph. The passenger area is barely deformed. Indeed, you can still open and close the doors. (Unfortunately, the deceleration forces from hitting a concrete barrier head on will kill you regardless of what you're driving, well, unless you have a ten metre long crumple zone):
http://www.youtube.com/watch?v=ju6t-yyoU8s
Many people in their 60s can hear the TV whine. They certainly can hear that 'Mosquito' device that's supposed to drive away teenagers. I think if you've not been exposed to loud noise much, your hearing won't deteriorate all that much as you age. At 35, I can certainly still hear the TV whine clearly, and also the switch mode power supply in the charger for my digital camera.
VTR isn't an ISP in that case, they are a provider of a private closed network service which has a gateway to the internet.
The masses (certainly in this country) also like playing games - which won't work if their entire pseudo-ISP just provided them with 10.x.x.x space.
If you have a washing machine, microwave or car, you probably use an 8-bit computer. 8 bit processors still sell in HUGE numbers which eclipse the volumes of Intel space heater chips that are sold. Zilog even still sell the 'classic' Z80 CPU, because it's still used for embedded computers. I have a Z80 CPU sitting on my table datestamped manufactured late 2006.
No it's not cheaper to implement for a 16 core space heater. The majority of computers sold today are not the mini tower room heater that you may have beside you, but embedded devices. ARM cores outsell x86 by a large margin. Atmel and Microchip sell billions of 8 bit devices every year. Zilog still manufactures the Z80, as well as microcontroller style Z80 chips. For every space heater PC, there are ten other devices that use a small processor (washing machines, microwaves, phones, cars, televisions etc.)
You _have_ to write efficient code for those. The laws of physics say that these small processors will *not* get substantially faster, because they need to be very low power and have very small die sizes, so you can't just throw MHz and extra transistors at them to compensate for software bloat. Anybody working with embedded computers still has to write efficient code, and get as close to the metal as they can. This means assembly language or C.
The cost of developer time in an embedded device that will ship millions of units is trivial compared to having to use a more powerful microcontroller to compensate for bloated code. In the PC world, of course, the opposite holds true - since the software developer is only shipping a software device, they can just rely on the customer to buy beefier hardware at no cost to the software developer. Embedded developers cannot push the cost of bloat onto their customers without losing out to their competitors.
C won't die like COBOL, but it has become niche.
You'll always find C programmers - doing low level system programming, or writing code for microcontrollers. This is where C's strength lies in 2007 - doing low level stuff that you don't really want to do in assembler, but you still need performance as close to as possible as hand-written assembler. So operating system kernels, embedded programming - anything that needs a low powered CPU (i.e. something that uses very little electricity, and as a consequence has a relatively low clock speed and transistor count) will need C if you don't want to hand-write assembly language.
COBOL on the other hand can be allowed to die - in COBOL's sphere, there are now better tools. But C is still the best tool for the job in low level programming.
I was earning that in Houston, and had no trouble paying off my student debts. $60K is completely adequate if you are willing to live within your means. I didn't buy my car with debt - I bought a vehicle that I could pay with cash (the extra cost in maintenance was well below just the interest on a car repayment, and not having another $200/month debt service was money that could go to paying off student debts). I chose to live close to work, which kept commuting costs to a minimum. I actually had enough money left over to learn to fly - so hardly a monastic lifestyle.
Actually - it is an obvious choice if you expect to settle somewhere for a good long while. I'd not advocate buying a house as "investment".
Rent goes up inexorably, year on year. Your mortgage, on the other hand, doesn't (save the odd interest rate fluctuation - the severity of which goes down over time as the proportion paid to principal increases relative to the proportion that's interest). I've owned a 4 bedroom house for just under 5 years now (in the Isle of Man, with property prices comparable to the nice parts of California). Already, the rent on the 1 bedroom apartment I used to rent in Houston is approaching my current mortgage repayment (i.e. both interest and capital - the rent on the apartment in Texas is already greater than what I currently pay in mortgage interest). In a few years time, it will be greater than my mortgage payment and annual insurance put together. In fifteen years time (when I only have 5 years left to pay on my mortgage, and almost the entire repayment will be on the capital) a one bedroom apartment will probably be approaching double my mortgage repayment. In real terms, if you own, it's likely your housing costs will fall in real terms over time. If you rent, at the very least they will keep up with inflation, and if there's a squeeze on property because you live in a nice area, then they may end up busting inflation.
There are other side benefits, too. I get tax relief on the interest repayments for my house. There is no tax relief for the money you pay in rent. Once I add in the tax relief, the 1 bedroom apartment's rent is already (after only 5 years of owning a home) level pegging with my house repayment.
Investing in the stock market's nice, but I like to remember when the market crashes, as it inevitably does from time to time - even if the money value gets wiped off my house, I can still live in it. A share certificate on the other hand doesn't provide an awful lot of shelter from the hurricane force winds in a typical Manx winter!
The datasheet on how to make a piece of hardware work is NOT the blueprints. It is absolutely moronic that hardware manufacturers won't tell you how to make the card work in software. It's only the "IP paranoid" who are stupid enough not to release a datasheet. Most Far Eastern manufacturers seem very happy to give you the datasheet for the hardware, after all, it may well result in more sales. Once again, a datasheet is not a blueprint.
Umm, MacWrite had that feature before Word was released.
That's what RoHS is for. There are still some unintended consequences of RoHS - such as lead-free solders tend to form tin whiskers that may cause the premature failure of electronics, and therefore, more electronics to be thrown away - but RoHS is generally to reduce the amount of hazardous chemicals in electronics.