Radio Shack does a wonderful job of packaging 18 connectors you dont need with the one you do. No, the one you need is not sold seperately. This is simply an extension of the same policy.
This is NOT illegal. If I write a program that takes as inputs, fields x,y and z. and a clever user or anyone else comes up with a way to provide x,y, and z to my program via a script or a menu or any other interface, they have not violated the rights of my program. My program still functions in exactly the same way it did. It has not been modified in any way. It carries no more dependencies than it ever has. In short, there is no violation of dpkg. The dpkg license needs no modification. If this were not the case, and dpkg ad been messed with, or its dependancies changed, yes, licensing would be an issue, and like Mr Jackson, I would refuse. No, absolutely not. but... that doesnt apply here.
Its a simple concept called "ride with the outlaws, die with the outlaws". I dont care if they are "moral" individuals or not. They have chosen to support the evil empire's trashing of all things not their own. They can hang right along side their boss for all I care. I won't be sending flowers.
well, yes. actually Word Perfect was good long before Corel got it, but they have done a good job of staying current. I really appreciate my wp8 for linux.
Corel makes great WP software. I have used it exclusively since version 5.0. Their support for the linux community has been far ahead of any other commercial software houses.
Their contributions to the wine group are not trivial. They have proven themselves to be a good supportive menber of the community, and deserve reciprocal support from us. Their gpl slipup was simply an error made by their legal staff and will surely be rectified to everyones satisfaction.
Do they plan to make money off of linux? Well, yes, but so do most of us, in one way or the other... That is the freedom we have with the gpl.
Well, you are half right. Linux beowulf is really good for high latency, high bandwidth processing, such as in a render farm. In that environment, a cluster will perform equally as well or better than a cray. However, in low latency processes like floating point calcs spread about 1024 processors, the cray will leave a cluster sitting in the dust.
It really is quite unexpected for a Goddess to be so uninformed... I have seen hurricanes on the Texas coast do considerable damage to Dallas, which is 400 miles inland... and this storm is bigger than the entire state of Texas.
Floyd shows the possibility of being a much larger storm than we have seen on this continent at any time this century, has the potential for doing great damage quite some ways inland. They have chosen a most responsible option.
Yes its down to cat4 now, but after 2 days in the warm waters of the gulf stream?? who knows...
I have installed linux for a great number of newbies. They tend (like myself when I started) to be grossly unaware of what a deamon is or what it does, and have a very hard time understanding the concept of security in a multiuser system. The switch from single-user to multi-user is the most difficult concept to grasp as a newbie.
This makes security holes very common on such systems, as noted in the article. If a linux-lite distro were to be written that by default turned off all deamons, and left NO access to anyone except the local user, then it will have come a long ways towards desktop acceptability for the average corporate secretary. They should not have telnet or nfsd or samba or anything else running until their system administrator turns it on because it is needed.
Perhaps a "secure" workstation install option as the recommended install for new users is in order.
Hopefully Corel will adresss this in their upcoming distribution.
no, im far from serious. I would have to see something that stood a chance of being "alive" first. On the other hand... I trust "scientists" almost as far as I could throw them. The big question is always "can we". and almost never "should we".
I would really like to see some hardening of the 4 level containment strategim for dangerous organisms prior to any attempt to do something of this nature. I might feel safe if it were in level 37 containment or something. No natural predators? ugly....
It is amazing to me how often we hear news from amiga, and never see any attempt to finish a product. How do they stay in business? Why do their stockholders not take their money and run screaming away?
Do they sell stock exclusively to those who have seen elvis making crop circles?
1. A second copy does not constitute the need for a second key.
2. yes. only the second key appears to be replacable, but since there is NO warning that a test has failed the first, the first question still applies.
3. And the people working on maintenance of 95/98/NT use what for keys? Are you saying that MS holds the private keys and these are the public keys?
4. The key "locations" were never "known" prior to sp5.
5. In exported versions its 40 bit. Not a terribly difficult crack.
6. Yes you can replace it with a program, but with the first key to authenticate me as i spoof widgets.com, I can replace it without your knowledge or approval.
7.see #6. 8.see #7 9.see #8
10. You are right. I got his name wrong.
You are right again. Its not a big deal, and I have relaxed. fdisk gave me a nice secure feeling.
Unfortunately, MS suffers from the same credibility gap as certain others do. The surest way to know they are lying is to check and see if their lips are moving. Even after their answers, The questions remain.
Why are there 2 keys? Why are the keys replacable? Who has had access to them? aside from a hoarde of programmers doing daily builds. Doesnt the daily build mean the two keys are stored in the same building? Is only 1/2 oh this building "natural disaster proof"? What happens now that the key locations are known? How long before they are cracked? Once they are cracked, cant I use ms_key to replace nsa_key? Have your keys been replaced? Will they be replaced again. Can they be replaced via activeX/java?
All in all, I find the story without credibility. The tone in his second writing does not support the tone of his first. What changed his mind? Why is this such an insignificant security hole in comparison to the major hole at the time of the first writing? Who convinced him otherwise?
I am sorry, but having listened carefully to this and other arguments presented by MS and its minions, I will need some convincing.
Until then, I will continue to recommend that all MS products be removed from "secure" corporate machines.
Why would anyone want to spend money on these machines when they will simply kill any ability to upgrade it via a mandatory firmware "upgrade" as they did to the g3 owners? Do you really want a lan made of disposable computers?
Until they treat their g3 owners correctly, I wont be buying one, nor will i recommend one. I will point to the miserable g3 owners whenever asked about them though.
First they say "nsakey is just a note to ourselves that the nsa has inspected and approved this version..."
Well this is fine except for the fact that it is a key... people do not make notes on keys. Keys have one and only one purpose, to open locks...
Now they say it is a backup key. So caught in their first lie, they make up another...
Lets look at this one.
A backup key, different from the first because the original key may be lost in a "natural disaster".
They cant keep the same key in two locations? 2 keys in the same location are more secure than 1 key at two locations? Doesnt the existance of 2 keys reduce the effectiveness of crypto by a factor of 2? So even if they have not releaased the key... It is now MUCH more succeptable to attack.
The only way to accomplish this "backup" is to have a second key that allows replacement of my crypto? without my knowledge? yeah. right.
Export controls are not affected? How so. I can replace the crypto module, in violation of the laws of MANY countries.
Why has only the "backup" key has its name stripped for all these years?
They are called NSAKEYS becaause of the internal MS refeerence to them? Then why arent they called NSAKEY and NSABAK?
This is very similar to the magic database they were building "without transmitting data to Microsoft Corp". Must be nice to run an o/s thats smart enough to build and manage a database on its own.
They lied about it until they couldnt any longer, then simply stated it was an "oversight".
Once again, we have to determine their truthfulness by checking to see if their lips are moving.
Slashdot Mirror
They had their chance at last nights meeting. Its a spam baby. throw it out. live or dead, doesnt matter.
Radio Shack does a wonderful job of packaging 18 connectors you dont need with the one you do. No, the one you need is not sold seperately. This is simply an extension of the same policy.
This is NOT illegal. If I write a program that takes as inputs, fields x,y and z. and a clever user or anyone else comes up with a way to provide x,y, and z to my program via a script or a menu or any other interface, they have not violated the rights of my program. My program still functions in exactly the same way it did. It has not been modified in any way. It carries no more dependencies than it ever has. In short, there is no violation of dpkg. The dpkg license needs no modification. If this were not the case, and dpkg ad been messed with, or its dependancies changed, yes, licensing would be an issue, and like Mr Jackson, I would refuse. No, absolutely not. but... that doesnt apply here.
Its a simple concept called "ride with the outlaws, die with the outlaws". I dont care if they are "moral" individuals or not. They have chosen to support the evil empire's trashing of all things not their own. They can hang right along side their boss for all I care. I won't be sending flowers.
Exim rocks.
wonderful app.
Steve Ruyle
well, yes. actually Word Perfect was good long before Corel got it, but they have done a good job of staying current. I really appreciate my wp8 for linux.
Corel makes great WP software. I have used it exclusively since version 5.0. Their support for the linux community has been far ahead of any other commercial software houses.
Their contributions to the wine group are not trivial. They have proven themselves to be a good supportive menber of the community, and deserve reciprocal support from us. Their gpl slipup was simply an error made by their legal staff and will surely be rectified to everyones satisfaction.
Do they plan to make money off of linux? Well, yes, but so do most of us, in one way or the other... That is the freedom we have with the gpl.
thanks corel. thanks debian. thanks bruce.
Well, you are half right. Linux beowulf is really good for high latency, high bandwidth processing, such as in a render farm. In that environment, a cluster will perform equally as well or better than a cray. However, in low latency processes like floating point calcs spread about 1024 processors, the cray will leave a cluster sitting in the dust.
Steve Ruyle
wow. I am even agreeing with Ben Tilly on something... Miracles do happen. :)
Steve Ruyle
:)
I am sorry for spouting off then.
Steve Ruyle
It really is quite unexpected for a Goddess to be so uninformed... I have seen hurricanes on the Texas coast do considerable damage to Dallas, which is 400 miles inland... and this storm is bigger than the entire state of Texas.
Floyd shows the possibility of being a much larger storm than we have seen on this continent at any time this century, has the potential for doing great damage quite some ways inland. They have chosen a most responsible option.
Yes its down to cat4 now, but after 2 days in the warm waters of the gulf stream?? who knows...
Steve Ruyle
I have installed linux for a great number of newbies. They tend (like myself when I started) to be grossly unaware of what a deamon is or what it does, and have a very hard time understanding the concept of security in a multiuser system. The switch from single-user to multi-user is the most difficult concept to grasp as a newbie.
This makes security holes very common on such systems, as noted in the article. If a linux-lite distro were to be written that by default turned off all deamons, and left NO access to anyone except the local user, then it will have come a long ways towards desktop acceptability for the average corporate secretary. They should not have telnet or nfsd or samba or anything else running until their system administrator turns it on because it is needed.
Perhaps a "secure" workstation install option as the recommended install for new users is in order.
Hopefully Corel will adresss this in their upcoming distribution.
Steve Ruyle
no, im far from serious. I would have to see something that stood a chance of being "alive" first.
On the other hand... I trust "scientists" almost as far as I could throw them. The big question is always "can we". and almost never "should we".
Steve Ruyle
I would really like to see some hardening of the 4 level containment strategim for dangerous organisms prior to any attempt to do something of this nature. I might feel safe if it were in level 37 containment or something. No natural predators? ugly....
It is amazing to me how often we hear news from amiga, and never see any attempt to finish a product. How do they stay in business? Why do their stockholders not take their money and run screaming away?
Do they sell stock exclusively to those who have seen elvis making crop circles?
1. A second copy does not constitute the need for a second key.
2. yes. only the second key appears to be replacable, but since there is NO warning that a test has failed the first, the first question still applies.
3. And the people working on maintenance of 95/98/NT use what for keys? Are you saying that MS holds the private keys and these are the public keys?
4. The key "locations" were never "known" prior to sp5.
5. In exported versions its 40 bit. Not a terribly difficult crack.
6. Yes you can replace it with a program, but with the first key to authenticate me as i spoof widgets.com, I can replace it without your knowledge or approval.
7.see #6.
8.see #7
9.see #8
10. You are right. I got his name wrong.
You are right again. Its not a big deal, and I have relaxed. fdisk gave me a nice secure feeling.
It cannot/will not be integrated into mozilla, simply because it can no longer be exported if this is done...
my $.02
Steve Ruyle
Unfortunately, MS suffers from the same credibility gap as certain others do. The surest way to know they are lying is to check and see if their lips are moving.
Even after their answers, The questions remain.
Why are there 2 keys?
Why are the keys replacable?
Who has had access to them? aside from a hoarde of programmers doing daily builds.
Doesnt the daily build mean the two keys are stored in the same building?
Is only 1/2 oh this building "natural disaster proof"?
What happens now that the key locations are known?
How long before they are cracked?
Once they are cracked, cant I use ms_key to replace nsa_key?
Have your keys been replaced?
Will they be replaced again.
Can they be replaced via activeX/java?
All in all, I find the story without credibility.
The tone in his second writing does not support the tone of his first.
What changed his mind? Why is this such an insignificant security hole in comparison to the major hole at the time of the first writing?
Who convinced him otherwise?
I am sorry, but having listened carefully to this and other arguments presented by MS and its minions, I will need some convincing.
Until then, I will continue to recommend that all MS products be removed from "secure" corporate machines.
Steve Ruyle
It is a good thing. It should help. Thanks Rob
No absolutely not. Not being an immigrant simply increases the probability of being a terrorist.
Havent you ever studied statistics?
blah,
steve
49.7% of all statistics are made up on the spot.
Why would anyone want to spend money on these machines when they will simply kill any ability to upgrade it via a mandatory firmware "upgrade" as they did to the g3 owners?
Do you really want a lan made of disposable computers?
Until they treat their g3 owners correctly, I wont be buying one, nor will i recommend one. I will point to the miserable g3 owners whenever asked about them though.
never again. never again. no, no, no. The very concept of one of these devices making it into my home disgusts me. Nope, not going to happen.
and I assume it is grossly unfair to make the assumption that MS has a private agenda to protect?
First they say "nsakey is just a note to ourselves that the nsa has inspected and approved this version..."
Well this is fine except for the fact that it is a key... people do not make notes on keys. Keys have one and only one purpose, to open locks...
Now they say it is a backup key.
So caught in their first lie, they make up another...
Lets look at this one.
A backup key, different from the first because the original key may be lost in a "natural disaster".
They cant keep the same key in two locations?
2 keys in the same location are more secure than 1 key at two locations? Doesnt the existance of 2 keys reduce the effectiveness of crypto by a factor of 2? So even if they have not releaased the key... It is now MUCH more succeptable to attack.
The only way to accomplish this "backup" is to have a second key that allows replacement of my crypto? without my knowledge?
yeah. right.
Export controls are not affected? How so. I can replace the crypto module, in violation of the laws of MANY countries.
Why has only the "backup" key has its name stripped for all these years?
They are called NSAKEYS becaause of the internal MS refeerence to them? Then why arent they called NSAKEY and NSABAK?
This is very similar to the magic database they were building "without transmitting data to Microsoft Corp". Must be nice to run an o/s thats smart enough to build and manage a database on its own.
They lied about it until they couldnt any longer, then simply stated it was an "oversight".
Once again, we have to determine their truthfulness by checking to see if their lips are moving.