Slashdot Mirror


User: drsmithy

drsmithy's activity in the archive.

Stories
0
Comments
12,153
First seen
Last seen
Profile
(view on slashdot.org)

Comments · 12,153

  1. Re:Yet Another Band-Aid? on Microsoft Bypasses HOSTS File · · Score: 1
    This is one of the telltale remaints of the BSD-derived TCP/IP stack that NT/XP uses.

    Even the page you link to disproves this (incorrect as usual when it comes to Slashdot and Windows) meme. NT hasn't used a BSD-derived TCP/IP stack since NT 3.5, and Windows 9x has never used it.

  2. Re:Permissions? on Microsoft Bypasses HOSTS File · · Score: 1
    In unix, security and permissions are the foundation, on top of which everything is built. In windows, security is a hack that was added on later with no due consideration during the initial design phase of windows.

    False on both counts.

  3. Re:Permissions? on Microsoft Bypasses HOSTS File · · Score: 1
    Only because people always need admin priveleges at the most inopportune times. Sure, you only need to be Admin for 2 seconds, but if you're doing anything technical with the system, you need them every 5-10 minutes. In these situations Run As is at best, cumbersome, and in many cases outright incapable.

    What on Earth are you doing that needs Administrator privileges every "5 - 10 minutes" ?

    And if you really *do* need it that often, why aren't you just keeping an Administrator-level cmd or explorer window open from which you can launch things at will ?

    If Windows wanted to be truly innovative there would be a way to supply an Admin password, temporarily upgrade privs to Admin, and then have a button available to immediately downgrade.

    Which is, uh, basically what Run As does.

    I'd like the IP on that idea since it'll be central to making a GUI OS both secure and functional.

    Ignoring that there's massive amounts of prior art, it won't have much effect on security, because people would just run as Admin all the time anyway and never hit the button to "downgrade" their rights again.

  4. Re:Permissions? on Microsoft Bypasses HOSTS File · · Score: 1
    Why can't windows just make the host files read only.

    It can, and does.

  5. Re:Apple: "What have we done!!" on Triple Boot on MacBooks Working · · Score: 1
    However what I see in the last month is so far the opposite: Mac users trying to cram Vista, XP, 98, Linux, BSD on their machines.

    These people aren't even close to a typical user.

    If this trend is to show what the future holds, Apple might in the end be sorry about what they've done to their business.

    Their business is selling Macs. Someone running Windows on a Mac has no negative impact on this at all, as Apple has still sold them a Mac.

  6. Re:Why boot linux here? on Triple Boot on MacBooks Working · · Score: 1
    With Apple now shipping x86 computers people are starting to realize that yea Apple hardware really is higher than average PC quality.

    No, it's not. They use the same CPUs, the same hard disks, the same memory, the same chipsets, etc. In many cases they're even built on the same assembly lines.

    The "Macs have better hardware" has been nothing more than Mac Zealotry since *at least* the PCI PowerMacs, and probably longer (particularly when you take into account the higher prices).

    Apple x86 machines are jumping to the top of the list for performance vs price. Something that Apple Fanatics have been saying for years but no one really believed them.

    No, they're still _very_ average in terms of price/performance, *unless* you attach significant value to the form factor. If you're happy with a beige box, it's not difficult to better the price/performance of a Mac.

    The value in a Mac is not - and never has been - the hardware. It's the software that is packaged along with it.

  7. Needs to be properly setup on Got Root - Should You Use It? · · Score: 1
    Sudo only delivers real benefits if it is properly setup. That is, an /etc/sudoers that restricts which users (or groups) can run which commands, on which machines, etc, etc.

    If your /etc/sudoers is only a few lines long and basically does (and is used for) little more than allow users X, Y and Z get a root shell, then there's really little point to using it at all and you may as well just save the annoyance of having to run 'sudo bash', 'sudo su', 'sudo -i' - or whatever other incantation you use to get a root shell - and let people use root all the time.

  8. Re:Simple solution on Got Root - Should You Use It? · · Score: 3, Insightful
    I do this on all of my servers. And even more, there's this great command if you really need a root shell: sudo su

    Congratulations. You have now completely removed almost every reason for using sudo in the first place.

    If all you use sudo for is starting a root shell once you've logged in, then save yourself the hassle and just login as root, because you're circumventing basically every benefit sudo offers.

  9. Re:You've restated the problem on Best Buy 'Geek Squad' Accused of Pirating Software · · Score: 1
    Programs should not access to "per-user settings", they should only have access to Per-User/Per Application. An Application should only be able to change it's own settings, not the setting of an entire user's registry space.

    This is not really a problem with, or criticism of, the Registry, but one of the whole user-based security model (and one valid for rall major platforms, at least as they are typically used).

    You could facilitate what you want by running each application in its own user account. A bit messy, but effective.

    This way, removing registry entries would be easier.

    Not easier, safer. The operation would be identical, there would be just less (if any) opportunity for bugs in the uninstallation process to modify other data.

    Look, it's not worth arguing that the registry is a good design... we wouldn't be having this conversation if there was no problem.

    I have never said the Registry was flawless. The basic design, however, is sound. It's certainly miles ahead of anything based around editing text files.

    But I hope MS is breaking compatibility on this little gem in Vista, because if they don't, I'm not sure Vista will offer the ability to fend off badly written (and malicious)programs from hijacking the registry easily, just as they do in XP/2000/NT.

    Programs could hijack textfiles jsut as easilly (more so, if anything).

  10. Re:The Windows Registry is at fault on Best Buy 'Geek Squad' Accused of Pirating Software · · Score: 2, Informative
    When used properly, the registry really isn't all that bad. While I think .ini files were better, the registry isn't necessarily a bad thing. However, the security sucks.

    The security in the Registry is excellent. Each individual key has per-user ACLs. It's much better security than plain text files are, or could practically be.

    The *problem* - as you say later - is that lazy/incompetent/ignorant application developers write their applications badly.

    This should be locked down just like the rest of Program Files, so admin/root is the only one who can make changes. Put per-user settings in Documents and Settings/username/Application Data.

    This is exactly how the Registry works - system-wide setting go in HKEY_LOCAL_MACHINE and per-user settings go in HKEY_USERS\{SID}. Again, the problem is developers, not the Registry.

    The only real problem with the Registry is that it is completely backed onto binary data files. Of course, when you consider it was specified and designed back in about 1990 when a 33Mhz 386 was a blazingly fast machine, that's an understandable design choice.

  11. Re:"Elegant?" on Useful Apps for First-Time Windows Users? · · Score: 1
    I'd love to help, but I can't stop laughing from seeing the words "elegant" and "windows" together. And, is it just me, or is the summary itself dripping with sarcasm?

    It's not just you - the whole thing pretty much screams out "troll".

  12. Re:What software amazes me? on Useful Apps for First-Time Windows Users? · · Score: 1
    With the exception of a two-week forray into that fraud that Microsoft called Windows NT's POSIX.1 compatability layer [...]

    The problem is not so much that NT's POSIX.1 layer was "fraudulent", it's that POSIX.1 on its own isn't particularly useful for anything fancy.

  13. Re:Wrong argument on Microsoft To Appeal EU Decision · · Score: 1
    Yeah, but "abusing monopoly position", what the hell does that mean? That is so vauge as to be meaningless. A law like that isn't a law, it is a catch-all disclaimer to allow the government to go after any company it feels like.

    It's not just the "abuse" part that's vague, either. "Monopoly" is in no way formally and strictly defined, and a company really has no way of knowing that it is a monopoly until a court of law finds it to be one (at which point completely normal business practices suddenly become "monopoly abuse"),

  14. Re:Yeah. on Microsoft To Appeal EU Decision · · Score: 1
    Uh, Linux and OS X didn't need to be patched to fix RPC exploit worms that rebooted two-thirds of the world's computers, or database server worms that gave SQL Server the dubious distinction of being the platform for the fastest spreading worm in history.

    Mainly because Linux and OS X - combined - still only represent around 1 in every 20-odd computers.

    Even a "perfect storm" of Linux or OS X worms wouldn't have anything close to the impact of a relatively low-key Windows worm. There's simply not enough machines running either of them out there for it to spread especially fast or hit especially hard.

    There have been *serious* flaws in OS X and Linux that have been patched since their release (more for Linux, obviously, since it's been around longer). Don't kid yourself otherwise. The reason these flaws have little noticable impact is because, relatively speaking, OS X and Linux have next to zero internet presence.

    Try dropping a completely unpatched, default install of Redhat 7.x, 8.x or 9.x on a fast internet connection and see how long it lasts.

  15. Re:You have to fight.. on Is Corporate Speak Invading Your IT Department? · · Score: 1
    Just like legalese can be used to frustrate or to clarify in a way no other mode of language can.

    Legalese is required because the people writing it know they can't trust dishonest people (like them) to do the right thing - thus what they can and can't do needs to be spelt out in painfully explicit detail.

    Suppose the poster is a business major who has been thrust into the IT/S division of his company, asking us business folk if he should have to learn these ridiculous technical terms in order to communicate with the people he has to deal with every day.

    Difference is technical terms have real, concrete, well-defined meanings and are used to *clarify* discussion, whereas corporate-speak is typically the exact opposite.

  16. Re:A big reason Apple doesn't want to sell OS X on Bunk Camp - Apple Gets It Wrong? · · Score: 1
    Eh. NTFS's performance still goes to hell when it fragments heavily, which happens rapidly when the drive is near full. This sucks if you're moving around large amounts of data. Windows gets very, very unusable (and very unstable) when the filesystem starts to get seriously fragmented. Yah, you shouldn't fill NTFS volumes over 85% full - but it's not like the operating system even warns you that all hell is about to break loose.

    I've yet to experience this sort of behaviour on any Windows system, although I've heard it bandied around frequently. I suspect it's much like that "Internet Explorer is part of the Windows kernel" that gets similarly parroted on Slashdot. Sure you're not repeating hearsay dating from NT 3.x and 4.0 ?

    So "Windows, on well made hardware, with good drivers, politely used, is very stable"?

    Yes. I can't even remember the time I saw a Windows NT machine crash where faulty hardware or bad drivers wasn't directly responsible (and easily identifiable as such).

  17. Re:A big reason Apple doesn't want to sell OS X on Bunk Camp - Apple Gets It Wrong? · · Score: 1
    [...]as long as you don't connect to the internet, [...]

    Bollocks.

    [...] or run any apps on it, [...]

    More bollocks.

    or use any devices (even well made ones) that use the same portion of the kernelspace at once.

    Just like any other OS (assuming you're trying to say what I think you're trying to say).

    The difference is that Windows doesn't do a good job of implementing levels of trust.

    You don't appear to have the requisite technical knowledge to make that judgement.

    What I don't expect is that they'll be able to bring down my OS, or any portion of it, when they do.

    If you've never seen Linux or OS X kernel panic, you haven't been using either for very long.

    Further, I expect that drivers written by Microsoft or that are Microsoft certified shouldn't have any compatibility problems. Otherwise, why did they get certified?

    You may find this enlightening.

    The USB subsystem shouldn't have the privileges to crash the rest of the OS. That's a design flaw.

    Uh, it's a *hardware driver*. Hardware drivers (mostly) run in kernel space. Hardware drivers can most certainly crash the system.

    This is not a design flaw, it's a design choice - one made for performance. Rest assured that faulty drivers are just as capable of bringing down Linux and OS X, as they are Windows.

    This is just a single example that is typical of what you see in Windows, and the logic behind why I say that Windows itself is not stable. There are many, many others.

    It's not typical behaviour at all. Your hardware is broken, and this is not Windows's fault.

  18. Re:RunAs on Ambidextrous Linux/Windows Virus · · Score: 1
    I have several programs that I install as Admin that will not install correctly using RunAs.

    Can you be a bit more specific ? What doesn't work ?

  19. Re:A big reason Apple doesn't want to sell OS X on Bunk Camp - Apple Gets It Wrong? · · Score: 2, Interesting
    Linux runs on tons more platforms and configurations than Windows does, and it has never had a problem with stability as far as I'm aware.

    There are no shortage of stability problems with Linux when you get into the crappier end of the hardware scale, just like Windows (as I have been reminded over the last week losing more hair to machines with VIA chipsets).

    MS isn't stable, because they don't care about stability

    Windows on well made hardware, and with good drivers, is extremely stable. If your Windows installation is not stable, Windows is not the problem - it's either broken hardware or bad drivers.

  20. Re:Not to worry on Ambidextrous Linux/Windows Virus · · Score: 1

    The system design and development model has led to two things, a shortage of privilage escalation flaws (flaws isn't good enough, they have to allow a user account to gain root under conditions the virus can create) and a short lifespan of any such flaws that exist.

    Very few pieces of malware need elevated privileges to do their "job".

    grandchild.jpg.exe can never work on linux, period. You have to get the user to open a prompt cd to /home/granny/.email/files then chmod +X grandchild.jpg.exe, THEN ./grandchild.jpg.exe (in linux you have to create a launcher to execute a file in the gui, double-clicking will not work.

    Users are happy to open password protected zipfiles to get at the empty promise of porn, viagra and free iPods, and you think a simple command like "chmod u+x file" is going to slow them down ?

  21. Re:Not to worry on Ambidextrous Linux/Windows Virus · · Score: 1
    Windows users are prepared for viruses and the reason Linux users do not sweat them much is not because linux viruses do not exist; it is because system design makes their impact minimal.

    s/system design/user behaviour/

  22. Re:RunAs on Ambidextrous Linux/Windows Virus · · Score: 1
    Secondary processes started by the installer default back to the standard user, and then fail because they require admin priveledges.

    No, processes started by another process inherit its privilege level

    (This is so trivially simple to demonstrate that I'm amazed you'd even try and say it happens.)

  23. Re:Wow, this is incredible on Apple Officially Releases Beta Dual Boot Loader · · Score: 1
    Congratulations on your very good fortune. Tens of millions of other NT users haven't been so lucky.

    "Luck" has nothing to do with it.

  24. Re:who do you want to sue today? on Microsoft Launches Linux Labs Website · · Score: 1
    >More people spouting the FUD about how the GPL is "viral".

    It's not FUD. It might not be the nicest way of putting it, but "viral" describes what the GPL does and was designed to do. Some GPLed code getting into a proprietry, commercial software codebase would have the potential to be very bad, especially if it happened deliberately.

  25. Re:GPL on Microsoft Launches Linux Labs Website · · Score: 1
    I used the word 'steal' not because it's technically correct, but in the spirit of the action.

    You cannot "steal" something that is being given away.

    Microsoft has done nothing but criticize and attack Open Source, but they'll exploit the efforts of that community.

    Microsoft "criticise and attack" the *GPL*, not "Open Source".

    However, they did it because it was convenient, not because it was morally right.

    People develop under the BSD license so their code can be extensively distributed and reused. What is "immoral" about doing what they want ?