Okay, maybe you're not him, but you sound like him (*Doofus* manager I once worked with). So I feel somewhat obligated to educate you.
This Waterfall_method says it was first alluded to in 1956 (two years after I was born, fwiw). I only learned about it in the late '80s in programmer school. "Analysis, Design, Implementation, Testing, Maintenance." You're supposed to iterate between them (at any phase you're in when you find a flaw or learn something new, you go back and re-do whatever relevant phases need to be re-done, then continue).
This's all deprecated now. More modern buzzwords have since been invented, (theoretically) obsoleting it.
So, no, not all bugs are "just design flaws". Sometimes, the architecht designed a perfect building but it was built by dorks who didn't know what they were doing. Sometimes, the architect was a dork and the builders did the best they could with a flawed design. Getting the picture? !@#$ups can happen anywhere in the chain of events and you can't blame the designer (or implementer, or tester,...) for all of them.
"... The acquisition expands the technological breadth of our product line by expanding our abilities to offer PKI technology throughout the product line."
It'll be very interesting watching VASCO in the future, given this fiasco. Are heads at VASCO going to roll considering their abysmal research prior to acquiring DigiNotar? Did they even have any technical people ride along with DigiNotar's operations staff prior to signing on the dotted line? Will the board of directors keep their seats (and if so, why)?
Ya gotta love it when doofuses are shown to be such, live and in Technicolor, splashing their incompetence onto the headlines world-wide. Evolution in action! If I was a VASCO stockholder, I'd be livid right now.
Popcorn time. I also wonder when the Anonymous's and LulzSec's of the world are going to tire of small fry like this and begin to train their sights on "Cloud Providers" like Amazon. If they manage to break into one of those outfits, holy !@#$, it's going to make a lot of noise.
One issue. You agreed to the deal, and therefore you would lose your clearance and job.
No I didn't. I just said, "Deal!" That doesn't mean anything.
Besides, even if I did, the cops are allowed to lie through their teeth to catch the bad guys. I'm just doing what they do. Bad guys don't deserve the truth, nor do they have any right to expect it.
This is the third "OMG which router to buy?" question in the last ~6 months. It is getting old.
Uh huh. As if technological improvements move at the speed of geology. Six months is a !@#$ of a long time in this business.
Take these questions to smallnetbuilder.com or hardforum where they belong.
I'm not a network admin. I've never heard of either of those. Hence, why we're talking about this here, and thanks for the input, seriously. I'll look into them.
You bring up a good point. Not only should the interviewer come clean but we need background checks and social media reports on employees of the company doing the screening.
"Do you have any questions for us?[*]"
"Yes. As you've just admitted you've been digging into my private life to see if I'm suitable for you, I'd like access to your files on the people I'd be working with, up to and including the CEO, to ensure they'll be suitable for me. Don't worry, it'll all be kept confidential. If I'm placing my professional reputation on the line, I deserve to know who I'll be dealing with. It's only fair."
[*] I have never known what to do with that question. "Do you use version control? What's the ratio of "quitters" vs. "fired" among your former employees/contractors? Who were my potential supervisor's last five employers, and what are their references' contact details? Who've held this position in the past, and what are their contact details?"
"Just do this one little thing for me, and you got $5000. Nobody will know, and it won't hurt anyone."
"Deal!"
Then wire the living daylights out of all potential future meeting places (the fibbies will be overjoyed for the chance to help with that), and I'm a hero.
In the Defense world, it's done because someone with a large amount of debt or crappy credit score is a potential security risk.
Yeah, but it's still wrong. As a male Homo Sapien, I'm potentially lots of things, including the next Galileo or Jeffrey Daumer.
It ought to be something that ongoing background checks keep tabs on. Is my debt load shrinking? Does my bank acct. show any odd financial transactions or is my spending outstripping my salary and not reflected in my bank transactions?
Do they want the best, or just grey, featureless drones who can fly under the radar (a la Aldrich Ames)?
I was just wondering what they would think if you showed up at the interview (assuming you were offered one) with the same sort of background check on the interviewer. Perhaps a few of those stories hitting the newspapers would get them to think twice about this practice.
Why are they even bothering to check credit histories of applicants? It's a recession, the guy's looking for a job to pay bills. What's his credit history got to do with employment (assuming he's not going to be handling money)?
Objections noted, but I'm unconvinced any are show-stoppers.
Writing into a shared database via cronjobs on different boxes has a few implications: -the credentials do share write access to the database - if not per user account, then per permission. You usually don't give each host its own table to log into...
Why? I would give each host its own table, or perhaps a small block of machines one table. This is hardly going to be a vast blob of data going back and forth here. Besides, it doesn't all have to go into one db, nor one db on one machine. Hell, it could be a db on each machine with exports scp'd to a central log server (or ten).
If a single box is misbehaving (i.e. the hostname "got lost"), you'll end up searching for that box forever - unless you also started logging hostname and IP address, both retrieved via the SQL connection and not as cronjob output.
That makes no sense to me. No, I've never worked anywhere that had 30k hosts on-line, but simple documentation practices scale. Yeesh. Hostname:location:IP Address:... would make a very small db entry, considering the binary blobs rdbs are comfortable handling these days.
-Servers need to be NTP-synchronized - which on the other hand results in all of those cronjobs connecting to your shared database at the same time...
Get real! Of course you don't have them try to do that.
-When your cron daemon dies...
Oh come on. Now I know you're just making stuff up.
What's with the idiot ACs ending up on Slashdot? The bar keeps dropping lower and lower. Now we have "I want to set up l33t home LAN with WiFi. What should I use?"
FTFY.
I'd start with a regular carpenter's hammer. Start with your little toes, then work up to your big toes, then your knees. For variety, consider alternating between smashing surface and clawing surface.
Stop acting like a 13 year old. It's neither interesting, nor funny.
I was rolling out Big Brother Network Monitor a decade ago. It was well capable of doing this.
Today, I'd use an RDB that stored output from perl:DBI cronjobs running on each machine, and another job that checked the db and made sure all that ought to be happening had reported in successfully recently. Anything that hadn't would trigger an email to someone to look into it.
Easy to develop, implement, extend, and maintain.
No, I don't want to connect to FB just to read the article. Post it somewhere else if you want it read.
Yes, the botnet operators also are responsible, but that doesn't mean the owners of the compromised systems are NOT. They are as well.
Sorry, but no. You may have 35 years under your belt, but my 80+ year old Mom doesn't, and the vast majority of mere users out there are a lot like her. When even highly educated users like doctors and lawyers are stupid around computers, how can you expect my Mom to do any better?
Case in point: she's on a Mac using Safari, and it drives her up the wall when the history pane doesn't show her favourite sites. I've told her that's not how it's supposed to be used and to use bookmarks instead. She wants to use the history window instead and can't understand why she shouldn't.
A friend of mine was using Windows and got it infected. I built him a Linux box and showed him how to use it. Problem solved? No, because he kept going back to using his infected Windows box, wondering why his ISP cut him off every time he used it (because his ISP determined his machine was infected).
I've seen just as stupid !@#$ from doctors and lawyers.
What you want is for your politicians to write a law that forces all computer users to get a driver's license before being allowed on the net, and that isn't going to happen since the vast majority of politicians are lawyers who're just as stupid around computers as is my Mom. For most users out there, computing is still magic to them and I doubt that's going to change anytime soon. They see no need and are quite capable of blaming something/anything else for their ignorance.
Besides, it'd be a lot simpler to force ISPs to police their users. They have the expertise and at least some are doing it already. What's wrong with the rest of them?
A lot of African-Americans fit the "nigger" stereotype. If it is okay for Canadians to be bigots (and still consider themselves better), is it okay for me to be racist?
What does "dumb Americans" have to do with your racist attitude, or blacks at all?
Lots of your congresscritters are dumb/stupid/whatever. That's got nothing to do with any particular American's DNA or parentage.
I wish you dorks would spend *any* time at all on introspection before blaming others first for your faults.
I'm sure that a lot of Canadians would like to overthrow the US government...
Perhaps. I'd prefer it if they'd just fix their gov't.
When Canada was formed, we were looking across the border seeing mobocracy (the US' Civil War) in action, and it doesn't seem that much has improved South of here since. Yeah, WWII was a terrific high point for the US (thanks!) and the Civil Rights Movement was great, but damn(!), is the US legal system, health care system, economic (Wall St.) system,... broken! Their politicians are total sell-outs to special interests, the MAFIAA/Entertainment Industry (WTF?!?) appears to be in complete control, and JWST/NASA is begging for funds while the military gets damned near anything it wants via black budgets (don't get me wrong; thanks for potting that A-Hole bin Laden, and I love Seal Team 6, but geez, so much other really bad !@#$ is going on, it's ridiculous).
Why so little of all that bad !@#$ has any chance of getting cleaned up in my lifetime is what confuses me about the US. Does the US only do the Right Stuff when a Pearl Harbour happens or the Soviets might get there first? Seems so from here. The BS from their elected representatives they put up with is nonsensical.
The US's not much looking these days like the country their founding fathers envisioned it should be.
Of course that's because our law, thanks to the Republicans,...
FFS, stop doing this crap! Republicans blame everything on Democrats, and Democrats blame everything on Republicans. They're both to blame! Damn, I'm sick of this rose coloured glasses political polarization you fools keep dragging out.
Here's a couple for you. Democrats got us into VietNam. Republicans got us out of VietNam! On the other side, Republicans got us into Iraq and Afghanistan. On the other side, Obama is keeping us in Afghanistan! Mix in the fact that both Republicans and Democrats voted with the majority in each case. Who's fault is any of it now?
Lose that stupid "us vs. them" crap and start rubbing those two brain cells of yours together already!
When the economy is severely hit and many of the citizens of the nation are in search of their livelihood, I think, Nasa's experiments are cutting the budget that is more required for the citizens of the nation.
You should be complaining about the US military's budget, not NASA's.
For starters, IANAA (I am not an astronomer) but I AM dating one...
I envy you.:-)
She explained that cancellation of JWST would effectively nullify the careers of many recent and soon to graduate astronomers, and put a ~50 year hold on the progression of astronomy.
WADR, they said the same about killing the SSC, that it would set particle physics back $yada decades. LHC appears to have made that argument moot.
I'm glad JWST (or Hubble successor) is so far supported, and it would be a shame to throw away all that's been invested in it so far.
I'd also like to see the _process_ of doing stuff like this fixed, so $shit like this can't happen. With Congresskritters sticking their noses into the process at the least provocation, this sort of stuff is always going to be a crap shoot. Why isn't responsibility to GET IT DONE farmed out to a committee that oversees it from then on, with no further congressional interference until it's done?
Yeah, yeah, funding. Well, hell, they said they wanted it, so they ought to fund it, or not vote for it in the first place!
Good. Axe the colonize mars pipe dream and put that money on proper science. This telescope is capable of directly imaging alien planets
What?!? Give up on the idea of anyone actually doing something for humanity to get off this rock and diversify, in favour of just being able to look at stuff that'd take a generational ship to get to.
And how would a delay help? As soon as trading resumed, it would be speed of light machines v.s my fat fingers.
You know that game in casinos with the spinning wheel and the little ball?
"Players" place their chips on numbers they think the ball's going to land on. At some point, the croupier announces "No more bets." Then he spins the wheel and launches the ball. When it lands, winners and losers are tallied, then you start over at the beginning.
Your fat finger trades and the HFT trades can go on side by side until the moment trades are executed. HFT can get a lot more trades done than you and your fat fingers in that time, but HFT will be constrained from gaming the system via milking the milliseconds between trades.
Slashdot Mirror
Aren't all bugs just "design flaws"?
Vince?!? WTF are you doing here?!?
Okay, maybe you're not him, but you sound like him (*Doofus* manager I once worked with). So I feel somewhat obligated to educate you.
This Waterfall_method says it was first alluded to in 1956 (two years after I was born, fwiw). I only learned about it in the late '80s in programmer school. "Analysis, Design, Implementation, Testing, Maintenance." You're supposed to iterate between them (at any phase you're in when you find a flaw or learn something new, you go back and re-do whatever relevant phases need to be re-done, then continue).
This's all deprecated now. More modern buzzwords have since been invented, (theoretically) obsoleting it.
So, no, not all bugs are "just design flaws". Sometimes, the architecht designed a perfect building but it was built by dorks who didn't know what they were doing. Sometimes, the architect was a dork and the builders did the best they could with a flawed design. Getting the picture? !@#$ups can happen anywhere in the chain of events and you can't blame the designer (or implementer, or tester, ...) for all of them.
Failure's a team effort.
Maybe this is a *CRAZY* conspiracy theory but I think NASA was trying to take out the Enterprise in nearby Vulcan.
Maybe this is a *CRAZY* conspiracy theory?
No, NASA doesn't need to help with that. The town of Vulcan's mayor's trying to kill every connection between the town and ST. Killjoy.
"... The acquisition expands the technological breadth of our product line by expanding our abilities to offer PKI technology throughout the product line."
It'll be very interesting watching VASCO in the future, given this fiasco. Are heads at VASCO going to roll considering their abysmal research prior to acquiring DigiNotar? Did they even have any technical people ride along with DigiNotar's operations staff prior to signing on the dotted line? Will the board of directors keep their seats (and if so, why)?
Ya gotta love it when doofuses are shown to be such, live and in Technicolor, splashing their incompetence onto the headlines world-wide. Evolution in action! If I was a VASCO stockholder, I'd be livid right now.
Popcorn time. I also wonder when the Anonymous's and LulzSec's of the world are going to tire of small fry like this and begin to train their sights on "Cloud Providers" like Amazon. If they manage to break into one of those outfits, holy !@#$, it's going to make a lot of noise.
One issue. You agreed to the deal, and therefore you would lose your clearance and job.
No I didn't. I just said, "Deal!" That doesn't mean anything.
Besides, even if I did, the cops are allowed to lie through their teeth to catch the bad guys. I'm just doing what they do. Bad guys don't deserve the truth, nor do they have any right to expect it.
This is the third "OMG which router to buy?" question in the last ~6 months. It is getting old.
Uh huh. As if technological improvements move at the speed of geology. Six months is a !@#$ of a long time in this business.
Take these questions to smallnetbuilder.com or hardforum where they belong.
I'm not a network admin. I've never heard of either of those. Hence, why we're talking about this here, and thanks for the input, seriously. I'll look into them.
I like this too:
You bring up a good point. Not only should the interviewer come clean but we need background checks and social media reports on employees of the company doing the screening.
"Do you have any questions for us?[*]"
"Yes. As you've just admitted you've been digging into my private life to see if I'm suitable for you, I'd like access to your files on the people I'd be working with, up to and including the CEO, to ensure they'll be suitable for me. Don't worry, it'll all be kept confidential. If I'm placing my professional reputation on the line, I deserve to know who I'll be dealing with. It's only fair."
[*] I have never known what to do with that question. "Do you use version control? What's the ratio of "quitters" vs. "fired" among your former employees/contractors? Who were my potential supervisor's last five employers, and what are their references' contact details? Who've held this position in the past, and what are their contact details?"
Cackle. Evil grin. Bwa, ha, haaa! >:->
"Just do this one little thing for me, and you got $5000. Nobody will know, and it won't hurt anyone."
"Deal!"
Then wire the living daylights out of all potential future meeting places (the fibbies will be overjoyed for the chance to help with that), and I'm a hero.
In the Defense world, it's done because someone with a large amount of debt or crappy credit score is a potential security risk.
Yeah, but it's still wrong. As a male Homo Sapien, I'm potentially lots of things, including the next Galileo or Jeffrey Daumer.
It ought to be something that ongoing background checks keep tabs on. Is my debt load shrinking? Does my bank acct. show any odd financial transactions or is my spending outstripping my salary and not reflected in my bank transactions?
Do they want the best, or just grey, featureless drones who can fly under the radar (a la Aldrich Ames)?
Sounds like a great way to get a job. "So, Bill, I see you like cosplay. Transvestite cosplay. Interesting. So, what kind of salary are you offering?"
I like it. :-)
"Assuming I get the job, no-one need hear about that, 'kay?"
I was just wondering what they would think if you showed up at the interview (assuming you were offered one) with the same sort of background check on the interviewer. Perhaps a few of those stories hitting the newspapers would get them to think twice about this practice.
Why are they even bothering to check credit histories of applicants? It's a recession, the guy's looking for a job to pay bills. What's his credit history got to do with employment (assuming he's not going to be handling money)?
Objections noted, but I'm unconvinced any are show-stoppers.
Writing into a shared database via cronjobs on different boxes has a few implications: ...
-the credentials do share write access to the database - if not per user account, then per permission. You usually don't give each host its own table to log into
Why? I would give each host its own table, or perhaps a small block of machines one table. This is hardly going to be a vast blob of data going back and forth here. Besides, it doesn't all have to go into one db, nor one db on one machine. Hell, it could be a db on each machine with exports scp'd to a central log server (or ten).
If a single box is misbehaving (i.e. the hostname "got lost"), you'll end up searching for that box forever - unless you also started logging hostname and IP address, both retrieved via the SQL connection and not as cronjob output.
That makes no sense to me. No, I've never worked anywhere that had 30k hosts on-line, but simple documentation practices scale. Yeesh. Hostname:location:IP Address:... would make a very small db entry, considering the binary blobs rdbs are comfortable handling these days.
-Servers need to be NTP-synchronized - which on the other hand results in all of those cronjobs connecting to your shared database at the same time ...
Get real! Of course you don't have them try to do that.
-When your cron daemon dies ...
Oh come on. Now I know you're just making stuff up.
'We've found out that some system information such as IP addresses have been leaked and that's creepy enough,' the spokesman added."
Er, what?
nslookup www.mhi.co.jp
Server: UnKnown
Address: 10.0.1.1
Non-authoritative answer:
Name: www.mhi.co.jp
Address: 202.228.55.2
I must be missing something. I'm sure a little digging would turn up their production network FQDN if it's Internet facing (which it apparently is).
What's with the idiot ACs ending up on Slashdot? The bar keeps dropping lower and lower. Now we have "I want to set up l33t home LAN with WiFi. What should I use?"
FTFY.
I'd start with a regular carpenter's hammer. Start with your little toes, then work up to your big toes, then your knees. For variety, consider alternating between smashing surface and clawing surface.
Stop acting like a 13 year old. It's neither interesting, nor funny.
I was rolling out Big Brother Network Monitor a decade ago. It was well capable of doing this.
Today, I'd use an RDB that stored output from perl:DBI cronjobs running on each machine, and another job that checked the db and made sure all that ought to be happening had reported in successfully recently. Anything that hadn't would trigger an email to someone to look into it.
Easy to develop, implement, extend, and maintain.
No, I don't want to connect to FB just to read the article. Post it somewhere else if you want it read.
Yes, the botnet operators also are responsible, but that doesn't mean the owners of the compromised systems are NOT. They are as well.
Sorry, but no. You may have 35 years under your belt, but my 80+ year old Mom doesn't, and the vast majority of mere users out there are a lot like her. When even highly educated users like doctors and lawyers are stupid around computers, how can you expect my Mom to do any better?
Case in point: she's on a Mac using Safari, and it drives her up the wall when the history pane doesn't show her favourite sites. I've told her that's not how it's supposed to be used and to use bookmarks instead. She wants to use the history window instead and can't understand why she shouldn't.
A friend of mine was using Windows and got it infected. I built him a Linux box and showed him how to use it. Problem solved? No, because he kept going back to using his infected Windows box, wondering why his ISP cut him off every time he used it (because his ISP determined his machine was infected).
I've seen just as stupid !@#$ from doctors and lawyers.
What you want is for your politicians to write a law that forces all computer users to get a driver's license before being allowed on the net, and that isn't going to happen since the vast majority of politicians are lawyers who're just as stupid around computers as is my Mom. For most users out there, computing is still magic to them and I doubt that's going to change anytime soon. They see no need and are quite capable of blaming something/anything else for their ignorance.
Besides, it'd be a lot simpler to force ISPs to police their users. They have the expertise and at least some are doing it already. What's wrong with the rest of them?
Get Real RIAA. Everything he downloaded is no where near 2250 a track, let alone 150,000 a track. This is just more money for those greedy companies.
No, it's not. There's very little chance they'll ever see that money. This's all about setting an example to deter others from trying the same thing.
I just don't see how people can't be satisfied with being multi-millionaires.
Ever heard about The Dog in a Manger?
Everybody has hobbies. Some people enjoy screwing others over whether there's any sense in doing so or not. Life.
A lot of African-Americans fit the "nigger" stereotype. If it is okay for Canadians to be bigots (and still consider themselves better), is it okay for me to be racist?
What does "dumb Americans" have to do with your racist attitude, or blacks at all?
Lots of your congresscritters are dumb/stupid/whatever. That's got nothing to do with any particular American's DNA or parentage.
I wish you dorks would spend *any* time at all on introspection before blaming others first for your faults.
So the Canadians you meet thought that all Americans fit the "dumb American" stereotype?
A lot of the latter do fit the "dumb American" stereotype. Look at the US Congress for proof.
I'm sure that a lot of Canadians would like to overthrow the US government...
Perhaps. I'd prefer it if they'd just fix their gov't.
When Canada was formed, we were looking across the border seeing mobocracy (the US' Civil War) in action, and it doesn't seem that much has improved South of here since. Yeah, WWII was a terrific high point for the US (thanks!) and the Civil Rights Movement was great, but damn(!), is the US legal system, health care system, economic (Wall St.) system, ... broken! Their politicians are total sell-outs to special interests, the MAFIAA/Entertainment Industry (WTF?!?) appears to be in complete control, and JWST/NASA is begging for funds while the military gets damned near anything it wants via black budgets (don't get me wrong; thanks for potting that A-Hole bin Laden, and I love Seal Team 6, but geez, so much other really bad !@#$ is going on, it's ridiculous).
Why so little of all that bad !@#$ has any chance of getting cleaned up in my lifetime is what confuses me about the US. Does the US only do the Right Stuff when a Pearl Harbour happens or the Soviets might get there first? Seems so from here. The BS from their elected representatives they put up with is nonsensical.
The US's not much looking these days like the country their founding fathers envisioned it should be.
Of course that's because our law, thanks to the Republicans, ...
FFS, stop doing this crap! Republicans blame everything on Democrats, and Democrats blame everything on Republicans. They're both to blame! Damn, I'm sick of this rose coloured glasses political polarization you fools keep dragging out.
Here's a couple for you. Democrats got us into VietNam. Republicans got us out of VietNam! On the other side, Republicans got us into Iraq and Afghanistan. On the other side, Obama is keeping us in Afghanistan! Mix in the fact that both Republicans and Democrats voted with the majority in each case. Who's fault is any of it now?
Lose that stupid "us vs. them" crap and start rubbing those two brain cells of yours together already!
When the economy is severely hit and many of the citizens of the nation are in search of their livelihood, I think, Nasa's experiments are cutting the budget that is more required for the citizens of the nation.
You should be complaining about the US military's budget, not NASA's.
For starters, IANAA (I am not an astronomer) but I AM dating one ...
I envy you. :-)
She explained that cancellation of JWST would effectively nullify the careers of many recent and soon to graduate astronomers, and put a ~50 year hold on the progression of astronomy.
WADR, they said the same about killing the SSC, that it would set particle physics back $yada decades. LHC appears to have made that argument moot.
I'm glad JWST (or Hubble successor) is so far supported, and it would be a shame to throw away all that's been invested in it so far.
I'd also like to see the _process_ of doing stuff like this fixed, so $shit like this can't happen. With Congresskritters sticking their noses into the process at the least provocation, this sort of stuff is always going to be a crap shoot. Why isn't responsibility to GET IT DONE farmed out to a committee that oversees it from then on, with no further congressional interference until it's done?
Yeah, yeah, funding. Well, hell, they said they wanted it, so they ought to fund it, or not vote for it in the first place!
Backseat drivers are never welcome.
Good. Axe the colonize mars pipe dream and put that money on proper science. This telescope is capable of directly imaging alien planets
What?!? Give up on the idea of anyone actually doing something for humanity to get off this rock and diversify, in favour of just being able to look at stuff that'd take a generational ship to get to.
Brillant [sic]. :-P
And how would a delay help? As soon as trading resumed, it would be speed of light machines v.s my fat fingers.
You know that game in casinos with the spinning wheel and the little ball?
"Players" place their chips on numbers they think the ball's going to land on. At some point, the croupier announces "No more bets." Then he spins the wheel and launches the ball. When it lands, winners and losers are tallied, then you start over at the beginning.
Your fat finger trades and the HFT trades can go on side by side until the moment trades are executed. HFT can get a lot more trades done than you and your fat fingers in that time, but HFT will be constrained from gaming the system via milking the milliseconds between trades.
Or, that's the theory.
Microwulf.