Does it have anything along the lines of yum verify (http://bencane.com/2013/12/23/yum-plugins-verifying-packages-and-configurations-with-yum-verify/) or yum history (http://www.cyberciti.biz/faq/yum-history-command/)?
Genuine question! Last time I properly used FreeBSD I don't think pkg_add even existed? Have downloaded the 10-current ISO and will give it a try in a VM over the weekend..
I know what you're saying, but to me if you're coding to a specification (even if he wrote it himself!) which says "if X then Y", surely you should create a test to ensure it meets the spec..?
Or okay, he didn't create the test, but perhaps someone else should have before integrating the patch. But yeah, hindsight, 20/20, etc:)
you cannot fail a Windows Server instance over from one physical Windows Datacenter server to another and then fail it back in under 30 days without violating the license of the Windows Server instance.
If both servers have datacenter licenses, then you can.
... licenses may only be reassigned to new hardware after 90 days. This, however, does not restrict the dynamic movement of virtual OSEs between licensed servers. As long as the servers are licensed and do not simultaneously run more instances than the number for which they are licensed, you are free to use VMotion and System Center Virtual Machine Manager to move virtualized instances between licensed servers at will.
But who decides when Sovereignty starts? Obviously it's the guys with the bigger guns, but just because a land is populated by an unsophisticated society (by european standards) that did not value land ownership, shouldn't mean that they lose control of their land and get relegated to small reservations with a fraction of the territory they used to live in.
Actually, Chrome also installs a service which runs as LOCAL SYSTEM, just like Firefox now has. Local system is higher than administrator, it's kernel level, for all intents and purposes.
If someone breaks the Chrome service, then it's just as bad as breaking the Firefox service..
My question is why do the client machines (heck, even servers) need direct unfettered internet access? Block everything outbound, use a proxy and you have control of it - especially if you have a proxy that can intercept SSL and runs AV.
Also, assuming Windows, you can lock down exactly what software is allowed to run. Don't have admin rights? Can't modify what can run, can't install new software, can't run malware.
2) The fine grained ACLs are good, but they often don't seem to work properly. On Win2k8 I've encountered cases where an account belongs to the Administrator's group but it somehow does not have enough permissions to rewrite/save a file that "full access" permissions to those in the Administrator's group. Why can't I open the file, change it and save it back? When I use that account to copy a file onto that file I get a "privilege escalation" prompt and if I "OK" it it overwrites the file. So the account is definitely in the Administrators group already...
It's UAC. If you're in the Administrators or Domain Admins group and have UAC turned on, you're not *really* in that group. If you start your editor by right clicking it and choose Run as Admin (receiving the UAC prompt), the editor is now running with Admin/Domain Admin credentials, so you can edit that file as you see fit.
Just double clicking the file opens it as a normal user, without either of those groups, which is why you can't save over the top of it. If this really annoys you, change the permissions so another group you're a member of has rights to it.
1) Add notepad, texteditor and hexeditor shortcuts to your SendTo folder. If you are unclear on where your SendTo folder is (because of roaming profiles or other weirdness), go to start, and run shell:sendto
I would add WinMerge to that as well - that's been useful a few times when exporting registry settings and the like.
As I don't live in a country that's very sue-happy (yet, we're heading that way), yes! Please take the wheel! A snooze on the way to/from work would be excellent, thanks.
So what's to stop me registering your name/username on a site you don't already use, creating a key and uploading that? It's authenticating a person, but that person's not necessarily you.
With you on the banking example, but if they're asking an agency they trust, how is that any different to a third party/middle man?
Okay, how about Site X that you visit and enjoy (say, Slashdot? Youtube? Whatever!) implements authenticated comments only. How do they get your key to prove you're you? What about if you bought something from Asia/Europe/America - another country/region to yours - which requires it?
It's not just physical places that have this problem:)
Slashdot Mirror
Does it have anything along the lines of yum verify (http://bencane.com/2013/12/23/yum-plugins-verifying-packages-and-configurations-with-yum-verify/) or yum history (http://www.cyberciti.biz/faq/yum-history-command/)?
Genuine question! Last time I properly used FreeBSD I don't think pkg_add even existed? Have downloaded the 10-current ISO and will give it a try in a VM over the weekend..
I know what you're saying, but to me if you're coding to a specification (even if he wrote it himself!) which says "if X then Y", surely you should create a test to ensure it meets the spec..?
Or okay, he didn't create the test, but perhaps someone else should have before integrating the patch. But yeah, hindsight, 20/20, etc :)
If the RFC says the request should be dropped if the length doesn't match, surely that would be a specifically required test case?
Facebooks plans revealed:
http://vimeo.com/8569187
I'd love to see what AT&T would say if one of those companies suddenly piped up :)
I assume you're doing that on your router too?
Same with programmers and randomness :)
http://www.gergely.risko.hu/debian-dsa1571.en.html
ASP.Net outputs HTML which any decent browser (and even older IE's!) can read without issue..
you cannot fail a Windows Server instance over from one physical Windows Datacenter server to another and then fail it back in under 30 days without violating the license of the Windows Server instance.
If both servers have datacenter licenses, then you can.
Server 2008: http://download.microsoft.com/download/F/C/A/FCAB58A9-CCAD-4E0A-A673-88A5EE74E2CC/Windows_Server_2008_Virtual_Tech-VL_Brief-Jan_09.docx
P10, paragraph 5 above the box
Or Server 2012: http://download.microsoft.com/download/7/7/0/7707E736-4557-4310-9709-87358F7E6D1A/WindowsServer2012VirtualTech_VLBrief.pdf
P8, paragraph 2
VISA & co haven't even gotten the stupid contactless stuff everywhere yet - how on earth does PayPal expect to break in?
So root FS on ext3/4 and mount your large data volumes elsewhere as XFS. Job done?
The BIG thing to remember, make SURE the crook is DEAD.. a wounded burgler is deadly..
As someone once said - it's your word against their and if they have no words, well, who are they going to believe?
But who decides when Sovereignty starts? Obviously it's the guys with the bigger guns, but just because a land is populated by an unsophisticated society (by european standards) that did not value land ownership, shouldn't mean that they lose control of their land and get relegated to small reservations with a fraction of the territory they used to live in.
I say, do you have a flag?
Actually, Chrome also installs a service which runs as LOCAL SYSTEM, just like Firefox now has. Local system is higher than administrator, it's kernel level, for all intents and purposes.
If someone breaks the Chrome service, then it's just as bad as breaking the Firefox service..
My question is why do the client machines (heck, even servers) need direct unfettered internet access? Block everything outbound, use a proxy and you have control of it - especially if you have a proxy that can intercept SSL and runs AV.
Also, assuming Windows, you can lock down exactly what software is allowed to run. Don't have admin rights? Can't modify what can run, can't install new software, can't run malware.
Straight away you're far more secure.
When was the last time you so much as looked out a window when you heard a car alarm?
The first few weeks after I got a new car..
For a Windows XServer, try http://sourceforge.net/projects/xming/
Works great when I've needed it!
D) hire the right people (i.e., open at least one freaking office in SV/SF)
Why? Because that's where all the developers in the entire world are located?
It's UAC. If you're in the Administrators or Domain Admins group and have UAC turned on, you're not *really* in that group. If you start your editor by right clicking it and choose Run as Admin (receiving the UAC prompt), the editor is now running with Admin/Domain Admin credentials, so you can edit that file as you see fit.
Just double clicking the file opens it as a normal user, without either of those groups, which is why you can't save over the top of it. If this really annoys you, change the permissions so another group you're a member of has rights to it.
I would add WinMerge to that as well - that's been useful a few times when exporting registry settings and the like.
NotePad++ is ALWAYS better than Notepad! :)
As I don't live in a country that's very sue-happy (yet, we're heading that way), yes! Please take the wheel! A snooze on the way to/from work would be excellent, thanks.
So what's to stop me registering your name/username on a site you don't already use, creating a key and uploading that? It's authenticating a person, but that person's not necessarily you.
With you on the banking example, but if they're asking an agency they trust, how is that any different to a third party/middle man?
Okay, how about Site X that you visit and enjoy (say, Slashdot? Youtube? Whatever!) implements authenticated comments only. How do they get your key to prove you're you? What about if you bought something from Asia/Europe/America - another country/region to yours - which requires it?
It's not just physical places that have this problem :)
So where do I get your key from?
So they either didn't check what they had or just carried on buying any old random scanner or printer. That's not the best route for success..
It is indeed a fixed price, but it's still an upgrade license which was the original citation request.