I don't work for (X company) but I believe that (X company) is much better than (Y company) because they provide (X service) where (Y company) is lacking however blah blah blah.
If you dislike what EV1 did, then castigate them as a paying customer. Honestly a boycott of their hosting services sounds rather brash, especially with all the nightmares I have heard from people who screw it up. Ev1 to their credit had a long list of SATISFIED customers, who are now "reluctantly deciding" to leave. It wouldn't be a choice in my eyes, I hate SCO but they already got their money.
SCO has been on a slow plunge since Dec-Jan currently they're around 11 bucks a share from their 20 dollar high, with this announcement. I found particularly funny this graph.
I am not a stock speculator, but I do recognize that even with the "percieved" artificial inflation some are suggesting (aka market/stock manipulation) the price is still falling. IMO even the stockholders aren't believing this crock anymore.
It's not like ZDnet has a vested interest in Microsoft, not like they sold them TechTV and made a good deal on it or anything.... noooooo. I take all Z-D news with a grain of salt, especially since they normally take the pro-M$ side in most of their articles.
Well, I wouldn't say that, there isn't enough data there for a professional security expert to determine anything worthwhile out of the study....
What were the majority of attacks? How many were exploits that took advantage of underruns? How many were due to running apache? Did they do any analysis of UML based systems which are built around the eventual breach of security?
I'm at a loss. Whether or not the Linux servers or hell even the Windows servers followed a good security model (rings, single ring, regular auditing etc.) You can secure an operating system only so far, which is why you only portfw certain ports through the firewall.. Did they attack things like NFS and portmapper which shouldn't be on the outside world anyways?
A step by step analysis of THEIR analysis is needed to understand what they did to come to these results.
Lemme tell ya, following the INSTALL and README + FAQ reading through the mail archives etc etc... I haven't been able to find a functioning Redhat 9.0 Presario X1000 user with those two technologies. I am pretty sure (unless I have a hardware issue) that the ndiswrapper really doesn't like RH9... yeah yeah upgrade to fedora no more ximian etc.
This will be a binary only release, pretty much hands down, pretty much precluding the more esoteric and non US centric distros getting a driverset. Still the big deal for me isn't distro, OS lockin because of drivers is no news to me.
I sit here typing this on my Presario X1000 which would not agree to function with the DriverLoader hack. The only way I'll be able to get reliable support for mini-PCI wifi will be to replace the intel card with something like this.
Hell I'm not even worried about the wifi drivers until I can actually get decent battery life. Maybe if the speedstepping was 100% complete and verfied by an intel OSS coder then I'd take this to heart. Until then, this is just more of the same empty promises Linux drivers are "under development" and have been for nearly a year for the wifi, from intel's page anyways.
Well, since the genome isn't entirelly mapped out and studied properly, regardless of either one of the points given while arguing over this politically sensitive subject, there is no way to prove or disprove that it isn't a genetic disposition that causes this. Not that I'd be so silly to assume such a thing, but you never know... the modern abacus was perfected in China.
Now enough of that, the cultural "prejudice, bias etc etc." you are implyng by stating a stastical truth is ridiculous. If you have a theory as to why there is more or a predisposition to math in the Asian migrant/decendent families please share it. Perhaps it is because their education system and history of mathematics has had much longer, and is much more important in their cultural beliefs than it is to those without a thousand+ year old cultural history? (Speculation flame me whatever.)
Or maybe they haven't seen (and been affected by) "Dazed and Confused" "Ferris Bueler" "The Breakfast Club" or any other number of 70s-90s movies that demonstrate the students absolute rejection of Americian Public Education, yet.
Who knows, honestly I can tell you the abnormally high scores sure aren't the product of the education establishment who teaches to the LCD.
That's not true, if you've read any of the Hacking Exposed books you'd know that a driveless, floppyless, biosless, monitorless, inputless, networkless system is perfectly secure until you pull the plug.
Script kiddies, warez geeks, and pirates (AARRRR) use windows more often than not. Cygwin/VMware.
You better hope for the one who zipped it up, that they did it on the *nix box he got into, and not their Windows XP system... I'm sure there's some tag in the XP Zip somewhere leading back to his system (kinda like the mellissa guy, and his word doc)
You can get almost any code to compile if you just comment out the errors.... it's the 2nd part of #1 that will be that hard part.... even if it compiles with only 182397198273 warnings.
Blah blah blah obligatory product plug, even though I'm just a consumer and get nothing out of it... sooooo,
I purchased a 900 mhz logitech headset for use with teamspeak cause I'm geeky like that. Later I purchased a monthly plan with Dialpad (yeah yeah, they need a linux client...) The custom viop app you install is tiny, and doesn't require a reboot so I've been able to use it pretty much everywhere with a cheapy mic/headphone combo. It won't work when I'm booted to linux on the lappy but oh well.
However, the voice quality of the actual calls on a decent qos was pretty good and as long as nobody was edonkeying for porn on my non QOS connection it was about as clear as a cell phone call. The delay (1/2 a second at times) can get to you tho.
Someone has to die to recieve a darwin award, and even for there to be an honorable mention someone has to have died in relation to this idiots actions.... get with the times www.darwinawards.com
The site said she fingered him at 10 o'clock at applebee's... lesson learned? Don't take a woman on a date at end it at applebee's
Re:It's another case against OS monoculture
on
More MyDoom Gloom
·
· Score: 1
I've read this argument before, and I ran over it once more just to make sure, but what it says basically is in an environment where an infection would occur to a homogenous population that the fact that there is a significant number of systems diversified (OS wise) that the infection and subsequent overload of the network would not be affected in a marked way.
So... basically discounting the whole point of 90% of the discussion regarding monoculture this rebuttal doesn't discount the fact that my NAS never went down, or my qmail box hasn't been hit by a nasty network worm and needed to be reinstalled.... or my aging Alpha cluster running DNS has never been rooted.... --KNOCK ON WOOD-- The monoculture issue isn't solely a network health issue. Just as the Blaster worm is not solely a network health issue (as anyone having to remove the damn thing 120938123 times knows)
to the Court of First Instance, and it's expected they will do so, to drag out the process as long as possible.
Like any company anywhere given the opportunity to appeal wouldn't do so...
Monopolies are made because the financial benefits outweigh the legal risk. And because we give companies the chance to harrang a few million dollars litigiously.
Not like dumb people can sue a corporation because they spilled HOT coffee on themselves and win or anything.... Whatever happens in this case will matter little. Who cares if they are fined 10% of their revenue, subtract development and the.1% of manufacturing costs and that will probably barely even ding their bottom line.
I did this once for my own personal use just before I purchased my laptop. Many distros were nice, knoppix etc had lots of stuff by default... but much of it was unused for myself.
I wanted specialized distros that had more directed applications towards network management, and security. I found myself with basically Knoppix as my swiss army knife, Slackware live (SLAX now) as my scalpel for those hard to reach places with as many gui network utils as I could find. And the packetmaster for a quick linux prompt.
I thought these ruled... it seems to me there wasn't a whole lot of research... Did they just do a search for +live +cd on freshmeat and ignore everything else? The only distro I saw remotely bloat free was feather... which I decided against because for my mini-distro I'd rather use packetmaster.
BUT from what I understand, you are not obligated to pay any royalties for playing a song for your enjoyment, in your own home, for personal enrichment (aka education purposes) but only for public dissemination.
The issue isn't the royalty you must pay, never has been, it's the length of the copyright holding...
Not that trying to break popular myths hold upon slashdot ever works. I should just give up while I'm still sane.
Well when Microsquish made the switch to akamai recently for their software update hosting they broke many users ability to update and gave no release on how to fix it. Yes sure, it was just an issue of changing the default url to httpS instead of http and accepting the new certificate, but how many joe blows are going to know that? And no, an obscure technet article referenced by a letter and a number does not count as a release, especially in a service as important as software update has become for M$.
Even if SUS works properly, what is the purpose of needing to reboot every system that is updated. Can't this be taken care of with minimal (3-6 seconds) downtime while a service resets?
We all know by it's very nature Linux is more secure than microsoft. The sheer number of vulnerabilities available is not neccessarily a good measure of the actual security of the system. The measure is properly the number of vulnerabilities successfully taken advantage of easily and massively.
Let me sound off for a second here on the major issues I personally have with MS: CODERED NIMDA MIMAIL BUGBEAR KLEZ NACHI BLASTER
Good security practices, updating regularly and keeping up to date virus protection is an important part of stopping the above garbage from getting on your network. EVEN then, the affects of the above will still cause you downtime since your provider will have to scramble to deal with all the there-after DDoS.
The following is reason enough to be extra wary of any microsoft product security wise. Believe it or not, Nachi apparently SAVED M$ ass when it came to MS-Blaster. The number of source addresses scanning for 135 dropped by nearly 80% in these first weeks of 2004. AND there are STILL code red systems out there attaching to my Apache server occasionally. I sure don't see a massive SSH/Apache Code Red/Nimda style worm topping the bandwidth charts.
The duece you say, imagine that the web browser with 70% market share doesn't have a massive network-screeching-to-a-halt worm spreading with free reign?
Who cares anymore, it's been 8 years GNU/Linux+Apache+SSH has proven itself the most secure and reliable system for Web-Serving and MySQL+PHP is fast overtaking MsSQL+ASP as the most popular method of dynamic content distribution.
Once I start seeing massive changes to the netcraft survey, then I'll believe Microsoft has done enough to curb their Virus problems. The proof is in the puddin so to speak.
Uncle Jimbo: Now boys, boys, I, I need to get serious for a minute. I want you to understand a few basic rules of interplanetary rover RC, since this is your first time. First, don't ever walk with your gun unless the safety's on. Second, don't shoot anything that looks martian and third, never spill your beer on the mission control computer. Peter Theisinger: Uh, Uncle Jimbo, we don't drink beer. Uncle Jimbo: You what?!? Ned: Moh yeh, that's right, I don't think geeks drink beer, mmm. Jan Chodas: I like chocolate milk. Uncle Jimbo: Well, we'll be doing plenty of drinking on this trip; After all, scientific research sober is like... fishing... sober.
Slashdot Mirror
I don't work for (X company) but I believe that (X company) is much better than (Y company) because they provide (X service) where (Y company) is lacking however blah blah blah.
If you dislike what EV1 did, then castigate them as a paying customer. Honestly a boycott of their hosting services sounds rather brash, especially with all the nightmares I have heard from people who screw it up. Ev1 to their credit had a long list of SATISFIED customers, who are now "reluctantly deciding" to leave. It wouldn't be a choice in my eyes, I hate SCO but they already got their money.
litigious bastards
SCO has been on a slow plunge since Dec-Jan currently they're around 11 bucks a share from their 20 dollar high, with this announcement. I found particularly funny this graph.
I am not a stock speculator, but I do recognize that even with the "percieved" artificial inflation some are suggesting (aka market/stock manipulation) the price is still falling. IMO even the stockholders aren't believing this crock anymore.
It's not like ZDnet has a vested interest in Microsoft, not like they sold them TechTV and made a good deal on it or anything.... noooooo. I take all Z-D news with a grain of salt, especially since they normally take the pro-M$ side in most of their articles.
Digital boycott:
/etc/rc.custom.fw root@allservers.suck:/etc/rc.custom.fw
begin pseudo-junk:
echo iptables -A FORWARD -d www.ev1.net -j DENY>>/etc/rc.custom.fw
echo iptables -A FORWARD -d ev1.net -j DENY>>/etc/rc.custom.fw
echo iptables -A FORWARD -d ip.block.of.ev1.net -j DENY>>/etc/rc.custom.fw
scp
/root/scripts/reloadiptables.allservers
Well, I wouldn't say that, there isn't enough data there for a professional security expert to determine anything worthwhile out of the study....
What were the majority of attacks? How many were exploits that took advantage of underruns? How many were due to running apache? Did they do any analysis of UML based systems which are built around the eventual breach of security?
I'm at a loss. Whether or not the Linux servers or hell even the Windows servers followed a good security model (rings, single ring, regular auditing etc.) You can secure an operating system only so far, which is why you only portfw certain ports through the firewall.. Did they attack things like NFS and portmapper which shouldn't be on the outside world anyways?
A step by step analysis of THEIR analysis is needed to understand what they did to come to these results.
IMO FUD.
Lemme tell ya, following the INSTALL and README + FAQ reading through the mail archives etc etc... I haven't been able to find a functioning Redhat 9.0 Presario X1000 user with those two technologies. I am pretty sure (unless I have a hardware issue) that the ndiswrapper really doesn't like RH9... yeah yeah upgrade to fedora no more ximian etc.
This will be a binary only release, pretty much hands down, pretty much precluding the more esoteric and non US centric distros getting a driverset. Still the big deal for me isn't distro, OS lockin because of drivers is no news to me.
I sit here typing this on my Presario X1000 which would not agree to function with the DriverLoader hack. The only way I'll be able to get reliable support for mini-PCI wifi will be to replace the intel card with something like this.
Hell I'm not even worried about the wifi drivers until I can actually get decent battery life. Maybe if the speedstepping was 100% complete and verfied by an intel OSS coder then I'd take this to heart. Until then, this is just more of the same empty promises Linux drivers are "under development" and have been for nearly a year for the wifi, from intel's page anyways.
Well, since the genome isn't entirelly mapped out and studied properly, regardless of either one of the points given while arguing over this politically sensitive subject, there is no way to prove or disprove that it isn't a genetic disposition that causes this. Not that I'd be so silly to assume such a thing, but you never know... the modern abacus was perfected in China.
Now enough of that, the cultural "prejudice, bias etc etc." you are implyng by stating a stastical truth is ridiculous. If you have a theory as to why there is more or a predisposition to math in the Asian migrant/decendent families please share it. Perhaps it is because their education system and history of mathematics has had much longer, and is much more important in their cultural beliefs than it is to those without a thousand+ year old cultural history? (Speculation flame me whatever.)
Or maybe they haven't seen (and been affected by) "Dazed and Confused" "Ferris Bueler" "The Breakfast Club" or any other number of 70s-90s movies that demonstrate the students absolute rejection of Americian Public Education, yet.
Who knows, honestly I can tell you the abnormally high scores sure aren't the product of the education establishment who teaches to the LCD.
That's not true, if you've read any of the Hacking Exposed books you'd know that a driveless, floppyless, biosless, monitorless, inputless, networkless system is perfectly secure until you pull the plug.
Script kiddies, warez geeks, and pirates (AARRRR) use windows more often than not. Cygwin/VMware.
You better hope for the one who zipped it up, that they did it on the *nix box he got into, and not their Windows XP system... I'm sure there's some tag in the XP Zip somewhere leading back to his system (kinda like the mellissa guy, and his word doc)
You can get almost any code to compile if you just comment out the errors.... it's the 2nd part of #1 that will be that hard part.... even if it compiles with only 182397198273 warnings.
Blah blah blah obligatory product plug, even though I'm just a consumer and get nothing out of it... sooooo,
I purchased a 900 mhz logitech headset for use with teamspeak cause I'm geeky like that. Later I purchased a monthly plan with Dialpad (yeah yeah, they need a linux client...) The custom viop app you install is tiny, and doesn't require a reboot so I've been able to use it pretty much everywhere with a cheapy mic/headphone combo. It won't work when I'm booted to linux on the lappy but oh well.
However, the voice quality of the actual calls on a decent qos was pretty good and as long as nobody was edonkeying for porn on my non QOS connection it was about as clear as a cell phone call. The delay (1/2 a second at times) can get to you tho.
was? I still play it under OpenVMS
That we'll never-ever be rid of the 5 inch floppy cachunk-cachunk noise if people start making these things en masse?
Someone has to die to recieve a darwin award, and even for there to be an honorable mention someone has to have died in relation to this idiots actions.... get with the times www.darwinawards.com
The site said she fingered him at 10 o'clock at applebee's ... lesson learned? Don't take a woman on a date at end it at applebee's
I've read this argument before, and I ran over it once more just to make sure, but what it says basically is in an environment where an infection would occur to a homogenous population that the fact that there is a significant number of systems diversified (OS wise) that the infection and subsequent overload of the network would not be affected in a marked way.
So... basically discounting the whole point of 90% of the discussion regarding monoculture this rebuttal doesn't discount the fact that my NAS never went down, or my qmail box hasn't been hit by a nasty network worm and needed to be reinstalled.... or my aging Alpha cluster running DNS has never been rooted.... --KNOCK ON WOOD-- The monoculture issue isn't solely a network health issue. Just as the Blaster worm is not solely a network health issue (as anyone having to remove the damn thing 120938123 times knows)
Like any company anywhere given the opportunity to appeal wouldn't do so...
Monopolies are made because the financial benefits outweigh the legal risk. And because we give companies the chance to harrang a few million dollars litigiously.
Not like dumb people can sue a corporation because they spilled HOT coffee on themselves and win or anything.... Whatever happens in this case will matter little. Who cares if they are fined 10% of their revenue, subtract development and the
I did this once for my own personal use just before I purchased my laptop. Many distros were nice, knoppix etc had lots of stuff by default... but much of it was unused for myself.
I wanted specialized distros that had more directed applications towards network management, and security. I found myself with basically Knoppix as my swiss army knife, Slackware live (SLAX now) as my scalpel for those hard to reach places with as many gui network utils as I could find. And the packetmaster for a quick linux prompt.
I thought these ruled... it seems to me there wasn't a whole lot of research... Did they just do a search for +live +cd on freshmeat and ignore everything else? The only distro I saw remotely bloat free was feather... which I decided against because for my mini-distro I'd rather use packetmaster.
Packetmaster = awesome security tool
Slackware live (SLAX) is pretty small by default 200 megs ish, plenty of room for your own customs and it has an easy to download customizable tar.gz set of scripts.
Here can you handle this?
Did you think about your bills, your ex, your deadlines...
and so on.
I bet "2:35 of silence" would be a whole lot of tracks.
And I thought there was something on slashdot that would make my job easier... not just waste my time... Then i remembered where I was.
IANAL blah blah blah
BUT from what I understand, you are not obligated to pay any royalties for playing a song for your enjoyment, in your own home, for personal enrichment (aka education purposes) but only for public dissemination.
The issue isn't the royalty you must pay, never has been, it's the length of the copyright holding...
Not that trying to break popular myths hold upon slashdot ever works. I should just give up while I'm still sane.
Ugh 80% is innacurate I appologize, 50% is a more accurate number for the source addresses which vanished from the ISC survey.
Well when Microsquish made the switch to akamai recently for their software update hosting they broke many users ability to update and gave no release on how to fix it. Yes sure, it was just an issue of changing the default url to httpS instead of http and accepting the new certificate, but how many joe blows are going to know that? And no, an obscure technet article referenced by a letter and a number does not count as a release, especially in a service as important as software update has become for M$.
Even if SUS works properly, what is the purpose of needing to reboot every system that is updated. Can't this be taken care of with minimal (3-6 seconds) downtime while a service resets?
We all know by it's very nature Linux is more secure than microsoft. The sheer number of vulnerabilities available is not neccessarily a good measure of the actual security of the system. The measure is properly the number of vulnerabilities successfully taken advantage of easily and massively.
Let me sound off for a second here on the major issues I personally have with MS:
CODERED
NIMDA
MIMAIL
BUGBEAR
KLEZ
NACHI
BLASTER
Good security practices, updating regularly and keeping up to date virus protection is an important part of stopping the above garbage from getting on your network. EVEN then, the affects of the above will still cause you downtime since your provider will have to scramble to deal with all the there-after DDoS.
The following is reason enough to be extra wary of any microsoft product security wise. Believe it or not, Nachi apparently SAVED M$ ass when it came to MS-Blaster. The number of source addresses scanning for 135 dropped by nearly 80% in these first weeks of 2004. AND there are STILL code red systems out there attaching to my Apache server occasionally. I sure don't see a massive SSH/Apache Code Red/Nimda style worm topping the bandwidth charts.
The duece you say, imagine that the web browser with 70% market share doesn't have a massive network-screeching-to-a-halt worm spreading with free reign?
Who cares anymore, it's been 8 years GNU/Linux+Apache+SSH has proven itself the most secure and reliable system for Web-Serving and MySQL+PHP is fast overtaking MsSQL+ASP as the most popular method of dynamic content distribution.
Once I start seeing massive changes to the netcraft survey, then I'll believe Microsoft has done enough to curb their Virus problems. The proof is in the puddin so to speak.
Uncle Jimbo: Now boys, boys, I, I need to get serious for a minute. I want you to understand a few basic rules of interplanetary rover RC, since this is your first time. First, don't ever walk with your gun unless the safety's on. Second, don't shoot anything that looks martian and third, never spill your beer on the mission control computer.
Peter Theisinger: Uh, Uncle Jimbo, we don't drink beer.
Uncle Jimbo: You what?!?
Ned: Moh yeh, that's right, I don't think geeks drink beer, mmm.
Jan Chodas: I like chocolate milk.
Uncle Jimbo: Well, we'll be doing plenty of drinking on this trip; After all, scientific research sober is like