yeah, that crossed my mind, too. my guess is the guy didnt have what you suggest as an option. maybe he was highly proficient in bind's admin that he didnt want to learn a whole other tool (iow, he was a bind junkie).
he probably didnt change the entire OS either, NSA's SELinux is a set of patches and tools that retrofit themselves into the kernel. (plus they're free, while HP's solution isnt)
when I read that article, i recalled a so-called "success story" of one of those secure linux projects (eg, HP's, NSA's).
Someone was getting hacked via a bind buffer overflow exploit on a routine basis, giving the attacker root access. So he installed one of those secure OS's and set it up such that bind ran under a restricted permission set. He basically made named's policy was to not allow permission to launch a shell or open ports (other than the DNS listener ports).
When the script kiddies returned, they would overflow the buffer - but when the instruction to launch a shell came across - bam! Kernel issued a permision denied. The kiddie's script wasnt programmed to handle that, which led to a core drop and total system crash.
Kiddie tries again sometime later and attempts to setup a backdoor. Same problem. Kernel denies the opening of a port, core drops again and crashes the box.
While the admin had to restart the server a few times at the mercey of the kiddie, a few more failed attempts taught the kiddie his lesson. He just plain gave up.
Moral of the story being that while named still had the same buffer-overflow hole, the OS was configured to contain the named's permissions once that hole was exploited.
actually, it aint java that's slow (unless you have an old JVM). It's the network connections going from point to point along the network combined with the fact that the guy who coded Limewire didnt know how to use Java effectively, hence the code is very ineffecient.
which will of course in turn determine the client OS used.....
which will in turn determine the webbrowser, office software, software development environment, software development target platforms, the shoes you wear, the lights at your desk, and your DNA.
RMS is the type of person who throws a hissy fit if his name isn't listed at the top of a list unless the list is alphabetized or in some other type of quantified order.
He's physical appearance is one of long hair and an untrimmed beard.
Hopefully now you understand the sorrow we all feel for the webmasters of that candidate listing.
ah shit, that worked well. I put in some angle brackets that got misinterpreted as html
what I meant to say was:
sooner o^&%$r later )(^the p@#$%rogrammer@$#%s of the w#$%#$orld wi@$#%ll find@#$% a wa%^&@#y past (*&^:the ju"%@#$nk data~!$ in thos^$@e CD's, mu}_(ch how hu:_^mans %*%will fin":?+d our w#@%!%^ay throug_){"h this (fi%$#rst?) po#$st
sooner o^&%$r later )(^the p@#$%rogrammer@$#%s of the w#$%#$orld wi@$#%ll find@#$% a wa%^&@#y past (*&^:the ju"%@#$nk data~!$ in tho>umans %*^%will fin":?+d our w#@%!%^ay throug_){"h this (fi%$#rst?) po#$st
IOW, you're saying that the general public needs to be educated on the pros/cons of hydrogen over traditional power sources before any real changeover to hydrogen takes place.
sooner or later (i hope) the/. editors will post a review i wrote about a book that covers this case up through last January. I didnt mention this in the review, but the book mentions that Judge Jackson belief is that MS would be a lot better shape if Bill Gates had finished Harvard.
Going along with your leadership comments and what was in the book, it's my belief that Gates runs the company head to toe, rubbing off on his top execs, and collectively causing the problems that the company has had with the FTC and DOJ for the past 5-10 years.
my belief is that tossing out the leaders wont do anything, and it would make DoJ look bad. Assesing a fine that encompasses all of MS's gains that came as a result of their violation of the Sherman Act is a minimum (the current settlement lets MS off the hook financially), imposing guidelines on how the company should behave in the market concerning contracts (a consent decree of sorts), and mandating those leaders to take classes in business and legal ethics.
i think you are correct. I do recall NY taking their own stance after some of MS's recent tactics that work against some companies in NY like Kodak or IBM.
as for my Europe comment: I'm talking about how the EU wont take this case as lightly as Bush's administration suddenly is.
actually, the appeal courts ruled that Judge Jackson's comments to the media indicated a bias against MS, hence they threw out his version of a breakup remedy. The appeal court didnt explicitly rule out that a breakup was the proper rememdy, just that Jackson appeared biased in his judgement and that nullified his proposed remedy. It was the Justice Dept that formally ruled out breakup a few weeks ago.
wont happen. MS pushes their products in school environments (like my own school, except for the CS dept). There are too many schools up there for them to do that. MIT, Harvard, Boston College, Boston University, and many others
good for Mass to do that. I read that Sun was considering their own civil suit against MS if the current proposed settlement became reality. Not that that would do anything useful, IMO. Of course, MS still has to face Europe, and we all know how rough and tough they are gonna be.
Slashdot Mirror
or C-connect4 !!
can you imagine a beowulf cluster of those!
... just as soon as i get my hands on a $415 thous
NO!
yeah, that crossed my mind, too. my guess is the guy didnt have what you suggest as an option. maybe he was highly proficient in bind's admin that he didnt want to learn a whole other tool (iow, he was a bind junkie).
he probably didnt change the entire OS either, NSA's SELinux is a set of patches and tools that retrofit themselves into the kernel. (plus they're free, while HP's solution isnt)
when I read that article, i recalled a so-called "success story" of one of those secure linux projects (eg, HP's, NSA's).
Someone was getting hacked via a bind buffer overflow exploit on a routine basis, giving the attacker root access. So he installed one of those secure OS's and set it up such that bind ran under a restricted permission set. He basically made named's policy was to not allow permission to launch a shell or open ports (other than the DNS listener ports).
When the script kiddies returned, they would overflow the buffer - but when the instruction to launch a shell came across - bam! Kernel issued a permision denied. The kiddie's script wasnt programmed to handle that, which led to a core drop and total system crash.
Kiddie tries again sometime later and attempts to setup a backdoor. Same problem. Kernel denies the opening of a port, core drops again and crashes the box.
While the admin had to restart the server a few times at the mercey of the kiddie, a few more failed attempts taught the kiddie his lesson. He just plain gave up.
Moral of the story being that while named still had the same buffer-overflow hole, the OS was configured to contain the named's permissions once that hole was exploited.
actually, it aint java that's slow (unless you have an old JVM). It's the network connections going from point to point along the network combined with the fact that the guy who coded Limewire didnt know how to use Java effectively, hence the code is very ineffecient.
ok, i never knew there was such a song, or movie for that matter. oh well
which will of course in turn determine the client OS used.....
which will in turn determine the webbrowser, office software, software development environment, software development target platforms, the shoes you wear, the lights at your desk, and your DNA.
you obviously missed the joke....
RMS is the type of person who throws a hissy fit if his name isn't listed at the top of a list unless the list is alphabetized or in some other type of quantified order.
He's physical appearance is one of long hair and an untrimmed beard.
Hopefully now you understand the sorrow we all feel for the webmasters of that candidate listing.
RMS needs to realize that not EVERYTHING needs to be called "GNU/"
= 2541889
i refer you (and RMS) to a post i made a few days ago:http://slashdot.org/comments.pl?sid=23553&cid
...RMS's name is listed 23rd on a list that appears to have no particular order.
Somehow i fear a bearded man with lots of hair going after the guy who put that page together........
ah shit, that worked well. I put in some angle brackets that got misinterpreted as html
what I meant to say was:
sooner o^&%$r later )(^the p@#$%rogrammer@$#%s of the w#$%#$orld wi@$#%ll find@#$% a wa%^&@#y past (*&^:the ju"%@#$nk data~!$ in thos^$@e CD's, mu}_(ch how hu:_^mans %*%will fin":?+d our w#@%!%^ay throug_){"h this (fi%$#rst?) po#$st
sooner o^&%$r later )(^the p@#$%rogrammer@$#%s of the w#$%#$orld wi@$#%ll find@#$% a wa%^&@#y past (*&^:the ju"%@#$nk data~!$ in tho>umans %*^%will fin":?+d our w#@%!%^ay throug_){"h this (fi%$#rst?) po#$st
just as amusing .... you have to have activescript running in order to view the advisory listed above .....
GNU/I GNU/once GNU/read GNU/a GNU/comment GNU/saying GNU/that GNU/RMS GNU/won't GNU/rest GNU/until "GNU" GNU/is GNU/in GNU/front GNU/of GNU/every GNU/word GNU/in GNU/the GNU/English GNU/language. GNU/Doesnt GNU/he GNU/realize GNU/that GNU/would GNU/leave GNU/him GNU/joyless GNU/having "GNU" GNU/all GNU/over GNU/the GNU/place, GNU/not GNU/to GNU/mention GNU/weird?
IOW, you're saying that the general public needs to be educated on the pros/cons of hydrogen over traditional power sources before any real changeover to hydrogen takes place.
Is that correct?
... not having laptops may help billy not show off his BSOD like he did 3 years ago
sooner or later (i hope) the /. editors will post a review i wrote about a book that covers this case up through last January. I didnt mention this in the review, but the book mentions that Judge Jackson belief is that MS would be a lot better shape if Bill Gates had finished Harvard.
Going along with your leadership comments and what was in the book, it's my belief that Gates runs the company head to toe, rubbing off on his top execs, and collectively causing the problems that the company has had with the FTC and DOJ for the past 5-10 years.
my belief is that tossing out the leaders wont do anything, and it would make DoJ look bad. Assesing a fine that encompasses all of MS's gains that came as a result of their violation of the Sherman Act is a minimum (the current settlement lets MS off the hook financially), imposing guidelines on how the company should behave in the market concerning contracts (a consent decree of sorts), and mandating those leaders to take classes in business and legal ethics.
i think you are correct. I do recall NY taking their own stance after some of MS's recent tactics that work against some companies in NY like Kodak or IBM.
as for my Europe comment: I'm talking about how the EU wont take this case as lightly as Bush's administration suddenly is.
i wasnt being sarcastic - sorry if I came off like that. Europe wont take their anti-trust case as lightly as the US suddenly is.
actually, the appeal courts ruled that Judge Jackson's comments to the media indicated a bias against MS, hence they threw out his version of a breakup remedy. The appeal court didnt explicitly rule out that a breakup was the proper rememdy, just that Jackson appeared biased in his judgement and that nullified his proposed remedy. It was the Justice Dept that formally ruled out breakup a few weeks ago.
wont happen. MS pushes their products in school environments (like my own school, except for the CS dept). There are too many schools up there for them to do that. MIT, Harvard, Boston College, Boston University, and many others
good for Mass to do that. I read that Sun was considering their own civil suit against MS if the current proposed settlement became reality. Not that that would do anything useful, IMO. Of course, MS still has to face Europe, and we all know how rough and tough they are gonna be.