Probably missing an update if your waiting for slashdot to post about every update. (try security focus)
But, they did post about sendmail and openssh vulnerabilities. The greatest thing about those is that they aren't part of your base system, you can shut them off and operate fine. (or even replace them with alternatives, and vice versa)
Okay, say what you will about bad video games, and negligent parents who bought the video games, or negligent walmart clerks that sold the game to the kids (about which I am in full agreement), but this wouldn't/couldn't have happened if the kids hadn't had guns.
It's illegal in the US for a kid to have a gun. So, it stems to the parents, yet again.
The reality is that kids in the U.S. can get ahold of guns pretty easily, but nobody would go suing the gun manufacturer because their kid shot someone (or maybe I'm wrong here -- they certainly wouldn't win). Guns aren't even rated M for Mature (though they are controlled by laws).
Unfortunately, this happens... there have been quite a few law suits against gun manufacturers that have been won for this very reason. Even with the laws that are in effect, people seem to think that it's not the person who does the murdering, it's the evil guns fault for putting a hex on the person holding it. Then again, I do believe there is an underlying alterior motive. On TV I saw an interview with one of those individuals (that was a leader of a group against the manufacturers, but taking the case upon herself) stated flat out that guns have a side effect of killing, if it isn't the primary duty of it, and the manufacturers need to be held to the same standards as any other consumer-based manufacturer in that the items they sell need to have proper precautions taken to not harm individuals, and she wouldn't stop her "crusade" until she accomplished that. (yes, she used that word) That being said, I think she's a nutjob, but occasions such as this give a hole for which people can pour through with there rhetoric, attempting to push their views upon the world. Beautiful, isn't it?
As it stands right now, we have enough laws and regulations in effect to keep our children in line and keep 99.99% of them out of harms way. The problem is that some parents don't do their part (for one reason or another) and things happen that are disasterous... then they push the blame upon the rest of the world, because obviously they didn't do anything wrong, and how dare you say that little johnny could do anything wrong. Blame is in the wrong court, and until people start either taking the blame at the proper time, or have it put on them at the proper time, this world is going to end up being completely totalitarian. More so than ti is now... with, or without v-chips.
(instead of covering, say, the deleterious effects of gasoline consumption by SUV's on the environment
That's probably because there's no news there. You do realize that an SUV doesn't exactly measure in gallons to the mile, right? They do measure in MPG, and fairly high I might add in comparison to other vehicles that do the same job. They really aren't the monsters you make them out to be.
the tobacco industry's clever solicitation of candidates for DEATH
You might have noticed that the tobacco industry has been running far more ads against smoking now than for. The diversification into other areas of business has allowed this to happen, along with government regulation that coincided with these changes.
It seems to me that a package that goes through code security audits regularly and is actually finished is infinitely more secure than an incomplete package?
Why are there people suggesting to go from a secure package to an insecure one?
It's alot like the Indie music scene, actually. Whatever the mainstream doesn't use is suddenly the most 3l33t and coveted tool. Because obviously OpenSSH is tainted by the touch of the mainstream individuals and now suddenly lsh is far superior. They need something to feel superior for.
I myself use what works, and OpenSSH works. Mainstream or not, it's a damn fine tool, and I have no reason to migrate to another tool unless it provides me with advantages that supersede what OpenSSH can provide.
Authentication could be split out into pam modules. That would actually be a Good Idea, security-wise.
Sure, if Linux was the only operating system OpenSSH was designed for. There is also AIX, Mac OSX, Solaris, Irix, Cisco IOS, HP Procurve Switches, etc... Large scale.. think portable.
So what your saying is that my doing X11 forwarding over SSH is a stupid thing that shouldn't be done?
YOU don't do this. That means you aren't at that level yet. You need to become a little more diversified and learn. Thanks for playing though, it's been a blast.
It's obvious this guy hasn't used Gentoo, so let's make fun of him:)
If he had, he'd know that half of the crap he posted is untrue. The other half is just crap people bring up to try to make Gentoo sound bad when it's usually user error.
I definately have to agree with you there. Seeing it (simultaneously, which is wierd) on SecurityFocus and on Slashdot gave me the opportunity to turn off SSH on our exposed machines temporarily until we could patch it. Might have been only 1-2 hours, but that's 1-2 hours of feeling exposed.
Also, the squelching of the farmer insurrection in pennsylvania that was over taxation of something or other. It's been a while back when I studied that stuff.
The military really has alot of brainwashed people... for the most part, they've lost their pride in being american and gained their pride in being in a group that has guns.
True true.. I agree with everything you said... I only wish they'd come out with a viable form of wireless encryption that isn't a variant of the old WEP standard. And keep it open, instead of proprietary.
I've spilled normal coffee on my crotch, and I didn't get scalded and have my skin melt. (no, I don't normally go around bragging about it lol.. it just seems appropriate to mention right now) That's straight from the coffeemaker into my cup and tipped over into my lap in the car. I burned myself, but it was just red and there was pain. The coffee I have here is 140-150 degrees.
It's pretty much a given that it was just too hot. Too hot to drink, too hot to hold properly.
It takes 5-10 seconds of physical contact for 160 degree coffee to significantly damage your skin. At 180-200 degrees, it takes less than 2 seconds.
It's basically a given that there was something wrong. She wasn't the only person hurt, there were a significant amount of people, but statistically it was "insignificant" to McDonald's in comparison to the number of products they sell.
Slashdot Mirror
What's wrong with strong typing?
It tends to wear your keyboard out after a while....
I agree with that, most definately.
Especially with the kernel issues that have popped up in the past year or two.
Probably missing an update if your waiting for slashdot to post about every update. (try security focus)
But, they did post about sendmail and openssh vulnerabilities. The greatest thing about those is that they aren't part of your base system, you can shut them off and operate fine. (or even replace them with alternatives, and vice versa)
Okay, say what you will about bad video games, and negligent parents who bought the video games, or negligent walmart clerks that sold the game to the kids (about which I am in full agreement), but this wouldn't/couldn't have happened if the kids hadn't had guns.
It's illegal in the US for a kid to have a gun. So, it stems to the parents, yet again.
The reality is that kids in the U.S. can get ahold of guns pretty easily, but nobody would go suing the gun manufacturer because their kid shot someone (or maybe I'm wrong here -- they certainly wouldn't win). Guns aren't even rated M for Mature (though they are controlled by laws).
Unfortunately, this happens... there have been quite a few law suits against gun manufacturers that have been won for this very reason. Even with the laws that are in effect, people seem to think that it's not the person who does the murdering, it's the evil guns fault for putting a hex on the person holding it.
Then again, I do believe there is an underlying alterior motive. On TV I saw an interview with one of those individuals (that was a leader of a group against the manufacturers, but taking the case upon herself) stated flat out that guns have a side effect of killing, if it isn't the primary duty of it, and the manufacturers need to be held to the same standards as any other consumer-based manufacturer in that the items they sell need to have proper precautions taken to not harm individuals, and she wouldn't stop her "crusade" until she accomplished that. (yes, she used that word) That being said, I think she's a nutjob, but occasions such as this give a hole for which people can pour through with there rhetoric, attempting to push their views upon the world. Beautiful, isn't it?
As it stands right now, we have enough laws and regulations in effect to keep our children in line and keep 99.99% of them out of harms way. The problem is that some parents don't do their part (for one reason or another) and things happen that are disasterous... then they push the blame upon the rest of the world, because obviously they didn't do anything wrong, and how dare you say that little johnny could do anything wrong. Blame is in the wrong court, and until people start either taking the blame at the proper time, or have it put on them at the proper time, this world is going to end up being completely totalitarian. More so than ti is now... with, or without v-chips.
Ditto.
Of course, as others have pointed out, an updated Linux client is available now from them.
The Linux version (at least .99whatever) didn't even have chatroom ability.
(instead of covering, say, the deleterious effects of gasoline consumption by SUV's on the environment
That's probably because there's no news there.
You do realize that an SUV doesn't exactly measure in gallons to the mile, right? They do measure in MPG, and fairly high I might add in comparison to other vehicles that do the same job. They really aren't the monsters you make them out to be.
the tobacco industry's clever solicitation of candidates for DEATH
You might have noticed that the tobacco industry has been running far more ads against smoking now than for. The diversification into other areas of business has allowed this to happen, along with government regulation that coincided with these changes.
Web DEVELOPMENT, not Web Design...
Get the two straight.
The last time I checked, Christianity didn't fix a security flaw :P
Because it's a major component of a nuclear device... minus the.. explosive stuff...
*grins*
It seems to me that a package that goes through code security audits regularly and is actually finished is infinitely more secure than an incomplete package?
Why are there people suggesting to go from a secure package to an insecure one?
It's alot like the Indie music scene, actually. Whatever the mainstream doesn't use is suddenly the most 3l33t and coveted tool. Because obviously OpenSSH is tainted by the touch of the mainstream individuals and now suddenly lsh is far superior. They need something to feel superior for.
I myself use what works, and OpenSSH works. Mainstream or not, it's a damn fine tool, and I have no reason to migrate to another tool unless it provides me with advantages that supersede what OpenSSH can provide.
Can you try to pull that stick out of your ass?
Thanks.
Anonymous Coward.
Authentication could be split out into pam modules. That would actually be a Good Idea, security-wise.
Sure, if Linux was the only operating system OpenSSH was designed for.
There is also AIX, Mac OSX, Solaris, Irix, Cisco IOS, HP Procurve Switches, etc...
Large scale.. think portable.
So what your saying is that my doing X11 forwarding over SSH is a stupid thing that shouldn't be done?
YOU don't do this. That means you aren't at that level yet. You need to become a little more diversified and learn. Thanks for playing though, it's been a blast.
I've upgraded (Gentoo and Redhat, 2 different sites) and the authentication was alright.
I use authentication keys on both sites.
Yeah, pretty much any services that are changed in Gentoo need to be manually restarted.
The EBUILD name is taken as the argument for the actual tarball it's downloading.
It's not pretending.
It's obvious this guy hasn't used Gentoo, so let's make fun of him :)
If he had, he'd know that half of the crap he posted is untrue. The other half is just crap people bring up to try to make Gentoo sound bad when it's usually user error.
I definately have to agree with you there.
Seeing it (simultaneously, which is wierd) on SecurityFocus and on Slashdot gave me the opportunity to turn off SSH on our exposed machines temporarily until we could patch it.
Might have been only 1-2 hours, but that's 1-2 hours of feeling exposed.
A desperate move to alienate fans?
:-)
So that's how money is made in the music business.
Hey, Metallica and the RIAA have already gone that path, so I guess it's a viable alternative if you're in the music industry.
Also, the squelching of the farmer insurrection in pennsylvania that was over taxation of something or other. It's been a while back when I studied that stuff.
The military really has alot of brainwashed people... for the most part, they've lost their pride in being american and gained their pride in being in a group that has guns.
True true.. I agree with everything you said...
I only wish they'd come out with a viable form of wireless encryption that isn't a variant of the old WEP standard. And keep it open, instead of proprietary.
We're not talking about french presses here, we're talking about McDonald's.
I've spilled normal coffee on my crotch, and I didn't get scalded and have my skin melt. (no, I don't normally go around bragging about it lol.. it just seems appropriate to mention right now) That's straight from the coffeemaker into my cup and tipped over into my lap in the car. I burned myself, but it was just red and there was pain. The coffee I have here is 140-150 degrees.
It's pretty much a given that it was just too hot. Too hot to drink, too hot to hold properly.
It takes 5-10 seconds of physical contact for 160 degree coffee to significantly damage your skin. At 180-200 degrees, it takes less than 2 seconds.
It's basically a given that there was something wrong. She wasn't the only person hurt, there were a significant amount of people, but statistically it was "insignificant" to McDonald's in comparison to the number of products they sell.
You'd think they'd make it with a little better formatting, jesus.
I don't like anonymous cowards, so we're even.