My own experience with letting a vendor have access to my account was all bad. Once I allowed these charges to take place, the bank would continue to honor them evn though I told them not to pay it. (billing dispute with a vendor )
I realized at that point that once the electronic transfer authorization was made my relationship changed from being a bank customer to an outsider to my very account. And even when I stopped putting money in, even when I warned the vendor I wanted them to stop trying to take money from my account, the bank continually accepted them even with a negative balance.
Since that time I have never allowed any electronic debit to my account for any reason. Even for a service or a product I really wanted if they demanded electronic funds transfer, I would just not buy or go elsewhere, even at the risk of higher costs just to keep the cheating bastards away from my money.
And to our smug Euro and Commonwealth comrades: It's cool to be smug about electronic stuff, but what you fail to realize and may well never realize at least we still have this freedom and choose not to let a bunch of criminals and criminal enterprises access to our accounts. We know just as welll as you do how to operate an electronic account and yet choose not to.
It's called freedom. You should try it.
Integrity will trump convenience everytime
My guess is you either don't write spam header filters, or you hate it so much you're trying to find an easier solution.
Helluvua lot of mail servers out there not configured "properly." I can't block some mail even from "legitimate" mail servers because they are not configured well enough some of my spam rules don't pick them up, so how would a "list" fix that?
As it is, the lists from the anti spam houses work very little. There are so many zombie mail servers out there, I guess, no one can really effectively police these things except through spam filters. And Google are the only folks who can afford a full time staff writing spam filter rules.
Any more properly used to mean not an open relay; now it can can mean not in the same network segment that does have spamming email servers. Lists just add to the insanity and often punish legitimate mail servers.
You are talking about placeholders, which versions of DBD-Pg have fixed to require queries structured as in your "good" example.
I ran into probrems upgrading to the newer DB-Pg module precisely because the new requirement is that placeholders for queries must be submitted as your new example shows, not as:
$dbh->execute("SELECT * FROM foo WHERE bar=$bar AND baz=$baz"); or
$dbh->execute("SELECT * FROM foo WHERE bar='$bar' AND baz='$baz' ");
This can't be the same thing as the bug that was fixed, could it?
Firewalls are such a band-aid solution to the problem of unknown processes running on your own computers. The right way to solve the problem of rejecting incoming and outgoing requests is to make it easy to see which processes are accepting and making connections on which port.s
The things I'm thinking of are related to the UI for both systems. Neither uses bash (or even tcsh) as the default shell. Neither uses gnu coreutils for things like ls, cp, rm, etc.
You feeling okay? Last I checked (about a minute ago) I could run a whole BASh language script on BSD just as well as Linux. In fact, you can invoke sh and BASh alternately to run the same script on FreeBsd.
The 'default' shell can be reset to BASh or any other shell, if you prefer ( As I do ) the BASh shells, and the base install CD gives you the option before committing to an install.
My experience with sh shell commands is that the BSD versions run much better than the GNU versions anyway.
Seriously I hope you reply to this because, frankly, your above quoted statements made no sense to me at all.
ISA Server, SQL Server, Commerce Server, Content Management Server, Systems Management Server, Exchange Server, Operations Manager, or even the level of capability afforded by Windows Server 2003 or Windows 2000 Server.
Sounds like your server room is knee-deep in the Kool-Aid.
That was rude.
Shoulda asked if he wanted some ice with that kool-aid.
When the secret service starts making house calls because some guy said he wanted to kill Bush jokingly on a public forum theres something wrong with the world.
The federal courts have well defined what constitutes free speech and what is an abuse of it. It happens that threatening the president is a restriction.
It has always been Secret Service doctrine to make house calls on anyone who recently made public death threats against the president. What they do is prudent and often necessary in a civil society.
What it doesn't mean is that such an activity by a government agency charged with protecting the president is somehow new or over the top. The secret service has been doing this since the 60s, since the death of JFK.
There is a text instruction at the end of every perl install/upgrade which reminds you to export some kind of indication your newest install of perl is now the default version the OS should use.
I forget the command, but like you I was kinda upset about older perl modules not working with the newly install perl until I read that.
I run a web server that uses CGI scripts and several database modules.
If slashdot lefties are gonna talk the haughty talk of the lawyer, at least get it right. You can't 'enter into a cease and desist order.' You can enter into an agreement to cease and desist, but not the order itself.
An operating system which dominates 90+ percent of computers, yet the writers can't criticize it without it being regarded as flamebait?
Get a grip. MS makes billions of dollars from their products, which happens to cause billions of dollars of damage worldwide. As long as their apparent disregard for security runs rampant over the internet, writers will be crawling up MS's ass to criticize it.
The "solution" of turning everything off on a general purpose computer is bunk. There has to be a balance between ease of use, function and security.
And BSD provides that. If you run BSD/Unix/Linux in a locked down environment, as in nothing goes in or out, and then as logs indicate open only the services you need (or want to provide) and block off ALL outgoing services/ports you don't need, you do get functionaltiy and ease of use an unfirewalled/poorly firewalled machine can't possibly hope to provide.
I'm sorry, but how is adding an incoming port block on a firewall going to prevent using google? Serving up a quake server, maybe, but outgoing surfing and the like sure isn't going to stop him.
Thank you. The statement that if you block an inbound attempt from Google sounded silly, but being new to ipfw, I wasn't quite sure.
Why couldn't he just allow ssh and http inbound, block everything else, allow only dns, mail services (assuming he is running a mail server), then allow ftp, http, https and ssh outbound, lock down everything else?
Whomever is trying to break in will curse his name forever.
Slashdot Mirror
My own experience with letting a vendor have access to my account was all bad. Once I allowed these charges to take place, the bank would continue to honor them evn though I told them not to pay it. (billing dispute with a vendor ) I realized at that point that once the electronic transfer authorization was made my relationship changed from being a bank customer to an outsider to my very account. And even when I stopped putting money in, even when I warned the vendor I wanted them to stop trying to take money from my account, the bank continually accepted them even with a negative balance. Since that time I have never allowed any electronic debit to my account for any reason. Even for a service or a product I really wanted if they demanded electronic funds transfer, I would just not buy or go elsewhere, even at the risk of higher costs just to keep the cheating bastards away from my money. And to our smug Euro and Commonwealth comrades: It's cool to be smug about electronic stuff, but what you fail to realize and may well never realize at least we still have this freedom and choose not to let a bunch of criminals and criminal enterprises access to our accounts. We know just as welll as you do how to operate an electronic account and yet choose not to. It's called freedom. You should try it. Integrity will trump convenience everytime
Actually, there's an even cooler tool that sorta works like that. Just type hostname every time you press the button that switches the console.
Helluvua lot of mail servers out there not configured "properly." I can't block some mail even from "legitimate" mail servers because they are not configured well enough some of my spam rules don't pick them up, so how would a "list" fix that?
As it is, the lists from the anti spam houses work very little. There are so many zombie mail servers out there, I guess, no one can really effectively police these things except through spam filters. And Google are the only folks who can afford a full time staff writing spam filter rules.
Any more properly used to mean not an open relay; now it can can mean not in the same network segment that does have spamming email servers. Lists just add to the insanity and often punish legitimate mail servers.
I ran into probrems upgrading to the newer DB-Pg module precisely because the new requirement is that placeholders for queries must be submitted as your new example shows, not as:
$dbh->execute("SELECT * FROM foo WHERE bar=$bar AND baz=$baz"); or
$dbh->execute("SELECT * FROM foo WHERE bar='$bar' AND baz='$baz' ");
This can't be the same thing as the bug that was fixed, could it?
No, the last man who died saying something was the guy who said: Hey ya'll: watch this...
famd is a component of Tripwire. portmap is used in NFS.
Which is what netstat -at and firewalls do...
You say tomato, he says tomahto, let's call the whole thing off.
You feeling okay? Last I checked (about a minute ago) I could run a whole BASh language script on BSD just as well as Linux. In fact, you can invoke sh and BASh alternately to run the same script on FreeBsd.
The 'default' shell can be reset to BASh or any other shell, if you prefer ( As I do ) the BASh shells, and the base install CD gives you the option before committing to an install.
My experience with sh shell commands is that the BSD versions run much better than the GNU versions anyway.
Seriously I hope you reply to this because, frankly, your above quoted statements made no sense to me at all.
Now, can I have +2 karma points to get back to neutral karma, or is that asking too much?
Some decent Friday night reading at Slashdot!
I got a better idea. Subject your own job to a vote of slashdot.
I bet you'll hate the outcome.
Sounds like your server room is knee-deep in the Kool-Aid.
That was rude.
Shoulda asked if he wanted some ice with that kool-aid.
The federal courts have well defined what constitutes free speech and what is an abuse of it. It happens that threatening the president is a restriction.
It has always been Secret Service doctrine to make house calls on anyone who recently made public death threats against the president. What they do is prudent and often necessary in a civil society.
What it doesn't mean is that such an activity by a government agency charged with protecting the president is somehow new or over the top. The secret service has been doing this since the 60s, since the death of JFK.
I forget the command, but like you I was kinda upset about older perl modules not working with the newly install perl until I read that.
I run a web server that uses CGI scripts and several database modules.
FreeBSD has been very good to me.
Once a writer publishes in a newspaper of magazine an idea, it no longer 'belongs' to the writer; the idea does indeed belong to everyone.
So a blogger can take an idea expressed and add their own point of view to the idea, coming up with a new idea, and so on.
Once a concept get aired, it becomes public property. You can't copyright an idea, only the expression of it.
See here.
If you browse at +3, you will miss a lot of funny as well as lot of rather intelligent posts you wouldn't get to see at +3.
Also, reading at -1 raw and uncut shows in rather stark clarity that the moderating system at slashdot is broken
I have heard ( and apply it in practice) that you should never have a net-enaled SQL server running with a web-server. Was this the case?
Enquiring minds wanna know?
If slashdot lefties are gonna talk the haughty talk of the lawyer, at least get it right. You can't 'enter into a cease and desist order.' You can enter into an agreement to cease and desist, but not the order itself.
An operating system which dominates 90+ percent of computers, yet the writers can't criticize it without it being regarded as flamebait?
Get a grip. MS makes billions of dollars from their products, which happens to cause billions of dollars of damage worldwide. As long as their apparent disregard for security runs rampant over the internet, writers will be crawling up MS's ass to criticize it.
Nice to have some company.
How many 'survival minutes' per CD will a Windows Machine get these days?
Or gas stations could distribute them like condoms or pecker stretchers from a machine in the bathroom!
Hey! I think he just stumbled on a neat way to market Windows patch cds.
And BSD provides that. If you run BSD/Unix/Linux in a locked down environment, as in nothing goes in or out, and then as logs indicate open only the services you need (or want to provide) and block off ALL outgoing services/ports you don't need, you do get functionaltiy and ease of use an unfirewalled/poorly firewalled machine can't possibly hope to provide.
Thank you. The statement that if you block an inbound attempt from Google sounded silly, but being new to ipfw, I wasn't quite sure.
Why couldn't he just allow ssh and http inbound, block everything else, allow only dns, mail services (assuming he is running a mail server), then allow ftp, http, https and ssh outbound, lock down everything else?
Whomever is trying to break in will curse his name forever.