then you can't trust a web server to give you a web page with an unaltered MD5 sum. Surely this is common sense?
I am not sure, but this just might be the reason why systems like BSD ports and Gentoo portage store the MD5 sums in the ports trees, and don't in fact get them from websites.
The real solution is digital signatures (i.e. an MD5 sum encrypted with a private key).
WOW! what an original and fresh solution! you sir, are some sort of genious for coming up with this.
congratulations, you've managed to regurgitate several of the things that have been said, literally, hundreds of times today already. I think the Society for Prevention of Cruelty to Dead Horses might have a bone to pick with you.
why now? this whole episode seems to be a good example of the current system working well... tarball trojaned, ports system detects md5 mismatch, no compromise, no problem.
yeah, if you have random people entering your building unsupervised and plugging things into the network, you just might have a security problem, Dreamcast or no Dreamcast.
I would think much in the same way, a Dreamcast running linux can be used to seriously injure a person, but sneaking up on them and hitting them over the head with it, repeatedly. Of course that's not newsworthy, unless it's a Dreamcast running linux.
some linuxes (*cough* Gentoo *cough*) have systems similar to BSD ports which would catch it. the good news is that it takes one person (running one of these systems) noticing it to bring the trojan to light and correct it; what was it in this case, 6 hours? I don't think I'm gonna panic just yet
Hell, let's say 80% of people have qt installed. Well, 100% of people have GTK installed. There should be a port for both, but the GTK one first.
Well, I have GTK installed, but I don't want a GTK port. I only use GTK when I have to (I think I originally installed it with the GIMP); simply having the lib installed doesn't necessarily mean that you want a port that uses it. all personal and subjective, of course; I wouldn't presume to know what others want.
Oh, both browsers handle all situations just fine, but I like one more than the other in some (the big difference here is that other people would likely feel differently) I'm not sure I agree with the logic with the two shortcuts; if you access them differently why do they have to be the same browser? (as long as they share such info as settings, history and bookmarks, of course) heck, most people wouldn't even know they were the same browser if you gave them two shortcuts (a lot would think they are two different internets, I bet). One way or another, I think I would use Konqy nearly exclusively if it had tabs (and they are coming from what I hear).
The only thing I mind about having the two environment (or at least libraries) really, is that they don't share themes, if they did I'd be perfectly happy with the arrangement. Developers would have their choice of toolkit, and I would have my prettiness:) (I'm big into prettiness, but only because the rest of it works so well for me, I suppose)
yeah... see link, click link - very intimidating. but yeah, I don't need a lecture on how fragile our precious users are, so I won't say anything about the "learning curve" for a browser.
you'd be surprised how many people still use Netscape (6.x AND 4.x), to them Mozilla is an "upgrade". there's also those who use different OSes constantly (work vs home, or workstation vs email box) and might appreciate the same browser on their linux, windows and MacOS boxes.
Personally, I don't care what your mom does, and will not make any effort whatsoever to influence her decision. (my mom uses Mozilla simply because a bought my family a PC to replace their Mac, and Mozilla is what they are used to, but that's completely besides the point)
What I don't understand is why a technology cannot be good unless everybody uses it. "MS is dominating the market with a monopoly, we must find an alternative!! well, there's Mozilla for browsing... but will EVERYBODY use it? if not, then it's not a good alternative."
try and confuse me with numbers all you want, all I know is that my KDE with Mosfet's Liquid engine looks far prettier than and Gnome app I've seen:)
seriously though, I think they do have both a GTK and a Qt port, I've just never bothered to get it to work. btw, from your numbers 42% use KDE and 35% use Gnome (with or without the other toolkit's apps), wouldn't it stand to reason that more people would want the Qt port, for their "native" as it were environment?
I personally use both Mozilla and Konqy. while Konq is prettier (better looking/better anti-aliased fonts is the biggest thing here) and plays better with the rest of the environment, Mozilla is just an all around better browser. why so many people seem to think that you have to use only one browser, anyway?
on the other hand, having some applications that behave and look consistently across platforms, helps those who are in the process of switching oses. as an example, windows users new to linux are often "comforted" to have the same Mozilla they had in windows.
I personally would love for Mozilla to use native widgets though, then it would look as pretty as the rest of KDE:)
actually, politics comes from latin politicus which comes from greek politikos (of citizens of the state), which comes from polites (citizen), which in turn originates form polis - city. but the blood sucking tics part is correct, though.
I guess you just need to put some marketing spin on it: "This PC comes with Command Line Interface Technology!" or create a logo for it or something... that will get their attention.
Also note, any license that says "the terms of this license are subject to change" should be treated specially (for instance, all BRIGHT RED)
most (if not all) commercial licenses would then be bright red. a simple flag, in addition to the rest of it, would probably be better
interesting idea, but it assumes that the amount of "damage" or "good" that a clause does is proportional to its length, this could be very misleading.
Re:Cool project resulting from a big problem?
on
RPM Dependency Graph
·
· Score: 2
yeah, sounds great; but only as long as our beloved "users" use it, and I never have to see this horrendous mess of "generic application" package installations without knowing what applications I install.
I personally think Gentoo's portage/emerge is perfect and I love it to bits. I would not in a million years recommend that our coveted "home users" use it. Which is why talk of "single" and "standard" always undermines one of linux's (GNU/Linux's whatever) strongest points. If you like standartization above all, use Windows - they seem to be pretty good at it.
while we are falling all over ourselves trying to come with things "users" will like, let's not forget what we like. (btw, I consistently put "users" in quotes because I feel the title would be more applicable to people like me, seeing how we actually use the damn thing.
but I've never been able to figure out how I install it with just a 56k modem
slowly. you can use the stage3 tarballs during install to save yourself a few hours download time, so you can get a working system, without X or any of that good stuff. it's really not a distro you want to be running without a real internet connection
the way I understand it, it's more often than not because of incorrect syntax - gcc 2.9.x was a lot more relaxed about these things, and let through a lot of code that 3.x doesn't. there's also probably some bugs as well, it's.1 not.9 after all...
i'll see your apt-get, and I'll raise you an emerge:) I haven't been able to stop raving about it since getting Gentoo a few days ago. "emerge kde" on base system - come back 8 hours later, it's done (including XFree)
In IT terms, the human genome is a text of seven billion characters, and together with its associated annotations, Celera already maintains a 70-terabyte database, after only a year and a half of operation. That database is growing rapidly - by 15 to 20 gigabytes a day, or eight terabytes a year - as is the number of people accessing it.
I don't know when this article is from, but they are already over 100TB.
Slashdot Mirror
And it looks like they're not "eating their own dog food," and eating Sun dog food instead
did you ever think there might a reason for that?
then you can't trust a web server to give you a web page with an unaltered MD5 sum. Surely this is common sense?
I am not sure, but this just might be the reason why systems like BSD ports and Gentoo portage store the MD5 sums in the ports trees, and don't in fact get them from websites.
The real solution is digital signatures (i.e. an MD5 sum encrypted with a private key).
WOW! what an original and fresh solution! you sir, are some sort of genious for coming up with this.
congratulations, you've managed to regurgitate several of the things that have been said, literally, hundreds of times today already. I think the Society for Prevention of Cruelty to Dead Horses might have a bone to pick with you.
why now? this whole episode seems to be a good example of the current system working well... tarball trojaned, ports system detects md5 mismatch, no compromise, no problem.
I thought the trojan only appeared yesterday?
I would think much in the same way, a Dreamcast running linux can be used to seriously injure a person, but sneaking up on them and hitting them over the head with it, repeatedly. Of course that's not newsworthy, unless it's a Dreamcast running linux.
um, in short: no.
some linuxes (*cough* Gentoo *cough*) have systems similar to BSD ports which would catch it. the good news is that it takes one person (running one of these systems) noticing it to bring the trojan to light and correct it; what was it in this case, 6 hours? I don't think I'm gonna panic just yet
isn't that whole W.A.S.T.E. thing doing pretty well, though?
Well, I have GTK installed, but I don't want a GTK port. I only use GTK when I have to (I think I originally installed it with the GIMP); simply having the lib installed doesn't necessarily mean that you want a port that uses it. all personal and subjective, of course; I wouldn't presume to know what others want.
Oh, both browsers handle all situations just fine, but I like one more than the other in some (the big difference here is that other people would likely feel differently) I'm not sure I agree with the logic with the two shortcuts; if you access them differently why do they have to be the same browser? (as long as they share such info as settings, history and bookmarks, of course) heck, most people wouldn't even know they were the same browser if you gave them two shortcuts (a lot would think they are two different internets, I bet). One way or another, I think I would use Konqy nearly exclusively if it had tabs (and they are coming from what I hear).
The only thing I mind about having the two environment (or at least libraries) really, is that they don't share themes, if they did I'd be perfectly happy with the arrangement. Developers would have their choice of toolkit, and I would have my prettiness :) (I'm big into prettiness, but only because the rest of it works so well for me, I suppose)
you'd be surprised how many people still use Netscape (6.x AND 4.x), to them Mozilla is an "upgrade". there's also those who use different OSes constantly (work vs home, or workstation vs email box) and might appreciate the same browser on their linux, windows and MacOS boxes.
Personally, I don't care what your mom does, and will not make any effort whatsoever to influence her decision. (my mom uses Mozilla simply because a bought my family a PC to replace their Mac, and Mozilla is what they are used to, but that's completely besides the point)
What I don't understand is why a technology cannot be good unless everybody uses it. "MS is dominating the market with a monopoly, we must find an alternative!! well, there's Mozilla for browsing... but will EVERYBODY use it? if not, then it's not a good alternative."
seriously though, I think they do have both a GTK and a Qt port, I've just never bothered to get it to work. btw, from your numbers 42% use KDE and 35% use Gnome (with or without the other toolkit's apps), wouldn't it stand to reason that more people would want the Qt port, for their "native" as it were environment?
I personally use both Mozilla and Konqy. while Konq is prettier (better looking/better anti-aliased fonts is the biggest thing here) and plays better with the rest of the environment, Mozilla is just an all around better browser. why so many people seem to think that you have to use only one browser, anyway?
I personally would love for Mozilla to use native widgets though, then it would look as pretty as the rest of KDE :)
actually, politics comes from latin politicus which comes from greek politikos (of citizens of the state), which comes from polites (citizen), which in turn originates form polis - city. but the blood sucking tics part is correct, though.
since when is GTK one of the two most common? one would think it was Qt
I guess you just need to put some marketing spin on it: "This PC comes with Command Line Interface Technology!" or create a logo for it or something... that will get their attention.
ah, the quaint old, pre-DMCA days...
most (if not all) commercial licenses would then be bright red. a simple flag, in addition to the rest of it, would probably be better
interesting idea, but it assumes that the amount of "damage" or "good" that a clause does is proportional to its length, this could be very misleading.
let's not get carried away here...
I personally think Gentoo's portage/emerge is perfect and I love it to bits. I would not in a million years recommend that our coveted "home users" use it. Which is why talk of "single" and "standard" always undermines one of linux's (GNU/Linux's whatever) strongest points. If you like standartization above all, use Windows - they seem to be pretty good at it.
while we are falling all over ourselves trying to come with things "users" will like, let's not forget what we like. (btw, I consistently put "users" in quotes because I feel the title would be more applicable to people like me, seeing how we actually use the damn thing.
slowly. you can use the stage3 tarballs during install to save yourself a few hours download time, so you can get a working system, without X or any of that good stuff. it's really not a distro you want to be running without a real internet connection
the way I understand it, it's more often than not because of incorrect syntax - gcc 2.9.x was a lot more relaxed about these things, and let through a lot of code that 3.x doesn't. there's also probably some bugs as well, it's .1 not .9 after all...
i'll see your apt-get, and I'll raise you an emerge :) I haven't been able to stop raving about it since getting Gentoo a few days ago. "emerge kde" on base system - come back 8 hours later, it's done (including XFree)
I especially remember GD dropping it... "good riddance" I think, was my sentiment :)
if you consider /.'s 7-8 year old readers "everyone"
In IT terms, the human genome is a text of seven billion characters, and together with its associated annotations, Celera already maintains a 70-terabyte database, after only a year and a half of operation. That database is growing rapidly - by 15 to 20 gigabytes a day, or eight terabytes a year - as is the number of people accessing it.
I don't know when this article is from, but they are already over 100TB.
hmm, is Sony only a member of RIAA, or is it both RIAA and MPAA? though I'm sure suing yourself will get some interesting tax loopholes.