Slashdot Mirror


User: glwtta

glwtta's activity in the archive.

Stories
0
Comments
3,365
First seen
Last seen
Profile
(view on slashdot.org)

Comments · 3,365

  1. Re:Bad news and Good news on OpenSSH Package Trojaned · · Score: 5, Informative
    yes, very "insightful":

    And it looks like they're not "eating their own dog food," and eating Sun dog food instead

    did you ever think there might a reason for that?

    then you can't trust a web server to give you a web page with an unaltered MD5 sum. Surely this is common sense?

    I am not sure, but this just might be the reason why systems like BSD ports and Gentoo portage store the MD5 sums in the ports trees, and don't in fact get them from websites.

    The real solution is digital signatures (i.e. an MD5 sum encrypted with a private key).

    WOW! what an original and fresh solution! you sir, are some sort of genious for coming up with this.

    congratulations, you've managed to regurgitate several of the things that have been said, literally, hundreds of times today already. I think the Society for Prevention of Cruelty to Dead Horses might have a bone to pick with you.

  2. Re:Gentoo is Good to Go on OpenSSH Package Trojaned · · Score: 3, Insightful
    Maybe now they will.

    why now? this whole episode seems to be a good example of the current system working well... tarball trojaned, ports system detects md5 mismatch, no compromise, no problem.

  3. Re:FYI: Gentoo OK on OpenSSH Package Trojaned · · Score: 2
    End result: no one in Gentoo has been able to compile/emerge openssh for the last few days.

    I thought the trojan only appeared yesterday?

  4. I'm sure a few people mentioned it, but... on Attack Of The Dreamcasts · · Score: 5, Funny
    yeah, if you have random people entering your building unsupervised and plugging things into the network, you just might have a security problem, Dreamcast or no Dreamcast.

    I would think much in the same way, a Dreamcast running linux can be used to seriously injure a person, but sneaking up on them and hitting them over the head with it, repeatedly. Of course that's not newsworthy, unless it's a Dreamcast running linux.

  5. Re:This reminds me of my university on Attack Of The Dreamcasts · · Score: 1, Troll
    but could you trust the student? That's the real question

    um, in short: no.

  6. Re:Why not hack the md5 checksums? on OpenSSH Package Trojaned · · Score: 2

    some linuxes (*cough* Gentoo *cough*) have systems similar to BSD ports which would catch it. the good news is that it takes one person (running one of these systems) noticing it to bring the trojan to light and correct it; what was it in this case, 6 hours? I don't think I'm gonna panic just yet

  7. Re:I've read this already on How The Postman Almost Owned E-Mail · · Score: 2
    Yep. It's already illegal to compete with the U.S. Postal Service for non-expedited personal mail.

    isn't that whole W.A.S.T.E. thing doing pretty well, though?

  8. Re:x-platform on Ars Technica Reviews Mozilla · · Score: 2
    Hell, let's say 80% of people have qt installed. Well, 100% of people have GTK installed. There should be a port for both, but the GTK one first.

    Well, I have GTK installed, but I don't want a GTK port. I only use GTK when I have to (I think I originally installed it with the GIMP); simply having the lib installed doesn't necessarily mean that you want a port that uses it. all personal and subjective, of course; I wouldn't presume to know what others want.

    Oh, both browsers handle all situations just fine, but I like one more than the other in some (the big difference here is that other people would likely feel differently) I'm not sure I agree with the logic with the two shortcuts; if you access them differently why do they have to be the same browser? (as long as they share such info as settings, history and bookmarks, of course) heck, most people wouldn't even know they were the same browser if you gave them two shortcuts (a lot would think they are two different internets, I bet). One way or another, I think I would use Konqy nearly exclusively if it had tabs (and they are coming from what I hear).

    The only thing I mind about having the two environment (or at least libraries) really, is that they don't share themes, if they did I'd be perfectly happy with the arrangement. Developers would have their choice of toolkit, and I would have my prettiness :) (I'm big into prettiness, but only because the rest of it works so well for me, I suppose)

  9. Re:Well... on Ars Technica Reviews Mozilla · · Score: 2
    yeah... see link, click link - very intimidating. but yeah, I don't need a lecture on how fragile our precious users are, so I won't say anything about the "learning curve" for a browser.

    you'd be surprised how many people still use Netscape (6.x AND 4.x), to them Mozilla is an "upgrade". there's also those who use different OSes constantly (work vs home, or workstation vs email box) and might appreciate the same browser on their linux, windows and MacOS boxes.

    Personally, I don't care what your mom does, and will not make any effort whatsoever to influence her decision. (my mom uses Mozilla simply because a bought my family a PC to replace their Mac, and Mozilla is what they are used to, but that's completely besides the point)

    What I don't understand is why a technology cannot be good unless everybody uses it. "MS is dominating the market with a monopoly, we must find an alternative!! well, there's Mozilla for browsing... but will EVERYBODY use it? if not, then it's not a good alternative."

  10. Re:x-platform on Ars Technica Reviews Mozilla · · Score: 2
    try and confuse me with numbers all you want, all I know is that my KDE with Mosfet's Liquid engine looks far prettier than and Gnome app I've seen :)

    seriously though, I think they do have both a GTK and a Qt port, I've just never bothered to get it to work. btw, from your numbers 42% use KDE and 35% use Gnome (with or without the other toolkit's apps), wouldn't it stand to reason that more people would want the Qt port, for their "native" as it were environment?

    I personally use both Mozilla and Konqy. while Konq is prettier (better looking/better anti-aliased fonts is the biggest thing here) and plays better with the rest of the environment, Mozilla is just an all around better browser. why so many people seem to think that you have to use only one browser, anyway?

  11. Re:Well... on Ars Technica Reviews Mozilla · · Score: 2
    on the other hand, having some applications that behave and look consistently across platforms, helps those who are in the process of switching oses. as an example, windows users new to linux are often "comforted" to have the same Mozilla they had in windows.

    I personally would love for Mozilla to use native widgets though, then it would look as pretty as the rest of KDE :)

  12. Re:7 is about right... on Ars Technica Reviews Mozilla · · Score: 2
    From poly: Greek; many

    actually, politics comes from latin politicus which comes from greek politikos (of citizens of the state), which comes from polites (citizen), which in turn originates form polis - city. but the blood sucking tics part is correct, though.

  13. Re:x-platform on Ars Technica Reviews Mozilla · · Score: 2

    since when is GTK one of the two most common? one would think it was Qt

  14. Re:Windows and the Hidden CLI on GUIs for Everyone · · Score: 2
    Celebrate the shell! Bring back the CLI!

    I guess you just need to put some marketing spin on it: "This PC comes with Command Line Interface Technology!" or create a logo for it or something... that will get their attention.

  15. Re:Copyright issues on May I Have Your EULA Please? · · Score: 2
    Copyrighted materials are allowed to be reproduced as part of a critique of the material.

    ah, the quaint old, pre-DMCA days...

  16. Re:great idea .. here's something I'd like to see on May I Have Your EULA Please? · · Score: 2
    Also note, any license that says "the terms of this license are subject to change" should be treated specially (for instance, all BRIGHT RED)

    most (if not all) commercial licenses would then be bright red. a simple flag, in addition to the rest of it, would probably be better

    interesting idea, but it assumes that the amount of "damage" or "good" that a clause does is proportional to its length, this could be very misleading.

  17. Re:Figures lie and liars figure... er? on Ask About 10 Years of Free Web Publishing · · Score: 3, Funny
    pulse of linux penetration

    let's not get carried away here...

  18. Re:Cool project resulting from a big problem? on RPM Dependency Graph · · Score: 2
    yeah, sounds great; but only as long as our beloved "users" use it, and I never have to see this horrendous mess of "generic application" package installations without knowing what applications I install.

    I personally think Gentoo's portage/emerge is perfect and I love it to bits. I would not in a million years recommend that our coveted "home users" use it. Which is why talk of "single" and "standard" always undermines one of linux's (GNU/Linux's whatever) strongest points. If you like standartization above all, use Windows - they seem to be pretty good at it.

    while we are falling all over ourselves trying to come with things "users" will like, let's not forget what we like. (btw, I consistently put "users" in quotes because I feel the title would be more applicable to people like me, seeing how we actually use the damn thing.

  19. Re:former mandrake user on Mandrake Linux 9.0 Beta 1 · · Score: 2
    but I've never been able to figure out how I install it with just a 56k modem

    slowly. you can use the stage3 tarballs during install to save yourself a few hours download time, so you can get a working system, without X or any of that good stuff. it's really not a distro you want to be running without a real internet connection

  20. Re:why does GCC 3.1 break stuff? on Mandrake Linux 9.0 Beta 1 · · Score: 2

    the way I understand it, it's more often than not because of incorrect syntax - gcc 2.9.x was a lot more relaxed about these things, and let through a lot of code that 3.x doesn't. there's also probably some bugs as well, it's .1 not .9 after all...

  21. Re:former mandrake user on Mandrake Linux 9.0 Beta 1 · · Score: 2

    i'll see your apt-get, and I'll raise you an emerge :) I haven't been able to stop raving about it since getting Gentoo a few days ago. "emerge kde" on base system - come back 8 hours later, it's done (including XFree)

  22. Re:like it or not, JPG support is important on ISO Could Withdraw JPEG Standard · · Score: 2
    (remember how fast GIMP dropped GIF support?)

    I especially remember GD dropping it... "good riddance" I think, was my sentiment :)

  23. Re:Who? on Ziggy Stardust 30th Anniversary · · Score: 3, Insightful

    if you consider /.'s 7-8 year old readers "everyone"

  24. for the "who needs this much space?" people on One Terabyte On a 12-inch^H^H^H^Hcm Disk · · Score: 2
    this is actually pretty old

    In IT terms, the human genome is a text of seven billion characters, and together with its associated annotations, Celera already maintains a 70-terabyte database, after only a year and a half of operation. That database is growing rapidly - by 15 to 20 gigabytes a day, or eight terabytes a year - as is the number of people accessing it.

    I don't know when this article is from, but they are already over 100TB.

  25. Re:News blast from the future. on One Terabyte On a 12-inch^H^H^H^Hcm Disk · · Score: 2

    hmm, is Sony only a member of RIAA, or is it both RIAA and MPAA? though I'm sure suing yourself will get some interesting tax loopholes.