I know some people will say that they need IE for browsing Active X enabled websites. This is a valid argument.
However, I think, the bigger question is why do these website owners completely disregard the security architecture and Open Standards by using technology that is unsafe and proprietary.
The most common answer to this question is: It is easier to develope websites that are only supported in IE i.e. Active X enabled etc. And I am quilty of that as well.
So my proposal is: Instead of wasting time on Developing a Open Source IE, we should spend time to developing tools that make building sites easier using Open Standard technology.
Monopoly is NOT about market share. If a product has a large market share it doesn't mean it is monopolizing the market. Monopolizing refers to the manner of conducting business which hurts other competitors.
i have friend whose dad is a tech junkie. All kinds of gadgets high-speed, workstation laptops etc. One day his son (my friend) got fed with it all, and moed to middle of Mojave desert, where he get no electricity, and certainly no television signal. And he has to drive 5 miles just to get to the closest payfone.
But his daughter, who has doesn't even know what a television is, is very wise for her age (i.e. 7 yrs). Here, I make a distinction between knowledge and wisdom. She may not have all the knowledge, but she is certainly wiser then other kids of her age or even some grown ups.
Would you do something like this? Would you make such a daring move for you children's sake?
I like this move. Code signing of Active X controls will be more effective, since all code will have to signed before execution. Plus I.E. 7 has capability to create Whitelist of certain trusted signers, and reject everything else. See Do you Code Sign ??? for more details.
I am aware of the m of n concept. What i was looking for was some examples of pratical solution (commercial or opensource) that would work for our needs. we can not afford the verisign's key escrow service.
for a OpenSource project relying on one person to be available everytime a new build needs to be rolled-out is not feasible. Even though the project member trust this person with the private key, we can not expect him to be around when we need the executable signed.
sample question:
"Would you be more likely or less likely to by ClosedSource/Proprietary/ClosedStandard Application if you knew they were designed to trap you in becomming life-long customer (vendor lock-in)?" ?
Oh wait, that is not push-polling - That is the truth!!!.
i think RH is just trying to gain higher moral ground by further open sourcing the Fedora distro. After all Suse is gaining momentum.
Rehat vs. IBM + Novell/Suse + Sun
1) Sun's JavaDesktop [sun.com] is based on Suse Linux, and provides a very good mechanism for updates, for just one time cost of $50 (includes Star Office).
2) Sun and Novell(parent company of Suse) are the 2 top contributors to Star Office / Open Office.
3) IBM and Suse have been in bed for a while. Especially in the Lotus Notes area.
4) Novell's new directory services can be used on Suse Linux.
5) Suse can be a cluster resource in the Novell Clustered environment.
Even though FCC has unanimously voted for cell phone usage on planes, it doesn't mean FAA will will approve it too. It might take years before FAA approves it.
Plus Verizon AirFone has a monopoly and good relations with FAA. What makes you think Verizon would let you do that? They don't want to lose their steady income. There is very small spectrum available for a re-transmitter on a plane. What makes you think Verizon is willing to give that up? You can't have Verizon's Airphone and cell phone working at the sametime, due to spectrum limitation.
Before you get too excited, there will be serious roaming charges even if FAA approves the cell phones. This is again due to the limited spectrum, and one large company monopolizing it.
something smells fishy here. I would have thought IBM would have partnered with Novell Suse (to certify apps), since they are more close to Suse than RedHat. And I think they made some serious monetary contribution to the Suse project as well.
delta based patch distribution on linux platform is quite easy. Just use RSYNC to sync application file to the source. I have used this technique of patching (i.e. RSYNC), to provide updates/patches to a in-house built application. Work very nicely.
For example, a devastating attack would be one that enabled adversaries to obtain a legitimate server certificate with a collision to one containing a wildcard for the domain name and an expiration date far in the future.
quick questions:
1) Don't the browser check for wildcard domain names in the certificates???
2) If not, why not???
Windows XP SP2's 'Windows Security Center' is just about as insecure as it could possibly be.
and you were expecting what???
Remember Windows Management Instrumentation requires administrator credentials. If you have admin priveledges on any box, you can do much harm, regardless of the Operating System
I think this is what it will boil down to:
Rehat vs. IBM + Novell/Suse + Sun
1) Sun's JavaDesktop is based on Suse Linux, and provides a very good mechanism for updates, for just one time cost of $50 (includes Star Office).
2) Sun and Novell(parent company of Suse) are the 2 top contributors to Star Office / Open Office.
3) IBM and Suse have been working with each other for a while. Especially in the Lotus Notes area.
4) Novell's new directory services can be used on Suse Linux.
5) Suse can be a cluster resource in the Novell Clustered environment.
Slashdot Mirror
This is why there is a 90-day project currently in progress to select a Full Disk Encryption suites for all government owned computers. A Request for Quotation (RFQ) has already gone out on the April 12, 2007. See http://www.herbb.hanscom.af.mil/download.asp?rfp=R 1450&FileName=NOTICE_OF_AVAILABILITY_OF_A_SOLICITA TION_2.doc
If Adobe releases a free + opensource version of Illustrator/Photoshop, Linux community will be willing to rename GIMP to something easier. :-)
I know some people will say that they need IE for browsing Active X enabled websites. This is a valid argument.
However, I think, the bigger question is why do these website owners completely disregard the security architecture and Open Standards by using technology that is unsafe and proprietary.
The most common answer to this question is: It is easier to develope websites that are only supported in IE i.e. Active X enabled etc. And I am quilty of that as well.
So my proposal is: Instead of wasting time on Developing a Open Source IE, we should spend time to developing tools that make building sites easier using Open Standard technology.
Monopoly is NOT about market share. If a product has a large market share it doesn't mean it is monopolizing the market. Monopolizing refers to the manner of conducting business which hurts other competitors.
i have friend whose dad is a tech junkie. All kinds of gadgets high-speed, workstation laptops etc. One day his son (my friend) got fed with it all, and moed to middle of Mojave desert, where he get no electricity, and certainly no television signal. And he has to drive 5 miles just to get to the closest payfone.
But his daughter, who has doesn't even know what a television is, is very wise for her age (i.e. 7 yrs). Here, I make a distinction between knowledge and wisdom. She may not have all the knowledge, but she is certainly wiser then other kids of her age or even some grown ups.
Would you do something like this? Would you make such a daring move for you children's sake?
I like this move. Code signing of Active X controls will be more effective, since all code will have to signed before execution. Plus I.E. 7 has capability to create Whitelist of certain trusted signers, and reject everything else. See Do you Code Sign ??? for more details.
I am aware of the m of n concept. What i was looking for was some examples of pratical solution (commercial or opensource) that would work for our needs. we can not afford the verisign's key escrow service.
What is an OTS code signing certificate?? BTW we are signing executable and not active X / applets.
for a OpenSource project relying on one person to be available everytime a new build needs to be rolled-out is not feasible. Even though the project member trust this person with the private key, we can not expect him to be around when we need the executable signed.
This is a very common technique. however it is only good when the attacker is trying to brute-force through the login prompt.
if the attacker has access to the password file, this is technique is completely useless.
Why spend time writing bots and rootkits when people will give you what you want for a piece of candy or a ticket to see The Pacifier?
must write rootkits, to allow for future logins. don't want to be handing out candy, for each time i want to login into a system.
Push Polling usually worx.
sample question:
"Would you be more likely or less likely to by ClosedSource/Proprietary/ClosedStandard Application if you knew they were designed to trap you in becomming life-long customer (vendor lock-in)?" ?
Oh wait, that is not push-polling - That is the truth!!!.
i think RH is just trying to gain higher moral ground by further open sourcing the Fedora distro. After all Suse is gaining momentum. Rehat vs. IBM + Novell/Suse + Sun 1) Sun's JavaDesktop [sun.com] is based on Suse Linux, and provides a very good mechanism for updates, for just one time cost of $50 (includes Star Office). 2) Sun and Novell(parent company of Suse) are the 2 top contributors to Star Office / Open Office. 3) IBM and Suse have been in bed for a while. Especially in the Lotus Notes area. 4) Novell's new directory services can be used on Suse Linux. 5) Suse can be a cluster resource in the Novell Clustered environment.
yes i have paid my dues at Penn State....
Even though FCC has unanimously voted for cell phone usage on planes, it doesn't mean FAA will will approve it too. It might take years before FAA approves it.
Plus Verizon AirFone has a monopoly and good relations with FAA. What makes you think Verizon would let you do that? They don't want to lose their steady income. There is very small spectrum available for a re-transmitter on a plane. What makes you think Verizon is willing to give that up? You can't have Verizon's Airphone and cell phone working at the sametime, due to spectrum limitation.
Before you get too excited, there will be serious roaming charges even if FAA approves the cell phones. This is again due to the limited spectrum, and one large company monopolizing it.
something smells fishy here. I would have thought IBM would have partnered with Novell Suse (to certify apps), since they are more close to Suse than RedHat. And I think they made some serious monetary contribution to the Suse project as well.
maybe MS prefers that the asian countries use pirated copies of Windows instead of pirated copies of Linux ;)
you can always use:
Relational Algebra / Domain Relational Calculus / and Tuple Relational Calculus
or make a fone call from your grave using this casket fone booth
email is not very personal.
delta based patch distribution on linux platform is quite easy. Just use RSYNC to sync application file to the source. I have used this technique of patching (i.e. RSYNC), to provide updates/patches to a in-house built application. Work very nicely.
For example, a devastating attack would be one that enabled adversaries to obtain a legitimate server certificate with a collision to one containing a wildcard for the domain name and an expiration date far in the future.
quick questions:
1) Don't the browser check for wildcard domain names in the certificates???
2) If not, why not???
Windows XP SP2's 'Windows Security Center' is just about as insecure as it could possibly be.
and you were expecting what???
Remember Windows Management Instrumentation requires administrator credentials. If you have admin priveledges on any box, you can do much harm, regardless of the Operating System
I think this is what it will boil down to:
Rehat vs. IBM + Novell/Suse + Sun
1) Sun's JavaDesktop is based on Suse Linux, and provides a very good mechanism for updates, for just one time cost of $50 (includes Star Office).
2) Sun and Novell(parent company of Suse) are the 2 top contributors to Star Office / Open Office.
3) IBM and Suse have been working with each other for a while. Especially in the Lotus Notes area.
4) Novell's new directory services can be used on Suse Linux.
5) Suse can be a cluster resource in the Novell Clustered environment.
Where does RedHat fit in this picture????
the higher you charge for your application, the better it will be 'perceived' in the user community.
did i see this guy at Woodstock Market???? ;)