Copyright issues aside, Bugtraq is doing a disservice anyway if they widely distribute word-for-word static advisories soon to be out of date. It's just common sense to have the advisory information as dynamic and fresh as possible, and in a known location. If exploits change, your security advisory should too. Personally, I prefer a consistent web page link, not a bunch of secondary source emails that you have to hobble together in order to secure your system.
I wonder how many people are going to be afraid of one-click shopping, and aren't even going to take the first click on the apple site - like the people using AOL or MSN passport that have already given their credit card and address, or those who just found out that their e-trade account information was being stored insecurely and lost a lot of trust in ecommerce.
Exactly. The Internet is like life in the city - if you learn to avoid the bad parts of town you are probably safe.
But loving parents don't leave their sheltered young child a couple steps away from the red light district. They wouldn't even if the child had a Kevlar vest to "filter" out most stray bullets. They would teach their child what to avoid and where to go, holding the child's hand until he becomes street-smart enough to go out on his own.
There is information available on the internet as destructive to a child's mind as crack is to the body. If your child is capable of saying "no" to drugs he or she say "no" to junk on the internet.
Library filters won't help. If you want to do something that will, take a couple hours to teach your children street-smarts on the Internet.
Linux is for nerds. Slashdot is for nerds. But the majority of the world don't want to be nerds.
It's all about usability.
Microsoft tests each new feature in a usability lab, with developers watching how lowest common denominator users use the software. Open source software traditionally has geographically dislocated developers communicating electronically with smart users. So you end up getting software great for developers and smart users but not usable by the general public, even if it does have a better architecture and fewer bugs. It doesn't have to be that way, but that's the way it is right now, and until it changes, Microsoft will be more widely used, if only because it can be used.
Besides weakling companies who want to use government policy to take the tonya harding approach to business competition, who wouldn't be opposed to software tarriffs?
if I understand correctly, not just for Sega perse, but for anyone writing the GDROM that goes into the Sega, since the internet connection software is part of the GDROM.
Anybody remember back to the days of prodigy when people were finding all sorts of personal information in their cache files that had nothing to do with Prodigy?
Now if they used it to gather information on playing habits to make a database and use some Baysian logic to make AI smarter it might be worth it!
If your pages are only intended for a couple of people, try putting.htaccess/.htpasswd access on your directory, or even just leave your page "out of the web" by making sure nothing else links to it. (and make sure it doesn't show up in a dir listing) If there's a crawler that can get to you page that way, I'd be VERY surprised.
Maybe we can all pitch in and get NSI a subscription to this service.
NSI: Beware the death of e-commerce!
on
NSI to be RBL'ed?
·
· Score: 1
"You should be prepared to accept the consequences of your actions should a company such as Amazon.com lose its domain name, and thus its e-commerce business, as a result of having its notices and invoices intercepted and destroyed."
Um, reality check. Let me get this scenario straight:
Amazon.com joins the realtime black hole list.
Amazon's technical contact doesn't realize that NSI got put on the RBL (despite the fact that just the news of the possibility is making its way into every technical contact's internet news feed).
Amazon's domain is suddenly revoked by NSI -OR- Amazon's business, technical, and administrative contacts all forgot about that small part of the contract that says it has to be renewed.
Amazon loses their domain name and doesn't realize it in time.
Poor little Amazon and 40% of other e-commerce sites go out of business. (accordingly, NSI loses 40% of its business)
To recover losses, Amazon and the other 40% of e-commerce sites who go out of business are going to sue the pants off MAPS (not NSI).
Now that would be funny!
"...do not hesitate to contact me if you wish to discuss this matter further. "
From what I've heard, Slashdot never hesitates. For those of us that are technical contacts, how can we contact you directly?
I have a working 10mbit connection direct to my house via Airswitch. They get "public utility" status with the city and then start stringing cable. I'm surprised more people don't do this. It's not 100 mbit but it beats ISDN, cable modems, and ASDL. www.airswitch.com
Slashdot Mirror
Copyright issues aside, Bugtraq is doing a disservice anyway if they widely distribute word-for-word static advisories soon to be out of date. It's just common sense to have the advisory information as dynamic and fresh as possible, and in a known location. If exploits change, your security advisory should too. Personally, I prefer a consistent web page link, not a bunch of secondary source emails that you have to hobble together in order to secure your system.
I think this is a great question, one I would really like to see an answer to.
I wonder how many people are going to be afraid of one-click shopping, and aren't even going to take the first click on the apple site - like the people using AOL or MSN passport that have already given their credit card and address, or those who just found out that their e-trade account information was being stored insecurely and lost a lot of trust in ecommerce.
Exactly. The Internet is like life in the city - if you learn to avoid the bad parts of town you are probably safe.
But loving parents don't leave their sheltered young child a couple steps away from the red light district. They wouldn't even if the child had a Kevlar vest to "filter" out most stray bullets. They would teach their child what to avoid and where to go, holding the child's hand until he becomes street-smart enough to go out on his own.
There is information available on the internet as destructive to a child's mind as crack is to the body. If your child is capable of saying "no" to drugs he or she say "no" to junk on the internet.
Library filters won't help. If you want to do something that will, take a couple hours to teach your children street-smarts on the Internet.
Linux is for nerds. Slashdot is for nerds. But the majority of the world don't want to be nerds.
It's all about usability.
Microsoft tests each new feature in a usability lab, with developers watching how lowest common denominator users use the software. Open source software traditionally has geographically dislocated developers communicating electronically with smart users. So you end up getting software great for developers and smart users but not usable by the general public, even if it does have a better architecture and fewer bugs. It doesn't have to be that way, but that's the way it is right now, and until it changes, Microsoft will be more widely used, if only because it can be used.
if (opensource==closedminds) microsoftwins();
Besides weakling companies who want to use government policy to take the tonya harding approach to business competition, who wouldn't be opposed to software tarriffs?
if I understand correctly, not just for Sega perse, but for anyone writing the GDROM that goes into the Sega, since the internet connection software is part of the GDROM.
Anybody remember back to the days of prodigy when people were finding all sorts of personal information in their cache files that had nothing to do with Prodigy?
Now if they used it to gather information on playing habits to make a database and use some Baysian logic to make AI smarter it might be worth it!
Teaching evolution isn't outlawed, it's just not mandated.
If your pages are only intended for a couple of people, try putting .htaccess/.htpasswd access on your directory, or even just leave your page "out of the web" by making sure nothing else links to it. (and make sure it doesn't show up in a dir listing) If there's a crawler that can get to you page that way, I'd be VERY surprised.
they may have ripped off the BSD TCP/IP stack
Maybe we can all pitch in and get NSI a subscription to this service.
Um, reality check. Let me get this scenario straight:
- Amazon.com joins the realtime black hole list.
- Amazon's technical contact doesn't realize that NSI got put on the RBL (despite the fact that just the news of the possibility is making its way into every technical contact's internet news feed).
- Amazon's domain is suddenly revoked by NSI -OR- Amazon's business, technical, and administrative contacts all forgot about that small part of the contract that says it has to be renewed.
- Amazon loses their domain name and doesn't realize it in time.
- Poor little Amazon and 40% of other e-commerce sites go out of business. (accordingly, NSI loses 40% of its business)
- To recover losses, Amazon and the other 40% of e-commerce sites who go out of business are going to sue the pants off MAPS (not NSI).
Now that would be funny!"...do not hesitate to contact me if you wish to discuss this matter further. "
From what I've heard, Slashdot never hesitates. For those of us that are technical contacts, how can we contact you directly?
2010? I think it might be a little sooner.
Why? Because your start page will load up faster? Because Rob and Hemos will have time to improve the quality of the site?
...
You may be leaving, but I'll be visiting more and more
I have a working 10mbit connection direct to my house via Airswitch. They get "public utility" status with the city and then start stringing cable. I'm surprised more people don't do this. It's not 100 mbit but it beats ISDN, cable modems, and ASDL. www.airswitch.com