Without a doubt, the highest number of vunerabilities are on the Windows side
I only did a cursory count without looking into the details, but I came up with 94 CVE (common vulnerabilities and exposures) entries for Windows, and 155 CVE entries for unix. But many of the vulnerabilities listed on the unix side are in services that no competant administrator would enable in the first place.
It is rather interesting that for both operating system classes, the most common solution is to either update the software or disable the affected services (either completely or just from outside the LAN). On the Windows side, 4 of the top ten are fixed by service packs. On the unix side, 5 are fixed by updates or patches. Both systems share the same vulnerability of accounts with weak passwords, for which the only fix is to slap your users upside the head.
About the only real difference I can see (provided administrators of each system are equally competent) is how quickly security patches can be released. It seems like Windows service packs can take months to get out, while unix software (at least open source) is updated in a matter of days. OTOH, installing a service pack is generally a little easier than recompiling and installing a server daemon. OTOOH, updating a single unix program is much less likely to screw up some other unrelated system component. Just an observation.
If the changes are an enhancement of the existing code, such as adding new features or improvements, increment the minor version number (2.6). If the changes reflect a complete rewrite of the code (or at least a significant part of it), jump to the next major version (3.0).
Photoshop's UI is very standard - a single MDI window.
The single MDI window scheme may be popular among M$-Windows apps, but it is not a general standard. There was an article on Slashdot earlier this month which brought up this very thing: Mac OS X doesn't use MDI.
IMO, giving each document an independent window makes life much easier, because you can move and size them anywhere on the desktop without the constraints of a parent window, and they can be interleaved with windows from other applications.
Do "telnet your.www.host 80" then type "HEAD / HTTP/1.0" and hit enter. Take a look at the "Server:" line, it'll tell you if OpenSSL is installed and enabled. If it is, and the version is less than 0.9.6e, you should upgrade.
Mine simply says "Server: Roxen/2.2.252".
On the other hand, if I run 'rpm -q openssl', it says "openssl-0.9.6-13". Should I be worried that my OpenSSL library is out of date, even though I don't use Apache? (SecurityFocus' listing doesn't mention Roxen, and Roxen's web site appears to be down at the moment. Plus, RedHat doesn't have any newer openssl rpm yet.)
From my own mailbox records, there was a huge jump in the amount of spam I got on a regular basis in 1999. That lasted for three years. Then there was another huge jump in spam volume last June.
The Spam Block Stats on my ISP's web site show similar data. From 1997-1999 they caught just a few thousand spams per day. In late 1999 it jumped to over 10,000 per day. Last May the count jumped ten-fold, and in June it jumped up another order of magnitude so since then they have been catching over a million spams every day!
I've never given this much though before, so I just tried it out. My Chicony (KB-5981) will let me press up to 8 keys simultaneously. After that, the ninth key press doesn't register. Very impressive!
I originally got the Chicony because it was the only one I could find with an audible key click, good tactile feel, *and* it put the '\' key next to the backspace key where I wanted it. I'm seeing now that it is definitely one of the best keyboards around. (Or was -- don't know whether I could still find one these days.)
I switched to Dvorak several years ago. I recently took some more typing tests using Mavis Beacon's program, and was nearly stunned to find that my speed had reached 90 wpm! Compare this to my best Qwerty speed before I switched, which was around 75 wpm. It took me just a couple of months for my Dvorak speed to match my Qwerty speed, but I never thought I'd be able to beat it.
So yesterday when I pulled apart my keyboard to clean it (a very good Chicony -- tactile, audible click, sturdy construction, spare keys just where I want them), I rearranged the key tops into the Dvorak layout.
By an amazing coincidence, I was watching the movie "Apollo 13" tonight on TV and it got me looking up facts about the moon on NASA's web site. I happened to come across a page that tells you how to request lunar samples. From that page:
NASA policies define lunar samples as a limited national resource and future heritage and require that samples be released only for approved applications in research, education, and public display. To meet that responsibility, NASA carefully screens all sample requests with most of the review processes being focused at the Lyndon B. Johnson Space Center (JSC). Individuals requesting lunar samples should follow the steps given below for the appropriate category of sample.
I don't know whether this applies to the particular Honduras lunar sample, but I thought it was interesting.
Although I have yet to read exactly what GPL'ed source code they have modified (if any), I believe the answer to your question is a simple one, answered in section 7 of the GPL:
"If you cannot distribute so as to satisfy simultaneously your obligations under this License and any other pertinent obligations, then as a consequence you may not distribute the Program at all."
Also, section 8 provides for geographical limitations of program distribution to handle the case of other countries having different restrictions.
I would also like to add, in general (not just for the above post), that according to section 3 of the GPL, Echostar is required to provide the source code (make it available) for *all* GPL'ed software they distribute, not just GPL software that they modify.
there was something they had which was like a four screen version of asteroids which looked cool has heck, years ago, but I forget the name of.
I'm not sure if it's the same one you're thinking of, but this reminded me of an asteroids-like game with full-color shaded ships, lots of different enemies and weapons, and the main bad dude was a green planetoid with a mean mouth and eight stubby tubes it used to shoot torpedoes.
I grew up on Atari! Learned how to write programs on the 400/800 (the school just set a few up in the library and said "have at it".) Got a 1040ST for Christmas while I was in college. And I still have my 1040ST, an 800, and a 1200XL that I'll never part with!
Now if I could just figure out a way to prolong the life of my aged Atari floppy disks. I already had one 1050 drive die, and several of those disks have bad sector copy protection so I can't just duplicate them.
A studio generally doesn't like putting a bunch of money into a computer-animated movie, only for it to come out terribly (see Final Fantasy movie).
I saw Final Fantasy, and the major drawback I noticed (storyline aside; OT) was that the characters still looked (up close) and often moved like computer animations. The most realistic action in the movie happened when they used the recorded movements of real actors (stunt men) to define how the computer generated characters should move. For other scenes, they had animators tweak the characters' motions by hand or let the software handle it, and they were glaringly obvious fakes.
It was an impressive achievement to be sure, but still nowhere near as photo-realistic as films such as T2, Jurassic Park, or Star Wars.
Each time I see a vulnerability report about OpenSSH, I wonder whether the vulnerability is also present in plain SSH. Finland's site doesn't seem to have any information on security advisories, at least not in any obvious place.
Some people rave about new software versions being so fast and gloss over the fact that it requires a much faster processor and more memory to get that speed. IMO, if you're going to compare the speed of a new program with that of an older program, you have to run them both on the same hardware -- preferably the hardware that was already in place running the older program.
I have a friend who doesn't buy into any technology hype at all. He still runs Netscape Navigator _3_ on his laptop, because it works well enough for him, it's quick, and it doesn't take up gobs of memory or hard drive space.
Personally I have an old 100MHz '486 which I use as a secondary / backup computer. It's still perfectly serviceable. (I was even able to find a VLB IDE controller card last year when my SCSI hard drives died -- amazing!)
Not all of us are dead. Some, like me, are unemployed and looking for our next job. Given your description, I'm sure I could do better than two or three of your existing admins. Where are you located?
Your contract with the network when you get the show is you're going to watch the spots.
MY HELL! Pardon my vulgarity, but where the **** do these guys get the idea that they have any sort of contract whatsoever with the audience? They may have a contract with the shows' producers and with advertisers, but (especially in the case of broadcast television) they have absolutely no business relationship with the viewers. Even in the case of pay-per-view channels, where there actually is a contract with the subscriber, I would be very surprised (and outraged) if there were any provision which says the subscriber has to watch their station at any given time for any duration.
Geez!
That's even worse that software EULA's; instead of saying if you use the product then you agree to our terms, they are trying to say you will watch our station and agree to our terms!
I got a paper from one of my CS professors (many years back) entitled "Chips Found Floating Down Silicon Slough". It doesn't go into a lot of detail like the Write-Only Memory does, but it has several different chips, including the Don't Gate (which made LSI WOM possible), the IN-OP AMP, and the J(UN)K Flip-Flop.
Slashdot Mirror
that's one way to deal with my^H^Hhis unemployment problem.
(Now where did I put my Atari...)
I only did a cursory count without looking into the details, but I came up with 94 CVE (common vulnerabilities and exposures) entries for Windows, and 155 CVE entries for unix. But many of the vulnerabilities listed on the unix side are in services that no competant administrator would enable in the first place.
It is rather interesting that for both operating system classes, the most common solution is to either update the software or disable the affected services (either completely or just from outside the LAN). On the Windows side, 4 of the top ten are fixed by service packs. On the unix side, 5 are fixed by updates or patches. Both systems share the same vulnerability of accounts with weak passwords, for which the only fix is to slap your users upside the head.
About the only real difference I can see (provided administrators of each system are equally competent) is how quickly security patches can be released. It seems like Windows service packs can take months to get out, while unix software (at least open source) is updated in a matter of days. OTOH, installing a service pack is generally a little easier than recompiling and installing a server daemon. OTOOH, updating a single unix program is much less likely to screw up some other unrelated system component. Just an observation.
US market slumps sees Dow Jones hit four-year low.
Dow Industrials Plunge to Near Five-Year Low at Midmorning
Dow Falls 162 in Morning Trading
U.S. stocks tumble after weak economic news
U.S. Stock Markets [all down]
NASDAQ STOCK MKT
I felt it was a little too warm last summer. Lower temperatures would feel pretty good.
If the changes are an enhancement of the existing code, such as adding new features or improvements, increment the minor version number (2.6). If the changes reflect a complete rewrite of the code (or at least a significant part of it), jump to the next major version (3.0).
The single MDI window scheme may be popular among M$-Windows apps, but it is not a general standard. There was an article on Slashdot earlier this month which brought up this very thing: Mac OS X doesn't use MDI.
IMO, giving each document an independent window makes life much easier, because you can move and size them anywhere on the desktop without the constraints of a parent window, and they can be interleaved with windows from other applications.
Mine simply says "Server: Roxen/2.2.252".
On the other hand, if I run 'rpm -q openssl', it says "openssl-0.9.6-13". Should I be worried that my OpenSSL library is out of date, even though I don't use Apache? (SecurityFocus' listing doesn't mention Roxen, and Roxen's web site appears to be down at the moment. Plus, RedHat doesn't have any newer openssl rpm yet.)
From my own mailbox records, there was a huge jump in the amount of spam I got on a regular basis in 1999. That lasted for three years. Then there was another huge jump in spam volume last June.
The Spam Block Stats on my ISP's web site show similar data. From 1997-1999 they caught just a few thousand spams per day. In late 1999 it jumped to over 10,000 per day. Last May the count jumped ten-fold, and in June it jumped up another order of magnitude so since then they have been catching over a million spams every day!
Try TeX.
(Yeah, I know it has nothing to do with OSS, but .doc is a text document format.)
I've never given this much though before, so I just tried it out. My Chicony (KB-5981) will let me press up to 8 keys simultaneously. After that, the ninth key press doesn't register. Very impressive!
I originally got the Chicony because it was the only one I could find with an audible key click, good tactile feel, *and* it put the '\' key next to the backspace key where I wanted it. I'm seeing now that it is definitely one of the best keyboards around. (Or was -- don't know whether I could still find one these days.)
I switched to Dvorak several years ago. I recently took some more typing tests using Mavis Beacon's program, and was nearly stunned to find that my speed had reached 90 wpm! Compare this to my best Qwerty speed before I switched, which was around 75 wpm. It took me just a couple of months for my Dvorak speed to match my Qwerty speed, but I never thought I'd be able to beat it.
So yesterday when I pulled apart my keyboard to clean it (a very good Chicony -- tactile, audible click, sturdy construction, spare keys just where I want them), I rearranged the key tops into the Dvorak layout.
I take it you mean a company with legal backing, rather than one with technical backing?
By an amazing coincidence, I was watching the movie "Apollo 13" tonight on TV and it got me looking up facts about the moon on NASA's web site. I happened to come across a page that tells you how to request lunar samples. From that page:
I don't know whether this applies to the particular Honduras lunar sample, but I thought it was interesting.
Although I have yet to read exactly what GPL'ed source code they have modified (if any), I believe the answer to your question is a simple one, answered in section 7 of the GPL:
"If you cannot distribute so as to satisfy simultaneously your obligations under this License and any other pertinent obligations, then as a consequence you may not distribute the Program at all."
Also, section 8 provides for geographical limitations of program distribution to handle the case of other countries having different restrictions.
I would also like to add, in general (not just for the above post), that according to section 3 of the GPL, Echostar is required to provide the source code (make it available) for *all* GPL'ed software they distribute, not just GPL software that they modify.
I'm not sure if it's the same one you're thinking of, but this reminded me of an asteroids-like game with full-color shaded ships, lots of different enemies and weapons, and the main bad dude was a green planetoid with a mean mouth and eight stubby tubes it used to shoot torpedoes.
I found it: Blasteroids!
I grew up on Atari! Learned how to write programs on the 400/800 (the school just set a few up in the library and said "have at it".) Got a 1040ST for Christmas while I was in college. And I still have my 1040ST, an 800, and a 1200XL that I'll never part with!
Now if I could just figure out a way to prolong the life of my aged Atari floppy disks. I already had one 1050 drive die, and several of those disks have bad sector copy protection so I can't just duplicate them.
I saw Final Fantasy, and the major drawback I noticed (storyline aside; OT) was that the characters still looked (up close) and often moved like computer animations. The most realistic action in the movie happened when they used the recorded movements of real actors (stunt men) to define how the computer generated characters should move. For other scenes, they had animators tweak the characters' motions by hand or let the software handle it, and they were glaringly obvious fakes.
It was an impressive achievement to be sure, but still nowhere near as photo-realistic as films such as T2, Jurassic Park, or Star Wars.
Each time I see a vulnerability report about OpenSSH, I wonder whether the vulnerability is also present in plain SSH. Finland's site doesn't seem to have any information on security advisories, at least not in any obvious place.
I've had this idea before, because I live alone, and if I died at home it could be weeks before anyone noticed.
The problem is that I'm also absent-minded.
Some people rave about new software versions being so fast and gloss over the fact that it requires a much faster processor and more memory to get that speed. IMO, if you're going to compare the speed of a new program with that of an older program, you have to run them both on the same hardware -- preferably the hardware that was already in place running the older program.
I have a friend who doesn't buy into any technology hype at all. He still runs Netscape Navigator _3_ on his laptop, because it works well enough for him, it's quick, and it doesn't take up gobs of memory or hard drive space.
Personally I have an old 100MHz '486 which I use as a secondary / backup computer. It's still perfectly serviceable. (I was even able to find a VLB IDE controller card last year when my SCSI hard drives died -- amazing!)
Not all of us are dead. Some, like me, are unemployed and looking for our next job. Given your description, I'm sure I could do better than two or three of your existing admins. Where are you located?
That's one of the reasons I had my company install NetBSD 1.4 on our servers!
I shouldn't have said that. I should not have said that.
MY HELL! Pardon my vulgarity, but where the **** do these guys get the idea that they have any sort of contract whatsoever with the audience? They may have a contract with the shows' producers and with advertisers, but (especially in the case of broadcast television) they have absolutely no business relationship with the viewers. Even in the case of pay-per-view channels, where there actually is a contract with the subscriber, I would be very surprised (and outraged) if there were any provision which says the subscriber has to watch their station at any given time for any duration.
Geez!
That's even worse that software EULA's; instead of saying if you use the product then you agree to our terms, they are trying to say you will watch our station and agree to our terms!
I got a paper from one of my CS professors (many years back) entitled "Chips Found Floating Down Silicon Slough". It doesn't go into a lot of detail like the Write-Only Memory does, but it has several different chips, including the Don't Gate (which made LSI WOM possible), the IN-OP AMP, and the J(UN)K Flip-Flop.
I stand corrected. :^)
(Guess I could've/should've looked up Courier-IMAP before responding!)