This is one spot were DirectX has a big advantage over OpenGL. DirectX is designed by only one party, rather than a big committee of different companies who want different features. As such, DirectX has a much faster development cycle, and gets improvements quite often. The last big improvement to OpenGL was released in 1998, version 1.2. Four years is a long time in the world of 3D graphics.
This is not true at all. OpenGL has a clear extension mechanism and the Architecture Review Board approves vendor extensions frequently in the period between spec revisions. In fact, a large component of the spec revisions is the inclusion of ARBextensions in the core spec.
No it isn't weird - LoS is a good model for fixed station deployments (you generally need LoS for long distance wireless anyway). In fact, 802.11b defines an infrared physical layer.
Aqsis is a GPL implementation of the Renderman spec. It probably isn't as full featured as BMRT was, but it does have the benefits of being really free and under active development.
Well, the point is that it is fundamentally wrong for the government to do anything to hinder the workings of the market economy.
I sincerely hope that you are joking, or playing devil's advocate. The "market economy" is a fiction, created by government contrivance. Do you really believe that it is some sort of objective truth? or that it is the ultimate expression of human desire for advancement?
The market economy has done such an excellent job in protecting the environment and promoting individual liberty. Ironically enough, the "free market" has given us the most blatent interferences in market freedom that we have seen.
This is not to say that the market is undesirable or is not an excellent allocator of (some) resources - just that is it insufficient as a complete societal model.
That assumes the presence of outbound filter rules. (Your idea to filter the privsep user is an excellent one.)
You wouldn't need filesystem space to launch an attack - you can upload code into the compomised process' address space, though getting this right would be tricky.
Firstly, do you patch all local privilege escalation vulnerabilities as quickly as you patch remote vulnerabilities? I know I don't.
Please RTFM: An attacker breaking privsep will find themselves in an empty chroot jail with a unique, non-priviliged UID & GID. Leveraging such an attack to even read local files would be very difficult.
Your points about a broken privsep being used to stage network-based attacks are valid.
Chances are that this release has fewer security problems, rather than more. If it does have security problems, they are highly likely to affect older version as well - the amount of completely new code is not that great.
But, on the other hand, Damien miller's key has no sigs on it, so there's no reason for us to believe that it really belongs to him..
The key has been pretty widely distributed and has been used to sign OpenSSH releases since nearly day 1 (I used a pgp2.6 key for some of the earlier releases IIRC).
If the key were to suddenly change, it would be noticed (note that this is exactly the trust model that sshd host keys use).
I would like to get some signatures on the key, but haven't had much opportunity. Hopefully I'll get off my behind and go to the next Asia-Pacific IETF conference and get some sigs there.
They don't have to get it - they have the resources and the drive to catch the horse *after* it has bolted. A prime example of this is IE, whose early versions were truely aweful but is now the best browser on the market (though Mozilla is real close, maybe even better*).
Another example is DirectX - they kept plugging away at it. Now it has surpassed OpenGL in terms of functionality and is the place where new technologies appear first.
Another example will be the Xbox. If Sony, et al are grinning now then they won't when XboxII comes out.
Microsoft can afford to play follow the leader - they have the money and the bloody minded resove to catch up from the rear.
I wrote my third year critical studies paper on the semiology of early arcade games (especially Missile Command and Space Invaders IIRC). My second year cinema studies paper was on the sound design on Tron.
You can bet the libertarians (who have been highly active in trying to ascribe their values to OSS development) will take great issue with this choice of word.
It is an interesting bit of spin to label the hesitancy of sites to upgrade to Apache 2.0 "rejection".
Apache 2.0 has only recently been released and has not even made it into a large number of server OS distributions (certainly not in the way Apache 1.x has).
After its inclusion in a few OS distributions and after support for mod_p{erl,php} becomes stable, then we will be in a position to judge whether or not it is being rejected, but certainly not now.
Slashdot Mirror
Why the take-off restrictions on using laptops and other electronic devices?
They may not purse legally mandated DRM, but you can bet that they will pursue de-facto DRM through hardware, BIOS and operating system vendors.
Why don't you write up what you like as a proposal to the KDE and/or GNOME teams - the situation isn't going to change if people sit on their hands.
Get off the high horse people.
Great way to finish a totally pompous rambling rant.
This is one spot were DirectX has a big advantage over OpenGL. DirectX is designed by only one party, rather than a big committee of different companies who want different features. As such, DirectX has a much faster development cycle, and gets improvements quite often. The last big improvement to OpenGL was released in 1998, version 1.2. Four years is a long time in the world of 3D graphics.
This is not true at all. OpenGL has a clear extension mechanism and the Architecture Review Board approves vendor extensions frequently in the period between spec revisions. In fact, a large component of the spec revisions is the inclusion of ARBextensions in the core spec.
No it isn't weird - LoS is a good model for fixed station deployments (you generally need LoS for long distance wireless anyway). In fact, 802.11b defines an infrared physical layer.
./configure make make install
Aqsis is a GPL implementation of the Renderman spec. It probably isn't as full featured as BMRT was, but it does have the benefits of being really free and under active development.
They've veered from true science and now feel the need 'preach' environment, evolution, abortion, etc.
I suppose you'd prefer them to state the "facts" of creation "science" instead.
This is probably dead-on, except it will be:
<document type="word">
<ole><![CDATA[ (linenoise) ]]></ole>
</document>
I.e OLE blobs embedded in an XML container
I sincerely hope that you are joking, or playing devil's advocate. The "market economy" is a fiction, created by government contrivance. Do you really believe that it is some sort of objective truth? or that it is the ultimate expression of human desire for advancement?
The market economy has done such an excellent job in protecting the environment and promoting individual liberty. Ironically enough, the "free market" has given us the most blatent interferences in market freedom that we have seen.
This is not to say that the market is undesirable or is not an excellent allocator of (some) resources - just that is it insufficient as a complete societal model.
- Lack of configuration to a fault, for example.
Have you tried running gnome-font-properties? What more configuration do you want?
That assumes the presence of outbound filter rules. (Your idea to filter the privsep user is an excellent one.)
You wouldn't need filesystem space to launch an attack - you can upload code into the compomised process' address space, though getting this right would be tricky.
Firstly, do you patch all local privilege escalation vulnerabilities as quickly as you patch remote vulnerabilities? I know I don't.
Please RTFM: An attacker breaking privsep will find themselves in an empty chroot jail with a unique, non-priviliged UID & GID. Leveraging such an attack to even read local files would be very difficult.
Your points about a broken privsep being used to stage network-based attacks are valid.
Chances are that this release has fewer security problems, rather than more. If it does have security problems, they are highly likely to affect older version as well - the amount of completely new code is not that great.
But, on the other hand, Damien miller's key has no sigs on it, so there's no reason for us to believe that it really belongs to him..
The key has been pretty widely distributed and has been used to sign OpenSSH releases since nearly day 1 (I used a pgp2.6 key for some of the earlier releases IIRC).
If the key were to suddenly change, it would be noticed (note that this is exactly the trust model that sshd host keys use).
I would like to get some signatures on the key, but haven't had much opportunity. Hopefully I'll get off my behind and go to the next Asia-Pacific IETF conference and get some sigs there.
They don't have to get it - they have the resources and the drive to catch the horse *after* it has bolted. A prime example of this is IE, whose early versions were truely aweful but is now the best browser on the market (though Mozilla is real close, maybe even better*).
Another example is DirectX - they kept plugging away at it. Now it has surpassed OpenGL in terms of functionality and is the place where new technologies appear first.
Another example will be the Xbox. If Sony, et al are grinning now then they won't when XboxII comes out.
Microsoft can afford to play follow the leader - they have the money and the bloody minded resove to catch up from the rear.
* - haven't tried 1.1 or 1.2a yet
The evil cult of the astronomers are already represented there.
It should have been $000000
I wrote my third year critical studies paper on the semiology of early arcade games (especially Missile Command and Space Invaders IIRC). My second year cinema studies paper was on the sound design on Tron.
:)
Benefits of being an arts graduate
You can bet the libertarians (who have been highly active in trying to ascribe their values to OSS development) will take great issue with this choice of word.
I've recently started a lowkey campaign to make Slashdot blurbs more user-friendly...
You really need to get out more.
It is an interesting bit of spin to label the hesitancy of sites to upgrade to Apache 2.0 "rejection".
Apache 2.0 has only recently been released and has not even made it into a large number of server OS distributions (certainly not in the way Apache 1.x has).
After its inclusion in a few OS distributions and after support for mod_p{erl,php} becomes stable, then we will be in a position to judge whether or not it is being rejected, but certainly not now.
A question which could have been answered in 10 seconds by Google.
So you have built a device which cheaply and effectively does this for flowing water? This is only snake oil if it isn't effective.