1. apt-get install kernel-image-2.4 2. pick a 2.4 package optimised for your architecture and install it 3. add the initrd=/initrd.img line to your lilo.conf as advised during the upgrade process 4. yes, profit
The bugfix has already been backported to the 2.4.18 kernel in Debian 3.0. From DSA-403-1:
[The bug] has been fixed in version 2.4.18-12 of the kernel source packages, version 2.4.18-14 of the i386 kernel images and version 2.4.18-11 of the alpha kernel images.
Of course, had you read the article, you would already knew this.;)
The debsig-verify package will dpkg (and hence apt, aptitude, at al) verify the signature of any package the user tries to install. Unfortunately, I believe that Debian packages whose maintainer's _do_ sign have their signatures stripped before entering the archive.
This topic seems to resurface every few months on the Debian mailing lists, and the answer is always: the infrastructure is in place, but it is not turned on. Maybe this will go some way to ensuring that all packages are signed when Sarge is released?
zMap: Moving hotspots on video clips; filed 1998, awarded 2003. I remember these from the original Myst, back in what, 1995?. Eolas files suit against Cyan, other gaming companies for violating its patent on hyperlinks embedded in a movie; back-royalties for Myst alone estimated at 165,000,000 pounds, anyone?
MetaMAP: The First Open-Linking Hypermedia System; filed 1987, awarded 1989. Maybe Eolas will go after MS and other browser makers because they violate Eolas' patent on hyperlinking? Hey, British Telecom tried!
The ProofMark System; 1998~2001. Maybe it's just me, but the use of multiple cryptographic secrets in order to timestamp a particular piece of data does not seem particularly novel.
Fortunately, the technology has been sold to another company, but Eolas retains the patents.
How long until the US legal system forces the users of other programs to suffer at the hands of this rapacious company?
SPF is a mechanism to prevent envelope sender forgery. No more, no less.
SPF (and other RMX-link proposals) would be effective at detecting the situation you describe. The spammer who trojaned a Win32 box would only be able to use it to send spam with an envelope sender of something@spammercontrolleddomain.com.
The admin can use a real time black list or other mechanism to enforce policy (drop mails from known spam domains).
Spammers can register many throwaway domains, but: it only takes a few spams detected and reported to the black list before the domain becomes worthless to the spammer again; and such domains will end up being composed of random characters, which tools like Spamassassin can use in their suite of tests (for example, SUSPICIOUS DOMAIN = +2) to make detection even easier.
The Book of Atrus concernes the past of Atrus, explaines the relationship between him and his father Gehn, and sets up the backstory to Myst.
The Book of Ti'ana tells the story of Anna, Gehn's mother, and how she stumbled into the D'ni world, fell in love with *Gehn's* father Aitrus (note the change in spelling), and accidently caused the downfall of the D'ni civilisation.
Finally, The Book of D'ni is set after Riven, and details the adventures of Atrus and Katherine as they try to rebuild D'ni.
The first two books are truly excellent reads, but both have gone out of print. Amazon seems to have copies of the third book, but the "D'ni" is nowhere near as great as the other two.
In chronological order:
The Book of Ti'ana The Book of Atrus Myst Riven The Book of D'ni Myst 3 (I think)
FYI (unless I am wrong, of course), I thought the devfs in the 2.6 kernel is the same as the 2.4 one, but with a lot of (mostly superfluous) functionality removed. udev is a similarly stripped-down replacement for devfsd, the user-space devfs management daemon.
BTW, how did you get your sensors to work? The i2c-proc module has been removed, sensor modules now present their readings via the interface in sysfs... but I thought libsensors has not been updated to read values from sysfs yet? I didn't try decoding the values myself as I know enough about libsensors to know that turning the numbers the hardware gives you into actual temperatures is far from straightforward.:(
The users that the first-run-wizard sets up are members of the Administrators group. So basically the multi-user features of 99% of the XP boxes out there are used to keep user files and settings separate, rather than for actual *security*.:)
This is possible if you don't mind forgoing the (readily crackable) "encryption" that Windows uses when transmitting passwords across the network. You also need to apply a registry patch on each of your client machines to tell them to allow unencrypted passwords (rebooting afterwards, of course!) The file SECURITY that comes with the documentation for Samba has instructions on how to reconfigure Samba itself.
The BPI is quoted in this story as saying that litigation cannot be ruled out for Brits.
Interesting is that the BPI have sued those nice people at Easygroup for charging users £5 to download and burn a CD of MP3s; I'd have thought that Internet Cafés (like regular ISPs, or phone companies) wouldn't be responsible for preventing their users from breaking the law.
Of course, they might have specifically advertised the £5-for-a-CD-of-music service, or perhaps our laws WRT the protection of communications service providers are different from those in America... one of the consequences of reading Slashdot is that you end up knowing more about the US legal system than your own!
Agreed. Anyone with a "lesser" sound card like the SB 64 or 128 will remember the debacle of lies and deceit that surrounded the development of WDM drivers for the cards (necessary for use with Windows 2000). And anyone remember what happened to Ensoniq?
To the point of my post: I find myself about to buy a cheap SB Live 5.1, purely because it supports hardware mixing _damn well_ in Linux. I know that other cards exist, but finding them for a good price (the Live is £25) in the UK is another matter.
Can anyone save me from selling my soul to the devil, again?:)
It might be broken or otherwise removed from Mozilla 1.3--I just checked about:config and there is no entry for network.protocol-handler.external.mailto.:(
Frankly, get another bank: it's their job to cater to your requirements. That's why you allow them to keep your money for you! There is a list floating around somewhere of which banking systems work with which browsers.
Mozilla performing poorly on your system is a different matter. Have you tried Opera? The only reason I use Mozilla (well, Phoenix) today is because Opera 6 couldn't do the flashy DHTML stuff that some sites needed, and I *do* miss Opera's speed--however Opera 7 has just come out with vastly improved DHTML support... and a mode that makes any page look like it was rendered on a C64!!:)
In March, Wichert Akkerman (Debian project leader) was in town for the Linux conference and Expo, which was our chance to sell the idea to the Debian project. Wichert liked the idea (in fact he'd once tried something similar, but never got it fully working), but wanted the addition of the provide(8) feature. This required more work, and thus the project stalled, since on my return from Sydney I had a large backlog of work to deal with.
So maybe in ten years or so we'll see jinit or a similar need/provide system in Debian!
By the way, I think Mac OS X has had the system FreeBSD 5 implements since inception... so maybe it dates back to NeXTSTEP or earlier?
You are. It is your responsibility to ensure the security of the data entrusted to you, be it your company login/password, or the music you download from an online service. If this means you have to spend fifteen minutes gaining a Clue about basic computer securiy then frankly, all the better.
Maybe after a few people are busted for copyright violation after their files were spread around by a trojan, John Smith would actually end up learning how to use his computer!
Interesting point. Although I beleive that IE for Solaris does emulate/whatever the term is portions of the Windows API, IE on the Mac shares only its name with its Windows counterpart.
Would you care to try the demonstration exploit for IE on the Macintosh, and post results?
Slashdot Mirror
Unfortunate. Did you file a bug report against the offending kernel-image package?
1. apt-get install kernel-image-2.4
2. pick a 2.4 package optimised for your architecture and install it
3. add the initrd=/initrd.img line to your lilo.conf as advised during the upgrade process
4. yes, profit
The bugfix has already been backported to the 2.4.18 kernel in Debian 3.0. From DSA-403-1:
[The bug] has been fixed in version 2.4.18-12 of the kernel source packages, version 2.4.18-14 of the i386 kernel images and version 2.4.18-11 of the alpha kernel images.
Of course, had you read the article, you would already knew this. ;)
The debsig-verify package will dpkg (and hence apt, aptitude, at al) verify the signature of any package the user tries to install. Unfortunately, I believe that Debian packages whose maintainer's _do_ sign have their signatures stripped before entering the archive.
This topic seems to resurface every few months on the Debian mailing lists, and the answer is always: the infrastructure is in place, but it is not turned on. Maybe this will go some way to ensuring that all packages are signed when Sarge is released?
Check out SPF. Was posted on Slashdot a couple of weeks ago.
Has anyone checked out the other patents that Eolas owns?
How long until the US legal system forces the users of other programs to suffer at the hands of this rapacious company?
SPF is a mechanism to prevent envelope sender forgery. No more, no less.
SPF (and other RMX-link proposals) would be effective at detecting the situation you describe. The spammer who trojaned a Win32 box would only be able to use it to send spam with an envelope sender of something@spammercontrolleddomain.com.
The admin can use a real time black list or other mechanism to enforce policy (drop mails from known spam domains).
Spammers can register many throwaway domains, but: it only takes a few spams detected and reported to the black list before the domain becomes worthless to the spammer again; and such domains will end up being composed of random characters, which tools like Spamassassin can use in their suite of tests (for example, SUSPICIOUS DOMAIN = +2) to make detection even easier.
The Book of Atrus concernes the past of Atrus, explaines the relationship between him and his father Gehn, and sets up the backstory to Myst.
The Book of Ti'ana tells the story of Anna, Gehn's mother, and how she stumbled into the D'ni world, fell in love with *Gehn's* father Aitrus (note the change in spelling), and accidently caused the downfall of the D'ni civilisation.
Finally, The Book of D'ni is set after Riven, and details the adventures of Atrus and Katherine as they try to rebuild D'ni.
The first two books are truly excellent reads, but both have gone out of print. Amazon seems to have copies of the third book, but the "D'ni" is nowhere near as great as the other two.
In chronological order:
The Book of Ti'ana
The Book of Atrus
Myst
Riven
The Book of D'ni
Myst 3 (I think)
FYI (unless I am wrong, of course), I thought the devfs in the 2.6 kernel is the same as the 2.4 one, but with a lot of (mostly superfluous) functionality removed. udev is a similarly stripped-down replacement for devfsd, the user-space devfs management daemon.
:(
BTW, how did you get your sensors to work? The i2c-proc module has been removed, sensor modules now present their readings via the interface in sysfs... but I thought libsensors has not been updated to read values from sysfs yet? I didn't try decoding the values myself as I know enough about libsensors to know that turning the numbers the hardware gives you into actual temperatures is far from straightforward.
Presumably your private key would be useless without a passphrase/some other kind of external authentication... if not then you deserve what you get :)
The users that the first-run-wizard sets up are members of the Administrators group. So basically the multi-user features of 99% of the XP boxes out there are used to keep user files and settings separate, rather than for actual *security*. :)
You need one of these. My cheque's in the mail! :)
This is possible if you don't mind forgoing the (readily crackable) "encryption" that Windows uses when transmitting passwords across the network. You also need to apply a registry patch on each of your client machines to tell them to allow unencrypted passwords (rebooting afterwards, of course!) The file SECURITY that comes with the documentation for Samba has instructions on how to reconfigure Samba itself.
The BPI is quoted in this story as saying that litigation cannot be ruled out for Brits.
Interesting is that the BPI have sued those nice people at Easygroup for charging users £5 to download and burn a CD of MP3s; I'd have thought that Internet Cafés (like regular ISPs, or phone companies) wouldn't be responsible for preventing their users from breaking the law.
Of course, they might have specifically advertised the £5-for-a-CD-of-music service, or perhaps our laws WRT the protection of communications service providers are different from those in America... one of the consequences of reading Slashdot is that you end up knowing more about the US legal system than your own!
No wonder you had trouble running Lunix from your hard drive... did you run into difficulties attaching your MOS 6510 to your motherboard?
Agreed. Anyone with a "lesser" sound card like the SB 64 or 128 will remember the debacle of lies and deceit that surrounded the development of WDM drivers for the cards (necessary for use with Windows 2000). And anyone remember what happened to Ensoniq?
:)
To the point of my post: I find myself about to buy a cheap SB Live 5.1, purely because it supports hardware mixing _damn well_ in Linux. I know that other cards exist, but finding them for a good price (the Live is £25) in the UK is another matter.
Can anyone save me from selling my soul to the devil, again?
It might be broken or otherwise removed from Mozilla 1.3--I just checked about:config and there is no entry for network.protocol-handler.external.mailto. :(
Frankly, get another bank: it's their job to cater to your requirements. That's why you allow them to keep your money for you! There is a list floating around somewhere of which banking systems work with which browsers.
:)
Mozilla performing poorly on your system is a different matter. Have you tried Opera? The only reason I use Mozilla (well, Phoenix) today is because Opera 6 couldn't do the flashy DHTML stuff that some sites needed, and I *do* miss Opera's speed--however Opera 7 has just come out with vastly improved DHTML support... and a mode that makes any page look like it was rendered on a C64!!
Take a look at this... my favourite part is this:
So maybe in ten years or so we'll see jinit or a similar need/provide system in Debian!
By the way, I think Mac OS X has had the system FreeBSD 5 implements since inception... so maybe it dates back to NeXTSTEP or earlier?
Interesting...
* cortana dons devil's advocate hat
You are. It is your responsibility to ensure the security of the data entrusted to you, be it your company login/password, or the music you download from an online service. If this means you have to spend fifteen minutes gaining a Clue about basic computer securiy then frankly, all the better.
Maybe after a few people are busted for copyright violation after their files were spread around by a trojan, John Smith would actually end up learning how to use his computer!
Wishful thinking, perhaps. ;)
Reminds me, just a little, of The Forbidden Experiment. Plus, of course, The Matrix et al.
ASDA in Europe was bought by Wal-Mart awhile back.
ASDA?
1.1 has this. The pages are unfinished, but functional.
Interesting point. Although I beleive that IE for Solaris does emulate/whatever the term is portions of the Windows API, IE on the Mac shares only its name with its Windows counterpart.
Would you care to try the demonstration exploit for IE on the Macintosh, and post results?