Slashdot Mirror


User: maxwell+demon

maxwell+demon's activity in the archive.

Stories
0
Comments
12,279
First seen
Last seen
Profile
(view on slashdot.org)

Comments · 12,279

  1. Re:Someone should have attended Secure Codeing 101 on Apache Warns Web Server Admins of DoS Attack Tool · · Score: 1

    There are still people who didn't switch to introsort?

  2. Re:nginx has its problems, too. on Apache Warns Web Server Admins of DoS Attack Tool · · Score: 1

    What about running CGI scripts on a separate virtual machine from the rest of the system? Basically set up a separate web server on that, and have all CGI scripts be executed from there. For access to shared resources, have a "gate keeper" process (or module in the web server) running on the original host which can give out one-time passwords which are then passed onto the script, and which the script can then use to access the resources through that gate keeper. The gate keeper can have a detailed knowledge about what each script is allowed to access, and block any other request. I'm not sure if this would be feasible performance-wise, but I think it would make quite a secure system. Indeed, the script server could mount all file systems readonly (you could even remove the write capability from the file system driver if you're paranoid enough), because you don't need to change the scripts from within the scripts (installing the scripts would be done from the host system or another virtual machine). That way, even if someone managed to hijack a script, the worst he could do is to mess with those things the specific script is allowed to access (because the gate keeper knows which script was called, and won't allow any other access). Unless the attacker additionally finds a security hole in the gate keeper process, of course. As an additional bonus, the scripts would not need to have the database password (the gate keeper would have it), so even if the script server was completely hacked, the database password would still not leak.

  3. Re:Crap on Facebook Makes Privacy Settings More Obvious · · Score: 1

    He said he constantly does what he can to destroy them. Which may very well be nothing at all.

  4. Re:Tea, Early Grey, Hot. on MakerBot Gets $10 Million Investment · · Score: 1

    Sorry, but you'll get something which is almost, but not quite, entirely unlike tea.

  5. Re:Seriously? on MakerBot Gets $10 Million Investment · · Score: 1

    Also they say that the starter edition(!) of the control software will cost $300. Yes, that's for the software only. In addition to the cost of the actual printer (which seems not yet to be decided).

  6. Re:No problem on Zombie Cookies Just Won't Die · · Score: 1

    Okay, I just disable cookies completely in Firefox and explicitly allow the sites that need them for a purpose I agree with.

    The point of those supercookies is that this isn't sufficient.

  7. Re:Clueless haters... on Samsung Cites 2001: A Space Odyssey In Apple Patent Case · · Score: 1

    The phone icon is a universal symbol that's been around since at least 1996. While Apple did apply for a trademark on it in 2010, the pre-existing use of the symbol I've linked to I think pretty clearly invalidates the trademark. Unless you're somehow claiming nobody else is allowed to color their phone symbol green (the internationally recognized color for go).

    Look at this phone: What do you see on one of the buttons? Correct: A green phone receiver icon. And it cleary predates the iPhone.

  8. Re:It's hard to take seriously... on GA Tech: Internet's Mid-Layers Vulnerable To Attack · · Score: 1

    If you know what SSH is then why did you ask about SFTP?

    Nowhere did I ask what SFTP is. I know that. I asked why it should be preferred over FTPS.

  9. Re:Stop blaming the Sites on Zombie Cookies Just Won't Die · · Score: 1

    Read the documentation of BetterPrivacy to see the limitations. Ideally, it would offer controls on par with Cookie Monster. However, that's simply not possible with Flash cookies.

  10. Re:to be competitive on The GIMP Now Has a Working Single-Window Mode · · Score: 1

    What you don't seem to realize is that you're playing exactly the same game: using your familiarity with the Gimp as an excuse to think it's intuitive when it is far from it.

    I said "I consider it very intuitive" not "it is very intuitive". That's a big difference.

    The Gimp blows them all away in sheer maddening unusability, or did the last time I bothered to try, which was probably ten years ago.

    The UI 10 years ago was very different from today. It didn't even have a menu bar back then!

    It earned itself a lifetime ban from me. I literally don't care how much anyone says it's improved; the scars are too deep.

    Well, it's OK if you decided for yourself that you don't want to look at it again, it's your decision. However if you have no idea what the interface looks like today, you should refrain from claiming it to be very bad. You simply don't know the current interface, therefore you're simply not qualified to say whether it's good or bad.

    Note that I don't say the GIMP UI is perfect. It isn't. But overall I consider it quite well. It allowed me to discover a lot of functionality without reading manuals or tutorials.

  11. Re:And yet... on The GIMP Now Has a Working Single-Window Mode · · Score: 1

    Can you imagine getting up in front of a board and being asked what tool you used?

    The GNU Image Manipulation Program.
    Problem solved. :-)

  12. Re:The thing that drives me nuts on The GIMP Now Has a Working Single-Window Mode · · Score: 1

    IIRC, toolbar behavior was especially frustrating for me-- they weren't floating,

    There's an option about whether to keep toolbars on top (it might be that this wasn't yet there when you used it, though). Of course it also depends on whether your window manager honours the request.

    they tended to be buried under things

    Isn't that the same complaint as before?

    and they sometimes got sent to the wrong virtual desktop.

    Never happened to me. Maybe I was just lucky, maybe my window manager is better (it's the window manager's job to put the window on the correct desktop, AFAIK GIMP cannot do anything about it), or maybe my usage pattern just doesn't lead to such problems.

  13. Re:Don't they do this every couple of years? on The GIMP Now Has a Working Single-Window Mode · · Score: 1

    What is GIMP's goal?

    Being good at image manipulation?

  14. Re:That's development release on The GIMP Now Has a Working Single-Window Mode · · Score: 2

    Only Windows can do single window mode?

    Of course programs on other operating systems could do "single window mode" (i.e. MDI). However normally only programs on Windows do.

    Linux always has either none or multiple windows?

    "Single window mode" here means MDI, i.e. having a single main window with subwindows instead of multiple independent windows.

    I for one think it's nice to be able to have the screen focused on a single purpose without a distracting background or icons and windows you might accidentally click. Particularly the visually distraction of it all. Ever noticed how Photoshop has a very dull and gray interface?

    Nobody forces you to have a distracting background. And if the desktop GIMP is running on contains any windows other than those related to your image editing (which may include non-GIMP windows), well, why did you open them on that desktop to begin with?

  15. Re:to be competitive on The GIMP Now Has a Working Single-Window Mode · · Score: 4, Insightful

    Actually I consider it very intuitive. Maybe it's because I've not been trained by Photoshop, and thus don't confuse "it works like Photoshop" with "it is intuitive".

    But if they now have a Photoshop-like MDI interface, maybe they can undo some negative changes in the multi-window interface (like, add back the main menu to the tools window and don't force an otherwise useless image window without an image to be open just to have the main menu available). The Photoshop-UI-lovers can just use the MDI interface.

  16. Re:Who is the new dictator? on Internet Restored In Tripoli As Rebels Take Control · · Score: 1

    You down play genocide by colloquially referring to it as "it would not have been good for the people, but since when do any governments care about the people".

    Where is this downplaying genocide? Or are you of the big illusion that governments are inherently good?

    That is evil, even if you are too ignorant to have intended it.

    Since "evil" is 100% about intention, your sentence does not make sense.

  17. Re:A question on Zombie Cookies Just Won't Die · · Score: 1

    Is there any good reason why one would want to use HTML5 at all?

    At least if it's in HTML, plugins can do something against it. For Flash, there's little plugins can do.

  18. Re:Stop blaming the Sites on Zombie Cookies Just Won't Die · · Score: 4, Informative

    Flash is an external process and thus bypasses browser settings. It even works cross-browser: A "Flash cookie" (LSO) can e.g. be set in Firefox and then read in Opera.

    For HTML5 features however, I have to agree with you.

  19. No problem on Zombie Cookies Just Won't Die · · Score: 5, Informative

    The "standard" Firefox plugins already take care of it.

    No DOM storage without JavaScript, no Flash cookies without Flash -> NoScript
    Most tracking cookies come from ad networks -> AdBlock Plus
    Most tracking cookies come from third party domains -> RequestPolicy.
    And if you get one anyway, you can also get rid of it -> BetterPrivacy.

  20. Re:Who is the new dictator? on Internet Restored In Tripoli As Rebels Take Control · · Score: 1

    You are quite evil to insist that would have been a good thing for the Libyan people.

    Reading comprehension: Epic fail.

    Here's what I wrote (emphasis added): "Yes, it would not have been good for the people"

    What do you think the word I've now emphasized means?

  21. Re:Email transmission? on Motorola's Most Important 18 Patents · · Score: 1

    Well, I guess blocking Apple out of the market for 3 years, or even just for two years, would be disastrous for Apple. So those patents can be an effective weapon even with only 3 years left.

  22. Re:Token Creationist here on Evangelical Scientists Debate Creation Story · · Score: 1

    having multiple apes each independently evolving into human beings

    Here's your error. They didn't evolve independently, they evolved together, interbreeding in their own (rather large) group.

  23. Re:No Apple on Evangelical Scientists Debate Creation Story · · Score: 1

    Apple was never mentioned in the bible.

    Heretic! Next you'll tell us that the bible also didn't tell us to praise the iPhone! :-)

  24. Re:No Apple on Evangelical Scientists Debate Creation Story · · Score: 1

    The modern belief that it was came from a Latin pun equating malus (apple) with malum (evil)

    Having had Latin in school, "malus" means both apple and evil; "malum" is just the neutral version of "malus" (in the second meaning, "evil").

  25. Re:Science and Christianity can't mix... on Evangelical Scientists Debate Creation Story · · Score: 1

    If there was no fall

    There was a fall. Each year, in fact. After the summer and before the winter. :-)