Wait till you get a programming job that consists of coding the same thing over and over for a series of your company's clients.
Grief, I hope not. Please tell me management would at least let you customize the previous project for the next customer. Even better would be to write it modular from the get go, but I realize that often doesn't happen.
Everyone in your example is making an informed, rational decision except for you. Why would the management invest $200 in saving you a week of overtime when they don't have to pay you for it? Also, if $200 is worth less to you than your week of unpaid overtime, you should have bought the tool and used it on your own. I hope that having this pointed out to you triggers an epiphany--the only irrational actor in the free market here was you. I don't know why this was modded down, the poster makes a very good point. The tool must match the need, and in this case it did not.
in-room internet access is the most dangerous network imagineable
I'm not sure I follow. Compared to avoiding possible keyloggers on a public terminal, protecting a personal laptop on an untrusted network is trivial. Sure you need to use encryption and be aware of man-in-the-middle attacks, but it's still a lot easier to manage.
Is the "default state" of an unsecured URL "public" or "private"?
Did a given individual have prior knowledge that their access was unauthorized (by the content provider)?
I thought this was a given. Since the beginning of the web, a public (i.e. internet facing) web server serves public web pages. If the pages are intended to be private, then they are put on a private server (ex: intranet) or secured with an authentication mechanism. To argue otherwise is to go against established practice.
Not linking to the page from your index (or whatever) does not change the fact that the web page has been "published" as soon as it is made available from the server.
matt4077: "Passwords are security by obscurity, too."
No, no, no! A password is a *key* and has nothing to do with obscurity. The quote you refer to is using obscurity to mean enhancing an algorithm by "keeping its process a secret." That is not the case here.
So basically what you're saying is that as an ISP's customer, I'm accessing the internet connection on their terms, which are liable to change on a CEO's whim -- and usually for the worse for me.
I think most readers here realize that...
The outrage comes from the understanding that if a local business started pulling stunts like that they would be blacklisted and (hopefully) go out of business rather quickly. But somehow a large corporation can do this, get away with it, and even profit.
But the parent poster's point is that it has been so overloaded with incompatable extentions, that it is no longer open.
My evidence is only anecdotal, but I've had better luck opening.doc files with "interesting" formatting than.rtf. Recently a technology vendor sent me a quote in RTF that only MS Word could open. That's hardly open to me.
1. Religion does _not_ lead to ethics. There was moral before religion.
Historical evidence suggests that all ancient civilizations had some form of religion. Since atheism appears to be a relatively recent concept (< 500 years), how would you back up the claim that morality is a concept that came before religion? Innate morality, especially leaning toward "good," is what philosophers in the 1800's were thinking of when they coined the term "noble savage." But that idea was generally discarded in the 20th century once those supposed civilizations were never found.
It seems to me that religion has been with humankind for as least as long as recorded history. It's just speculation about what went on before that.
What most of these complex systems really are, are a collection of small modules of which many are most likely writtin at different times, by different people, for different projects and just barely working together.
You mean, like, libraries containing reusable code? Wasn't that supposed to be a good thing?
Uh, no. As a Sys Admin for such an integrated ERP system, I can say the libraries work just fine (database API, encryption, libc, etc). The problem is with the "modules" higher up that handle Payroll, Document Management, etc., that were written by programmers who barely understood the language, much less the system they were supposed to be integrating their project with.
On top of that, the integration of such systems often overwhelms the modularity of the design (at least it does for us) as each module ends up affecting the operation of other modules just as it would in a monolithic system.
With apt I can add a link to my sources list and include anyone's program in the package manager. It could be made a little easier to add such a link, but the ability is there.
I know it is a little harder on the developer's end. I've made a debian package before, but while it wasn't easy, I succeeded where I failed with RPM.
"
* Don't click on links in email messages. Type the URL in your browser manually.
[snip]
I hope everyone realizes that this list was given as an example of where IT "best practices" have failed as a solution for the security problem. The whole point was that the existance of such a list is a symptom of the general security failure, and certainly not as a recommendation from the author.
There should be a piece of software bundled with a camera to rescale the photo for emailing/sending over IM [...]
Picasa has this IIRC. If you click the email button with photos selcted it will automatically resize them. It's free too, but of course it doesn't come with the camera.:-/
In fact, I'd say one of the most frustrating things about X is the braindead configuration. Having to edit a file to enable dual monitors, resolutions, etc is a pain in the ass.
I agree with you there, X is a pain to use. But SuSE's YAST tools go a long way to help, providing GUI system administration similar to MS Windows.
I have a nvidia card and installed SUSE with the binary nvidia drivers. I was able to configure everything through the YAST wizards, and had no problems getting my dual monitor setup working. I'm sure the vendor support helps a lot too.
Did you know that Solaris 10.x is just SunOS 2.10.x? They started calling that Solaris [x].[y] instead of SunOS 2.[x].[y] about SunOS 2.4 I think, but the dual namespace lived for a while - I remember installing SunOS 2.5.1 aka Solaris 5.1 at work...
Um... that doesn't sound quite right. Because when Solaris 2.6 came along it was SunOS 5.6. Then they dropped the 2.x from Solaris like you said, but:
Solaris 2.6 = SunOS 5.6
Solaris 7 = SunOS 5.7
Solaris 8 = SunOS 5.8
Solaris 9 = SunOS 5.9
and so on...
So my guess is that Solaris 10.x would be SunOS 5.10, if they kept up the convention.
Points for Microsoft then. Maybe they'll keep Google motivated to keep their search engine number one. Nothing like good competition to get things going.
Actually that is quite common in third world countries (Mexicans in the USA, people from Ecuador in Spain, etc.) and I'm sure they have less money than most unemployed programmers in the USA. But I guess they're used to not requiring a new house when they arrive in another country.:-/
2) You could make your job unneccessary. OK this is a stretch, especially considerring that you would be the one doing it(?) but I think this thread by default has 20 years to play with...I'm not sure what the nature of your button pushing is, but I understand the nature of *my* button pushing...and I tell you that at this point it's totally automat-able. Do you suppose that it would be possible to completely make you unneccessary, or perhaps 99.9% of your tasks unneccesary?
No, no, no. You have it backwards. By automating 99.9% of what you're doing now, you create the opportunity to do even more, to build on what you have. Only lack of initiative and/or vision will work you out of a job. Think about what else you could do with your time if you didn't have to keep on pressing those buttons.
Taking pictures, like any good photographer would be.;-)
But seriously since I haven't seen the picture and I assume you haven't either, we don't know if the victim was surrounded by EMS personnel or was just lying alone on the pavement. If the victim was being helped by EMS then there's no sense in the photographer getting in the way.
However for the cop to write a ticket while all this was going on is a different matter entirely.
I have a domain, but the provider doesn't provide SMTP services (and the instructions even tell me to use my ISP's SMTP server). So that is not always an option for everyone.
But it seems to be a moot point in the discussion below since the domain key is tied to the domain name and not the SMTP server address.
Slashdot Mirror
I think it's a future enhancement still. Maybe scheduled for release 0.10
Not necessarily.
Wait till you get a programming job that consists of coding the same thing over and over for a series of your company's clients.
Grief, I hope not. Please tell me management would at least let you customize the previous project for the next customer. Even better would be to write it modular from the get go, but I realize that often doesn't happen.
Um... did you miss the part about where he started the script *before* he found out he was to be laid off.
The point was to show a negative aspect of immediate dismissal. Though I think it's more a poor reflection on the IT staffer who killed the accounts.
I'm not sure I follow. Compared to avoiding possible keyloggers on a public terminal, protecting a personal laptop on an untrusted network is trivial. Sure you need to use encryption and be aware of man-in-the-middle attacks, but it's still a lot easier to manage.
I thought this was a given. Since the beginning of the web, a public (i.e. internet facing) web server serves public web pages. If the pages are intended to be private, then they are put on a private server (ex: intranet) or secured with an authentication mechanism. To argue otherwise is to go against established practice.
Not linking to the page from your index (or whatever) does not change the fact that the web page has been "published" as soon as it is made available from the server.
No, no, no! A password is a *key* and has nothing to do with obscurity. The quote you refer to is using obscurity to mean enhancing an algorithm by "keeping its process a secret." That is not the case here.
See Security through obsecurity is no security and Security through obscurity
So basically what you're saying is that as an ISP's customer, I'm accessing the internet connection on their terms, which are liable to change on a CEO's whim -- and usually for the worse for me.
I think most readers here realize that...
The outrage comes from the understanding that if a local business started pulling stunts like that they would be blacklisted and (hopefully) go out of business rather quickly. But somehow a large corporation can do this, get away with it, and even profit.
But the parent poster's point is that it has been so overloaded with incompatable extentions, that it is no longer open.
My evidence is only anecdotal, but I've had better luck opening .doc files with "interesting" formatting than .rtf. Recently a technology vendor sent me a quote in RTF that only MS Word could open. That's hardly open to me.
KnightTristan wrote:
Historical evidence suggests that all ancient civilizations had some form of religion. Since atheism appears to be a relatively recent concept (< 500 years), how would you back up the claim that morality is a concept that came before religion? Innate morality, especially leaning toward "good," is what philosophers in the 1800's were thinking of when they coined the term "noble savage." But that idea was generally discarded in the 20th century once those supposed civilizations were never found.
It seems to me that religion has been with humankind for as least as long as recorded history. It's just speculation about what went on before that.
I'd mod you up if I had the points. Despite all the typos, you have best expressed statement about why to use VMs in the whole thread.
Uh, no. As a Sys Admin for such an integrated ERP system, I can say the libraries work just fine (database API, encryption, libc, etc). The problem is with the "modules" higher up that handle Payroll, Document Management, etc., that were written by programmers who barely understood the language, much less the system they were supposed to be integrating their project with.
On top of that, the integration of such systems often overwhelms the modularity of the design (at least it does for us) as each module ends up affecting the operation of other modules just as it would in a monolithic system.
For Solaris you can still use zdump, just with a timezone entry instead of /etc/localtime:
zdump -v US/Eastern | grep 2007
From BigAdmin
Maybe he meant that... but he's still wrong. Many people can be fooled by false emotion, including myself. Isn't that what acting is all about?
Excellent post! If I had mod points...
With apt I can add a link to my sources list and include anyone's program in the package manager. It could be made a little easier to add such a link, but the ability is there.
I know it is a little harder on the developer's end. I've made a debian package before, but while it wasn't easy, I succeeded where I failed with RPM.
I hope everyone realizes that this list was given as an example of where IT "best practices" have failed as a solution for the security problem. The whole point was that the existance of such a list is a symptom of the general security failure, and certainly not as a recommendation from the author.
Picasa has this IIRC. If you click the email button with photos selcted it will automatically resize them. It's free too, but of course it doesn't come with the camera. :-/
In fact, I'd say one of the most frustrating things about X is the braindead configuration. Having to edit a file to enable dual monitors, resolutions, etc is a pain in the ass.
I agree with you there, X is a pain to use. But SuSE's YAST tools go a long way to help, providing GUI system administration similar to MS Windows.
I have a nvidia card and installed SUSE with the binary nvidia drivers. I was able to configure everything through the YAST wizards, and had no problems getting my dual monitor setup working. I'm sure the vendor support helps a lot too.
Did you know that Solaris 10.x is just SunOS 2.10.x? They started calling that Solaris [x].[y] instead of SunOS 2.[x].[y] about SunOS 2.4 I think, but the dual namespace lived for a while - I remember installing SunOS 2.5.1 aka Solaris 5.1 at work...
Um... that doesn't sound quite right. Because when Solaris 2.6 came along it was SunOS 5.6. Then they dropped the 2.x from Solaris like you said, but:
So my guess is that Solaris 10.x would be SunOS 5.10, if they kept up the convention.
cf: Solaris versions
Points for Microsoft then. Maybe they'll keep Google motivated to keep their search engine number one. Nothing like good competition to get things going.
Actually that is quite common in third world countries (Mexicans in the USA, people from Ecuador in Spain, etc.) and I'm sure they have less money than most unemployed programmers in the USA. But I guess they're used to not requiring a new house when they arrive in another country. :-/
2) You could make your job unneccessary. OK this is a stretch, especially considerring that you would be the one doing it(?) but I think this thread by default has 20 years to play with...I'm not sure what the nature of your button pushing is, but I understand the nature of *my* button pushing...and I tell you that at this point it's totally automat-able. Do you suppose that it would be possible to completely make you unneccessary, or perhaps 99.9% of your tasks unneccesary?
No, no, no. You have it backwards. By automating 99.9% of what you're doing now, you create the opportunity to do even more, to build on what you have. Only lack of initiative and/or vision will work you out of a job. Think about what else you could do with your time if you didn't have to keep on pressing those buttons.
Taking pictures, like any good photographer would be. ;-)
But seriously since I haven't seen the picture and I assume you haven't either, we don't know if the victim was surrounded by EMS personnel or was just lying alone on the pavement. If the victim was being helped by EMS then there's no sense in the photographer getting in the way.
However for the cop to write a ticket while all this was going on is a different matter entirely.
I have a domain, but the provider doesn't provide SMTP services (and the instructions even tell me to use my ISP's SMTP server). So that is not always an option for everyone.
But it seems to be a moot point in the discussion below since the domain key is tied to the domain name and not the SMTP server address.
He could have installed everything on a clean drive and then didn't see have the option come up and assumed it wasn't there.
SUSE does a great job repartioning; so easy I almost missed it being done.