Unfortunately the document is an internal document. I'll have to see about using visio and word (with codeweavers wine) to make an equally annoying document to see if I can crash OOO.
Personally (as a long time KDE user) I don't find windows all that much like KDE. I sat down at an XP box the other day to try and accomplish some simple editing in a word document with embedded visio and felt lost. Perhaps Gnome is becoming more KDE like?
BTW: open office has trouble saving (via crashes) documents with a large number of embedded visio drawings.:(
But does this make you wonder about their recent change in market strategy? Something is amiss, lets push into the Enterprise market (at the expense of the little guy). This could have been an effort to get the books straight before anyone caught on.
This is going to be an interesting one to watch play out over the coming months.
Let me say it first, this could be where IBM swoops in, plucks Redhat off the floor, leaves Redhat do Redhat things and everyone lives happily ever after.
This isn't a dupe, we don't read the articles anymore, now we don't even ready the Posting. Wake up people, this is Linus' rebuttal.
Article Text: LW Slashdotted already
LinuxWorld Exclusive: Linus Torvalds Makes Startling Admission, Discloses *Real* Fathers of Linux
May 17, 2004
Summary
As only Linus Torvalds can, the undisputed - except by the Alexis de Tocqueville Institute - inventor of Linux has as promised let LinuxWorld have his immediate comment on the AdTI's president's claims this morning that the parentage of Linux is in doubt. Read his startling admission exclusively here.
"Ok, I admit it. I was just a front-man for the real fathers of Linux, the Tooth Fairy and Santa Claus."
Thus begins a characteristically Torvaldsian e-mail to LinuxWorld News Desk sent by Linus Torvalds in response to our invitation to comment on the sensationalist claims this morning that he isn't, after all, the inventor of Linux.
"They (for obvious reasons) couldn't step forward to admit that they had gotten bitten by the computer bug, and had been developing a series of operating systems on their own during the off season. But when they started with Linux (which they originally called Freax - they do feel like outsiders, you know, and that's a whole sad story in itself), they felt that they could no longer just let it languish in obscurity. They started to look for a front-man, and since Santa Claus is from Finland and thus has connections to Helsinki University, and the tooth fairy claimed 'He's got good strong teeth,' I got selected."
"Since then," Torvalds continues, "I've lived a life of subterfuge, always afraid that somebody would find out the truth. I'm actually relieved that it's over, and that the Alexis de Tocqueville Institute has finally uncovered the lie. I can now go back to my chosen profession, the exploration of the fascinating mating dance of the common newt."
In a PS he adds:
"Btw, did you know that newts have more offspring if you play the harmonica to them during their mating rituals? It's true."
And in a PPS:
Btw, I do believe that somebody took over adti.net.
I don't think the Alexis de Tocqueville institute ever had humor (they certainly used to take themselves very seriously), but their site today is filled with jokes.
Maybe they forgot to pay their DNS registration fee, and some enterprising person decided to play a joke on them? Or maybe their clocks are running a month-and-a-half late?
I'm running Astaro. Everytime I check out the current competition, nothing comes close. Perhaps it fits my needs well, but it just works. Haven't found anything close in terms of features either (for free).
Heck, even a M$ lozer could download the iso and have a firewall up and running with 2 hours (so long as they have Mozilla installed).
Experienced Astaro admins can have a firewall up in 15 minutes, tops.
you actually got it to work? last time I played with MNF, it required several patches off Florin's personal server, having this file and that file. Not what I wanted in a firewall.
White noise generator. I haven't heard a power supply, hard disk, CPU fan since I moved into a new building with a white noise generator. I'm nearing deafness, but those pesky PC fans are a thing of the past.
thank gawd I can't drink
on
Skittlebrau
·
· Score: 2, Interesting
It's not very often that I come along something that makes me thankful for not being able to drink. But Skittlebrau is one of them...
For the curious (or morbid) http://www.pkdcure.org/aboutPkd.htm is why I can't drink.
Have book reviews on slashdot become about who can get the earliest links to their amazon.com partner site?
This books looks interesting (to me) and I might actually take a trip to the book store to check it out. But the comments (so far) aren't about the book.
Introduction The SANS Top 20 Internet Security Vulnerabilities
The vast majority of worms and other successful cyber attacks are made possible by vulnerabilities in a small number of common operating system services. Attackers are opportunistic. They take the easiest and most convenient route and exploit the best-known flaws with the most effective and widely available attack tools. They count on organizations not fixing the problems, and they often attack indiscriminately, scanning the Internet for any vulnerable systems. The easy and destructive spread of worms, such as Blaster, Slammer, and Code Red, can be traced directly to exploitation of unpatched vulnerabilities.
Three years ago, the SANS Institute and the National Infrastructure Protection Center (NIPC) at the FBI released a document summarizing the Ten Most Critical Internet Security Vulnerabilities. Thousands of organizations used that list, and the expanded Top Twenty lists that followed one and two years later, to prioritize their efforts so they could close the most dangerous holes first. The vulnerable services that led to the examples above Blaster, Slammer, and Code Red, as well as NIMDA worms - are on that list.
This updated SANS Top Twenty is actually two Top Ten lists: the ten most commonly exploited vulnerable services in Windows and the ten most commonly exploited vulnerable services in UNIX and Linux. Although there are thousands of security incidents each year affecting these operating systems, the overwhelming majority of successful attacks target one or more of these twenty vulnerable services.
The Top Twenty is a consensus list of vulnerabilities that require immediate remediation. It is the result of a process that brought together dozens of leading security experts. They come from the most security-conscious federal agencies in the US, UK and Singapore; the leading security software vendors and consulting firms; the top university-based security programs; many other user organizations; and the SANS Institute. A list of participants may be found at the end of this document.
The SANS Top Twenty is a living document. It includes step-by-step instructions and pointers to additional information useful for correcting the security flaws. We will update the list and the instructions as more critical threats and more current or convenient methods are identified, and we welcome your input along the way. This is a community consensus document -- your experience in fighting attackers and in eliminating the vulnerabilities can help others who come after you. Please send suggestions via e-mail to top20@sans.org.
Notes for Readers CVE Numbers You'll find references to CVE (Common Vulnerabilities and Exposures) numbers accompanying each vulnerability. You may also see CAN numbers. CAN numbers are candidates for CVE entries that have not yet been fully verified. For more data on the award-winning CVE project, see http://cve.mitre.org.
The CVE and CAN numbers reflect the top priority vulnerabilities that should be checked for each item. Each CVE vulnerability reference is linked to the associated vulnerability entry in the National Institute of Standards and Technology's ICAT vulnerability indexing service (http://icat.nist.gov). ICAT provides a short description of each vulnerability, a list of the characteristics of each vulnerability (e.g. associated attack range and damage potential), a list of the vulnerable software names and version numbers, and links to vulnerability advisory and patch information.
Ports to Block at the Firewall ---- Jump to index of Ports to Block at the Firewall or Gateway ----
At the end of the document, you'll find an extra section offering a list of commonly probed and attacked ports. By blocking traffic to these ports at the firewall or other network perimeter protection devices, you add an extra layer of defense that helps protect you from configuration mistakes and oversights. Note, however, that using a firewall or router to block network traff
The troll club is a nice place to hang out. No meta moderation, no regular moderation, no need to submit stories (they are all rejected even though they often appear on slashdot hours later). You can just read the stories and make trollish comments knowing very few people see them.
... use complain about a call feature...
What is "use complain about a call feature?" I can't even parse that sentence.
It should have read "use the complain about a call feature".
My telco allows me to dail some *xx code to initiate a complaint and/or problem caller. The point was though that if you have a telemarketer calling you and your CID doesn't work and they won't tell you who they are or provide a phone number, you could activate this feature.
Well shoot, I guess it couldn't be used in this situation. It's call "Call Trace " with qwest.
from some url on www.qwest.com (it's dynamic):
"Call Trace will help you get assistance if you receive harassing, obscene, or threatening phone calls. It traces the phone number of the caller and turns that number over to our Call Identification Center.
Under normal circumstances, three successful traces are required before any deterrent action will be taken by your local law enforcement agency or by Qwest. Under no circumstances will you be given the name or number of the caller."
I guess since it is technically illegal for a telemarketer not to supply you with a name and/or number, you might be able to use this service.
Why are we seeing another article on this very issue?
Everyone understands HD manufacture's measuring systems. Failing that, we could just have billy fix up windows to overstate drive capacity to all windows users and they would never know any better.
Slashdot Mirror
I hope your resume is up2date. Even writers in offbeat weekly get their chains yanked...
My nicotine patch prevents me from clicking that link. I can't read IT stories anymore either. :(
this is a media outlet. what were you expecting?
Not having to see the IT color scheme again in my life won't bother me one iota.
Unfortunately the document is an internal document. I'll have to see about using visio and word (with codeweavers wine) to make an equally annoying document to see if I can crash OOO.
Personally (as a long time KDE user) I don't find windows all that much like KDE. I sat down at an XP box the other day to try and accomplish some simple editing in a word document with embedded visio and felt lost. Perhaps Gnome is becoming more KDE like?
BTW: open office has trouble saving (via crashes) documents with a large number of embedded visio drawings. :(
.dn
This is going to be an interesting one to watch play out over the coming months.
Let me say it first, this could be where IBM swoops in, plucks Redhat off the floor, leaves Redhat do Redhat things and everyone lives happily ever after.
I need a much bigger slashdot sig to carry my slashdot posting disclaimer...
me loves the anonymous coward
Article Text: LW Slashdotted already
LinuxWorld Exclusive: Linus Torvalds Makes Startling Admission, Discloses *Real* Fathers of Linux May 17, 2004 Summary As only Linus Torvalds can, the undisputed - except by the Alexis de Tocqueville Institute - inventor of Linux has as promised let LinuxWorld have his immediate comment on the AdTI's president's claims this morning that the parentage of Linux is in doubt. Read his startling admission exclusively here.
"Ok, I admit it. I was just a front-man for the real fathers of Linux, the Tooth Fairy and Santa Claus."
because we have a microsoft and SCO section, a comdey section would be redundant.
Heck, even a M$ lozer could download the iso and have a firewall up and running with 2 hours (so long as they have Mozilla installed).
Experienced Astaro admins can have a firewall up in 15 minutes, tops.
perhaps there is another release.
1. get their attention
/.
2. be the end of their spam operation (for a while)
3. ???
4. profit
So, whats the url/IP of this/these clowns...
...as I prepare the morality guage for
White noise generator. I haven't heard a power supply, hard disk, CPU fan since I moved into a new building with a white noise generator.
I'm nearing deafness, but those pesky PC fans are a thing of the past.
It's not very often that I come along something that makes me thankful for not being able to drink. But Skittlebrau is one of them...
For the curious (or morbid) http://www.pkdcure.org/aboutPkd.htm is why I can't drink.
Have book reviews on slashdot become about who can get the earliest links to their amazon.com partner site?
This books looks interesting (to me) and I might actually take a trip to the book store to check it out. But the comments (so far) aren't about the book.
What time is it on Mars?
If I didn't have this terrible karma and had some mod points and hadn't started this thread, I'd mod you up.
But why the link to Seagate?
Introduction
The SANS Top 20 Internet Security Vulnerabilities
The vast majority of worms and other successful cyber attacks are made possible by vulnerabilities in a small number of common operating system services. Attackers are opportunistic. They take the easiest and most convenient route and exploit the best-known flaws with the most effective and widely available attack tools. They count on organizations not fixing the problems, and they often attack indiscriminately, scanning the Internet for any vulnerable systems. The easy and destructive spread of worms, such as Blaster, Slammer, and Code Red, can be traced directly to exploitation of unpatched vulnerabilities.
Three years ago, the SANS Institute and the National Infrastructure Protection Center (NIPC) at the FBI released a document summarizing the Ten Most Critical Internet Security Vulnerabilities. Thousands of organizations used that list, and the expanded Top Twenty lists that followed one and two years later, to prioritize their efforts so they could close the most dangerous holes first. The vulnerable services that led to the examples above Blaster, Slammer, and Code Red, as well as NIMDA worms - are on that list.
This updated SANS Top Twenty is actually two Top Ten lists: the ten most commonly exploited vulnerable services in Windows and the ten most commonly exploited vulnerable services in UNIX and Linux. Although there are thousands of security incidents each year affecting these operating systems, the overwhelming majority of successful attacks target one or more of these twenty vulnerable services.
The Top Twenty is a consensus list of vulnerabilities that require immediate remediation. It is the result of a process that brought together dozens of leading security experts. They come from the most security-conscious federal agencies in the US, UK and Singapore; the leading security software vendors and consulting firms; the top university-based security programs; many other user organizations; and the SANS Institute. A list of participants may be found at the end of this document.
The SANS Top Twenty is a living document. It includes step-by-step instructions and pointers to additional information useful for correcting the security flaws. We will update the list and the instructions as more critical threats and more current or convenient methods are identified, and we welcome your input along the way. This is a community consensus document -- your experience in fighting attackers and in eliminating the vulnerabilities can help others who come after you. Please send suggestions via e-mail to top20@sans.org.
Notes for Readers
CVE Numbers
You'll find references to CVE (Common Vulnerabilities and Exposures) numbers accompanying each vulnerability. You may also see CAN numbers. CAN numbers are candidates for CVE entries that have not yet been fully verified. For more data on the award-winning CVE project, see http://cve.mitre.org.
The CVE and CAN numbers reflect the top priority vulnerabilities that should be checked for each item. Each CVE vulnerability reference is linked to the associated vulnerability entry in the National Institute of Standards and Technology's ICAT vulnerability indexing service (http://icat.nist.gov). ICAT provides a short description of each vulnerability, a list of the characteristics of each vulnerability (e.g. associated attack range and damage potential), a list of the vulnerable software names and version numbers, and links to vulnerability advisory and patch information.
Ports to Block at the Firewall
---- Jump to index of Ports to Block at the Firewall or Gateway ----
At the end of the document, you'll find an extra section offering a list of commonly probed and attacked ports. By blocking traffic to these ports at the firewall or other network perimeter protection devices, you add an extra layer of defense that helps protect you from configuration mistakes and oversights. Note, however, that using a firewall or router to block network traff
Would billy and his band of thugs be the leader of the pack?
What about the second 10 for m$? where would they be with the UNIX top 10? top 20?
The troll club is a nice place to hang out. No meta moderation, no regular moderation, no need to submit stories (they are all rejected even though they often appear on slashdot hours later). You can just read the stories and make trollish comments knowing very few people see them.
2. waste $$$
3. make something unique
4. cease to exist
5. wait
6. sue M$ for prior art patent violations
I'm off to create something for micro$oft to steal from me.
My telco allows me to dail some *xx code to initiate a complaint and/or problem caller. The point was though that if you have a telemarketer calling you and your CID doesn't work and they won't tell you who they are or provide a phone number, you could activate this feature.
Well shoot, I guess it couldn't be used in this situation. It's call "Call Trace " with qwest.
from some url on www.qwest.com (it's dynamic):
"Call Trace will help you get assistance if you receive harassing, obscene, or threatening phone calls. It traces the phone number of the caller and turns that number over to our Call Identification Center.
Under normal circumstances, three successful traces are required before any deterrent action will be taken by your local law enforcement agency or by Qwest. Under no circumstances will you be given the name or number of the caller."
I guess since it is technically illegal for a telemarketer not to supply you with a name and/or number, you might be able to use this service.
Why are we seeing another article on this very issue?
Everyone understands HD manufacture's measuring systems. Failing that, we could just have billy fix up windows to overstate drive capacity to all windows users and they would never know any better.