Re:Keep putting it off. Please !
on
Longhorn in 2006
·
· Score: 1
It all depends what they're spending their time. If they're spending this time auditing their own code, then I (a Linux user) believe that Longhorn will be a much more secure version than in times past.
If they're spending their time adding new features, I believe a good number of new bugs will be introduced.
I do however believe that the next version will be more secure. I don't believe it will be perfectly secure, but I do believe Microsoft might have learned something from the flaws in this round.
Re:Keep putting it off. Please !
on
Longhorn in 2006
·
· Score: 1
> I hear a lot of baseless whining about MS
What you mean baseless whining? Was I on the wrong note? I'll have you know that all my whining is in bass. Perfect low C, it tell you! Yep. Nobody whines in bass like I do. (Unless you kick me. Then I might hit a high note.)
I really don't see where the 5% figure comes from. Install Xpde. It will give it the look of Windows XP. Use mozilla, with the IE theme from mozdev.org. That way mozilla will appear to be IE (duh!).
> It may be funny, but sadly some people do really think that firewalling port 80 (or 8080, or 21, or 20, or 22, or 443 -- et cetera, ad nonsensum) is the answer indeed. Some people may be surprised (not Slashdot readers though, mind you) but there simply is no simple answer. There is no working snake oil. The buzzword of the week alone will not save you. What are my answers then? Simple. Read Security Focus. Read Crypto-Gram. Read Phrack. Read the underground IRC discussions. Read encrypted Usenet posts. Read the articles posted on Freenet. Read the books for god's sake! Read about systems. Read about networking protocols. Read about cryptography. Read about cryptanalysis. Employ honeypots in every network. Learn C. Learn Assembly (Intel as well as AT&T syntax, for different CPU architectures). Learn executable binary formats. Learn how to see polymorphic shellcodes in network packets hex dump, just looking at tcpdump output scroling on your terminal. Learn how to speak different protocols (http, smtp, pop3, etc.) with netcat, then making your own tcp packets, then your own hand-made ip packets, then ethernet, ppp and slip. Learn. Read. Then learn some more. Read. Read. Read. And learn the one most important thing: security is not easy. When everything fails, you are on your own.
Great idea! After I get done with that, I think I'll teach the users the difference between real error messages and banner ads.....
I'm no psychology major (but I'm sure that those of you who are can back me up. Or flame me.)
Harsh DRM is destined to fail. Not for the fact that it's badly engineered, but for the fact that people don't like to be told what to do.
Telling people to not to do something makes them want to. Trying to take away their ability to makes them mad, and try even harder.
The reason harsh (as opposed to all DRM) will fail, is that the harder companies try and destroy consumer rights (and yes, I do believe that the right to make an archival copy and the right to listen to music on the device of my choice is a consumer right), the harder people are going to try to find a way to circumvent it.
Before someone says, so why don't people kill since their are told not to, or why don't they steal, consumers believe it is their right to do with the media, whatever they please. Trying to take what someone considers a right from them, only ends up angering the consumer.
Oh no. To add a driver (or module in the linux case), wouldn't one have to be logged in as a superuser? Otherwise, wouldn't it not have the authority to load/unload drivers/modules?
Warning - Shift key usage has been detected. You will be sued.
Warning - You mentioned *nix, you will be sued.
Warning - You talked about our special driver. You will be sued.
> Yes and it is worth the jump backwards in technology to help OS manufacturers continue to pedal sub par product and services that are the real cause of the problem. Attacking a problem at somewhere other than its source has always been such a great way to deal with challenges like this.
Well, actually I've got the patch for this. To run it just type 'format c:/Q'.
For the *nix users out there...
(and be sure to be root when you do this!)
cd/boot
rm *.*
(Correct me on the syntax if I'm wrong.)
This should remove most of the vulnerabilities in your OS.
The XBox will rip digital media. Since the XBox won't load the driver that enables the copy protection, doesn't that make the XBox a violation of the DMCA? Seeing as it circumvents the copy protection system, as it does?
> However, I have two concerns, I can't obviously solve. First, how widely distributed is this, and how much load can it afford to take? Clearly somebody who has an interest in anti-spam utilities not working has taken to DDos'ing them off the net. I'd be concerned about this.
Well, if I understood right, before the mail gets accepted, a query is run from the DNS server. I would assume that if they did DDoS a DNS server, no mail would go through. Kinda sure that would qualify as a felony. And then websites would start disappearing off the net.
> Second, how much "identity theft" will happen? It's relatively easy to steal a block of IP's or a domain name by faking headers/company stationary/company letter head. Actually authenticating the user is authorized to send from.
Stealing a block of IP's by forging documents should definately count as a felony. Computer crime, forgery, theft. I really don't think that even spammers are that stupid. If they are, they won't be for long.
Dude, I'm afraid I'm gonna have to sue you. For emotional damages no less. Why didn't you foresee all the stress and emotional pain that your comment could put a person through! Oh the agony! You should have though about every possible effect you comment could ever had!
> So actually, MS is just getting people to recognize what they actually ARE, rather than what they are perceived to be. Much to the chagrin of the anti-MS zealots here, who see the Windows Boogie-man hiding under their beds and in every closet.
Uh, I could only wish. My Windows Boogie-man, makes a point of following me everywhere, sitting around in my room, and basically making himself as conspicuous (spell check that) as possible. Does your Windows boogieman try and hide himself? If so, I'll trade with you.
> But then they will argue That users are ignorant of Computer Security, so it must be controlled by a more intelligent source, like Microsoft. (It's true most are, but does anyone believe MS will fix it?)
Then I will argue that Microsoft knows nothing (or does nothing) about security and I really do think I'd be better holding the controls. Of course, that assumes that I still use Windows.......
Unfortunately, I'm not the admin. I'm just the guy that gets to fix all the problems. And the guy with admin access. And the guy that doesn't actually work there. Just throw in a few various volunteer hours every week. And I've still got more problems fixed than the admin.
Why do we even have to use computers? What if place a bid in for trained monkeys? Sure, they're not running at 3Ghz, but think of the cute user interface!!
And just for good measure, release the new source every night via CVS or tar. Let the taxpayers do bug fixing before the software ever enters beta. (Seriously. I know I would.)
> As dictionary.com defines monopoly:
A right granted by a government giving exclusive control over a specified commercial activity to a single party.
Mass. wants opensource. Be it Linux, BSD, Open Dos (Heavens no!), or some monster you cookup yourself. And even at that, saying you want linux is not like saying you want windows. Windows comes from Microsoft. Only one manufacturer. Linux well, it could be:Mandrake, Redhat, Suse, IcePack (actually a good distro), Slackware, etc.....
There are many distributors of Linux. Each one can outbid the other. And technically, since Linux is GPLed, I could put in a bid, to sell them my personal distro.
> They're talking about patches, bugfixes, etc. etc. etc. Windows Update is easy and intuitive, and takes about 2 minutes to do (and 2 minutes to teach someone how to do it). No such luck on a Linux platform.
I'm compelled to disagree with you on this. At my highschool, right after blaster came out, we went around running windows update on all the PCs. Fine. When there are alot of people trying to do Windows Update at once, the connection all but dies. And I believe you can actually do distributed updates rather easily with linux. If not by remotely loging in, then with shell scripts.
> The "Freeware Initiative" will require that all IT expenditures in 2004 and 2005 be made on an open-source/Linux format. Proprietary vendors will be effectively barred from competing for state contracts, limiting competition and raising costs.
This supposed "lack of competition" could double the cost of freeware! The horrors! That would effective raise the cost of freeware to free! Don't take it from em! Show em whose boss! Tell em you'll only pay half of free!
Really. Proprietary vendors will be effectively barred from competing for state contracts? Whose stopping em? And technically, since Linux is GPLed, couldn't I put in my on bid at half the price of anyone else? Yeah. That creates almost infinate different suppliers. So much for the "limiting competition".
> But I wouldn't wanna fly on it... they'll probably innovate the control systems with.NET and Passport, so if someone were to check their hotmail they might accidentally trigger the CRASH_INTO_MOUNTAIN subroutine.
I don't see your point. What in your history with Microsoft make you think that their CRASH_INTO_MOUNTAIN subroutine would actually work?:P
The good news is that the new toasters are supposed to include a "compatability mode" for bread that wants direct access to the heating unit, not the HAL (Heat Abstraction Layer, of course!). But unfortunately, new drivers will have to be written to make it work with older toaster covers, or 3rd party heating coils.
> I don't want a MS powered toaster. It would bring down my power network, and I would be open to power line viruses. Besides, it might start doing weird things and throw the toast at the ceiling for no reason, or just refuse to toast, and I'd have to reboot the toaster to get it to work again...
You fool! Don't you know you can only use licenced bread with a Microsoft toaster?! Otherwise you add the potential for security vulnerabilities, like other people taking you toast!
Slashdot Mirror
If they're spending their time adding new features, I believe a good number of new bugs will be introduced.
I do however believe that the next version will be more secure. I don't believe it will be perfectly secure, but I do believe Microsoft might have learned something from the flaws in this round.
What you mean baseless whining? Was I on the wrong note? I'll have you know that all my whining is in bass. Perfect low C, it tell you! Yep. Nobody whines in bass like I do. (Unless you kick me. Then I might hit a high note.)
I really don't see where the 5% figure comes from. Install Xpde. It will give it the look of Windows XP. Use mozilla, with the IE theme from mozdev.org. That way mozilla will appear to be IE (duh!).
Great idea! After I get done with that, I think I'll teach the users the difference between real error messages and banner ads.....
If you say no, and they still won't let you access the CD, couldn't you sue them, because they didn't have authorization to do that to your PC?
Harsh DRM is destined to fail. Not for the fact that it's badly engineered, but for the fact that people don't like to be told what to do.
Telling people to not to do something makes them want to. Trying to take away their ability to makes them mad, and try even harder.
The reason harsh (as opposed to all DRM) will fail, is that the harder companies try and destroy consumer rights (and yes, I do believe that the right to make an archival copy and the right to listen to music on the device of my choice is a consumer right), the harder people are going to try to find a way to circumvent it.
Before someone says, so why don't people kill since their are told not to, or why don't they steal, consumers believe it is their right to do with the media, whatever they please. Trying to take what someone considers a right from them, only ends up angering the consumer.
Warning - Shift key usage has been detected. You will be sued.
Warning - You mentioned *nix, you will be sued.
Warning - You talked about our special driver. You will be sued.
What were you thinking. Tell me you didn't use the shift key to type that 'P'. You felon.
(I used the shift!)
Well, actually I've got the patch for this. To run it just type 'format c: /Q'.
For the *nix users out there...
(and be sure to be root when you do this!)
cd /boot
rm *.*
(Correct me on the syntax if I'm wrong.)
This should remove most of the vulnerabilities in your OS.
Well, if I understood right, before the mail gets accepted, a query is run from the DNS server. I would assume that if they did DDoS a DNS server, no mail would go through. Kinda sure that would qualify as a felony. And then websites would start disappearing off the net.
> Second, how much "identity theft" will happen? It's relatively easy to steal a block of IP's or a domain name by faking headers/company stationary/company letter head. Actually authenticating the user is authorized to send from.
Stealing a block of IP's by forging documents should definately count as a felony. Computer crime, forgery, theft. I really don't think that even spammers are that stupid. If they are, they won't be for long.
Yeah. Right. Meanwhile, back in the real world...
Uh, I could only wish. My Windows Boogie-man, makes a point of following me everywhere, sitting around in my room, and basically making himself as conspicuous (spell check that) as possible. Does your Windows boogieman try and hide himself? If so, I'll trade with you.
Then I will argue that Microsoft knows nothing (or does nothing) about security and I really do think I'd be better holding the controls. Of course, that assumes that I still use Windows.......
A right granted by a government giving exclusive control over a specified commercial activity to a single party.
Mass. wants opensource. Be it Linux, BSD, Open Dos (Heavens no!), or some monster you cookup yourself. And even at that, saying you want linux is not like saying you want windows. Windows comes from Microsoft. Only one manufacturer. Linux well, it could be :Mandrake, Redhat, Suse, IcePack (actually a good distro), Slackware, etc.....
There are many distributors of Linux. Each one can outbid the other. And technically, since Linux is GPLed, I could put in a bid, to sell them my personal distro.
I'm compelled to disagree with you on this. At my highschool, right after blaster came out, we went around running windows update on all the PCs. Fine. When there are alot of people trying to do Windows Update at once, the connection all but dies. And I believe you can actually do distributed updates rather easily with linux. If not by remotely loging in, then with shell scripts.
This supposed "lack of competition" could double the cost of freeware! The horrors! That would effective raise the cost of freeware to free! Don't take it from em! Show em whose boss! Tell em you'll only pay half of free!
Really. Proprietary vendors will be effectively barred from competing for state contracts? Whose stopping em? And technically, since Linux is GPLed, couldn't I put in my on bid at half the price of anyone else? Yeah. That creates almost infinate different suppliers. So much for the "limiting competition".
I don't see your point. What in your history with Microsoft make you think that their CRASH_INTO_MOUNTAIN subroutine would actually work? :P
cat MStron > TRON
A TRON is a TRON. Right.... I didn't think so either. I hope they backed up the good TRON!
You fool! Don't you know you can only use licenced bread with a Microsoft toaster?! Otherwise you add the potential for security vulnerabilities, like other people taking you toast!