By root you mean Administrator privileges and it's still not horribly uncommon that users have local Admin rights due to some old junk software they are trying to run that will only run with Admin privileges locally.
I wonder if this bug is XP only or XP/Vista/7. If it Vista/7, will UAC stop it?
This article is light on details and doesn't give Admins alot to work with. Microsoft generally will release KB articles describing the exploit and workaround/prevention methods to prevent it.
Actually, looks like Air France 447 is mainly due to pilot error. Something about Europeans and ice screws them up completely. See Air France 447 and British Airways 38.
If you are virtualizing Windows only, Hyper-V is probably the best bet. Completely supported by Microsoft for low low cost of nothing. Supports Live Migration, Dynamic Memory (servers only start with X but can request up to Y if needed) and has very usable GUI and yes, it's true HyperVisor just like ESXi or Xen.
Seriously, when you business relies on a machine that must work or you are losing money, everyone wants someone to turn to when it doesn't work. That someone isn't a man page or IRC channel or mailing list or whatever support for $foo GPL program here. It's a computer, not a holy war. You press buttons and it does things. When you want a computer you control, you run linux, when you want a computer that grandma can use, you give her a Mac and when you want retail system that checks people out, you run whatever OS that your POS maker asks you to.
Because every large company/government has special rules and accounting/HR/Whoever wants very detailed data. This group of employees can only get overtime if they worked past 50 hours. That group gets overtime at 40. Third group only gets overtime if they work over 80 hours in two weeks. Fourth group is union with wierd work rules that speculate if they are forloughed, they still get paid 1/2 salary so they need ability to mark that. Some people clock in and you need to include rounding logic in that and different groups of people will have different rounding rules. Others just fill out timesheet. There is alot of logic just dealing with that.
Then you throw in approving logic, who can edit what, auditing, report generation and so on and so forth.
Finally, most time/attendance systems at that level also interface with payroll take all overtime/forlough/benefit logic and it has to be exact with zero mistakes.
It's also possible their systems are shielded to handle EMP bursts and all sorts of other craziness that you wouldn't experience on commercial flight.Not to mention E-8 and E-3 are hauling around huge radars that pump out alot of energy. Finally, I would imagine alot of shielding is to protect the devices from said radar coming from airplane instead of protecting the plane from the devices.
I run into software daily that doesn't handle no local Administrator rights well. Quickbooks is prime example. It will run without Admin rights until you try and do a certain thing. Then it barfs all over the place. It's possible to fix using Procmon and figuring out where it's trying to write and granting the proper permissions but you have to make that change to every PC that runs it and there is no guaranteeing that it will continue to work after an update. Also, there is many many LOB applications that companies have either not updated or developer/s doesn't care. I have Doctor office that runs newest software written in.Net that still R/W from ini in C:\Windows and I've been told has no intention of fixing that.
Yea, Why would any OS maker do that? Apple doesn't include PDF Reader or iPhoto for editing images. Microsoft is breaking completely new ground here./sarcasm
They are coupled with OS because people want them to be. PDFs have become so common that people expect their Operating system to read them and same thing with digital cameras. I would note that Microsoft already builds Photo editor called Windows Live Photo Gallery which does reasonable well for majority of people using digital cameras. People who need Photoshop will purchase it and majority will be happy with Live Photo Gallery.
Actually, most Checkpoints are useless. They snag very few drunk drivers compared to number of cops it takes to run the checkpoint and number of people they inconvenence. Only reason most departments run them at all is because they get money from fed.gov to do so and cops don't care since it's overtime for most of them. If we wanted to crack down on drunk driving, we would take these officers, team them up, put them in a car during prime drunk driving time and send them out to catch drunks. It would be win, win for everybody. We would probably snag more drunks and bother alot less people. However, it's never going to happen because A. MADD would scream bloody murder because it's not "visible" and B. Government enjoys reminding people it can fuck with them any time it wants.
You mean like ASLR which has been implemented in Windows 7 and DEP which is supported in Windows XP and beyond for certain system libraries and all x64 applications.
Issue with Windows security isn't technical issues, it's trying to maintain compatibility and ease of use with compatibility being biggest hold up. I bet if they behaved like Mac and Linux did, doing the whole "I'm sorry your older program doesn't work with newest libraries, tough shit. Get program updated."
At work, I'm still dealing with customer using FoxPro application which the developer flat out told me he had no intention of recoding in a new language.
/64 is RFC recommended because IPv6 Autoconfiguration uses your NIC MAC address to generate IPv6 address for itself. The length of/64 is same as MAC address. That's why they are doing it.
IPv6 was designed to have large amount of waste built in. When you have 3.4x10^38, you can afford to be a little wasteful.
Because you generally have to run your own servers which means you need your own domains (or hijack someone else) and DNS/Domains/Servers become very weak point of failure. Not to mention it's easy to discover viruses if you know which server they are connecting to. GTalk and Twitter traffic is pretty indistinguishable from legit traffic and it's easier to hide.
Windows XP/2003 does not support IPv6 in any meaningful way. Yes, it has it in network config page. However, for example, it won't make DNS calls over IPv6 even when querying AAAA records. Forget getting SMB running over IPv6 properly. Finally, some products like Exchange 2003 and ISA 2004 and others have zero IPv6 support.
Only Vista/7 and their server counterparts have full IPv6 support.
I think API was more for IT Admins so they could disable phones or throw them off ActiveSync server if they get jailbroken. I know we only support Android with TouchDown after we found users installing No Lock application on their Android phones that would remove password requirement. Our sales group decided that locking screen after 10 minutes was too annoying.
There is no reason for IT departments to ask for it. It supports very small subset of ActiveSync policies but doesn't support turning off certain hardware features (like the camera) or encrypting all email/contacts/calendars on the device. I personally thought they should have targeted RIM and brought a usable phone that supports full range of ActiveSync security. If they had done that, IT departments would have loved to pitch Blackberries out the windows and replaced them with WP7 devices.
Open Bid means something in particular to government contracting. It means Open as in "Anyone can bid on it if they meet required specifications" not open as in "It's open source or open specifications"
What are your other options? Lotus Notes which is worse then Exchange, Groupwise which require a Novell environment I doubt they have and Google Apps which may not work in their environment.
While you see evil conspiracy here, it's like putting out a bid requiring cars with only Ford Engines, because all your mechanics are Ford Mechanics and you don't want to hire GM Mechanics simply for one set of cars. My guess is they are primarily a Windows shop so by going with Exchange, they don't need to hire new "mechanics".
1) I haven't seen a large amount of companies joining the cloud. Most of Microsoft Online we sell around here are to really small businesses. Problem with putting a large amount of email in the cloud is that means ALL your email traffic is external. Send a 5MB file to 4 other people, 25MB right there. Add 200 people doing that and you can bring down internet with email traffic alone, not to mention if your internet dies your email dies. Only time we sell to larger then 15 is when they are mostly remote.
2) Edge servers aren't required for Exchange. CAS/HT/MBX servers can be combined and you get "free" virtual servers with purchase Enterprise/Datacenter copies of Windows 2008. I know a larger company who replaced a bunch of little servers with larger Hyper-V and Enterprise/Datacenter licenses and came out ahead in server licensing costs.
I've found in many parts of world people are ok with government snooping in. "I have nothing to hide, why should I care? It also helps defeats terrorism and criminals". This distrust of government seems to be uniquely American.
Android apps tell you what permissions they want. While I wish they gave you more information, it's enough to get the feeling with something isn't right. If you download malicious app and expect to play a game when the app requests contact data and GPS location, along with internet connection, you know something is wrong.
GSM/CDMA are still in wide use and since they couldn't even be arsed to include CDMA support on release, putting in those technologies would have been more time then they were willing to commit. As those technologies see larger deployment, I'm sure Microsoft will develop for them. LTE will probably be first one since it's getting pushed out by Verizon and in several European Countries.
Slashdot Mirror
By root you mean Administrator privileges and it's still not horribly uncommon that users have local Admin rights due to some old junk software they are trying to run that will only run with Admin privileges locally.
I wonder if this bug is XP only or XP/Vista/7. If it Vista/7, will UAC stop it?
This article is light on details and doesn't give Admins alot to work with. Microsoft generally will release KB articles describing the exploit and workaround/prevention methods to prevent it.
No but it was Roll-Royce Engine which is built by guess who... EUROPEANS. Other two American Engines options on 777 did not suffer from this issue.
Actually, looks like Air France 447 is mainly due to pilot error. Something about Europeans and ice screws them up completely. See Air France 447 and British Airways 38.
If you are virtualizing Windows only, Hyper-V is probably the best bet. Completely supported by Microsoft for low low cost of nothing. Supports Live Migration, Dynamic Memory (servers only start with X but can request up to Y if needed) and has very usable GUI and yes, it's true HyperVisor just like ESXi or Xen.
I'll ask the easy question.. WHY?
Seriously, when you business relies on a machine that must work or you are losing money, everyone wants someone to turn to when it doesn't work. That someone isn't a man page or IRC channel or mailing list or whatever support for $foo GPL program here. It's a computer, not a holy war. You press buttons and it does things. When you want a computer you control, you run linux, when you want a computer that grandma can use, you give her a Mac and when you want retail system that checks people out, you run whatever OS that your POS maker asks you to.
Because every large company/government has special rules and accounting/HR/Whoever wants very detailed data. This group of employees can only get overtime if they worked past 50 hours. That group gets overtime at 40. Third group only gets overtime if they work over 80 hours in two weeks. Fourth group is union with wierd work rules that speculate if they are forloughed, they still get paid 1/2 salary so they need ability to mark that. Some people clock in and you need to include rounding logic in that and different groups of people will have different rounding rules. Others just fill out timesheet. There is alot of logic just dealing with that.
Then you throw in approving logic, who can edit what, auditing, report generation and so on and so forth.
Finally, most time/attendance systems at that level also interface with payroll take all overtime/forlough/benefit logic and it has to be exact with zero mistakes.
It's also possible their systems are shielded to handle EMP bursts and all sorts of other craziness that you wouldn't experience on commercial flight.Not to mention E-8 and E-3 are hauling around huge radars that pump out alot of energy. Finally, I would imagine alot of shielding is to protect the devices from said radar coming from airplane instead of protecting the plane from the devices.
I run into software daily that doesn't handle no local Administrator rights well. Quickbooks is prime example. It will run without Admin rights until you try and do a certain thing. Then it barfs all over the place. It's possible to fix using Procmon and figuring out where it's trying to write and granting the proper permissions but you have to make that change to every PC that runs it and there is no guaranteeing that it will continue to work after an update. Also, there is many many LOB applications that companies have either not updated or developer/s doesn't care. I have Doctor office that runs newest software written in .Net that still R/W from ini in C:\Windows and I've been told has no intention of fixing that.
Yea, Why would any OS maker do that? Apple doesn't include PDF Reader or iPhoto for editing images. Microsoft is breaking completely new ground here. /sarcasm
They are coupled with OS because people want them to be. PDFs have become so common that people expect their Operating system to read them and same thing with digital cameras. I would note that Microsoft already builds Photo editor called Windows Live Photo Gallery which does reasonable well for majority of people using digital cameras. People who need Photoshop will purchase it and majority will be happy with Live Photo Gallery.
Too bad Gingrich and Company didn't take command of Congress till 1994 and it was cancelled in 93. Democrats killed this one.
Actually, most Checkpoints are useless. They snag very few drunk drivers compared to number of cops it takes to run the checkpoint and number of people they inconvenence. Only reason most departments run them at all is because they get money from fed.gov to do so and cops don't care since it's overtime for most of them. If we wanted to crack down on drunk driving, we would take these officers, team them up, put them in a car during prime drunk driving time and send them out to catch drunks. It would be win, win for everybody. We would probably snag more drunks and bother alot less people. However, it's never going to happen because A. MADD would scream bloody murder because it's not "visible" and B. Government enjoys reminding people it can fuck with them any time it wants.
You mean like ASLR which has been implemented in Windows 7 and DEP which is supported in Windows XP and beyond for certain system libraries and all x64 applications.
Issue with Windows security isn't technical issues, it's trying to maintain compatibility and ease of use with compatibility being biggest hold up. I bet if they behaved like Mac and Linux did, doing the whole "I'm sorry your older program doesn't work with newest libraries, tough shit. Get program updated."
At work, I'm still dealing with customer using FoxPro application which the developer flat out told me he had no intention of recoding in a new language.
/64 is RFC recommended because IPv6 Autoconfiguration uses your NIC MAC address to generate IPv6 address for itself. The length of /64 is same as MAC address. That's why they are doing it.
IPv6 was designed to have large amount of waste built in. When you have 3.4x10^38, you can afford to be a little wasteful.
Because you generally have to run your own servers which means you need your own domains (or hijack someone else) and DNS/Domains/Servers become very weak point of failure. Not to mention it's easy to discover viruses if you know which server they are connecting to. GTalk and Twitter traffic is pretty indistinguishable from legit traffic and it's easier to hide.
Windows XP/2003 does not support IPv6 in any meaningful way. Yes, it has it in network config page. However, for example, it won't make DNS calls over IPv6 even when querying AAAA records. Forget getting SMB running over IPv6 properly. Finally, some products like Exchange 2003 and ISA 2004 and others have zero IPv6 support.
Only Vista/7 and their server counterparts have full IPv6 support.
I think API was more for IT Admins so they could disable phones or throw them off ActiveSync server if they get jailbroken. I know we only support Android with TouchDown after we found users installing No Lock application on their Android phones that would remove password requirement. Our sales group decided that locking screen after 10 minutes was too annoying.
There is no reason for IT departments to ask for it. It supports very small subset of ActiveSync policies but doesn't support turning off certain hardware features (like the camera) or encrypting all email/contacts/calendars on the device. I personally thought they should have targeted RIM and brought a usable phone that supports full range of ActiveSync security. If they had done that, IT departments would have loved to pitch Blackberries out the windows and replaced them with WP7 devices.
Open Bid means something in particular to government contracting. It means Open as in "Anyone can bid on it if they meet required specifications" not open as in "It's open source or open specifications"
What are your other options? Lotus Notes which is worse then Exchange, Groupwise which require a Novell environment I doubt they have and Google Apps which may not work in their environment.
While you see evil conspiracy here, it's like putting out a bid requiring cars with only Ford Engines, because all your mechanics are Ford Mechanics and you don't want to hire GM Mechanics simply for one set of cars. My guess is they are primarily a Windows shop so by going with Exchange, they don't need to hire new "mechanics".
It's an open bid as in, anyone can offer a solution, it just must be Exchange based.
1) I haven't seen a large amount of companies joining the cloud. Most of Microsoft Online we sell around here are to really small businesses. Problem with putting a large amount of email in the cloud is that means ALL your email traffic is external. Send a 5MB file to 4 other people, 25MB right there. Add 200 people doing that and you can bring down internet with email traffic alone, not to mention if your internet dies your email dies. Only time we sell to larger then 15 is when they are mostly remote.
2) Edge servers aren't required for Exchange. CAS/HT/MBX servers can be combined and you get "free" virtual servers with purchase Enterprise/Datacenter copies of Windows 2008. I know a larger company who replaced a bunch of little servers with larger Hyper-V and Enterprise/Datacenter licenses and came out ahead in server licensing costs.
I've found in many parts of world people are ok with government snooping in. "I have nothing to hide, why should I care? It also helps defeats terrorism and criminals". This distrust of government seems to be uniquely American.
Android apps tell you what permissions they want. While I wish they gave you more information, it's enough to get the feeling with something isn't right. If you download malicious app and expect to play a game when the app requests contact data and GPS location, along with internet connection, you know something is wrong.
GSM/CDMA are still in wide use and since they couldn't even be arsed to include CDMA support on release, putting in those technologies would have been more time then they were willing to commit. As those technologies see larger deployment, I'm sure Microsoft will develop for them. LTE will probably be first one since it's getting pushed out by Verizon and in several European Countries.