With Capabilities, you hand a capability (much like a file handle) to a program, instead of giving it all the users permissions.
You can litterally do that with AppArmor profiles though?
This eliminates the need for an administrator to set up a bunch of rules on top of a system
These rules are provided for AppArmor by default through installation of related packages (ie: tomcat).
and just lets the user handle it in a more transparent manner.
Security based on prompting the user is not useful on a server, which is what is being discussed here when it comes to for "data based services" as described by Cederic.
The facts are that there are no fundamentally secure operating system choices in the consumer / commercial space worth considering. Windows, Linux, MacOS, none of them can be made secure, it's all just a single zero-day exploit (or old NSA toolbox) away from being owned.
I agree that making a secure system is very difficult.
The reason is that they all fail to implement the principle of least privilege, instead using ambient authority as a universal lubricant to make everything work.
But Ubuntu went through the process of applying that by making sure all default and core daemons run under their own user instead of 'root', along with building app armor to ensure these principles were applied across the board with apparmor profiles for core packages.
If we want to SOLVE computer security, we have to implement capability based security in our operating systems, and then modify every single program to support the new APIs that it provides.
This is AppArmor again and has been in Ubuntu for many years now.
You can't expect to get exposure to anything else if you don't put yourself out there.
Playing devil's advocate here, even when you are out there, it can be really limiting. I know this as a fact from living in a lot of places. For example, in the last town I lived in, the only social activity that involved other people was going to the pub and drinking to sports television blaring so loud, you can barely order a drink at the bar without repeating yourself. The other recreational activities available tended to be the more illegal sort involving drugs. Gaming wasn't even common for the average male there.
Same as people who don't know who their neighbors are. What is so hard about knocking on their door and introducing yourself and inviting them over for a coffee?
Absolutely.
There are other activities that are cheap, or even free, that will put you together with like-minded people.
Personal experience wise, I can only say that wasn't true for me, the only people I have ever known that are like-minded are people I met through the Internet. Additionally, I chose to forego most things because there was a cost associated with it when I was younger and I had zero money available, not even for transport (and while I stuck with my FOSS projects, I'm sure others may have discovered that piracy was free). Despite that, I did those activities because they were affordable and interesting to me at the time.
For example, now that I'm retired, I volunteer 3 to 4 days a week (sometimes more) at the local food bank. I've met loads of people that way - other volunteers, people working off their community service, clients, flood victims who've lost everything. There are plenty of volunteer jobs that need people willing to help others, and yet, with all the people saying that they don't have anything else to do or don't know what else they can do to meet others, these jobs still go begging for people.
I don't imagine there are many in my generation where this would be interesting to them.
The most any of these costs is transportation. If you can bike or hike it, it's effectively free.
Again playing devil's advocate here, my luck when I was younger was anything of interest to me was out of range despite the fact I lived in so many different countries. I think the liklihood of being interested in something and it being out of range is fairly high at the moment.
Sure it's fun. It's also fun to have a board game night where you can invite a bunch of friends over to play Risk, Monopoly, poker ("are you feeling lucky, punk?:-) ), Pictionary, dominoes, whatever.
I think the only place I've seen people in my generation play poker has been when I was in the army. Although for me personally, I have no interest in such games and I suspect the average male who is into games like Call of Duty isn't either. In short, some content may not be interchangable when it comes to interests.
It takes the sting out of losing to the point that you really don't care who wins - it's the socializing that's fun.
I think this is where you and I differ. I do not think catering to people in this manner will help them, in fact I know it won't because I see the result with so many work colleages of my generation. The ones that aren't withdrawn are so coddled with socialisation, that anything that offends them outside of that space will cause them massive psychological harm. It makes me almost want to wish we had mandatory military service, but it'll probably get implemented poorly like Poland's.
I genuinely think the issues though are to do with society not giving our generation any real goals to work towards that provide better incentives that aren't just diminishing returns. The sham of support systems like universiti
Note: I am a third party to this conversation. I also appologize if this post comes along as a bit sexist, but I think the issues are a little more complicated and there are dynamics to consider.
As for your question of why would teenagers want to go into such a career, there are plenty of alienated, self-isolating teenage boys who are attracted to the idea of working somewhere without the social challenges that rub their noses into the fact that someone who spends all their time on computers and video games with like-minded and like-afflicted guys is, over the long term and in the larger scheme of things, a loser.
Yeah, I strongly disagree with that being a typical primary motivation. Most of the time it's because people think that this is an industry that is the 'safest' to be in with many prospective jobs.
take a look at all the guys now in their 20s and 30s (and 40s) whose "social life" is limited to playing video games with other guys or by themselves.
I'm in this generation and my observation as to why has been due to few reasons, not all of which apply to all individuals:
1) They find gaming fun. 2) They don't have really any social circles that interests them, so no reason to do otherwise. 3) Other hobbies are expensive (for example, in my case I have other hobbies in amateur radio, hiking, fishing, hacker space events and building cars are far more expensive in my experience). 4) They have no exposure to anything else. 5) A fear of failure.
In the past, these guys didn't have such activities (coding and video games) to retreat into
I disagree strongly, I mean, some of the other hobbies I'm into have been around for centuries and they can be solitary if you want.
I think the biggest change in recent times has been from the change in marriage values, where a man who isn't married isn't viewed as suspicious and untrustworthy. Further, with the changes in society (I base this off observations I've seen in in Mormon churches here that appear to be very traditional here), I believe the lack of replacement for society's prestige and moral values in the past which lead men to find their roles to provide for others and held highly in a family and society is no longer an incentive to continue down such paths has created this situation. While modern society views the old ways as inappropriate, it never actually replaced these value systems which in my opinion has created the current situation we see today with men who are satisfied with life as you have described in a later post. We can see what the future will bring just by looking at Japan.
We're conducting a vast experiment in eugenics - will those "bros" who fail to breed in sufficient numbers eventually drop out of the gene pool, leaving the human race more resistant to becoming compulsively focused on a very limited set of activities, or is it like gambling and other addictions, where there will always be a sucker born every minute?
I very much imagine this behavior will continue because it's an issue with how society is constructed, not a gene problem.
This, as much as the toxic environment towards women in much of tech, may help explain why women tend to look to other fields.
I only ever experienced a toxic environment towards women in East European countries and thy have a lot more women in IT than what I see in Western Europe, where I have not really witnessed anything different of what I see in consultancy in other industries. Anecdotally, this doesn't make sense and I have worked across a lot of different industries, companies and locations due to being a bit of a nomad and a consultant/contractor.
I do commonly see one behavior consistently across industries and that is women leaving work early (I suspect they are abusing flexible hour schemes, as I rarely see these hours made up later) an
Now, contrast that to my Citibank card. I buy a game from g2a.com in Poland. Citibank blocks it as a suspicious charge. I call them, tell them it's cool, 5 minutes later I'm able to make my purchase.
Sounds annoying. When my card gets checked for fraud, it's either:
1) 3D verification screen that asks me to enter a code SMSed to me, which doesn't cancel/fail the transaction. 2) If 3D option isn't available, I receive a text message with a code to send back if I am happy to authorize further attempts at transactions with that vendor.
This socalled cashback is nothing more than a discount on purchases when you buy stuff, and 2% is $2 in every $100 - when has that ever mattered to a real person?
Matters to a lot of consultants and contractors that travel. But in my experience, you're better off having a point card for something like Hilton Honors because you can get more options out of the points earned rather than cash back.
And actually, why would anybody use a credit card in an age where debit cards are available
Each transaction is insured. Debit card transactions aren't, if transactions can't be reversed, you're out of luck, it's gone. If you book certain things like holiday packages and something goes wrong during it, you get a full refund on the holiday, paid by the card issuer, who may choose to dispute the package later with the provider.
Additionally, the exchange rates on Mastercard and Visa are preferential to what your bank would normally choose as an exchange rate for a debit card (even if you have visa debit card or mastercard debit card - these rates are no longer available).
Quite often banks like to tack some nasty exchange rate fees for non-local currencies when you use a debit card. Mastercard and Visa also prefer to use the lower exchange rates because they want to generate more transactions and this is one of the ways they do so.
Through the use of credit cards and paying them off on a regular basis, you can build up your credit rating which in turn allows you to get larger mortgages. If all you do is end up paying the minimum payments per month, your credit rating does not lower from this.
I would have to pay an annual or monthly fee for having a credit card at all
That sounds like a charge card, not a credit card. Charge cards work differently.
Credit cards are simply an expensive way of getting into debt.
My credit cards cost me nothing on top (unless I choose not to pay them off in full, but I live within my means) and I end up with more rewards and protections using them using others. I don't pay more for using a credit card either in transactions.
My use case is that Firefox has better development tools and works across Windows, Linux, macOS, Android with full extension support. I also find it uses less memory and don't really ever encounter crashes than competitors like Chrome (which I still use frequently, but only for testing stuff, not as a regular browser).
In order for "a Citrix-like solution" to work, then either your task would have to be one that can always be performed in Wi-Fi coverage, or your work place would need to cover the cost of cellular Internet.
Say you need to run five applications, the first exclusive to macOS, the second exclusive to Windows, the third exclusive to X11/Linux and FreeBSD, the fourth exclusive to iOS, and the fifth exclusive to Android.
I remember the days we had problems like that in one of my work places. Most of it was resolved with a Citrix-like solution that ran on a webpage.
Note: I am not the grandparent, but your statements seemed interesting enough to respond to.
Maybe aspie code-bros need to stop putting up with "crunch time"
I don't put up with crunch time, I personally do crunch time because I'm actually passionate about my work and care about my projects.
Have you played modern games designed/coded by the predominately male developers? Quality is NOT something they prioritize.
I have. You know, I never actually thought about this. However, now I am. I played games made by people pre-dominantly identifying as female. I didn't think "Revolution 60" or "Analogue: A Hate Story" were quality at all compared to male developers with even less resources like "Dust: An Elysian Tail" ? Annecdotally, my experience is a flat out opposite to what you're claiming...
Most of the female engineers I work with are quite competent
I wish I could work with competent people, these days everyone is so hyper specialized and can't apply critical thinking outside of their little box or even willing to be a bit more of a generalist, requiring hand holding every step of the way.
I'm so fed up of every time I manage to teach people some of these skills, they just fuck off to the States.
I've never worked with any women that could be considered outstanding or "rockstars" which is the trendy term.
I've worked with people considered rockstars, both male and females, but to be honest. They weren't and were in my opinion really mediocre.
People seem to hyper specialize in work like c# programming webservices, database administration (but no idea how to do clustering etc), angular with nodejs etc. They're all presented as the pinnacle of experts in their fields and I have to constantly fix their mess.
A lot of them have been smart for sure but their skills are always inferior to the skills of the top performing males *by far*
As far as my general experience with women goes in the industry. I found most of them were frequently out of the door the moment the official working hours ended. The colleagues that some of them used to get upset about getting higher pay were people that worked extra hours consistently, every day, through the weekend etc.
What I found generally is the people I work best with are those that have a passion for not only the work we do, but the type of work. I have never worked with a female doing IT work (like development, testing, administration). I have though worked with them in marketing, business requirements gathering, bid work etc.
I find females do not seem to stick around in the IT type of work very long and seem to move on to other career paths (like project management, business analytics etc) that are not really IT focused work. Meanwhile, I Find most males are just happy to stay and continue doing the same work.
Anecdotally, I kind of feel that the bias of less female workers in IT isn't really related to sexism (I mean, we work in the same offices as all other departments in many jobs, intermingling our people and still these differences exist just within IT-related work). The pay gaps to me seem more caused by personal life choices people are making and the fact we keep seeing people compare "experience" and "education" rather than hours worked or work throughput I think is telling where the fault in analysis lies.
My thinking exactly. I'm no accountant (far from) but I doubt you can register inflated shares as "expenses"
Are you intentionally being dense?
The summary even accurately described the figure is based on profit, not turnover and then in the very last sentence, "Staff compensation goes up, compensation is an expense, expenses can be deducted from revenue".
Or can you tolerate someone against diversity and hostile towards women when you're under scrutiny and already in trouble for not being diverse enough and having a workplace climate hostile to women?
I read his memo and didn't see really anything saying he was against diversity per say, it was more constructive criticism on how to improve the existing approaches being used when I read it.
Perhaps you could elaborate a bit more in context what you mean by your comment based off the document linked above?
Letsencrypt sounded great but broke on installation for me.
I've done installations across RHEL, CentOS, SuSE, Ubuntu, Debian, Slackware (and on Slack I had to do it manually, which was trivial), OpenBSD and Windows. I don't think I've ever encountered a situation where it "broke on installation". I almost get the impression you used the wrong version for the wrong distro version or something else equally absurd?
why take the risk of it eating all your support time?
Generally, whatever goes into production is well tested on my end and I have contingency plans setup where there are failures I might expect. No major risks on my end typically?
One time I reflected on the fact on IRC that there were very few musicians in the furry fandom. He then went and made a story that there are many, but they're on a secret IRC network at a certain domain which wasn't registered. When this was pointed out to him, he then went on a tirade about how his father works for the DoD and had his domain super special secret ninja registration. I pointed out that I couldn't resolve the domain anyway, he then went on to say it was IPv6 only. I checked over IPv6, no DNS resolution, no name servers, nothing.
But we were wrong and he kept fabricating various credentials.
Someone else shortly registered the domain in the chat to prove him wrong.
Slashdot Mirror
You can litterally do that with AppArmor profiles though?
These rules are provided for AppArmor by default through installation of related packages (ie: tomcat).
Security based on prompting the user is not useful on a server, which is what is being discussed here when it comes to for "data based services" as described by Cederic.
I agree that making a secure system is very difficult.
But Ubuntu went through the process of applying that by making sure all default and core daemons run under their own user instead of 'root', along with building app armor to ensure these principles were applied across the board with apparmor profiles for core packages.
This is AppArmor again and has been in Ubuntu for many years now.
It seemed to work for me?
Thank You
Based on the information provided, we believe that your personal information was not impacted by this incident.
Click the button below to continue your enrollment in TrustedID Premier.
Playing devil's advocate here, even when you are out there, it can be really limiting. I know this as a fact from living in a lot of places. For example, in the last town I lived in, the only social activity that involved other people was going to the pub and drinking to sports television blaring so loud, you can barely order a drink at the bar without repeating yourself. The other recreational activities available tended to be the more illegal sort involving drugs. Gaming wasn't even common for the average male there.
Absolutely.
Personal experience wise, I can only say that wasn't true for me, the only people I have ever known that are like-minded are people I met through the Internet. Additionally, I chose to forego most things because there was a cost associated with it when I was younger and I had zero money available, not even for transport (and while I stuck with my FOSS projects, I'm sure others may have discovered that piracy was free). Despite that, I did those activities because they were affordable and interesting to me at the time.
I don't imagine there are many in my generation where this would be interesting to them.
Again playing devil's advocate here, my luck when I was younger was anything of interest to me was out of range despite the fact I lived in so many different countries. I think the liklihood of being interested in something and it being out of range is fairly high at the moment.
I think the only place I've seen people in my generation play poker has been when I was in the army. Although for me personally, I have no interest in such games and I suspect the average male who is into games like Call of Duty isn't either. In short, some content may not be interchangable when it comes to interests.
I think this is where you and I differ. I do not think catering to people in this manner will help them, in fact I know it won't because I see the result with so many work colleages of my generation. The ones that aren't withdrawn are so coddled with socialisation, that anything that offends them outside of that space will cause them massive psychological harm. It makes me almost want to wish we had mandatory military service, but it'll probably get implemented poorly like Poland's.
I genuinely think the issues though are to do with society not giving our generation any real goals to work towards that provide better incentives that aren't just diminishing returns. The sham of support systems like universiti
Note: I am a third party to this conversation. I also appologize if this post comes along as a bit sexist, but I think the issues are a little more complicated and there are dynamics to consider.
Yeah, I strongly disagree with that being a typical primary motivation. Most of the time it's because people think that this is an industry that is the 'safest' to be in with many prospective jobs.
I'm in this generation and my observation as to why has been due to few reasons, not all of which apply to all individuals:
1) They find gaming fun.
2) They don't have really any social circles that interests them, so no reason to do otherwise.
3) Other hobbies are expensive (for example, in my case I have other hobbies in amateur radio, hiking, fishing, hacker space events and building cars are far more expensive in my experience).
4) They have no exposure to anything else.
5) A fear of failure.
I disagree strongly, I mean, some of the other hobbies I'm into have been around for centuries and they can be solitary if you want.
I think the biggest change in recent times has been from the change in marriage values, where a man who isn't married isn't viewed as suspicious and untrustworthy. Further, with the changes in society (I base this off observations I've seen in in Mormon churches here that appear to be very traditional here), I believe the lack of replacement for society's prestige and moral values in the past which lead men to find their roles to provide for others and held highly in a family and society is no longer an incentive to continue down such paths has created this situation. While modern society views the old ways as inappropriate, it never actually replaced these value systems which in my opinion has created the current situation we see today with men who are satisfied with life as you have described in a later post. We can see what the future will bring just by looking at Japan.
I very much imagine this behavior will continue because it's an issue with how society is constructed, not a gene problem.
I only ever experienced a toxic environment towards women in East European countries and thy have a lot more women in IT than what I see in Western Europe, where I have not really witnessed anything different of what I see in consultancy in other industries. Anecdotally, this doesn't make sense and I have worked across a lot of different industries, companies and locations due to being a bit of a nomad and a consultant/contractor.
I do commonly see one behavior consistently across industries and that is women leaving work early (I suspect they are abusing flexible hour schemes, as I rarely see these hours made up later) an
Sounds annoying. When my card gets checked for fraud, it's either:
1) 3D verification screen that asks me to enter a code SMSed to me, which doesn't cancel/fail the transaction.
2) If 3D option isn't available, I receive a text message with a code to send back if I am happy to authorize further attempts at transactions with that vendor.
Matters to a lot of consultants and contractors that travel. But in my experience, you're better off having a point card for something like Hilton Honors because you can get more options out of the points earned rather than cash back.
Each transaction is insured. Debit card transactions aren't, if transactions can't be reversed, you're out of luck, it's gone. If you book certain things like holiday packages and something goes wrong during it, you get a full refund on the holiday, paid by the card issuer, who may choose to dispute the package later with the provider.
Additionally, the exchange rates on Mastercard and Visa are preferential to what your bank would normally choose as an exchange rate for a debit card (even if you have visa debit card or mastercard debit card - these rates are no longer available).
Quite often banks like to tack some nasty exchange rate fees for non-local currencies when you use a debit card. Mastercard and Visa also prefer to use the lower exchange rates because they want to generate more transactions and this is one of the ways they do so.
Through the use of credit cards and paying them off on a regular basis, you can build up your credit rating which in turn allows you to get larger mortgages. If all you do is end up paying the minimum payments per month, your credit rating does not lower from this.
That sounds like a charge card, not a credit card. Charge cards work differently.
My credit cards cost me nothing on top (unless I choose not to pay them off in full, but I live within my means) and I end up with more rewards and protections using them using others. I don't pay more for using a credit card either in transactions.
My use case is that Firefox has better development tools and works across Windows, Linux, macOS, Android with full extension support. I also find it uses less memory and don't really ever encounter crashes than competitors like Chrome (which I still use frequently, but only for testing stuff, not as a regular browser).
This isn't a problem at all in the UK.
I remember the days we had problems like that in one of my work places. Most of it was resolved with a Citrix-like solution that ran on a webpage.
In the case of Discord, global hot keys is one.
Note: I am not the grandparent, but your statements seemed interesting enough to respond to.
I don't put up with crunch time, I personally do crunch time because I'm actually passionate about my work and care about my projects.
I have. You know, I never actually thought about this. However, now I am. I played games made by people pre-dominantly identifying as female. I didn't think "Revolution 60" or "Analogue: A Hate Story" were quality at all compared to male developers with even less resources like "Dust: An Elysian Tail" ? Annecdotally, my experience is a flat out opposite to what you're claiming...
I wish I could work with competent people, these days everyone is so hyper specialized and can't apply critical thinking outside of their little box or even willing to be a bit more of a generalist, requiring hand holding every step of the way.
I'm so fed up of every time I manage to teach people some of these skills, they just fuck off to the States.
should say:
I have never worked with a female passionate in doing IT work ..
I have in fact worked with many females doing IT work.
This is anecdotal and my perspective.
I've worked with people considered rockstars, both male and females, but to be honest. They weren't and were in my opinion really mediocre.
People seem to hyper specialize in work like c# programming webservices, database administration (but no idea how to do clustering etc), angular with nodejs etc. They're all presented as the pinnacle of experts in their fields and I have to constantly fix their mess.
As far as my general experience with women goes in the industry. I found most of them were frequently out of the door the moment the official working hours ended. The colleagues that some of them used to get upset about getting higher pay were people that worked extra hours consistently, every day, through the weekend etc.
What I found generally is the people I work best with are those that have a passion for not only the work we do, but the type of work. I have never worked with a female doing IT work (like development, testing, administration). I have though worked with them in marketing, business requirements gathering, bid work etc.
I find females do not seem to stick around in the IT type of work very long and seem to move on to other career paths (like project management, business analytics etc) that are not really IT focused work. Meanwhile, I Find most males are just happy to stay and continue doing the same work.
Anecdotally, I kind of feel that the bias of less female workers in IT isn't really related to sexism (I mean, we work in the same offices as all other departments in many jobs, intermingling our people and still these differences exist just within IT-related work). The pay gaps to me seem more caused by personal life choices people are making and the fact we keep seeing people compare "experience" and "education" rather than hours worked or work throughput I think is telling where the fault in analysis lies.
You just put down what your expenses were at that point in time when you paid out, just like any other expense... Why is this so hard to grasp?
Are you intentionally being dense?
The summary even accurately described the figure is based on profit, not turnover and then in the very last sentence, "Staff compensation goes up, compensation is an expense, expenses can be deducted from revenue".
As long as their overall profits are higher due to not needing to pay employees extra benefits (or just generally) etc. Yes.
Google went public over ten years ago...
I find https://www.documentcloud.org/... to be a better source of the memo honestly.
I read his memo and didn't see really anything saying he was against diversity per say, it was more constructive criticism on how to improve the existing approaches being used when I read it.
Perhaps you could elaborate a bit more in context what you mean by your comment based off the document linked above?
What did you change to?
I've done installations across RHEL, CentOS, SuSE, Ubuntu, Debian, Slackware (and on Slack I had to do it manually, which was trivial), OpenBSD and Windows. I don't think I've ever encountered a situation where it "broke on installation". I almost get the impression you used the wrong version for the wrong distro version or something else equally absurd?
Generally, whatever goes into production is well tested on my end and I have contingency plans setup where there are failures I might expect. No major risks on my end typically?
Try not to take Khyber too seriously.
One time I reflected on the fact on IRC that there were very few musicians in the furry fandom. He then went and made a story that there are many, but they're on a secret IRC network at a certain domain which wasn't registered. When this was pointed out to him, he then went on a tirade about how his father works for the DoD and had his domain super special secret ninja registration. I pointed out that I couldn't resolve the domain anyway, he then went on to say it was IPv6 only. I checked over IPv6, no DNS resolution, no name servers, nothing.
But we were wrong and he kept fabricating various credentials.
Someone else shortly registered the domain in the chat to prove him wrong.
Wow, considering how brain dead the system is... It makes me not want to visit a website operated by you.