NO malware dialog can come up until the user gives OK to that warning
True, however, the dialog would be quite common, and how would a non-tech savy user know whether a fancy background changer (or whatever) needs internet connection?
Also, in order to install programs, a user is asked for an admin password. There is NO way any program can install or run without user input; at least I have not heard of one
Sound and sober steps, which any decent OS takes. It is also rather irrelevant re firewalls:)
As for the rest of the comments, I'm sure Mac is as secure as a proprietary system can be, and certainly, windows is reported to have many flaws. As I don't use either, I really don't want to give my opinion on that subject. My point was simply that inward facing firewalls (blocking outbound connections) are a silly invention, in my humble opinion.
Any executable trying to run the very first time, triggers a dialog that asks the user if that should be allowed. It adds the warning that the program could be malicious. Then the smart users may cancel the starting of that program.
I know this looks smart. But it isn't. Don't you think that a potential malware programmer would know this and work around it? Like writing "You will now get this and this dialog. This is normal, just hit ok." Or do their stuff indirectly through another application that is permitted to do the network operation. Or whatever.
I believe this feature originates from windows firewalls, but I wouldn't know for sure.
To summarize: That feature is a bad idea, because it requires that the malware author works with the system, not around. Thus, it easily instills a false sense of security, while providing very little real benefit. The fact that it is installed per default makes it even worse; at least in window the malware author might not have tested with this particular firewall implementation.
Besides the good old network-2-network firewalls, there are the "Personal" firewalls regulate which application are allowed to connect. Those are what the article are talking about. If you do not agree with the terminology, I can understand, but I think that rabbit is rather out of the box.
And using proxies is just about the only way if you want to only have one type of traffic, provided that the inside people have no conspirators (including themselves) outside the firewall. If they do, you have lost whatever you do short of pulling the plug, though it would probably be tiresome/slow enough that most won't bother. As you most likely know already given that you can set up the network mentioned above. You wouldn't catch me working in such a place, though:)
Or for preventing a compromised box from DOSing the rest of the world.
For stopping, sure. But for the initial wave, wouldn't a DDOS just use a commmon, open port like 80 or 443? Here I am assuming a external firewall, as a software firewall on the rooted (!) box itself is presumably disabled.
Blocking outbound traffic has been very useful for spanking people who think running Kazaa/eMule/BitTorrent/etc. at work is a good idea. Or for blocking access to outgoing SMTP so users have to use the corporate mail box, etc..
Firstly, that is negotiating traffic between networks (here, the office LAN and it's internet connection. I'd be a bit surprised if it works, but maybe it takes out some of the more stupid employees. For my money, just saying "please don't do that" seems to be a better idea in this case, though.
E.g, many people run their SMTP servers on another port (1025, 2025, 26 all seem popular) to get around the silly SMTP restriction. Likewise, I can't imagine it's hard to configure eMule to avoid detection by (let's face it) the rather stupid firewalls.
Blocking outbound connection from a computer is pretty silly initiative in any case. Firewalls are for blocking inbound connections and for enforcing policies between networks (e.g, between the home network and the internet). Only in the latter case does blocking outbound traffic matter, and only as a last ditch "woops, I forgot to restrict this service so now I'm broadcasting sensitive information to the world!" sort of thing. It certainly doesn't hinder worms and their ilk much. And don't get me started on that silly checksumming of applications:)
The only reason to run inward-facing firewalls like that is if you can't trust the software you run. Obviously, this is not a huge issue on linux, but is on windows.
Also, the "per-application" thing is just plain silly. If you have unblocked one application, you have unblocked them all, given that you install as root. The malicious ones, anyway.
AT Tale In The Desert both seem not to have a lot of men playing women
Well, in T2 I played a female avatar (Cappu, you might have come across my seeds;) ) My wife played male. This tale we swapped. Actually, I was surprised at the number of advances I got while playing female --- and if I occasionally roleplayed female, it was for no more than 10 minutes at the time. Heck, I often screwed up talking about "my wife" (rl wife, of course, but ingame husbond).
And yes, a tale in the desert has a very mature group, as those games go. Truly, I think too many people are just lonely. So remember to *hug* a lot of people;)
Sorry. English is my second language, and there is a few spelling mistakes I still make from time to time. Like beautifull (with an extra l).
In the same vein, your manners could use improving. Since you are intelligent enough to spell, I have no doubt you could formulate the above much nicer.
I've heard this so often, so now I'm curious. What exactly are you missing in GIMP? I admit that I just do red eye / contrast / color balance things, but then I hardly qualify as even an amateur photographer.
The US can't afford to let that happen but the EU can?
Currently EU stands to loose nearly as much as US, so in a word no. However, should US choose the exercise their right to say exclude the.eu DNS servers, that situation changes and it's goodbye internet and welcome to the split internet.
Control over the root servers are like nuclear warheads. Noone can afford to use them, but noone wants to press a nuclear power to the point where it has nothing to loose.
ever used perl for win32? There were differences between it and unix' perl versions.
I have. The only imcompabilities I encountered were the obvious ones (executables being marked by filename ~= ".*\.exe$" instead of an attribute and very slow fork(), e.g.). Other than that, perl does a far better job at it than Java ever has at being crossplatform.
Of course, Java is a big mess of a language. The only good thing to say about Java is that it is an improvement over Fortran. In some ways, anyway:).
I know it is bad form to promote what you have been heavily involved in but...
Configure Klipper to store more than the few items which is the default. Somewhere in the 500-1000 should be a nice number.
Now, when you need something you snipped a few days ago again, try ctrl-alt-v, write a bit (it's a regex, btw). Instant typeahead search in the clipboard history. I love it!:)
Also, fullscreen apps, and making the panel wide, horizontal and coverable are nice tricks:)
octave 2.9 is pretty awsome. We use it (for solving a lot of Lp problems, with some branch-and-bound), and it works beautiful.
As for the question... I would question the wisdom in abandoning octave (or matlab) at all, but if you do need to do it, do it in small steps. At least, that is the best way in my experience.
It saddens me that you were modded troll for this:/
Anyway, my wife never asks for help with KMail, which she uses daily. (Well, she did ask what our mailserver was called back when she set it up). We are on an imap server here, so that might be the reason why we have never seen any index corruptions.. I didn't even know there was an index, though I did suspect it. On windows/mozilla I did see the sympton you described there, long ago.
I am unable to install windows because the installer breaks on the HD, and is unable to load any drivers (not that I know if they would help) from other than a floppydisk (which I don't have, and if I did, I don't have drivers available on one.) The hardware in question works flawlessly under linux.
... and I never meant to call you a MS fanboy, just wanted to tell you and others than some of us, at least, had lots of problems with windows, switched, and are now happy campers. My old work used Red Had as a linux desktop, but I was never a big fan of their setup. This is typed from Kubuntu, which I find to be an impressive distrobution. The about 3x200 (?) saved is a nice bonus, too (I have 3 computers total, though I don't use the last one much).
Yet I and my wife use it daily. I did nothing the average user couldn't do. We don't have many games, but then, we only play atitd really.
The hardest part was downloading and installing the game, or maybe burning the CD for the installation of Kubuntu.
I am, on the other hand, unable to install windows (XP). Since my wife's internet banking no longer needs windows, I luckily don't need it anymore.
But if you want the broad selection of games windows offer, there is no way around WGA, the cost, the upgrades, and the hopeless install. So for that group, windows (or PS3/Xbox/Gamecube or whatever they are called) is the only option.
As usual, what you really need for a succesful install of anything is...luck. So, take care of your Karma;)
This is unlike c++, which will accept any cast you ask it to do.
Not really true. C++ suppports three types of casts and one obsolete form that combines those three in some form I never can remember:
dynamic_cast
static_cast
reinterpret_cast
The () is really poor syntax and the usage is discouraged. (and shame on Java for adopting that syntax).
Of these, Java support dynamic_cast, expanded a bit to support primitive types. (which should never have been added, imho.)
Yes, C++ will accept nearly any cast, provided you ask it to:) So you can get unchecked casts (static_cast) platform_dependent casts (reinterpret_casts) and the Java style cast that fail graciously. The idiom is even somewhat nicer in C++.
// Java if (myobject instance-of MyClass) { MyClass newname = (MyClass) myobject; // do stuff on newname; } // C++ if (MyClass newname = dynamic_cast<Myclass>(myobject)) { // do stuff on newname }
Downloaded it and tried it. What is a "Pango" Error? It said something about fonts, too, and promplty crashed. I couldn't get it to open at all.
Get it from you distributor (Ubuntu, debian,gentoo, SuSE or whatever.) Pango is a font managing system GTK uses, so the errors are probably related.
Here it runs perfectly (Kubuntu). Awsome program... with the pace GIMP has these days, and Inkscape, and Blender.... all I need is the abilility to draw:)
"Deconstruction" is almost universally understood to refer to a specific sort of literary analysis. No reasonably well-educated English speaker should mistake it as a synonym for "destruction" or "dismantlement."
www.dictionary.com says
To break down into components; dismantle.
To write about or analyze (a literary text, for example), following the tenets of deconstruction
Conclusion: Parent is either wrong or the dictionary.com entry is written by someone not reasonably well-educated in English.
Well, I am not a moron, and I use the wikipedia reference extensively. From my experience, it contains no more errors for me, on average, than written encycleopedeas. So what you say is not correct in general, and thus your statement is false.
Of course, resorting to calling everyone who disagrees "morons" is sort of a hint that the arguer is at the end of his or hers wits:)
For reference, I primarily look up: Programming subject, math, geography, botanics and mythology.
Slashdot Mirror
True, however, the dialog would be quite common, and how would a non-tech savy user know whether a fancy background changer (or whatever) needs internet connection?
Sound and sober steps, which any decent OS takes. It is also rather irrelevant re firewalls :)
As for the rest of the comments, I'm sure Mac is as secure as a proprietary system can be, and certainly, windows is reported to have many flaws. As I don't use either, I really don't want to give my opinion on that subject. My point was simply that inward facing firewalls (blocking outbound connections) are a silly invention, in my humble opinion.
I know this looks smart. But it isn't. Don't you think that a potential malware programmer would know this and work around it? Like writing "You will now get this and this dialog. This is normal, just hit ok." Or do their stuff indirectly through another application that is permitted to do the network operation. Or whatever.
I believe this feature originates from windows firewalls, but I wouldn't know for sure.
To summarize: That feature is a bad idea, because it requires that the malware author works with the system, not around. Thus, it easily instills a false sense of security, while providing very little real benefit. The fact that it is installed per default makes it even worse; at least in window the malware author might not have tested with this particular firewall implementation.
Besides the good old network-2-network firewalls, there are the "Personal" firewalls regulate which application are allowed to connect. Those are what the article are talking about. If you do not agree with the terminology, I can understand, but I think that rabbit is rather out of the box.
And using proxies is just about the only way if you want to only have one type of traffic, provided that the inside people have no conspirators (including themselves) outside the firewall. If they do, you have lost whatever you do short of pulling the plug, though it would probably be tiresome/slow enough that most won't bother. As you most likely know already given that you can set up the network mentioned above. You wouldn't catch me working in such a place, though :)
In any case, I'm getting off topic :)
For stopping, sure. But for the initial wave, wouldn't a DDOS just use a commmon, open port like 80 or 443? Here I am assuming a external firewall, as a software firewall on the rooted (!) box itself is presumably disabled.
Firstly, that is negotiating traffic between networks (here, the office LAN and it's internet connection. I'd be a bit surprised if it works, but maybe it takes out some of the more stupid employees. For my money, just saying "please don't do that" seems to be a better idea in this case, though.
E.g, many people run their SMTP servers on another port (1025, 2025, 26 all seem popular) to get around the silly SMTP restriction. Likewise, I can't imagine it's hard to configure eMule to avoid detection by (let's face it) the rather stupid firewalls.
Blocking outbound connection from a computer is pretty silly initiative in any case. Firewalls are for blocking inbound connections and for enforcing policies between networks (e.g, between the home network and the internet). Only in the latter case does blocking outbound traffic matter, and only as a last ditch "woops, I forgot to restrict this service so now I'm broadcasting sensitive information to the world!" sort of thing. It certainly doesn't hinder worms and their ilk much. And don't get me started on that silly checksumming of applications :)
There is. Just don't enable the module loader in the kernel config.
The only reason to run inward-facing firewalls like that is if you can't trust the software you run. Obviously, this is not a huge issue on linux, but is on windows.
Also, the "per-application" thing is just plain silly. If you have unblocked one application, you have unblocked them all, given that you install as root. The malicious ones, anyway.
Hmmm, it seems that you can have CMYK support in GIMP: CMYK plugin. Not that I would know what to do with it :)
Well, in T2 I played a female avatar (Cappu, you might have come across my seeds ;) ) My wife played male. This tale we swapped. Actually, I was surprised at the number of advances I got while playing female --- and if I occasionally roleplayed female, it was for no more than 10 minutes at the time. Heck, I often screwed up talking about "my wife" (rl wife, of course, but ingame husbond).
And yes, a tale in the desert has a very mature group, as those games go. Truly, I think too many people are just lonely. So remember to *hug* a lot of people ;)
Sorry. English is my second language, and there is a few spelling mistakes I still make from time to time. Like beautifull (with an extra l).
In the same vein, your manners could use improving. Since you are intelligent enough to spell, I have no doubt you could formulate the above much nicer.
I've heard this so often, so now I'm curious. What exactly are you missing in GIMP? I admit that I just do red eye / contrast / color balance things, but then I hardly qualify as even an amateur photographer.
Currently EU stands to loose nearly as much as US, so in a word no. However, should US choose the exercise their right to say exclude the .eu DNS servers, that situation changes and it's goodbye internet and welcome to the split internet.
Control over the root servers are like nuclear warheads. Noone can afford to use them, but noone wants to press a nuclear power to the point where it has nothing to loose.
I have. The only imcompabilities I encountered were the obvious ones (executables being marked by filename ~= ".*\.exe$" instead of an attribute and very slow fork(), e.g.). Other than that, perl does a far better job at it than Java ever has at being crossplatform.
Of course, Java is a big mess of a language. The only good thing to say about Java is that it is an improvement over Fortran. In some ways, anyway :).
I know it is bad form to promote what you have been heavily involved in but...
Configure Klipper to store more than the few items which is the default. Somewhere in the 500-1000 should be a nice number.
Now, when you need something you snipped a few days ago again, try ctrl-alt-v, write a bit (it's a regex, btw). Instant typeahead search in the clipboard history. I love it! :)
Also, fullscreen apps, and making the panel wide, horizontal and coverable are nice tricks :)
octave 2.9 is pretty awsome. We use it (for solving a lot of Lp problems, with some branch-and-bound), and it works beautiful.
As for the question... I would question the wisdom in abandoning octave (or matlab) at all, but if you do need to do it, do it in small steps. At least, that is the best way in my experience.
It saddens me that you were modded troll for this :/
Anyway, my wife never asks for help with KMail, which she uses daily. (Well, she did ask what our mailserver was called back when she set it up). We are on an imap server here, so that might be the reason why we have never seen any index corruptions.. I didn't even know there was an index, though I did suspect it. On windows/mozilla I did see the sympton you described there, long ago.
I am unable to install windows because the installer breaks on the HD, and is unable to load any drivers (not that I know if they would help) from other than a floppydisk (which I don't have, and if I did, I don't have drivers available on one.) The hardware in question works flawlessly under linux.
... and I never meant to call you a MS fanboy, just wanted to tell you and others than some of us, at least, had lots of problems with windows, switched, and are now happy campers. My old work used Red Had as a linux desktop, but I was never a big fan of their setup. This is typed from Kubuntu, which I find to be an impressive distrobution. The about 3x200 (?) saved is a nice bonus, too (I have 3 computers total, though I don't use the last one much).
Yet I and my wife use it daily. I did nothing the average user couldn't do. We don't have many games, but then, we only play atitd really.
The hardest part was downloading and installing the game, or maybe burning the CD for the installation of Kubuntu.
I am, on the other hand, unable to install windows (XP). Since my wife's internet banking no longer needs windows, I luckily don't need it anymore.
But if you want the broad selection of games windows offer, there is no way around WGA, the cost, the upgrades, and the hopeless install. So for that group, windows (or PS3/Xbox/Gamecube or whatever they are called) is the only option.
As usual, what you really need for a succesful install of anything is...luck. So, take care of your Karma ;)
3? Just of the top of myhead
Outside this, there is a looong list of fringe OS, like HURD, plan9 and friends.
If by "really" you mean "has to run on a standard PC for less than 1000", at least Linux, BSD, the max thingy, Solaris 10 and windows qualify.
I wonder if you would get more - or less - factual information than if you sought your information from a Islamic site.
Anyway, the site will survive or die on it's own merits. Personally, I just use wikipedia :o)
Emacs can do all that. The only drawback is that you have to use Emacs :) ccmode and a abbrmode, I think.
Not really true. C++ suppports three types of casts and one obsolete form that combines those three in some form I never can remember:
The () is really poor syntax and the usage is discouraged. (and shame on Java for adopting that syntax).
Of these, Java support dynamic_cast, expanded a bit to support primitive types. (which should never have been added, imho.)
Yes, C++ will accept nearly any cast, provided you ask it to :) So you can get unchecked casts (static_cast) platform_dependent casts (reinterpret_casts) and the Java style cast that fail graciously. The idiom is even somewhat nicer in C++.
Get it from you distributor (Ubuntu, debian ,gentoo, SuSE or whatever.) Pango is a font managing system GTK uses, so the errors are probably related.
Here it runs perfectly (Kubuntu). Awsome program... with the pace GIMP has these days, and Inkscape, and Blender.... all I need is the abilility to draw :)
Parent says
www.dictionary.com says
Conclusion: Parent is either wrong or the dictionary.com entry is written by someone not reasonably well-educated in English.
Modus tollens is a form of proof.
Well, I am not a moron, and I use the wikipedia reference extensively. From my experience, it contains no more errors for me, on average, than written encycleopedeas. So what you say is not correct in general, and thus your statement is false.
Of course, resorting to calling everyone who disagrees "morons" is sort of a hint that the arguer is at the end of his or hers wits :)
For reference, I primarily look up: Programming subject, math, geography, botanics and mythology.