Really? So Android has no bugs/exploits in it? The various phone vendors that add their own code to the Android base also didn't introduce any bugs/exploits? And let me guess, the linux kernel has never had an exploit fixed?
ALL software has this problem. Open Source means it is much easier to bring them to light instead of depending on a proprietary vendor's announcement. Open Source does not mean the software doesn't have bugs/exploits.
As far as I know, you can refuse to walk through the scanner, they will pull you to the side for extra security scanning.
If you're lucky, they are not understaffed that day and you get a good TSA employee and can get through the extra process with only a minumum of hassle.
Or, you can get some TSA employee having a really bad day who is pissed of that (s)he now has to deal with you and it will could forever and be a pain in the ass.
which is awesome until you need to launch that one single GUI app and due to enterprise level policies you can't run an Xserver of some type on your Windows desktop in order to tunnel the display back to your PC.
Personally, I think remote admin cards on the servers (ala Dell DRAC) or KVM consoles you can hit remotely via a browser are a better choice since it is just like you are the physical keyboard/monitor and can access BIOS, your RAID cards, etc.
State is paying the contractor company $120/hr for IT employees....the employee is not making $120/hour (unless said employee is a self-employed consultant under contract as opposed to being a W-2 employee w/ a contractor agency).
My company charges around $96/hr to the government for my services. I am definitely not making that much per hour.
two huge reasons I loved the 1st movie: the Balrog scene, and the scene where Borimir becomes a human pin cushion. I liked the book version of Borimir's death better, but the way it was modified for the screen worked. Oh, and Gandalf.
My only major complaint is they let the elves speak native and used subtitles but had all the other non-humans speaking English. They should have had the other races speaking native as well.
No, it is not self-enforcing. The Constitution is the 3rd party enforcement the agreement between the President and the people by providing a means for the people to get rid of him/her.
He wasn't referring to how people vote, but the fact that the # of votes is verifiable without the use of a 3rd party.
e.g. I just saw 14 hands go in the air for Proposition #15. It doesn't matter whether that was 14 people who actually want Prop #15 to pass, or whether it was 7 people who wanted it to pass who were holding a gun to the other 7, just that Prop #15 got 14 verifiable votes.
Because only the major vendors have been approved for use within the DOD?
Been there done that for 9+ years...it all really depends on how much common sense your IT security group has and how tech savvy they are. My favorite place was where the head IT security guy was an avid computer geek, so when the new vulnerability lists came out, as long as we could provide a memo for the record explaining how we mitigated the vulnerability (backporting the fix, upgrading to the next version, removing the software, etc.), he signed off on it.
Contrast that to another DOD job where no one wanted to put their signature on anything, so no one would sign a waiver for anything that had a vulnerability. This included running NIS/NIS+/or LDAP on the unix network. So as a result, we had over 200 servers supporting about 100 different projects, each with their own passwd/shadow/group files. Yet the same people allowed a Windows Active Directory domain to be ran on the network (and no, we weren't allowed to use AD as an LDAP server for the unix systems, because the unix ldap client had a vulnerability.)
If you've ever had to work with the DISA STIGs, you'll know how much of a piece of crap most of their scripts are w/r/t checking that you've performed the required lockdowns per the guides. One example for Solaris 10, one of the checks was to see if a certain service was running (I forget which at the moment). It performed the check by grep'ing for the service in inetd.conf, and seeing if it was commented out. Well, for Solaris 10, management of that service was moved to the SMF facility, so the line didn't exist in inetd.conf. The script wasn't updated for Solaris 10, and since the script wasn't written to handle the case where the line didn't exist, it would give a false positive hit and say you were running the vulnerability. We had to spend 30 minutes explaining this to very non-techy auditor, and finally after still not getting it he basically threw his hands in the air and said "fuck it, I believe you" and let us pass on that ONE lockdown. Multiply that by a couple dozen. Makes for a long week during your annual inspections.
So how exactly would a simple BASH script convert the title block on multiple proprietary, binary formatted files?
I seriously want to know how you would do that, since it would be very useful for when management arbitrarily decides to change the company letterhead and people need to go back and update all of the documents, manuals, publications, etc that go outside the company.
Bicyclists are required to stay as close to the curb as possible.
Where I live, the law basically states that a cyclist has to ride as close as practical to the right side of the road...on some tiny roads, for safety bicycles are allowed to "take the lane" if that is the safest option. There is also supposed to be a "3 foot rule" when passing a cyclist, but just yesterday I got buzzed by some jerk on a 3 lane road with no other cars around.
And riding a bike on the sidewalk is almost more dangerous than riding in the street. You can potentially collide with pedestrians, and intersections are even more dangerous because drivers are not looking for things coming off of a sidewalk into traffic. If you are riding in the lane (smartly that is, with bright clothing and blinking things) you are a part of traffic and more noticeable to drivers.
A Multi-user trail is a safer option if they are available, but my county doesn't have very many. The next county over is much more bike commute friendly with tons of MUTs that crisscross the county.
In the days of XP, I had to reinstall my OS once a year just to keep it running at a tolerable rate
I've been running the same XP install (patched over time of course) since October 2004 with no issues.
I will never touch Vista (nor 7 most likely) outside of work...I'm replacing all the home systems with Macs this year (minis for the kids, iMacs for wife and I).
By buying Sun, Oracle also gets a hardware operation. But Oracle has no experience in the hardware business.
If they buy Sun, they have entire business unit that has experience in the hardware business. If they (Oracle) are smart, they won't try to change how the new (to Oracle) business units run, and will listen to the people in those units when it comes to how to run them.
But having been on 2 different occasions part of a company that was acquired by another, I have no faith that Oracle will do the smart thing when merging them.
Slashdot Mirror
Hey, if all information wants to be free, it will be free for everyone, including the "bad guys".
Really? So Android has no bugs/exploits in it? The various phone vendors that add their own code to the Android base also didn't introduce any bugs/exploits? And let me guess, the linux kernel has never had an exploit fixed?
ALL software has this problem. Open Source means it is much easier to bring them to light instead of depending on a proprietary vendor's announcement. Open Source does not mean the software doesn't have bugs/exploits.
As far as I know, you can refuse to walk through the scanner, they will pull you to the side for extra security scanning.
If you're lucky, they are not understaffed that day and you get a good TSA employee and can get through the extra process with only a minumum of hassle.
Or, you can get some TSA employee having a really bad day who is pissed of that (s)he now has to deal with you and it will could forever and be a pain in the ass.
which is awesome until you need to launch that one single GUI app and due to enterprise level policies you can't run an Xserver of some type on your Windows desktop in order to tunnel the display back to your PC.
Personally, I think remote admin cards on the servers (ala Dell DRAC) or KVM consoles you can hit remotely via a browser are a better choice since it is just like you are the physical keyboard/monitor and can access BIOS, your RAID cards, etc.
This high enough?
http://blogs.howstuffworks.com/2008/02/01/world-record-9-the-fastest-human-and-the-highest-skydive/
State is paying the contractor company $120/hr for IT employees....the employee is not making $120/hour (unless said employee is a self-employed consultant under contract as opposed to being a W-2 employee w/ a contractor agency).
My company charges around $96/hr to the government for my services. I am definitely not making that much per hour.
+5 for this. (no mods points, sorry :( )
I think he was referring to the profit made from selling newspapers hyping the flu situation.
i.e. scary headlines sells us more papers.
That's what the data center monkeys are for.
two huge reasons I loved the 1st movie: the Balrog scene, and the scene where Borimir becomes a human pin cushion. I liked the book version of Borimir's death better, but the way it was modified for the screen worked. Oh, and Gandalf.
My only major complaint is they let the elves speak native and used subtitles but had all the other non-humans speaking English. They should have had the other races speaking native as well.
No, it is not self-enforcing. The Constitution is the 3rd party enforcement the agreement between the President and the people by providing a means for the people to get rid of him/her.
He wasn't referring to how people vote, but the fact that the # of votes is verifiable without the use of a 3rd party.
e.g. I just saw 14 hands go in the air for Proposition #15. It doesn't matter whether that was 14 people who actually want Prop #15 to pass, or whether it was 7 people who wanted it to pass who were holding a gun to the other 7, just that Prop #15 got 14 verifiable votes.
Because only the major vendors have been approved for use within the DOD?
Been there done that for 9+ years...it all really depends on how much common sense your IT security group has and how tech savvy they are. My favorite place was where the head IT security guy was an avid computer geek, so when the new vulnerability lists came out, as long as we could provide a memo for the record explaining how we mitigated the vulnerability (backporting the fix, upgrading to the next version, removing the software, etc.), he signed off on it.
Contrast that to another DOD job where no one wanted to put their signature on anything, so no one would sign a waiver for anything that had a vulnerability. This included running NIS/NIS+/or LDAP on the unix network. So as a result, we had over 200 servers supporting about 100 different projects, each with their own passwd/shadow/group files. Yet the same people allowed a Windows Active Directory domain to be ran on the network (and no, we weren't allowed to use AD as an LDAP server for the unix systems, because the unix ldap client had a vulnerability.)
If you've ever had to work with the DISA STIGs, you'll know how much of a piece of crap most of their scripts are w/r/t checking that you've performed the required lockdowns per the guides. One example for Solaris 10, one of the checks was to see if a certain service was running (I forget which at the moment). It performed the check by grep'ing for the service in inetd.conf, and seeing if it was commented out. Well, for Solaris 10, management of that service was moved to the SMF facility, so the line didn't exist in inetd.conf. The script wasn't updated for Solaris 10, and since the script wasn't written to handle the case where the line didn't exist, it would give a false positive hit and say you were running the vulnerability. We had to spend 30 minutes explaining this to very non-techy auditor, and finally after still not getting it he basically threw his hands in the air and said "fuck it, I believe you" and let us pass on that ONE lockdown. Multiply that by a couple dozen. Makes for a long week during your annual inspections.
So how exactly would a simple BASH script convert the title block on multiple proprietary, binary formatted files?
I seriously want to know how you would do that, since it would be very useful for when management arbitrarily decides to change the company letterhead and people need to go back and update all of the documents, manuals, publications, etc that go outside the company.
the real question is: did you finish watching the nasty horse porn?
Share the fun next time ;)
(thank goodness my wife doesn't read /.)
You obviously haven't been on a vacation with my wife, her goal is exactly that (much to my frustration).
The government agency I am contracted to is just now in the final testing phases for rolling out Windows XP to the desktop.
Yes, XP. They had a Vista pilot last year but due to legacy app issues decided to scrap it and start the process over again with XP.
Looking underage is ok...it's when they are underage that you get in trouble :)
Bicyclists are required to stay as close to the curb as possible.
Where I live, the law basically states that a cyclist has to ride as close as practical to the right side of the road...on some tiny roads, for safety bicycles are allowed to "take the lane" if that is the safest option. There is also supposed to be a "3 foot rule" when passing a cyclist, but just yesterday I got buzzed by some jerk on a 3 lane road with no other cars around.
And riding a bike on the sidewalk is almost more dangerous than riding in the street. You can potentially collide with pedestrians, and intersections are even more dangerous because drivers are not looking for things coming off of a sidewalk into traffic. If you are riding in the lane (smartly that is, with bright clothing and blinking things) you are a part of traffic and more noticeable to drivers.
A Multi-user trail is a safer option if they are available, but my county doesn't have very many. The next county over is much more bike commute friendly with tons of MUTs that crisscross the county.
Nope, I bet my pron downloads dwarf all other online internet traffic combined :)
In the days of XP, I had to reinstall my OS once a year just to keep it running at a tolerable rate
I've been running the same XP install (patched over time of course) since October 2004 with no issues.
I will never touch Vista (nor 7 most likely) outside of work...I'm replacing all the home systems with Macs this year (minis for the kids, iMacs for wife and I).
There-in lies the rub with the "all information should be free" mindset...EVERYONE gets to look at it.
I think that is a feature, not a bug.
By buying Sun, Oracle also gets a hardware operation. But Oracle has no experience in the hardware business.
If they buy Sun, they have entire business unit that has experience in the hardware business. If they (Oracle) are smart, they won't try to change how the new (to Oracle) business units run, and will listen to the people in those units when it comes to how to run them.
But having been on 2 different occasions part of a company that was acquired by another, I have no faith that Oracle will do the smart thing when merging them.
Um, Sun sells a hell of a lot more than workstations. I'll take Sun servers in the datacenter over Dell/HP if given a choice.
If this goes through, I really hope Oracle keeps the coolthreads architecture.