Yes, they definitely are. I live in Chicago and was in Seattle for four months for work. I was amazed at how people actually understood the concept of merging. In Chicago, the status quo is to zoom down the shoulder as far as possible and cut people off. While it did happen occasionally in Seattle, it was very rare. Much more courteous drivers make for a more relaxing drive.
Had Microsoft fixed a low risk browser vulnerability six months ago, perhaps we could have avoided last week's zero-day exploit.
Had "Computer Terrorism" alerted Microsoft to the fact that the low risk vulnerability was, in fact, much more dangerous, perhaps we could have avoid last week's zero-day exploit! Not to mention the press this is generating for their company...
Microsoft is a business. Their cost-benefit analysis of fixing a low risk issue probably didn't give them enough justification to fix the bug. Had CT responsibly contacted MS and notified them of the increased criticality, MS would have elevated the need to patch, released a patch...and this wouldn't be a problem.
While this doesn't alleviate MS for not patching...the disclosure could have been handled with quite a bit more professionalism, IMHO.
Pringles crunch so nicely, but there have been so many times where I've been trying to pour the last bit out and they overflow my hand into each and every crack in the keyboard.
I was all psyched when I got a mobo that supported IDE RAID. Turns out it was rather limited in what it could do, so I decided to implement it using Linux software instead. I ended up using LVM and RAID to create a structure of LVM on RAID1 on RAID0 with a spare disk hanging out in the case to boot off of. That took most of week to implement, but it's been working great ever since.
It's all in how up to date you keep it. I personally run a mix of Debian stable/testing/unstable on my webserver. THe/etc/apt/preferences file does wonders for keeping this all in check and I keep the important stuff, like Apache, stable and the kewl stuff like gaim and xchat on unstable.;-)
I wanted to switch instrumentation PC here at work over to Linux and use StarOffice for the macro I was developing, but when I opened the Excel file in StarOffice, the macro was stripped from the file when I resaved it in Excel format. Damn! This was with StarOffice 5.1.
Apparently, StarOffice has StarBasic which has syntax very similar to VBA, but when I used it there was no documentation yet.:-(
However, I do foresee either StarOffice or some determined developer adding that functionality.;o)
--topdown "If you can't beat your computer at chess, try kickboxing."
Slashdot Mirror
Yes, they definitely are. I live in Chicago and was in Seattle for four months for work. I was amazed at how people actually understood the concept of merging. In Chicago, the status quo is to zoom down the shoulder as far as possible and cut people off. While it did happen occasionally in Seattle, it was very rare. Much more courteous drivers make for a more relaxing drive.
Interestingly enough, this same bug creates a DoS condition in Firefox. (Yes, even the most recent 1.5 release)
This is all it was to MS 6 months ago too...so why hasn't Mozilla fixed it?
Had "Computer Terrorism" alerted Microsoft to the fact that the low risk vulnerability was, in fact, much more dangerous, perhaps we could have avoid last week's zero-day exploit! Not to mention the press this is generating for their company...
Dana Epp has some good comments in The Cost in Fixing Bugs and How Irresponsible Disclosure doesn't Help the Matter.
Microsoft is a business. Their cost-benefit analysis of fixing a low risk issue probably didn't give them enough justification to fix the bug. Had CT responsibly contacted MS and notified them of the increased criticality, MS would have elevated the need to patch, released a patch...and this wouldn't be a problem.
While this doesn't alleviate MS for not patching...the disclosure could have been handled with quite a bit more professionalism, IMHO.
Pringles crunch so nicely, but there have been so many times where I've been trying to pour the last bit out and they overflow my hand into each and every crack in the keyboard.
I was all psyched when I got a mobo that supported IDE RAID. Turns out it was rather limited in what it could do, so I decided to implement it using Linux software instead. I ended up using LVM and RAID to create a structure of LVM on RAID1 on RAID0 with a spare disk hanging out in the case to boot off of. That took most of week to implement, but it's been working great ever since.
It's all in how up to date you keep it. I personally run a mix of Debian stable/testing/unstable on my webserver. THe /etc/apt/preferences file does wonders for keeping this all in check and I keep the important stuff, like Apache, stable and the kewl stuff like gaim and xchat on unstable. ;-)
If you want to secure your FreeBSD system a little more, check out SecureBSD
:o)
I haven't tried it myself, but it looks pretty good, and they have a nice logo too.
I wanted to switch instrumentation PC here at work over to Linux and use StarOffice for the macro I was developing, but when I opened the Excel file in StarOffice, the macro was stripped from the file when I resaved it in Excel format. Damn! This was with StarOffice 5.1.
:-(
;o)
Apparently, StarOffice has StarBasic which has syntax very similar to VBA, but when I used it there was no documentation yet.
However, I do foresee either StarOffice or some determined developer adding that functionality.
--topdown
"If you can't beat your computer at chess, try kickboxing."