I agree those things need to be learned, but I disagree that going to college is the place to learn them.
College doesn't prepare you for the working world. Every college student/grad that I know is grossly unprepared to the rigors of daily corporate life.
What prepares people for work and teaches them time management, how to ask for help, responsibility for ones actions etc. is work. The more jobs you have the more you learn about how to work. I think that starting in an entry level position and learn form the people who are there. They have a lot to teach people who are interested in learning.
Aside from that getting a college degree is important to some people, and sometimes is very important to getting a job. Not all places will hire people without degrees. I know in my office there are a handful of people working in the MIS department without degrees, and most of them have some heavy experience instead.
If you don't live in the US and would like to move there to work having a degree is almost a must. A 2 year diploma from a community college is acceptable with 2-3 years of experience. If you want an H1B (3 year) though, you either need hefty experience, or a degree.
This isn't really an exploit. I have total Administrative control over my entire network. I don't have permissions to every document but I have the ability to give myself permissions to anything I want.
My company has to trust me not to use my powers for evil:)
When hiring for an Admin position managers need to keep that in mind. If you don't trust your admin, he shouldn't be your admin.
Yeah we had a Webshere guy come down to our office from IBM to demo the product. He couldn't get it working on our Oracle box and of course blamed the Oracle box. He wanted us to install DB2 on it so he could show us how it worked.
Not a chance buddy!
He eventually left at the end of the day without showing us anything. He never did get it working.
I think this is a good thing. They didn't know Espy had a medical condition, and it didn't matter.
They interacted with him and treated him as they would anyone else. He won their respect and friendship based on his personal merits, not on pity. I am sure that meant a lot to him.
The same goes for the rest of us. It is great to meet people and make friends based upon nothing more than our interaction online. No one knows my name, what I look like, who my family is etc. and I think that is a good thing. The person they are talking to is still me, I haven't changed or lost my identity.
Well they didn't get into nightcrawler's character at all. They didn't say that he developed his powers, nor did they show he had no tail. I didn't really take note of how many fingers he had though.
I think a lot of this is big business. Most people I know in this position work for very large companies, yet most people I know working for small-mid sized companies are highly appreciated and very well compensated (not to mention encouraged to take an actual vacation!)
That is why I am looking to join a nice small to mid sized company who do work for very large companies. Then I can play with the cool toys but still be treated fairly and get some time to myself!
On this note, I have a friend in Boston who works for a company doing consulting. He is flown around the country every week which can get fairly tiring. Not only will they fly him home, they will fly him anywhere he wants to go for a similar price. If he can't leave the project, they fly in his wife/gf/significant other. If they stay at the project site for a weekend the company picks up his tab for anything he wants to do, including booze and entertainly (legal entertainment;)
He caries a cell phone/pager but is prone to turning them off when on actual vacation, and I haven't seen him check email when he's here for the week-end yet. On top of that at 5pm he walks out the door, no questions asked, if they want him there longer they get dinged for it.
That is the type of situation I am looking for; well paying considerate employers who will compensate their employees for the time they take away from their personal lives, and also not penilize someone for saying 'no' to working overtime. I don't mind working overtime in a crisis, I just hate it when there is a crisis once a week.
Since I am paid hourly and everything above my 40 hours (38 hours actually I think) is overtime. I _can_ bill for it and they have to pay me, but that bunch of overtime I just billed for won't help me much while I'm job hunting.
I just have to live with it until I find the right job to replace this one. Finding _a_ job is easy, finding a job where they will treat you right and appreciate what you do for them is a bit more difficult.
People certainly do lose their jobs, or at the very least have the threat of being fired dangled in front of them.
I work for a company that doesn't just expect _unpaid_ overtime, they flat out tell you they expect it. A 60 hour work week here is average, and for some departments, not enough. There is one guy who's doctor told him to go on stress leave indefinitely, he is wound up as tight as a drum and I am surprised he hasn't had a breakdown yet. The company gave him permission to take stress leave, but when he came back a week later to pick something up from his desk they didn't hesitate to keep him there all day answering questions. He's been back at work ever since.
I recently decided that my declining personal relationship with my long term girlfriend and most of my friends needed some attention. I started showing up for work at 8 and leaving at 5, taking my full hour for lunch. This has lasted for about 3 months and during my annual review I was told I wasn't a team player, wasn't working hard enough and if I didn't start spending more time at work I would lose my job. This of course just pissed me off and I have doubled my efforts to find a good job where they will treat me right.
I've been working here for 2 years and have banked up 4 weeks of vacation time, mostly because when I ask for a day (1 freaking day) off they give me a hard time and end up paging me for something anyway. I was at the gym the other day and had my pager turned off in my locker while I was showering and they were trying to page me. I didn't get yelled at, but it was made abundantly clear they weren't pleased that I didn't get back to them right away.
In any event, this does happen and it happens all too often.
One other thing to note is that anyone with the Pre-release probably had to sign an NDA which would prohibit such articles. If they signed an NDA and proceeded with an article anyway it's their own stupid fault and they should be sued.
Ok, not all three of those _other_ official dispute resolution providors are American. eresolution.ca is a _CANADIAN_ group.
Any domain than ends in.xx is a Country Code TLD. A State domain would be ca.us not.ca
So two out of the four are American groups, one is an international organization that grew out of the UN and the final is a CANADIAN group. I think you should do a little bit more reading before you go off on a crusade to 'split' the net.
Good points, but they also work the same way when you talk about malicious people.
How long will it take a malicious user to find a security hole? Why should I assume that the first time a malicious user looks at the code he will find a hole, but it will take multiple 'nice' users a long time to find/fix the same hole?
Your point about my examples being built that way from the ground up is a good one, but everyone has to start somewhere. If a company has significant security in place beyond the application they are OpenSourcing, hopefully any problems they would incurr due ot Opensourcing that product would be caught before any damage was done. Or even better, if the app was to be hackable, hopefully they wouldn't be able to get at any useful information/resources.
Of course we don't even know if this application is something that is accessable from the outside world. Perhaps this is simply an internally used application that can't be accessed remotely.
You have to be kidding! How many times do people have to point out that Security though Obscurity _does not work_!
If you keep the software closed, the bugs still exist. The people who know how to find and exploit those bugs still exist and are still trying to find those bugs. The problem here is that your company may not know about them and therefore probably won't know when they are being attacked.
If that was open sourced you have more people reviewing that code than just company programmers. The likelyhood of someone finding and fixing (or at least pointing out) a security hole grows exponentially by the number of contributors you have. As long as your project will attract developers, your security argument doesn't hold water. Sure there are some people who may try and find holes in your software to exploit you with, but there are far more people looking for holes to plug.
If your argument were true, then why do so many public websites/servers run on Linux/BSD/other open source OS. They have the same issues but continuously prove to be more secure. Ever wonder why that is?
Looks like someone else needs to read the article. It said nothing about Private Companies registering TLD's without permission. It talked about Companies who are (or were) registering TLD's for Countries with permissions. In some cases those Countries wanted control back.
If the Countries legally gave up the TLD to the company, then tough. ICANN shouldn't do anything about it. If the TLD was given to someone other than the country and they are proving to not be acting in the countries interests, then perhaps some intervention is needed.
From the looks of this post it is simply an "I heard this story from a friend, who heard it from his cousin who heard it..."
Does anyone have a link to a story, or an article or even a personal site about this guys problem? If not I'd have to question whether this actually happened or not.
it would have made no difference to Mattel. And if it's your personal nit, why are you even posting to a profit-making.org?
Well,/. started out as a non-profit.org and therefore were right in using the domain name slashdot.org. Now that they are making money they are also using a.com; slashdot.com. Which you can use to get to this site.
Yes Boston. Perhaps I should have said Boston and surrounding area though. I know a bunch of folks who are working in the Boston area making anywhere between $55k and $80k per year and all of them seem to be doing quite well. I haven't heard one complaint out of any of them.
Sure their housing costs are more than what I pay here, but the average salary here is lower too. From what I can tell the housing costs are reasonable for the amount of money you make, as opposed to places like SV where you can be making 100k/year and still have problems finding a decent and affordable place to live.
The cost of housing in high tech centers like Silicon Valley is what is keeping me away. I talk to some companies who sound like they are offering a pile of money and benefits, but if you look at the actual cost of living even though I am making more, I end up with less.
What places like that need is some planning. A spot like Boston where I can live a very short commute away (15-20 minutes) but live for a reasonable cost is somewhere that more Hi-Tech companies should be looking at.
If the cost of living out there doesn't get better we'll just get more places like Silicon Alley popping up. Which isn't necessarily a bad thing.
When that fellow was talking about your splash page making it difficult to back out of your site I think he was referring to the 6 second refresh.
Pages that do that make it difficult to back out of a site because when you hit back to try to return where you came from it hits the refresh and tries to forward you again. It's not that big a deal because you just have to hit back again quick enough (and 6 seconds is a long time), but it can be quite annoying.
An S80 is SP/2 hardware. I haven't heard anything about Linux on an SP/2 yet, but I would be surprised if it wasn't running somewhere. There are a lot of hardware bits that someone would need to make Linux support, but if it's running on an S/390 I don't think porting it to an SP/2 will be a big deal.
the S/390 may not be one of IBM's fastest machines for benchmarks but it is definitely one it's most powerful machines. We have a group of SP's including 2 (soon to be 4) S80's and we are going to have to _upgrade_ to an S/390. The SP's can't offer us the horsepower and uptime that the S/390 can. The SP's will be great for our data-warehouse, but for the real heavy financials and SAP work, the S/390 is what we'll need.
Actually the point of the articles and press releases is that Linux will now run natively on an S/390 and not just inside a virtual machine on OS/390. That is pretty damn cool:)
I'd love to see some performance specs on Linux vs OS/390!
It isn't wierd data to collect, but it is wierd to hold it all in a central place. This is all data that should be collected by seperate parts of the Government and housed by that section of Government. It should _not_ be all placed in a single database for HR Canada to do with what they feel like.
The Privacy Commissioner is correct, there needs to be some rules of use for this information and penalties for mis-use. Above that I would inquire as to why HR needs all that information. I don't think they need access to all the information they say is housed in that database.
I work for a company that hired an external company to develop and host an e-commerce website for us. The understanding (and contract) was that they own all the code. They have a set process that they use to make e-commerce sites (different designs etc. but same back-end), they use this same process for all their customers.
From what I understand this is a pretty standard clause in a contract. I would ask to see the contracts and get them examined by my own personal lawyer. Get your lawyers opinion and don't rely on your employers lawyers, they are concerned about their employer first and you second.
When did/. become an ISP? Did I miss a meeting here or do I just not understand the DMCA? Can Microsoft actually ask this of/. if they are not deemed an ISP?
I agree that printing a copyrighted work is not a good idea, but shouldn't this be something for MS to take up with the individual users? I know that one of those users is an AC and that may have to be handled differently but I would suggest that MS take this up with the users. If the users fold and ask for their comments to be edited/removed then/. can comply. Otherwise MS can pound sand; especially when it comes to links to copyrighted/trademarked information.
If you were to comply with MS's request I would hope that you won't just remove the comments, but instead remove the offending text of the comments, or even a link or copy of the message from MS and an explanation of why/. and Andover had to comply.
I am really disappointed with MS's short-sightedness in using a law like the DMCA when they have some large organizations that may get hit with similar 'requests' in no small part from the precendent they may set with/.
We were forced to use it here at work. In fact it was shoved down our throats even though we protested and wrote document after document about how bad it was and why. They replaced a perfectly good homegrown solution to the document management with WebDB and wasted everyones time.
It sits there fairly un-used. Basically at the moment it is being used to store the company phone list.
Slashdot Mirror
I agree those things need to be learned, but I disagree that going to college is the place to learn them.
College doesn't prepare you for the working world. Every college student/grad that I know is grossly unprepared to the rigors of daily corporate life.
What prepares people for work and teaches them time management, how to ask for help, responsibility for ones actions etc. is work. The more jobs you have the more you learn about how to work. I think that starting in an entry level position and learn form the people who are there. They have a lot to teach people who are interested in learning.
Aside from that getting a college degree is important to some people, and sometimes is very important to getting a job. Not all places will hire people without degrees. I know in my office there are a handful of people working in the MIS department without degrees, and most of them have some heavy experience instead.
If you don't live in the US and would like to move there to work having a degree is almost a must. A 2 year diploma from a community college is acceptable with 2-3 years of experience. If you want an H1B (3 year) though, you either need hefty experience, or a degree.
Phil
This isn't really an exploit. I have total Administrative control over my entire network. I don't have permissions to every document but I have the ability to give myself permissions to anything I want.
:)
My company has to trust me not to use my powers for evil
When hiring for an Admin position managers need to keep that in mind. If you don't trust your admin, he shouldn't be your admin.
forge
Yeah we had a Webshere guy come down to our office from IBM to demo the product. He couldn't get it working on our Oracle box and of course blamed the Oracle box. He wanted us to install DB2 on it so he could show us how it worked.
Not a chance buddy!
He eventually left at the end of the day without showing us anything. He never did get it working.
forgey
I think this is a good thing. They didn't know Espy had a medical condition, and it didn't matter.
They interacted with him and treated him as they would anyone else. He won their respect and friendship based on his personal merits, not on pity. I am sure that meant a lot to him.
The same goes for the rest of us. It is great to meet people and make friends based upon nothing more than our interaction online. No one knows my name, what I look like, who my family is etc. and I think that is a good thing. The person they are talking to is still me, I haven't changed or lost my identity.
My online handle is just another name for me.
forgey
Don't we ask the same questions every week?
Well they didn't get into nightcrawler's character at all. They didn't say that he developed his powers, nor did they show he had no tail. I didn't really take note of how many fingers he had though.
forgey
I think a lot of this is big business. Most people I know in this position work for very large companies, yet most people I know working for small-mid sized companies are highly appreciated and very well compensated (not to mention encouraged to take an actual vacation!)
;)
That is why I am looking to join a nice small to mid sized company who do work for very large companies. Then I can play with the cool toys but still be treated fairly and get some time to myself!
On this note, I have a friend in Boston who works for a company doing consulting. He is flown around the country every week which can get fairly tiring. Not only will they fly him home, they will fly him anywhere he wants to go for a similar price. If he can't leave the project, they fly in his wife/gf/significant other. If they stay at the project site for a weekend the company picks up his tab for anything he wants to do, including booze and entertainly (legal entertainment
He caries a cell phone/pager but is prone to turning them off when on actual vacation, and I haven't seen him check email when he's here for the week-end yet. On top of that at 5pm he walks out the door, no questions asked, if they want him there longer they get dinged for it.
That is the type of situation I am looking for; well paying considerate employers who will compensate their employees for the time they take away from their personal lives, and also not penilize someone for saying 'no' to working overtime. I don't mind working overtime in a crisis, I just hate it when there is a crisis once a week.
forge - replying to his own thread
Since I am paid hourly and everything above my 40 hours (38 hours actually I think) is overtime. I _can_ bill for it and they have to pay me, but that bunch of overtime I just billed for won't help me much while I'm job hunting.
I just have to live with it until I find the right job to replace this one. Finding _a_ job is easy, finding a job where they will treat you right and appreciate what you do for them is a bit more difficult.
forge
People certainly do lose their jobs, or at the very least have the threat of being fired dangled in front of them.
I work for a company that doesn't just expect _unpaid_ overtime, they flat out tell you they expect it. A 60 hour work week here is average, and for some departments, not enough. There is one guy who's doctor told him to go on stress leave indefinitely, he is wound up as tight as a drum and I am surprised he hasn't had a breakdown yet. The company gave him permission to take stress leave, but when he came back a week later to pick something up from his desk they didn't hesitate to keep him there all day answering questions. He's been back at work ever since.
I recently decided that my declining personal relationship with my long term girlfriend and most of my friends needed some attention. I started showing up for work at 8 and leaving at 5, taking my full hour for lunch. This has lasted for about 3 months and during my annual review I was told I wasn't a team player, wasn't working hard enough and if I didn't start spending more time at work I would lose my job. This of course just pissed me off and I have doubled my efforts to find a good job where they will treat me right.
I've been working here for 2 years and have banked up 4 weeks of vacation time, mostly because when I ask for a day (1 freaking day) off they give me a hard time and end up paging me for something anyway. I was at the gym the other day and had my pager turned off in my locker while I was showering and they were trying to page me. I didn't get yelled at, but it was made abundantly clear they weren't pleased that I didn't get back to them right away.
In any event, this does happen and it happens all too often.
forge
One other thing to note is that anyone with the Pre-release probably had to sign an NDA which would prohibit such articles. If they signed an NDA and proceeded with an article anyway it's their own stupid fault and they should be sued.
forgey
Ok, not all three of those _other_ official dispute resolution providors are American. eresolution.ca is a _CANADIAN_ group.
.xx is a Country Code TLD. A State domain would be ca.us not .ca
Any domain than ends in
So two out of the four are American groups, one is an international organization that grew out of the UN and the final is a CANADIAN group. I think you should do a little bit more reading before you go off on a crusade to 'split' the net.
forgey
Good points, but they also work the same way when you talk about malicious people.
How long will it take a malicious user to find a security hole? Why should I assume that the first time a malicious user looks at the code he will find a hole, but it will take multiple 'nice' users a long time to find/fix the same hole?
Your point about my examples being built that way from the ground up is a good one, but everyone has to start somewhere. If a company has significant security in place beyond the application they are OpenSourcing, hopefully any problems they would incurr due ot Opensourcing that product would be caught before any damage was done. Or even better, if the app was to be hackable, hopefully they wouldn't be able to get at any useful information/resources.
Of course we don't even know if this application is something that is accessable from the outside world. Perhaps this is simply an internally used application that can't be accessed remotely.
forgey
You have to be kidding! How many times do people have to point out that Security though Obscurity _does not work_!
If you keep the software closed, the bugs still exist. The people who know how to find and exploit those bugs still exist and are still trying to find those bugs. The problem here is that your company may not know about them and therefore probably won't know when they are being attacked.
If that was open sourced you have more people reviewing that code than just company programmers. The likelyhood of someone finding and fixing (or at least pointing out) a security hole grows exponentially by the number of contributors you have. As long as your project will attract developers, your security argument doesn't hold water. Sure there are some people who may try and find holes in your software to exploit you with, but there are far more people looking for holes to plug.
If your argument were true, then why do so many public websites/servers run on Linux/BSD/other open source OS. They have the same issues but continuously prove to be more secure. Ever wonder why that is?
forgey
Looks like someone else needs to read the article. It said nothing about Private Companies registering TLD's without permission. It talked about Companies who are (or were) registering TLD's for Countries with permissions. In some cases those Countries wanted control back.
If the Countries legally gave up the TLD to the company, then tough. ICANN shouldn't do anything about it. If the TLD was given to someone other than the country and they are proving to not be acting in the countries interests, then perhaps some intervention is needed.
forgey
From the looks of this post it is simply an "I heard this story from a friend, who heard it from his cousin who heard it..."
Does anyone have a link to a story, or an article or even a personal site about this guys problem? If not I'd have to question whether this actually happened or not.
forgey
it would have made no difference to Mattel. And if it's your personal nit, why are you even posting to a profit-making .org?
Well, /. started out as a non-profit .org and therefore were right in using the domain name slashdot.org. Now that they are making money they are also using a .com; slashdot.com. Which you can use to get to this site.
forgey
Yes Boston. Perhaps I should have said Boston and surrounding area though. I know a bunch of folks who are working in the Boston area making anywhere between $55k and $80k per year and all of them seem to be doing quite well. I haven't heard one complaint out of any of them.
Sure their housing costs are more than what I pay here, but the average salary here is lower too. From what I can tell the housing costs are reasonable for the amount of money you make, as opposed to places like SV where you can be making 100k/year and still have problems finding a decent and affordable place to live.
forgey
The cost of housing in high tech centers like Silicon Valley is what is keeping me away. I talk to some companies who sound like they are offering a pile of money and benefits, but if you look at the actual cost of living even though I am making more, I end up with less.
What places like that need is some planning. A spot like Boston where I can live a very short commute away (15-20 minutes) but live for a reasonable cost is somewhere that more Hi-Tech companies should be looking at.
If the cost of living out there doesn't get better we'll just get more places like Silicon Alley popping up. Which isn't necessarily a bad thing.
forgey
Jeffrey,
When that fellow was talking about your splash page making it difficult to back out of your site I think he was referring to the 6 second refresh.
Pages that do that make it difficult to back out of a site because when you hit back to try to return where you came from it hits the refresh and tries to forward you again. It's not that big a deal because you just have to hit back again quick enough (and 6 seconds is a long time), but it can be quite annoying.
forge
An S80 is SP/2 hardware. I haven't heard anything about Linux on an SP/2 yet, but I would be surprised if it wasn't running somewhere. There are a lot of hardware bits that someone would need to make Linux support, but if it's running on an S/390 I don't think porting it to an SP/2 will be a big deal.
the S/390 may not be one of IBM's fastest machines for benchmarks but it is definitely one it's most powerful machines. We have a group of SP's including 2 (soon to be 4) S80's and we are going to have to _upgrade_ to an S/390. The SP's can't offer us the horsepower and uptime that the S/390 can. The SP's will be great for our data-warehouse, but for the real heavy financials and SAP work, the S/390 is what we'll need.
forge
Actually the point of the articles and press releases is that Linux will now run natively on an S/390 and not just inside a virtual machine on OS/390. That is pretty damn cool :)
I'd love to see some performance specs on Linux vs OS/390!
forge
It isn't wierd data to collect, but it is wierd to hold it all in a central place. This is all data that should be collected by seperate parts of the Government and housed by that section of Government. It should _not_ be all placed in a single database for HR Canada to do with what they feel like.
The Privacy Commissioner is correct, there needs to be some rules of use for this information and penalties for mis-use. Above that I would inquire as to why HR needs all that information. I don't think they need access to all the information they say is housed in that database.
forge
First off, I am not a Lawyer.
I work for a company that hired an external company to develop and host an e-commerce website for us. The understanding (and contract) was that they own all the code. They have a set process that they use to make e-commerce sites (different designs etc. but same back-end), they use this same process for all their customers.
From what I understand this is a pretty standard clause in a contract. I would ask to see the contracts and get them examined by my own personal lawyer. Get your lawyers opinion and don't rely on your employers lawyers, they are concerned about their employer first and you second.
forge
When did /. become an ISP? Did I miss a meeting here or do I just not understand the DMCA? Can Microsoft actually ask this of /. if they are not deemed an ISP?
/. can comply. Otherwise MS can pound sand; especially when it comes to links to copyrighted/trademarked information.
/. and Andover had to comply.
/.
I agree that printing a copyrighted work is not a good idea, but shouldn't this be something for MS to take up with the individual users? I know that one of those users is an AC and that may have to be handled differently but I would suggest that MS take this up with the users. If the users fold and ask for their comments to be edited/removed then
If you were to comply with MS's request I would hope that you won't just remove the comments, but instead remove the offending text of the comments, or even a link or copy of the message from MS and an explanation of why
I am really disappointed with MS's short-sightedness in using a law like the DMCA when they have some large organizations that may get hit with similar 'requests' in no small part from the precendent they may set with
forge
I couldn't agree more! WebDB is a pice of crap!!
We were forced to use it here at work. In fact it was shoved down our throats even though we protested and wrote document after document about how bad it was and why. They replaced a perfectly good homegrown solution to the document management with WebDB and wasted everyones time.
It sits there fairly un-used. Basically at the moment it is being used to store the company phone list.