I didn't know you could do that. Granted, I haven't used GIMP in a long time, so I'll have to give this a try. Thanks for the tip.
Re:Vulnerability Check
on
Due Diligence?
·
· Score: 4, Interesting
I can't believe that you got modded up for just saying "I didn't read the article." If you had bothered to read it and not skim it, you would have found the description of how they check it on page five:
The patches provided by the OpenSSL project do not
change the version number. As a consequence, we cannot
simply examine at the advertised version number in
order to determine whether or not they have been
applied. However, due to the nature of the SSLv2 problem,
it's still relatively straightforward to determine
whether or not a server is vulnerable and therefore by
excluding servers which advertise a newer version number
identify whether or not a given server has been
patched.
[snip]
It's possible to determine whether OpenSSL has
been patched by generating a CLIENT-MASTER-KEY
which is one octet too long. It's easy to see that in a
patched version, this falls afoul of the length check
shown in Figure 5. The result is a handshake error.
This right under the section called "Detecting Vulnerable Servers." Maybe you should read the article next time before you post.
Everything looks pretty much the same on Windows. I have one user interface to learn. I don't like skins. That's why I don't use Winamp or Trillian. That's why I haven't upgraded to Windows Media Player 7. WMP 6.4 looks like a normal application. 7 doesn't. The same idea applies to my feelings on GUI apps on Linux. Gnome apps have one look, KDE apps another. Nothing looks the same. I get one filemanager for Gnome apps, another for KDE, and yet another for apps that use a different toolkit. It's frustrating.
Cut and paste doesn't work the same everywhere. I never want what's in my copy buffer to be overwritten because I've selected something. Somes apps overwrite it, others done. I've found out there's a standard for cut and paste in X windows, but each app has a different method.
Apps. I don't have Adobe Illustrator, Photoshop, and After Effects for Linux, all apps I use from time to time to get my job done. GIMP sucks and there's a reason it's named GIMP. I don't like doing everything with the right mouse button. GIMP can't convert to CMYK if I have to send something to a printer.
I already use OpenOffice and Mozilla on my Windows machine and they are fantastic. I just use Linux for server tasks at this point. The GUI has a way to go before it reaches my confort zone. Your mileage may vary.
What bothers me most about spyware and insecure windooze programs(outlook etc) is that you can secure your PC by tweaking the right knobs, but then the time comes for that 1/2 year re-install and you have to start all over and remember what to turn off where etc.
That's why the first thing I do after I get a Windows install just the way I want it, I boot from a linux floppy or CD and dd the whole drive, pipe to bzip2, and store it on a samba share. I can later split that file and burn it to CDs. My current install takes about three CDs.
You guys could have posted a reminder to vote today. The election results are all fine and dandy, but a well-written summary of "Remember to vote," voting locations, etc. posted this morning would have been appreciated.
If you aren't responsible enough to keep track of when to vote then you obviously didn't care enough. If you think voting is important then you're going to go out and do so. Slashdot isn't a nanny.
I've done this in the past (early 90s) although with different systems. I play keyboards and used to own a Kurzweil K2000 which has a 25 pin SCSI port on the back. I had an external case that contained a 44MB Syquest drive and a 120MB (or something equally small) SCSI HD drive which was connected to my K2000. Rather than putting a terminator on the end of the connection, I hooked it to the SCSI port on my Amiga 3000. Since the K2000 used MSDOS format and the HD was formatted as such, I used the CrossDOS program to read and write to the drives from the Amiga. Both the K2000 and the Amiga could access the drive at the same time. I ran the setup like this for my music for over a year with no problems.
I guess I'm saying that I don't see why it wouldn't work on today's GNU/Linux systems.
Isn't this a bit like saying, "Microsoft could lose more than $10 billion in annual revenue in 2006 if the government switched to Linux"? [Note: No, not a gratuitous MS swipe - I don't think MS would be so obnoxious as to use this phrasing.]
Are they sure that this isn't covered by a patent? I remember almost two years ago that VirtualDub had to remove support for ASF files because Microsoft had a patent on some part of it. The VirtualDub guys just removed support rather than fight MS. I hope this doesn't turn out to be the same situation.
The lesson to learn from this: the user interface matters. Give some thought to presenting the information in a meaningful manner (e.g., the infamous pre-Challenger graphs showing O-ring erosion vs. the post-Challenger graph that mapped damage by temperature at the time of launch), and allow users to see the information in the way that makes the most sense to them.
On a related note, a guy named Edward Tufte wrote a some books on just this type of subject. I believe it was called The Visual Display of Quantitative Information, or something like that. Basically, he goes show how thinking more about how you present the data can help you to communicate your ideas more effectivly. He also talks about the O-ring problem that you mention. He shows the charts from the NASA engineers and then shows the charts he had drawn. You could definitly see the problem much more clearly in his drawings.
The movie touches on that most first world countries have yearly gun murder rates below 200, whereas, the us has over 11,000.
Yet the fact that the US is many times larger than those other first world countries doesn't have anything to do with that? You're comparing apples and oranges, my friend.
Then I guess you'd hate to work with me. Keep in mind that Randall wasn't an Intel employee. He was a contractor that was brought on to do a specific function. You're probably a student who hasn't entered the workforce yet (or hasn't been there for long) and don't realize that part of getting along with other people in a job is playing politics. I hate it and many other people do too. But if you are going to expose that someone's security isn't up to snuff, and you don't have some political backing to do so, then when it makes the person in charge of said security look bad, you can be sure that they're going to get back at you somehow.
Now if Randall had asked permission to do what he did and received the approval to do so, then that would have been a different story and he wouldn't be in the situation that he found himself in. But Randall didn't ask permission. He assumed authority and responsibility for something to which he was not given and got burned when he was caught.
In other words, Randal did something really stupid up and paid the price.
Randall Schwartz was criminally prosecuted because he accessed systems at Intel without authorization. What he did to get himself in trouble had nothing to do with what he was originally contracted to do. He cracked passwords to demonstrate to some other individuals that people were using weak passwords and should probably improve their security. No matter how noble his intentions were, he didn't have permission to access those systems nor was he employed to crack the passwords for any type of demonstration. Randal did something really stupid up and paid the price. The best you can do is learn from his mistake.
This is completely different from the story submitter who will have permission to test these networks but just wants a firm legal agreement in place before he performs any work.
When the hell is FreeS/WAN going to be merged into Linux?
Re:What about GPL?? Sources??
on
Xandros 1.0
·
· Score: 2
It says if you give out a binary to someone, that person is also entitled to the soruces free of charge. (ie, email them and they will be required to send it to you)
Not entirely accurate. You can charge a nominal duplication and mailing fee for distributing the source. So one might have to pay $5-$10 for a CD with the source to be burned and mailed to them.
Slashdot Mirror
I didn't know you could do that. Granted, I haven't used GIMP in a long time, so I'll have to give this a try. Thanks for the tip.
Cut and paste doesn't work the same everywhere. I never want what's in my copy buffer to be overwritten because I've selected something. Somes apps overwrite it, others done. I've found out there's a standard for cut and paste in X windows, but each app has a different method.
Apps. I don't have Adobe Illustrator, Photoshop, and After Effects for Linux, all apps I use from time to time to get my job done. GIMP sucks and there's a reason it's named GIMP. I don't like doing everything with the right mouse button. GIMP can't convert to CMYK if I have to send something to a printer.
I already use OpenOffice and Mozilla on my Windows machine and they are fantastic. I just use Linux for server tasks at this point. The GUI has a way to go before it reaches my confort zone. Your mileage may vary.
Hey! Where's the individual tracks and samples so we can make remixes?
What is West Wing?
I guess I'm saying that I don't see why it wouldn't work on today's GNU/Linux systems.
Where does one go to see the list of open bugs for the kernel or to file a big report? Is there a bugzilla for the kernel?
Are they sure that this isn't covered by a patent? I remember almost two years ago that VirtualDub had to remove support for ASF files because Microsoft had a patent on some part of it. The VirtualDub guys just removed support rather than fight MS. I hope this doesn't turn out to be the same situation.
Now if Randall had asked permission to do what he did and received the approval to do so, then that would have been a different story and he wouldn't be in the situation that he found himself in. But Randall didn't ask permission. He assumed authority and responsibility for something to which he was not given and got burned when he was caught.
In other words, Randal did something really stupid up and paid the price.
This is completely different from the story submitter who will have permission to test these networks but just wants a firm legal agreement in place before he performs any work.
I already know this because I read slashdot.
Then maybe the Linux kernel needs to move outside of the US.
When the hell is FreeS/WAN going to be merged into Linux?