>Do you really think that's going to change, and suddenly 100s of bugs will pop up overnight?
No, but it's pretty arrogant to make such a claim, and pretty stupid to put a service that's exposed to the big scary internet in the kernel. All you need is for one buffer overflow to sneak past the code review and testing - and I don't like to point out the obvious, but it wouldn't be the first such vulnerability in a Microsoft product. Even the OpenBSD guys don't claim that there will never be a vulnerability in their code, merely that there hasn't been on in the default install for x years - and they probably have one of the best track records out there.
Microsoft isn't just copying Apache. They're just finally getting clued in to the fact that there is the Microsoft way (read: click fest) and the sane way (read: config files). I'm by no means a fan of Microsoft, but it's a little disingenuous to say that they're copying any one product because they're implementing a feature that they've probably gotten a lot of requests for.
My biggest problem with IIS (other than the click-fest management UI) is the fact that they stuck httpd.sys in the kernel, meaning that any exploits in that service would be pretty devestating. But it's ok, since the IIS evangelist at the TechEd 2002 IIS 6.0 pep rally said that there will not be any vulnerabilities in IIS6.0. Oh aye, I'll believe that when me shit turns purple and tastes like rainbow sherbert! (to quote Broken Lizard).
I was so irritated after posting my last message that I did some digging on the problem. I found these registry changes, although I haven't tried them yet..
I installed a update to my Outlook junk mail filter the other day that required a reboot. What the hell are those idiots at Microsoft thinking? Why do I need to restart my OPERATING SYSTEM to install an APPLICATION PATCH???
Also, I would personally like to beat the individual at Microsoft with a 3.5' length of sucker rod (man syslogd) that came up with the ideal of popping up a reminder every minute or so asking me to reboot after installing a patch that requires a reboot, without giving me the option to say "Go away and don't remind me again, as I'm all grown up and more than capable of remembering to reboot my system after I've finished the tasks that you keeping fucking interrupting".
Better than that would be a option to do the above and send 50,000 volts to the asshat at Microsoft that programmed that particular gem.
Ok, end of rant. Breathe. In with the good, out with the bad.
My point really was that input into a GUI using whatever device you prefer, whether it be keyboard or mouse, cannot be stored for re-use (unless the GUI has macro support, etc., etc.), so to perform the same task on multiple servers, you have to go through the same click-fest several times. With a decent scripting language and SSH, you can write the task once and execute it many times.
Totally agree. The Windows philosophy seems to be that full administrative capability is only available through the UI, and a subset can be performed from the command line, whereas UNIX/LINUX (whatever) is a command line based with the optional (real men don't click) UI being built around the command line utilities.
The other fundamental weakness of Windows is the lack of remote administration. An RDP connection with a maximum of two concurrent users doesn't cut it (Hey Bill, more than 2 admins might need to be on the same box at the same time), because you can't save and re-use mouse clicks. Until Microsoft gets a clue and start to provide a full featured command line interface with secure (SSH-like) remote access, they're not even in the game for wide scale management.
Most LINUX users are not logged in as root, because unlike Windows, you don't have to be for the operating system to actually work - this reduces the exposure and impact of virii.
Secondly, while Microsoft may be getting better at responding to virus outbreaks, they're not getting better at preventing them. Because this would require a complete security audit on their millions of lines of code (the OpenBSD guys had the right idea), and would affect the deployment schedule of the next feature rich, security poor product.
I'm a Windows on the desktop user for convenience, but I'm amazed by the regularity at which I have to install critical patches. It's a bloody joke. Microsoft would rather continue to band-aid the problem, rather than fixing the undelying one.
'Wings' are symbolic of man's desire to 'slip the surly bonds of earth', rather than the means by which it is done. Thus, I don't think that the wings symbol will become an anachronism.
Hopefully, the additional effect is that ISPs who currently have a tolerant attitude to spammers will start to get the clue that it's going to start costing them real money due to all of the complaint mail being transmitted to their network.
>Seriously, Lotus is the defacto standard for interoffice mailing systems
I first read that, and thought 'what a bunch of crap!', but it turns out that according to IDC, in 2003 Notes had a 46.2% market share to Exchange's 44%, but it also suggested that Exchange's share was growing at Note's expense, so it be interesting (if only mildly) to find out how it stands today.
Hmm, you learn something new everyday if you're not careful.
With a rational mindset, use of non-conventional warefare as a political tool makes some sense (I'm not a proponent of terrorism - before the death threats start...), since it is unlikely that the group could achieve any kind of victory in a overt action against a modern military. But throw in religious fanatacism, and the underlying reasons get a little harder to decipher and deal with.
One thousand apologies, oh great and wise C master. It has, I'll admit, been many years since I have programmed C, and in the 30 seconds that I spent in my original post, I neglected to consider the fact that strings in C, or to be more pedantic, arrays of characters, are null terminated. The point I was trying to make is that Microsoft being Microsoft, they would have allocated a buffer that is too small to hold all expected values.
Besides, to be really 'write', you should have used snprintf. sprintf is dangerous you know.
...the hell do people need a special day to recongnize them for something that they get paid to do. It happens every freakin' pay day. Get back to work, otherwise it'll be "System Admin looking for another job day!".
Sorry, just got promoted to PHB-dom, and I'm feeling a little dizzy with power:)
Ran into a similiar problem with an NCA when living in Idaho. I sought legal advice and was told that despite Idaho being a 'right to work' state, individiuals were free to enter into any contract as they wished. The standard, should a NCA contract dispute go to court, was whether the contract placed an undue burden on the individual.
I took the response back to my current employer who agreed to waive the agreement. I'm guessing the I was a little (okay, A LOT) lower on the employment food chain than this guy though:)
Mistype - I meant to write SAWES, not SAWS, (Small Arms Weapon Effect Simulator as opposed to Squad Automatic Weapon - so long a civilian now that I've forgotten the acronyms) which is the British Army equivalent of MILES. As a Brit, I'm sure that my fellow countrymen _always_ play by the rules, so no obstructed sensors, etc. Honest:)
The stupid thing about this is that Network Solutions has implemented CAPTCHAs on their web whois interface and not the whois service on TCP 43 - it would probably break the RFC if they did. But do they honestly think that the kind who people who'd abuse their web whois don't know how to use the command line utility on just about every *NIX flavour every released.
Having served as an infantry solider, I'm questioning whether the civil war and world war two statistics are valid, given the amount of training that the average soldier received before going into combat. Modern professional armies spend a great deal of effort in providing their soldiers with effective weapons, realistic training, and the mental conditioning required to kill, to the point where aiming and pulling the trigger are instinctive. I suspect that the use of MILES and SAWS equipment greatly contributes to this.
There is probably a tendency to spray wildly in troops who are new to combat, but once they've experienced a couple of firefights and the panic subsides, I'll bet that most of them will be shooting with the intent to kill when there is a visible target. The upper most thought in most soldiers' mind is not letting his buddies down, killing the enemy and staying alive - in that order.
With regards to bayonets, there are only two possible reasons for using them. Either because you want to give your men a physiological advantage (there's something really satisfying and visceral about fixing bayonets) or something has gone horribly wrong.
>they are not like the a+ exams, you have to be competent to get your mcse
You'd like to think that...
I worked at HP for back when they starting bringing in contract technical staff to support the business units. All of the contractors were required to get their MCSE within 6 months of starting, so they brought in a permanent MCT to train them. Among the dumbass questions that the MCT asked me were:
Q: What's is memory interweaving? A: No idea, but if you're referring to interleaving...
Q: What's the difference between IDE (pronounced ide) and SCSI (pronouces es-cee-es-eye) drives? A: You mean I-D-E and scuzzy right...?
Another MSCE candidate managed to come up with a fifth IP octet by doing some wicked netmasking...
I'm not saying that there aren't a lot of very talented MCSE's out there, but the there are some real bottom feeders too.
No question about it. I remember reading that years ago and LMAO. I'm just annoyed that you posted it before I could find the link in my old bookmarks:)
ROANOKE, Va. - Wal-Mart has ditched a program that helped single shoppers find love in the discount store's aisles. ADVERTISEMENT
Officials at Wal-Mart headquarters in Bentonville, Ark., ordered their Roanoke store to put an end to Singles Shopping, the only program of its kind at Wal-Mart's U.S. stores.
Taking a cue from Wal-Marts in Germany, the month-old program encouraged customers on Friday evenings to pick up a red bow they could place on their shopping carts as an invitation to other singles. "Flirt points" were set up in various sections of the store.
A Wal-Mart spokesman declined to comment on the reason behind the program's cancellation. But customer Dale Firebaugh, who showed up Friday night hoping to meet his match, said store employees told him several people had complained.
"I'm disappointed," said Firebaugh, 63. "Where can someone over 40 who doesn't smoke or drink or go to bars meet someone?"
I don't really think that it's a case of/.ers taking death or murder lightly. It's more that of a bunch of people who are negatively affected by the victim's activities who take a degree of satisfaction in karmic justice. I just happens to be expressed as a form of gallows-humour.
I should have added to my post that despite the fact that we act pleased to see you at Aunt Marge's sister's wedding, we're secretly bloody annoyed that you grew up to have better paying jobs, bigger houses and hotter wives.
Slashdot Mirror
>Do you really think that's going to change, and suddenly 100s of bugs will pop up overnight?
No, but it's pretty arrogant to make such a claim, and pretty stupid to put a service that's exposed to the big scary internet in the kernel. All you need is for one buffer overflow to sneak past the code review and testing - and I don't like to point out the obvious, but it wouldn't be the first such vulnerability in a Microsoft product.
Even the OpenBSD guys don't claim that there will never be a vulnerability in their code, merely that there hasn't been on in the default install for x years - and they probably have one of the best track records out there.
Microsoft isn't just copying Apache. They're just finally getting clued in to the fact that there is the Microsoft way (read: click fest) and the sane way (read: config files).
I'm by no means a fan of Microsoft, but it's a little disingenuous to say that they're copying any one product because they're implementing a feature that they've probably gotten a lot of requests for.
My biggest problem with IIS (other than the click-fest management UI) is the fact that they stuck httpd.sys in the kernel, meaning that any exploits in that service would be pretty devestating. But it's ok, since the IIS evangelist at the TechEd 2002 IIS 6.0 pep rally said that there will not be any vulnerabilities in IIS6.0. Oh aye, I'll believe that when me shit turns purple and tastes like rainbow sherbert! (to quote Broken Lizard).
I was so irritated after posting my last message that I did some digging on the problem. I found these registry changes, although I haven't tried them yet..
i ndows\WindowsUpdate\AU]
h tml
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\W
"RebootRelaunchTimeoutEnabled"=dword:00000000
"NoAutoRebootWithLoggedOnUsers"=dword:00000001
Courtesy of: http://www.codinghorror.com/blog/archives/000294.
I installed a update to my Outlook junk mail filter the other day that required a reboot. What the hell are those idiots at Microsoft thinking? Why do I need to restart my OPERATING SYSTEM to install an APPLICATION PATCH???
Also, I would personally like to beat the individual at Microsoft with a 3.5' length of sucker rod (man syslogd) that came up with the ideal of popping up a reminder every minute or so asking me to reboot after installing a patch that requires a reboot, without giving me the option to say "Go away and don't remind me again, as I'm all grown up and more than capable of remembering to reboot my system after I've finished the tasks that you keeping fucking interrupting".
Better than that would be a option to do the above and send 50,000 volts to the asshat at Microsoft that programmed that particular gem.
Ok, end of rant. Breathe. In with the good, out with the bad.
Um, yes. Here's a link to the article: http://www.theregister.co.uk/2005/07/29/remote_int imacy/
Those crazy Brits!
My point really was that input into a GUI using whatever device you prefer, whether it be keyboard or mouse, cannot be stored for re-use (unless the GUI has macro support, etc., etc.), so to perform the same task on multiple servers, you have to go through the same click-fest several times. With a decent scripting language and SSH, you can write the task once and execute it many times.
Totally agree. The Windows philosophy seems to be that full administrative capability is only available through the UI, and a subset can be performed from the command line, whereas UNIX/LINUX (whatever) is a command line based with the optional (real men don't click) UI being built around the command line utilities.
The other fundamental weakness of Windows is the lack of remote administration. An RDP connection with a maximum of two concurrent users doesn't cut it (Hey Bill, more than 2 admins might need to be on the same box at the same time), because you can't save and re-use mouse clicks. Until Microsoft gets a clue and start to provide a full featured command line interface with secure (SSH-like) remote access, they're not even in the game for wide scale management.
Just my 2c worth...
Most LINUX users are not logged in as root, because unlike Windows, you don't have to be for the operating system to actually work - this reduces the exposure and impact of virii.
Secondly, while Microsoft may be getting better at responding to virus outbreaks, they're not getting better at preventing them. Because this would require a complete security audit on their millions of lines of code (the OpenBSD guys had the right idea), and would affect the deployment schedule of the next feature rich, security poor product.
I'm a Windows on the desktop user for convenience, but I'm amazed by the regularity at which I have to install critical patches. It's a bloody joke. Microsoft would rather continue to band-aid the problem, rather than fixing the undelying one.
'Wings' are symbolic of man's desire to 'slip the surly bonds of earth', rather than the means by which it is done. Thus, I don't think that the wings symbol will become an anachronism.
Hopefully, the additional effect is that ISPs who currently have a tolerant attitude to spammers will start to get the clue that it's going to start costing them real money due to all of the complaint mail being transmitted to their network.
>Seriously, Lotus is the defacto standard for interoffice mailing systems
I first read that, and thought 'what a bunch of crap!', but it turns out that according to IDC, in 2003 Notes had a 46.2% market share to Exchange's 44%, but it also suggested that Exchange's share was growing at Note's expense, so it be interesting (if only mildly) to find out how it stands today.
Hmm, you learn something new everyday if you're not careful.
With a rational mindset, use of non-conventional warefare as a political tool makes some sense (I'm not a proponent of terrorism - before the death threats start...), since it is unlikely that the group could achieve any kind of victory in a overt action against a modern military. But throw in religious fanatacism, and the underlying reasons get a little harder to decipher and deal with.
One thousand apologies, oh great and wise C master. It has, I'll admit, been many years since I have programmed C, and in the 30 seconds that I spent in my original post, I neglected to consider the fact that strings in C, or to be more pedantic, arrays of characters, are null terminated. The point I was trying to make is that Microsoft being Microsoft, they would have allocated a buffer that is too small to hold all expected values.
Besides, to be really 'write', you should have used snprintf. sprintf is dangerous you know.
Except that temp would only be 2 bytes...
...the hell do people need a special day to recongnize them for something that they get paid to do. It happens every freakin' pay day. Get back to work, otherwise it'll be "System Admin looking for another job day!".
:)
Sorry, just got promoted to PHB-dom, and I'm feeling a little dizzy with power
Ran into a similiar problem with an NCA when living in Idaho. I sought legal advice and was told that despite Idaho being a 'right to work' state, individiuals were free to enter into any contract as they wished. The standard, should a NCA contract dispute go to court, was whether the contract placed an undue burden on the individual.
:)
I took the response back to my current employer who agreed to waive the agreement. I'm guessing the I was a little (okay, A LOT) lower on the employment food chain than this guy though
Mistype - I meant to write SAWES, not SAWS, (Small Arms Weapon Effect Simulator as opposed to Squad Automatic Weapon - so long a civilian now that I've forgotten the acronyms) which is the British Army equivalent of MILES. As a Brit, I'm sure that my fellow countrymen _always_ play by the rules, so no obstructed sensors, etc. Honest :)
>like whois at Netsol.com or Godaddy.com
The stupid thing about this is that Network Solutions has implemented CAPTCHAs on their web whois interface and not the whois service on TCP 43 - it would probably break the RFC if they did. But do they honestly think that the kind who people who'd abuse their web whois don't know how to use the command line utility on just about every *NIX flavour every released.
Go figure...
Having served as an infantry solider, I'm questioning whether the civil war and world war two statistics are valid, given the amount of training that the average soldier received before going into combat. Modern professional armies spend a great deal of effort in providing their soldiers with effective weapons, realistic training, and the mental conditioning required to kill, to the point where aiming and pulling the trigger are instinctive. I suspect that the use of MILES and SAWS equipment greatly contributes to this.
There is probably a tendency to spray wildly in troops who are new to combat, but once they've experienced a couple of firefights and the panic subsides, I'll bet that most of them will be shooting with the intent to kill when there is a visible target. The upper most thought in most soldiers' mind is not letting his buddies down, killing the enemy and staying alive - in that order.
With regards to bayonets, there are only two possible reasons for using them. Either because you want to give your men a physiological advantage (there's something really satisfying and visceral about fixing bayonets) or something has gone horribly wrong.
>they are not like the a+ exams, you have to be competent to get your mcse
You'd like to think that...
I worked at HP for back when they starting bringing in contract technical staff to support the business units. All of the contractors were required to get their MCSE within 6 months of starting, so they brought in a permanent MCT to train them. Among the dumbass questions that the MCT asked me were:
Q: What's is memory interweaving?
A: No idea, but if you're referring to interleaving...
Q: What's the difference between IDE (pronounced ide) and SCSI (pronouces es-cee-es-eye) drives?
A: You mean I-D-E and scuzzy right...?
Another MSCE candidate managed to come up with a fifth IP octet by doing some wicked netmasking...
I'm not saying that there aren't a lot of very talented MCSE's out there, but the there are some real bottom feeders too.
No question about it. I remember reading that years ago and LMAO. I'm just annoyed that you posted it before I could find the link in my old bookmarks :)
t ing.html
Still, there's always Dr Seuss...
http://web.mit.edu/adorai/www/seuss-technical-wri
I don't shop there now since they cancelled their meet-market. Hmmm, romance at Wal*Mart.
r f_wal_mart_singles;_ylt=Aq.pTJJd9Gqx2qGWRtt0EnjtiB IF;_ylu=X3oDMTBiMW04NW9mBHNlYwMlJVRPUCUl
http://news.yahoo.com/s/ap/20050723/ap_on_fe_st/b
ROANOKE, Va. - Wal-Mart has ditched a program that helped single shoppers find love in the discount store's aisles.
ADVERTISEMENT
Officials at Wal-Mart headquarters in Bentonville, Ark., ordered their Roanoke store to put an end to Singles Shopping, the only program of its kind at Wal-Mart's U.S. stores.
Taking a cue from Wal-Marts in Germany, the month-old program encouraged customers on Friday evenings to pick up a red bow they could place on their shopping carts as an invitation to other singles. "Flirt points" were set up in various sections of the store.
A Wal-Mart spokesman declined to comment on the reason behind the program's cancellation. But customer Dale Firebaugh, who showed up Friday night hoping to meet his match, said store employees told him several people had complained.
"I'm disappointed," said Firebaugh, 63. "Where can someone over 40 who doesn't smoke or drink or go to bars meet someone?"
I don't really think that it's a case of /.ers taking death or murder lightly. It's more that of a bunch of people who are negatively affected by the victim's activities who take a degree of satisfaction in karmic justice. I just happens to be expressed as a form of gallows-humour.
Probably the latest version of spam assassin :) Harsh, but fair!
I should have added to my post that despite the fact that we act pleased to see you at Aunt Marge's sister's wedding, we're secretly bloody annoyed that
you grew up to have better paying jobs, bigger houses and hotter wives.
Bloody kids!