Steven J. Vaughan-Nichols, here's an advice for you. When you go over 3 initials, maybe it's time to take a cue from The Church of Jesus Christ of Latter-Days Saints and pick the 3 most significant letters (LDS) as your usual initials.
I know, isn't that a travesty? It's already 5am on the East Coast and yet so far there's been no stories making fun of Trump and sweeping Clinton's lies under the rug. I hope the NYT, The View or Bill Maher will step in soon to fix that. Can't let the right-winger get away with it.
There is clear pandering to black people in the DNC
And it's a patronizing pandering, like how the Catholic Church is now paying attention to its followers in poor countries because their religion took a nosedive in developed ones - they had to give them a pope but made sure he didn't look too much non-European. Sounds familiar?
The perfect candidate doesn't exist because good ones are discarded and ridiculed by their own party before they could even get the nomination, like Howard Dean or Fred Thompson.
There was never a chairwoman called Debbie and Clinton never lied. At least that's what reality will be once she is elected and has unlimited access to the NSA and DHS.
many of the original Wikileaks founders have departed
Blasphemy. They haven't "departed", they have betrayed the Benevolent Leader. They probably worked for the FBI and Clinton (which is the same thing) to start with.
Of course there's been no "crime". It's a well-known fact that once a woman goes home with a man, it constitutes a blank check for him to do as he pleases with her, including fucking her wihout a condom while she's passed out. That's essentially the same logic used by ISIS freedom fighters who marry women for an hour so they can fuck and sodomize them until they get tired of them and then divorce them to let their band of brothers have their turn. No "crime" there.
Stockholm District Court approves a request to detain Mr Assange for questioning on suspicion of rape, sexual molestation and unlawful coercion. Ms Nye says he has not been available for questioning.
13 August 2015
Swedish prosecutors drop their investigation into one accusation of sexual molestation and one of unlawful coercion against Mr Assange because they have run out of time to question him. The more serious allegation of rape is not due to expire until 2020.
He's hiding from Swedish justice and has fought extradition, that's why he hasn't been "charged". He's another Roman Polanski, without the excuse of having his pregnant wife stabbed to death by homeless cult members.
Next time you want to make shit up and mix in your own guesswork, make sure a simple Wikipedia search doesn't prove you wrong.
The vast majority of scholars who write on the subject agree that Jesus existed, although scholars differ about the beliefs and teachings of Jesus as well as the accuracy of the biblical accounts, and the only two events subject to "almost universal assent" are that Jesus was baptized by John the Baptist and was crucified by the order of the Roman Prefect Pontius Pilate
When you're done trying to impress people with your shallow understanding of things, look into the work of Bart Ehrman. He wrote a bunch of books on this topic and it's truly fascinating, even for people (like me) who are not religious. His stuff is mostly academic, not dogmatic.
Selinux does get somewhat easier, unless you constantly deal with new products/stacks/requirements.
Let's say you finally know inside out the rules that will let tomcat access files from a NFS share; the following day some team will have a project that relies on a "paster serve" web server, and by the time you figured that one out, someone else will come up with a problem with npm. Or with git clones done from within a php web service. Or rsync called in a ssh session initiated from a Ruby app. The fun never ends.
audit2allow can help when you have to fix something right away, but it doesn't really make for easily repeatable recipes unless you have enough time/patience to filter. Often there's a frustrating mix of booleans and labels to figure out, and if you're not careful you break other stuff.
So we ended up setting it to permissive in dev and enforcing in test/prod, and we warn project managers about the hardening process that is required when leaving dev. It works ok.
As for the differences between RHEL and CentOS when it comes to Selinux, there's a few things but only if you use special stuff from Red Hat like RHSC or gluster. Otherwise I'm fairly confident it works the same because once we have a recipe for a specific team we bake it in Ansible playbooks. And so far it hasn't been required to make special rules according to the distro, only the version (CentOS7 -> RHEL7, etc).
When it comes to versions, I would say that the biggest annoyance has been slight differences between all the cloud providers and hypervisors we use. Also the need to track down minor releases and how compatible they are (RHEL 7.2 vs centOS 7.15, etc). We have a good integration of our cmdb and Ansible inventory but sometimes it's difficult to figure out why something breaks on allegedly compatible versions.
There is ample historical evidence that Jesus did exist. Much is known about him, including the fact that he had brothers.
The fact that he was or wasn't God and/or his son has not been established yet, though. I guess that is part of the mystery, like the actual role of Al Gore in inventing the internet or in fighting global warming.
I used to work with a DBA like that. The more the performance went down, the more "optimization" scripts he ran continuously. He talked a good game with management so he got away with it for a long time, even if the databases were delivering less i/o than a floppy disk (which he blamed on "bad sql written by incompetent developers" - which he refused to code review of course).
Then he threw a tantrum and left, and the first thing I did was kill all his optimization scripts. Instantly the databases started blasting data at speed never seen during the DBA reign.
There are not a lot of people with enough clout to get rid of this systemd crap. I hope one of them will take the mike at some point and save us all.
What systemd does is not "manage itself". What it does is replace things that are not broken and that are well documented by a big brother service that some dude think is better. And just like wizards or frameworks or other gizmo it works ok as long as you stay in the narrow path of supported scenarios.
I've always loved the freedom of Linux but really it's heading real fast to the same philosophy as Windows and OSX (i.e the "we know what's best" approach) and it sucks.
Many orgs pay for RHEL licenses on mission-critical boxes and a sample of their own servers, then run CentOS on fleet boxes. OTOH, people working in densely virtualized environments might consider the hypervisors the critical ones and be willing to pay for them, getting unlimited VM guest licenses for free with it.
We've had that discussion at work, with the pro-RHEL arguing that since prod machines would be RHEL, dev and test machines should be too in order to avoid bad surprises down the road. We even considered having the full-blown hardening done already in dev to make sure our friends the developers didn't do something that wouldn't work in prod. Turns out this approach causes a huge dip in productivity, especially when chasing those mysterious selinux denials. Exciting the first few times because you feel like you're "doing the rigth thing" but soon enough you get a nosebleed just by typing semanage. Ansible helps a lot, but only once you've got the right recipe.
So we opted for dev=CentOS and everything else hardened RHEL. Of course this led to a bad case of "vm sprawling", going from 25-30 to 1000+ in 6 months. Then we looked at the average machine and noticed the app/vm ratio was very low, almost 1:1. So we started looking at mega-docker hosts for those use cases and it's been a blessing. When used properly to containerize an app, docker is very low maintenance, and the upgrade path is a lot smoother. And you can pile lots of containers on a same host.
We're still in early stages but already we shaved 200 vm. Less updates, less problems, less everything.
Then you're paying $2,000 per cpu per year for what? Red Hat won't support PHP7, Redis and "many more" (not sure about exim). What's your motive for shelling out that money? Getting security patches for PHP 5.4 or memcached, which you don't use?
Can you mention one reason not to use CentOS instead if you're not using the software that Red Hat supports?
Outsourcing security ("as a service") seldom works out well in the end.
Do you have numbers or case studies to support that? Of course if you subscribe to a terrible product managed by a terrible organization it may not be an improvement. But on average, the sheer volume is enough to allow a provider to implement security measures that are far superior to what individual customers can afford.
It's like running your own power plant versus joining "the grid". You may feel like you have more control wih your own plant but you don't have the same resources as the power company to maintain, monitor and upgrade it.
Everything in the software world is moving toward micro-services and loosely coupled components lately, but with Linux and Systemd it's the exact opposite. Isn't that funny?
Great! What can we do to speed up this process a bit, its about time that linux started to replace some of its aging, creaking old architecture with new tools liberated of old, out of date practices and effectively made a system which took care of the things I really dont give a shit about.
My computer is not my work, I use it to do my work, I do not want to spend time configuring it, I want to spend time doing my work and enjoying myself, I really couldnt give a fuck how to configure it 90% of the time.
I think you summarize the problem pretty well. Systemd is a desktop solution for people who essentially want a Macbook.
What would be great? Having systemd only in specialized desktop distributions. Not on servers and not on desktop for power users. Even better: systemd should be a distribution itself, not be a part of other distributions. And it would also have the exclusivity of pulseaudio.
I don't understand what you're running on those RHEL 6 machines.... PHP 5.4, no redis, no Mongo, no nginx. No nodejs
Enterprise servers and applications typically have SLAs and stringent requirements. It's a different set of problems than one normally encounters or considers when building a mongodb backed nodejs note taking app.
Maybe you don't see more recent technology in your workplace because business people at your company (you know, the people who generate revenue used to pay your salary) would rather pull out the credit card and rent a SaaS than deal with a smug retard like you. That's a trend lately.
Some of us actually know how to do more than yum -y install. You know -- that old fashioned "compile from source"? Or even find an rpm.
The point is not "duh give me teh rpms", the point is why the fuck would you pay $2,000 per cpu per year to get a polite "piss off" from Red Hat whenever support is needed because you installed (from source or other) a version or software that is not in their repo. That's like renting a car that has no radio and bragging that you can go to Best Buy to get a car radio installed in it.
If you want the general Red Har ecosystem but you rely on non-supported software, use CentOS for free and be done with it.
I don't understand what you're running on those RHEL 6 machines. Even with RHEL 7 the repos are antiquated, near obsolete. Java 7 (no hotspot of course), PHP 5.4, no redis, no Mongo, no nginx. No nodejs or python3 except in RHSC and it's at best a shaky solution with bad support.
I mean, almost any major app that gets installed on RHEL throws a handful of "this version of x is no longer supported, this version of y is no longer supported". It's nearly impossible to get anything running without adding non-supported repos like epel, remi and others. For God's sake their version of "mail" doesn't even support adding headers, that's something I have seen only on old HPUX or AIX.
I guess if it's just file servers or web servers for old stuff it can work, but really it's five years behind or more. I like their support, they're fast and competent, but the rusty repo is a big showstopper in many projects.
Emacs has been around since 1976 -- I've used it almost daily since 1985. Let's see if systemd is still here and useful in 40 years.
You're like the senior management at Blockbusters who saw Netflix as a minor niche player who presented no threat to them. Or like the managers at Polaroid who thought digital cameras were just a fantasy.
Systemd is a cancer and it will keep spreading until the host is dead. Just like cancer it's not malicious, it sincerely believes it knows better than the healthy cells it's infecting, but that doesn't make it less lethal.
can you elaborate about the motives of Microsoft to attack Poettering's character? Like any Slashdot reader I know Microsoft has spent billions to inject controversial statements in Slashdot threads over the years, but this time I don't see the rationale.
The way Poettering and his cronies are slowly transforming Linux in a large blackhole of centralized control seems to be something Microsoft would approve of. Or are you implying that as Microsoft is now embracing Linux, with SQL Server and Powershell ported to Linux, they are now mortal ennemies with anyone trying to bring Linux down?
I've used all major versions of Windows, from the time when you had to type "win" in MS-DOS to start it, all the way to the latest spyware edition. And I've used Linux desktops since the early 2000s. And in my opinion, right now there's nothing that beats Fedora 24 (with gnome or cinnamon) in terms of desktop experience. It's not always entirely painless to setup (some wifi chipsets are tricky to get working properly) but after that it's fantastic. Installing software is as easy as picking and installing apps from an app store on a mobIle device, and there's tons of small nice features that make the daily use more pleasant. And of course you can customize things as much as you like.
I sometimes have to use Windows or OSX and every time I miss my Fedora desktop.
Slashdot Mirror
Steven J. Vaughan-Nichols, here's an advice for you. When you go over 3 initials, maybe it's time to take a cue from The Church of Jesus Christ of Latter-Days Saints and pick the 3 most significant letters (LDS) as your usual initials.
But the media does in fact skew to the Right.
I know, isn't that a travesty? It's already 5am on the East Coast and yet so far there's been no stories making fun of Trump and sweeping Clinton's lies under the rug. I hope the NYT, The View or Bill Maher will step in soon to fix that. Can't let the right-winger get away with it.
There is clear pandering to black people in the DNC
And it's a patronizing pandering, like how the Catholic Church is now paying attention to its followers in poor countries because their religion took a nosedive in developed ones - they had to give them a pope but made sure he didn't look too much non-European. Sounds familiar?
Saggy pants are related to prison culture? I thought they were there because a prophecy says that god's next messenger will come from a man's ass.
The perfect candidate doesn't exist because good ones are discarded and ridiculed by their own party before they could even get the nomination, like Howard Dean or Fred Thompson.
There was never a chairwoman called Debbie and Clinton never lied. At least that's what reality will be once she is elected and has unlimited access to the NSA and DHS.
many of the original Wikileaks founders have departed
Blasphemy. They haven't "departed", they have betrayed the Benevolent Leader. They probably worked for the FBI and Clinton (which is the same thing) to start with.
his "crime"
Of course there's been no "crime". It's a well-known fact that once a woman goes home with a man, it constitutes a blank check for him to do as he pleases with her, including fucking her wihout a condom while she's passed out. That's essentially the same logic used by ISIS freedom fighters who marry women for an hour so they can fuck and sodomize them until they get tired of them and then divorce them to let their band of brothers have their turn. No "crime" there.
Get your facts straight.
18 November 2010
Stockholm District Court approves a request to detain Mr Assange for questioning on suspicion of rape, sexual molestation and unlawful coercion. Ms Nye says he has not been available for questioning.
13 August 2015
Swedish prosecutors drop their investigation into one accusation of sexual molestation and one of unlawful coercion against Mr Assange because they have run out of time to question him. The more serious allegation of rape is not due to expire until 2020.
http://www.bbc.com/news/world-...
He's hiding from Swedish justice and has fought extradition, that's why he hasn't been "charged". He's another Roman Polanski, without the excuse of having his pregnant wife stabbed to death by homeless cult members.
The guy is a rapist and a coward.
Next time you want to make shit up and mix in your own guesswork, make sure a simple Wikipedia search doesn't prove you wrong.
The vast majority of scholars who write on the subject agree that Jesus existed, although scholars differ about the beliefs and teachings of Jesus as well as the accuracy of the biblical accounts, and the only two events subject to "almost universal assent" are that Jesus was baptized by John the Baptist and was crucified by the order of the Roman Prefect Pontius Pilate
https://en.m.wikipedia.org/wik...
When you're done trying to impress people with your shallow understanding of things, look into the work of Bart Ehrman. He wrote a bunch of books on this topic and it's truly fascinating, even for people (like me) who are not religious. His stuff is mostly academic, not dogmatic.
Selinux does get somewhat easier, unless you constantly deal with new products/stacks/requirements.
Let's say you finally know inside out the rules that will let tomcat access files from a NFS share; the following day some team will have a project that relies on a "paster serve" web server, and by the time you figured that one out, someone else will come up with a problem with npm. Or with git clones done from within a php web service. Or rsync called in a ssh session initiated from a Ruby app. The fun never ends.
audit2allow can help when you have to fix something right away, but it doesn't really make for easily repeatable recipes unless you have enough time/patience to filter. Often there's a frustrating mix of booleans and labels to figure out, and if you're not careful you break other stuff.
So we ended up setting it to permissive in dev and enforcing in test/prod, and we warn project managers about the hardening process that is required when leaving dev. It works ok.
As for the differences between RHEL and CentOS when it comes to Selinux, there's a few things but only if you use special stuff from Red Hat like RHSC or gluster. Otherwise I'm fairly confident it works the same because once we have a recipe for a specific team we bake it in Ansible playbooks. And so far it hasn't been required to make special rules according to the distro, only the version (CentOS7 -> RHEL7, etc).
When it comes to versions, I would say that the biggest annoyance has been slight differences between all the cloud providers and hypervisors we use. Also the need to track down minor releases and how compatible they are (RHEL 7.2 vs centOS 7.15, etc). We have a good integration of our cmdb and Ansible inventory but sometimes it's difficult to figure out why something breaks on allegedly compatible versions.
There is ample historical evidence that Jesus did exist. Much is known about him, including the fact that he had brothers.
The fact that he was or wasn't God and/or his son has not been established yet, though. I guess that is part of the mystery, like the actual role of Al Gore in inventing the internet or in fighting global warming.
I used to work with a DBA like that. The more the performance went down, the more "optimization" scripts he ran continuously. He talked a good game with management so he got away with it for a long time, even if the databases were delivering less i/o than a floppy disk (which he blamed on "bad sql written by incompetent developers" - which he refused to code review of course).
Then he threw a tantrum and left, and the first thing I did was kill all his optimization scripts. Instantly the databases started blasting data at speed never seen during the DBA reign.
There are not a lot of people with enough clout to get rid of this systemd crap. I hope one of them will take the mike at some point and save us all.
What systemd does is not "manage itself". What it does is replace things that are not broken and that are well documented by a big brother service that some dude think is better. And just like wizards or frameworks or other gizmo it works ok as long as you stay in the narrow path of supported scenarios.
I've always loved the freedom of Linux but really it's heading real fast to the same philosophy as Windows and OSX (i.e the "we know what's best" approach) and it sucks.
Many orgs pay for RHEL licenses on mission-critical boxes and a sample of their own servers, then run CentOS on fleet boxes. OTOH, people working in densely virtualized environments might consider the hypervisors the critical ones and be willing to pay for them, getting unlimited VM guest licenses for free with it.
We've had that discussion at work, with the pro-RHEL arguing that since prod machines would be RHEL, dev and test machines should be too in order to avoid bad surprises down the road. We even considered having the full-blown hardening done already in dev to make sure our friends the developers didn't do something that wouldn't work in prod. Turns out this approach causes a huge dip in productivity, especially when chasing those mysterious selinux denials. Exciting the first few times because you feel like you're "doing the rigth thing" but soon enough you get a nosebleed just by typing semanage. Ansible helps a lot, but only once you've got the right recipe.
So we opted for dev=CentOS and everything else hardened RHEL. Of course this led to a bad case of "vm sprawling", going from 25-30 to 1000+ in 6 months. Then we looked at the average machine and noticed the app/vm ratio was very low, almost 1:1. So we started looking at mega-docker hosts for those use cases and it's been a blessing. When used properly to containerize an app, docker is very low maintenance, and the upgrade path is a lot smoother. And you can pile lots of containers on a same host.
We're still in early stages but already we shaved 200 vm. Less updates, less problems, less everything.
Then you're paying $2,000 per cpu per year for what? Red Hat won't support PHP7, Redis and "many more" (not sure about exim). What's your motive for shelling out that money? Getting security patches for PHP 5.4 or memcached, which you don't use?
Can you mention one reason not to use CentOS instead if you're not using the software that Red Hat supports?
Outsourcing security ("as a service") seldom works out well in the end.
Do you have numbers or case studies to support that? Of course if you subscribe to a terrible product managed by a terrible organization it may not be an improvement. But on average, the sheer volume is enough to allow a provider to implement security measures that are far superior to what individual customers can afford.
It's like running your own power plant versus joining "the grid". You may feel like you have more control wih your own plant but you don't have the same resources as the power company to maintain, monitor and upgrade it.
Everything in the software world is moving toward micro-services and loosely coupled components lately, but with Linux and Systemd it's the exact opposite. Isn't that funny?
Great! What can we do to speed up this process a bit, its about time that linux started to replace some of its aging, creaking old architecture with new tools liberated of old, out of date practices and effectively made a system which took care of the things I really dont give a shit about.
My computer is not my work, I use it to do my work, I do not want to spend time configuring it, I want to spend time doing my work and enjoying myself, I really couldnt give a fuck how to configure it 90% of the time.
I think you summarize the problem pretty well. Systemd is a desktop solution for people who essentially want a Macbook.
What would be great? Having systemd only in specialized desktop distributions. Not on servers and not on desktop for power users. Even better: systemd should be a distribution itself, not be a part of other distributions. And it would also have the exclusivity of pulseaudio.
I don't understand what you're running on those RHEL 6 machines.... PHP 5.4, no redis, no Mongo, no nginx. No nodejs
Enterprise servers and applications typically have SLAs and stringent requirements. It's a different set of problems than one normally encounters or considers when building a mongodb backed nodejs note taking app.
Maybe you don't see more recent technology in your workplace because business people at your company (you know, the people who generate revenue used to pay your salary) would rather pull out the credit card and rent a SaaS than deal with a smug retard like you. That's a trend lately.
Some of us actually know how to do more than yum -y install. You know -- that old fashioned "compile from source"? Or even find an rpm.
The point is not "duh give me teh rpms", the point is why the fuck would you pay $2,000 per cpu per year to get a polite "piss off" from Red Hat whenever support is needed because you installed (from source or other) a version or software that is not in their repo. That's like renting a car that has no radio and bragging that you can go to Best Buy to get a car radio installed in it.
If you want the general Red Har ecosystem but you rely on non-supported software, use CentOS for free and be done with it.
I don't understand what you're running on those RHEL 6 machines. Even with RHEL 7 the repos are antiquated, near obsolete. Java 7 (no hotspot of course), PHP 5.4, no redis, no Mongo, no nginx. No nodejs or python3 except in RHSC and it's at best a shaky solution with bad support.
I mean, almost any major app that gets installed on RHEL throws a handful of "this version of x is no longer supported, this version of y is no longer supported". It's nearly impossible to get anything running without adding non-supported repos like epel, remi and others. For God's sake their version of "mail" doesn't even support adding headers, that's something I have seen only on old HPUX or AIX.
I guess if it's just file servers or web servers for old stuff it can work, but really it's five years behind or more. I like their support, they're fast and competent, but the rusty repo is a big showstopper in many projects.
I think it is like Emacs without the editor part.
Emacs has been around since 1976 -- I've used it almost daily since 1985. Let's see if systemd is still here and useful in 40 years.
You're like the senior management at Blockbusters who saw Netflix as a minor niche player who presented no threat to them. Or like the managers at Polaroid who thought digital cameras were just a fantasy.
Systemd is a cancer and it will keep spreading until the host is dead. Just like cancer it's not malicious, it sincerely believes it knows better than the healthy cells it's infecting, but that doesn't make it less lethal.
can you elaborate about the motives of Microsoft to attack Poettering's character? Like any Slashdot reader I know Microsoft has spent billions to inject controversial statements in Slashdot threads over the years, but this time I don't see the rationale.
The way Poettering and his cronies are slowly transforming Linux in a large blackhole of centralized control seems to be something Microsoft would approve of. Or are you implying that as Microsoft is now embracing Linux, with SQL Server and Powershell ported to Linux, they are now mortal ennemies with anyone trying to bring Linux down?
This plot is getting very hard to follow.
I've used all major versions of Windows, from the time when you had to type "win" in MS-DOS to start it, all the way to the latest spyware edition. And I've used Linux desktops since the early 2000s. And in my opinion, right now there's nothing that beats Fedora 24 (with gnome or cinnamon) in terms of desktop experience. It's not always entirely painless to setup (some wifi chipsets are tricky to get working properly) but after that it's fantastic. Installing software is as easy as picking and installing apps from an app store on a mobIle device, and there's tons of small nice features that make the daily use more pleasant. And of course you can customize things as much as you like.
I sometimes have to use Windows or OSX and every time I miss my Fedora desktop.