Crap ? What about these bugsin kernel 2.2.x, x<=19 and 2.4.y, y<=9 that allow local Denial-of-Service and to gain root privileges locally.
Sorry to say this, but youre running a kernel that has known security problems. And I was talking about the 2.0.x, that had DoS problems till the 2.0.35.
Considering you said "on behalf of the web sites that I maintain", I assume you have some degree of control on at least one site outside your ISP.
Why don't you tunnel ? Then you can use whatever port you want.
If you have SSH running on one of these servers - and who doesn't nowadays - you can easily tunnel. Just check your ssh client configurations. If you're running windows, a good client is SecureCRT. If you're running linux, and the other side is windows NT/2000/XP, use this PPtP client
And there's another advantage with tunnelling: You can compress. Unless you have a very fast connection, you'll visibly notice a speed improvement when compressing.
I think kernel 2.4 has what I always dreamt of on my linux firewall: Stateful firewalling and NAT. It is great for building inexpensive firewalls that can be as good as those costing grands.
Also, the VM system is much improved, when compared to the 2.2. The only thing I think was a little too risky was replacing the entire VM (originally built by Rik van Riel) with a new one, by Andrea Arcangeli. I believe such dratic changes should be reserved for developmente kernels. But the important thing is that now it's working wonderfully, and is much improved.
I don't think 2.4. should be called the Kernel of Pain. We're what, in 2.4.17 ? Remember 2.2.17 or 2.0.17 ? Heck, 2.0 had DoS bugs till release 2.0.35.
I am running 2.4 on some production boxes. They're behaving fine and very stable, thank you, and I think 2.4 is ready for production.
Yes, fine. But I was comparing this example to Dmitry's case. He is Russian, he did all the program in Russia and got arrested in US, when he went to DEF CON.
In my example, I said the person is Spanish, so presumably lives in Spain, and went to US. Not an American who went to another country to have sexual tourism. If he's American, you have an argument to use US laws. But if he's Spanish, in Spain, the US laws should not apply.
I sincerely don't think almost any law should be applied extraterritorially, because each country has its own culture.
Suppose you are Spanish and have sex with a 14 year girl in Spain. Should you be arrested for pedophily next time you travel to US ? Considering the legal consent age in Spain is 13.
This is crazy. The law that should prevail is the local law. I think that if a person does something another country doesn't like (like Dmitry vs US), then he should be considered persona non-grata in that country. Dmitry's entrance to US should have been refused in the airport immigration and he sent back to Russia. But not arrested.
It is my understanding from "would punish software firms that do not do enough to make their products secure." that they are going after the cases of negligence.
I doubt a single mistake would be enough for a lawsuit. But suppose a company releases a software (or OS) known to be buggy that has to be remotely exploitable system breaches (did somebody say Microsoft ?), and the company doesn't work enough in future releases to prevent bugs, and can't complain it doesn't have enough money to research & development, then I guess that'd be the case.
You can't assign a "National Software Security" label, or something like this, simply because software insecurity is caused by bugs. And chances are these bugs are unknown by the time the software is released.
The article doesn't say anything about quality certification. What it says is that the software companies should be liable in obvious cases of negligence.
That means: The companies should make sure their product is safe. If it isn't, and some damage is caused by a bug in their software, and the company didn't take the necessary steps to try to make it bug-free, then the company is in trouble. I think it's fair and clear.
United States Patent 6,450,530
Molina the BOFH , et al.
Method for moderating messages at Slashdot
Abstract A computer complete with keyboard, internet access, a mouse, a CRT monitor for causing the computer information to be displayed, registration to Slashdot, a browser.
The user needs the computer to access, via the browser, Slashdot's web site. He then identifies himself, using his login and password, thus being granted moderator access. Then, using the monitor, locates any article, clicks on the "read more" link, wich shows more data, that doesn't need to be read. Then he can choose 5 absolutely random messages, and assign absolutely random scores to it. It's advisable not to read the actual content of the messages, in order not get biased by its content. It's advisable to have a random generator (a.k.a. dice) to be more impartial when choosing among funny, informative, insightful, overrated, underrated, offtopic, etc. Then click on the "moderate" button, using the mouse.
Attention moderators: I can charge from you. However I will not charge a cent from you if you moderate my message up.:)
Duh, I know it's MATHEMATICAL, but when the story was posted, it read:
jrp2 sent in a paper written by one of Napster's founding engineers. It is a mathamatical evaluation of Gnutella discussing why the network won't be able to scale up to any reasonable size. I have been impressed with Gnutella in the past, and have wondered along these same lines in the past.
Gee. Sorry for that. I was going to write something like "It was a genetic disease", but then changed the phrase and didn't correct. Well, I really didn't want to make her an "it".
I shall pay more attention.
Re:Is this so wise?
on
Pain-free mice
·
· Score: 5, Interesting
I saw on Discovery Channel a girl who couldn't fell no pain at all. It was born like that, some sort of rare genetic disease. Well, as she grew up, she had severe burns, had broken almost all the bones at her body and died young of complications. This way we can learn how pain helps us.
@job=('webdesigner', 'IT director', 'ASP programmer', 'VB programmer', 'FORTRAN programmer', 'CEO', 'spam hunter', 'CTO', 'BOFH','sp
ammer');
@company=('Microsoft','IBM','Compaq',"my mom's office",'my garage','a classified government agency','X-Files', 'NASA');
print "I, @ARGV, have ".int (rand(15))." years of experience as ".$job[rand(10)]." at ".$company[rand(8)]."\n";
@degree=('MBA','junior high','PhD');
@school=('Harvard','Oxford','Princeton','Bopal University');
print "I have a ".$degree[rand(3)]." at ".$school[rand(4)]." so I am more than qualified for this position.\n";
print "\n\nI must also add that I'm gay, afro-american and have some sort of physical deficiency, and my lawyer is ready to sue your
company for discrimination if I don't get this job. \n\n Thanks and have a nice day.\nSincerely yours, @ARGV\n"
I don't know how the law in America is, but I believe the marshalls would need a judge order to invade a business place, wouldn't they ? Or can they simply break in any place they feel like and confiscate everything?
It's also my understanding that this judge order would require some kind of piracy proof to be issued. Wouldn't it create the chicken-and-egg problem ?
Resource-wise, there usually is no problem, as Linux needs very little resources. But if you're thinking of security, then a better approach is really to distribute services.
In case a service has a nasty buffer overflow (did somebody say WU-ftpd or sendmail ?), and there's only this service running on this machine, then only this service gets compromised.
Specially when setting a firewall, the golden rule is: Do not run any services.
and as for you and the other one... i'm quite surprised at all of this. that techs would base their buy not on technical superiority of a product
As for me, I'm surprised for you basing a choice solely on technical superiority of a product. Ever heard of post-sale support ? Generally, when the marketing of a company is bad, so is its post sale.
You can setup whatever distro you want, disable all the servers but those one you want, and use Mindi-Linux. It uses a skeleton ramdisk and your kernel, modules, and tools to build a boot/root disk set. The first floppy boots your kernel, then loads your modules and installs your tools from additional floppies. Mindi works for almost any Linux kernel or distribution. So you setup it once, and then will be able to make your very own 'Linux -- DNS Server edition' that even your boss will be able to use!
you would actually decide to not purchase a possibly superior product just because that company's office in FRANCE
Does it matter it happened in France ? It does not make no difference to me. Do French deserve a worse treatment ? Hello ? Ever heard of Global Market ?
And, yes, I would decide not to purchase a superior product based on the actions of the company, if there are alternatives.
I am going to buy a dozen monitors at my work place, they probably would be Samsung, but if they think "Tom's Hardware is just a website, not a magazine." then their mentality is what ? 10 years late ? They couldn't be more stupid.
I, as a consumer, have been underrated by Samsung. I *just* check websites, and it's been a long time since I don't buy computer magazines. I am taking it personal. They don't want web users as consumers ? Fine. I will boycott Samsung. As a system administrator, taking care of 100+ machines, will NEVER more buy Samsung again. I am officially boycotting Samsung.
Suggest you guys do the same. And write letters to Samsung, so they can learn how they screwed up.
And, FYI, I am in no way related to Tom's Hardware.
I believe these nanobots will be in a diminute quantity that they'll make absolutely no difference in the tons and tons of water the oceans have.
You know those tracking devices that biologists attach to some wild animals, like little metal rings in the birds leg, that help cientists identify migration patterns ? Some even transmit radio waves. Using the same logic, you could also say that attaching identifiers to wild birds would make extra weight and thus disturb their flight. Or would harm the predators who eat those birds. Well, it makes as much difference for them as a billion of nanobots would make to an ocean.
Besides, these nanobots apparently so harmless that, according to the article: "I don't think these robots will be confined to the ocean. We will eventually make robots to hunt down pathogens or repair cells in the human body".
Correct me if I'm wrong, but I'd think blood from a live person would me more sensitive to impurities than an ocean.
There are good chances your data has been corrupted and your quest is merelly a waste of time. Magnetic media will only last a few years. There's no way to tell the exact life expectancy of the media, as it depends, among others, on the conditions if was stored. Here's how to store. Temperature should be below 70F and humidity below 70% if you wanted to preserve data for a long time. According to this, the floppy disks should last from 5 to 10 years.
A new bug that allows remote access will be found in Windows XP. People will be urged to install the critical update or move to a real OS.
A new bug that allows root access will be found in the latest version of wu-ftpd. People will be urged to patch it or move to a real FTP server.
A new bug that allows root access will be found in the latest version of Sendmail. People will be urged to patch it or move to a real MTA
A kid will be diagnosed with cancer, and will have few days left. People will send him lots of postcards.
Youll receive a warning about a terrible virus that can reformat your hard drive, and neither Microsoft nor the antivirus companies has the ability to fix it.
Motorolla will fill for Chapter 11 because it spent so much money giving cellular phones to everybody who sent lots of e-mails
Slashdot Mirror
Here are the answers.
(note: these are links to funny science theories. Don't take it seriously. And don't stop ingesting DMHO.)
so-called "light sources" are really dark suckers, that "light" is nothing more than the absence of darkness, and that it is darkness, not light, which is the fundamental radiative transport mechanism of the universe.
This page is funny, specially when you know DHMO is water.
Crap ? What about these bugsin kernel 2.2.x, x<=19 and 2.4.y, y<=9 that allow local Denial-of-Service and to gain root privileges locally.
Sorry to say this, but youre running a kernel that has known security problems. And I was talking about the 2.0.x, that had DoS problems till the 2.0.35.
Somehow, it makes me think of Big Brother, the reality TV show.
Considering you said "on behalf of the web sites that I maintain", I assume you have some degree of control on at least one site outside your ISP.
Why don't you tunnel ? Then you can use whatever port you want.
If you have SSH running on one of these servers - and who doesn't nowadays - you can easily tunnel. Just check your ssh client configurations. If you're running windows, a good client is SecureCRT. If you're running linux, and the other side is windows NT/2000/XP, use this PPtP client
And there's another advantage with tunnelling: You can compress. Unless you have a very fast connection, you'll visibly notice a speed improvement when compressing.
I think kernel 2.4 has what I always dreamt of on my linux firewall: Stateful firewalling and NAT. It is great for building inexpensive firewalls that can be as good as those costing grands.
Also, the VM system is much improved, when compared to the 2.2.
The only thing I think was a little too risky was replacing the entire VM (originally built by Rik van Riel) with a new one, by Andrea Arcangeli. I believe such dratic changes should be reserved for developmente kernels. But the important thing is that now it's working wonderfully, and is much improved.
I don't think 2.4. should be called the Kernel of Pain. We're what, in 2.4.17 ? Remember 2.2.17 or 2.0.17 ? Heck, 2.0 had DoS bugs till release 2.0.35.
I am running 2.4 on some production boxes. They're behaving fine and very stable, thank you, and I think 2.4 is ready for production.
Yes, fine. But I was comparing this example to Dmitry's case. He is Russian, he did all the program in Russia and got arrested in US, when he went to DEF CON.
In my example, I said the person is Spanish, so presumably lives in Spain, and went to US. Not an American who went to another country to have sexual tourism. If he's American, you have an argument to use US laws. But if he's Spanish, in Spain, the US laws should not apply.
I sincerely don't think almost any law should be applied extraterritorially, because each country has its own culture.
Suppose you are Spanish and have sex with a 14 year girl in Spain. Should you be arrested for pedophily next time you travel to US ? Considering the legal consent age in Spain is 13.
Should you be arrested for being a druggie addict if you smoked pot in the Netherlands, in a place where it was allowed?
Should an American who is homosexual be sentenced for 6 years in jail and 2,600 lashes next time he travels to Saudi Arabia, as homosexual acts are illegal, and subject to a maximum penalty of death?
This is crazy. The law that should prevail is the local law. I think that if a person does something another country doesn't like (like Dmitry vs US), then he should be considered persona non-grata in that country. Dmitry's entrance to US should have been refused in the airport immigration and he sent back to Russia. But not arrested.
It is my understanding from "would punish software firms that do not do enough to make their products secure." that they are going after the cases of negligence.
I doubt a single mistake would be enough for a lawsuit. But suppose a company releases a software (or OS) known to be buggy that has to be remotely exploitable system breaches (did somebody say Microsoft ?), and the company doesn't work enough in future releases to prevent bugs, and can't complain it doesn't have enough money to research & development, then I guess that'd be the case.
You can't assign a "National Software Security" label, or something like this, simply because software insecurity is caused by bugs. And chances are these bugs are unknown by the time the software is released.
The article doesn't say anything about quality certification. What it says is that the software companies should be liable in obvious cases of negligence.
That means: The companies should make sure their product is safe. If it isn't, and some damage is caused by a bug in their software, and the company didn't take the necessary steps to try to make it bug-free, then the company is in trouble. I think it's fair and clear.
Attention moderators: I can charge from you. However I will not charge a cent from you if you moderate my message up.
Duh, I know it's MATHEMATICAL, but when the story was posted, it read:
jrp2 sent in a paper written by one of Napster's founding engineers. It is a mathamatical evaluation of Gnutella discussing why the network won't be able to scale up to any reasonable size. I have been impressed with Gnutella in the past, and have wondered along these same lines in the past.
It was fixed shortly after my comment.
It is a mathamatical evaluation of Gnutella
:)
Someone has not passed his grammatical evaluations at school
Great. So it shows:
I, Molina, have 3.92362411506474 years of experience as ASP programmer at a classified government agency.
Gee. Sorry for that. I was going to write something like "It was a genetic disease", but then changed the phrase and didn't correct. Well, I really didn't want to make her an "it".
I shall pay more attention.
I saw on Discovery Channel a girl who couldn't fell no pain at all. It was born like that, some sort of rare genetic disease. Well, as she grew up, she had severe burns, had broken almost all the bones at her body and died young of complications. This way we can learn how pain helps us.
Automated enough ?
#!/usr/bin/perl
die "Syntax: $0 [your name]\n" unless ($ARGV[0]);
@job=('webdesigner', 'IT director', 'ASP programmer', 'VB programmer', 'FORTRAN programmer', 'CEO', 'spam hunter', 'CTO', 'BOFH','sp
ammer');
@company=('Microsoft','IBM','Compaq',"my mom's office",'my garage','a classified government agency','X-Files', 'NASA');
print "I, @ARGV, have ".int (rand(15))." years of experience as ".$job[rand(10)]." at ".$company[rand(8)]."\n";
@degree=('MBA','junior high','PhD');
@school=('Harvard','Oxford','Princeton','Bopal University');
print "I have a ".$degree[rand(3)]." at ".$school[rand(4)]." so I am more than qualified for this position.\n";
print "\n\nI must also add that I'm gay, afro-american and have some sort of physical deficiency, and my lawyer is ready to sue your
company for discrimination if I don't get this job. \n\n Thanks and have a nice day.\nSincerely yours, @ARGV\n"
I don't know how the law in America is, but I believe the marshalls would need a judge order to invade a business place, wouldn't they ? Or can they simply break in any place they feel like and confiscate everything?
It's also my understanding that this judge order would require some kind of piracy proof to be issued.
Wouldn't it create the chicken-and-egg problem ?
How does it work ?
Resource-wise, there usually is no problem, as Linux needs very little resources. But if you're thinking of security, then a better approach is really to distribute services.
In case a service has a nasty buffer overflow (did somebody say WU-ftpd or sendmail ?), and there's only this service running on this machine, then only this service gets compromised.
Specially when setting a firewall, the golden rule is: Do not run any services.
and as for you and the other one... i'm quite surprised at all of this. that techs would base their buy not on technical superiority of a product
As for me, I'm surprised for you basing a choice solely on technical superiority of a product. Ever heard of post-sale support ? Generally, when the marketing of a company is bad, so is its post sale.
You can setup whatever distro you want, disable all the servers but those one you want, and use Mindi-Linux. It uses a skeleton ramdisk and your kernel, modules, and tools to build a boot/root disk set. The first floppy boots your kernel, then loads your modules and installs your tools from additional floppies. Mindi works for almost any Linux kernel or distribution. So you setup it once, and then will be able to make your very own 'Linux -- DNS Server edition' that even your boss will be able to use!
you would actually decide to not purchase a possibly superior product just because that company's office in FRANCE
Does it matter it happened in France ? It does not make no difference to me. Do French deserve a worse treatment ? Hello ? Ever heard of Global Market ?
And, yes, I would decide not to purchase a superior product based on the actions of the company, if there are alternatives.
I am going to buy a dozen monitors at my work place, they probably would be Samsung, but if they think "Tom's Hardware is just a website, not a magazine." then their mentality is what ? 10 years late ? They couldn't be more stupid.
I, as a consumer, have been underrated by Samsung. I *just* check websites, and it's been a long time since I don't buy computer magazines. I am taking it personal. They don't want web users as consumers ? Fine. I will boycott Samsung. As a system administrator, taking care of 100+ machines, will NEVER more buy Samsung again. I am officially boycotting Samsung.
Suggest you guys do the same. And write letters to Samsung, so they can learn how they screwed up.
And, FYI, I am in no way related to Tom's Hardware.
I believe these nanobots will be in a diminute quantity that they'll make absolutely no difference in the tons and tons of water the oceans have.
You know those tracking devices that biologists attach to some wild animals, like little metal rings in the birds leg, that help cientists identify migration patterns ? Some even transmit radio waves. Using the same logic, you could also say that attaching identifiers to wild birds would make extra weight and thus disturb their flight. Or would harm the predators who eat those birds. Well, it makes as much difference for them as a billion of nanobots would make to an ocean.
Besides, these nanobots apparently so harmless that, according to the article: "I don't think these robots will be confined to the ocean. We will eventually make robots to hunt down pathogens or repair cells in the human body".
Correct me if I'm wrong, but I'd think blood from a live person would me more sensitive to impurities than an ocean.
There are good chances your data has been corrupted and your quest is merelly a waste of time. Magnetic media will only last a few years. There's no way to tell the exact life expectancy of the media, as it depends, among others, on the conditions if was stored. Here's how to store. Temperature should be below 70F and humidity below 70% if you wanted to preserve data for a long time. According to this, the floppy disks should last from 5 to 10 years.
A new bug that allows remote access will be found in Windows XP. People will be urged to install the critical update or move to a real OS.
A new bug that allows root access will be found in the latest version of wu-ftpd. People will be urged to patch it or move to a real FTP server.
A new bug that allows root access will be found in the latest version of Sendmail. People will be urged to patch it or move to a real MTA
A kid will be diagnosed with cancer, and will have few days left. People will send him lots of postcards.
Youll receive a warning about a terrible virus that can reformat your hard drive, and neither Microsoft nor the antivirus companies has the ability to fix it.
Motorolla will fill for Chapter 11 because it spent so much money giving cellular phones to everybody who sent lots of e-mails
Amazon will not make profit in 2002