Posts by sisk

Re: Why are they on the internet?

I was under the impression that the Target breach was committed by someone with direct access to their sales terminals who managed to infect their corporate servers.

Assigning this to cumulative time wasted assumes the user watched the video in its entirety and did nothing else whilst viewing

You mean like saying "AHHH! NO! MERCY! I DIDN'T MEAN TO CLICK THIS LINK AGAIN!"?

Re: ClamTK

Inadvertently adding an .exe to an email is not a concern. Inadvertently dropping an infected file onto a file server, however, is a concern. I've seen that one happen more than once. A Linux user gets an infected file from a Windows user and passes the infection on to another Windows user or even a group of them via a shared NAS, totally unaware that he's just helped a virus propagate. Plus there's the issue than systems running Wine can sometimes be infected with Windows malware. Admittedly such an infection would be laughably easy to cleanup, but still it happens.

Re: What is systemd

How often do you have to reboot your system, A Non e-mouse? This box (Slackware-current on a nine year old HP ZV5105) hasn't been rebooted for close to a month.

And there's the difference between a server and a desktop. It's why I still run Debian on my servers but run Mint on my desktop and laptops: They have different needs.

My home desktop gets shut down every night before I go to bed and doesn't get turned back on until I eventually sit back down at it. Total it usually runs about 3-4 hours a day. My work computer usually gets shut down at 5 every Friday (and usually has in-progress projects open overnight the rest of the week) and gets booted back up while I'm getting coffee on Monday. There's no reason to leave a desktop on eating electricity all the time.

Contrast that to my server at home, which, aside from power outages and a span of about a week a couple months ago while I waited for a new motherboard to come in, hasn't been off since the last time I moved.

Re: I like toys but...

'd much rather chance being zapped with a laser once on my way home than face the dozens of morons with their faulty headlights I pass every evening.

I agree that those xenon headlights are annoying and dangerous and should probably be illegal, but I think that the permanent damage to your eyes by just one high-powered laser would be far worse than the annoyance that overly bright headlights can cause.

That said I've not seen any news stories involving one of these lasers being used on drivers. That doesn't mean it hasn't happened, of course, but the pricing on them is high enough that your typical numbskull prankster is going to opt for a lower priced model for their shenanigans. I highly doubt that there's any real need to take them off the market, but I do understand the decision to do so.

Re: Panspermia

Since you obviously value intelligence and truth and given your obvious hostility towards religion I'd encourage you to look up just who came up with the original premise for the Big Bang Theory back in 1931. Here's a hint: Google Lemaitre. The answer just might make you reconsider your opinion on people of faith.

Re: Sir

There ARE no obstacles to setting it up that way, and in fact it's pretty much the norm in the US Congress. Any bill that actually gets passed comes with riders tacked on by the other side. Sadly that's the only way to get anything done in Congress these days. Our political system really is that broken.

Re: They were (so I've been told) basically a civil rights group.

They were every bit as antagonistic as the KKK

That would be the New Black Panthers. If Bill Cosby's rants on the subject are to be believed the originals have no respect for the group that usurped their name.

Re: Hmm

prohibiting children from crossing the road by themselves would make more sense than banning them from accessing the Internet alone

Most parents DO prohibit children from crossing the road by themselves, at least until they're old enough to understand the danger. Unfortunately the age that most kids understand the danger of the internet is much higher than the age that they understand the danger of crossing the road.

A child who feels able to discuss most details of their online activities with an interested parent is likely to be far more safe.

Very true. And to be fair I don't plan of banning my kids outright from anything online except the obvious stuff like illegal sites and porn. In fact my daughter already has a FB account (in violation of FB's age policy - my wife's doing, but I didn't protest or ban her from it when I found out after the fact). I will insist on knowing who they're talking to when they get old enough for it to be an issue. Part of that will come from the computer being in the living room, and for fairness my computer is in the living room also.

Re: What happened to all those millions from firefox os?

Looks like that whole html5/javascript stack is just not as appealing for mobile development has some would like to believe.

I find it VERY appealing and use it all the time, but the problem with the HTML5/JavaScript stack as a base for a mobile OS is that if you do it right your app doesn't care what OS it's running on. Why would I, as a developer using that stack, do the extra work tie myself down to a particular OS when I could do less work and have my apps work on all platforms, mobile or otherwise? Sure having it show up as a native app is nice, but it's ludicrously easy to make a web app look native for iOS or Android and not much harder for Windows 8.

Simply put, from a developers perspective FirefoxOS adds nothing. From a typical users perspective the question is "What's FirefoxOS?"

Re: OK so let me get this straight.

NO intelligent user of ANY OS supposes it to be "magically" completely secure (the ones who do don't count).

Don't be ridiculous. Of course they count. And some of them (at least one whom I personally know) are quite intelligent.

Unix systems are not magically "secure" but they are demonstrably "more secure".

True enough.

Their use across the web does not constitute a "small target".

As far as user-targeting malware is concerned, yes it does. Servers are another matter, but servers are much harder to infect than desktops to begin with. For starters, they almost never hang out in sleazy websites like users do.

Let's say it yet, yet, yet again: There are currently no viruses proper - at all - for OSX (there will be, sometime, but this isn't one of them).

You do realize that even Apple stopped trying to push that particular line of bull 5 years ago, right? Yes, OSX viruses do exist and are in the wild and have been around since at least 2006. For a few examples, see

OSX_IWORM.A OSX_SLORDU.A OSX_MACKONTROL.A and OSX_MUSMINIM.A all of which are viruses that can be picked up via drive-by-downloads. And those are just a few examples. Yes, there is much less malware of all types around for OSX, but don't be one of those fools going around believing it doesn't exist.

OSX (and anything else *nix based) is harder to infect that Windows, but by no means is it so difficult as to not be worth it were there a greater number of potential targets. The diminutive market share of non-Windows PCs is very much one of the reasons we don't see more non-Windows malware.

Re: People will definitely pay for music.

I think it's been pretty well proven that a lot of people WILL pay for music over pirating it provided they feel like they're being treated fairly. Personally I'm not a fan of Spotify specifically because the person doing all the work (the artist) isn't getting paid. That's the same reason I make sure all my royalties get paid when I DJ.

Here's the thing people: if musicians don't get paid they don't make music. I'm not saying we should go back to paying $20 to get one or two good songs plus a bunch of garbage we don't want, but the $1 per song model seems pretty fair to everyone. The consumer gets what they want for a good value and the artist gets paid. There's still the problem of middle-men and record execs sucking up most of the profits, but I think we're well on our way to that problem being solved. There are quite a few successful* indie artists out there now who've done away with the record execs and are only paying a (debatably fair) percentage to the music stores now.

*In this context, "successful" means that they've been able to quit their day jobs, not that they have private jets.

I'm about as far from a fan of Jobs as you can get without completely discounting his accomplishments, but you're taking it a bit too far. True enough that he didn't invent anything, but he did provide the inspiration that led to improvements in an number of products. Tablets are a perfect example. Tablet PCs were a failed technology that had fallen into a niche market that conventional wisdom said no one with an ounce of common sense would touch with a ten foot pole. Jobs saw potential and guided the engineers to develop the iPad. Because of that one move we now have mobile computing as we know it. He may not have invented the digital music player, but the iTunes store was a huge step towards the acceptance of digital music by the music industry. We'd have gotten there eventually, but I honestly feel that iTunes helped get us there faster.

The man wasn't an engineer, true. His talents lay in other directions. He had a knack for seeing how to improve upon things in such a way that people would buy them. It's unfortunate that he was also very greedy and a bit of a wanker, but that doesn't diminish his genius in any way.

Re: Death to "unlimited"

The FCC should ban claims of "unlimited" unless the connection is guaranteed to run at advertised speed all the time. To my knowledge, zero of the major telcos offer that.

I've only ever seen one consumer American ISP that advertised the speed they could maintain, mobile or landline. The cable/DSL/fiber providers all advertise their maximum speed (the one you could reasonably expect to get only if all their other subscribers were dead and their network completely empty). The one exception advertised their minimum. I was with them briefly and never got less than double their advertised speed, which was, sadly, still a paltry 3mb downstream bandwidth. Now I'm paying for a "20mb" connection that never actually gets above 12. That's pretty much the norm here unless you upgrade to a business account.

In my (admittedly anecdotal and unscientific) observation women seem to respond more to traits not connected to appearance or physical fitness. In short, women respond far less overall to physical appearance than men do. Confidence, money, or the word of another woman that he's dynamite in bed all seem to be just as good or better for impressing them than looks.

In case you're wondering, no, it's not personal experience. My number is less than the fingers on one hand and unlikely to ever rise again. If it does my wife will no doubt ensure that it only does so once.

Attacks that fail don't make the news. The ones in this article should be failing because there shouldn't be more than a handful of machines still running an unpatched Bash out there by now. That was my point.

Also, to answer the question posed, yes I was aware of Apache's pulling in of Bash (knowledge which, given that I'm a web developer, should surprise no one), but I was unaware that Mutt did it. I sort of doubt it's going to change though. There are just too many tasks easily done with a half dozen lines of Bash that take a thousand lines of C++. More code means more bugs. More bugs means more security holes. Plus programmers are lazy sorts when it comes to reinventing the wheel (hence the popularity of OOP and reusable libraries).