That's what I hate about Ubuntu (well, one of the things at least), but love about Debian. In Debian, the default DE doesn't really matter. You just don't install the default, and apt-get install what you want later. In Ubuntu, you either install the server version (blech) or install one of the {U,Ku,Xu,Lu}buntus and install your preferred environment later after the default is already installed. Sure you can uninstall it, but why bother going through the process of instaling Unity/KDE/Xfce/LXDE if you're just going to apt-get purge it anyway? I'm an i3 person myself, and there's no i3buntu sadly, so I generally avoid Ubuntu even though I love Steam, and Steam only officially supports Ubuntu.

They switched back to GNOME.

But everyone on Slashdot is American!</sarcasm>
My apologies, I wasn't aware British English spelled it "pretence".

From signature:

How does the equivalent of "mod parent up" add to the discussion? The parent is at +5, but I doubt people just blindly follow what some random person says it should be modded to.

I honestly wouldn't be surprised if it was just some standard hash (like SHA-1) with no salt or anything so that even multiple vendors' equipment would produce the same hash. People that collect personal data would go to extremes, even *gasp* using standards, to enable the data to be shared more widely.

(Not to be a pedant, but it's "pretense" by the way.)

Your emacs configuration doesn't let you match other people's coding styles easily, so you blame the language? Sure, Python does require more consistency than most other languages, but if you "don't mind having to tiptoe around other people's styles for submitting patches", how on Earth do you format your code like the existing code if your editor is so broken?

The same thing can be (and is) accomplished in normal desktop OSs by adding a CA certificate to the certificate store. It's commonly used in businesses that have an HTTPS proxy as well as an HTTP proxy so they can filter/monitor HTTPS access as well. IIRC there was an Ask Slashdot question about it as well. In any case, no modification of the implementation is needed.

Note how the two aren't related. They are talking about running on Win8 directly, not through a VM and certainly not by rebooting into plain DOS and back into Win8 when they're done.

US citizens that want to assert their second amendment rights by owning a gun should be proud enough to label themselves. Their decision to hide their gun(s) draws suspicion. Therefore, they should be labeled.

Notice how your argument boils down to "nothing to hide"? Saying "these are people, not corporations" isn't valid, because "nothing to hide" is never a proper argument. How often does Slashdot tear that one up? The simple fact of the matter is that there is a huge amount of information that isn't required to be disclosed, even on food. You don't have a right to know the name of the person that processed your food nor a list of machines involved in the processing, but no one's complaining about that. What if the machine is faulty? What if the company that made the machine is EVUL? If you're so committed to buying non-GMO foods, buy locally and ask the person you buy from if the food is non-GMO.

"DOSBox, an x86 emulator with DOS"

Seems like DOSBox falls under the "emulator" category...

Do you feel witty copying my first sentence? In any case, you are correct, I neglected to say "but you need to be using it as your authentication framework". There aren't any others that are noted to be vulnerable that I can find. If you're using your own custom authenticator, there's no reason to have a marshaled hash in your cookie. If someone can provide an example of a custom authentication setup that uses marshaled hashes, please do cite it.

Furthermore, I don't know of any Rails web sites that let you submit a marshaled hash and then perform a query with it. So unless you can find one (or a custom authenticator that uses them), it's only Authlogic.

Skype 6.0.32.126, and they only show up on the home screen. I do have a DNS server set up to block ads, so there isn't an actual ad shown, but note the "ADVERTISEMENT" text at the top. The "Hide Ad" link works, until I restart Skype. I've tried this elsewhere (not going to mess with my DNS server just to take a screenshot), and the actual ad does show up.

http://blog.phusion.nl/2013/01/03/rails-sql-injection-vulnerability-hold-your-horses-here-are-the-facts/

Seems like you are mistaken. I believe they were saying that merely using Authlogic doesn't automatically make you vulnerable, but you need to be using it to be vulnerable.

I just tried that (thanks), and that still shows the big-ass banner ad at the top.

...which I'm guessing only works if you have Skype Premium, as it's not an option in my fully-updated Windows client. The only open about ads I have is "Allow Microsoft targeted ads, including use of Skype profile age and gender." which still shows ads when unchecked.