Also available to the distributor is all the information about the other artists you listen to. And your zip code, your email address, your age. Possibly, depending on what sort of account you have, your home address and your credit card number. I'm pretty sure that she wouldn't ask for your credit card number, but I'm sure she'd love to have your email address.

Geographic distribution and some basic demographics is one thing, and quite a reasonable one, but combine "How do I reach them? How can I tell them I have a new album coming out?" and “I want my data and in 2012 I see absolutely no reason why I shouldn’t own it.” and it sounds like the worst sort of stalkery marketer who'll abuse the hell out of your personal information for a buck.

And if you are trading child porn, of course you'll have an open wifi access point and blame it on the sketchy guy with the laptop in the van...

I wonder how they're planning to prevent Oracle releasing a more sophisticated proprietary JIT for 64 bit ARM?

Yup, all of that is likely what happened.

A critical part of DKIM is selector-based key rotation (as even the 2048 bit key won't help you at all when an ex-employee or a contractor walks off with the private key, while key rotation will reduce the window of exposure from that sort of event). Google aren't the only ones to have missed that.

(Many of the original - and current - examples of how to set up DKIM suggest using a date as part of the selector, so as to make it clear that the key was supposed to be fairly transient. That leads to the lovely situation that you can look at a lot of peoples DKIM setups and see that they created their key pair once, several years ago, using the current date and haven't changed it since - their failure to rotate keys is self-documenting.)

There are many reasons why DKIM doesn't need to be "really strong crypto" - it's intended just for someone to assert that they're responsible for an email message, that they're prepared to accept complaints about the mail they send, and that you should pay attention to their previous behaviour when deciding whether or not to deliver a message. Stealing someones DKIM private key lets you piggy back on their good reputation to get spam or phishing emails into an inbox rather than a spam folder for a short time period, and that's about it. It's nowhere near as high value a target as anything like TLS certificates.

Googles reputation is certainly worth more than the estimated $75 it would cost to crack their short key, so it's good they've fixed that. And even though much of the media coverage of this has been tech-tabloid drivel it's a good thing if it gets other companies to look at key length and rotation frequency.

(Disclaimer: I've been working with the DKIM spec since the early days of DomainKeys. http://dkimcore.org/ is me.)

The DKIM spec itself (RFC6376) says: "Signers MUST use RSA keys of at least 1024 bits for long-lived keys."

It's pretty unequivocal. Google just misconfigured their mailserver.

It's more than "aren't recommended".

RFC6376: "Signers MUST use RSA keys of at least 1024 bits for long-lived keys."

Given Google were using a long-lived key, they were violating a MUST provision in the DKIM spec. (Pedantically, that means they weren't sending DKIM compliant mail at all).

Crappy, unshielded starship drives pump so much electromagnetic crap out that it gets picked up by nearby ships internal intercoms. If the Narn would just put decent mufflers on their riced-up ships...

Also, installation should be as automated as is reasonable. Spinning up a new node shouldn't require more than a couple of commands to image the base OS, install the application and integrate it into the rest of the network. Upgrades, ditto.

The developers should be doing this for their test / integration environment, QA for their testing environment and Ops for staging and production environments. That's true whether or not Dev and Ops are the same people.

If it can only be installed manually by the developers, you have a serious problem - but if it can only be installed manually by Ops, that's just a slightly smaller problem.

People who care more about "effective ownership and control of the computer' than user experience tend to produce applications and environments that are vastly more configurable, but have much worse UX than those produced by developers who focus on user experience.

That's the underlying problem with Linux on the Desktop.

The person in the state that received it would (in most states) be committing tax fraud.

Personally, I started out working as a VLSI engineer and built some semi-technical web-based tools as a hobby (DNS, whois proxy, that sort of thing). That hobby work - which involved building a product, deploying and running that product, and interacting (usenet, mailing lists, IRC) with other people working in the same space - led to professional work. That was what would probably be described as dev/ops these days - designing a network, developing glue perl scripts to hold a system together, doing basic DBA work, web scripting, monitoring scripts, working out why database replication had shat itself again, that sort of thing.

All of that work was on unix-ish boxes, but none of it was *about* linux or unix. These days I run my own company, and get to do pretty much what I want to do, as long as customers are happy. That mostly involves developing product design, implementing, QA-ing and deploying it. Then maintaining it and doing customer support for it. (Yay, small company!). I couldn't do that if I weren't reasonably fluent in RHEL, Debian, Solaris, OS X and Windows, but there's probably not more than 2 or 3% of what I do that's OS specific.

Unless you want to be a junior sysadmin or a low level programmer, you're never going to have a job where the operating system is central to what you do. It's always about business goals, politics, network architecture, balancing how much you spend on different parts of your network, and different parts of your company (skimp on dev, get burned on ops... skimp on marketing/sales and the rest of it doesn't matter...). The fastest way to learn that by working with good people, in a flexible environment, one where you can find stuff that needs doing - and that you think you can learn to do - and adopt it as your own.

The best way to get that sort of position is a mixture of demonstrating that you can do "stuff" (write scripts and share them with the world, work on an open source project - write documentation, at least, deploy an interesting website) and that you can work with people (interact - usefully - online in IRC or technical mailing lists, work on an open source project, write docs, improve tutorials, help others).

And give up on the focus with Linux, unless you're planning to be a software developer in a niche industry (embedded design or driver development) or you want to be a junior sysadmin forever. Focus on what you want to accomplish, not the OS.

If you want something concrete - if you're planning on starting out via the sysadmin route, learn perl. And maybe virtualization (ESXi, most usefully). If you're thinking software development might be interesting, learn python and SQL. Whatever you're planning, design and publish a website, with something of interest to you on it, running on a cheap VPS somewhere - register your own domain, run your own DNS, run your own email. Certification - in anything - isn't a magic key. Generally it's something you'd pick up as "career development" when an employer is paying for it, and it's a very rare certification that teaches you something you can't learn other ways, and a fairly rare one that's taken seriously by hiring decision makers.

Do something. Network. Be prepared to work for cheap, if it's on interesting projects where you'll learn. Do *something*. A decent resume, a web presence and a github repo with something in it won't hurt at all. Socialize with people who are doing things you might want to do. Go to your local Linux users group. And your local Windows users group. And your local perl / python / vmware / sql server / postgresql users group. Play nice with others. Show up for things you're interested in - and stay to help out with the cleanup.

Being a "Linux Professional" in most fields of IT is like being a "Knife Professional" working in a kitchen.

It's a useful set of skills, and it gives you the ability to use a suite of tools that are very useful - and essential for some career paths - in that field.

But it's not how you should define your career, or even your desired job. (That you're thinking of it that way might be why you keep seeing sysadmin in a Linux environment as the only obvious role.)

The difficulty is that moves to stop the anonymous Tweets which have been useful for protest in repressive regimes could also curtail trolling.

"Null Referer" is a proxy site. Cosmo is full of what's basically porn. You're similar to the author, it seems.