Comment Re:In another news (Score 1) 401
I've been compiling 64bit Gentoo Linux since I bought one the first models of Athlon 64, which was almost 7 years ago!
FTFY
I've been compiling 64bit Gentoo Linux since I bought one the first models of Athlon 64, which was almost 7 years ago!
FTFY
My first iPhone app was released to the app store from a US$350 MSI Wind netbook that I hackintoshed. Not my top recommendation for a dev machine, but it got the job done as Xcode seems to go easy on resources. You're not going to be running VS2010 on a netbook.
You may also note that you'll need a computer to run Visual Studio. I'm not sure what point you're driving at here.
How inconsistent. You complain about Microsoft's prices, then use pirate and/or EULA-violating Apple software and claim that option is cheaper.
Legally, you only need to pay Microsoft the tiny Windows OEM license fee to have full access to the entire
Then again, this is Slashdot, where Microsoft bashing takes precedence over facts.
at least Ballmer doesn't tell me I can't compile my code without forking him $100/yr
Of course, staying up to date with Visual Studio is going to cost you significantly more than that (unless you use the same version for 8 years).
Not if you take advantage of the free Express Editions which are mentioned on a nearly daily basis here on Slashdot, of course.
No, he tells you you can't compile your code without forking him [sic] $550 in the first year and requiring an additional $500 for upgrades every 2 or 3 years. That's way cheaper!
This comes up on every Slashdot article even vaguely related to Microsoft, Express Editions are free, dumbass.
You need an Apple computer for the iPhone SDK. How much is the cheapest new Apple computer?
GPL: You can only tell your friend how you built your house on the condition they tell everyone who asks, along with any original ideas your friend spent time and/or money proving themselves.
OSX 10.6 will be replaced and DISCON, will be actively unsupported by Apple.
How can anything be `actively unsupported'?
ERRATA NOTICE
Good morning,
Your shill welcome pack contained a misprint on page 49, section 3, the term 'C+' should be 'C++'.
Best regards,
Apple
The mailserver is just an example. There is plenty of insecure software running as root.
FTFY
MAC cannot prevent the exploit as such, but it can make the attacker completely limitless. You can take away execute permission, write permission (allowing just append), no file creation, absolutely nothing except the very minimal that the program actually needs.
This sounds a lot like what securelevel(7) already does.
There is absolutely no reason to have a user with absolute power when we have the technology to segregate power and duties, there by significantly reducing the attack surface.
There is absolutely no reason to put up walls so the sysadmin can't do anything, rather than fix the bugs that let an attacker gain root in the first place.
OpenBSD doesn't want to take over the world, see the project goals. This doesn't stop their work becoming used on a large scale, but this happens because of the software's features and technical superiority.
On the other hand, many Linux advocates seem to be obsessed with the idea of world domination. I've seen these people choose Ubuntu for reinstall/upgrade jobs when their friends and family would genuinely be more comfortable, and better off, with Windows or OS X.
Decide for yourself which is the more noble goal.
The fact that the OS code is audited is nice, but can't protect against other insecure software. If you run postfix which isn't audited, and it has a hole and the attacker gets root, then there is nothing to stop them.
Maybe I'm wrong, but if the mail server isn't crap it should give up root privileges as soon as possible. So, to get root you need to do two things.
1) Exploit a bug in the mail server
2) Exploit a bug in the operating system to gain root privileges
If MAC is part of the operating system, and can therefore contain operating system bugs, how does it mitigate step 2? How does it mitigate it any more than an operating system without MAC?
An example from a commenter on the blog is that he needed to prevent root from reading users files. OpenBSD is almost the only OS left that can't meet this requirement.
Are you serious? The root user has ultimate power by definition. That's been the case with *NIX for decades.
It's entirely possible that a piece of hardware you buy contains portions of *BSD code.
So maybe at some point you will use it, if you don't already, just not how you'd expect.
I'm surprised you have time to investigate other operating systems if you're thinking in MMORPG analogies.
The archaic UNIX security model is exactly that, archaic. There are needs it cannot meet, and something like MAC is needed.
When operating system code is security audited, what needs can the *NIX security model not meet?
No, Ubuntu isn't unusable because of omitting features. It's unusable because what they start with is unusable, and they have nowhere to go from there.
Much like security. You can't bolt on features after the fact and suddenly have a secure product.
That MAC is anything but bloated a waste of time.
The notion that adding security as an afterthought is a good idea.
"Ninety percent of baseball is half mental." -- Yogi Berra