Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!


Forgot your password?

Comment: Re:Wait, People still allow SMB on large scale net (Score 1) 82

by Antique Geekmeister (#48640427) Attached to: Hackers Used Nasty "SMB Worm" Attack Toolkit Against Sony

> It does, but you loose some of the features people take for granted.

Excuse me, but so what? This is not a "taken for granted" usage of the protocol.

> I seriously wonder how this could spread, after all you don't just have a large Ethernet domain in your international company.

Oh, my dear lord. I'm assuming you've never worked in a large environment. _Of course_ they have a single large or several large domains (in the Microsoft Active Directory sense) for unified email authenticatoin, and potentially for payroll management and corporate ID's. While the particular systems may be somewhat independent, they are _inevitably_ chained together by various poorly secured portals and gateways in a large environment.

If instead you meant "you don't have a large Ethernet domain", again, you clearly haven't dealt with the kind of large environment I have, where the admins leave things open "because we're not a target" or because "if they're inside our network, we're doomed anyway".

> SMB is one of the first things to go.

I'm afraid it's built into every Windows machine. Go looking around for the hidden "C$" share on every windows box, which is critical to the use of "Powershell" for systems administration. Unless you've been extremely cautious about firewalling things in your core switches and quite strict about treating all individual Windows systems as potentially hostile, it's enabled on all of them.

Comment: Re:Sure... (Score 1) 299

I suspect you are too young to appreciate the difference in weather prediction in the last 20 years, much less the last 50. Understanding of global weather patterns, satellite monitoring, and the ability to gather data from across an entire state and from offshore have profoundly improved storm prediction and especially flood prediction. And the information about mountain snowfall and rainfall is critical to flood reporting and planning.

Even the daily weather reporting, with subtle temperature differences across a single city, is a profound improvement over my lifetime. The monitors simply didn't exist, with available communications and recording tools, to handle all the data. "Looking at the sky" is not enough to predict the size and timing of tropical storms, and certainly not enough to predict flooding anywhere near so effectively and usefully as it is now. If you farm, or if you transport cargo by ship or plain, these are _vital_ factors for every day productivity and safety.

If you feel inclined to scoff, ask an old farmer or pilot or captain about the difference.

Comment: Re:Sure... (Score 1) 299

> Nonsense. It only doesn't sit well with the fictional, cartoon-grade MBA types that IT people like to conjure up as straw men

And the personnel reviewing the bid I made for a security enhancement last week. They were very clear about it, and we were both very clear on the lost productivity of a "secure" system that would consistently lock employees out of email during off-hours and calling on after hours staff they did not have to do the work.

Comment: Re:Sure... (Score 1) 299

> Well, let me know when we actually get to the weather-predicting stage

Considering that "the weather predicting stage" has existed throughout human history, with the prediction of the seasons and planting nad harvest and migration times based on both astronomy and local environments, I'd say we've been at the "weather predicting stage" for all of human history. Given the evolution in the last century both explaining and predicting weather well enough to provide a daily prediction, I'd say we've been gotten considerably better at it.

Comment: Re:OS X - Case sensitive and sensationalism (Score 1) 141

by Antique Geekmeister (#48630585) Attached to: Critical Git Security Vulnerability Announced

Some developers use shared file systems on CIFS, whether Microsoft file server or Samba based. Some of us also inherit code that uses mixed case that maps to the same file name when made single case for legacy reasons: I can name several old UNIX programs that do not compile on CygWin without considerable revision of their source code, due to precisely this sort of issue.

Comment: Re:Why are taxi drivers all so horrible? (Score 1) 295

I've had good success with genuine taxis in many cities in many countries. Some cities, and neighborhoods, are noticeably better, and I've certainly had to use a gypsy cab when exhausted and there were no registered cabs available. They've helped save me enormous difficulty and expense, from letting me pay later when I was out of cash, to actually helping get a very sick man off the streets to a hospital when my hands were full and I could not reach to pay with my hands so full. I never did get to reward that cabbie, I'm afraid, but I always try to tip well in memory of that help.

One of the practices I've come to despise, however, is the "you must take the first taxi available" rules at airport and public transit taxi stands. All of the drivers get upset if you select the company you prefer and have done business with.

Comment: Re:Sounds like they should ban the cabbies (Score 1) 295

> x86: I'm pretty sure that Intel had a great deal of legal control of that market, a

And illegal control. Do look into the history of the theft of Alpha technologies from DEC that were used for the Pentium architecture.


Comment: Re:Last few fish in a small pond... (Score 1) 433

by Antique Geekmeister (#48594941) Attached to: Vinyl Record Pressing Plants Struggle To Keep Up With Demand

Please don't assume that _quality_ camera film maker will be available. The quality of good camera film, at least, was _amazing_ in its heyday. We saw the results in the photography of scientific magazines especially, such as National Geographic and Nature. The economies of scale seem to have been vital to Kodak and Polaroid, partly because the chemicals used can also be quite toxic and required very controlled handling to ensure the quality of the film.

Film based photography is a fascinating technology history, well worth review in technology and business courses.

Comment: Re:How about a list for Australia ... (Score 1) 43

Given the bans on credit card contributions to WikiLeaks and he behavior of RIAA and MPAA, and the very strange intellectual properties concerning computer software and the DMCA? Yes, I'd say content is being filtered. Also, given laws about child pornography and human torture depictions, I'd say yes, content is blocked in the USA and internationally.

China's filters are much, much broader, but it does not mean speech is completely free elsewhere.

Comment: Dungeons of Dredmor equivalent on Steam (Score 2) 186

by Antique Geekmeister (#48563599) Attached to: NetHack: Still One of the Greatest Games Ever Written

I've noted that the Steam game, "Dungeons of Dredmor", is a nice upgrade to the genre of rogue-like games. It's good, for those who enjoy them and like a bit more graphics. It has different shop mechanics, but I was given a copy and enjoyed it. And I do remember compiling and playing the original Rogue decades ago, along with 'rogomatic' to watch someone _else_ trying to dungeon dive.

Comment: Re:"Running arbitrary commands" is irrelevant (Score 4, Insightful) 129

by Antique Geekmeister (#48554613) Attached to: Stealthy Linux Trojan May Have Infected Victims For Years

I';m personally aware of thousands of systems on which database data, backups, and system logs are not read protected from local users. They're left this way on the grounds that "if someone has local access, we're screwed anyway". They pass pass commercial security audits because the security companies do a handful of known external attacks, which giver a small set of tasks to fix the issue and do not address such fandamental issues.

This is particularly aggravated on systems with have password free sudo access for developers, which is very common on development environments, on systems with password free SSH keys casually stored with system wide access, and software systems that store passwords in clear text by default, such as Subversion HTTPS access. It's also compounded when home directories on which such information is stored is NFSv3 mounted and shared with all clients on the network. The concept of "data which belongs to you" breaks down quickly with NFS or CIFS without authentication in most environments. NFSv4 or Kerberized CIFS access can be helpful in restricting this, but I know very few partners or clients who go to the extra steps needed for this.

Comment: Re:Scientific Linux (Score 1) 118

by Antique Geekmeister (#48543595) Attached to: Ask Slashdot: Paying For Linux Support vs. Rolling Your Own?

CentOS, Scientific Linux, the old "Whitebox" distribution, and other free rebuilds resemble the "Red Hat" distributions before RHEL. They're quite fascinating free and open source software projects. Red Hat has been model open source and freeware contributors in their publication of all legally permissible source code: they do retain some projects where the source code is licensed form others and cannot be published directly, such as the old Sun Java packages.

I agree that Scientific Linux could now consider simply adding separate packages. The difficulty is that those package would still not be in the base CD or DVD distributions, not even access to those packages would be permitted. CentOS has been very, very clear that they do not include non-RHEL software in the base distribution. Scientific Linux includes access to EPEL, which has recently been activated for CentOS. It also provides easy activated access to the "rpmfusion" and "atrpms" websites for software Red Hat cannot safely provide due to patent and DMCA regulation, Adobe access presents licensing issues, NVidia drivers, and MPEG drivers in various repositories, and some old packages with strange licensing.

Scientific Linux has been very helpful at enabling access to these without painful manual steps. Red Hat, and thus CentOS, will not be able to do so without taking on profound legal liabilities.

"It's ten o'clock... Do you know where your AI programs are?" -- Peter Oakley