Follow Slashdot blog updates by subscribing to our blog RSS feed

 



Forgot your password?
typodupeerror
For the out-of-band Slashdot experience (mostly headlines), follow us on Twitter, or Facebook. ×

Comment: Confused (Score 1) 260 260

Recently I've read articles on the purported health benefits of chocolate, especially dark chocolate -- ie, without the usual additives of sugar and milk. But not including weight loss, you're supposed to do that in the usual ways. Yet this article slams "choc is good" claims with a wide brush, as do most of the Slashdot comments above. So I'm unsure about the whole thing, and wish people could stick to the topic and clarify their contexts upfront.

...

Hey, UN-F*CK BETA! I'd glady pay for a moderated discussion, without never-ending comments from the peanut gallery. Sorry peanuts, I just don't have time,.

Comment: But how to proceed? (Score 1) 77 77

Suppose a smaller company does care, and wants to implement measures? These tools sound good, but like an auto parts store when you want a whole car, the integration is non-trivial. I guess the current solution is to hire a specialist, if you can find one appropriate. Maybe the industry has to evolve a bit more.

Comment: Dryness (Score 1) 550 550

I investigated having this surgery a few years ago, in my late forties, with a thorough check at the Kellogg eye center at the University of Michigan. Their conclusion was that my eyes are too dry to be good candidates for this operation. It would cause irritation and even more dryness, and the side effects of halos would be worse with my eyes. Sadder and wiser, I skipped the procedure. I used to wear contact lenses but gave that up after a while for the same reasons. My latest glasses are very lightweight and not much of a bother to wear.

Comment: great dogs (Score 2) 415 415

Impressive how these dogs can detect "storage with child porn", as opposed to storage with business data. It would be interesting to try some stenography tests, to see if the dogs can sniff through that as well. Maybe the stored data has some karmatic "bits of intent" floating around that the dogs can detect, just like they can implicitly growl at burglars but not ordinary visitors.

Comment: Group Grope (Score 1) 306 306

Lot's of suggestions here for singleton work, but maybe you should get into something new by learning in a team. This could be "extreme programming" if you're already working in a paid corporate job, or by taking a real course someplace where you can interact with similar mindsets. (The course itself may be less useful than the peer interaction, so still worth the cost.) And sometimes software conferences have workshops or "interaction sessions". Community colleges are another possibility for special topics.

Comment: Re:sudo is broken by design (Score 1) 83 83

Not buying these exaggerations. Most security vulnerabilities are in the applications themselves, eg buffer overflows, or on the client side. Let's see some evidence where weakness in concern-separation from VMware instances or sudo glitches is a major contributor to malware mishaps these days. I suppose the main vulnerability is a bit less control against insider malfeasance, and those are mostly due to configuration errors or corrupt admins.

There are architectural reasons to separate, and economic & practical reasons to consolidate - or not. I'd say you're off the curve of reasonable expectations if you're asking for mainframe-style "trusted" isolation on a setup of only a few (or just one) PC-grade servers in which you have all applications and services running together along with a variety of login access from different categories of users who may be potential attackers. Not that there's anything wrong with the BSD's etc, but in the scenarios you imply, you might be placing your support resources in areas of lower risk priority. Or maybe you yourself are the single supporter?

I say "PC-grade" because your scenario sounds economically uninteresting -- important enough to protect as you want (with excessive apps & users), but not important enough that there's budget to do hardware separation. Just because you're broke doesn't mean that Unix is broken. I agree that BSD Capsicums (etc) may be a good fit for these outlier use-cases, or special situations, but mostly if your establishment is willing to make a heavy technology investment in going that route.

Work without a vision is slavery, Vision without work is a pipe dream, But vision with work is the hope of the world.

Working...