Forgot your password?

Comment: great dogs (Score 2) 415

by John Da' Baddest (#47397837) Attached to: Police Using Dogs To Sniff Out Computer Memory
Impressive how these dogs can detect "storage with child porn", as opposed to storage with business data. It would be interesting to try some stenography tests, to see if the dogs can sniff through that as well. Maybe the stored data has some karmatic "bits of intent" floating around that the dogs can detect, just like they can implicitly growl at burglars but not ordinary visitors.

Comment: Group Grope (Score 1) 306

by John Da' Baddest (#46517775) Attached to: Ask Slashdot: Can an Old Programmer Learn New Tricks?
Lot's of suggestions here for singleton work, but maybe you should get into something new by learning in a team. This could be "extreme programming" if you're already working in a paid corporate job, or by taking a real course someplace where you can interact with similar mindsets. (The course itself may be less useful than the peer interaction, so still worth the cost.) And sometimes software conferences have workshops or "interaction sessions". Community colleges are another possibility for special topics.

Comment: Re:sudo is broken by design (Score 1) 83

by John Da' Baddest (#46329851) Attached to: Book Review: Sudo Mastery: User Access Control For Real People
Not buying these exaggerations. Most security vulnerabilities are in the applications themselves, eg buffer overflows, or on the client side. Let's see some evidence where weakness in concern-separation from VMware instances or sudo glitches is a major contributor to malware mishaps these days. I suppose the main vulnerability is a bit less control against insider malfeasance, and those are mostly due to configuration errors or corrupt admins.

There are architectural reasons to separate, and economic & practical reasons to consolidate - or not. I'd say you're off the curve of reasonable expectations if you're asking for mainframe-style "trusted" isolation on a setup of only a few (or just one) PC-grade servers in which you have all applications and services running together along with a variety of login access from different categories of users who may be potential attackers. Not that there's anything wrong with the BSD's etc, but in the scenarios you imply, you might be placing your support resources in areas of lower risk priority. Or maybe you yourself are the single supporter?

I say "PC-grade" because your scenario sounds economically uninteresting -- important enough to protect as you want (with excessive apps & users), but not important enough that there's budget to do hardware separation. Just because you're broke doesn't mean that Unix is broken. I agree that BSD Capsicums (etc) may be a good fit for these outlier use-cases, or special situations, but mostly if your establishment is willing to make a heavy technology investment in going that route.

Comment: Re:sudo is broken by design (Score 1, Insightful) 83

by John Da' Baddest (#46327223) Attached to: Book Review: Sudo Mastery: User Access Control For Real People
I used to hear this a lot from VMS guys besmirching Unix, though such guys are harder to find these days.

There's more to life than an abstract security model. Virtual machines are cheap these days, don't let untrusted users (or processes) onto your important server in the first place. If you insist on OS timesharing and full security, well, you're fooling yourself IMHO. Of course VMS could do it, but try to find one now. Not cost effective for the real purpose of getting stuff done, ie, running applications.

Comment: Re:Rich, white hypocrites? Say it aint so!!! (Score 1) 317

by John Da' Baddest (#46324181) Attached to: Exxon Mobile CEO Sues To Stop Fracking Near His Texas Ranch
Offshore is people too. They also work hard to take care and make use of it, what's so bad about that? Or is it that only American people are entitled to such benefits?

Maybe the IRS should make it less onerous to re-pat the cash if they want it badly enough, instead of the hunting mentality as is perceived. Eg, anonymous fixed rate conversions independent of any other factors such as owner's income.

Comment: Re: I always thought... (Score 1) 118

by John Da' Baddest (#46132391) Attached to: How the Black Hole Firewall Paradox Was Resolved

where the gravitational pull is so strong that nothing can escape.

I always wondered about this. Isn't it just a basic calculation showing the point where escape velocity exceeds the speed of light? Meaning that ballistically nothing can escape on it's own, but if you had a "space elevator" (with super-strong cables not defined here) you could raise and lower things into a black hole (or planet Earth) at whatever speed you wanted. So why not lower in a camera and take a look? And if the super-strong cable also does Ethernet, you wouldn't even have to raise it back, unless gravitational escape velocity also applies to electricity.

Physics being what it is, the rebuttal could something like proof that such a super-strong cable couldn't exist, even if the thought-experiment is valid. To keep it from getting infinitely crushed, maybe you have to build it out of some sort of antidote physical-contradiction like magnetic monopoles

Comment: Re:What an idiot. (Score 1) 233

by John Da' Baddest (#45810121) Attached to: Convicted Spammer Jeffrey Kilbride Flees Prison

People who commit crimes should be kept under an appropriate amount of supervision until they've been rehabilitated to the point where they're not likely to commit future crimes.

But you assume crime and illegality are the same thing. What about drug-usage offenses? There's probably no finite in-jail punishment time to prevent future toking upon release.

Comment: Only in your circle? (Score 1) 457

The concept of "everyone" meaning just a small circle of people is in evidence here. What about the so-called "third world" where modem dial-ups in a dingy cafe still common? Sometimes in these circles, Facebook IS the Internet and is still growing rapidly. Of course, "our youths" don't chat with this rest of the world who don't count in the coolness-factor of the survey above and discussions here.

Comment: Verdict - pro or con? (Score 1) 138

by John Da' Baddest (#45768683) Attached to: Percentage of Self-Employed IT Workers Increasing
So is this a good thing, or just dismal? At the higher end, daily rates for externals can be much better than internal staff salaries -- but of course, with caveats and the usual temporary nature of assignments. And clearly, some people are more suited for this sort of thing than others. I'm interested to hear experienced opinions whether you consider this headline statistic as a good or bad thing.

I'm undecided because the article (and my limited awareness) doesn't break down the types of self-employment into recognizable scenarios.

backups: always in season, never out of style.