Forgot your password?

Comment: Re:Technically if an NSA backdoor existed (Score 1) 171

by PopeRatzo (#46760577) Attached to: First Phase of TrueCrypt Audit Turns Up No Backdoors

Thanks for the info. That's what I'd assumed, and hoped.

So I'm not sure where this idea that these audits are "American only" or that there is something preventing someone from pointing out a vulnerability comes from.

Generally, I trust stuff that has lots of eyes on it.

Comment: Ted Unangst's article (Score 4, Informative) 285

by grub (#46758065) Attached to: OpenBSD Team Cleaning Up OpenSSL

Ted Unangst wrote a good article called "analysis of openssl freelist reuse"

His analysis:

This bug would have been utterly trivial to detect when introduced had the OpenSSL developers bothered testing with a normal malloc (not even a security focused malloc, just one that frees memory every now and again). Instead, it lay dormant for years until I went looking for a way to disable their Heartbleed accelerating custom allocator.

it's a very good read.

Comment: Re:AWS is NOT cheap (Score 2) 144

by afidel (#46756509) Attached to: How Amazon Keeps Cutting AWS Prices: Cheapskate Culture

Yes, I've heard of Xen, and I've even run it in production, both Xenserver and Oracle VM flavors, and both sucked horribly. Back when VMWare tried the v.Tax I contemplated switching to KVM using RHEV but Redhat took almost 30 days to even get me access to a RHEV download by which time VMWare had backed off on their pricing.

As to the crack about redundancy and scalability, I've got a better uptime metric than any cloud provider, zero unplanned downtime in the last 5 years (vmotion + svmotion makes replacing both hosts and storage a breeze) thanks to redundant generators, UPS, chillers, and internet connections.

A LISP programmer knows the value of everything, but the cost of nothing. -- Alan Perlis