Follow Slashdot stories on Twitter

 



Forgot your password?
typodupeerror

Comment: Re:Psychologically speaking... (Score 1) 285

by camperdave (#48664403) Attached to: At 40, a person is ...
What is the unit of extraordinariness? If I have two semi-extraordinary pieces of evidence, does that satisfy the requirements for an extraordinary claim?

The whole idea of extraordinariness vs ordinariness is scientifically bogus. There are claims, and there is evidence. Either the claim is refuted by the evidence, or it is not. End of story...

Unless you have evidence to the contrary.

Comment: Re:Quite possibly the stupidest vulnerability ever (Score 2) 118

by JesseMcDonald (#48629551) Attached to: Grinch Vulnerability Could Put a Hole In Your Linux Stocking

Please; this had nothing to do with systemd. It's about PackageKit, which has been around for quite a bit longer. The problem is with the part of their PackageKit configuration which apparently allows administrators to install software without authenticating first. It's rather like putting the line

%wheel ALL = (root) NOPASSWD: /usr/bin/yum

in your sudoers file. PolicyKit can also be configured to require authentication for each action, it just wasn't set up that way on their system. There's nothing wrong with identifying the members of the "wheel" group as administrators, but the policies should be configured such that administrators need to authenticate prior to installing new software. (This seems to be the default on CentOS 6.4; I have no idea what they were running. "pkcon install" does not work by default here without authentication, even for a member of the "wheel" group.)

Comment: Re:Good, let them. (Score 1) 388

by JesseMcDonald (#48622101) Attached to: Sony Leaks Reveal Hollywood Is Trying To Break DNS

They can very easily block anything that is not in plain text.

You can put whatever data you want inside a "plain text" message. Even under wartime conditions where all messages in and out are reviewed by actual humans, people still manage to get secrets through—and that approach doesn't scale. Any automated Internet censorship system (short of shutting down the Internet entirely) would leak like a sieve.

There is nothing so easy but that it becomes difficult when you do it reluctantly. -- Publius Terentius Afer (Terence)

Working...