Forgot your password?

Comment: Nothing to do with language (Score 5, Insightful) 326

by dutchwhizzman (#48018335) Attached to: Bash To Require Further Patching, As More Shellshock Holes Found

First of all, it's Bourne shellcode and bash has extensions to it. Second of all, whether the programming language is bad or not is totally not relevant. It's the parser in the shell itself that has some fundamental flaws because it executes code inside environment variables that are totally unchecked. You could have a brilliant programming language and still make the exact same mistake.

While you may say that is "by design" it is not common for Bourne shell to do so and most of shell scripts are written to be Bourne shell compatible. By choosing to allow this to happen, Bash programmers made a giant hole in shell security.

Comment: It totally depends what you want (Score 2) 189

by dutchwhizzman (#48009983) Attached to: NVIDIA Begins Requiring Signed GPU Firmware Images

Intel has I believe all their Linux drivers fully open sourced. However, they're not really fast compared to AMD or NVidia. AMD has two driver versions, their closed source catalyst driver and the open source one. The catalyst driver is much faster, energy efficient and can do more tricks than the open source one. NVidia is sort-of supporting Nouveau and has their own binary driver as well. The "sort of supporting" is much limited compared to the amount of AMD is pouring in the open source version of their drivers, but it has improved greatly recently.

Depending on what you are looking for in terms of bang for buck, speed or features each of these might be "the best solution" for your needs. If you want CUDA or openCL, you'll be looking at closed source though, there's no serious support for open source drivers for relevant hardware (yet).

Comment: Valid warrant: no such thing (Score 2) 353

by dutchwhizzman (#47999939) Attached to: FBI Chief: Apple, Google Phone Encryption Perilous
There is no way they can come with a valid warrant forcing you to decrypt your phone. If they can prove there's evidence on that phone, they already have it. If they can't prove it, you would be assisting in your own conviction and you can't be forced to do so. Unless the constitution is changed, there can't be a law that will make any warrant to decrypt your phone legal and valid.

Comment: Denial of service (Score 1) 93

by dutchwhizzman (#47991371) Attached to: Apple Allegedly Knew of iCloud Brute-Force Vulnerability Since March

How easy is it to lock someone's account and access to all of their data in the cloud, by simply throwing 5 bad logon attempts at their account name? How would you feel if someone were to do that every hour, using a botnet, forcing you to go to an apple store, show your ID and have your finger print scanned just to unlock your account?

Yes, this may be slightly exaggerating the situation, but simply locking someone's account because someone else made 5 attempts to log on to it isn't going to work in practice. You'd be having to deal with oodles of users that got locked out of their stuff and tarpitting only slows the brute force attempts down.

Comment: Will it come with proprietary AMD graphics driver? (Score 1) 37

by dutchwhizzman (#47974741) Attached to: Fedora 21 Alpha Released
Will it come with proprietary AMD graphics driver? Will they have a rescue mode for the live boot? Can they install on a partition without having to format it? Fedora 18 had all these useful features, 20 didn't have them anymore. Next thing you know, Fedora 22 won't even have Linux anymore, just logos and an installer that gives you wayland and a browser....

Comment: 5 dollars (Score 1) 262

by dutchwhizzman (#47954285) Attached to: Why the iPhone 6 Has the Same Base Memory As the iPhone 5
It will cost Apple 5 dollars or less on a phone that will cost over 500 dollars (without a contract) in the store to upgrade it to 32G. It's not a matter of physical space in the phone because they have 64G and 128G models as well. This is purely so they will sell more 64G phones to people that think 16G isn't enough.

Comment: Many other reasons to store data (Score 1) 113

by dutchwhizzman (#47952553) Attached to: Data Archiving Standards Need To Be Future-Proofed

While you may be right about the current use we have for DNA, it's very likely that medicine will have many more uses for it in the future. Prices on genome sampling are going down rapidly too, so it's reasonable to use this as an example why we might want to store data error free for at least a century.

There will be many more things we want to store. Remember all those old city records and paper books? The news paper archives? early 20th century cellulose film? All those data sources have their problems and we have already lost a lot of information that is valuable to us now. Your parents and grand parents color photographs have lost a lot of the color in them already. Not just the prints, but also the negatives. Those VHS video tapes of your dad growing up? They're turning into noisy images right now.

People have plenty of reasons to come up with a proper way to store data in such a way that it's still accessible for future generations, or themselves later in life.

Comment: Cultural acceptance (Score 1) 460

by dutchwhizzman (#47950423) Attached to: Science Has a Sexual Assault Problem
I've read an article about the same sort of problem but then about ISIS/IS mass raping women and little boys in their war and the lack of public outrage about that. It seems that rape is a culturally accepted practice in the USA. Given the fact of unsolved and unreported rapes withing USA borders and their military, it's hard to find proof that rape *isn't" accepted, even if it's technically a crime.

If Machiavelli were a hacker, he'd have worked for the CSSG. -- Phil Lapsley