Forgot your password?

Close
typodupeerror

Comment: Re:Once again, benchmarks fail (Score 2, Informative) 268

by ens0niq (#29577225) Attached to: FreeBSD 8.0 vs. Ubuntu 9.10 Benchmarks
Sorry, sir

From Phoronix:

"The tests that were carried out under FreeBSD 7.2, FreeBSD 8.0 RC1, and Ubuntu 9.10 Alpha 6 included timed ImageMagick compilation"

From freebsd-current mailing list:

> Hi,
>
> I would like to ask that the FreeBSD 8.0-RC1 ISO-s free from the
> debugging features (WITNESS, malloc debugging, etc.)? Or these
> services are still being active?

They are gone, for the most part. r197065: http://svn.freebsd.org/viewvc/base?view=revision&revision=197065

Remove extra debugging support that is turned on for head but turned off for stable branches:

- shift to MALLOC_PRODUCTION
- turn off automatic crash dumps
- Remove kernel debuggers, INVARIANTS*[1], WITNESS* from
GENERIC kernel config files[2]


[1] INVARIANTS* left on for ia64 by request marcel
[2] sun4v was left as-is

Comment: Re:I wouldnt make plans to deploy it either (Score 2, Informative) 429

by ens0niq (#28690309) Attached to: Most Companies Won't Deploy Windows 7 — Survey
"Right, it just means 6/10 don't plan to deploy it by the end of next year."
False. Read the fine PDF:

Which below represents the most accurate statement about your plans to deploy Windows 7?

We have no current plans to deploy Windows 7 59.3%
We will likely deploy Windows 7 by the end of 2010 34.0%
We plan on deploying Windows 7 by the end of 2009 5.4%
We have already deployed Windows 7 1.4%

According this 59,3% will skip Windows 7 completely. 34,0% will likely deploy Windows 7 by the end of 2010. Likely.

Comment: It can also be installed without physical access (Score 2, Informative) 325

by ens0niq (#27700061) Attached to: Researchers Show How To Take Control of Windows 7
From an interview with authors:

http://www.securityfocus.com/columnists/442/2

"How can an attacker deploy it?

Nitin & Vipin: An attacker doesn't need to install, that's the way it has been designed. Just boot the system by placing the vbootkit media (containing vbootkit in bootsectors) in the drive, and start booting. After Vista boots, you can verify that you are running vbootkit, by checking the privilege of any running cmd.exe, the sample converts all low-privileged cmd.exe process to SYSTEM privileges. It also supports system compromise via PXE booting.

It doesn't need any privileges only physical access to the machine. It can also be installed to a remote system under some conditions (without physical access)."
Security

Grsecurity is about to be discontinued, unless...->

Submitted by
ens0niq
ens0niq writes "As most of you probably know, a GPL licensed security solution called grsecurity has been available for the Linux kernel since a while. It has a rather impressive list of features. The lead developer has been maintaining patches for the 2.4 and the 2.6 branch for many years. According to their developers, the patch includes various advanced security aspects which inspired several further projects. A week ago, the latest — and probably the last — release was published. The main developer lost its sole sponsor due to the financial crisis, so the future of the project is in danger. As a result, the future development of PaX, one of the definitive components of grsecurity is also in deep trouble. The common opinion of the developers of grsecurity, PaX and their users is that acceptance of the code into the kernel would be the best solution for saving the project, beside finding another long-term sponsor. In the past, there have been several requests toward the Linux developers to include grsecurity and PaX in the mainline kernel, but in vain. So we now asked Linus about this. You can read Linus's answer here."
Link to Original Source
Microsoft

Hungary: no official position on OOXML->

Submitted by
ens0niq
ens0niq writes "The repeated voting session (because of anomalies) at Hungarian Standards Institution again was not legitimate today, because it was not the secretary but the general manager who sent out the invitation letters, which should be breaching the internal rules of the Standards Body. The number of members to vote raised from about ten to 55, 42 of which were present at the session. Microsoft did not want to vote, but they wanted to let the previous voting session be recognised as legitimate, because they claim the intervention of the minister after the previous session to repeat the voting session was not valid. The result is: no official position, due to the lack of time to organise a new voting session."
Link to Original Source
Microsoft

HSI to reconsider its vote on OOXML->

Submitted by
ens0niq
ens0niq writes "Mr János Kóka, Minister of Economy and Transport, has sent a mail to György Pónyai, General Director of Hungarian Standards Institution (HSI), about its the Hungarian vote on OOXML issue. In this mail the minister informed the director, that the IBM Magyarországi Kft (the Hungarian subsidiary of IBM) signed concerns about the way how the Hungarian vote was decided on the OOXML issue (draft of ISO/IEC DIS 25900 standard) on the meeting of the Committee on 25th June 2007. As known, the meeting was organized breaking the internal rules of HSI on decisive meetings. The invitations for the meeting were not sent to the parties in time, then the voting rules were changed by the secretary of the Committee so that only the 50% of the votes is enough for a decision instead of the 2/3 lied down in the original rules. Because of these circumstances, the counterinterested parties were not able to vote on the meeting, therefore the official Hungarian opinion on the issue is "yes" for OOXML as ISO standard. However because of these anomalies, the minister has ordered HSI to restore the juridical situation, and repeat the vote on 31th August 2007. Since then, new members have been inaugurated to the committee of the HSI, where the only requirement of membership is a fee of 100-200 euros. Many of the new members seem to have tight relationships with Microsoft."
Link to Original Source

Many pages make a thick book.