Forgot your password?

Comment: Re:de Raadt (Score 1) 282

by hobarrera (#46777381) Attached to: OpenBSD Team Cleaning Up OpenSSL

If they hadn't used their own allocator, then this bug would have been exposed on OpenBSD ages ago since it would lead to OpenSSL crashing over and over again. At first you migth think that this only helps OpenBSD users, but no: this would have led to research on the matter (the crashed), and the issue being found quite soon after it was introduced.

So it would not have been benefitial only to OpenBSD, but to everyone.

Comment: Why? (Score 1) 186

by hobarrera (#46724039) Attached to: Ask Slashdot: User-Friendly Firewall For a Brand-New Linux User?

You say you're a new Linux user, and it looks like you're carrying over you windows-way-of-thinking.

Most Linux distros don't have services running with lots of security holes. You don't generally need this.
Most malware out there is actually stuff like "click here for free money.exe". Even if you come across Ubuntu-targeted stuff, it does look like you're the kind of person who wouldn't click that.

Several people here have pointed out possible solutions, but think for a moment if you really need them.

Comment: Re:The department gives the hint. (Score 1) 450

by hobarrera (#46722151) Attached to: Ask Slashdot: How To Start With Linux In the Workplace?

XFCE may look superficially like XP but actually has all sorts of differences that make it irritating as hell to use. Just off the top of my head:

- No decent file explorer.

Why? What's wrong with thunar?

Thunar is abysmal compared to XP's.
- Window borders too small, like 1px. Resizing windows is a pain.

I haven't used XFCE is ages, but I belive lots of WMs out there use super+m2 to resize. Windows borders are useless, and having to aim at tiny stuff to resize windows is stupid.

- Window maximize behaviour is annoying, because you can still drag the window out of fullscreen after it's been maximized, yet dragging it to the top of the screen doesn't automatically fullscreen the window again.

Rather than "annoying", I'd say it's just "different from windows". Also, I belive this is configurable.

- The 2 clipboards, one of which is a "mouse buffer", is so unintuative I would classify it as a bug. Linux desperately needs a unified clipboard.

Use something like parcellite if you want to unify them. Getting rid of both clipboards to make life easier for people who don't know how to use a computer is a bad idea (see GNOME3).

Comment: Re:Tip from a programmer (Score 1) 78

by hobarrera (#46681895) Attached to: FTC Settles With Sites Over SSL Lies

you're under some kind of deadline pressure and you can't connect to them, don't turn off SSL validation.

OR: Always turn off SSL validation, because it's totally worthless.

The problem is CAs get suberted all the time into issuing certs they shouldn't issue.

You're asuming that they're using a third-party CA, and using the same pool of CAs browsers use to validate.

In truth, when developing applications, you don't need that. If I were to make an application and server right now, I'd use my own CA certificate. I'd then bundle it with my application, and sign the server certificate with it. TLS validation will mean TRUE security in this case.

Quark! Quark! Beware the quantum duck!