Forgot your password?
typodupeerror

Comment: Its easy to be critical (Score 1) 164

by jpostel (#47029707) Attached to: 30-Day Status Update On LibreSSL

Bob Beck has a pretty healthy track record of throwing verbal grenades with regards (but not limited) to open source licenses, security, and other people's code.

That said, looking at published vulnerabilities (CVEdetails.com), OpenSSH and OpenBSD have a tremendous record for fixing (or simply not having) serious security bugs. The total number of vulnerabilities in OpenSSH (application) since 1999 is 61 (11 being DOS) and NONE have known exploits. OpenBSD (an entire OS) has 136 (57 being DOS) since 1999 with 4 known exploits.

By Comparison, OpenSSL (a protocol library) has 87 (46 are DOS) with 5 known exploits.

None of these are egregious compared to other UNIX OS platforms like AIX (316), Solaris (533), and HPUX (278).

I don't think the OpenSSL folks are bad, but they let the product stagnate a bit. Getting some new perspective on it is a good thing.

Comment: Re:Of course (Score 1) 460

by jpostel (#30637300) Attached to: Do IT Pros Abuse Their Power?

I've never really had the time or inclination to be a BOFH, but you can't block any fantasy football sites because even managers "need" them.

I once had an issue with a woman that used to go to gambling sites at work. When we blocked them, she complained to her boss. I was amazed that her boss had the balls to ask us to allow it... but he was the CEO's brother.

I have witnessed BOFH-type abuse by a consultant against another IT person. The guys did not get along, so the consultant blocked all the sites that other guy went to, and when confronted about it, he pretty much said, "F-off. I am in charge of the proxy". Hardocp is the only one that comes to mind. It got so bad that one of the networking guys built another proxy server "for testing" and gave the IT folks access to it.

We fired the consultant about a month after I found out what he was doing.

Comment: Re:Can't see why this would matter. (Score 1) 736

by jpostel (#30263038) Attached to: Do You Hate Being Called an "IT Guy?"

I worked at a small software firm where the DBAs and programmers were one and the same. The problem came about when one of the owners decided that IT should report into the head DBA/Programmer. Unmitigated disaster. The head DBA truly believed that he understood servers and networks because he had written code that ran on them. It lasted about 3 weeks.

The crazy part was when they tried the same thing a few years later. It lasted about 6 weeks

Security

Journal: More TSA stupidity

Journal by smooth wombat
In the interest of protecting the traveling citzen from a crazed Troy Smith who might possibly use his newly won Heisman Trophy as a weapon, Troy had to ship his trophy home instead of being able to carry it on the plane with him.

Ostensibly Mr. Smith claims that he shipped it home because he didn't want it to get bent like the last Heisman winner from Ohio State, Eddie George, had happen to him.

It's funny.  Laugh.

+ - Lawmaker Aims To Allow The Blind To Hunt

Submitted by
IHC Navistar
IHC Navistar writes "AUSTIN, Texas (Reuters) — A Texas lawmaker is aiming to allow the blind to hunt. Texas State Representative Edmund Kuempel has introduced a measure that would allow blind people to hunt any game that sighted people can currently pursue. He hopes it will be passed after the legislature reconvenes in January though he does not expect it to come into affect until 2008. "This opens up the fun of hunting to additional people, and I think that's great," Kuempel told Reuters. The bill may find little resistance in Texas, where politicians of all stripes endorse hunting, which is wildly popular in the state. Under the bill, blind hunters would be required to have a sighted hunter with them and would be allowed to use laser sights and other devices that are currently not allowed. "A blind person can shoot a rifle by mounting an offset pistol scope on the side of the rifle instead of on top," said Terry Erwin, the Austin-based Hunter Education Coordinator with the Texas Parks and Wildlife Department. "This allows their companion behind them to peer over their shoulder and help them sight it, but the blind person can pull the trigger," he told Reuters. © Reuters 2006. All Rights Reserved. URL: http://today.reuters.com/news/articlenews.aspx?typ e=oddlyEnoughNews&storyid=2006-12-12T154047Z_01_N1 1175774_RTRUKOC_0_US-BLIND-HUNTERS.xml&src=rss"
SuSE

+ - openSUSE 10.2 released.

Submitted by linuxpoweredtrekkie
linuxpoweredtrekkie (659492) writes "Last Thursday openSUSE 10.2 was released. This is the first version of the distribution to bear the name openSUSE, previously it was known as SUSE Linux.

Notable new features include:
— Vastly improved package management. (Improved user interface, progress reporting during slower operations, significantly improved speed)
— New kickoff KDE menu based on extensive start menu research by the SUSE team.
— New update notifier applet for KDE.
— Improved KDE integration of beagle, with the Kerry frontend and kio-beagle (lets you use beagle search in any kde dialogue).
— New and improved YaST modules for configuring your system, one new module enables sudo configuration.

You can download now from a mirror or use a torrent. Alternatively buy a boxed set with installation support, manuals and dual layer dvd."

To thine own self be true. (If not that, at least make some money.)

Working...