Become a fan of Slashdot on Facebook

 



Forgot your password?
typodupeerror

Slashdot videos: Now with more Slashdot!

  • View

  • Discuss

  • Share

We've improved Slashdot's video section; now you can view our video interviews, product close-ups and site visits with all the usual Slashdot options to comment, share, etc. No more walled garden! It's a work in progress -- we hope you'll check it out (Learn more about the recent updates).

×

Comment: Re:There is something wrong with EVERY browser (Score 4, Interesting) 136

by lindi (#43672279) Attached to: Backdoor Targeting Apache Servers Spreads To Nginx, Lighttpd

From Debian 7 release notes:

"Therefore, browsers built upon the webkit, qtwebkit and khtml engines are included in Wheezy, but not covered by security support. These browsers should not be used against untrusted websites. For general web browser use we recommend browsers building on the Mozilla xulrunner engine (Iceweasel and Iceape) or Chromium."

-- http://www.debian.org/releases/stable/amd64/release-notes/ch-information.en.html#browser-security

Comment: Re:Simples! (Score 1) 314

by lindi (#42402331) Attached to: How Do YOU Establish a Secure Computing Environment?

* ROOT account: No logins, create another account which can only be locally logon to, which can sudo. Password 16 chars, potentially automatically rotating. Possibly also having 2 factor authentication. You can trivially create this step by even creating a PHP Script as the shell :)

The only advantage of this is that it is harder to guess the username?

* Watch logins: More than 2-5 failed logins, shut the system down immediately using "magic" SYSRQ, wrong username? Instantly

Sounds like a nice way to disable your system remotely :)

* Full disk encryption, on top of which potentially using a bit obscure filesystem to make it that much harder to break. The required data should have 2nd level encryption unless doing that creates a potential attack vector on the first level encryption

How does the machine boot after a power outage?

Comment: Re:Initialism (Score 1) 165

by lindi (#42368399) Attached to: Ada 2012 Language Approved As Standard By ISO

Fortunately gcc has support for the expected style (using the -gnatyy flag).


with ada.text_iO;
use ada.text_io;

procedure hello is
begin
        put_line("hello world");
end hello;

fails with


hello.adb:1:06: (style) bad casing of "Ada" declared at ada.ads:16
hello.adb:1:10: (style) bad casing of "Text_IO" declared at a-textio.ads:48
hello.adb:2:05: (style) bad casing of "Ada" declared at ada.ads:16
hello.adb:2:09: (style) bad casing of "Text_IO" declared at a-textio.ads:48
hello.adb:6:05: (style) bad indentation
hello.adb:6:05: (style) bad casing of "Put_Line" declared at a-textio.ads:263

Don't be irreplaceable, if you can't be replaced, you can't be promoted.

Working...