Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!


Forgot your password?

Comment: Re:There is something wrong with EVERY browser (Score 4, Interesting) 136

by lindi (#43672279) Attached to: Backdoor Targeting Apache Servers Spreads To Nginx, Lighttpd

From Debian 7 release notes:

"Therefore, browsers built upon the webkit, qtwebkit and khtml engines are included in Wheezy, but not covered by security support. These browsers should not be used against untrusted websites. For general web browser use we recommend browsers building on the Mozilla xulrunner engine (Iceweasel and Iceape) or Chromium."

-- http://www.debian.org/releases/stable/amd64/release-notes/ch-information.en.html#browser-security

Comment: Re:Simples! (Score 1) 314

by lindi (#42402331) Attached to: How Do YOU Establish a Secure Computing Environment?

* ROOT account: No logins, create another account which can only be locally logon to, which can sudo. Password 16 chars, potentially automatically rotating. Possibly also having 2 factor authentication. You can trivially create this step by even creating a PHP Script as the shell :)

The only advantage of this is that it is harder to guess the username?

* Watch logins: More than 2-5 failed logins, shut the system down immediately using "magic" SYSRQ, wrong username? Instantly

Sounds like a nice way to disable your system remotely :)

* Full disk encryption, on top of which potentially using a bit obscure filesystem to make it that much harder to break. The required data should have 2nd level encryption unless doing that creates a potential attack vector on the first level encryption

How does the machine boot after a power outage?

Comment: Re:Initialism (Score 1) 165

by lindi (#42368399) Attached to: Ada 2012 Language Approved As Standard By ISO

Fortunately gcc has support for the expected style (using the -gnatyy flag).

with ada.text_iO;
use ada.text_io;

procedure hello is
        put_line("hello world");
end hello;

fails with

hello.adb:1:06: (style) bad casing of "Ada" declared at ada.ads:16
hello.adb:1:10: (style) bad casing of "Text_IO" declared at a-textio.ads:48
hello.adb:2:05: (style) bad casing of "Ada" declared at ada.ads:16
hello.adb:2:09: (style) bad casing of "Text_IO" declared at a-textio.ads:48
hello.adb:6:05: (style) bad indentation
hello.adb:6:05: (style) bad casing of "Put_Line" declared at a-textio.ads:263

ASHes to ASHes, DOS to DOS.