kantos - Slashdot User

Is GPL Licensing In Decline? 266

Posted by samzenpus on Sunday April 29, 2012 @01:35PM from the way-of-the-dodo dept.

GMGruman writes "Simon Phipps writes, "As Apache licenses proliferate, two warring camps have formed over whether the GPL is or isn't falling out of favor in favor of the Apache License." But as he explores the issues on both sides, he shows how the binary thinking on the issue is misplaced, and that the truth is more nuanced, with Apache License gaining in commercially focused efforts but GPL appearing to increase in software-freedom-oriented efforts. In other words, it depends on the style of open source."

Comment Re:Easy (Score 2) 1091

by kantos on Wednesday March 21, 2012 @07:32AM (#39425275) Attached to: Why Linux Can't 'Sell' On the Desktop

1 - POSIX. If you want to develop for POSIX, Linux supports this out of the box.

As a developer that is precisely the problem, the only consistent API in Linux is POSIX, and compared to say... WIN32 Core (minwin) that's fine. But as MinWin is essentially just Linux with Busy-box running on it, you have POSIX and nothing else. But as a developer to justify developing for Linux I need a set of rich distribution independent API's that are universal across the entirety of GNU/Linux, and not specific to a particular build of a particular distribution. Without that I'm left chasing distro install numbers to justify what I'm going to develop for or I have to trust that some downstream developer isn't going to screw up my code (See the Debian OpenSSL incident).

So what am I saying? I'm saying that very choice and customization that makes Linux the OS that so many love and cherish is what is preventing desktop development outside the tightly coupled applications that come with the various shells. Fundamentally I don't think that is an issue that can be addressed. Perhaps each shell could agree to make a subsystem to allow their apps to run on the other... (much like QuickTime allows Itunes on Windows) but that would require a lot of development for little payoff so I don't see it happening.

Little Ice Age: It Was Not the Sun 375

Posted by Unknown Lamer on Monday February 06, 2012 @11:10PM from the the-earth-wants-to-kill-us dept.

vikingpower writes "The Little Ice Age, lasting from the end of the Middle Age into the 17th century, may very likely have been caused by the combined effects of four major volcanic eruptions and increased sunlight reflection by increasing sea ice, the so-called Albedo effect. ... The University of Boulder has a press release with maps and photographs. Bette Otto-Bliesner, one of the scientists behind the 'volcano + sea ice' thesis, fields an earnest warning against drawing conclusions too quickly from this research: 'I think people might look at the Little Ice Age and think that all we need to save us from rising temperatures are some volcanic eruptions or the geo-engineering equivalent [...] But when you see what happened when global temperatures dropped by just one degree and you look at current predictions of six or seven degree increases for the future, you realize how precarious things are for life as we know it.'"

Comment Re:Treason or not? (Score 1) 582

by kantos on Sunday January 08, 2012 @10:07AM (#38628912) Attached to: Leaked Memo Says Apple Provides Backdoor To Governments

It's not treason since the Indian government is not an enemy of the United States. Furthermore to be charged with treason there has to be two eye witnesses, "No Person shall be convicted of Treason unless on the testimony of two Witnesses to the same overt act, or on confession in open court."

More likely someone will get charged under the Espionage Act, which has no such requirements... assuming of course that the US Government was not complicit in this.

I honestly think this is a special case, the Indian Government was essentially threatening to ban them from that market. To the fan bois out there that are touting FOSS as the solution... you might want to go read some of the security blogs before you go and do that. You'll quickly realize that it doesn't matter if the OS manufacturers make backdoors or not. ALL OSs have major security holes, Windows has a codebase stretching back nearly 30 years, as does Linux, I can guarantee that both have bugs that can lead to privilege escalation, some of which can be executed with remarkable reliability, e.g. Stuxnet.

My primary concern here is that this violates the Foreign Corrupt Practices Act, as giving the Indian Government the backdoor constitutes a bribe.

Comment Re:brb banging head against wall (Score 2) 221

by kantos on Saturday November 05, 2011 @09:06AM (#37957176) Attached to: MS Traces Duqu Zero-Day To Font Parsing In Win32k

The world was a different place in the early days of NT 4

Arguably true... but only for the monolithic win 9x series releases, which aren't relevant to this topic since the NT kernel was developed independently within Microsoft by Dave Cutler from DEC. It was Microsoft's first truly modern operating system. As many comm enters above me have mentioned NT originally did have functions such as font rendering in userspace due to its heavy hardware abstraction. As the pending issues with 9x loomed however MS could read the writing, on the wall; porting 9x to Unicode (it was ANSI throughout, a separate "Layer for Unicode" had to be used to run Unicode programs on 9x machines) as well as supporting newer hardware (AHCI, USB, true Plug and Play) was going to be nearly impossible (the attempt was called Windows ME). So Microsoft began with NT4 to prep for the mass migration from 9x. Since the average consumer at the time didn't want to drop $3k for a workstation that would be able to run the NT model correctly, Microsoft made some compromises to the OS for the sake of speed.

No, it wasn't. NT4 was released in 1996. By that time, many people here on /. had been exploiting bugs like that for 10 or 20 years already. Granted, mostly for fun or to cheat in (single-player) games, but still...

NT4 already had a security architecture. There was a different place available (basically anywhere outside ring0) and it should have been put there, and it definitely should have been obvious to anyone with three grams of brains that stuff like this doesn't belong into ring0.

You however are making the assumption that everybody in Microsoft talks to each other. A most incorrect assumption. The reality is most likely that WinDiv (The division responsible for the OS) made the assumption that fonts would not be loaded from insecure sources, e.g. Word documents. The Office division however faced the problem of what do you do when some user uses a font that is not on another users system? So they made the decision to allow the embedding of fonts into the file format, along with a bunch of other really bad decisions in hindsight (remember the Melissa virus?) that would have been caught if they had had the same security reviews as WinDiv did. To compound the problem, Office used unpublished and most likely unhardened APIs (it probably still does in parts) that allowed it the capabilities to do things like on the fly font loading something that wasn't exposed to the rest of us until Windows 2000 (NT 5.0). My point being that at the time it WAS a safe decision as far as WinDiv was concerned. Should they have been a little more careful with those unpublished APIs... yes they should have, it would have prevented a lot of anti-trust issues, but they weren't. So here we are with yet another security bug.

Comment According to Sysinternals... (Score 1) 375

by kantos on Saturday June 11, 2011 @07:58AM (#36410152) Attached to: Mozilla MemShrink Set To Fix Firefox Memory

Firefox is using:

Image (executables): 95,084K

Mapped File: 56,892K

Sharable Pages: 133,100k

Heap: 25,100K

Stack: 46,080K

Private Data (explicit mallocs): 205,280K

Page Table: 1,372K

Unusable (leftover area of explicitly allocated pages that were LESS than 64K): 9,440K

Only 10M unusable isn't bad on windows... (start inevitable trolling here) as the memory manager only allocates pages in increments on 64k

Comment You laugh... (Score 3, Informative) 495

by kantos on Thursday June 02, 2011 @06:58AM (#36317864) Attached to: Tennessee Makes it Illegal To Share Your Netflix Password

... but many places do have laws like that (Boulder, CO has a limit of four unrelated people under one roof), mind you they are intended to prevent people from running brothels... but still

UK Plans Cyber Weapons Program 59

Posted by samzenpus on Thursday June 02, 2011 @03:15AM from the ministry-of-pointy-sticks dept.

An anonymous reader writes "The Ministry of Defence says they are working on a range of offensive cyber weapons to increase the country's defensive capabilities. The armed forces minister, Nick Harvey, says, 'The consequences of a well planned, well executed attack against our digital infrastructure could be catastrophic With nuclear or biological weapons, the technical threshold is high. With cyber the finger hovering over the button could be anyone from a state to a student.'"

Attachmate Fires Mono Developers 362

Posted by timothy on Tuesday May 03, 2011 @07:04PM from the and-there-there-were-none dept.

darthcamaro writes "Love it or hate it, Novell's open source Mono project has inspired a lot of debate over the last 7 years. Mono brings .NET to Linux, with some interesting patent connections. The project is now at a crossroads, with news today that Attachmate had laid off the US based development team for Mono."

Submission + - imslp.org Taken Down Thanks to MPA (imslpforums.org)

Submitted by dsavi on Thursday April 21, 2011 @03:35AM

dsavi writes: The International Music Score Library Project's website imslp.org (A library of public domain scores and recordings of classical music) has been taken down by GoDaddy per a DMCA takedown request from the Music Publisher's Association. According to the MPA, a score of Rachmanioff's Bells is under copyright in the US, while according to IMSLP it is most definitely not. A DMCA counter-notice has been issued to GoDaddy by IMSLP, unfortunately there is a ten-day waiting period before the domain can be restored. While the imslp.org domain is down, the music library can still be accessed at PetrucciLibrary.org. Anyone who is interested in helping with counter-suing the MPA can email imslproject at yahoo dot ca.

Submission + - Why use code version control for solo developing ? (a32.me)

Submitted by

ameoba32

on Thursday April 21, 2011 @02:57AM

ameoba32 writes: "Is it really useful to use source code management tools for solo developing ?"

Comment Re:Money (Score 1) 758

by kantos on Sunday March 27, 2011 @08:40AM (#35629094) Attached to: Expensify CEO On 'Why We Won't Hire<nobr> <wbr></nobr>.NET Developers'

I wish we had a score six to mod this too. As a .NET developer I agree that devs who only know .NET or Java or PHP etc. are a liability, we recently interviewed someone with extensive .NET experience, looked to be a good candidate too, and then we asked him about exception handling. He responded that anything that can throw should be wrapped in a try/catch block this answer was fine... although of concern. However what caused us to see other candidates was his reasoning "Because that's the way we've always done it where I work," a statement revealing how much he fundamentally didn't understand about what he was working with. While he was a perfectly fine technical coder he was under no circumstances an engineer. I think this is what the critically misguided CEO meant, however I still wouldn't work for someone that decides any technology is a liability, every technology has its purpose and to discount that as he has done is just idiotic

Submission + - Jack Thompson Threatens Gabe Newell Over HL2 Mod (escapistmagazine.com)

Submitted by

Anonymous Coward

on Thursday March 17, 2011 @06:45AM

Anonymous Coward writes: "Disbarred Jack Thompson is threatening Gabe Newell over a user mod called School Shooter, calling it a murder simulator and Columbine mod.

"Speaking for myself alone (for now), you have until five o'clock pm Eastern standard time this Friday, March 18, 2011, to shut down this public safety hazard I predicted years ago this school massacre game would arrive. I hate being right all the time.""

Submission + - Ubisoft Pirates their own soundtrack (arstechnica.com)

Submitted by kantos on Thursday March 17, 2011 @06:23AM

kantos writes: Ubisoft, well known for their draconian DRM recently released a 'Digital Deluxe' edition of their game 'Assassin's Creed Brotherhood' the edition comes with a soundtrack encoded by 'arsa13' and appears to come straight from a torrent.

Comment Re:Makes me glad I quit Windows years ago (Score 3, Interesting) 241

by kantos on Saturday February 12, 2011 @08:48AM (#35185400) Attached to: Looking Back At Microsoft's Rocky History In Storage Tech

Honestly.... this argument is stupid, Group Policy arose because on Windows everything is a COM object with an ACL and it was neigh impossible to manage to provide even a modicum of security without some sort of system policy at a high level. Linux of course doesn't need this because it operates in a fundamentally different manner where everything is a file and the file system permissions (group based) determine if a is executable or not. Thus the Linux kernel doesn't need to know what specific COM+ handler needs to be loaded, but rather if a file is a supported executable format or not, and what to do from there. Both systems have fundamental advantages, Linux is deceptively simple leading to a power on the command line that is daunting for many users. Whereas Windows can be easy worked with to extend using COM and the registry (The registry was never designed to hold most of the crap that people shove in there... it was designed to be a central repository of information for COM objects).

If anything this model shows MS's lack of foresight into the importance of networking and their focus on the single standalone box.

Slashdot Top Deals