dayid - Slashdot User

Comment Re:Package management status? (Score 1) 178

by dayid on Monday October 19, 2009 @06:03PM (#29800861) Attached to: OpenBSD 4.6 Released

With your $PKG_PATH set properly, you install a program:
pkg_add program

To update a program:
pkg_add -u program

To delete a program:
pkg_delete program

To update all your installed programs:
pkg_add -ui -F update -F updatedepends

There's a lot more utility to it, but that's more than the basics that most will need to "get them started".

Comment Re:Still no torrent? (Score 2, Informative) 178

by dayid on Sunday October 18, 2009 @09:56PM (#29788823) Attached to: OpenBSD 4.6 Released

For those that need a bootable CD for their system, bootdisk ISO images (named cd46.iso) are available for a number of platforms [...]. ...

Comment Re:Still no torrent? (Score 2, Informative) 178

by dayid on Sunday October 18, 2009 @09:40PM (#29788725) Attached to: OpenBSD 4.6 Released

Except if you're following installation directions (and for some reason not using bsd.rd, etc, to install), you would be downloading the 6MB cd64.iso, not the 200MB install46.iso. http://www.openbsd.org/faq/faq3.html#ISO

Comment Re:Where's the song? (Score 4, Informative) 178

by dayid on Sunday October 18, 2009 @09:34PM (#29788707) Attached to: OpenBSD 4.6 Released

Right here: http://openbsd.org/lyrics.html#46

Comment Re:Still no torrent? (Score 1) 178

by dayid on Sunday October 18, 2009 @09:13PM (#29788585) Attached to: OpenBSD 4.6 Released

The x86 install disk is less than 6MB. Maybe when they have 4GB DVD iso's available like FreeBSD they'll feel the pain and go torrents?

OpenBSD 4.6 Released 178

Posted by kdawson on Sunday October 18, 2009 @08:33PM from the onward-and-upward dept.

pgilman writes "The release of OpenBSD 4.6 was announced today. Highlights of the new release include a new privilege-separated smtpd; numerous improvements to packet filtering, software RAID, routing daemons, and the TCP stack; a new installer; and lots more. Grab a CD set or download from a mirror, and please support the project (which also brings you OpenSSH and lots of other great free software) if you can."

Comment Re:Obligatory (Score 1) 299

by dayid on Saturday February 07, 2009 @02:40PM (#26765479) Attached to: Passwords From PHPBB Attack Analyzed

But I thought "one two three four five" as a combo meant "24445" no?

Comment Editor Rosetta Stone (Score 1) 1131

by dayid on Monday February 02, 2009 @02:10AM (#26690885) Attached to: Favorite text editor?

I'd love to see any of you using "alternative" text editors help me update this page (or make me aware if a better copy exists): http://www.dayid.org/os/notes/editors.html

If IP Is Property, Where Is the Property Tax? 691

Posted by kdawson on Tuesday February 26, 2008 @09:36PM from the making-the-world-safe-for-mickey dept.

nweaver writes "In a response to the LA Times editorial on copyright which we discussed a week ago, the paper published a response arguing: 'If Intellectual Property is actually property, why isn't it covered by a property tax?' If copyright maintenance involved paying a fee and registration, this would keep Mickey Mouse safely protected by copyright, while ensuring that works that are no longer economically relevant to the copyright holder pass into the public domain, where the residual social value can serve the real purpose of copyright: to enhance the progress of science and useful arts. Disclaimer: the author is my father."

Sneak Peek at Windows Server 2008 295

Posted by ScuttleMonkey on Monday February 25, 2008 @07:09PM from the still-fighting-the-fight dept.

stinkymountain writes to tell us that NetworkWorld got their hands on Microsoft's latest addition to the server OS market and had a chance to poke around inside Windows Server 2008. It seems that the new release is a vast improvement over older versions in both security and performance but still lacking in several key areas. "There's even a minimalist installation called Windows Server Core that can run various server roles (such as DNS, DHCP, Active Directory components) but not applications (like SQL Server or IIS dynamic pages). It's otherwise a scripted host system for headless operations. There's no GUI front end to a Windows Server Core box, but it is managed by a command line interface (CLI), scripts, remotely via System Manager or other management applications that support Windows Management Instrumentation (WMI), or by Remote Terminal Services. It's also a potential resource-slimmed substrate for Hyper-V and virtualization architectures."

Why Old SQL Worms Won't Die 64

Posted by ScuttleMonkey on Monday February 25, 2008 @04:31PM from the looking-for-a-user-security-patch dept.

narramissic writes "In a recent ITworld article, Security researcher Brent Huston ponders how it is that versions of SQL worms dating back to 2002 represent nearly 70% of all malicious traffic on the Internet today. 'I have made a few attempts to backtrack hosts that perform the scans and at first blush many show the signs of common botnet infections. Most are not running exposed SQL themselves, so that means that the code has likely been implemented into many bot-net exploitation frameworks. Perhaps the bot masters have the idea that when they infiltrate a commercial network, the SQL exploits will be available and useful to them? My assessment team says this is pretty true. Even today, they find blank "sa" passwords and other age-old SQL issues inside major corporate clients. So perhaps, that is why these old exploits continue to thrive."

IPv4 Address Crunch In 2 Years, IPv6 Not Ready 539

Posted by kdawson on Friday February 22, 2008 @10:01AM from the told-ya dept.

An anonymous reader writes "We've known for ages that IPv4 was going to run out of addresses — now, it's happening. IPv6 was going to save us — it isn't. The upcoming crisis will hit, perhaps as soon as 2010, but nobody can agree on what to do. The three options are all pretty scary. This article covers the background, and links to a presentation by Randy Bush (PDF) that shows the reality of the problem in stark detail."

Cold Reboot Attacks on Disk Encryption 398

Posted by CmdrTaco on Thursday February 21, 2008 @12:40PM from the wont-someone-please-think-of-the-bits dept.

jcrouthamel writes "Contrary to popular assumption, DRAMs used in most modern computers retain their contents for seconds to minutes after power is lost, even at operating temperatures and even if removed from a motherboard. Although DRAMs become less reliable when they are not refreshed, they are not immediately erased, and their contents persist sufficiently for malicious (or forensic) acquisition of usable full-system memory images. We show that this phenomenon limits the ability of an operating system to protect cryptographic key material from an attacker with physical access. We use cold reboots to mount attacks on popular disk encryption systems — BitLocker, FileVault, dm-crypt, and TrueCrypt — using no special devices or materials. We experimentally characterize the extent and predictability of memory remanence and report that remanence times can be increased dramatically with simple techniques. We offer new algorithms for finding cryptographic keys in memory images and for correcting errors caused by bit decay. Though we discuss several strategies for partially mitigating these risks, we know of no simple remedy that would eliminate them."

Largest Hacking Scam in Canadian History 211

Posted by CmdrTaco on Thursday February 21, 2008 @10:27AM from the stole-all-the-maple-syrup dept.

vieux schnock writes "Police raided several homes across Quebec on Wednesday and arrested 16 people in their investigation, which they say uncovered the largest hacking scam in Canadian history. (...) The hackers collaborated online to attack and take control of as many as one million computers around the world that were not equipped with anti-virus software or firewalls."

Chroot in OpenSSH 62

Posted by ScuttleMonkey on Wednesday February 20, 2008 @02:48PM from the making-life-easier-always-my-goal dept.

bsdphx writes "OpenSSH developers Damien Miller and Markus Friedl have recently added a nifty feature to make life easier for admins. Now you can easily lock an SSH session into a chroot directory, restrict them to a built-in sftp server and apply these settings per user. And it's dead simple to do. If you need to allow semi-trusted people on your computers, then you want this bad!"

Slashdot Top Deals