Follow Slashdot blog updates by subscribing to our blog RSS feed


Forgot your password?
Check out the new SourceForge HTML5 internet speed test! No Flash necessary and runs on all devices. ×

Comment Re: Thanks, *hats (Score 1) 73

I think the point is despite *trying* to design it 'secure it in the first place', there were failures. It's easy to criticize in hindsight, and claim that if they had just secured it *right* in the first place, this wouldn't be a problem, but it is disingenuous to say they didn't even try.

This is the crux of the problem for security. Even if you *try* to do it right, there is every likelihood that you will mess up. Even if you pull in a 'trusted security company' to audit your design, they'll frequently do an inadequate job because they lack expertise in what you are doing to credibly know if it is secure. They'll look for things that vaguely resemble other generic things and sometimes yell loudly about some non-issue that makes no sense in context, and at the same time completely miss glaring security issues.

Comment Re: Thanks, *hats (Score 1) 73

You cannot *prove* security. Security is not a set of absolute laws, it is a subjective call. There are of course some *limited* facets that are more concrete (buffer overruns are never good, for example), but security is a big thing that encompasses a lot and in fact two different approaches can both rationally call each other insecure and themselves secure, depending on perspective.

Comment Re: Were the users randomized? (Score 1) 501

You forgot installing weird things like asset management software and anti-virus, on top of being based on an enterprise distro with poor desktop support to start with, and *then* holding back updates on top of that.

Funny thing was, the anti-virus software at the time *only* supported detection of signatures of Windows viruses. They supported linux with the use case of a Samba file server to protect Windows clients, but they put it on all the linux desktops and sucked down tons of resources and brought things to a crawl.

It was the moment that I got a 'blessed' configuration of Linux to run on my laptop that I finally had some sympathy for Microsoft and how their platform is treated by vendors and IT departments and how much of MS 'badness' is due to preloads and IT department loads being very stupid. Of course Microsoft hasn't done any favors with poor QA on updates causing that mindset in the first place, but the avoidance is worse than taking the updates.

Comment Re:We Were Attacked! (Score 2) 74

The problem is this philosophy tends to create targets of great value by putting so much infrastructure into so few places.

It's been a curious development in the internet. In the 90s, there was a trend from walled gardens and centralized resources to more federated approaches. In the last decade, the trend has reversed.

We have increasingly powerful endpoint devices, even as their form factors have shrunk. This *should* have led to the reduction of the importance of 'datacenters', but now they are more important than ever *and* so much function has been consolidated into 3 or so companies, and a handful of physical locations.

Now it's not as bad if everyone at least had their infrastructure to bank on a couple of providers as you do (so long as they all don't bank on the *same* two, but generally there's only a couple of companies people go to.for services)..

In a decentralized case, a random entity is doubtlessly unlikely to withstand such an attack, but also they are far less likely to be the target of such an attack (being a bonus effect of taking down a target versus *being* the target).

Comment Two factors in effect... (Score 1, Insightful) 501

One, the Linux and Mac users are probably ones explicitly asking for it, meaning they care enough to request it specifically. Compared against the general population, the subset is going to be more experienced enthusiasts.

Two, one of the biggest enemies of Windows usability is corporate preloads. Botched updates, sometimes 5 or six anti-virus applications and multiple firewall and update managers installed haphazardly.

All that said, I'd still take Linux in a heartbeat, but still Windows to some extent suffers the downsides of its own success.

Comment Re:Clever design (Score 1) 269

Possibly true, but better graphics and more horsepower does not automatically makes for better games. It is all about FUN, first and foremost. A bad game with great graphics and more particle effects is still a bad game.

Two of my favorite games are still Fallout 1 and 2. They play great on a 100 MHz Pentium. Add a patch to support wide-screen monitors, and the games are still every bit as fun today as it was 18 years ago. The graphics still look pretty good, and the story-telling and gameplay have not aged at all.

Slashdot Top Deals

If you're not careful, you're going to catch something.