Become a fan of Slashdot on Facebook


Forgot your password?
Check out the new SourceForge HTML5 internet speed test! No Flash necessary and runs on all devices. ×

Comment Re:Amiga did this back in the 80's! (Score 1) 47

By the time you get to AmigaOS 3.x (probably 2.x), an app author could choose to have their non-OS dependencies all relative to the app dir. The only exception was something that required a new hardware driver. Of course, there were a few large libraries (one add-on widget set, as I recall) that developers wanted to treat as a common resource.

The Amiga did "do that" to an extent, but the built-in OS functions were too sparse to avoid the developer interest in shared, third-party libraries and runtimes.

Comment Re:and it does not use systemD (Score 1) 47

"Monolithic apps" is nothing but a formal acknowledgement that the OS stops providing APIs at some boundary. This helps keep both the OS and the app(s) well-defined. What an app needs beyond that point should be supplied by the app's author. Windows follows this model to a certain extent as well as OS X.

OTOH, Linux distros have taken the management model for OSs internals and extended it into applications. This reduces the apps' integrity as a separate (if dependant) thing.

OS maintainers should not be meddling in app packaging to the extent they do on regular Linux distros. It means that every app must be chewed-up into little pieces and sprayed around different places in the filesystem. It means your app will be paired with library revisions it was never tested with, not just for traditional OS functions but also for a lot of the features that make the app(s) interesting. It means app developers have to track the developments in 1,000 different projects instead of worrying about Apple/Microsoft + the 4 extra libraries added to their app. This is one of the reasons Linux repels app developers, and people more intelligent than me, like Mark Shuttleworth, have complained about it for a long time.

Here is Ubuntu's solution -

Comment Re:sounds like Mac OS X app resources (Score 1) 47

I think both Qubes and Gobo are interesting, but to me Gobo's promise was about making the system more sane and manageable to both app developers and their users.

OTOH, this filesystem virtualization could be a nice compliment to AppArmor and maybe enhance security. The underlying problem remains, however: Relying on security features provided by a huge monolithic kernel is always a risky proposition. At the end of the day, I'll organize my computing by threat model (Qubes domains) instead of by convenience (OS X, Gobo).

Comment Re:Ironic (Score 1) 28

Probably because security (not just privacy) conscious Tor users were already resorting to platforms like Whonix, a VM that runs on Qubes OS. Think of it like "sandbox++".

The problem is that Qubes can be very finnicky about the hardware it runs on. It prefers to have equipment like an IOMMU, and if your game-o-tron "rig" has all that nice hardware in spades, the firmware will probably fubar it. If you have a Mac, USB hardware cannot be effectively isolated. Qubes usually travels "PC business class" for those reasons: Thinkpads, etc.

So offering garden-variety isolation (monolithic kernel sandboxing) is an accessible way to increase the security level of a privacy platform like Tor. Just don't expect that sandbox to be as strong as what Qubes offers (bare-metal hypervisor isolation).


AT&T Unveils DirecTV Now Streaming TV Service With Over 100 Channels ( 80

ATT has officially unveiled its DirecTV Now internet TV streaming service, which launches Wednesday, November 30th, in the U.S. on iPhone, Android, Amazon Fire TV, Chromecast, and PC/Mac, starting at $35 per month. The Verge reports: Like its over-the-top rivals, DirecTV Now will let customers stream live programming on smartphones, tablets, and PCs -- no cable box necessary -- and requires no long-term contracts or commitments. For a limited time, ATT will offer the "Go Big" channel tier with 100 channels for $35 per month. If you sign up in time, the offer will remain valid each month until you cancel. But that $35 rate is not the long-term pricing for 100+ channels. DirecTV Now offers step-up subscriptions that include other channels and content for a higher monthly cost. ATT has signed programming agreements with nearly all major networks with the exception of CBS and Showtime; negotiations with those companies remain ongoing. DirecTV Now allows customers to watch up to two streams simultaneously. HBO and Cinemax can be added to any of these packages for just $5 extra (each) per month. DirecTV Now is "zero rated" for the company's wireless customers, so regardless of how much time they spend streaming, that activity will have no impact on data usage for their monthly bill. Importantly, while these are the subscription rates as of today, the company is being straightforward about the possibility of increases in the future. ATT also plans to air original shows including a Taylor Swift series.

Comment Re:not nearly good enough. (Score 1) 39

Wifi equipment has started down a road of anonymization. Linux users have been tinkering with macchanger for a while (though not effectively enough to stop the native MAC address from popping up now and then). Apple made the first big splash when they made MAC randomization standard for scanning mode; Android copied that. Microsoft followed suit with a MAC randomization in more modes. Then the Linux folks finally did it right by building MAC randomization features into Network Manager. The idea, of course, is to keep the original MAC address suppressed.

Stay tuned for more.

Comment Whonix on Qubes OS (Score 3, Informative) 177

TAILS tries to provide anonymity within the context of kernel-based security, but browser and privilege exploits are quite plentiful and such malware can go on to reprogram your firmware and peripherals. Qubes provides better protection of the core system, and Whonix ensures that Tor is utilized in a way that's optimum for anonymity.

Slashdot Top Deals

The first time, it's a KLUDGE! The second, a trick. Later, it's a well-established technique! -- Mike Broido, Intermetrics