Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!



Microsoft, Google, Others Join To Fund Open Source Infrastructure Upgrades

Antique Geekmeister Re:Ah industry initiatives. (96 comments)

Because the OpenBSD developers are ripping out the destabilizing cross-compatibility hooks. That means that cross-compatibility will be an afterthought, rather than a goal. If you've ever attempted to cross port OpenSSH to an unsupported platform, you'll know exactly the kind of work and maintenance pain this can create.

7 hours ago

OpenSSL: the New Face of Technology Monoculture

Antique Geekmeister Re:Is anyone surprised? (113 comments)

> The correct way to handle that is with rigourous and extensive test cases, not just closing your eyes and not updating.

Test labs and test time are quite expensive. Replicating the exact combination of tools you use in production, _with all possible current and new releases of all components_, is a task that quickly grows in a combinatorial fashion. This is not an SSL specific problem, this is a general software problem. A monoculture for development actually _aids_ this by following consistent API's and coding practices.

7 hours ago

OpenSSL: the New Face of Technology Monoculture

Antique Geekmeister Re:Is anyone surprised? (113 comments)

> it appears that everyone is reluctant to updates anything, ever

Fixed That For You.

You don't touch core, production libraries if you don't have to for stable code. And new features, enhancements, or portability often hurt the eize and performance of otherwise stable code.


Our Education System Is Failing IT

Antique Geekmeister Re:I blame Microsoft (301 comments)

One of the delights of working with Windows-only clients and partners is the opportunity to show them how things _really_ work. DNS, DHCP, LDAP, and Kerberos are all much better understood by the Linux and UNIX engineers who have been exposed to the protocols individually, rather than trained under the RFC violating enforced GUI of Active Directory servers.

Sadly for your case, if we'd like to discuss "over-priced software", I'm afraid that Cisco is a prime example of over-priced, arcane, single vendor lock-in.

2 days ago

General Mills Retracts "No Right to Sue" EULA Clause

Antique Geekmeister Re:Part of a bigger trend, sadly (88 comments)

> You can't sign away many such rights

You can make a contract for all _sorts_ of interesting things, including marriage and adoption. So yes, a contract that holds one party free from liability can be quite enforceable. The details of whether the protected party fulfilled their part of the contract is a critical facet of such a contract, as is the exchange of some benefit or privilege to the other party.

3 days ago

OpenSSL Cleanup: Hundreds of Commits In a Week

Antique Geekmeister Re:I would think (374 comments)

> Multiple eyes on code, security, these are things that are great about open source, except they aren't. This is a prime example of how bugs get through anyhow, major bugs. So it is now shown beyond a shadow of anyones doubt, open source is NOT superior in these respects.

Really, no. The horses are still pulling plows, and carts, and carriages, every day. The library is still in use in operating systems world wide.

This is more visiting the barn that had horses stolen and making sure the locks and doors actually work the way they should before it's trusted at all again.

4 days ago

Ask Slashdot: System Administrator Vs Change Advisory Board

Antique Geekmeister Re:Nonsense (293 comments)

> Any remotely well organised IT department will have processes for handling both emergency deployments and retrospective approval

Not when the architect is offline and is needed for every significant change. If there is going to _be_ a policy, a manager needs to be ready to enforce it, or it's going to be everyone making up their own undocumented and impossible to synchronize policies.

about a week ago

Lack of US Cybersecurity Across the Electric Grid

Antique Geekmeister Re:Why not a separate WAN? (95 comments)

> MOST of the critical infrastructure, the really important stuff, is NOT unprotected.

Yes, it has 95% coverage. Unfortunately, it's alike a dike against a flood. One weak spot and the intruders are in. The intruders don't even have to be clever, just persistent.

about two weeks ago

How 'DevOps' Is Killing the Developer

Antique Geekmeister Re:It's all about timeframes... (226 comments)

> Have you ever noticed that companies locate their research divisions away from the day-to-day operations divisions? It is to keep the timeframes separate.

No, it's turf building and budget protection. By segregating the developers from devops, devops can _hide_ their resources and keep them sequestered from developer requests. And putting the systems into a "requests go to managers, and only then to devops" makes the managers vital to allocating resources. It can protect their team from excess pecuniary demands, but far too often it's used to make the manager more important to the process than they should be, and grants them personal power over other groups' projects.

I've been documenting a tragic example of this for the past few weeks. I'm afraid the manager is in for a _big_ surprise when they find out that writing run books is their new highest priority, and their personal approval of run books is no longer expected.

about two weeks ago

How 'DevOps' Is Killing the Developer

Antique Geekmeister Re:Just because you can doesn't mean you should (226 comments)

I jump under desks! But I'm a very, very senior technologist, and I spend a lot of my time _teaching_ people how to do these things.

about two weeks ago

How 'DevOps' Is Killing the Developer

Antique Geekmeister Re:This role exists in any non-software business. (226 comments)

> This sysadmin/scripter/system architect/DBA

And then they stop doing _any_ of the tasks well. They don't show up for planning. they don't document their code, because "it's self documenting" or "documentation is unrelable". They say "Just Google It" when most of what is on Google about the task is _wrong_ and written by people who aren't aware of the subtleties. They refuse to mentor, because it keeps them away from the meetings where they can soak up and interfere in _every single groups's projects_ by citing standards that are only in their head, or worse, are only in the mental image of what other people remember they said once about something else.

One of the great pleasures of my professional life is finding these people and educating them in how _not_ to be a micro-managing block to everyone's work: it involves actually documenting the _working procedures_ for daily tasks so other people can do them. Many of them are afraid of the loss of control or possible errors, but the improvement in speed of daily procedures is enormously satisfying.

about two weeks ago

52 Million Photos In FBI's Face Recognition Database By Next Year

Antique Geekmeister Re:I grew a beard (108 comments)

No. It's not. The most effective and efficient forms map the face to a uniform shape, almost spherical shape, especially for 3D facial recognition. The resulting consistent transform is *edge* based, not 3d structure shaped. Anything that adds extra edges, or re-arranges them, like makeup that adds eyebrow like dark markings or makes the face strongly asymmetrical consuses the hell out of it.

about two weeks ago

The Security of Popular Programming Languages

Antique Geekmeister Re:Subtle attack against C/C++ (188 comments)

> C++ (and do a lesser extent C) lose support because of their extremely poor support for utf8.

That's because for most programming, UTF8 is not worthy of support. It's inconsistently used, it arbitrarily increases the of individual. It would be much safer used as only binary strings, not as actual characters which must be parsed and reformatted among different environments. The advent and popularity of UTF8 with its confusing and ill defined management of case and formally POSIX compliant operations such as file naming has effectively slowed system programming by many years.

about two weeks ago

How Does Heartbleed Alter the 'Open Source Is Safer' Discussion?

Antique Geekmeister Re:we don't know what happened AT ALL (582 comments)

> Actually it can't. That's kind of the point of git.

Unfortunately, many git users keep their SSH keys unencrypted on their local hard drives or on network accessible home directories. This means that a careless git admin may have their SSH keys stolen by quite amateur crackers, and leave the public repositories open to quite malicious changes. I've had precisely such discussions with personnel who insist that they trust the people they work with and they have a firewall, so they're not at risk.

about two weeks ago

Is Crimea In Russia? Internet Companies Have Different Answers

Antique Geekmeister Re:Ukraine's borders were changed by use of force (304 comments)

> And yes I think if Texas voted to join Mexico the USA would accep

Not a _chance_. Texas has oil, just like Iraq.

about two weeks ago

First Phase of TrueCrypt Audit Turns Up No Backdoors

Antique Geekmeister Re:Technically if an NSA backdoor existed (171 comments)

The NSA was _able_ put in back doors. According to the report, the build environments were not safe enough and well enough controlled, or verified, to _prevent_ back doors. Given the NSA's strong interest in having one, and their level of skill, I'm afraid I'd have to assume that they did, indeed, create one. Whether a system that is at risk of such a back door is good enough for personal or even business is something you'd have to decide on a personal basis.

It does seem a good step in the right direction for open source tools to _get_ a thorough security audit, rather than merely relying on "many eyes" to ensure security.

about two weeks ago

The Case For a Safer Smartphone

Antique Geekmeister Re:Time has come to programmatically disable featu (184 comments)

I'm afraid I've seen some very dangerous maneuvers of people pulling off to take a phone call. I'm afraid I've even done them when I was on call and on my way to an urgent job site, and had to reset my priorities for taking such calls.

about two weeks ago

The Case For a Safer Smartphone

Antique Geekmeister Re:Statistics (184 comments)

Zipcars are actually a problem this way. I've used them occasionally while traveling, and they've been quite useful. But as is inevitable when borrowing someone else's car, the controls are "intuitively" re-arranged into inconsistent confusion on most of the cars I've used. As a simple safety measure, I try to schedule the first 10 or 15 minutes of any car rental to just find all the controls: lights, emergency blinkers, parking brake, heat and air conditioning, emergency brake, getting the trunk and hood open, cigarette lighter sockets for power connections, radio controls, adjusting the seats, fuel and water and oil nozzles, console displays for fuel and temperature and speed, etc.

about two weeks ago

The Case For a Safer Smartphone

Antique Geekmeister Re:If you can learn to put a beer down while drivi (184 comments)

We need cars to have safe places to hold the cell phone, possibly tied to the car's audio. While many modern cars have a USB connection to the car stereo and for recharging a cell phone, there is no safe place to deposit your cell phone so it can continue to give directions or be voice controlled. The result is a mad scramble to put your phone down somewhere in the right orientation so it will continue to give good directions. Or worse, flailing around to run your finger across the "accept this call" slider without crashing the car. That part is not helped by voice->text systems, or an ear bud.

about two weeks ago



Twitter discards client UI community

Antique Geekmeister Antique Geekmeister writes  |  more than 3 years ago

Antique Geekmeister (740220) writes "Twitter has just decided to discard the community of developers who've created interesting, innovative, and exciting to start-up company applications. The announcement at http://groups.google.com/group/twitter-api-announce/browse_thread/thread/c82cd59c7a87216a?hl=en shows that they intend to switch from the "bazaar" model of development to the "cathedral", with much tighter control of user interfaces for "security" and "consistency"."
Link to Original Source

Oranges with THC Bio-Engineered

Antique Geekmeister Antique Geekmeister writes  |  more than 5 years ago

Antique Geekmeister (740220) writes "A biochemist, Irwin Nanofsky, irritated by the confiscation of his family car when his son was caught with drug paraphernalia in 1984, has wreaked biological revenge on Florida law enforcement 24 years later by developing, and releasing, fertile orange seeds for oranges that contain the major active ingredient of marijuana http://www.facebook.com/ext/share.php?sid=57839045341&h=3VR1O&u=IDqVi.

Revenge is a dish best served cold, in a tall glass, with a plate of waffles."

Link to Original Source


Antique Geekmeister has no journal entries.

Slashdot Account

Need an Account?

Forgot your password?

Don't worry, we never post anything without your permission.

Submission Text Formatting Tips

We support a small subset of HTML, namely these tags:

  • b
  • i
  • p
  • br
  • a
  • ol
  • ul
  • li
  • dl
  • dt
  • dd
  • em
  • strong
  • tt
  • blockquote
  • div
  • quote
  • ecode

"ecode" can be used for code snippets, for example:

<ecode>    while(1) { do_something(); } </ecode>
Sign up for Slashdot Newsletters
Create a Slashdot Account