Beta

×

Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

Comments

top

Ask Slashdot: Is Running Mission-Critical Servers Without a Firewall Common?

smash Re:Firewalls are overrated and misunderstood. (340 comments)

And to clarify - yes you need to open ports on the box, of course to provide services. But there is zero reason that you should be enabling non-user facing traffic to be sent or received to/from the box from end user machines.

2 days ago
top

Ask Slashdot: Is Running Mission-Critical Servers Without a Firewall Common?

smash Re:Firewalls are overrated and misunderstood. (340 comments)

A firewall can be useful to limit the spread of malware on your internal network. The days of relying on an edge firewall only are over.

2 days ago
top

Ask Slashdot: Is Running Mission-Critical Servers Without a Firewall Common?

smash yes it is common (340 comments)

... because muppets pretending they know how to adminster a network are common.

Don't be a muppet. Limit the spread of malware on your network as much as possible by only opening things that need to be open, to places they need to be open to. There is ZERO reason, for example (plucked at random to illustrate a point), for your end user PC network being able to directly connect to SMB on your SQL server, for example.

Yes, in theory they need credentials to do that. But why leave it open to anyone who obtains credentials when you can be more pro-active about defending the box?

2 days ago
top

Linus Torvalds: "GCC 4.9.0 Seems To Be Terminally Broken"

smash Re:I know you're trying to be funny, but... (728 comments)

"I have a copy of phpnuke/moodle/wordpress running in my bedroom" != server.

And yes, active directory is a big reason enterprises are Windows focused.

It's 20-fucking-14 and the Unix world still doesn't have an out of the box working directory service. No, i don't want to create my own LDAP schema and fuck with kerberos and PAM.

No, NIS+ is not a replacement.

4 days ago
top

Linus Torvalds: "GCC 4.9.0 Seems To Be Terminally Broken"

smash Re:Technical Merit really overrated (728 comments)

No... ISA was a pretty shitty bus even in it's day. Compare to Zorro in the Amiga, which was fully plug and play from the outset.

4 days ago
top

Linus Torvalds: "GCC 4.9.0 Seems To Be Terminally Broken"

smash Re:Technical Merit really overrated (728 comments)

Yes, technical merit is important, but it is not the most important factor for most software

In every case you mention, I think you'll find the deciding factor was support. DOS won because it ran on any shitty generic PC clone. Windows won because of software support. Office won due to platform support for integration with other MS products. X86 won due to software support. ISA won due to industry support from multiple vendors. DirectX "won" (well, not really OpenGL is still alive and well for non-windows platforms and killing it in mobile with ES) due to MS platform and developer support.

Something to note for those in the Linux community who decide to flame people who are just trying to get their shit to work. Support will make or break your product, especially for business. It can have the shiniest bells and most aurally seductive whistles known to man, but if Bob at Initech can't call on someone when it breaks and actually get help, rather than insults, then it will not fly.

Even worse when the developers are actively hostile to particular classes of user (looking at you, Firefox).

4 days ago
top

Linus Torvalds: "GCC 4.9.0 Seems To Be Terminally Broken"

smash Re:I know you're trying to be funny, but... (728 comments)

And this kids, is why Linux will never enjoy significant market share on end user devices.

And yes, I'm sure someone will mention Android. Yeah sure, it's Linux. Just keep telling yourself that.

4 days ago
top

Linus Torvalds: "GCC 4.9.0 Seems To Be Terminally Broken"

smash Re:I know you're trying to be funny, but... (728 comments)

Nothing, unless they want people to actually contribute and spread the word. 1 user who gets screwed by an update = a heap of people told about how linux still isn't ready for prime time, and the support forums are full of assholes.

Does wonders for enticing companies to provide platform support.

4 days ago
top

Linus Torvalds: "GCC 4.9.0 Seems To Be Terminally Broken"

smash Re:I know you're trying to be funny, but... (728 comments)

Modded troll, but it's pretty true, albeit derogatory towards the second half. In the above time-frame, I've seen nowhere near as much breakage in FreeBSD. FreeBSD even ship compatibility shims in the ports system to enable older applications to work. Microsoft has managed compatibility far better, even apple has done a far better job, and they're probably the most likely vendor to break user-space apps out of the lot.

The above poster also forgot the ipfwadm/ipchains/iptables/nftables debacle - sure, FreeBSD has multiple firewalls but they're all supported and not deprecated from release to release.

4 days ago
top

Firefox 33 Integrates Cisco's OpenH264

smash Re:bad for standards (194 comments)

OGG was too late. You don't just need to be open, you need to be solving problems that weren't solved years ago. MP3 was good enough. There are better replacements, but the hardware support hit the ground way before ogg or any of the alternatives were ready. People ripped all their stuff to mp3 way before the alternatives were ready.

The Vorbis/Vp8 guys don't need to be competing with h.264. That ship sailed years ago. They need to be beating the next generation of codec.

about a week ago
top

Firefox 33 Integrates Cisco's OpenH264

smash Re:bad for standards (194 comments)

Fact: If you do not allow commercial use of the code, your codec will fail. Open software no one uses that doesn't work with anything open software that can also be used commercially.

about a week ago
top

Firefox 33 Integrates Cisco's OpenH264

smash Re:Blindly trusting Cisco? (194 comments)

If you don't trust Cisco you better get off the internet. Seriously, if you're worried about this, a binary blob running in your web browser is the least of your problems. There's a very good chance that the network hardware at your ISP is Cisco. If it's not, it will likely be Juniper.

about a week ago
top

Firefox 33 Integrates Cisco's OpenH264

smash Re:cave in (194 comments)

so mozilla gave up, to make the web a better place?

Fixed.

about a week ago
top

Firefox 33 Integrates Cisco's OpenH264

smash Re:bad for standards (194 comments)

If the open source world releases something (unencumbered with the GPL - i.e., BSD licensed) with encoding and decoding tools that actually works as well or better than the closed alternative, in a timely manner then I'm sure people will use it.

It will never happen. Get used to it. There is far, far less complex stuff in the free desktop that has been broken for the past 20 years and still not fixed.

about a week ago
top

Firefox 33 Integrates Cisco's OpenH264

smash Re:Great (194 comments)

If you think CIsco need to backdoor your browser to own all your shit, you are tragically naive.

about a week ago
top

Firefox 33 Integrates Cisco's OpenH264

smash Re:Trusting a binary from Cisco (194 comments)

Why the fuck would they bother, when they can just do that to all of the backbone routers you use?

about a week ago
top

Ask Slashdot: Unattended Maintenance Windows?

smash Re:If the machine is virtual.... (265 comments)

"It boots" does not necessarily constitute success. You really need a test environment. There's no real getting around it.

about three weeks ago
top

Ask Slashdot: Unattended Maintenance Windows?

smash Re:Nope. (265 comments)

That example was due to incompetence, not due to automation. Whilst recover from that would be a pain in the ass, if you are unable to recover at all, you have a major DR oversight.

about three weeks ago

Submissions

top

www.google.com blocked by Microsoft Anti-Malware products

smash smash writes  |  more than 2 years ago

smash writes "It would appear that a recent definition update or change to www.google.com has caused the site to be registered as a (false?) positive for Blacole.BW a javascript exploit. So far, it looks like at least Forefront TMG malware inspection, and Microsoft Security Essentials are affected."
Link to Original Source
top

Congress wants to spy on your internet

smash smash writes  |  about 3 years ago

smash writes "Taking a leaf from Steven Conroy's book, the US congress wants to spy on its citizens internet usage under the premise of going after child pornographers. But of course everyone else's browsing will be under surveillance as well. Won't somebody think of the children?"
Link to Original Source
top

What if the internet was turned off?

smash smash writes  |  more than 3 years ago

" rel="nofollow">smash writes "With recent actions by the government in egypt to turn the internet off in the face of revolution, what would you lose if access to the internet was turned off? With everything moving to IP (voip, video, online banking, e-mail, news delivery, internet radio, etc) just how stranded would you be if it was to all be turned off?"
top

Internet Explorer 9 released

smash smash writes  |  more than 3 years ago

smash writes "Whether you hate IE or not, the good news is that IE9 final is finally out. With newer Microsoft produts (eg, Sharepoint 2010, FOPE, etc.) dropping IE6 support the availability of an IE that is finally at least somewhat standards compliant and with improved performance is surely a good thing."
Link to Original Source
top

internet explorer 9 beta is out

smash smash writes  |  more than 3 years ago

" rel="nofollow">smash writes "Internet Explorer 9 beta was just released into the wild, bringing a first real test-drive of vastly improved standards compliance and an accelerated rendering pipeline to those stuck in environments that include software that mandates internet explorer. Whilst its not ever likely to be a slashdot crowd favorite, improved standards compliance can't be a bad thing."
Link to Original Source
top

Australian internet in safe hands

smash smash writes  |  more than 4 years ago

smash writes "Senator Conroy, Australia's minister for communications recently demonstrated his fine understanding of internet service delivery and his powerful command of the english language in a recent communique to the Australian people. Australia LOL'd."
Link to Original Source
top

how to market music, by trent reznor

smash smash writes  |  more than 4 years ago

smash writes "How to Destroy Angels is a new band featuring Trent Reznor of Nine Inch Nails fame. The first EP is available as a free MP3 download, 2 dollar upgrade for downloadable high-def, or free with any other merchandise purchase. Given that the distribution cost for the album is pretty close to free, the pricing seems fair. Is this the future distribution model for entertainment media? How can traditional publishers expect to charge physical media distribution prices for digital downloads, when any artist can set themselves up to distribute via the internet like this?"
Link to Original Source
top

$40k per URL for aussie web filter

smash smash writes  |  more than 4 years ago

smash writes "After several years of debate and electioneering, some statistics on the Australian national web filtering effort have been disclosed. Apparently, the typical Aussie web surfer is 70 times more likely to win the national lotto than stumble across a blocked page. Additionally, despite the claim that the main aim of the filter is to block child pornography, only 313 of the 977 total sites blocked is on the basis of child porn. At $40m AU so far in taxpayers funds, the cost so far is around $40,900 per blocked URL. Government efficiency at work..."
Link to Original Source
top

Nine inch Nails ditch label

smash smash writes  |  more than 6 years ago

smash writes "After much public comment on the record industry in general and and his label in particular, barely a week after Radiohead, Trent Reznor has ditched his label and will focus on sales via the net. Read the scoop here. Is this the beginning of the end for the RIAA?"
top

The polling poll poll.

smash smash writes  |  more than 6 years ago

smash writes "Did you tell the truth on the slashdot polling poll?

  • yes
  • no
"

Journals

top

2006

smash smash writes  |  more than 8 years ago Well, time for my bi-annual journal update...

Since last post, I've quit my old job, worked freelance for 6 months, scored a new job, and just about gotten myself out of debt :)

I'm not working on a remote minesite, doing all sorts of geek stuff, ranging from wireless networking, to PABX configuration, to AD administration, to firewalling, to maintaining a large cisco spanning tree ethernet network, etc.

All good fun and a huge learning opportunity.

Looking to actually do some courses at some point in the near future, with a view to actually *learning* stuff i don't yet know, as opposed to just scoring paper certs for stuff I can do in my sleep.

Considering Java app development, as it seems to be fairly multipurpose, and well entrenched.

In my spare time, I've decided to get into club level motorsport - JDM spec Nissan 180sx with around 300hp at the rears, coilovers, sway bars, etc, etc...

And that's pretty much it.

Will try to update this more regularly :)

smash.

top

moving right along...

smash smash writes  |  more than 9 years ago Well, time to get another job. Just recently handed in my notice, I've had enough.

Not really much more to add, my last day is next friday. Anyone looking for a unix/networking guy in the Perth, Western Australia area (part time work preferred, starting my own business), please feel free to email me :D

top

IPsec under BSD - update

smash smash writes  |  more than 11 years ago Well, so far so good.

The wireless IPsec link has been working flawlessly - the only problems I have encountered so far have been key lifetimes (they're too far short by default), and a power outage. The link is point to point via a middle hop, and this device is in another companies office.

They had an extended power outage the other day, and comms were lost...

Not too bad - over 3 months uptime without a hiccup :)

I'm still halfway through writing up the documentation - it will be linked here when its finished.

top

IPSec in FreeBSD

smash smash writes  |  more than 11 years ago Well, I've been setting up a wireless link between 2 of our offices at work lately, and I don't trust WEP encryption anymore than I trust Microsoft IIS, so I've been playing with IPSec in tunnel mode under FreeBSD.

Each end of the link is run by a Linksys WAP11 access point, hooked up to a FreeBSD firewall box running IPSec in tunnel mode.

The IPSec documentation is a little confusing on this type of setup, as it goes on about setting up a gif interface to use for tunnelling, however as far as I can see, its not required.

In my situation, instead of setting up a gif interface, I simply ended up using the NIC connected to the wireless bridge in its place - running tcpdump on either end is showing the packets as being ESP encrypted, so as far as I can see it all looks sweet.

Think I'll try putting together some documentation on it and submitting...

top

FreeBSD 5.0

smash smash writes  |  more than 11 years ago Well, I downloaded and installed FreeBSd 5.0 the other day, and it seems that the installer is a little bit screwy - in particular, it failed to newfs my /var slice, and as a result it wasn't mounted, and /var was unpacked under the root.

I rebooted, manually newfs'd and moved /var from the root to it, but I'm guessing some permissions didn't come across properly, as X, and vi complained about access to /var/tmp.

Couldn't be bothered sorting it out, and went back to 4.7 for the time being...

Think I'll wait for 5.0.1 or 5.1 - some of the new features are very enticing (proper threads, devfs, etc), but for the time being, 4.7 works well enough for me :)

Slashdot Login

Need an Account?

Forgot your password?
or Connect with...

Don't worry, we never post anything without your permission.

Submission Text Formatting Tips

We support a small subset of HTML, namely these tags:

  • b
  • i
  • p
  • br
  • a
  • ol
  • ul
  • li
  • dl
  • dt
  • dd
  • em
  • strong
  • tt
  • blockquote
  • div
  • quote
  • ecode

"ecode" can be used for code snippets, for example:

<ecode>    while(1) { do_something(); } </ecode>