Borland, Farewell my sweet.
http://pgregg.com/blog/2009/05/borland-farewell-my-sweet.html
6 publicly visible posts • joined 18 Jan 2008
"Obviously the cost of server space and CD imprinting will be minimal if they have made 1,000,000 physical copies @ 50p per CD and case then we're looking at £2,500,000 which sounds a lot, but I am probably over pricing the manufacturing costs (anyone know better?)."
This is so far out of the ballpark it isn't funny.
Way back when Freeserve happened, I had 25,000 CDs (Internet explorer / ISP sign up CDs) produced for a different free ISP. Net cost per CD was 5p per CD including 2 colour surface printing. 3p/CD was available when manufacturing more than 100,000 units.
Throw in paper booklet and plastic case for another 3-5p and you have a maximal cost of 10p per unit.
Most of the commenters show the same level of intellectual awareness as the original story's author. Perl isn't a magic wand here - if you had looked, the server runs Suhosin which will take care of variable injections and other potential exploits.
I posted a rebuttal to the story 2 hours after this article was posted (not sure why the main story claims Gilbertson responded) unless he emailed and they El Reg doesn't read comments.
http://pgregg.com/blog/2009/03/tinyurl-php-flaw.html
Paris, because she is smarter than several commenters.
SERVER settings showing root is entirely normal. All webservers in unix, because they bind to port 80, need to be launched as the root user after which the application (web server software) switches to a less privileged user (such as apache, nobody or httpd).
Try it yourself - check your own phpinfo() - your own server shows much the same.
In other words - the security claims are without foundation.
To tinyurl's credit they are running Suhosin - a PHP hardening patch/module.
Paul Gregg
Yes, thats broken too.... all those freebies given out to convince the Hyper-V maybes that VMware is better are now broken as well... Shot themselves in the foot there.
PG
Paris because she is high Quality Ass(urance)
(no, I don't mean that, honest)
Or what they *did* do:
5. Panic* over MASS, and other governments, declaring that only Open Formats would be acceptable, so forcing Microsoft's hand into adopting an Open Standard like XML (which is only a description of how the data is constructed in the file). But since we're Microsoft and we can't be using none of that ISO-approved open formats, we'll just invent our own OOXML format so yes, sure, you can read the format, but we sure as hell aren't going to tell you how to make an OOXML document fully with all the MS Office bells and whistles (oh, and we'll also have the ability to add proprietary shizzle).
* http://www.theregister.co.uk/2005/09/01/mass_open/
* http://www.theregister.co.uk/2005/11/22/microsoft_opens_formats/