If you actually spend some time configuring SELinux policies, you can actually make it so that the mysql daemons are unable to write to the configuration file even if they have UNIX permissions. The whole point of SELinux is to lock down everything at the OS level.
3136 posts • joined 12 Oct 2007
That should avoid modifying configuration files.
iOS rollback is supported, as long as the previous version is still being signed by Apple.
Re: Early adpoters beware
Unlike Windows 10, iOS only nags you to update, but you can happily say no and the device will honor your decision.
In this case, iOS hasn't even told me to update at all. I guess it isn't yet being pushed for the same reason most people avoid x.0 releases.
Basically, I can break out of the VM by running DOS and hacking up a program with DEBUG?
Re: Ah the joys of segmented memory
My first assembly programs were written in TASM, targeting 16-bit x86. Ah, the memories...
I've always feared this could happen once your tokens start living in a device that can potentially have its entire contents dumped. By the way, some entities that shall remain unnamed do indeed activate PIN mode, but they restrict said PIN to a 4-digit code. This, coupled with the "parity" check means that you can quickly narrow down to a few possible PIN candidates and just try those ones until you hit the right one.
And that's assuming they didn't nab your PIN as well by pulling off those nifty phishing app tricks.
I'll keep my physical tokens, thank you very much.
Re: What does "Bing" mean?
Bing is (or used to be) an ice cream parlor franchise in central Mexico. Haven't seen much of those lately.
Re: Nanny Microsoft strikes again
The reason for the silence is he asked Microsoft shills to answer and there aren't any here.
Still haven't stumbled into TheVogon, eh? That's only the most known one. There are many more out there. I guess they're sleeping or too busy shilling on other articles...
Re: Phone Security
Ah, the MS shill chimes in.
No, they weren't able to hack her Blackberry. They did hack her other handset, a Nokia 6260 Slide. The Blackberry Z10 wasn't.
Re: Phone Security
Blackberries are used by top level government officials. The surface area may be small, but there is definitely an interest in hacking these devices.
The NSA was unable to hack Angela Merkel's Blackberry. That should show how well they fare.
Dear Mr. Comey
We already had this adult conversation. Secure backdoor is an oxymoron. We've shown the math and science behind it. Give it up.
Re: "Public utilities and government agencies are better at handling"
Evidently. you never lived in a country where there was a state monopoly over telecommunication.
Privatization kind of worked.... but only when Telmex started getting real competition. Even then, competition was mostly on large cities, while the rest of the country remained with awful customer service. At my mom's town, getting a new landline = 30 days. At Mexico City, 24 hours or less. But oversubscription is an issue everywhere, with varied results:
Telmex: Get a real IP, low latency, you might get your full Mbps but most of the time it will drop to 50%.
Cable co's: Get CGNATted IP, high latency, traffic shaping and all the awful crap Comcast was doing in the US before the FCC slapped them. (Worst. Experience. Ever.)
Axtel: Get a real IP, low latency, mostly high data rate. Coverage is still limited to major cities, and even then it might not be available in your neighborhood.
Totalplay: No idea if they do CGNAT, low latency, high data rate. Only available in major cities.
The main difference between Mexico and the US is that most of the country is covered by Telmex, which isn't stellar, but at least it isn't trying to screw over their customers. In the US, the cable co's are the ones covering most of the country, and they DO want to screw over their customers. Which is why municipal broadband sounds like a far better option.
Seems Facebook forgot that one of WhatsApp core values was not to sell out your data. They even stated that's why they would charge for their service.
Serves me right for not leaving when they were purchased!
The update is broken, and thanks to Microsoft you can't avoid it!
Maybe the H/W manufacturers need to look at setting up a consortium to deliver OSs for both PCs and phones that they can shape to what they perceive to be the market's needs.
They did. It was called Symbian, and was the most popular OS before Nokia made the "smart" move of taking over Symbian. Then all the smartphone manufacturers decided to flock somewhere else, and Android ended up being the replacement OS.
Even then, Symbian was moving into an interesting direction up until the Elopocalypse. Proof? Symbian Belle had rave reviews.
I still need it. Do I still get the option to use the plugin?
Brennan seems to have missed them. Because they aren't based in the US and are definitely not theoretical.
Re: What's all this then? @Paul
I was thinking of Thales as soon as I read this article. Though I thought Thales was a French company?
But yeah, I even remember reading that the French president uses a Thales secure smartphone because the French also don't trust US hardware.
Apple already needs a decent replacement for HFS+, so it'll definitely make its way to OS X.
Oh well, at least they're doing it
One of our major complaints w.r.t. OSX (I refuse to use the awful name they cooked up) has been HFS+ being stuck in the mid-90s. Sure, it supports a lot of UNIX-style stuff, but it still suffers from issues I hadn't seen in other OSes since the FAT32 days.
It was sad that Apple didn't go for ZFS; it could've been a good replacement for HFS+. But now that they're rolling out their own next-gen filesystem, things may finally move into the 21st Century.
They did eye ZFS as an HFS+ replacement. Oracle gobbling Sun put an end to that jump. MacZFS and O3X actually derived their code from the original 10.6 beta port by Apple.
No, I don't really dislike rebranding as MacOS ... after all, it was called MacOS X up until recently. Reviving the "Mac" part and getting rid of the X isn't an issue.
But why, WHY did they put that lame lowercase gimmick on the name?!?!
Still playing catchup with the superior architectures from the 90s?
Indeed. x86 has always been the lesser capable architecture out there.
Re: Yeah, but times change
Well, the most recent MS Borging was that of Nokia's phone division, so it still kind of applies. And in true MS fashion, they killed the company they borged, which fortunately was only the Elop-firebombed Nokia's phone division.
Re: Just curious ... how many commentards here
If you start (as I do) from the premise that the "classic" username+password authentication paradigm is broken, then you have to accept we need something new.
It is, but that's an argument for 2FA, not for some mumbo jumbo voodoo crap replacing the password. There's already a workable solution for higher end smartphones: the fingerprint reader. And I still get the ability to use the password if I need to.
Re: Time to move away from Android to something else then?
iOS, Sailfish, BB10...
Re: Anyone that can stand 10 seconds or more
I did manage to listen 2 full minutes of this ... but that was because I was laughing my ass off and couldn't reach the laptop.
Re: De Icaza's love affair with Microsoft is not new
It pretty clear you have no idea of what COM and ActiveX really are. Hint: they are not just IE plugins...
No, they're just propietary cruft frameworks that happen to work only in the MSFT garden.
.NET equivalents to the COM part (COM+, I think?) were less ugly but it was notorious that the .Net runtime was heavily tied to the Microsoft ecosystem. Want to use LDAP for your IIS authentication? Well, you have to build your own MembershipProvider and RoleProvider implementations. We only do AD.
But ActiveX? Seriously? That thing was the number one security risk on the web. People may be snarky about Java, but at least the Java framework has builtin security sandboxes. ActiveX was infamous for giving full control with no means of sandboxing untrusted code.
Re: open source people universally hate Miguel.
Back in 1999, de Icaza was hailed as a hero, especially within the Linux community in my country (Mexico). Sure, I preferred KDE over Gnome, but it was interesting to see the guy pretty much lead one of the main desktop managers in Linux.
Then it started getting weird with Mono. Why the hell would anyone want to push a Microsoft-centric platform on Linux? If you're going to do pirated Java, do straight Java (and no Miguel, Java isn't the problem. It was the holes punched through by Sun to add extra stuff that caused all those vulns.) Then the Xamarin vs. KDE stuff. Then his actual pushing for propietary over FOSS. I can't remember if it was his praising of OOXML or the propietary over FOSS thing that ended up losing my respect for him, but I can say that it's been a long time since he stopped being praised by us.
His jump into MSFT is simply showing that he has indeed turned to the Dark Side. :(
Chances are that if you're managing a corporate IT network, that's the real main repository.
Re: Can we have?
LDAP. It's what most companies do. Pretty much any authentication platform has LDAP integration and thus can use LDAP as their main authentication registry.
AD is basically the usual renegade Microsoft implementation of usually open protocols, in this case it's LDAP and Kerberos v5.
So Ted "kill the gays and nuke Syria" Cruz would be running with Carly "I trashed HP" Fiorina? Interesting. Whatever positive points Cruz might get for being "not Trump" will be countered by choosing iCarly.
Microsoft is only giving itself bad PR with the stupid nagware thing. Just stop it, MSFT, fix your current OS instead of trying to force it on everyone else.
Give us an option to disable that stupid Metro GUI thing. It's less annoying in W10, but it still manages to screw up things.
Maybe then you'll start getting voluntary upgrades!
Re: Banks? Security?
Bad enough that my bank STILL refuses to make passwords case sensitive, or allow "Special" characters.
That's a problem everywhere, and the sad thing is that I know why this is the case.
RACF has issues with non-alphanumeric characters due to ASCII/EBCDIC.
Many bank systems do RACF authentication. Therefore, bank password policies won't allow non-alphanumeric password.
Client-facing systems don't authenticate clients against RACF. Yet they're also saddled with the same password policies because having a single policy for everything is easier!
Re: @Daniel B
While contention can get you out from serving 100% all the time, having data rates dip to 20% most of the time should be frowned upon. I don't expect my current 10Mbps DSL to run at 10Mbps all the time, but neither do I expect it to run at 2Mbps most of the time. Especially when they're offering 3Mbps packages at less than half the price I'm currently paying for 10Mbps.
I think ISPs should come forward with both the "up to X" and a guaranteed minimum rate for their offerings. Give the end user a choice between "highly contended" and "low contention" and they might be surprised at the number of people that will pony up extra cash to get guaranteed fat pipes. As another commenter stated, most telcos won't serve business links to residential areas.
Re: Which brings us to "The tragedy..."
All ISPs sell bandwidth data rates. If they can't provide the service they're charging for, they should upgrade their infrastructure.
Data caps are outright double dipping.
Re: I'm conflicted
There's also the drivers to think of: most drivers involved in machine + idiot incidents tend to leave service.
Indeed. One of my former girlfriends had the nasty experience of watching someone fall into the subway tracks just seconds before the train entered the station. She looked away from the tracks, but heard a loud crunch when the train ran over the guy. She got really sick from that, and she says that the driver (who had slammed the emergency brakes) got out as soon as the train stopped and barfed on the floor. That was just awful.
Part of me wants the Darwin Awards to follow their natural course .... the other part wants less accidents, 'cause getting late to work due to some numbnuts not watching before crossing is annoying.
Annoyed at this
I currently have my 1TB Laptop HDD at 91% capacity. I might be able to get a 2TB HDD at most, but not more. Why? Because nobody seems to care enough to get 4TB or even 3TB HDDs made in the traditional laptop form factor. Never mind that the PS4 also uses this format, and 4TB is something very useful there. This is because many people are buying into the SSD craze. I would do so, but 1TB is still too expensive and I would still be stuck with the same issue I currently have. I haven't seen any 2TB SSDs.
On desktop systems, I'm happy with Seagate still churning out higher capacity HDDs. Hopefully they'll remain doing so, as large storage is still a need for me. I'm planning on upgrading my "home server" PC, which currently has 6.5TB storage capacity.
Don't fear the reaper
In the UK I believe you can be compelled to hand over passwords. Scary. Nice place to visit but glad I don't live there!
Do fear the RIPA.
Re: Voters database *in the cloud*?
Not official. I'm pretty sure that this database was highly illegal under Mexican federal law. The IFE database must not leave the country, ever.
Re: as if owning IT antiquity was one of those positive character traits
TI-59 had the tiny versions. I had one.
Re: His (her) Master's Voice
Orlowski is also the same guy who ended up defending FunnyJunk... The guys who were actually engaging in piracy, only because it proved his own twisted view on IP matters.
They've completely removed the ability to report spam. Which means those guys spamming threads with "click here to get free dragon city gems" are able to spam with impunity.
For us, it's been the kick the client needed to retire the pile of asp that no one understood that ran the old site.
Let me guess, pre-.NET ASP? Horrible! VB can't seem to die fast enough.
Re: Well, it's China.
Ah yes, the "Falun Gong" treatment of involuntary organ donors. Very "efficient".
Well, it's China.
They have a habit of dealing death sentences for a lot of stuff. Especially people who are percieved as threats to the government.