253 posts • joined 16 Mar 2013
"The third flaw found has to do with the way the three US carriers' implement IPSec protection..."
"A practical mitigation for these attacks, the researchers say, involves running a VPN on mobile devices.."
What, pray tell, do they think IPsec *IS USED FOR*?! They already *ARE* running a VPN!
Re: "the world is clinging stubbornly to IPv4"
"I like the fact that NAT means I can kill a lot of external access at the firewall."
If your preferred firewall doesn't come out of the box with a default 'deny any any' inbound from the 'untrusted' interface for packets that aren't in response to an outgoing connection, then it's rubbish and belongs in the trash anyways.
Re: HP Network Laser Printers....
Indeed, I have a Xerox color laser and a Ricoh color laser that both offer FTP. Since they both support PortScript & PDF, it's rightly handy to print something in a hurry on a new install without printer drivers. I've also used it a few times when I didn't have VPN setup yet. Save to PDF in the app, sftp it to a server on the DMZ, ssh into said server and FTP it to the printer. Printout is ready when I get back!
Re: Not just repackaged?
Yes. All of the SRPMS for the entire distribution are on their public-yum repo site (just like RHEL), and the Unbreakable Kernel source is even on github. They pretty much have to supply the code because of GPL.
While the UEK does provide kSplice, Oracle only provides the updates to people who have premier support, sadly.
While I agree with Oracle bashing, I can honestly say that lagging on updates is one thing I haven't seen them do. Obviously for upstream fixes (eg, ones from RHEL) they can't possibly release them *before* RH does, but their turnaround has always seemed pretty fast.
After the first Intel microcode fiasco, Red Hat stopped providing microcode updates in the distro itself, while Oracle has continued to do so. So in one respect, they're "better" than RHEL for people who are running servers where their vendor has failed to provide updated BIOS releases with newer microcode embedded.
The "Unbreakable" branding currently only applies to their kernel, not the distro itself (which is just simply called 'Oracle Linux'). It IS a stupid name though!
Re: Privacy issues with IPv6?
That's only when using stateless autoconfig (SLACC), not when using static or stateful autoconfig (DHCPv6). Most OSs default to using privacy extensions when SLACC is in play (eg, outbound connections use a 2nd temporary and random IP that changes).
So no, no privacy issue.
"However, many websites did not support it, and the fallback to IPv4 caused a performance decrease."
That makes *0* sense. If the website didn't support it, there would be no AAAA record in the DNS reply, and so IPv6 would never be attempted in the first place.
Now if the site is publishing AAAA records and yet their IPv6 connectivity was broken, THAT would cause issues (although less so these days with "Happy Eyeballs" in most browsers). In that case, they really should either fix their connectivity or unpublish the AAAA records.
Re: Void can be forked
I really hope Void manages to sort all of this out. It's currently one of my favorite distros, especially their MUSL variant. With MUSL the resource usage is low, and with runit (instead of systemd) it boots crazy fast. Add in LibreSSL for fewer security issues, and it's an amazing combination!
Let's think this through logically. My gun is locked in a safe under my bed. If the invader doesn't know that the safe exists, doesn't know the code to it, and somehow doesn't run off from the alarm, etc. If he comes busting through the bedroom door on the opposite side of the room, how is he going to somehow use my gun against me? How is somebody else going to use it against me? They're not.
Most cases where that is true is when the gun is stored improperly.
And so do car accidents, but that doesn't mean that the CDC should be studying those. There are other agencies for that. Hint, the word 'DISEASE' is in the name of the CDC.
Most "gun nuts" could honestly not care what the study shows in the first place, so that argument doesn't even make any sense.
Agreed that video games don't cause behavior. On the other hand for somebody that already has that behavior, they make damn good simulators to get proficient at killing! The military even uses them.
I personally blame the increase in shootings on big pharma, especially SSRIs. When Chantix, a stop smoking drug, causes people to wake up somewhere and they have no clue how they got there, what they did along the way, etc, and somehow is deemed perfectly safe by the FDA, you just have the wonder.
The NRA didn't really squash research, except for by the CDC. Yes, the Centers for Disease Control. The people that really should be worrying about the flu pandemic and not gun control. There are plenty of other departments and NGOs that can go study gun control all they want to. Just because the CDC can't do it doesn't mean that everybody else has their hands tied.
That's like saying that the USDA can't study Teslas slamming into concrete barriers, so nobody knows what the problem is!
Re: 'Well for a start I'd ban religion'
Except the amendments that have been repealed have all been things that you can't do (eg, prohibition), or making slaves free and such like that.
The Bill of Rights don't give you the rights. The Bill of Rights explicitly state that the rights are something that you're born with. The amendments are to tell the government what they CAN'T do with those rights. So repealing the 2nd doesn't exactly take those rights away. It would unshackle the government though, sure.
Re: Optimistic thinking
Eh. I have a ranch out in the boonies. The local ILEC (CenturyLink) can offer me DSL with 384k upstream which isn’t enough for a HD CCTV feed. A CradlePoint router, 2 yagi antennas (for MIMO), a couple of amps, and an “unlimited” Vzw SIM later, we’re doing 12-20Mbps to a tower 8+ miles away. I can’t complain AT ALL.