morbuz - Slashdot User

Comment Re:Temporary measure (Score 2) 869

by morbuz on Saturday January 24, 2009 @04:08PM (#26591581) Attached to: Linus Switches From KDE To Gnome

well, I switched from being a long time KDE user to GNOME because of 4.2. what a train wreck!

KDE 4.2 has not been released yet.

Comment Re:Mystery Pits (Score 1) 552

by morbuz on Thursday January 22, 2009 @08:00AM (#26558247) Attached to: Oldest Weapons-grade Plutonium Found In Dump

Under intense time pressure to work with previously theoretical isotopes that just might save tens of thousands of American lives?

At the cost of hundreds of thousands of civilian Japanese lives.

One thing I have thought about quite a few times: Why didn't the Americans just drop the atom bomb right *outside* a major city, thereby reducing the loss of lives to a minimum while still sending the same message of "give up, we can bomb you to back to dust"?

Major Security Hole In Samsung Linux Drivers 295

Posted by kdawson on Wednesday July 18, 2007 @07:55AM from the drive-a-truck-through dept.

GerbilSoft writes with news of a major security hole in Samsung's proprietary Linux printer drivers. From the Ubuntu Forums: "Just to inform you about a recent post on the French Ubuntu forum about Samsung drivers (sorry, in French). [Google translation here.] It appears that Samsung unified drivers change rights on some parts of the system: After installing the drivers, applications may launch using root rights, without asking any password. What is more, you may be able to kill your system, by deleting system components, generally modifiable only by using sudo." GerbilSoft adds: "Among the programs that it sets as setuid-root are OpenOffice, xsane, and xscanimage."

Secretly Monopolizing the CPU Without Being Root 250

Posted by CmdrTaco on Wednesday July 11, 2007 @10:32AM from the because-you-shouldn't dept.

An anonymous reader writes "This year's Usenix security symposium includes a paper that implements a "cheat" utility, which allows any non-privileged user to run his/her program, e.g., like so 'cheat 99% program' thereby insuring that the programs would get 99% of the CPU cycles, regardless of the presence of any other applications in the system, and in some cases (like Linux), in a way that keeps the program invisible from CPU monitoring tools (like 'top'). The utility exclusively uses standard interfaces and can be trivially implemented by any beginner non-privileged programmer. Recent efforts to improve the support for multimedia applications make systems more susceptible to the attack. All prevalent operating systems but Mac OS X are vulnerable, though by this kerneltrap story, it appears that the new CFS Linux scheduler attempts to address the problem that were raised by the paper."

Slashdot Top Deals