选择chaos这个词是因为~~实在很难找到一个更合适的词来形容这儿了……
今天core team批准了rafan同学的commit权限升级。目前,他已经获得了FreeBSD ports/ 和 src/ 两个代码库的 commit bit。
Read more...由于Caldera已经将32/V开源,目前FreeBSD 1.x时代的CVS已经可以重见天日。特设立此cvsweb以供世人观看。
FreeBSD 1.x受到AT&T诉讼的影响,曾在1994年6月和解并发布1.1.5.1-RELEASE之后,不得不重建了CVS库(这也是为什么FreeBSD的src/代码库的目录名是/home/ncvs而不是/home/cvs的原因)。随后,经过数月的努力,基于可自由再发布的4.4BSD-Lite代码系的FreeBSD 2.0于1994年11月正式发布。
Read more...莫名其妙的感觉。
Read more...作者 Bruce Schneier
原文 Debating Full Disclosure
作者授权 blog.delphij.net 发表此翻译版本。未经许可请勿转载。
全面披露 —— 将安全漏洞的细节公之于众 —— 是一种很好的做法。公开并让更多的人检查是改善安全唯一可靠的途径,而遮遮掩掩则只会让我们的安全受到损害。
Read more...今天我将把FreeBSD中的又一个 「自由」 (GPL授权)软件——gzip——替换为一个 可以自由再发布 的(BSD授权)版本。这一版本已经经过长期测试,特别是FreeBSD port联编集群的考验。
替换gzip的主要导火索是去年由Google公司安全团队发现的CVE-2006-4334、CVE-2006-4335、CVE-2006-4336、CVE-2006-4337、CVE-2006-4338等一系列问题,以及由于修正这些问题所引入的f2c压缩文件无法解压的回归问题。新版本的FreeBSD gzip来自于NetBSD的Matthew R. Green所撰写的、基于可自由再发布的zlib压缩库的用户界面接口。
Read more...看到一条很有意思的新闻,节录一部分:
」Three government bodies – the Ministry of Information and Communication, the Ministry of Government Administration and Home Affairs, and the Financial Supervisory Service – warned Tuesday about the expected confusion. The problem is that Vista doesn’t play well with a software program called Active-X that is widely used in Korean Internet sites. Without support for Active-X, online services that Koreans use everyday like banking, stock trading, and shopping won’t be available. Vista users will also experience problems with government sites in applying for and printing documents and certificates.「
Read more...昨天 Robert代表core team回信说他们将投票决定我对一位 ports/ committer 增加 src/ bit 权限的提名。祝这位同学闯关顺利 :-)
Read more...在CNBeta上看到一条消息,说是某公司甲开始拒绝使用另一家公司乙的邮箱注册,理由是「不稳定」。
Read more...So, it’s 2007/01/18 now. Happy birthday to the blog.
Read more...It seems that I have caught a race condition which can be triggered by renice(1), and we need to take PRS_NEW into account when we need to access several attributes of a process object.
Robert has pointed out that we may want to just initialize the attribute early to avoid the race condition. After reading some old 4.4BSD code it seems that the process object is linked into allproc list *before* everything is initialized.
Read more...