linux vs bsd security

5.20: web.addn/laptop`os selection:

. win'xp is just too bogged down with security issues,

so I'm going for a more secure os,

one that doesn't rely on disruptive anti-malware,

and won't run my laptop's fan so hard .

. as long as I'm making the move for security,

is bsd better than linux ?

review freebsd, vs openbsd, vs TrustedBSD .

. gui for openbsd?
openbsdsupport.org/desktopOBSD.html

. wiki for sec'focused os .
Security-focused_operating_system

. TrustedBSD -- cap'based sec
en.wikipedia.org/wiki/TrustedBSD
TrustedBSD is a sub-project of FreeBSD designed to add
trusted operating system extensions, targeting the
Common Criteria for Information Technology Security Evaluation
(see also Orange Book ).
fine-grained capabilities .
-- access control lists are known to be confronted with
the confused deputy problem,
capabilities are a different way to avoid this issue.
. ported the NSA's FLASK/TE implementation from SELinux
. OpenBSM, an open source implementation of Sun's
Basic Security Module (BSM) API and audit log file format,
supports an extensive security audit system.
While most components of the TrustedBSD project
are eventually folded into the main sources for FreeBSD,
many features, once fully matured,
find their way into other operating systems.
For example, OpenPAM and UFS2
have been adopted by NetBSD .
. the TrustedBSD MAC Framework
has been adopted by Apple for Mac OS X .
Much of this work was sponsored by DARPA .

Ubuntu security

Ubuntu is the most popular Linux distribution,
and is built with security and protection in mind.
While the desktop version of Ubuntu provides a GUI ,
the server version avoids that
added security vulnerability.

[todo: what's the diff?]

Ubuntu developers made a conscientious decision
to disable the administrative root account:
it's been given a password which
matches no possible encrypted value,
therefore may not log in directly by itself.
This makes the system very secure
as the only way to get root privilege
is to use the "sudo" command.
Moreover, AppArmor is installed and loaded by default.
It uses profiles of an application
to determine what files and permissions
the application requires.

an openbsd server admn goes to Ubuntu's
JeOS (Just Enough Operating System):
. linux was more of security threat back then .

"( Ubuntu JeOS is a version of Ubuntu that has
an optimized VMWare kernel. (50MB or so)
. the packaging system didn't require me to install
X11, TCL, Ruby, PHP, or MySQL for my server setup.
I was able to get just the tools I needed.) .

ms' xp malware prevention is worse than malware!

4.15: mis.addn/xpw.security essentials/so slow and rude!:
. annoyed at speed hit,
consider removing sec'essentials real-time process monitoring .

4.27: mis.add/xpw/lcd is slow to light up:
. lcd is slow to light up;
a coincidence with this problem was that
skype had to check for msg's
and found one to download .
. this may have given the anti-virus
a lot to think about .

4.30: mis.addn/xpw/ms'worse than the virus:
. the xpw is just wildly ignoring me
.. to run my hd into the ground!?
then it takes so long
and something I asked it to start 5min ago
it uses that request to suprise-interrupt my editor's input!
. ms is stupid or abused
-- what a nut house they are!

5.18:
. I keep recalling ms`ceo on the stage
jumping up and down, ranting:
"(developers, developers, developers!)
. ms was forced to throw security into the gutter
trying to remain backwards compatable
even for developers who
flagrantly cheated the interfaces -- the
boundaries that could have defended security .

komodo editor NoneType object has no attribute textLength

mis.addn/xpw.komodo/
shawn-cook's mindware) for dev.unix`security
4.10:. I was transferring a section of text
from a log-file to a subj-file,
-- see co.net/knol/
shawn-cook's mindware for dev.unix`security
below -- then komodo editor said
it could not save the subj-file:
error saving 'co.net 1004.txt'
it gave the following error report
for sending as bug report,
and then all the other open files
were starting to be listed as unkown .
5.18:
. I wonder if this could be caused by my buggy keyboard
injecting a random null or control code into a string?

AttributeError: 'NoneType' object has no attribute 'textLength'
Exception: AttributeError: 'NoneType' object has no attribute 'textLength'

Traceback:
save@vieweditor:957
anonymous@chrome://komodo/content/views.js:2014
anonymous@chrome://xtk/content/controller.js:91
anonymous@chrome://komodo/content/views.js:1385
[anonymous]@null:0
command_doCommand@chrome://komodo/content/library/commands.js:280
command_doCommandAsync@chrome://komodo/content/library/commands.js:234
anonymous@chrome://komodo/content/keybindings/keybindings.js:2068
anonymous@chrome://komodo/content/keybindings/keybindings.js:2068
anonymous@chrome://komodo/content/keybindings/keybindings.js:2224
anonymous@chrome://komodo/content/keybindings/keybindings.js:2122

Komodo Edit, version 5.2.3, build 4312.
Built on Wed Nov 18 19:49:30 2009.

bugs.activestate.com
komodo-feedback@activestate.com

4.10: aq.addn/activestate.com`komodo/
[AttributeError: 'NoneType' object has no attribute 'textLength']:
summary:
[AttributeError: 'NoneType' object has no attribute 'textLength']
description:
[!] '10.4.10: mis.addn/xpw.komodo/shawn-cook's mindware for dev.unix`security

Bug 86587 has been added to the database
Email sent to:
EricP@ActiveState.com, dev-komodo@activestate.com
Excluding:
dr.addn@gmail.com
http://bugs.activestate.com/post_bug.cgi

4.8: co.net/knol/shawn-cook's mindware for dev.unix`security:
(//knol.google.com/k/shawn-cook/
the-atomic-panacea/2bikvz4o16j7f/2#)
date Thu, Apr 8, 2010 at 6:08 PM
subject Shawn Cook has submitted a knol to the
moderated collection: dev.unix`security

Shawn Cook has submitted THE ATOMIC PANACEA
to the collection: dev.unix`security.
You can review some or all of the pending changes here:

. that knol is?

THE ATOMIC PANACEA SCRIPTING LANGUAGE
This is MINDWARE for serious programmers
THE ATOMIC PANACEA
Programming Language
Infinite anything. Super creative. Awesome forces. Prove miracles.
Cure anyone. Process logic. Atomic brain. Hero powers. Future
charts. Hack root ip. Smart science. Into mystery. Paragon crunch.
Actual truth. Trudge muck. Real dreams. Draw embryo. Cosmic anchor.
Realize dots. Learn words. Invent symbols. Self onslaught.

name: #attempt
usage: #attempt x
desc: try your very best to achieve x
desc: do all you can to solve x and hope it is enough
div: best try/important goal=optimal attempt

whois?

Programming, analog/digital electronics, writing text files,
recording music, artwork, making tutorials, science,
developing the panacea.

other knols?

SCARLET PANACEA
COMBAT SCRIPTING
The Scarlet Panacea Combat Scripting is a premium
programming language designed to shine a new light
on the mind and it's reasoning potential. When
we use our mind as a computer it may unleash
experiences and perceptions beyond understanding.
When we make programs for the great and mysterious
mind we are creating MINDWARE.

wrestling with facebook app's

4.2: proj.addn/net.facebook.familylink
mom and ellen:

. part of facebook is an app familylink
-- so I can link to fam wo calling them friends!
send familylin.com relative request to
any facebook friends that are also family .
. familylink does some completely monstrous scripting!
it has a dialog window that keeps minimizing
so I can't respond to it! ??
ask chrome to do it !!
ok .
. try to get more contacts;
strangely its search for facebook users
only works if they're already signed up to familylink
or if you give their email ? don't do that .

. maybe I should tell all my relatives
that it's available;
then I would need to waste time
seeing if it worked in their browser too (safari) .
. I got 2 of them linked up,
maybe they can help move the idea .

using links it knows:
. going back to clagget's page
where I first saw the family app,
I notice one facebook friend is using the service
and from there I can see
that if you know the person,
then their fam list acts like a friends list,
but it's unstable:
sometimes it takes you to their facebook page,
and other times -- even for the same person --
it just takes you to your own fam page .

gathering links:
. requested familylink additions by
familylinks related to a facebook friend
who are also my family: heidi, art .
. added familylinks to any family I could reach
via facebook {family, friends} of friends:
maya, monet, eliot, maria, edie, sarah,
and marge herself .
-- prev'ly done are: ellen, mom .

4.3: mis: what a clunker!:
. every fam member is listed as I suggested
except mom, now I don't see any way to
identify her relation;
it prefers to wait for her confirmation?
it accepted ellen's labeling as cousin .
. added dad as divorced to mom
but not as linked into facebook .
. when you add a relation by drag,
then if the gui stops working (cursor disappears),
then up at menu of page, try switching view;
then the redraw recoordinates everything .
. all the facebooks in familylink are treed now
adding some nodes that are not in facebook:
sally, mom's parents, art french .
[5.18: art french is on facebook a while now]

4.3: mis: gui mystery:
. how do I get a family-link box
on the side of my facebook page?
easy to remove most boxes ... .

4.3: proj: gathering links/miles french:
. added mom`miles french as cousin once removed .
4.3: proj: gathering links/megan strand:
. is there any way to update ellen's relation?
[her familylink shows no relation until she ok's it;
but she ignored the invite .]
. added mom`sister`megan strand as cousin once removed .

4.2: proj.addn/net.facebook.circlefriends:

Welcome to Circle of Friends! To: New Users! Thanks for signing up for Circle of Friends,
the best way to organize your friends based on
why they're important to you.
To help you get started,
we've created two ways to organize your friends.
Try them both and see which one works best for you.
Create a New Circle is pretty straightforward...
it lets you name a circle
and put your friends in it.
Suggested Circles searches through your friends' profiles
to find people with similar interests or backgrounds.
Browse through them to find the circles that are right for you!
To allow for easy access to your circles,
when you go back to your profile,
find the application and drag it
to the top of your profile page.
Enjoy!
Mike, Ephraim, and Ben
The Circle of Friends Team
If you like the application, click here to become a fan. It is easy!
If you have any suggestions on
how we can improve the application
(like what you want to add to each circle page
or things you would like to share with different circles),
feel free to start a discussion on it.

start a discussion#is this betaware?:
. some of the time when you choose an icon
the selection is ignored;
and other times it doesn't stick,
instead being replaced by the generic close-friends icon .
. I'm using chrome on mac .

I con icons!:
. used circle of friends app to org friends into contexts:
Magruder High School 1978
Norbeck Meadows, Rockville, Md, USA
Wash.DC, USA 1970's
Torrance-Winter family
. getting this circlefriends app to work was such a pain!
. half the time the icon's weren't as expected,
then you understand why when it warns you that what you upload
should be owned by you
and, not be a copy of trademarks like simpson cartoons .
. they're showing you a bunch of
what they already know is owned!
5.18:
. the stupidest thing about that app
is that the face icons look just like facebook friends
but they are not hypelinked to a popup
that would introduce the face's public info .

4.2: mis.addn/net.facebook/comments do stick:
. not sure why my comment to allen's didn't stick,
but I reposted it directly on his page .
. oh, now I'm seeing both posted on my page,
so, I'm deleting the first one,
since it had a syntax error .

4.3: mis.addn/facebook`profile.tab/
sidebar's [create a profilebadge]
. I was hoping a "(profile badge)
would let me move my friends.tab to a sidebar box;
but it did offer a pleasant suprise:
it let me add a facebook splash to my blogger.com sites .

Jon Justice sneers at sure justice

3.24: news.pol/jon justice sneers at sure justice:
. ironic how Jon Justice radio show
sneers at sure justice:
speeder-catching cam's are
"(the gov't watching you!)
. but perhaps the real point is that
speed limits are an obnoxious democracy
imposed where consensus could have worked:
eg, consensus would be where
your taxes pay for the roads with
the speed*mass you want:
. the most practical way is to
restructure our city planning
as gated communities that minimize commuting
by use of work-based residences .
. everything you need can be biked to
or trucked in with an internet sale .
. the shop docks are at the wall to minimize truck traffic,
the walls are composed of doughnut strip malls .
. then people can drive between these gated communities
at any speed they want .

The Big Short

3.23: news.pol/fin'reform/The Big Short:
Michael Lewis, author of
The Big Short: Inside the Doomsday Machine
says finance reform means they must be
allowed to fail ie, by being smaller;
he listed some suggested rules that would
encourage them to seek
that smaller size .
. not being allowed to fail means
there is a strange cheating of capitalism
where the risk is absorbed by the public
while the profits remain privatized
-- leaving no incentive to be sensible .

3.23: bk.pol/fin reform/Big-Short-Inside-Doomsday-Machine/
product-reviews:
. this book got a lot of negative reviews,
but, I'm not sure if his critics
are really on the same page .

teach a man to ... "(oh, fish!)

3.22: pol/teach a man to ... "(oh, fish!):
windows7sins.org:

"(Give a man a fish
and you feed him for a day.
Teach him how to fish
and you feed him for a lifetime.)

. seeing this in the context of
protesting against proprietary software,
I realized that such secret.ware
is just another way of
controlling population by marginalizing it .
"(
. teach a man to fish,
and he reproduces until the pond is empty;
then he's clubbing to control the next pond .
. give the masses a right to
improve your product
and the masses will do your job
for mere beans .
) .

police are human beings

3.22: pol/drug war/police are human beings:

. what was that police officer thinking
when he said drug laws help catch
other criminals?
drug laws single-handedly create
so much heavy crime! [3.28: well, combined with
the use of anonymous cash and privacy rights ...]

. we need to legalize sales,
then have drug testing for
places where it matters .
. if your drugs violate your job,
you lose your job;
if your drugs are used while driving,
you get jailed .
. another option is going cashless:
use smartcards so that drug trades
are not anonymous .
. a problem then is bartering, eg,
human trafficking to support drug exchanges .

. robotic scanners in cars
can tell when driver is impaired .
. public scanning can keep drug use private .
. police are humans; they don't
stand a chance with that cowboy job
against militant drug gangs .
. if there's no reason to
inspect for drugs,
there's no reason to prevent drug use .

3.23: pol/surface oriented architecture:
. "(service) sounds like "(surface);
and the significance of that freudian slip
is esp'ly revealed by the term "(service member)
used in the context of service in war;
as in military policies that routinely use soldiers
like skin, where dead cells are used as shields .