Profile

Cover photo
Rick Troth
178 followers|48,729 views
AboutPostsPhotosVideos

Stream

Rick Troth

Shared publicly  - 
 
All of the TSA agents I have encountered have done a great job with a miserable assignment. Sadly, there are some who perpetuate the bad press.

https://www.techdirt.com/articles/20150414/10471430654/tsa-agents-outwitted-cory-doctorows-unlocked-tsa-safe-suitcase.shtml
Prior to the 9//11 attacks, you only had to worry about airport baggage handlers beating the hell out of your luggage or stealing your valuables. Thanks to the post-attack panic, there's a new layer of ineptitude and deceit your luggage is...
1

Rick Troth

Shared publicly  - 
 
Thanks to AT&T's Jim Clausing and the rest of the guys on the ThreatTraq feed. I finally got all four branches of OpenSSL updated. Took probably a half our of work (for the lot, though just one architecture) including updates to NORD's "Portable Apps" wrapper makefiles and checking archive signatures.

https://www.openssl.org/news/secadv_20150319.txt
OpenSSL Security Advisory [19 Mar 2015] ======================================= OpenSSL 1.0.2 ClientHello sigalgs DoS (CVE-2015-0291) ===================================================== Severity: High If a client connects to an OpenSSL 1.0.2 server and renegotiates with an invalid signature ...
2
Rick Troth's profile photo
 
LibreSSL follows, taking a little longer (and just one branch) because the wrapper makefile needed more changes.

And thanks to Brent Cook <busterb@keybase.io> for signing the LibreSSL archives.

Rick Troth

Shared publicly  - 
1
Rick Troth's profile photo
 
I hope my Jewish friends will understand: the Messiah is for them. There is no turning away from their roots when they embrace Y'shua. He came for them first, then gentiles like me later by adoption.

I hope my Moslem, Hindu, Sikh, Wiccan, Mormon, Scientologist, Buddhist friends will understand, the God of Israel blessed all of us. There is no hate when a Christian urges them to turn from their misdirected efforts.

I hope my Atheist friends will understand, there is no abandoning of reason when they believe something that is beyond reason. (They already accept things which are beyond reason: human love, desire for purpose, valuing beauty.)

Rick Troth

Shared publicly  - 
 
Post puts it perfectly.

http://mark-post.blogspot.com/2015/03/ibm-be-careful-what-you-say.html

KVM is cool, and I use it (more every day), but z/VM is the baby. KVM is simly not capable of the tricks mainframers have come to depend on from z/VM.

The situation will not improve until hypervisor capabilities are accurately reported (in the press and in trade material and advertising).
IBM is once again demonstrating that it can be its own worst enemy. This time it involves their new mainframe system, the z13. IBM has a lot of things to be proud about with the z13, but their marketing messaging is definitel...
3
Adam Thornton's profile photoScott Rohling's profile photo
3 comments
 
and given all the development going on to make z/VM invisible (the mystery backend for zcloud) ...  maybe IBM has given up explaining as well?

Rick Troth

Shared publicly  - 
 
Ironic: the US allows prying into its privacy program ... from the UN?!?

Then again, "the Rapporteur will have no real powers", so maybe nothing really matters.
1

Rick Troth

Shared publicly  - 
 
From a couple months ago by Paul Vixie, and in my "open tabs" for a re-read or two. Good stuff.

http://queue.acm.org/detail.cfm?id=2721993

"In the end, dynamic systems are simply less secure."

My own public-facing website, while inconsequential, is completely static, for all the reasons Dr. Vixie mentions.
Web Security · Download PDF version of this article. January 14, 2015. Volume 13, issue 2. Go Static or Go Home. In the end, dynamic systems are simply less secure. Paul Vixie. Most current and historic problems in computer and network security boil down to a single observation: letting other ...
1
Have him in circles
178 people
Kevin Gregory's profile photo
Heath Bair's profile photo
Mauro Souza's profile photo
Jerod Moore's profile photo
kachhad Himmat's profile photo
DeWayne Thomas's profile photo
Rogerio Soares's profile photo
Rich Smrcina's profile photo
T. A. Moore's profile photo

Rick Troth

Shared publicly  - 
 
Today's dependency hell: LLVM requires GCC 4.7+, which would not be so bad except that the latter is a storage pig.

#techbloat
2
David L. Craig's profile photoRick Troth's profile photor herrold's profile photo
4 comments
 
Building LLVM has never been a problem for me for the last three or four years. Are you trying in a a devel library poor environment? I'd be tempted to build repeatedly in a fat one, and then 'skinny' the environment down, one at a time, one after the other, looking for the critical ones

Rick Troth

Shared publicly  - 
 
This is (just one example of) why we need alternative trust models to the status quo PKI ...

https://www.techdirt.com/articles/20150401/17461630518/google-completely-cuts-off-chinese-governments-certificate-authority-cnnic.shtml

Perhaps the day will come when you show up at the bank to open an account and they give you physical media with cryptographic identity and you do the same. No need for the third party in that exchange. The bank could then act as a third party on your behalf when you buy essentials at Safeway. Maybe that sounds intractible, but situations like Google versus CNNIC are bound to happen with the alternative.
1
Gregg Levine's profile photoDavid L. Craig's profile photo
5 comments
 
+Gregg Levine , nonetheless, blowback happens (because the unintended consequences are not anticipated)...

Rick Troth

Shared publicly  - 
 
"Upgrade Messenger to Skype"

It's been two years since Microsoft/Hotmail "upgraded" all messenger services to Skype. Today, I use Skype less and value it much less. The older service was better in that more things could talk to it. With Skype, the service and the software are all rolled together, as if GM built the roads and the cars.
2
David L. Craig's profile photo
 
In this case, a different motive to embrace and extend, but it will have no different an outcome, I expect...

Rick Troth

Shared publicly  - 
 
Another spot-on observation by Dr. John.

Some commands (and/or op sys) get a pass in that wiggle room for "value add" should be recognized.

SystemD makes the problem worse. (But adherents claim it's justified.)

 
This explains why Windows gained so much ground in the 1990's. 
A Sysadmin's Unixersal Translator (ROSETTA STONE) OR What do they call that in this world? Contributions and corrections gratefully accepted. Please help us fill in the blanks. New "tasks" are welcome, too! The table has grown so large that a PDF version is no longer useful, so is no longer ...
View original post
1

Rick Troth

Shared publicly  - 
 
The story is told of a young man who strove to live down the faults of his father. The father smoked, drank, cursed, was unfaithful, did not support his family. The son was diligent, provided well for his kids and wife, was faithful and loving to her, never smoked or drank.

Someone who knew them both said, "You're so much like your father.". The stunned young man retorted harshly, "How can you say that?!?". Turns out he was deeply bitter and angry, just like his dad.

 
If you try to be the opposite of some group that you oppose, you'll become their opposite in everything, even ways in which they're good. The negative of an ugly photo is still an ugly photo. 
6 comments on original post
1

Rick Troth

Shared publicly  - 
 
 
2010 CBO had a report that previous decade tax revenue was cut $6T and spending increased by $6T (compared to baseline budget, which would have had all federal debt gone in 2010), for $12T budget gap (by 2010). Congress had let the fiscal responsibility act expire (required that spending couldn't exceed revenue) in 2002. The first major legislation afterwards was part-d drug act ... the comptroller general described as a long-term $40T item that comes to swamp all other budget item. It has been described as enormous gift to the drug industry ... cbs 60mins did segment on the 18 republican staffers and members of congress responsible for getting it thru ... after it passes, all 18 have resigned and are on drug industry payroll. Just before the final vote, the 18 add a one liner that prevents competitive bidding. 60mins show identical drugs under VA (that has competitive bidding) that are 1/3rd the cost of same drug from part-d. Congress savaging of the budget was getting so bad by the middle of the last decade, the comptroller general was including in speeches that nobody in congress was capable of middle school arithmetic.
The new Republican budget advertises $1.1 trillion in savings that are difficult to account for.
View original post
1
People
Have him in circles
178 people
Kevin Gregory's profile photo
Heath Bair's profile photo
Mauro Souza's profile photo
Jerod Moore's profile photo
kachhad Himmat's profile photo
DeWayne Thomas's profile photo
Rogerio Soares's profile photo
Rich Smrcina's profile photo
T. A. Moore's profile photo
Work
Occupation
follower of a Jewish carpenter, husband, father, hacker, and wire monkey
Links
YouTube
Contributor to
Story
Tagline
... try to take over the world!
Introduction
I hand-entered Simson Garfinkel's PGP key from the book, sent him an encrypted message, and he replied having successfully decrypted it.


Bragging rights
"Sir Santa" to those who know me well, and only polar after the fact
Basic Information
Gender
Male
Other names
VM Cowboy, Sir Santa