Author Topic: How to make your Windows machine more stable and secure  (Read 17352 times)

muzzy

  • Member
  • **
  • Posts: 391
  • Kudos: 409
    • http://muzzy.net/
Re: How to make your Windows machine more stable and secure
« Reply #60 on: 19 March 2005, 03:39 »
Oh my, that's a very very long post indeed. Do I have to answer all of it? :o

muzzy

  • Member
  • **
  • Posts: 391
  • Kudos: 409
    • http://muzzy.net/
Re: How to make your Windows machine more stable and secure
« Reply #61 on: 19 March 2005, 04:46 »
I think I'll start by addressing some of the more relevant things that are quick to answer. A lot of your response just seems to be a series of quick stabs, and I'm not sure if there's much to be gained by returning a similar series of quick stabs.

Regarding W9x-series, I don't want to think of it as a Windows because it differs so greatly from the NT-series. The NT series has a serious and stable native kernel running it, with Win32 Executive Subsystem on top of it implementing the win32 user environment. On the other hand, w9x is just a pile of black magic and hacks. Although it does work to an extent, and is an usable system for some purposes, the system design is a joke. Everything in it has been designed for backwards compatibility, and compromises have been made in the very core design. I don't like it.

What I said of all operating systems being equally vulnerable by design, I was referring to the minimum privilege principle, and how badly it applies in every system when it comes to practice. In an ideal system, applications would manifest what they need to see from the filesystem, what libraries they need to access, what system apis they need to call. Then, anything not requested would be plain and simple blocked, out of sight completely. Modern filesystems supports ACLs to do privileges on user-based granularity, but I'd be more interested in a process-based granularity. To thwart arbitary code execution issues, perhaps even memory map based. Also, I'd be interested in the privilege minimization to happen before execution, not during runtime. This would mean that every process would have its own virtual filesystem, and virtual api to use based on what was requested in the manifest. With such a design, it would be much easier to determine what applications are safe and what are not, since it's a fact that it's computationally impossible to predetermine for sure if an application will perform some action or not, without actually running it. There are no systems that do this. Also, in all modern systems the kernel space and security there is an arms race.

About worm propagation efficiencies: http://en.wikipedia.org/wiki/Metcalfe's_law

Regarding MS Paint, my mspaint gallery: http://muzzy.net/mspaint.html

Redarding root: Why is there a root user in the system at all if only badly designed applications would need it? Go and check how many suidroot apps you have: "find / -perm +4000", I'm sure you'll find plenty, and you probably won't even question why basic things like "su" and "passwd" are suidroot.

About source availability, having sources around doesn't make application better quality. It's an additional freedom for you, and independent to the right to modify applications you run. You don't need sources to do that. They are two independent things, although sources usually come with licenses to modify the application. The license doesn't make the application itself better, it just grants you freedom to modify it, which I'd prefer to be everyone's right without explicit permission.

About centralized databases (for suids, windows registry), database corruption isn't an issue. Filesystem can die, too, in a similar fashion. What's the difference? Having a centralized database, however, allows you to strictly regulate access to it. No incidents with mounting an old fs with suid option and then realizing there's a backdoor there, when the suid database is central and easily reviewable. About windows registry, the registry hives can be mounted anywhere in the registry namespace, so you could have any number of hives you wanted to. Each user has their own hive in their profile, too. Registry is just a standard namespace in windows, a concept which might seem strange from *nix perspective where there is only single filesystem namespace where everything gets mounted even if the contained data is semantically different. This is why windows devices are in a separate namespace and not in a filesystem in /dev

About java and bytecode languages: It's not true that they're slow. Java apps are only slow because the UI code is braindead and sluggish. The VM itself performs pretty well, and since bytecode gets JITed in runtime, they can dynamically recompile slow parts based on how they're used, etc. Things like this are difficult with traditional compilers, and definitely lacking the advantages of JITting VM without implementing a bytecode engine into compiled binaries (can you say bloat?). Theoretically, bytecode-compiled applications can perform faster than natively ran binaries.

About .NET and machine abstraction, I'm not oversimplifying things by saying that anything below it can be reimplemented without issues. Any issues would be performance differences in new implementation, as applications expect some things to perform in some way. This is because all the applications are compiled into intermediate language which shouldn't interface with the lowlevel system at all. The framework provides interoperability services for the transition phase of moving into .NET, but new applications can be written without depending on anything beneath .NET layer.

Regarding use of word "user" and not "administrator", it's indeed a little confusing, but in contexts I've used it I've meant desktop systems where the user is the system administrator. Typical user plays the administrator role happily without the require competence for it, and with results we all know about.

Then, about my definition of when a system works and when it doesn't. I define it to depend on the intent for which the system is used. If it cannot fulfill those requirements, then it doesn't work. It's not enough if it boots and all the apps run fine and it doesn't crash. If network cards fail to work (at all) on my ancient compaq when I compile the kernel for a traffic shaping setup, then the kernel definitely doesn't work. For some seemingly innocent kernel configurations, the damn thing just died during boot. A lot of the advanced network functionality in 2.6.x tree is known to have system crashing bugs. That's enough for me to declare that the kernel tree doesn't work, as I couldn't get the damn thing to work even after several days of kernel hacking and debugging. The only thing I managed to figure out that the NIC drivers themselves weren't likely at fault, but something strange in the iptables/packetscheduler implementation.

Regarding native applications and GNU, my point was that the applications that are written against one api do not necessarily perform very well on a system where the api is provided in form a translation layer. Also, my wget on windows has some strange issues that it doesn't have on linux, and although the glitches only happen rarely they're still annoying. Another thing about native applications is applications that have GUI. I recently installed bittorrent-4.0.0 with its crappy api. Now, I'm not that picky, but the damn thing breaks so many of windows GUI principles it hurts. Not to mention that if I minimize it, the UI processing dies COMPLETELY and I won't be able to even close it. It does this every time. I'd rather have a native GUI.

Phew, which of the skipped issues you want me to respond to, or do you have any comments about what I just said?

Calum

  • Global Moderator
  • Member
  • ***
  • Posts: 7,812
  • Kudos: 1000
    • Calum Carlyle's music
Re: How to make your Windows machine more stable and secure
« Reply #62 on: 19 March 2005, 18:18 »
Quote from: muzzy
I think I'll start by addressing some of the more relevant things that are quick to answer. A lot of your response just seems to be a series of quick stabs, and I'm not sure if there's much to be gained by returning a similar series of quick stabs.
i don't agree that this is the case, if you mean my comments were pointless and were personal, however if by "quick stabs" you mean i don't take many words to refute what you say, then fine, i can agree with that, but i can't agree that there's no value in that. here we go...

Quote
Regarding W9x-series, I don't want to think of it as a Windows because it differs so greatly from the NT-series.
tough shit, smartarse. if you are going to keep moaning about linux 1.2 and complaining about one application or another and blame all your problems on "linux" as a result, then i think you should have few qualms about people who think of "microsoft windows 98" as a release of microsoft windows, whether you want to think of it as one or not.
Quote
The NT series has a serious and stable native kernel running it, with Win32 Executive Subsystem on top of it implementing the win32 user environment.
so, the windows 9x stuff is implemented using a virtual machine? or is it an emulation layer? this is the sort of backwards compatibility i don't think will give the best or most reliable performace. i am not a fan of wine either.
Quote
On the other hand, w9x is just a pile of black magic and hacks.
no arguments there, except perhaps for the "magic" part.
Quote
Although it does work to an extent, and is an usable system for some purposes, the system design is a joke. Everything in it has been designed for backwards compatibility, and compromises have been made in the very core design. I don't like it.
me neither, but you will find that most "windows haters" whom you write off as imbecilic slack jawed yokels (i am paraphrasing) will justifiably and reasonably base a lot of their experiences on this windows release. not surprising since 17 years of microsoft windows has been various versions of this crap. you can't just write off millions of people's experiences of microsoft's useless software by saying you don't like to think of it as windows.

Quote
What I said of all operating systems being equally vulnerable by design, I was referring to the minimum privilege principle, and how badly it applies in every system when it comes to practice. In an ideal system, applications would manifest what they need to see from the filesystem, what libraries they need to access, what system apis they need to call. Then, anything not requested would be plain and simple blocked, out of sight completely. Modern filesystems supports ACLs to do privileges on user-based granularity, but I'd be more interested in a process-based granularity.
sounds fair, it's similar to how zonealarm blocks applications from accessing the internet (for example) while iptables blocks ports instead.
Quote
To thwart arbitary code execution issues, perhaps even memory map based. Also, I'd be interested in the privilege minimization to happen before execution, not during runtime. This would mean that every process would have its own virtual filesystem, and virtual api to use based on what was requested in the manifest.
would this cost a lot of RAM? because on low RAM systems (if this were the case) i'd like to think i could have the choice of not doing something that might run slow or not at all as a result of this model.
Quote
With such a design, it would be much easier to determine what applications are safe and what are not, since it's a fact that it's computationally impossible to predetermine for sure if an application will perform some action or not, without actually running it. There are no systems that do this. Also, in all modern systems the kernel space and security there is an arms race.
what do you think of the HURD concept incidentally? where everything is seperated form the kernel if it possibly can be? seems like they are having a hard time implementing it after all these years, i don't know much about it, but just wondered what you think of their general principle behind kernel design.

Quote
About worm propagation efficiencies: http://en.wikipedia.org/wiki/Metcalfe's_law
i honestly do not see how this relates to vulnerabilities of one system versus another relating to worms. i understand metcalfe's law but not your habit of invoking it regularly.

Quote
Regarding MS Paint, my mspaint gallery: http://muzzy.net/mspaint.html
this is not an answer. if i email you my CV, how does that prove the abiword is superior to wordperfect? files produced using ms paint, no matter how impressive, reflect the artist's creation rather than the technical capabilities of the program. i often think people's expectations have a lot to do with it too. i find ms paint easy to use, but highly simplistic and therefore unsuitable for a lot of things. i never learned how to use photoshop much, and so gimp is not a step down for me, like a lot of photoshop users seem to complain. surely photoshop is for photos and gimp is a more general app anyway. what i am saying is, this isn't the point.

Quote
Redarding root: Why is there a root user in the system at all if only badly designed applications would need it?
the administrator uses it. i log in as root to create users, change passwords, edit config files (that are read only from the applications' point of view and so on. Surely you don't think a system can administrate itself? the assumption that it can has led to microsoft windows' appalling approach to security and i do not believe it is a sensible approach.
Quote
Go and check how many suidroot apps you have: "find / -perm +4000", I'm sure you'll find plenty, and you probably won't even question why basic things like "su" and "passwd" are suidroot.
here are the results:

/usr/bin/chage
/usr/bin/gpasswd
/usr/bin/at
/usr/bin/sudo
/usr/bin/passwd
/usr/bin/crontab
/usr/bin/gpg
/usr/bin/gpg-agent
/usr/bin/gpg2
/usr/bin/lppasswd
/usr/bin/chfn
/usr/bin/chsh
/usr/bin/newgrp
/usr/bin/desktop-create-kmenu
/usr/libexec/openssh/ssh-keysign
/usr/sbin/ping6
/usr/sbin/traceroute6
/usr/sbin/traceroute
/usr/sbin/usernetctl
/usr/sbin/userisdnctl
/usr/sbin/userhelper
/usr/X11R6/bin/XFree86
/sbin/pam_timestamp_check
/sbin/pwdb_chkpwd

i wonder if this counts as plenty? i have no idea what this is all about actually, so i should probably read up on it. i should say though that this reflects red hat's defaults, and is still not blameable on "linux". blame red hat if you must, but unless you can explain to me why things cannot be configured securely under a linux system, your attempts to snipe at the defaults of a specific linux based system are unlikely to move me in any way.

Quote
About source availability, having sources around doesn't make application better quality. It's an additional freedom for you, and independent to the right to modify applications you run. You don't need sources to do that. They are two independent things, although sources usually come with licenses to modify the application. The license doesn't make the application itself better, it just grants you freedom to modify it, which I'd prefer to be everyone's right without explicit permission.
me too, and i agree with you here, as far as it goes, but you fail to even admit that such a thing as people checking each other's work for errors is beneficial. people checking each other's work cannot create more errors, it can only eliminate existing ones, and with thousands upon thousands of people doing this, it stands to reason that this is more effective than dozens and dozens (in the case of a company, such as microsoft). if you choose to discuss a subject, why not address the issue actually at question, instead of just repeating yourself?

Quote
About centralized databases (for suids, windows registry), database corruption isn't an issue. Filesystem can die, too, in a similar fashion. What's the difference? Having a centralized database, however, allows you to strictly regulate access to it. No incidents with mounting an old fs with suid option and then realizing there's a backdoor there, when the suid database is central and easily reviewable. About windows registry, the registry hives can be mounted anywhere in the registry namespace, so you could have any number of hives you wanted to. Each user has their own hive in their profile, too. Registry is just a standard namespace in windows, a concept which might seem strange from *nix perspective where there is only single filesystem namespace where everything gets mounted even if the contained data is semantically different. This is why windows devices are in a separate namespace and not in a filesystem in /dev
up until windows 98 they were also accessible using filenames, has this never been the case under NT, out of interest? personally i think there are a lot of benefits to the "everything is a file" idea. database design is not my forte, so if there is something i should be criticising in your reply, i will have to leave it to somebody else to do so.

Quote
About java and bytecode languages: It's not true that they're slow. Java apps are only slow because the UI code is braindead and sluggish. The VM itself performs pretty well, and since bytecode gets JITed in runtime, they can dynamically recompile slow parts based on how they're used, etc. Things like this are difficult with traditional compilers, and definitely lacking the advantages of JITting VM without implementing a bytecode engine into compiled binaries (can you say bloat?). Theoretically, bytecode-compiled applications can perform faster than natively ran binaries.
i have heard this, but this is kind off topic, since we were discussing operating systems, and how one is allegedly better than another. whether compiling is better than interpreting is another discussion entirely, and of course is dependent on circumstances.

Quote
About .NET and machine abstraction, I'm not oversimplifying things by saying that anything below it can be reimplemented without issues. Any issues would be performance differences in new implementation, as applications expect some things to perform in some way. This is because all the applications are compiled into intermediate language which shouldn't interface with the lowlevel system at all. The framework provides interoperability services for the transition phase of moving into .NET, but new applications can be written without depending on anything beneath .NET layer.
this is kind of like an interpreted language, or virtual machine, emulation layer, whatever. again, i question whether this sort of thing is always appropriate, and suspect that there are performance issues related to it. I think that you should always try and make stuff work on the most minimal hardware possible. i don't go for the idea of testing stuff on the latest machinery and then just saying those are the minimum requirements. not everybody can buy new kit all the time. I think i am digressing though.

Quote
Regarding use of word "user" and not "administrator", it's indeed a little confusing, but in contexts I've used it I've meant desktop systems where the user is the system administrator. Typical user plays the administrator role happily without the require competence for it, and with results we all know about.
yes, and that's my point. this is one reason why having a "root" user separate from user accounts is a good idea, because the person behind the keyboard knows which hat s/he is wearing at any one time, and if they don't they can just do a quick whoami. i was horrified when i heard that some linuces were trying to be like windows by having users log on as root - this is an appalling model, but sadly one that microsoft is happy to encourage amongst their "users".

Quote
Then, about my definition of when a system works and when it doesn't. I define it to depend on the intent for which the system is used. If it cannot fulfill those requirements, then it doesn't work. It's not enough if it boots and all the apps run fine and it doesn't crash. If network cards fail to work (at all) on my ancient compaq when I compile the kernel for a traffic shaping setup, then the kernel definitely doesn't work.
i think i have to take a leaf out of your book and blame that on you. if you fail to compile the kernel in a way that is capable of supporting your hardware, then whose fault is it? if you were not able to recompile your own kernel, then you could blame the kernel coordinators (like with windows, in fact, you can't recompile their kernel, so microsoft are to blame for unsupported hardware if the problem is at kernel level, yes?), but if you do it yourself, then you know where the buck stops. This is not the same as the winmodem problem, incidentally, where actual hardware gets artificially emulated in software, but the software is only available for mswindows. In past years a lot of people blamed linux for not being able to support their modems, when the hardware vendors were responsible for the problem just mentioned, by churning out kit with bits missing and hardware to emulate it (of course, this has an associated performance cost, so is not as good as the real thing, even under mswindows). A similar problem still happens with some hardware, but less people are using dialup modems now i suppose.  
Quote
For some seemingly innocent kernel configurations, the damn thing just died during boot. A lot of the advanced network functionality in 2.6.x tree is known to have system crashing bugs. That's enough for me to declare that the kernel tree doesn't work, as I couldn't get the damn thing to work even after several days of kernel hacking and debugging.
do microsoft release their testing versions of software? you can consider that since the whole world is the development team for the linux kernel, that you are dealing with a "testing" version. how is it appropriate to compare testing versions with finished releases?
Quote
The only thing I managed to figure out that the NIC drivers themselves weren't likely at fault, but something strange in the iptables/packetscheduler implementation.
ok, i haven't used the 2.6 kernels yet, many 2.4 based systems work fine on my compaq m300.

Quote
Regarding native applications and GNU, my point was that the applications that are written against one api do not necessarily perform very well on a system where the api is provided in form a translation layer.
true, and it's what i was saying above in my replies to you here.  
Quote
Also, my wget on windows has some strange issues that it doesn't have on linux, and although the glitches only happen rarely they're still annoying.
ok, my solution to this is don't use it in windows, use it in a real GNU system like linux, your mileage may vary though, since you seem to consider that things should run fine in windows. i am sure you are right in your criticisms about crossover office incidentally, and i am not keen on this sort of thing either, this is essentially the same thing you're complaining about here, i suppose.
Quote
Another thing about native applications is applications that have GUI. I recently installed bittorrent-4.0.0 with its crappy api. Now, I'm not that picky, but the damn thing breaks so many of windows GUI principles it hurts. Not to mention that if I minimize it, the UI processing dies COMPLETELY and I won't be able to even close it. It does this every time. I'd rather have a native GUI.
that's not much use. still, it has nothing to do with linux does it? is it from the GNU software people? i suspect that's a third party app, just like any crappy third party app (there are thousands) with its own bugs. the fact of it being open source, or whatever your main point is doesn't really come into it. one of my favourite applications in windows is CDex - it looks consistent with the windows UI, is fast, efficient, easily configurable and completely stable. It is also totally open source, and incidentally, it's written for mswindows. what i am saying here is that criticising the open source model based on some crappy software is ludicrous since there's no connection between the two just because some crappy software happens to be open source (tons more shit software is shareware or postcardware for example)

Quote
Phew, which of the skipped issues you want me to respond to, or do you have any comments about what I just said?
there are my comments, if you skipped them, then you probably had your reasons, what we have said is still there for other contributors to read and comment on, so maybe somebody else will ask a question.
visit these websites and make yourself happy forever:
It's my music! | My music on MySpace | Integrational Polytheism

muzzy

  • Member
  • **
  • Posts: 391
  • Kudos: 409
    • http://muzzy.net/
Re: How to make your Windows machine more stable and secure
« Reply #63 on: 19 March 2005, 19:57 »
By "Quick Stabs" I meant your way of answering my points by merely addressing a way I express it. I.e. tangling to words, twisting them, and so on. I have a view here that I'm trying to express, and I'd rather like to discuss about it itself than the exact words I use to express it.

Regarding my view of not considering w9x series as a Windows operating system, it's because the two series are a completely different operating systems with completely different design and approach at doing things. NT is what Windows should've been from the very beginning.

Quote from: Calum
so, the windows 9x stuff is implemented using a virtual machine? or is it an emulation layer?


Neither, actually. The win32 executive subsystem is practically just a process. The applications you run just communicate with it through a client/server type of relationship. The win32 api is implemented as a bunch of libraries that applications link against, and these libraries implement the message passing between the win32 executive. I think you've seen the CSRSS.EXE in your process manager and been wondering what it is, it's the win32 executive subsystem server process. The graphics and gui stuff however are implemented as a separate kernelmode subsystem for higher performance, so that no context switching is needed for message passing. Nothing is "emulated".

The Win16 Executive Subsystem server is more of a virtual machine, even though it runs the binaries natively.

Quote from: Calum
not surprising since 17 years of microsoft windows has been various versions of this crap. you can't just write off millions of people's experiences of microsoft's useless software by saying you don't like to think of it as windows.


17 years? Has it really been that long? All of the win3.x, win9x, and NT have been quite radically different systems. I think you're right about my use of the word, I should just call my OS of preference "Windows NT", except that people would think I mean some ancient version. I've preferred to use "Windows" to only mean the current design, which btw has been a separate branch of an OS since pre-3.x times. If only microsoft didn't call them all just "Windows", this naming practice makes me think they're referring to the user environment and not the OS...

Quote from: Calum
what do you think of the HURD concept incidentally? where everything is seperated form the kernel if it possibly can be? seems like they are having a hard time implementing it after all these years, i don't know much about it, but just wondered what you think of their general principle behind kernel design.


I haven't really looked into HURD, but since it's a pure microkernel design, I'm expecting they won't get a high performance desktop running anytime soon. The message passing overhead of a pure microkernel design is just too heavy IMO. Windows NT bypasses these issue by having a slightly altered microkernel design. If HURD can design around context switching and scheduling overheads which will come from having a microkernel design, it could turn out to be a really good OS. It's a bit early to say, and I haven't really had an in-depth look into it.

Quote from: Calum
i honestly do not see how this relates to vulnerabilities of one system versus another relating to worms. i understand metcalfe's law but not your habit of invoking it regularly.


There have been countless holes in linux which have been as severe as the windows holes. There has been enough time for people to write worms too. Typically, they haven't had such a big impact as the windows worms do. This is because of numbers.

About MS Paint, yeah it isn't very feature filled, however my point was that it's perfectly suitable for drawing and should not be considered as a joke. It's a serious application that can do a lot of things, just like gimp can do a lot of things. However, mspaint isn't a gimp replacement and gimp isn't a photoshop replacement.

And regarding suidroots, there just isn't a way around all of it. Applications are set suidroot because they need to do something that the user cannot do. Typically applications drop their root privileges after they're done using it, but there have been countless of vulnerabilities that have occurred before this happens. One way to solve the problem in *nix environment is to create a separate user for the process. This works fine with services, so they can be chrooted for filesystem scoping and so on. However it doesn't work at all for those said applications, because users cannot be given fine grained privileges without really funky patches. Pretty much all of the current linux distros depend on root user to exist, and suidroot applications ran as its privileges. There are some interesting process based security patches which takes root privileges away from the user and give them to specific binaries, but such systems aren't used by any common distros.

Quote from: Calum
but you fail to even admit that such a thing as people checking each other's work for errors is beneficial.


You are making the assumption that sources are necessary for this, yet quality assurance testing is regularly done without sources.

Quote from: Calum
up until windows 98 they were also accessible using filenames, has this never been the case under NT, out of interest? personally i think there are a lot of benefits to the "everything is a file" idea.


The devices are still available under the unified namespace, the CreateFile() api supports syntax like \\.\FOO to access objects under the object namespace \??\ directory. The command prompt still looks up object names from the same directory as well, and this is where things like C: D: E: and other symbolic links live, and point to the real physical devices. The idea of the object namespace is to have systemwide (and per-session) named objects for things like events, processes, threads, desktops, etc. Named pipes are still implemented as a filesystem and are all files, even though they're not part of either object namespace nor the filesystem namespace. There are various similar unofficial namespaces, and they are accessible through device objects in the object namespace. In conclusion, I don't think there are any benefits over the "everything is a file" over the NT design. Any issues I can think of can be blamed on the command prompt implementation, which doesn't even support the full NT filesystem namespace (alternate stream syntax not properly supported, for example)

Quote from: Calum
i think i have to take a leaf out of your book and blame that on you. if you fail to compile the kernel in a way that is capable of supporting your hardware, then whose fault is it?


The thing is, it supported my hardware. Trying to compile it with packet scheduling (hardware independent) stuff made it trash. The kernel is supposed to be compiled with various different settings, and every configuration is supposed to work or at least give a sensible errors what's going on. Some of the configuration I tried wouldn't even go as far as starting init, they'd either mysteriously reboot (bug), or kernel panic due to something unexpected (bug). I know perfectly well how to compile stuff, and to my best knowledge my configurations were totally OK. The kernel just didn't work. If you had the patience to go through some of the changelogs, you'd find that the 2.6.x series is totally fucked. In 2.6.9 you could crash the kernel by merely opening enough connections, a bug which took down my shellbox once. Even with "normal" configurations the damn thing is so bugridden it hurts, and I figured that there were some things that almost always made the kernel die a horrible death when turned on (ingress filtering, for example)

2.4.x late kernels work fine, but lack stuff for which I would've wanted to use 2.6.x. So, I made the mistake of assuming a kernel tree with a "stable" version numbering scheme would've actually had stable kernels.

Quote from: Calum
do microsoft release their testing versions of software? you can consider that since the whole world is the development team for the linux kernel, that you are dealing with a "testing" version. how is it appropriate to compare testing versions with finished releases?


This was a really REALLY low now. Basically, you are saying that linux shouldn't be ever expected to work? Yeah, that's about right. Now, think again what you said, think carefully. Do you really want to ask me this question?

Orethrius

  • Member
  • **
  • Posts: 1,783
  • Kudos: 982
Re: How to make your Windows machine more stable and secure
« Reply #64 on: 19 March 2005, 20:22 »
To misquote Albert Einstein:
NT ist VMS to ze SECOND POWER, you TWIT!

That silliness out of the way, I'd just like to make a short observation.  You seem to have a bad habit of blaming bad applications in Windows on the program sources, then blaming the same under Linux (not even a specific distro, mind you, the kernel AS A WHOLE) on the kernel compilers.  I'll consider having a debate with you over that particular fallacy once you return from Ganymede and have your spacesuit disinfected.

EDIT:
Wikipedia
Quote
Metcalfe's law states that the value of a communication system grows as approximately the square of the number of users of the system (N

Proudly posted from a Gentoo Linux system.

Quote from: Calum
even if you're renting you've got more rights than if you're using windows.

System Vitals

skyman8081

  • VIP
  • Member
  • ***
  • Posts: 910
  • Kudos: 187
    • http://sauron.game-host.org/
Re: How to make your Windows machine more stable and secure
« Reply #65 on: 19 March 2005, 20:22 »
I though the the even-number branches were the STABLE one's.  (e.g. 2.2, 2.4, 2.6)  and the odd-numbered kernels were the testing and UNSTABLE branch. (2.1, 2.3, 2.5, 2.7).

PS.  When I tried 2.6.0 when it was first released, I figured that since it was an even-numbered release it would work smoothly, right?  WRONG!

I was running gentoo at the tme, so installing it wasn't too bad.  I installed it with the drivers for my hardware selected.  Only, one thing when I booted it.  The NIC and sound-card didn't work.

Okay, I go back and make sure that the drivers for my NIC's chipset are selected, they are.  I have emu10k1 selected, as before.  same thing happens.

I keep trying with no success, I'm missing xmms by now.

On the nest try I boot with a kernel panic saying that it can't mount root(/)

Well I look in make menuconfig, and I see that I have reiserfs and ext3 selected (neither are modules).  and try again.

same thing.


Guess I had too high of expectations of it, expecting it to work and all...
2 motherfuckers have sigged me so far.  Fuck yeah!


Calum

  • Global Moderator
  • Member
  • ***
  • Posts: 7,812
  • Kudos: 1000
    • Calum Carlyle's music
Re: How to make your Windows machine more stable and secure
« Reply #66 on: 20 March 2005, 02:19 »
Quote from: muzzy
By "Quick Stabs" I meant your way of answering my points by merely addressing a way I express it. I.e. tangling to words, twisting them, and so on.
bullshit. you say something, at least admit it.  
Quote
I have a view here that I'm trying to express, and I'd rather like to discuss about it itself than the exact words I use to express it.
then say what you mean, and stop trying to change your mind about what you said afterwards.

Quote
Regarding my view of not considering w9x series as a Windows operating system, it's because the two series are a completely different operating systems with completely different design and approach at doing things. NT is what Windows should've been from the very beginning.
whatever. you give this reason, but it does not change the fact that windows 98, 95, 3.11 and so on are very much a part of what ms windows is and has been, for a huge proportion of users, myself included.

Quote
17 years? Has it really been that long?
longer i think, actually, i think the first windows was 1983 (is this right?) so that makes it twenty something years...
Quote
All of the win3.x, win9x, and NT have been quite radically different systems. I think you're right about my use of the word, I should just call my OS of preference "Windows NT", except that people would think I mean some ancient version.
would they? it'd be better than your current choice of words, although i know you prefer not to choose your words very carefully so that you can let other people misunderstand you liberally.
Quote
I've preferred to use "Windows" to only mean the current design, which btw has been a separate branch of an OS since pre-3.x times.
again, prefer what you like, windows is windows. and btw it also sucks! :-D  
Quote
If only microsoft didn't call them all just "Windows",
oh if only! and if only they didn't crash to BSOD within a day of installing them. considering you "hate" (your word), windows XP too, i wonder just exactly which windows releases you actually do like.
Quote
this naming practice makes me think they're referring to the user environment and not the OS...
as has always been the case, yes.



Quote
I haven't really looked into HURD, but since it's a pure microkernel design, I'm expecting they won't get a high performance desktop running anytime soon.
ok, just wondered if you had checked it out, what you say seems to have been borne out since it's been ongoing for decades with no finished product on the table that i have heard of.
Quote
The message passing overhead of a pure microkernel design is just too heavy IMO. Windows NT bypasses these issue by having a slightly altered microkernel design. If HURD can design around context switching and scheduling overheads which will come from having a microkernel design, it could turn out to be a really good OS. It's a bit early to say, and I haven't really had an in-depth look into it.
well, perhaps early when counted in ice ages, in my opinion it should be brought out while at least some of the people who originally started working on it are still alive.



Quote
There have been countless holes in linux which have been as severe as the windows holes. There has been enough time for people to write worms too. Typically, they haven't had such a big impact as the windows worms do. This is because of numbers.
like how you back that up, if i say "this is because linux is inherently more secure", then i think i have backed myself up with about the same amount of evidence as you have.

Quote
About MS Paint, yeah it isn't very feature filled, however my point was that it's perfectly suitable for drawing and should not be considered as a joke. It's a serious application that can do a lot of things, just like gimp can do a lot of things. However, mspaint isn't a gimp replacement and gimp isn't a photoshop replacement.
yup.

Quote
And regarding suidroots, there just isn't a way around all of it. Applications are set suidroot because they need to do something that the user cannot do. Typically applications drop their root privileges after they're done using it, but there have been countless of vulnerabilities that have occurred before this happens. One way to solve the problem in *nix environment is to create a separate user for the process. This works fine with services, so they can be chrooted for filesystem scoping and so on. However it doesn't work at all for those said applications, because users cannot be given fine grained privileges without really funky patches.
you have lost me here, why can unpriveleged users not be created for every time this happens? i just don't have the general knowledge to understand you here i think.
Quote
Pretty much all of the current linux distros depend on root user to exist, and suidroot applications ran as its privileges. There are some interesting process based security patches which takes root privileges away from the user and give them to specific binaries, but such systems aren't used by any common distros.
specific binaries then would always be run as root? which ones? is this the same as now, but with no root user? sorry to seem dumb.



Quote
You are making the assumption that sources are necessary for this, yet quality assurance testing is regularly done without sources.
i don't see how if one person writes something (in source code, yes?) and then compiles it into a working binary, then gives it to somebody else to check, that the checker will be able to point out potential errors and vulnerabilities just as well from the binary as from the code. the code will contain everything the developer originally wrote, including comments. have i missed something here? this seems pretty simple in concept, to me.



Quote
The devices are still available under the unified namespace, the CreateFile() api supports syntax like \\.\FOO to access objects under the object namespace \??\ directory. The command prompt still looks up object names from the same directory as well, and this is where things like C: D: E: and other symbolic links live, and point to the real physical devices. The idea of the object namespace is to have systemwide (and per-session) named objects for things like events, processes, threads, desktops, etc. Named pipes are still implemented as a filesystem and are all files, even though they're not part of either object namespace nor the filesystem namespace. There are various similar unofficial namespaces, and they are accessible through device objects in the object namespace. In conclusion, I don't think there are any benefits over the "everything is a file" over the NT design. Any issues I can think of can be blamed on the command prompt implementation, which doesn't even support the full NT filesystem namespace (alternate stream syntax not properly supported, for example)
i don't know, (and i really don't, since it's not something i think about a lot), but the model you describe at least sounds messy compared with everything being a file. i am sure that's not the most involved criticism, but that's my instinctual thought.



Quote
The thing is, it supported my hardware. Trying to compile it with packet scheduling (hardware independent) stuff made it trash. The kernel is supposed to be compiled with various different settings, and every configuration is supposed to work or at least give a sensible errors what's going on. Some of the configuration I tried wouldn't even go as far as starting init, they'd either mysteriously reboot (bug), or kernel panic due to something unexpected (bug). I know perfectly well how to compile stuff, and to my best knowledge my configurations were totally OK. The kernel just didn't work. If you had the patience to go through some of the changelogs, you'd find that the 2.6.x series is totally fucked. In 2.6.9 you could crash the kernel by merely opening enough connections, a bug which took down my shellbox once. Even with "normal" configurations the damn thing is so bugridden it hurts, and I figured that there were some things that almost always made the kernel die a horrible death when turned on (ingress filtering, for example)

2.4.x late kernels work fine, but lack stuff for which I would've wanted to use 2.6.x. So, I made the mistake of assuming a kernel tree with a "stable" version numbering scheme would've actually had stable kernels.
hmm, that was a mistake, when looked at historically. of course stable and unstable when referring to continually developing software is always misleading. if it was stable, then essentially you are saying NO bugs can ever be found in that code again. over a certain size this is completely untenable to ensure. i make no claims for the stability of various version numbers of the linux kernel, but your habit of comparing linux with windows usually hinges on the design model, not the specifics of a particular kernel version, also, you still do not mention the fact that you are comparing a kernel with an operating system, for example red hat and suse seem totally stable to me, they are both based on a linux kernel (from the late 2.4s, so that agrees with you). I have indeed heard pretty horrible things about the 2.6 kernels, another reason i'm steering well clear until one happens to come by default in a linux distribution. i seem to recall the uptake of 2.4 was a lot faster than the uptake of 2.6 seems to be, and this is an indication of just how stable it is, but this in no way reflects on the development model, it could mean a lot of things, organisational problems in the maintainers, trying to implement lots of new (clashing) things at once and many more.



Quote
This was a really REALLY low now. Basically, you are saying that linux shouldn't be ever expected to work?
if that's the case then basically you have cotton wool in your ears and your head up your arse. there have been thousands of available versions of the linux kernel, and maybe a dozen or so versions of the NT kernel (always embedded in a take-it-or-leave-it operating system) and to some degree all the linux kernels are development versions, oho but so are all the NT ones, i bet. nothing "works" by your definition. my linux systems "work" for everything i want them to do (well, actually the driver for my samsung printer sucks a bit and prints only half a page at a time, but since it is contributed by samsung, i have them to blame, not the linux kernel itself), but windows fails to "work" by even remaining running long enough for me to save my work sometimes! i know how many of our users' PCs need to be reimaged at work just to fix some problem that is known but unfixable, so don't go moaning to me that linux never works and windows always does.
Quote
Yeah, that's about right.
thank you, it is.
Quote
Now, think again what you said, think carefully.
ok, you too. why is this necessary?
Quote
Do you really want to ask me this question?

i don't need to. clearly you have different criteria for what "works" means than me. clearly you have different ideas of who is responsible for one problem or another and clearly you have different ideas of the severity of one issue or the other from me, and probably this is the case for everybody in a way.

you stick with your nice happy windows if you want, and i will stick with what works for me. hint: not windows

in fact this has always been my position and it will continue to be my position. why you expect me to try and defend "linux" is beyond me, if you're so sold on mswindows, why even bother discussing the issue with people here? are you on some gods given mission to "convert" us to your cause. it reminds me of all those people who whine on about not being able to run xxxwindows-app under linux, why do they bother trying? run it under windows, that's what it's been compiled and released for! the odd thing is, those people never usually seem to have much discursive (and perhaps cognitive) ability, so why your position is so similar confuses me.
visit these websites and make yourself happy forever:
It's my music! | My music on MySpace | Integrational Polytheism

muzzy

  • Member
  • **
  • Posts: 391
  • Kudos: 409
    • http://muzzy.net/
Re: How to make your Windows machine more stable and secure
« Reply #67 on: 20 March 2005, 02:46 »
Quote from: Calum
bullshit. you say something, at least admit it.  then say what you mean, and stop trying to change your mind about what you said afterwards.


This is such a big point that I'll address it in a separate message. You were making assumptions about what I was saying, making up connections between things merely because of words used. For example, I said I hated XP and you tried to hit me with what I had earlier said, that most windows haters don't understands how windows works. These two are unrelated, there's no deduction that makes your logic possible.

For another example of your incorrect use of logic and quick stabs, I was asking why do you think a fraud has happened when it could be explained by incompetence. You replied, asking why I claim incompetence when I say windows is well designed. Again, these two are completely unrelated things, and you have introduced unstated assumptions about how incompetence works. I was trying to say that it could've really been just an accident, due to quickly running the thing on some system and making a video of it, and people performing the video making didn't know it was supposed to be a virgin system or whatever. Such mistakes happen, and they're not due to malice. They have nothing to do with implementation of the system, as should be bloody obvious.

I chose not to reply to the specific punches because your logic was completely off, to an extent which made me believe you're just purposedly trying to find something to throw at me. I understand that communication tends to always fail, and things are left misunderstood, but I don't think you're so stupid to make such logic mistakes if you'd stop to think about what you're saying. Now you're calling it bullshit, so I have very little choices left. I'd rather leave your hastily made comments alone, as I don't think there's much point in attacking them. Definitely the details of expression have nothing to do with the subject.

muzzy

  • Member
  • **
  • Posts: 391
  • Kudos: 409
    • http://muzzy.net/
Re: How to make your Windows machine more stable and secure
« Reply #68 on: 20 March 2005, 03:07 »
And now, regarding the linux kernel development process.

Typically it has worked so that odd branches have been used for developing, 1.1, 1.3, 2.1, 2.3, 2.5 .. and then mature features have been incorporated into the stable trees when they've been tested and found to be good. In theory, this should makes it easier to keep the stable trees actually stable. However, currently they've screwed with the 2.6.x tree, and they're releasing versions such as 2.6.11.5. Yes, one additional minor number, reserved for bugfixes alone. You could say that this reflects the increased rate of kernel development speed or some other nice sounding crap, but the fact is that 2.6.x tree is being BUGGY AS HELL, and developing isn't done in a development branch of the kernel. The 2.5 tree was abandoned two years ago and currently there is NO DEVELOPMENT TREE for linux at all. The development is done in a "stable" tree, which truly boggles the mind. Why the heck is this?

It used to be possible to expect that the linux kernel actually works, but no longer with 2.6.x tree. It's not intentional that the "stable" tree kernels don't work.

You're trying to redefine the word "stable" in a new way, and obviously the stable tree cannot be guaranteed to be bugfree. However, the damn code could at least be tested before putting it there. Otherwise the naming practices are just totally pointless. Ofcourse, there hasn't been much logic into them for a while now, with "rc" releases not being release candidates, and other grumpy things going on.

Either way, I don't think there's any purpose to argue about if linux or windows is better for pretty much any purpose, if you're saying that one shouldn't ever expect linux to work at all. System that cannot be trusted is worthless for a great many purposes, since the availability cannot be guaranteed. I thought you were unhappy because windows was buggy and crashing for you, yet you say that linux is better because it can't be expected to work at all. WTF? Did I misunderstand something now?

Calum

  • Global Moderator
  • Member
  • ***
  • Posts: 7,812
  • Kudos: 1000
    • Calum Carlyle's music
Re: How to make your Windows machine more stable and secure
« Reply #69 on: 20 March 2005, 03:21 »
Quote from: muzzy
You're trying to redefine the word "stable" in a new way,
not really, no.
Quote
and obviously the stable tree cannot be guaranteed to be bugfree. However, the damn code could at least be tested before putting it there. Otherwise the naming practices are just totally pointless. Ofcourse, there hasn't been much logic into them for a while now, with "rc" releases not being release candidates, and other grumpy things going on.
yes i agree, and a lot of people have said similar things. but considering how long we (rhetorically speaking) wait for a windows release to come out, all i am saying is that at least you get the buggy code immediately with linux. i think from what you're saying that you want the versions with an even minor number to be considered not suitable for developers, which is something like the intention of the numbering scheme in the first place, i suppose, i don't really have a serious argument against this point of yours, but i just think that there are working linux kernels, that are not all that old, and in fact are more recent than a lot of windows stuff that is considered current by people who use it.

Quote
Either way, I don't think there's any purpose to argue about if linux or windows is better for pretty much any purpose, if you're saying that one shouldn't ever expect linux to work at all.
ignore me as you will, but you are the only one who said linux doesn't work. i say that it does something like five times in my last reply in fact! nevertheless, if you believe there's no point talking about it, if you think linux doesn't work, then why are you still talking?
Quote
System that cannot be trusted is worthless for a great many purposes,
precisely why i do not use windows any more.
Quote
since the availability cannot be guaranteed. I thought you were unhappy because windows was buggy and crashing for you,
this is true.
Quote
yet you say that linux is better because it can't be expected to work at all. WTF? Did I misunderstand something now?

i think so, since i didn't say any such thing.

i am saying (very roughly) that with windows, you get a release every year or two years, that is often unstable for the applications that everybody wants to run on it, and is usually later shown to be insecure in a number of ways. with linux, there are always usable, working kernels, and systems based on those kernels that are at most a few months, or in the case of the occasional distro a year old. these work by and large with the software that people use with them, to the extent that hundreds of software vendors have packaged these apps with the kernel along with their own config files and utilities to create functional, stable systems.

guess which model i prefer, and more importantly why.

you can probably out-wow me on a lot of technical issues, but seeing what works (and what doesn't) for me, and for some other people i know, or have met, and figuring out why is not something you can pull the wool over my eyes about, even though you may educate me on the specifics.
visit these websites and make yourself happy forever:
It's my music! | My music on MySpace | Integrational Polytheism

Calum

  • Global Moderator
  • Member
  • ***
  • Posts: 7,812
  • Kudos: 1000
    • Calum Carlyle's music
Re: How to make your Windows machine more stable and secure
« Reply #70 on: 20 March 2005, 03:37 »
Quote from: muzzy
This is such a big point that I'll address it in a separate message. You were making assumptions about what I was saying, making up connections between things merely because of words used.
the *only* input people get from you here is the words you use. stick by the words you use, or everything you say is a farce.
Quote
For example, I said I hated XP and you tried to hit me with what I had earlier said, that most windows haters don't understands how windows works. These two are unrelated, there's no deduction that makes your logic possible.
they are related in a simple and clear way: they are both about windows, and they both state who hates microsoft windows. if you don't make sense, please do not blame that on me, just try to make more sense in future, or nobody's going to be able to understand you.

Quote
For another example of your incorrect use of logic
my "incorrect use of logic"? who made you my judge and executioner? after repeatedly misusing the english language, i find this a bit rich on the nose coming from you.
Quote
and quick stabs,
do you object to the quickness? i really still do not understand why you have a problem with short replies to comments. nevertheless, perhaps i can soften the blow by padding this response out a bit. there we go, that's two completely unecessary sentences slapped onto the end already! any better?
Quote
I was asking why do you think a fraud has happened when it could be explained by incompetence. You replied, asking why I claim incompetence when I say windows is well designed. Again, these two are completely unrelated things,
no they are not. one is where you state that windows is well designed, the other is where you say it was designed by incompetents. this is clear, simple and precise.  
Quote
and you have introduced unstated assumptions about how incompetence works.
you have a habit of introducing unstated assumptions yourself, which is why your words are often (apparently) taken by their real meanings and not by the meaning you imagine them to have when you type them.
Quote
I was trying to say that it could've really been just an accident, due to quickly running the thing on some system and making a video of it, and people performing the video making didn't know it was supposed to be a virgin system or whatever. Such mistakes happen, and they're not due to malice.
neither is incompetence. thanks for explaining yourself, but you now seem to be saying i suggested malicious behaviour when all i did was question your seemingly out-of-place cries of incompetence.
Quote
They have nothing to do with implementation of the system, as should be bloody obvious.
ok, but you seem to want people to be a lot more restrained linguistically than you would like to be able to be yourself. I wasn't actually criticising what you said, mainly because i hadn't ascertained what it actually was yet that you were saying. sorry, sometimes i need things to be made pretty clear to me. it helps to avoid misunderstandings.

Quote
I chose not to reply to the specific punches because your logic was completely off,
you just responded, though to what i have no idea.
Quote
to an extent which made me believe you're just purposedly trying to find something to throw at me. I understand that communication tends to always fail, and things are left misunderstood, but I don't think you're so stupid to make such logic mistakes if you'd stop to think about what you're saying. Now you're calling it bullshit, so I have very little choices left.
you just called me stupid, i think. you are saying (correct me if i am wrong) that either i am trying to get you angry or else i am stupid. please clarify, and then i would thank you to keep such opinions to yourself in future, unless you care to take the time to address the specific issues, which you seem to think are beneath you.
Quote
I'd rather leave your hastily made comments alone, as I don't think there's much point in attacking them. Definitely the details of expression have nothing to do with the subject.
to the contrary, if you express yourself with inaccurate words, you are simply introducing rubbish into the discussion, you even criticise me for making hasty remarks just now, which is in fact more or less what i was commenting about you earlier, something which you continue to deny is an important factor.
visit these websites and make yourself happy forever:
It's my music! | My music on MySpace | Integrational Polytheism

muzzy

  • Member
  • **
  • Posts: 391
  • Kudos: 409
    • http://muzzy.net/
Re: How to make your Windows machine more stable and secure
« Reply #71 on: 20 March 2005, 03:39 »
And then, to reply to the rest of the things...

My hate towards XP is because of the even more braindead configuration than w2k. In w2k3, the default configuration is a lot better, although it needs some work as well. The operating system internals behind XP are fine, however it's loaded with so much cruft that it takes hours and then hours to setup. For a home desktop setup, I find this unacceptable. Then again, I should just quit whining and make my own install CD with registry patches and so on to do the main work for me. However, I'd rather stay away since w2k does everything I need and most of the things I want. XP sure has some lovely kernel changes, such as ability to detach debugger once you have attached it, as under w2k you can't detach without killing the process. Overall, the fact that XP is targeted strongly towards home users is probably what makes it so crappy by default. I just don't belong to the target audience of that specific version.

Regarding source availability and binaries, obviously having the sources allow the software to be studied in a lot easier fashion, and by many more people especially if it's written in some mainstream language. I already stated that my point was that having sources and being allowed to make changes were two independent things. I'm not saying that it's just as easy to work on binary than it is on source, I'm saying that source availability isn't a factor to being allowed to modify and analyze software. For a concrete example, consider any leaked sources of your preference. Half-Life 2 or Windows 2000/NT4 sources for example. They're out there for public to download, yet this doesn't give you any rights.

You might think this isn't exactly on the topic here, since you're probably talking only about the open source development model. Right, it's just a one variable in the whole thing. In the open source model rights are typically granted for modification and somewhat free use. However, the proprietary development models aren't equivalent to the one variable simplification either. Companies have QA departments, they do testing with paid testers and write unit tests and other stuff. Some open source projects have great testing processes implemented, but then the quality isn't because of open source but because of the development process itself. In my opinion, open source doesn't lead to better quality by itself, it requires a lot more than that.

Again, there's just too much stuff in your posts to reply to. If you think I haven't answered to something you consider important, point it out. I'm not intentionally skipping any "difficult questions", I'm just trying to keep the signal-to-noise ratio from drifting into madness, with varying success :)

Calum

  • Global Moderator
  • Member
  • ***
  • Posts: 7,812
  • Kudos: 1000
    • Calum Carlyle's music
Re: How to make your Windows machine more stable and secure
« Reply #72 on: 20 March 2005, 03:43 »
ok, thanks for answering, this is a good answer at this juncture because it makes me feel like you're not just in it for a shit slinging match.

again, if somebody else has other questions, go for it. i'll ask questions again as and when new issues are raised (or old ones resurrected perhaps!
visit these websites and make yourself happy forever:
It's my music! | My music on MySpace | Integrational Polytheism

muzzy

  • Member
  • **
  • Posts: 391
  • Kudos: 409
    • http://muzzy.net/
Re: How to make your Windows machine more stable and secure
« Reply #73 on: 20 March 2005, 04:15 »
Fine, we seem to be having some communication problems here.

If my words are misunderstood, you still say I should stick to my words? Do you mean I should stick to the meaning you understood, or to what I was saying in the first place? It would make more sense to stick for the latter.

Regarding the trust to linux releases, if the kernel version number says "this is stable" and then it isn't, you obviously can't trust it. You said they can't be expected to be bugfree, I agree. But I'd like to know some effort has been made to guarantee that what is called "stable" is actually tested, just like it used to be. It's just like it is with random numbers, it doesn't matter one bit what you have if you don't know it came from a good source.

Regarding your logic in the XP hater thing, here's how it goes. "Most windows haters don't know how it works" is same as: For all windows haters, most don't understand how it works. Now, based on this statement, you cannot make any assumptions about any single windows hater, it's about statistics. Need an example? Let's say "most flying animals are birds", and "bat is a flying animal". Irregardless of correctness of these assumptions, you cannot use them to conclude that bat is a bird. This is because "most" is not same as "all".

Also on topic of quick stabs, you again get stuck on the words. Perhaps these posts have become too long to be used for a meaningful conversation. I don't object to short responses, I object to responses on single words alone that miss the meaning of them. I stated your logic was incorrect and gave examples of why I thought so. If you didn't understand what I was saying, you could've asked for a clarification. I tried to say something, you know.

I have to admit that as someone into mathematics and programming, I see things and language in a slightly different way than most people seem to see them. I don't think this needs to be a problem, though, as long as you understand that I'm here to talk about THINGS, not about WORDS. Please try to understand what I'm saying, and tell me when you think I don't understand what you're saying. It serves no good to engage in a verbal swordfight for the sake of arguing alone.

muzzy

  • Member
  • **
  • Posts: 391
  • Kudos: 409
    • http://muzzy.net/
Re: How to make your Windows machine more stable and secure
« Reply #74 on: 20 March 2005, 04:16 »
Heh, I wrote that before I read your response above. Writing takes a horribly long time x_x