Language Selection

English French German Italian Portuguese Spanish

Oracle's Lunacy

Filed under
Security
  • No, You Really Can’t

    Writing mysteries is a lot more fun than the other type of writing I’ve been doing. Recently, I have seen a large-ish uptick in customers reverse engineering our code to attempt to find security vulnerabilities in it. This is why I’ve been writing a lot of letters to customers that start with “hi, howzit, aloha” but end with “please comply with your license agreement and stop reverse engineering our code, already.”

    [...]

    But you know, if Oracle's strongly-worded letters are written in Davidson's style, I think I'd quite enjoy the entertainment value.

  • No, You Really Can’t (Mary Ann Davidson Blog)
  • Oracle security chief to customers: Stop checking our code for vulnerabilities [Updated]

    Perhaps thinking that all the security researchers in the world were busy recovering from Black Hat and DEF CON and would be somehow more pliant to her earnest message, Mary Ann Davidson wrote a stern message to customers entitled "No, You Really Can't" (here in Google's Web cache; it's also been reproduced on SecLists.org in the event that Oracle gets Google to remove the cached copy). Her message: stop scanning Oracle's code for vulnerabilities or we will come after you. "I’ve been writing a lot of letters to customers that start with 'hi, howzit, aloha'," Davidson wrote, "but end with 'please comply with your license agreement and stop reverse engineering our code, already.'"

  • Oracle pulls CSO's BONKERS anti-bug bounty and infosec rant

    While other IT industry heavyweights have embraced bug bounties and working with security researchers more generally, Oracle has set its face in the opposite direction in a blog post likening reverse engineering to cheating on your spouse.

    Mary Ann Davidson, Oracle's chief security officer (CSO), expressed corporate dislike from the software giant for both reverse engineers and bug bounties in a long blog post on Monday. The post was pulled on Tuesday lunchtime, but its contents remain available via the Internet Archive here.

  • Oracle to 'sinner' customers: Reverse engineering is a sin and we know best

    Opinion: Stop sending vulnerability reports already. Oracle's chief security officer wants to go back to writing murder mysteries.

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.

More in Tux Machines

Our favorite open source writing tools

Writing is one of the primary ways we communicate, and it's endlessly fascinating to see the different ways writers work. I can hardly imagine writing before computers and their ability to instantly edit and rearrange the words I've typed onto a screen. Likewise, I wonder whether people who started out writing on a typewriter process their thoughts differently, even on a modern word processor, or whether their workflow has changed and adapted because of these new tools. We asked some of our correspondents how they get their thoughts into comprehensible words and what open source tools they prefer while doing so. As you might expect, we got different answers from everyone who answered. Read more

Lightweight Linux Distros for Old Laptop (2020)

Do not discard that old PC or laptop yet. You can use a lightweight Linux distro to make them as good as new. Some of these Linux distros are specifically for use in older machines. You can use any of the lightweight Linux distros and bring your old machine back to life. In as much we focus on the old distros, we do have some new releases that do not require many resources that can re-invent your old computers. Read more

The 40 Best Raspberry Pi Blogs For The Pi Geeks

If you are a Raspberry Pi Geek, then this article about the Raspberry Pi blogs is sure to take the nerves out of you. It is often that you get stuck with a new project and crave for the accurate tutorials. Also, some beginners get confused about where to start and wish they had a resource to start with. To help with that, many Raspberry Pi enthusiasts like you have created blogging sites that are being updated regularly. In this modern world, with the emerging importance of IoT and machine learning, Raspberry Pi is a must to learn. In this article, I am going to talk about 40 best Raspberry Pi blogs you should really look into. If you are thinking of starting a new project or making your own invention using the Raspberry Pi, you are ought to need these blog sites. Read more

Audiocasts/Shows: Destination Linux, FLOSS Weekly, Unfettered Freedom, TLLTS and Noodlings

  • Destination Linux 186: Quality Control in Linux, System76 Keyboard & DLN Game Fest!

    00:00 Intro 00:44 Welcome to DL186 01:06 Lower Deck 01:48 What Ryan has been up to 02:46 What Noah has been up to 07:11 What Michael has been up to 10:05 Digital Ocean https://do.co/dln 11:34 Community Feedback: Linux Mint’s System Reports 12:47 Noah’s suggestion to the Linux Foundation to help with Tech Support in Linux 13:59 What does the Linux Foundation do? 16:33 Send Us Feedback: comments@destinationlinux.org 17:06 News: System76 Reimagining The Keyboard 22:26 Security Advisory: Snapdragon Vulnerabilities (Android Users Need To Update) 25:21 Bitwarden https://bitwarden.com/dln 26:56 Topic of the Week: Quality Control in Linux (DLN Forum Thread) 41:21 DLN Game Fest on August 30th at 4PM Eastern! 43:48 Linux Gaming: Camp Canyonwood 45:18 Tip of the Week: /boot 47:17 ShellShock Added to DLN Game Fest by Patron Request 48:19 Software Spotlight: ProtonMail Bridge 48:52 Become a Patron of Destination Linux 50:15 DLN Store https://dlnstore.com 50:39 Join the DLN Community! (Ryan made Noah give up on the \being hip\ stuff this week lol) 52:14 More Great Content at DestinationLinux.Network 52:33 Journey itself . . . 52:39 Preview of the Patron Post Show

  • FLOSS Weekly 591: PLATO & The Rise of Cyberculture - Programmed Logic for Automatic Teaching Operations

    P.L.A.T.O. is an acronym for Programmed Logic for Automatic Teaching Operations. Before the internet, there was the PLATO system which was not only computer-based education but, surprisingly, the first online community. Doc Searls talks with Shawn Powers and Brian Dear who was the author of Friendly Orange Glow which is the first book on PLATO. The book discusses the importance of PLATO. PLATO was the original incubator for social computing: instant messaging, chat rooms, message forums, the world's first online newspaper, and so much more. PLATO also created flat-panel gas plasma displays and was one of the first systems with touch panels built-in to the screen. They discuss how PLATO and the rise of the cyberculture and the internet were due to the "Hacker Method" an agreement among early developers to share and have open code.

  • Unfettered Freedom, Ep. 2 - FSF Elects President, Emacs 27.1, Mozilla Layoffs, HBO Drops Linux

    Unfettered Freedom is a video podcast that focuses on news and topics about GNU/Linux, free software and open source software. On this freedom-packed episode: 0:00 - Intro 1:27 - Free Software Foundation finally elects a new president.

  • The Linux Link Tech Show Episode 870

    samsung chromebook review, developing on chromebook, arduino, keypad programming

  • Noodlings | BIOS Games Serving the NDI™ Plugin

    18 Episodes… 18 is a fun number. Divisible by 2, 3, 6 and 9. The age you can vote in the United States.