359 Lotus blogs updated hourly. Who will post next? Home | Downloads | Events | Pods | Blogs | Search | myPL | About 
 
Latest 7 Posts
New SSL3 Exploit: The POODLE Is Here and Lifting Its Leg
Wed, Oct 15th 2014 2010
Linux Bash Bug - Shellshock - FINAL FIX RELEASED: Get Patched (AIX, Mac Too)
Mon, Sep 29th 2014 422
Linux Bash Bug - Shellshock - is Real: Get Patched (Mac Too)
Thu, Sep 25th 2014 3511
Ryder Cup Skype Chat Announced
Wed, Sep 24th 2014 192
Big News for ICS Partners!
Wed, Sep 17th 2014 527
Using Sametime Mobile? Avoid iOS 8 for Now
Tue, Sep 16th 2014 189
I AM Speaking at ICON UK
Thu, Sep 11th 2014 152
Top 10
Linux Bash Bug - Shellshock - is Real: Get Patched (Mac Too)
Thu, Sep 25th 2014 3511
New SSL3 Exploit: The POODLE Is Here and Lifting Its Leg
Wed, Oct 15th 2014 2010
Managing VMware Tools on Linux, Part II: Fixing "An error occurred while mounting" During Boot-up
Sun, Jul 14th 2013 852
IBM’s Lost Art of Installation is Costing Them Revenue
Mon, Aug 25th 2014 831
Big News for ICS Partners!
Wed, Sep 17th 2014 527
Skype 4.3 on Linux Crashing? Here’s a Fix.
Tue, Aug 5th 2014 472
How To Receive Ubuntu 12.04 Kernel Updates After 7 August 2014
Wed, Jul 16th 2014 440
Linux Bash Bug - Shellshock - FINAL FIX RELEASED: Get Patched (AIX, Mac Too)
Mon, Sep 29th 2014 422
Soccer Saturday, The First IBM ConnectED Activity Announcement!
Mon, Jul 28th 2014 344
Firefox Upgrade Kills iNotes, ICS SSL Product Access with Domino CA/Self-Signed Certs
Sun, Aug 3rd 2014 339


LotusLearns -- The Good, The Bad, and Yes, It’s Ugly (Underneath)
Bill Malchisky    

Plenty of members in the blogger community are discussing this important topic. I am all for aggregating content to make people find information easier for how they use the web. The issue is that most of the blogger content is protected by copyright. That is sacred. Being a published author, this topic is sensitive for me. Very early in my consulting career, I was on a project where a consultant working for a competing firm and from a country that had few protections for the written word, borrowed the training material from a Lotus class paid for by the customer. He then went around to all of the other customers asking who wanted a copy. I declined. He then asked my trainer who was a CLI. She gave him an attitude adjustment and went to the client. Being a man of integrity, the client immediately saw the issue and fixed the problem. The point is that we take our protections of published work seriously here. For someone to disrespect the author's wishes for how their information is to be disseminated is shameful.

Another aspect is of the marketing on the site. Do the vendors know that the content on the site is being provided in a manner that is questionable in character? I would guess, and this is conjecture on my part, but most are probably sold on the concept sans seeing the site. If there were involved early on, then most definitely, in my opinion. Curious how the sponsors would respond if they knew there name was appearing adjacent to potentially illegally published content. If the business owner has integrity, I would think the advertising revenue stream would dry-up quickly. But that is a guess on my part, knowing nothing about LotusLearns particular arrangements therein.

If the CEO of LotusLearns chooses to publish the works from blog sites, then that is fine, so long as she provides attribution. If the author published the information as copyleft, then there is no issue. In grade school, most domestic children were taught that if you use another resource other than your own in your report, research, review, or other writing, you must provide a bibliography, reference page, or footnote section to properly cite your sources. It is sad to contemplate that school children have more sense of responsibility than some adults. To take --- without permission --- what is not one's and publish as one's own is dishonorable, illegal, and equates to cheating, in my opinion (I state this as such as I am not an attorney, nor do I disseminate legal opinions--just my perspective).

Would it really be that much harder for LotusLearns to append either as a prefix or suffix, a proper cite reference for her content?
If you consider all of the community heat that site is going to take with its approach, plus all the time the LotusLearns CEO will spend defending its actions, it would be a better use of her and everyone else's time if she would just put the URL, source article name, and blog title for each post. That builds goodwill, earns respect and would make a potentially useful site an asset in our community.

---------------------
http://www.BillMal.com/billmal/billmal.nsf/dx/04202012110012PMWMA5JQ.htm
Apr 20, 2012
57 hits



Recent Blog Posts
2010


New SSL3 Exploit: The POODLE Is Here and Lifting Its Leg
Wed, Oct 15th 2014 3:38a   Bill Malchisky Jr.
Here we go again... another blockbuster security exploit with another clever code name is announced. POODLE (Padding Oracle On Downgraded Legacy Encryption) CVE-2014-3566 specifically allows a man-in-the-middle style attack utilizing an SSL3 connection. Once again, Red Hat does a stellar job offering full details on background, technical specifics, and testing. Google's Online Security Blog post is exceedingly terse when contrasting. Here is what you need to know. What is It? CVE-2014-356 [read] Keywords: admin domino ibm applications enterprise firefox google linux microsoft network oracle red hat redhat security server
422


Linux Bash Bug - Shellshock - FINAL FIX RELEASED: Get Patched (AIX, Mac Too)
Mon, Sep 29th 2014 6:13a   Bill Malchisky Jr.
Author's Note: Thank you to the ICS community for their tremendous support of my first Shellshock post. For those that read it early, you received critical information 14-72 hours before many sites released their stories. Several readers were fully patched before big names tweeted the issue. You were well ahead of the curve. Shellshock stories released over the weekend proved outdated and incomplete. This post provides better information faster. I am grateful for your support. As I mentione [read] Keywords: ibm protector aix apple application bug centos community desktop linux mac macintosh red hat redhat security server twitter ubuntu
3511


Linux Bash Bug - Shellshock - is Real: Get Patched (Mac Too)
Thu, Sep 25th 2014 6:13a   Bill Malchisky Jr.
This is ugly, but fortunately you just have to update to a fixed Bash version and your fine (for now). No need to reboot your system either. Red Hat is out early on this and escalated this appropriately. Their first round of updates got all but one exploit permutation, so they re-issued another bug identifier and are working to close it soon. Their initial timeline: Red Hat announced the bug on 14 Sep, had a proposed upstream patch seven hours later (0500h 15 Sep), backported it to Bash 3.0, [read] Keywords: domino apple application bug centos enterprise linux mac red hat redhat security ubuntu
192


Ryder Cup Skype Chat Announced
Wed, Sep 24th 2014 9:12p   Bill Malchisky Jr.
It is that time again when the best pro golfers in The United States of America take on the best pro golfers in Europe for the coveted Ryder Cup. This year, it is played at the beautiful Gleneagles course in Scotland designed by pro golf legend Jack Nicklaus, who describes his course hole by hole. Play commences Friday, Saturday at 7:35am local time, or 2:35am EDT, with a more respectable Sunday start at 11:36a local time, or 6:36a EDT for singles play. I will open a Skype chat for the event. [read] Keywords: google iphone mobile skype
527


Big News for ICS Partners!
Wed, Sep 17th 2014 10:15p   Bill Malchisky Jr.
After three years of working with IBM, I am proud to make the first public announcement of the beta milestone of a new IBM community feedback continuity tool entitled, Voice of the Partner. ICS is behind this at the highest levels and there is a strong desire within IBM to make this a success. Imagine that as a partner you have a tool where you can input ideas and concerns to IBM and receive a response in a meaningful way, that also ensures continuity of feedback throughout the issue's life [read] Keywords: ibm community
189


Using Sametime Mobile? Avoid iOS 8 for Now
Tue, Sep 16th 2014 6:12a   Bill Malchisky Jr.
IBM released a Technote yesterday on the issues with their Sametime Mobile applications on iPhones and iPads running iOS 8 -- due for release on Wednesday, 17 September 2014. My friends Gabriella Davis and Matteo Bisi both blogged on the Technote. Beyond that, there exists a post on The Sametime Blog offering a behind-the-scenes look as to the challenges therein, written by the on-premises Sametime Product Manager - Marlon Machado. In meeting Marlon previously, I can tell you he is a good guy an [read] Keywords: connections ibm sametime apple applications mobile planetlotus planetlotus.org




152


I AM Speaking at ICON UK
Thu, Sep 11th 2014 11:13a   Bill Malchisky Jr.
Long story short, I will be speaking this Friday, 12 September in London, for the ICON UK renaissance. You can find me acting as emcee for the Ask IBM session at 2:00pm (1400h) and then again at 3:45pm (1545h) presenting The Headless Collaborator: Sametime 9 Command Line Install. If you are in London for this wonderful event, please do say, "Hi," or better yet, attend one of my sessions. See you Friday! [read] Keywords: ibm sametime
253


iNotes Users -- Chrome 37 Creates Compatibility Issues
Fri, Sep 5th 2014 2:12p   Bill Malchisky Jr.
IBM released today, a new Technote for iNotes users, entitled, "Some iNotes operations fail to work correctly in Chrome browsers upgraded to Chrome version 37" and is available here. These five key areas introducing concern stem from Google deprecating the showModalDialog API. 1. Create/Edit Mail rule 2. Contacts Form and the Print action 3. Calendar view and results window displayed when using the "Import Holidays" action (off the "More" menu) 4. Preferences (Select [read] Keywords: ibm inotes lotus google password security
159


Ubuntu: Clearing GPG -- BADSIG Errors During Update
Wed, Sep 3rd 2014 9:13a   Bill Malchisky Jr.
In updating my Ubuntu LTS host OS caused me to receive several GPG BADSIG errors, visually captured in the following Update Manager error message. You can see the errors more closely via a terminal window. malchw@san-domino:~$ sudo apt-get update W: A error occurred during the signature verification. The repository is not updated and the previous index files will be used. GPG error: http://extras.ubuntu.com precise Release: The following signatures were invalid: BADSIG 16126D3A3E5 [read] Keywords: domino applications archive google linux python ubuntu
172


Fixing Public Key Repository Errors on Ubuntu
Tue, Sep 2nd 2014 12:15a   Bill Malchisky Jr.
Most of have seen at one point of another a error when updating packages, stemming from an untrusted repository. W: GPG error: http://security.ubuntu.com precise-security Release: The following signatures couldn't be verified because the public key is not available: NO_PUBKEY 40976EAF437D05B5 Here is one fix that works reliably well. Perhaps it will save you some time. 1. Syntax: sudo apt-key adv --keyserver keyserver.ubuntu.com --recv-keys 2. $ sudo apt-get update Repeat for [read] Keywords: domino archive linux security server ubuntu




Created and Maintained by Yancy Lent - About - Blog Submission - Suggestions - Change Log - Blog Widget - Advertising - Mobile Edition