One of the CDs that have been on heavy rotation in my CD player recently (definitely in my “A” playlist at the moment) is the 2005 Soul Survivor sampler “We must go”, featuring many of the songs that were sung during Soul Survivor’s annual summer event in Shepton Mallet / Somerset (UK). And while I miss a few songs (it would have been so great to have that spontaneous 15 minute instrumental worship set by Delirious? on the CD, but I didn’t think that was going to happen anyway), it’s still a great collection that as always has been masterfully put together to re-capture the listeners and take them back to the events of last summer (if in fact they were there… people who weren’t will probably love the CD almost as much). If I were to name my favourite songs, I’d have to name almost all of them… so maybe I should just mention that the only real disappointment is “Superlatives” by Marl Beswick and his “Power Praise” singers… after their breathtaking rendition of “Lord, I lift Your name on high” on the 2004 sampler, I expected a lot more, both live and on the CD. Anyway, maybe I’m just missing whatever is so special about this song… I hope it wasn’t just put on the CD because the Soul Survivor guys had to.
All in all, a great CD, definitely worth having a look (and listen) at – and don’t miss the extra 5-track bonus CD with some of the highlights of the “Momentum” festival for “students and 20somethings” that ran between the two main Soul Survivor weeks. Hey, maybe I’ll see some of you there this summer…
Technorati : CD, christian, music, soul survivor
January 2nd, 2006
In his
In his article, Brian puts the latest CERT vulnerability report a little bit into perspective, taking a look mainly at the Windows side of things. It would have been interesting to hear his take on the Unix/Linux side as well… there are a lot of flaws in the way CERT generates the list, at least if you want to use it for statistical purposes. They count every time a vulnerability was reported in a 7 day period, so some vulnerabilities that had updates or were reported to affect multiple platforms have been counted up to eight times (the Apache mod_ssl verify restriction bypass vulnerability, for example) because the reports trickled in over the course of several weeks and were updated frequently. All those reports point to the same CVE number, though, making it pretty clear that this is in fact just a single vulnerability.
So before anyone just looks at the numbers and concludes that 800+ vulnerabilities in Windows are a lot less than 2300+ in Linux/Unix and thus Windows must be more secure should process this list and remove all the duplicates that have been caused by this kind of reporting – and then bear in mind that the open nature of most Linux software leads to more open disclosure of vulnerabilities – if a vulnerability in some other software was silently fixed, but never reported, it will not show up in the CERT list. That kind of silent fixing is much more likely in a closed source environment because nobody will really know what changed in the latest update.
Technorati : CERT, Linux, Windows, software
January 2nd, 2006