Slashdot Mirror

You can also use Group Policy:
http://technet.microsoft.com/en-us/library/cc738867(v=ws.10).aspx

The Microsoft article http://support.microsoft.com/kb/2793313 referenced above points to http://technet.microsoft.com/library/cc960646.aspx

The Microsoft article http://support.microsoft.com/kb/2793313 referenced above points to http://technet.microsoft.com/library/cc960646.aspx

http://technet.microsoft.com/en-us/library/cc738867(v=ws.10).aspx

http://apps.microsoft.com/windows/en-US/app/angry-birds-star-wars/c7628194-ce39-4a18-97e9-590af59c2fd0
http://apps.microsoft.com/windows/en-US/app/angry-birds-space/8ece2571-91e0-4f2f-b7e5-b0b7944ced2d

Clearly, you know a great deal about the Win8 app ecosystem...

http://apps.microsoft.com/windows/en-US/app/angry-birds-star-wars/c7628194-ce39-4a18-97e9-590af59c2fd0
http://apps.microsoft.com/windows/en-US/app/angry-birds-space/8ece2571-91e0-4f2f-b7e5-b0b7944ced2d

Clearly, you know a great deal about the Win8 app ecosystem...

Well if you remove the site license complication, which you agree is a side issue.

That's just a proprietary copyright. What you are saying is companies should have fully proprietary copyright but distribute source. Most vendors do offer that. For example http://www.microsoft.com/en-us/sharedsource/default.aspx

Preempting my install fun when I get home I looked this up. I post here to help the lazy. http://answers.microsoft.com/en-us/windows/forum/windows_7-windows_programs/windows-7-is-not-compatible-with-adobe-photoshop/6f1b4955-7166-4b8f-ad9b-5d19150f803f

But... but... but... the Office document formats have been documented! Third-party compatibility shouldn't be an issue any more. Nor should MS have to rely on a quarter century of some of the cruftiest code on the planet to maintain their monopoly. They can simply create new apps with more flexible (and comprehensible) UIs and modern, efficient code to replace the legacy Office.

Yes, I know this was sarcasm, but it's still worth elaborating upon.

The modern Office file formats are indeed properly documented. The problem is that the formats are themselves heavily influenced by legacy crap, so the design is incredibly baroque and runs well into thousands of pages. You'd need a major corporate-led effort to get good compatibility with OOXML; independent developers aren't going to be able to do it. And even Google has had trouble with it in the past. (Perhaps they've gotten better by now; this article is about 20 months old.)

But with legacy Office documents, and with crap like macros and VBA, even Microsoft probably doesn't really know how they work any more. I actually fielded a call from a family friend a few days ago about being unable to open Word 2.0 and WordPerfect documents in Office 2007. (Apparently they still use those ancient programs in some departments of the organization he consults for.) Turns out that Word supports these formats, but it's turned off by default for "security reasons". In other words, they have a ton of old legacy code that doesn't meet modern security standards and that they can't or won't rewrite, but is needed for backwards compatibility. So they just turn it off by default and sort of hope it will eventually go away.

BULLSHIT & I prove it using your LYING WORDS quoted below, troll!

Plugins ALSO SLOW DOWN browsers (especially in FireFox - more messagepassing overheads is why).

Face it - you LIED & got caught, see below, & yet again (especially since you troll me on hosts) trying to say it was on DNS?

LMAO - see the FIRST LINE I QUOTE FROM YOU BELOW, troll...

"So the point I've made all along is that AdBlock isn't actually using the Operating System's DNS stack to block at all - it appears in the execution cycle before the DNS query or the fetch." - by webmistressrachel (903577) on Sunday January 06, @07:33AM (#42494615)

HOSTS DO IT FAR BEFORE THAT, @ OS load via tcpip.sys (a driver, fast as it gets).

See subject-line above - no, NO "outs" via lies troll.

Hosts were the issue, & I'll QUOTE YOU ON THAT TOO, directly:

PERINTENT QUOTE/EXCERPT:

---

"As for HOSTs, give it, up you can't burn anyone.

Adblock:
Web Page Parser -->URL Analyzer -->Plugins ||| BLOCK

HOSTs:
Web Page Parser -->URL Analyzer -->Plugins --> DNS Lookup --> Process HOSTS file (sometimes in RAM) -->Timeout Period for Local Webserver (10-30secs) ||| BLOCK = Slower."

YOUR WORDS in error, massive error, STRAIGHT FROM -> http://slashdot.org/comments.pl?sid=3351357&cid=42472651

On HOSTS querying too?? LMAO - you are IN ERROR, "non-sequitur", & WRONG!

(As per your trolling UNDEREDUCATED stupid usual? You *tried* to 'try me' there on HOSTS files, yet AGAIN, & YOU FAILED)..

Have you NO shame, troll?

---

Microsoft's OWN documentation shows your MISINFORMATION BULLSHIT above, right here (again):

http://support.microsoft.com/kb/172218

Host name resolution generally uses the following sequence:

---

The client checks to see if the name queried is its own.

The client then searches a local Hosts file, a list of IP address and names stored on the local computer.

Domain Name System (DNS) servers are queried.

---

I mean, not only are you COMPLETELY "non-sequitur" here? You're also NOW ''busted" as a fucking LIAR!

Above ALL else - You said "us OS types don't know things you web GOOFS do"?

LMAO - SEE ABOVE! Without US? You wouldn't have a POT TO PISS IN, period... no browsers coded by actual REAL coders? You're shot...

APK

P.S.=> Payback's a BITCH, isn't it? Especially since you ADMIT to trolling (stalking & harassing is more like it), ME, for years now:

"I'm known for teasing apk" - by webmistressrachel (903577) on Tuesday January 01, @12:00AM (#42438977) Journal

FROM -> http://slashdot.org/comments.pl?sid=3350243&cid=42438977

BUT, also via ac trolling/stalking/harassing posts, via nefarious means (proxying onion routers):

"Screw you, apk, and the horse you rode in on. If I ever see you post here again, I'll bomb you as AC from Tor, meaning I'll NEVER run out of posts because I can change endpoint..." - by webmistressrachel (903577) on Sunday July 03 2011, @02:03PM (#36647614)

FROM -> http://slashdot.org/comments.pl?sid=2292298&cid=36647614

---

You did this, to yourself...

... apk

It has come to my attention that the entire Linux community is a hotbed of so called 'alternative sexuality', which includes anything from hedonistic orgies to homosexuality to paedophilia.

What better way of demonstrating this than by looking at the hidden messages contained within the names of some of Linux's most outspoken advocates:

• Linus Torvalds is an anagram of slit anus or VD 'L,' clearly referring to himself by the first initial.
• Richard M. Stallman, spokespervert for the Gaysex's Not Unusual 'movement' is an anagram of mans cram thrill ad.
• Alan Cox is barely an anagram of anal cox which is just so filthy and unchristian it unnerves me.

I'm sure that Eric S. Raymond, composer of the satanic homosexual propaganda diatribe The Cathedral and the Bizarre, is probably an anagram of something queer, but we don't need to look that far as we know he's always shoving a gun up some poor little boy's rectum. Update: Eric S. Raymond is actually an anagram for secondary rim and cord in my arse. It just goes to show you that he is indeed queer.

Update the Second: It is also documented that Evil Sicko Gaymond is responsible for a nauseating piece of code called Fetchmail, which is obviously sinister sodomite slang for 'Felch Male' -- a disgusting practise. For those not in the know, 'felching' is the act performed by two perverts wherein one sucks their own post-coital ejaculate out of the other's rectum. In fact, it appears that the dirty Linux faggots set out to undermine the good Republican institution of e-mail, turning it into 'e-male.'

As far as Richard 'Master' Stallman goes, that filthy fudge-packer was actually quoted on leftist commie propaganda site Salon.com as saying the following: 'I've been resistant to the pressure to conform in any circumstance,' he says. 'It's about being able to question conventional wisdom,' he asserts. 'I believe in love, but not monogamy,' he says plainly.

And this isn't a made up troll bullshit either! He actually stated this tripe, which makes it obvious that he is trying to politely say that he's a flaming homo slut!

Speaking about 'flaming,' who better to point out as a filthy chutney ferret than Slashdot's very own self-confessed pederast Jon Katz. Although an obvious deviant anagram cannot be found from his name, he has already confessed, nay boasted of the homosexual perversion of corrupting the innocence of young children. To quote from the article linked:

'I've got a rare kidney disease,' I told her. 'I have to go to the bathroom a lot. You can come with me if you want, but it takes a while. Is that okay with you? Do you want a note from my doctor?'

Is this why you were touching your penis in the cinema, Jon? And letting the other boys touch it too?

We should also point out that Jon Katz refers to himself as 'Slashdot's resident Gasbag.' Is there any more doubt? For those fortunate few who aren't aware of the list of homosexual terminology found inside the Linux 'Sauce Code,' a 'Gasbag' is a pervert who gains sexual gratification from having a thin straw inserted into his urethra (or to use the common parlance, 'piss-pipe'), then his homosexual lover blows firmly down the straw to inflate his scrotum. This is, of course, when he's not busy violating the dignity and co

It has come to my attention that the entire Linux community is a hotbed of so called 'alternative sexuality', which includes anything from hedonistic orgies to homosexuality to paedophilia.

What better way of demonstrating this than by looking at the hidden messages contained within the names of some of Linux's most outspoken advocates:

• Linus Torvalds is an anagram of slit anus or VD 'L,' clearly referring to himself by the first initial.
• Richard M. Stallman, spokespervert for the Gaysex's Not Unusual 'movement' is an anagram of mans cram thrill ad.
• Alan Cox is barely an anagram of anal cox which is just so filthy and unchristian it unnerves me.

I'm sure that Eric S. Raymond, composer of the satanic homosexual propaganda diatribe The Cathedral and the Bizarre, is probably an anagram of something queer, but we don't need to look that far as we know he's always shoving a gun up some poor little boy's rectum. Update: Eric S. Raymond is actually an anagram for secondary rim and cord in my arse. It just goes to show you that he is indeed queer.

Update the Second: It is also documented that Evil Sicko Gaymond is responsible for a nauseating piece of code called Fetchmail, which is obviously sinister sodomite slang for 'Felch Male' -- a disgusting practise. For those not in the know, 'felching' is the act performed by two perverts wherein one sucks their own post-coital ejaculate out of the other's rectum. In fact, it appears that the dirty Linux faggots set out to undermine the good Republican institution of e-mail, turning it into 'e-male.'

As far as Richard 'Master' Stallman goes, that filthy fudge-packer was actually quoted on leftist commie propaganda site Salon.com as saying the following: 'I've been resistant to the pressure to conform in any circumstance,' he says. 'It's about being able to question conventional wisdom,' he asserts. 'I believe in love, but not monogamy,' he says plainly.

And this isn't a made up troll bullshit either! He actually stated this tripe, which makes it obvious that he is trying to politely say that he's a flaming homo slut!

Speaking about 'flaming,' who better to point out as a filthy chutney ferret than Slashdot's very own self-confessed pederast Jon Katz. Although an obvious deviant anagram cannot be found from his name, he has already confessed, nay boasted of the homosexual perversion of corrupting the innocence of young children. To quote from the article linked:

'I've got a rare kidney disease,' I told her. 'I have to go to the bathroom a lot. You can come with me if you want, but it takes a while. Is that okay with you? Do you want a note from my doctor?'

Is this why you were touching your penis in the cinema, Jon? And letting the other boys touch it too?

We should also point out that Jon Katz refers to himself as 'Slashdot's resident Gasbag.' Is there any more doubt? For those fortunate few who aren't aware of the list of homosexual terminology found inside the Linux 'Sauce Code,' a 'Gasbag' is a pervert who gains sexual gratification from having a thin straw inserted into his urethra (or to use the common parlance, 'piss-pipe'), then his homosexual lover blows firmly down the straw to inflate his scrotum. This is, of course, when he's not busy violating the dignity and co

It has come to my attention that the entire Linux community is a hotbed of so called 'alternative sexuality', which includes anything from hedonistic orgies to homosexuality to paedophilia.

What better way of demonstrating this than by looking at the hidden messages contained within the names of some of Linux's most outspoken advocates:

• Linus Torvalds is an anagram of slit anus or VD 'L,' clearly referring to himself by the first initial.
• Richard M. Stallman, spokespervert for the Gaysex's Not Unusual 'movement' is an anagram of mans cram thrill ad.
• Alan Cox is barely an anagram of anal cox which is just so filthy and unchristian it unnerves me.

I'm sure that Eric S. Raymond, composer of the satanic homosexual propaganda diatribe The Cathedral and the Bizarre, is probably an anagram of something queer, but we don't need to look that far as we know he's always shoving a gun up some poor little boy's rectum. Update: Eric S. Raymond is actually an anagram for secondary rim and cord in my arse. It just goes to show you that he is indeed queer.

Update the Second: It is also documented that Evil Sicko Gaymond is responsible for a nauseating piece of code called Fetchmail, which is obviously sinister sodomite slang for 'Felch Male' -- a disgusting practise. For those not in the know, 'felching' is the act performed by two perverts wherein one sucks their own post-coital ejaculate out of the other's rectum. In fact, it appears that the dirty Linux faggots set out to undermine the good Republican institution of e-mail, turning it into 'e-male.'

As far as Richard 'Master' Stallman goes, that filthy fudge-packer was actually quoted on leftist commie propaganda site Salon.com as saying the following: 'I've been resistant to the pressure to conform in any circumstance,' he says. 'It's about being able to question conventional wisdom,' he asserts. 'I believe in love, but not monogamy,' he says plainly.

And this isn't a made up troll bullshit either! He actually stated this tripe, which makes it obvious that he is trying to politely say that he's a flaming homo slut!

Speaking about 'flaming,' who better to point out as a filthy chutney ferret than Slashdot's very own self-confessed pederast Jon Katz. Although an obvious deviant anagram cannot be found from his name, he has already confessed, nay boasted of the homosexual perversion of corrupting the innocence of young children. To quote from the article linked:

'I've got a rare kidney disease,' I told her. 'I have to go to the bathroom a lot. You can come with me if you want, but it takes a while. Is that okay with you? Do you want a note from my doctor?'

Is this why you were touching your penis in the cinema, Jon? And letting the other boys touch it too?

We should also point out that Jon Katz refers to himself as 'Slashdot's resident Gasbag.' Is there any more doubt? For those fortunate few who aren't aware of the list of homosexual terminology found inside the Linux 'Sauce Code,' a 'Gasbag' is a pervert who gains sexual gratification from having a thin straw inserted into his urethra (or to use the common parlance, 'piss-pipe'), then his homosexual lover blows firmly down the straw to inflate his scrotum. This is, of course, when he's not busy violating the dignity and co

You may have failed to realize that Win32 doesn't mean 32 bit windows API. It simply means "Not the old 16 bit API"

I don't fail to realize anything - I know perfectly well that Win32 is a cross-architecture API. My point was that, from users' perspective (and especially for enterprise users, which is what GP was referencing), the compatibility story is nil because there are no existing apps that would run. Sure, most apps are just a recompile away, but someone would have to make that recompile.

IMO, Win8 is about MS trying to sandbox programs via VM (C#) and simultaneously provide cross platform support while taking a cut of every software sale made. Now, I'm not going to eat that app-store cost. You are. I'll just raise my price accordingly on MS's market to offset those fees... Sucks, but C'est la vie. If MS continues allowing "side-loading" then they can't force developers like me to sell programs in their store -- C/C++ is cross platform, and so is my code, so I just rebuild the binary for each target platform, it's not a big deal. Rebuilding everything in C# and suffering that vendor lock-in cluster fsck is really off-putting, considering my C code runs across the board on every chipset, even MIPS, and every OS (thanks to OS abstraction layer, and a bit of meta-programming for iOS and Android)... No such luck with C#, yet.

Just FYI, Store apps are not required to be managed. You can write 100% native apps in C++ for it - no VM, no GC.

(Yes, it does use language extensions for system APIs, although even those are optional. And yes, those extensions do look like C++/CLI. Nevertheless, they work differently, and they don't compile to managed code.)

Hence C# only in App Store & XBL Indie Games

Store apps don't support XNA. In fact, pretty much the only way to write a game for Win8 Store right now (unless it's something so basic that you can make do with XAML or HTML5) is to use C++ and Direct3D.

Here it is again -> http://slashdot.org/comments.pl?sid=3360735&cid=42494787 SINCE YOU VAINLY *TRIED* TO "HIDE IT" VIA UNJUSTIFIABLE DOWNMODS!

* NO HIDING IT NOW!

APK

P.S.=>

"So the point I've made all along is that AdBlock isn't actually using the Operating System's DNS stack to block at all - it appears in the execution cycle before the DNS query or the fetch." - by webmistressrachel (903577) on Sunday January 06, @07:33AM (#42494615)

WHAT A FUCKING LYING PIECE OF ONLINE TRASH YOU ARE! YOU ATTACKED ME ON HOSTS FILES LIAR... and FAILED badly!

(Below proves that, with YOUR OWN SCREWUPS, trying to "play smart" with ME, you lowlife undereducated TROLL!)

---

Here is what you said, quoted verbatim (not on DNS liar, but on hosts, which LOAD FAR BEFORE YOUR UNDEREDUCATED nincompoop level of 'understanding' of how computers work online, lol):

"As for HOSTs, give it, up you can't burn anyone.

Adblock:
Web Page Parser -->URL Analyzer -->Plugins ||| BLOCK

HOSTs:
Web Page Parser -->URL Analyzer -->Plugins --> DNS Lookup --> Process HOSTS file (sometimes in RAM) -->Timeout Period for Local Webserver (10-30secs) ||| BLOCK = Slower." - by webmistressrachel (903577) on Friday January 04, @01:51AM (#42472651) Journal

FROM -> http://slashdot.org/comments.pl?sid=3351357&cid=42472651

---

Additionally: By the way, idiot?

Microsoft's OWN DOCUMENTATION shows what gets queried first (hosts), not LAST like you listed it quoted from YOU, above... you failed programmer that had to become a 'webwuss', lol:

http://support.microsoft.com/kb/172218 [microsoft.com]

Host name resolution generally uses the following sequence:

---

The client checks to see if the name queried is its own.

The client then searches a local Hosts file, a list of IP address and names stored on the local computer.

Domain Name System (DNS) servers are queried.

---

BROWSER PLUGINS, even AdBlock (which doesn't block all ads anymore by default too, a fail right there) SLOW DOWN FIREFOX!

Everyone that's used FF knows it... stack a few of them, & see!

LASTLY - ALL YOUR DOWNMODS OF MY POSTS CAN'T HIDE IT, I won't allow that, lol... now? You "eat it"... lol!

(Told you NOT to *try me*, troll...)

... apk

You do realize that sideloading "Modern" (a.k.a. "Metro") applications is fully possible and officially supported, right?

Microsoft states that it "can detect fraudulent use of a developer license on a registered machine." What information is sent back to Microsoft when a developer license is used to allow Microsoft to "detect fraudulent use"?

Touch input does not need to be done from the screen. Both Microsoft and Logitech have mice that recognize touch gestures across their surface.

Logitech also makes a touch pad that supports multi-touch gestures.

These device should alleviate the problem of "gorilla arm", but in the case of touch sensitive mice, I'm not sure they're a good idea. I tried using the Microsoft Touch Mouse for a few weeks and found it very annoying. Perhaps it's just me, but I found it would frequently respond to some "gesture" I hadn't intended. Usually this resulted in a window being minimized accidentally, but I once lost a considerable amount of typing when the mouse though I made a "back" gesture while posting online. I've stopped using the touch mouse and have ordered the touch pad instead.

"So the point I've made all along is that AdBlock isn't actually using the Operating System's DNS stack to block at all - it appears in the execution cycle before the DNS query or the fetch." - by webmistressrachel (903577) on Sunday January 06, @07:33AM (#42494615)

See subject-line above - no, NO "outs" via lies troll. Hosts were the issue, & I'll QUOTE YOU ON THAT TOO, directly:

PERINTENT QUOTE/EXCERPT:

---

"As for HOSTs, give it, up you can't burn anyone.

Adblock:
Web Page Parser -->URL Analyzer -->Plugins ||| BLOCK

HOSTs:
Web Page Parser -->URL Analyzer -->Plugins --> DNS Lookup --> Process HOSTS file (sometimes in RAM) -->Timeout Period for Local Webserver (10-30secs) ||| BLOCK = Slower."

FROM -> http://slashdot.org/comments.pl?sid=3351357&cid=42472651

Oh, really?

See the 1st thing I quote from you - you are IN ERROR, "non-sequitur", & WRONG!

(As per your trolling UNDEREDUCATED stupid usual? You *tried* to 'try me' there on HOSTS files, yet AGAIN, & YOU FAILED)..

LMAO!

Have you NO shame, troll?

---

Microsoft's OWN documentation shows your MISINFORMATION BULLSHIT above, right here (again):

http://support.microsoft.com/kb/172218

Host name resolution generally uses the following sequence:

---

The client checks to see if the name queried is its own.

The client then searches a local Hosts file, a list of IP address and names stored on the local computer.

Domain Name System (DNS) servers are queried.

---

I mean, not only are you COMPLETELY "non-sequitur" here? You're also NOW ''busted" as a fucking LIAR!

APK

P.S.=> Payback's a BITCH, isn't it? Especially since you ADMIT to trolling (stalking & harassing is more like it), ME, for years now:

"I'm known for teasing apk" - by webmistressrachel (903577) on Tuesday January 01, @12:00AM (#42438977) Journal

FROM -> http://slashdot.org/comments.pl?sid=3350243&cid=42438977

BUT, also via ac trolling/stalking/harassing posts, via nefarious means (proxying onion routers):

"Screw you, apk, and the horse you rode in on. If I ever see you post here again, I'll bomb you as AC from Tor, meaning I'll NEVER run out of posts because I can change endpoint..." - by webmistressrachel (903577) on Sunday July 03 2011, @02:03PM (#36647614)

FROM -> http://slashdot.org/comments.pl?sid=2292298&cid=36647614

---

You did this, to yourself...

... apk

Hosts files DID the blocking already - See subject-line above: Get it?

Microsoft's OWN DOCUMENTATION PROVES IT below (and browsers can't determine where to go WITHOUT ip address resolution first, for URL's host-domain names).

* I.E.-> It happened 1st via hosts files dataloads @ OS startup, & that IS faster because it already happened!

(Plus, it LITERALLY makes AdBlock REDUNDANT, & since Adblock no longer BLOCKS ALL ADS EITHER by default as well - double FAIL for you!).

---

"AdBlock is one of those plug-ins." - by webmistressrachel (903577) on Sunday January 06, @07:33AM (#42494615)

Which slows down FireFox (its addons do that, a known issue)... period, it's a KNOWN issue in fact!

---

"After Seamonkey (or Firefox) has fetched a HTML document, the parser sends each URL to AdBlock for processing.." - by webmistressrachel (903577) on Sunday January 06, @07:33AM (#42494615)

OMG - AGAIN:

READ MICROSOFT'S OWN DOCUMENATION ON WHAT IS QUERIED FOR URL RESOLUTION @ OS STARTUP DURING tcpip.sys loads:

http://support.microsoft.com/kb/172218

Host name resolution generally uses the following sequence:

---

The client checks to see if the name queried is its own.

The client then searches a local Hosts file, a list of IP address and names stored on the local computer.

Domain Name System (DNS) servers are queried.

---

YOU DON'T READ, & thus? YOU FAIL!

---

"AdBlock's list of user- and community-defined blocked URL's is ready and waiting in RAM" - by webmistressrachel (903577) on Sunday January 06, @07:33AM (#42494615)

Clue/New NEWS/NewsFlash:

HOSTS DATA IS ALREADY THERE BEFORE ALL OF THAT! See MS' documenation above... lol!

(I.E.-> Hosts data also gets cached into RAM before browsers even BEGIN to work & either by the local DNS clientside cache, OR, if a larger hosts file? By the kernelmode diskcaching subsystem!)

YOU FAIL AGAIN!

---

"So the point I've made all along is that AdBlock isn't actually using the Operating System's DNS stack to block at all - it appears in the execution cycle before the DNS query or the fetch.." - by webmistressrachel (903577) on Sunday January 06, @07:33AM (#42494615)

YOUR POINT WAS IN ERROR! See next below, after all - YOU SAID IT!

---

Requoting your "order of operations" (non-sequitur) again from where YOU posted it erroneously:

Web Page Parser -->URL Analyzer -->Plugins ||| BLOCK

HOSTs:

Web Page Parser -->URL Analyzer -->Plugins --> >b>DNS Lookup --> Process HOSTS file (sometimes in RAM) -->Timeout Period for Local Webserver (10-30secs) ||| BLOCK = Slower."" - by webmistressrachel (903577) on Friday January 04, @01:51AM (#42472651) FROM -> http://slashdot.org/comments.pl?sid=3351357&cid=42472651

That is NON-SEQUITUR misinformation & ERRONEOUS/INCORRECT - see the BOLD portion you screw up on, bigtime!

(Then, once more: See MS documentation above, & since MS' own IP stack is BSD based, as most all are? YOU FAIL AGAIN!)

APK

P.S.=> You failed, badly... hosts do the job blocking out bad sites, adbanners, & more way, Way, WAY BEFORE AdBlock operates @ all since the IP stack itself of which hosts is a part, operating in kernelmode (fastest mode there is) via the tcpip.sys driver, has ALREADY DONE THAT JOB (making AdBlock redundant, & especially so since it no longer blocks all ads by default)...

Thus, it's already done FASTER beforehand via a faster mode of operations too no less...

... apk

Take a read, because you made a HUGE BLUNDER on hostname/domainname resolution order here -> http://slashdot.org/comments.pl?sid=3351357&cid=42472651

The CORRECT ORDER IS DOCUMENTED, here -> http://support.microsoft.com/kb/172218 *and*, it happens LONG BEFORE ANY WEBBROWSER even begins to start operations... period.

AND

That's the SAME on ANY OS that uses a BSD derived IP stack - which most all, if not ALL, do!

Hosts query first!

(And, hosts load when the tcpip.sys driver loads & without that happening? NO BROWSER can determine where it is that it's supposed to go!)

(LMAO - you listed hosts loads LAST, even after the DNS query (happens after only if data in hosts is not present first -> http://slashdot.org/comments.pl?sid=3351357&cid=42472651 NOT LIKE YOU SAID IN THAT LINK THERE! )).

Guess what else?

That happens @ OS startup, & in a FAR faster mode of operation also!

Ring 0/rpl 0/kernelmode (tcpip.sys load - which also loads hosts)

vs.

Usermode/ring 3/rpl 3 which is what webbrowsers operate in, and addons like AdBlock are KNOWN to slow up FireFox, especially when you put in too many of them (due to messagepassing overheads, even when done "in process" like dlls/libs load, vs. out-of-process loads as in executables).

---

ALL COVERED IN DETAIL IN THESE REPLIES TO YOUR ERRONEOUS "analysis":

http://slashdot.org/comments.pl?sid=3351357&cid=42474269

http://slashdot.org/comments.pl?sid=3351357&cid=42474579

http://slashdot.org/comments.pl?sid=3351357&cid=42475367

---

QUESTION: What OS did you test on?

(If it was Windows, you need to disable your local DNS clientside cache service (with relatively larger hosts files - it has a KNOWN ISSUE with them, & is built on a faulty structure that is LIMITED IN SIZE)).

* After ALL of the above?

Guess what??

YOU FAIL, yet again... lol!

You listing hosts last, when in fact it LOADS FIRST (blocking ads @ the ip stack level since it's a tightly integrated NATIVE part of it) long before!

THAT FACT actually makes ADBLOCK REDUNDANT as well (& it no longer blocks all ads either by default - they ought to call it "almost all ads blocked" now, lol, instead!)

APK

P.S.=> Told you not to *try* me - you made the SAME DAMN MISTAKE TenebrousEdge did, assuming "it all begins with the webbrowser" as to what is blocked or not (& browsers can't do a damned thing until they know where they're going, 1st, AND

Any webbound app, even the OS itself, needs the IP stack for webaccess - just to know where to go via hostname/domainname resolution!

Plus, THE IP STACK's ALREADY LOADED @ OS STARTUP too (which means hosts have loaded already & blocked out bad sites in it too).

Again/once more - BROWSERS or any client app, INCLUDING THE OS USERMODE PARTS in usermode/ring 3/rpl 3 CANNOT DO A DAMNED THING WITHOUT THE IP STACK!

See here http://support.microsoft.com/kb/172218

(DNS also gets queried AFTER hosts - you messed that up, royally... & it holds true for ANY OS that uses a BSD based IP stack... most all, if not ALL, do!)

---

ALL, Per my last post(s)!

Which you blundered BADLY on as to hostname/domainname resolution to IP address order, no less) -> http://slashdot.org/comments.pl?sid=3351357&cid=42474269

By YOU saying DNS operates BEFORE hosts files do... WRONG!

(wrong, Wrong, WRONG - & MS own documentation proved it, & yes - it holds true on ANY OS that uses a BSD based IP stack - most all, if not ALL, do (because it's proven & works and is free to use for anyone).

---

ADDITIONALLY:

Not only that above?

Additionally since hosts (via tcpip.sys, a driver) load first & know what is blocked out already?

THUS:

It makes ADBLOCK REDUNDANT (& adblock doesn't block all ads anymore by default either)...

THUS - Adblock's also become a WASTE of resources too!

Especially since it doesn't block all ads out anymore by default!

---

* I used to recommend it in fact in security guides I've done online (that did EXTREMELY well in both RATINGS & RESULTS for end users of them)!

I recommended adblock, as added "layered-security"/"defense-in-depth" but not anymore because of the above (it doesn't block ALL ads out anymore by default) - not anymore though, because of the above.

APK

P.S.=> So, as you can see? BROWSERS & EVEN THE OS ITSELF, CAN'T DO A DAMNED THING until they know where to go!

And?

The SECOND you make a webbound request? The IP Stack works FIRST & the OS does this already @ startup, test it yourself... see below!

Again - the IP stack's already @ work @ OS startup... tcpip.sys loads first! & that means hosts do also!

(Mind you also - The IP Stack also does the socketstreaming for webpage data download too as well)

The IP stack, once a request from a client occurs (which is the OS itself mind you), already KNOWS, via the hosts file, which I proved works before DNS does (big blunder on YOUR part there), and before usermode apps do!

---

** Please - DO test it in Windows as I show you how to do, below, & it is a COMPLETELY VALID easy to do test...!

---

Heck, or even Linux (though I don't know if it has an indicator for this as Windows does that you can see easily in GUI form)!

---

TEST #1:

In Windows - per NETWORKING PROPERTIES in Control Panel, make the network connections trayicon resident & visible @ OS startup & logon to Windows!

Don't even OPEN a browser yet... watch the IP stack kick on (FIRST)

Thus, proof, & proof that the IP stack has already begun its job to pass data to the usermode apps! Guess what?

THAT ALSO MEANS THE HOSTS FILE HAS ALREADY BEGUN TO DO ITS JOB AS WELL!

(Which IS a far slower ring of privelege & access vs. tcpip.sys, a driver)

Right from far, Far, FAR faster kernelmode/ring 0/rpl 0, to usermode/ring 3/rpl 3 apps!

(Especially ones that get slowed up more, & put a few addons into FireFox, it slows down a LOT, & adblock? It's a browser addon)

---

TEST #2:

Do this too - Load up FireFox

"As for HOSTs, give it, up you can't burn anyone." - by webmistressrachel (903577) on Friday January 04, @01:51AM (#42472651)

Oh, really? Ok - let's let MICROSOFT DOCUMENTATION do the talking, vs. your b.s.:

http://support.microsoft.com/kb/172218

Host name resolution generally uses the following sequence:

---

The client checks to see if the name queried is its own.

The client then searches a local Hosts file, a list of IP address and names stored on the local computer.

Domain Name System (DNS) servers are queried.

---

You "web-centric" people INCORRECTLY ASSUME the order begins in the webbrowser, as to what happens when & in what order, every single time...

* The IP stack does the work on what is blocked (or hardcoded as a favorite to avoid REMOTE DNS SERVER LOOKUPS), and the IP stack does it LONG BEFORE ANY BROWSER OPERATES, via hosts files content...

---

"Adblock:
Web Page Parser -->URL Analyzer -->Plugins ||| BLOCK

HOSTs:
Web Page Parser -->URL Analyzer -->Plugins --> DNS Lookup --> Process HOSTS file (sometimes in RAM) -->Timeout Period for Local Webserver (10-30secs) ||| BLOCK = Slower."" - by webmistressrachel (903577) on Friday January 04, @01:51AM (#42472651)

VERY WRONG - Especially on the order for HOSTS, you fool! You list webbrowser work, url analyzer, plugins, & DNS (biggest fuckup there) FIRST!

(WRONG, WRONG, WRONG!)

Man - you 'web goofs', no wonder most of you suck @ programming & had to gravitate to programming webbrowsers... lol!

See the above!

Argue with Microsoft's documentation (and it's the same on ANY OS that uses a BSD based IP stack - most, if not ALL, do!).

---

* Lastly, by-the-by? Hosts are ALWAYS IN RAM once the IP stack FULLY kicks on!

E.G.-> The IP stack loads them either @ OS startup (Windows 9x/NT 3.5x-2000), OR upon 1st request to the internet (WinXP onwards). The DNS clientside cache can hold it (good with smaller hosts files), OR, the local kernelmode diskcaching subsystem does (like how I do it since i use a large hosts file).

YOU FAIL!

APK

P.S.=> I.E.-> A BROWSER CAN'T DO A DAMNED THING UNTIL A HOSTNAME/DOMAIN NAME IS RESOLVED TO AN IP ADDRESS... & what does that 1st? The IP stack, & Hosts files do!

Again - See above... you FAIL!

... apk

It's $40. Have fun.

Most XP machines will not run Vista/Windows 7/Windows 8...ignoring the fact that Windows 8 is awful. People will upgrade when their computer dies...if at all.

Intel really needs to get its act together: It's Atom processors are a decent low power x86 solution, but as usual Intel has delivered them with a crappy 3D graphics to the point the graphical benchmarks can't even run on them, let alone any recent computer games. For the Atom Cedar Trail release they didn't even do DX10 drivers, and sheepishly back-speced it to the now outdated DX9. ARM tablets can deliver decent 3D, so why can't Intel? Even AMD can provide 3D graphics for low-power PCs. Why can't Intel? And Intel wonders why it's becoming irrelevant to the future of computing!?

No DX10 for you!
http://semiaccurate.com/2012/01/03/intel-thinks-cedar-trail-is-a-dog-reading-between-bullet-points/#.UOY58uRJNxA

Windows must live with DX9. Linux can't do anything at all...
http://tanguy.ortolo.eu/blog/article56/beware-newest-intel-atom

Oh and did I mention it doesn't work on Windows 8.
http://communities.intel.com/message/175674
http://www.eightforums.com/hardware-drivers/12305-intel-gma-3600-3650-windows-8-driver.html
http://answers.microsoft.com/en-us/windows/forum/windows_8-hardware/windows-8-on-intel-atom-d2700dc-graphics-driver/2a6015d3-af92-453d-b0c2-20cc56b764de

It's $40. Have fun.

A Microsoft VP is not really that special (it's not like he's the #2 guy at the company). In fact, every separate division has its own President -- President of Skype, President of MS Office, President of Online Services, President of Interactive Entertainment, President of Server & Tools, President of Business Solutions, etc. (link)

There are something like 15 Vice-Presidents at Microsoft. There are so many that different sub-categories of VP exist: Senior Vice President, Corporate Vice President, etc., and they get reorganized from time to time (link).

So if it helps you can tell yourself, "MS hands out the VP title like candy to any department head, and this guy is the head of legal, so the title is VP of Legal Affairs, which is consistent with how they do things at a lot of large companies".

Lastly, you dont need the start button if you learn how to use whats there.. Thats like complaining when going from Win 3.1 to 95. They got rid of my Program Manager I wish they gave me a way to turn it back on..

They did, from 95 up until XP SP1 ( http://support.microsoft.com/kb/142255 ). Of course back then they actually had people who thought about the impact of new interface design on users:

http://www.sigchi.org/chi96/proceedings/desbrief/Sullivan/kds_txt.htm

At one point in the design of Windows 95 they considered having two separate UIs, the windowed interface we know and a separate, simplified interface they thought might be suitable for beginners, and which seems to have featured a set of tiles that launched the various applications. Although the design "tested well, because it successfully constrained user actions to a very small set", it was abandoned because "If just one function a user needed was not supported in the beginner shell, s/he would have to abandon it (at least temporarily)", learning "would not necessarily transfer well to the standard shell", and "users had to learn two ways of interacting with the computer, which was confusing". I wonder if the Windows 8 design team were aware of this document..?

Think about it a moment. The ultimate piece of malware would be one that can make your computer run software of someone else's choice, prevent you from running software other than the malware, and block you from removing the malware from the system or preventing it from running. Every piece of malware out there tries to do this, with varying degrees of success. Look at the malware that tries to disable anti-virus/anti-malware software.

Now, Restricted Boot would give someone else control over what software could boot on the machine, and prevent you from changing that list of authorized software. You cannot authorize software you want to run to run, nor can you remove authorization from software you do not want to run. You can't influence what runs at boot, you can't alter it's operation. In short, you've bought into every malware author's wet dream: a system where they can do anything they want and the user can't do a thing about it.

And if you think "Oh, but all the system software would be signed by Microsoft, so how would the malware authors get the keys to authorize their software?", think about this: Microsoft certificates have already been compromised. The bad guys have already gotten access to what they need to sign software with legitimate Microsoft keys. The certificates used by the Flame malware were only some of the most recent. And I'd note this older bulletin describing a situation where Verisign issued legitimate certificates issued to Microsoft to black-hats with no association with Microsoft. The bad guys obtaining the private keys to sign software isn't a theoretical discussion, it's already actually happened.

I've run the gamut of various linux distros and am currently transitioning off an OS X server for home. I've come to realize that just because I CAN do something doesn't mean that's the best solution. I've hooked up external drives to a Mac Mini (win7 / Media Browser) that drives our main TV. Shared my media folders to the network and mapped those to libraries on Windows, shares in the dock on the Mac. Why windows for a file server?
1) I own the TV machine already. Broken down by cost, it takes a LOT of electricity to equal the cost of a NAS+drives.
2) it never turns off and
3) windows clients get all bitchy when they can't find the windows indexing service on the share and you try to mount to a library.
Setup is as easy as right click on the folder and choose "share with...specific people...". Backups done via SyncToy to an external disk give you fair redundancy (backup) and let you take your entire movie/music/picture store with you off the network. I don't have an android but for IOS I'd strongly recommend filebrowser to stream movies and music over your local network.

No they do not, so I don't know where you're getting this from.

The Windows 8 Hardware Certification requirements published by Microsoft. To quote the relevant section:

Mandatory. On non-ARM systems, the platform MUST implement the ability for a physically present user to select between two Secure Boot modes in firmware setup: "Custom" and "Standard". Custom Mode allows for more flexibility as specified in the following: It shall be possible for a physically present user to use the Custom Mode firmware setup option to modify the contents of the Secure Boot signature databases and the PK. This may be implemented by simply providing the option to clear all Secure Boot databases (PK, KEK, db, dbx), which puts the system into setup mode.

Mandatory. Enable/Disable Secure Boot. On non-ARM systems, it is required to implement the ability to disable Secure Boot via firmware setup. A physically present user must be allowed to disable Secure Boot via firmware setup without possession of PKpriv.

If we look at the Windows 8 hardware certification requirements from the horse's mouth:

http://msdn.microsoft.com/en-us/library/windows/hardware/hh748188.aspx

It is stated "It shall be possible for a physically present user to use the Custom Mode firmware setup option to modify the contents of the Secure Boot signature databases and the PK. This may be implemented by simply providing the option to clear all Secure Boot databases (PK, KEK, db, dbx), which puts the system into setup mode."

Further on "If the firmware is reset to factory, then any customized Secure Boot variables are also factory reset. If the firmware settings are reset to factory defaults, all custom-set variables shall be erased and the OEM PKpub shall be re-established along with the original, manufacturer-provisioned signature databases."

So an OEM would still comply with the Windows 8 hardware certification requirements even if the end user were blocked from adding any custom keys. In such a scenario the end user would have to disable secure boot completely via firmware setup which must be available on Windows 8 systems (but not Windows RT).

"Font decoding (not just rendering) is done in kernel space on windows (why? It is stupid). This allowed simply viewing a font to be a _ROOT_ expoit in windows!" - by Anonymous Coward on Thursday December 27, @08:14PM (#42407955)

PATCHED ALREADY -> http://technet.microsoft.com/en-us/security/bulletin/MS10-063

* "NEXT"

As to your "WHY"??

Well... & it's done doubtless for performance (kernelmode is way, Way, WAY faster than usermode's why).

PLUS, it's relatively EASY to alter permissions to the FONTS folder too:

http://answers.microsoft.com/en-us/windows/forum/windows_7-security/changing-permissions-to-access-font-files-folder/3f4da342-9a7d-4b5d-9b83-5f2b4bedcca5

As to WHO & WHAT can "get to it", & if the network admins' SMART?

He has lesser privelege usergroups/users in place too...

APK

P.S.=> "Stay Tuned" for my next part #3 of 4 rebuttal...

... apk

"Font decoding (not just rendering) is done in kernel space on windows (why? It is stupid). This allowed simply viewing a font to be a _ROOT_ expoit in windows!" - by Anonymous Coward on Thursday December 27, @08:14PM (#42407955)

PATCHED ALREADY -> http://technet.microsoft.com/en-us/security/bulletin/MS10-063

* "NEXT"

As to your "WHY"??

Well... & it's done doubtless for performance (kernelmode is way, Way, WAY faster than usermode's why).

PLUS, it's relatively EASY to alter permissions to the FONTS folder too:

http://answers.microsoft.com/en-us/windows/forum/windows_7-security/changing-permissions-to-access-font-files-folder/3f4da342-9a7d-4b5d-9b83-5f2b4bedcca5

As to WHO & WHAT can "get to it", & if the network admins' SMART?

He has lesser privelege usergroups/users in place too...

APK

P.S.=> "Stay Tuned" for my next part #3 of 4 rebuttal...

... apk

And office dwellers who have Word on one screen and Excel on another because they have no scrollable/switchable viewports?

Viewports makes sense for some applications and for low-res displays. I actually hate them, and toggling an app on a different viewport will toggle the whole viewport. On high-res monitors, you may find yourself dragging windows on a small applet on a corner of a screen.
On the other hand, I get more usable screen with Windows than I'd get with X. The difference is noticeable on high-res screens, and translates to more lines of code at once on each screen. Scalable font rendering is usually crappy in X, and most of the times the widgets and dialogs look like something drawn by a kid (there are some exceptions, but even with tabbed windowmanagers or minimal windowmanagers like blackbox you will have the font problem). At least with Windows, application-specific modal dialogs don't popup on the wrong screen or under some other window (again) on the wrong screen.

but it's not ready for any serious use as a workstation.

I guess your notion of workstation is a machine you use. Different people have different needs.

Since apparently for you multiple monitors on Windows is for office and for games because it lacks virtual desktops, there you go: http://technet.microsoft.com/en-us/sysinternals/cc817881.aspx.

"Because LibreOffice doesn't do everything MS Office does?"

I keep hearing this, but I never see a list of the "10%" that MS Office can do that Libreoffice cannot. Plus, how many items on this 10% list are actually used by 90% of the MS Office users, including Google employees???

Show me the list!

Here are a few examples of financial functions in MS Office that aren't in Google Docs:

http://office.microsoft.com/en-us/excel-help/excel-functions-by-category-HP010079186.aspx?CTT=3#BMfinancial_functions
https://support.google.com/drive/bin/static.py?hl=en&topic=25273&page=table.cs&tab=1240288

AMORDEGRC()
AMORLINC()
ISPMT()
OSSFPRICE()
ODDFYIELD()
ODDLPRICE()
ODDLYIELD()
VDB()
YIELDMAT()

I didn't look to see if Google has the same functionality in a different function, nor do I know enough about the functions to know if a trivial formula can recreate the functionality in Google.

I don't know how frequently these are used, but if the finance director can't open the forecasting spreadsheet that he's used for 5 years because one of these functions is missing, he's going to demand MS Office. At least, that's what happened in my last company when we tried to see if we could save money by moving away from MS -- the Finance department couldn't open any of the spreadsheets they used in their day to day work.

it has features that fit any conceivable needs

Speak for yourself. I use Google Docs for lots of things, where Word simply does not fit. For ex:

1. Daily time-sheets of my team members with details of work done, and time spent, with status.

2. Project progress of my department; which plugs into the that of the entire division.

etc.

3. A taxi dispatch system uses Google docs to find out current location, availability, status etc using Google docs. Word is totally unusable in such scenarios.

Wait, what? Are you talking about the ability to do real-time collaborative editing of Word documents here?

Word (and Excel, and Onenote) has this already, and has for a few years now. It's part of the Skydrive integration. Documents are stored "in the cloud" but you get a local copy, too, for disconnected editing. Any machine (or phone, yes even iPhones and Androids) connected to Skydrive gets the synced up copies too). Version history (up to 25 versions anyway) are stored. Hell, even the OS X versions of Word and Excel support real-time collaborative editing. You don't even need Office installed.... the web app versions of Office 2013 are free.

In short -- Microsoft has real-time editing of an Excel document by someone using a native app on Windows, a native app on OS X, and someone using Chrome on a Linux system. Your uses cases are supported just fine.

There is absolutely nothing in the NYTimes story that points to any new development that justifies the headline.

600,000 systems in the Veteran's Administration are being moved to Office 365 For Government.

U.S. Department of Veterans Affairs Chooses Office 365 for its 600,000 Employees

Google touted its ISO 27001 certification for Google Apps for Business last week, which Office 365 for Government also qualifies for. Just like its predecessor, the Business Productivity Online Suite Federal, Microsoft's new service also supports a plethora of other certifications, including SAS70 Type II, the US Health Insurance Portability, Accountability Act (HIPAA) and the US Federal Information Security Management Act (FISMA). Microsoft also plans to support Criminal Justice Information Security policies soon. The service will soon offer support for IPv6 as well.

The major difference between Microsoft's enterprise solution and this government cloud is that the government data lives on its own segregated infrastructure. Besides this --- and the additional certifications --- Microsoft's government solution includes virtually the same services as the enterprise version, including Exchange Online, Lync Online, SharePoint Online and Office Professional Plus. Given that Microsoft's enterprise solution is also now FISMA certified, this new service is mainly meant for agencies that have requirements beyond this certification.

Microsoft Launches Office 365 For Government

Google 'has not yet shown they are truly serious,' said Julia White, a general manager in Microsoft’s business division. 'From the outside, they are an advertising company.'

From: http://msdn.microsoft.com/en-us/library/hh506371(v=msads.10).aspx

Microsoft Advertising SDK for Windows 8

The Microsoft Advertising SDK for Windows 8 allows developers to show ads in their apps. You can use your Windows 8 apps to make money by including ads from Microsoft Advertising. The Microsoft Advertising SDK for Windows 8 along with Microsoft pubCenter enables you to create apps that:

• Easily integrate text and banner ads into your apps and games.
• Provide a money making solution that maximizes in-app advertising.
• Provide ad targeting capabilities to deliver the most relevant ads to your users.
• Seamlessly handle impression reporting.
• Monitor your ad performance in real time.

"You covered a bunch of techniques on a windows machine that would increase the damage done by a ddos" - by Anonymous Coward on Tuesday December 25, @11:14PM (#42392105)

No, wrong again - those are KNOWN DDoS mitigating IP stack parameter settings that help vs. DDoS/DoS.

See the Microsoft link I posted in my initial post again, troll -> http://msdn.microsoft.com/en-us/library/ff648853.aspx

FAIL #1 of 2 here, & I see you're posting as AC... figures - you know you failed, & are just 'trolling' (some people have no lives, no class (even on Christmas))...

---

"and nothing to do on the routers. go die in a fire" - by Anonymous Coward on Tuesday December 25, @11:14PM (#42392105)

WRONG AGAIN: See my subject-line, & this link I posted in my init. post:

http://en.wikipedia.org/wiki/Null_route

PERTINENT QUOTE/EXCERPT:

---

"Null routing has an advantage over classical firewalls since it is available on every potential network router (including all modern operating systems), and adds virtually no performance impact. Due to the nature of high-bandwidth routers, null routing can often sustain higher throughput than conventional firewalls. For this reason, null routes are often used on high-performance core routers to mitigate large-scale denial-of-service attacks before the packets reach a bottleneck, thus avoiding collateral damage from DDoS attacks â" although the target of the attack will be inaccessible to anyone. Blackhole filtering can also be abused by malicious attackers on compromised routers to filter out traffic destined to a certain address."

---

FAIL # 2 here: "2 for the price of 1", troll... lol, you're "on a ROLL, troll"!

---

Also - Have you ever used netconfig in Linux on a MULTI-HOMED server with a subordinate subnet it routes packets to?

It can act as a router or firewall via a multi-homed system.

I.E.-> You set it "front-facing" to your subnetted network and it works as a firewall of sorts to a subnet from a multihomed Linux system (you allow/disallow what comes in etc. easily using it).

In fact - It is MUCH like the technique I am describing in fact, by dropping packets via a programmatically automated routing command.

I'd test it via a spawn/shell first - then, go at the necessary IP code via Win32/64 directly (instead of spawning a route commandline primitively as a front-end to it only).

* It wouldn't be TOUGH to make such a program either... & you wouldn't NEED a router - just a computer you have lying around pretty much (vs. DoS/DDoS).

E.G./I.E.-> Once you obtain the attacking IP addresses from a router log or even a netstat command you parse out the needed info. from (attacking IP addresses), you put them into a list, iterate thru it with a loop, automating the route command directly (ala spawn/shell, primitive but would work as a front-end + backend system between the 2 programs).

Just an idea...

APK

P.S.=> I may write this up as my next freeware to release... who knows! Wouldn't take me long @ all...

... apk

Investing in one of THESE is a big help:

http://www.google.com/search?sclient=psy-ab&hl=en&site=&source=hp&q=%22DDos+Appliance%22&btnG=Search&gbv=1&sei=KYw7UI-4FsXs6wH3uIDoDw

Because DDoS/DoS CAN be stopped (Microsoft & Amazon are setup PERFECTLY vs. it in fact, read on below on that note). IF you're running Windows, per my subject-line above? Do these registry hacks/settings:

---

Protect Against SYN Attacks

FROM -> http://msdn.microsoft.com/en-us/library/ff648853.aspx

A SYN attack exploits a vulnerability in the TCP/IP connection establishment mechanism. To mount a SYN flood attack, an attacker uses a program to send a flood of TCP SYN requests to fill the pending connection queue on the server. This prevents other users from establishing network connections.

To protect the network against SYN attacks, follow these generalized steps, explained later in this document:

Enable SYN attack protection
Set SYN protection thresholds
Set additional protections
Enable SYN Attack Protection

The named value to enable SYN attack protection is located beneath the registry key:

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\TcpIp\Parameters.

Value name: SynAttackProtect

Recommended value: 2

Valid values: 0, 1, 2

Description: Causes TCP to adjust retransmission of SYN-ACKS. When you configure this value the connection responses timeout more quickly in the event of a SYN attack. A SYN attack is triggered when the values of TcpMaxHalfOpen or TcpMaxHalfOpenRetried are exceeded.
Set SYN Protection Thresholds

The following values determine the thresholds for which SYN protection is triggered. All of the keys and values in this section are under the registry key

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\TcpIp\Parameters

These keys and values are:

Value name: TcpMaxPortsExhausted

Recommended value: 5

Valid values: 0?65535

Description: Specifies the threshold of TCP connection requests that must be exceeded before SYN flood protection is triggered.

Value name: TcpMaxHalfOpen

Recommended value data: 500

Valid values: 100?65535

Description: When SynAttackProtect is enabled, this value specifies the threshold of TCP connections in the SYN_RCVD state. When SynAttackProtect is exceeded, SYN flood protection is triggered.

Value name: TcpMaxHalfOpenRetried

Recommended value data: 400

Valid values: 80?65535

Description: When SynAttackProtect is enabled, this value specifies the threshold of TCP connections in the SYN_RCVD state for which at least one retransmission has been sent. When SynAttackProtect is exceeded, SYN flood protection is triggered.

Set Additional Protections

All the keys and values in this section are located under the registry key

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\TcpIp\Parameters. These keys and values are:

Value name: TcpMaxConnectResponseRetransmissions

Recommended value data: 2

Valid values: 0?255

Description: Controls how many times a SYN-ACK is retransmitted before canceling the attempt when responding to a SYN request.

Value name: TcpMaxDataRetransmissions

Recommended value data: 2

Valid values: 0?65535

Description: Specifies the number of times that TCP retransmits an individual data segment (not connection request segments) before aborting the connection.

Value name: EnablePMTUDiscovery

Recommended value data: 0

Valid values: 0, 1

Description: Setting this value to 1 (the default) forces TCP to discover the maximum transmissio

it's got more software going for it than arm

This product comparison from Microsoft leads me to believe that applications have to be rewritten to behave correctly on Windows 8 Pro. Notice the blurb about downloading apps from the Microsoft store. This does not say you can download any plain old exe file. The mention of Windows 7 applications could be those that have already been rewritten to be compatible with the tablet.

If that's the case, iOS and Android apps witten for the ARM architecture greatly outnumber those for x86.

It sounds like you have more experience than myself, but after reading the below article I was of the opinion that C++ in a kernel is not a good idea right now.

C++ for Kernel Mode Drivers: Pros and Cons

The advice seems somewhat relevant for platforms other than Windows.

The list of things that Windows will happily try to execute when typing in commands is downright scary.

Also: here's a nickel, kid.

Plenty of people above have posted good justifications, but pragmatically it's also painless to implement good standards. If you use visual studio, the amazing tool known as Resharper will do the style checking and correct casing and spelling for you. Since an independent third party is taking care of this, it will reduce squabbling and "hold outs". If you're cheap, there are other free tools (including the Code Analysis which comes with visual studio). If your PHB wants a published doc, just point to a decent existing standard, like the Microsoft-generated naming guidelines and coding conventions There are similar tools and published conventions for Java and C++. This is a no-brainer folks, and plenty of talented individuals have tackled this problem. Once it becomes part of your infrastructure, you can even skip most of the code reviews for naming conventions and coding style.

Plenty of people above have posted good justifications, but pragmatically it's also painless to implement good standards. If you use visual studio, the amazing tool known as Resharper will do the style checking and correct casing and spelling for you. Since an independent third party is taking care of this, it will reduce squabbling and "hold outs". If you're cheap, there are other free tools (including the Code Analysis which comes with visual studio). If your PHB wants a published doc, just point to a decent existing standard, like the Microsoft-generated naming guidelines and coding conventions There are similar tools and published conventions for Java and C++. This is a no-brainer folks, and plenty of talented individuals have tackled this problem. Once it becomes part of your infrastructure, you can even skip most of the code reviews for naming conventions and coding style.

Then you go in and stop the task. Apps are only allowed certain background functionality. It's reserved for always-on stuff like VOIP, Music, and IM, or for things like notifications. You can control which apps can push notifications via a central notification control area in PC settings. For the other tasks like Music and VOIP, it's your job to end the call or stop music playback.

See the following resources for more implementation specific information:

http://www.microsoft.com/en-us/download/details.aspx?displaylang=en&id=27411
http://blogs.msdn.com/b/windowsappdev/archive/2012/05/24/being-productive-in-the-background-background-tasks.aspx
http://blogs.msdn.com/b/windowsappdev/archive/2012/05/16/being-productive-when-your-app-is-offscreen.aspx?wa=wsignin1.0
http://blogs.msdn.com/b/windowsappdev/archive/2012/04/10/managing-app-lifecycle-so-your-apps-feel-quot-always-alive-quot.aspx
http://blogs.msdn.com/b/b8/archive/2011/11/08/building-a-power-smart-general-purpose-windows.aspx
http://blogs.msdn.com/b/b8/archive/2011/11/02/updating-live-tiles-without-draining-your-battery.aspx
http://blogs.msdn.com/b/b8/archive/2012/04/17/reclaiming-memory-from-metro-style-apps.aspx

How To close Metro Apps:
http://windows.microsoft.com/en-US/windows-8/how-close-app

The above would have solved his "Farting Goblin" problem right there, although also having a way to disable gestures on the trackpad would work too.

Frankly, allowing the screen gestures to be preformed on a trackpad is just plain stupid. Not having a way to turn them off without editing the registry is even worse. That being said, if he was just using a keyboard and mouse he would have probably had an easier time.

Yes, except certain standards basically give your peripherals practically free reign to roam through your memory, specifically Firewire and Thunderbolt or if the attacker can add such a port through extension cards and the drivers are installed automatically. This is rather well documented behavior, and the small price you have to pay for closing this loophole:

The drawback of this mitigation is that external storage devices can no longer connect by using the 1394 port, and all PCI Express devices that are connected to the Thunderbolt port will not work. Because USB and eSATA are so prevalent, and because DisplayPort often works even when Thunderbolt is disabled, the adverse effect caused by these mitigations should be limited.

From least to most expensive, here are some mid budget items that would get me excited:
In the $200 range, and because I enjoy programming:

• - A kinect with either the Microsoft API
• - A primesense 3D sensor with the OpenNI API

For super extra bonus fun, integrate the sensor with the robot operating system so that you can use their cool 3D visualization tools.

Another sweet toy, slightly more expensive at $400, is the Lytro camera.

My final toy choice would be a very open 3D printing platform, like the 3rd generation Solidoodle, which at $799 is actually only accepting pre-orders now.

If I had all that stuff, and had enough time to play with it, I'd be pretty happy.

BTW, that handy feature where the video card drivers restart after they crash? The drivers do that, not Windows Vista and higher. It worked on XP too.

Under XP, the video driver had to be programmed specifically to do that if the graphics hardware stopped responding.

Under Vista and newer, the OS itself will do it if the graphics hardware or graphics driver stop responding. The reason for this?

According to the crash analysis data collected during the Windows XP timeframe, display drivers are responsible for up to 20 percent of all blue screens.

(WDDM Spec)