msdn.com · Domains · Slashdot Mirror

Re:What Internet Explorer 7 *REALLY* needs... by Bogtha · 2006-01-24 07:06 · Score: 1 · on IE7 To Support XMLHTTP Requests

Fix this problem: [link] Documenting a design flaw does not make it any less of a design flaw.

This will be fixed in Internet Explorer 7.

Re:And...? by Bogtha · 2006-01-24 06:55 · Score: 3, Insightful · on IE7 To Support XMLHTTP Requests

SVG: Microsoft implemented vector graphics in Internet Explorer years ago with VML, which they submitted to the W3C in 1998.

CSS: A partial list of fixes regarding CSS that will be in Internet Explorer 7 can be found on the IEBlog. They've fixed a lot.

PNG: Internet Explorer 7 will have support for the PNG alpha channel, bringing it up to the level of support that other browsers have.

JPEG2000: JPEG2000 is patent encumbered. Mozilla/Firefox doesn't support it.

XForms: XForms support is available through a plugin.

The only really valid complaint you have there is their lack of support for the DOM. In particular, it would be very nice if they implemented DOM 2 Events, but I don't think that's likely to happen for Internet Explorer 7.

Re:And...? by Bogtha · 2006-01-24 06:55 · Score: 3, Insightful · on IE7 To Support XMLHTTP Requests

SVG: Microsoft implemented vector graphics in Internet Explorer years ago with VML, which they submitted to the W3C in 1998.

CSS: A partial list of fixes regarding CSS that will be in Internet Explorer 7 can be found on the IEBlog. They've fixed a lot.

PNG: Internet Explorer 7 will have support for the PNG alpha channel, bringing it up to the level of support that other browsers have.

JPEG2000: JPEG2000 is patent encumbered. Mozilla/Firefox doesn't support it.

XForms: XForms support is available through a plugin.

The only really valid complaint you have there is their lack of support for the DOM. In particular, it would be very nice if they implemented DOM 2 Events, but I don't think that's likely to happen for Internet Explorer 7.

Not news by Bogtha · 2006-01-24 06:39 · Score: 5, Informative · on IE7 To Support XMLHTTP Requests

Firstly, this is not news. This was posted on the IEBlog way back in September.

Secondly, this is one hell of a misleading headline. Internet Explorer has supported this interface since Internet Explorer 5.0, released in the year 2000. All that's different in Internet Explorer 7 is that it's implemented as a native object, rather than with ActiveX.

Finally, this matters to practically nobody. Any decently-written code will work just fine in Internet Explorer 7 with no modification whatsoever. Even code written to use browser detection instead of feature/object detection, (a bad idea) will work just fine, assuming that the ActiveX interface sticks around too.

Re:Problems by CurbyKirby · 2006-01-23 18:10 · Score: 1 · on IE7 Leaked

FULL standards compliance is a big deal, is it? I hope you're not using anything that uses Gecko, such as Netscape 7, Mozilla, or Firefox.

Firefox/Mozilla doesn't even fully implement HTML 4.0, nor has it done so in any point in its history, nor is there a target milestone for doing so. Just one example is https://bugzilla.mozilla.org/show_bug.cgi?id=9101

Ok so they are choosing not to implement support for displaying soft hyphens. If you hate IE6 for not implementing support for max-width (a css thing) or ABBR (an html thing), don't be a hypocrite. At least most of IE6's compliance issues are (claimed to be) solved in IE7: http://blogs.msdn.com/ie/archive/2005/07/29/445242 .aspx

Notice that it's been over five years since the bug was reported, and there is no target for its fix. Imagine the fun that Slashdot would have over a 5-year-old IE bug.

I have used Firefox as my primary browser since Phoenix 0.2beta, and I love it. But I'm not going to say it's perfect (or even perfectly standards-compliant).

Driver Certification Process by Duke+Blazingstix · 2006-01-23 12:26 · Score: 1 · on Windows Vista x64 To Require Signed Drivers

I use a few open source windows drivers myself, but even still, I recognise that the majority of crashes in Windows are likely due to buggy drivers and I think locking-down on that is a good step forward. That said, I remember reading a while back on The Old New Thing about how developers would go about defrauding the WHQL driver certification process, and I just cannot see how forcing it to be signed for certification is any different that just certifying it. Developers can still pull the same old tricks to get it certified while still bending the rules.

Still, though... at least it helps against malicious code. Provided they haven't forged a signature. The less zombie-boxes out there the better for all of us. One thing I don't know, though; I saw somewhere that only kernel-level drivers will need to be signed... (I didn't read TFA... only TFC) is it possible to re-write most of those OSS drivers to be user-mode drivers? Is such a thing even possible?

CSS Support in IE by SeinJunkie · 2006-01-23 09:08 · Score: 1 · on IE7 Leaked

If you're really interested in which bugs IE7 will not have, you should read Dave Shea's post on the first beta. Also of interest is MS IEBlog's post listing which CSS bugs have already been fixed after the first beta. A list of the major ones follows:

Peekaboo bug
Guillotine bug
Duplicate Character bug
Border Chaos
No Scroll bug
3 Pixel Text Jog
Magic Creeping Text bug
Bottom Margin bug on Hover
Losing the ability to highlight text under the top border
IE/Win Line-height bug
Double Float Margin Bug

Re:STUPID by stevey · 2006-01-23 06:56 · Score: 1 · on Windows Vista x64 To Require Signed Drivers

I'm sure they do.

Right now it is not uncommon for driver installations to "pretend" they are signed - by clicking "I agree", etc, during their installation process.

Re:Moving time! by DaHat · 2006-01-22 07:30 · Score: 2, Interesting · on eBay Scraps Transaction Fees in China

Head on over to http://blogs.msdn.com/msnsearch/archive/2006/01/20 /515606.aspx to see some info from the horse on what kind of information was requested and given, at least as far as Microsoft search is concrned... it's not as bad as many have claimed.

Re:Read much, do you? by semaj · 2006-01-20 23:01 · Score: 2, Interesting · on AMD Licenses Z-RAM Technology

It's not the same software.

When you change the insides, nobody notices

Newer versions of "Calc" were completely written behind the scenes to provide more accuracy (essentially infinite accuracy on simple arithmetic, explained above) while the interface remained the same. So the comparison is flawed.

Culture change in Microsoft's approach to security by J.J. · 2006-01-18 12:49 · Score: 1 · on Ask Microsoft's Security VP

Fact: The computer will always be compromised -- ref the Dancing Bunnies theorem.

Fact: Networks are chaotic places. In a network of any size (read: corporate) there will always exist vulnerabilities.

Result: The network, as a whole, will always be insecure.

Microsoft's traditional approach to security is very "box" focused: secure the OS. But the network is a collection of operating systems, and the dynamics of securing the network are very different from an individual system. Active Directory, and the ability to reliably apply consistent policies across a domain is the biggest step towards this goal to come out of Redmond, but that's as much a system administration feature as a security feature. There are gaping holes in the technologies available today to secure networks.

The corporate answer I'd expect is something along the lines of providing "opportunities for third-party software vendors" -- but I really think that's a cop out. Your customers lay the blame squarely at the feet of Microsoft. After all, Microsoft provides all the technology necessary to build a corporate network, but not the technologies necessary to secure it.

What is Microsoft's roadmap for providing security technologies that secure the network?

Thanks!
J.J.

Don't logon as an admin by Software · 2006-01-18 09:08 · Score: 1 · on Safe Options for Surfing While on the Road?

Set him up so that he's not an admin. See Aaron Margosis's blog for details. Another option is to introduce him to the RunAs functionality, though it's not needed much if you set him up as a non-admin.

If you're willing to do a bit of legwork, you can use Windows as an administrator. It's much, much safer.

Re:Excel? by Orne · 2006-01-18 08:07 · Score: 3, Informative · on Beginning Excel What-if Data Analysis Tools

Currently, Excel handles 256 columns x 65536 rows... anything larger, and you need to be working in Access. However, if your data fits those limitations, Excel is (IMHO) the best analyst tool under our sun.

Excel 12 (aka Office 2003, currently in development) will have 16k columns x 1M rows. I found information here on the new limits.

Dependency Testing Software/Process by rts008 · 2006-01-18 05:53 · Score: 1 · on Ask Microsoft's Security VP

I watched the video of the interview with the "Kernal Team" with Rob Short ( http://channel9.msdn.com/Showpost.aspx?postid=1488 20) when reading about it on /. (http://developers.slashdot.org/article.pl?sid=06/ 01/03/1944204).

That was a very interesting interview, I was appreciative of most of their answers to Rob's questions.
In view of the recent WMF vulnerabilities, I did however have a question about the dependancy checking process and software referred to by the team. Who (and how) is the software programmed? I guess what I'm getting at is this: Who or what determines what the software and process involved checks, and how is that related to determining what is dependant on what, and how it fits into the security/vulnerability checking process.
I would have thought that this software/process would have caught the WMF problems that have recently surfaced.

By the way, thanks for taking the time to answer our questions!

Re:Camino by pomo+monster · 2006-01-15 14:15 · Score: 1 · on Firefox for Intel Macs Planned for March

"one of the greatest things about firefox is that it is almost exactly the same on any platform"

So was Microsoft Word 6.0, and that was universally hailed as a flaming turd mountain. Behaving exactly the same on every platform, it turns out, is in fact a terrible drawback. Something anyone with a Mac ought to know.

Re:Probably not and here's why ... by PitaBred · 2006-01-12 08:14 · Score: 1 · on Windows on Intel Macs - Yes or No?

If getting a tattoo is any indication, there are some Windows cultists out there. Not as many as the mac heads, but still, they exist.

Re:Article doesn't say enough... by Anonymous Coward · 2006-01-12 03:48 · Score: 0 · on Rootkit-like Feature Found in Norton Systemworks

http://blogs.msdn.com/oldnewthing/archive/2003/10/ 22/55388.aspx

Re:Do expoits speed up the fixing? by Anonymous Coward · 2006-01-11 06:58 · Score: 0 · on Microsoft Taking Longer to Fix Flaws

Maybe there is a reasonable limit (e.g. groups with more than seven developers are inefficient"), but they could finance several hundred teams of bug fixers, testers etc. So why don't they?

This might be an interesting read: http://blogs.msdn.com/ericlippert/archive/2003/10/ 28/53298.aspx

Granted, it's about adding features and not fixing bugs, but it goes on to show that a 5-minute change would translate into hundreds of hours of work. From my experience as a senior developer, that's most certainly true...

Optimistic by Hard_Code · 2006-01-11 02:55 · Score: 1 · on Microsoft vs. Computer Security

I'm actually a lot more optimistic about security (specfically Microsoft security) these days. I used to think (probably correctly) that Microsoft was incompetent in this regard. Microsoft has apparently been ruled by the cowboy coders on one side, and the irresponsible marketeers on the other. But watching the various videos (especially the Going Deep series) on Channel 9 (http://channel9.msdn.com/) interviewing lead developers of various areas, I am more and more impressed. Microsoft employs some DAMN SMART people in Microsoft Research and even a lot of their core development areas (kernel, tools). In the vista kernel video you can tell they are pretty embarrassed about the history of Windows, the registry, etc., finally understand there is a problem, and are actively trying to solve it (creating gigantic dependency graphs of binaries, trying to sort out the configuration (they refer to it as "state") issue). Given that a lot of this good stuff can be incorporated into a commercial product without the bastardization of the marketeers and cowboy culture, I'm optimistic. Watch the video about Avalon - what the guys is describing is essentially X11. That's not news to us, but I have to imagine it's revolutionary at Microsoft to break down, admit to themselves that the existing display/rendering technology is shit and inflexible and un-extendable, and pro-actively go about implementing a network-transparent graphics framework that mimics alarmingly technology of their arch-competitor (*nix). If they can do that, I have hope they can bury a lot of the other problems they have caused for themselves and maybe start doing the Right Thing.

ok, enough </fanboy> ;)

Re:It's no secret... by toadlife · 2006-01-10 14:20 · Score: 1 · on Microsoft vs. Computer Security

"The biggest problem that Windows has ,IMO, is the lack of a secure user system. They give you all of two options for users in XP; Administrator, and Limited.
Administrator has full control of the computer and unlimited access to the registry
Limited has next to no control over anything besides just "using" the computer."

Correct and it sucks, but is actually only in XP Home. XP Pro has that middle ground, which BTW is being removed in Vista.

"There is no middle ground, no permission system on comparable grounds to Linux. I run as Admin on my Windows box primarily due to the fact that I don't want the hassle of logging out every time I want to update a program or do some other mundane task."

Actually, there is a very robust permission system for both the filesystem and registy and there is a full set of system policies which hand out rights for specific system rights (for example, installing drivers, and changing the system time). The problem is XP Home hides it all from the user, which is stupid. In XP home you can modify file permissions with the command line tool, cacls.exe. I'm not sure about registry permissions, but I do know there is a command line tool to do that too. You can also boot up to safe mode, log in as administrator and access the file permission from explorer. The other problem really isn't Microsoft's (well maybe it is), its the fact that software deveolpers contune to write programs that assume the user with be running them as admin.

"Another thing that bothered me about Windows that is commonplace in Linux is the ability enter and exit Administrator mode without logging out the user through the use of a Password Prompt."

Actually, windows has this ability too - run-as. There is also a cool tool called "Make me admin" which temporairly makes your user account an admn account without having to log off and back on. But that doesn't solve the problem of XP Home making it very difficult to fix permissions so that regular users can run things.

http://blogs.msdn.com/aaron_margosis/archive/2004/ 07/24/193721.aspx

Re:but wait did the MS apologist not say by RingDev · 2006-01-10 11:20 · Score: 4, Insightful · on Two New WMF Bugs Found

"8 days should have been enough time for MS to completly check the code involved and use every attack possible."

Yes becuase breaking hundreds of people off their regular duties, tracking down 10 year old code written by someone who either doesn't remember writing it or no longer works there, correcting the code in a way that prevents the exploit, but doesn't impact functionality, testing the correction on all supported versions of windows, numerous hardware configurations, and against dozens of 3rd party software packages that use the library, then documenting the problem, the change, and the disimination of the change, then getting the whole thing wrapped up into a nice neat deployment package, is easy.

Yeah, I can see how 8 days is slacking.

Try reading this article: http://blogs.msdn.com/ericlippert/archive/2003/10/ 28/53298.aspx "How many MS Employees to change a light bulb?"

-Rick

-Rick

DVD Encoding by DarkKnightRadick · 2006-01-06 05:26 · Score: 1 · on Robert Fripp to Compose Vista's Soundtrack

Windows sounds and this (and really, region coding in general) are really why I prefer linux.

Re:Seems dumb to me by Tim+Browse · 2006-01-06 03:14 · Score: 1 · on Rounding Algorithms

Not so much.

Re:Well, Bill killed it right off to bat... by thefogger · 2006-01-05 04:20 · Score: 1 · on Microsoft Unveils 'Urge' Music Service

Speaking of King Crimson, then no, Urge isn't meant for you - Windows Vista is.

Re:Let the flamewar begin by Beryllium+Sphere(tm) · 2006-01-04 14:14 · Score: 1 · on Linux/Unix Tops Charts for Vulnerabilities in 2005

>and don't use the root/Administrator account for normal usage

That's easier on some operating systems than on others. OS X has the root account disabled by default. Windows makes it theoretically possible to run as a non-Administrator and to use a feature that works like sudo (shift-right click, Run As) for some administration. Unfortunately there are so many applications with silly assumptions about where they can write that there's an entire blog about running Windows systems without Administrator privileges

Get/set syntactic sugar is a bad idea for C++ by Nurgled · 2006-01-03 04:09 · Score: 1 · on Bjarne Stroustrup Previews C++0x

Syntactic sugar for getters and setters can be useful for providing a more natural interface (as long as people don't abuse them), but they don't really have any place in a language like C++, where almost everything is set in stone at compile time. Properties work well in dynamic languages like JavaScript because the binding takes place at runtime, at the very last moment before the member access is resolved. The code to access a plain member field vs. a property is quite different, and in C++ this must be generated at compile time.

The upshot of this is that you can't change a field to a property and vice-versa while retaining binary compatibility. This means that you've essentially added a gotcha to the language which everyone must be wary of when designing their public interfaces. While a.b = c looks a bit prettier than a.setB(c), in my opinion it's better to be explicit about what's going on to avoid problems down the line.

Re:Why can't IE have *less* privilages? by ThinkFr33ly · 2006-01-02 06:13 · Score: 1 · on New IM Worm Exploiting WMF Vulnerability

That's exactly what they're doing in IE 7.

Article is misleading by DeI2anGeD · 2006-01-01 15:22 · Score: 1 · on Of Internet Users, Only 4% Knowingly Use RSS

From an msdn blog: https://blogs.msdn.com/alexbarn/archive/2006/01/01 /508494.aspx "Slashdot has got itself into some sort of frenzy about the number of RSS users, referring to an October study sponsored by Yahoo (PDF). They claim (and Robert Scoble repeats the claim) that according to the study only 4% of internet users are using RSS. I have news. It's not true. I know, because I blogged about the research months ago. The study actually showed that 4% knew they were using RSS, while 27% were using RSS without realising it. I quote (from the study): "27% of Internet users consume RSS syndicated content on personalized start pages (e.g., My Yahoo!, My MSN) without knowing that RSS is the enabling technology." "

MSFT blogs working by RzUpAnmsCwrds · 2006-01-01 14:15 · Score: 1 · on The Fortune 500's Blogging

Microsoft has the biggest blogging presence of any corporation, and I can say that their blogs are working extremely well. Channel 9 (http://channel9.msdn.com/ in particular is very successful. The video interviews and real-world feedback from the developers is really helping Microsoft connect better with its users - note the recent Firefox "Genuine" plugin and WMV plugins, Firefox compatibility with MSN projects, and a bigger push towards standards. Moreover, blogging has raised much more enthusiasm for Vista - hearing from the kernel devs how heap management has been improved or from the audio team about how audio mixing and performance are better really makes it clear what the product is and what it will mean.

Why? by lastberserker · 2005-12-31 23:38 · Score: 2, Informative · on Vista Won't Play With Old DVD Drives

I don't know why you would want Vista, but for me there is a new networking & audio stacks, XPS & totally cool new printing system, transactional FS, and a lot more interesting stuff. Sure, crawl back under your rock and keep beliving that all what Vista is is Aqua interface AKA MacOS circa 80s ;-P