Forwarded email breaks all these kinds of "sender authentication" systems, and that's unlikely to change in the near future. Mailing lists are one type of forwarded email, but not the only type.
Properly used, the Resent-From and Resent-Sender fields could help with this. Of course, this would require the Sender Authentication systems to properly handle these fields.
Another option occurred to me since I made my previous post. The original message could be made an attachment to the message sent by the list server. This way, both the list message and the original message would be available for DMARC/SPF/whatever sender authentication.
Note: Reintroducing a message into the transport system and using
resent fields is a different operation from "forwarding".
"Forwarding" has two meanings: One sense of forwarding is that a
mail reading program can be told by a user to forward a copy of a
message to another person, making the forwarded message the body
of the new message. A forwarded message in this sense does not
appear to have come from the original sender, but is an entirely
new message from the forwarder of the message. Forwarding may
also mean that a mail transport program gets a message and
forwards it on to a different destination for final delivery.
So, one could make the case that a list server is a robot reading and forwarding messages, therefor it is technically not wrong for the list server to put its own address in the From field and a contact address for the list owner in the Sender field. Note that list servers that batch posts in to messages containing several posts already do this.
(Replies to the author and/or list could be directed by the Reply-To and Cc fields. Suggest author in Reply-To and list in Cc.)
Of course, best solution would be for DMARC and SPF (and the list servers) to be configured to properly use the Resent-From and Resent-Sender fields. Unfortunately, I think that DMARC and SPF will be left as they are, thus forcing the list servers to bare burden of a work around.
I think often it is a desire to help by someone who misjudges the ability, desire to learn, and time someone is prepared
And perception.
Example: A friend of mine was still using MS Office 2003 because he hated MS Office 2007. Then, one day, he received an Office 2007 document that Office 2003 could not handle. I asked him to give me a copy of the file, then opened it in Open Office. He happily did what he needed to do, saved his changes, copied the file back to his PC and emailed it to whomever needed it. Then he asked me what version of Office I was running. When I showed him, he said "That's not acceptable. No one will be able to use the document I just sent." Even after everyone he sent the updated document to had no problem, he still didn't believe Open Office an acceptable alternative. He still hates the "new" MS Office, but is using it because "there is no alternative."
As long as you don't hide it from your customers I don't see a problem with providing IPv6 addresses to your customers and perform NAT for accessing IPv4 hosts.
For that matter, could NAT IPv4 to IPv4. Many businesses, including huge multi nationals, do this for their internal networks. In some cases they even NAT between major segments of their networks, so are not limited to just 16 million addresses (Not claiming any of them have that many, but a merger between 2 large companies can result in address collisions. One of my former clients, a multi national, merged with another multi national. Within a few hours of the closing, the respective IT departments had the 2 networks linked together. Client PCs were able to access shared (non-Microsoft based) services through NAT. The few cases where peer-to-peer connectivity was required were also handled very quickly. All without modifying the existing DHCP configurations, and only a very few changes to the internal DNS.
The solution? Manufacturers actually add speakers next to the engine, exhaust and inside the car.
Interesting, because more and more in-vehicle entertainment systems are touting Active Noise Cancellation to reduce engine and road noise inside the vehicle.
Plus Walmart beating up Visa on price is almost certainly going to benefit consumers in the long run and Walmart is big enough to actually succeed. The cost of credit card swipe fees gets rolled into the prices we pay for products so if they get lowered at least some of that money will flow through to us as end customers. Not all of course but definitely some.
More likely that Visa (and others) will make up the difference by raising rates on smaller retailers. They will be forced to raise their prices, which will make WalMart's prices look better.
There is also the problem of "not in my backyard". Many people living or working near facilities (both in the the US and in other countries) where any of these prisoners might be moved to have been very opposed to "their" facility receiving any of the Gitmo prisoners.
Besides the possibility of a match to a similar name, even if only "official" copies of the the no-fly list are consulted, I would not be surprised if copies of her entry linger in the various copies of that list.
(A friend of mine who has a name similar to someone on a sex offenders' list was mistakenly added as a variant spelling of the original listing. Even after getting a court order to remove his listing, it had propagated to other copies and was eventually merged back in to the original as updates were passed around the various government agencies. He then got an order to amend his listing to state it was invalid, but (A) that merely added a new entry, with no guarantee which entry would show first, and (B), most checkers don't look beyond seeing of there is a match.)
Oculus isn't the only VR headset. They may be the current best (I don't actually know). At least conceptually, the inputs and outputs are reasonably understood. So what makes it hard for an application that supports the Oculus headset to support others?
Corewars was fun when I was a kid in the 80s. I even wrote a Red Code simulator for the Apple//e, using the low res graphics to show the status of the battle "ground". (Had to a delay in the main interpreter so people could watch watch the battle.)
The most difficult requirement is the franchise agreement. Maybe if Tesla split itself in to 2 companies, one for manufacturing, the other for retail and service operations, they could satisfy this requirement.
A 1000 sq ft "show room" in a mall is possible. Every Apple store I have been in has had at least 1000 sq ft of sales floor, plus back room space.
On site servicing could be possible depending on how strict the definition of "on site" is. Example, when Circuit City still had stores, the one near me had a store in the mall with an installation facility in a corner of the mall's parking lot. ("Anchor stores" like Sears often have attached auto service facilities, but I seriously doubt any mall would allow Tesla to do that.)
English I and II are almost certainly required by any accredited school. Most accredited schools also have a humanities requirement, so Government and Anthropology are not unreasonable.
I would consider Algebra I a remedial course, so I agreed, replace it.
I also agree the programming tools class can be covered in other classes, including Project Management (Software).
Move Intro to Unix to the first semester. Or maybe second, if Intro to Computers is needed. This will give them a foundation for the suggested web server admin class.
Intro to Programming Logic should include a programming language. One very different from Javascript, so the students get a broader perspective. (I started programming at a very early age, so I don't know what would be good for some one starting post high school, or even in high school.)
And I agree with others that a fifth course per semester should be added. Include a third programming language.
An image taken in IR is as good as the resolution of the camera. Of course, some details important details will be missing, but many ordinary photographs also miss important details.
... and are denied physical contact on visits from friends and family...
It not just those in solitary who are denied physical contact with visitors - at least in some prisons - even minimum security prisons. A friend of mine was imprisoned (for disorderly conduct) for a month in a minimum security prison. The visitation rooms had a plexiglass partition separating the inmate from the visitors. The prison had no provisions for allowing visitors to have physical contact with inmates - not even spouses or children. The inmates were allowed contact with other inmates. Nevertheless, it was hard on my friend to not be able to hug his children and wife for that time.
Originally, SSL/TLS and HTTPS were developped and deployed to provide pprotection for this small amount of snesitive data.
Now, for various reasons, we have HTTPS protect pages that contain a lot of "rich" content that actually doesn't need this protection. This has the side affect of creating a lot of extra, uncachable content. I can understand why ISPs would want a way handle that.
So, is there a way to securely protect the sensitive stuff while leaving the rest unencrypted? Perhaps the non-sensitive stuff could be validated* with secure hashes, so could then be cached without need to decrypt anything?
*As I understand, one of the current problems with mixing HTTPS and non-HTTPS content on the same page is that the non-secure content can affect how the secure content is handled.
If you use a simple prefix you can remember, a different one for each system, then you can program a complex suffix into a YubiKey configured in "static mode". This avoids changing the existing password based system.
Of course, it's not as secure as other options, like One Time Passwords or challenge-response systems, but is an improvement.
(Another option would be to have a seperate YubiKey for each system, then each system could have a completely unique password.)
So, are the scarce-gametes (women) attracted to nice guys?... I strongly suspect women are looking for men practicing optimum predatation
My girlfriend of many years freely admitted that I was the "rational" choice rather than the "chemistry" choice. Later she also admitted to other advantages of choosing me over a man "practicing optimum predation".
As a better educated society (mainly in economic efficiency theory and morality) we can change our thinking about how we relate to one another.
why would those in power want to let that happen?
They wouldn't. They are already helping each other and (mostly) fighting for each other against the rest of the population. And they pay a pittance to a few "peasants" to do the the dirty jobs they don't want to do, so they are set. They don't really care about the "lower classes" as long as the lower classes don't get in their way. And for the few that do get in their way, they have the resources to neutralize the threat.
He knows he got screwed in his case, as politics were more important in his company. I can relate to his position, and am sorry to say that I have yet to see a company that doesn't have politics play an important role. You must be willing to play politics in addition to being productive, or you will get used and tossed.
Sounds like his manager failed to successfully play politics.
Great, anther toy encouraging society to regress back to adolescent behavior...with much higher stakes.
The stakes may be higher than some people think. Over thepast few years, several people I casually know (that is, I only know them by face and first name) have expressed the opinion that the sex offender list is a license to hunt and kill. How many people with similar names are going to get "tagged" by this service?
Slashdot Mirror
Forwarded email breaks all these kinds of "sender authentication" systems, and that's unlikely to change in the near future. Mailing lists are one type of forwarded email, but not the only type.
Properly used, the Resent-From and Resent-Sender fields could help with this. Of course, this would require the Sender Authentication systems to properly handle these fields.
Another option occurred to me since I made my previous post. The original message could be made an attachment to the message sent by the list server. This way, both the list message and the original message would be available for DMARC/SPF/whatever sender authentication.
RFC5322 also says this:
Note: Reintroducing a message into the transport system and using
resent fields is a different operation from "forwarding".
"Forwarding" has two meanings: One sense of forwarding is that a
mail reading program can be told by a user to forward a copy of a
message to another person, making the forwarded message the body
of the new message. A forwarded message in this sense does not
appear to have come from the original sender, but is an entirely
new message from the forwarder of the message. Forwarding may
also mean that a mail transport program gets a message and
forwards it on to a different destination for final delivery.
So, one could make the case that a list server is a robot reading and forwarding messages, therefor it is technically not wrong for the list server to put its own address in the From field and a contact address for the list owner in the Sender field. Note that list servers that batch posts in to messages containing several posts already do this.
(Replies to the author and/or list could be directed by the Reply-To and Cc fields. Suggest author in Reply-To and list in Cc.)
Of course, best solution would be for DMARC and SPF (and the list servers) to be configured to properly use the Resent-From and Resent-Sender fields. Unfortunately, I think that DMARC and SPF will be left as they are, thus forcing the list servers to bare burden of a work around.
I think often it is a desire to help by someone who misjudges the ability, desire to learn, and time someone is prepared
And perception.
Example: A friend of mine was still using MS Office 2003 because he hated MS Office 2007. Then, one day, he received an Office 2007 document that Office 2003 could not handle. I asked him to give me a copy of the file, then opened it in Open Office. He happily did what he needed to do, saved his changes, copied the file back to his PC and emailed it to whomever needed it. Then he asked me what version of Office I was running. When I showed him, he said "That's not acceptable. No one will be able to use the document I just sent." Even after everyone he sent the updated document to had no problem, he still didn't believe Open Office an acceptable alternative. He still hates the "new" MS Office, but is using it because "there is no alternative."
As long as you don't hide it from your customers I don't see a problem with providing IPv6 addresses to your customers and perform NAT for accessing IPv4 hosts.
For that matter, could NAT IPv4 to IPv4. Many businesses, including huge multi nationals, do this for their internal networks. In some cases they even NAT between major segments of their networks, so are not limited to just 16 million addresses (Not claiming any of them have that many, but a merger between 2 large companies can result in address collisions. One of my former clients, a multi national, merged with another multi national. Within a few hours of the closing, the respective IT departments had the 2 networks linked together. Client PCs were able to access shared (non-Microsoft based) services through NAT. The few cases where peer-to-peer connectivity was required were also handled very quickly. All without modifying the existing DHCP configurations, and only a very few changes to the internal DNS.
The solution? Manufacturers actually add speakers next to the engine, exhaust and inside the car.
Interesting, because more and more in-vehicle entertainment systems are touting Active Noise Cancellation to reduce engine and road noise inside the vehicle.
Plus Walmart beating up Visa on price is almost certainly going to benefit consumers in the long run and Walmart is big enough to actually succeed. The cost of credit card swipe fees gets rolled into the prices we pay for products so if they get lowered at least some of that money will flow through to us as end customers. Not all of course but definitely some.
More likely that Visa (and others) will make up the difference by raising rates on smaller retailers. They will be forced to raise their prices, which will make WalMart's prices look better.
There is also the problem of "not in my backyard". Many people living or working near facilities (both in the the US and in other countries) where any of these prisoners might be moved to have been very opposed to "their" facility receiving any of the Gitmo prisoners.
Besides the possibility of a match to a similar name, even if only "official" copies of the the no-fly list are consulted, I would not be surprised if copies of her entry linger in the various copies of that list.
(A friend of mine who has a name similar to someone on a sex offenders' list was mistakenly added as a variant spelling of the original listing. Even after getting a court order to remove his listing, it had propagated to other copies and was eventually merged back in to the original as updates were passed around the various government agencies. He then got an order to amend his listing to state it was invalid, but (A) that merely added a new entry, with no guarantee which entry would show first, and (B), most checkers don't look beyond seeing of there is a match.)
Oculus isn't the only VR headset. They may be the current best (I don't actually know). At least conceptually, the inputs and outputs are reasonably understood. So what makes it hard for an application that supports the Oculus headset to support others?
There also was "Robot War" and "Droid Arena" (after RSL was added to the game) My girlfriend used to be one of the top players on DA.
Corewars was fun when I was a kid in the 80s. I even wrote a Red Code simulator for the Apple //e, using the low res graphics to show the status of the battle "ground". (Had to a delay in the main interpreter so people could watch watch the battle.)
on top of that Teachers are scared to death of kids that are smarter than them, and will punish the smart kid.
Very true. And very sad. My nephew has seen this happen to smart kids.
Here, I'll save you some time: gifted kids don't need help.
They also don't need to be held back - or worse, labeled as ADD.
The kids that can advance faster should be allowed to advance faster.
Stupid, yes.
How much of an obstacle?
The most difficult requirement is the franchise agreement. Maybe if Tesla split itself in to 2 companies, one for manufacturing, the other for retail and service operations, they could satisfy this requirement.
A 1000 sq ft "show room" in a mall is possible. Every Apple store I have been in has had at least 1000 sq ft of sales floor, plus back room space.
On site servicing could be possible depending on how strict the definition of "on site" is. Example, when Circuit City still had stores, the one near me had a store in the mall with an installation facility in a corner of the mall's parking lot. ("Anchor stores" like Sears often have attached auto service facilities, but I seriously doubt any mall would allow Tesla to do that.)
English I and II are almost certainly required by any accredited school. Most accredited schools also have a humanities requirement, so Government and Anthropology are not unreasonable.
I would consider Algebra I a remedial course, so I agreed, replace it.
I also agree the programming tools class can be covered in other classes, including Project Management (Software).
Move Intro to Unix to the first semester. Or maybe second, if Intro to Computers is needed. This will give them a foundation for the suggested web server admin class.
Intro to Programming Logic should include a programming language. One very different from Javascript, so the students get a broader perspective. (I started programming at a very early age, so I don't know what would be good for some one starting post high school, or even in high school.)
And I agree with others that a fifth course per semester should be added. Include a third programming language.
We also didn't allow cameras in our daughter's room or other private rooms in the house.
An image taken in IR is as good as the resolution of the camera. Of course, some details important details will be missing, but many ordinary photographs also miss important details.
It not just those in solitary who are denied physical contact with visitors - at least in some prisons - even minimum security prisons. A friend of mine was imprisoned (for disorderly conduct) for a month in a minimum security prison. The visitation rooms had a plexiglass partition separating the inmate from the visitors. The prison had no provisions for allowing visitors to have physical contact with inmates - not even spouses or children. The inmates were allowed contact with other inmates. Nevertheless, it was hard on my friend to not be able to hug his children and wife for that time.
Valid point.
Originally, SSL/TLS and HTTPS were developped and deployed to provide pprotection for this small amount of snesitive data.
Now, for various reasons, we have HTTPS protect pages that contain a lot of "rich" content that actually doesn't need this protection. This has the side affect of creating a lot of extra, uncachable content. I can understand why ISPs would want a way handle that.
So, is there a way to securely protect the sensitive stuff while leaving the rest unencrypted? Perhaps the non-sensitive stuff could be validated* with secure hashes, so could then be cached without need to decrypt anything?
*As I understand, one of the current problems with mixing HTTPS and non-HTTPS content on the same page is that the non-secure content can affect how the secure content is handled.
If you use a simple prefix you can remember, a different one for each system, then you can program a complex suffix into a YubiKey configured in "static mode". This avoids changing the existing password based system.
Of course, it's not as secure as other options, like One Time Passwords or challenge-response systems, but is an improvement.
(Another option would be to have a seperate YubiKey for each system, then each system could have a completely unique password.)
So, are the scarce-gametes (women) attracted to nice guys? ... I strongly suspect women are looking for men practicing optimum predatation
My girlfriend of many years freely admitted that I was the "rational" choice rather than the "chemistry" choice. Later she also admitted to other advantages of choosing me over a man "practicing optimum predation".
As a better educated society (mainly in economic efficiency theory and morality) we can change our thinking about how we relate to one another.
why would those in power want to let that happen?
They wouldn't. They are already helping each other and (mostly) fighting for each other against the rest of the population. And they pay a pittance to a few "peasants" to do the the dirty jobs they don't want to do, so they are set. They don't really care about the "lower classes" as long as the lower classes don't get in their way. And for the few that do get in their way, they have the resources to neutralize the threat.
He knows he got screwed in his case, as politics were more important in his company. I can relate to his position, and am sorry to say that I have yet to see a company that doesn't have politics play an important role. You must be willing to play politics in addition to being productive, or you will get used and tossed.
Sounds like his manager failed to successfully play politics.
Great, anther toy encouraging society to regress back to adolescent behavior...with much higher stakes.
The stakes may be higher than some people think. Over thepast few years, several people I casually know (that is, I only know them by face and first name) have expressed the opinion that the sex offender list is a license to hunt and kill. How many people with similar names are going to get "tagged" by this service?
How about a real Detective Mudoch? (Admittedly, Canadian) (http://www.imdb.com/title/tt1091909/?ref_=nv_sr_4)