So how is this different than pick up in store unless Amazon plans on amassing thousands of more trucks than even UPS or FedEx? You can already order online and then go to the front desk of a store to pickup in store for convenience.
XP can still be obtained on OEM PCs until 2016 if they have the licensing to do so. We were going to move to XPe for our POS systems instead of XP Pro, but we have been guaranteed until 2016 to be able to get XP Pro.
You are correct in one regard that the merchant would have to be PCI Compliant, but are you familiar with VISA PABP? PABP or Payment Applications Best Practices mandates that software that transmits, processes, or stores credit card information must undergo a PABP Audit and Certification. If he decides to write software to collect the credit card info off of the magstripe then his application will ultimately succomb to the the PABP standards which are in line with PCI-DSS. So the merchant will have to do a self-questionnaire for PCI Compliance and ensure that he is using PABP validated credit card processing software. If the application in Linux collects the magstripe and is integrated with a separate credit card transmittal package, he still will have to certify the application.
Duh. I never said it was perfect and of course it can be trivial to reverse engineer. However, even if you do reverse engineer it, then you need a server backend to then provide the ultimate authentication. I think you are missing the point. Did you know what those numbers meant? Probably not. They are encrypted and obfuscated. A combination of those two factors and checksum makes the barcode more secure. Barcodes are inherently insecure unless you use encryption, obfuscation, and a checksum.
That is incorrect. While the barcode can be photocopied, a backend database with terminal-level authentication to verify the barcode would stop most people. Before passing to the server, the terminal takes the barcode and has the algorithm below for generating the checksum. The two are compared and if they match, then it is passed onto the server which provides the ultimate authentication. If the checksum's do not match, then it is invalid. This prevents someone from simply changing a few digits and thinking it will work, which is what the article is talking about. The following method is a popular means by which to combat photocopying. For instance:
A barcode number in Code 128C can be given as
000000070314100601
then apply checksum security and add these last two digits to the end of the current number:
// Generate CRC16 checksum using pos 1,3,5,7,9,11,13,15,17 of barcode
I have not seen the barcode, but this likely could be thwarted by using a simple checksum algorithm to add two digits to the end of the barcode number or somewhere within. This would prevent rudimentary attacks on the barcode by simply changing a few digits. The system could then check the number to see if the number 'checks out' prior to allowing access. This is valid of course, if an attacker does not figure out the checksum number. From reading the article, it sounds as if there is another system flaw.
Sign up for e-billing and you won't notice the pages. Since the "data" information is superfluous to you, it would probably be better to look at a PDF file than 52 paper pages.
The cameras they will probably use are made by PiPS http://www.pipstechnology.com./ They claim 98 % accuracy, but the accuracy is closer to 70 % in our testing so expect to get a lot of false positives.
I find it hard to believe that a science project immediately led to the judgement against the company. These kids were smart, but I'm sure NZ scientists did their own tests.
I agree that the dongle code may need to be turned over. The binary information contained on these dongles can be proprietary.. therefore not subject to GPL. But, why since it runs on Linux firmware, does their code make it into the GPL? Correct me if I am wrong, but if I develop on Linux, that does not necessary mean that I need to release my code GPL licensed. Am I reading the text wrong?
Basically what the article is describing is a USB dongle, similar to a Hasp. This is very common in the commerical world where you want to turn on/off features. I don't see why this company should be required to turn-over code nor without charging.
Wrong! The football you are referring is aka soccer or "Association Football". There is also rugby football, etc. So your bigot-like comment is way off. See quote from Wikipedia:
"The rules of football were codified in England by the Football Association in 1863, and the name association football was coined to distinguish the game from the other forms of football played at the time, specifically rugby football. The term soccer first appeared in the 1880s as a slang abbreviation of Association football, often credited to Charles Wreford-Brown.[18]
Today the sport is known by a number of names throughout the English-speaking world, the most common being football and soccer. The term used depends largely on the need to differentiate the sport from other types of football played in a community. Football is the term used by FIFA, the sport's world governing body, and the International Olympic Committee. For more details of naming throughout the world, please refer to the main articles above."
I think the article means Websites not Webpages, which is drastically different. Since the number of webpages probably outnumbers the number of websites, the percentage may be lower when given that there are probably less pornographic webpages than websites. A typical pornographic website may have a dozen pornographic webpages whereas a non-pornographic website may have two dozen webpages. The numbers here are skewed. Just because only 1 % of webpages may be pornographic doesn't mean that there shouldn't be a law protecting children from them. Say for instance that if 1 % of crime in America is theft, does that mean that we don't need to have a law against it? Quantity of crime does not necessarily give reason for law. I'm not with the ACLU on this argument.
I've worked at a Perl shop like that. We built our own MAME machine so we could play arcade games in the office during lunch. We did a lot of programming with MySQL, PHP, and Perl on Debian Linux and managed a few Asterisk PBXs. The company eventually failed however. Small companies have a hard time distinguishing themselves these days. This company was a small VoIP company focused on phone cards. Well, Vonage and Skype essentially killed that business. They started to diversify but it was too late. I eventually got one of the jobs where you are a "small cog in a wheel". Trust me, you want stability. It's all fun and cool to try to live the dotCOM era lifestyle and Silicon Valley lifestyle, but I would rather do a boring job that pays well and consistently, then have a job at a company where there is a lot of risk. That is my opinion of course. I have a family and I am still young (25), but there comes a time when you have to take measured risks. I'm not saying that working for a small company is bad. In fact, this company had been around for 10 years before it crashed. I simply came around at the end of it's lifetime. Just remember, nothing in life is guaranteed.
It should be. Information should be hard to get to. The onus of getting a college degree should not be to have to use a difficult research system. I'm not saying people should not try and search out multiple sources. Just that the sources recommended are poorly designed, compared to Wikipedia. So yes, research sources should be easy to access. Not a pain in the ass.
You can't blame people for not citing Wikipedia when there are not even better sources of research as easily searchable and browsable as Wikipedia. A lot of the online resources many Colleges tell us to use are crap. They are poorly designed and take forever to find anything useful. I can see why people use Wikipedia and cite the articles.
Unfortunately, the only way to get people off your back is to sue nowadays. Simply asking them to stop does not work especially in civil situations. He does encourage trying to negotiate with them. Remember, you are the victim receiving the unwanted phone call solicitation not the solicitors.
No, but I think he has another point and that is why provide laptops when there are so many other issues? Computers won't solve the social ills or necessarily make these kids smarter. Just because they know how to use Linux or Windows XP will not necessarily make them more competitive. Let's start with building more homes, getting their community built up and educating these people. I'd rather spend my $300 on that rather than a laptop. The idea is good, don't get me wrong, I think that the money could be spent elsewhere in better places.
This has nothing to do with the Internet and more to do with law in general. Just ignore it like Spamhaus! You are no different than the rest of the anti-US blowhards - fool.
Slashdot Mirror
So how is this different than pick up in store unless Amazon plans on amassing thousands of more trucks than even UPS or FedEx? You can already order online and then go to the front desk of a store to pickup in store for convenience.
XP can still be obtained on OEM PCs until 2016 if they have the licensing to do so. We were going to move to XPe for our POS systems instead of XP Pro, but we have been guaranteed until 2016 to be able to get XP Pro.
You are correct in one regard that the merchant would have to be PCI Compliant, but are you familiar with VISA PABP? PABP or Payment Applications Best Practices mandates that software that transmits, processes, or stores credit card information must undergo a PABP Audit and Certification. If he decides to write software to collect the credit card info off of the magstripe then his application will ultimately succomb to the the PABP standards which are in line with PCI-DSS. So the merchant will have to do a self-questionnaire for PCI Compliance and ensure that he is using PABP validated credit card processing software. If the application in Linux collects the magstripe and is integrated with a separate credit card transmittal package, he still will have to certify the application.
Duh. I never said it was perfect and of course it can be trivial to reverse engineer. However, even if you do reverse engineer it, then you need a server backend to then provide the ultimate authentication. I think you are missing the point. Did you know what those numbers meant? Probably not. They are encrypted and obfuscated. A combination of those two factors and checksum makes the barcode more secure. Barcodes are inherently insecure unless you use encryption, obfuscation, and a checksum.
I have not seen the barcode, but this likely could be thwarted by using a simple checksum algorithm to add two digits to the end of the barcode number or somewhere within. This would prevent rudimentary attacks on the barcode by simply changing a few digits. The system could then check the number to see if the number 'checks out' prior to allowing access. This is valid of course, if an attacker does not figure out the checksum number. From reading the article, it sounds as if there is another system flaw.
Sign up for e-billing and you won't notice the pages. Since the "data" information is superfluous to you, it would probably be better to look at a PDF file than 52 paper pages.
The cameras they will probably use are made by PiPS http://www.pipstechnology.com./ They claim 98 % accuracy, but the accuracy is closer to 70 % in our testing so expect to get a lot of false positives.
I find it hard to believe that a science project immediately led to the judgement against the company. These kids were smart, but I'm sure NZ scientists did their own tests.
The internet is a weapon. It's called NIPRNET and SIPRNET funnelled over Commercial Internet.
You're no better than them.. why not just make a website and post the instructions.. it obviously would help a lot of people.
I agree that the dongle code may need to be turned over. The binary information contained on these dongles can be proprietary.. therefore not subject to GPL. But, why since it runs on Linux firmware, does their code make it into the GPL? Correct me if I am wrong, but if I develop on Linux, that does not necessary mean that I need to release my code GPL licensed. Am I reading the text wrong?
If Nintendo wants to control supply, who cares? It's their product. Get over it.
Basically what the article is describing is a USB dongle, similar to a Hasp. This is very common in the commerical world where you want to turn on/off features. I don't see why this company should be required to turn-over code nor without charging.
Since when did NASA get tasked with saving the world? If it is such a big deal, then every country in the world should pay for it.
How is this different from Ethereal?
Wrong! The football you are referring is aka soccer or "Association Football". There is also rugby football, etc. So your bigot-like comment is way off. See quote from Wikipedia:
"The rules of football were codified in England by the Football Association in 1863, and the name association football was coined to distinguish the game from the other forms of football played at the time, specifically rugby football. The term soccer first appeared in the 1880s as a slang abbreviation of Association football, often credited to Charles Wreford-Brown.[18]
Today the sport is known by a number of names throughout the English-speaking world, the most common being football and soccer. The term used depends largely on the need to differentiate the sport from other types of football played in a community. Football is the term used by FIFA, the sport's world governing body, and the International Olympic Committee. For more details of naming throughout the world, please refer to the main articles above."
http://en.wikipedia.org/wiki/Football_(soccer)
I think the article means Websites not Webpages, which is drastically different. Since the number of webpages probably outnumbers the number of websites, the percentage may be lower when given that there are probably less pornographic webpages than websites. A typical pornographic website may have a dozen pornographic webpages whereas a non-pornographic website may have two dozen webpages. The numbers here are skewed. Just because only 1 % of webpages may be pornographic doesn't mean that there shouldn't be a law protecting children from them. Say for instance that if 1 % of crime in America is theft, does that mean that we don't need to have a law against it? Quantity of crime does not necessarily give reason for law. I'm not with the ACLU on this argument.
I've worked at a Perl shop like that. We built our own MAME machine so we could play arcade games in the office during lunch. We did a lot of programming with MySQL, PHP, and Perl on Debian Linux and managed a few Asterisk PBXs. The company eventually failed however. Small companies have a hard time distinguishing themselves these days. This company was a small VoIP company focused on phone cards. Well, Vonage and Skype essentially killed that business. They started to diversify but it was too late. I eventually got one of the jobs where you are a "small cog in a wheel". Trust me, you want stability. It's all fun and cool to try to live the dotCOM era lifestyle and Silicon Valley lifestyle, but I would rather do a boring job that pays well and consistently, then have a job at a company where there is a lot of risk. That is my opinion of course. I have a family and I am still young (25), but there comes a time when you have to take measured risks. I'm not saying that working for a small company is bad. In fact, this company had been around for 10 years before it crashed. I simply came around at the end of it's lifetime. Just remember, nothing in life is guaranteed.
The 3D Imagery was provided by Harris Corporation in Melbourne, FL and can be up to 1 year old.
It should be. Information should be hard to get to. The onus of getting a college degree should not be to have to use a difficult research system. I'm not saying people should not try and search out multiple sources. Just that the sources recommended are poorly designed, compared to Wikipedia. So yes, research sources should be easy to access. Not a pain in the ass.
You can't blame people for not citing Wikipedia when there are not even better sources of research as easily searchable and browsable as Wikipedia. A lot of the online resources many Colleges tell us to use are crap. They are poorly designed and take forever to find anything useful. I can see why people use Wikipedia and cite the articles.
Unfortunately, the only way to get people off your back is to sue nowadays. Simply asking them to stop does not work especially in civil situations. He does encourage trying to negotiate with them. Remember, you are the victim receiving the unwanted phone call solicitation not the solicitors.
No, but I think he has another point and that is why provide laptops when there are so many other issues? Computers won't solve the social ills or necessarily make these kids smarter. Just because they know how to use Linux or Windows XP will not necessarily make them more competitive. Let's start with building more homes, getting their community built up and educating these people. I'd rather spend my $300 on that rather than a laptop. The idea is good, don't get me wrong, I think that the money could be spent elsewhere in better places.
This has nothing to do with the Internet and more to do with law in general. Just ignore it like Spamhaus! You are no different than the rest of the anti-US blowhards - fool.