That's what they did with the previous jailbreakme.com exploit (which was for iPhones 2G on 1.1 firmware): exploit the libtiff vulnerability, install Installer (the Cydia of the time) and patch libtiff afterwards. Apple of course patched the flaw on the very next 1.2 version.
And don't forget to use Lanczos anti-aliasing when downsizing to avoid moiré.
FWIW, to do these kind of processing/conversions I once used an AVISynth script with Nero Recode. No match on flexibility and speed (repsectively) at that time.
But first try watching Primer, just to know what you shouldn't do...
It's one of the best movies I've ever seen, but watch it 2/3 times before judging -- as suggested by the director himself -- or use some reference timeline when in doubt (spoilers ahead).
This system is totally unnecessary, since engines are not going to be idling anymore with the introduction of the start and stop system.
Seen it in action on a Fiat 500 here in Italy and looks working pretty well (even if at first it is kinda strange hearing the engine shut off that way).
Which, to most people, looks like the best way to convert a number from single to double precision in Java.
For this reason, you may also want to reference the forgotten class sun.misc.FloatingDecimal. And I still wonder why assigning floats to doubles in Java leads to a cast with no warning (which is just wrong), while they have the necessary conversion facilities available.
Example:
double myDoubleFromFloat = new FloatingDecimal(myFloat).doubleValue();
If you check the conversion code, the 3000+ lines in that class are totally not trivial.
Data is from November 2006, but the situation in these hogged A blocks shouldn't have changed much. Note that the 18.0.0.0/8 block used by MIT will be a little harder to reclaim, since they spread out the internally-assigned addresses quite uniformously (at the contrary of IBM's 9.0.0.0/8)
Google indexes 1 trillion of pages. 1% of the use of the carried content is illegal? Side effect. The company happens to unknowingly sell to a lot of criminals. Not liable.
TPB indexes 2 millions of torrents. 99% of the use of the carried content is illegal? Main business line. The company knowingly sells goods to criminals. Fully liable.
Then, IMHO, ruling torrent sites illegal is legit. And censoring them, as bad as it is for Internet's freedom, from an "alien" point of view stands.
But being Italian, I also know that this rule will never be enforced. And if it will be, the measures taken will not be effective: either because there will be way-arounds or because there will be no real interest/return in enforcing them.
I'm sick of our government. Of all the PR acts, and of how Italians *actually like/agree* with those PR acts.
The old scene follows obscure rules to be l33t like ftping around rars, but they're a fraction of a fraction of the people downloading.
Sure. But they are supplying 95% of what other people are downloading.
The topsite network was never meant to supply a large number of people, but was and is a *fast* and *secure* distributed exchange system for those who are in, *and* are contributing.
There's also a new scene that's not so lame, I can tell you there's original releases that go on private torrents first but are packed up to make the old scene happy.
Sure, I know and I respect them. They often fill the many holes left by the old scene these days. But still, these new scenes are *mostly* supplying mp3/cam/ts/scr/rips. No technical knowledge in there, just a matter of having fresh meat working for you. Yes, I also know exceptions to this, but these can be counted on your two index fingers...
The Scene is dimming. People in get older, get real life. New people are not allowed to get in for security reasons/are not motivated to do so with all the easy-to-get-into p2p stuff.
Except for some holdouts from Usenet I think pretty much everyone uses torrents without any rar/zip compression.
Funny how these days noone knows how the real Scene works. But it's surely better this way.
Regarding GP's post, just look around and you will find that it's not the most publicized feature in players, but many of them work OOTB with RARs.
If you're lazy, one name for all: BSPlayer. And yes, it does support subs. Both internally or via VSFilter.
Too many glitches in BSPlayer? (I know, some are annoying.) Then go for XBMC, first RAR support I've seen and probably the best one.
Still not satisfied? Try WinMount, to mount with one click any set of compressed files to a new virtual drive. And then use your favorite player.
1. Read this.
2. Wonder on Skype diffusion and on lack of encrypted alternatives.
3. Judge by youself.
Do you still want to point out that a mircryption chat session is way easier to set up than an encrypted VOIP call? Well, remember that cold war was just yesterday, at least in some politician's heads.
Why parent is modded funny? This is probably exactly what happened, knowing the size of the stolen CC market. And the programmer can't be charged with anything.
If Apple noticed this too, that could also be the reason behind app removal.
The post refers to the wrong file for the comparison. The check
should have been done against this file:
applets/HushEncryptionEngine.jar
That is the file actually used on the website. It is processed
with Proguard to reduce the download size, and has no debug
information. If you checksum that file, the checksum will match
the file on the website.
The file mentioned in the post, HushEncryptionEngine_3-0-0-30.jar,
contains debugging information and is not processed by Proguard.
Therefore it does not match the file for download on the website.
Regards,
Brian Smith
Hush Communications
It's sad that all the Hushmail's openness efforts go completely unnoticed in the rush to scoop or to find conspiracy evidence.
And, just for the record, I tried to carry on the verification process and (even if I didn't have the right combination of jdk/proguard/libs versions on my system) I got a jre with all the classes just off some bytes in size from the actual jar run by Hushmail.
All that lovely code died a quick, silent death when Windows 95 came along. It wreaked all sorts of havoc and Windows would kill the app as soon as it tried to self-mod. It's a shame I didn't keep up with the skills, I could be one rich despicable virus writer today:) Actually, to use self modifying code in win32, you just have to mark the PE code sections as writable, since by default they're just readable and executable.
And self modifying code is still used today on some software protections, not just viruses.
Slashdot Mirror
That's what they did with the previous jailbreakme.com exploit (which was for iPhones 2G on 1.1 firmware): exploit the libtiff vulnerability, install Installer (the Cydia of the time) and patch libtiff afterwards. Apple of course patched the flaw on the very next 1.2 version.
And don't forget to use Lanczos anti-aliasing when downsizing to avoid moiré.
FWIW, to do these kind of processing/conversions I once used an AVISynth script with Nero Recode. No match on flexibility and speed (repsectively) at that time.
But first try watching Primer, just to know what you shouldn't do...
It's one of the best movies I've ever seen, but watch it 2/3 times before judging -- as suggested by the director himself -- or use some reference timeline when in doubt (spoilers ahead).
This system is totally unnecessary, since engines are not going to be idling anymore with the introduction of the start and stop system.
Seen it in action on a Fiat 500 here in Italy and looks working pretty well (even if at first it is kinda strange hearing the engine shut off that way).
Which, to most people, looks like the best way to convert a number from single to double precision in Java.
For this reason, you may also want to reference the forgotten class sun.misc.FloatingDecimal. And I still wonder why assigning floats to doubles in Java leads to a cast with no warning (which is just wrong), while they have the necessary conversion facilities available.
Example:
double myDoubleFromFloat = new FloatingDecimal(myFloat).doubleValue();
If you check the conversion code, the 3000+ lines in that class are totally not trivial.
... to use proper test cases:
http://www.xkcd.com/217/
For an easier view, you can have a look a this map:
http://www.caida.org/research/id-consumption/census-map/images/20061108.png
Data is from November 2006, but the situation in these hogged A blocks shouldn't have changed much. Note that the 18.0.0.0/8 block used by MIT will be a little harder to reclaim, since they spread out the internally-assigned addresses quite uniformously (at the contrary of IBM's 9.0.0.0/8)
http://xkcd.com/723/
Google says this: (2^80 / 10^5 ) / (3600 *24 *365*1000) = 383 347 863
383.3 million years to go through every password in 2^80 possibilities.
Try this: 2^80 / ( 10^5 / s ) in millennia. Or try it with bandwidth calculations.
ded
Still, in previous stories I didn't find any reference to PaperBack.
It just lacks a textual description of the matrix format to attach at your centuries-lasting data.
Google indexes 1 trillion of pages. 1% of the use of the carried content is illegal? Side effect. The company happens to unknowingly sell to a lot of criminals. Not liable.
TPB indexes 2 millions of torrents. 99% of the use of the carried content is illegal? Main business line. The company knowingly sells goods to criminals. Fully liable.
Then, IMHO, ruling torrent sites illegal is legit. And censoring them, as bad as it is for Internet's freedom, from an "alien" point of view stands.
But being Italian, I also know that this rule will never be enforced. And if it will be, the measures taken will not be effective: either because there will be way-arounds or because there will be no real interest/return in enforcing them.
I'm sick of our government. Of all the PR acts, and of how Italians *actually like/agree* with those PR acts.
The old scene follows obscure rules to be l33t like ftping around rars, but they're a fraction of a fraction of the people downloading.
Sure. But they are supplying 95% of what other people are downloading.
The topsite network was never meant to supply a large number of people, but was and is a *fast* and *secure* distributed exchange system for those who are in, *and* are contributing.
There's also a new scene that's not so lame, I can tell you there's original releases that go on private torrents first but are packed up to make the old scene happy.
Sure, I know and I respect them. They often fill the many holes left by the old scene these days. But still, these new scenes are *mostly* supplying mp3/cam/ts/scr/rips. No technical knowledge in there, just a matter of having fresh meat working for you. Yes, I also know exceptions to this, but these can be counted on your two index fingers...
The Scene is dimming. People in get older, get real life. New people are not allowed to get in for security reasons/are not motivated to do so with all the easy-to-get-into p2p stuff.
But it still is the real deal.
-xded
Except for some holdouts from Usenet I think pretty much everyone uses torrents without any rar/zip compression.
Funny how these days noone knows how the real Scene works. But it's surely better this way.
Regarding GP's post, just look around and you will find that it's not the most publicized feature in players, but many of them work OOTB with RARs. If you're lazy, one name for all: BSPlayer. And yes, it does support subs. Both internally or via VSFilter.
Too many glitches in BSPlayer? (I know, some are annoying.) Then go for XBMC, first RAR support I've seen and probably the best one.
Still not satisfied? Try WinMount, to mount with one click any set of compressed files to a new virtual drive. And then use your favorite player.
-xded
Shouldn't you let the code make it to the compiler before executing it?
Parent sounds paranoid?
1. Read this.
2. Wonder on Skype diffusion and on lack of encrypted alternatives.
3. Judge by youself.
Do you still want to point out that a mircryption chat session is way easier to set up than an encrypted VOIP call? Well, remember that cold war was just yesterday, at least in some politician's heads.
http://info.drweb.com/show/3342/en
No "5, Funny" zombie-related post yet?
Oh, come on...
Correct. Read here for more info.
http://tech.slashdot.org/tech/08/07/26/152239.shtml
Why parent is modded funny? This is probably exactly what happened, knowing the size of the stolen CC market. And the programmer can't be charged with anything.
If Apple noticed this too, that could also be the reason behind app removal.
This seems to work.
That's probably because you never tried hand soldering with RoHS compliant solder/fluxes.
No. That's 240 Million indles.
Definitely non-story. And parent is the first post in the flaming-bitching-i'm-a-crypto-conspiracist-geek row that leads, that actually makes sense.
Just take a look at the updated Cryptome FA:
Date: Sun, 03 Aug 2008 09:04:38 -0700
Subject: CRYPTOME: Response to hushmail-pry.htm
From: "S Brian Smith"
Hello,
This post is in error:
http://cryptome.org/hushmail-pry.htm
The post refers to the wrong file for the comparison. The check
should have been done against this file:
applets/HushEncryptionEngine.jar
That is the file actually used on the website. It is processed
with Proguard to reduce the download size, and has no debug
information. If you checksum that file, the checksum will match
the file on the website.
The file mentioned in the post, HushEncryptionEngine_3-0-0-30.jar,
contains debugging information and is not processed by Proguard.
Therefore it does not match the file for download on the website.
Regards,
Brian Smith
Hush Communications
It's sad that all the Hushmail's openness efforts go completely unnoticed in the rush to scoop or to find conspiracy evidence.
And, just for the record, I tried to carry on the verification process and (even if I didn't have the right combination of jdk/proguard/libs versions on my system) I got a jre with all the classes just off some bytes in size from the actual jar run by Hushmail.
-ded
And self modifying code is still used today on some software protections, not just viruses.