RTFA, they have good reason to point at the hardware. Then there's the bazillions of servers running on different hardware that have never seen the bug.
Many teams would have written it off as a hardware bug a long time ago, but the linux kernel team was willing to consider and investigate the possibility that it was a rarely triggered bug in the software before they passed the buck.
For years, I had 6to4 working through a NAT just fine.
Teredo was disabled by default on managed networks because it was effectively bypassing the firewall. It was a significant security risk.
3 was a problem external to the scope of the protocol spec driven by a bunch of anemic routers. 3a (stateless autoconfig, no NAT) work quite well if you have a router that supports v6. They greatly simplify home and SOHO configurations (do nothing and it works). The privacy issues have been fully addressed. Filtering rather than NAT greatly reduces the load on the router.
It is being deployed. I no longer maintain my 6to4 setup since I now receive a prefix from my ISP.
But no infringement has been proven in court, only an allegation made. The threatened (false) penalties may induce an innocent potential defendant to pay just to make it go away. That would be a monetary gain through deceit.
The Supreme Court of Canada has held that deprivation is satisfied on proof of detriment, prejudice or risk of prejudice; it is not essential that there be actual loss. Deprivation of confidential information, in the nature of a trade secret or copyrighted material that has commercial value, has also been held to fall within the scope of the offence.
They gain a quick settlement where if the alleged infringer knew the penalties are limited he might have decided to go to court. For example, if he didn't do it but wasn't willing to risk huge penalties on the court coming to the correct conclusion.
So it is fraud.
Consider, if the rights holder didn't expect to gain something from lying in the notice, why do it? Funsies?
Yes, it is. The option rom checks for firmware update mode. If it isn't in update mode, it sets update mode and resets the machine. POOF, you are now booting during a firmware update.
The vulnerability only exists when the machine is booting in a special flash mode. Otherwise, the flash chip is locked making writes impossible until a reset happens before the option ROMS get run.
So only flash mode needs to disable the option ROMs. A normal boot can use them without risk of a re-flash.
What you are missing is that the lack of sensory receptors in no way precludes having a sensation that feels like it is in your head. Much like in experiments with stimulators on both wrists, people would occasionally have the odd experience of "feeling" a buzzing sensation in the empty space between their wrists. Certainly they had no receptors there. The feeling was real but mis-attributed.
So the author might have felt EXACTLY what was reported.
When you look at one of those optical illusions meant to trigger the perception of motion, are you a moron when you say the picture looks like it is moving?
How about when you see it on a computer screen where it could plausibly be moving (but isn't)? Are you a moron then?
First you say there's nothing that interesting about you, then you defeat your argument telling us about your insurance company wanting to snoop and how you prefer not.
TFA is talking about how too many devices don't give you that option. It's happening right now.
It doesn't matter that there's no correlation between sneezing while brushing and employability. If HR gets that kooky idea in their heads (kinda like thinking your fair issac score reflects your driving risk) and your iMirror reports that you have sneezed while brushing, stupid or not, you are screwed.
It's fine if you can see customer reviews of the sales guy, but you have no need to know that he grunts on the can or that he attends a furry convention every June.
I'll bet you don't want the local 'creative entrepreneurs' to know exactly when you leave the house and when they can expect you home. I'm quite certain you don't want them to know your banking uid and pass.
Google's opinion matters because they are exactly one of the new competitors you claimed (by name) would be hurt by this.
Something must be done. This is something. Therefor it must be done! Is that your argument?
No. Your worst case scenario is already the case for most of the country, therefor the new action cannot make it worse.
I just don't want to see the Internet-service provision added to the sorry list already containing electricity-delivery and public roads...
How fortunate then that nobody has proposed granting additional monopoly power to the ISPs. You still argue as if you think title II will somehow grant new monopoly power to the ISPs in spite of the move being taken to open closed markets up to competition. Surely you don't think that opening the market to additional competition is bad?!?
That's down to the quality (or lack) of the contractor. It sounds like the typical crap you get from one of the big vendors trying to shoehorn an expensive "off the rack" product into a very custom environment. It probably would have worked better to directly hire the developers.
You should disassemble failed products more often and ask the questions. BTW, screws don't cost anything like $0.20 in the quantities that Apple would buy unless you use that very "special" math.
You may have lost the thread, yours is the first mention of Apple in this thread and TFA is about a UK government mainframe from the '70s.
But going with apple, considering how touchy they are about humidity, a dab of silicone putty behind the sockets would have been a good call for a cost of nearly nothing.
Prhaps, but since my family was never rich, It must have been within reach for an average family. And she never had to buy another one nor did her daughter nor my mother. Since my sewing is limited to amateurish minor repairs, it serves me adequately as well.
Many of those craftsman homes were in fine shape when they were bulldozed to make way for a new high rise, freeway, etc. The steam engines were replaced by better technology when it came along but they had long ago paid for themselves and then some. Actually, a lot of those old sewing machines are still in use. Many have been sold and re-sold and are now used in an industrial setting. A number of them were destroyed by fires, floods, and other disasters large and small. Some were replaced when more advanced models came out,
I'm not advocating that machines be made to last well beyond the time they will reasonably be replaced, just that they should not be designed to fail long before they would be willingly replaced. It may not make sense to build a 100 year cellphone, but honestly, how much advancement are we likely to see in blender technology?
But primarily, I was refuting the claim that stuff has always been designed to fail. There was definitely a time when it wasn't and I have functional evidence of that.
Records may be coming back but record changers are nowhere to be heard.
And the similar sound of c7 twinkle Christmas lights.
Yes. It's mostly used for reconfiguring VMs, but it is possible to do it with real hardware if the board supports it.
It's interesting how as time goes on, PC hardware is slowly coming to resemble an affordable version of the mainframes they replaced.
I'm famioliar with that one. Same thing happens in boot ROMs.
Yes, I can see that would limit the damage, but it still leaves the OS surprised to have running tasks just go away.
It would likely work less well with AMD processors since a chunk of memory would also go away.
Hot swapping the CPU without an immediate crash had to be a million to one shot!
But yes, resilient software is always a good thing.
I do hope Linus's patch goes in in some form to at least make it clear what the problem is if someone with similarly borked hardware sees the problem.
RTFA, they have good reason to point at the hardware. Then there's the bazillions of servers running on different hardware that have never seen the bug.
Many teams would have written it off as a hardware bug a long time ago, but the linux kernel team was willing to consider and investigate the possibility that it was a rarely triggered bug in the software before they passed the buck.
Sometimes it really is a hardware bug.
For years, I had 6to4 working through a NAT just fine.
Teredo was disabled by default on managed networks because it was effectively bypassing the firewall. It was a significant security risk.
3 was a problem external to the scope of the protocol spec driven by a bunch of anemic routers. 3a (stateless autoconfig, no NAT) work quite well if you have a router that supports v6. They greatly simplify home and SOHO configurations (do nothing and it works). The privacy issues have been fully addressed. Filtering rather than NAT greatly reduces the load on the router.
It is being deployed. I no longer maintain my 6to4 setup since I now receive a prefix from my ISP.
A case might also be made that it is protection of data.
Or, just to be safe, download a torrent. That way, someone else broke the digital lock.
But no infringement has been proven in court, only an allegation made. The threatened (false) penalties may induce an innocent potential defendant to pay just to make it go away. That would be a monetary gain through deceit.
Unless or until the accusation goes to trial, it is not legitimate in the eyes of the court. It is just an accusation.
The Supreme Court of Canada has held that deprivation is satisfied on proof of detriment, prejudice or risk of prejudice; it is not essential that there be actual loss. Deprivation of confidential information, in the nature of a trade secret or copyrighted material that has commercial value, has also been held to fall within the scope of the offence.
They gain a quick settlement where if the alleged infringer knew the penalties are limited he might have decided to go to court. For example, if he didn't do it but wasn't willing to risk huge penalties on the court coming to the correct conclusion.
So it is fraud.
Consider, if the rights holder didn't expect to gain something from lying in the notice, why do it? Funsies?
It's been done.
Some machines have a hardware jumper that must be set to allow flashing the BIOS. They all should.
IIRC, a SATA drive cannot initiate a DMA.
Yes, it is. The option rom checks for firmware update mode. If it isn't in update mode, it sets update mode and resets the machine. POOF, you are now booting during a firmware update.
The vulnerability only exists when the machine is booting in a special flash mode. Otherwise, the flash chip is locked making writes impossible until a reset happens before the option ROMS get run.
So only flash mode needs to disable the option ROMs. A normal boot can use them without risk of a re-flash.
What you are missing is that the lack of sensory receptors in no way precludes having a sensation that feels like it is in your head. Much like in experiments with stimulators on both wrists, people would occasionally have the odd experience of "feeling" a buzzing sensation in the empty space between their wrists. Certainly they had no receptors there. The feeling was real but mis-attributed.
So the author might have felt EXACTLY what was reported.
When you look at one of those optical illusions meant to trigger the perception of motion, are you a moron when you say the picture looks like it is moving?
How about when you see it on a computer screen where it could plausibly be moving (but isn't)? Are you a moron then?
The device is claiming it can alter your mood by attaching to your head.
So it's a mechanical hooker? I don't think that's the FDA's domain.
There is a button on the left front of your mouse. Don't press it and your troubles are over.
First you say there's nothing that interesting about you, then you defeat your argument telling us about your insurance company wanting to snoop and how you prefer not.
TFA is talking about how too many devices don't give you that option. It's happening right now.
It doesn't matter that there's no correlation between sneezing while brushing and employability. If HR gets that kooky idea in their heads (kinda like thinking your fair issac score reflects your driving risk) and your iMirror reports that you have sneezed while brushing, stupid or not, you are screwed.
It's fine if you can see customer reviews of the sales guy, but you have no need to know that he grunts on the can or that he attends a furry convention every June.
I'll bet you don't want the local 'creative entrepreneurs' to know exactly when you leave the house and when they can expect you home. I'm quite certain you don't want them to know your banking uid and pass.
Google's opinion matters because they are exactly one of the new competitors you claimed (by name) would be hurt by this.
Something must be done. This is something. Therefor it must be done! Is that your argument?
No. Your worst case scenario is already the case for most of the country, therefor the new action cannot make it worse.
I just don't want to see the Internet-service provision added to the sorry list already containing electricity-delivery and public roads...
How fortunate then that nobody has proposed granting additional monopoly power to the ISPs. You still argue as if you think title II will somehow grant new monopoly power to the ISPs in spite of the move being taken to open closed markets up to competition. Surely you don't think that opening the market to additional competition is bad?!?
That's down to the quality (or lack) of the contractor. It sounds like the typical crap you get from one of the big vendors trying to shoehorn an expensive "off the rack" product into a very custom environment. It probably would have worked better to directly hire the developers.
You should disassemble failed products more often and ask the questions. BTW, screws don't cost anything like $0.20 in the quantities that Apple would buy unless you use that very "special" math.
You may have lost the thread, yours is the first mention of Apple in this thread and TFA is about a UK government mainframe from the '70s.
But going with apple, considering how touchy they are about humidity, a dab of silicone putty behind the sockets would have been a good call for a cost of nearly nothing.
Prhaps, but since my family was never rich, It must have been within reach for an average family. And she never had to buy another one nor did her daughter nor my mother. Since my sewing is limited to amateurish minor repairs, it serves me adequately as well.
Many of those craftsman homes were in fine shape when they were bulldozed to make way for a new high rise, freeway, etc. The steam engines were replaced by better technology when it came along but they had long ago paid for themselves and then some. Actually, a lot of those old sewing machines are still in use. Many have been sold and re-sold and are now used in an industrial setting. A number of them were destroyed by fires, floods, and other disasters large and small. Some were replaced when more advanced models came out,
I'm not advocating that machines be made to last well beyond the time they will reasonably be replaced, just that they should not be designed to fail long before they would be willingly replaced. It may not make sense to build a 100 year cellphone, but honestly, how much advancement are we likely to see in blender technology?
But primarily, I was refuting the claim that stuff has always been designed to fail. There was definitely a time when it wasn't and I have functional evidence of that.