Chrome and IE do sandboxing, I don't know whether that's enough for exploits like this.
I don't think so, because it is not a browser exploit as such. They are just delivering the URI to Steam. I wonder if the restricted account has the protocol registered as well... Well, at least it wouldn't have Steam configured and logged in.
I recommend that people run Firefox as a different user from the user account they use to log in.
Is there a reason that only Firefox users should do this? Based on the PDF, the only difference (in this case) is that some of the other browsers display the URL as well...
And I missed that sentence, thanks. (Although, if I ever see a Launch Application message in Firefox that I wasn't expecting, I certainly won't click OK...)
While I do understand your point, and partially(!) agree with you, I was answering to
"Wait, so pre-emptive wars are okay, so long as it's not the US conducting them?
which seems to make two invalid assumptions.
The only morally okay solution is, apparently, for the US to roll over and die whenever anyone asks nicely.
Personally (and I hope relevantly), I wonder what kind of results we would have ended up with the whole Iraq thing if the UN WMD inspectors had been allowed to finish their job.
I wonder if that works in the other direction? Let's say the US decides to invade Canada. The EU, shocked by this, stations fleets nearby, embargoes the US, and provides the Canadians with supplies. Would you guys claim that the US is backed into a corner and has no choice but to launch a pre-emptive war against the EU?
No, but it wouldn't be a complete surprise. Personally, I'm inclined to believe that the "inevitable military response" was rather inevitable considering that the Japan seems to have been quite militarily aggressive at that time. And no, that is not okay. I don't know (or perhaps remember) enough about the politics and communications between the US and Japan at that time, to have an educated opinion on whether or not Japan was baited to attack.
You can claim all you want that you would have sent in patches, but when you reject open source BECAUSE you had to actually do it, your claims can't be taken seriously.
Unless you mean to call yourself childish. Because you might as well have said that you wanted to go out to play, but because you were told to go outside, you decided you'd rather clean your room instead.
Mmmm. If I have time (and I can read this 'thread' without getting pissed off) I'll reply to others as well, but I just wanted to make it clear that while I dislike forcing people to do anything, I do consider the requirement to publish any changes made to GPL'd code reasonable. My problem with GPL is that I can't use it with non-free code at all (well, with GPLv2 it is possible, but not exactly pretty), even if I would (and do) happily share any improvements I've made to it.
To correct your analogy: In my story I try to go out and play, but my friend's aren't allowed to play with me, because my parents haven't converted to the same ideology. (I wrote religion, as it would fit the analogy better, but since I am already regretting writing anything to the comments of this article I changed it.)
Since my reply was apparently considered to be a troll and his was insightful, can someone kindly explain what this insightful idea was, considering that he is replying to a message where I described how I would have sent the patches? Hate BSD how much you want, but even if you won't send a patch if you are not forced to, it doesn't mean I won't.
Oh noes, you had to write your own code instead of taking others hardwork as your own with no intent to contribute back. What a big problem.
Fuck you.
You would not have sent any patches to the BSD project, that is why BSD is lagging so far behind. Everyone wants to take and take.
And fuck you again.
Dear moderators: Sorry about the language, but after reading such an elaborately constructed well thought out nicely worded reply I just had to try and reach the same level of eloquence.
The GPL is about the freedom of the customer not the vendor. You are already free to choose what tools you use. An end-user with closed or closable software that they depend on is not free, but dependent on the whims of the developer or the corporate strategy of the software company.
That is a very good argument for open source, but can you elaborate on how there's more freedom with GPL than with BSD (WTFPL and Apache)? While we really haven't released much as open source, the bits that are out have been licensed with Apache 2.0 (not my favourite, but I'm not complaining).
However, even if we disregard the idea of eventually publishing as an open source and just consider the core of our current project: our customer will end up with our source anyway, so I don't see how they would be dependent of our whims. Perhaps we could limit what they can do with it by licensing it as GPL, but I don't see the point.
The GPL is preventing that corporate psychopath from taking what he wants with his power and instead establishes a level playing field.
During this week I skipped using an open source component for a work project and started developing one of our own. If the project had been of supreme quality I might have created a wrapper which would have allowed us to use it in the (proprietary) project as it was GPLv2. If the component had been BSD or some other reasonable license (WTFPL is my favourite) I would have fixed the project and sent the creator the patches.
We do have plans for releasing at least some of our stuff as open source, but I don't think it will be GPL. Then again GPL would prevent some competitors from using it, but that isn't exactly my idea of free.
I like the idea of adaptable connectors. Not just where you ground a certain pin to toggle the function of another pin, but where the cable and device actively communicate to negotiate what features are available on what pins.
I like the adaptable connector idea as well. But why does the cable do the negotiating and not the connected device? More than likely the device and the phone will still have to negotiate if just to ensure that the device is in fact a working one.
I can't speak for what they advertise now, but at the time I definitely saw turn-by-turn guidance advertised for it.
I wasn't googling for current advertisements, I was reading stuff from 2007 (and checking images and screenshots). But perhaps somewhere did exist an ad with turn-by-turn. The thing is, I haven't seen that complain before and I used to play a lot with that device while it was current. (And I kept it for reading books long after its hardware (which wasn't that powerful to begin with) was outdated, because the screen was rather eye friendly.)
A close friend was on a few working trips to the U.S. He described the way of working inefficient and hazardous to health. During one such trip they were literally prevented from leaving in reasonable hours, which reduced their efficiency after the first day. He got lucky and had a meeting elsewhere on fourth day and managed (with the permission from his boss abroad) to just rest during the evening. The next day he managed to solve several of their problems, but the local boss was still furious when he heard that he had been resting.
Except turn by turn directions were a specifically advertised feature of the product
Where was this advertised? No review I could find mentions that they were expecting the navigation to be free. And I certainly didn't. I did some googling and did find one occurrence of an ad where it talks about GPS, which it indeed has, since I used Maemo Mapper quite successfully several times.
Without a-gps enabled, getting a GPS lock was annoyingly slow, thankfully most hotels had wifi.
I'm a bit surprised, but I guess it wouldn't be a good for Nokia to have their maps in other devices with serious limitations. Might make sense to build on quality maps everywhere and have just a bit more on their own devices. Perhaps even helpful for their brand which doesn't seem to be doing so well especially in the U.S.
Years ago I got myself the N810, managed to charge it just now. Seems that I can actually access the maps. Navigation, not so much, but well, I didn't expect to. http://talk.maemo.org/showthread.php?t=10744
Right, 'we' get more dropped calls because antennas are actually getting worse as they are being developed. I've got a bridge to sell you and it is a lot better than the new ones that are being developed.
I expanded my unscientific poll to workplace chat. 'Max once a year', 'Sometimes in an area of really bad coverage, but never elsewhere', 'what, a failed function call'.
"Each generation of smartphones actually has more dropped calls"
That would be a no. I don't have any dropped calls. Admittedly I don't talk very often while driving or going by train, but when I do, my phone and the network seem to work just fine.
They already have the maps and you can download them for offline navigation. As in, you can download the whole country and do the routing and searches offline.
Exactly. The big difference between the two is the sheer scale of drone attacks; they've increased tremendously under Obama. But that's not because of Obama, but rather because drones have become far more capable and ubiquitous than they were back in Bush's time. Obama is merely taking advantage of the increase in technological capability.
I kind of like Obama, but merely is perhaps not the right word.
Slashdot Mirror
It also is difficult to completely shut down; which is unforgivable.
Right click in task bar - quit skype
So M rated games were always fine, it's the European system which lumps the sex games in with the Mature games that caused the kerfuffle.
Which as an European makes sense. Why would sex be more mature than violence?
Then the terrorists have won. This is exactly what they've set out to achieve.
I must disagree. They haven't won. However, we've lost regardless.
Chrome and IE do sandboxing, I don't know whether that's enough for exploits like this.
I don't think so, because it is not a browser exploit as such. They are just delivering the URI to Steam. I wonder if the restricted account has the protocol registered as well... Well, at least it wouldn't have Steam configured and logged in.
I recommend that people run Firefox as a different user from the user account they use to log in.
Is there a reason that only Firefox users should do this? Based on the PDF, the only difference (in this case) is that some of the other browsers display the URL as well...
And I missed that sentence, thanks. (Although, if I ever see a Launch Application message in Firefox that I wasn't expecting, I certainly won't click OK...)
"Installations of Steam vulnerable to a drive by download by users of mozilla based browsers with certain games installed within steam"
Yeah, sure, whatever you say.
Browsers such as Internet Explorer, Chrome and Firefox display an alert when steam:// URLs are called; only Safari passes them on without any warning.
While I do understand your point, and partially(!) agree with you, I was answering to
"Wait, so pre-emptive wars are okay, so long as it's not the US conducting them?
which seems to make two invalid assumptions.
The only morally okay solution is, apparently, for the US to roll over and die whenever anyone asks nicely.
Personally (and I hope relevantly), I wonder what kind of results we would have ended up with the whole Iraq thing if the UN WMD inspectors had been allowed to finish their job.
I wonder if that works in the other direction? Let's say the US decides to invade Canada. The EU, shocked by this, stations fleets nearby, embargoes the US, and provides the Canadians with supplies. Would you guys claim that the US is backed into a corner and has no choice but to launch a pre-emptive war against the EU?
No, but it wouldn't be a complete surprise. Personally, I'm inclined to believe that the "inevitable military response" was rather inevitable considering that the Japan seems to have been quite militarily aggressive at that time. And no, that is not okay. I don't know (or perhaps remember) enough about the politics and communications between the US and Japan at that time, to have an educated opinion on whether or not Japan was baited to attack.
Wait, so pre-emptive wars are okay, so long as it's not the US conducting them?
Hint: He did not say it was okay, he stated that it wasn't unprovoked.
Actions speak more that words.
You can claim all you want that you would have sent in patches, but when you reject open source BECAUSE you had to actually do it, your claims can't be taken seriously.
Unless you mean to call yourself childish. Because you might as well have said that you wanted to go out to play, but because you were told to go outside, you decided you'd rather clean your room instead.
Mmmm. If I have time (and I can read this 'thread' without getting pissed off) I'll reply to others as well, but I just wanted to make it clear that while I dislike forcing people to do anything, I do consider the requirement to publish any changes made to GPL'd code reasonable. My problem with GPL is that I can't use it with non-free code at all (well, with GPLv2 it is possible, but not exactly pretty), even if I would (and do) happily share any improvements I've made to it.
To correct your analogy: In my story I try to go out and play, but my friend's aren't allowed to play with me, because my parents haven't converted to the same ideology. (I wrote religion, as it would fit the analogy better, but since I am already regretting writing anything to the comments of this article I changed it.)
Since my reply was apparently considered to be a troll and his was insightful, can someone kindly explain what this insightful idea was, considering that he is replying to a message where I described how I would have sent the patches? Hate BSD how much you want, but even if you won't send a patch if you are not forced to, it doesn't mean I won't.
Oh noes, you had to write your own code instead of taking others hardwork as your own with no intent to contribute back. What a big problem.
Fuck you.
You would not have sent any patches to the BSD project, that is why BSD is lagging so far behind. Everyone wants to take and take.
And fuck you again.
Dear moderators: Sorry about the language, but after reading such an elaborately constructed well thought out nicely worded reply I just had to try and reach the same level of eloquence.
The GPL is about the freedom of the customer not the vendor. You are already free to choose what tools you use. An end-user with closed or closable software that they depend on is not free, but dependent on the whims of the developer or the corporate strategy of the software company.
That is a very good argument for open source, but can you elaborate on how there's more freedom with GPL than with BSD (WTFPL and Apache)? While we really haven't released much as open source, the bits that are out have been licensed with Apache 2.0 (not my favourite, but I'm not complaining).
However, even if we disregard the idea of eventually publishing as an open source and just consider the core of our current project: our customer will end up with our source anyway, so I don't see how they would be dependent of our whims. Perhaps we could limit what they can do with it by licensing it as GPL, but I don't see the point.
The GPL is preventing that corporate psychopath from taking what he wants with his power and instead establishes a level playing field.
During this week I skipped using an open source component for a work project and started developing one of our own. If the project had been of supreme quality I might have created a wrapper which would have allowed us to use it in the (proprietary) project as it was GPLv2. If the component had been BSD or some other reasonable license (WTFPL is my favourite) I would have fixed the project and sent the creator the patches.
We do have plans for releasing at least some of our stuff as open source, but I don't think it will be GPL. Then again GPL would prevent some competitors from using it, but that isn't exactly my idea of free.
I like the idea of adaptable connectors. Not just where you ground a certain pin to toggle the function of another pin, but where the cable and device actively communicate to negotiate what features are available on what pins.
I like the adaptable connector idea as well. But why does the cable do the negotiating and not the connected device? More than likely the device and the phone will still have to negotiate if just to ensure that the device is in fact a working one.
I can't speak for what they advertise now, but at the time I definitely saw turn-by-turn guidance advertised for it.
I wasn't googling for current advertisements, I was reading stuff from 2007 (and checking images and screenshots). But perhaps somewhere did exist an ad with turn-by-turn. The thing is, I haven't seen that complain before and I used to play a lot with that device while it was current. (And I kept it for reading books long after its hardware (which wasn't that powerful to begin with) was outdated, because the screen was rather eye friendly.)
A close friend was on a few working trips to the U.S. He described the way of working inefficient and hazardous to health. During one such trip they were literally prevented from leaving in reasonable hours, which reduced their efficiency after the first day. He got lucky and had a meeting elsewhere on fourth day and managed (with the permission from his boss abroad) to just rest during the evening. The next day he managed to solve several of their problems, but the local boss was still furious when he heard that he had been resting.
Except turn by turn directions were a specifically advertised feature of the product
Where was this advertised? No review I could find mentions that they were expecting the navigation to be free. And I certainly didn't. I did some googling and did find one occurrence of an ad where it talks about GPS, which it indeed has, since I used Maemo Mapper quite successfully several times.
Without a-gps enabled, getting a GPS lock was annoyingly slow, thankfully most hotels had wifi.
I'm a bit surprised, but I guess it wouldn't be a good for Nokia to have their maps in other devices with serious limitations. Might make sense to build on quality maps everywhere and have just a bit more on their own devices. Perhaps even helpful for their brand which doesn't seem to be doing so well especially in the U.S.
Years ago I got myself the N810, managed to charge it just now. Seems that I can actually access the maps. Navigation, not so much, but well, I didn't expect to. http://talk.maemo.org/showthread.php?t=10744
Did they license the offline navigation?
Right, 'we' get more dropped calls because antennas are actually getting worse as they are being developed. I've got a bridge to sell you and it is a lot better than the new ones that are being developed.
I expanded my unscientific poll to workplace chat. 'Max once a year', 'Sometimes in an area of really bad coverage, but never elsewhere', 'what, a failed function call'.
"Each generation of smartphones actually has more dropped calls"
That would be a no. I don't have any dropped calls. Admittedly I don't talk very often while driving or going by train, but when I do, my phone and the network seem to work just fine.
They already have the maps and you can download them for offline navigation. As in, you can download the whole country and do the routing and searches offline.
Exactly. The big difference between the two is the sheer scale of drone attacks; they've increased tremendously under Obama. But that's not because of Obama, but rather because drones have become far more capable and ubiquitous than they were back in Bush's time. Obama is merely taking advantage of the increase in technological capability.
I kind of like Obama, but merely is perhaps not the right word.