Slashdot Mirror


User: Tony+Hoyle

Tony+Hoyle's activity in the archive.

Stories
0
Comments
5,728
First seen
Last seen
Profile
(view on slashdot.org)

Comments · 5,728

  1. Re:MOD PARENT UP on Windows XP Flaw 'Extremely Serious' · · Score: 1

    Rogue activex controls have been known to magically elevate privileges in the past.

    OTOH a rogue X client could probably do the same if it could find a bug in the server (which runs with root privs, although should be locked down with capabilities these days under linux at least). The risk is basically the same... it's a potential weak spot in the security model.

  2. Re:MOD PARENT UP on Windows XP Flaw 'Extremely Serious' · · Score: 1

    It could try to install a kernel module.

    Provided you were running a Stock kernel. Probably only then if you're running a Stock RedHat kernel. In x86 mode. It would catch the noobs but anyone with a bit of techical knowhow would have smelled a rat very quickly.

  3. Re:MOD PARENT UP on Windows XP Flaw 'Extremely Serious' · · Score: 1

    Nope. The SID is though and some APIs allow you to use that in preference anyway... not sure what the exposure at user level is though (wouldn't be hard to write an app to do that).

    Note that once you have admin privileges *once* you don't even need to know any admin usernames after that because installing an app that grants you all privileges on command is fairly trivial (I wrote a 'true' sudo that doesn't need passwords some time ago... quite useful for doing stuff in unprivileged accounts. I wouldn't trust such an app on a production network though.).

  4. Re:If Windows Were Open Sourced on Windows XP Flaw 'Extremely Serious' · · Score: 1

    Hopefully *all* software will do this even if you're logged into an administrator account.

    It should be secure by default - it should not grant software permission to access admin rights unless the administrator has set an ACL giving it those rights.

  5. Re:Late breaking news from the article: on Windows XP Flaw 'Extremely Serious' · · Score: 1

    You mean the file extension? Hardly counts as metadata.

    Mac OS9 used metadata for this. OSX uses file extenstions like Windows, but hides them from the user.

  6. Re:Not a very good alternative on Digital Universe a Wikipedia Alternative · · Score: 1

    Anyone being able to edit is *not* an advantage of wikipedia. It's a major disadvantage.. I've lost count of the number of articles I've seen that contained downright wrong information, with a flamewar on the talk page between people trying to correct it and self appointed moderators deleting every edit citing things like 'it's a point of view' if they don't agree with it.

    I basically look at wikipedia as a source of amusement, *not* information, because the only thing you're getting is the prejudices of the last person to edit it. The talk pages are sometimes hilarious.

  7. Re:Corporate software depends on activeX on Microsoft Ends IE for Mac · · Score: 1

    $5000/month? For that money I'd expect the CEO to be standing in your office explaining why his software is so crap.

    If they have any competition, use it. You just cost them a developer's annual salary.

  8. Re:Demonstrates IE's market dominance on Microsoft Ends IE for Mac · · Score: 3, Insightful

    You've been on *way* too much cool-aid.

    'all' developers coding on Unix platforms? WTF? The majority have never even used it.

    OSX just isn't standard enough for cross platform work, btw. the kernel is Unix but the filesystem layout is nonstandard (not to mention the case insensitive filesystem). I also doesn't run X by default so GUI work is out.

  9. Re:Speaking of Safari (Gap.com) on Microsoft Ends IE for Mac · · Score: 1

    Works fine on firefox 1.5 here (Windows version).

    Maybe it's detecting you're running Linux or something?

  10. Re:It Was An Itsy Bitsy Teeney weeny.... on Retrofit Your Web Pages For Wireless Compatibility · · Score: 2, Informative

    I must admit I gave up on the net on cellphones ages ago... GPRS slows to about 1k/sec in cities and a lot of the time stalls altogether, so it's really not a practical method of web browsing.

    3G holds promise, where it's available.. which is practically nowhere (the providers are good at showing maps with '100% coverage' of 3G, but when you get down to it the coverage is at best a weak signal that keeps dropping out.. even in cities... and out in the sticks it's just not there. I live 2 miles from the centre of the second largest city in the UK - and there's no 3G here at all).

  11. Re:Works fine on my laptop, why modify? on Retrofit Your Web Pages For Wireless Compatibility · · Score: 2, Interesting

    Most cellphones are WAP which needs WML - no amount of CSS or XHTML will make a page display on these, so it is really to do with when they 'catch up'.

    On more expensive devices (mostly PDAs) pages tend to display anyway, sometimes with scrollbars (which sucks, but it's no different to a computer with low resolution). It's a non-problem for them. The gap in the middle with dodgy browsers is just catchup too.

  12. Re:Ideas are almost entirely worthless... on Portable Stereo Creator Gets His Due · · Score: 2, Informative

    Untrue. *many* patents are on ideas only.

    It is not necessary to prove that an idea actually works before getting a patent on it.

    Software and business patents are *entirely* idea based.

  13. Re:The hypocrisy of Slashdot on Portable Stereo Creator Gets His Due · · Score: 4, Interesting

    There have been *many* cases of patents retarding innovation.

    My favourite is the steam engine - development was stalled for 20 years because of an outstanding patent on high pressure steam valves.

    And that was when patents didn't have stupid lifetimes.... If it were like today I suspect we'd still be waiting for someone to invent it.

  14. Re:They actually built these things? on Roomba Vacuum Robot Opens to Hackers · · Score: 1

    Couldn't find the roomba on sale here but found the trilobyte mentioned elsewhere.

    £990.. around $1500!!!

    For that money it's cheaper to hire a cleaner. They'd do a better job too.

  15. Re:It could always be worse... on "Dasher" Worm Brings Christmas Keylogger · · Score: 1

    *Lots* of businesses run Win2k (It still appears to be the majority, looking at the customer lists I've got, but 2003 is catching up fast. XP is nowhere...). Home users can afford to upgrade every time MS decides to release an OS patch.. business can't.

  16. Re:Is this the default in Vista? on Microsoft Pitches LUA Security Repository · · Score: 1

    That could solve a bunch of things too.

    Windows currently has the problem that it still mostly thinks of itself as a single user system - if you install an app, it'll put some stuff in HKLM, some other stuff in HKCU... and then a large number of apps won't work if you then log into another user. This destroys the concept of the admin inistalling apps for the unprivileged users to use.

    It's not just apps writing to privileged locations, it's apps relying on the existence of configuration in HKCU - they should read it from HKLM or automatically create defaults.. precious few apps do this.

  17. They actually built these things? on Roomba Vacuum Robot Opens to Hackers · · Score: 2, Interesting

    Wow.. heard about it on slashdot last year and thought it was just a late april fools joke.

    Do they work? It seems to me that unless your house is completely square and tidy with nothing on the floor it's going to suck ..errr.. blow... err.. whatever. The average geek house is a bit of a maze of cables and other stuff as well, plus narrow corridors full of boxes etc. Not to mention the problem of closed doors (can this thing open doors or is it expecting star-trek style automatic ones?).

  18. Re:Patents on Microsoft Sued Over Patent Infringements · · Score: 1

    Unless you can afford a full time patent lawyer you *must* ignore all existing patents.

    Knowningly infringing is triple damages. If there's even a chance that what you're developing might infringe on *any* patents (eg. patent for moving a mouse, patent for drawing a cursor on the screen, patent for displaying a dialog, etc.) then it's imperative you *never* look at a patent library or have anything to do with them - make this documented policy. Not to do so could be extremely expensive.

  19. Re:Someone please think of the sellers? on eBay Slammed Over Levels of Fraud · · Score: 3, Interesting

    I had some moron give me negative feedback because he couldn't read. I sold a graphics card (Matrox G500 Dual Head.. was a while ago) and described it fully, even down to the model number etched on the motherboard, with a link to the site containing informaiton about how to decode that number. The description also clearly stated that whilst a good 2D card, it was pretty useless for 3D.

    *3 months* after selling, I get a negative feedback saying I'd sent a different item to what was described.. I'm like WTF??? and post as such. This guy never attempted to contact me directly (before or since) so I've no idea what he was smoking when he wrote that. Unfortunately the negative feedback stayed on my record & I lost a couple of items I was buying after that.

  20. Coming up next... on Google to Buy Opera? · · Score: 1

    Coming up next in the long running "Google To.." series:

    Google to buy Doritos - google exec once mentioned a few years ago that he liked doritos. Is google about to buy the entire company?
    Google to buy Lituania - retrieved from the wayback machine of a deleted blog last year, pundit Joe Smith of Scunthorpe, UK. thinks google is about to buy the ailing country. "It's ripe for takeover" said Joe (14).
    Google to get expansion plans from Slashdot - Amazed by the prophetic ability of slashdot to know what google is going to do even before it does, google announces that it's going to forget about board meetings and just read slashdot to plan the future. (Link goes directly to doubleclick.net since that's what the links are for anyway).

  21. Re:Names on Up Next... Skypecasting · · Score: 1

    Pointless news articles = slashcasting.

    Doing this through skype is retarted - it's a 1:1 VOIP protocol. Setup a website with streaming media for the live stuff, and itunes already supports video podcasting for the non-live stuff.

  22. Re:Wonderful on Up Next... Skypecasting · · Score: 1



    Hi, You appear to have run out of punctuation. Would you like to buy a box of commas for $20?

    </clippy>

  23. Re:Choo choo on Steam Hybrid Car from BMW · · Score: 1

    50mpg?

    It's not uncommon for a diesel to do over 65. 50mpg is a badly tuned petrol engine....

  24. Re:Downsite? on Steam Hybrid Car from BMW · · Score: 3, Interesting

    Using petrol is kinda what your stuck with at the moment (or diesel, which is still a fossil fuel).

    Most efficient car available is the Honda Insight M5, getting 83.1MPG and having the lowest CO2 emmisions of any car (80g/km, which is about 25% lower than the next contender). Unfortunately they're damned near impossible to get - the best quote I've found is £62,000 and no honda dealer I've talked to has even heard of it...

    Next you've got a bunch of diesels (Citroen C2 1.4HDi at 68.9mpg & 108g/km), the Prius is quite a way down the list at 13th (65.7mpg but with lower co2 emissions).

    The most efficient petrol engine available (Peugot 107) is only 61.3mpg... I'd like to see the figures for this BMW to see if it can beat that.

    (source: http://www.vcacarfueldata.org.uk/)

  25. Re:Stop the scaremongering and RTFD on It's "1984" in Europe, What About Your Country? · · Score: 1

    6 years, not 6 months (at least according to the newspaper this morning).

    It's still a shitload of data, even if it's possible to capture that much. A lot of communication is *not* logged, and this puts a requirement that everything is... even a small ISP is going to struggle with the data load - a larger one would need a sizable building just to hold the hard drives.