blamed the breaches in part on the telecommunications companies, who submitted more information than was requested Or it could be the requests were sufficiently vague that the telcos thought they were submitting the right amount of information.
You can't just come barging in here with your fancy facts and logical arguments. You'll ruin the whole conversation that way! And we don't take kindly to strangers in these parts...
He might be a psychologist, but his venture firm is named Mathematical Captital, after all. His partners appear to have advanced degrees involving mathematics.
No matter what the U.S. government says publicly regarding human rights, Cuba is embargoed for historical national security reasons. Whether those reasons are still valid is up for debate.
Maybe so, but Facebook wins at helping ambitious young "entrepreneurs" add Facebook users' computers to wonderful distributed computing networks. Unfortunately, these networks aren't exactly devoted to curing cancer...
I'm Roman Catholic, and a firm believer in evolution and the Big Bang as well. Most of my Catholic friends are, too. The Pope seems to be okay with these things too, although the Church still maintains a firm belief in a divine Creator that is responsible for it all. Most religious people aren't literalist, fire-and-brimstone types. Please stop judging millions of people based on the actions of the (very vocal) minority of extremists. In all seriousness, while I do oppose the legislation being discussed, I honestly wonder what the true impact in the educational system would be if it were passed. On a "percentage of students taught state-wide" basis, my guess is "very little."
The ActiveX control doesn't come with IE; it's hosted on the servers that provide the social networking service and loaded into your browser when you elect to upload an image to your profile. What I find really interesting is the date this vulnerability was first published: 02/04/2008 11:26:53 AM
In other words, social networking website users are more prone to social engineering attacks. While your comment may be a nifty play on words, if you're going to use the term "social engineering," you really ought to use it in the right context. This is a system vulnerability attack, not to be confused with social engineering attacks. Somewhere Kevin Mitnick is frowning.
Chances are that people who uploaded images recently and ran Internet Explorer that used the ActiveX control might have gotten their password and personal information stolen. For the love of Pete, it's a remote code execution vulnerability. We're talking about a lot more than a use's MySpace password getting lifted. Why couldn't the submitter be bothered to provide a link that actually describes the issue in detail, instead of just a sensationalist news article that gives virtually no technical information?
Given the fact that it's a client-side issue, it's far more likely the attackers are looking to achieve two goals with this sort of exploit:
Turn the client computer into a zombie, which participates in the attacker's efforts to spew out spam and scan networks for machines vulnerable to other exploits.
Scan the user's local machine and any network shares for "interesting" data that might be used to compromise financial institution accounts.
Capture login information on the local machine and relay it to the attacker.
The contents of the user's MySpace or Facebook profile information probably ranks rather low on the list of useful information.
young people in their sites The word you were looking for is "sights":). All improper usage aside, while I don't disagree with the sentiment of your post, it's important to note that the style of exploitation being discussed differs in that it's highly illegal and completely indiscriminate in nature. It's also more than likely that the sources of these attacks are individuals operating from jurisdictions outside the reach of U.S. law enforcement, which makes punishing the offenders sort of difficult.
Do your friends and family a favor: educate them on the inherent risks present in the software applications they use on a daily basis. Computer security starts with the user acting in a responsible manner to secure his/her system. If securing the system proves too difficult or time-consuming, maybe it's time to try a different system.
Well, according to this page it allows execution of arbitrary code on the victim's machine. Whatever the user's account permits them to do, the code could do, up to and including actions permissible by other unpatched vulnerabilities on the client machine.
This is getting really irritating. Who says their software isn't licensed under the GPL? Are you one of their customers? Read this post by another poster to get educated on the source distribution requirements of the GPL.
First, the word is "embeds." Second, see see this comment by another poster for clarification of the actual requirements of the GPL concerning source availability. By the way, who says any code is being redistributed under a different license?
While the basic premise of your post stands, let's look at the core concepts as they apply to the issue at hand. To start with, let's examine a couple of images:
Okay, they look pretty similar, right? Here's the thing, though: they're not identical. Let's consider clones of popular video games: Supertux vs. Super Mario Brothers, Jazz Jackrabbit vs. Sonic the Hedgehog, etc. They're similar in appearance and follow the same rulesets, but do they represent copyright violations?
You think this is bad? Just wait till the coming cataclysmic battle between F6 and the Seti@Home distributed computing grid. The horror will be unspeakable.
What discussion of the wonders of chemistry would be complete without a mention of these nifty advances in the "better living through chemicals" department:
Slashdot Mirror
Why are all but $7,000 of his assets being seized? I'd take everything he had, including his underwear.
You can't just come barging in here with your fancy facts and logical arguments. You'll ruin the whole conversation that way! And we don't take kindly to strangers in these parts...
He might be a psychologist, but his venture firm is named Mathematical Captital, after all. His partners appear to have advanced degrees involving mathematics.
No matter what the U.S. government says publicly regarding human rights, Cuba is embargoed for historical national security reasons. Whether those reasons are still valid is up for debate.
Maybe so, but Facebook wins at helping ambitious young "entrepreneurs" add Facebook users' computers to wonderful distributed computing networks. Unfortunately, these networks aren't exactly devoted to curing cancer...
Did I miss something here, or does your comment repeat points 2 and 3 in my post?
I'm Roman Catholic, and a firm believer in evolution and the Big Bang as well. Most of my Catholic friends are, too. The Pope seems to be okay with these things too, although the Church still maintains a firm belief in a divine Creator that is responsible for it all. Most religious people aren't literalist, fire-and-brimstone types. Please stop judging millions of people based on the actions of the (very vocal) minority of extremists. In all seriousness, while I do oppose the legislation being discussed, I honestly wonder what the true impact in the educational system would be if it were passed. On a "percentage of students taught state-wide" basis, my guess is "very little."
The ActiveX control doesn't come with IE; it's hosted on the servers that provide the social networking service and loaded into your browser when you elect to upload an image to your profile. What I find really interesting is the date this vulnerability was first published: 02/04/2008 11:26:53 AM
Not really much threat of goatse images, but a signficant threat of arbitrary remote code execution for Windows users.
Mod parent up. Good information.
Origami plugin? Does it fold your keyboard into a three dimensional swan? Surely you meant the Aurigma ImageUploader plugin.
- Turn the client computer into a zombie, which participates in the attacker's efforts to spew out spam and scan networks for machines vulnerable to other exploits.
- Scan the user's local machine and any network shares for "interesting" data that might be used to compromise financial institution accounts.
- Capture login information on the local machine and relay it to the attacker.
The contents of the user's MySpace or Facebook profile information probably ranks rather low on the list of useful information.Do your friends and family a favor: educate them on the inherent risks present in the software applications they use on a daily basis. Computer security starts with the user acting in a responsible manner to secure his/her system. If securing the system proves too difficult or time-consuming, maybe it's time to try a different system.
Well, according to this page it allows execution of arbitrary code on the victim's machine. Whatever the user's account permits them to do, the code could do, up to and including actions permissible by other unpatched vulnerabilities on the client machine.
With Castro gone I predict the end of the embargo within five years. IMO it's mostly been about him, not the Cuban people.
This is getting really irritating. Who says their software isn't licensed under the GPL? Are you one of their customers? Read this post by another poster to get educated on the source distribution requirements of the GPL.
First, the word is "embeds." Second, see see this comment by another poster for clarification of the actual requirements of the GPL concerning source availability. By the way, who says any code is being redistributed under a different license?
While the basic premise of your post stands, let's look at the core concepts as they apply to the issue at hand. To start with, let's examine a couple of images:
1. Scrabulous screenshot
2. Scrabble board (photo)
Okay, they look pretty similar, right? Here's the thing, though: they're not identical. Let's consider clones of popular video games: Supertux vs. Super Mario Brothers, Jazz Jackrabbit vs. Sonic the Hedgehog, etc. They're similar in appearance and follow the same rulesets, but do they represent copyright violations?
You think this is bad? Just wait till the coming cataclysmic battle between F6 and the Seti@Home distributed computing grid. The horror will be unspeakable.
Try this dude's page of Chemical Mishaps. Some pretty amusing reading...
What happens when the small inventor and his portfolio of a few patents starts a corporation that turns out to be highly successful?