To be fair, there are studies pointing that this is due to the frames in movies having ghost images embedded. With photo-realistic games, each frame is rendered separately and thus more are needed to recreate the illusion of continuous motion. What's fun is that Anime and old school sprite games are completely unaffected or even improved by having a much lower frame-rate. It turns out that if you avoid trying to be realistic, immersion is easier.
GCC "optimizations" are one of the main reasons OpenBSD specifically is looking forward to replace it with PCC. When optimizations keep you from knowing what a program will do, they have gone too far.
If you work with them it is easier, hopefully you can try to get them fired or at least coerced into doing it right.
With free software programmed by volunteers it is even worse. Many such volunteers are great coders but they come from ASCII countries and as such don't "get" while tail should perform worse than it used to do, or why should they care about character width instead of strlen, or why should they update an algorithm they borrowed from K&R 30 years ago.
Truth is, with UTF-8 while you lose the convenient at times 1:1 char/character equivalence, most of your legacy code can remain unchanged because of its great design. Only very badly hard-coded routines will need any significant investment to convert, while most applications can be adapted in days by someone who has any idea about encodings.
People, you really need to learn about UTF-8, UTF-16(+UCS-2) and UTF-32 and the relevant library functions in your platform.
It's totally unlike MINIX. MINIX is a hobby OS that only works and has perfect security in the author's mind. OpenBSD is used in production where security matters and on real hardware.
I am willing to claim that OpenBSD is more than comfortable for its intended use in routers and servers. OpenBSD doesn't use GUI config tools, and complex package managers, but that is because they are not needed. It is simple and elegant like that.
It has some rough edges like the lack of utf-8 support in the base system and utilities but it isn't bad as a Desktop OS either, most desktop applications don't use libc for their encoding support anyways.
My home server and my laptop both run OpenBSD and I don't miss your real OSes at all. After all whatever I cannot do easily in OpenBSD Linux does through binary blobs and proprietary software. At that point I could be as well running Windows 7.
Ditto. It's amazing how much "pros" rely on pseudoscience to make their brews.
They also believe that bakers' yeast has low tolerance when it's quite the opposite. The little liquid pockets on bread get very alcoholic very soon. It is not as strong as strong yeast varieties, but it is far stronger than beer and ale yeast.
They will also tell you it generates off flavors, don't believe the bullshit. Anything off there may be is bacterial infection, dead and rancid dried yeast, and maybe some memories of prison booze. I have made 15% mead with bread yeast and it tasted better than most store-bought wines.
The trick is pitching with a starter batch instead of throwing the crappy 3+ years old bakers' yeast powder into something you are actually going to drink.
In a country where most are armed and willing to play the big parties' game, you are likely to get killed before the government controlled army, which incidentally is also the most powerful one in the world, gets to you.
The problem of free democracies is that capitalism has reached into the government and legal systems when it should never have left the market.
Let's just say there is demand for absolute power and "the People" are willing or stupid enough to sell.
The same hole can have different levels of exploitability in different OSes. FF for Windows cannot take advantage of ASLR because Windows XP didn't support it. In Linux it should be enabled by default by now. MacOS X has nothing at all yet.
If all OSes would implement all of OpenBSD security features, even if not perfectly, the amount of exploitable bugs would decrease considerably. The bug is still there, but the black hat is met with a harsh environment totally unlike the green garden that are major OSes.
>"we had the user click a link and all hell broke loose"
That is exactly what happened with Safari on MacOS, in seconds. I guess the others fell just as easily, but with a bit more crude exploits.
We don't get to know the details because vendors get to fix the hole before anything is published, which is long after all of us have forgotten about the contest.
What really is misleading is that Windows 7 and MacOS are implied pwned when it appears that only the browsers were taken.
With IE8 purportedly running in a "sandbox", breaking out of that was interesting by itself and hopefully a bit more difficult than just escalating privileges in MacOS.
I miss Linux too. A hole in firefox means being just one local exploit away from pwning your box.
Japanese has some tones(they are more similar to stress in European languages than to Chinese tones) and a lot of homophones, but it is a whole LOT better than any Chinese dialect.
I still have trouble not laughing each time I hear someone is operating(eg. a flight, a train,...).*
I am very happy with my Dell Linux laptop. True, it included an Intel Wireless for which there is no freely distributable firmware, but that is a minor nuisance. Most of the hardware is common and well documented. This allows me to use OpenBSD as my main desktop with everything perfectly supported.
The included Ubuntu is not perfect but it is good enough and with wine and proprietary addons can be run as a drop-in Windows replacement if one so wishes. I replaced it with Xubuntu which looks a lot better, and the wife loves it.
Exactly, and now some criminal organization somewhere is keeping a backup of your data for you as well.
This is the reason we must focus in making secure software that is trying to stay ahead of exploits - the user isn't trustworthy, he may understand some security implications of his actions, but he will never understand everything.
If I get access to your system I won't delete/bin or your.porn stash. What I will do is copy your.mozilla directory, where I will surely find about your real name, bank accounts, job, and many other things.
You dismiss local exploits as if they were rare, many are undiscovered or ignored. A whole desktop has many applications and you only need a single hole.
But really, that an attacker will just turn your machine into a spambot is the best case scenario.
Look, it is fine if you like your NetBSD, but you don't have to spread your malicious misinformation about OpenBSD.
OpenBSD used to charge for proprietary CD images with artwork and songs to fund the project. But the source has always been free and available for free under a free BSD license.
A net install iso has been always available.
OpenBSD is not only behind OpenSSH, and many other GNU-free tools, but also many of the BSD drivers, and actually campaigns against binary blobs.
4-clause till yesterday BSD is hardly freer than that.
OpenBSD has measures to stop many generic exploits and goes out of its way to fix once every two thousand full moon bugs even if the fix doesn't look favorable in benchmarks. So even the holes that you introduce yourself are less likely to be exploitable in OpenBSD than in other systems.
Linux and to a lesser extent FreeBSD wouldn't fix a rare bug if the fix affects performance, they do not audit the code(mr Torvalds is against it), they do not use most of the generic counterexploits and glib doesn't even have strlcat and strlcpy.
"Because we can't have practical and provably perfect encryption, let's just send our credit card information unencrypted" is not a good attitude if you ask me.
Still your description is a mis-characterization of Japanese culture. Both male and female weeklies are full of erotic or otherwise adult-themed mangas. Japanese people might look at you with contempt if you are reading "Tentacle Panic in the Junior High School" or "Doraemon", but not if it is "Oishinbo" or any other reasonably mature themed manga. The Manga guide to **** books are also very popular and useful for social etiquette. Manga is accepted as a valid medium just like movies, or novels. This is very unlike Western countries where only kids and comic nerds read comics.
From the sort of images we see as output, I gather that it is an ANN doing the work, so even if we got 100% success rate it would be hard to understand the algorithm per se. Also, we don't know *how* it was trained, so we cannot possibly know whether it can decode the RAW visual input, or the pre-parsed this-is-an-A sort of input. I am waiting for some with insider access to the articles to shed some light on this.
And what makes you think that it will be different if they do study? They will be on full auto mode, study the bare minimum and get the degree. In the case of CS there really isn't a difference between self-taught and degree holders, and the "good" degree holders likely knew most everything before starting the degree. My fellow CS students could be classified in two groups: OMG-I-think-I-Have-An-Algorithm-In-My-Program, and I-Write-Artificial-Neural-Networks-For-Fun.
It is supposed to be good for servers, it comes from an age when an uptime of a day was pretty good for a UNIX system(see the unix haters' handbook). Now it is a measure of the amount of widely known security holes the admin is willing to leave open. Your servers should have an uptime of 365/6 days a year, but that should be achieved by having a redundant array of servers that you update regularly, not by having a single server that you never reboot.
Exactly. Biometrics are the DRM of the 21st century. They are broken already. What keeps anyone from recording the patterns and playing them back to the machine? It's not like a machine cannot replicate pressure changes and heat. Sure, it is more difficult than scanning a fingerprint or cutting a finger off a person. A long yet still memorable password is exponentially more secure than a very long password that you have to carry around exposed all the time for others to copy.
Well, yum is an apt clone wrapped around the useless RPM format, so it is only natural that it approaches now many years later its functionality.
However, nobody with a right mind uses apt in Debian or debian derived distros. There is this magnificent front-end -aptitude- that runs circles around everything else. Maybe Synaptic is what is leading you to believe that Ubuntu is as limited as your distro of choice. It is not, it's just that most options are hidden or made difficult to use by bad design.
Really package management in RPM based linuxes leaves me wondering how can it be that nobody from inside has noticed it is broken. I don't know the technical details that make it so, but it is invariably either much slower, unstable, or both.
Once I checked M*** out. A nice system with a great Desktop. I asked why I couldn't browse the package description. A dev told me it was because they had optimized it out. Their benchmarks showed it was a bottleneck. Nice. Updating the sources still took ten times more than in Ubuntu(Which has one of the very best extensive repositories). BTW, downloading a single description on demand still took 10 seconds. FAmazing!
DEBs have never destroyed my system. I wish I could say the same for F***'s RPMs. Its users are just used to it. L*** T*** couldn't manage to install a flash plugin in His distro of choice and nobody in the RPM camp raised an eyebrow. FAmazing!
Some distributions have slowly fixed RPM so that it is beginning to be usable. So what? If they had made DEB the standard, instead of bending to the RedHat lobbying, by now we would have a much better Linux than we do.
"Now you can have all the privacy and security issues of Google Docs with the combined performance of Java and JavaScript in a single package!!!" Sounds like something Microsoft would sell for $5999.99.
Slashdot Mirror
To be fair, there are studies pointing that this is due to the frames in movies having ghost images embedded.
With photo-realistic games, each frame is rendered separately and thus more are needed to recreate the illusion of continuous motion.
What's fun is that Anime and old school sprite games are completely unaffected or even improved by having a much lower frame-rate.
It turns out that if you avoid trying to be realistic, immersion is easier.
GCC "optimizations" are one of the main reasons OpenBSD specifically is looking forward to replace it with PCC.
When optimizations keep you from knowing what a program will do, they have gone too far.
If you work with them it is easier, hopefully you can try to get them fired or at least coerced into doing it right.
With free software programmed by volunteers it is even worse. Many such volunteers are great coders but they come from ASCII countries and as such don't "get" while tail should perform worse than it used to do, or why should they care about character width instead of strlen, or why should they update an algorithm they borrowed from K&R 30 years ago.
Truth is, with UTF-8 while you lose the convenient at times 1:1 char/character equivalence, most of your legacy code can remain unchanged because of its great design.
Only very badly hard-coded routines will need any significant investment to convert, while most applications can be adapted in days by someone who has any idea about encodings.
People, you really need to learn about UTF-8, UTF-16(+UCS-2) and UTF-32 and the relevant library functions in your platform.
It's totally unlike MINIX. MINIX is a hobby OS that only works and has perfect security in the author's mind. OpenBSD is used in production where security matters and on real hardware.
I am willing to claim that OpenBSD is more than comfortable for its intended use in routers and servers.
OpenBSD doesn't use GUI config tools, and complex package managers, but that is because they are not needed. It is simple and elegant like that.
It has some rough edges like the lack of utf-8 support in the base system and utilities but it isn't bad as a Desktop OS either, most desktop applications don't use libc for their encoding support anyways.
My home server and my laptop both run OpenBSD and I don't miss your real OSes at all. After all whatever I cannot do easily in OpenBSD Linux does through binary blobs and proprietary software. At that point I could be as well running Windows 7.
Ditto.
It's amazing how much "pros" rely on pseudoscience to make their brews.
They also believe that bakers' yeast has low tolerance when it's quite the opposite. The little liquid pockets on bread get very alcoholic very soon. It is not as strong as strong yeast varieties, but it is far stronger than beer and ale yeast.
They will also tell you it generates off flavors, don't believe the bullshit. Anything off there may be is bacterial infection, dead and rancid dried yeast, and maybe some memories of prison booze. I have made 15% mead with bread yeast and it tasted better than most store-bought wines.
The trick is pitching with a starter batch instead of throwing the crappy 3+ years old bakers' yeast powder into something you are actually going to drink.
In a country where most are armed and willing to play the big parties' game, you are likely to get killed before the government controlled army, which incidentally is also the most powerful one in the world, gets to you.
The problem of free democracies is that capitalism has reached into the government and legal systems when it should never have left the market.
Let's just say there is demand for absolute power and "the People" are willing or stupid enough to sell.
The same hole can have different levels of exploitability in different OSes. FF for Windows cannot take advantage of ASLR because Windows XP didn't support it. In Linux it should be enabled by default by now. MacOS X has nothing at all yet.
If all OSes would implement all of OpenBSD security features, even if not perfectly, the amount of exploitable bugs would decrease considerably. The bug is still there, but the black hat is met with a harsh environment totally unlike the green garden that are major OSes.
>"we had the user click a link and all hell broke loose"
That is exactly what happened with Safari on MacOS, in seconds. I guess the others fell just as easily, but with a bit more crude exploits.
We don't get to know the details because vendors get to fix the hole before anything is published, which is long after all of us have forgotten about the contest.
What really is misleading is that Windows 7 and MacOS are implied pwned when it appears that only the browsers were taken.
With IE8 purportedly running in a "sandbox", breaking out of that was interesting by itself and hopefully a bit more difficult than just escalating privileges in MacOS.
I miss Linux too. A hole in firefox means being just one local exploit away from pwning your box.
Japanese has some tones(they are more similar to stress in European languages than to Chinese tones) and a lot of homophones, but it is a whole LOT better than any Chinese dialect.
I still have trouble not laughing each time I hear someone is operating(eg. a flight, a train,...).*
* Unkoo suru vs Unko o suru(Take a shit)
I am very happy with my Dell Linux laptop. True, it included an Intel Wireless for which there is no freely distributable firmware, but that is a minor nuisance.
Most of the hardware is common and well documented. This allows me to use OpenBSD as my main desktop with everything perfectly supported.
The included Ubuntu is not perfect but it is good enough and with wine and proprietary addons can be run as a drop-in Windows replacement if one so wishes. I replaced it with Xubuntu which looks a lot better, and the wife loves it.
Here's to Dell. Keep the good work.
Exactly, and now some criminal organization somewhere is keeping a backup of your data for you as well.
/bin or your .porn stash. What I will do is copy your .mozilla directory, where I will surely find about your real name, bank accounts, job, and many other things.
This is the reason we must focus in making secure software that is trying to stay ahead of exploits - the user isn't trustworthy, he may understand some security implications of his actions, but he will never understand everything.
If I get access to your system I won't delete
You dismiss local exploits as if they were rare, many are undiscovered or ignored. A whole desktop has many applications and you only need a single hole.
But really, that an attacker will just turn your machine into a spambot is the best case scenario.
Of course.
In this case I believe IE8 has a lead in this contest as they all will be running on in Windows, but IE8 will probably get to run in sandbox mode.
My bets are:
1- Safari
2- IE8
3- Firefox
or:
1- Safari
2- Firefox
3- IE8
You are unlawfully decrypting the character encoded message into a different multimedia format.
That sounds like a blatant violation of the DMCA to me.
Look, it is fine if you like your NetBSD, but you don't have to spread your malicious misinformation about OpenBSD.
OpenBSD used to charge for proprietary CD images with artwork and songs to fund the project. But the source has always been free and available for free under a free BSD license.
A net install iso has been always available.
OpenBSD is not only behind OpenSSH, and many other GNU-free tools, but also many of the BSD drivers, and actually campaigns against binary blobs.
4-clause till yesterday BSD is hardly freer than that.
Just that it isn't.
OpenBSD has measures to stop many generic exploits and goes out of its way to fix once every two thousand full moon bugs even if the fix doesn't look favorable in benchmarks. So even the holes that you introduce yourself are less likely to be exploitable in OpenBSD than in other systems.
Linux and to a lesser extent FreeBSD wouldn't fix a rare bug if the fix affects performance, they do not audit the code(mr Torvalds is against it), they do not use most of the generic counterexploits and glib doesn't even have strlcat and strlcpy.
"Because we can't have practical and provably perfect encryption, let's just send our credit card information unencrypted" is not a good attitude if you ask me.
6. Asking you nicely in a closed room with no cameras laced with references to a one way trip to Cuba.
Still your description is a mis-characterization of Japanese culture.
Both male and female weeklies are full of erotic or otherwise adult-themed mangas.
Japanese people might look at you with contempt if you are reading "Tentacle Panic in the Junior High School" or "Doraemon", but not if it is "Oishinbo" or any other reasonably mature themed manga.
The Manga guide to **** books are also very popular and useful for social etiquette.
Manga is accepted as a valid medium just like movies, or novels.
This is very unlike Western countries where only kids and comic nerds read comics.
From the sort of images we see as output, I gather that it is an ANN doing the work, so even if we got 100% success rate it would be hard to understand the algorithm per se.
Also, we don't know *how* it was trained, so we cannot possibly know whether it can decode the RAW visual input, or the pre-parsed this-is-an-A sort of input.
I am waiting for some with insider access to the articles to shed some light on this.
And what makes you think that it will be different if they do study? They will be on full auto mode, study the bare minimum and get the degree.
In the case of CS there really isn't a difference between self-taught and degree holders, and the "good" degree holders likely knew most everything before starting the degree.
My fellow CS students could be classified in two groups: OMG-I-think-I-Have-An-Algorithm-In-My-Program, and I-Write-Artificial-Neural-Networks-For-Fun.
It is supposed to be good for servers, it comes from an age when an uptime of a day was pretty good for a UNIX system(see the unix haters' handbook). Now it is a measure of the amount of widely known security holes the admin is willing to leave open.
Your servers should have an uptime of 365/6 days a year, but that should be achieved by having a redundant array of servers that you update regularly, not by having a single server that you never reboot.
Or Kri Jaffa, Kri!
Exactly. Biometrics are the DRM of the 21st century. They are broken already. What keeps anyone from recording the patterns and playing them back to the machine? It's not like a machine cannot replicate pressure changes and heat.
Sure, it is more difficult than scanning a fingerprint or cutting a finger off a person. A long yet still memorable password is exponentially more secure than a very long password that you have to carry around exposed all the time for others to copy.
Well, yum is an apt clone wrapped around the useless RPM format, so it is only natural that it approaches now many years later its functionality.
However, nobody with a right mind uses apt in Debian or debian derived distros. There is this magnificent front-end -aptitude- that runs circles around everything else. Maybe Synaptic is what is leading you to believe that Ubuntu is as limited as your distro of choice. It is not, it's just that most options are hidden or made difficult to use by bad design.
Really package management in RPM based linuxes leaves me wondering how can it be that nobody from inside has noticed it is broken. I don't know the technical details that make it so, but it is invariably either much slower, unstable, or both.
Once I checked M*** out. A nice system with a great Desktop. I asked why I couldn't browse the package description. A dev told me it was because they had optimized it out. Their benchmarks showed it was a bottleneck. Nice. Updating the sources still took ten times more than in Ubuntu(Which has one of the very best extensive repositories). BTW, downloading a single description on demand still took 10 seconds. FAmazing!
DEBs have never destroyed my system. I wish I could say the same for F***'s RPMs. Its users are just used to it. L*** T*** couldn't manage to install a flash plugin in His distro of choice and nobody in the RPM camp raised an eyebrow. FAmazing!
Some distributions have slowly fixed RPM so that it is beginning to be usable. So what? If they had made DEB the standard, instead of bending to the RedHat lobbying, by now we would have a much better Linux than we do.
Mod -1 as much you like, Truth won't go away.
"Now you can have all the privacy and security issues of Google Docs with the combined performance of Java and JavaScript in a single package!!!"
Sounds like something Microsoft would sell for $5999.99.
It is fortunate that light cycles don't affect Slashdotters. Computer monitors are always on, unlike that Sun thingy.