The web site does not allow you any financial gain. The fake boarding passes will just get you into the secure area, not onto the flight. All airlines I know of have some means of verifying the validity of the tickets against their passenger database. And really, you could do just as good a job faking it with photoshop, or really an HTML editor, saving the HTML to the self-print boarding pass and modifying that.
I'm not saying it is legal or not, but it would be a stretch to call a boarding pass that would never actually work a financial instrument.
So you would look for inclusions and if you find them it's real? Or check the color, or perhaps certain trace elements?
I was looking at the Adia site and checking their inventory. They only had one white diamond listed, so I can't judge how much the color of their white diamonds is "too perfect". (That one diamond was E, but 1 is hardly a statistically significant sample.) However, the clarity of their diamonds in my brief browsing ranged from VVS1 to SI3, which is getting into the category of near flawless. An E/SI3 diamond is hardly unheard of.
As far as checking for trace elements, that really depends on the process. It sounds like Adia has a pretty good handle on controlling the color, which is very dependant on the trace elements present when the diamond is formed. There may come a time (If it's not already here) when lab diamonds are indistinguishable from mined diamonds, by any means. (Well, any means aside from by checking the diamonds history.) At that point, "geniune" diamonds become nothing more than a brand name, probably with the associated brand name markup.
* I'm not even calling them artifical vs geniune or real vs fake like some have. They are all geniunely diamonds. The only difference is one comes from a mine, one comes from a lab.
I'd say MMO guides are the worst to buy, not the best. The games just change to rapidly, so the better the production quality of the guide, the more time it takes to produce and review, and the more the game has changed by the time the guide is released. Sure, some strategy still applies, and maps don't tend to change, but any aspect of a MMO can change at any time, and many times you don't find out until it's too late that the guide was completely wrong because of a patch last month.
I usually start with google and make sure I have the right spelling, then the appropriate Wikipedia article is one of the first links, so I click on that.
It wouldn't require a reboot any more than Windows viruses require a reboot to start their infection. Just because the kernel is fully monolithic and does not have loadable kernel modules does not mean you can't change it. If you have access to/dev/kmem, you can still open it up and modify kernel data structures and insert code into kernel memory yourself. (In fact, IIRC, that's exactly how the original implementation of LKM for Linux worked.)
It wouldn't be just "changing a couple bits here in/dev/kmem", but from the summary (Still waiting on the article) it sounds like it is pretty close. It could potentially be "fixed" by changing how things are handled (Again, still waiting on the article) but there are so many ways a system can be compromised if someone has kernel level access.
I'd say this is just a specific case of inserting malicious code into a kernel level linked list. Most kernels have linked lists meant to be accessed by drivers. I've actually done something very similar in Solaris using the SVR4 STREAMS driver model. I created a STREAMS module that inserted itself into the TCP stack in such a way that it was totally invisible, but got all data and control commands passed through it. (Excpet I wasn't writing malicious code. In that case, I was hiding it from any potential hackers, as well as applications that might break if the STREAMS modules aren't loaded like they expect.) There are other places it could be inserted for malicious purposes aside from the network stack, though. (Not that the network stack isn't a bad place to be for someone who wants to do some damage, but it doesn't help with hiding rootkits. It would be more useful as a rootkit payload.)
I'm sure BSD has a linked list that could be similarly exploited. It won't have the same capabilities as the Linux binfmt one, but it will have it's own set of things it could be used for.
However, I agree with other users. In a monolithic kernel, once someone has root and can load kernel drivers, or even access kernel memory, all bets are off. The only possible system I can see not being exploitable in such a way would be a pure microkernel architecture with memory protection, none of which I can think of off the top of my head. Mach still has loadable modules. QNX is closer but even QNX lets you register code to be called as an ISR from the kernel, and at that point you have full access to the kernel memory, and you are even conveniently passed a pointed to some kernel data structures so you don't have to try and figure out kernel symbols.
The point is, once you have root, there are any number of ways to compromise the system and hide your exploits. It's good to have the information about as many different ways as possible out in the open, but it's hardly alarming news that there's yet another discovered.
Hardly a "port" either way. Both the NES and the C64 used the 65xx chip. Which is probably why C64 was easy to add to the lineup. Just need to tweak 6502 to make it 6510, and add SID and VIC support.
Either way, the NES version wasn't as good as the C64 version. (I had them both.) But apparently the original Atari version was even better than the C64 version.
Oh I know it will. I seriously doubt it will be as early as December 2006, but I know it will happen. I just found that page quite funny in how they took information from other consoles and tried to make it sound like it's really for the Wii, and made it as official and informative sounding as possible. I've never seen a web page so flat out wrong when trying to sound authoratative and correct without being purposely humor.
They ran it through a filter 9 times, and a expert taster was able to put them in the correct order from first filter to 9th, and high quality above the rest. So the answer was it got it pretty close, but someone who knows their vodka can still distinguish the filtered stuff from the quality stuff.
Apparently their mod chips let you play DVD movies from any region. Pretty fancy, considering the Wii can't even play DVDs on it's own.
Oh yeah, and the Wii uses "custom optipal media" according to that site's information.
And the Nintendo Wii mod chip "was released in December 2006". There are also apparently already multiple types of modchips, including those that require soldering and those that just use positions of pins for pressure contact, and alternatives to modchips including M.R. Browns Wii Independence Exploit.......
I don't know if the world has enough grains of salt to take with that page. It looks like they just copy and pasted from other modchip sales pages in anticipation of someone making something for the Wii. I see information that is only meaningful about the GameCube and PS2 in there. Not sure if they have other sources for copy and pasting.
That doesn't sound like the same thing. From my understanding, what they are calling "Safe" is something where there is low risk of not progressing based on skill.
Bravo, you linked the same past story that the summary linked and commented on this technique being better than. Yes, it does look similar, but you can figure out the differences just by reading the summary, let alone the article.
That said, I'm sure more ways will be discovered to fingerprint wi-fi devices. I do hope at some point soon it will stop being newsworthy when a new one is discovered.
It seems to me they don't need to buy the PS3 FOR the BR player.... They just need to buy it, then some time at the store say "Gee, I have this PS3 that says it can play blue-ray, might as well get a few movies and see what it's all about." The barrier to entry is much lower if you already have something that can play the movies.
Probably not wxPython, but you would be able to use wx.NET with it. (Though the development looks to have stopped on that judging by the timeline on that page.)
It would be interesting to see how similar wxPython is to wx.NET with Python.
Well you see, to understand the need th analogize the most straightforward things, it might help to understand that it is a lot like when you are going to the supermarket and you...
I'd go so far as to say that those who actually follow zero day vulnerabilities (When they are still zero day, before the media hype starts) probably have their systems secured. It's the people who read about it in a trade rag or on a website and jump on the bandwagon that are the dangerous ones.
I think that qualifies as a well duh. If you haven't secured yourself against old vulnerabilities, worrying about zero-day vulnerabilities won't do you much good. On the other hand, if you're on top of security, staying in touch with the latest vulnerabilities has some real value. It's common sense. To use a bad analogy, if someone is suffering from a hear attack, you don't stop treating them because you notice they have a scratch that needs a bandage.
Unless it is encoded in the X or Y chromosome... Neither. If it appears in the Y chromosome, then men will, but only by a small bit, as the Y chromosome doesn't really encode much information anymore. If it's in the X chromosome, women will have more, but from my understanding it doesn't make a difference because one of the two Y chromosomes would not be active anyway. However, from a link someone else posted to the human genome project, it looks like it is not in the X or Y chromosomes.
Slashdot Mirror
The web site does not allow you any financial gain. The fake boarding passes will just get you into the secure area, not onto the flight. All airlines I know of have some means of verifying the validity of the tickets against their passenger database. And really, you could do just as good a job faking it with photoshop, or really an HTML editor, saving the HTML to the self-print boarding pass and modifying that.
I'm not saying it is legal or not, but it would be a stretch to call a boarding pass that would never actually work a financial instrument.
So you would look for inclusions and if you find them it's real? Or check the color, or perhaps certain trace elements?
I was looking at the Adia site and checking their inventory. They only had one white diamond listed, so I can't judge how much the color of their white diamonds is "too perfect". (That one diamond was E, but 1 is hardly a statistically significant sample.) However, the clarity of their diamonds in my brief browsing ranged from VVS1 to SI3, which is getting into the category of near flawless. An E/SI3 diamond is hardly unheard of.
As far as checking for trace elements, that really depends on the process. It sounds like Adia has a pretty good handle on controlling the color, which is very dependant on the trace elements present when the diamond is formed. There may come a time (If it's not already here) when lab diamonds are indistinguishable from mined diamonds, by any means. (Well, any means aside from by checking the diamonds history.) At that point, "geniune" diamonds become nothing more than a brand name, probably with the associated brand name markup.
* I'm not even calling them artifical vs geniune or real vs fake like some have. They are all geniunely diamonds. The only difference is one comes from a mine, one comes from a lab.
I'd say MMO guides are the worst to buy, not the best. The games just change to rapidly, so the better the production quality of the guide, the more time it takes to produce and review, and the more the game has changed by the time the guide is released. Sure, some strategy still applies, and maps don't tend to change, but any aspect of a MMO can change at any time, and many times you don't find out until it's too late that the guide was completely wrong because of a patch last month.
I usually start with google and make sure I have the right spelling, then the appropriate Wikipedia article is one of the first links, so I click on that.
If by "open" you mean world accessible, hardly. The whole point is about root being able to do this, not normal users.
If kmem isn't even available, there are other ways to get to kernel memory, they just aren't as easy.
It wouldn't require a reboot any more than Windows viruses require a reboot to start their infection. Just because the kernel is fully monolithic and does not have loadable kernel modules does not mean you can't change it. If you have access to /dev/kmem, you can still open it up and modify kernel data structures and insert code into kernel memory yourself. (In fact, IIRC, that's exactly how the original implementation of LKM for Linux worked.)
It wouldn't be just "changing a couple bits here in /dev/kmem", but from the summary (Still waiting on the article) it sounds like it is pretty close. It could potentially be "fixed" by changing how things are handled (Again, still waiting on the article) but there are so many ways a system can be compromised if someone has kernel level access.
Technically, if someone could get the kernel symbol table, they could still locate the list and hijack it, creating their own module loader.
I'd say this is just a specific case of inserting malicious code into a kernel level linked list. Most kernels have linked lists meant to be accessed by drivers. I've actually done something very similar in Solaris using the SVR4 STREAMS driver model. I created a STREAMS module that inserted itself into the TCP stack in such a way that it was totally invisible, but got all data and control commands passed through it. (Excpet I wasn't writing malicious code. In that case, I was hiding it from any potential hackers, as well as applications that might break if the STREAMS modules aren't loaded like they expect.) There are other places it could be inserted for malicious purposes aside from the network stack, though. (Not that the network stack isn't a bad place to be for someone who wants to do some damage, but it doesn't help with hiding rootkits. It would be more useful as a rootkit payload.)
I'm sure BSD has a linked list that could be similarly exploited. It won't have the same capabilities as the Linux binfmt one, but it will have it's own set of things it could be used for.
However, I agree with other users. In a monolithic kernel, once someone has root and can load kernel drivers, or even access kernel memory, all bets are off. The only possible system I can see not being exploitable in such a way would be a pure microkernel architecture with memory protection, none of which I can think of off the top of my head. Mach still has loadable modules. QNX is closer but even QNX lets you register code to be called as an ISR from the kernel, and at that point you have full access to the kernel memory, and you are even conveniently passed a pointed to some kernel data structures so you don't have to try and figure out kernel symbols.
The point is, once you have root, there are any number of ways to compromise the system and hide your exploits. It's good to have the information about as many different ways as possible out in the open, but it's hardly alarming news that there's yet another discovered.
Hardly a "port" either way. Both the NES and the C64 used the 65xx chip. Which is probably why C64 was easy to add to the lineup. Just need to tweak 6502 to make it 6510, and add SID and VIC support.
Either way, the NES version wasn't as good as the C64 version. (I had them both.) But apparently the original Atari version was even better than the C64 version.
Oh I know it will. I seriously doubt it will be as early as December 2006, but I know it will happen. I just found that page quite funny in how they took information from other consoles and tried to make it sound like it's really for the Wii, and made it as official and informative sounding as possible. I've never seen a web page so flat out wrong when trying to sound authoratative and correct without being purposely humor.
They ran it through a filter 9 times, and a expert taster was able to put them in the correct order from first filter to 9th, and high quality above the rest. So the answer was it got it pretty close, but someone who knows their vodka can still distinguish the filtered stuff from the quality stuff.
Wow, that site must have a time machine...
....
Not a very good one at that.
Apparently their mod chips let you play DVD movies from any region. Pretty fancy, considering the Wii can't even play DVDs on it's own.
Oh yeah, and the Wii uses "custom optipal media" according to that site's information.
And the Nintendo Wii mod chip "was released in December 2006". There are also apparently already multiple types of modchips, including those that require soldering and those that just use positions of pins for pressure contact, and alternatives to modchips including M.R. Browns Wii Independence Exploit...
I don't know if the world has enough grains of salt to take with that page. It looks like they just copy and pasted from other modchip sales pages in anticipation of someone making something for the Wii. I see information that is only meaningful about the GameCube and PS2 in there. Not sure if they have other sources for copy and pasting.
That doesn't sound like the same thing. From my understanding, what they are calling "Safe" is something where there is low risk of not progressing based on skill.
Bravo, you linked the same past story that the summary linked and commented on this technique being better than. Yes, it does look similar, but you can figure out the differences just by reading the summary, let alone the article.
That said, I'm sure more ways will be discovered to fingerprint wi-fi devices. I do hope at some point soon it will stop being newsworthy when a new one is discovered.
Sure you're not thinking Steve Ballmer there?
It seems to me they don't need to buy the PS3 FOR the BR player.... They just need to buy it, then some time at the store say "Gee, I have this PS3 that says it can play blue-ray, might as well get a few movies and see what it's all about." The barrier to entry is much lower if you already have something that can play the movies.
Probably not wxPython, but you would be able to use wx.NET with it. (Though the development looks to have stopped on that judging by the timeline on that page.)
It would be interesting to see how similar wxPython is to wx.NET with Python.
Well you see, to understand the need th analogize the most straightforward things, it might help to understand that it is a lot like when you are going to the supermarket and you...
Oh.... right...
I'd go so far as to say that those who actually follow zero day vulnerabilities (When they are still zero day, before the media hype starts) probably have their systems secured. It's the people who read about it in a trade rag or on a website and jump on the bandwagon that are the dangerous ones.
I think that qualifies as a well duh. If you haven't secured yourself against old vulnerabilities, worrying about zero-day vulnerabilities won't do you much good. On the other hand, if you're on top of security, staying in touch with the latest vulnerabilities has some real value. It's common sense. To use a bad analogy, if someone is suffering from a hear attack, you don't stop treating them because you notice they have a scratch that needs a bandage.
Unless it is encoded in the X or Y chromosome... Neither. If it appears in the Y chromosome, then men will, but only by a small bit, as the Y chromosome doesn't really encode much information anymore. If it's in the X chromosome, women will have more, but from my understanding it doesn't make a difference because one of the two Y chromosomes would not be active anyway. However, from a link someone else posted to the human genome project, it looks like it is not in the X or Y chromosomes.
That line with the opening curly brace in your software is CLEARLY taken from the Linux kernel... Release your software under the GPL NOW!
My geometry text book was written by a smartass. It hasthe strangest off the wall analogies in it.
Either that or you missed the movie quote.