Well if it was just his girlfriend he'd be even dumber since they court would probably go easy on him. They don't go so easy on people who attempt to subvert justice. If he went through with his grand plan he'd be stewing in jail long after anyone else gave a damn.
This is all distinctly underwhelming. Android and Windows Phone have been sporting a "flat" UI for some time and iOS late to that party. It's some change from the times when Apple were the trend setter and are now playing catchup. And other than the reskinned UI, the remaining stuff is basically fixes and tweaks.
Safe how? It sounds like he is being charged for possession of kiddy porn among other things. He'll be tried and convicted regardless of his "threat" (which in itself is a offence) and if he's fucking stupid enough to release the key he can expect to receive fresh charges on top since he has just incriminated himself. So he'll probably go from 3-5 years up to 10+ years. Doubtless all sentencing to be served consecutively. Great plan that.
Since this is encrypted this could be 1.7TB of shit for anyone knows. Or is there a sampler or something people are supposed to download to know it isn't?
If the protocol was fine we wouldn't see a number of products trying to do an end run around it - NX / FreeNX, RDP, VNC. Nomachine's site in particular has plenty of info explaining precisely why X is so crap and why NX shims the transport with its own protocol to eliminate roundtrips and redundancy.
No, it's rootless X running on Wayland which in turn is running on Linux. X is not going to behave appreciably different than if you were running it directly.
Fix the protocol (e.g. by using UDP and unidirectional traffic where possible, deprecating a bunch of obsolete crap) and you break it. It's no longer X any more. At that point why bother fixing X?
You don't necessarily need to know the contents of a message to know what it's being used for. I expect voice conversations possess particular qualities that are very hard to disguise even through encryption and using Tor and recognized nodes from your mobile phone would be a dead giveaway you were up to something. There are plenty of ways that the telco and Saudi authorities could disrupt what you were up to.
Tor is highly unlikely to facilitate realtime voice calls especially with the levels of traffic it could expect to receive if it could. I also expect that it would be reasonably straightforward for a phone network to disrupt it even if it were proven possible.
Java, Flash, Unity 3d all talk to Javascript just fine and they can all do UDP.
Oh dear. Java and Flash are bound by whatever constraints limit the browser such as firewalls and security sandboxes. Thus a Java app running in a browser can't go off UDPing whatever it likes and neither can Flash. And Unity3D is an game runtime abstraction which has multiple backends so it would be transformed to Flash or WebGL and is therefore subject to the same constraints.
Because that is the obvious practical use of looking at the time on the BBC website. A seven seconds drift is generally not an issue for most people. If you're late by seven seconds and that effects what you're doing and you're setting it by hand from the BBC website... Uh, yeah.
Well clearly it is or they wouldn't have yanked the clock.
I can assure you that the time on BBC radio one is not even accurate to the second with the London Stock Exchange. So, your example isn't even valid for stock trading anyway. I doubt it's accurate with much else too.
I was using examples of other sites that could do with an accurate clock. It's really not a hard to understand that some sites need precise clocks.
If you want to use NTP accuracy, how about using NTP then? I am not understanding the problem of using web sockets in this context?
Because this is the web site presenting the information and doing it accurately regardless of the time of the machine the browser is on. How do you talk with an NTP time server from Javascript? You can't.
The reasons for accuracy should be obvious from the examples I suggested. e.g. stock market open times, ticket booth opening, auction closing times, gambling sites and so on. Anything where someone could bitch that their clock was out by a few seconds and they incurred a loss or suffered a disadvantage.
Did you know that the majority of webservers return the current date and time in a header field in response to the majority of request types they receive?
That's not accurate enough. A response might take several seconds to arrive from the server. Look to the NTP protocol to see the sorts of things client and server would have to supply to home in on the exact time. It's doable over http but existing headers are not sufficient. I expect all kinds of sites could benefit from accurate clocks, e.g. financial markets, box office sales, auction / bid sites and so on.
JRR Tolkien was heavily influenced by Norse and other folklore but he more or less singlehandedly defined the high fantasy depiction of orcs, elves, dwarves, goblins, halflings, and trolls / ogres that have appeared countless times in various derivatives. It's perfectly valid to describe WoW as a knockoff since it is. And Everquest. And too many other games, books and movies to even count.
I assume that quite a few websites that would like to show the *exact* time regardless of what the browser thinks it is. There is already NTP for this purpose, and the need is for something analogous for HTTP.
It seems quite feasible to create a JS lib that makes a request over HTTP to a server running some time module and receives the exact value in response. The JS could provide APIs to show that time and calculate various timezones. About the trickiest thing would be dealing with the roundtrip delay of the request but a few headers recording the client and server's response time would take care of that just like they do for NTP.
There is no need for them. "Sites" could be hosted in the p2p cloud, accessible from a magnet link or some alias for a bundled up web 2.0 app which is downloaded and hosted behind a http web server built into the torrent software. e.g. to load TorrentFreak (for example), perhaps you would click a magnet for the TorrentFreak site in your torrent client, wait for it to download, and then point your browser at localhost:1234/torrentfreak where it would just appear to you.
Searching would be the trickiest part, but not insurmountable. I assume the backend could maintain a list of urls which changes as circumstances dictate to furnish results. Or the app might come with the database in a format such as SQL lite that the torrent app can query dynamically, or even a p2p search protocol could be devised. But to the user the "site" is now hosted locally even though it doesn't reside anywhere as such.
I'm sure he could have given the vendor (Microsoft) 5 or 10 days to work on a fix and devise a rollout before disclosing it. The only reason not to do this is if the exploit were being actively used in the wild, where the damage was already being done so there was nothing to gain from giving them more time.
You're kidding I hope. WoW might have been less frustrating than EQ and had a slicker client but it still had all the same features as EQ - levelling which becomes progressively harder, timesink travel, upkeep, crafting and lots and lots of repetition. All designed to ease someone into constant, frequent and repetitive play. Articles such as this descrbe the process.
That isn't to say WoW is no fun at all. I expect like most MMOs it's a lot of fun at the beginning but that slowly gives way to repetition and grind and the process is so gradual that players don't necessarily see it happening.
It's not Blizzards fault that you played a fun and engaging game with the pathological craving of a drug addict until you couldn't stand it anymore. That's on YOU and your lack of self control. If grinding bothered you, you would've stopped playing before you got your first mount.
Well it is kind of their fault, as in totally their fault. Why? For cynically designing a skinner box / game to string people along for months and months. They weren't the first or only MMO to do it but they were sure as hell the most successful and perfected it.
Anyway subscriptions are falling month on month so I imagine that there are a great many people who've quit either through boredom, cost or the growing realisation that they weren't actually enjoying themselves. It's not the end of skinner boxes though - most of the top grossing "free" games on mobile OSes are just shitty time management games working on similar principles.
MLMs and pyramid schemes also have active communities behind them too, all VERY enthusiastic to recruit new "investors". Doesn't mean it's a sound idea to invest in such things. Same for bitcoin et al. Their communities comprise miners who cheaply mined out coins and now want to see the value of those coins increase. Can't trust a damned word they say on the subject.
Slashdot Mirror
Well if it was just his girlfriend he'd be even dumber since they court would probably go easy on him. They don't go so easy on people who attempt to subvert justice. If he went through with his grand plan he'd be stewing in jail long after anyone else gave a damn.
This is all distinctly underwhelming. Android and Windows Phone have been sporting a "flat" UI for some time and iOS late to that party. It's some change from the times when Apple were the trend setter and are now playing catchup. And other than the reskinned UI, the remaining stuff is basically fixes and tweaks.
And in doing so open himself up to charges of hacking, blackmail, extortion, wire fraud and anything else they can pin on him. It's a stupid plan.
Safe how? It sounds like he is being charged for possession of kiddy porn among other things. He'll be tried and convicted regardless of his "threat" (which in itself is a offence) and if he's fucking stupid enough to release the key he can expect to receive fresh charges on top since he has just incriminated himself. So he'll probably go from 3-5 years up to 10+ years. Doubtless all sentencing to be served consecutively. Great plan that.
Since this is encrypted this could be 1.7TB of shit for anyone knows. Or is there a sampler or something people are supposed to download to know it isn't?
If the protocol was fine we wouldn't see a number of products trying to do an end run around it - NX / FreeNX, RDP, VNC. Nomachine's site in particular has plenty of info explaining precisely why X is so crap and why NX shims the transport with its own protocol to eliminate roundtrips and redundancy.
No, it's rootless X running on Wayland which in turn is running on Linux. X is not going to behave appreciably different than if you were running it directly.
Fix the protocol (e.g. by using UDP and unidirectional traffic where possible, deprecating a bunch of obsolete crap) and you break it. It's no longer X any more. At that point why bother fixing X?
You don't necessarily need to know the contents of a message to know what it's being used for. I expect voice conversations possess particular qualities that are very hard to disguise even through encryption and using Tor and recognized nodes from your mobile phone would be a dead giveaway you were up to something. There are plenty of ways that the telco and Saudi authorities could disrupt what you were up to.
Tor is highly unlikely to facilitate realtime voice calls especially with the levels of traffic it could expect to receive if it could. I also expect that it would be reasonably straightforward for a phone network to disrupt it even if it were proven possible.
Java, Flash, Unity 3d all talk to Javascript just fine and they can all do UDP.
Oh dear. Java and Flash are bound by whatever constraints limit the browser such as firewalls and security sandboxes. Thus a Java app running in a browser can't go off UDPing whatever it likes and neither can Flash. And Unity3D is an game runtime abstraction which has multiple backends so it would be transformed to Flash or WebGL and is therefore subject to the same constraints.
Because that is the obvious practical use of looking at the time on the BBC website. A seven seconds drift is generally not an issue for most people. If you're late by seven seconds and that effects what you're doing and you're setting it by hand from the BBC website... Uh, yeah.
Well clearly it is or they wouldn't have yanked the clock.
I can assure you that the time on BBC radio one is not even accurate to the second with the London Stock Exchange. So, your example isn't even valid for stock trading anyway. I doubt it's accurate with much else too.
I was using examples of other sites that could do with an accurate clock. It's really not a hard to understand that some sites need precise clocks.
Even though we are supposed to be one of the largest groups of nerds, sure, let's pile stupid FUD.
Someone can be really smart and still hold some really dumb beliefs.
If you want to use NTP accuracy, how about using NTP then? I am not understanding the problem of using web sockets in this context?
Because this is the web site presenting the information and doing it accurately regardless of the time of the machine the browser is on. How do you talk with an NTP time server from Javascript? You can't.
The reasons for accuracy should be obvious from the examples I suggested. e.g. stock market open times, ticket booth opening, auction closing times, gambling sites and so on. Anything where someone could bitch that their clock was out by a few seconds and they incurred a loss or suffered a disadvantage.
Did you know that the majority of webservers return the current date and time in a header field in response to the majority of request types they receive?
That's not accurate enough. A response might take several seconds to arrive from the server. Look to the NTP protocol to see the sorts of things client and server would have to supply to home in on the exact time. It's doable over http but existing headers are not sufficient. I expect all kinds of sites could benefit from accurate clocks, e.g. financial markets, box office sales, auction / bid sites and so on.
JRR Tolkien was heavily influenced by Norse and other folklore but he more or less singlehandedly defined the high fantasy depiction of orcs, elves, dwarves, goblins, halflings, and trolls / ogres that have appeared countless times in various derivatives. It's perfectly valid to describe WoW as a knockoff since it is. And Everquest. And too many other games, books and movies to even count.
It seems quite feasible to create a JS lib that makes a request over HTTP to a server running some time module and receives the exact value in response. The JS could provide APIs to show that time and calculate various timezones. About the trickiest thing would be dealing with the roundtrip delay of the request but a few headers recording the client and server's response time would take care of that just like they do for NTP.
Searching would be the trickiest part, but not insurmountable. I assume the backend could maintain a list of urls which changes as circumstances dictate to furnish results. Or the app might come with the database in a format such as SQL lite that the torrent app can query dynamically, or even a p2p search protocol could be devised. But to the user the "site" is now hosted locally even though it doesn't reside anywhere as such.
What would the police do then?
I'm sure he could have given the vendor (Microsoft) 5 or 10 days to work on a fix and devise a rollout before disclosing it. The only reason not to do this is if the exploit were being actively used in the wild, where the damage was already being done so there was nothing to gain from giving them more time.
That isn't to say WoW is no fun at all. I expect like most MMOs it's a lot of fun at the beginning but that slowly gives way to repetition and grind and the process is so gradual that players don't necessarily see it happening.
Anything with humans, orcs, trolls, dwarves and elves is basically a Lord of the Rings knockoff even if it came by way of something else.
It's not Blizzards fault that you played a fun and engaging game with the pathological craving of a drug addict until you couldn't stand it anymore. That's on YOU and your lack of self control. If grinding bothered you, you would've stopped playing before you got your first mount.
Well it is kind of their fault, as in totally their fault. Why? For cynically designing a skinner box / game to string people along for months and months. They weren't the first or only MMO to do it but they were sure as hell the most successful and perfected it.
Anyway subscriptions are falling month on month so I imagine that there are a great many people who've quit either through boredom, cost or the growing realisation that they weren't actually enjoying themselves. It's not the end of skinner boxes though - most of the top grossing "free" games on mobile OSes are just shitty time management games working on similar principles.
A CG movie made from an MMO set in a Lord of the Rings knock-off universe. It has hit written all over it.
Are you insane or something?
No.
MLMs and pyramid schemes also have active communities behind them too, all VERY enthusiastic to recruit new "investors". Doesn't mean it's a sound idea to invest in such things. Same for bitcoin et al. Their communities comprise miners who cheaply mined out coins and now want to see the value of those coins increase. Can't trust a damned word they say on the subject.