Unleaded is slightly cheaper at about 4.45 - 4.55 PLN per liter IIRC (I don't own a car). The fact that SVO is cheaper is mainly due to taxation. Additionally the price of oil products is announced to drop a bit in the following months.
What about hydroxyapatite? This is an incredibly common molecule in our bones, but like so many other molecules in the body, it is a relatively simple organic molecule.
Except it's not a simple organic molecule, but an inorganic mineral. Organic != Biogenic.
Don't think so - it looks like an unique hashing function rather than public key crypto. The system is not based on a "magic uncloneable device" but on a strict control of information according to the least privilege principle. Nobody except the RFID vendor knows the algorithm, and probably no one at all knows the seed of a particular chip.
If the challenge and response are 64 bits each, you would need 128 exabytes of data to store all possible challenge/response pairs... I think it's easier to steal the original.
The chip is not a public key crypto device; it looks like it has an unique hashing function built in. The system is based on a manufacturer-controlled database of message and digest values. Once the RFID reader detects this chip, it gets its ID and sends to the manufacturer database; the database sends back a one-time message for the chip to hash (the one-time thing is crucial - it guarantees that a given challenge will not be sent twice, so no replay attack and no MITM on the network connection from the reader to the manufacturer DB). The digest is sent back and if the stored digest and the one returned by the reader match, the chip's identity is confirmed. It seems that the manufacturer builds a database of message / digest values after getting the chip from the vendor treating it as a black box device, and the hashing algorithm never leaves the RFID vendor.
The chip might also be a stateful device, but this would introduce many problems (if the manufacturer DB gets out of sync with the chip, it's useless).
I think that obtaining the original chip (stealing it) would be always easier than duplicating it with this system. To successfully attack it (convince an uncompromised reader that you have the true chip) you would have to:
a) Record all possible responses to all possible challenges from the original chip. I think this is the way the system is particularly resilient to - if the message and response are at least 64 bits long, or there is any delay, then it is impossible.
b) Replicate the chip physically, using a microscope. This is theoretically possible but would be extremely costly, and probably unfeasible.
c) Steal the hashing algorithm from the RFID vendor. This would give you next to nothing if the hashing algorithm used a seed that is never broadcast from the chip (eg. serial # from the picture), so you would have to resort to b) to get it.
d) Steal the C/R database from the manufacturer. This is probably the easiest way, but the manufacturer can't notice or you have to steal the data for very many chips, making revoking them all a major blow for the company.
The main idea here is not being able to construct a fake chip based on data the real chip broadcasts.
Over here diesel is about 4.75 PLN and cheap vegetable oil in 3L bottles is 3.65 PLN per liter. I just hope there will be no en masse transition so that I can convert my future Diesel car to SVO and feel smug about it.
This patch does not turn off the DRM in Russian, Chinese, Brazilian in Polish editions. How is this different from discriminating against people based on nationality? Why am I fucked because there happen to be many pirates in my country?
If you go on a backpacking trip and you are eaten by a bear, the fact that the bear is no longer hungry does not mean that your trip is not a failure.
Benefits of companies hired to attack P2P are irrelevant to RIAA's campaign outcome, which is ultimately to increase profits. Since they paid a lot of money to third parties and got nothing, it is a failure.
It's more ironic than that. Asbestos is mostly harmless unless you start to remove it. It is mainly the unskilled removal of asbestos, which creates a lot of dust, that causes it to be harmful. This is because only the airborne fibers are carcinogenic, while the bulk form is neutral to human health.
I know it is fairly meaningless, which is why I said I'll do a more detailed test later. Memory performance of multiple processes may be more interesting since this seems to be the weak spot of the browser.
Not only that, but I'd like to point out that process isolation comes at a cost.
This is a much bigger issue on Windows than on Linux, because Windows processes are much more heavyweight. Try a program that recursively calls itself via system(). 100 calls of the program on Windows take about 7 seconds (!) IIRC, while on Linux 10000 calls take 5 seconds on the same machine. I'll do a more rigorous benchmark later because I think this issue will keep resurfacing. However, I don't know whether this is due to an incredibly slow system() implementation on Windows or process creation overhead. Note: on Linux the shell forks to execute the new program, so you actually have twice the amount of new processes created.
Well hell, Compiz already has the basic handwriting tools: Annotate.
There are better tablet tools: - Cellwriter does cell-based character recognition. It can be trained to recognize any Unicode character - in this aspect it destroys the Windows offering. - Xournal is a great note taking application, and has PDF annotation support - handy when reading e-books. No pressure recognition like Windows Journal though, but GIMP and Inkscape have it. - There's also an array of onscreen keyboards. I found Ubuntu's Onboard to work best, and it can be run at the gdm prompt to enable keyboardless login. There's also Matchbox Keyboard which you can embed into Gnome screensaver password prompt. - xbindkeys is great for handling hotkey commands. - GIMP and Inkscape are also fun with tablets - a TC1100 can be a very cheap alternative to Wacom Cintiq;). The stylus calibration code in the Wacom driver sucks big time though - 2-point calibration instead of 4-point, so there can be precision issues. - Firefox Grab and Drag extension is great when you browse web pages with a stylus. - KDE has a gestures application, though it's not maintained too well. - Compiz is a bit annoying with a stylus, but the problems can be configured away. - USB Wacom tablets do not work beacuse the driver sucks as mentioned above.
Overall Linux works surprisingly well with tablets unless you have an USB-based digitizer (most are serial-based). The only big things missing are cursive handwriting recognition and a decent gestures application.
I still have one now as a laptop, it's the TC1100 model to be precise. The detachable keyboard is genius. Every device on this one works under Linux except the SD card reader, but that's due to Texas Instruments being evil and providing this function via encrypted firmware, and probably the winmodem but I doubt it would be of any use today. The only thing that's missing on the software side is the cursive handwriting recognition, but even on Windows it wasn't available in my language. There are still new Chinese-made batteries available for them.
HP's new tablets have a hinged screen which you can turn around and fold over the keyboard (which is fixed), and the screen is flimsier - no bulletproof glass cover.
Those picture frames (at least those I have seen) have notoriously crappy LCDs. They are barely legible on a sunny day, even indoors. I think this kind of defeats their purpose, except when you hang them in the basement.
IE7 also was the first IE to support full PNG alpha transparency. IE6 only did it in a half-assed hackathon way that was completely useless.
The problem with IE8 is not that it's not standard compliant enough (or that it's not out yet, for that matter). This is the trend MS must follow to stay relevant. The problem is that there are still the unwashed masses of IE6 users on Windows versions earlier than XP that have to be catered for. Displaying a message like "IE6 users go to hell or update" is not going to be acceptable until IE6 has less than 10% market share.
6. SupCom installed SecureRom at launch but removed it in v3223. 10. SupCom can be played without a DVD.
Except in Poland, China, Brazil and Russia. I am unfortunate enough to live in one of those barbaric parts of the world. This is also the reason I did not buy this game though I really liked it. There's an item missing from the Bill:
11. Gamers shall have the right not to be discriminated against by the publisher based on their nationality, race or religion
1. This is only relevant in software patent countries, so for Europe it is an open format (for now). 2. FOSS developers don't have to license anything due to explicit statements from patent holders.
While legally MP3 is not open, it's "free enough" that few people actually care.
Basically, this is what's I've always understood about protection schemes in computing: It's made by man, it can be broken by man.
It's more than that. In order to listen to DRM music it must be decrypted somewhere along the way. Therefore all DRM schemes are just security through obscurity. This is also the reason why open-source DRM schemes do not exist - they would be trivially breakable.
They can't, but the point is not that DRM should be banned, but that there should be a DRM-free option available, and the better model would win. Until recently there were no online music stores selling DRM-free music, so nobody really knew which strategy would win.
I think it's the other way around. It has a lot of bindings, programs are shipped as source, and it has many conveniences, which makes it a scripting language - which incidentally is powerful enough to do application development.
There are few languages in modern use that are not object-oriented (I can only think of C and Fortran in their respective niches), so it's not a sign of not being a scripting language.
1. Has lots of bindings to libraries and tools which are written in other languages, usually compiled ones. 2. Is used for gluing third-party code and external programs and for high-level logic as opposed to grunt work and computations. 3. The source file is the presumed redistribution form of the program, and is directly runnable. 4. Features aimed at programmer convenience rather than preventing errors or improving performance, which includes dynamic typing.
This makes PHP, Perl, Bash script (and to some extent Python, since there are many pure Python libs) canonical scripting languages, and Java and C++ canonical non-scripting languages.
Slashdot Mirror
Unleaded is slightly cheaper at about 4.45 - 4.55 PLN per liter IIRC (I don't own a car). The fact that SVO is cheaper is mainly due to taxation. Additionally the price of oil products is announced to drop a bit in the following months.
What about hydroxyapatite? This is an incredibly common molecule in our bones, but like so many other molecules in the body, it is a relatively simple organic molecule.
Except it's not a simple organic molecule, but an inorganic mineral. Organic != Biogenic.
Don't think so - it looks like an unique hashing function rather than public key crypto. The system is not based on a "magic uncloneable device" but on a strict control of information according to the least privilege principle. Nobody except the RFID vendor knows the algorithm, and probably no one at all knows the seed of a particular chip.
If the challenge and response are 64 bits each, you would need 128 exabytes of data to store all possible challenge/response pairs... I think it's easier to steal the original.
The chip is not a public key crypto device; it looks like it has an unique hashing function built in. The system is based on a manufacturer-controlled database of message and digest values. Once the RFID reader detects this chip, it gets its ID and sends to the manufacturer database; the database sends back a one-time message for the chip to hash (the one-time thing is crucial - it guarantees that a given challenge will not be sent twice, so no replay attack and no MITM on the network connection from the reader to the manufacturer DB). The digest is sent back and if the stored digest and the one returned by the reader match, the chip's identity is confirmed. It seems that the manufacturer builds a database of message / digest values after getting the chip from the vendor treating it as a black box device, and the hashing algorithm never leaves the RFID vendor.
The chip might also be a stateful device, but this would introduce many problems (if the manufacturer DB gets out of sync with the chip, it's useless).
I think that obtaining the original chip (stealing it) would be always easier than duplicating it with this system. To successfully attack it (convince an uncompromised reader that you have the true chip) you would have to:
a) Record all possible responses to all possible challenges from the original chip. I think this is the way the system is particularly resilient to - if the message and response are at least 64 bits long, or there is any delay, then it is impossible.
b) Replicate the chip physically, using a microscope. This is theoretically possible but would be extremely costly, and probably unfeasible.
c) Steal the hashing algorithm from the RFID vendor. This would give you next to nothing if the hashing algorithm used a seed that is never broadcast from the chip (eg. serial # from the picture), so you would have to resort to b) to get it.
d) Steal the C/R database from the manufacturer. This is probably the easiest way, but the manufacturer can't notice or you have to steal the data for very many chips, making revoking them all a major blow for the company.
The main idea here is not being able to construct a fake chip based on data the real chip broadcasts.
Any other ideas?
Over here diesel is about 4.75 PLN and cheap vegetable oil in 3L bottles is 3.65 PLN per liter. I just hope there will be no en masse transition so that I can convert my future Diesel car to SVO and feel smug about it.
This patch does not turn off the DRM in Russian, Chinese, Brazilian in Polish editions. How is this different from discriminating against people based on nationality? Why am I fucked because there happen to be many pirates in my country?
If you go on a backpacking trip and you are eaten by a bear, the fact that the bear is no longer hungry does not mean that your trip is not a failure.
Benefits of companies hired to attack P2P are irrelevant to RIAA's campaign outcome, which is ultimately to increase profits. Since they paid a lot of money to third parties and got nothing, it is a failure.
Reminds me of the clbuttic filtering mistake, which is mbuttively worse. I think you should rebuttess the severity of this.
It's more ironic than that. Asbestos is mostly harmless unless you start to remove it. It is mainly the unskilled removal of asbestos, which creates a lot of dust, that causes it to be harmful. This is because only the airborne fibers are carcinogenic, while the bulk form is neutral to human health.
I know it is fairly meaningless, which is why I said I'll do a more detailed test later. Memory performance of multiple processes may be more interesting since this seems to be the weak spot of the browser.
Not only that, but I'd like to point out that process isolation comes at a cost.
This is a much bigger issue on Windows than on Linux, because Windows processes are much more heavyweight. Try a program that recursively calls itself via system(). 100 calls of the program on Windows take about 7 seconds (!) IIRC, while on Linux 10000 calls take 5 seconds on the same machine. I'll do a more rigorous benchmark later because I think this issue will keep resurfacing. However, I don't know whether this is due to an incredibly slow system() implementation on Windows or process creation overhead. Note: on Linux the shell forks to execute the new program, so you actually have twice the amount of new processes created.
Ponitless war still fought for domestic political reasons -> lots of resources wasted or tied up -> not much interesting going on.
Well hell, Compiz already has the basic handwriting tools: Annotate.
There are better tablet tools: ;). The stylus calibration code in the Wacom driver sucks big time though - 2-point calibration instead of 4-point, so there can be precision issues.
- Cellwriter does cell-based character recognition. It can be trained to recognize any Unicode character - in this aspect it destroys the Windows offering.
- Xournal is a great note taking application, and has PDF annotation support - handy when reading e-books. No pressure recognition like Windows Journal though, but GIMP and Inkscape have it.
- There's also an array of onscreen keyboards. I found Ubuntu's Onboard to work best, and it can be run at the gdm prompt to enable keyboardless login. There's also Matchbox Keyboard which you can embed into Gnome screensaver password prompt.
- xbindkeys is great for handling hotkey commands.
- GIMP and Inkscape are also fun with tablets - a TC1100 can be a very cheap alternative to Wacom Cintiq
- Firefox Grab and Drag extension is great when you browse web pages with a stylus.
- KDE has a gestures application, though it's not maintained too well.
- Compiz is a bit annoying with a stylus, but the problems can be configured away.
- USB Wacom tablets do not work beacuse the driver sucks as mentioned above.
Overall Linux works surprisingly well with tablets unless you have an USB-based digitizer (most are serial-based). The only big things missing are cursive handwriting recognition and a decent gestures application.
I still have one now as a laptop, it's the TC1100 model to be precise. The detachable keyboard is genius. Every device on this one works under Linux except the SD card reader, but that's due to Texas Instruments being evil and providing this function via encrypted firmware, and probably the winmodem but I doubt it would be of any use today. The only thing that's missing on the software side is the cursive handwriting recognition, but even on Windows it wasn't available in my language. There are still new Chinese-made batteries available for them.
HP's new tablets have a hinged screen which you can turn around and fold over the keyboard (which is fixed), and the screen is flimsier - no bulletproof glass cover.
Those picture frames (at least those I have seen) have notoriously crappy LCDs. They are barely legible on a sunny day, even indoors. I think this kind of defeats their purpose, except when you hang them in the basement.
This is possible, even likely, since Adobe made Flash an open standard some time ago.
IE7 also was the first IE to support full PNG alpha transparency. IE6 only did it in a half-assed hackathon way that was completely useless.
The problem with IE8 is not that it's not standard compliant enough (or that it's not out yet, for that matter). This is the trend MS must follow to stay relevant. The problem is that there are still the unwashed masses of IE6 users on Windows versions earlier than XP that have to be catered for. Displaying a message like "IE6 users go to hell or update" is not going to be acceptable until IE6 has less than 10% market share.
6. SupCom installed SecureRom at launch but removed it in v3223.
10. SupCom can be played without a DVD.
Except in Poland, China, Brazil and Russia. I am unfortunate enough to live in one of those barbaric parts of the world. This is also the reason I did not buy this game though I really liked it. There's an item missing from the Bill:
11. Gamers shall have the right not to be discriminated against by the publisher based on their nationality, race or religion
1. This is only relevant in software patent countries, so for Europe it is an open format (for now).
2. FOSS developers don't have to license anything due to explicit statements from patent holders.
While legally MP3 is not open, it's "free enough" that few people actually care.
Basically, this is what's I've always understood about protection schemes in computing: It's made by man, it can be broken by man.
It's more than that. In order to listen to DRM music it must be decrypted somewhere along the way. Therefore all DRM schemes are just security through obscurity. This is also the reason why open-source DRM schemes do not exist - they would be trivially breakable.
They can't, but the point is not that DRM should be banned, but that there should be a DRM-free option available, and the better model would win. Until recently there were no online music stores selling DRM-free music, so nobody really knew which strategy would win.
I think it's the other way around. It has a lot of bindings, programs are shipped as source, and it has many conveniences, which makes it a scripting language - which incidentally is powerful enough to do application development.
There are few languages in modern use that are not object-oriented (I can only think of C and Fortran in their respective niches), so it's not a sign of not being a scripting language.
Machine code - why would machines need English-like dialects instead of using their mother tongue?
My understanding of scripting language:
1. Has lots of bindings to libraries and tools which are written in other languages, usually compiled ones.
2. Is used for gluing third-party code and external programs and for high-level logic as opposed to grunt work and computations.
3. The source file is the presumed redistribution form of the program, and is directly runnable.
4. Features aimed at programmer convenience rather than preventing errors or improving performance, which includes dynamic typing.
This makes PHP, Perl, Bash script (and to some extent Python, since there are many pure Python libs) canonical scripting languages, and Java and C++ canonical non-scripting languages.