How about this. Lets start a movement for false positives. If you know someone from the UK, email them saying "Hey, dude, dont forget to plant that bomb at the government building on 231 baker st. Oh yeah, and remeber the time we agreed on. 11:15 on tuesday the 21st. "
Police state or no police state, they cant arrest us for doing nothing, espically people outside of the UK sending emails to the UK.
-Chrome loads flash slow (though this is improved slightly in the dev version)
-Chrome does not run on linux/osx
-Chrome does not have plugins (stumbleupon Id like)
-Chrome interface is not easily customizable (skins are easy, but moving buttons/etc is hard.) This isnt necessarily a downside though, because they make sense how they are, and its easy to support standard controls.
Chrome is currently a great browser for work (no flash necessary for most work computer apps anyway), but it needs some work to be good in the consumer market.
Why is it a problem that it has no explaination for what linux is? People know what linux is. Hell, I do tech support, and most of the X-AOLers I talk to know what linux is.
This is interesting, sure, but how is this news? If it has been going on for the last 10 million years, why are we talking about it now? Was this just discovered? Perhaps I didnt RTFA well enough, but I'm missing whats happened.
OMG its election time! Lets setup the voting machines! Wait! Who forgot the flux capacator?
I think the real question is, how is it possible to hire such consistantly incompotent people to run a "voting" process?
By the way America- John Mccain is not going to win, but he will be the next president. It WILL happen the exact same way it did in 2000,2004. There is no vote. The republicans have complete dictatorship over the election process.
Okay, we've all seen the friggin super batteries they've come out with. Take your pick between this one and the 90 other prototypes. When will they actually put them into anything?
Eh, its kind of buzzy, but it does refer to a real thing.
I'm the sort who lays back and zones out whenever he hears the word paradaigm in a meeting, and I do not support boss-use-buzz-words, but I'm not terribly opposed to the term cloud.
Its hard to tell, but my guess is that its regular old post values.
Almost all forms on the internet are powered by the html tag. Inside of this , different fields are indicated by s.
These inputs are either manipulated by javascript, or sent to another page. There are two ways to send them to another page with strait HTML.
The first is called GET. It sends it by putting a ? on the end of the page, and then just listing the values. it will look like http://www.google.com?q=123 . q is the name of the field, 123 is the value of the field.
The second is called POST. This sends the field values to the other page without displaying them in the address bar. This is the more common method.
The attack they are reffering to is using your own input fields on your own web page to exploit specific holes in the design of the target website.
For example: a page has a form asking you if you want to go to the main page, the news page, or the forum. When you select the news page from the dropdown, and submit the form, it sends you (and your choise of page) to a page that handels your request. The page that handels your request pretty much just says "Oh, i see you want to go to the news, well, here you go", and it redirects you there.
But what if that page that handels the request knows other pages that just arent in the dropdown menu? well, if you want to go to those pages, you would write your own form, point it to the page that handels the request, and then make your own drop down that says you want to go to the "ubersecretwtfpwn" page. The page that handels the request says "Well, okay, here you go.", and sends you there. It has no idea its not normally an option for you.
Short version: People roll their own forms to send false information.
Translation: The idiot who set up the site left holes for post values.
Honestly its not as complex as people describe it, atleast if its reffering to what I think its reffering to.
You can exploit this type of vulnerability by viewing the source of the target website, figuring out how it works together, and writing up an html form. I use it to automatically log my self into a lot of secure web based tools I use at work without having to input login info.
1. Improve your interview process. Dont stress about it, just be zen, do it, and you will find you did it better than when you tried really hard.
2. Do not play up the support side of your previous job. Soft skills are great, but they wont help you where you're going. Give examples of systems you because familliar with in your previous job.
3. Solo projects. Make a portfolio. It does not have to be anything substancial, or even anything professional. Just rent a domain, spend a few nights and weekends working on interesting projects, post them up there. Never a bad idea to post your resume on there either, just make sure it comes across that you did this specifically for the position you are seeking, it isnt an advertisement of how awesome you are. Make sure you have a tablet, or mobile, or something to display this webpage on during the process.
4. Dont bluff. Never bluff. If you do not know something, never ever pretend that you do. It isnt the end of the world if do bluff, but it will be the end of your interview process.
The reason we are skeptical is because they announced that it was a success before it was launched the other day. The report they filed included conversations by the astronauts, but the mission hadnt even been launched yet. They quickly took the report down, but it made it to slashdot before they did.
We arent skeptical for any racially charged reasons.
People are allowed to argue against darwinism. Thats the scientific process. But, darwinism is our best possible explaination for how we are here.
Religion is not science. In science class, you learn science. If you want to learn religion, you go to religion class (or, church).
Teaching creationism in science class would make about as much sense as teaching carpentry. Its another subject, one that not all of us care to learn, because not all of us will use it.
Slashdot Mirror
How about this. Lets start a movement for false positives. If you know someone from the UK, email them saying "Hey, dude, dont forget to plant that bomb at the government building on 231 baker st. Oh yeah, and remeber the time we agreed on. 11:15 on tuesday the 21st. " Police state or no police state, they cant arrest us for doing nothing, espically people outside of the UK sending emails to the UK.
I thought the goal of the police force was to make money?
-Chrome loads flash slow (though this is improved slightly in the dev version) -Chrome does not run on linux/osx -Chrome does not have plugins (stumbleupon Id like) -Chrome interface is not easily customizable (skins are easy, but moving buttons/etc is hard.) This isnt necessarily a downside though, because they make sense how they are, and its easy to support standard controls. Chrome is currently a great browser for work (no flash necessary for most work computer apps anyway), but it needs some work to be good in the consumer market.
Damn it Jim, your code is too simple and elogent. Add more lines, we need a patent!
Score one for Larry Paige?
I dont think boarder guards are so concerned about security. Heck, i'm driving down to mexico right n
Because knowledge is power! Hourray!
I doubt they will be able to get an accurate estimation of your location. It would be cool, but I doubt it. I guess i'll give it a try later today.
Why is it a problem that it has no explaination for what linux is? People know what linux is. Hell, I do tech support, and most of the X-AOLers I talk to know what linux is.
This is interesting, sure, but how is this news? If it has been going on for the last 10 million years, why are we talking about it now? Was this just discovered? Perhaps I didnt RTFA well enough, but I'm missing whats happened.
I think the real question is, how is it possible to hire such consistantly incompotent people to run a "voting" process?
By the way America- John Mccain is not going to win, but he will be the next president. It WILL happen the exact same way it did in 2000,2004. There is no vote. The republicans have complete dictatorship over the election process.
Okay, we've all seen the friggin super batteries they've come out with. Take your pick between this one and the 90 other prototypes. When will they actually put them into anything?
I'm the sort who lays back and zones out whenever he hears the word paradaigm in a meeting, and I do not support boss-use-buzz-words, but I'm not terribly opposed to the term cloud.
It's better than "Series of Tubes" atleast.
If you dont like cloud computing dont participate in it. Theres no reason for us to argue about the matter.
They did what with the who in the wikihow?
I say leave it to artists.
I don't think most gamers really care what artsie people think.
GRR. It just takes out all tags. I meant to type in >form (with the arrows turned around)
Whoops, apparently it parsed my HTML tags. There are several parts in there where i meant to type in (without the dots).
Its hard to tell, but my guess is that its regular old post values.
Almost all forms on the internet are powered by the html tag. Inside of this , different fields are indicated by s.
These inputs are either manipulated by javascript, or sent to another page. There are two ways to send them to another page with strait HTML.
The first is called GET. It sends it by putting a ? on the end of the page, and then just listing the values. it will look like http://www.google.com?q=123 . q is the name of the field, 123 is the value of the field.
The second is called POST. This sends the field values to the other page without displaying them in the address bar. This is the more common method.
The attack they are reffering to is using your own input fields on your own web page to exploit specific holes in the design of the target website.
For example: a page has a form asking you if you want to go to the main page, the news page, or the forum. When you select the news page from the dropdown, and submit the form, it sends you (and your choise of page) to a page that handels your request. The page that handels your request pretty much just says "Oh, i see you want to go to the news, well, here you go", and it redirects you there.
But what if that page that handels the request knows other pages that just arent in the dropdown menu? well, if you want to go to those pages, you would write your own form, point it to the page that handels the request, and then make your own drop down that says you want to go to the "ubersecretwtfpwn" page. The page that handels the request says "Well, okay, here you go.", and sends you there. It has no idea its not normally an option for you.
Short version: People roll their own forms to send false information.
Honestly its not as complex as people describe it, atleast if its reffering to what I think its reffering to.
You can exploit this type of vulnerability by viewing the source of the target website, figuring out how it works together, and writing up an html form. I use it to automatically log my self into a lot of secure web based tools I use at work without having to input login info.
1. Improve your interview process. Dont stress about it, just be zen, do it, and you will find you did it better than when you tried really hard. 2. Do not play up the support side of your previous job. Soft skills are great, but they wont help you where you're going. Give examples of systems you because familliar with in your previous job. 3. Solo projects. Make a portfolio. It does not have to be anything substancial, or even anything professional. Just rent a domain, spend a few nights and weekends working on interesting projects, post them up there. Never a bad idea to post your resume on there either, just make sure it comes across that you did this specifically for the position you are seeking, it isnt an advertisement of how awesome you are. Make sure you have a tablet, or mobile, or something to display this webpage on during the process. 4. Dont bluff. Never bluff. If you do not know something, never ever pretend that you do. It isnt the end of the world if do bluff, but it will be the end of your interview process.
Do you support net neutrality, and if so, what are your plans to ensure that the internet remains neutral?
The reason we are skeptical is because they announced that it was a success before it was launched the other day. The report they filed included conversations by the astronauts, but the mission hadnt even been launched yet. They quickly took the report down, but it made it to slashdot before they did.
We arent skeptical for any racially charged reasons.
We're having similar problems with our dns here at ATT. Half of texas is in the friggin dark right now because of it too.
People are allowed to argue against darwinism. Thats the scientific process. But, darwinism is our best possible explaination for how we are here.
Religion is not science. In science class, you learn science. If you want to learn religion, you go to religion class (or, church).
Teaching creationism in science class would make about as much sense as teaching carpentry. Its another subject, one that not all of us care to learn, because not all of us will use it.