It doesn't have to be a great movie to make lots of money. Take Avatar as an example.
You'd have thought that by now Hollywood would have figured out what sells and just kept churning out what people want to buy. But no, they often seem to have a hidden agenda and intentionally make movies for other reasons.
lot of programs are also using datafiles in an abstract format that require extensive parsing before usage. (Like XML or other text based configuration files.)
This makes it hard to transition into XIP-system where loading is something that doesn't happen
Configuration files aren't going away, and I don't see why you think they are a problem. There are good reasons why they exist and a new form of memory does not remove those reasons.
One man's impedance mismatch is another man's layer of abstraction.
Then I don't know why more hackers haven't done the fancy C&C stuff. Maybe they didn't need to yet?
Anyway it definitely isn't hard to do. Even I could do it. At work, one of our products has windows, linux/OSX/AIX/Solaris agents that communicate with a central server, but we're in the legit business so we are unlikely to need such C&C stuff. From my experience creating and fixing such agents (I didn't create the windows ones) it's much easier to do such stuff in perl than vbscript or C/C++. I'd gladly replace the windows agent with a bundled perl version if I could get it to be smaller than 1MB (it'll be at least 4MB).
Android is more a "java" sort of environment (no perl by default), until the user "roots" it. IIRC some rooted phones end up with an "open" sshd. Some users didn't set passwords and then complained that hackers were slowing their phones down. I think the automated hacks and payload worked on the assumption the victim machine would be more powerful than a phone (and had better internet connections). Doubt that worked so well;).
This new malware might be a sign that the hackers are starting to need to do more fancy stuff, or someone got bored and decided to do the fancy stuff:).
Because not enough people have moved to Linux and OSX.
The malware authors are thus stuck with crap like vbscript or building executables that can't be too big for bandwidth reasons.
Think of what malware authors could do if they could use perl, python and all the cool stuff.
They could have innocuous scripts that through "bugs" end up becoming malware that use search engines and other sites to search the internet for new instructions (checking the signatures to ensure the instructions are from the right source).
Compare Apple with Jobs and Apple with Scully. The engineers and technicians were about the same.
The difference is Jobs has taste. He at least has some clue of what is good, what is not and what is insanely great.
When 800 engineers come up with ideas, who decides which ideas to bet the company's money on? Who decides to tell the engineers "your ideas suck, give me insanely great ideas" AND is often RIGHT when he does it?
Look at Nokia if you want a company that does 800 different ideas.
Assuming that's true, the people who did that video know their stuff and could probably do "Apple style" packaging. So guess why Microsoft packaging still looks the way it does? The people at the top matter a lot.
Well his escape tips might not work 100%. For example:
That means making sure you have the tech expertise in house to solve your own problems, going with open source to avoid vendor lock-in
The last I checked, Reiserfs had vendor lock-in;).
Seriously though, not everyone can afford to have sufficient tech expertise in-house to fix say xorg or the linux sound system. Or network performance issues when you have 1000 vlan interfaces (issues which the kernel devs may not bother fixing since they don't run environments which need 1000 different VLANs).
In practice there can be significant added security by adding obscurity.
Consider this: a) you run your ssh server on the default port 22. b) you run your ssh server on a different port.
In the a) scenario you get lots of automated break-in attempts every day, with a finite chance of a break in via a lucky guess or a zero-day ssh exploit. With b) you get hardly get break-in attempts on your ssh server, if you ever get one, you might be being targeted and so should take appropriate action (you might even be able to automate the response). Meanwhile the automated attacks won't pwn you even if there's a zero-day in your ssh server.
And MSDOS has had zero remote vulnerabilities in the default install for longer (you can add TCP/IP support to MSDOS, but it's not there by default).
Seriously, the main reason why OpenBSD had few remote vulnerabilities in the default install was because they only had one service running in the default install- e.g. openssh. ( http://en.wikipedia.org/wiki/OpenBSD#Security_and_code_auditing )
If some idiot installed phpnuke/phpbb, apache with an outdated version of the app, php etc, they'd be just as pwned whether they were running OpenBSD, FreeBSD, Ubuntu or Windows.
So such claims are as stupid as Microsoft saying that the default IE on Windows Server 2003/2008 is not vulnerable to XYZ. With the default IE, javascript doesn't run on most sites, you can't download practically anything, you get warnings on almost any webpage. Who really uses IE in its default config on Windows Server 2003/2008? I normally reconfigure it so that I can download another browser;).
I look on suspicion on anyone making such claims.
Now if on the other hand you had an operating system which tracked where input/output came from e.g. untrusted NIC vs trusted NIC, then all processes, threads etc launched and any resulting communications would be "tainted", and tainted processes would be unable to do certain things unless the communications was "untainted" via a special processes, then things would be much harder for attackers but they might be much harder for developers as well (debugging why an app failed could be harder;) ). Which is probably why such operating systems aren't popular;).
Of course even if you go through all that trouble, if there are bugs the attacker might still be able to break out. But the difference is if the system actually works, you get an extra layer of protection even if there are bugs in the applications.
I don't think anybody in their right mind believes that the process (review, oversight etc) guarantees justice.
If you're so confident the courts etc will "sign off" on this then why doesn't the Gov just make a good show of the "due process"?
If you're a US citizen this should trouble you. As for the rest of the world, I daresay most of us already distrust the US Gov. US citizens may also distrust the US Gov, but if the Gov at least pretended to regard that "piece of paper" and etc highly, they'd at least have to work harder to screw you all.
You keep letting them get away with ignoring the "piece of paper" and "due process", you'd be in trouble.
Having your day in kangaroo court is still better than being assassinated/executed at any convenient time.
Why don't they post it complete online after all this publicity? I'm sure one of those OCD bunch will translate it so it's stylistically consistent, uses proper grammar etc.
Some of those manga/anime apparently have very well done fan translations.
If their stuff isn't as good as the already existing equivalent stuff in English I don't see the point of spending time much less money on translating their book.
Not for everyone though. My boss got a Macbook Air then gave it away because he just couldn't get used to OSX, the keyboard etc ( e.g. lack of a delete key). My colleague in front of me has a Mac that mainly runs Windows 7:).
I don't like OSX nor Macs myself (takes too much effort to use if I want to keep 30+ windows open[1]), but I know lots of people do and OSX+Macs work well for their workflow. Different strokes for different folks etc.
At work I've got a Macbook with OSX in front of me. I use it mostly via ssh, and mainly use a Dell with Windows 7.
However I'm not sure what will happen in a few years - Microsoft seems to be losing the plot. Might be as stupid as McDonalds switching focus to doughnuts just because they notice Krispy Kreme suddenly doing better than them.
[1] I don't see the point of wasting time closing and relaunching applications and windows if the machine has enough RAM to keep them open, and I can still mentally keep track of them. Any crappy GUI can manage 3 windows with elegance, to me what's important is how the OS helps you when you have 30 or more windows.
Anyone have any experience with dealextreme? They seem to be doing a similar concept to newegg. They claim free shipping. How does that work? International?
In my opinion the portable stuff will get smaller and the mass extinction will be there - nobody is going to many portable devices. Stuff like the handheld game machines will vanish. Eventually phones, tablets, netbooks etc may vanish if enough people have brain-augmentation computers. Then people will have "virtual telepathy", "virtual savant apps", virtual eidetic memory (subject to **AA constraints - a penny for their thoughts and other copyrighted material]1]).
BUT nonportable computers will be around so that the "virtual telekinesis" and other "technological magic" works in homes, offices, restaurants, hotels etc. Because something has to stick around to control the lights, video wall, provide local/area/location info, menus, jukebox, etc.
[1] Copyright law might actually put a significant restriction/limit on how good things can get.
Slashdot Mirror
Make sure you get a recent F150 though.
VW bug:
http://www.youtube.com/watch?v=YRbwTutw-Hk
Old F150 (2003
http://www.youtube.com/watch?v=_i5EmJBaGeQ
Newer:
http://www.youtube.com/watch?v=1LkAzt_0qIg
http://www.youtube.com/watch?v=gKv_NWtxWbw
Safer to drive a modern car than a VW beetle (or old F150 ;) ). So things have got better.
You're a girl scout too??? ;)
On at least one version of suse linux if you add/remove a network interface (or other hardware) the OS launches some stuff (PnP etc).
:).
That's fine if you just add one NIC. We had to disable that stuff when we added/removed 1000 VLAN NICs
It doesn't have to be a great movie to make lots of money. Take Avatar as an example.
You'd have thought that by now Hollywood would have figured out what sells and just kept churning out what people want to buy. But no, they often seem to have a hidden agenda and intentionally make movies for other reasons.
Pixar seems to know what people want: http://en.wikipedia.org/wiki/List_of_Pixar_films
Not if they don't produce anything. If they don't make anything (except lawsuits), they don't infringe on any patents.
lot of programs are also using datafiles in an abstract format that require extensive parsing before usage. (Like XML or other text based configuration files.)
This makes it hard to transition into XIP-system where loading is something that doesn't happen
Configuration files aren't going away, and I don't see why you think they are a problem. There are good reasons why they exist and a new form of memory does not remove those reasons.
One man's impedance mismatch is another man's layer of abstraction.
The other explanation is they were hoping the trader would make money, in which case everyone would share the profits etc.
He lost money so he's a rogue trader.
Then I don't know why more hackers haven't done the fancy C&C stuff. Maybe they didn't need to yet?
Anyway it definitely isn't hard to do. Even I could do it. At work, one of our products has windows, linux/OSX/AIX/Solaris agents that communicate with a central server, but we're in the legit business so we are unlikely to need such C&C stuff. From my experience creating and fixing such agents (I didn't create the windows ones) it's much easier to do such stuff in perl than vbscript or C/C++. I'd gladly replace the windows agent with a bundled perl version if I could get it to be smaller than 1MB (it'll be at least 4MB).
Pwning linux devices/servers isn't that hard in practice. LAMP servers get pwned/defaced very often too (some say most often: http://antiphishing.com/reports/apwg_web_vulberabilities_survey_june_2011.pdf ). linux embedded routers do get pwned ( http://www.theregister.co.uk/2011/03/10/router_rooting_malware/ ). This sort of thing just doesn't become big news.
Android is more a "java" sort of environment (no perl by default), until the user "roots" it. IIRC some rooted phones end up with an "open" sshd. Some users didn't set passwords and then complained that hackers were slowing their phones down. I think the automated hacks and payload worked on the assumption the victim machine would be more powerful than a phone (and had better internet connections). Doubt that worked so well ;).
Android phones do seem to have more malware than iPhones. Example: http://www.androidpolice.com/2011/03/01/the-mother-of-all-android-malware-has-arrived-stolen-apps-released-to-the-market-that-root-your-phone-steal-your-data-and-open-backdoor/
http://www.msnbc.msn.com/id/41867328/ns/technology_and_science-security/t/malware-infects-more-android-apps/
http://www.informationweek.com/news/security/mobile/231300257
This new malware might be a sign that the hackers are starting to need to do more fancy stuff, or someone got bored and decided to do the fancy stuff :).
Because not enough people have moved to Linux and OSX.
The malware authors are thus stuck with crap like vbscript or building executables that can't be too big for bandwidth reasons.
Think of what malware authors could do if they could use perl, python and all the cool stuff.
They could have innocuous scripts that through "bugs" end up becoming malware that use search engines and other sites to search the internet for new instructions (checking the signatures to ensure the instructions are from the right source).
Perhaps he wasn't as hated as Carly? ;)
That said, he was a minimalist: http://www.flickr.com/photos/pacman3000/4042368287/
Even his car didn't have license plates... ;)
He's not a pioneer in locking people in. Many companies have done it, and will continue to try to do it.
:).
;).
He's probably a pioneer in locking people in AND having them intensely love it (maybe even have a religious[1] experience out of it ).
Many like this bondage and submission thing, but not everyone does, so as long as enough companies don't do it, the rest of us should be fine
[1] I wonder how many say they hate religion but follow the cult of Jobs/Apple
Compare Apple with Jobs and Apple with Scully. The engineers and technicians were about the same.
The difference is Jobs has taste. He at least has some clue of what is good, what is not and what is insanely great.
When 800 engineers come up with ideas, who decides which ideas to bet the company's money on? Who decides to tell the engineers "your ideas suck, give me insanely great ideas" AND is often RIGHT when he does it?
Look at Nokia if you want a company that does 800 different ideas.
Apparently[1] this video was made by Microsoft people: http://www.youtube.com/watch?v=aeXAcwriid0
Assuming that's true, the people who did that video know their stuff and could probably do "Apple style" packaging. So guess why Microsoft packaging still looks the way it does? The people at the top matter a lot.
[1] http://www.ipodobserver.com/ipo/article/Microsoft_Confirms_it_Originated_iPod_Box_Parody_Video/
By "Modern" standards, their rubbish/excrement pile would also be art.
Well his escape tips might not work 100%. For example:
That means making sure you have the tech expertise in house to solve your own problems, going with open source to avoid vendor lock-in
The last I checked, Reiserfs had vendor lock-in ;).
Seriously though, not everyone can afford to have sufficient tech expertise in-house to fix say xorg or the linux sound system. Or network performance issues when you have 1000 vlan interfaces (issues which the kernel devs may not bother fixing since they don't run environments which need 1000 different VLANs).
In practice there can be significant added security by adding obscurity.
Consider this:
a) you run your ssh server on the default port 22.
b) you run your ssh server on a different port.
In the a) scenario you get lots of automated break-in attempts every day, with a finite chance of a break in via a lucky guess or a zero-day ssh exploit.
With b) you get hardly get break-in attempts on your ssh server, if you ever get one, you might be being targeted and so should take appropriate action (you might even be able to automate the response). Meanwhile the automated attacks won't pwn you even if there's a zero-day in your ssh server.
And MSDOS has had zero remote vulnerabilities in the default install for longer (you can add TCP/IP support to MSDOS, but it's not there by default).
;).
;) ). Which is probably why such operating systems aren't popular ;).
Seriously, the main reason why OpenBSD had few remote vulnerabilities in the default install was because they only had one service running in the default install- e.g. openssh. ( http://en.wikipedia.org/wiki/OpenBSD#Security_and_code_auditing )
If some idiot installed phpnuke/phpbb, apache with an outdated version of the app, php etc, they'd be just as pwned whether they were running OpenBSD, FreeBSD, Ubuntu or Windows.
So such claims are as stupid as Microsoft saying that the default IE on Windows Server 2003/2008 is not vulnerable to XYZ. With the default IE, javascript doesn't run on most sites, you can't download practically anything, you get warnings on almost any webpage. Who really uses IE in its default config on Windows Server 2003/2008? I normally reconfigure it so that I can download another browser
I look on suspicion on anyone making such claims.
Now if on the other hand you had an operating system which tracked where input/output came from e.g. untrusted NIC vs trusted NIC, then all processes, threads etc launched and any resulting communications would be "tainted", and tainted processes would be unable to do certain things unless the communications was "untainted" via a special processes, then things would be much harder for attackers but they might be much harder for developers as well (debugging why an app failed could be harder
Of course even if you go through all that trouble, if there are bugs the attacker might still be able to break out. But the difference is if the system actually works, you get an extra layer of protection even if there are bugs in the applications.
I don't think anybody in their right mind believes that the process (review, oversight etc) guarantees justice.
If you're so confident the courts etc will "sign off" on this then why doesn't the Gov just make a good show of the "due process"?
If you're a US citizen this should trouble you. As for the rest of the world, I daresay most of us already distrust the US Gov. US citizens may also distrust the US Gov, but if the Gov at least pretended to regard that "piece of paper" and etc highly, they'd at least have to work harder to screw you all.
You keep letting them get away with ignoring the "piece of paper" and "due process", you'd be in trouble.
Having your day in kangaroo court is still better than being assassinated/executed at any convenient time.
Why don't they post it complete online after all this publicity? I'm sure one of those OCD bunch will translate it so it's stylistically consistent, uses proper grammar etc.
Some of those manga/anime apparently have very well done fan translations.
If their stuff isn't as good as the already existing equivalent stuff in English I don't see the point of spending time much less money on translating their book.
Not for everyone though. My boss got a Macbook Air then gave it away because he just couldn't get used to OSX, the keyboard etc ( e.g. lack of a delete key). My colleague in front of me has a Mac that mainly runs Windows 7 :).
I don't like OSX nor Macs myself (takes too much effort to use if I want to keep 30+ windows open[1]), but I know lots of people do and OSX+Macs work well for their workflow. Different strokes for different folks etc.
At work I've got a Macbook with OSX in front of me. I use it mostly via ssh, and mainly use a Dell with Windows 7.
However I'm not sure what will happen in a few years - Microsoft seems to be losing the plot. Might be as stupid as McDonalds switching focus to doughnuts just because they notice Krispy Kreme suddenly doing better than them.
[1] I don't see the point of wasting time closing and relaunching applications and windows if the machine has enough RAM to keep them open, and I can still mentally keep track of them. Any crappy GUI can manage 3 windows with elegance, to me what's important is how the OS helps you when you have 30 or more windows.
Many "Japanese" cars are made in the USA: http://www.cars.com/go/advice/Story.jsp?section=top&subject=ami&story=amMade0611
They are still reasonably affordable.
In some countries there are tax incentives for the workers:
http://mystarjob.com/articles/story.aspx?file=/2010/10/29/mystarjob_news/20101029162452&sec=mystarjob_news
This one is only for foreigners, but that's often the same for tax breaks for companies.
There may be roads on your way to work. But not all wars are fought on roads and flat terrain.
Why do you think the dept of defense wants stuff like this robot?
What if Samsung only sues those who sue them? Would that meet the 3G "Reasonable and Non-Discriminatory" requirements?
Never knew they sold rice cookers.
Anyone have any experience with dealextreme? They seem to be doing a similar concept to newegg. They claim free shipping. How does that work? International?
In my opinion the portable stuff will get smaller and the mass extinction will be there - nobody is going to many portable devices. Stuff like the handheld game machines will vanish. Eventually phones, tablets, netbooks etc may vanish if enough people have brain-augmentation computers. Then people will have "virtual telepathy", "virtual savant apps", virtual eidetic memory (subject to **AA constraints - a penny for their thoughts and other copyrighted material]1]).
BUT nonportable computers will be around so that the "virtual telekinesis" and other "technological magic" works in homes, offices, restaurants, hotels etc. Because something has to stick around to control the lights, video wall, provide local/area/location info, menus, jukebox, etc.
[1] Copyright law might actually put a significant restriction/limit on how good things can get.