The problem with this bug is that they can tell where you're going next, regardless of whether you click a link, use a bookmark, or type the URL in yourself.
eBay bought out a similar service a while ago, the only 'competition' to PayPal. But obviously PayPal was the big name, so now they're buying them too. Its not a done deal, though, since there are various regulatory hurdles, etc.
I was kidding about admins keeping their sites updated. Once software is released it still needs to go through rigorous testing. Hopefully they have a good method for making sure that everything does work and for handling problems such as this. At least this problem is easier to fix than most IIS bugs.
Apache 2.0.40 was released August 9th, fixing the hole. You can read the advisory, but you should have upgraded already. The real news is that many Apache web servers are still unpatched. Won't admin's ever learn?
I've been forwarding stuff to uce@ftc.gov for several years. When one of my email addresses became overspammed, I just set it to auto-forward to uce@ftc.gov. You have to turn on full headers and all that so depending on your mail program, it might be more trouble than it is worth.
Now that I use Sneakemail, I worry a lot less. So far, all those sites where I was worried they'd sell my address haven't done so. Occasionally one will crawl through Mozilla's Bugzilla, but not a lot so far. Just because the FTC is collecting Unsolicited Commercial Email doesn't mean they're going to do a lot about it. They're mostly going after the big cases of fraud and pyramid schemes. Its the people that are willing to pay $60 for a bottle of water that will cure all that ails them that are the problem.
How about a hardware compatibility list. I would expect something like that straight off of kernel.org. Why should I search through message boards to see if someone was able to get my ethernet card to work, or search through changelogs.
Right. But the problem is corporate networks that are supposed to be secure. Or home networks that don't want people sniffing their traffic and intercepting their porn.
Are we going to have an announcement for every point release of Mozilla? Yes, they've done great things, and I install the latest nightly build almost once a week, but there are still a dozen bugs reported every day. 1.0 was "the thing to reach." Now that Mozilla has matured so much, its time to move on to a new topic.
I still don't see how this is any different than DeCSS. Except this is a company in Russia instead of an individual in Norway. "Software users are entitled by Russian law to make backup copies of software and electronic documents, exactly what the eBook processor allows owners of Adobe eBooks to do." Why have the courts been so stubborn over DeCSS?
Having reinstalled Windows many times, I know what makes it better for me: automatic hardware detection. Most of the right drivers and all that gets me up and running fast. It can be pretty easy to create an unattended installation as well.
That second link is to a 1998 news article for something that was supposed to be in effect in 2000. Look how far we've come. The closest we can get to a 'universal' box would be to get a tivo from your cable company. Conceptually, I don't see how this would be bad for the consumer. If you switch cable providers you don't have to return your leased box. Heck, you don't even have to pay a monthly leasing fee because you can buy one for the long haul.
This will also help push out those interactive features so many people want. Well, someone wants.
"Nearly 500 government and private-sector groups have toiled on the project since its 1997 inception."
Obviously the DRM issue has yet to be settled as well.
Yes, reciprical compensation had a fundamental flaw. But in the carrier access systems world, there's a lot of 'bill the other guy' going around. When a person makes a long distance call, everyone along the way gets their share. The local phone company where the call originates, the long distance company in the middle, and the local phone company on whom the call terminates all have capital expenditures to cover. Not to mention the wireless networks.
Recip Comp was supposed to balance out. Instead startups tried to take advantage of it. In a move of pure greed, they went for the quick buck and ignore the intent of the law. But then the bubble burst and they had no solid business plan. And now many of those little telecoms have gone bankrupt. There are a LOT of bankrupt little telecoms now.
If you're paranoid, they'll give you a mylar storage bag for free. Otherwise, the serial numbers will be encrpyted and seperate from the data. Not only that, but "All record of serials numbers stored in electronic files will be destroyed daily, leaving only general averages and patterns for later study," Berman said.
The real problem comes from them gathering their own lists. If the marketing were opt-in, think of how little they'd actually send. But its greed that keeps them going.
The whole point of the test, and I say this without reading the article, was that with these codecs, you don't have to code at higher bitrates any more.
The XML file is so that it makes sure you have the latest patches. Is that such a problem for you? Of course you should be an administrator to run this tool, you're about to lock down everyone other than the administrator and set permissions on objects. Only a non-admin would run it to look to see if there was something they could exploit.
I've already used this on a few Windows2000 machines. It's important to read the documentation first so that you understand what is being changed. There will be some items you'll probably want to go back and change. At the time of the release, they only had a Level 1 template. Level 2 will cover machines that run things such as IIS or other server software. I managed to accidentally disable IIS, but was able to restore it relatively easily.
Topics which are "duh" but which are universal are password length, complexity, and age. Next step is to shut off unnecessary services. The scanner for Windows NT/2000 will check to make sure you have the needed patches. If you don't, it will give you URL's of where to find them.
"Eleven of the 45 companies that build passenger cars worldwide already use some kind of black-box technology, according to representatives of the IEEE. The best-known of those is General Motors Corp., which said three years ago that it includes the device, known as a sensing and diagnostics module, as part of its airbag sensing systems on most GM vehicles. The module can store such information as engine speed, vehicle speed, airbag deployment, seat belt deployment and the state of the brakes before and during an accident. "
Its just a reminder. Its already standard practice at companies like that to verify information of the callers. Just like the police normally patrol the streets, reminders go out when they think people need to be extra cautious.
Slashdot Mirror
The problem with this bug is that they can tell where you're going next, regardless of whether you click a link, use a bookmark, or type the URL in yourself.
Now what about all the porn being traded online. We're talking 200 MB files of people gettin it on. Has Vivid been suing?
eBay bought out a similar service a while ago, the only 'competition' to PayPal. But obviously PayPal was the big name, so now they're buying them too. Its not a done deal, though, since there are various regulatory hurdles, etc.
I was kidding about admins keeping their sites updated. Once software is released it still needs to go through rigorous testing. Hopefully they have a good method for making sure that everything does work and for handling problems such as this. At least this problem is easier to fix than most IIS bugs.
Apache 2.0.40 was released August 9th, fixing the hole. You can read the advisory, but you should have upgraded already. The real news is that many Apache web servers are still unpatched. Won't admin's ever learn?
Now that I use Sneakemail, I worry a lot less. So far, all those sites where I was worried they'd sell my address haven't done so. Occasionally one will crawl through Mozilla's Bugzilla, but not a lot so far. Just because the FTC is collecting Unsolicited Commercial Email doesn't mean they're going to do a lot about it. They're mostly going after the big cases of fraud and pyramid schemes. Its the people that are willing to pay $60 for a bottle of water that will cure all that ails them that are the problem.
How about a hardware compatibility list. I would expect something like that straight off of kernel.org. Why should I search through message boards to see if someone was able to get my ethernet card to work, or search through changelogs.
Right. But the problem is corporate networks that are supposed to be secure. Or home networks that don't want people sniffing their traffic and intercepting their porn.
Read the postings here.
Are we going to have an announcement for every point release of Mozilla? Yes, they've done great things, and I install the latest nightly build almost once a week, but there are still a dozen bugs reported every day. 1.0 was "the thing to reach." Now that Mozilla has matured so much, its time to move on to a new topic.
I still don't see how this is any different than DeCSS. Except this is a company in Russia instead of an individual in Norway. "Software users are entitled by Russian law to make backup copies of software and electronic documents, exactly what the eBook processor allows owners of Adobe eBooks to do." Why have the courts been so stubborn over DeCSS?
Having reinstalled Windows many times, I know what makes it better for me: automatic hardware detection. Most of the right drivers and all that gets me up and running fast. It can be pretty easy to create an unattended installation as well.
This will also help push out those interactive features so many people want. Well, someone wants.
"Nearly 500 government and private-sector groups have toiled on the project since its 1997 inception."
Obviously the DRM issue has yet to be settled as well.
Recip Comp was supposed to balance out. Instead startups tried to take advantage of it. In a move of pure greed, they went for the quick buck and ignore the intent of the law. But then the bubble burst and they had no solid business plan. And now many of those little telecoms have gone bankrupt. There are a LOT of bankrupt little telecoms now.
I thought one of the stipulations of their settlement with the DOJ was that they wouldn't do that sort of thing any more.
If you're paranoid, they'll give you a mylar storage bag for free. Otherwise, the serial numbers will be encrpyted and seperate from the data. Not only that, but "All record of serials numbers stored in electronic files will be destroyed daily, leaving only general averages and patterns for later study," Berman said.
The real problem comes from them gathering their own lists. If the marketing were opt-in, think of how little they'd actually send. But its greed that keeps them going.
There is an application that creates a wrapper for IE to allow tabs. NetCaptor, however, is trialware.
The whole point of the test, and I say this without reading the article, was that with these codecs, you don't have to code at higher bitrates any more.
The XML file is so that it makes sure you have the latest patches. Is that such a problem for you? Of course you should be an administrator to run this tool, you're about to lock down everyone other than the administrator and set permissions on objects. Only a non-admin would run it to look to see if there was something they could exploit.
I've already used this on a few Windows2000 machines. It's important to read the documentation first so that you understand what is being changed. There will be some items you'll probably want to go back and change. At the time of the release, they only had a Level 1 template. Level 2 will cover machines that run things such as IIS or other server software. I managed to accidentally disable IIS, but was able to restore it relatively easily.
Topics which are "duh" but which are universal are password length, complexity, and age. Next step is to shut off unnecessary services. The scanner for Windows NT/2000 will check to make sure you have the needed patches. If you don't, it will give you URL's of where to find them.
"Eleven of the 45 companies that build passenger cars worldwide already use some kind of black-box technology, according to representatives of the IEEE. The best-known of those is General Motors Corp., which said three years ago that it includes the device, known as a sensing and diagnostics module, as part of its airbag sensing systems on most GM vehicles. The module can store such information as engine speed, vehicle speed, airbag deployment, seat belt deployment and the state of the brakes before and during an accident. "
Why do I have a strong feeling he's just going to use a black marker on an audio cd?
If that judge has an email account, spam it. Send lots of faxes. Send lots of snail mail. Show them what it really feels like.
Its just a reminder. Its already standard practice at companies like that to verify information of the callers. Just like the police normally patrol the streets, reminders go out when they think people need to be extra cautious.