Playing devil's advocate here - LOL, perhaps scientists don't want to believe that they (indirectly) were created by God!
I don't see any reason to disbelieve Darwin. His theories are sensible. What bugs most people, however, is when scientists suddenly start spouting Nietzsche in the guise of Science.
Is this your "How to win friends and influence people?"
The fact is that scientists are just as rabid retards concerning evolution as the id/creationalists are.
They loose objectivity and scream "I AM A STUPID IDIOT" to the masses of people as they intimidate and stick their collective tounge out at the very people who are interested in really understanding it.
I can't argue that having no hw documentation certainly is bad - I worked with 3dfx cards and ported them to the 64 bit Alpha. I encouraged 3dfx to release Voodoo documentation and they eventually did.
I don't think Intel wants to keep the documentation secret - it would have been far simpler for them to simply release the documentations and a firmware than to implement a whole driver.
From what I've read though - concerning 802.11 documentation in general - it seems that different firmware can be used - and this code is designed for military usage with unmodified hardware.
In other words, you can have a DOD certified laptop that is just a consumer laptop with a different firmware.
So, for Intel to release the documentation may reveal some of the DOD specific features that we can guess at but don't actually know about. Perhaps it's a simple matter of revealing what cipher's they've got in there - not sure.
I dunno myself - if I were working on a driver I would _certainly_ prefer to have documentation - but just having working source code is certainly better then Broadcom / ATI / nVidia and their ilk.
To be fair, ATI did publish documentation for many of their cards (up to RV300?) but won't anymore. That's a story for another day!
The issue stems from the fact that the microcontroller for the wireless chip must be matched to the driver version. The firmware is considered part of the hardware and should not be scrutinized in the same way, as say the nVidia or ATI drivers. The design of the hardware does not allow for a flash or ROM of this firmware.
One could write drivers for the firmware based on the open source drivers developed by Intel - unlike ATI or nVidia which does not openly provide documentation for their hardware.
I have no beef with that statement, and it's perfectly valid. It would also lend validity to go through w3c so that valid privacy and security concerns could be addressed fully.
Absolutely - and I really think that bringing these kinds of designs out of the javascript and into attributes(tag or otherwise) is really the way to protect privacy most.
Mostly, because it allows users to lock down javascript more and allow more granular control over inter-website communication. Right now, there's a small amount of obfuscation existing in javascript code. As phischers and con-men move onto the web it is much more important that users are able to meaningfully decide how much javascript controls our experience online.
One, this is in the trunk builds - NOT the released versions.
From a technical POV it's actually nicely thought out, as it separates logically the intended action and the "log."
I'm sure that Google, Yahoo, and others are BEGGING for this. I've worked in Design and Dev at two of the biggest travel sites - it's a huge problem tracking clicks. If we could remove our tracking javascript then users would get a MUCH snappier web site.
But we can't because our advertisers specify that we must have third party click/view audits that "verify" our intended audience numbers.
On the one hand, I know (having designed and built some of the auditing and log analysis systems) that we're tracking every click on our sites. We do use cookies. And the tag would bring it all out in the open instead of buried 3 layers deep in javascript.
But from an individual POV, it's like acknowledging that they really ARE watching me. And I am now consenting to that.
Solution: In my mind, the big(and little) sites could offer users the "option" of using the ping tag for a nicer user experience. It would be disabled by default, and a web site would have to specifically request and get permission from the user before the browser would "unlock"
Just me $0.02
Re:No , Perl taught you data structures.
on
What is Perl 6?
·
· Score: 1
At first I was going to post a complete rebuttle - I mean FIVE BUCKS man.. anyway.
Yes, there is a way this could have come down. If I remember correctly, the "protocol involves a command and a parameter. So if you set the length to something like 1, then something like this would happen.
Assuming your commands were implemented in separate functions, and there was a table to reference these functions then when a bad parse, the parser could inadvertantly set the function pointer to the next pointer with a stack corruption.
So, say you have a var c which is the command lookup reference. And a var f, which is the function pointer which will be called - what could happen is something like this
void *p = pointer to next byte in WMF file void * ft[] = array of pointers to functions c = integer command lookup, which references the array ft *f = the function pointer pulled from ft, at index c
So, if c becomes -1, then it would actually pull from *p, instead of from the ft array. In other words something like this:
// c is -1, OOPS!! f = ft[c]
When you then call f you will jump into *p instead. There could be some extra semantics which cause a new thread to be called - more stack fun basically.
Those were probably just EPROM chips. They can be erased using UV light. A lot of the old 8 bit machines used them, even some of the 16 bitters. You'd usually see a little round sticker on them with a version number.
Sometimes there were mixed core chips that had an EPROM next to a CPU as well.
To be fair though, I have seen some non-eprom chips with the window on just because it looks cool.
Well, I admin'd a credit card server and web server farm that processed 1.5 Billion in transactions each year. There are no such requirements as it was well known that we would simply eat the cost of most fraud we didn't catch. The only actual requirement was that we gathered the customer information and properly followed the processor's format as we wrote and maintained our own interface software.
That's so cool.. I actually had that idea about 10 years ago when I first starting playing with mpeg. Unfortunately, the cost of data links then would of killed the idea for retail.
LOL, reminds me of a joke I heard about the bridge. It'll never hold up because it'll contain more mafia enemies than cement. It'll be like swiss cheese.
Yeah, this is GREAT crypto guys! I have to disagree, as there's plenty to be said here.
From TI: using National Institute of Standards and Technology (NIST) approved crypto algorithms, including Triple DES and SHA-1
Ok, my limited crypto background says that TDES and SHA1 are headed towards the junkyard. Not that it's trivial to brute force these guys - but there are some SERIOUS questions on the long term usage of these algorithms.
To wit: A system built on these algorithms should not expect security beyond a few years. It's not computationally worth it NOW, but perhaps in 5 years it may be trivial to breach.
AES is much more secure and faster than TDES. It is more complicated circuit wise, but certainly doable. Additionally, the SHA1 algorithm is under heavy scrutiny now, and short plain text lengths may have heavy collisions with other viable texts. Remains to be seen.
Reguardless, if I were developing a system for the next 10-20 years I would certainly aim a little higher than TDES - just my 2 cents.
Pan
Re:New Tech?
on
Pornified
·
· Score: 4, Insightful
How about the book? It well known that pornography was a problem expanded by the print press as early as 1688. The printer that published Isaac Newton was among the first to be charged.
No.. actually, it does make a difference to them. A browser will check for the last update time, and possibly the ETag. If the browser doesn't see a change then it will not request the whole image. This will lower their bandwidth from browsers.
threats of physical violence like a knuckle dragging goon
Yeah, go ahead and compare me to a thug stealing TVs in NOLA.
What's closer to the truth is, they just thought "they would be fine".
Yes, many people thought they would make it through, but those same people had axes and staples.
Even as other people who heeded the warnings and actually evacuated in advance [...] they thought "they would be fine", so they stayed.
You've missed the point entirely - there was NO PLACE TO GO. Some people are poor (a lot of people in Louisiana to be brutally honest), others have duties such as care for the elderly, doctors, family. Others were tourists that COULD NOT GET OUT.
You seem to be completely lacking in reality, assuming that everyone has cash, a car, and a place to stay?
Wake up and smell the coffee bud.. the vast majority of Americans are living paycheck to paycheck, and risking a hurricane may be just as dreadful as being completely broke.. they both lead to the homeless shelter.
I'm tired of smart comments like this that have no sympathy - nay even empathy for suffering people.
What if they lived at the WTC, and it cost money to get out? What if their mom lived there and was on dialysis? What if you couldn't drive a car? What if you worked for the city and were expected to stay? What if you were a paraplegic? What if you used your brain?
"What if" type questions are useless here.. stop arguing and start helping. My whole point was to say that FEMA and the national guard bugged out and people are dying because of it.
It's up to us to save what little humanity the survivors will have when/if they get out of there.
1. These people, if they were able, probably DID put aside food and water. Which is now trapped under 9-20 feet of water in their houses.
2. There is only 1 road out of New orleans right now, and it's DANGEROUS to walk around. It's also on the opposite side of the most affected parts of the city. Put another way.. would you stroll through this with your kids? I'd wait for an escort with guns, thank you.
3. It is essential to get people moved out within 48-72 hours of a disaster. After that, the shock of loosing everything you own wears out and you go into survival mode.
3. These buses are driving right past thousands of people. Today was the first day that any serious evacuation was happening.
I'm not excusing the behaviour of NOLA people - but I understand it. There's looting, rape and murder happening - at the shelters. 60% of the NOLA police force quite because there's no command/control.
Most people got clean WATER for the first time since Monday. Even at the Superdome.
If I were FEMA last Tuesday: 1. Get school busses and get accessible people out now. Sort them somewhere else and reduce the need to ship in food. There should be armed escorts getting these people out. They should be swathing the city eastward so they can make effective use of the manpower instead of diluting it.
2. Evacuate all hospitals. Call in every ambulance you can and fly them out of Baton Rouge.
3. Air-drop food and water all over the city. Hell, have the coast guard drop food around as they're going to rescue survivors. It took 4 days to get those "tons and tons" into the city.
They didn't do that. Instead they: 1. Advised everyone to gather at central locations.. and instantly had supply issues because there's only one friggin road into town.
2. They thought they could fix a 500' levee of MOVING water in 24 hours. Huh?
3. The advised people to evacuate, but didn't coordinate escorts with the National Guard they had.
4. The police were overwhelmed. Many of them didn't even hear that they were under martial law! The city government left town leaving people with no knowledge of the city to coordinate the effort.
It's just totally wrong. Even an 8 year old could figure it out. If you've got limited access you're not going to be able to provide needed services.
FEMA gets billions of dollars to figure this out and completely botched it. Now they're complaining that people are shooting at them, which is wrong, but these people are mentally in survivor mode and if you don't have food or water then you don't matter.
Slashdot Mirror
Playing devil's advocate here - LOL, perhaps scientists don't want to believe that they (indirectly) were created by God!
I don't see any reason to disbelieve Darwin. His theories are sensible. What bugs most people, however, is when scientists suddenly start spouting Nietzsche in the guise of Science.
Is this your "How to win friends and influence people?"
The fact is that scientists are just as rabid retards concerning evolution as the id/creationalists are.
They loose objectivity and scream "I AM A STUPID IDIOT" to the masses of people as they intimidate and stick their collective tounge out at the very people who are interested in really understanding it.
I can't argue that having no hw documentation certainly is bad - I worked with 3dfx cards and ported them to the 64 bit Alpha. I encouraged 3dfx to release Voodoo documentation and they eventually did.
I don't think Intel wants to keep the documentation secret - it would have been far simpler for them to simply release the documentations and a firmware than to implement a whole driver.
From what I've read though - concerning 802.11 documentation in general - it seems that different firmware can be used - and this code is designed for military usage with unmodified hardware.
In other words, you can have a DOD certified laptop that is just a consumer laptop with a different firmware.
So, for Intel to release the documentation may reveal some of the DOD specific features that we can guess at but don't actually know about. Perhaps it's a simple matter of revealing what cipher's they've got in there - not sure.
I dunno myself - if I were working on a driver I would _certainly_ prefer to have documentation - but just having working source code is certainly better then Broadcom / ATI / nVidia and their ilk.
To be fair, ATI did publish documentation for many of their cards (up to RV300?) but won't anymore. That's a story for another day!
Curious - but why is this a problem?
The issue stems from the fact that the microcontroller for the wireless chip must be matched to the driver version. The firmware is considered part of the hardware and should not be scrutinized in the same way, as say the nVidia or ATI drivers. The design of the hardware does not allow for a flash or ROM of this firmware.
The firmware is redistributable and can be included in distributions, so it's not bad for the users.
One could write drivers for the firmware based on the open source drivers developed by Intel - unlike ATI or nVidia which does not openly provide documentation for their hardware.
Just my $ 0.02
I can see your point, but really this is quite different from ActiveX - which is native executable code and could be anything.
The point is that we move javascript "cross-site" scripting into an attribute which is now user controlled instead of enable/disable Javascript.
I have no beef with that statement, and it's perfectly valid. It would also lend validity to go through w3c so that valid privacy and security concerns could be addressed fully.
Absolutely - and I really think that bringing these kinds of designs out of the javascript and into attributes(tag or otherwise) is really the way to protect privacy most.
Mostly, because it allows users to lock down javascript more and allow more granular control over inter-website communication. Right now, there's a small amount of obfuscation existing in javascript code. As phischers and con-men move onto the web it is much more important that users are able to meaningfully decide how much javascript controls our experience online.
One, this is in the trunk builds - NOT the released versions.
From a technical POV it's actually nicely thought out, as it separates logically the intended action and the "log."
I'm sure that Google, Yahoo, and others are BEGGING for this. I've worked in Design and Dev at two of the biggest travel sites - it's a huge problem tracking clicks. If we could remove our tracking javascript then users would get a MUCH snappier web site.
But we can't because our advertisers specify that we must have third party click/view audits that "verify" our intended audience numbers.
On the one hand, I know (having designed and built some of the auditing and log analysis systems) that we're tracking every click on our sites. We do use cookies. And the tag would bring it all out in the open instead of buried 3 layers deep in javascript.
But from an individual POV, it's like acknowledging that they really ARE watching me. And I am now consenting to that.
Solution: In my mind, the big(and little) sites could offer users the "option" of using the ping tag for a nicer user experience. It would be disabled by default, and a web site would have to specifically request and get permission from the user before the browser would "unlock"
Just me $0.02
Sir, I knew Bjorn ...
and YOUR no Bjorn!
(yes, no apostrophe)
~pan
At first I was going to post a complete rebuttle - I mean FIVE BUCKS man.. anyway.
// c is -1, OOPS!!
Yes, there is a way this could have come down. If I remember correctly, the "protocol involves a command and a parameter. So if you set the length to something like 1, then something like this would happen.
Assuming your commands were implemented in separate functions, and there was a table to reference these functions then when a bad parse, the parser could inadvertantly set the function pointer to the next pointer with a stack corruption.
So, say you have a var c which is the command lookup reference. And a var f, which is the function pointer which will be called - what could happen is something like this
void *p = pointer to next byte in WMF file
void * ft[] = array of pointers to functions
c = integer command lookup, which references the array ft
*f = the function pointer pulled from ft, at index c
So, if c becomes -1, then it would actually pull from *p, instead of from the ft array. In other words something like this:
f = ft[c]
When you then call f you will jump into *p instead. There could be some extra semantics which cause a new thread to be called - more stack fun basically.
-Pan
Those were probably just EPROM chips. They can be erased using UV light. A lot of the old 8 bit machines used them, even some of the 16 bitters. You'd usually see a little round sticker on them with a version number.
Sometimes there were mixed core chips that had an EPROM next to a CPU as well.
To be fair though, I have seen some non-eprom chips with the window on just because it looks cool.
Well, I admin'd a credit card server and web server farm that processed 1.5 Billion in transactions each year. There are no such requirements as it was well known that we would simply eat the cost of most fraud we didn't catch. The only actual requirement was that we gathered the customer information and properly followed the processor's format as we wrote and maintained our own interface software.
Google Earth, probably among other reasons.
That's so cool.. I actually had that idea about 10 years ago when I first starting playing with mpeg. Unfortunately, the cost of data links then would of killed the idea for retail.
Glad to see somebody finally did it!
-Pan
LOL, reminds me of a joke I heard about the bridge. It'll never hold up because it'll contain more mafia enemies than cement. It'll be like swiss cheese.
Pan
Listen, if you're Boss is driving you crazy - then the money is NOT worth it.
Pan
Forgot my source for the crypto info. First item listed is "New ISO 14443 Solution for MasterCard PayPass(TM)"
Yeah, this is GREAT crypto guys! I have to disagree, as there's plenty to be said here.
From TI:
using National Institute of Standards and Technology (NIST) approved crypto algorithms, including Triple DES and SHA-1
Ok, my limited crypto background says that TDES and SHA1 are headed towards the junkyard. Not that it's trivial to brute force these guys - but there are some SERIOUS questions on the long term usage of these algorithms.
To wit: A system built on these algorithms should not expect security beyond a few years. It's not computationally worth it NOW, but perhaps in 5 years it may be trivial to breach.
AES is much more secure and faster than TDES. It is more complicated circuit wise, but certainly doable. Additionally, the SHA1 algorithm is under heavy scrutiny now, and short plain text lengths may have heavy collisions with other viable texts. Remains to be seen.
Reguardless, if I were developing a system for the next 10-20 years I would certainly aim a little higher than TDES - just my 2 cents.
Pan
How about the book? It well known that pornography was a problem expanded by the print press as early as 1688. The printer that published Isaac Newton was among the first to be charged.
No.. actually, it does make a difference to them. A browser will check for the last update time, and possibly the ETag. If the browser doesn't see a change then it will not request the whole image. This will lower their bandwidth from browsers.
. html#sec13.3.3
see: http://www.w3.org/Protocols/rfc2616/rfc2616-sec13
And yes, I have written my own web server.
They're not updating the image every second.. would kill them. It seems to be every 10 minutes or something like that.
threats of physical violence like a knuckle dragging goon
Yeah, go ahead and compare me to a thug stealing TVs in NOLA.
What's closer to the truth is, they just thought "they would be fine".
Yes, many people thought they would make it through, but those same people had axes and staples.
Even as other people who heeded the warnings and actually evacuated in advance [...] they thought "they would be fine", so they stayed.
You've missed the point entirely - there was NO PLACE TO GO. Some people are poor (a lot of people in Louisiana to be brutally honest), others have duties such as care for the elderly, doctors, family. Others were tourists that COULD NOT GET OUT.
You seem to be completely lacking in reality, assuming that everyone has cash, a car, and a place to stay?
Wake up and smell the coffee bud.. the vast majority of Americans are living paycheck to paycheck, and risking a hurricane may be just as dreadful as being completely broke.. they both lead to the homeless shelter.
I'm tired of smart comments like this that have no sympathy - nay even empathy for suffering people.
What if they lived at the WTC, and it cost money to get out? What if their mom lived there and was on dialysis? What if you couldn't drive a car? What if you worked for the city and were expected to stay? What if you were a paraplegic? What if you used your brain?
"What if" type questions are useless here.. stop arguing and start helping. My whole point was to say that FEMA and the national guard bugged out and people are dying because of it.
It's up to us to save what little humanity the survivors will have when/if they get out of there.
Pan
You deserve a real big smack man..
1. These people, if they were able, probably DID put aside food and water. Which is now trapped under 9-20 feet of water in their houses.
2. There is only 1 road out of New orleans right now, and it's DANGEROUS to walk around. It's also on the opposite side of the most affected parts of the city. Put another way.. would you stroll through this with your kids? I'd wait for an escort with guns, thank you.
3. It is essential to get people moved out within 48-72 hours of a disaster. After that, the shock of loosing everything you own wears out and you go into survival mode.
3. These buses are driving right past thousands of people. Today was the first day that any serious evacuation was happening.
I'm not excusing the behaviour of NOLA people - but I understand it. There's looting, rape and murder happening - at the shelters. 60% of the NOLA police force quite because there's no command/control.
Most people got clean WATER for the first time since Monday. Even at the Superdome.
If I were FEMA last Tuesday:
1. Get school busses and get accessible people out now. Sort them somewhere else and reduce the need to ship in food. There should be armed escorts getting these people out. They should be swathing the city eastward so they can make effective use of the manpower instead of diluting it.
2. Evacuate all hospitals. Call in every ambulance you can and fly them out of Baton Rouge.
3. Air-drop food and water all over the city. Hell, have the coast guard drop food around as they're going to rescue survivors. It took 4 days to get those "tons and tons" into the city.
They didn't do that. Instead they:
1. Advised everyone to gather at central locations.. and instantly had supply issues because there's only one friggin road into town.
2. They thought they could fix a 500' levee of MOVING water in 24 hours. Huh?
3. The advised people to evacuate, but didn't coordinate escorts with the National Guard they had.
4. The police were overwhelmed. Many of them didn't even hear that they were under martial law! The city government left town leaving people with no knowledge of the city to coordinate the effort.
It's just totally wrong. Even an 8 year old could figure it out. If you've got limited access you're not going to be able to provide needed services.
FEMA gets billions of dollars to figure this out and completely botched it. Now they're complaining that people are shooting at them, which is wrong, but these people are mentally in survivor mode and if you don't have food or water then you don't matter.
They've got 10 days of reserve on hand. Well, 7 now... Heck, it happend in Phoenix two years ago too, without the hurricane.
-Pan