I believe HP was one of the companies affected the most, and I notice they're not listed in these new manufacturers.
From the summary:
, NextWindow, which already supplies HP's market-leading TouchSmart line, and Dell's Studio One
They're not listed as a new one because they've been selling touch screen computers, successfully, for awhile now. The TouchSmart line was introduced in 2007.
You're free to do that with Comcast as well. Here's a list of all their DNS servers by location. It lists primary and secondary DNS servers for the hijacking and non-hijacking servers.
Before I talk about what I've been up to on the WipEout HD Fury expansion pack, I would just like to let you know that the pack will be available from PlayStation Store on Thursday, July 23rd for $9.99.
Just imagine if you could walk into a Radio Shack and have a selection of stuff like what you can get from Digikey and Newegg combined. That would totally kick ass.
Just add a Hackerspace in the back and it would be perfect.
P.S. To any prospective business out there, I, and I'm sure the Anonymous Cowardon above, would be perfectly fine with you stealing this idea and implementing it. It's encouraged.
It's been interesting watching Apple and Google get more negative comments on Slashdot over the last few months (or the last couple of years in Apple's case).
I think the criticism of Apple is partly because of their inherent need to have control, which clashes with a community of geeks who love to hack at things, find non-obvious/non-intended uses for them, and just generally gain more knowledge. That then boils over when, like you said, some Apple fans are so quick to jump on any criticism at all (see: Reality Distortion Field).
Google, on the other hand, has a lot to do with privacy and their enormous databases. I also think that after seeing what happens when one company becomes too big/has too much control (Microsoft), the slashdot crowd is being a lot more vigilant to possible abuses. It seems too many people are quick to implicitly trust and not question anything for no other reason than "It's from Google", which can easily lead to bad things when left unchecked, as it did with Microsoft.
Google Search Appliance is a single purpose server to provide in-house search services. It's basically a search program that happens to come with a server, not a server to be used for anything.
Xserve is a general purpose server. Google only competes with Apple here if your only intention for the Xserve was to implement a custom search engine on it. Even if that were the case, the main selling point for Google in that instance wouldn't be the hardware, but in the performance of their search method compared to your own. As far as I know, Apple doesn't sell their own search algorithm so it still wouldn't be competing with Apple.
It's also something Frank Abagnale did, as noted in his book The Art of the Steal. Link goes to an excerpt from the book, start at the last paragraph on page 118.
Have customers just select a password for each account. Retailers would verify the password the same way they verify CSC numbers now,
Visa and Mastercard have already implemented this option. The only problem is the store has to be capable of handling it, and not all of them are, unfortunately.
The account number is simply placed on the card, and authentication comes from physical ownership of the card. (PINs don't count because they are unfortunately verified based on machine-readable information on the card itself.)
This is wrong. PINs haven't been stored on the card for a long time (I'm not even certain they ever were for all cards). You can easily check this yourself with a relatively cheap reader, or you can buildone yourself.
Not only that but they can make web tools Live/Bing/Hotmail work best with their browser - influencing users of those tools to almost be forced to to use IE.
They've already been bitten by that one. They blocked all browsers except IE from accessing MSN.com. After two days of people making noise about it they let everyone view MSN again.
Did they learn? No. Less than two years later they served a stylesheet to Opera (and only to Opera, other browsers received a working stylesheet and IE had its own) that deliberately broke the display of the page. They served Opera the IE stylesheet, which displayed fine, after some more complaints.
Was that enough for them? No, they tried again with hotmail. They sent Opera an incomplete javascript file that was missing a required function to empty the junk e-mail. Other browsers were sent a different javascript file.
I don't think they'd dare try again with how closely the EU is monitoring them now.
It was 500 billion in Icelandic currency (krona), not 500 billion euro or USD.
According to xe.com:
500,000,000,000.00 ISK = 3,904,722,881.3900 USD
However, the wikileaks summary says "45 million to 1250 million euros". I haven't read the post that the GP links, except to check the currency type, to find out where it gets the 500 billion number.
My goal in making the first edition freely available five years after publication was twofold. First, I wanted to reach the widest possible audience, especially among poor students. Second, I am a pragmatic libertarian on free culture and free software issues; I think that many publishers (especially of music and software) are too defensive of copyright. (My colleague David MacKay found that putting his book on coding theory online actually helped its sales. Book publishers are getting the message faster than the music or software folks.) I expect to put the whole second edition online too in a few years.
I have a hard copy of this, and while I've only read a select few chapters I have to say I enjoy the book. Definitely recommended to anyone who has a interest in any kind of security, be it information security or anything all the way upto securing a nuclear missile.
...people can be logged into iGoogle, and still block adsense and all the other crap they disapprove of.
You are logged into their servers. They don't need all that fancy javascript and other voodoo to track you. They know exactly who you are because you're sitting there screaming it at them. All they need to do is log it straight to your account.
Sure, AdSense on other sites might be blocked but anything you do on their servers while logged in is easily logged on their end.
In a squad of 10 men, on average fewer than three ever fired their weapons in combat. Day in, day out - it did not matter how long they had been soldiers, how many months of combat they had seen, or even that the enemy was about to overrun their position. This was what the highly regarded Brigadier General Samuel Lyman Atwood Marshall, better known as S.L.A. Marshall, or 'Slam,' concluded in a series of military journal articles and in his book, Men Against Fire, about Americaâ(TM)s World War II soldiers. Marshall had been assigned as a military analyst for the U.S. Army in both the Pacific and Europe. The American, he concluded, comes 'from a civilization in which aggression, connected with the taking of life, is prohibited and unacceptable... The fear of aggression has been expressed to him so strongly and absorbed by him so deeply and pervadingly - practically with his mother's milk - that it is part of the normal man's emotional make-up. This is his great handicap when he enters combat. It stays his trigger finger even though he is hardly conscious that it is a restraint upon him.'
For things in plain view. As in things they can see through your windows. For instance, if they see a pound of weed on your passenger seat then it's fair game.
They can't search the inside of your car or make you open the trunk. That is, unless they suspect you of a crime and are going to arrest you or if you let them (which you don't have to). But in that case they won't ask and they'll just search the car while you're handcuffed in the back of the cruiser.
I realize that means nothing when you're dealing with a cop on a power trip that's willing to lie on a final report. It is good to know though when dealing with most cops, especially the one's who can get very demanding and try to intimidate you.
I think my post may make it look like I'm running a *nix variant, but I'm running Windows. My firewall is set to allow any local network connections out of convenience. I hadn't even thought about blocking port 80 before and if I were just starting to use the hosts file to block ad servers that would be the best way. As of now though, I've come to like the logging part (and my firewall wouldn't make as detailed logs) and will be keeping this setup until I grow bored of the logs.
obviously, bittorrent to distribute the resulting set far and wide.
Well they're off to a good start as they're already running a torrent tracker for their Blue Marble image collections...
Off topic, but this quote from their FAQ is refreshing. They should share it with media companies and ISPs
I thought P2P and Filesharing were illegal!
This is a common misconception. BitTorrent, and peer-to-peer (P2P) are protocols, like HTTP and EMail. It is true that they can be used to share files illegally, but the same is true of HTTP. Our use here is legitimate, however, so you should have no need to be concerned.
Indeed. I have a lighttpd instance running on my computer just for this reason. It serves up a single page containing only the following text:
404 - ad fail
And if anyone is wondering why I'm running an HTTP server just for this it's because serving the 404 kills the request much quicker than letting the browser timeout the connection. Lighttpd is very light on resources but also allows me to have access logs, which allows me to get some interesting data. For instance, I split the logs up by month and here are some of the sizes:
June (to date): 2.95 MB with 13,550 lines
May: 2.87 MB with 11,354 entries
April: 2.69 MB with 14,931 entries
I've also written a perl script to import the logs into an SQLite database. Which allows things like:
All hosts blocked with over 1,000 hits (from the aforementioned April to June logs)
req_subd req_domain Total hits
ad doubleclick 14556 www google-analytics 3927 media fastclick 3339 ads adbrite 1920 content pulse360 1692 ad yieldmanager 1158
...people need to shun this circulation for its lack of journalistic integrity.
Considering the response the girl and her family received from the town after the rant was posted, I don't think the people in Coalinga care. If anything, the paper was only reinforced in its decision since it caused such reactions.
The response of the residents reminds of the response in the myspace suicide fiasco and yet no one was even hurt in this instance. All she did was rant about how she hates the town.
I think you might be interested in the Pale Blue Dot picture (so named by Carl Sagan). It's a picture of earth taken by Voyager 1 from 3.7 billion miles away.
Second, there are multiple ways of encrypting the value 1. This is randomized encryption.
Wouldn't he still be able to value of that specific instance of that number? Given enough queries (or if they're able to figure out the data structure) couldn't this expose a lot of data, even if time consuming?
I'm not stating any of this is true, I'm just geniunely curious if it would work like that.
Makes things happen: initiate a chemical reaction
Lets things happen: watch what happens after initiating said chemical reaction
Ask "What the hell just happened?" when something unexpected happens and then they try to find out.
You are aware that both the examples you give (google front page and slashdot) both render with javascript off, right? They function as well. The javascript just adds more, it's not spitting out the main content.
Javascript should not be creating the main content on your site unless it's a "web application", and even then a lot of applications should still be able to produce something usable.
Slashdot Mirror
I believe HP was one of the companies affected the most, and I notice they're not listed in these new manufacturers.
From the summary:
, NextWindow, which already supplies HP's market-leading TouchSmart line, and Dell's Studio One
They're not listed as a new one because they've been selling touch screen computers, successfully, for awhile now. The TouchSmart line was introduced in 2007.
You're free to do that with Comcast as well. Here's a list of all their DNS servers by location. It lists primary and secondary DNS servers for the hijacking and non-hijacking servers.
Providing free patches, partially funded by advertising revenue to you is not.
It's not free, nor was the original game. Wipeout HD is $19.99 and the expansion is $9.99. So these people are paying $30 for this nice new "feature".
Quote from http://blog.us.playstation.com/2009/07/17/wipeout-fury-developer-diary-new-game-modes/
Before I talk about what I've been up to on the WipEout HD Fury expansion pack, I would just like to let you know that the pack will be available from PlayStation Store on Thursday, July 23rd for $9.99.
Just imagine if you could walk into a Radio Shack and have a selection of stuff like what you can get from Digikey and Newegg combined. That would totally kick ass.
Just add a Hackerspace in the back and it would be perfect.
P.S. To any prospective business out there, I, and I'm sure the Anonymous Cowardon above, would be perfectly fine with you stealing this idea and implementing it. It's encouraged.
It's been interesting watching Apple and Google get more negative comments on Slashdot over the last few months (or the last couple of years in Apple's case).
I think the criticism of Apple is partly because of their inherent need to have control, which clashes with a community of geeks who love to hack at things, find non-obvious/non-intended uses for them, and just generally gain more knowledge. That then boils over when, like you said, some Apple fans are so quick to jump on any criticism at all (see: Reality Distortion Field).
Google, on the other hand, has a lot to do with privacy and their enormous databases. I also think that after seeing what happens when one company becomes too big/has too much control (Microsoft), the slashdot crowd is being a lot more vigilant to possible abuses. It seems too many people are quick to implicitly trust and not question anything for no other reason than "It's from Google", which can easily lead to bad things when left unchecked, as it did with Microsoft.
Google Search Appliance is a single purpose server to provide in-house search services. It's basically a search program that happens to come with a server, not a server to be used for anything.
Xserve is a general purpose server. Google only competes with Apple here if your only intention for the Xserve was to implement a custom search engine on it. Even if that were the case, the main selling point for Google in that instance wouldn't be the hardware, but in the performance of their search method compared to your own. As far as I know, Apple doesn't sell their own search algorithm so it still wouldn't be competing with Apple.
It's also something Frank Abagnale did, as noted in his book The Art of the Steal . Link goes to an excerpt from the book, start at the last paragraph on page 118.
Have customers just select a password for each account. Retailers would verify the password the same way they verify CSC numbers now,
Visa and Mastercard have already implemented this option. The only problem is the store has to be capable of handling it, and not all of them are, unfortunately.
https://usa.visa.com/personal/security/vbv/index.html?ep=v_sym_verified
http://www.mastercard.com/us/personal/en/cardholderservices/securecode/index.html
The account number is simply placed on the card, and authentication comes from physical ownership of the card. (PINs don't count because they are unfortunately verified based on machine-readable information on the card itself.)
This is wrong. PINs haven't been stored on the card for a long time (I'm not even certain they ever were for all cards). You can easily check this yourself with a relatively cheap reader, or you can build one yourself.
Not only that but they can make web tools Live/Bing/Hotmail work best with their browser - influencing users of those tools to almost be forced to to use IE.
They've already been bitten by that one. They blocked all browsers except IE from accessing MSN.com. After two days of people making noise about it they let everyone view MSN again.
Did they learn? No. Less than two years later they served a stylesheet to Opera (and only to Opera, other browsers received a working stylesheet and IE had its own) that deliberately broke the display of the page. They served Opera the IE stylesheet, which displayed fine, after some more complaints.
Was that enough for them? No, they tried again with hotmail. They sent Opera an incomplete javascript file that was missing a required function to empty the junk e-mail. Other browsers were sent a different javascript file.
I don't think they'd dare try again with how closely the EU is monitoring them now.
They may not run on the native OS, but it seems that you could get quite a number of packages to run on the system using the NetBSD VAX port.
It was 500 billion in Icelandic currency (krona), not 500 billion euro or USD.
According to xe.com:
500,000,000,000.00 ISK = 3,904,722,881.3900 USD
However, the wikileaks summary says "45 million to 1250 million euros". I haven't read the post that the GP links, except to check the currency type, to find out where it gets the 500 billion number.
And what exactly crewed the original ship?
Space Jockeys. A film about them would be awesome.
For those interested: http://www.cl.cam.ac.uk/~rja14/book.html
And a link straight to the book: http://www.cl.cam.ac.uk/~rja14/musicfiles/manuscripts/SEv1.pdf
Quote from the author:
My goal in making the first edition freely available five years after publication was twofold. First, I wanted to reach the widest possible audience, especially among poor students. Second, I am a pragmatic libertarian on free culture and free software issues; I think that many publishers (especially of music and software) are too defensive of copyright. (My colleague David MacKay found that putting his book on coding theory online actually helped its sales. Book publishers are getting the message faster than the music or software folks.) I expect to put the whole second edition online too in a few years.
I have a hard copy of this, and while I've only read a select few chapters I have to say I enjoy the book. Definitely recommended to anyone who has a interest in any kind of security, be it information security or anything all the way upto securing a nuclear missile.
...people can be logged into iGoogle, and still block adsense and all the other crap they disapprove of.
You are logged into their servers. They don't need all that fancy javascript and other voodoo to track you. They know exactly who you are because you're sitting there screaming it at them. All they need to do is log it straight to your account.
Sure, AdSense on other sites might be blocked but anything you do on their servers while logged in is easily logged on their end.
The source is cited but apparently you couldn't be bothered so here you go:
http://www.google.com/search?hq=Marshall+%22Men+against+fire%22
And here's an article that talks about it: http://www.historynet.com/men-against-fire-how-many-soldiers-actually-fired-their-weapons-at-the-enemy-during-the-vietnam-war.htm/print/
In a squad of 10 men, on average fewer than three ever fired their weapons in combat. Day in, day out - it did not matter how long they had been soldiers, how many months of combat they had seen, or even that the enemy was about to overrun their position. This was what the highly regarded Brigadier General Samuel Lyman Atwood Marshall, better known as S.L.A. Marshall, or 'Slam,' concluded in a series of military journal articles and in his book, Men Against Fire, about Americaâ(TM)s World War II soldiers. Marshall had been assigned as a military analyst for the U.S. Army in both the Pacific and Europe. The American, he concluded, comes 'from a civilization in which aggression, connected with the taking of life, is prohibited and unacceptable... The fear of aggression has been expressed to him so strongly and absorbed by him so deeply and pervadingly - practically with his mother's milk - that it is part of the normal man's emotional make-up. This is his great handicap when he enters combat. It stays his trigger finger even though he is hardly conscious that it is a restraint upon him.'
For things in plain view. As in things they can see through your windows. For instance, if they see a pound of weed on your passenger seat then it's fair game.
They can't search the inside of your car or make you open the trunk. That is, unless they suspect you of a crime and are going to arrest you or if you let them (which you don't have to). But in that case they won't ask and they'll just search the car while you're handcuffed in the back of the cruiser.
I realize that means nothing when you're dealing with a cop on a power trip that's willing to lie on a final report. It is good to know though when dealing with most cops, especially the one's who can get very demanding and try to intimidate you.
I think my post may make it look like I'm running a *nix variant, but I'm running Windows. My firewall is set to allow any local network connections out of convenience. I hadn't even thought about blocking port 80 before and if I were just starting to use the hosts file to block ad servers that would be the best way. As of now though, I've come to like the logging part (and my firewall wouldn't make as detailed logs) and will be keeping this setup until I grow bored of the logs.
obviously, bittorrent to distribute the resulting set far and wide.
Well they're off to a good start as they're already running a torrent tracker for their Blue Marble image collections...
Off topic, but this quote from their FAQ is refreshing. They should share it with media companies and ISPs
I thought P2P and Filesharing were illegal!
This is a common misconception. BitTorrent, and peer-to-peer (P2P) are protocols, like HTTP and EMail. It is true that they can be used to share files illegally, but the same is true of HTTP. Our use here is legitimate, however, so you should have no need to be concerned.
Indeed. I have a lighttpd instance running on my computer just for this reason. It serves up a single page containing only the following text:
404 - ad fail
And if anyone is wondering why I'm running an HTTP server just for this it's because serving the 404 kills the request much quicker than letting the browser timeout the connection. Lighttpd is very light on resources but also allows me to have access logs, which allows me to get some interesting data. For instance, I split the logs up by month and here are some of the sizes:
I've also written a perl script to import the logs into an SQLite database. Which allows things like:
All hosts blocked with over 1,000 hits (from the aforementioned April to June logs)
...people need to shun this circulation for its lack of journalistic integrity.
Considering the response the girl and her family received from the town after the rant was posted, I don't think the people in Coalinga care. If anything, the paper was only reinforced in its decision since it caused such reactions.
The response of the residents reminds of the response in the myspace suicide fiasco and yet no one was even hurt in this instance. All she did was rant about how she hates the town.
It seems to me she was right to despise Coalinga.
I think you might be interested in the Pale Blue Dot picture (so named by Carl Sagan). It's a picture of earth taken by Voyager 1 from 3.7 billion miles away.
More info: http://en.wikipedia.org/wiki/Pale_Blue_Dot
Second, there are multiple ways of encrypting the value 1. This is randomized encryption.
Wouldn't he still be able to value of that specific instance of that number? Given enough queries (or if they're able to figure out the data structure) couldn't this expose a lot of data, even if time consuming?
I'm not stating any of this is true, I'm just geniunely curious if it would work like that.
Couldn't a scientist fall under all 3 of those?
Makes things happen: initiate a chemical reaction
Lets things happen: watch what happens after initiating said chemical reaction
Ask "What the hell just happened?" when something unexpected happens and then they try to find out.
You are aware that both the examples you give (google front page and slashdot) both render with javascript off, right? They function as well. The javascript just adds more, it's not spitting out the main content.
Javascript should not be creating the main content on your site unless it's a "web application", and even then a lot of applications should still be able to produce something usable.
I demand a free SSH client now
Alright, here you go: http://www.xk72.com/midpssh/
Oh, it's open source too (GPL). Here's the code: http://www.xk72.com/midpssh/v1.7.3/midpssh.zip
Oh, it's J2ME too, so it can run on any phone that has java.