so yes its basically like wifi, cables are reliable
there is a buffer overflow in some versions of windows/linux/iOS
this has been patched in recent versions of all the OS's its not a replicating worm per se unless you count all the people who have downloaded an "app" to check if they are vulnerable...
the videos and documentation on their website give absolutely no details and completely pointless, this is what happens when you let a media company deal with a buffer overflow
Actual information :
Background Information The Logical Link Control and Adaptation Layer Protocol (L2CAP) works at the data link layer in the Bluetooth stack. It provides services such as connection multiplexing, segmentation and reassembly of packets for upper layer protocols such as Bluetooth. It facilitates higher level protocols to transmit and receive L2CAP data packets to and from clients.
A stack buffer overflow issue was found in various systems Bluetooth subsystem processing the pending configuration packets received from a client. As a result, a client could send arbitrary L2CAP configuration parameters which were stored in a stack buffer object. These parameters could exceed the buffer length, overwriting the adjacent kernel stack contents. This exchange occurs, prior to any authentication, when establishing a Bluetooth connection. An unauthenticated user, who is able to connect to a system via Bluetooth, could use this flaw to crash the system or potentially execute arbitrary code on the system if not secured correctly. if the Linux kernel stack protection feature (CONFIG_CC_STACKPROTECTOR=y) is on then your not going to be vulnerable.
Not impressed with the press release at all I'm afraid
It does show which vendors of equipment pay attention, develop patches and deserve respect
As soon as you start censoring anything at the ISP level mistakes and policy will be made...
this is not a option that can be disabled by users/citizens but by companies....
why browser manufactures dont simply give the option of pulling a blacklist as a standard and pull from gov mandated site then the user/citizen can decide...
welcome to the new world order where you dont decide if you can break the law only companies can do that...
Netflix has realised that basically the rest of the world is pretty profitable once you know how to cut down on fraud and keep your library as consistent as possible...
sure as a producer you can get distribution deals with large media companies (e.g. British sky or Australian foxtel ) but do you want one big bang ?
or lots of micro payments and some big ones mixed in.... ?
Disney's approach is american centric and a train wreck of licensing sport from the start... good luck with that I'm sure those BAMTech people will be enjoying themselves on someone else's coin...
but honestly australia does not have a clue with regards to weather we only have 600 weather stations for an entire continent and apparently we cant calibrate them...
accurate weather stations that people can purchase would be nice...
$20 + $$$$ for mac... I dont have a mac to run it on that fits in a rack and apple stopped making those...
its closed source magic that I cant debug or change
all I want to do is cache the updates... admittedly Apple do a reasonable job and I can cache most of the HTTP objects its the microsoft updates that are crazy...
I run a network I dont run any Mac or windows machines they are clients of that network...
there are plenty of education facilities in the same boat, we pay for bandwidth and frankly the amount that updates take downloading the same thing is incredible I cant run a WSUS server as the clients are not owned by us
whats insane is that there is no way to cache Microsoft updates or Apple updates simply via a proxy or nominated cache using a Linux/BSD...
I can understand that the command flow being encrypted but the payload should be easy to distribute windows 10 uses a P2P uncontrolable update mechanism and Apple cache server only runs on a mac...
binary patching etc is nice but when you have a 1000 users all requesting a 99MB update...
who in their right mind does not do a post mortem or at least send a email (OOB) when their infrastructure is suffering from what you might call a DDOS
under american law would they have to turn over records to prove they didnt send anything ?
what really is intriguing is the evaluation of the network bandwidth since apple can not even set the captive portal detection server they run to send HTTP headers correctly to no-cache... I'd like to see their workings and I'm sure the network administrators who control the MDM systems would as well...
Apple has quite an investment in the enterprise space and a change to networking would be quite a change...
no sales tax and they think people can not order bikes/kits from the internet ?
all this will do is hurt retail in the local area (state)
honestly I personally think the USA is a tax crazy "nation" anyway... I dont know a single thing that I would buy that is "made in the usa" as a foreigner this kind of thing is laughable and goes to show how tax crazy you guys are !
ironically I'm all for paying tax and even tax on activity i.e. tax's on boats and even a car toll on entering an area but I just think it should be as fair and thought through as possible...
the "technology" companies first excuse when a government asks for lawful intercepts is "we can't do that its encrypted" when they can tell exactly how long you watched a cat video or what posts you have been looking at because they track that... (facebook et al is after all a website/platform)
what the australian government was saying very, very badly is that they want access to the platform and didnt want to be burdened by cryptology on the stream.
The information stream might be encrypted but the end points and server certainly not... the problem is who do you give access to ?
The endpoints are in the hands of consumers however the platform is not...
USB C connector (they can do their Made For iPhone for everything but let me have a standard power jack please)
Iris scanner (not a crappy face scanner thats only for ruling out Iris defeat devices)
Fingerprint (touch ID Maintained via port on the back or power button)
Antennas (More of them, the antenna design needs a lot more work we could have multiple Wifi / LTE antenna if they didn't think thin but fast)
NFC responder (I'm fed up of carrying a badge around work to open doors, kill this already ! NFC reader is already in specs I want response)
Bluetooth 5 ( 5 is alive and they need to support more of the standard if not all of the relevant such as health device, HID, proximity and PAN )
Temperature (IR temperature reader exposed to developers to allow crowdsourced weather apps etc)
Navigation (full QZSS (japan), IRNSS(indian) Galileo(europe) and BeiDou(china) all merged together and error checking each other rather than just GPS/GLONASS )
Slashdot Mirror
so yes its basically like wifi, cables are reliable
there is a buffer overflow in some versions of windows/linux/iOS
this has been patched in recent versions of all the OS's
its not a replicating worm per se unless you count all the people who have downloaded an "app" to check if they are vulnerable...
the videos and documentation on their website give absolutely no details and completely pointless, this is what happens when you let a media company deal with a buffer overflow
Actual information :
Background Information
The Logical Link Control and Adaptation Layer Protocol (L2CAP) works at the data link layer in the Bluetooth stack. It provides services such as connection multiplexing, segmentation and reassembly of packets for upper layer protocols such as Bluetooth. It facilitates higher level protocols to transmit and receive L2CAP data packets to and from clients.
A stack buffer overflow issue was found in various systems Bluetooth subsystem processing the pending configuration packets received from a client. As a result, a client could send arbitrary L2CAP configuration parameters which were stored in a stack buffer object. These parameters could exceed the buffer length, overwriting the adjacent kernel stack contents. This exchange occurs, prior to any authentication, when establishing a Bluetooth connection. An unauthenticated user, who is able to connect to a system via Bluetooth, could use this flaw to crash the system or potentially execute arbitrary code on the system if not secured correctly. if the Linux kernel stack protection feature (CONFIG_CC_STACKPROTECTOR=y) is on then your not going to be vulnerable.
Not impressed with the press release at all I'm afraid
It does show which vendors of equipment pay attention, develop patches and deserve respect
Regards
John Jones
why not aim for a secure browser audience...
Ditch SSL Certificate authorities unless users trusted them and verify the DNS responses (DNSsec) present that information to the user
The Saudi authority have for a long time performed MITM on the nations whole population and companies such as Symantec have actively aided them.
If they had deployed DNSSec and I would have advised DANE then this would have been harder to perform.
https://www.icann.org/resources/pages/dnssec-qaa-2014-01-29-en
top tip try and enable it on your own domain !
yes it might be true but context is everything...
I'll forgive google as I have experience with other software companies
They are in sub Geosynchronous Transfer Orbit (sub GTO)
https://i.stack.imgur.com/k7RDk.jpg
it was IRNSS-1H that was lost and so Space based Navigation System and Disaster Management Support will be reduced
anyone know of a good IRNSS receiver ?
regards
John Jones
Phrases such as "Devices formatted as HFS+ can be read and written to by devices formatted as APFS." do not inspire confidence in comunication.
As soon as you start censoring anything at the ISP level mistakes and policy will be made...
this is not a option that can be disabled by users/citizens but by companies....
why browser manufactures dont simply give the option of pulling a blacklist as a standard and pull from gov mandated site then the user/citizen can decide...
welcome to the new world order where you dont decide if you can break the law only companies can do that...
if it supported the standard SIP in addition to its other features then I personally would use it and I think it would get traction.
SIP support (voice and video calling) would mean I could use it for the work extension and home without multiple clients.
without SIP or some compelling feature its a also ran experiment that some will care about...
get arrested, well thats a way to incentivise Canadian conferences...
Netflix has realised that basically the rest of the world is pretty profitable once you know how to cut down on fraud and keep your library as consistent as possible...
sure as a producer you can get distribution deals with large media companies (e.g. British sky or Australian foxtel ) but do you want one big bang ?
or lots of micro payments and some big ones mixed in.... ?
Disney's approach is american centric and a train wreck of licensing sport from the start... good luck with that I'm sure those BAMTech people will be enjoying themselves on someone else's coin...
https://en.wikipedia.org/wiki/Andasol_Solar_Power_Station
being outside is a problem in australia
yes the wildlife will kill you
yes the sun will cause cancer
but honestly australia does not have a clue with regards to weather we only have 600 weather stations for an entire continent and apparently we cant calibrate them...
accurate weather stations that people can purchase would be nice...
regards
John Jones
$20 + $$$$ for mac... I dont have a mac to run it on that fits in a rack and apple stopped making those...
its closed source magic that I cant debug or change
all I want to do is cache the updates... admittedly Apple do a reasonable job and I can cache most of the HTTP objects its the microsoft updates that are crazy...
I run a network I dont run any Mac or windows machines they are clients of that network...
there are plenty of education facilities in the same boat, we pay for bandwidth and frankly the amount that updates take downloading the same thing is incredible
I cant run a WSUS server as the clients are not owned by us
doesnt anyone measure this ?
whats insane is that there is no way to cache Microsoft updates or Apple updates simply via a proxy or nominated cache using a Linux/BSD...
I can understand that the command flow being encrypted but the payload should be easy to distribute windows 10 uses a P2P uncontrolable update mechanism and Apple cache server only runs on a mac...
binary patching etc is nice but when you have a 1000 users all requesting a 99MB update...
why are their no unix/proxy/gateway solutions ?
John
yes its flame bait
yes correctly interpreting the colours is pointless since apple has forged them previously to make it "look better"
what complete and utter rubish this man espouses clearly he cant even use the platform he helped create...
who in their right mind does not do a post mortem or at least send a email (OOB) when their infrastructure is suffering from what you might call a DDOS
under american law would they have to turn over records to prove they didnt send anything ?
John
what really is intriguing is the evaluation of the network bandwidth since apple can not even set the captive portal detection server they run to send HTTP headers correctly to no-cache... I'd like to see their workings and I'm sure the network administrators who control the MDM systems would as well...
Apple has quite an investment in the enterprise space and a change to networking would be quite a change...
regards
John Jones
exactly its trivial to send 2GB however the manufacturers should have used a webserver that can mitigate this kind of thing
what exactly does ONIF give anyone beyond pan tilt zoom ?
no sales tax and they think people can not order bikes/kits from the internet ?
all this will do is hurt retail in the local area (state)
honestly I personally think the USA is a tax crazy "nation" anyway... I dont know a single thing that I would buy that is "made in the usa" as a foreigner this kind of thing is laughable and goes to show how tax crazy you guys are !
ironically I'm all for paying tax and even tax on activity i.e. tax's on boats and even a car toll on entering an area but I just think it should be as fair and thought through as possible...
the "technology" companies first excuse when a government asks for lawful intercepts is "we can't do that its encrypted" when they can tell exactly how long you watched a cat video or what posts you have been looking at because they track that...
(facebook et al is after all a website/platform)
what the australian government was saying very, very badly is that they want access to the platform and didnt want to be burdened by cryptology on the stream.
The information stream might be encrypted but the end points and server certainly not... the problem is who do you give access to ?
The endpoints are in the hands of consumers however the platform is not...
good luck
John Jones
If it had USB C I would be interested
things I would like :
USB C connector (they can do their Made For iPhone for everything but let me have a standard power jack please)
Iris scanner (not a crappy face scanner thats only for ruling out Iris defeat devices)
Fingerprint (touch ID Maintained via port on the back or power button)
Antennas (More of them, the antenna design needs a lot more work we could have multiple Wifi / LTE antenna if they didn't think thin but fast)
NFC responder (I'm fed up of carrying a badge around work to open doors, kill this already ! NFC reader is already in specs I want response)
Bluetooth 5 ( 5 is alive and they need to support more of the standard if not all of the relevant such as health device, HID, proximity and PAN )
Temperature (IR temperature reader exposed to developers to allow crowdsourced weather apps etc)
Navigation (full QZSS (japan), IRNSS(indian) Galileo(europe) and BeiDou(china) all merged together and error checking each other rather than just GPS/GLONASS )
I'd happily pay for that...
regards
John Jones
so this contradicts your comments :
http://wiki.friendlyarm.com/wiki/index.php/NanoPi_NEO_Plus2
the comments seem over the top and less informed...
uboot and patchs make it much much more open than the pi