Not only is Apache very widely deployed, it is also quite easy to misconfigure it. If you read the article, they're not talking about software insecurities alone: they're talking about misconfiguration and bad management of machines. For example, weak/non-existant passwords is on both lists.
They're not saying that Apache is insecure but rather that it is a potential risk if the admin is not sufficiently competent.
A calorie is the amount of energy to raise 1 gram of water by 1 degree Celsius and there are 4.19 Joules in a calorie. Therefore, 100 kilowatts = 100 000 W = 100 000 J/s ~ 25 000 calories/s which means we could raise 25 kg of water by 1 degree in 1 second. Now this would have to depend on the surface area of the target - it could be 2.5 kilograms of water by 10 degrees in a second or.25 kilograms of water by 100 degrees. This is not particularily accurate but it gives you an idea of the power - water is not particularily easy to heat and if this laser could fire for even a few seconds on a fairly small surface area....ZAP!
That is an example of a non-Newtonian fluid. Normal Newtonian fluids' viscosity is a function of temperature: the colder it gets, the thicker it gets. Non-Newtonian fluids' viscosity is a function of something else, in this case, force. That is, the more force you apply to it, the thicker it gets. If you want a really good and simple 'goop' recipe, try this:
-white glue, mixed with water, 50:50 -tablespoon of borax (from laundry section) in a few cups of water -(optional) food coloring mixed with glue
pour the glue/water mix into the borax solution and it with thicken up. You'll pull out a slimy, goopy mass that is too watery to play nicely with but if you work it in your hands for a bit to get the excess water out, you'll have some fun. Bounce it around, slap it, tear it and it's more like a solid. Let it sit on your hand and it flows like a liquid. Plenty of fun.
This is a pretty important point. Just because the KDE people fixed it doesn't mean everyone will have it. Instead of asking, "How long did it take for it to get fixed", we should be asking, "How long until it is widely enough deployed such that exploit writing becomes unprofitable?" It seems to me that even if Microsoft is a little slower getting a bug fixed, the universal "Windows Update" probably gets the patch on a greater percentage of machines more quickly.
Of course, the number of Windows desktops dwarfs the number of KDE desktops so if even a small percentage of Windows installations don't get patched, it would probably be about the same as if KDE never got patched at all.;-)
That explains it - if he had just been selling mod chips, he would have been fine. The fact that he was doing it along side of selling pirated games is why they could charge him because he "used a computer system to commit an offense"
Sleeman beer is doing an ad series based on the fact that their bottles don't have labels. They have hosted a bunch of bands which aren't signed to labels on their website and are using them in commercials.
My case is much the same. I used to dual boot - Windows for gaming, etc. and Linux for development. Then came Win2k and XP. And I discovered that, with Cygwin, I get all the convenience of unix tools and a commandline with all the convenience of running games, having hardware work, being able to watch quicktime trailers, etc.
I don't dual boot anymore. 2k/XP are more than stable enough and Cygwin gives me all the Unixy goodness I need. Hell, I even installed Deskwin so that I have multiple desktops, one X11 feature that I really miss on Windows. Funny thing is, people come up behind me, see my typing away in vi, hacking from the bash prompt and say, "Is that KDE?". "Nope, XP", I reply. Always good for a laugh.
Current bug in Windows I/O....
on
Pet Bugs?
·
· Score: 5, Interesting
I just observed this bug a while ago while porting some software to windows. Do the following:
fopen some file for writing. write some stuff. fseek to some offset near the beginning. write some more stuff. fclose.
Simple right? Wrong. I observed that the second write didn't get performed unless you explicitly do a fflush before the close. Imagine, not writing dirty buffers out on a fclose....unbelievable.
How short do you think the life cycle is on these things? You're looking at a minimum of 5 to 10 years for most lab findings to make it to market. And don't forget, the all-mighty economy comes into play too. If it can't be produced cheaply enough in large enough quantities, it just becomes, "research results upon which other research is based on"
The toys you're using now are the result of announcements made a long time ago. It's just that our memories are short. I remember many years ago when WORM drives first came out - ooh...1GB of storage - so what if you can only write it once, you'll never run out of that much space, *drool* *slaver*... Now I have a desk covered in CD's, half of which are from AOL...
First of all, I don't think many (any?) distros are actually making money from boxed sets but let's ignore that. Lets also ignore the fact that some of the largest contributions are made by these companies (do a grep through the maintainers of gcc,gdb,etc. for @redhat.com)
The terms of the GPL make no restrictions on what is done with the source, including the sale of binaries produced from that source as long as the source is made available.
No Open Source programmer is forced to release his work under those terms but if he does, he is undoubtably aware of the ramifications. To argue whether it is fair or not is utterly silly because the author released the code himself.
Closing all the pop-up windows that you get at some sites is like playing whack-a-mole.
That's what nature is all about
on
Cradle to Cradle
·
· Score: 2
In McDonough's speech, he talks about this. Trees produce millions of flowers whose petals fall on the ground. It's not efficient, it's EFFECTIVE. To fit in with a prolific natural world, he argues that we should produce MORE but ensure that all of what we produce fits into the cycle - our waste becomes someone elses food.
"a sticking point had been Bertelsmann's refusal to indemnify Mr. Barry and Mr. Hummer completely from further lawsuits that the record companies have threatened to file."
Looks like these guys are a little worried that if they take the money and run, the record companies will hunt them down and beat it out of them.
Lots of money will continue to be made in software simply because piracy is a pain in the tuckus. If you come right down to it, most software hasn't really gotten that much more expensive over the years.
Take games for example. They still usually cost around $50 bucks, just like they have for years. I pay $50 dollars for my tax program every year now because, after all, what's $50 bucks? 10 years ago it cost the same and we used to get 5 people together and pay $10 bucks each. Now we just buy it because it's more of a nuisance to pirate than it is to just pony up the cash.
Games are relatively cheap too. If you use a pirated version, half the time you're having problems like, "I need the latest 1.09 patch for such and such bug/feature but it breaks my 1.07 pirated no-cd version". It's just easier to buy it than it is to go surfing warez sites/kazaa, etc. My time is more valuable than that.....surfing for warez takes time away from gaming.;-)
Relax people. Redhat, who is one of the strongest corporate supporters of open source, has been doing this for a long time. They get contracts (the Cygnus part of the business) to do custom work on things like gcc where some company pays them to port/optimize for their new processor or instruction set. Then Redhat does the work, gives the company the product and goes about their merry way. After about 6 months or so to make some money/make sure the port is stable, they release the source. They did this with the 128 bit Mips MTX 7860 instruction set support that they added to binutils and gdb. Anyone can get the code as a patch if they ask for it, it just isn't released for general consumption right away.
Good omen for future emergent behaviour
on
Hospital Robots
·
· Score: 2
This robot is very primitive and shows only basic signs of sentience such as avoiding obstacles and spouting some canned phrases. Yet the article says that the robots "coworkers" treat him more or less like another employee. In the future, when we have much more sophisticated electronic life, perhaps it won't be such a big issue for people to view robots as living beings with certain rights to life, etc.
Point 6 is like the prostitution laws in Canada. Exchanging money for sex is perfectly legal, however any form of communication for the purposes of said exchange is solicitation and is illegal. So you can pay someone for sex as long as no-one ever actually talks about it. Funny, eh?
Slashdot Mirror
Not only is Apache very widely deployed, it is also quite easy to misconfigure it. If you read the article, they're not talking about software insecurities alone: they're talking about misconfiguration and bad management of machines. For example, weak/non-existant passwords is on both lists.
They're not saying that Apache is insecure but rather that it is a potential risk if the admin is not sufficiently competent.
Well, a watt is a joule/second.
.25 kilograms of water by 100 degrees. This is not particularily accurate but it gives you an idea of the power - water is not particularily easy to heat and if this laser could fire for even a few seconds on a fairly small surface area....ZAP!
A calorie is the amount of energy to raise 1 gram of water by 1 degree Celsius and there are 4.19 Joules in a calorie. Therefore, 100 kilowatts = 100 000 W = 100 000 J/s ~ 25 000 calories/s which means we could raise 25 kg of water by 1 degree in 1 second. Now this would have to depend on the surface area of the target - it could be 2.5 kilograms of water by 10 degrees in a second or
Some WICKED Windows OpenGL screensavers (best fireworks sim I've ever seen among others.) All source code under GPL.
http://www.reallyslick.com/
That is an example of a non-Newtonian fluid. Normal Newtonian fluids' viscosity is a function of temperature: the colder it gets, the thicker it gets. Non-Newtonian fluids' viscosity is a function of something else, in this case, force. That is, the more force you apply to it, the thicker it gets. If you want a really good and simple 'goop' recipe, try this:
-white glue, mixed with water, 50:50
-tablespoon of borax (from laundry section) in a few cups of water
-(optional) food coloring mixed with glue
pour the glue/water mix into the borax solution and it with thicken up. You'll pull out a slimy, goopy mass that is too watery to play nicely with but if you work it in your hands for a bit to get the excess water out, you'll have some fun. Bounce it around, slap it, tear it and it's more like a solid. Let it sit on your hand and it flows like a liquid. Plenty of fun.
This is a pretty important point. Just because the KDE people fixed it doesn't mean everyone will have it. Instead of asking, "How long did it take for it to get fixed", we should be asking, "How long until it is widely enough deployed such that exploit writing becomes unprofitable?" It seems to me that even if Microsoft is a little slower getting a bug fixed, the universal "Windows Update" probably gets the patch on a greater percentage of machines more quickly.
;-)
Of course, the number of Windows desktops dwarfs the number of KDE desktops so if even a small percentage of Windows installations don't get patched, it would probably be about the same as if KDE never got patched at all.
That explains it - if he had just been selling mod chips, he would have been fine. The fact that he was doing it along side of selling pirated games is why they could charge him because he "used a computer system to commit an offense"
My first cut was (( A | B ) & C ) | (( C | B ) & A ) but I'm sure it can be simplified yet.
Sleeman beer is doing an ad series based on the fact that their bottles don't have labels. They have hosted a bunch of bands which aren't signed to labels on their website and are using them in commercials.
Look at how successful Xena has been over the years. I think that a superheroine is not too hard to swallow.
My case is much the same. I used to dual boot - Windows for gaming, etc. and Linux for development. Then came Win2k and XP. And I discovered that, with Cygwin, I get all the convenience of unix tools and a commandline with all the convenience of running games, having hardware work, being able to watch quicktime trailers, etc.
I don't dual boot anymore. 2k/XP are more than stable enough and Cygwin gives me all the Unixy goodness I need. Hell, I even installed Deskwin so that I have multiple desktops, one X11 feature that I really miss on Windows. Funny thing is, people come up behind me, see my typing away in vi, hacking from the bash prompt and say, "Is that KDE?". "Nope, XP", I reply. Always good for a laugh.
I just observed this bug a while ago while porting some software to windows. Do the following:
fopen some file for writing.
write some stuff.
fseek to some offset near the beginning.
write some more stuff.
fclose.
Simple right? Wrong. I observed that the second write didn't get performed unless you explicitly do a fflush before the close. Imagine, not writing dirty buffers out on a fclose....unbelievable.
When's the last time you saw X running as anything OTHER than root?
How short do you think the life cycle is on these things? You're looking at a minimum of 5 to 10 years for most lab findings to make it to market. And don't forget, the all-mighty economy comes into play too. If it can't be produced cheaply enough in large enough quantities, it just becomes, "research results upon which other research is based on"
The toys you're using now are the result of announcements made a long time ago. It's just that our memories are short. I remember many years ago when WORM drives first came out - ooh...1GB of storage - so what if you can only write it once, you'll never run out of that much space, *drool* *slaver*... Now I have a desk covered in CD's, half of which are from AOL...
First of all, I don't think many (any?) distros are actually making money from boxed sets but let's ignore that. Lets also ignore the fact that some of the largest contributions are made by these companies (do a grep through the maintainers of gcc,gdb,etc. for @redhat.com)
The terms of the GPL make no restrictions on what is done with the source, including the sale of binaries produced from that source as long as the source is made available.
No Open Source programmer is forced to release his work under those terms but if he does, he is undoubtably aware of the ramifications. To argue whether it is fair or not is utterly silly because the author released the code himself.
Closing all the pop-up windows that you get at some sites is like playing whack-a-mole.
In McDonough's speech, he talks about this. Trees produce millions of flowers whose petals fall on the ground. It's not efficient, it's EFFECTIVE. To fit in with a prolific natural world, he argues that we should produce MORE but ensure that all of what we produce fits into the cycle - our waste becomes someone elses food.
Maybe Anakin bought the "Mattel Protocol Droid Kit", complete with lifelike movement and choice of three accents.
"a sticking point had been Bertelsmann's refusal to indemnify Mr. Barry and Mr. Hummer completely from further lawsuits that the record companies have threatened to file."
Looks like these guys are a little worried that if they take the money and run, the record companies will hunt them down and beat it out of them.
Co-Director, PRoductivity From Information Technology (PROFIT) Program: http://mitsloan.mit.edu/research/profit/index.html
Co-Principal Inbestigator, COntext INtercharge (COIN) project: http://context.mit.edu/~coin/
PROFIT and COIN - yep. Must be a Microsoft shill.
Lots of money will continue to be made in software simply because piracy is a pain in the tuckus. If you come right down to it, most software hasn't really gotten that much more expensive over the years.
;-)
Take games for example. They still usually cost around $50 bucks, just like they have for years. I pay $50 dollars for my tax program every year now because, after all, what's $50 bucks? 10 years ago it cost the same and we used to get 5 people together and pay $10 bucks each. Now we just buy it because it's more of a nuisance to pirate than it is to just pony up the cash.
Games are relatively cheap too. If you use a pirated version, half the time you're having problems like, "I need the latest 1.09 patch for such and such bug/feature but it breaks my 1.07 pirated no-cd version". It's just easier to buy it than it is to go surfing warez sites/kazaa, etc. My time is more valuable than that.....surfing for warez takes time away from gaming.
Shouldn't it be, "The truth about Katz and dogs"?
*groan*
Relax people. Redhat, who is one of the strongest corporate supporters of open source, has been doing this for a long time. They get contracts (the Cygnus part of the business) to do custom work on things like gcc where some company pays them to port/optimize for their new processor or instruction set. Then Redhat does the work, gives the company the product and goes about their merry way. After about 6 months or so to make some money/make sure the port is stable, they release the source. They did this with the 128 bit Mips MTX 7860 instruction set support that they added to binutils and gdb. Anyone can get the code as a patch if they ask for it, it just isn't released for general consumption right away.
This robot is very primitive and shows only basic signs of sentience such as avoiding obstacles and spouting some canned phrases. Yet the article says that the robots "coworkers" treat him more or less like another employee. In the future, when we have much more sophisticated electronic life, perhaps it won't be such a big issue for people to view robots as living beings with certain rights to life, etc.
Oh...a worse name than Death Sticks? How about ATTACK OF THE CLONES?
Point 6 is like the prostitution laws in Canada. Exchanging money for sex is perfectly legal, however any form of communication for the purposes of said exchange is solicitation and is illegal. So you can pay someone for sex as long as no-one ever actually talks about it. Funny, eh?