It seems there is a double standard emerging with respect to online orders.
This might be because of the sense of anonymity on the Net. When you take away accountability, you remove conscience. Most people believe that phone calls can always be traced (maybe they can; I don't know), and that mail can be tracked. On the Net, you're just a someone in the world. I've seen enough untraceable spams (Received: from ppc@motorola.com (localhost [127.0.0.1]) by mail.crosswinds.net with ESMTP ID...) to know that it actually is possible to be anonymous.
-- LoonXTall
Re:Vendors just passing on Credit Card Company buc
on
A Matter Of Trust?
·
· Score: 1
But really the Credit Card companies should be providing crypto to the customer in the form of so-called smartcards rather than squeezing the vendors.
Problems: cost of reader; trojans reading key (by replacing the endec program?); resource conflicts (USB error: power draw exceeded, PCI error: INT #B not available, (E)ISA error: lost Intel's blessing); desktop space (I hold my keyboard on my lap and work sans mouse).
So what options are available for companies to use to verify customers' identities?
My first thought was certificates, but given the ease of cracking {insert your favorite OS to flame here}, that doesn't seem like a very good option.
Since they have the IP address you're connecting from, they might be able to do a reverse DNS lookup and cross-reference with the ISP on your record. Problems: big hassles to order from another computer (work/home) or if you change ISPs; other crackers on your ISP could get in anyway.
I have decided to thoroughly support adblocking. I believe (but I can't prove) that if you can't support your site without ads, you have lower quality stuff. Take PBS... no matter how people complain about their fundraising campaigns, it's still here. And it's the only radio station on the dial (monopoly alert) that plays classical music. (WNED FM, 94.5 MHz, Buffalo NY) So I say that a non-commercial web can exist, it will just be sans news... like a library.
And Mozilla certainly won't crash Linux. IE's track record isn't so stellar.
Eh? Every release of Mozilla I've had so far has crashed on a semi-regular basis on either Linux or Windows.
I assume that's Mozilla crashing, which is very distinct from Linux crashing. And if you think IE is so great, just watch it autodetect proxy settings or crash in SUNWAMD.DLL. IE5's kernel integration results in the machine needing a reboot whenever it crashes. NS 4.70's bad crashes can usually be fixed by killing the leftover process with Ctrl-Alt-Del (unless it's the infamous ADVERT32.DLL infinite crash loop). Mozilla, OTOH, is not complete yet, and cannot be compared (sensibly) with the finished IE5.
There will always be some sort of offshore latency; since the index of refraction in glass is higher than 1, the light travels slower than 300000000 meters per second. IIRC, a "standard" piece of glass has an index of 1.5, but I have no idea what they use in fiber optics.
Getting your own T-1 is a nice idea, but one of the problems people have been having is the threat of the line itself being disconnected at the ISP level.
Not to mention cost. If I ran a T1 line to my house from my ISP, it'd be 9 mi. long! That kinda rules out DSL as well, and Time Warner isn't very concerned with bringing cable modems to the area. No wonder people are moving out of Chautauqua County...
Any member of congress can go an erase from the records what they said days ago or even append lengthy speeches about whatever that they never actually said.
The point is that they did copyright it. Slashdot is in the wrong.
Oh, so it's Slashdot who is in the wrong for someone's actions. Comments are owned by the Poster, unless JonKatz wants to put them in a book or Microsoft wants them removed.
Included on http://www.slashdot.org are comments that now appear in your Archives, which include
unauthorized reproductions of Microsoft's copyrighted work [emphasis mine] entitled "Microsoft Authorization Data Specification v.1.0 for Microsoft Windows 2000 Operating Systems" (hereafter "Specification"). In addition, some comments include links to unauthorized reproductions of the Specification, and some comments contain instructions on how to circumvent the End User License Agreement that is presented as part of the download for accessing the Specification.
Why is everyone talking about trade secrets?
As for MS's reply, I think they have a pretty good case for the following:
1. Microsoft is claiming copyright on the document describing their extensions, not the extensions themselves.
8. Microsoft respects the right of the users of Slashdot to view the specifications for the purpose of comment. However, Microsoft feels compelled to take action in defense of its copyright, which is being infringed upon by the users mentioned, among others.
Some of the other replies will undoubtedly be to tell/. that they are not within the scope of the copyright violation. It's amazing the amount of damage a tiny worldview can do.
...I would be willing to bet that since that link is only in the header of _my_ comment, I own its copyright. What worries me is that sigs like yours, which links to DeCSS, could be the source of lawsuits: not against you, but against Slashdot.
If we own the links in our headers, we should also own the links in our sigs.
If the system administrator is incompetent - or even merely overworked - no system is secure. No matter what the OS is.
If it runs code, it's insecure. I bet there are security holes in DOS, but nobody uses it anymore, so they're dormant.
They could well have tampered with the distribution itself.
Yeah, duh. I wasn't thinking hard enough. Even if the developers work off a separate codebase, the trojaned version would still be available for a while.
They simply want to make sure you don't go around passing out the source of those libraries which you didn't write.
Maybe. But what something means and what something says are two completely different animals to the court. Take the infamous DMCA: did the lawmakers know they were passing a rehashed version of the Alien and Sedition Acts? Was it actually meant to be a repression tool for the party (corporations) in power? If it wasn't... did that change the wording of it?
it was the 3rd most popular purchase at Amazon by M$ employees...
Ah-HA! A person that supports the use of market tracking! So YOU are one of those attempting to undermine the value of the Web by making it apparent that stats are in demand! What next, will you present us with the sex life of MS employees, gathered for "market research" and "demographics"?
Although it's not a good idea to advertise their security infrastructure layout to the world.
Then you deny the assumed security of Open Source? Please stop before you disillusion me! Knowledge of the sendmail Debug command or the fact that there's no guarantee a binary was produced by source that was distributed with it might destroy my comfortable little OSS Zealot worldview...
With the fees and interest rates they charge, I don't own one, and have often considered trying to crack the Visa Nextcard ads... {evil cackling}
Back on topic, I don't feel save giving out my real name (even my first name), location, phone, or even my age (fudge the demographics... Nashville is within a day's drive, so it shouldn't make a difference;) ) online. It even irritates me that my IP tells who my ISP is (reverse DNS or "ping -a i.p.right.here").
how many people have audited their apache code since the vulnerability of apache.org was announced?
If we're talking about the same exploit here (in which the "Powered By" logo was changed), the hackers did it with configuration errors. It had nothing to do with the Apache, FreeBSD 4.2, or MySQL source code.
Windows 95 B (aka OSR2) and higher (95C, 98*, 2000, Millenium) have the scripting host. I'm glad Microsoft's website won't let me have updates beyond 95 A:) Also, I'm glad I didn't understand (way back when) what the "Use Netscape Messenger from MAPI-based applications" preference was and left it unchecked. Combined with a lack of Outlook, I guess I'm bullet-proof. So is my Amiga 500 and my DOS machine.
Finally an inovation MS can point to. They created a whole new class of virus/worms.
You can even get infected from a.hlp file (!) too. IIRC, just store your viral code at the end as packed-variable formatted data, set the script entry point to the beginning of your code, and release!
This bodes ill for publicly-managed sites. Just think of Slashdot: they could be sued over links in our sigs. (Granted, Slashdot would likely win since the commenter is clearly the copyright owner, but it would still hurt to have expensive lawsuits being served constantly)
Are our webpage links, like yours to http://radiantmatrix.org/, considered part of the "comment"? I don't think so, as they are replicated over many comments, but IANAL.
Slashdot Mirror
It seems there is a double standard emerging with respect to online orders.
This might be because of the sense of anonymity on the Net. When you take away accountability, you remove conscience. Most people believe that phone calls can always be traced (maybe they can; I don't know), and that mail can be tracked. On the Net, you're just a someone in the world. I've seen enough untraceable spams (Received: from ppc@motorola.com (localhost [127.0.0.1]) by mail.crosswinds.net with ESMTP ID...) to know that it actually is possible to be anonymous.
-- LoonXTall
But really the Credit Card companies should be providing crypto to the customer in the form of so-called smartcards rather than squeezing the vendors.
Problems: cost of reader; trojans reading key (by replacing the endec program?); resource conflicts (USB error: power draw exceeded, PCI error: INT #B not available, (E)ISA error: lost Intel's blessing); desktop space (I hold my keyboard on my lap and work sans mouse).
-- LoonXTall
So what options are available for companies to use to verify customers' identities?
My first thought was certificates, but given the ease of cracking {insert your favorite OS to flame here}, that doesn't seem like a very good option.
Since they have the IP address you're connecting from, they might be able to do a reverse DNS lookup and cross-reference with the ISP on your record. Problems: big hassles to order from another computer (work/home) or if you change ISPs; other crackers on your ISP could get in anyway.
Just some thoughts.
-- LoonXTall
It would be great to see this law used as a means of freedom, not oppression of 2600.
-- LoonXTall
Where are these ads again?
I have decided to thoroughly support adblocking. I believe (but I can't prove) that if you can't support your site without ads, you have lower quality stuff. Take PBS... no matter how people complain about their fundraising campaigns, it's still here. And it's the only radio station on the dial (monopoly alert) that plays classical music. (WNED FM, 94.5 MHz, Buffalo NY) So I say that a non-commercial web can exist, it will just be sans news... like a library.
-- LoonXTall
At time of posting, Crosswinds mirrors are down (502 Proxy Error) and AngelFire shot it (404). .sig update please...
http://www.crosswinds.net/~loonthetall
http://www.crosswinds.net/~thesapphirecat
http://www.geocities.com/LoonXTall
http://www.angelfire.com/pa/synder
http://wpoison.netfirms.com/source.html
They're just the source, carefully designed to avoid search engines.
-- LoonXTall
I assume that's Mozilla crashing, which is very distinct from Linux crashing. And if you think IE is so great, just watch it autodetect proxy settings or crash in SUNWAMD.DLL. IE5's kernel integration results in the machine needing a reboot whenever it crashes. NS 4.70's bad crashes can usually be fixed by killing the leftover process with Ctrl-Alt-Del (unless it's the infamous ADVERT32.DLL infinite crash loop). Mozilla, OTOH, is not complete yet, and cannot be compared (sensibly) with the finished IE5.
-- LoonXTall
There will always be some sort of offshore latency; since the index of refraction in glass is higher than 1, the light travels slower than 300000000 meters per second. IIRC, a "standard" piece of glass has an index of 1.5, but I have no idea what they use in fiber optics.
-- LoonXTall
Getting your own T-1 is a nice idea, but one of the problems people have been having is the threat of the line itself being disconnected at the ISP level.
Not to mention cost. If I ran a T1 line to my house from my ISP, it'd be 9 mi. long! That kinda rules out DSL as well, and Time Warner isn't very concerned with bringing cable modems to the area. No wonder people are moving out of Chautauqua County...
-- LoonXTall
Any member of congress can go an erase from the records what they said days ago or even append lengthy speeches about whatever that they never actually said.
LONG LIVE MINITRUTH! IGNORANCE IS STRENGTH!
-- LoonXTall
The point is that they did copyright it. Slashdot is in the wrong.
Oh, so it's Slashdot who is in the wrong for someone's actions. Comments are owned by the Poster, unless JonKatz wants to put them in a book or Microsoft wants them removed.
-- LoonXTall
I'm afraid I'm missing something here. From the original document distributed by MS:
From Microsoft's letter to Andover.net:
Why is everyone talking about trade secrets?
As for MS's reply, I think they have a pretty good case for the following:
1. Microsoft is claiming copyright on the document describing their extensions, not the extensions themselves.
8. Microsoft respects the right of the users of Slashdot to view the specifications for the purpose of comment. However, Microsoft feels compelled to take action in defense of its copyright, which is being infringed upon by the users mentioned, among others.
Some of the other replies will undoubtedly be to tell /. that they are not within the scope of the copyright violation. It's amazing the amount of damage a tiny worldview can do.
-- LoonXTall
And if we stopped paying money for music all together, I believe there would STILL be very good .mp3's out there...
Much like there is good free software? Hey, RIAA! It hasn't killed Microsoft yet!
-- LoonXTall
If we own the links in our headers, we should also own the links in our sigs.
-- LoonXTall
If the system administrator is incompetent - or even merely overworked - no system is secure. No matter what the OS is.
If it runs code, it's insecure. I bet there are security holes in DOS, but nobody uses it anymore, so they're dormant.
They could well have tampered with the distribution itself.
Yeah, duh. I wasn't thinking hard enough. Even if the developers work off a separate codebase, the trojaned version would still be available for a while.
-- LoonXTall
They simply want to make sure you don't go around passing out the source of those libraries which you didn't write.
Maybe. But what something means and what something says are two completely different animals to the court. Take the infamous DMCA: did the lawmakers know they were passing a rehashed version of the Alien and Sedition Acts? Was it actually meant to be a repression tool for the party (corporations) in power? If it wasn't... did that change the wording of it?
-- LoonXTall
it was the 3rd most popular purchase at Amazon by M$ employees...
Ah-HA! A person that supports the use of market tracking! So YOU are one of those attempting to undermine the value of the Web by making it apparent that stats are in demand! What next, will you present us with the sex life of MS employees, gathered for "market research" and "demographics"?
I've been reading WAY too much YRO lately...
-- LoonXTall
Although it's not a good idea to advertise their security infrastructure layout to the world.
Then you deny the assumed security of Open Source? Please stop before you disillusion me! Knowledge of the sendmail Debug command or the fact that there's no guarantee a binary was produced by source that was distributed with it might destroy my comfortable little OSS Zealot worldview...
-- LoonXTall
Well, OK, $945. But whoever's doing it has a lot more money than me.
-- LoonXTall
With the fees and interest rates they charge, I don't own one, and have often considered trying to crack the Visa Nextcard ads... {evil cackling}
Back on topic, I don't feel save giving out my real name (even my first name), location, phone, or even my age (fudge the demographics... Nashville is within a day's drive, so it shouldn't make a difference ;) ) online. It even irritates me that my IP tells who my ISP is (reverse DNS or "ping -a i.p.right.here").
-- LoonXTall
how many people have audited their apache code since the vulnerability of apache.org was announced?
If we're talking about the same exploit here (in which the "Powered By" logo was changed), the hackers did it with configuration errors. It had nothing to do with the Apache, FreeBSD 4.2, or MySQL source code.
-- LoonXTall
RC5 keyrates experience 15% improvement in pure DOS. Long live single-tasking!
-- LoonXTall
Windows 95 B (aka OSR2) and higher (95C, 98*, 2000, Millenium) have the scripting host. I'm glad Microsoft's website won't let me have updates beyond 95 A :) Also, I'm glad I didn't understand (way back when) what the "Use Netscape Messenger from MAPI-based applications" preference was and left it unchecked. Combined with a lack of Outlook, I guess I'm bullet-proof. So is my Amiga 500 and my DOS machine.
-- LoonXTall
Finally an inovation MS can point to. They created a whole new class of virus/worms.
You can even get infected from a .hlp file (!) too. IIRC, just store your viral code at the end as packed-variable formatted data, set the script entry point to the beginning of your code, and release!
Attachment: outlook-for-the-clueless.hlp ;)
-- LoonXTall
This bodes ill for publicly-managed sites. Just think of Slashdot: they could be sued over links in our sigs. (Granted, Slashdot would likely win since the commenter is clearly the copyright owner, but it would still hurt to have expensive lawsuits being served constantly)
Are our webpage links, like yours to http://radiantmatrix.org/, considered part of the "comment"? I don't think so, as they are replicated over many comments, but IANAL.
-- LoonXTall