For you "420" types...stay the fuck out of my military. There is a 100% Urinalysis policy. You will be piss tested, you will be caught. And i for one feel a lot safer knowing that we are protected by people that never smoked up in their life, cuz you know, stoners never did anything useful for anyone or something./sarcastic
While I can understand them (or any employer for that matter) requesting you dont come in drunk/high on the job (thus their time), but short of people on call 24 hrs, I cant see any difference between smoking up for a weekend and getting drunk (thus YOUR time), as neither effects your job!
If my employer asked me to stop drinking milk at home, or to stop buying scotch tape, I would think just as little of them as when im asked to not smoke up at home too.
And no, I dont smoke (only cigerettes), but hell that could be next if we dont keep them in check now!
By the way, does anybody else think "the ability to switch to a NONE cipher post authentication" is pretty dodgy? Yes, you almost might as well just use telnet or rlogin.
The only advantage ssh with no cipher is that an attacker will not see your authentication details (password or key) to login to the remote machine.
Unfortunatly just like telnet, using ssh with the none cipher opens the connection up to tcp hijacking and injection of packets, so the attacker doesnt really need your password anymore, they can just execute commands as you on the server once you are authenticated.
My guess is with the dynamic tcp window size patch they use, this might be harder than normal to pull off, but I would still feel more comfortable having that tested by someone more knowledgable before I start using it.
Fortunatly CPU has never been my bottleneck with ssh/scp, as alot of my machines on the lan still use 100mbit, so this isnt exactly targeted at me.
Or just compile from source and enable the 'none' "cipher".
I surely missed having that option when copying files between hosts on my LAN. I don't need to hide data from myself. If someone else connects and encrypting data is a concern, I'll simply not use the 'none' "cipher". -1 redundant, -1 fail at slashdot
from the linked article:
Dynamic Windows and None Cipher This is a basis of the HPN-SSH patch set. It provides dynamic window in SSH and the ability to switch to a NONE cipher post authentication. Based on the HPN12 v20 patch.
Tell me again, what was it that you depend on that only runs on windows? The main thing people will complain about is games. Windows these days is not an OS so much as a Gaming Platform.
Telling one of these users to switch to linux is like telling a xbox360 owner to go out and buy a wii so he can play all his 360 games better.
I don't use (only) OpenDNS because I don't like being tracked and their search page that pops up when you type a wrong address. You can create an account with them, login, list your IP blocks so it knows what queries your settings apply to, then you can disable the search page, and even set it so a nonexistant domain returns NXDOMAIN like it should.
There are many other settings too, you can pretty much enable/disable any of their dns add-ons, to leave only the ones you actually want.
If you are concerned about tracking, you will need to keep your current cache server setup, but I'm willing to bet the setting in the opendns dashboard would be alot easier to use than however you are filtering out their search page replies:}
Linux has come a long way towards desktop/user friendliness and distributions like Ubuntu are a huge leap forward, but they still haven't achieved the holy grail of but-can-my-grandmother-use-it. Getting closer, though. I really do wonder though, -does- your grandmother actually -use- windows? This could be your grandmother, or a hypotetical one if you prefer.
Most of the elderly (and for that matter, a nice sized chunk of the population 40+ too) in both my experence and from my obervation, to be rather 'clumsy' around technology, no doubt due to not growing up with it like the younger crowd, and also seemingly only interested in getting done what they want to do, which falls into the realm of applications, not so much the OS (other than getting to said applications.)
I know that is a gross generalization and not always the case, there are definatly people that are older and work with technology as well as the younger ones, but to me it just seems more often than not the above is the case.
My mother for example, only knows the name of the OS because it is a mac (and even then there isnt a good mac hardware vs mac os x seperation in her mind, its just 'the macintosh'), and I basically put aliases on the desktop to her apps. Beyond what I setup for her, unless im there or on the phone holding her hand through it, she doesnt ever muck with any other aspect of the OS.
My point is, she doesnt USE the os, in so far as if the OS was a console text based menu that just launched apps, that would be good enough. One can compare all sorts of UI features and debate ease-of-use all you want, but i'm fairly certain no matter what OS she ends up with, windows osx or linux, her apps are all that matter, and the OS is just a big fancy menu for getting to them.
This seems true for alot of people at that age group and older. Does ease-of-use really matter as a feature of software if that feature is never even used?
I guess what i'm saying, for the group of people you were referring to, the ease-of-use aspects only really matter to the person setting the computer up for them.
I can show someone (even my mother) how to launch apps in any OS, and how to streamline that process (IE launch bar, icons on desktop, however) and in those cases, linux is equally easy to use as windows or osx.
As far as 'installing linux is a pain!', well, i agree you need a larger base of knowledge about the computer and OS to get things setup right, but concidering grandma wont be installing windows ever either, thats clearly not a downside to linux.
It's one thing to inform the vendor that a flaw exists and demanding money for the details of the flaw. It's a whole different thing in my book to sell the details to _anybody_ else than the vendor. Indeed. Unfortunatly in the USA, by law if you inform the vendor of the problem, and so much as ask for payment, it falls enough into the legal definition of blackmail to get you in trouble if they push the issue. And you never know if they will push it to court, or thank you for your trouble. If I was running a large company with lots of finantual backing, and thought I was in the right (or to be more specific, if my legal team thought i was in the right) then I would definatly go to court to fight it. However being an individual, there is no way in hell I would willingly expose myself to that type of risk.
Selling to everyone else however can't possibly be blackmail, since they can just say no and nothing bad happens to them. It doesn't match either the legal or english definition of the word.
It's very smart from a legal point of view. Offer your services and 'IP' to everyone that you know wont sue you for it, and avoid the one person/company that could.
If the laws were different and more sane, then they COULD sell to everyone including the vendor, or perhaps it would be at a price where they can afford to sell to ONLY the vendor. Sadly, they arnt.
The proof-of-concept code only supports x86 and x86_64. Does that mean other architectures are immune? It would appear thats not the case, any arch the kernel runs on with this module is vulnerable.
If you planned to exploit it on a non-x86 platform, you just need to get some shellcode for that cpu to take advantage of it. I'm sure the proof of concept wouldnt go that far, but a bad guys exploit tool would.
The writer concludes that the webmail interface has been artificially limited by basic user-agent sniffing. Why would the server need to sniff the network for data thats being sent directly to that server willingly by the browser?
While the Bible doesn't actually state the nature of pi, and a cubit is an extremely rough unit anyway, it's amusing to note that if you properly define cubit as being a fixed length and assert that the word circular refers to a near-perfect circle, the units just don't work out unless you redefine space, and along with it, Pi. That is actually really interesting to me. I always heard that a cubit was 1.5 feet. Later, google calculator confirmed this (Search for '1 cubit in feet' to get the result 1.5)
However, this prompted me to check wikipedia to see what it said about the cubit.
Aparently the bible uses the asumption that the cubit is the length of the average persons arm from the thumb to the elbow, which as you say is indeed quite a rough unit.
With two asumptions, that 1 cubit = 1.5 feet, and:
"He made the Sea of cast metal, circular in shape, measuring ten cubits from rim to rim and five cubits high. It took a line of thirty cubits to measure around it." This works out as 30 cubits = 45 feet, and so the difference between 3 and pi (3.141592) works out as an extra 2.12388 feet (47.12388-45), or 3.18582 cubits.
Seems to me to be too big od a difference to put any faith that this would be a useful passage for mathmatics (not that im trying to defend the bible as such, here or ever.)
I'd like to see this license I supposedly agreed to when I turned the TV on. It was the same licence you agreed to that says the government can imprison you for murdering someone, and that the government will imprison someone else for murdering you.
law is not something one has to activly agree to, and if you disagree, the only consistant option is to leave that country, or of course the hassle of trying to change the law before you break it.
The church is in the wrong here - like on so many other things. In all fairness, I wouldnt say the church is in the wrong here, however I would say they are seemingly breaking the law.
Huge difference. Unfortunatly in the US these days, the only way to be morally right IS to break certain laws all the time:/
As for 'like on so many other things', well, yea... I'm not even wanting to defend most of the evil the church causes, as i agree with you.
We had "anti-matter," "dark matter," now "phantom matter." Jesus, is there anything substantial and real in physics anymore? Yes, atleast half of what you listed exists.
anti-matter is real, has been observed, and created by man.
dark-matter is real, and has been observed at least here on earth, thou only durring the 12 hrs out of 24 that it is no longer classified as dark. But if its there in those 12/24 hours when its not dark, and noone moves it, its clearly still there in the other 12 hours while it *is* dark-matter.
phantom-matter was just made up by this guy in his theoretical guess, but since he has so little scientific backing to his idea, i cant see anyone else wanting to put any effort into proving him right or wrong, chances are he will just be ignored.
As for jesus, well, i wasnt around back then, however since most of the things attributed to jesus are clearly physically impossible, while i cant say ALL of the things (ex. his existance) are also impossible, odds are he either didnt exist, or if he did was just a normal schmoe like us. Since one cant actually prove a negative, we really dont have to disprove jesus. Its up to someone else to prove it, and that hasnt happened (nor will after this much time has passed)
No, you can't steal an idea. you can steal a document containing an idea. You can copy an idea but the end of the process the original "owner" of said idea still has it. Well actually, yes you can, usually.
I could threaten your life, or torture you, to attempt to force you to tell me the idea, and after you do, kill you;}
Of course with all the things one would have to do to steal an idea, im sure others would care alot more about the murder than the idea theft
Maybe it's time we just get rid of IRC altogether? Is it truly serving a purpose in this day and age? Yes it is.
And just to be sure to remove all command channels there could be, you should get rid of irc, aim, hell all IM, email, the web, ftp, and most importaint, have the ISPs block ALL inbound ports, and block all outbound.
That will solve the problem, but noone will be here to enjoy it.
You mean to tell me there is no way for a network admin to tell when a computer on their network is an infected botnet drone? I claim poppycock on that. Comcast and others for example detect BT networks enough to disrupt them why can't they do the same for the botnets? Oh, their isn't a threat of lawsuit in botnets....I see... I, and anyone familiar with the BT protocol, can describe how to detect the BT protocol. Would you mind sharing with us the 'botnet' protocol? I realize there is no botnet protocol, but actually hundreds (or thousands) of them, each different, for one type of botnet drone software. These also change, in that new ones are introduced, and old ones updated. I realize that, and hope you see it now too.
What exact type of traffic are you claiming can be detected? The 10 or 20 packets sent once that went towards the DoS attack? You realize you made more http requests than that just to load the main slashdot page?
A few packets that look like any other coming from one machine, that after added with the traffic from the other millions of drones becomes signifigant.. I still fail to see how you claim these are detectable? Concidering the only traffic a drone has to make can be hidden with the real network traffic of that computer, so that it is not possible to tell the difference between it and the computer users own actions.
There might be certain patterns right now that are detectable, but any of them would be trivial to hide if that was the botnet admins desire (which seems a logical one to assume, as a detected infection is less useful than an undetected one)
I'd be willing to bet that most likely your PC right now performs actions over the network that will make it appear to be part of a botnet. Checking a server at regular times (system and app updates) over an SSL connection, check. Sends out a few http requests now and then, check. Yup, detection shows your a drone.
Classic example of a question that can't be properly answered by a yes or no: "Do you still beat your wife?" Intelligence goes beyond simple logic. What if the answer is "Yes, I'm still beating my wife." or "No, I've stopped beating my wife."? Actually, that question has many answers, which yes and no does not even answer all of properly.
'Yes' - Yes, i still beat my wife 'no' - No, i no longer beat my wife
'no' - No, i dont beat my wife, and never did (communicated poorly, thus a wrong answer) 'yes' - Yes, i beat my wife now, but never did before (also communicated poorly)
'no, and i never did' - 2nd no above but communicated right, but using more than yes/no 'yes, but i never have before' and 'yes, and always have'
then theres 'no' / 'no, i have no wife' / 'no, i am the wife, i have a husband' / all the rest of the answers that could follow from the last answers posistion (IE 'no, i am the wife, and my husband never beat me' or 'always does' or 'never did before btu does now' or 'did recently but never before' etc etc)
In fact, id go as far to say if that question was only answered with a yes/no, then the answer is almost always going to be wrong, by forcing them into answering with a wrong answer. Asking "What is 99 plus 99.. you can answer with only 1 digit" is not a fair evaluation of intelegence (Unless perhaps the answer given to that question is 'are you a moron or something?')
I think you are free to do that actually, however without a contract (which im sure walmart has at least one of per distributer) you would have a hard time enforcing it.
And even with a contract, you'll be hard pressed to find someone to sell you something that when asked to sign it didnt laugh you out of the store.. but even assuming you meant a higher level of buying (IE the same way walmart does, in bulk from distrubters) where you might have a contract as standard practice, then you too could get away with this.
I've used (and still have) one of these keyboards. It lives teathered to an old Mac lcIII. A long while ago I found an ADB->USB adaptor, for using it on newer systems, which runs about $40 from http://www.griffintechnology.com/products/imate
Unfortunatly due to the nature of ADB, the response time will be quite low, and although there may have been some improvements in the driver software since then, at the time it was very hard to map all of the keys correctly to use with windows.
Apple has more or less a stranglehold now on the market, and the labels demanding DRM on their music help Apple maintaining this stranglehold, and block e.g. Amazon from selling music that plays on the iPod lolz, how can apple block people from selling mp3s? how have they even attempted to do this? not to mention apple doesnt own the mp3 standard and cant dictate to anyone anything about it.
Yes but life is Millions of years old, as well as Billions. Get enough Millions and you start getting billions. But isnt that like saying you are only a year old. Get enough years and you start getting to your real age?
Slashdot Mirror
While I can understand them (or any employer for that matter) requesting you dont come in drunk/high on the job (thus their time), but short of people on call 24 hrs, I cant see any difference between smoking up for a weekend and getting drunk (thus YOUR time), as neither effects your job!
If my employer asked me to stop drinking milk at home, or to stop buying scotch tape, I would think just as little of them as when im asked to not smoke up at home too.
And no, I dont smoke (only cigerettes), but hell that could be next if we dont keep them in check now!
The only advantage ssh with no cipher is that an attacker will not see your authentication details (password or key) to login to the remote machine.
Unfortunatly just like telnet, using ssh with the none cipher opens the connection up to tcp hijacking and injection of packets, so the attacker doesnt really need your password anymore, they can just execute commands as you on the server once you are authenticated.
My guess is with the dynamic tcp window size patch they use, this might be harder than normal to pull off, but I would still feel more comfortable having that tested by someone more knowledgable before I start using it.
Fortunatly CPU has never been my bottleneck with ssh/scp, as alot of my machines on the lan still use 100mbit, so this isnt exactly targeted at me.
I surely missed having that option when copying files between hosts on my LAN. I don't need to hide data from myself. If someone else connects and encrypting data is a concern, I'll simply not use the 'none' "cipher". -1 redundant, -1 fail at slashdot
from the linked article: Dynamic Windows and None Cipher
This is a basis of the HPN-SSH patch set. It provides dynamic window in SSH and the ability to switch to a NONE cipher post authentication. Based on the HPN12 v20 patch.
Windows these days is not an OS so much as a Gaming Platform.
Telling one of these users to switch to linux is like telling a xbox360 owner to go out and buy a wii so he can play all his 360 games better.
There are many other settings too, you can pretty much enable/disable any of their dns add-ons, to leave only the ones you actually want.
If you are concerned about tracking, you will need to keep your current cache server setup, but I'm willing to bet the setting in the opendns dashboard would be alot easier to use than however you are filtering out their search page replies
Thank you!
;}
Now if only the article summary made as much sense
This could be your grandmother, or a hypotetical one if you prefer.
Most of the elderly (and for that matter, a nice sized chunk of the population 40+ too) in both my experence and from my obervation, to be rather 'clumsy' around technology, no doubt due to not growing up with it like the younger crowd, and also seemingly only interested in getting done what they want to do, which falls into the realm of applications, not so much the OS (other than getting to said applications.)
I know that is a gross generalization and not always the case, there are definatly people that are older and work with technology as well as the younger ones, but to me it just seems more often than not the above is the case.
My mother for example, only knows the name of the OS because it is a mac (and even then there isnt a good mac hardware vs mac os x seperation in her mind, its just 'the macintosh'), and I basically put aliases on the desktop to her apps. Beyond what I setup for her, unless im there or on the phone holding her hand through it, she doesnt ever muck with any other aspect of the OS.
My point is, she doesnt USE the os, in so far as if the OS was a console text based menu that just launched apps, that would be good enough.
One can compare all sorts of UI features and debate ease-of-use all you want, but i'm fairly certain no matter what OS she ends up with, windows osx or linux, her apps are all that matter, and the OS is just a big fancy menu for getting to them.
This seems true for alot of people at that age group and older.
Does ease-of-use really matter as a feature of software if that feature is never even used?
I guess what i'm saying, for the group of people you were referring to, the ease-of-use aspects only really matter to the person setting the computer up for them.
I can show someone (even my mother) how to launch apps in any OS, and how to streamline that process (IE launch bar, icons on desktop, however) and in those cases, linux is equally easy to use as windows or osx.
As far as 'installing linux is a pain!', well, i agree you need a larger base of knowledge about the computer and OS to get things setup right, but concidering grandma wont be installing windows ever either, thats clearly not a downside to linux.
And could you convert that to a unit of cars or library of congresses?
If I was running a large company with lots of finantual backing, and thought I was in the right (or to be more specific, if my legal team thought i was in the right) then I would definatly go to court to fight it.
However being an individual, there is no way in hell I would willingly expose myself to that type of risk.
Selling to everyone else however can't possibly be blackmail, since they can just say no and nothing bad happens to them. It doesn't match either the legal or english definition of the word.
It's very smart from a legal point of view. Offer your services and 'IP' to everyone that you know wont sue you for it, and avoid the one person/company that could.
If the laws were different and more sane, then they COULD sell to everyone including the vendor, or perhaps it would be at a price where they can afford to sell to ONLY the vendor.
Sadly, they arnt.
Capitalists gotta eat after all!
If you planned to exploit it on a non-x86 platform, you just need to get some shellcode for that cpu to take advantage of it. I'm sure the proof of concept wouldnt go that far, but a bad guys exploit tool would.
However, this prompted me to check wikipedia to see what it said about the cubit.
Aparently the bible uses the asumption that the cubit is the length of the average persons arm from the thumb to the elbow, which as you say is indeed quite a rough unit.
With two asumptions, that 1 cubit = 1.5 feet, and: "He made the Sea of cast metal, circular in shape, measuring ten cubits from rim to rim and five cubits high. It took a line of thirty cubits to measure around it." This works out as 30 cubits = 45 feet, and so the difference between 3 and pi (3.141592) works out as an extra 2.12388 feet (47.12388-45), or 3.18582 cubits.
Seems to me to be too big od a difference to put any faith that this would be a useful passage for mathmatics (not that im trying to defend the bible as such, here or ever.)
law is not something one has to activly agree to, and if you disagree, the only consistant option is to leave that country, or of course the hassle of trying to change the law before you break it.
Huge difference. Unfortunatly in the US these days, the only way to be morally right IS to break certain laws all the time
As for 'like on so many other things', well, yea... I'm not even wanting to defend most of the evil the church causes, as i agree with you.
anti-matter is real, has been observed, and created by man.
dark-matter is real, and has been observed at least here on earth, thou only durring the 12 hrs out of 24 that it is no longer classified as dark.
But if its there in those 12/24 hours when its not dark, and noone moves it, its clearly still there in the other 12 hours while it *is* dark-matter.
phantom-matter was just made up by this guy in his theoretical guess, but since he has so little scientific backing to his idea, i cant see anyone else wanting to put any effort into proving him right or wrong, chances are he will just be ignored.
As for jesus, well, i wasnt around back then, however since most of the things attributed to jesus are clearly physically impossible, while i cant say ALL of the things (ex. his existance) are also impossible, odds are he either didnt exist, or if he did was just a normal schmoe like us.
Since one cant actually prove a negative, we really dont have to disprove jesus. Its up to someone else to prove it, and that hasnt happened (nor will after this much time has passed)
I could threaten your life, or torture you, to attempt to force you to tell me the idea, and after you do, kill you
Of course with all the things one would have to do to steal an idea, im sure others would care alot more about the murder than the idea theft
Why is that my problem?
Sounds to me like they fucked up in pricing on the console, as well as the games.
But who the hell are you and me to tell large companys how to do their thing?
They wanna sell it for $400? Ok, ill buy it for that. Now quitchurbitchin bout what i do with my own property, plzktnx.
And just to be sure to remove all command channels there could be, you should get rid of irc, aim, hell all IM, email, the web, ftp, and most importaint, have the ISPs block ALL inbound ports, and block all outbound.
That will solve the problem, but noone will be here to enjoy it.
Would you mind sharing with us the 'botnet' protocol?
I realize there is no botnet protocol, but actually hundreds (or thousands) of them, each different, for one type of botnet drone software. These also change, in that new ones are introduced, and old ones updated. I realize that, and hope you see it now too.
What exact type of traffic are you claiming can be detected?
The 10 or 20 packets sent once that went towards the DoS attack? You realize you made more http requests than that just to load the main slashdot page?
A few packets that look like any other coming from one machine, that after added with the traffic from the other millions of drones becomes signifigant.. I still fail to see how you claim these are detectable?
Concidering the only traffic a drone has to make can be hidden with the real network traffic of that computer, so that it is not possible to tell the difference between it and the computer users own actions.
There might be certain patterns right now that are detectable, but any of them would be trivial to hide if that was the botnet admins desire (which seems a logical one to assume, as a detected infection is less useful than an undetected one)
I'd be willing to bet that most likely your PC right now performs actions over the network that will make it appear to be part of a botnet. Checking a server at regular times (system and app updates) over an SSL connection, check. Sends out a few http requests now and then, check.
Yup, detection shows your a drone.
'Yes' - Yes, i still beat my wife
'no' - No, i no longer beat my wife
'no' - No, i dont beat my wife, and never did (communicated poorly, thus a wrong answer)
'yes' - Yes, i beat my wife now, but never did before (also communicated poorly)
'no, and i never did' - 2nd no above but communicated right, but using more than yes/no
'yes, but i never have before' and
'yes, and always have'
then theres
'no' / 'no, i have no wife' / 'no, i am the wife, i have a husband' / all the rest of the answers that could follow from the last answers posistion (IE 'no, i am the wife, and my husband never beat me' or 'always does' or 'never did before btu does now' or 'did recently but never before' etc etc)
In fact, id go as far to say if that question was only answered with a yes/no, then the answer is almost always going to be wrong, by forcing them into answering with a wrong answer.
Asking "What is 99 plus 99.. you can answer with only 1 digit" is not a fair evaluation of intelegence (Unless perhaps the answer given to that question is 'are you a moron or something?')
I think you are free to do that actually, however without a contract (which im sure walmart has at least one of per distributer) you would have a hard time enforcing it.
And even with a contract, you'll be hard pressed to find someone to sell you something that when asked to sign it didnt laugh you out of the store.. but even assuming you meant a higher level of buying (IE the same way walmart does, in bulk from distrubters) where you might have a contract as standard practice, then you too could get away with this.
Naa, thats just after the metric to emperial conversion :}
I've used (and still have) one of these keyboards. It lives teathered to an old Mac lcIII.
A long while ago I found an ADB->USB adaptor, for using it on newer systems, which runs about $40 from http://www.griffintechnology.com/products/imate
Unfortunatly due to the nature of ADB, the response time will be quite low, and although there may have been some improvements in the driver software since then, at the time it was very hard to map all of the keys correctly to use with windows.
Incase the joke is missed, iPods play mp3s