My copy of diehard includes 'makewhat.exe', a FAST RNG. It makes 11MB chunks of data in... like... less than a second with the faster generators. Check it you if you want.
I may be missing something here, but what good encryption system would need 20GB of random data? What is that, like half your hard disk space? if you want to do a sort of XOR job, then encrypting the random data, you'd need that much, but 20GB? that's a lot of hard disk space.
I'd go for something different if I were you. I like the look of TCFS but I'm fairly new to Linux so I don't think I'll be using it just yet. Here's an ectract from the security HOWTO:
"6.10. CFS - Cryptographic File System and TCFS - Transparent Cryptographic File System
CFS is a way of encrypting entire directory trees and allowing users to store encrypted files on them. It uses an NFS server running on the local machine. RPMS are available at http://www.zedz.net/redhat/, and more information on how it all works is at ftp://ftp.research.att.com/dist/mab/.
TCFS improves on CFS by adding more integration with the file system, so that it's transparent to users that the file system that is encrypted. More information at: http://edu-gw.dia.unisa.it/tcfs/.
It also need not be used on entire filesystems. It works on directory trees as well."
You could try either of them. As I may have said, I like the look of TCFS. The website in the qoute may have been removed, if so, I know it's availiable at http://tcfs.dia.unisa.it/.
"When bad men combine, the good must associate; else they will fall one by one, an unpitied sacrifice in a contemptible struggle." - Edmund Burke
"The last time I saw him he was walking down Lover's Lane holding his own hand." -- Fred Allen
...etc
I'd say they're a small random sub-selection from a large collection, i.e. Lots of qoutes from which, say, 3 are selected randomly daily and distributed randomly to different pages. I think.
Rolls wrote in to tell us about the Tabloids' Web site promoting Napster mischief
To clarify, that's mischief as in trying to disrupt Napster service, i.e. with fake tracks.
I don't have any real opinion on the 'napster: is it good or bad' debate, but I had a look anyway... I had a look at the 'Unsafe Sex' page and either these people don't get programming and Internet security or they are exadurating/lying for shock value.
I want to keep out of this whole debate because I really don't care, but this information is wrong.
Have a look at http://www.consumerreports.org/Email/emsend.html
I don't have a username/password and I can't be bothered with signing up, or even working out if you have to pay to sign up or not. In any case, I got that page from a big link saying "Send us an e-mail" so I think it's a pretty safe bet.
If not, you could e-mail postmaster@consumerreports.org
What I don't get is how this system differs from a symmetric key algorithm. It all hinges around one bit of data known only to intended readers, in this case the numbers of the two pads, and in the case of, say Blowfish, the password to decrypt. Why not just encrypt your message, post it (anonymously) to USENET and where you would have told people the two pads' locations, you tell them the message title and the password?
This has been discussed quite a lot recently. a Q&A section was recently run in PC Pro. Here's my parody:
Q: Will this stop piracy or simply increase Microsoft's profits? A: By reducing piracy, additional revenue will be seen by us! Ker-ching Ker-ching! Woohoo! This in turn would lead to us paying higher taxes, but don't worry: Our lawyers are working 24/7 looking for tax loopholes so we can pay as little as possible!!
Q: If piracy is reduced, will we see cheaper licenses? A: Of course not! Whilst we have just said "By reducing piracy, additional revenue will be seen throughout the industry", we won't pass this on to consumers. We'll carry on nailing you for the highest prices we can, just like always!
Q: Why are you adding another complication to an already complicated licencing system? A: Our new media policy is genuinely intended to support the 5,500 OEMs who buy genuine products to compete on a level playing field. We are strong-arming them into this policy for their own good (And we wouldn't dream of disregarding their opinions), even if the only people who will see the 'additional revenue' which will be 'seen throughout the industry' will be us.
Q: Is Microsoft passing the buck to OEMs in terms of technical support? A: We always have! Why should we change now?
Q: Will my OS work if I upgrade my PC? A: Obviously, the BIOS key isn't overwritten when you flash your bios. We will, however, side-step the massive issue of people actually wanting to upgrade their motherboards but it won't matter! We think you're too dumb to notice!
Q: In the case of a backup partition on the hard disk, what happens if my disk fails or becomes infected with a virus? A: Well, if you're within your warranty, you can send your system back for repair and wait weeks for it to be returned with all your files comprehensively erased. If you're out of warranty, you will have to go to a Microsoft-endorsed retailer who will nail you with massive charges to actually install what you have already paid for!
Q: Do your proprietary Kerbeos extensions have any purpose except to stop Windows 2000 being compatible with UNIX servers? A: No, we're profiteering again! What's more, nobody will be able to do anything about it because the only people who have the power to threaten us are ignorant of the facts!
Q: Does Microsoft support the old adage 'The customer is always right'? A: No, course not. Microsoft supports the adage 'The customer has money. Bill Gates must have this money'. Inkeeping with this adage, we will do whatever we have to to make more money, regardless of whether the end solution is as functional as the one it is replacing.
Q: Does Microsoft hate us all? A: Only if you haven't got any money left to spend on our products.
That's an interesting question. My mersonal favourite algorithm is IDEA, because it's reasonably fast, secure and it has a good acronym. If you're writing your own program, I suggest a look at the Scramdisk webpage. They have a nice bit about algorithms and choosing between them.
If you're presenting the question as an irrelevent question, like one might ask 'What does the scroll lock button do?' I'd say most programmers center thier choices on
1) If it's ever been broken. 2) What algorithms they know. 3) Key Length. 4) Speed. 5) Anything else.
Angorithm, however, is irrelevent in the big picture. The majority of effective attacks use things like buffer overflows and reverse engineering, not brute-force attacks, just like the easiest way of hacking is bribing employees. Well, that or threatening them.
This program sounds stupid to me. They claim it's 98% accurate. That doesn't sound very good to me. Are 2% of thier customers going to be denied access to what they pay for?
What's more, I think that 98% accuracy is a bit optomistic. In a test with lots of nice, fresh suit-and-tie computer programmers first thing in the morning at a work terminal it may be very accurate, but I type differently when I'm at home. Sometimes I turn sideways to watch TV and put my feet up. My typing style changes completely because my body is at a 90-degree angle to the keyboard. What if the user talkes a typing course? I bet they havn't tested things like this.
My other thought on the subject is how anazingly easy this coul be to break... VERY simple scripting/programming language Visual DialogScript has the command:
WINDOW SEND, ,
WINDOW SEND sends the contents of to the specified window as simulated keystrokes. Text can be entered as ordinary text.
People will write programs using a system like this to simulate typing. Feed that in as the initial input instead of your 'real' typing and you'd be past the security in no time. I think.
Somewhere I read that somplace was so paranoid about info leaks that hard disks were actually dissolved in acid. I think it was the old removable disk paks.
It's common practice to erase floppy disks with powerful wall-mounted magnets before incinerating them in many embassies. But then, it's also common practice to confetti-shread documents, incinerate them, then mix them with water to make sure people can't read said documents from the trash.
It's so much easier to bribe somebody in said embassy...
I am ready, Celera. I am ready, HGP. Modify, enhance, and augment me. Hell, exploit me. I am ready!
Given a choice between being biologically enhanced and having a computer implanted in my head, turning me into a cyborg, I'd rather be a cyborg. I'd like an augmented field of vision that could detect the electromagnetic fields emmitted by the human heart and a fast, highly accurate muscle system. I'd also like to never forget things.
As far as I know - and I don't know much, I'll admit - what the writer did was write an EXE file, give it the same icon as an AVI would normally have then rename it to whatever.avi.exe
Windows has a default-on option of 'hide file extensions for known file types' so the only references users have is seeing the filename whatever.avi with an AVI icon.
That's just what I think... I havn't recieved a copy of the virus myself...
the security-conscious would be able to check the code for bugs and potential security flaws.
I don't think Microsoft would want people to be able to check thier software for security flaws. That would make it seem like faults were thier faults. They'd prefer to portray those who discover bugs as crackers and rush out a hurried 'security fix'. Besides, if they revealed the API source, they wouldn't have a 'competitive advantage' with which to crish thier rivals before integrating said rivals' ideas into thier own products and acting like they've done nothing wrong!
I'd put a link or autoresponder suggesting users submit the full headers to:
http://www.spamcop.net
A great spam auto-tracking and report sending site. Other than that, if an ISP won't close a spammer's account, I'd find a good no-win-no-fee lawyer to take them on in court. I'd also post thier support/sales/whatever e-mail address to slashdot. We'll all e-mail them with our opinions on spammers.
1) Put a link on your website saying 'Are you interested in Mattel's Barbie website? This websith has no relationship to them but you can click here to go to the official site.' 2) Try to avoid obvious barbie parodies, or... 3) Offer to transfer your domain name to mattel if they will cover your costs. If they do, ask for thier agreement on a new dommand name, i.e. http://www.barbieclan.com or http://www.barbietribes.net or some similar varient.
When push comes to shove, you don't have much chace of winning if this comes to court: they can outgun you for long enough for you to run out of money, like in many high-profile american court cases.
If you ask me, Mattel has something of a point with your domain name... barbie is thier product, after all, and you are making a parody of it. I suggest cooperating: I doubt they're going to change thier minds. It isn't fair, but life isn't always fair.
If Microsoft left the United States, it might be the best thing that ever happened to our economy. We can thank them for people being afraid of opening email, users blaming themselves for computers "crashing," a term that used to refer to actual physical hard drive head crashing, lost data, incompatibility between releases and vendors, etc.
Being in another country won't stop them writing shit programs.
Really, this is not much different from the arguments regarding the use of force in defending one's home against a burglar.
Difference: Somebody who you've shot dead isn't going to reinstall his body and come back with his mates to burn your house down.
Crashing a Win95-using script kiddie who's using Bob's generic port scanner and Win95-bundled telnet is okay if you don't do too much damage, like an electric fence. Launching a personal one-on-one reformat-your-hard-disk war, however, is silly, like giving a burgler a savage but no-permanant-damage punishment beating.
If you expect to make much money from your publication, I'd go dead-tree. It's just so much easier to copy-control, and nicer to read (I have a Sony Trinitron 17" monitor and for normal tasks like web browsing, I keep the brightness as low as it will go, so maybe I'm not the best sample here)
You can, optionally, put the first few chapters online, unless it's like a 'Tom Clancy' (Or whoever is writing for him) book which tends to be 75% building up to the action and 25% action, i.e. vivid descriptions of how terrorists are building and shipping a nuclear bomb for the first three quaters of the book which aren't that exciting but you have to read.
If you're writing a technical book that has a CD in the back, or a technical book costing more than, say, $45, you could put a HTML copy on a CD in the back, so as to be easily searchable.
As for self-publishing, I'd advise against it. No offense meant but you have to remember: It might suck.
In summary, for a novel, I suggest going to a proper publisher. Optionally publish a few chapters online. If possible, as a follow-up, send it for a/. book review.
On my Windows box, I didn't want to run any services on certain ports. For my own entertainment, I wrote a program to open the ports to recieve data and wrote a program to accept connections, offer a login with an easily guessable password (It was 'Password') and then offers up what appears to be a *nix root prompt, but whatever input it got, it said 'Command unrecognised'. It had a nice GUI so I could watch all the script kiddies log in, thinking they were amazing root hackers, and then find themselves unable to execute any commands. I don't know enough about Unix/Linux to write anything for said platforms (I'm only starting to learn now) but a good protection against hackers would be a login prompt where any user/pass combination gave the appearence of a login but if the user/pass were wrong, it was a 'synthezised' prompt where the commands don't actually *do* anything.
You are not allowed to vary the spelling, add or delete hyphens (even for normal hyphenation at the end of a line of text), make one word two, or use a possessive or plural form of the Marks.
I wonder what the law says about Ah-pogee as a spelling?
Network Associates threatened to sue Bindiew for publicising a remotely exploitable buffer overflow in Network Associates' Sniffer Pro Product. I wonder if criticising a product because it has faults is illigal.
Probably. Who cares about things like free speech?
Micro$oft uses GET on thier website, and in thier shite-o-browser, MSIE.
If this guy sues Micro$oft, he has my support.
Michael
P.S. Do you think anybody has patented the idea of a program for sending unsolicited commercial e-mails? A patent and a whole bunch of lawsuits would be really funny...
Slashdot Mirror
Hey!
If you want a good source of random numbers, try downloading DIEHARD for Linux.
There are also some RNG links at SecurityFocus.
My copy of diehard includes 'makewhat.exe', a FAST RNG. It makes 11MB chunks of data in... like... less than a second with the faster generators. Check it you if you want.
Michael Tandy
Hey!
I may be missing something here, but what good encryption system would need 20GB of random data? What is that, like half your hard disk space? if you want to do a sort of XOR job, then encrypting the random data, you'd need that much, but 20GB? that's a lot of hard disk space.
I'd go for something different if I were you. I like the look of TCFS but I'm fairly new to Linux so I don't think I'll be using it just yet. Here's an ectract from the security HOWTO:
"6.10. CFS - Cryptographic File System and TCFS - Transparent Cryptographic File System
CFS is a way of encrypting entire directory trees and allowing users to store encrypted files on them. It uses an NFS server running on the local machine. RPMS are available at http://www.zedz.net/redhat/, and more information on how it all works is at ftp://ftp.research.att.com/dist/mab/.
TCFS improves on CFS by adding more integration with the file system, so that it's transparent to users that the file system that is encrypted. More information at: http://edu-gw.dia.unisa.it/tcfs/.
It also need not be used on entire filesystems. It works on directory trees as well."
You could try either of them. As I may have said, I like the look of TCFS. The website in the qoute may have been removed, if so, I know it's availiable at http://tcfs.dia.unisa.it/.
The Linux Journal has a good article that you could also look at.
Just my $0.02
Michael Tandy
That's nothing on some of the ones I've had up:
"When bad men combine, the good must associate; else they will fall one by one, an unpitied sacrifice in a contemptible struggle." - Edmund Burke
"The last time I saw him he was walking down Lover's Lane holding his own hand." -- Fred Allen
...etc
I'd say they're a small random sub-selection from a large collection, i.e. Lots of qoutes from which, say, 3 are selected randomly daily and distributed randomly to different pages. I think.
Michael Tandy
Hey!
Rolls wrote in to tell us about the Tabloids' Web site promoting Napster mischief
To clarify, that's mischief as in trying to disrupt Napster service, i.e. with fake tracks.
I don't have any real opinion on the 'napster: is it good or bad' debate, but I had a look anyway... I had a look at the 'Unsafe Sex' page and either these people don't get programming and Internet security or they are exadurating/lying for shock value.
I want to keep out of this whole debate because I really don't care, but this information is wrong.
Just my $0.02
Michael Tandy
Hey,
Have a look at http://www.consumerreports.org/Email/emsend.html
I don't have a username/password and I can't be bothered with signing up, or even working out if you have to pay to sign up or not. In any case, I got that page from a big link saying "Send us an e-mail" so I think it's a pretty safe bet.
If not, you could e-mail postmaster@consumerreports.org
Michael Tandy
Hey,
it's a proxy server setup for this software
Couldn't the user circumvent this and any scanning for words by having a 128-bit SSL connection to thier porn provider?
I think it would work... an I missing something really big here?
Michael Tandy
Hey,
What I don't get is how this system differs from a symmetric key algorithm. It all hinges around one bit of data known only to intended readers, in this case the numbers of the two pads, and in the case of, say Blowfish, the password to decrypt. Why not just encrypt your message, post it (anonymously) to USENET and where you would have told people the two pads' locations, you tell them the message title and the password?
Just my 2
Michael Tandy
Hey,
This has been discussed quite a lot recently. a Q&A section was recently run in PC Pro. Here's my parody:
Q: Will this stop piracy or simply increase Microsoft's profits?
A: By reducing piracy, additional revenue will be seen by us! Ker-ching Ker-ching! Woohoo! This in turn would lead to us paying higher taxes, but don't worry: Our lawyers are working 24/7 looking for tax loopholes so we can pay as little as possible!!
Q: If piracy is reduced, will we see cheaper licenses?
A: Of course not! Whilst we have just said "By reducing piracy, additional revenue will be seen throughout the industry", we won't pass this on to consumers. We'll carry on nailing you for the highest prices we can, just like always!
Q: Why are you adding another complication to an already complicated licencing system?
A: Our new media policy is genuinely intended to support the 5,500 OEMs who buy genuine products to compete on a level playing field. We are strong-arming them into this policy for their own good (And we wouldn't dream of disregarding their opinions), even if the only people who will see the 'additional revenue' which will be 'seen throughout the industry' will be us.
Q: Is Microsoft passing the buck to OEMs in terms of technical support?
A: We always have! Why should we change now?
Q: Will my OS work if I upgrade my PC?
A: Obviously, the BIOS key isn't overwritten when you flash your bios. We will, however, side-step the massive issue of people actually wanting to upgrade their motherboards but it won't matter! We think you're too dumb to notice!
Q: In the case of a backup partition on the hard disk, what happens if my disk fails or becomes infected with a virus?
A: Well, if you're within your warranty, you can send your system back for repair and wait weeks for it to be returned with all your files comprehensively erased. If you're out of warranty, you will have to go to a Microsoft-endorsed retailer who will nail you with massive charges to actually install what you have already paid for!
Q: Do your proprietary Kerbeos extensions have any purpose except to stop Windows 2000 being compatible with UNIX servers?
A: No, we're profiteering again! What's more, nobody will be able to do anything about it because the only people who have the power to threaten us are ignorant of the facts!
Q: Does Microsoft support the old adage 'The customer is always right'?
A: No, course not. Microsoft supports the adage 'The customer has money. Bill Gates must have this money'. Inkeeping with this adage, we will do whatever we have to to make more money, regardless of whether the end solution is as functional as the one it is replacing.
Q: Does Microsoft hate us all?
A: Only if you haven't got any money left to spend on our products.
Just my $0.02
Michael Tandy
Hey,
That's an interesting question. My mersonal favourite algorithm is IDEA, because it's reasonably fast, secure and it has a good acronym. If you're writing your own program, I suggest a look at the Scramdisk webpage. They have a nice bit about algorithms and choosing between them.
If you're presenting the question as an irrelevent question, like one might ask 'What does the scroll lock button do?' I'd say most programmers center thier choices on
1) If it's ever been broken.
2) What algorithms they know.
3) Key Length.
4) Speed.
5) Anything else.
Angorithm, however, is irrelevent in the big picture. The majority of effective attacks use things like buffer overflows and reverse engineering, not brute-force attacks, just like the easiest way of hacking is bribing employees. Well, that or threatening them.
Just my $0.02
Michael Tandy
Hey!
This program sounds stupid to me. They claim it's 98% accurate. That doesn't sound very good to me. Are 2% of thier customers going to be denied access to what they pay for?
What's more, I think that 98% accuracy is a bit optomistic. In a test with lots of nice, fresh suit-and-tie computer programmers first thing in the morning at a work terminal it may be very accurate, but I type differently when I'm at home. Sometimes I turn sideways to watch TV and put my feet up. My typing style changes completely because my body is at a 90-degree angle to the keyboard. What if the user talkes a typing course? I bet they havn't tested things like this.
My other thought on the subject is how anazingly easy this coul be to break... VERY simple scripting/programming language Visual DialogScript has the command:
WINDOW SEND, ,
WINDOW SEND sends the contents of to the specified window as simulated keystrokes. Text can be entered as ordinary text.
People will write programs using a system like this to simulate typing. Feed that in as the initial input instead of your 'real' typing and you'd be past the security in no time. I think.
Who knows? maybe I'm totally wrong.
Michael Tandy
Hey!
Somewhere I read that somplace was so paranoid about info leaks that hard disks were actually dissolved in acid. I think it was the old removable disk paks.
It's common practice to erase floppy disks with powerful wall-mounted magnets before incinerating them in many embassies. But then, it's also common practice to confetti-shread documents, incinerate them, then mix them with water to make sure people can't read said documents from the trash.
It's so much easier to bribe somebody in said embassy...
Michael Tandy
Hey!
/.ers want?
I am ready, Celera. I am ready, HGP. Modify, enhance, and augment me. Hell, exploit me. I am ready!
Given a choice between being biologically enhanced and having a computer implanted in my head, turning me into a cyborg, I'd rather be a cyborg. I'd like an augmented field of vision that could detect the electromagnetic fields emmitted by the human heart and a fast, highly accurate muscle system. I'd also like to never forget things.
Which would other
Michael Tandy
As far as I know - and I don't know much, I'll admit - what the writer did was write an EXE file, give it the same icon as an AVI would normally have then rename it to whatever.avi.exe
Windows has a default-on option of 'hide file extensions for known file types' so the only references users have is seeing the filename whatever.avi with an AVI icon.
That's just what I think... I havn't recieved a copy of the virus myself...
Michael Tandy
Hey,
the security-conscious would be able to check the code for bugs and potential security flaws.
I don't think Microsoft would want people to be able to check thier software for security flaws. That would make it seem like faults were thier faults. They'd prefer to portray those who discover bugs as crackers and rush out a hurried 'security fix'. Besides, if they revealed the API source, they wouldn't have a 'competitive advantage' with which to crish thier rivals before integrating said rivals' ideas into thier own products and acting like they've done nothing wrong!
Just my $0.02
Michael Tandy
Hey,
"Well, the purpetrators must have caught on to us and bailed. We'll get'em next time!"
Yeah... that New York Times article mush have tipped them off...
Michael Tandy
Hey,
Network Associates that they think it's pretty much low risk.
Didn't they once say the Millenium Bug was a high risk? Never underestimate the lameness of Windows.
Just my $0.02
Michael Tandy
I'd put a link or autoresponder suggesting users submit the full headers to:
http://www.spamcop.net
A great spam auto-tracking and report sending site. Other than that, if an ISP won't close a spammer's account, I'd find a good no-win-no-fee lawyer to take them on in court. I'd also post thier support/sales/whatever e-mail address to slashdot. We'll all e-mail them with our opinions on spammers.
Just my $0.02
Michael Tandy
Hey,
Okay, some suggestions:
1) Put a link on your website saying 'Are you interested in Mattel's Barbie website? This websith has no relationship to them but you can click here to go to the official site.'
2) Try to avoid obvious barbie parodies, or...
3) Offer to transfer your domain name to mattel if they will cover your costs. If they do, ask for thier agreement on a new dommand name, i.e. http://www.barbieclan.com or http://www.barbietribes.net or some similar varient.
When push comes to shove, you don't have much chace of winning if this comes to court: they can outgun you for long enough for you to run out of money, like in many high-profile american court cases.
If you ask me, Mattel has something of a point with your domain name... barbie is thier product, after all, and you are making a parody of it. I suggest cooperating: I doubt they're going to change thier minds. It isn't fair, but life isn't always fair.
Just my $0.02
Michael Tandy
Hey,
If Microsoft left the United States, it might be the best thing that ever happened to our economy. We can thank them for people being afraid of opening email, users blaming themselves for computers "crashing," a term that used to refer to actual physical hard drive head crashing, lost data, incompatibility between releases and vendors, etc.
Being in another country won't stop them writing shit programs.
Just my $0.02
Michael Tandy
Hey
Really, this is not much different from the arguments regarding the use of force in defending one's home against a burglar.
Difference: Somebody who you've shot dead isn't going to reinstall his body and come back with his mates to burn your house down.
Crashing a Win95-using script kiddie who's using Bob's generic port scanner and Win95-bundled telnet is okay if you don't do too much damage, like an electric fence. Launching a personal one-on-one reformat-your-hard-disk war, however, is silly, like giving a burgler a savage but no-permanant-damage punishment beating.
Just my $0.02
Michael Tandy
If you expect to make much money from your publication, I'd go dead-tree. It's just so much easier to copy-control, and nicer to read (I have a Sony Trinitron 17" monitor and for normal tasks like web browsing, I keep the brightness as low as it will go, so maybe I'm not the best sample here)
/. book review.
You can, optionally, put the first few chapters online, unless it's like a 'Tom Clancy' (Or whoever is writing for him) book which tends to be 75% building up to the action and 25% action, i.e. vivid descriptions of how terrorists are building and shipping a nuclear bomb for the first three quaters of the book which aren't that exciting but you have to read.
If you're writing a technical book that has a CD in the back, or a technical book costing more than, say, $45, you could put a HTML copy on a CD in the back, so as to be easily searchable.
As for self-publishing, I'd advise against it. No offense meant but you have to remember: It might suck.
In summary, for a novel, I suggest going to a proper publisher. Optionally publish a few chapters online. If possible, as a follow-up, send it for a
Just my $0.02
Michael Tandy
Hey,
Do you have any suggestions for a better way?
On my Windows box, I didn't want to run any services on certain ports. For my own entertainment, I wrote a program to open the ports to recieve data and wrote a program to accept connections, offer a login with an easily guessable password (It was 'Password') and then offers up what appears to be a *nix root prompt, but whatever input it got, it said 'Command unrecognised'. It had a nice GUI so I could watch all the script kiddies log in, thinking they were amazing root hackers, and then find themselves unable to execute any commands. I don't know enough about Unix/Linux to write anything for said platforms (I'm only starting to learn now) but a good protection against hackers would be a login prompt where any user/pass combination gave the appearence of a login but if the user/pass were wrong, it was a 'synthezised' prompt where the commands don't actually *do* anything.
Just my $0.02
Michael Tandy
Hey,
You are not allowed to vary the spelling, add or delete hyphens (even for normal hyphenation at the end of a line of text), make one word two, or use a possessive or plural form of the Marks.
I wonder what the law says about Ah-pogee as a spelling?
Michael Tandy
Hey,
Network Associates threatened to sue Bindiew for publicising a remotely exploitable buffer overflow in Network Associates' Sniffer Pro Product. I wonder if criticising a product because it has faults is illigal.
Probably. Who cares about things like free speech?
Michael Tandy
Micro$oft uses GET on thier website, and in thier shite-o-browser, MSIE.
If this guy sues Micro$oft, he has my support.
Michael
P.S. Do you think anybody has patented the idea of a program for sending unsolicited commercial e-mails? A patent and a whole bunch of lawsuits would be really funny...