That's really interesting.. I never thought about the possibility of difficulties with new convergance devices when it comes to security clearance. Two questions:
1. How do they handle removable cameras? Do they just give you a complete search investigating everything from you watch to your pocket knife or what?
2. If you *really* wanted the toy and the camera was preventing you from getting it, would permanently damaging the camera lens keep you out of trouble or would that "not be enough"?
Unfortunately, the Mergic VPN client is not compatable with Palm OS 5 yet. They say it is in beta, but I couldn't find any links on their website so it may not be a public beta.
I don't know.. I was SSH'ed into my GNU/Linux box using TopGunSSH on my new Treo 600. Granted, it can only do 40-col without scrolling, but it was cute.
TopGun isn't that great though. There's got to be a better Palm SSH client out there.
My primary editor for quick changes or extensive text manipulation when working with the filetypes mentioned is gVim. That has already been well discussed, I wanted to mention a few other things that I end up using a lot.:)
1. VS.NET -- Really darn expensive if your shop doesn't have an MSDN Universal subscription, but it handles everything minus JSP with ease. Very sophisticated syntax highlighting and autocompletion, a very good JavaScript debugger, graphical HTML layout, decent CSS editing. It can handle Java syntax through it's JSharp roots, but it ignores JSP. There might be a way to kludge that, but I don't know.
2. CodeGuide is fantastic at Java and JSP. It can syntax highlight HTML as well, but it doesn't do much for JavaScript/CSS. It is the best debugger for Java I've ever seen. Priced at $500, it was well worth it for me.
3. TopStyle Pro is the best CSS editor I've seen out there. So many features. $80.00
I agree with all of the second paragraph, but I question the first.
My point was that your original post seems to try to point out the "fact" that millions of people are "stealing" music by listening to it for free on the radio. My point was that neither the listeners nor the radio stations are stealing the music because both are paying for it in a way that is endorsed by the record labels. I'll readily accept the concept that the radio stations may not have to write a check for every single song that goes out over the airwaves, but I would imagine the great majority of them are not doing anything that the record labels would disapprove of.
You know that the music played on the radio *is* paid for. In licensing and royalties by the radio station. They transform the monetary payment of a listener to a payment in the form of listening to the advertisements radio stations are paid to play.
Trollish comments such as this are constantly creating divide in the fair use community because detractors can point at large percentages of people opposed to stifling DRM and say, "Look these people don't count because they don't know what they are talking about"!
This reply brings a much more serious view to the situation than my earlier statement. I would say, however, that if a compromised client is allowed into the LAN, you've got many many problems, just one of which is a possible DOS payload affecting Exchange Servers.
And please, tell us all how dismayed you are that MS didn't make a patch for your NT4 boxes?
You say you don't care at all because you weren't foolish enough to leave port 135 open to the world (I hope)?
People are up in arms because MS decided not to patch this issue. Yes, it is closed source, and that limits your options (even though you could develop a filter for the port that would act as a patch). The thing is this:
The extent of this security hole is that someone could cause a DOS on the machine through port 135. If you are an IS person worth anything, said machine is behind a firewall or is hardened to not have this port open.
If you aren't clueful enough to take these basic precautions, would you be clueful enough to install a patch from MS? Maybe. Maybe not.
I am not the biggest MS proponent out there, but I certainly don't see anything unusual about their stance on this.
I can fully appreciate the idea that it might have been a false alarm. With things as shady as rootkits and password crackers though, I would expect the author to only distribute source on his CD. This was just an EXE with no reason for me to trust it.
I didn't throw away the CD because of that one virus alert. It was discarded because it held nothing worthwhile for me.
bottom line: I might very well be an idiot, for more reasons that you list. Thanks.:)
I bought it when I was new to Linux and trying to learn a bit about security.
I was looking at the source CD when my virus scanner on my NT box went off. Turns out one of the password cracking utilities he had on the CD was a trojan.::Shrug:: I threw away the CD and got better books to read.
I just recently purchased the Samsung SPH-i330 smart phone, and I have been very happy with it. It runs PalmOS 3.5.3 with 16mb of RAM. It has a virtual silkscreen, so you can do fun stuff similar to what you can do with a HandERA such as having a full keyboard (SilkyBoard).
The only draw back to it is that it doesn't have an expansion slot. I did purchase the data cable and hooked it up with my DelormeEarthmate GPS and XMap® Handheld Street Atlas USA® Edition. It works quite nicely like this.
Actually, McAfee helped him out with instructions on how to bypass the old version the aliens were using. The next day, the homeworld got a call from their McAfee sales rep who said, "You see what can happen if you don't keep up to date with your service and upgrade subscription!?"
Um.. those are three very pretty all caps words... but they don't have a lot to do with this article. They aren't talking about open-relay abuse here.. During the course of an SMTP transaction, there are two important identifying lines: HELO and MAIL FROM:
Many SMTP servers will do some sort of verification on the HELO line, but very little can be done about the FROM line. You can't easily kill addresses that don't match the HELO domain because legitimate mail relays would be unable to forward your mail on then.
I can send you a piece of mail that will display bob.hope@whitehouse.gov as the from address. If Bob had that address, and people replied to the forged address, he'd be getting the blame for my spam.
It sucks.
Speaking of conditional complilation.. JavaMake!
on
Java Development with Ant
·
· Score: 2, Offtopic
Our company is doing a mixture of Java and C++ so we are using make. I came across a fantastic conditional compiler written by some developer at sun.. JavaMake It can be easily integrated with Ant and it evaluates the bytecode of the updated files to see what signatures have changed. It then recompiles anything using those signatures if they weren't changed as well. It works *wonderfully*. The only limitation is compile time constants. If you change the name or type of a constant, it has to recompile the whole project because the Java bytecode only has the substituted value, not a reference to the variable.
I wasn't meaning to indicate I thought TV was a constant like c or something. I was questioning whether the object was traveling faster than its TV would normally be at that moment in time.
So upon doing a little more research, the real question is how frequently meteorites of this size would have enough time for their inertia to bleed away to TV.
Is there any scientific backup to the common conception that these tiny meteorites are traveling at a higher than terminal velocity? I could drop a peanut sized pebble from ten miles up, and if it hit my foot, it wouldn't do anything more than bounce off...
There is weighting to take care of disporportionate amounts of good/bad e-mail.
One other interesting thing that prompted me to reply is that HTML e-mails are actually more deadly for the spammers. Since the proscribed filtering process is token based, not content based, the markup used to display the jpeg counts against them since there is more HTML spam than legitimate mail.
Slashdot Mirror
I tried this guy out and it is pretty good. I like it. Much better than TopGun.
That's really interesting.. I never thought about the possibility of difficulties with new convergance devices when it comes to security clearance. Two questions:
1. How do they handle removable cameras? Do they just give you a complete search investigating everything from you watch to your pocket knife or what?
2. If you *really* wanted the toy and the camera was preventing you from getting it, would permanently damaging the camera lens keep you out of trouble or would that "not be enough"?
Unfortunately, the Mergic VPN client is not compatable with Palm OS 5 yet. They say it is in beta, but I couldn't find any links on their website so it may not be a public beta.
I don't know.. I was SSH'ed into my GNU/Linux box using TopGunSSH on my new Treo 600. Granted, it can only do 40-col without scrolling, but it was cute.
TopGun isn't that great though. There's got to be a better Palm SSH client out there.
Um.. last I checked, LiveJournal does not allow any scripting to be included in your entries.
Too easy to abuse.
My primary editor for quick changes or extensive text manipulation when working with the filetypes mentioned is gVim. That has already been well discussed, I wanted to mention a few other things that I end up using a lot. :)
1. VS.NET -- Really darn expensive if your shop doesn't have an MSDN Universal subscription, but it handles everything minus JSP with ease. Very sophisticated syntax highlighting and autocompletion, a very good JavaScript debugger, graphical HTML layout, decent CSS editing. It can handle Java syntax through it's JSharp roots, but it ignores JSP. There might be a way to kludge that, but I don't know.
2. CodeGuide is fantastic at Java and JSP. It can syntax highlight HTML as well, but it doesn't do much for JavaScript/CSS. It is the best debugger for Java I've ever seen. Priced at $500, it was well worth it for me.
3. TopStyle Pro is the best CSS editor I've seen out there. So many features. $80.00
And this anonymous comment is so much better because?
LOL! Yes. Where are my mod points when I need them? Nice catch.
Weekly Piracy Report
I agree with all of the second paragraph, but I question the first.
My point was that your original post seems to try to point out the "fact" that millions of people are "stealing" music by listening to it for free on the radio. My point was that neither the listeners nor the radio stations are stealing the music because both are paying for it in a way that is endorsed by the record labels. I'll readily accept the concept that the radio stations may not have to write a check for every single song that goes out over the airwaves, but I would imagine the great majority of them are not doing anything that the record labels would disapprove of.
You know that the music played on the radio *is* paid for. In licensing and royalties by the radio station. They transform the monetary payment of a listener to a payment in the form of listening to the advertisements radio stations are paid to play.
Trollish comments such as this are constantly creating divide in the fair use community because detractors can point at large percentages of people opposed to stifling DRM and say, "Look these people don't count because they don't know what they are talking about"!
This reply brings a much more serious view to the situation than my earlier statement. I would say, however, that if a compromised client is allowed into the LAN, you've got many many problems, just one of which is a possible DOS payload affecting Exchange Servers.
And please, tell us all how dismayed you are that MS didn't make a patch for your NT4 boxes?
You say you don't care at all because you weren't foolish enough to leave port 135 open to the world (I hope)?
People are up in arms because MS decided not to patch this issue. Yes, it is closed source, and that limits your options (even though you could develop a filter for the port that would act as a patch). The thing is this:
The extent of this security hole is that someone could cause a DOS on the machine through port 135. If you are an IS person worth anything, said machine is behind a firewall or is hardened to not have this port open.
If you aren't clueful enough to take these basic precautions, would you be clueful enough to install a patch from MS? Maybe. Maybe not.
I am not the biggest MS proponent out there, but I certainly don't see anything unusual about their stance on this.
I can fully appreciate the idea that it might have been a false alarm. With things as shady as rootkits and password crackers though, I would expect the author to only distribute source on his CD. This was just an EXE with no reason for me to trust it.
:)
I didn't throw away the CD because of that one virus alert. It was discarded because it held nothing worthwhile for me.
bottom line: I might very well be an idiot, for more reasons that you list. Thanks.
Why would I want to drink something whose first association in my mind is mad cow disease?
I bought it when I was new to Linux and trying to learn a bit about security.
::Shrug:: I threw away the CD and got better books to read.
I was looking at the source CD when my virus scanner on my NT box went off. Turns out one of the password cracking utilities he had on the CD was a trojan.
I just recently purchased the Samsung SPH-i330 smart phone, and I have been very happy with it. It runs PalmOS 3.5.3 with 16mb of RAM. It has a virtual silkscreen, so you can do fun stuff similar to what you can do with a HandERA such as having a full keyboard (SilkyBoard). The only draw back to it is that it doesn't have an expansion slot. I did purchase the data cable and hooked it up with my Delorme Earthmate GPS and XMap® Handheld Street Atlas USA® Edition. It works quite nicely like this.
Actually, McAfee helped him out with instructions on how to bypass the old version the aliens were using. The next day, the homeworld got a call from their McAfee sales rep who said, "You see what can happen if you don't keep up to date with your service and upgrade subscription!?"
Um.. those are three very pretty all caps words... but they don't have a lot to do with this article. They aren't talking about open-relay abuse here.. During the course of an SMTP transaction, there are two important identifying lines:
HELO
and
MAIL FROM:
Many SMTP servers will do some sort of verification on the HELO line, but very little can be done about the FROM line. You can't easily kill addresses that don't match the HELO domain because legitimate mail relays would be unable to forward your mail on then.
I can send you a piece of mail that will display bob.hope@whitehouse.gov as the from address. If Bob had that address, and people replied to the forged address, he'd be getting the blame for my spam.
It sucks.
Our company is doing a mixture of Java and C++ so we are using make. I came across a fantastic conditional compiler written by some developer at sun.. JavaMake It can be easily integrated with Ant and it evaluates the bytecode of the updated files to see what signatures have changed. It then recompiles anything using those signatures if they weren't changed as well. It works *wonderfully*. The only limitation is compile time constants. If you change the name or type of a constant, it has to recompile the whole project because the Java bytecode only has the substituted value, not a reference to the variable.
Check it out. It can save a *lot* of time.
I wasn't meaning to indicate I thought TV was a constant like c or something. I was questioning whether the object was traveling faster than its TV would normally be at that moment in time.
So upon doing a little more research, the real question is how frequently meteorites of this size would have enough time for their inertia to bleed away to TV.
Is there any scientific backup to the common conception that these tiny meteorites are traveling at a higher than terminal velocity? I could drop a peanut sized pebble from ten miles up, and if it hit my foot, it wouldn't do anything more than bounce off...
There is weighting to take care of disporportionate amounts of good/bad e-mail.
One other interesting thing that prompted me to reply is that HTML e-mails are actually more deadly for the spammers. Since the proscribed filtering process is token based, not content based, the markup used to display the jpeg counts against them since there is more HTML spam than legitimate mail.
Yes, but smaller spamhausen typically sign up for dialups to abuse, they couldn't do that with this kind of bandwidth.