The backup utility is just one way to do this. A malicious use of it wouldn't be bound by that.
Assume you've subborned a low level DB by whatever means and have control of the machine it's running on.
Now that you know that a simple SCN bump can propagate you just have to either forge that, or get the local DB to send your calculated value. You already have the credentials for it in the DB itself. It'd take some work to make it so a script kiddy could do it, but might not be prohibitively difficult.
As an aside, an attack on the extant implementations of the Bakery Algorhithm would be a very interesting thing.
(I'm by no means qualified to analyse that one off the cuff. It seems to me it'd depend a lot on the way information is being transfered and whether the numbers could be subborned at remote systems. Then again, I'm by no means a guru on that. Just a former DBA.)
"This whole design of escalating each other's SCN's just for the purposes of synchronization is just plain stupid. Especially when the SCN has a hard-coded maximum."
That was kinda my thought, but didn't want to say that was the fix as there are always complications. Dog knows what all they've got depending on their particular format and rules for the SCNs.
The big thing would be figuring a way to do it so that existing installs can be made compatible with that without requiring rebuilds, or at least that all of them don't have to be done at once.
(Disclaimer: it's been nearly a dacade since I did Oracle to any extent.)
This has been going back and forth on pastebin.com for some time. The usual posting of claims and counterclaims. Lots of posting of alleged Israeli/Arab credit cards and facebook accounts, etc.
It's only now hit the media due to the Tel Aviv stock exchange being a target.
Or, actually, a family of them and at the level of basic architecture.
Get into a low level database via some poorly secured login (or conceivably a SQL injection. Maybe. Not clear if that's possible) and take down any DBs that are linked just by snapshots.
And the recovery can be so bad as rebuilding every single linked instance (and don't miss one, or you fail.) and reimporting the data.
Ouch, ouch, ouch. I can think of all sorts of mayhem that could be done with this by someone with destructive intent.
They say it's only a problem for large installs, but let me assure you there are a lot of places with 3 or 4 linked instances that can't easily withstand the downtime for complete rebuilds of everything.
Let alone that have DBAs cluefull enough to immediately figure out the drastic steps need to recover without several failed first tries.
And, the kicker, if you have ancient legacy systems hooked up, they're still vulnerable as there won't be patches for it. And, though the headroom gets increased by the fix, the basic flaw is still there if you have linked unpatched systems.
Now the question is if there's any way to unlink the SCNs and still have it do the same function. Or at least make it so one DB can't lie about what its SCN is.
Back oh so many years ago, it was a pretty broad group of special interests that pushed ethanol for mixing with fuels (either E85 or to meet oxygenation or octane ratings without MTBE). We even heard how "green" it was.
Now, you ask who supported it and you hear crickets chirping.
Magically no one ever supported it and everyone thought it was a terrible idea from the beginning.;)
Oh, but it'll still be around. The blends are now mandated by law. E85 was a minor demand compared to the N% ethanol required in many of the environmentally mandated blends.
The real hoot is the requirement for cellulosic ethanol this year when there simply isn't enough of it to meet the requirements due to it not being so straightforward to scale up.
But, regardless that it doesn't exist, we're on track to start collecting fines for it not being in the blends.
You can't make this stuff up. No one would believe it in anything more serious than Catch 22.
You don't unjderstand, Rix. There's an excellent reason for Europe to believe they are unsafe. It was promoted that way for some time.
Given the fact that US agriculture can undercut the cost of production in France and Belgium etc, The politicians there were quite happy to use protectionist trade policies to protect local farms etc. Sadly for them, that's limited by the WTO and international agreements. (The US is guilty of it too, so it's hardly unique to them.)
But, if you can make it a food safety issue, it's exempt. So, this was promoted not just by the actual anti-gmo sorts, but also the farm lobbies, local ag/food business and politicians.
But, some of the European ag industry is realizing they're losing ground in some areas due to foregoing the advantages of GMO. (Witness the repeated incidents of farmers smuggling in GMO seeds due to the better yields and lower production costs.)
Now, the Europeans have to deal with the phantom they themselves created for trade reasons. And it's damned hard to undo sowing fear in your consumers.
Given that I'm surrounded by agri-genetics work of all sorts locally (east central Illinois), I'm quite happy for yet another European company to bring the work here. And, yes, they'll find a lot of highly skilled ag types to hire here.
BASF is certainly not the first nor will it be the last.
Studies that have generally failed to be replicated in others or are quoted out of context. The paleo diet doesn't stand up terribly well under scrutiny compared to others. As before, Any diet with sufficient vitamins and nutrients that reduces calories will work if stuck to. That's the problem.
Paleo's been around since the 70s, and hasn't shown the revolutionary benefits claimed. Primal is the same thing. It's a new name but still the same old magic.
Sisson's also saying that much of the reason for the problems are the agra/food industries and the FDA being subborned by them. Again, that's a mark of dubious science.
Of course, just like a devotee of a religion, my arguing against it likely makes you more determined that's it's the answer.
A better clue to the motivation behind it is indeed on Sisson's site prominently displayed:
"This post was brought to you by the Damage Control Master Formula, independently proven as the most comprehensive high-potency antioxidant multivitamin available anywhere." yada, yada...
Add to that the paleo diet cookbooks, etc.
But wait, he's different because you said so.
Well, I've heard that about the Maharishi as well.
Ah yes. Just like the Atkins diet "works". Or the grapefruit diet. So simple.
And that all the researchers have been so wrong. We just have to listen to you and a website and be enlightened.
Here's a clue. Just about any reduced calorie diet "will work" and reduce weight related health effects provided it's maintainable.
Therein lies the rub. For whatever reason, many people in societies where scarcity isn't so much of a problem have trouble maintaining it. You can say it's due to lack of will, or a plot by the food industry or inhaling too much this or that or fairy dust, but it doesn't change the basic fact that a lot of people are developing these problems. And having the neolithic diet or whatever version available hasn't changed that.
Saying that belief or system X is the answer to all things may feel good, but if so, why hasn't it been widely adopted and thus succesful in defeating the problem? And saying it's all due to propaganda and conspiracy in established science doesn't count. That's just a mark of dubious science.
And not all of the problems are due to lack of willpower any more than disease is a result of being afflicted with evil spirits.
(BTW: Buidling your house inside out is hardly a qualification.)
But, hey, since it's so easy you should get a grant for your ideas and make billions (yes with a B).
You could show all these dummies in the several buildings around where I'm sitting (major university biomedical research departments) how easy it all is.
And to think, they had to get PhDs and work for decades in biochemical and medical research. The fools.
You just have to do is put everyone in a monitored and enforced lifestyle like lab rats are. So easy. All you have to do is ignore social rights, and the impact of a biological control system that's wired into both the survival and reward systems.
Well. He seems to have gotten at least a little better. He's posting to slashdot. I acknowledge that's not much of an achievemet, but still, given where you say he started at...
But if you weren't retarded to start with, then what happened to you along the way?
Slashdot Mirror
The backup utility is just one way to do this. A malicious use of it wouldn't be bound by that.
Assume you've subborned a low level DB by whatever means and have control of the machine it's running on.
Now that you know that a simple SCN bump can propagate you just have to either forge that, or get the local DB to send your calculated value. You already have the credentials for it in the DB itself. It'd take some work to make it so a script kiddy could do it, but might not be prohibitively difficult.
As an aside, an attack on the extant implementations of the Bakery Algorhithm would be a very interesting thing.
(I'm by no means qualified to analyse that one off the cuff. It seems to me it'd depend a lot on the way information is being transfered and whether the numbers could be subborned at remote systems. Then again, I'm by no means a guru on that. Just a former DBA.)
Standard Oracle. They hack up a patch so you can diagnose the problem but don't fix the base cause.
If they're still like they were in the mid 90s, they may blow some smoke about it being fixed in the next release, but never really fix it.
And AT&T was paying for what ultraviolet level of metal support?
Guess I can't blame them to much when it's so deep into the system.
"This whole design of escalating each other's SCN's just for the purposes of synchronization is just plain stupid. Especially when the SCN has a hard-coded maximum."
That was kinda my thought, but didn't want to say that was the fix as there are always complications. Dog knows what all they've got depending on their particular format and rules for the SCNs.
The big thing would be figuring a way to do it so that existing installs can be made compatible with that without requiring rebuilds, or at least that all of them don't have to be done at once.
(Disclaimer: it's been nearly a dacade since I did Oracle to any extent.)
This has been going back and forth on pastebin.com for some time. The usual posting of claims and counterclaims. Lots of posting of alleged Israeli/Arab credit cards and facebook accounts, etc.
It's only now hit the media due to the Tel Aviv stock exchange being a target.
Or, actually, a family of them and at the level of basic architecture.
Get into a low level database via some poorly secured login (or conceivably a SQL injection. Maybe. Not clear if that's possible) and take down any DBs that are linked just by snapshots.
And the recovery can be so bad as rebuilding every single linked instance (and don't miss one, or you fail.) and reimporting the data.
Ouch, ouch, ouch. I can think of all sorts of mayhem that could be done with this by someone with destructive intent.
They say it's only a problem for large installs, but let me assure you there are a lot of places with 3 or 4 linked instances that can't easily withstand the downtime for complete rebuilds of everything.
Let alone that have DBAs cluefull enough to immediately figure out the drastic steps need to recover without several failed first tries.
And, the kicker, if you have ancient legacy systems hooked up, they're still vulnerable as there won't be patches for it. And, though the headroom gets increased by the fix, the basic flaw is still there if you have linked unpatched systems.
Now the question is if there's any way to unlink the SCNs and still have it do the same function. Or at least make it so one DB can't lie about what its SCN is.
Back oh so many years ago, it was a pretty broad group of special interests that pushed ethanol for mixing with fuels (either E85 or to meet oxygenation or octane ratings without MTBE). We even heard how "green" it was.
Now, you ask who supported it and you hear crickets chirping.
Magically no one ever supported it and everyone thought it was a terrible idea from the beginning. ;)
Oh, but it'll still be around. The blends are now mandated by law. E85 was a minor demand compared to the N% ethanol required in many of the environmentally mandated blends.
The real hoot is the requirement for cellulosic ethanol this year when there simply isn't enough of it to meet the requirements due to it not being so straightforward to scale up.
But, regardless that it doesn't exist, we're on track to start collecting fines for it not being in the blends.
You can't make this stuff up. No one would believe it in anything more serious than Catch 22.
You don't unjderstand, Rix. There's an excellent reason for Europe to believe they are unsafe. It was promoted that way for some time.
Given the fact that US agriculture can undercut the cost of production in France and Belgium etc, The politicians there were quite happy to use protectionist trade policies to protect local farms etc. Sadly for them, that's limited by the WTO and international agreements. (The US is guilty of it too, so it's hardly unique to them.)
But, if you can make it a food safety issue, it's exempt. So, this was promoted not just by the actual anti-gmo sorts, but also the farm lobbies, local ag/food business and politicians.
But, some of the European ag industry is realizing they're losing ground in some areas due to foregoing the advantages of GMO. (Witness the repeated incidents of farmers smuggling in GMO seeds due to the better yields and lower production costs.)
Now, the Europeans have to deal with the phantom they themselves created for trade reasons. And it's damned hard to undo sowing fear in your consumers.
Given that I'm surrounded by agri-genetics work of all sorts locally (east central Illinois), I'm quite happy for yet another European company to bring the work here. And, yes, they'll find a lot of highly skilled ag types to hire here.
BASF is certainly not the first nor will it be the last.
Studies that have generally failed to be replicated in others or are quoted out of context. The paleo diet doesn't stand up terribly well under scrutiny compared to others. As before, Any diet with sufficient vitamins and nutrients that reduces calories will work if stuck to. That's the problem.
Paleo's been around since the 70s, and hasn't shown the revolutionary benefits claimed. Primal is the same thing. It's a new name but still the same old magic.
Sisson's also saying that much of the reason for the problems are the agra/food industries and the FDA being subborned by them. Again, that's a mark of dubious science.
Of course, just like a devotee of a religion, my arguing against it likely makes you more determined that's it's the answer.
A better clue to the motivation behind it is indeed on Sisson's site prominently displayed:
"This post was brought to you by the Damage Control Master Formula, independently proven as the most comprehensive high-potency antioxidant multivitamin available anywhere." yada, yada...
Add to that the paleo diet cookbooks, etc.
But wait, he's different because you said so.
Well, I've heard that about the Maharishi as well.
Ah yes. Just like the Atkins diet "works". Or the grapefruit diet. So simple.
And that all the researchers have been so wrong. We just have to listen to you and a website and be enlightened.
Here's a clue. Just about any reduced calorie diet "will work" and reduce weight related health effects provided it's maintainable.
Therein lies the rub. For whatever reason, many people in societies where scarcity isn't so much of a problem have trouble maintaining it. You can say it's due to lack of will, or a plot by the food industry or inhaling too much this or that or fairy dust, but it doesn't change the basic fact that a lot of people are developing these problems. And having the neolithic diet or whatever version available hasn't changed that.
Saying that belief or system X is the answer to all things may feel good, but if so, why hasn't it been widely adopted and thus succesful in defeating the problem? And saying it's all due to propaganda and conspiracy in established science doesn't count. That's just a mark of dubious science.
And not all of the problems are due to lack of willpower any more than disease is a result of being afflicted with evil spirits.
(BTW: Buidling your house inside out is hardly a qualification.)
But, hey, since it's so easy you should get a grant for your ideas and make billions (yes with a B).
You could show all these dummies in the several buildings around where I'm sitting (major university biomedical research departments) how easy it all is.
And to think, they had to get PhDs and work for decades in biochemical and medical research. The fools.
You just have to do is put everyone in a monitored and enforced lifestyle like lab rats are. So easy. All you have to do is ignore social rights, and the impact of a biological control system that's wired into both the survival and reward systems.
Who'da thunk it.
Probably not Ron Paul this time.
Not first post.
Frist isn't running for president.
Wrong on three counts.
Search with "Wendy, I'm home." on google images and compare his pic to the first few you get back.
People tend not to be so worried about what happens in 1500 years or so.
But, they'll get into bitter dustups over what will happen in 50.
"Step 0: Be born a retard like jellomizer."
Well. He seems to have gotten at least a little better. He's posting to slashdot. I acknowledge that's not much of an achievemet, but still, given where you say he started at...
But if you weren't retarded to start with, then what happened to you along the way?
Does this mean Occupy is gonna have to protect the internet from those corporate finance types using up all the downloads?
"parasitic instruments attached to tapeworms"
Well, now that you mention it, tapeworms are a lot better at controlling our immune systems than we are...
I for one welcome our new cyborg helminth overlords!
Is it just me, or does the photo of Luca Passani on the sourceforge page look a bit like an aspiring axe murderer?
It seems they really did know everything.
They just forgot it by the time they reached 45.
It might be too many years of working at the Ministry of Silly Walks.
You and me both, AC. And I've met Jemison.
Believe me, compared to her I feel like a bumbling moron and an utter layabout.
And she topped it off by being the cutest person in the room.
Fool. Yeah, that about sums you up, AC.
I have the advantage of having met Jemison, albeit only talking to her for a few minutes.
Race wasn't a factor. She could be yellow with purple polka dots and still be highly qualified for anything.
Extremely bright gal.
So, you're saying:
1. Find aliens.
2. Announce to world.
3. ...
4. ...
5. Profit!
Remember that screen saver that had Opus the penguin shooting flying toasters with a shotgun?
That'd definitely perk up my work environment.
"I wanted to be less sarcastic and cynical this year."
Tell us another one.
I should pay extra money for more machine and a new and spiffy OS in order to do the exact same things I do now?
I should spend extra time to get equivalent programs on 7, recreate the layout I currently have, and to get them to play nicely the way they do on XP?
Is this like "new and improved" laundry detergent?