Either way you Godwinned the thread. It's the most tried and proven way to inflate a discussion into a big messy heap of a flame war. You should know better.
He was the one who called the church a dictatorship and said he was fine with that so long as they only dictate to their members.
Whether or not the church is a dictatorship today is a debate which I am not interested in participating in. If they don't engage in widespread oppression of their members then I don't see how they could be labeled as such. Either way take it up with the guy who said he was fine with dictatorships as long as they're not dictating to him.
I'm not an expert on the subject, and everything I know I read just this morning (I hadn't even heard of Singularity before this slashdot article), but it appears as if everything runs inside of a SIP (software isolation process) which runs in ring 0 of the kernel's address space. Thus the creation of SIPs is extremely cheap, even less overhead than hardware enforced protection domains.
You're right, this will not eliminate bugs. But it will prevent applications from "stepping on each other's toes". SIPs can not modify their own code or write to other SIP's address space. I don't see this as so much of an abstraction layer as just a different way for the kernel to manage processes and address space.
Besides, every kernel implements abstraction layers anyway. Heck, you could even consider the kernel to be one big abstraction layer to the hardware. So abstraction layer does not always equate to "more overhead". And this isn't an abstraction layer on top of an existing high-level system. This is an entirely new kernel that implements processes and memory management in a completely different way.
Competition is good. If Microsoft actually goes and creates a superior product then IE users get a better browser which forces Firefox to either "up it's game" (giving FF users an even better browser) or remain the same while everyone switches back to IE because it's superior.
Either way everyone gets a better browser. Win-win.
Let's say everyone on a free way is driving 100mph when the speed limit is 70mph. What is the safer speed to drive: 70mph ? Or 100mph ?
Of course that might not be a fair example since if EVERYONE was speeding you don't really risk getting pulled over.
But the point is that driving fast does not necessarily mean driving dangerously. If you're alert, matching traffic, keeping your eye on the road and leaving adequate space between you and other vehicles you can drive quite fast and still be completely safe.
Anyway in my opinion speeding limits are just another preemptive law designed to make the government richer at the expense of the population. Does imposing speeding fines lead to fewer accidents ? The answer may be "yes". However, throwing the book at anyone who physically injures another while driving could have the same effect. If you're driving dangerously and you end up killing someone there is still manslaughter, reckless driving, public endangerment, charing them for any repairs to public property and to the victim's vehicle, medical bills etc. I'd rather punish people for actually hurting people rather than for nothing.
Technical Question: How do you differentiate encrypted traffic from, say, any other kind of binary data ?
Technical Question #2: (assuming that #1 has a solution) What do you when <big corporate customer> calls and complains that their IT staff can't use SSH to connect to the web server from home and must, instead, spend 30 minutes driving to the office on a Sunday morning at 2am to figure out why it's not responding ?
That's a valid question that deserves an answer. But can you think of any compelling reasons why they wouldn't ? What would be in it for Youtube to keep them besides wasted storage space ? (and in the event they used them for whatever purpose - the possibility for litigation should the original copyright holder claim infringement) ?
"Being an antique book collector myself, I would hate to know that precious antique books are being touched by people who don't wash their hands, or worse."
Or worse ?
Does your wife know that you collect these kinds of books ?
"I for one refuse to buy high end phones for this reason. I want to run my own apps and not pay through the nose for their drm infested crappy software.
If you read my posts I am in favor of the free market and not some gnu zealot but when a company dictates how to use something I paid for and halts innovation I get mad." - Billy Gates
No one is understating the importance of a vaccine, and should one be developed it will be a day to celebrate. However, a cure would be more exciting.
Why ?
Because a cure will "save" the 0.6% of the population AND leave the remaining 99.4% of the population with the peace of mind of knowing that in the unfortunate event that they do contract HIV they are not completely fsck'd.
Of course the best scenario would be both a vaccine and a cure.
That's true but it seems like, while it's trivial to break, it would also be trivial to fix.
All they need to do is encrypt the account and PIN numbers on the card and then have them compared with the encrypted numbers on the bank's system and problem solved.
The way they've managed to break it is essentially to "tap" into the card readers and intercept the account and PIN numbers from the card. Then the fraudsters make fake cards with the information. It seems like ridiculously lousy authentication because a) the banks are trusting the cards with nothing more than the plain-text PIN and account number and b) they're being transmitted in plain-text. This is like 1980's network security where you could just sniff packets and get people's telnet passwords. You would think that they'd have learned.
The companies are defending themselves by saying "you would need a high level of expertise to break the system". But all you need is a basic understanding of soldering, an Internet connection (to Google some tutorials) and unsupervised access to a terminal (something that any store employee being paid minimum wage would have on occasion in theory).
But you bastards slashdotted it. Now I'm mad. But I don't really have a reason to because if it weren't for slashdot I wouldn't even know it exists. Yet since I think it's an awesome but can't access it to check it out I hate you all.
About 8 years ago I was working at a dot-bomb that produced an "Intranet" solution. We weren't a huge company but we did have customers who deployed our product on their production web servers, as well we offered a "hosted" solution where we hosted the virtual desktop solution on our own servers.
One day a nice whitehat sent an e-mail to all@.com describing that he had found a buffer overflow in our CGI binary that could be exploited in order to get shell access with the permissions of whatever user the webserver was running as. He told us exactly how to exploit it but he did not provide any kind of proof-of-concept code.
Well, the main developer and maintainer of the CGI program (an extremely experienced and talented programmer who is, to this day, still one of the programmers that I look up to the most - for reasons other than what I am about to describe obviously) assured everyone in the company that exploiting such a programming error would be soooooo incredibly difficult that it was a complete non-issue.
Based on his assurances the whitehat was ignored and customers were never notified of the problem and many of them went on running a vulnerable application.
I tried explaining to everyone that buffer overflows in services were exploited all the time to gain remote access but I was a junior level programmer at the time and was ignored.
I imagine that had the whitehat provided us with exploit code that we could use to actually test the problem ourselves and demonstrate it to the "non-believers" then seriousness of the problem would have been forced and the issues would have gotten a lot more attention.
Anyway, of course Core could have provided the code to VMWare only, but the basic idea is that with exploit code in the wild it gives an extra push to get VMWare to fix the problem quickly.
"A set of eight solar panels produces 560 watts to run the navigation lights, ham radio, satellite phone and PC."
If he's going to have a PC on board I wonder if he'll have Internet hookup via the Satellite phone. And if so if he'll be posting a blog to detail his journey. That would be pretty sweet.
Does anyone know if he has a personal web site regarding his voyage ? TFA doesn't mention one.
who, upon reading the headline, imagined members of the EFF and UCLA (I'll let others decide if that was a typo) holding hands in a human barricade across a nuclear bunker in an effort to protect it from a physical attack ?
Microsoft may be able to afford it without significantly hurting their business in the short term, but they have a responsibility to their shareholders. I'm not sure exactly what Microsoft's current value is, but it's now 1.3 billion less. That is sure to tick off any shareholder.
Slashdot Mirror
Either way you Godwinned the thread. It's the most tried and proven way to inflate a discussion into a big messy heap of a flame war. You should know better.
You made your bed. Now sleep in it.
He was the one who called the church a dictatorship and said he was fine with that so long as they only dictate to their members.
Whether or not the church is a dictatorship today is a debate which I am not interested in participating in. If they don't engage in widespread oppression of their members then I don't see how they could be labeled as such. Either way take it up with the guy who said he was fine with dictatorships as long as they're not dictating to him.
I'm not an expert on the subject, and everything I know I read just this morning (I hadn't even heard of Singularity before this slashdot article), but it appears as if everything runs inside of a SIP (software isolation process) which runs in ring 0 of the kernel's address space. Thus the creation of SIPs is extremely cheap, even less overhead than hardware enforced protection domains.
You're right, this will not eliminate bugs. But it will prevent applications from "stepping on each other's toes". SIPs can not modify their own code or write to other SIP's address space. I don't see this as so much of an abstraction layer as just a different way for the kernel to manage processes and address space.
Besides, every kernel implements abstraction layers anyway. Heck, you could even consider the kernel to be one big abstraction layer to the hardware. So abstraction layer does not always equate to "more overhead". And this isn't an abstraction layer on top of an existing high-level system. This is an entirely new kernel that implements processes and memory management in a completely different way.
will it run Linux ?
You're fine with the church killing people who change their minds and don't want to be followers any more ?
Because that's one of the things that dictators do. Including the Roman Catholic Church who burned people at the stake for heresy.
Competition is good. If Microsoft actually goes and creates a superior product then IE users get a better browser which forces Firefox to either "up it's game" (giving FF users an even better browser) or remain the same while everyone switches back to IE because it's superior.
Either way everyone gets a better browser. Win-win.
Hypothetical scenario:
Let's say everyone on a free way is driving 100mph when the speed limit is 70mph. What is the safer speed to drive: 70mph ? Or 100mph ?
Of course that might not be a fair example since if EVERYONE was speeding you don't really risk getting pulled over.
But the point is that driving fast does not necessarily mean driving dangerously. If you're alert, matching traffic, keeping your eye on the road and leaving adequate space between you and other vehicles you can drive quite fast and still be completely safe.
Anyway in my opinion speeding limits are just another preemptive law designed to make the government richer at the expense of the population. Does imposing speeding fines lead to fewer accidents ? The answer may be "yes". However, throwing the book at anyone who physically injures another while driving could have the same effect. If you're driving dangerously and you end up killing someone there is still manslaughter, reckless driving, public endangerment, charing them for any repairs to public property and to the victim's vehicle, medical bills etc. I'd rather punish people for actually hurting people rather than for nothing.
Technical Question: How do you differentiate encrypted traffic from, say, any other kind of binary data ?
Technical Question #2: (assuming that #1 has a solution) What do you when <big corporate customer> calls and complains that their IT staff can't use SSH to connect to the web server from home and must, instead, spend 30 minutes driving to the office on a Sunday morning at 2am to figure out why it's not responding ?
That's a valid question that deserves an answer. But can you think of any compelling reasons why they wouldn't ? What would be in it for Youtube to keep them besides wasted storage space ? (and in the event they used them for whatever purpose - the possibility for litigation should the original copyright holder claim infringement) ?
"Being an antique book collector myself, I would hate to know that precious antique books are being touched by people who don't wash their hands, or worse."
Or worse ?
Does your wife know that you collect these kinds of books ?
"I for one refuse to buy high end phones for this reason. I want to run my own apps and not pay through the nose for their drm infested crappy software.
If you read my posts I am in favor of the free market and not some gnu zealot but when a company dictates how to use something I paid for and halts innovation I get mad." - Billy Gates
I love the irony.
Assuming that you can consider the robots to be "life".
I think there is also a fear that robots (like other forms of automation in the past) will slowly "steal" people's jobs.
No one is understating the importance of a vaccine, and should one be developed it will be a day to celebrate. However, a cure would be more exciting.
Why ?
Because a cure will "save" the 0.6% of the population AND leave the remaining 99.4% of the population with the peace of mind of knowing that in the unfortunate event that they do contract HIV they are not completely fsck'd.
Of course the best scenario would be both a vaccine and a cure.
Say what you want about American Dad but when a series casts Patrick Stewart as a hooker-murdering CIA director it's impossible to not like it.
I've been waiting years for CowboyNealDot.
I wish they would sue me so I could make some money :(
That's true but it seems like, while it's trivial to break, it would also be trivial to fix.
All they need to do is encrypt the account and PIN numbers on the card and then have them compared with the encrypted numbers on the bank's system and problem solved.
The way they've managed to break it is essentially to "tap" into the card readers and intercept the account and PIN numbers from the card. Then the fraudsters make fake cards with the information. It seems like ridiculously lousy authentication because a) the banks are trusting the cards with nothing more than the plain-text PIN and account number and b) they're being transmitted in plain-text. This is like 1980's network security where you could just sniff packets and get people's telnet passwords. You would think that they'd have learned.
The companies are defending themselves by saying "you would need a high level of expertise to break the system". But all you need is a basic understanding of soldering, an Internet connection (to Google some tutorials) and unsupervised access to a terminal (something that any store employee being paid minimum wage would have on occasion in theory).
and go test it out and offer my, informed, $0.02.
... my head hurts.
But you bastards slashdotted it. Now I'm mad. But I don't really have a reason to because if it weren't for slashdot I wouldn't even know it exists. Yet since I think it's an awesome but can't access it to check it out I hate you all.
So yeah
First post ?
About 8 years ago I was working at a dot-bomb that produced an "Intranet" solution. We weren't a huge company but we did have customers who deployed our product on their production web servers, as well we offered a "hosted" solution where we hosted the virtual desktop solution on our own servers.
One day a nice whitehat sent an e-mail to all@.com describing that he had found a buffer overflow in our CGI binary that could be exploited in order to get shell access with the permissions of whatever user the webserver was running as. He told us exactly how to exploit it but he did not provide any kind of proof-of-concept code.
Well, the main developer and maintainer of the CGI program (an extremely experienced and talented programmer who is, to this day, still one of the programmers that I look up to the most - for reasons other than what I am about to describe obviously) assured everyone in the company that exploiting such a programming error would be soooooo incredibly difficult that it was a complete non-issue.
Based on his assurances the whitehat was ignored and customers were never notified of the problem and many of them went on running a vulnerable application.
I tried explaining to everyone that buffer overflows in services were exploited all the time to gain remote access but I was a junior level programmer at the time and was ignored.
I imagine that had the whitehat provided us with exploit code that we could use to actually test the problem ourselves and demonstrate it to the "non-believers" then seriousness of the problem would have been forced and the issues would have gotten a lot more attention.
Anyway, of course Core could have provided the code to VMWare only, but the basic idea is that with exploit code in the wild it gives an extra push to get VMWare to fix the problem quickly.
"A set of eight solar panels produces 560 watts to run the navigation lights, ham radio, satellite phone and PC."
If he's going to have a PC on board I wonder if he'll have Internet hookup via the Satellite phone. And if so if he'll be posting a blog to detail his journey. That would be pretty sweet.
Does anyone know if he has a personal web site regarding his voyage ? TFA doesn't mention one.
I had one of those sitting on my desk for a while, it was an UltraSparc actually, so a little newer. Solaris (7 I think) + UFS + IDE = agonizing pain.
Simply because of the slow read/writes it took about 30 minutes to do a compile that would take 3 - 5 minutes on an equivalently clocked x86 box.
I loved SUN's servers but their low-end workstations put new meaning to the word 'low end'.
You're right. We need to watch out. Novell's demise should have taught the FOSS world a very valuable lesson.
Wait, what ?
who, upon reading the headline, imagined members of the EFF and UCLA (I'll let others decide if that was a typo) holding hands in a human barricade across a nuclear bunker in an effort to protect it from a physical attack ?
Microsoft may be able to afford it without significantly hurting their business in the short term, but they have a responsibility to their shareholders. I'm not sure exactly what Microsoft's current value is, but it's now 1.3 billion less. That is sure to tick off any shareholder.