This at least requires a client to have raw socket access in my opinion. If it is supposed to setup a connection without the normal syn startup (as i read the article) it needs some direct raw ip access. This allows a lot of spoofing from windows boxed that are "rooted:"
Want to know more about raw socket access, ask gibson about that.
according to anohter post of him: NIS lookups (Score:1) by clutch110 (528473) Alter Relationship on Thu 12 Dec 08:33PM (#4873590)
I found out that our NIS server was giving those exact results. We had NIS clients on all Windows machines and of course all unix/Linux machines were nis too.
They are already an reality, we are now waiting for the video equivalent.
2)Compiling mozilla. 5 minutes, then there is still a lot of room for improvement.
3)Better programming paradigms. Virtual machine system. You need some virtulization support on the cpu level for this, not more speed. But 4+ GL tools are able to eat a lot of the extra speed that is generated. Don't think of better 3gl languages, think better 4gl languages!
Sound nice, but this kind of tools need direct access to the hardware. Linux provides a (abstraction) shield for this. More obvious is that the supplier that have such boot tme tools make some links too freedos images for cd & floppy.
Nimba (the first one) had a bug so it scanned all the ip's in the same order. (it forgot to seed the random generator). But if a virus truely randoms seeks out ip's it will be trothled for a short while. But after some time the same exponentional behaviour will occur where more and more computers infect more and more computers.
But he concludes correctly: nimba will be throtled.
It'll be a source for completely new virusses when (not if) this 'new technology' gets cracked. Then why is the signed code of the x-box still not cracked?
You better use a back door than software that is desinged to be a security improvement.
You just sold your soul! 1 d (e)"indemnify, hold harmless, and defend Microsoft from and against any claims or lawsuits, including attorneys' fees, that arise or result from...."
According to the MSTECH bulletin: Why isn't it feasible to set the Kill Bit in this case?
The ActiveX control involved in these vulnerabilities is used in many applications and web pages to access data. Many applications, including third-party applications, contain hard-coded references to it; if the patch set the Kill Bit, the web pages would no longer function at all - even with the new, corrected version. As a result, the patch updates the control to remove the vulnerabilities, but does not provide a brand-new control and set the Kill Bit on the old one.
And what about the users that were lazy and didn't want to unsubscribe from a mailing list (let's say, e-bay) and just block it as being "spam"). This comes back as what exactly is spam?
-- This posting is ACCORDANCE with slasdot law 2.8.
That is what i read from steve balmer: "Windows 95, and presumably the decidedly similar Windows 98, will be tossed to the wolves, reluctantly and begrudgingly"
and "you're just going to have to go back and [here comes the tab] pay the price."
In the end he is saying: you have to pay for security (Pay it to our new OS). I don't care that it breaks thing. Securty is important (bla bal bla "Dick Clark and the people at the White House have realized that security.....)
My mate Al is going to kill me for slashdotting his site...Hmm, you are not slashdotted if you post a link to a (GOOD!) article in a comment especially if you do not hyperlink it
He is stating that it is the multisession CD format is used to copy protect the audio cd's. The solution seems simple: Use the first TOC that is valid in audio-cd players.
Is there software now that only read the sessions up to a point? (this also helps to retreive dat from cd's that were not correctly "finished")
Slashdot Mirror
Save it as moon.c (cut and paste into a msvc edit window)
Create a new "CONSOLE" PROJECT.
add file moon.c to project.
(compile, link &) run (ignore the warnings)
works here.
the devil is in the details:
128-bit is 2^64 times stronger than 64 bit.
No, it is 2^8 times harder to crack (For private/public key) . Check your theory. still it is highly unlikely to be found this way.
It is 42!
Oh sorry i am wrong, it needs at least 80 digits. That is a big post-it.
This at least requires a client to have raw socket access in my opinion. If it is supposed to setup a connection without the normal syn startup (as i read the article) it needs some direct raw ip access. This allows a lot of spoofing from windows boxed that are "rooted:"
Want to know more about raw socket access, ask gibson about that.
according to anohter post of him :
NIS lookups (Score:1)
by clutch110 (528473) Alter Relationship on Thu 12 Dec 08:33PM (#4873590)
I found out that our NIS server was giving those exact results. We had NIS clients on all Windows machines and of course all unix/Linux machines were nis too.
my vote is for neil and bob
Or just call it server room 2 (if you have only 1).
1)Digital Audio Workstations.
They are already an reality, we are now waiting for the video equivalent.
2)Compiling mozilla.
5 minutes, then there is still a lot of room for improvement.
3)Better programming paradigms. Virtual machine system.
You need some virtulization support on the cpu level for this, not more speed. But 4+ GL tools are able to eat a lot of the extra speed that is generated. Don't think of better 3gl languages, think better 4gl languages!
Conclusion: you are aiming too low.
(Mod parent to 5! )
It has been there for some time. ecomstation is OS/2 in a fresh jacket. X-server, fat32, USB support etc etc.
It just hasn't the IBM tag attached to it. If you need os/2 support you can find it here.
Sound nice, but this kind of tools need direct access to the hardware. Linux provides a (abstraction) shield for this. More obvious is that the supplier that have such boot tme tools make some links too freedos images for cd & floppy.
God has only ever released partial APIs
In that anology the physics book is the reverse engineering project (just like freeciv). For functional specification you should check the Bible.
. On the label, it instructed me to call my doctor if I became pregnant.......I'd call the Enquirer first
YOU INSENSITIVE PRICK, DON'T YOU CARE ABOUT YOUR KID's HEALTH!
http://dwemus.org/archive.php?cid=167 could have done it. It is exaclty this text. (dated 2002-09-02)
thx google.
For an other reason i doubt this will work.
Nimba (the first one) had a bug so it scanned all the ip's in the same order. (it forgot to seed the random generator). But if a virus truely randoms seeks out ip's it will be trothled for a short while. But after some time the same exponentional behaviour will occur where more and more computers infect more and more computers.
But he concludes correctly: nimba will be throtled.
It'll be a source for completely new virusses when (not if) this 'new technology' gets cracked. Then why is the signed code of the x-box still not cracked?
You better use a back door than software that is desinged to be a security improvement.
I don't see how that's revelevent at all.
That is a Joke! You really need to get more out.
(an kill bit and kill -9 are not related but it just sounds nice.)
now please smile.
did you read the EULA?
...."
You just sold your soul! 1 d (e)"indemnify, hold harmless, and defend Microsoft from and against any claims or lawsuits, including attorneys' fees, that arise or result from
According to the MSTECH bulletin:
Why isn't it feasible to set the Kill Bit in this case?
The ActiveX control involved in these vulnerabilities is used in many applications and web pages to access data. Many applications, including third-party applications, contain hard-coded references to it; if the patch set the Kill Bit, the web pages would no longer function at all - even with the new, corrected version. As a result, the patch updates the control to remove the vulnerabilities, but does not provide a brand-new control and set the Kill Bit on the old one.
Conclusion:
-Microsoft refuses to kill itself.
how does this relate to: the story Microsoft on Security: We'll Break Your Apps
Hey... linus refused to change the behaviour of kill -9 -1 also
And what about the users that were lazy and didn't want to unsubscribe from a mailing list (let's say, e-bay) and just block it as being "spam"). This comes back as what exactly is spam?
-- This posting is ACCORDANCE with slasdot law 2.8.
That is what i read from steve balmer: "Windows 95, and presumably the decidedly similar Windows 98, will be tossed to the wolves, reluctantly and begrudgingly"
.....)
and "you're just going to have to go back and [here comes the tab] pay the price."
In the end he is saying: you have to pay for security (Pay it to our new OS). I don't care that it breaks thing. Securty is important (bla bal bla "Dick Clark and the people at the White House have realized that security
My mate Al is going to kill me for slashdotting his site ...Hmm, you are not slashdotted if you post a link to a (GOOD!) article in a comment especially if you do not hyperlink it
Most interestin part of the article is a link to the actual contract
Opium. Pot. Cocaine. Now pages
... and before you know it you are a slashdot troll. Happens a lot arround here.
You mean
makes me wonder, how do they prevent distributed trolls? and people who just do it for the statistics (think about seti@home)
[i] it doesn't work 100%, but it sure does get about 95%[/i]
THAT IS 2000/20=100 errors per page.(That is the way OCR works, if it 99% ok, it is still 20 errors per page.
And that doesn't include "strange" formatting like things scribbleing things in margins or heading above pages, italics and extra spaces.
By the way you are not supposed to correct spelling errors made in the original pager. especially since this is often "old" english.
ANd then you wonder what the goat.cx are doing in the ilias?
more serious how do they fight off the trolls?
9903. Try to fall from the stairs without breaking anything!
He is stating that it is the multisession CD format is used to copy protect the audio cd's. The solution seems simple: Use the first TOC that is valid in audio-cd players.
Is there software now that only read the sessions up to a point? (this also helps to retreive dat from cd's that were not correctly "finished")
[i]For linux, as an open source OS, who would pay this[/i]?
The distribution creators, say red hat or united linux. it is not the kernel that is certified, but a certain installation.