Classic libertarian fallacy: present some idealized version of the issue in place of the reality. The reality is that the drug cartels are responsible for massive human rights atrocities on a scale unparalleled by any other offenders in today's world. The fact that drugs should not be illegal is irrelevant to the fact that organized crime needs to be brought down as part of protecting human rights, except insomuch as legalization would help bring them down.
Allegedly it's the Taliban who are misogynist, but then/. goes using the incredibly misogynist word "hysteria" to describe the alleged psychological illness...
My understanding is that RCX going into the SYSRET instruction contains the saved instruction pointer from when SYSCALL called into kernel-space, which should necessarily be valid/canonical if the userspace code that performed the SYSCALL was able to run. How does RCX get replaced by an invalid/noncanonical pointer? Is the return address saved on the userspace stack and modifiable from another thread with access to the same VM space while one thread is in kernelspace? Or is there some other mechanism for feeding it an invalid address? None of the discussions of the vulnerability I've seen have addressed this issue.
Please spare me the pedantic misinterpretation of my words. Obviously we're not talking about after the fact. The allegation, as I understand it, is that consent was withdrawn when he decided to stick it in without a wrapper, and that he didn't respond to this withdrawal of consent.
I have no way of knowing whether the allegation is true, but if it is, any sane legal system would consider it a crime.
The problem is that the malware might offer a backdoor for someone to intentionally compromise the integrity of the medical device firmware. Even if it doesn't, the fact that the site is vulnerable means somebody else who's actually skilled (unlike the dumb sks/bots) could independently obtain access for the purpose of modifying the firmware.
Locking people up because they might do something is of course a bad idea, but the question that's actually interesting is whether somebody should keep an extremely close eye on them without impeding or interfering with their lives, ready to intervene before a violent crime is committed at the last minute if and only if it's actually about to be committed.
That's fairly irrelevant; the advantage of being written in C is not that it's comprehensible to HUMANS who understand C, but that it's comprehensible to MACHINES that understand C. In other words, the fact that you're able to have a complete self-hosting C environment.
Because then it's trivially easy to lock the account of anyone you dislike. Just try logging in as them from >10 different IPs, and their account is locked for a minute. Repeat every minute and they can never login unless they get lucky and time it exactly right. This is the typical bonehead security policy that creates a huge DoS vulnerability trying to mitigate an extremely minor brute-forcing vulnerability.
No, increasing the time to 30 minutes would mean insane profits from your customers being stuck there for 30 minutes with nothing to do but drink your coffee and eat your food.
Actually, the IRS translates the tax laws into forms, schedules, and the (albeit written in a backwards, ugly procedural form) math formulas behind them. If you download and read the instruction PDFs for the forms you need, it's pretty direct and mindless to follow the steps and fill in the numbers...
AT&T is $70 for 3 lines ($23.33/line) or $100 for 5 lines ($20/line). And that's with essentially unlimited usage (assuming most or all your calling is to other mobiles). The cheapest prepaid unlimited services I've seen are $45 or so per line.
I see nothing wrong with having to root it (this is really the case no matter which carrier you get your phone from...to get rid of all their crapware if nothing else), but I'm waiting for GSM models. CDMA is useless for those of us who travel internationally.
I also have no interest in prepaid carriers in the US, since their prices are too high. If you actually make a lot of calls, you can get much better prices sharing a postpaid plan with the minimal number of minutes with ~4 other people (close friends or family members) since basically all of your airtime (M2M, N&W, etc.) is not billed against your minutes. So I want a cheap Android sold by a prepaid carrier that I can root and use on AT&T's network, and without them detecting it as a smartphone and putting us on some ridiculous data plan.
Back in the day on IRC, we had a mythical unit of storage called a "pedobyte". It was defined (to vary over time) as the minimum quantity of data such that the probability of containing a certain type of illegal data reached 100%, and was used to ridicule channel members with overly large collections.
I'm talking about postpaid. We haven't had this "5 friends"/circle/in-network/etc. BS since 2008 or so. Nowadays, postpaid on any major mobile carrier has unlimited calling to any domestic mobile phone, and unlimited nights and weekends. The only calls for which you're charged "minutes" against your plan are daytime calls to non-mobile numbers (old geezers with home phones, business phones, DIDs, etc.).
Slashdot Mirror
...is that AT&T gets to force you onto an insanely overpriced data plan you don't want if they call it "smart".
Only?
It's all because he set up us the bomb.
Cheating the system should be as simple as throwing up and then dissolving the pill in your vomit next to the sensor.
So Slashdot users need not worry about it.
No, including governments. If I'd meant to exclude governments, the statement would have been pretty meaningless.
Classic libertarian fallacy: present some idealized version of the issue in place of the reality. The reality is that the drug cartels are responsible for massive human rights atrocities on a scale unparalleled by any other offenders in today's world. The fact that drugs should not be illegal is irrelevant to the fact that organized crime needs to be brought down as part of protecting human rights, except insomuch as legalization would help bring them down.
Allegedly it's the Taliban who are misogynist, but then /. goes using the incredibly misogynist word "hysteria" to describe the alleged psychological illness...
http://en.wikipedia.org/wiki/Higgsless_model
It doesn't take very powerful friends to avoid that. Usually just your frat brothers are sufficient...
My understanding is that RCX going into the SYSRET instruction contains the saved instruction pointer from when SYSCALL called into kernel-space, which should necessarily be valid/canonical if the userspace code that performed the SYSCALL was able to run. How does RCX get replaced by an invalid/noncanonical pointer? Is the return address saved on the userspace stack and modifiable from another thread with access to the same VM space while one thread is in kernelspace? Or is there some other mechanism for feeding it an invalid address? None of the discussions of the vulnerability I've seen have addressed this issue.
Please spare me the pedantic misinterpretation of my words. Obviously we're not talking about after the fact. The allegation, as I understand it, is that consent was withdrawn when he decided to stick it in without a wrapper, and that he didn't respond to this withdrawal of consent. I have no way of knowing whether the allegation is true, but if it is, any sane legal system would consider it a crime.
The problem is that the malware might offer a backdoor for someone to intentionally compromise the integrity of the medical device firmware. Even if it doesn't, the fact that the site is vulnerable means somebody else who's actually skilled (unlike the dumb sks/bots) could independently obtain access for the purpose of modifying the firmware.
Someone has a right to withdraw consent at any time. Based on my understanding of the allegations, that's what they're saying happened.
Locking people up because they might do something is of course a bad idea, but the question that's actually interesting is whether somebody should keep an extremely close eye on them without impeding or interfering with their lives, ready to intervene before a violent crime is committed at the last minute if and only if it's actually about to be committed.
That's fairly irrelevant; the advantage of being written in C is not that it's comprehensible to HUMANS who understand C, but that it's comprehensible to MACHINES that understand C. In other words, the fact that you're able to have a complete self-hosting C environment.
...is the one the GCC team is about to throw out: the fact that it's written in C rather than C++.
Because then it's trivially easy to lock the account of anyone you dislike. Just try logging in as them from >10 different IPs, and their account is locked for a minute. Repeat every minute and they can never login unless they get lucky and time it exactly right. This is the typical bonehead security policy that creates a huge DoS vulnerability trying to mitigate an extremely minor brute-forcing vulnerability.
No, increasing the time to 30 minutes would mean insane profits from your customers being stuck there for 30 minutes with nothing to do but drink your coffee and eat your food.
Yes but the government is generally adverse to destroying the business model of a very profitable industry...
Actually, the IRS translates the tax laws into forms, schedules, and the (albeit written in a backwards, ugly procedural form) math formulas behind them. If you download and read the instruction PDFs for the forms you need, it's pretty direct and mindless to follow the steps and fill in the numbers...
AT&T is $70 for 3 lines ($23.33/line) or $100 for 5 lines ($20/line). And that's with essentially unlimited usage (assuming most or all your calling is to other mobiles). The cheapest prepaid unlimited services I've seen are $45 or so per line.
I see nothing wrong with having to root it (this is really the case no matter which carrier you get your phone from...to get rid of all their crapware if nothing else), but I'm waiting for GSM models. CDMA is useless for those of us who travel internationally. I also have no interest in prepaid carriers in the US, since their prices are too high. If you actually make a lot of calls, you can get much better prices sharing a postpaid plan with the minimal number of minutes with ~4 other people (close friends or family members) since basically all of your airtime (M2M, N&W, etc.) is not billed against your minutes. So I want a cheap Android sold by a prepaid carrier that I can root and use on AT&T's network, and without them detecting it as a smartphone and putting us on some ridiculous data plan.
Back in the day on IRC, we had a mythical unit of storage called a "pedobyte". It was defined (to vary over time) as the minimum quantity of data such that the probability of containing a certain type of illegal data reached 100%, and was used to ridicule channel members with overly large collections.
I'm talking about postpaid. We haven't had this "5 friends"/circle/in-network/etc. BS since 2008 or so. Nowadays, postpaid on any major mobile carrier has unlimited calling to any domestic mobile phone, and unlimited nights and weekends. The only calls for which you're charged "minutes" against your plan are daytime calls to non-mobile numbers (old geezers with home phones, business phones, DIDs, etc.).