I fail to see how that helps. F-secure stated that MS Paint could be vulnerable as well, and others. And given the nature of the exploit, it seems almost anything that reads a WMF could be a vector.
The only reason there is no attack vector is because no one has bothered to write an exploit yet. As soon as the others get patched, that should happen soon enough. Based on the description of how this exploit works, Microsoft's attitude toward's Billy G's "My First OS" is baffling.
Yep. That's why the piracy party leader said: "Your speculation is true - the founder is an extreme capitalist that views legal monopolies as unbalanced between the state and the monopoly owner; the state is handing out monopolies like candy, getting nothing (or even negative value) in return. No business would agree to exclusivity like that, ever.
Signed, the founder (and leader) of Piratpartiet"
i.e. - the reason a loss occurs is because of a state enforced ruling.
It is as if a law was passed requiring town criers (who knew sign language or something - imagine equal access law gone wild) to have any conversation in a municipal space. Your decision to talk about stuff without using the crier would be both illegal and a theft of potential earnings.
Of course, both of these are only in the context of the law that made it possible.
One could point out that copyright law was created to benefit artists - however one could also point out that isn't what is happening now, and there were and still are ways to profit as an artist with or without copyright law.
Way to disappoint me.;) I was trying to figure in which ways blender might be using libcaca. Text interfaces? Wierd matrix segments? Funny that that didn't occur to me - I guess I didn't think there'd be much else on my system *linking* against libcaca. But now it is obvious. libSDL. Should've remembered, given all the times I've had fun playing SDL games in a terminal window.
Also sucks what you're saying about compatibility. Obviously most linuxes get around that by keeping packages in sync themselves (Redhat/Debian) or in the case of Gentoo/Slack, just relying on compiling from scratch.
Score one more for the more sedate pace of windows release cycles. Looks like Windows really does give you most of the tools you need to build apps.:)
And btw, a.1 MB difference ain't saying a whole lot in terms of compressed size. Laying aside the possibility of different stuff *in* the releases. But, yeah, go Blender etc etc.
The talk of huge sizes for the competitors strongly suggests they, at least, are not making as efficient a use of existing system libraries or standard libs.
meh. I owe Windows an apology in this case. OpenGL is a fairly standard addition to windows nowdays, so much so that probably blender can get away with specifying a certain minimum version, and not have to worry about DLL conflicts? Just a guess. Haven't used Windows in a while. And there are sufficient system libs for all the other operations that are provided in Linux by frame buffer lib or zlib. Also, I note certain things aren't linked in the official one. Either dropped or optional (freetype, png). And python can be installed with equal facility in windows or linux, although of course linux it would pretty much be assumed.
So, the only difference I can think that would probably have to be packed or dropped from the Windows distro is:
libaa.so.1 =>/usr/lib/libaa.so.1 (0xb78b3000)
libcaca.so.0 =>/usr/lib/libcaca.so.0 (0xb78a4000)
Which is a fairly minimal size increase.
I suppose this is both an endorsement of Blender as well as of relatively stable sets of Windows core libs. On the other hand, there are still a ton of Windows apps that pack their own DLLs still, last I checked. Either due to missing capabilities, or perhaps habit?
That's 'cause linux apps have an "unfair" advantage:) $ ldd `which blender` | wc -l 26
A mere 26 referenced code libraries:) For a number of reasons, shared object libs in windows is mostly restricted to the precise set of DLLs included with windows, and apps can't really count on anything else - or even those, sometimes.
Means you didn't do install games-misc/funny-manpages (gentoo) (had to strip out a bunch due to moronic slashdot junk character filter)
SEX(6) EUNUCH Programmer's Manual SEX(6)
NAME
sex -- have sex
SYNOPSIS
sex [options]... [username]...
DESCRIPTION
sex allows the invoker to have sex with the user(s) specified in the command line. If no users are speci-
fied, they are taken from the LOVERS environment variable. Options to make things more interesting are as
follows:
-1 masturbate... etc (actually, probably as far as many folks here have to go)
Ha. Same thing, only I know what I did. Some 5 or 6 years ago I moderated up what seemed to me to be an interesting post critiquing/. policies. Little did I know the sig link I had followed to it was a trap. The post had been permanently modded into oblivion by the/. hierarchy, and apparently (based on the discussion below the post) they were permanently removing all mod privileges for anyone who modded it. Same might have happened to you.
Their site. Their rules. No matter how bizaare and arbitrary.
*sigh* Two can play the link game. Only mine aren't wild exaggerations of recent and perfectly valid science. (i.e. - no it wasn't red blood cells found. someone lied to you. And I was reading attempted explanations of geology based on a global flood before the world wide web. the pseudoscience hasn't changed, which saves a lot of time on the repeated debunkings)
And I don't pretend to know or care which particular flood claims you find so attractive, but we'll just go with the entire Geology section with attempts to explain complicated geological processes like the Geological Column using simple Sedimentation mixing (read those sections). http://talkorigins.org/indexcc/list.html#CD
The fact is, is that the lies are much simpler to understand than the complicated processes of how this world works. Shame, really. In my opinion, why shrink and belittle the world and its history? Doesn't that shrink and belittle any Creator?
The amount of memory it consumes depends a great deal on how much you have available. At least this is what I've found, given I've been running Mozilla Suite and Firefox (on the Linux and Windows sides, respectively) on a laptop with 96MB of memory. On linux, I can tell exactly how much swap was being used (0) and the suite was consuming (10MB). Running it for a while of course raised those values, but not significantly. It'd be interesting if a dev could provide a bit more info on this, because I found it to be rather curious.
And of course for the complainers who use Windows. At least you *know* how much memory Firefox uses, and can close it if you need the memory for something else. This is definitely not true of MSHTML.DLL or (far too often) iexplore.exe.
I believe that states that part of the page does not come from a secure server, or the same secured server. If I had to guess, it could be related to: <link href="http://www.mturk.com:80/css/mturk.css" rel="stylesheet" type="text/css"/>
BTW, Apple's solution is quite nice, but even they have a place for system libraries, and installers. Sure it is optional, but then, you can always statically link as one large file under linux too.
Hardly even worth going in circles on this. I just wanted to focus on that last amusing point. Yes. absolutely. Versioning of *trusted* libraries put, oh, lets say, in a *trusted* location like/usr/lib.
You just keep proving my case. It is far easier to fix a bug once than hundreds of times. And find only finds code if you know what code/function you are looking for. Given you were the one who was talking about difficulty of maintenance, this is becoming a sad refusal to admit that programmers know what they are doing when they implement shared objects.
And lets not forget the advantage in memory savings with loading it once, etc.
I couldn't disagree more. DLL hell in windows is precisely because of lack of DLL versioning as well as a variety of other reasons forcing apps to install their own DLLs.
The advantage of shared system libraries ain't "disk space is cheap" - it is being able to rapidly and efficiently incorporate new changes. If an exploit is discovered in zlib, I update it once with the patch. Done. I don't have to update every single friggen app across my entire system and replace their hundreds of "disk space is cheap" separate files.
Might as well statically link at that point. Hah.
If you set aside libraries, unix apps actually are fairly consistent. All configuration files under/etc makes it easier for filesystem maintenance and indexing. Windows registry is a lousy solution to a non-problem that eliminates easy editing. You have a filesystem, use it.
$HOME.config files also end up having their parallels even if you install a massive app bundle. You need to keep configs *somewhere* and the registry, well. Enough ranting.
Ok. I'm not familiar with.app bundles (similar to.jars) ? But other app bundles make it very difficult for application sharing and greatly increase the size of programs on your computer. Not to mention the complexity of updates. Linux programs install themselves, or a symlink in/usr/bin since that's in the path and that's where you expect to find apps. They add their libs to/usr/lib so other folks can use them too. Ditto adding images and music and miscelaney to/usr/share.
I think this is a great system, and I don't see how using application zips improves on it. Linux application install tools allows both the flexibility of an integrated upgrade and removal interface, while still allowing parts of the system to interoperate easily.
Agreed. I click on their flash ads 'cause they were sometimes entertaining (the smirnov ones) or had stuff I was interested in, or just 'cause I liked The Onion and figured I'd let their advertisers pitch to me to support 'em.
The new layout has gone overboard on flash, flash ads, and blinky stuff. And it is not the fault of Drupal. They shoehorned Drupal's layout into doing this. Drupal with basic templates looks pretty much like slashdot only cleaner.
Anyway, for me, the new layout forced me to install flashblock on my computer, which I had only installed once a couple of years ago. Gotta say, real improvement in the rest of the web, but tough luck for The Onion there.
This is just the prototype. The real thing will be a DRM'd, patented, closed source win-modem like thing that will encourage Windows only HW. </conspiracy>
Slashdot Mirror
I fail to see how that helps.
F-secure stated that MS Paint could be vulnerable as well, and others.
And given the nature of the exploit, it seems almost anything that reads a WMF could be a vector.
The only reason there is no attack vector is because no one has bothered
to write an exploit yet. As soon as the others get patched, that should
happen soon enough. Based on the description of how this exploit works,
Microsoft's attitude toward's Billy G's "My First OS" is baffling.
Yep. That's why the piracy party leader said:
"Your speculation is true - the founder is an extreme capitalist that views legal monopolies as unbalanced between the state and
the monopoly owner; the state is handing out monopolies like candy, getting nothing (or even negative value) in return. No
business would agree to exclusivity like that, ever.
Signed, the founder (and leader) of Piratpartiet"
i.e. - the reason a loss occurs is because of a state enforced ruling.
It is as if a law was passed requiring town criers (who knew sign language or something - imagine equal access law gone wild) to have any conversation in a municipal space. Your decision to talk about stuff without using the crier would be both illegal and a theft of potential earnings.
Of course, both of these are only in the context of the law that made it possible.
One could point out that copyright law was created to benefit artists - however one could also point out that isn't what is happening now, and there were and still are ways to profit as an artist with or without copyright law.
Hm?
$ dmesg | tail -n 1
Clock: inserting leap second 23:59:60 UTC
So where'd that come from, then?
I kind of assumed the ntp sync.
Way to disappoint me. ;)
:)
I was trying to figure in which ways blender might be using libcaca.
Text interfaces? Wierd matrix segments?
Funny that that didn't occur to me - I guess I didn't think there'd be much else on my system *linking* against libcaca.
But now it is obvious. libSDL. Should've remembered, given all the times I've had fun playing SDL games in a terminal window.
Also sucks what you're saying about compatibility. Obviously most linuxes get around that by keeping packages in sync themselves (Redhat/Debian) or in the case of Gentoo/Slack, just relying on compiling from scratch.
Score one more for the more sedate pace of windows release cycles.
Looks like Windows really does give you most of the tools you need to build apps.
And btw, a .1 MB difference ain't saying a whole lot in terms of compressed size.
Laying aside the possibility of different stuff *in* the releases.
But, yeah, go Blender etc etc.
The talk of huge sizes for the competitors strongly suggests they, at least, are not making as efficient a use of existing system libraries or standard libs.
meh. I owe Windows an apology in this case.
/usr/lib/libaa.so.1 (0xb78b3000) /usr/lib/libcaca.so.0 (0xb78a4000)
OpenGL is a fairly standard addition to windows nowdays, so much so that probably blender can get away with specifying a certain minimum version, and not have to worry about DLL conflicts? Just a guess. Haven't used Windows in a while.
And there are sufficient system libs for all the other operations that are provided in Linux by frame buffer lib or zlib.
Also, I note certain things aren't linked in the official one. Either dropped or optional (freetype, png).
And python can be installed with equal facility in windows or linux, although of course linux it would pretty much be assumed.
So, the only difference I can think that would probably have to be packed or dropped from the Windows distro is:
libaa.so.1 =>
libcaca.so.0 =>
Which is a fairly minimal size increase.
I suppose this is both an endorsement of Blender as well as of relatively stable sets of Windows core libs.
On the other hand, there are still a ton of Windows apps that pack their own DLLs still, last I checked. Either due to missing capabilities, or perhaps habit?
That's 'cause linux apps have an "unfair" advantage :)
:)
$ ldd `which blender` | wc -l
26
A mere 26 referenced code libraries
For a number of reasons, shared object libs in windows is mostly restricted to the precise set of DLLs included with windows, and apps can't really count on anything else - or even those, sometimes.
Means you didn't do install games-misc/funny-manpages (gentoo)
... [username] ...
...
(had to strip out a bunch due to moronic slashdot junk character filter)
SEX(6) EUNUCH Programmer's Manual SEX(6)
NAME
sex -- have sex
SYNOPSIS
sex [options]
DESCRIPTION
sex allows the invoker to have sex with the user(s) specified in the command line. If no users are speci-
fied, they are taken from the LOVERS environment variable. Options to make things more interesting are as
follows:
-1 masturbate
etc
(actually, probably as far as many folks here have to go)
Ha. Same thing, only I know what I did. /. policies. /. hierarchy, and apparently (based on the discussion below the post)
Some 5 or 6 years ago I moderated up what seemed to me to be an interesting post critiquing
Little did I know the sig link I had followed to it was a trap.
The post had been permanently modded into oblivion by the
they were permanently removing all mod privileges for anyone who modded it.
Same might have happened to you.
Their site. Their rules. No matter how bizaare and arbitrary.
*sigh*
Two can play the link game.
Only mine aren't wild exaggerations of recent and perfectly valid science.
(i.e. - no it wasn't red blood cells found. someone lied to you. And I was reading attempted explanations of geology based on a global flood before the world wide web. the pseudoscience hasn't changed, which saves a lot of time on the repeated debunkings)
Let's see now...
http://talkorigins.org/indexcc/
Red blood cells. That'd be under paleontology (http://talkorigins.org/indexcc/list.html#CC)
A stupid misreading of a recent discovery. Ah. Here we go.
http://talkorigins.org/indexcc/CC/CC371.html
And I don't pretend to know or care which particular flood claims you find so attractive, but we'll just go with the entire Geology section with attempts to explain complicated geological processes like the Geological Column using simple Sedimentation mixing (read those sections).
http://talkorigins.org/indexcc/list.html#CD
The fact is, is that the lies are much simpler to understand than the complicated processes of how this world works.
Shame, really. In my opinion, why shrink and belittle the world and its history?
Doesn't that shrink and belittle any Creator?
http://en.wikipedia.org/wiki/Behemoth
The use of tail as euphemism for a penis makes sense.
I also like the elephant hypotheis.
Easier to believe than some bizaare theory about dinosaurs living up to present age.
The amount of memory it consumes depends a great deal on how much you have available.
At least this is what I've found, given I've been running Mozilla Suite and Firefox (on the Linux and Windows sides, respectively) on a laptop with 96MB of memory.
On linux, I can tell exactly how much swap was being used (0) and the suite was consuming (10MB).
Running it for a while of course raised those values, but not significantly.
It'd be interesting if a dev could provide a bit more info on this, because I found it to be rather curious.
And of course for the complainers who use Windows. At least you *know* how much memory Firefox uses, and can close it if you need the memory for something else. This is definitely not true of MSHTML.DLL or (far too often) iexplore.exe.
I believe that states that part of the page does not come from a secure server, or the same secured server.
If I had to guess, it could be related to:
<link href="http://www.mturk.com:80/css/mturk.css" rel="stylesheet" type="text/css"/>
Here's the big picture
Note, this graph does not yet include 2005, so we can look forward to another spike.
I believe the ebuild uses rpm2targz. .rpm file to a .tar.gz archive
* app-arch/rpm2targz
Latest version available: 9.0-r3
Latest version installed: 9.0-r3
Size of downloaded files: 2 kB
Homepage: http://www.slackware.com/config/packages.php
Description: Convert a
License: as-is
Slackware, interestingly.
BTW, Apple's solution is quite nice, but even they have a place for system libraries, and installers. Sure it is optional, but then, you can always statically link as one large file under linux too.
But seriously, this is getting silly.
Hardly even worth going in circles on this. /usr/lib.
I just wanted to focus on that last amusing point.
Yes. absolutely. Versioning of *trusted* libraries put, oh, lets say, in a *trusted* location like
Ah well.
Thankfully you did not design linux.
You just keep proving my case.
It is far easier to fix a bug once than hundreds of times.
And find only finds code if you know what code/function you are looking for.
Given you were the one who was talking about difficulty of maintenance, this is becoming a sad refusal to admit that programmers
know what they are doing when they implement shared objects.
And lets not forget the advantage in memory savings with loading it once, etc.
No worries, is just a dupe.l ?tid=134 /. for years before that. Heck. I learned about this first on /.
http://slashdot.org/science/03/04/04/0137210.shtm
And there were many mentions by users on
But an interesting dupe nonetheless.
Good to see more info on the project.
I couldn't disagree more. DLL hell in windows is precisely because of lack of DLL versioning as well as a variety of other reasons forcing apps to install their own DLLs.
/etc makes it easier for filesystem maintenance and indexing. Windows registry is a lousy solution to a non-problem that eliminates easy editing. You have a filesystem, use it.
.config files also end up having their parallels even if you install a massive app bundle. You need to keep configs *somewhere* and the registry, well. Enough ranting.
The advantage of shared system libraries ain't "disk space is cheap" - it is being able to rapidly and efficiently incorporate new changes.
If an exploit is discovered in zlib, I update it once with the patch. Done.
I don't have to update every single friggen app across my entire system and replace their hundreds of "disk space is cheap" separate files.
Might as well statically link at that point. Hah.
If you set aside libraries, unix apps actually are fairly consistent. All configuration files under
$HOME
Ok. I'm not familiar with .app bundles (similar to .jars) ? /usr/bin since that's in the path and that's where you expect to find apps. /usr/lib so other folks can use them too. /usr/share.
But other app bundles make it very difficult for application sharing and greatly increase the size of programs on your computer.
Not to mention the complexity of updates.
Linux programs install themselves, or a symlink in
They add their libs to
Ditto adding images and music and miscelaney to
I think this is a great system, and I don't see how using application zips improves on it.
Linux application install tools allows both the flexibility of an integrated upgrade and removal interface, while still allowing parts of the system to interoperate easily.
oops. smirnoff, not smirnov.
The entertaining ads with interactive light n sound fiddly bits.
Agreed. I click on their flash ads 'cause they were sometimes entertaining (the smirnov ones) or had stuff I was interested in, or just 'cause I liked The Onion and figured I'd let their advertisers pitch to me to support 'em.
The new layout has gone overboard on flash, flash ads, and blinky stuff. And it is not the fault of Drupal. They shoehorned Drupal's layout into doing this. Drupal with basic templates looks pretty much like slashdot only cleaner.
Anyway, for me, the new layout forced me to install flashblock on my computer, which I had only installed once a couple of years ago.
Gotta say, real improvement in the rest of the web, but tough luck for The Onion there.
This is just the prototype. The real thing will be a DRM'd, patented, closed source win-modem like thing that will encourage Windows only HW.
</conspiracy>