KDE will have all the security issues of Exchange and Outlook. We'll see which OS has the most viruses now!!
Er.. why exactly? (Apart from it being funny)
Most Outlook security bugs occured because
Outlook showed HTML attachments by-default (and
used IE code for displaying/parsing it).
And all this Windows attachment silliness...
And another big problem was Microsoft not
even seeing this as a problem but a so-called
"Feature" that they didn't want to switch off.
Should be very easy to omit
this "feature" if you re-program the client.
There's no reason why you shouldn't be able
to program a client that uses Exchange's protocol
that has less.. um.. "design issues" with a
serious company.
Governments have done this for years. Except
that they ordered their software from companies
that programmed closed-source solutions. They
have to be customized for government use anyway.
What's different with just wanting it to be
Open Source?
IMHO, this is a very good thing, because this
software developmnent is paid for with German
citizens' tax Euros. So if the result can be
used by other citizens as well, I wonder: Why
have they ever bought something else?
RealTimeBattle is
cool. BTW, you can write your Bots
in any language since communication
is done using stdio.
I wrote a bot for RealTimeBattle once
("Defensive Attack" -
funny that this beast
is still available) and found it to be real fun.
I was a bit distracted that for the IBM project
you could only use Java. With new experiments
like this, I like to be able to use the language
I'm best in.
I didn't know much about Java and all, and
I found the API descriptions in this contest
rather lousy. But I tried to write a really
simple bot (Ashley) within a few hours and
submitted it two months ago. Didn't touch it
after. (so everyone below my rank had about
2 months of time to optimize against
my bot's play.)
As I understand it, the best 100 in
every class took part in the final fights,
so I think many people had a quite good
chance to get a nice rank if even my
"junk bot" managed 84.:-)
I don't think Java would be a good platform
for evolutional programming in bytecode. The
test cycles are just too long with Java.
Think you breed 16 or 50 childs every iteration
and have to test them for success/failure, each
of them. IMHO this is just too slow with Java.
I doubt you'd have got a bot doing more than
stand around without throwing exceptions within
the contest time...
You're right. People in Afghanistan that
lost their husbands/children/houses/jobs
could really use it.
Today, I read about a zoological garden
that had been bombed by the US (why?). Most
of the animals were dead, most of the buildings
destroyed. This is not as important as the
many people in NYC and Afghanistan that are
now dead while being civilists, but I
always frown when one of these bits passes
media and shows how many people
actually died there.
Did you know that while the US were
attacking Afghanistan, many, many more people
died there than in the WTC and around?
(I still wonder why there aren't any
videos of the Pentagon, the best-guarded
building in the world, when this plane
crashed in it.)
Yes, I get it. But since Netscape 6 is
based on Mozilla code, I'm looking for
evidence that it really cannot
handle more than 4 levels of tables, as
the poster said.
Have there been any REAL double-blind tests as well as equipment tests of quality comparisons between MP3 and Ogg Vorbis yet? They never seem to get done.
(btw most of the information I gathered
was from the Rockbox site &&||
mailing list)
Another thing: There was an article explaining
that even *if* you could make the DSP play "raw"
decoded sound, the serial interface between CPU
and DSP would just not be fast enough to transfer
this amount of data.
According to some documents I read about the
Archos Jukebox devices over the last days, it
seems that Ogg playback is impossible on them.
Why? They contain a CPU to do the graphics
and some other stuff and a hard-programmed
DSP that is doing MP3->Audio conversion.
Even if you would be able to use the
fixed-point Ogg code, it would have
to be re-converted to MP3 or the
DSP won't be able to play it. It only
plays MP3.
And have a look at the fixed-point code.
It contains lots of tables. This is
quite much of RAM requirement.
This story does not link to a source for the files mentioned. That does not make this story OK. It is not OK that routermonkey has the filenames listed, as that makes it trivial to find using P2P networks.
Sorry, what exactly is wrong with publishing
file names?
(Should not be a problem to fetch file names
from any PIX/Cisco mailing list or Usenet group
anyway.)
This is about as much "not ok" as publishing
what processor you found in your PIX.
Disclaimer:
Information wants to be free
"Security" through obscurity is unwise.
Telling people not to say that there
are Rolex clones available out there won't help
anyone. Fix the problem (== Rolex clones).
This is exactly one of the reasons why
DMCA and friends are bad from the ground.
it only takes a few minutes with a good cpu and
fast drive
Great. Buy another $1499 PC. This doesn't seem
to be a solution to me.
A good rip requires Paranoia mode. Even in
the best case, this is at least 15 minutes per
CD. Multiply this by 200..300 and you'll see why
this really doesn't make sense (to rip all of
your CD collection again just to get rid of
any MP3 player).
All you get if you navigate from the Thomson
page over to Fraunhofer IIS's pages is
a
list of eMail addresses. This is their
"Contact" link on the English pages.
Only if you switch to German (little flag
on the upper left beneath the search box which
only becomes available if you click on
"Home" first) and go to "Kontakt",
you
are shown their postal address.
First is "index.html", second is "index_d.html".
Surprise, surprise.
Yes, in fact I do. Did you ever try to
rip a whole CD? Do you know how damn long
it takes? Not to mention all the disc-jockeying
if you are going to rip a stack of 200 or 300 CDs again.
So if I needed several hours to figure something
out I should be able to patent it? Just figured
out a new mouseclick combination to navigate
faster through Slashdot...
And, regarding E=mc^2: Don't you think it took
several hours as well to come to this conclusion?
So why don't you think one should be able to
patent this formula as well?
This is the problem with algorithm patents.
They're not a "product". It's very dangerous
to make mathematical formulas patentable, because
most of them are just observations like "hey, this and this has
happened if I combine numbers A and B like this",
not inventions.
Just imagine someone would own a patent
on Fast-Fourier-Transformation (FFT). What
would happen? This is very close to JPEG
and MP3 techniques, btw.
So they want $0.75 per MP3 player, hardware
or software.
How am I supposed to pay 75 Cents? In an
envelope? Bank transaction? (Which is aka
"horrible transaction fees if you cross
any country boundary")
I recognize that most people in the US
own a credit card. In Europe, this is quite
different. Many, many people don't
own a credit card and don't trust in online
transaction software, either (I'm not talking
about online banking but all those "Internet
Cash" companies).
So now I shall not be able to download
my favorite mp3 player anymore but have to
figure out how to send $0.75 to the programmers
or licensers?
Slashdot Mirror
Like... ummh.. Telnet?
FTP is a broken protocol in many respects.
"Kroupware"... Wasn't Windows95 internally nicknamed "Chicago"?
Maybe they should call this baby something like "Cologne".
(ok.. maybe even "Kologne". *g*)
People have been doing this for years. One example is (E)SMTP.
Hint: Be very lax in what you accept as input, and be very conservative in what you output.
Er.. why exactly? (Apart from it being funny)
Most Outlook security bugs occured because Outlook showed HTML attachments by-default (and used IE code for displaying/parsing it). And all this Windows attachment silliness...
And another big problem was Microsoft not even seeing this as a problem but a so-called "Feature" that they didn't want to switch off.
Should be very easy to omit this "feature" if you re-program the client. There's no reason why you shouldn't be able to program a client that uses Exchange's protocol that has less.. um.. "design issues" with a serious company.
Why "disturbing"?
Governments have done this for years. Except that they ordered their software from companies that programmed closed-source solutions. They have to be customized for government use anyway. What's different with just wanting it to be Open Source?
IMHO, this is a very good thing, because this software developmnent is paid for with German citizens' tax Euros. So if the result can be used by other citizens as well, I wonder: Why have they ever bought something else?
RealTimeBattle is cool. BTW, you can write your Bots in any language since communication is done using stdio.
I wrote a bot for RealTimeBattle once ("Defensive Attack" - funny that this beast is still available) and found it to be real fun. I was a bit distracted that for the IBM project you could only use Java. With new experiments like this, I like to be able to use the language I'm best in.
Are you allowed to give more details? Stuff like that is always fascinating.
I didn't know much about Java and all, and I found the API descriptions in this contest rather lousy. But I tried to write a really simple bot (Ashley) within a few hours and submitted it two months ago. Didn't touch it after. (so everyone below my rank had about 2 months of time to optimize against my bot's play.)
Well, this really dumb code scored rank 84 in Intermediate. How many people took part in this contest again?
As I understand it, the best 100 in every class took part in the final fights, so I think many people had a quite good chance to get a nice rank if even my "junk bot" managed 84. :-)
I don't think Java would be a good platform for evolutional programming in bytecode. The test cycles are just too long with Java.
Think you breed 16 or 50 childs every iteration and have to test them for success/failure, each of them. IMHO this is just too slow with Java. I doubt you'd have got a bot doing more than stand around without throwing exceptions within the contest time...
You're right. People in Afghanistan that lost their husbands/children/houses/jobs could really use it.
Today, I read about a zoological garden that had been bombed by the US (why?). Most of the animals were dead, most of the buildings destroyed. This is not as important as the many people in NYC and Afghanistan that are now dead while being civilists, but I always frown when one of these bits passes media and shows how many people actually died there.
Did you know that while the US were attacking Afghanistan, many, many more people died there than in the WTC and around?
(I still wonder why there aren't any videos of the Pentagon, the best-guarded building in the world, when this plane crashed in it.)
Offtopic. But sometimes you need to compare POVs.
Yes, I get it. But since Netscape 6 is based on Mozilla code, I'm looking for evidence that it really cannot handle more than 4 levels of tables, as the poster said.
Funny thing. I just tried this with Mozilla/1.1 and a page containing 10 nested tables. No problem there.
Did you at least submit this as a bug to Netscape, or are you just (sorry) whining? What answer did you get?
Heise was just doing this (German) at the moment (ended August 29th). Public double-blind test.
Featuring:
Watch out for results, which are being published (according to the web page) in c't magazine 19/2002 (out 2002-09-09).
(btw most of the information I gathered was from the Rockbox site &&|| mailing list)
Another thing: There was an article explaining that even *if* you could make the DSP play "raw" decoded sound, the serial interface between CPU and DSP would just not be fast enough to transfer this amount of data.
No.
According to some documents I read about the Archos Jukebox devices over the last days, it seems that Ogg playback is impossible on them.
Why? They contain a CPU to do the graphics and some other stuff and a hard-programmed DSP that is doing MP3->Audio conversion.
Even if you would be able to use the fixed-point Ogg code, it would have to be re-converted to MP3 or the DSP won't be able to play it. It only plays MP3.
And have a look at the fixed-point code. It contains lots of tables. This is quite much of RAM requirement.
Sorry, what exactly is wrong with publishing file names?
(Should not be a problem to fetch file names from any PIX/Cisco mailing list or Usenet group anyway.)
This is about as much "not ok" as publishing what processor you found in your PIX.
Disclaimer:
Telling people not to say that there are Rolex clones available out there won't help anyone. Fix the problem (== Rolex clones).
This is exactly one of the reasons why DMCA and friends are bad from the ground.
So don't you think this will end up with software costing about $1 or $2 for end users?
Great. Buy another $1499 PC. This doesn't seem to be a solution to me.
A good rip requires Paranoia mode. Even in the best case, this is at least 15 minutes per CD. Multiply this by 200..300 and you'll see why this really doesn't make sense (to rip all of your CD collection again just to get rid of any MP3 player).
Fraunhofer is somewhat half-government-driven.
All you get if you navigate from the Thomson page over to Fraunhofer IIS's pages is a list of eMail addresses. This is their "Contact" link on the English pages.
Only if you switch to German (little flag on the upper left beneath the search box which only becomes available if you click on "Home" first) and go to "Kontakt", you are shown their postal address.
First is "index.html" , second is "index_d.html" . Surprise, surprise.
Yes, in fact I do. Did you ever try to rip a whole CD? Do you know how damn long it takes? Not to mention all the disc-jockeying if you are going to rip a stack of 200 or 300 CDs again.
Can you see why I don't want to do this again?
So if I needed several hours to figure something out I should be able to patent it? Just figured out a new mouseclick combination to navigate faster through Slashdot...
And, regarding E=mc^2: Don't you think it took several hours as well to come to this conclusion? So why don't you think one should be able to patent this formula as well?
This is the problem with algorithm patents. They're not a "product". It's very dangerous to make mathematical formulas patentable, because most of them are just observations like "hey, this and this has happened if I combine numbers A and B like this", not inventions.
Just imagine someone would own a patent on Fast-Fourier-Transformation (FFT). What would happen? This is very close to JPEG and MP3 techniques, btw.
So they want $0.75 per MP3 player, hardware or software.
How am I supposed to pay 75 Cents? In an envelope? Bank transaction? (Which is aka "horrible transaction fees if you cross any country boundary")
I recognize that most people in the US own a credit card. In Europe, this is quite different. Many, many people don't own a credit card and don't trust in online transaction software, either (I'm not talking about online banking but all those "Internet Cash" companies).
So now I shall not be able to download my favorite mp3 player anymore but have to figure out how to send $0.75 to the programmers or licensers?
Won't work. MP3 will die.
It's the "$0.75 per decoder" thing that is driving me nuts. This will kick several free mp3 players and distribution channels (like RedHat Linux).
I won't be able to download and test a decoder/player. I'll have to pay first.
All this for something - algorithms - that isn't even patentable in many countries.
It all boils down to this: IP "patents" really hurt software development.
It's not about "their product". They want money for the algorithms involved.
In many countries, this still isn't patentable at all.
This is so different from "I wrote a good program and people are pirating it".
People tend to confuse US patent law with the rest of the world these days.
They just raised the costs per-decoder from $0.00 to $0.75.
What next year?
This is not bitching about 75 cents.