Gibson is saying that all illegal codes are validated for, except one particular value. He tried setting the header with illegal values and only one particular illegal value causes this behavior.
Next, the documented functionality of sub-routine doesn't ever have to be called for this to work. I.e. you don't have to start printing and force a print abort or any of that stuff. Just set the value and it immediately starts executing code.
I'm not willing to go as far as Gibson and say this is deliberate, but it does look suspicious.
AOL, CompuServe, GEnie all wanted to be a controlled internet. The internet won because of it's lack of control.
I also disagree with the concept that lawyers will hammer down the next disruptive technology because now they're "prepared" for it.
Sorry, but disruptive technologies are the ones that sneak in the back door, it's that thing nobody thought they needed but they really did. Lawyers by nature won't believe such a simple thing noone needs will be disruptive.
They may react a bit faster once it becomes obvious what is going on, but they're still going to miss the inital boat.
doesn't prevent this. According to the article it's installed when you run the player off the cd. There is no prompt for install either, it does it while the player is playing the cd.
Microsoft has been saying this for years, i attended a talk by microsoft security 3 or 4 years ago where they claimed the same thing.
However, they didn't offer any kind of proof that these two hour reverse engineers actually occured two hours AFTER the patch release, the best they could do is say the code became PUBLICLY available two hours after the patch release.
If you have code that exploits a vulnerability, as long as everyone is quite about it you're free to exploit for your own purposes. Once a patch becomes available there is a narrowing window when that exploit is useful to you, so you might as well release the exploit publicly to show off your skills.
I think Microsoft uses this explanation to justify their "no announcements until patch, however long that takes" policy that they want everyone to agree to. After all, according to them, their vulnerabilities aren't exploited until AFTER the patch release (I'm still waiting for them to announce they'll no longer say what they fix in a patch release, supposedly to "stop" these exploits.)
My father worked for the NWS (retired now). The whole department is nothing but geeks. I had to go to his office after school every day. I learned BASIC on a mainframe ("here this'll keep you busy."). I got to use some touch-screen computer that was networked with a bunch of computers at a Michigan college (I don't think it used Arpanet but it may have). I played a graphical MUD type thing that looked like Wizardry eventually would but I could interact with other players. It pretty much rocked.
i've seen reports of increased snowfall in antartica, but not increased ice thicknesses. The increase in snowfall is predicted by models because of increased humidity from melting ice.
no kidding! I already have a mac mini and apple's bluetooth keyboard rocks, but my mouse is a non-bluetooth wireless logitech which has crap for range.
actually imagery taken today can give you a LOT more detail than that taken 10 years ago. You just don't need it for the purposes of google & msn maps. The extra detail either takes up more disk space, or if super-compressed (i.e. wavelet compression) takes up more processor time to decompress.
i vaguely remember a show on dogs mentioning this may be due (in dogs at least) to inbreeding. as owner's select for domestication traits and breeding for these the coat variations come in after x (can't remember the numbers) generations of close breeding.
If I had to guess it isn't the heat transfer rate but the amount of heat air can absorb plus the amount of work it takes to compress the air.
air doesn't hold heat that well (even compressed), so to pull heat from the interior of the car you would need a lot of air (look at the size of the radiator used to distribute engine heat to the air. would you want even one half-size inside your car? Where would it fit?
Next, calculate under what compression 97 F air (current outdoor high temp here in Missouri) would have to be so that when expanded it would lose 25 degreess worth of heat. Air is realitivly incompressible, it takes a lot of work to compress it. My powered air compressor takes a lot of effort just to inflate my tires to a suitable PSI.
finally, i'm not convinced regular bicylcle pumps show a significant heat increase due to air compression, not to say there isn't any, just not enough to account for all the heat generated. I think friction between the handle and the walls of the pump may contribute more. Try with bellows style pump where there is less friction and see what the heat increase is there.
The vast majority of enterprise level corporations, and smaller companies, don't produce software that is distributed outside of the company. Below enterprise level companies an even larger percentage doesn't distribute software.
For these companies the license doesn't matter. Both licenses are equally free on the end-user. The licenses differ in what developers have to do if they distribute their works outside of a corporation.
For a corporation that does distribute software, wanting to build a standard the GPL would seem better to me. Under BSD a competitor can take your work, add to it and distribute it without releasing code -- competitive advantage to the competitor. Under GPL any changes must be available, they can't keep secret their modifications. Level playing field.
Actually in Mac OS X the trash can icon turns into an eject icon when dragging something ejectable or unmountable (network drives, CDs, DVDs, etc...)
Still not totally obvious, but better than the old OS 9 behavior of always being a trash can. You also have the option of right-clicking (ctrl-clicking) the icon and selecting eject.
Of course in Windows to eject a flash disk you have to fire up the old remove hardware utility, and hopefully you know which of the many drive letters listed is the one you want to eject. That's brilliantly intitutive as well.
But the original posters issue was most likely a CD that isn't mounted on the desktop. That occasionally happens and on the latest macs there is no paper-clip hole to force eject (no, that isn't a brilliant piece of engineering).
If you have a Mac keyboard their is usally an eject key on the keyboard that will eject most CD's (even if not mounted on the desktop). The Disc Utility program also can usually eject problem discs. Not sure if the original poster tried Disc Utility app before downloading the 3rd part utility.
Oh, I forgot to mention. This is for ARCHIVES. Not BACKUPS. The two are different. Backups are short-term data recovery. Archives are long term data storage.
We use tape for backups because of speed and capacity. We don't use them for archives.
We never archived to fill tapes (too many eggs in one basket) and we don't archive to fill DVD's. We archive per job. If we do lose a tape/dvd we lose just the one job, not a whole slew of them.
As our jobs grow larger (not unusal for a job to span multiple dvds now) the larger capacity of tapes might start to become a factor, but it's just wasted space now.
We have a robot DVD burner. It terms of physical time DVD does take longer, but in terms of somebody actually doing the work they take the same amount of people hours (i.e. setupa and go is about the same.)
We've recovered tapes that are 20, 30 years old too. Not every tape we've archived has failed. But in terms of more failures, in the 10 years we've been making CD's I've had more tapes fail than CD's. Take it out 20, 30 years and I'm still willing to bet on more CD's being recoverable than equivalent age tape. DVD's I'm not as confident of yet, but I am willing to bet that DVD's will be more reliable (both in terms of the media and in terms of equipment available to read it) over the next 10 years until something better comes along.
Yes, I've had more entire tapes fail than optical. completely unreadable after about 5 years.
And I've recovered partial data from damaged optical disks too.
I've also had tapes that cost thousands of dollars to recover becasue, even though the tape was good, our last tape drive of that type had failed and we needed to go to a data recovery firm to restore. I've never needed to do that with optical.
Additionally being able to recover SOME data is not fault tolerance. Fault tolerance is when something fails and you can still recover ALL the data.
Slashdot Mirror
Gibson is saying that all illegal codes are validated for, except one particular value. He tried setting the header with illegal values and only one particular illegal value causes this behavior.
Next, the documented functionality of sub-routine doesn't ever have to be called for this to work. I.e. you don't have to start printing and force a print abort or any of that stuff. Just set the value and it immediately starts executing code.
I'm not willing to go as far as Gibson and say this is deliberate, but it does look suspicious.
AOL, CompuServe, GEnie all wanted to be a controlled internet. The internet won because of it's lack of control.
I also disagree with the concept that lawyers will hammer down the next disruptive technology because now they're "prepared" for it.
Sorry, but disruptive technologies are the ones that sneak in the back door, it's that thing nobody thought they needed but they really did. Lawyers by nature won't believe such a simple thing noone needs will be disruptive.
They may react a bit faster once it becomes obvious what is going on, but they're still going to miss the inital boat.
doesn't prevent this. According to the article it's installed when you run the player off the cd. There is no prompt for install either, it does it while the player is playing the cd.
No, this is SBC. They mean everything, not just VOIP.
Microsoft has been saying this for years, i attended a talk by microsoft security 3 or 4 years ago where they claimed the same thing.
However, they didn't offer any kind of proof that these two hour reverse engineers actually occured two hours AFTER the patch release, the best they could do is say the code became PUBLICLY available two hours after the patch release.
If you have code that exploits a vulnerability, as long as everyone is quite about it you're free to exploit for your own purposes. Once a patch becomes available there is a narrowing window when that exploit is useful to you, so you might as well release the exploit publicly to show off your skills.
I think Microsoft uses this explanation to justify their "no announcements until patch, however long that takes" policy that they want everyone to agree to. After all, according to them, their vulnerabilities aren't exploited until AFTER the patch release (I'm still waiting for them to announce they'll no longer say what they fix in a patch release, supposedly to "stop" these exploits.)
itunes doesn't use a propriatary format. itunes makes MP3 and non-DRM open AAC files.
itunes music uses a propriatary format. So does every other store that was compared except eMusic. Which I use. With iTunes. And my iPod.
I use emusic.com. I get MP3's with no DRM and works with iTunes and my iPod just fine and dandy.
iTunes is not the iTunes music store and the iPod plays MP3s just fine.
couple of minutes (on dsl) from project gutenberg. it's text instead of pdf though.
http://www.gutenberg.org/etext/2600
Yes, the only "solution" is to keep making the jar bigger. which is why they go with SHA256.
the ichat instructions say to turn on SSL support and to allow self-signed certs. Not sure if that's just for the login or the messages too.
My father worked for the NWS (retired now). The whole department is nothing but geeks. I had to go to his office after school every day. I learned BASIC on a mainframe ("here this'll keep you busy."). I got to use some touch-screen computer that was networked with a bunch of computers at a Michigan college (I don't think it used Arpanet but it may have). I played a graphical MUD type thing that looked like Wizardry eventually would but I could interact with other players. It pretty much rocked.
proof?
i've seen reports of increased snowfall in antartica, but not increased ice thicknesses. The increase in snowfall is predicted by models because of increased humidity from melting ice.
no kidding! I already have a mac mini and apple's bluetooth keyboard rocks, but my mouse is a non-bluetooth wireless logitech which has crap for range.
no the buildings are there, it's just a crappy photo. looks like they shot it early in the morning and got a huge west point shadow.
The black "square" is the shadow of the WTC. If you zoom out you can see the shadow extends all the way to the water.
always take your aerial photos at noon 8-)
actually imagery taken today can give you a LOT more detail than that taken 10 years ago. You just don't need it for the purposes of google & msn maps. The extra detail either takes up more disk space, or if super-compressed (i.e. wavelet compression) takes up more processor time to decompress.
for #1 - why does the concept of "right" or "wrong" require a god?
i vaguely remember a show on dogs mentioning this may be due (in dogs at least) to inbreeding. as owner's select for domestication traits and breeding for these the coat variations come in after x (can't remember the numbers) generations of close breeding.
If I had to guess it isn't the heat transfer rate but the amount of heat air can absorb plus the amount of work it takes to compress the air.
air doesn't hold heat that well (even compressed), so to pull heat from the interior of the car you would need a lot of air (look at the size of the radiator used to distribute engine heat to the air. would you want even one half-size inside your car? Where would it fit?
Next, calculate under what compression 97 F air (current outdoor high temp here in Missouri) would have to be so that when expanded it would lose 25 degreess worth of heat. Air is realitivly incompressible, it takes a lot of work to compress it. My powered air compressor takes a lot of effort just to inflate my tires to a suitable PSI.
finally, i'm not convinced regular bicylcle pumps show a significant heat increase due to air compression, not to say there isn't any, just not enough to account for all the heat generated. I think friction between the handle and the walls of the pump may contribute more. Try with bellows style pump where there is less friction and see what the heat increase is there.
The only way to accomplish this is to violate the GPL and get whoever the copyright holder is to sue you.
You can't just go before a judge and ask for their opinion (at least in the US).
The vast majority of enterprise level corporations, and smaller companies, don't produce software that is distributed outside of the company. Below enterprise level companies an even larger percentage doesn't distribute software.
For these companies the license doesn't matter. Both licenses are equally free on the end-user. The licenses differ in what developers have to do if they distribute their works outside of a corporation.
For a corporation that does distribute software, wanting to build a standard the GPL would seem better to me. Under BSD a competitor can take your work, add to it and distribute it without releasing code -- competitive advantage to the competitor. Under GPL any changes must be available, they can't keep secret their modifications. Level playing field.
Actually in Mac OS X the trash can icon turns into an eject icon when dragging something ejectable or unmountable (network drives, CDs, DVDs, etc...)
Still not totally obvious, but better than the old OS 9 behavior of always being a trash can. You also have the option of right-clicking (ctrl-clicking) the icon and selecting eject.
Of course in Windows to eject a flash disk you have to fire up the old remove hardware utility, and hopefully you know which of the many drive letters listed is the one you want to eject. That's brilliantly intitutive as well.
But the original posters issue was most likely a CD that isn't mounted on the desktop. That occasionally happens and on the latest macs there is no paper-clip hole to force eject (no, that isn't a brilliant piece of engineering).
If you have a Mac keyboard their is usally an eject key on the keyboard that will eject most CD's (even if not mounted on the desktop). The Disc Utility program also can usually eject problem discs. Not sure if the original poster tried Disc Utility app before downloading the 3rd part utility.
Kevin
Oh, I forgot to mention. This is for ARCHIVES. Not BACKUPS. The two are different. Backups are short-term data recovery. Archives are long term data storage.
We use tape for backups because of speed and capacity. We don't use them for archives.
We have a 2-drive robot DVD burner.
We never archived to fill tapes (too many eggs in one basket) and we don't archive to fill DVD's. We archive per job. If we do lose a tape/dvd we lose just the one job, not a whole slew of them.
As our jobs grow larger (not unusal for a job to span multiple dvds now) the larger capacity of tapes might start to become a factor, but it's just wasted space now.
We have a robot DVD burner. It terms of physical time DVD does take longer, but in terms of somebody actually doing the work they take the same amount of people hours (i.e. setupa and go is about the same.)
We've recovered tapes that are 20, 30 years old too. Not every tape we've archived has failed. But in terms of more failures, in the 10 years we've been making CD's I've had more tapes fail than CD's. Take it out 20, 30 years and I'm still willing to bet on more CD's being recoverable than equivalent age tape. DVD's I'm not as confident of yet, but I am willing to bet that DVD's will be more reliable (both in terms of the media and in terms of equipment available to read it) over the next 10 years until something better comes along.
Yes, I've had more entire tapes fail than optical. completely unreadable after about 5 years.
And I've recovered partial data from damaged optical disks too.
I've also had tapes that cost thousands of dollars to recover becasue, even though the tape was good, our last tape drive of that type had failed and we needed to go to a data recovery firm to restore. I've never needed to do that with optical.
Additionally being able to recover SOME data is not fault tolerance. Fault tolerance is when something fails and you can still recover ALL the data.