Have you ever tried to install something on Windows without a custom Windows installer? Getting the dependencies right, pointing things to the right places, etc? It's not easy either.
My point is that if you treat distributions like spearate operating systems (but with one common code base), then you'll be fine. This is why there are arguments for consolidation of the distributions, and why the LSB is trying to help out, too.
However, my point is that without an installer, it's just as hard on Windows. Just because you don't have to compile any code doesn't make it any easier.
This is true, but the security flaw is about opening JavaScript dialog boxes, not new browser windows.
For goodness sakes, the referenced article even had a test you could run on your own. You would have seen first-hand that your idea, while correct, doesn't address this problem at all.
Scripts, images and the like are only executed/loaded when a user actually visits the page.
Firefox can skip the javascript execution, but server side scripts (like fetching a page from cgi-bin or a php page or anything else that runs server side) most certainly DOES run the script; there is no way to avoid it.
Now, whether the script is smart enough to do nothing or not depending on the prefetch header that comes across is a different story, but how many scripts do you think support this?
Well, if Windows created the partition, it may be a separate problem. But I was indeed talking about a USB hard drive - I have an external enclosure with a 120GB seagate in it that I had this problem with.
I had the same problem. The solution is to open the partition on the USB drive and change the partition type to the proper type for NTFS. When I had the problem, it was a FAT32 formatted partition, but the partition type flag was Linux. Windows didn't like that, but linux had no problems with it.
Change the partition type to what Windows expects, and you should be ok.
What are you going to do when some massive worm tears down all of your systems because the worm author realized that 60% of the enterprise windows machines were using 5 year old exploitable technology?
You are close. There is one correction to #1: Because Google things www.badguy.com is the *same* as slashdot.org, it doesn't show them both in the results - it pickes one of the URLs as the target of the slashdot result item. So you see one slashdot with the proper page title and web page blurb in the google results, but the URL may be www.badguy.com. At this point, badguy.com has control over where to send the user.
I can't even imagine [...] trying to do it with RPM's
Come on, troll. Just because gentoo makes it easy does NOT mean that every other system is hard.
On Mandrake:
urpmi mono
And by the way, since we are trolling, I can install anything that way, and I don't have to wait for it to build. So there are advantages either way, but that doesn't mean it's any more difficult.
But with an open BIOS, the community could find and fix this problem and the world would be better for it.
I've seen BIOS bugs in many, many machines, and it is a shame. Many drivers (and even the Linux Kernel, iirc) explicitly blacklist certain hardware because of bugs like this.
Why do we live like this? Capitalism is an opposing force to "correctness". I think Free Software is the ideal way to get to perfect software (excluding agreement among developers).
This is fine if all people used autocomplete for was "remembering". I argue that this is not the case.
All too often, Bob will find himself using autocomplete to see if a funciton in the list looks like what he wants to do. He has no idea how to do this task, but look - there is a function that sounds like it does what he wants. Forget that it may or may not do this task exactly, and forget that the documentation for the function may specify pre-conditions and post-conditions and other requirements... what happens? This leads straight to bad code and bad software, and I've seen it too many times.
If you have to read up on the library, its api, and the language in order to write something useful, then you will end up knowing more about the library and the api and the language.
If you know more about the library and the api and the language, the you have much greater potential for writing better code.
The main thread around here seems to be that the license isn't compatible with GPL or other OSI licenses, and so reading the format in OpenOffice could cause problems.
Since OpenDocument and MS XML are both XML documents, couldn't someone write an application that converts between them? Seems like it would take a bit of translating, but the schemas are available...
This small utility could be under some license that makes everyone happy, and not force OpenOffice et al to do some legal gymnastics. Maybe it could even be a plugin to OpenOffice and friends. Surely, a plugin can have a different license...
Slashdot Mirror
5. Try to explain to your parents how to get an ssh server running in Windows
6. ???
7. Kill yourself^H^H^H^H^H^H^H^H^H Profit!!!
Have you ever tried to install something on Windows without a custom Windows installer? Getting the dependencies right, pointing things to the right places, etc? It's not easy either.
My point is that if you treat distributions like spearate operating systems (but with one common code base), then you'll be fine. This is why there are arguments for consolidation of the distributions, and why the LSB is trying to help out, too.
However, my point is that without an installer, it's just as hard on Windows. Just because you don't have to compile any code doesn't make it any easier.
No, I meant that his command wasn't a move, it was a copy, and two Mount Fuji's just shouldn't exist :)
Heh, you can't COPY mount Fuji...
UDUDLRLRBA
It is "UUDD" (not "UDUD").
The Konami Code.
-Serp
This is true, but the security flaw is about opening JavaScript dialog boxes, not new browser windows.
For goodness sakes, the referenced article even had a test you could run on your own. You would have seen first-hand that your idea, while correct, doesn't address this problem at all.
Yeah? How do you figure out where it came from? It's not easy by any means. That's the whole point of the security advisory!
Scripts, images and the like are only executed/loaded when a user actually visits the page.
Firefox can skip the javascript execution, but server side scripts (like fetching a page from cgi-bin or a php page or anything else that runs server side) most certainly DOES run the script; there is no way to avoid it.
Now, whether the script is smart enough to do nothing or not depending on the prefetch header that comes across is a different story, but how many scripts do you think support this?
Here's a /bin/true in 11 bytes (I guess I'm cheating since I'm using another binary, but what system needs /bin/true but doesn't have /bin/sh?)
#!/bin/sh
-Serpent
I know they have weatherbug running, and saw he [sic] specific zip code.
+1 for most bizarre method to determine the zip code you are in right now...
Well, if Windows created the partition, it may be a separate problem. But I was indeed talking about a USB hard drive - I have an external enclosure with a 120GB seagate in it that I had this problem with.
Sorry I couldn't help.
I had the same problem. The solution is to open the partition on the USB drive and change the partition type to the proper type for NTFS. When I had the problem, it was a FAT32 formatted partition, but the partition type flag was Linux. Windows didn't like that, but linux had no problems with it.
Change the partition type to what Windows expects, and you should be ok.
Why update? Simple.
Microsoft will stop releasing security updates.
What are you going to do when some massive worm tears down all of your systems because the worm author realized that 60% of the enterprise windows machines were using 5 year old exploitable technology?
-Serp
I patched the linux kernel to ignore the same key being pressed within a certain time period.
Hhhoowww llonnng diiidd ttheee ppatccchh ttakkke tto wrrritte?//?
You are close. There is one correction to #1: Because Google things www.badguy.com is the *same* as slashdot.org, it doesn't show them both in the results - it pickes one of the URLs as the target of the slashdot result item. So you see one slashdot with the proper page title and web page blurb in the google results, but the URL may be www.badguy.com. At this point, badguy.com has control over where to send the user.
65M is not all that large compared to other runtimes and libraries (C/C++ is much larger).
You must be talking about an IDE or some extra bloated libraries, because the standard C and C++ runtimes are very small (for good reason).
I can't even imagine [...] trying to do it with RPM's
Come on, troll. Just because gentoo makes it easy does NOT mean that every other system is hard.
On Mandrake:
urpmi mono
And by the way, since we are trolling, I can install anything that way, and I don't have to wait for it to build. So there are advantages either way, but that doesn't mean it's any more difficult.
I hate when this FUD is spread around.
But with an open BIOS, the community could find and fix this problem and the world would be better for it.
I've seen BIOS bugs in many, many machines, and it is a shame. Many drivers (and even the Linux Kernel, iirc) explicitly blacklist certain hardware because of bugs like this.
Why do we live like this? Capitalism is an opposing force to "correctness". I think Free Software is the ideal way to get to perfect software (excluding agreement among developers).
You probably want some sort of word boundaries around that regexp or you will mess up code like this:
... }
if( objectIsNotSpecial(obj) ) {
-Serp
This is fine if all people used autocomplete for was "remembering". I argue that this is not the case.
All too often, Bob will find himself using autocomplete to see if a funciton in the list looks like what he wants to do. He has no idea how to do this task, but look - there is a function that sounds like it does what he wants. Forget that it may or may not do this task exactly, and forget that the documentation for the function may specify pre-conditions and post-conditions and other requirements... what happens? This leads straight to bad code and bad software, and I've seen it too many times.
If you have to read up on the library, its api, and the language in order to write something useful, then you will end up knowing more about the library and the api and the language.
If you know more about the library and the api and the language, the you have much greater potential for writing better code.
Better code is the goal, if you love what you do.
-Serp
Hah! It won't even compile. You are missing a header.
Perfect 1.0. Pft.
--
Why not?
Wireless works wonders. Watch for leg burns though.
The main thread around here seems to be that the license isn't compatible with GPL or other OSI licenses, and so reading the format in OpenOffice could cause problems.
Since OpenDocument and MS XML are both XML documents, couldn't someone write an application that converts between them? Seems like it would take a bit of translating, but the schemas are available...
This small utility could be under some license that makes everyone happy, and not force OpenOffice et al to do some legal gymnastics. Maybe it could even be a plugin to OpenOffice and friends. Surely, a plugin can have a different license...
-Serp
Read this post.
People will not successfully exploit a vulnerability they do not know about
You did read the article, yes? This is exactly what happened.