Perhaps I wasn't clear -- the service I was talking about _was_ a data service. You dial in on their number and only then are you permitted to talk to their web server.
Many are a complete rip off of course and there is plenty of adult content, which is pretty nasty and anyone (child) can call. (As an aside, I don't see parents monitoring childrens phone calls, when they could be calling some really nasty, personalised, stuff)
BT offers a free premium rate call blocking service. I believe it is quite popular with parents.
How is this offtopic? I know it isn't actually the bug being discussed but it is a Windows JPEG bug, and could potentially be developed into an exploit.
Or did the mods see an AC linking to a jpeg and assume it was a goatse troll?
I'm pretty sure this is a different flaw. Whether its exploitable or not, I don't know, but I've just run the proof of concept code being discussed in this article on my system and it does not cause a crash. Your image does. This is an unpatched Win2K system, so it isn't a case of MS doing a workaround that doesn't catch some cases of the problem. You may want to forward that image to MS's IE team, and let them analyse what's wrong with it.
Firefox is OSS, and thus cannot use closed-source libraries such as the MS one in trouble.
Different OSS licenses have different restrictions on what libraries can be used with the software, but the most restrictive of these is the GPL, which only permits you to use other GPL libraries (which includes any library that has a "relicense under GPL" ability, including LGPL, BSD, et al) and libraries "distributed with the operating system or compiler". The library in question, GDIPLUS, _is_ distributed with the most popular compiler on windows, Visual Studio, so can even be used by GPL applications.
The problem exists in GDIPLUS, which is a DLL of which, for some bizarre reason known only to MS, an additional copy is installed for each application that uses it.
Given most users' preferences on this matter, that's about as useful as the option that prevents you from opening "dangerous file types", including PDFs, where you can't even get temporary access to the file... the only way of getting to the document is by disabling the protection.
Why not just ban all premium rate dial up sites. They are just breeding grounds for porn sites and scams. I've yet to see a legitimate use for them. We could do without them.
If you want to charge for a service get the customer to enter their credit card details / set up an account. If you think they would be unwilling, then that speaks volumes about your business.
A telco I use the services of operates a premium-rate dialup in order to change the terminating line of their non-geographic numbers.
Typical charges for using this service are in the range of 30-50 pence, of which the telco probably gets 20-40.
If they wanted to charge 50 pence on a credit card, they would lose over half of that in transaction processing fees. And if somebody tried to pay with a debit card, they'd lose nearly all of it.
For some services, particularly very cheap ones that the purchaser will want to use infrequently, a premium rate phone line is the most effective way of charging.
If I were implementing this, I'd have a (short) message describing why the call has been blocked, followed by "If you really want to be connected, please dial now."
I'm pretty sure it's terrible at supporting Gnutella standards. IIRC, it cannot be an Ultrapeer
No, the billing cycles are still as you described them. I believe they will, however, block a line that is being used to make too many premium rate calls and require an advance payment to reenable it.
I'm pretty sure it's terrible at supporting Gnutella standards. IIRC, it cannot be an Ultrapeer
You might be right. It could be back in version 1.6, I know, but when G2 was introduced there was some concern over whether a single node could be both a G2 hub and a Gnutella ultrapeer without having a negative impact on the networks; I think the ultrapeer code might have been disabled at this point.
As to whether this is damaging to the network, as Gnutella support is off by default and (AFAICT) only used by a very small minority of shareaza users, I don't know.
I have heard Shareaza is set not to share by default
This is just FUD. Shareaza by default sets up to share on all networks with no limit on the amount of upload bandwidth used.
usually don't follow accepted P2P sharing standards
Can you specify which standards we're talking about here? There are many of them, and I'm sure a lot that Shareaza doesn't implement.
Also, other P2P clients like iMesh that also used the FastTrack network were sued by the RIAA and settled even though the law has come out in favor of decentralized networks.
Shareaza is not a FastTrack client, so this is irrelevant.
I am quite happy with my BT so I won't be rushing off to emule or edonkey anytime soon;D
That, at least, seems like a sensible POV to me. I'm able to download the stuff that I want over BT in about half the time it takes with ed2k, and a _lot_ less fake files.
Have it download 10 things at once and it'll suck up 100% of your CPU.
Funny, I've had it downloading about 20-30 things at once before and not noticed a huge problem on my 450MHz celeron.
It can kill your CPU time while it's hashing your shared files just after you install it, though. It shares on 3 different networks, and needs to hash every file with 3 different algorithms in order to achieve this.
I tried Shareaza a couple years ago. Seemed buggy as hell.
You probably hit it during one of their extended public beta periods. Its in a stable release now, and the only problems I have with it these days can be directly traced to a buggy video codec that sometimes crashes when it is generating a preview.
it rewards for not capping your upload in the software, but if you use an outgoing traffic limiting thing at the router the software knowns no different. i get the same dl speed if i'm giving my full 40k up (ack) or limiting it to 5k~10k
The eMule credit system actually gives you credit for what you've uploaded. You may have tricked the local client enforced 'upload ratio' system into letting you download at full speed, but there are other clients out there that will let you start your download earlier if you upload more to them. This is useful when combined with partial sharing.
My quote came from 'man perl'. Whilever official documents distributed with the software disagree about whether r not its an acronym, I suggest we should all feel free to believe whatever we want.:)
So I run off to the DevIL website, and download it. Running its configure script bombs saying that it has a bad interpreter (which every other configure script in the known universe seems to handle just fine).
Just for reference, that error often means that the script has DOS line endings, not Unix ones. Try piping it through dos2unix, then running it again.
Perhaps I wasn't clear -- the service I was talking about _was_ a data service. You dial in on their number and only then are you permitted to talk to their web server.
Many are a complete rip off of course and there is plenty of adult content, which is pretty nasty and anyone (child) can call. (As an aside, I don't see parents monitoring childrens phone calls, when they could be calling some really nasty, personalised, stuff)
BT offers a free premium rate call blocking service. I believe it is quite popular with parents.
How is this offtopic? I know it isn't actually the bug being discussed but it is a Windows JPEG bug, and could potentially be developed into an exploit.
Or did the mods see an AC linking to a jpeg and assume it was a goatse troll?
http://sylvana.net/test/AP4.jpg
will crash IE on an updated xp sp2 system.
I'm pretty sure this is a different flaw. Whether its exploitable or not, I don't know, but I've just run the proof of concept code being discussed in this article on my system and it does not cause a crash. Your image does. This is an unpatched Win2K system, so it isn't a case of MS doing a workaround that doesn't catch some cases of the problem. You may want to forward that image to MS's IE team, and let them analyse what's wrong with it.
Firefox is OSS, and thus cannot use closed-source libraries such as the MS one in trouble.
Different OSS licenses have different restrictions on what libraries can be used with the software, but the most restrictive of these is the GPL, which only permits you to use other GPL libraries (which includes any library that has a "relicense under GPL" ability, including LGPL, BSD, et al) and libraries "distributed with the operating system or compiler". The library in question, GDIPLUS, _is_ distributed with the most popular compiler on windows, Visual Studio, so can even be used by GPL applications.
The problem exists in GDIPLUS, which is a DLL of which, for some bizarre reason known only to MS, an additional copy is installed for each application that uses it.
Bizarre, but true.
http://sylvana.net/test/AP4.jpg
will crash IE on an updated xp sp2 system.
It also crashes a Win2K system, which is NOT AFFECTED according to the original MS announcement.
This was Microsoft JPEG.
I don't know anything about this particular vulnerability, and where it was introduced, but Internet Explorer's about box contains the following text:
Portions of this software are based in part on the work of the Independent JPEG Group.
OL2003 has image loading off by default
... the only way of getting to the document is by disabling the protection.
Given most users' preferences on this matter, that's about as useful as the option that prevents you from opening "dangerous file types", including PDFs, where you can't even get temporary access to the file
Hmm. Pasted the wrong quote there.
I'm sure I pressed Ctrl+C; maybe Firefox doesn't like me.
Why not just ban all premium rate dial up sites. They are just breeding grounds for porn sites and scams. I've yet to see a legitimate use for them. We could do without them.
If you want to charge for a service get the customer to enter their credit card details / set up an account. If you think they would be unwilling, then that speaks volumes about your business.
A telco I use the services of operates a premium-rate dialup in order to change the terminating line of their non-geographic numbers.
Typical charges for using this service are in the range of 30-50 pence, of which the telco probably gets 20-40.
If they wanted to charge 50 pence on a credit card, they would lose over half of that in transaction processing fees. And if somebody tried to pay with a debit card, they'd lose nearly all of it.
For some services, particularly very cheap ones that the purchaser will want to use infrequently, a premium rate phone line is the most effective way of charging.
D'oh!
That should read:
"..., please dial [random 3 digit code] now."
If I were implementing this, I'd have a (short) message describing why the call has been blocked, followed by "If you really want to be connected, please dial now."
I'm pretty sure it's terrible at supporting Gnutella standards. IIRC, it cannot be an Ultrapeer
No, the billing cycles are still as you described them. I believe they will, however, block a line that is being used to make too many premium rate calls and require an advance payment to reenable it.
I'm pretty sure it's terrible at supporting Gnutella standards. IIRC, it cannot be an Ultrapeer
You might be right. It could be back in version 1.6, I know, but when G2 was introduced there was some concern over whether a single node could be both a G2 hub and a Gnutella ultrapeer without having a negative impact on the networks; I think the ultrapeer code might have been disabled at this point.
As to whether this is damaging to the network, as Gnutella support is off by default and (AFAICT) only used by a very small minority of shareaza users, I don't know.
I have heard Shareaza is set not to share by default
;D
This is just FUD. Shareaza by default sets up to share on all networks with no limit on the amount of upload bandwidth used.
usually don't follow accepted P2P sharing standards
Can you specify which standards we're talking about here? There are many of them, and I'm sure a lot that Shareaza doesn't implement.
Also, other P2P clients like iMesh that also used the FastTrack network were sued by the RIAA and settled even though the law has come out in favor of decentralized networks.
Shareaza is not a FastTrack client, so this is irrelevant.
I am quite happy with my BT so I won't be rushing off to emule or edonkey anytime soon
That, at least, seems like a sensible POV to me. I'm able to download the stuff that I want over BT in about half the time it takes with ed2k, and a _lot_ less fake files.
An exe file? What the hell am I supposed to do with that?
Its a packaged binary format used by a program called Wine.
Have it download 10 things at once and it'll suck up 100% of your CPU.
Funny, I've had it downloading about 20-30 things at once before and not noticed a huge problem on my 450MHz celeron.
It can kill your CPU time while it's hashing your shared files just after you install it, though. It shares on 3 different networks, and needs to hash every file with 3 different algorithms in order to achieve this.
I tried Shareaza a couple years ago. Seemed buggy as hell.
You probably hit it during one of their extended public beta periods. Its in a stable release now, and the only problems I have with it these days can be directly traced to a buggy video codec that sometimes crashes when it is generating a preview.
Wow. Didn't know that the short with the two desk lamps and a ball was by Pixar... they've been at it for quite a while, haven't they? :)
it rewards for not capping your upload in the software, but if you use an outgoing traffic limiting thing at the router the software knowns no different. i get the same dl speed if i'm giving my full 40k up (ack) or limiting it to 5k~10k
The eMule credit system actually gives you credit for what you've uploaded. You may have tricked the local client enforced 'upload ratio' system into letting you download at full speed, but there are other clients out there that will let you start your download earlier if you upload more to them. This is useful when combined with partial sharing.
You've got me on Starlight Express though.
Yeah, but, IIRC, it wasn't a Lloyd-Webber musical.
Read perldoc perlfaq1
:)
My quote came from 'man perl'. Whilever official documents distributed with the software disagree about whether r not its an acronym, I suggest we should all feel free to believe whatever we want.
I didn't find any Java bindings, but the Python binding I found only allowed access to about 10% of the features exposed by the C++ library.
.NET bindings are included in the download, and do look like they're at least approximately complete, which is nice.
But the
If you're right, he's still in the clear. You can do whatever you want with your own code, even if you have released it under the GPL.
So I run off to the DevIL website, and download it. Running its configure script bombs saying that it has a bad interpreter (which every other configure script in the known universe seems to handle just fine).
Just for reference, that error often means that the script has DOS line endings, not Unix ones. Try piping it through dos2unix, then running it again.