The vulnerability is caused due to an error in the handling of redirections for URLs with the "mhtml:" URI handler. This can be exploited to access documents served from another web site.
The only reference I could find to an mhtml URI through google (which isn't a vulnerability report) is for HTML email. I've generated multi-part MIME email content and never once came across this type of URI. So if someone could elaborate on why this feature even exists it would be helpful.
Actually the administration is merely pandering to the evangelicals. They aren't actually getting much of what they want. This group in office has their own agenda. They just convince the religious to support it.
The evangelicals actually believe they're getting a lot of support. They have too much faith in the words of their leaders.
Is Oracle seriously considering buying Novell? That sounds like an interesting idea. Plus I'd finally see my Novell stock skyrocket.
Re:Definitely has uses but..
on
Oracle Linux?
·
· Score: 5, Insightful
Good point. But an OS stripped down and tweaked to run Oracle will most likely have the least maintenance issues. Right now Oracle has to support their DB on multiple Linux distros, plus Solaris and Windows. If they have their own OS and push it as "preferred" they'll save their customers and themselves some support cost. I think sys admins will be happy to have their database servers built specifically for their task, plus supported directly by Oracle right down to the OS level. Oracle would be adding value to their databases, so I'm surprised this hasn't happened already.
But enforcement is the issue they're trying to tackle. Enforcement is basically handled by either withholding or reporting (e.g. form 1099). It sounds like these virtual world companies aren't reporting (we definitely know they're not withholding). So the government will either tax the virtual world and trading companies or force them to report payouts. Don't be surprised if in the next few years they ask for your SSN. I recommend getting an alternate tax ID if they do enforce reporting and you still want to make transactions.
You sir, are an idiot. You did notice that I merely defined censorship, didn't you? This particular case is not censorship. I was criticizing the notion that only government censorship meets the definition. How can I misuse a word by only pasting its definition? You're overreacting to the wrong poster.
One should always consider the source when reading articles. I don't think it's unreasonable that the summary points out the possible conservative bias of the source since most people here have probably never heard of this source.
Here on/. you can filter most of the political articles. Turn off the politics and YRO sections. Your problem is solved.
A friend just called me a few minutes ago from an EB in Westchester, NY. They're only taking 8 pre-orders. Eight. At 9am there were 10 people in line (they open at 11am). If such a small store can get a line waiting outside in the cold for hours just for pre-orders then it looks like the Wii will be a big hit. The Nintendo fan-boys are really excited, and that's going to mean great viral marketing for the Wii.
Do you know that XP has most of the same legal restrictions? Yet that didn't send millions of desktop users to Linux. It's simply ignored. Corporate users who need to care more about licenses will simply buy the corporate licenses that have less of these restrictions.
Since very little here is different than XP I imagine this news won't provoke massive Linux migrations.
Well SL is working at getting a browser built in so objects can have a web page as the surface of an object. They can probably perform presentations through that browser if it ever goes live. But more likely, if this is a success they'll work directly with Linden Labs to get whatever features they can think of to give a nice presentation. Linden Labs is very interested in getting corporate partners to use the virtual world more. If it takes off it'll be very profitable.
It's cheaper to get a free Second Life account than to travel to the live conference. I'd rather be in the oderless Second Life than a room full of developers.
I believe TRON has been in millions of machines longer than Symbian. It most likely runs more devices as the project specifically targets more kinds of devices.
I can't name any version of any browser which I wasn't able to crash. Well, I guess I never got Lynx to crash. We can even crash IE with very simple HTML. My experience is that no full-featured browser is extremely stable.
* Most public companies, including this one, are not run as democracies. Just as the President is ultimately responsible for all actions of the military, the CEO is ultimately responsible for all business practices in his/her company. Knowing lots of other companies are being investigated a CEO can demand the CFO or others perform an internal investigation and fix any questionable practices. Since stock handling is so critical to public companies it's not unreasonable to expect CEOs to pay close attention to how stock options are handled.
* The CEO is the most visible public target in any corporate scandal. Even if someone else was the cause of the problem the public will feel something was accomplished by ousting the CEO. This is especially true after the CEO of Enron was found guilty.
Re:And unfortunately right about YouTube
on
Ballmer Sounds Off
·
· Score: 1
I find this response to the YouTube purchase hilarious. As if Google didn't think about this at all before the purchase. You don't think Google's legal department did their research and gave the go-ahead?
Let's not forget that we'll never know exactly how many total exploits IE really has. Microsoft may know of 100 more that they simply haven't disclosed. We'll never know. But anyone can inspect Firefox. Don't think that simply because IE has less publicly documented exploits that it's more secure. Unless you work for the software vendor, you will never really know how secure any proprietary software is.
Also look at how quickly Microsoft fixes security vulnerabilities. They've let major holes exist for 3 years or more. Even if they have fewer vulnerabilities it's almost irrelevant if they don't fix the ones they have.
It's a more complex issue that simply how many vulnerabilies each camp discloses.
Since your average user doesn't really know what a "computer language" is either, it may have been more appropriate to call it a "software platform" with a link to wikipedia to assist those who are interested in learning more. After all, that's what links are for.
Those many years of evolution haven't prepared us for man-made chemicals which were only recently introduced. And you don't think we've evolved in the last few thousand years since we stopped eating rotted carcass from the jungle floor? Funny you bring up evolution but also think it stopped.
Slashdot Mirror
The only reference I could find to an mhtml URI through google (which isn't a vulnerability report) is for HTML email. I've generated multi-part MIME email content and never once came across this type of URI. So if someone could elaborate on why this feature even exists it would be helpful.
Actually the administration is merely pandering to the evangelicals. They aren't actually getting much of what they want. This group in office has their own agenda. They just convince the religious to support it.
The evangelicals actually believe they're getting a lot of support. They have too much faith in the words of their leaders.
Is Oracle seriously considering buying Novell? That sounds like an interesting idea. Plus I'd finally see my Novell stock skyrocket.
Good point. But an OS stripped down and tweaked to run Oracle will most likely have the least maintenance issues. Right now Oracle has to support their DB on multiple Linux distros, plus Solaris and Windows. If they have their own OS and push it as "preferred" they'll save their customers and themselves some support cost. I think sys admins will be happy to have their database servers built specifically for their task, plus supported directly by Oracle right down to the OS level. Oracle would be adding value to their databases, so I'm surprised this hasn't happened already.
Uh huh. Humans had no problems when there were only 600 million of us, right? Civilizations never collapsed from war or famine.
Please tell us you're not contributing to the population growth.
But enforcement is the issue they're trying to tackle. Enforcement is basically handled by either withholding or reporting (e.g. form 1099). It sounds like these virtual world companies aren't reporting (we definitely know they're not withholding). So the government will either tax the virtual world and trading companies or force them to report payouts. Don't be surprised if in the next few years they ask for your SSN. I recommend getting an alternate tax ID if they do enforce reporting and you still want to make transactions.
by not having a mid-range head less system
You mean like the Mini?
AIDS transmission via earwax? Please get off the net, Senator Frist.
You sir, are an idiot. You did notice that I merely defined censorship, didn't you? This particular case is not censorship. I was criticizing the notion that only government censorship meets the definition. How can I misuse a word by only pasting its definition? You're overreacting to the wrong poster.
Censorship by anyone is censorship...
From you-know-where:
"Censorship is the control of speech and other forms of human expression. In many (but not all) cases, it is exercised by governing bodies."
One should always consider the source when reading articles. I don't think it's unreasonable that the summary points out the possible conservative bias of the source since most people here have probably never heard of this source.
/. you can filter most of the political articles. Turn off the politics and YRO sections. Your problem is solved.
Here on
A friend just called me a few minutes ago from an EB in Westchester, NY. They're only taking 8 pre-orders. Eight. At 9am there were 10 people in line (they open at 11am). If such a small store can get a line waiting outside in the cold for hours just for pre-orders then it looks like the Wii will be a big hit. The Nintendo fan-boys are really excited, and that's going to mean great viral marketing for the Wii.
Do you know that XP has most of the same legal restrictions? Yet that didn't send millions of desktop users to Linux. It's simply ignored. Corporate users who need to care more about licenses will simply buy the corporate licenses that have less of these restrictions.
Since very little here is different than XP I imagine this news won't provoke massive Linux migrations.
Well SL is working at getting a browser built in so objects can have a web page as the surface of an object. They can probably perform presentations through that browser if it ever goes live. But more likely, if this is a success they'll work directly with Linden Labs to get whatever features they can think of to give a nice presentation. Linden Labs is very interested in getting corporate partners to use the virtual world more. If it takes off it'll be very profitable.
It's cheaper to get a free Second Life account than to travel to the live conference. I'd rather be in the oderless Second Life than a room full of developers.
I believe TRON has been in millions of machines longer than Symbian. It most likely runs more devices as the project specifically targets more kinds of devices.
I can't name any version of any browser which I wasn't able to crash. Well, I guess I never got Lynx to crash. We can even crash IE with very simple HTML. My experience is that no full-featured browser is extremely stable.
Two things to consider:
* Most public companies, including this one, are not run as democracies. Just as the President is ultimately responsible for all actions of the military, the CEO is ultimately responsible for all business practices in his/her company. Knowing lots of other companies are being investigated a CEO can demand the CFO or others perform an internal investigation and fix any questionable practices. Since stock handling is so critical to public companies it's not unreasonable to expect CEOs to pay close attention to how stock options are handled.
* The CEO is the most visible public target in any corporate scandal. Even if someone else was the cause of the problem the public will feel something was accomplished by ousting the CEO. This is especially true after the CEO of Enron was found guilty.
I find this response to the YouTube purchase hilarious. As if Google didn't think about this at all before the purchase. You don't think Google's legal department did their research and gave the go-ahead?
Let's not forget that we'll never know exactly how many total exploits IE really has. Microsoft may know of 100 more that they simply haven't disclosed. We'll never know. But anyone can inspect Firefox. Don't think that simply because IE has less publicly documented exploits that it's more secure. Unless you work for the software vendor, you will never really know how secure any proprietary software is.
Also look at how quickly Microsoft fixes security vulnerabilities. They've let major holes exist for 3 years or more. Even if they have fewer vulnerabilities it's almost irrelevant if they don't fix the ones they have.
It's a more complex issue that simply how many vulnerabilies each camp discloses.
Since your average user doesn't really know what a "computer language" is either, it may have been more appropriate to call it a "software platform" with a link to wikipedia to assist those who are interested in learning more. After all, that's what links are for.
How is this overreacting? You're telling us everything in the article summary is correct, and even explaining why.
Maybe he means it goes against the trust people have in Yahoo's service. Or he thought we're talking about MSN.
Right, it's only Americans who waste oil. It's not like Canada's or China's oil consumption is increasing.
Those many years of evolution haven't prepared us for man-made chemicals which were only recently introduced. And you don't think we've evolved in the last few thousand years since we stopped eating rotted carcass from the jungle floor? Funny you bring up evolution but also think it stopped.