Seriously, can anyone come up with a point for this other than a money making scheme for ICANN? Verisign "protecting" its ".com" and ".net" brands, presumably by registering the likes of ".con", ".c0n", and ".cum" (bet the people who opposed ".xxx" will love the last one), kind of proves the point, does it not? The only thing I can come up with is that because ".info" and most of the rest of the last batch of gTLDs are widely regarded as a cesspit this is the attempt at a do-over in the hope that the scammers won't be able to pony up the cash but trademark obsessed companies can and (apparently at least a couple of hundred of them) will.
You're probably right on the perception over time, but having shot quite a bit of video footage at a variety of speeds I don't think it's quite so clear cut. The speed of the subject being filmed seems to have some impact on how the brain perceives and interprets the motion on playback, and I suspect the shutter speed (i.e. the actual exposure time for an individual frame) may enter into it as well. The best theory I can come up with is that it boils down to something to do with the combination of frame rate and the amount of motion blur captured on each frame, and you need to get within a sweet spot or the visual cortex kind of does a double take, and that's what the reviewers experienced.
Whether that's something that can be conditioned out over time, or whether it's something that needs to be done at filming (using a different shutter speed, perhaps), or fixed in post (simulating more motion blur, or sharpening the image) I couldn't say. More footage (preferrably of Hobbits) required.
No, there isn't. At least not that one. I don't think you get many Gibbons, Koalas, Lynx, Narwhals, Ocelots or Quetzals in (or off the coast of) Africa, unless you are visiting a zoo. Ibex are found in limited numbers in Egypt, so that one's OK, but Jackalopes don't even exist and are a North American creation anyway.
Also, don't forget that the first couple of those bytes are specific to a vendor, and in RuggedCom's case those would be "000ADC". So that leaves only 2^24 possible MACs from which to generate passwords to try, a search space which could then be further reduced by the need to be able to actually type the password in.
Barring rate limiting, or other protection mechanisms (unlikely on a SCADA device) I'd estimate that a brute force attack on a 100mb/s link is going to be done and dusted in a matter of minutes rather than hours or days.
Sorry, but I believe both the US and UK are full. Can't even give them hard labour in an Asian sweatshop since Apple spoiled it for everyone. I was going to suggest some time doing IT support in a Call Centre, but apparently USAid pulled funding from those just this morning and I don't really want a cruel and unusual punishment rap.
Wrong target. He needs to sue the New Zealand government since they were the ones that really allowed this to happen in the first place. If they'd been a little more circumspect about allowing the US to tell them what to do, or even told them to get stuffed and released Kim without charge as soon as the US started to blatently try to screw with due process, this farce wouldn't have got to the scale it has. While I personally think Kim is guilty as hell of the charges of willfully encouraging copyright infringement, if this leads to goverments being a little less willing to let the US extend its laws so far out of their jurisdiction in future then that's just great.
Well, probably just great, because any cooling in legal co-operation will probably apply to other matters as well. It's going to look really good if they manage to miss bagging some criminal or terror kingpin because some foreign governement was double checking the paperwork to avoid another Kim Dotcom style mess.
There are, at my disposal, many technological [censored] for censoring this or that content on my Internet connection. If I feel the need, I can make easily make it reasonably certain that nobody using that connection can see [censored] human naughty bits. Please [censored] out.
You know they are not going to draw the line at a sensible point, right?
The big misconception about the asteroid theory is that there was a big impact and all the dinosaurs died out pretty much immediately, but this does not actually seem to be the case. The actual extinction appears to have taken quite some time, with the larger land based lifeforms being the ones that were the most likely to die out.
That seems to make quite a bit of sense to me; an big asteroid impact would throw a lot of dust into the atmosphere, so a prolonged period of cooling would likely result. That could reasonably be expected to lead to a significant reduction in the available foliage for consumption by herbivores, leading to the larger herbivores being the first to starve to death. Fewer herbivores, means less meat for the carnivores, so the big predators are the next to find that the larder has suddenly gone dry, and down the chain it goes.
The most likely survivors in that scenario are those that can survive on meagre food supplies and digest more of what is available; if you can eat branches and the trees are bare, those of your competitors that require more succulent fare are going to have a harder time of things. Similarly, those species that relied more on stealth/cunning than just sheer numbers to survive would have have more of their preferred diet to go around and/or be more likely to avoid predation.
If you want detail beyond just the road network, then give Bing Maps a try, although if you are on Windows you may want to use IE as it occassionally has issues with other browsers. It varies from country to country, but for the UK they use the full Ordnance Survey maps which are so much better than Google's it's not funny, so YMMV depending on what area of the world you are interested in maps for. Open Street Map is also heavy on the street detail in areas where Google Maps might only show a single road, and no, that doesn't necessarily mean in the middle of nowhere, for instance here's Sarajevo at a similar level of zoom in Google Maps and Open Street Map.
Yeah, social media sites are particularly obnoxious; you'll often get one cookie for every site that has one of their "Like", "+1" or whatever buttons on a page. Analytics sites are another obvious example where this is going to happen more often that not. "Screw 'em" was my response too, but I went for a deny all by default and whitelist approach rather trying to manage them on a per domain basis.
I've been doing that for a while now as it's much simpler and, once you've gone through the initial setup of your whitelist for frequently visited sites, not as painful as you might think. No addons required. It seems like few sites actually need cookies any more, although on many sites you'll get a better experience with them enabled, particularly so on those that use logins. If it's worth the benefit, I may enable those for the the "Session" option in Firefox, but very few sites get the "Allow" option.
That was my first thought too. If Canada Post is truly claiming copyright on apost code DB, then where do you draw the line? How much of the database can someone use before they are infringing copyright? If it's one line, then everyone needs to stop using Canadian postcodes until this issue is resolved or they risk being sued. A few dozen? Well, that's all but the smallest of businesses still screwed. A few hundred? Still snarling up larger businesses there... A few thousand then? Nope. The likes of utility companies and the Canadian Government are still going to be infringing...
I think that argument is so asinine that it's going to get laughed out of court, if it even gets that far. Have they retained the same lawyers as Music Canada (AKA the Canadian Recording Industry Association) by any chance?
One that the author of the game, Richard Adams, built himself. There's a link to some background, including pictures, in the first link in TFS, but since this is Slashdot and people don't like to RTFS, here the link.
Well, that's what you get for living in the southern hemisphere. It'd be much easier if they'd just stand the right way up like those of us in the north do.
It is dot org. Who cares about dot orgs? Squatters are more interested in dot com.
Damn straight. That's some nice digs Kim has out there in New Zealand... Be a shame if he were sent down for a few years and a bunch of squatters moved in.
The movie studios (the MPAA & RIAA are just lobbying bodies, they don't actually make any money off media sales) have almost certainly eaten into the profits of the music studios with the advent of the market for home movies to buy/rent. The same can also be said of the video gaming industry, which didn't exist until the early 1980s and only really started making serious money by perhaps 1985 or so. OK, the video and game industries have probably also grown at the expense of other entertainment businesses - cinemas, arcades, bars, bowling alleys, etc. - but I wouldn't be at all surprised to find a correlation between the growth of movie and game sales and the music industries post-1973 decline. They are all competing for the same disposable income, after all.
It might be the bottom rung, but with a good attitude in the right company it's not a bad starting point and you can sell your psychology degree as being a useful skill for doing dealing with the more problematic callers. The initial goal is to get off the front-line and into second line support; take an interest in the day to day running of the company's own IT setup, find things you like doing and volunteer to help out whenever you get the chance. If you can convince your employer that it's worth their while to start sending you on training courses to improve and expand your skill set, then you are on your way; once you have a few of those under your belt you don't need the CS Major anymore as you've got real world, hands on experience instead. If they won't, then use your newfound job experience to look around for somewhere else that will.
After that, you should hopefully have and idea on where you want your career to go. Maybe specialise a little and aim to go beyond the CompTIA stuff most helpdesk types have and go for certifications from Cisco, Microsoft, Oracle, Red Hat, etc.; whatever you like doing and have an opportunity for. Perhaps you want to go into software development; look into new languages (C/C++/C# would be a good language set to add to those you already have) and associated certifications. Maybe go into team management, or project management (PRINCE2 or similar).
Finally, don't sweat the paperwork and don't be afraid to switch employers! The former can be useful and can open doors, but if you've got the skills and a proven track record, it can also be largely immaterial, the latter is often necessary to move your career onto the next step and can often get you started on a new area of expertise.
Yeah, that's the speculation being put forward - that she'll be working with Sergey Brin on the GoogleX projects, which is a pretty obvious assumption given what DARPA do. The bit that struck a chord with me though was that she has a suck it and see approach - "Failure isn’t the problem, it’s the fear of failure.” was the quote to All Things D - which aligns very well with Google Labs' way of working. Try it, and if we get the next Backrub or GMail then that's just great, if not scrap it and move on to something else. The big question is, will she be required to work to the Google+ Social Media agenda or free to pursue whatever bluesky projects she wants? If the latter, now might be a good time to buy some GOOG.
Not necessairly they wouldn't since, like many things these days, there's an app for that. Actually, there are several - ADSelfService Plus, Quest Password Manager, and others, all of which let users self-reset their AD pasword by entering some additional pre-entered information. QPM even let's you reset the password from a web browser. The downside is that all of them tend to hook msgina.dll which is a red flag for some anti-malware scanners and a tendency to resort to those tried, trusted and easily Googled security questions like "Mother's maiden name", "Pet's name" "School" and so on for the supposedly secret info.
Not just that, but these studies often make the assumption that the cracker knows *exactly* what combination space to search for a given password being brute forced, rather than having to work through the entire possible space. Yes, it's quite likely that they will have the password policy in question, but unless whoever set that policy is particularly short sighted that should only set the minimum height of the bar, and certainly not allow the cracker to determine other parameters.
As an example, consider the situation of someone adopting passphrases instead of short, complex passwords. The key part of that phrase is "instead of"; many of the studies I've seen not only assume this to be the case, but also that the cracker is aware of this and know precisely what combination space to search. In other words, assume that if the user used a complex password it would take X to brute force, if the user had a passphrase it would take Y to brute force, and draw conclusions accordingly. In practice, anyone considering passphrases should hopefully be doing so as an alternative to complex passwords, not as an outright replacement. A password policy of "{passphase || complex password}" gives a potential cracker a much larger combination space to search than either "{passphrase}" or "{complex password}" alone.
Of course, if people were really serious about password security, we'd be seeing a lot more two factor authentication schemes in use, but that seems to have fallen out of favour (or at least the news) in a big way since the RSA breach and I can't even remember the last article I read on adopting any kind of biometric security.
Same approach here, although with a different password management tool. Unique passwords for everything, and all randomly generated to the maximum complexity allowed for the login in question, and I also expire and renew the passwords on a fairly regular basis for the accounts that matter to me. That seems like the most sensible approach given the recent occurances of compromised user login DBs (usually en clair, FFS) and subsequent account compromises because of password reuse.
Let's face it, if some random user is using some fairly complex but obviously memorable password (l33t speak, combination of names, all the usual tricks people use and advocate) then a quick brute force attack against a bunch of popular websites using the same username and password combination is almost certainly going to yield at least a few few hits. Multiply that by the thousands of such combinations likely to be in a typical login DB and spread the load around with a botnet and even a n00b cyber criminal is almost certainly going to get more than a few opportunities for fraud, spear phishing and other activities.
The only draw back to this approach that I can see is if the system you are running the password manager ever gets compromised and your master password and DB file stolen since at that point it's pretty much game over. Short of running the password manager on a dedicated system (probably kept underneath your tin foil hat) though, I don't see any sensible way around this yet barring wide scale adoption of a centralised two-factor authentication scheme such as RSA keyfobs. That said, so far I'm not aware of any rootkits that specifically look for the use of dedicated password management tools and directly attempt to compromise the DB, although stealing web browser password caches and the like for has certainly been going on for a while. That doesn't mean they are not out there though, and even if they are not the goalposts are always moving so it's probably just a matter of time.
Actually, I think they are very much interested in innovation, just perhaps not in areas that might seem quite so obvious. Why else would they hire Regina Dugan, the outgoing director of DARPA? Somehow, I don't think it's going to be for the use of UAVs as an advertisement delivery mechanism...
Of course it has, but that's not the point. There's potentially something unusual here, so if you can work out what language/compiler/linker was used there might be a clue to the identity of the code's author(s). It wouldn't be the first time that a piece of malware has been written in an experimental language developed for educational purposes and seldom, if ever, seen outside that educational establishment. It would only be circumstatial evidence of course, but it's still better than nothing and might help narrow the field enough to get a lead on the authors.
Slashdot Mirror
Seriously, can anyone come up with a point for this other than a money making scheme for ICANN? Verisign "protecting" its ".com" and ".net" brands, presumably by registering the likes of ".con", ".c0n", and ".cum" (bet the people who opposed ".xxx" will love the last one), kind of proves the point, does it not? The only thing I can come up with is that because ".info" and most of the rest of the last batch of gTLDs are widely regarded as a cesspit this is the attempt at a do-over in the hope that the scammers won't be able to pony up the cash but trademark obsessed companies can and (apparently at least a couple of hundred of them) will.
You're probably right on the perception over time, but having shot quite a bit of video footage at a variety of speeds I don't think it's quite so clear cut. The speed of the subject being filmed seems to have some impact on how the brain perceives and interprets the motion on playback, and I suspect the shutter speed (i.e. the actual exposure time for an individual frame) may enter into it as well. The best theory I can come up with is that it boils down to something to do with the combination of frame rate and the amount of motion blur captured on each frame, and you need to get within a sweet spot or the visual cortex kind of does a double take, and that's what the reviewers experienced. Whether that's something that can be conditioned out over time, or whether it's something that needs to be done at filming (using a different shutter speed, perhaps), or fixed in post (simulating more motion blur, or sharpening the image) I couldn't say. More footage (preferrably of Hobbits) required.
No, there isn't. At least not that one. I don't think you get many Gibbons, Koalas, Lynx, Narwhals, Ocelots or Quetzals in (or off the coast of) Africa, unless you are visiting a zoo. Ibex are found in limited numbers in Egypt, so that one's OK, but Jackalopes don't even exist and are a North American creation anyway.
Also, don't forget that the first couple of those bytes are specific to a vendor, and in RuggedCom's case those would be "000ADC". So that leaves only 2^24 possible MACs from which to generate passwords to try, a search space which could then be further reduced by the need to be able to actually type the password in.
Barring rate limiting, or other protection mechanisms (unlikely on a SCADA device) I'd estimate that a brute force attack on a 100mb/s link is going to be done and dusted in a matter of minutes rather than hours or days.
Sorry, but I believe both the US and UK are full. Can't even give them hard labour in an Asian sweatshop since Apple spoiled it for everyone. I was going to suggest some time doing IT support in a Call Centre, but apparently USAid pulled funding from those just this morning and I don't really want a cruel and unusual punishment rap.
TANJ, damn it!
Wrong target. He needs to sue the New Zealand government since they were the ones that really allowed this to happen in the first place. If they'd been a little more circumspect about allowing the US to tell them what to do, or even told them to get stuffed and released Kim without charge as soon as the US started to blatently try to screw with due process, this farce wouldn't have got to the scale it has. While I personally think Kim is guilty as hell of the charges of willfully encouraging copyright infringement, if this leads to goverments being a little less willing to let the US extend its laws so far out of their jurisdiction in future then that's just great.
Well, probably just great, because any cooling in legal co-operation will probably apply to other matters as well. It's going to look really good if they manage to miss bagging some criminal or terror kingpin because some foreign governement was double checking the paperwork to avoid another Kim Dotcom style mess.
Yep, three symbols and one punctuation mark.
You know they are not going to draw the line at a sensible point, right?
The big misconception about the asteroid theory is that there was a big impact and all the dinosaurs died out pretty much immediately, but this does not actually seem to be the case. The actual extinction appears to have taken quite some time, with the larger land based lifeforms being the ones that were the most likely to die out.
That seems to make quite a bit of sense to me; an big asteroid impact would throw a lot of dust into the atmosphere, so a prolonged period of cooling would likely result. That could reasonably be expected to lead to a significant reduction in the available foliage for consumption by herbivores, leading to the larger herbivores being the first to starve to death. Fewer herbivores, means less meat for the carnivores, so the big predators are the next to find that the larder has suddenly gone dry, and down the chain it goes.
The most likely survivors in that scenario are those that can survive on meagre food supplies and digest more of what is available; if you can eat branches and the trees are bare, those of your competitors that require more succulent fare are going to have a harder time of things. Similarly, those species that relied more on stealth/cunning than just sheer numbers to survive would have have more of their preferred diet to go around and/or be more likely to avoid predation.
If you want detail beyond just the road network, then give Bing Maps a try, although if you are on Windows you may want to use IE as it occassionally has issues with other browsers. It varies from country to country, but for the UK they use the full Ordnance Survey maps which are so much better than Google's it's not funny, so YMMV depending on what area of the world you are interested in maps for. Open Street Map is also heavy on the street detail in areas where Google Maps might only show a single road, and no, that doesn't necessarily mean in the middle of nowhere, for instance here's Sarajevo at a similar level of zoom in Google Maps and Open Street Map.
Yeah, social media sites are particularly obnoxious; you'll often get one cookie for every site that has one of their "Like", "+1" or whatever buttons on a page. Analytics sites are another obvious example where this is going to happen more often that not. "Screw 'em" was my response too, but I went for a deny all by default and whitelist approach rather trying to manage them on a per domain basis.
I've been doing that for a while now as it's much simpler and, once you've gone through the initial setup of your whitelist for frequently visited sites, not as painful as you might think. No addons required. It seems like few sites actually need cookies any more, although on many sites you'll get a better experience with them enabled, particularly so on those that use logins. If it's worth the benefit, I may enable those for the the "Session" option in Firefox, but very few sites get the "Allow" option.
That was my first thought too. If Canada Post is truly claiming copyright on apost code DB, then where do you draw the line? How much of the database can someone use before they are infringing copyright? If it's one line, then everyone needs to stop using Canadian postcodes until this issue is resolved or they risk being sued. A few dozen? Well, that's all but the smallest of businesses still screwed. A few hundred? Still snarling up larger businesses there... A few thousand then? Nope. The likes of utility companies and the Canadian Government are still going to be infringing...
I think that argument is so asinine that it's going to get laughed out of court, if it even gets that far. Have they retained the same lawyers as Music Canada (AKA the Canadian Recording Industry Association) by any chance?
Well, duh! Obviously they must have been using the Xerox CSI model copier, or maybe the new Xerox NCIS with the built in network support.
One that the author of the game, Richard Adams, built himself. There's a link to some background, including pictures, in the first link in TFS, but since this is Slashdot and people don't like to RTFS, here the link.
Well, that's what you get for living in the southern hemisphere. It'd be much easier if they'd just stand the right way up like those of us in the north do.
Damn straight. That's some nice digs Kim has out there in New Zealand... Be a shame if he were sent down for a few years and a bunch of squatters moved in.
The movie studios (the MPAA & RIAA are just lobbying bodies, they don't actually make any money off media sales) have almost certainly eaten into the profits of the music studios with the advent of the market for home movies to buy/rent. The same can also be said of the video gaming industry, which didn't exist until the early 1980s and only really started making serious money by perhaps 1985 or so. OK, the video and game industries have probably also grown at the expense of other entertainment businesses - cinemas, arcades, bars, bowling alleys, etc. - but I wouldn't be at all surprised to find a correlation between the growth of movie and game sales and the music industries post-1973 decline. They are all competing for the same disposable income, after all.
It might be the bottom rung, but with a good attitude in the right company it's not a bad starting point and you can sell your psychology degree as being a useful skill for doing dealing with the more problematic callers. The initial goal is to get off the front-line and into second line support; take an interest in the day to day running of the company's own IT setup, find things you like doing and volunteer to help out whenever you get the chance. If you can convince your employer that it's worth their while to start sending you on training courses to improve and expand your skill set, then you are on your way; once you have a few of those under your belt you don't need the CS Major anymore as you've got real world, hands on experience instead. If they won't, then use your newfound job experience to look around for somewhere else that will.
After that, you should hopefully have and idea on where you want your career to go. Maybe specialise a little and aim to go beyond the CompTIA stuff most helpdesk types have and go for certifications from Cisco, Microsoft, Oracle, Red Hat, etc.; whatever you like doing and have an opportunity for. Perhaps you want to go into software development; look into new languages (C/C++/C# would be a good language set to add to those you already have) and associated certifications. Maybe go into team management, or project management (PRINCE2 or similar).
Finally, don't sweat the paperwork and don't be afraid to switch employers! The former can be useful and can open doors, but if you've got the skills and a proven track record, it can also be largely immaterial, the latter is often necessary to move your career onto the next step and can often get you started on a new area of expertise.
Yeah, that's the speculation being put forward - that she'll be working with Sergey Brin on the GoogleX projects, which is a pretty obvious assumption given what DARPA do. The bit that struck a chord with me though was that she has a suck it and see approach - "Failure isn’t the problem, it’s the fear of failure.” was the quote to All Things D - which aligns very well with Google Labs' way of working. Try it, and if we get the next Backrub or GMail then that's just great, if not scrap it and move on to something else. The big question is, will she be required to work to the Google+ Social Media agenda or free to pursue whatever bluesky projects she wants? If the latter, now might be a good time to buy some GOOG.
Not necessairly they wouldn't since, like many things these days, there's an app for that. Actually, there are several - ADSelfService Plus, Quest Password Manager, and others, all of which let users self-reset their AD pasword by entering some additional pre-entered information. QPM even let's you reset the password from a web browser. The downside is that all of them tend to hook msgina.dll which is a red flag for some anti-malware scanners and a tendency to resort to those tried, trusted and easily Googled security questions like "Mother's maiden name", "Pet's name" "School" and so on for the supposedly secret info.
Not just that, but these studies often make the assumption that the cracker knows *exactly* what combination space to search for a given password being brute forced, rather than having to work through the entire possible space. Yes, it's quite likely that they will have the password policy in question, but unless whoever set that policy is particularly short sighted that should only set the minimum height of the bar, and certainly not allow the cracker to determine other parameters.
As an example, consider the situation of someone adopting passphrases instead of short, complex passwords. The key part of that phrase is "instead of"; many of the studies I've seen not only assume this to be the case, but also that the cracker is aware of this and know precisely what combination space to search. In other words, assume that if the user used a complex password it would take X to brute force, if the user had a passphrase it would take Y to brute force, and draw conclusions accordingly. In practice, anyone considering passphrases should hopefully be doing so as an alternative to complex passwords, not as an outright replacement. A password policy of "{passphase || complex password}" gives a potential cracker a much larger combination space to search than either "{passphrase}" or "{complex password}" alone.
Of course, if people were really serious about password security, we'd be seeing a lot more two factor authentication schemes in use, but that seems to have fallen out of favour (or at least the news) in a big way since the RSA breach and I can't even remember the last article I read on adopting any kind of biometric security.
Same approach here, although with a different password management tool. Unique passwords for everything, and all randomly generated to the maximum complexity allowed for the login in question, and I also expire and renew the passwords on a fairly regular basis for the accounts that matter to me. That seems like the most sensible approach given the recent occurances of compromised user login DBs (usually en clair, FFS) and subsequent account compromises because of password reuse.
Let's face it, if some random user is using some fairly complex but obviously memorable password (l33t speak, combination of names, all the usual tricks people use and advocate) then a quick brute force attack against a bunch of popular websites using the same username and password combination is almost certainly going to yield at least a few few hits. Multiply that by the thousands of such combinations likely to be in a typical login DB and spread the load around with a botnet and even a n00b cyber criminal is almost certainly going to get more than a few opportunities for fraud, spear phishing and other activities.
The only draw back to this approach that I can see is if the system you are running the password manager ever gets compromised and your master password and DB file stolen since at that point it's pretty much game over. Short of running the password manager on a dedicated system (probably kept underneath your tin foil hat) though, I don't see any sensible way around this yet barring wide scale adoption of a centralised two-factor authentication scheme such as RSA keyfobs. That said, so far I'm not aware of any rootkits that specifically look for the use of dedicated password management tools and directly attempt to compromise the DB, although stealing web browser password caches and the like for has certainly been going on for a while. That doesn't mean they are not out there though, and even if they are not the goalposts are always moving so it's probably just a matter of time.
Actually, I think they are very much interested in innovation, just perhaps not in areas that might seem quite so obvious. Why else would they hire Regina Dugan, the outgoing director of DARPA? Somehow, I don't think it's going to be for the use of UAVs as an advertisement delivery mechanism...
Is that something to do with completing the Kessel Run in less than twelve parsecs?
Of course it has, but that's not the point. There's potentially something unusual here, so if you can work out what language/compiler/linker was used there might be a clue to the identity of the code's author(s). It wouldn't be the first time that a piece of malware has been written in an experimental language developed for educational purposes and seldom, if ever, seen outside that educational establishment. It would only be circumstatial evidence of course, but it's still better than nothing and might help narrow the field enough to get a lead on the authors.