What? Java provides a default SecurityManager object which allows pretty much anything.
Huh?
Like?
And anyway, if you can subvert the class loader (e.g. by providing your own) you can do anything you like. The only time you'll see a SecurityManager which does anything is inside a webbrowser.
Can you show me how to subvert the class loader with Java itself?
(I'm not bashing you opinion, I'm really asking the questions. Showing me the links is also welcome:)
I'm sure the orginal poster is expecting answers like "Linux is the way" when raising such question in/.?:)
As we can see the major problems lie in the budget cut. I've been working for University and we all face the problem of huge budget being spent on licence fees on every single client.
Most software vendor like Microsoft and Symantec charge per seat/per user license, thin client could save the amount spent on hardware, which is a fixed cost and very marginal. The recurrent cost spent on license fee takes a big part of the budget.
What I want to say is, thin client is not the answer to budget problem. If they really have the will to solve the problem then do not buy more license then necessary. Seeking the relative low cost alternatives(I don't need to give examples do I?:)
It's hard, consider the expected opposition from non-technical department like Marketing and Business school(while I could easily get CS students use OpenOffice, even LateX!). Limited access to software with 'per seat/user license' is a recommendation. Just like AutoCAD, only those who really need it shall have access to this software.
Say, OK, you Business students can have access to Microsoft Word, but the license fees spent will be charged to your department; just like CS pays for C++, Accounting pays for DacEasy, fair enough.
However, reality is reality, those lazy dinosaur in U would rather spending more money then doing things in different way. Oh well...
It's good to see a larger deployment of games in educational ground.
I've been challenging my students to design a Java robot to beat the best robot in Robocode. Even though I failed get the ed board approving my idea of using game for teaching, the students really enjoyed learning Java thru gaming, regardless of the fact that no bonus mark would be giving to winners.
Now this paper can be a very strong support during next time I face the dinosaur ed board.:D
I like different technologies from different companies. I like the.NET Framework a lot more than I like the Java platform, but that is my personal choice; And I do like the UltraSparc cpu over any other cpu, and I still love the fact that my IBM laptop is so cheap;-)
Oh I love Java platform a lot a lot more than.NET Framework, get me my flamethrower!!...but wait, isn't that freedom of choice we are long for?
This message is provided under the terms outlined at http://www.bero.org/terms.html
Hi. Have you consulted a lawyer before drafting this terms of use? IANAL, but I found that you forgot to define the currency unit(pay by Yen! ^_^) and the definition of recipients.
I'd be grateful if they'd let us choose to prevent our query-result from taking paid-ranking into consideration. Sometime we use google for academic and scientific queries, and ranking commercial sites higher in this case will greatly affect the accuracy.
Say letting us to specify the catagories while searching e.g "aspect catagory:academic" to prevent unwanted commercial info.
It actually help google's client accurately focusing on right market segment, thus make their money-spent worthy.
The US could, by legislation, prohibit U.S. companies from assisting with censorship in selected countries. There's an analogy to the Arab boycott of Israel [us-israel.org], which led to lobbying by Israel for U.S. laws prohibiting American companies from cooperating with the Arab boycott.
You are absolutely right. Legislation should quickly pass the law to cease the operation of immoralcompanies whom allow keylogging software from spying citizens' activities. Also, American companies should also join the boycott of the oppressive Government who creates a big database monitoring citizens' emails.
and a commands called "KILL SYSTEM" that strangely enough, although being accessible to everyone, was never abused.
Then they will learn a hard lesson. A bank learnt it hard way when my friend accidentally issued 'DD SYSDUMP' 'SHUTDOWN' from a small JCL module for a system handling multi-million transactions for a bank.
Somehow I think the system manager should be fired instead of firing my friend, who should be promoted for finding loopholes...but reality is reality.:/
That'd be totally unrelated to this thread, but it matters to the case so please bear with me.
I live in Hong Kong and I found unexpected delay in postal services recently(around a year or so, even before 911). I do a lot of mails/packages back and forth US(has a lot of friends in US) and the time it takes seems to be lengthened to at least 2-3 times than normal. My X'mas present to one of my friend in US just arrive yesterday, but I shipped it before X'mas.
Until you bought it up I noticed that the time it took for computer equipment seems to be taking much longer. A friend of mine who was carrying a box of modems with cables was being strip-searched at the US custom.(he thought it's due to 911, but it's rather unusual to be detained 4 hours...)
I was wondering, does US customs pick on all packages from and to Hong Kong? I asked several ebay sellers they said it takes unusual long time to delivery goods to me.
Exactly how many time, money and resource US Government is spending on monitoring citizens' mails?
Anyone would kindly tell me?
P.S. to original poster, have you tried UPS, DHL or Fedex? Did they reject your goods like USPS?
Win9x runs entirely in Kernel Mode and uses pre-emptive multi-tasking.
It has pre-emptive multi-tasking but you don't feel like using a pre-emptive OS due to the fact that, for compatibility reasons, it also allocates system resources to run DOS and Win3.1-based programs. That's to say your system is still (partly) running in cooperative mode until all 16-bit windows programs release their resource thus still suffered from the pitfalls of cooperative OS until ALL 16-bit Windows programs release their system sources.
The worst is that total release of system resources from 16-bits programs will never happen because besides apps, there are also 16-bit Windows modules running. Use the WinTop utility available as part of the Microsoft Kernel Toys you may be surprised at just which Windows components rely on 16-bit code! For example, MSGSRV32.EXE, despite the 32 in its name, is a 16-bit module. So is RUNDLL.EXE, in contrast to RUNDLL32.EXE. Another common 16-bit component is MMTASK.EXE, which supports multimedia background tasks.
This is a typical example I told my students not to answer 'Windows 95/98/ME' as stated in textbook when being asked to give examples of pre-emptive OS. The textbook will quote whatever Microsoft is advertised.:/
Thank you for such a detail explanation! You deserve all the mod pt I was given!:)
Yes it's not directly related to my mouse but that's the mouse reponsiveness I'd care in this case(game, game game!). There's always ways to make my mouse smoother by twisting here and there(gotta love Linux).
Seriously I've been thinking of this to evade legal trap by hiring a group of teenages to install software. However, my company lawyers told me it might not work as we hire them for intended purpose thus we are still binded by the contract. Oh great.
Aye, it's sure a great news for *cough* gamers. In the past when we'd like to have a smoother 'mouse' we must change the HZ value in include/asm/param.h from 100 to a higher value(progressive increase the value and recompile kernel until it breaks. ^_^)
Other archs like alpha use values higher than 100 e.g.
include/asm-alpha/param.h:# define HZ 1024
include/asm-ia64/param.h:# define HZ 1024
You may try it if you aren't going to go to 2.5.x in the near future, but hell, if you don't mind twisting and breaking the kernel by altering the HZ value, why not 2.5.x!:D
Note: I notice that whenever I talk about changing kernel values the post will be modded redundant. I know a lot of you guys know about kernel insdide out so this might bore you - but come on! I'm sure so many other would be interested in it.
Do you know how to check whether a microwave oven has leakage? I saw an article suggest to put a mobile phone into the microwave oven and call the phone. Because the mobile wave spectrum in the microwave band, if the metal cast failed to prevent microwave passing thru, then the phone will ring.
I'm not the only one who read the same article. A PHB in another section would like to check whether the pantry's microwave oven has leakage with this method - later he complaint to the columist why he didn't warn the readers NOT to press the 'Start' button.
May be the columist must make the disclaimer 'People with IQ below 100 shouldn't read the following...'.:)
Slashdot Mirror
What? Java provides a default SecurityManager object which allows pretty much anything.
:)
Huh?
Like?
And anyway, if you can subvert the class loader (e.g. by providing your own) you can do anything you like. The only time you'll see a SecurityManager which does anything is inside a webbrowser.
Can you show me how to subvert the class loader with Java itself?
(I'm not bashing you opinion, I'm really asking the questions. Showing me the links is also welcome
that different comments has exactly same content in a row?
Comment MTC-00021678
Comment MTC-00021680
Comment MTC-00021682
Comment MTC-00021678
Comment MTC-00021694
Comment MTC-00021702
Comment MTC-00021704
Comment MTC-00021705
Comment MTC-00021706
Comment MTC-00021710
What do they think? They take DOJ an idiot who wouldn't notice this? Oh wait...
I'm too tired to list them all, but I'm sure there's much much more.
(This line is inserted to get around the lame-o lameass filter, blah blah blah blah lameass filter is lame, blah blah blah blah)
I'm sure the orginal poster is expecting answers like "Linux is the way" when raising such question in /.? :)
:)
As we can see the major problems lie in the budget cut. I've been working for University and we all face the problem of huge budget being spent on licence fees on every single client.
Most software vendor like Microsoft and Symantec charge per seat/per user license, thin client could save the amount spent on hardware, which is a fixed cost and very marginal. The recurrent cost spent on license fee takes a big part of the budget.
What I want to say is, thin client is not the answer to budget problem. If they really have the will to solve the problem then do not buy more license then necessary. Seeking the relative low cost alternatives(I don't need to give examples do I?
It's hard, consider the expected opposition from non-technical department like Marketing and Business school(while I could easily get CS students use OpenOffice, even LateX!). Limited access to software with 'per seat/user license' is a recommendation. Just like AutoCAD, only those who really need it shall have access to this software.
Say, OK, you Business students can have access to Microsoft Word, but the license fees spent will be charged to your department; just like CS pays for C++, Accounting pays for DacEasy, fair enough.
However, reality is reality, those lazy dinosaur in U would rather spending more money then doing things in different way. Oh well...
It's good to see a larger deployment of games in educational ground.
:D
I've been challenging my students to design a Java robot to beat the best robot in Robocode. Even though I failed get the ed board approving my idea of using game for teaching, the students really enjoyed learning Java thru gaming, regardless of the fact that no bonus mark would be giving to winners.
Now this paper can be a very strong support during next time I face the dinosaur ed board.
has been an important educational tool for some islamic people for quite some time.
The README stated that:
:)
Spacewar! is in the public domain, but this credit paragraph must accompany all distributed versions of the program.
However, it comes with a typo:
We typed in in again...
According to the requirement, we must pass it on with the typo, forever.....gotta be careful when writing similar README.
I like different technologies from different companies. I like the .NET Framework a lot more than I like the Java platform, but that is my personal choice; And I do like the UltraSparc cpu over any other cpu, and I still love the fact that my IBM laptop is so cheap ;-)
.NET Framework, get me my flamethrower!!...but wait, isn't that freedom of choice we are long for?
Oh I love Java platform a lot a lot more than
Hat off to Gnome dudes! Way to go man!
This message is provided under the terms outlined at http://www.bero.org/terms.html
:)
Hi. Have you consulted a lawyer before drafting this terms of use? IANAL, but I found that you forgot to define the currency unit(pay by Yen! ^_^) and the definition of recipients.
Just my two cents.
Sometime a manager without any programming knowledge could be really bad.
Once my friend completed a project and print the source codes to his manager, she took a quick glance for a second and said:
"Who say programming is hard, just type these into a computer and there you are!"
Will your code even compile under win32? Do the supporting libraries(PVM/MPI/BLAS whatever) run under win32? What about the queuing system?
No kidding! In our U when a MS sales rep was being asked the very same question he said:
"You can run them off in CygWin with modification!!"
I thought we saw the tech guy he bought along elbowed him.
It's hard to blame google, the world out there is like that...
- Radio stations play more songs from those companies do most advertising
- Supermarkets charges suppliers 'placement-fee' if they'd like to have their goods placed at better position on shelves.
- Publishers pay to get good books reviews.(*cough* Amazon*cough*)
- Oil companies pay to get politicans work for them.
I'd be grateful if they'd let us choose to prevent our query-result from taking paid-ranking into consideration. Sometime we use google for academic and scientific queries, and ranking commercial sites higher in this case will greatly affect the accuracy.
Say letting us to specify the catagories while searching e.g "aspect catagory:academic" to prevent unwanted commercial info.
It actually help google's client accurately focusing on right market segment, thus make their money-spent worthy.
Your view in this is greatly appreciated.
The US could, by legislation, prohibit U.S. companies from assisting with censorship in selected countries. There's an analogy to the Arab boycott of Israel [us-israel.org], which led to lobbying by Israel for U.S. laws prohibiting American companies from cooperating with the Arab boycott.
You are absolutely right. Legislation should quickly pass the law to cease the operation of immoral companies whom allow keylogging software from spying citizens' activities. Also, American companies should also join the boycott of the oppressive Government who creates a big database monitoring citizens' emails.
Oh wait.
Carnivore and Magic Lantern, Great Firewall of China is just a child-play. Btw, they will eventually catch-up with this(especially in this area).
From: root@localhost
To: root@localhost
Dear Administrator,
Bastard, you've kill-9'd my child. She's just 12 seconds old! Do you have a slight sense of moral?
Don't you think you could get away with this. I'll see you in #court at irc.gov, sucker.
yours sincerely,
init
and a commands called "KILL SYSTEM" that strangely enough, although being accessible to everyone, was never abused.
:/
Then they will learn a hard lesson. A bank learnt it hard way when my friend accidentally issued 'DD SYSDUMP' 'SHUTDOWN' from a small JCL module for a system handling multi-million transactions for a bank.
Somehow I think the system manager should be fired instead of firing my friend, who should be promoted for finding loopholes...but reality is reality.
C:!WinNT!System32
No kidding, in Japan this is:
C:WinNTSystem32
For those who cannot read the above due to non-us character set, '!' is replaced by 'yen' sign.
That'd be totally unrelated to this thread, but it matters to the case so please bear with me.
I live in Hong Kong and I found unexpected delay in postal services recently(around a year or so, even before 911). I do a lot of mails/packages back and forth US(has a lot of friends in US) and the time it takes seems to be lengthened to at least 2-3 times than normal. My X'mas present to one of my friend in US just arrive yesterday, but I shipped it before X'mas.
Until you bought it up I noticed that the time it took for computer equipment seems to be taking much longer. A friend of mine who was carrying a box of modems with cables was being strip-searched at the US custom.(he thought it's due to 911, but it's rather unusual to be detained 4 hours...)
I was wondering, does US customs pick on all packages from and to Hong Kong? I asked several ebay sellers they said it takes unusual long time to delivery goods to me.
Exactly how many time, money and resource US Government is spending on monitoring citizens' mails?
Anyone would kindly tell me?
P.S. to original poster, have you tried UPS, DHL or Fedex? Did they reject your goods like USPS?
I'm not a dork, I'm a geek. Ask my girlfriend.
My apology for my ignorance, but I always thought a dork without a girlfriend is a geek, and a geek with a girlfriend is considered (by her) a dork.
Win9x runs entirely in Kernel Mode and uses pre-emptive multi-tasking.
:/
It has pre-emptive multi-tasking but you don't feel like using a pre-emptive OS due to the fact that, for compatibility reasons, it also allocates system resources to run DOS and Win3.1-based programs. That's to say your system is still (partly) running in cooperative mode until all 16-bit windows programs release their resource thus still suffered from the pitfalls of cooperative OS until ALL 16-bit Windows programs release their system sources.
The worst is that total release of system resources from 16-bits programs will never happen because besides apps, there are also 16-bit Windows modules running. Use the WinTop utility available as part of the Microsoft Kernel Toys you may be surprised at just which Windows components rely on 16-bit code! For example, MSGSRV32.EXE, despite the 32 in its name, is a 16-bit module. So is RUNDLL.EXE, in contrast to RUNDLL32.EXE. Another common 16-bit component is MMTASK.EXE, which supports multimedia background tasks.
This is a typical example I told my students not to answer 'Windows 95/98/ME' as stated in textbook when being asked to give examples of pre-emptive OS. The textbook will quote whatever Microsoft is advertised.
Thank you for such a detail explanation! You deserve all the mod pt I was given! :)
Yes it's not directly related to my mouse but that's the mouse reponsiveness I'd care in this case(game, game game!). There's always ways to make my mouse smoother by twisting here and there(gotta love Linux).
Seriously I've been thinking of this to evade legal trap by hiring a group of teenages to install software. However, my company lawyers told me it might not work as we hire them for intended purpose thus we are still binded by the contract. Oh great.
Aye, it's sure a great news for *cough* gamers. In the past when we'd like to have a smoother 'mouse' we must change the HZ value in include/asm/param.h from 100 to a higher value(progressive increase the value and recompile kernel until it breaks. ^_^)
:D
Other archs like alpha use values higher than 100 e.g.
include/asm-alpha/param.h:# define HZ 1024
include/asm-ia64/param.h:# define HZ 1024
You may try it if you aren't going to go to 2.5.x in the near future, but hell, if you don't mind twisting and breaking the kernel by altering the HZ value, why not 2.5.x!
Note: I notice that whenever I talk about changing kernel values the post will be modded redundant. I know a lot of you guys know about kernel insdide out so this might bore you - but come on! I'm sure so many other would be interested in it.
say, procmail+spamassassin
"SpamAssassin is a mail filter which attempts to identify spam using text analysis and several internet-based realtime blacklists."
In short, it analysis incoming mails and throw spam away.
Of course, that's not something a layman could setup, even though I found it easy.
Do you know how to check whether a microwave oven has leakage? I saw an article suggest to put a mobile phone into the microwave oven and call the phone. Because the mobile wave spectrum in the microwave band, if the metal cast failed to prevent microwave passing thru, then the phone will ring.
:)
I'm not the only one who read the same article. A PHB in another section would like to check whether the pantry's microwave oven has leakage with this method - later he complaint to the columist why he didn't warn the readers NOT to press the 'Start' button.
May be the columist must make the disclaimer 'People with IQ below 100 shouldn't read the following...'.