The only adequate way to protect creditcard numbers on a publicly accessable machine is strong encryption. If you aren't going to encrypt your sensitive data, you better make sure it is stored somewhere physically disconnected from the net.
You could always search for exact phrases from your site, save the resulting cache link, setup a forwarder (or frameset) on a free account somewhere to point to the google cache URL, and distribute the URL to your free website. Technically, the offending data will be served by google only.
Now if only google would start letting their spider index.mp3 files!
Index pages often have the../ parent link and that can get you to some places people tend not to think of as being accessible.
I sincerley hope that there aren't any widely used webservers that would actually let you request "../" and get something above the designated webspace. That is one of the most obvious exploits ever, and I think even microsoft is smarter than that now.
The part of your scenario with logs being indexed doesn't even have to happen; say you are at http://mysite.com/cgi-bin/secret?password=administ rator and you go to a search engine! I bet most smart search engines, upon seeing a referer URL it wasn't familiar with, would quickly run out and index the page.
Regardless of how the search engine gets the link, however, the indexing software SHOULD drop anything after the '?' character anyway (to avoid indexing the same cgi repeatedly with different arguments).
Regardless, sending passwords in GET requests is ALWAYS a bad idea, as is putting up lists of passwords on a public webserver. But this is slashdot, and we all already knew that.
I think we should follow star trek's prime directive; when we encounter less advanced cultures, we should refuse to give them our technology and insist that they discover it on their own.
The problem with the God vs. Parents predicting events comparison is that parents can predict their kids most of the time. Being able to predict with relative accuracy what someone is going to do is not uncommon, but children also still surprise their parents on a regular basis.
To hear it from a christian, god knows everything before during and after it happens. THAT kind of foreknowledge logically requires fate, and hence no human free will, even though parental predictions of a child's behavior (ie lettuce vs ice cream) doesn't.
Got, gi-tux? If not, have a bowl of ice cream and think it over.
Re: giving to charity in someone's name
A noble and good idea. Those of you calling this guy names and scoring him a Troll should be ashamed.
clearly, Derkec missed the seinfeld in which it is revealed that donations to fake charities in other people's names make extremly affordable gifts, and can land you with a real check for $20,000 to the "Human Fund".
from the article:
When a trillion computers run together they are capable of performing a billion operations
So, if does that mean that there are 1,000 tiny computers for each individual operation, or is some translator mixing up his numbers?
...continuing off-topic religious thread...
on
Geek Gift Ideas 2001
·
· Score: 2, Insightful
I don't give a damn about the demographic statistics of your childhood friends. I said likely because many people inherit their belief system from their parents and/or childhood surroundings so it seemed likely this was the case with you too.
It comes down to this: you've got one book that you are 100% sure is the word of GOD, and your childhood best buddy (or, if he's been "saved", any one of the other millions of people dedicated to a non-christian faith) has another book that he/she is also 100% sure is the word of GOD. A debate about religion between you and your muslim best friend would quickly result in the two of you reading off translations of translations of books written by people who died thousands of years ago.
Why not think for yourself, live in the present, and stop living your life by what a bunch of people on the other side of the world wrote down a few thousand years ago? Seriously! Get a grip, man! Can you honestly relate to the stories in the bible? They were written for a different people, in a different time! If the men who wrote the bible were brought here today (by time machine or something, stay with me for a quick hypothetical situation) they would be utterly confused by our society. They certainly wouldn't be able to solve our problems! Yet you live your life by what they wrote, after they "talked to god", two thousand years ago (actually, it was probably a little less than that since by accepted records the oldest parts of the new testament wern't written until almost 100 years after christ's death).
If you can't deal with reality and need to pray to the "one and only" god when times get rough, thats your right. But keep that stuff off the "news for nerds" discussion board, because I'm pretty sure most people here aren't interested in being "saved".
My glee and awe is over the greatness of the one and only God who is revealed in the writings of the bible.
How are you sure the god described in the bible is the one-and-only? How to you explain the millions of people who not only believe that the bible is entirely wrong, but instead believe in an entirely different 'one and only god' (other faiths use this term as well...)? They are just as convinced, if not more convinced, that their god is the one and only. Have you read the Koran? That one's got a lot of people pretty dedicated to it. How about any other religion's main "good book"? How do you know that the argument for their god isn't just as believable? Do you simply accept the bible as fact because someone told you (likely when you were young and impressionable) it was the truth?
It is unfortunate that you find uniqueness in out of context misinterpretation and open hatred of the Bible. Your statement displays the straw-man style of of debate I mentioned.
I'm not really sure what you mean, but I'm certainly not unique (or finding uniqueness) in disliking the bible and it's followers. If the article I linked to before takes things so out of context, could you be kind enough to provide the contextual justification for the silly things quoted from the bible there? You can call me a "straw-man" til your blue in the face, but you aren't going to make me take a self-contradicting 2,000-year-old myth as fact.
Surely, there will be another revolt in response to the 1,000 some people being ilegally held under "suspicion of terrorist ties" by our government right now.
Because, like, people wouldn't stand for it if the government was just arresting everyone who didn't like America, right?
I used to really like dotster, and still have several names registered through them, but the past few times I've used their site it was painfully slow. A few weeks ago, when I went to renew a domain, it took so long to send me the confirmation page that I eventually gave up and did it later.
I suppose I still like their service -- I just hope they get their act together and buy some new servers/bandwidth/whatever-it-takes.
Sorry, but I don't buy all that "god" stuff. I also don't believe in Santa Claus, or the Easter Bunny.
But whatever floats your boat, I say; and if praying to the diety of your choosing makes you feel good inside when bad things are happening outside, go right ahead and pray.
But I'd bet all my slashdot karma that the vast majority of the people reading this site would rather go without hearing your crazy prayer talk here on this board.
Maybe taco should have a religion poll, and we could see for sure?
My point is, this site is about news for nerds, and not about news for delusional people who need religion to help them deal with life. OK?
By damaging DNA or causing manufacture of defective DNA, they preferentially affect cells that are multiplying rapidly.
IANAME (not a med expert) but "defective DNA" sounds suspiciously like "mutated DNA" which sounds suspiciously bad. Of course, I've got no experience with this, and if I get cancer I'll do what the doctor says, but can anyone here explain how/why it's safe to cause "defective DNA"?
Wouldn't it have been eaiser/cheaper/better to buy a quieter fan? Buying a speciality power supply for the sole purpose of slowing down your fans seems sort of silly.
NS4 has a larger userbase (still) than any other version of Netscape. So if you aren't going to design for NS4, don't bother designing for netscape at all. (I sure don't!)
Slashdot Mirror
The only adequate way to protect creditcard numbers on a publicly accessable machine is strong encryption. If you aren't going to encrypt your sensitive data, you better make sure it is stored somewhere physically disconnected from the net.
You could always search for exact phrases from your site, save the resulting cache link, setup a forwarder (or frameset) on a free account somewhere to point to the google cache URL, and distribute the URL to your free website. Technically, the offending data will be served by google only.
.mp3 files!
Now if only google would start letting their spider index
Index pages often have the ../ parent link and that can get you to some places people tend not to think of as being accessible.
I sincerley hope that there aren't any widely used webservers that would actually let you request "../" and get something above the designated webspace. That is one of the most obvious exploits ever, and I think even microsoft is smarter than that now.
The part of your scenario with logs being indexed doesn't even have to happen; say you are at http://mysite.com/cgi-bin/secret?password=administ rator and you go to a search engine! I bet most smart search engines, upon seeing a referer URL it wasn't familiar with, would quickly run out and index the page.
Regardless of how the search engine gets the link, however, the indexing software SHOULD drop anything after the '?' character anyway (to avoid indexing the same cgi repeatedly with different arguments).
Regardless, sending passwords in GET requests is ALWAYS a bad idea, as is putting up lists of passwords on a public webserver. But this is slashdot, and we all already knew that.
I think we should follow star trek's prime directive; when we encounter less advanced cultures, we should refuse to give them our technology and insist that they discover it on their own.
The problem with the God vs. Parents predicting events comparison is that parents can predict their kids most of the time. Being able to predict with relative accuracy what someone is going to do is not uncommon, but children also still surprise their parents on a regular basis.
To hear it from a christian, god knows everything before during and after it happens. THAT kind of foreknowledge logically requires fate, and hence no human free will, even though parental predictions of a child's behavior (ie lettuce vs ice cream) doesn't.
Got, gi-tux? If not, have a bowl of ice cream and think it over.
Re: giving to charity in someone's name
A noble and good idea. Those of you calling this guy names and scoring him a Troll should be ashamed.
clearly, Derkec missed the seinfeld in which it is revealed that donations to fake charities in other people's names make extremly affordable gifts, and can land you with a real check for $20,000 to the "Human Fund".
from the article:
When a trillion computers run together they are capable of performing a billion operations
So, if does that mean that there are 1,000 tiny computers for each individual operation, or is some translator mixing up his numbers?
I don't give a damn about the demographic statistics of your childhood friends. I said likely because many people inherit their belief system from their parents and/or childhood surroundings so it seemed likely this was the case with you too.
It comes down to this: you've got one book that you are 100% sure is the word of GOD, and your childhood best buddy (or, if he's been "saved", any one of the other millions of people dedicated to a non-christian faith) has another book that he/she is also 100% sure is the word of GOD. A debate about religion between you and your muslim best friend would quickly result in the two of you reading off translations of translations of books written by people who died thousands of years ago.
Why not think for yourself, live in the present, and stop living your life by what a bunch of people on the other side of the world wrote down a few thousand years ago? Seriously! Get a grip, man! Can you honestly relate to the stories in the bible? They were written for a different people, in a different time! If the men who wrote the bible were brought here today (by time machine or something, stay with me for a quick hypothetical situation) they would be utterly confused by our society. They certainly wouldn't be able to solve our problems! Yet you live your life by what they wrote, after they "talked to god", two thousand years ago (actually, it was probably a little less than that since by accepted records the oldest parts of the new testament wern't written until almost 100 years after christ's death).
If you can't deal with reality and need to pray to the "one and only" god when times get rough, thats your right. But keep that stuff off the "news for nerds" discussion board, because I'm pretty sure most people here aren't interested in being "saved".
My glee and awe is over the greatness of the one and only God who is revealed in the writings of the bible.
How are you sure the god described in the bible is the one-and-only? How to you explain the millions of people who not only believe that the bible is entirely wrong, but instead believe in an entirely different 'one and only god' (other faiths use this term as well...)? They are just as convinced, if not more convinced, that their god is the one and only. Have you read the Koran? That one's got a lot of people pretty dedicated to it. How about any other religion's main "good book"? How do you know that the argument for their god isn't just as believable? Do you simply accept the bible as fact because someone told you (likely when you were young and impressionable) it was the truth?
It is unfortunate that you find uniqueness in out of context misinterpretation and open hatred of the Bible. Your statement displays the straw-man style of of debate I mentioned.
I'm not really sure what you mean, but I'm certainly not unique (or finding uniqueness) in disliking the bible and it's followers. If the article I linked to before takes things so out of context, could you be kind enough to provide the contextual justification for the silly things quoted from the bible there? You can call me a "straw-man" til your blue in the face, but you aren't going to make me take a self-contradicting 2,000-year-old myth as fact.
$90 Canadian, huh?
Imagine a Beowulf cluster of canadians...
Surely, there will be another revolt in response to the 1,000 some people being ilegally held under "suspicion of terrorist ties" by our government right now.
Because, like, people wouldn't stand for it if the government was just arresting everyone who didn't like America, right?
In response to your apparent glee over the the greatness of the bible, I direct you to this speech (with a slightly different viewpoint).
I used to really like dotster, and still have several names registered through them, but the past few times I've used their site it was painfully slow. A few weeks ago, when I went to renew a domain, it took so long to send me the confirmation page that I eventually gave up and did it later.
I suppose I still like their service -- I just hope they get their act together and buy some new servers/bandwidth/whatever-it-takes.
Sorry, but I don't buy all that "god" stuff. I also don't believe in Santa Claus, or the Easter Bunny.
But whatever floats your boat, I say; and if praying to the diety of your choosing makes you feel good inside when bad things are happening outside, go right ahead and pray.
But I'd bet all my slashdot karma that the vast majority of the people reading this site would rather go without hearing your crazy prayer talk here on this board.
Maybe taco should have a religion poll, and we could see for sure?
My point is, this site is about news for nerds, and not about news for delusional people who need religion to help them deal with life. OK?
Real Geeks do Ogg, not MP3. MP3 is so 1999.
Then you real geeks don't have access to nearly as many cool music players as us uncool (mp3-using) geeks, right?
Stay away from speedball and keep it in the woods.
Airball/Hyperball are the future of paintball. Forest paintball is so, like, last century.
interesting fact, yes, but the server still went down when slashdotted and is still "less reliable than it sounds".
25hoursaday.com isn't as reliable as it sounds...
It looks like ICQ on the mobile phone is closer than ever!
I don't know about ICQ, but AIM is already available on some sprint phones. It already works in North America, too!
By damaging DNA or causing manufacture of defective DNA, they preferentially affect cells that are multiplying rapidly.
IANAME (not a med expert) but "defective DNA" sounds suspiciously like "mutated DNA" which sounds suspiciously bad. Of course, I've got no experience with this, and if I get cancer I'll do what the doctor says, but can anyone here explain how/why it's safe to cause "defective DNA"?
You want an example, try the Tacoma Narrows bridge.
Oh, thanks! We'd never heard of that example before!</sarcasm>
Wouldn't it have been eaiser/cheaper/better to buy a quieter fan? Buying a speciality power supply for the sole purpose of slowing down your fans seems sort of silly.
NS4 has a larger userbase (still) than any other version of Netscape. So if you aren't going to design for NS4, don't bother designing for netscape at all. (I sure don't!)
What is their primary platform?
Though many would like to deny it, culture and platform choice are often closely related.