Let's say I go to verisign and get a certificate for encryption, which also garantees my identity. With in the cert, is my information, encryption information, where the cert came from and who issued the cert. I can use my cert to generate other certs using encryption software.
What this means, for people who have browsers which don't check where the cert came from, will not be warned that a certificate was granted from an untrusted source. Who are trusted sources? AOL, Thawte, Verisign.. etc.. Look in browser prefs for certificate authorities; the trusted circle of people to say you are who you are.
Why is this dangerous? Well, for one, you can claim you are whomever you wish, while looking like you are from this trusted circle. You look like you are from this trusted circle because no one claims otherwise. Your browser would usually bitch at you about certs made from non-authorities. But since your browser won't bitch about where your cert came from, and just looks at the authority..
So what if it isn't from a trusted circle? Using this in combination with dns spooofing, you could get people to give you information over ssl "secure connection" (rolling eyes) without the browser bitching at you that the cert you are looking at was made by verisign but not issued by verisign.
Have something that can read the presense and absence of a retina. Now have it be able to read morse code. Then it's a matter of blinking a bunch of times.:)
Well... smell also lets you know when things are ok. Just like taste. When you were a kid, you liked sweeter things because your body needed the extra sugars. Well.. smell lets you know what is good for you and what's bad.. in a primitive sense. Yes, the body can be fooled. Like cianide and the almond association.
Didn't the playstation do this first? Or some arcade game system? It's jsut a matter of figuring out which device to vibrate, nuh?
Heh, imagine if they vibrated the keyboard. It'd fall off the table after a while. THe monitor would just cause an earthquake.. especially with those 21" monitors.
Last thing we will need though, is smell feedback. Lord knows what my trash bin smells like with the junk thats in there. And worse yet, my porn folder. Ewr....
Until someone breaks your site because htey have that one particular javascript setting off.
Seriously. I dont' go to some sites because it requires a seperate window to open automagically, while I have that setting in mozilla off. It's not a matter of protest -- it's a matter of preference. I don't like it, and got annoyed turning it back on for the site in general. So.. I've stopped going there.
The bigger problem, is it is hard to worry about it client side. If I turn off JS, bam, your site becomes broken. Depending on the use of JS, it can either be a security issue, to db integrety (data validation) to site navigation that becomes broken.
Unless you are in a real emergency. 45 seconds could mean the difference between life and death. Something quicker, like a pump or maybe the use of gears to make the charging quicker would be great.
It is understood the more work you want out of a system, the more work you have to put in. (Energy can't be created etc...)
Re:All servers down - thank you slashdot!
on
Ogg Vorbis 1.0
·
· Score: 2
Yeah, but think of the idiot who says, "Who are you to put a copy of our content on your site to report as news?"
At least by pointing to freshmeat, it allows developers to say when things are done. When slashdot links to news, it's because the news itself is announced by just being there. When developers put stuff out for public consumption, it's so that opensource contributors and the likes can communicate freely to their developers and beta-testers. Not a crowd of x-hundred people per second.
Re:All servers down - thank you slashdot!
on
Ogg Vorbis 1.0
·
· Score: 4, Insightful
Maybe it's time slashdot doesn't do software announcements since you have to download the software from their site to begin with. And since we have access to all cvs code up to release, this doesn't help.
Why not let the freshmeat.net handle the software stuff. At least then, it is a matter of the author announcing it and all you have to do is point to freshmeat and say, "look! it's out! see!?"
Heh, wish where I worked was like that. We have stupid things going on such as our Database doing direct connections to 3rd party web services. We have about 2000 tables in our database. It's flippin' stupid.
Ah, but remember, in a controled environment, where source and everything is documented, it's not a "bad thing". Oracle works like this of course. Do they have problems migrating their binaries data format? Doubtfully.
The same could be said of XML. An XML document doesn't have to validate against a dtd.
As for language encoding.. and that silliness, you can do a binary->binary conversion. You just have to know the language you are using. Like int's are 32 bits, unsigned are 31 + the signed bit. Etc etc.. so it's not terrible.:)
Change in structure? No problem. What you do is use XSLT or rewrite stuff using DOM or SAX. SAX being the biggest hack, DOM being the biggest pain. XSLT being the quickest solution. XSLT would allow you to transform any single file. Write a quick bit of code to loop the transformation on all suplied files and poof, you are done.
Slashdot Mirror
Let's say I go to verisign and get a certificate for encryption, which also garantees my identity. With in the cert, is my information, encryption information, where the cert came from and who issued the cert. I can use my cert to generate other certs using encryption software.
What this means, for people who have browsers which don't check where the cert came from, will not be warned that a certificate was granted from an untrusted source. Who are trusted sources? AOL, Thawte, Verisign.. etc.. Look in browser prefs for certificate authorities; the trusted circle of people to say you are who you are.
Why is this dangerous? Well, for one, you can claim you are whomever you wish, while looking like you are from this trusted circle. You look like you are from this trusted circle because no one claims otherwise. Your browser would usually bitch at you about certs made from non-authorities. But since your browser won't bitch about where your cert came from, and just looks at the authority..
So what if it isn't from a trusted circle? Using this in combination with dns spooofing, you could get people to give you information over ssl "secure connection" (rolling eyes) without the browser bitching at you that the cert you are looking at was made by verisign but not issued by verisign.
Worse yet, no one expects the spanish colonsocapy!
http://www.sluggy.com/daily.php?date=020807
"Techies On Ice: The Coming Age of Cryonics" Is this like the Lion King on ice?
Have something that can read the presense and absence of a retina. Now have it be able to read morse code. Then it's a matter of blinking a bunch of times. :)
My mistake. The reason you liked sweeter things was because breastmilk is sweet, which is your source of nutrition. Hurk.. I was on crack :)
Well... smell also lets you know when things are ok. Just like taste. When you were a kid, you liked sweeter things because your body needed the extra sugars. Well.. smell lets you know what is good for you and what's bad.. in a primitive sense. Yes, the body can be fooled. Like cianide and the almond association.
Hrm, not that i know of. I think it's just straight rumble.
Didn't the playstation do this first? Or some arcade game system? It's jsut a matter of figuring out which device to vibrate, nuh?
Heh, imagine if they vibrated the keyboard. It'd fall off the table after a while. THe monitor would just cause an earthquake.. especially with those 21" monitors.
Oh, I see. Versus breast implants where it's better to look than to touch?
Last thing we will need though, is smell feedback. Lord knows what my trash bin smells like with the junk thats in there. And worse yet, my porn folder. Ewr....
That requires a MUCH larger desk :P And what if it was on a rack?
Until someone breaks your site because htey have that one particular javascript setting off.
Seriously. I dont' go to some sites because it requires a seperate window to open automagically, while I have that setting in mozilla off. It's not a matter of protest -- it's a matter of preference. I don't like it, and got annoyed turning it back on for the site in general. So.. I've stopped going there.
The bigger problem, is it is hard to worry about it client side. If I turn off JS, bam, your site becomes broken. Depending on the use of JS, it can either be a security issue, to db integrety (data validation) to site navigation that becomes broken.
Unless you are in a real emergency. 45 seconds could mean the difference between life and death. Something quicker, like a pump or maybe the use of gears to make the charging quicker would be great.
It is understood the more work you want out of a system, the more work you have to put in. (Energy can't be created etc...)
id107 is a lot better.. :)
Not if they weren't circles ;)
Yeah, but think of the idiot who says, "Who are you to put a copy of our content on your site to report as news?"
At least by pointing to freshmeat, it allows developers to say when things are done. When slashdot links to news, it's because the news itself is announced by just being there. When developers put stuff out for public consumption, it's so that opensource contributors and the likes can communicate freely to their developers and beta-testers. Not a crowd of x-hundred people per second.
Maybe it's time slashdot doesn't do software announcements since you have to download the software from their site to begin with. And since we have access to all cvs code up to release, this doesn't help.
Why not let the freshmeat.net handle the software stuff. At least then, it is a matter of the author announcing it and all you have to do is point to freshmeat and say, "look! it's out! see!?"
-s
Perhaps more reason to invent the air conditioner :) Building's self combusting sucks.
Heh, wish where I worked was like that. We have stupid things going on such as our Database doing direct connections to 3rd party web services. We have about 2000 tables in our database. It's flippin' stupid.
Then are we agreeing on the same thing? :)
Note: added you as a friend. I'm glad slashdot actually added messaging when someone replies to you. Actually nice to have conversations.
Ah, but remember, in a controled environment, where source and everything is documented, it's not a "bad thing". Oracle works like this of course. Do they have problems migrating their binaries data format? Doubtfully.
The same could be said of XML. An XML document doesn't have to validate against a dtd.
:)
As for language encoding.. and that silliness, you can do a binary->binary conversion. You just have to know the language you are using. Like int's are 32 bits, unsigned are 31 + the signed bit. Etc etc.. so it's not terrible.
Simple. you load up the data in one struct, create a new struct, do a 1-1 mapping and output the new one. Don't taunt the systems programmers ;)
Change in structure? No problem. What you do is use XSLT or rewrite stuff using DOM or SAX. SAX being the biggest hack, DOM being the biggest pain. XSLT being the quickest solution. XSLT would allow you to transform any single file. Write a quick bit of code to loop the transformation on all suplied files and poof, you are done.
Uh.. the elements are just tops to containers... they can be moved around :P