Actually, with the release of XNA Express the SDK and compiler are free for the XBox 360. There's talk of a fee to enable distribution, but it was low, $99 per year.
Oh please Word is not, and will never be the dominant format. Unless you're thinking that HTML is suddenly going away. Bringing DRM into a discussion on what is essentially a proxy and exploit fingerprinting is, at best, not helpful, at worst, disengenuous.
My problem with recycling is being charged twice for it. Currently where I am, South Oxfordshire we don't have provided bins. So every Wednesday everyone dumps binliners out. It's bad when they get ripped, as the garbage men won't clean it up.
There's also an optional recycling box. Which you have to go collect from the local town hall, they don't just hand them out. However the box has no lid. So you have to wash out your tins before disposing of them, otherwise the box sits and festers. As it accepts all the recycling on windy collection days if you haven't put some thought into it your newspapers will blow down the street. Of course it's anyones guess why they just don't give everyone a damned box.
Then there's garden waste. Where you have to pay an annual fee for a wheely bin, as described in the original article. It's picked up every two weeks and the contents are then sold to a "local" (read owned by a relative) firm that turns the waste into manure. So the council gets paid twice for my grass clippings. You should also note that the Saturday "drive and dump" no longer takes green waste. So on principle most people don't do it, because they'll be damned if they're going to be ripped off. And so lots of the local forests have fly tippings of garden waste, or people simply double wrap it so it looks like normal domestic rubbish and it's picked up and taken to landfill.
For it to come "common knowledge" it also needs work on behalf of the companies. My bank is an internet and telephone bank so they react well when I ask them to prove who they are on the rare occasions they ring me, however doing the same with other companies is pretty much impossible. There's either silence or outrage when you try to turn the tables and most companies refuse. Of course as they're mostly marketing calls it's actually amusing:)
Who is forcing you to pay for the games? Is Bill standing behind you with a gun to your head? Personally I found Cloning Clyde rather funny, and it keep me amused for a couple of weeks. Considering $10 is the price of a cinema ticket or DVD rental I found it a bargain. Last night I even managed to find a complete free game, Texas Hold'Em, which was a free download until 8am this morning. Unlike iTunes companies selling on Live Marketplace are free to set their own price. So are you blaming Microsoft for having a free market?
You're almost describing the EMV (Europay MasterCard VISA) standard for smart cards, implemented in the UK as Chip & PIN. The chip on the smart card is used during the encryption process and cardholder presense verified by a PIN, which is encrypted on the numberpad, before it gets any further (thus providing two factor authentication.
It has drawbacks, direct and indirect observation of the PIN plus it doesn't stop card cloning, as the mag strip still exists. Indeed specially rigged readers were used this year in petrol stations to capture the mag strip and save the card information where it ended up being cloned in India.
The policy states that MS will hand over the XBox Live account information, without stating what is in those account details. It could just be a username, or geographic details, or more. The details about acquiring credit card information is in a seperate paragraph, which includes the provisios "will vary depending upon the activity and may include".
Whilst it makes sense for an ea.com account created when purchasing an on-line game to have the credit card information the policy, as I read it, doesn't really say "they are granting themselves the authority to retrieve your private credit card information and much more from Microsoft in the process." that gamerswithjobs think it does.
So are they saying that Microsoft is preparing for fall out from a new exploit that utilizes hastily written code from the latest series of patches? Is that what the pen companies reverse engineered?
Wrong conclusion I think. More likely the reverse engineering is comparing the patched and unpatched code and actually working out what the exploit is, then writing the code to use it. (this is why the behaviour of the Rails team holding back details of their exploit is rather weird; especially when the source is around)
I think you moved too quickly through it, there's nothing to indicate it's IE only (unless you're karma whoring *grin)
In fact the article explains some of the methods and they will happily work on Mozilla as well;
The JavaScript scanner determines whether there is a computer at an IP address by sending a "ping" using JavaScript "image" objects.
I'm pretty sure I can use javascript in mozilla to create image objects. Why I can do it in Opera too. And if you actually went to the proof of concept page and tried it you would have confirmation it is NOT an IE only problem.
It seems that the ideal place for security is not with individual site developers; but, rather with language standards bodies and browser makers.
Oh what utter tosh. It's no wonder there are vunerable web sites out there if you think that's an acceptable attitude.
Guess what, I'm a consultant too, but I actually make to the time to keep myself away of these things. Cross site scripting is a simple example, all it takes is for you to remember to encode any output that has come from user input, and pretty much all the server side languages and frameworks have helper functions for this. The fact that you absolve yourself from not knowing about it by saying we don't have time is awful. The fact that you consider a site working reliably if you cannot be sure it's secure is even worse.
The ideal place for security is everywhere and if you aren't telling your clients that than frankly you're not a consultant, but simply a con.
Of course MS also supply class posters in the Visual Studio box, but in case you're using the Express editions you can download and print your own copy from Bard Abrams' blog.
It depends how they update windows. If they've switched from windowsupdate to microsoftupdate then Office updates will be included (as well as updates for some server software like SQL 2005). The switch also changes the automatic update software.
Slashdot isn't really representative of Stallman's community. They transitioned from an Open Source site to a "Geek Culture" site some time ago.
I could infer from that you believe Open Source is Stallman's community. It's really not, RMS and his insistance on "the one true license" only represents a small section of the wider Open Source / Free Software community. And whilst his political nature is a good driving force it partly drives people because they feel the need to offer a less narrow minded, zealot driven face to the open source movement.
I've been working with end users enough at uni and work to realise the most even the slightly geeky user will only ever upgrade their graphics card on their laptop when they are forced too.
Well considering upgrading the graphics card would take, at the least, a large amount of disassemly and soldering on 99.9% of laptops maybe it's a good thing end users don't try....
More seriously a lot of the problems with laptops is that vendors, nvidia, ati, intel, et al will not ship drivers for the parts used in laptops, instead they provide them to the laptop vendors. Who, after a year, stop bothering. Trying to find an up to date video driver for my Toshiba is next to impossible, because Toshiba never released any, so I'm stuck with a driver that's well over a year old and has problems in some games. But their viewpoint is, of course, only support the latest and greatest, make people update the hardware. The only hope you have are the people out there who hack the standard driver packages to work with laptop vendor specific device IDs.
If MS had followed through on the idea of including cerified drivers in windowsupdate it would have solved a lot of problems, but very few vendors support it.
Why wouldn't they? A user CAL is linked to the user, not the client software, although each User CAL does come with a license for Outlook. You could purchase a device CAL, and then a machine would be licensed, no matter how many people use it.
Re:This could represent a step forward
on
Web 2.0, Meet .Net 3.0
·
· Score: 2, Informative
It's pretty much acknowledged that MSDN's search is awful, hence them changing it. You can test drive the new version and feed back comments onto the search blog (even if they can't get the ratings on blog posts done correctly!).
but record companys have the right on the songs of there artist until 75 years after the artists death
That varies around the world. For example in the UK record companies don't own the songs, they own a particular recording of a song. Publishing companies license the lyrics and tunes. And the copyright on a recording only lasts for 50 years, regardless of the artist being alive or dead. So please, don't assume the rights laws in one country applies world wide.
Re:The CVS Copout....
on
The CVS Cop-Out
·
· Score: 5, Funny
And if it hasn't been fixed, well the source is there, fix it yourself. Geez.
Use a more secure OS. Win CE is not an OS designed to protect the system from the behavior of its users. Linux / Unix / Solaris would be
CE is highly customisable, and securable, if you can be bothered, and of course, by default, you're not able to overwrite system files. For example you can remove parts of the OS easily enough. Don't need external connectivity via USB? Take it out of the system. Don't need IRDA? Remove it. Don't need to accept updates to the ROMs? Remove it. In order to secure the device the software could be burnt in (added bonus, no upgrades which haven't been certifed)
A couple of examples; my GPS device is powered by CE, and I can only update the software by using a PC, with activesync installed; updates are delivered as full ROM images, which are signed. Not something you can easily take into a voting booth. I also know of CE software powering medical equipment (scared yet?), monitoring drip pumps and signaling problems. There's no interface there at all, it's protected from everyone. If you want it upgraded, you ship it back.
Not really, the circumstances in which you can claim are pretty limited (media summary);
The right to compensation
An individual can claim compensation from a data controller for
damage and distress caused by any breach of the act.
Compensation for distress alone can only be claimed in limited
circumstances.
You, of course, must be able to demonstrate and document the damage and distress too.
I realise comparative anatomy is a theoretical subject for most gamers, but really I would expect you to realise that "attacking from behind" is the wrong "target" for making babies. 4x miracle maybe?
Slashdot Mirror
Actually, with the release of XNA Express the SDK and compiler are free for the XBox 360. There's talk of a fee to enable distribution, but it was low, $99 per year.
Oh please Word is not, and will never be the dominant format. Unless you're thinking that HTML is suddenly going away. Bringing DRM into a discussion on what is essentially a proxy and exploit fingerprinting is, at best, not helpful, at worst, disengenuous.
"the "Unix way". Things should be kept small and only do one thing, but do it well."
OK, but I warn you know, when you use that excuse on girls they're going to focus on the "do it well" part ....
There's also an optional recycling box. Which you have to go collect from the local town hall, they don't just hand them out. However the box has no lid. So you have to wash out your tins before disposing of them, otherwise the box sits and festers. As it accepts all the recycling on windy collection days if you haven't put some thought into it your newspapers will blow down the street. Of course it's anyones guess why they just don't give everyone a damned box.
Then there's garden waste. Where you have to pay an annual fee for a wheely bin, as described in the original article. It's picked up every two weeks and the contents are then sold to a "local" (read owned by a relative) firm that turns the waste into manure. So the council gets paid twice for my grass clippings. You should also note that the Saturday "drive and dump" no longer takes green waste. So on principle most people don't do it, because they'll be damned if they're going to be ripped off. And so lots of the local forests have fly tippings of garden waste, or people simply double wrap it so it looks like normal domestic rubbish and it's picked up and taken to landfill.
For it to come "common knowledge" it also needs work on behalf of the companies. My bank is an internet and telephone bank so they react well when I ask them to prove who they are on the rare occasions they ring me, however doing the same with other companies is pretty much impossible. There's either silence or outrage when you try to turn the tables and most companies refuse. Of course as they're mostly marketing calls it's actually amusing :)
Who is forcing you to pay for the games? Is Bill standing behind you with a gun to your head? Personally I found Cloning Clyde rather funny, and it keep me amused for a couple of weeks. Considering $10 is the price of a cinema ticket or DVD rental I found it a bargain. Last night I even managed to find a complete free game, Texas Hold'Em, which was a free download until 8am this morning. Unlike iTunes companies selling on Live Marketplace are free to set their own price. So are you blaming Microsoft for having a free market?
You're almost describing the EMV (Europay MasterCard VISA) standard for smart cards, implemented in the UK as Chip & PIN. The chip on the smart card is used during the encryption process and cardholder presense verified by a PIN, which is encrypted on the numberpad, before it gets any further (thus providing two factor authentication.
It has drawbacks, direct and indirect observation of the PIN plus it doesn't stop card cloning, as the mag strip still exists. Indeed specially rigged readers were used this year in petrol stations to capture the mag strip and save the card information where it ended up being cloned in India.
The policy states that MS will hand over the XBox Live account information, without stating what is in those account details. It could just be a username, or geographic details, or more. The details about acquiring credit card information is in a seperate paragraph, which includes the provisios "will vary depending upon the activity and may include".
Whilst it makes sense for an ea.com account created when purchasing an on-line game to have the credit card information the policy, as I read it, doesn't really say "they are granting themselves the authority to retrieve your private credit card information and much more from Microsoft in the process." that gamerswithjobs think it does.
But hey, nothing like hyperbole to get hits!
So are they saying that Microsoft is preparing for fall out from a new exploit that utilizes hastily written code from the latest series of patches? Is that what the pen companies reverse engineered?
Wrong conclusion I think. More likely the reverse engineering is comparing the patched and unpatched code and actually working out what the exploit is, then writing the code to use it. (this is why the behaviour of the Rails team holding back details of their exploit is rather weird; especially when the source is around)
In fact the article explains some of the methods and they will happily work on Mozilla as well;
I'm pretty sure I can use javascript in mozilla to create image objects. Why I can do it in Opera too. And if you actually went to the proof of concept page and tried it you would have confirmation it is NOT an IE only problem.
Oh what utter tosh. It's no wonder there are vunerable web sites out there if you think that's an acceptable attitude.
Guess what, I'm a consultant too, but I actually make to the time to keep myself away of these things. Cross site scripting is a simple example, all it takes is for you to remember to encode any output that has come from user input, and pretty much all the server side languages and frameworks have helper functions for this. The fact that you absolve yourself from not knowing about it by saying we don't have time is awful. The fact that you consider a site working reliably if you cannot be sure it's secure is even worse.
The ideal place for security is everywhere and if you aren't telling your clients that than frankly you're not a consultant, but simply a con.
Actually there are .net framework diagrams, and they're cheaper than $20
Microsoft .NET Framework 2.0 Poster Pack : $19.99 before discounts, but I've seen it given away when you buy 2 MS Press books.
Of course MS also supply class posters in the Visual Studio box, but in case you're using the Express editions you can download and print your own copy from Bard Abrams' blog.
It depends how they update windows. If they've switched from windowsupdate to microsoftupdate then Office updates will be included (as well as updates for some server software like SQL 2005). The switch also changes the automatic update software.
The story will get posted again on slashdot 37 hours later.
I could infer from that you believe Open Source is Stallman's community. It's really not, RMS and his insistance on "the one true license" only represents a small section of the wider Open Source / Free Software community. And whilst his political nature is a good driving force it partly drives people because they feel the need to offer a less narrow minded, zealot driven face to the open source movement.
I think you mean "Post this news article on slashdot". And it recurs every week.
I've been working with end users enough at uni and work to realise the most even the slightly geeky user will only ever upgrade their graphics card on their laptop when they are forced too.
Well considering upgrading the graphics card would take, at the least, a large amount of disassemly and soldering on 99.9% of laptops maybe it's a good thing end users don't try ....
More seriously a lot of the problems with laptops is that vendors, nvidia, ati, intel, et al will not ship drivers for the parts used in laptops, instead they provide them to the laptop vendors. Who, after a year, stop bothering. Trying to find an up to date video driver for my Toshiba is next to impossible, because Toshiba never released any, so I'm stuck with a driver that's well over a year old and has problems in some games. But their viewpoint is, of course, only support the latest and greatest, make people update the hardware. The only hope you have are the people out there who hack the standard driver packages to work with laptop vendor specific device IDs.
If MS had followed through on the idea of including cerified drivers in windowsupdate it would have solved a lot of problems, but very few vendors support it.
Why wouldn't they? A user CAL is linked to the user, not the client software, although each User CAL does come with a license for Outlook. You could purchase a device CAL, and then a machine would be licensed, no matter how many people use it.
It's pretty much acknowledged that MSDN's search is awful, hence them changing it. You can test drive the new version and feed back comments onto the search blog (even if they can't get the ratings on blog posts done correctly!).
but record companys have the right on the songs of there artist until 75 years after the artists death
That varies around the world. For example in the UK record companies don't own the songs, they own a particular recording of a song. Publishing companies license the lyrics and tunes. And the copyright on a recording only lasts for 50 years, regardless of the artist being alive or dead. So please, don't assume the rights laws in one country applies world wide.
And if it hasn't been fixed, well the source is there, fix it yourself. Geez.
CE is highly customisable, and securable, if you can be bothered, and of course, by default, you're not able to overwrite system files. For example you can remove parts of the OS easily enough. Don't need external connectivity via USB? Take it out of the system. Don't need IRDA? Remove it. Don't need to accept updates to the ROMs? Remove it. In order to secure the device the software could be burnt in (added bonus, no upgrades which haven't been certifed)
A couple of examples; my GPS device is powered by CE, and I can only update the software by using a PC, with activesync installed; updates are delivered as full ROM images, which are signed. Not something you can easily take into a voting booth. I also know of CE software powering medical equipment (scared yet?), monitoring drip pumps and signaling problems. There's no interface there at all, it's protected from everyone. If you want it upgraded, you ship it back.
You, of course, must be able to demonstrate and document the damage and distress too.
I realise comparative anatomy is a theoretical subject for most gamers, but really I would expect you to realise that "attacking from behind" is the wrong "target" for making babies. 4x miracle maybe?
The answer is obvious, they'll outsource the customer support