Re:Viruses spread by stupidity not OS'es.
on
Linux in Canada
·
· Score: 1
I'm not saying passwords are going away, just that switching contexts, passworded or not, is an artificial barrier. In the end, the user (assuming a home user), does have the root rights, even if they have to type in 50 username/password combos. This is why I called it an artificial barrier. Any user who wants to run some attachment to an email that looks like its from their buddy will do it. At that point all the prompts and context switching just become an annoyance to the user, rather than a security mechanism.
Re:Viruses spread by stupidity not OS'es.
on
Linux in Canada
·
· Score: 3, Interesting
This is problem you need to address differently than just SUing.
The idea of a username/password combo to protect resources is quickly becoming a thing of the past, as the trend to recognition of the individual continues. I for one can't wait to do away with uname/password headaches. For example, in a PKI/Smart Card/Biometric authentication system, your rights are based on who you are and not what uname/pass you have.
In this scenario, what are you going to do? Impose some artificial barrier to privledge escalation? Any attempt will become nothing more than a "Are you _sure_ you want to execute this?." These kind of protections are already in windows, and users will inevitably click "yes".
The KDE people really impressed me. At one point one of them wanted to show me how you can write simple javascripts to create full KDE apps or dock applets. He didn't have it installed though, so he decided to download it from the net; there was a compatibility problem with the binary, so he pulled the code from CVS; he didn't want to wait for a long compile, so he decided to use the other processors on the LAN, but to do that he needed icecream; he pulled that from CVS... All this was done at a fast and furious pace, he had 10 or 12 shells running at the same time, was bouncing between them; other developers stuck their heads in: "which shell is patching...?" Development in action. It was cool.
Just when I was ready to try linux again, I read this paragraph and remembered why I got rid of it last time.
As someone who knows more than just a little about governent/military procurement: NO THEY DON'T
Budgets are made completely independent of each other. This is where deficits come from.
When NASA needs a couple billion dollars to make a more efficient computer to run the toilet on a trip to Mars, or the DoI wants a billion to sutdy the effect of crickets on the national parks, congress looks at the books and tells them there's no money.
When you need money for the military, you either find it or borrow it.
The budget is really made of 2 parts. The military and then the rest of the government.
Whats the yahoo group? Sounds like an entertaining read if you wouldn't mind posting the name.
Re:Shoehorn
on
Java vs .NET
·
· Score: 2, Interesting
I think MS is taking the opposite approach, but not on the size scale side.
I am currently developing in.NET, and solves one real life problem that no other solution brings to the table, cross language compatibility.
I can't remember the last time I had to develop a client (not web) application that had to run on 2 or more platforms.
In all my years, no one has ever said to me "build me such and such and make sure it runs on unix and windows without recompilation".
However, I have been on many teams where everyone knew a different language or paradigm. This is the problem that.NET solves. The VB and OO coders can finally work together and speak the same APIs.
If.NET becomes truly cross platform, great. Can't say that it will make a difference to me since I guess I'm the only person in the world who knows what platform they are devloping for up front.
It goes in depth on how he rated himself with multiple screen names and used various other techniques like buying inexpensive items from others with fake mailing addresses.
I love the image of the postal inspectors carrying guns. Reminds me of the accounting division of the FBI that walks into the accountants office strapped with a piece.
In fact, I've never had win2k crash on me. Although, I integrate a product we make with a god awful program written in who knows that consistenly crashes. Every time I make it do this (which is probably 30-35 times a day) an error report is sent!
Signed.NET assemblies that are loaded into the GAC are simple to register as COM components. This makes them usable by standard COM calls. Calling these from SQL Server is a snap.
Slashdot Mirror
I'm not saying passwords are going away, just that switching contexts, passworded or not, is an artificial barrier.
In the end, the user (assuming a home user), does have the root rights, even if they have to type in 50 username/password combos.
This is why I called it an artificial barrier.
Any user who wants to run some attachment to an email that looks like its from their buddy will do it. At that point all the prompts and context switching just become an annoyance to the user, rather than a security mechanism.
This is problem you need to address differently than just SUing.
The idea of a username/password combo to protect resources is quickly becoming a thing of the past, as the trend to recognition of the individual continues.
I for one can't wait to do away with uname/password headaches.
For example, in a PKI/Smart Card/Biometric authentication system, your rights are based on who you are and not what uname/pass you have.
In this scenario, what are you going to do?
Impose some artificial barrier to privledge escalation?
Any attempt will become nothing more than a "Are you _sure_ you want to execute this?."
These kind of protections are already in windows, and users will inevitably click "yes".
The KDE people really impressed me. At one point one of them wanted to show me how you can write simple javascripts to create full KDE apps or dock applets. He didn't have it installed though, so he decided to download it from the net; there was a compatibility problem with the binary, so he pulled the code from CVS; he didn't want to wait for a long compile, so he decided to use the other processors on the LAN, but to do that he needed icecream; he pulled that from CVS... All this was done at a fast and furious pace, he had 10 or 12 shells running at the same time, was bouncing between them; other developers stuck their heads in: "which shell is patching...?" Development in action. It was cool.
Just when I was ready to try linux again, I read this paragraph and remembered why I got rid of it last time.
They come out of the same budget, dipshit
As someone who knows more than just a little about governent/military procurement:
NO THEY DON'T
Budgets are made completely independent of each other. This is where deficits come from.
When NASA needs a couple billion dollars to make a more efficient computer to run the toilet on a trip to Mars, or the DoI wants a billion to sutdy the effect of crickets on the national parks, congress looks at the books and tells them there's no money.
When you need money for the military, you either find it or borrow it.
The budget is really made of 2 parts.
The military and then the rest of the government.
I'm a little confused on the premise of this question.
Research needs funding.
If the military wasn't funding autonomous sensors, who else would?
And what does having military funding for some projects have to do with the "atrophy" of other non military projects?
Are you surprised you can't find funding for research no one wants?
Its little like asking how McDonald's research on hamburger recipes is adversely affecting research on hydrogen energy.
What do they have to do with each other?
Cox Cable
3mbps
$50
Amen.
Most people here will praise this as some sort of triumph for the little guy.
Truly disappointing that they have ruined a service that returned good value for the money.
Nice going jackasses, you should be proud of yourselves.
Its messed up in IE also.
Haha, I was recently in KC and was a little shocked by the loss limit laws there.
EVERY TIME you opened your wallet, even for chips at the craps table, you had to give them your card.
The guy next to me even hit the $500(?) an hour limit and had to wait a while to get more chips.
Exactly what I was thinking.
If it doesn't prompt when you have NOEXTERNALDATA set, base64 the data URL.
The one problem with this is someone will call this an exploitable security bug.
Microsoft would then be forced to disallow the control from accessing the web at all when NOEXTERNALDATA is set.
LOL, never mind.
I was talking about the overrated list.
Missed the link to the underrated list.
I stand corrected!
Sorry it didn't work on your comp, but they definitely did NOT mention NOLF.
If anything, NOLF belongs on the top 25 most underrated games in history.
There a ton of controller clones at almost every decent computer store.
They are very cheap.
If you are dead set on hacking this thing, you may want to check out www.arcadecontrols.com
I believe this practice may be illegal.
Any EOE experts to give some clarification?
I believe this could be considered discrimination, and companies are required to keep all resumes they receive on file.
Whats the yahoo group?
Sounds like an entertaining read if you wouldn't mind posting the name.
I think MS is taking the opposite approach, but not on the size scale side.
.NET, and solves one real life problem that no other solution brings to the table, cross language compatibility.
.NET solves.
.NET becomes truly cross platform, great.
I am currently developing in
I can't remember the last time I had to develop a client (not web) application that had to run on 2 or more platforms.
In all my years, no one has ever said to me "build me such and such and make sure it runs on unix and windows without recompilation".
However, I have been on many teams where everyone knew a different language or paradigm.
This is the problem that
The VB and OO coders can finally work together and speak the same APIs.
If
Can't say that it will make a difference to me since I guess I'm the only person in the world who knows what platform they are devloping for up front.
This reminds me of McDowell's in "Coming To America"
It was OK that he had the 2 all beef patties and special sauce, it was the name that raised eyebrows.
What the hell is that one girl shooting out of her ass???
You obviously didn't bother to read the article.
It goes in depth on how he rated himself with multiple screen names and used various other techniques like buying inexpensive items from others with fake mailing addresses.
I love the image of the postal inspectors carrying guns. Reminds me of the accounting division of the FBI that walks into the accountants office strapped with a piece.
You were a contractor.
This means you have 0 recourse.
Its the same as if you suspected your exterminator of stealing.
You just tell him his services are no longer needed.
The exterminator can't sue you, and no reason need be given.
Consider yourself lucky they even told you why because they didn't have to.
Also, as a contractor, your previous client is under no restriction on giving you a bad reference.
It doesn't matter how small a department of the government is that you sue, they are still represented by the attorney general.
Its stories like this that remind me never to take /. too seriously.
Aboslutley.
In fact, I've never had win2k crash on me.
Although, I integrate a product we make with a god awful program written in who knows that consistenly crashes.
Every time I make it do this (which is probably 30-35 times a day) an error report is sent!
Depends on whether you want to lie or not.
If you are on the stand and say that you didn't download this stuff (which you did) and blame it on the wireless AP, thats perjury.
Perjury is much worse than copyright violation.
You can do it now.
.NET assemblies that are loaded into the GAC are simple to register as COM components.
Signed
This makes them usable by standard COM calls.
Calling these from SQL Server is a snap.