The poster's slightly mistaken. The really funny part of this story was the fact that it was posted BEFORE the election. Late in the evening on election day we were starting to realize how prescient it really was.
In order for enough used copies of your book to be available to those who wanted them, wouldn't some new copies have to have been sold? Thereby earning you some money?
-Aaron
Slightly missing the point. The connection for Rio Receivers is not just to get the sound from one place to another, but to be able to browse your library and play your own selection of music in that remote location, different from whatever anyone's listening to on the main box.
I've always thought that an access point that had NoCatAuth built in would be a great product. Now, until the AP vendors come up with something like this, at least we can roll our own.
The new TiVo Series2 has a MIPS R5432 processor running at 200mhz, if I remember correctly, which should be more than enough for this more "embedded" type of application.
A laptop hard drive of that size in the quantity Apple buys is about $30 these days.
Actually, these aren't your regular laptop hard drives. These are 1.8 inch, considerably more expensive. (Which of course leads to the discussion of whether apple would have sold more big $250 units or small $400 units)
Sack of shit yourself. BeOS actually started life on the AT&T Hobbit processor, and was only later switched over to the PowerPC. Be was doing a lot of bragging in its early life about how this was evidence that they could port to anything if needs be. They then backed that up with the quick x86 port.
A nice package that I could install... A firewall/802.11b combination. I plug in the cable modem ethernet in one port, and in the other 2 ports, my local protected network, and then a place to put in the 802.11b base device. That way those around me can have internet access through my connection.
Check out the LinkSys BEFW11S4, the D-Link DI-711 or DI-713, or the 3Com 3CRWE50194. They all have the physical specs to do what you're asking. It's just a matter of finding out if their built in firewall abilities are flexible enough for your specific needs.
Maybe 40% of Napster's users really *do* use the service to trade bootlegs, live recordings, and other unregulated music.
Just as a point of information, bootlegs and live recordings are just as covered by copyright as anything else that's traded on Napster. The fact that a work is created puts it under the copyright control of the creator, unless that right is reassigned. The difference here is that the RIAA isn't going after those types of recordings, because the record labels (who they represent) don't have the mechanical rights to those recordings like they would have for the songs recorded specifically for the labels.
Of course there are plenty of artists who would want to exercise their copyright on that kind of stuff to keep it out of circulation, even though the RIAA isn't behind their cause. The law is, but with distribution that easy, they'll never see that enforced.
In Authorize.Net's defense, those pages aren't purporting to be complete examples of secure transaction processing. Those are just examples of the very basic ways that transactions can be sent to the gateway via form POST. That page doesn't discuss that type of security because that's not the place for it. Security is a complex idea that requires thinking through your entire order process. Those pages are just highlighting one small portion of the process.
Speaking only about Authorize.Net, the system isn't "insecure by design"; it's flexible by design, and that flexibility can be used to make the system as secure or insecure as is desired. Like all very powerful tools, if it's used by someone who has not the capability or desire to learn how to use the tool, disastrous results will occur.
Read the documentation online if you want to see all of the ways that transaction security is addressed (including such seemingly obvious statements as 'If you're going to let the client change the price, at least check things over before shipping product').
... a hidden field (which will be posted to the CC processing company's server) should be included. This field should contain all of the order's pertinent data (price, etc), encrypted with the storefront's private key...
This is essentially what Authorize.Net offers to their merchants. The response from the transaction contains an MD5 hash of the merchant's Login ID, the transaction ID, the amount of the transaction, and a shared secret (that only Authorize.Net and the merchant know).
This accomplishes a couple of things. First of all, it shows that the transaction really did go through the gateway, because of the shared secret, and second of all, it shows that the amount wasn't somehow changed AFTER authorization. This proves to the merchant that the amount that AuthNet says was charged is really the amount that's charged. Of course, it's up to the merchant to then check that amount and make sure it's the amount that was supposed to be charged for that transaction.
Since it's just MD5 with a shared secret, it's a lot easier for most developers to grok then figuring out certificates and stuff, while still achieving essentially the same thing.
-Aaron
Re:Hoax or sensational treatment?
on
Spidergoats
·
· Score: 1
If you had actually read the article referenced, you would see that what you expect is exactly what the article suggests. The milk coming from the goat teats contains the spider silk proteins, which they can then extract and (they hope) do something with. The article in no way suggests that these goat teats spin silk threads.
CNN obit for those who don't like to log in to NYT
on
William Hewlett Dead
·
· Score: 5
Slashdot Mirror
The poster's slightly mistaken. The really funny part of this story was the fact that it was posted BEFORE the election. Late in the evening on election day we were starting to realize how prescient it really was.
-Aaron
In order for enough used copies of your book to be available to those who wanted them, wouldn't some new copies have to have been sold? Thereby earning you some money? -Aaron
Slightly missing the point. The connection for Rio Receivers is not just to get the sound from one place to another, but to be able to browse your library and play your own selection of music in that remote location, different from whatever anyone's listening to on the main box.
-Aaron
I've always thought that an access point that had NoCatAuth built in would be a great product. Now, until the AP vendors come up with something like this, at least we can roll our own.
-Aaron
The new TiVo Series2 has a MIPS R5432 processor running at 200mhz, if I remember correctly, which should be more than enough for this more "embedded" type of application.
-Aaron
A laptop hard drive of that size in the quantity Apple buys is about $30 these days.
Actually, these aren't your regular laptop hard drives. These are 1.8 inch, considerably more expensive. (Which of course leads to the discussion of whether apple would have sold more big $250 units or small $400 units)
-Aaron
It might be hackable for a bigger drive, but that question is moot since it uses a 1.8 inch drive. At that size, 5 gig is the current max.
-Aaron
(The probable drive they're using is here:)
Once again, the magic word is TiVo
-Aaron
Sack of shit yourself. BeOS actually started life on the AT&T Hobbit processor, and was only later switched over to the PowerPC. Be was doing a lot of bragging in its early life about how this was evidence that they could port to anything if needs be. They then backed that up with the quick x86 port.
-Aaron, the pedant
'mono' is Spanish for monkey. I believe that this is the association, not "monopoly", and not "mononucleosis".
-Aaron
Clear Channel is an investor in XM, by the way.
The Register has this story about the first round of layoffs at BE in response to their cash-starved-ness.
-Aaron
To be pedantic, I'll point out that the original BeBox had dual 66mhz 603s. A later incarnation had the 133s.
-Aaron
Check out the LinkSys BEFW11S4, the D-Link DI-711 or DI-713, or the 3Com 3CRWE50194. They all have the physical specs to do what you're asking. It's just a matter of finding out if their built in firewall abilities are flexible enough for your specific needs.
-Aaron
Just as a point of information, bootlegs and live recordings are just as covered by copyright as anything else that's traded on Napster. The fact that a work is created puts it under the copyright control of the creator, unless that right is reassigned. The difference here is that the RIAA isn't going after those types of recordings, because the record labels (who they represent) don't have the mechanical rights to those recordings like they would have for the songs recorded specifically for the labels.
Of course there are plenty of artists who would want to exercise their copyright on that kind of stuff to keep it out of circulation, even though the RIAA isn't behind their cause. The law is, but with distribution that easy, they'll never see that enforced.
-Aaron
In Authorize.Net's defense, those pages aren't purporting to be complete examples of secure transaction processing. Those are just examples of the very basic ways that transactions can be sent to the gateway via form POST. That page doesn't discuss that type of security because that's not the place for it. Security is a complex idea that requires thinking through your entire order process. Those pages are just highlighting one small portion of the process.
Speaking only about Authorize.Net, the system isn't "insecure by design"; it's flexible by design, and that flexibility can be used to make the system as secure or insecure as is desired. Like all very powerful tools, if it's used by someone who has not the capability or desire to learn how to use the tool, disastrous results will occur.
Read the documentation online if you want to see all of the ways that transaction security is addressed (including such seemingly obvious statements as 'If you're going to let the client change the price, at least check things over before shipping product').
-Aaron
This is essentially what Authorize.Net offers to their merchants. The response from the transaction contains an MD5 hash of the merchant's Login ID, the transaction ID, the amount of the transaction, and a shared secret (that only Authorize.Net and the merchant know).
This accomplishes a couple of things. First of all, it shows that the transaction really did go through the gateway, because of the shared secret, and second of all, it shows that the amount wasn't somehow changed AFTER authorization. This proves to the merchant that the amount that AuthNet says was charged is really the amount that's charged. Of course, it's up to the merchant to then check that amount and make sure it's the amount that was supposed to be charged for that transaction.
Since it's just MD5 with a shared secret, it's a lot easier for most developers to grok then figuring out certificates and stuff, while still achieving essentially the same thing.
-Aaron
If you had actually read the article referenced, you would see that what you expect is exactly what the article suggests. The milk coming from the goat teats contains the spider silk proteins, which they can then extract and (they hope) do something with. The article in no way suggests that these goat teats spin silk threads.
CNN obit is here
As an aside, am I the only one that thinks that the abillity to embed those interactive elements in the movie file is pretty boss?
Nah, ICMP is filtered out on almost the entire Microsoft net, so not being able to get a pong back from your ping doesn't mean anything in this case.
-Aaron