My first impression is that he needs to higher a decent web designer for a more fundamental reason that the ones you mention: he uses <embed> rather than <object> for his flash, which causes it to not work in Mozilla at all. So all I got was an empty grey page. Brilliant.
If you knew anything about the effort and expense (in time as well as hardware and bandwidth) it takes to keep a reliable news server running for a miniscule percentage of an ISPs user base, you'd understand why this was done.
Not to mention that Slashdot also adds auditing code to the posting page that uses a web bug.
So? Sending an HTTP get request for that tiny image isn't going to give them any more information than they, and every other web site administrator out there, already have in their access logs.
IMO, "web bugs" are only an issue when it's a third party advertiser doing the stats collecting. If you don't want the people running the site to know anything about you, either don't visit the site or use a real anonymous proxy.
100Mb switches were more expensive than this just a couple years ago. And these prices are coming down fast. The switch above was $120 or so no more than six months ago.
The only reason I'm still using 100Mb networking at home is that my iBook doesn't have Gig-E. That'll change as soon as the G5 Powerbooks come out. My GF's TiBook and our G4 tower both have it built-in (but she doesn't care about it enough to go out and buy the switch herself).
I don't know if sleep() is implemented in JavaScript but if it is, moving this conditional statement to JS wouldn't affect the server at all, plus you'll get the perverse pleasure of knowing that their own browsers are working against them.
1. A small group of 100 or so people (Govenrment, individuals, organized crime, etc) with the ability to log into your machine, do whatever they want to with it (Set up a kiddie porn ring, steal your identity, etc.)
2. A virus that exploits the flaw, disrupts computer networks forcing people to patch the flaw. (Many still don't, as Code Red is alive and well)
False dichotomy. I'd prefer not to have either of your offered scenarios, but rather responsible disclosure (ala Bugtraq) which makes the flaws known (hopefully) without crackers and script kiddies exploiting them first. This method works every day; how many vulnerabilities are patched before worms come along to exploit them? How many vulnerabilities never have worms/exploits written for them because the patches become widely available in a timely fashion?
Mozilla is doing itself a disservice by claiming it's MSIE
Although you can change the User-Agent string in Mozilla, by default it does not identify itself as IE. You might be thinking of Opera, which does (as far as I know).
I've never modified my UA string. From my Apache access_log:
Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.4) Gecko/20030624
Which HTML standard (HTTP is the transfer protocol, and that is the responsibility of the server)? 3? 4? XHTML? CSS?
The current one, presumably. The XHTML 1.0 specification was released four years ago. Anything earlier is a dinosaur at this point. It's really the browser developers' responsibility to keep up with the current HTML specs.
Other than that, I agree that forging User-Agent strings will do more harm than good in the long run.
Client-side validation should never been seen as a substitute for server-side validation; it's a usability enhancement. Why require a round-trip to the server to tell the user "Oops, you only have one decimal place in column 'foo'" when you can do that just as well, and much faster, with JavaScript?
Of course the data should be validated again on the server. Some might consider this twice as much work, but I think the payoff (speed and user-friendliness) makes it worthwhile.
OJ's acquittal was not due to jury nullification. It would be jury nullification if the jury came back and said that they believe OJ was guilty but they do not believe that first degree murder should be against the law. It's kind of like voting your conscience in that you believe the law is wrong in attempting to punish the defendant's actions.
OJ's acquittal was likely due to the jury just being blinded by celebrity. Idiots.
Are you actually going to google.com every time you want to find a pic?
Nope, I use a bookmarklet similar to the one Google provides on their site. I made a subfolder in my personal toolbar folder called "Search Tools". One click on that drops down a menu with JavaScript bookmarklets for searching Google, dictionary.com, and the PHP function reference.
The best part is that I can add to it whenever I want by making a new copy and modifying the JS to search whatever site I need.
Because it was once released as a seven volume box set. I have this edition myself.
From the Amazon description:
For the first time, The Lord of the Rings is presented as a boxed set of seven hardcover volumes, one for each of its six parts plus a seventh volume containing maps and the appendices. Bound in black covers with the distinctive Eye of Sauron design from the original jackets embossed in red and gold foil on each volume.Each book bears Tolkien's originally conceived title -- The Ring Sets Out, The Ring Goes South, The Treason at Isengard, The Ring Goes East, The War of the Ring, The End of the Third Age...
Dump the serial port? Then what do I plug my external modem into? Or do you expect me to buy a new one just so your precious sensibilities aren't offended?
A reasonable interpretation of your parent post would be that the poster would like legacy-free boards to be available in addition to the current legacy-encumbered crap we get now. I don't think he said anything about not selling serial ports at all anymore.
Personally, I agree with him. It's been years since I last used a serial or parallel port. It's really past time to dump the crappy technology and move on. What year is this?
I assumed it was his cat, actually. Everyone knows the first perl script was written when she walked across the keyboard one time.
That said, I'd buy that cat on Ebay if the price was right. She might be able to teach my cats a few things, and I could get them to do all my work for me.
I thought the topic was mailer-daemon bounces too but I think they're actually talking about mail bounced by inbound mail virus scanners. These seem to bounce virus-infected e-mail with a note along the lines of "Your message was not delivered because it contained a virus. The message was cleaned by Norton Anti Virus." Hence the spam accusations.
Calling it spam is a little harsh, but these messages are definitely unnecessary and annoying, especially considering many viruses nowdays forge their sender addresses.
It seems like they could allow me to log into their SMTP server with user/pw and it would solve the problem.
They do. Tell your mail client to use SMTP AUTH and send outgoing mail through smtpauth.earthlink.net. Your username should be your complete mindspring.com e-mail address.
If you prefer more security, use SMTP AUTH over SSL on port 443 (why 443 (https) I have no idea, but there it is).
I haven't done it myself, but it seem the easiest way would be to take away world-execute permission on/bin/su, make it owned by group "sysadmin" (or whatever), and put anyone who's allowed to su into that group.
whatever you think of IE, it has a far superior renderer than any other browser out there
And they say irony is dead.
MSHTML (the IE HTML rendering engine) is currently behind every other major rendering engine available where standards compliance and CSS support is concerned (some would say speed to, but I'm not going to argue that one as they're all pretty close, IMO). And given Microsoft's recent announcement that IE is no longer being developed as a stand-alone application, it looks like it's going to stay this way at least until 2006 when Longhorn is released. Even then, the others will have progressed far beyond where they are now, so who knows where IE will stand in comparison.
I just spent a few minutes looking for a rendering engine comparison chart I saw once but I can't find it now. Try googling for it, it's out there somewhere.
Slashdot Mirror
Except that it's actually suspended-for.spam-and-abuse.com, the second-level domain name is just spam-and-abuse.com, which is indeed owned by GoDaddy.
My first impression is that he needs to higher a decent web designer for a more fundamental reason that the ones you mention: he uses <embed> rather than <object> for his flash, which causes it to not work in Mozilla at all. So all I got was an empty grey page. Brilliant.
1997 called, they want their rumors back. Earthlink is owned by its shareholders, and has never been owned by the CoS.
If you knew anything about the effort and expense (in time as well as hardware and bandwidth) it takes to keep a reliable news server running for a miniscule percentage of an ISPs user base, you'd understand why this was done.
If it only takes two unique users to get it on the list, I'm sure it'll be appearing any time now.
Help it along.
Or are you talking about a site other than the one in your
Not to mention that Slashdot also adds auditing code to the posting page that uses a web bug.
So? Sending an HTTP get request for that tiny image isn't going to give them any more information than they, and every other web site administrator out there, already have in their access logs.
IMO, "web bugs" are only an issue when it's a third party advertiser doing the stats collecting. If you don't want the people running the site to know anything about you, either don't visit the site or use a real anonymous proxy.
onboard 1000Base-TX (back when it was still way too expensive for ordinary mortals; now, it's just expensive)
You haven't looked at prices lately, have you? Gigabit ethernet is cheap now.
Prices from CDW:
Netgear 5 port 10/100/1000 switch: $83
Netgear Gigabit PCI network adapter: $37
100Mb switches were more expensive than this just a couple years ago. And these prices are coming down fast. The switch above was $120 or so no more than six months ago.
The only reason I'm still using 100Mb networking at home is that my iBook doesn't have Gig-E. That'll change as soon as the G5 Powerbooks come out. My GF's TiBook and our G4 tower both have it built-in (but she doesn't care about it enough to go out and buy the switch herself).
I don't know if sleep() is implemented in JavaScript but if it is, moving this conditional statement to JS wouldn't affect the server at all, plus you'll get the perverse pleasure of knowing that their own browsers are working against them.
There's a sucker born every minute.
What would you rather have:
1. A small group of 100 or so people (Govenrment, individuals, organized crime, etc) with the ability to log into your machine, do whatever they want to with it (Set up a kiddie porn ring, steal your identity, etc.)
2. A virus that exploits the flaw, disrupts computer networks forcing people to patch the flaw. (Many still don't, as Code Red is alive and well)
False dichotomy. I'd prefer not to have either of your offered scenarios, but rather responsible disclosure (ala Bugtraq) which makes the flaws known (hopefully) without crackers and script kiddies exploiting them first. This method works every day; how many vulnerabilities are patched before worms come along to exploit them? How many vulnerabilities never have worms/exploits written for them because the patches become widely available in a timely fashion?
Mozilla is doing itself a disservice by claiming it's MSIE
Although you can change the User-Agent string in Mozilla, by default it does not identify itself as IE. You might be thinking of Opera, which does (as far as I know).
I've never modified my UA string. From my Apache access_log:
Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.4) Gecko/20030624
Which HTML standard (HTTP is the transfer protocol, and that is the responsibility of the server)? 3? 4? XHTML? CSS?
The current one, presumably. The XHTML 1.0 specification was released four years ago. Anything earlier is a dinosaur at this point. It's really the browser developers' responsibility to keep up with the current HTML specs.
Other than that, I agree that forging User-Agent strings will do more harm than good in the long run.
Client-side validation should never been seen as a substitute for server-side validation; it's a usability enhancement. Why require a round-trip to the server to tell the user "Oops, you only have one decimal place in column 'foo'" when you can do that just as well, and much faster, with JavaScript?
Of course the data should be validated again on the server. Some might consider this twice as much work, but I think the payoff (speed and user-friendliness) makes it worthwhile.
OJ's acquittal was not due to jury nullification. It would be jury nullification if the jury came back and said that they believe OJ was guilty but they do not believe that first degree murder should be against the law. It's kind of like voting your conscience in that you believe the law is wrong in attempting to punish the defendant's actions.
OJ's acquittal was likely due to the jury just being blinded by celebrity. Idiots.
Well, you know the great thing about standards is that you have so many to choose from!
However, if you choose the current (dated 26 January 2000) W3C XHTML recommendations then yes, the quotes are required.
Asians can't be racist? Interesting.
Are you actually going to google.com every time you want to find a pic?
Nope, I use a bookmarklet similar to the one Google provides on their site. I made a subfolder in my personal toolbar folder called "Search Tools". One click on that drops down a menu with JavaScript bookmarklets for searching Google, dictionary.com, and the PHP function reference.
The best part is that I can add to it whenever I want by making a new copy and modifying the JS to search whatever site I need.
From the Amazon description:
Dump the serial port? Then what do I plug my external modem into? Or do you expect me to buy a new one just so your precious sensibilities aren't offended?
A reasonable interpretation of your parent post would be that the poster would like legacy-free boards to be available in addition to the current legacy-encumbered crap we get now. I don't think he said anything about not selling serial ports at all anymore.
Personally, I agree with him. It's been years since I last used a serial or parallel port. It's really past time to dump the crappy technology and move on. What year is this?
I assumed it was his cat, actually. Everyone knows the first perl script was written when she walked across the keyboard one time.
That said, I'd buy that cat on Ebay if the price was right. She might be able to teach my cats a few things, and I could get them to do all my work for me.
I thought the topic was mailer-daemon bounces too but I think they're actually talking about mail bounced by inbound mail virus scanners. These seem to bounce virus-infected e-mail with a note along the lines of "Your message was not delivered because it contained a virus. The message was cleaned by Norton Anti Virus." Hence the spam accusations.
Calling it spam is a little harsh, but these messages are definitely unnecessary and annoying, especially considering many viruses nowdays forge their sender addresses.
Add Apple Mail to that list.
It's been a while since I've used it but, if I remember correctly, even Eudora 4.x for Windows could to this pretty seamlessly.
It seems like they could allow me to log into their SMTP server with user/pw and it would solve the problem.
They do. Tell your mail client to use SMTP AUTH and send outgoing mail through smtpauth.earthlink.net. Your username should be your complete mindspring.com e-mail address.
If you prefer more security, use SMTP AUTH over SSL on port 443 (why 443 (https) I have no idea, but there it is).
I haven't done it myself, but it seem the easiest way would be to take away world-execute permission on /bin/su, make it owned by group "sysadmin" (or whatever), and put anyone who's allowed to su into that group.
whatever you think of IE, it has a far superior renderer than any other browser out there
And they say irony is dead.
MSHTML (the IE HTML rendering engine) is currently behind every other major rendering engine available where standards compliance and CSS support is concerned (some would say speed to, but I'm not going to argue that one as they're all pretty close, IMO). And given Microsoft's recent announcement that IE is no longer being developed as a stand-alone application, it looks like it's going to stay this way at least until 2006 when Longhorn is released. Even then, the others will have progressed far beyond where they are now, so who knows where IE will stand in comparison.
I just spent a few minutes looking for a rendering engine comparison chart I saw once but I can't find it now. Try googling for it, it's out there somewhere.