duh. also : is linking to illegal material legal ? is blocking the copyright law which allows a person to make an archived copy of copyrighted material valid ? is reverse engineering legal ?
to have a look at this : http://www.sirius.com/~casp/welcome.html..it may be possible to get it thrown out without a trial. SLAPPs -- strategic lawsuits against public participation -- are civil complaints or counterclaims (against either an individual or an organization) in which the alleged injury was the result of petitioning or free speech activities protected by the First Amendment of the U.S. Constitution. SLAPPs are often brought by corporations, real estate developers, or government officials and entities against individuals who oppose them on public issues. Typically, SLAPPs are based on ordinary civil tort claims such as defamation, conspiracy, and interference with prospective economic advantage.
uuh...try copying it with schily's scgskeleton. it will. the problem with these CDROMs is that they have multiple "partitions"..scgskeleton does a bitwise copy.
yes it can -- consider if they made reverse engineering illegal and microsoft sued samba, wine, l0pht and securityfocus for exploiting and reverse engineering their products. development would stop, the source tree would die (and how many copies can you make of samba ?). Consider linux device drivers and BSD device drivers - can you say reverse engineered ? *wham* the entire free unix industry would die instantly. And what about all those other programs on freshmeat..hell, i'd be sued for at least *3* of my open source programs. And how many of your opensource dev guys can protect themselves against lawsuits ? A few.
Im not going to bother answering all your points but as for 1)FreeBSD aims to be a stable production exnviroment - youre wrong. Several bad implementations can be found in the FreeBSD x86 assembly code that render it unstable under certain rare conditions. In fact, Linus *rejected* these changes for Linux outright (even though they would have meant speed improvements). See this URL : [ http://kt.linuxcare.com/kt19991220_47.html#1 ]for one such example..others can be found elsewhere.
regarding the recent community linux certification efforts etc, can we expect to see LI take a part in this ? Are we going to get free community certification for Linux ? Especially since all PHB's now seem to want certification...
Hi guys, Any plans to write a proper Win2K/NT rootkit (the kind that was published on Phrack a while back - that replaces or adds to the actual calls in the win32 ring 0 system with its own) soon ?
This just highlights the real problem - Running untrusted client side code is still an area of theoretical CS. its still being worked on and other than forcing the clients to do only minimal things and using authentication/encryption, there is very little that can be done. and yes, i know there are workarounds around that too. I'd like to point out that interplay's star trek multiplayer which is closed source was hacked so efficiently and throughly that cheats cropped up at the rate of nearly 5 a *day* -- proving that closed source is just as fallible. Hell - i did some of the hacking myself (just use excel to change values for starships in the text file - dead easy) and was running cheat only server games for a while.
nope. closed source is just security by obscurity..it increases the time it takes to crack it. Here's a simple solution (works with open or closed source): [a] Take client A, a legitimate Quake client with no cheating. Compute a RIPEMD-160 signature for the client. [b] Take client B, a hacked client. [c] When A & B connect to legitimate server C, C passes a predetermined, randomly varying string to both clients which they load into memory. A snapshot is then taken which both clients have to pass back in the form of the computed RIPEMD-160 signature of their entire memory space (should take 1-2 seconds max) - and passing a 160 bit signature is negligible in terms of overhead. [d] Server C knows what string it passed both clients and also know the signature of a legitimate client + random string. In this case, A will pass while B will fail. [e] Server C denies B and allows A. Since the string is set on the server and is varying randomly, it is very difficult for B to calculate the string dynamically at runtime in the length of time allotted. RIPEMD is open source , no patents and is stronger than MD5.
order with a deferred "will phone in credit card later" scheme. then write a check and mail it. it works. i ordered with comforthouse.com and it worked fine.
If you've ever used BeOS you will know that its more a single user OS in the same class as Windoze but with a better architecture. I mean theres no login and everyone is root by default. The only good thing is the POSIX compliant shell and ease of use. Mac OS X is based on BSD (and basically the same as any BSD). Note that this article is dated and not a serious benchmark efort in any case.
snaggin the audio while its playing and converting is relatively easy. look at: http://freshmeat.net/appindex/1999/05/05/925879315 .html Same for windows with the virtual audio cable. Once snagged it can be converted to anything.
it converts to MP3, WAV or WMA (windows media shit) from realaudio. The download link is down with a (http://www.streambox.com/Products/products.asp) legal notice..anyone got a mirror ?
Those who do not understand UNIX are condemned to reinvent it poorly.
BTW, UNIX and Linux are one and the same. Linux is POSIX compliant like most unixes and could easily pass the certification if someone would pay the $$$ for it to be a certified UNIX.
the most standard ui is no wm at all. just raw X. try running XDM without a wm and see how nice or not so nice it looks. I actually use it for a secure logged in shell on some servers -- no headaches of people opening up a terminal, just pop a status screen X application on the front for them to use and leave it that way.
KDE (or actually QT) is not GPLed. Whats the point of the GPL when your standard interface is non free ? Even a BSDised toolkit or the GTK would be better than QT. Offtopic, but i *hate* KDE/QT and GNOME/GTK. I actually like AfterStep (which redhat ships with)..desktops are a matter of individual taste -- there is no standard.
the point is that even if i may never use those plans, knowledge is something that should be shared freely. Why curtail it ? If you try to block knowledge it inevitably leaks out and bites you in the rear end anyway..anyone can invent or reinvent a bomb (witness the USA/USSR hydrogen bomb race - 2 seperate teams came up with roughly the same ideas on manufacturing it with no shared knowledge). And why should a book like Mein Kampf be censored ? I've read it (and have a copy i picked up at a book fair) and its relatively harmless.
hmm..cant you run Horizon under WINE ?? Also, The NT4SP3 security thing is basically bullshit. Download the DLL cache posion attack from l0pht or bugtraq and you can rootkit an NT4SP3 system in seconds. BTW, it also works against NT4SP4 and it can make the Guest account Administrator (oops).
uuh..actually RMS invented POSIX (the term) and heavily influenced the standard..including writing bits of it. read a bit of history. if you invent something -- you have the right to ignore it. besides, when did you ever invent something Mr. AC ?
Slashdot Mirror
duh. also :
is linking to illegal material legal ?
is blocking the copyright law which allows a person to make an archived copy of copyrighted material valid ?
is reverse engineering legal ?
to have a look at this : http://www.sirius.com/~casp/welcome.html ..it may be possible to get it thrown out without a trial.
SLAPPs -- strategic lawsuits against public participation -- are civil complaints or counterclaims (against either an individual or an organization) in which the alleged injury was the result of
petitioning or free speech activities protected by the First Amendment of the U.S. Constitution. SLAPPs are often brought by corporations, real estate developers, or government officials and
entities against individuals who oppose them on public issues. Typically, SLAPPs are based on ordinary civil tort claims such as defamation, conspiracy, and interference with prospective
economic advantage.
Why not a nice AMD K7 ? And a DVD RAM drive (toshiba) which can also read DVD-ROMs ?
uuh...try copying it with schily's scgskeleton. it will. the problem with these CDROMs is that they have multiple "partitions"..scgskeleton does a bitwise copy.
yes it can -- consider if they made reverse engineering illegal and microsoft sued samba, wine, l0pht and securityfocus for exploiting and reverse engineering their products. development would stop, the source tree would die (and how many copies can you make of samba ?).
Consider linux device drivers and BSD device drivers - can you say reverse engineered ? *wham* the entire free unix industry would die instantly. And what about all those other programs on freshmeat..hell, i'd be sued for at least *3* of my open source programs.
And how many of your opensource dev guys can protect themselves against lawsuits ? A few.
or AfterStep, my personal favourite..Why cant we get more NeXTStep clones ? they rock.
yep. i remember surfing gopherspace with my telnet account into an IRIX machine around that time.
yep. the whole kernel is from scratch. be enlightened : http://khg.redhat.com - everything you need to know about linux kernels.
Im not going to bother answering all your points but as for 1)FreeBSD aims to be a stable production exnviroment - youre wrong. Several bad implementations can be found in the FreeBSD x86 assembly code that render it unstable under certain rare conditions. In fact, Linus *rejected* these changes for Linux outright (even though they would have meant speed improvements).
See this URL : [ http://kt.linuxcare.com/kt19991220_47.html#1 ]for one such example..others can be found elsewhere.
regarding the recent community linux certification efforts etc, can we expect to see LI take a part in this ? Are we going to get free community certification for Linux ? Especially since all PHB's now seem to want certification...
Hi guys,
Any plans to write a proper Win2K/NT rootkit (the kind that was published on Phrack a while back - that replaces or adds to the actual calls in the win32 ring 0 system with its own) soon ?
This just highlights the real problem - Running untrusted client side code is still an area of theoretical CS. its still being worked on and other than forcing the clients to do only minimal things and using authentication/encryption, there is very little that can be done. and yes, i know there are workarounds around that too.
I'd like to point out that interplay's star trek multiplayer which is closed source was hacked so efficiently and throughly that cheats cropped up at the rate of nearly 5 a *day* -- proving that closed source is just as fallible. Hell - i did some of the hacking myself (just use excel to change values for starships in the text file - dead easy) and was running cheat only server games for a while.
nope. closed source is just security by obscurity..it increases the time it takes to crack it.
Here's a simple solution (works with open or closed source):
[a] Take client A, a legitimate Quake client with no cheating. Compute a RIPEMD-160 signature for the client.
[b] Take client B, a hacked client.
[c] When A & B connect to legitimate server C, C passes a predetermined, randomly varying string to both clients which they load into memory. A snapshot is then taken which both clients have to pass back in the form of the computed RIPEMD-160 signature of their entire memory space (should take 1-2 seconds max) - and passing a 160 bit signature is negligible in terms of overhead.
[d] Server C knows what string it passed both clients and also know the signature of a legitimate client + random string. In this case, A will pass while B will fail.
[e] Server C denies B and allows A.
Since the string is set on the server and is varying randomly, it is very difficult for B to calculate the string dynamically at runtime in the length of time allotted. RIPEMD is open source , no patents and is stronger than MD5.
order with a deferred "will phone in credit card later" scheme. then write a check and mail it. it works. i ordered with comforthouse.com and it worked fine.
Great experience with comforthouse.com..i paid by check instead of credit card and it still worked.
If you've ever used BeOS you will know that its more a single user OS in the same class as Windoze but with a better architecture. I mean theres no login and everyone is root by default. The only good thing is the POSIX compliant shell and ease of use. Mac OS X is based on BSD (and basically the same as any BSD). Note that this article is dated and not a serious benchmark efort in any case.
snaggin the audio while its playing and converting is relatively easy. look at: http://freshmeat.net/appindex/1999/05/05/925879315 .html
Same for windows with the virtual audio cable. Once snagged it can be converted to anything.
it converts to MP3, WAV or WMA (windows media shit) from realaudio. The download link is down with a (http://www.streambox.com/Products/products.asp) legal notice..anyone got a mirror ?
Those who do not understand UNIX are condemned to reinvent it poorly.
BTW, UNIX and Linux are one and the same. Linux is POSIX compliant like most unixes and could easily pass the certification if someone would pay the $$$ for it to be a certified UNIX.
umm..dude ? A Mac ? The same Mac thats going to be running a BSD derivative OS (Mac OS X) soon ?
the most standard ui is no wm at all. just raw X. try running XDM without a wm and see how nice or not so nice it looks. I actually use it for a secure logged in shell on some servers -- no headaches of people opening up a terminal, just pop a status screen X application on the front for them to use and leave it that way.
KDE (or actually QT) is not GPLed. Whats the point of the GPL when your standard interface is non free ? Even a BSDised toolkit or the GTK would be better than QT.
Offtopic, but i *hate* KDE/QT and GNOME/GTK. I actually like AfterStep (which redhat ships with)..desktops are a matter of individual taste -- there is no standard.
the point is that even if i may never use those plans, knowledge is something that should be shared freely. Why curtail it ?
If you try to block knowledge it inevitably leaks out and bites you in the rear end anyway..anyone can invent or reinvent a bomb (witness the USA/USSR hydrogen bomb race - 2 seperate teams came up with roughly the same ideas on manufacturing it with no shared knowledge).
And why should a book like Mein Kampf be censored ? I've read it (and have a copy i picked up at a book fair) and its relatively harmless.
hmm..cant you run Horizon under WINE ??
Also, The NT4SP3 security thing is basically bullshit. Download the DLL cache posion attack from l0pht or bugtraq and you can rootkit an NT4SP3 system in seconds.
BTW, it also works against NT4SP4 and it can make the Guest account Administrator (oops).
uuh..actually RMS invented POSIX (the term) and heavily influenced the standard..including writing bits of it. read a bit of history. if you invent something -- you have the right to ignore it. besides, when did you ever invent something Mr. AC ?