Awww! Not even a small "was he looking at the wage he'll get once he's working at McDonalds?" or a teeny "was he commenting on what's left after the comments were stripped from the Linux code SCO owns?"
Let's see within the last week they have closed at least two exploitable buffer overrun holes.
Are they remotely exploitable? Sure, it's nice if you can't crash your local application when using it, but it's a heck of a lot more important to make sure nobody else can. Sasser (etc. etc.) worm anyone?
Blind users who have their app read their mail to them get very frustrated with having their time wasted on hearing their own writings again.
Quoted text will be marked as such, so it should be no problem for the narration software to skip it. All this behaviour should be optional, of course.
Shout them down. It's seems to be standard practice in Denmark.
Bravo! Sadly, us Brits would rather mutter quietly to each other about how annoying it was than confront them directly. Well, most of the time anyway. I snapped last weekend when a dog owner was letting her mutt shit on the footpath just ahead of me.:-)
They return 95 million results to 415. But since I wasn't going to read anywhere near 415, that is in a practical sense actually the same amount.
How about you add an extra keyword to your search? Are you happy there are only 415 pages to consider for the extra word?
A good search engine will contain the maximum amount of information, and give the user powerful control over it. You're not expected to read over all the results you get back - if you're getting too many hits, add/exclude keywords to narrow it down further.
I've only used MSN a few times to compare results, and have generally been very disappointed with the results. It has felt more like a newbie search engine, which perhaps tries to be too smart with the results (often mistaken for bias?). I'd much rather be left in control of my own searches, tilting the results with my own choice of keywords. MSN may suit inexperienced users but it's never going to be a Google substitute unless it changes.
The main MS involvement was to have some servers set up to allow one to back up their private key so they aren't screwed over if their computer crashes without a backup...
Isn't the whole point of private keys so only you have them? People need to take some responsibility in looking after their private data. I think I'll pass on their oh so kind offer...
I'll stick with private local backups, especially considering Microsoft's far-from-perfect security record.
All it takes is trojaning the interface, making "su" and "sudo" actually run some kind of evil code that calls the real "su" or "sudo", and having appropriated the root password, takes over the system.
"all it takes"? Assuming the easiest approach you'd probably need to create a fake su/sudo binary, make sure it's executable, and add it into the user's path (probably permanently, since they might not use it this session). This is on top of a PINE (or other mail client hole), and I don't even know of any of those.
Assuming they 'just' get normal user control, at least they can't host a spammer SMTP server on the usual port. There are typical DOS attacks, but they don't have the priviledges to create raw sockets to do anything too advanced.
I like playing devil's advocate too, but even I wouldn't attempt to stick up for Outlook and the whole Windows/administrator issue on this!
Actually thats a limitation of POP mail on any client - downloading the headers only is an IMAP feature.
Not so... It just means it's up to the mail client to track which messages it has a body for, so it can fetch them when required. IMAP does a better job of it, but there's nothing to stop you using POP.
Outlook 2003 can be configured to receive only the headers. Pressing Ctrl-Alt-S brings up the Send/Receive options. Edit the profile you use and in the bottom right you can tell it to grab only the headers.
Slashdot Mirror
To avoid bottlenecks and critical points of failure, I think a decentralized and redundant architecture would be more favorable.
I suppose it would be better if a nuclear strike on your neighbours didn't take down your KaZaA downloads...
Now, no more, please?
Awww! Not even a small "was he looking at the wage he'll get once he's working at McDonalds?" or a teeny "was he commenting on what's left after the comments were stripped from the Linux code SCO owns?"
Ok, I'll get my coat...
'This is like...nothing.'
I don't suppose he was looking at the SCOX share price when he said it?
we probably won't get it in the UK until next year, ho-hum ... :/
:-)
Still, we can normally buy it on DVD from play.com before it hits the cinemas here
I'm going to wait until the trailer is in a video format that doesn't require me to run bloated software, before I see it.
My dear Cinderella, you shall go to the ball.
WTF don't some idiots realize that the valuable stuff on a computer is IN THE USERS HOME DIRECTORY.
:-)
The Unix difference usually being IT'S ONLY HIS HOME DIRECTORY and not everyone's on the same machine.
Thats hardly a fair comparison. Put a turbo on that petrol car THEN compare them.
Sure, but only if you still include the MPG figures in the comparison.
Mhz to MHz comparisons are only valid within the same generation of CPU
That's true, but he wasn't claiming that. The story says "CPU running at 4 to 6GHz", which is why he was comparing clock speed.
Let's see within the last week they have closed at least two exploitable buffer overrun holes.
Are they remotely exploitable? Sure, it's nice if you can't crash your local application when using it, but it's a heck of a lot more important to make sure nobody else can. Sasser (etc. etc.) worm anyone?
Blind users who have their app read their mail to them get very frustrated with having their time wasted on hearing their own writings again.
Quoted text will be marked as such, so it should be no problem for the narration software to skip it. All this behaviour should be optional, of course.
Windows 2000 Professional
Windows 2000 Server
Does it still count if there's only a registry setting difference between them? (or was that just NT4?)
Wouldn't be lovelly to face a BSOD while driving at 120Km/h, in a rainy night?
Anyone driving at that speed on a dark night may just have time to notice the crash was in DARWIN.SYS.
I fail to see how we can utilise your arse for secure data storage.
I dunno... regular dumps should cover that.
would it be bad to hack a machine to upgrade security precautions?
Yes.
I wrote:
Can anyone give me that in libraries of congress for me?
Er, and in return I'll give you that in English. *sighs*
"If you were plowing a field, which would you rather use? Two strong oxen or 1024 chickens?"
So, 2 strong oxen > 1024 chickens ?
Can anyone give me that in libraries of congress for me? or perhaps football fields?
Shout them down. It's seems to be standard practice in Denmark.
:-)
Bravo! Sadly, us Brits would rather mutter quietly to each other about how annoying it was than confront them directly. Well, most of the time anyway. I snapped last weekend when a dog owner was letting her mutt shit on the footpath just ahead of me.
It's from your girlfriend. She says she's unsatisfied with your love life.
and considering he runs http://www.backdoorjesus.com, who could blame her eh?
What's this about no killer games recently?
They return 95 million results to 415. But since I wasn't going to read anywhere near 415, that is in a practical sense actually the same amount.
How about you add an extra keyword to your search? Are you happy there are only 415 pages to consider for the extra word?
A good search engine will contain the maximum amount of information, and give the user powerful control over it. You're not expected to read over all the results you get back - if you're getting too many hits, add/exclude keywords to narrow it down further.
I've only used MSN a few times to compare results, and have generally been very disappointed with the results. It has felt more like a newbie search engine, which perhaps tries to be too smart with the results (often mistaken for bias?). I'd much rather be left in control of my own searches, tilting the results with my own choice of keywords. MSN may suit inexperienced users but it's never going to be a Google substitute unless it changes.
The main MS involvement was to have some servers set up to allow one to back up their private key so they aren't screwed over if their computer crashes without a backup...
Isn't the whole point of private keys so only you have them? People need to take some responsibility in looking after their private data. I think I'll pass on their oh so kind offer...
I'll stick with private local backups, especially considering Microsoft's far-from-perfect security record.
Ah, point taken - something like:
#!/bin/sh
echo -n "Password: "
stty -echo
read pwd
echo
stty echo
sleep 3
echo "su: incorrect password"
echo "Password was: $pwd"
unalias su
Still, getting in to set it up is the hard bit I suppose...
All it takes is trojaning the interface, making "su" and "sudo" actually run some kind of evil code that calls the real "su" or "sudo", and having appropriated the root password, takes over the system.
"all it takes"? Assuming the easiest approach you'd probably need to create a fake su/sudo binary, make sure it's executable, and add it into the user's path (probably permanently, since they might not use it this session). This is on top of a PINE (or other mail client hole), and I don't even know of any of those.
Assuming they 'just' get normal user control, at least they can't host a spammer SMTP server on the usual port. There are typical DOS attacks, but they don't have the priviledges to create raw sockets to do anything too advanced.
I like playing devil's advocate too, but even I wouldn't attempt to stick up for Outlook and the whole Windows/administrator issue on this!
Actually thats a limitation of POP mail on any client - downloading the headers only is an IMAP feature.
Not so... It just means it's up to the mail client to track which messages it has a body for, so it can fetch them when required. IMAP does a better job of it, but there's nothing to stop you using POP.
Outlook 2003 can be configured to receive only the headers. Pressing Ctrl-Alt-S brings up the Send/Receive options. Edit the profile you use and in the bottom right you can tell it to grab only the headers.
Don't use Microsoft products... or use them and have an up-to-date modern Anti Virus scanner.
Don't forget that the Witty is entirely memory resident so most (if not all) virus scanners will miss it...