Aren't you overlooking the fact that even if he has a static IP address that someone might have forged their packets such that they appeared to originate from his IP?
It seems a little harsh to assume that he's done something wrong when there is an alternative that doesn't assign blame.
In a man in the middle attack, the attacker intercepts the authentication, and then uses that authentication information to authenticate with the system that the user thought he was authenticating with in the first place.
In this attack, the attacker waits for the user to authenticate and receive his authentication credentials, and then the attacker uses those credentials to connect to other machines as that user. The attacker never intercepts anything, so this isn't a true man in the middle attack.
No, it's not really a man in the middle attack. It's more of a credential hijacking scenario where the attacker waits for you to authenticate with the compromised machine, forward your credentials to that machine, and then the attacker uses those credentials to reach other machines that honor those credentials.
This would be more like you signing in, walking away from your computer, and someone else walkup up to the computer and doing stuff as you except that they get to act as you while you're still acting as you.
Dell laptops have the crappiest keyboards of any laptop I've used. It's like they lined up a bunch of Chicklets on a desk (yes, they're really that wobbly) and they don't give you any tactile sense of when you've pushed the key far enough to activate it.
Otherwise, they're fine machines (be careful not to get a broadcom wireless chipset...getting the Centrino package is an easy way to avoid this).
Go to wikipedia and look up HVDC (High Voltage Direct Current). There are certain situations where HVDC is advantageous and economical to use over normal AC distribution.
Also, high quality switching power supplies can convert DC to DC analogous to how a transformer converts AC to AC with similar efficiencies. As the price of copper increases, transformers will actually cost more to make and we may start seeing AC distribution replaced by DC distribution.
If that happens, the real question is whether or not the last mile would be DC (very few of our home appliances would actually prefer AC).
The world doesn't know, and doesn't care, that he exists.
And the value of something is measured by how much the masses care? When did that happen? It has always been the minority that shapes society and drags the masses kicking and screaming into the future.
I don't always agree with what RMS says, but his position is internally consistant and his uncompromising stance gives us a valuable metric with which to compare other positions. Only time will tell us how valueable this turns out to be in the long run.
"RMS holds the ideological line, he gives people a reference implementation for programming ethics. You don't have to think precisely the same way, but he'll tell you if you're not conforming to spec." --Abe Ferlman
And seriously, if you think that RMS is no longer relevant, why are you post here?
It seems to have mostly corrected itself now, but there was a time when most of the drivers you needed on a laptop weren't stable enough to be included in the official kernel and so you ended up using experimental patches downloaded from project websites in order to try to use the weird hardware found in new laptops.
Except for Broadcom wireless chipsets (which I understand will be supported by a reverse-engineered driver in 2.6.17) it's been 3 or 4 years since I've had problems with needed drivers not being in the kernel.
No, you're confusing burning with exploding. There's only a small range of concentrations at which gasoline will expode, but if you put a match to it, it will always burn because as some distance from the surface of the gasoline liquid, there is sufficient vapor to support flame.
Hydrogen, on the other hand, very quickly disperses through the air to be too dilute to support flame and is only susceptible to flashing (exploding) for a very short time (almost zero time if it's a well ventilated area).
I would rather have that energy used to displace energy currently created via non-sustainable methods rather than just support new energy uses.
Of course I do realize that some of the best places for collecting solar power are too far off the grid to use it as a distribution method and so hydrogen/fly wheels/whatever may be used as a way to transport the energy.
Re:Looks interesting, but does it fold?
on
Acme for Windows
·
· Score: 1
Fire up vim and type ':help folding'
This will show you the half dozen styles of folding supported by vim. If you've got vim version 7, folding rules are now part of the syntax definitions that you're already using for syntax highlighting. To take advantage of that, type ":set foldmethod=syntax".
I haven't tried that yet (don't use folding much when coding...just in config files), so I can't vouch for how good an experience it is.
Unless you're absolutely confident that there are no way for a local user to escallate their priviledge, you can't trust anything on your machine after a user account has been compromised.
I've never had a machine compromised (that I know of), but if I did, I'd reinstall the box, just to be sure.
If you already know the root password, then the only advantages that sudo offers over su is that all actions are logged and that you only act as root for the commands that you really intend to act as root for.
The real value of sudo is that you can give limited root permissions to people who don't already know the root password.
Slashdot Mirror
Aren't you overlooking the fact that even if he has a static IP address
that someone might have forged their packets such that they appeared to
originate from his IP?
It seems a little harsh to assume that he's done something wrong when
there is an alternative that doesn't assign blame.
Not between, but rather beside.
In a man in the middle attack, the attacker intercepts the authentication,
and then uses that authentication information to authenticate with the
system that the user thought he was authenticating with in the first place.
In this attack, the attacker waits for the user to authenticate and
receive his authentication credentials, and then the attacker uses those credentials
to connect to other machines as that user. The attacker never intercepts
anything, so this isn't a true man in the middle attack.
How much did Microsoft spend on that big dividend a while back?
Did they ever completely replace the BSD machines that Hotmail used?
I read somewhere that they still had BSD, but that the servers were
configured to lie about running a MS OS.
No, it's not really a man in the middle attack.
It's more of a credential hijacking scenario where
the attacker waits for you to authenticate with
the compromised machine, forward your credentials
to that machine, and then the attacker uses those
credentials to reach other machines that honor those
credentials.
This would be more like you signing in, walking
away from your computer, and someone else walkup up
to the computer and doing stuff as you except that
they get to act as you while you're still acting
as you.
Did that help?
Wow, those are some pretty depressing stats for Linux and/or Firefox evangelists.
If the broadest claims of the patent are invalid, do the remaining claims have any teeth?
Dell laptops have the crappiest keyboards of any laptop I've used. It's
like they lined up a bunch of Chicklets on a desk (yes, they're really
that wobbly) and they don't give you any tactile sense of when you've
pushed the key far enough to activate it.
Otherwise, they're fine machines (be careful not to get a broadcom
wireless chipset...getting the Centrino package is an easy way to
avoid this).
1. get new machine
2. boot new machine and test that all hardware works
3. wipe hard drive.
4. reinstall OS (or install another OS).
Seriously, it's easier than trying to fix the default install.
HVDC transmission is also used to link different AC networks that are
out of phase with each other.
Go to wikipedia and look up HVDC (High Voltage Direct Current). There are
certain situations where HVDC is advantageous and economical to use over
normal AC distribution.
Also, high quality switching power supplies can convert DC to DC analogous
to how a transformer converts AC to AC with similar efficiencies. As the
price of copper increases, transformers will actually cost more to make
and we may start seeing AC distribution replaced by DC distribution.
If that happens, the real question is whether or not the last mile would
be DC (very few of our home appliances would actually prefer AC).
The world doesn't know, and doesn't care, that he exists.
And the value of something is measured by how much the masses care?
When did that happen? It has always been the minority that shapes
society and drags the masses kicking and screaming into the future.
I don't always agree with what RMS says, but his position is internally consistant
and his uncompromising stance gives us a valuable metric with which to compare
other positions. Only time will tell us how valueable this turns out to be in the
long run.
To quote one of my favorite slashdot posts ever:
"RMS holds the ideological line, he gives people a reference implementation for
programming ethics. You don't have to think precisely the same way, but he'll tell
you if you're not conforming to spec." --Abe Ferlman
And seriously, if you think that RMS is no longer relevant, why are you
post here?
It seems to have mostly corrected itself now, but there was a time when most of the
drivers you needed on a laptop weren't stable enough to be included in the official
kernel and so you ended up using experimental patches downloaded from project
websites in order to try to use the weird hardware found in new laptops.
Except for Broadcom wireless chipsets (which I understand will be supported by
a reverse-engineered driver in 2.6.17) it's been 3 or 4 years since I've
had problems with needed drivers not being in the kernel.
YMMV
No, you're confusing burning with exploding. There's only a small range
of concentrations at which gasoline will expode, but if you put a match
to it, it will always burn because as some distance from the surface
of the gasoline liquid, there is sufficient vapor to support flame.
Hydrogen, on the other hand, very quickly disperses through the air to be
too dilute to support flame and is only susceptible to flashing (exploding)
for a very short time (almost zero time if it's a well ventilated area).
I would rather have that energy used to displace energy currently
created via non-sustainable methods rather than just support new
energy uses.
Of course I do realize that some of the best places for collecting
solar power are too far off the grid to use it as a distribution
method and so hydrogen/fly wheels/whatever may be used as a way
to transport the energy.
Fire up vim and type ':help folding'
This will show you the half dozen styles of folding supported by vim. If you've
got vim version 7, folding rules are now part of the syntax definitions that you're
already using for syntax highlighting. To take advantage of that, type ":set foldmethod=syntax".
I haven't tried that yet (don't use folding much when coding...just in config files), so
I can't vouch for how good an experience it is.
Unless you're absolutely confident that there are no way for a local user to
escallate their priviledge, you can't trust anything on your machine after
a user account has been compromised.
I've never had a machine compromised (that I know of), but if I did, I'd
reinstall the box, just to be sure.
If you already know the root password, then the only advantages that sudo
offers over su is that all actions are logged and that you only act as
root for the commands that you really intend to act as root for.
The real value of sudo is that you can give limited root permissions to
people who don't already know the root password.
But you probably already knew all this.
I'd like to learn more about this sort of thing. Could you please direct me to
the research you're referring to?
Would you please give some links for more information on the experimental
Broadcom driver you mentioned?
The Dell I use at work had a Broadcom chipset in it and I currently use
ndiswrapper to get it to work under Linux. I'd love to have another
solution.
I wish Americans...would grow a brain and quit letting rhetoric dictacte their life
It's easy to listen to rhetoric. It takes effort to actually learn about something.
Sadly, the vast majority of humans lack the interest (or even the capacity) to
really understand the issues. Therefore, rhetoric remains effective.
Mod parent +1 insightful.
He's hit the nail on the head.
And now we know (well, we always knew) why Apple chose to use BSD
userland vs a GPL userland.
This should add more fuel to the debate of the merits of BSD vs GPL
lisencing.
When I google for tarproxy, all I find is a sourceforge project that hasn't been touched in
over 2 years. Is this what you're advocating?