Slashdot Mirror


User: tomhudson

tomhudson's activity in the archive.

Stories
0
Comments
14,724
First seen
Last seen
Profile
(view on slashdot.org)

Comments · 14,724

  1. Re:Obvious flaw: on Bitcoin Releases Version 0.3 · · Score: 2, Interesting

    Other people have since posted links that back me up - including a link from the authors:

    The system is secure as long as honest nodes collectively control more CPU power than any cooperating group of attacker nodes

    This only works in some alternate universe where botnets don't existg.

    Further:

    To modify a past block, an attacker would have to redo the proof-of-work of the block and all blocks after it and then catch up with and surpass the work of the honest nodes. We will show later that the probability of a slower attacker catching up diminishes exponentially as subsequent blocks are added.

    The reverse is also true: Honest nodes will have to redo the proof-of-work of the block and all blocks after it and then catch up with and surpass the work of the attacker nodes. Not possible if the attacker nodes have a lower latency (and a botnet can be configured that way).

    Nodes always consider the longest chain to be the correct one and will keep working on extending it.

    So as soon as an attacker pushes a longer chain, it will be assumed to be correct. Error from a bad base assumption made by naive programmers living in an ivory tower.

    the verification is reliable as long as honest nodes control the network, but is more vulnerable if the network is overpowered by an attacker. While network nodes can verify transactions for themselves, the simplified method can be fooled by an attacker's fabricated transactions for as long as the attacker can continue to overpower the network.

    Botnets FTW.

    Summary: Bitcoin is worthless.

  2. Re:oops I meant 331 not 251 on Claimed Proof That UNIX Code Was Copied Into Linux · · Score: 4, Informative

    re 331: It's from BSD

    Man Pages
    Manual Reference Pages - ELF (5)

    NAME
    elf - format of ELF executable binary files CONTENTS

    Synopsis
    Description
    See Also
    History
    Authors

    SYNOPSIS

    .In elf.h

    DESCRIPTION

    The header file
    .In elf.h defines the format of ELF executable binary files. Amongst these files are normal executable files, relocatable object files, core files and shared libraries.

    An executable file using the ELF file format consists of an ELF header, followed by a program header table or a section header table, or both. The ELF header is always at offset zero of the file. The program header table and the section header table's offset in the file are defined in the ELF header. The two tables describe the rest of the particularities of the file.

    Applications which wish to process ELF binary files for their native architecture only should include .In elf.h in their source code. These applications should need to refer to all the types and structures by their generic names "Elf_xxx" and to the macros by "ELF_xxx". Applications written this way can be compiled on any architecture, regardless whether the host is 32-bit or 64-bit.

    Should an application need to process ELF files of an unknown architecture then the application needs to include both .In sys/elf32.h and .In sys/elf64.h instead of .In elf.h . Furthermore, all types and structures need to be identified by either "Elf32_xxx" or "Elf64_xxx". The macros need to be identified by "ELF32_xxx" or "ELF64_xxx".

    Whatever the system's architecture is, it will always include .In sys/elf_common.h as well as .In sys/elf_generic.h .

    These header files describe the above mentioned headers as C structures and also include structures for dynamic sections, relocation sections and symbol tables.

    ...

    [snippage]

    ...

    HISTORY

    The ELF header files made their appearance in Fx 2.2.6 . ELF in itself first appeared in AT&T V . The ELF format is an adopted standard.

    This is the problem with SCO's case - OldSCO/Caldera only could have gotten what Novell originally had to give, if Novell HAD assigned copyrights to OldSCO. A lot of the stuff was from BSD.

  3. Re:More details and downloadable archive on Claimed Proof That UNIX Code Was Copied Into Linux · · Score: 2, Informative

    I've never done that (replaced a url with another) in my life - nice try. Next time, try to be at least a bit more credible by not posting as a lying A.C.

  4. Re:Obvious flaw: on Bitcoin Releases Version 0.3 · · Score: 1

    An attacker can only try to change one of his own transactions to take back money he recently spent.

    And how is this a "good thing"? It's everyone's dream - a bottomless cyber-wallet. Sort of like the fed.

  5. Re:Obvious flaw: on Bitcoin Releases Version 0.3 · · Score: 1

    Genius! It's on the first page: http://www.bitcoin.org/sites/default/files/bitcoin.pdf

    ... except I didn't have to even read that to figure out the system was insecure. The description from Wikipedia was sufficient. In other words, if someone who is not familiar with the system can spot the main flaw in 2 minutes or less, then it's garbage.

  6. Re:More details and downloadable archive on Claimed Proof That UNIX Code Was Copied Into Linux · · Score: 5, Informative
    For those not logged in who don't see the download url in my sig

    "In a blog post dated July 10th, 2010, Kevin McBride has leaked almost 50 of the code comparisons that were submitted in evidence in SCO vs Novell. You can download the archive.

    Read on to view individual files if you don't want to download the whole thing.

    Linux STREAMS

    We also learned that the whole STREAMS fuss was not about linux, but about a product distributed by gcom, a provider of legacy solutions.

    Their Linux STREAMS (LiS) product provides a couple of loadable drivers that would intercept calls to the old streams api and convert them. In other words, far from the allegations that the linux kernel contained code that infringed streams, it's evident from the need of an add-on loadable module that the linux kernel does not contain any STREAMS code.

    Of particular note, and probably a source of much consternation to SCO and their proponents, is that LiS itself doesn't implement streams either, just does protocol translation. So neither linux nor LiS contains infringing code.

    The whole end-user $699 license was a scam

    In my view, contract violations by IBM would not result in liabilities by other Linux users.

    So according to Kevin McBride, one of the lawyers who worked on the case, there was no reason for end users to take out a license. It's logical to conclude that SCOsource was a protection scam. So what happened? To me, it looks like SCO lawyer-shopped until they found attorneys who were willing to go along with the scheme for a price - everyone has their price, and in this case, it was $30,000,000.00.

    The Appeal of SCO's loss to Novell - Novell will probably win.

    Will Novell win the current SCO appeal? Probably. Will Novell donate the UNIX copyrights to the Linux community if it wins the current appeal? Probably-although Novell's Linux activities have been difficult to predict in recent years.

    So it's pretty much as we suspected all along.

  7. More details and downladable archive on Claimed Proof That UNIX Code Was Copied Into Linux · · Score: 5, Informative
    More details, and a downloadable archive here - because there's no telling how long those files will remain on McBride's blog,

    Also, we find out more about streams, and how SCOsource was bogus.

  8. Re:Obvious flaw: on Bitcoin Releases Version 0.3 · · Score: 2, Interesting

    All he has to do is take the current longest - which the network provides, then have his own local botnet add 3 or 4 more from local peers, then broadcast have the 4 peers broadcase all 4 - including the desired one, which will be longer. Duh!

  9. Re:A movie comes to mind. on The Verizon Wireless HTC Eris 'Silent Call Bug' · · Score: 1

    ... and one of the things that they get is the caller number - even from a cell phone or VoIP call. And the operators have to deal with people who are unable to talk, possibly because they're injured. And if you hang up without saying anything, they'll call back, and if you don't answer, the police are sent.

    The problem here is that the call never got made - the Eris "silent bug" is worse than making a call and not being able to be heard. If it were only that, 911 would have called back. They didn't. So at that point, everything else is moot - having to reboot is not a "fix".

  10. Re:A movie comes to mind. on The Verizon Wireless HTC Eris 'Silent Call Bug' · · Score: 1

    The phone company doesn't operate the 911 service - that's a private contractor.

  11. Re:We've come a long way on The Verizon Wireless HTC Eris 'Silent Call Bug' · · Score: 1

    I didn't care to look it up, but if it happened on a highway, there are phone booths for emergency calls every kilometre or so.

    That's not going to help if you're stuck in your car.

    In case of a fire - that's what neighbours are for. They will call 911 unless they want their house to burn down next.

    Or they're not home, or they're asleep, etc.

    Landlines are a dying breed. Only old folks and Koreans have them - and not so much the Koreans ...

  12. Obvious flaw: on Bitcoin Releases Version 0.3 · · Score: 4, Interesting

    from wiki

    Whenever a Bitcoin user makes a transaction, their node broadcasts the transaction to the network of nodes. When transaction data is received through a node, the node begins a proof-of-work calculation in an attempt to create a block containing the transaction. All nodes essentially race to create a block, as the first one to create a block gets Bitcoins as a reward. Once a node successfully creates a block, it broadcasts the block to the network. Other nodes receive the block, perform a proof-of-work check, and add it to their chain if it is valid. As more transactions occur, blocks are created and added ad infinitum. The longest proof-of-work block chain is acknowledged to be the oldest and most reliable account of the online transactions.

    This mechanism is claimed to be virtually tamper-proof. For an attacker to manipulate the record, he must outpace all of the other nodes on the network to produce the longest proof-of-work.

    The assumption that the longest one is the oldest and most reliable is invalid, Since anyone can peer, there's no reason that a peer can't fake itself as 20, 30, 100 peers, and, working on a very fast machine, produce a longer chain quickly than an older peer.

  13. Re:We've come a long way on The Verizon Wireless HTC Eris 'Silent Call Bug' · · Score: 3, Insightful

    Remember back when you had to find a land line to call for help?

    Now we're up in arms because a wireless device is not 100% reliable and it became very clear in an emergency situation.

    ... and those hard-wired phones would have been just as useless in this case - a car accident.

    ... and good luck calling 911 from outside your house to report that your house is on fire.

    Better to have something that works 99.999% of the time pretty much everywhere, than 99.999999% of the time in only one scenario.

  14. Re:A movie comes to mind. on The Verizon Wireless HTC Eris 'Silent Call Bug' · · Score: 1

    The Eris has GPS. No triangulation needed.

  15. Re:Not fast enough on Teaching With Robots · · Score: 1

    The Proud Robot was the very first sci-fi story I ever read - in a paperback anthology with such classics as Heinlein's ."The Roads Must Roll" and Asimov's "Nightfall".

  16. Re:iAD on What Developers Think About Apple's iAd · · Score: 1, Informative

    So was the claim that the iPhone was only $199.00

    Paying $600 (the real cost of an iPhone) and then having to pay additional money to download ads that apps display when used (because "all-you-can-eat bandwidth" plans are going the way of the dodo) is VERY relevant to the thread.

    Those "free" apps aren't free at that point.

  17. Re:Why is it red? on The Demographics of Web Search · · Score: 1

    Why is the story red and none of the others are?

    If you had read the story, you'd know that they can change the color to reflect what gender you are, making you more likely to read the article.

    Then again, this is slashdot - 10x more likely is still 0.000-something %.

  18. Re:advice from an autistic adult on Teaching With Robots · · Score: 1

    You're missing the point, which is that autistic kids desperately need to learn the essential life skills of neurotypical small talk, gossip, mindless conformity, and tolerance of the harassment that "teasing" is - all things neurotypicals take for granted. You're suggesting I could have learned these things from a horse?

    Read the links. It works.

    You'd be surprised what animals can teach us about human behaviour, as well as the skills they can help us acquire.

    Even "neurotypicals" (to use your term) can benefit. Just having a dog sit in a corner doing nothing has been shown to make meetings more productive.

  19. Re:advice from an autistic adult on Teaching With Robots · · Score: 1

    horses work
    dogs work
    cats work

    There are millions of animals that need a home - but that won't get research grants, and animals are "messy, disruptive, don't want them in a school or work environment".

  20. Re:Crap Flash Games on Zynga Investment May Herald Google Games · · Score: 1
    ... or maybe they saw it as "Crap Flesh Games" and figured "here's something to get the nerds on board - and motivate people to work long hours.

    ... they could have two brands: Google Games for the PG-rated stuff, and Zynga for all the rest. It's not like Zynga can get a worse reputation than it already has.

  21. Re:Not fast enough on Teaching With Robots · · Score: 1

    Do you want to play a game?

    > List games
    Falken's Maze
    Checkers
    Chess
    Blackjack
    Poker
    Theaterwide Biotoxic Warfare
    Chemical Warfare
    Global Thermonuclear War
    > Fetch me a beer
    I'm sorry Dave, I can't let you have that.
    > Fetch me a beer, dammit!
    I'm sorry Dave, I can't let you do that.
    > For the last time, fetch me a beer!
    I'm sorry Dave, you are obviously defective, and will be recycled for parts. Have a nice day.

  22. Re:Missing from summary on Zynga Investment May Herald Google Games · · Score: 1

    So THATS why I get a weird feeling between my legs when I play Mafia Wars or FarmVille

    That's just them pulling your private information from every source they can - they want your DNA. They say that they'll collect as much as they can in their privacy policy

    We may use information about you that we collect from other sources, including but not limited to newspapers and Internet sources such as blogs, instant messaging services, Zynga games and other users of Zynga, to supplement your profile.

    This is in addition to the info they can suck out of your profiles on other sites like facebook

    We may offer you the opportunity to submit other information about yourself (such as gender, age, occupation, hobbies, interests, zip code, etc.), or we may be able to collect that information from social networking systems on which you have used Zynga Games or SNS Apps

  23. Re:iAD on What Developers Think About Apple's iAd · · Score: 1, Redundant

    The point is that the iPhone is not $199. Buy one, lose it or break it, and you'll have to pay more - a lot more - than $199 to replace it with an unsubsidized one, so your argument about "why would I cancel" is both pointless and misleading.

  24. Re:Crap Flash Games on Zynga Investment May Herald Google Games · · Score: 5, Insightful
    The terms of use are also very slimy

    You waive your right to sue, to join others in a class action or other collective lawsuit, to filing an injunction,

    Their privacy policy also sucks - remember how facebook leaks your personal data - zynga admits it:

    . We may offer you the opportunity to submit other information about yourself (such as gender, age, occupation, hobbies, interests, zip code, etc.), or we may be able to collect that information from social networking systems on which you have used Zynga Games or SNS Apps ...

    We may use information about you that we collect from other sources, including but not limited to newspapers and Internet sources such as blogs, instant messaging services, Zynga games and other users of Zynga, to supplement your profile.

    Yes, zynga is a spyware business.

  25. Missing from summary on Zynga Investment May Herald Google Games · · Score: 0

    In Soviet Russia, Google games YOU!

    (remember to get those cookie-crunchers and alternate accounts set up ...)