People tend to think that DoS just means hammering the line into submission; it's a broader topic than that. If that kernel memory leak can be triggered by any outside signal, then anyone who wants to bring that box down just needs to trigger it over and over until the box has run out of RAM and swap. On a high speed network, that can often be done shockingly quickly - on the order of tens of minutes, occasionally faster.
In the web services industry we call this ColdFusion 5 and Microsoft Access.
Activation - Annoying anti-piracy check. This is the worst of the group, because it can't be turned off. Customer Experience Improvement Program (CEIP) - Optional feedback program. Device Manager & Driver Protection & Dynamic Update - Gives you an option to scan for updated drivers. Event Viewer - Optional, If you click the 'get more information' it sends a query for, (get this) more information. File Association Web Service - Same as above. Games Folder - Downloads pictures and ratings for your games. Error Reporting for Handwriting Recognition - Optional error reporting.. Input Method Editor (IME) - I assume it's looking for new language packs. Installation Improvement Program - Optional error reporting. Internet Printing - Not sure on this one, I assume it's a driver check. Unless they're talking about the Internet printing service that prints your photos. If so, then duh, grow up. Internet Protocol version 6 Network Address Translation Traversal, Network Awareness (somewhat), Peer Name Resolution Service - Read how these servcices work, they require an Internet server. Parental Controls - I believe it's tied to the phishing filter. Plug and Play, Plug and Play Extensions, Program Compatibility Assistant,Program Properties--Compatibility Tab, Program Compatibility Wizard, Properties, - Driver updates, compatibility updates. Registration - Marketing, optional Rights Management Services (RMS) Client - DRM as bad as activation Update Root Certificates - Automatic updates for SSL certs. Windows Control Panel - Not sure which panel Windows Help - Optional Online help Windows Mail (only with Windows Live Mail, Hotmail, or MSN Mail) - Well duh, hotmail calls microsoft? Windows Problem Reporting - Optional error reporting.
With the exception of Activation and the RMS client, both of which are useless, these are useful Internet services, feel free to turn them off or actually answer NO, when asked.
Stop making this into a 'oooh, they're spying on me'. They're spying the same way Slashdot is spying on you when you post a message.
It's not stupid if you don't have a choice because the vendor won't sell without the M$ tax.
Of course you have a choice, you choose a vendor that sells your company the computer the way you want it configured. Otherwise, you chose from the other hundreds of vendors that will.
Which sounds good, but is wrong when the Laptop and all it's non free drivers are Vista only. The point of these abusive practices is to force people to buy Vista.
Great, I'm sure you'll be able to name at least 2 major OEMs who do this today.
Yes, because the person who continiously rants about the M$ this and the M$ that should always be considered reliable and reputable. You sound like a 4 year old having a tantrum.
Did Bill Gates beat you up when you were a kid or something?
I think Activision is missing a huge opportunity in not making the Infocom universe into a MMORPG. Imagine an online game with humor as the central storyline.
Oh well, just a thought, Activision wouldn't know a winner if they bought the company.
I tried to find the press releases, but a quick search of Intel didn't help, and Google actually pointed me to this story when I searched for "Pentium 90" microcode. (Wow, Google is fast)
Considering that the microcode patcher has to run every single time the system is booted, why not just detect that file?
And why would an AV company overlook Mcupdate_genuineintel.dll vs somerandom.dll?
Sorry, your theory won't work, It would require too many 'what ifs'. Besides, if they were able to reverse engineer a signed dll, why would they bother updating the microcode in the cpu? They would own the OS at that point, you can do much more once you have control of the OS.
Intel has a microcode update architecture. Basically, you can patch the CPU microcode into RAM on the CPU. It's been around since the Pentium bug that caused a recall.
Well, there's nothing wrong with a straightforward copyright infringement complaint. All you have to do is file a suit in court, as opposed to sending a DMCA nastygram.
I'm more concerned with peak capacity and inept power companies.
For example: New York City goes into semi-regular blackouts each summer now. This isn't the middle of nowhere, this is New York City. Large scale blackouts in NYC not only screw up the local economy, there's a ripple effect to the rest of the country.
So, is this the same company we want to power our cars?
1. The grid can handle the new load. 2. The electric companies will not immediately turn to foreign oil to cover the power increase. 3. The local electric company is competent in some way.
If only we had some kind of system... something to do with a series of rules, we could call them, um, "laws". And some kind of "legal" system. Then we could set up punishments for violations of these "laws".
Slashdot Mirror
why is community service humiliating?
2 42,00.html
http://www.people.com/people/article/0,26334,1226
People tend to think that DoS just means hammering the line into submission; it's a broader topic than that. If that kernel memory leak can be triggered by any outside signal, then anyone who wants to bring that box down just needs to trigger it over and over until the box has run out of RAM and swap. On a high speed network, that can often be done shockingly quickly - on the order of tens of minutes, occasionally faster.
In the web services industry we call this ColdFusion 5 and Microsoft Access.
Honestly I think I've used it a few thousand times and only once did I get anything useful.
The data is used two ways, one to look up if there is an article on the event and two, to determine if they need to make an article for the event.
It's not spying though, any way you look at it, it's an error reporting service that gives you a big 'do you want to send this data?' dialog box.
Activation - Annoying anti-piracy check. This is the worst of the group, because it can't be turned off.
Customer Experience Improvement Program (CEIP) - Optional feedback program.
Device Manager & Driver Protection & Dynamic Update - Gives you an option to scan for updated drivers.
Event Viewer - Optional, If you click the 'get more information' it sends a query for, (get this) more information.
File Association Web Service - Same as above.
Games Folder - Downloads pictures and ratings for your games.
Error Reporting for Handwriting Recognition - Optional error reporting..
Input Method Editor (IME) - I assume it's looking for new language packs.
Installation Improvement Program - Optional error reporting.
Internet Printing - Not sure on this one, I assume it's a driver check. Unless they're talking about the Internet printing service that prints your photos. If so, then duh, grow up.
Internet Protocol version 6 Network Address Translation Traversal, Network Awareness (somewhat), Peer Name Resolution Service - Read how these servcices work, they require an Internet server.
Parental Controls - I believe it's tied to the phishing filter.
Plug and Play, Plug and Play Extensions, Program Compatibility Assistant,Program Properties--Compatibility Tab, Program Compatibility Wizard, Properties, - Driver updates, compatibility updates.
Registration - Marketing, optional
Rights Management Services (RMS) Client - DRM as bad as activation
Update Root Certificates - Automatic updates for SSL certs.
Windows Control Panel - Not sure which panel
Windows Help - Optional Online help
Windows Mail (only with Windows Live Mail, Hotmail, or MSN Mail) - Well duh, hotmail calls microsoft?
Windows Problem Reporting - Optional error reporting.
With the exception of Activation and the RMS client, both of which are useless, these are useful Internet services, feel free to turn them off or actually answer NO, when asked.
Stop making this into a 'oooh, they're spying on me'. They're spying the same way Slashdot is spying on you when you post a message.
It's not stupid if you don't have a choice because the vendor won't sell without the M$ tax.
Of course you have a choice, you choose a vendor that sells your company the computer the way you want it configured. Otherwise, you chose from the other hundreds of vendors that will.
Which sounds good, but is wrong when the Laptop and all it's non free drivers are Vista only. The point of these abusive practices is to force people to buy Vista.
Great, I'm sure you'll be able to name at least 2 major OEMs who do this today.
Yes, because the person who continiously rants about the M$ this and the M$ that should always be considered reliable and reputable. You sound like a 4 year old having a tantrum.
Did Bill Gates beat you up when you were a kid or something?
If, if, if... Does Microsoft even transmit the XP key back during Vista upgrades?
You might want to check that out before relying on "Twitter" as your source of all things Microsoft licensing related.
Quoting oneself is not considered researcing a reliable source of information.
Why do I like to use "$" in my messages? Because I like what special characters might be doing to troll scripts *cough*, yeah, that's it.
So, if you make the mistake of "upgrading" XP to Vista, you will have to buy XP again if you don't like Vista.
Or, you could just re-install XP and watch it work without any problems. I'm guessing you never tried.
I think Activision is missing a huge opportunity in not making the Infocom universe into a MMORPG. Imagine an online game with humor as the central storyline.
Oh well, just a thought, Activision wouldn't know a winner if they bought the company.
Not really. No matter what the flaws in the chip are, if you control all the code running you can prevent any potential damage.
A voting machine should be a secure black box, no other software will ever be run on it.
If I remember it was more of a general, 'look at our new microcode update' press release attached to the releases about the recall.
u m/fdiv/
http://support.intel.com/support/processors/penti
I tried to find the press releases, but a quick search of Intel didn't help, and Google actually pointed me to this story when I searched for "Pentium 90" microcode. (Wow, Google is fast)
Considering that the microcode patcher has to run every single time the system is booted, why not just detect that file?
And why would an AV company overlook Mcupdate_genuineintel.dll vs somerandom.dll?
Sorry, your theory won't work, It would require too many 'what ifs'. Besides, if they were able to reverse engineer a signed dll, why would they bother updating the microcode in the cpu? They would own the OS at that point, you can do much more once you have control of the OS.
Intel has a microcode update architecture. Basically, you can patch the CPU microcode into RAM on the CPU. It's been around since the Pentium bug that caused a recall.
Of course they're related. I remember Intel announcing the whole idea of the microcode update was to avoid another bug like that.
Cool, the lead designer replied to a thread I wrote.
Can I be a GM? I'm really good at it, and this won't happen very often. http://www.penny-arcade.com/comic/2005/01/10, maybe once, twice a week tops.
Ok, serious note, you know if this will be on Station Access so I have an excuse to re-activate the rest of my account?
Pretty much like Sigil, SOE and Vanguard...
ok, bad example.
2 Years later: Welcome to Everquest at Sea.
Well, there's nothing wrong with a straightforward copyright infringement complaint. All you have to do is file a suit in court, as opposed to sending a DMCA nastygram.
I think you're on the right track with this.
The good news is copyright is automatic so the owner doesn't really need to do anything except file a complaint.
The bad news is they have to use the DMCA.
Now, for technical measures, wouldn't SSL stop this in its tracks?
I'm more concerned with peak capacity and inept power companies.
For example: New York City goes into semi-regular blackouts each summer now. This isn't the middle of nowhere, this is New York City. Large scale blackouts in NYC not only screw up the local economy, there's a ripple effect to the rest of the country.
So, is this the same company we want to power our cars?
You're assuming a few things:
1. The grid can handle the new load.
2. The electric companies will not immediately turn to foreign oil to cover the power increase.
3. The local electric company is competent in some way.
If only we had some kind of system... something to do with a series of rules, we could call them, um, "laws". And some kind of "legal" system. Then we could set up punishments for violations of these "laws".
Great dream. I call it a civilized society.
Which just goes to show you, the 'third pipe' is actually Congress and is planted firmly up our collective asses.
(Yup, you needed that mental image)
Which one of those is 'dll hell'?