Add to that Cookie Monster to operate in whitelist only mode. (Also supports temporary allows like NoScript which then purges those cookies on restart.)
Also add Better Privacy which I use to simply wipe all non-whitelisted LSOs (flash cookies) on browser stop/start.
Only PITA is forcing myself to restart my browser on a regular basis. With session saving and Tab Kit, it's really not too painful, but still annoying.
I would not recommend.tv as VeriSign is the registry operator and they would be happy to disable your domain name, just like.com/.net.
Tonga is another tiny island nation -.to - but the registry has a web portal for direct registration (so you don't have to use a registrar which may bow to pressure) and they have a very private WHOIS policy. Almost no details can be gleaned from putting accurate information as the registrant contact.
I would recommend any ccTLD that allows direct registration through an HTTPS session. Avoid the registrar middlemen for ultimate control over your domain. However, you will be responsible for manually renewing your domain! And be sure to read the registry's fine print for how they may revoke a domain. Ensure the contact data is accurate so you can get any email / snail mail correspondence. This will help you defend your domain in case of a dispute, and help prevent against unauthorized transfers of the domain. Make sure the email account on record is not easily hijacked.
But then you're at the whim of The People's Republic. Even Go Daddy is no longer a registrar for.cn domains after last December's registry rule change (which caught all registrars by surprise).
That's still a chain, just some links are "stronger" (more trusted) than others. You trust your browser/OS who trusts a large list of CA certs. There are no third parties (web) where some trust a CA (or individual cert) and some do not.
A "web of trust" model is more along the lines of Moxie Marlinspike's proposed 'Notaries' system where you query different notaries for a service behind SSL and based on their responses (a web of them), you decide to trust the cert or not.
The release notes describe some OUTER JOIN changes that may help your (2).
E.1.3.1.1. Performance
Allow FULL OUTER JOIN to be implemented as a hash join, and allow either side of a LEFT OUTER JOIN or RIGHT OUTER JOIN to be hashed (Tom Lane)
Previously FULL OUTER JOIN could only be implemented as a merge join, and LEFT OUTER JOIN and RIGHT OUTER JOIN could hash only the nullable side of the join. These changes provide additional query optimization possibilities.
The DNS response is a simple, plain text UDP packet. Google properly responds with the NXDOMAIN answer (or A record not found, whatever), and the ISP looks for those simple packets and replaces them with the A record of their shitty ad page.
Unfortunately, DNSSEC is such a pain in the ass, from the registry updates, to the unique key signing key per zone, to the unique zone signing key, that no one wants to implement it.
Solution: test if this happens with non-existent domains. If you're being hijacked, use a VPN (even if just for DNS queries, see dnsmasq), contact your ISP, or change ISPs.
But that relies on humans (not scalable), or very dexterous robots that can eventually replicate themselves out of the raw materials after they've bootstrapped the tools.
With nano-bots, you start extra-small and scale extra-big. If the bots can replicate themselves, and build nano-structures out of the mined metals, you can gain geometric growth and end up with human habitable super structures.
Of course, we'd have to advance the nanotech here on earth long before we ship it out into space...
Ahh, but if you plan it right you'll be able to use all that equipment to duplicate itself and get some good old fashioned geometric growth going on...
It's like NoScript, but for cookies instead of javascript. You can white/black list by subdomain, or parent domain (*.domain). By default, I block all except a whitelist of a few domains of sites I login to. For sites like the New York Times, I simply "temporarily allow" cookies for the current browsing session.
One really nice feature (editable) is that it will delete cookies for the current domain when you change the action from Accept to Reject/Deny.
I was thinking the exact same thing. I read the entire review, simply looking for an explanation of PrestaShop.
Apparently it's a PHP/MySQL app for running a web-based retail store. The core is released under the OSL 3.0 license, but it seems that many add-on modules and themes are available for purchase.
This review makes no mention if you have to purchase anything to build a storefront using PrestaShop, or if the standard OSS version will suffice. Nor does this review give any technical details on setting the thing up, including any dependencies on existing relationships with payment processors / merchant accounts. Perhaps the author could have talked about the example store he setup, and used his praise of the book to illustrate his example.
Dear Friend , Thank-you for your interest in our publication . We will comply with all removal requests . This mail is being sent in compliance with Senate bill 1623 ; Title 1 , Section 301 . This is different than anything else you've seen . Why work for somebody else when you can become rich as few as 58 weeks ! Have you ever noticed more people than ever are surfing the web plus nobody is getting any younger . Well, now is your chance to capitalize on this ! We will help you increase customer response by 110% & deliver goods right to the customer's doorstep ! You are guaranteed to succeed because we take all the risk . But don't believe us ! Mr Simpson of Washington tried us and says "Now I'm rich, Rich, RICH" ! We are a BBB member in good standing . We beseech you - act now . Sign up a friend and you'll get a discount of 30% . God Bless ! Dear Sir or Madam , Thank-you for your interest in our publication . If you no longer wish to receive our publications simply reply with a Subject: of "REMOVE" and you will immediately be removed from our mailing list . This mail is being sent in compliance with Senate bill 1621 , Title 4 ; Section 308 . This is different than anything else you've seen ! Why work for somebody else when you can become rich as few as 18 weeks ! Have you ever noticed nearly every commercial on television has a.com on in it plus people love convenience ! Well, now is your chance to capitalize on this . We will help you sell more and deliver goods right to the customer's doorstep ! The best thing about our system is that it is absolutely risk free for you ! But don't believe us . Mrs Simpson of Mississippi tried us and says "Now I'm rich many more things are possible" . This offer is 100% legal ! We beseech you - act now ! Sign up a friend and you get half off ! Best regards ! Dear Cybercitizen , Your email address has been submitted to us indicating your interest in our letter . If you no longer wish to receive our publications simply reply with a Subject: of "REMOVE" and you will immediately be removed from our mailing list . This mail is being sent in compliance with Senate bill 1625 ; Title 4 ; Section 301 . This is a ligitimate business proposal . Why work for somebody else when you can become rich as few as 93 days ! Have you ever noticed how many people you know are on the Internet & society seems to be moving faster and faster . Well, now is your chance to capitalize on this . We will help you process your orders within seconds plus process your orders within seconds . You can begin at absolutely no cost to you . But don't believe us ! Mr Ames who resides in Montana tried us and says "I was skeptical but it worked for me" ! We are a BBB member in good standing ! We beseech you - act now ! Sign up a friend and you'll get a discount of 60% . Warmest regards !
Unfortunately, the punctuation has whitespace around it, which is pretty obvious to look for. But you could create your own algorithm, in addition to the other versions on the site.
No. Local repositories make a lot of sense, even if you only have a handful of machines, especially if you upgrade them every 6 months. Any more than a handful, you should be encouraged to run a local repo, even if you have all the bandwidth you need; it's polite to not download the same thing 100 times.
A kernel update heavily outweighs a compact web page.
And how do you know the firmware binary you are installing is free of malware? How do you know the Windows/Linux binary application used to install the firmware is also free of malware? None of that software is open.
Back when I used Windows, I always changed the PuTTY font to "Terminal 9pt" (and increased the window size of course). Then each new server would clone a previous config.
unless they mucked up the implementation, there's every reason to believe that Skype's encryption is secure.
Perhaps secure from a random researcher, but not secure from a dissident's point of view. If the encryption is not end-to-end (with client-managed PKs), then it is useless, even if it's strong and secure.
The problem is, no one knows if the link is only encrypted between the clients and the server, or only encrypted between the clients. We also don't know if each client maintains its own private asymmetric key or if the server is the only private key holder.
You have to think about Joe Sixpack (or the equivalent of a recent Internet user) first typing in _____.com, then.net, then.org (or perhaps even.org over.net). Unfortunately for domain owners, the other top level domains will not be tried; instead the user will attempt a search.
The Associated Press quoted the pilot of the shuttle Atlantis' last scheduled flight, Dominic Antonelli, as saying he was impressed by the Falcon 9 and would gladly climb aboard if and when the time comes.
"Yes, absolutely. But I'm not that picky. I think I'd probably climb on just about anything," he said last month.
I figure we slashdotters would climb on just about anything too...
That's exactly what Xenna said: you must claim that the therapy works in order to have the placebo effect.
If the acupuncturist said, "What I'm about to perform with these needles won't directly cause you pain relief (and I may not even prick your skin), but as long as you believe it works you may feel better", they might not get a lot of repeat customers.
Uh, that's because most water tables are large, so if you are above one, you can pretty much poke a well anywhere and find water. Of course the depth of each well may vary depending on substrate and which water table you actually hit. Also, the rate of available water (to pump or even if naturally pressurized) depends on the water table you strike.
Sorry man, you fell for the scam. (He may have "witched" past wells in the larger area and has studied the underlying aquifers. Every well drilled to depth and through various substrate will inform him. Shit, he may be a Geology drop-out.)
With the local in-line script, could you not first use javascript to change the CSS visibility of the page to hidden, then run their check that returns it to visible? Then for users without javascript, the raw page would at least display? If javascript is disabled, those users shouldn't have to worry about click jacking even if they still get a frame.
Same Origin should prevent the frame from modifying the scripts within it.
According to the DENIC registrar's mailing list, this was just an administrative fuckup. DENIC apparently runs Bind, (on at least the 4 affected logical servers) and they reloaded Bind with an empty zone file. Since the six logical servers are all authoritative, the empty-zone-file servers replied with NXDOMAIN (as they should have).
The parent is correct, non-existent domain responses should only be cached for 2 hours.
Since.de is the largest ccTLD (by count of registrations), this is a pretty big deal. On April 3 2010, there were 13.5 million registered.de domains. I wonder how long it took Bind to start with that many zones!
Slashdot Mirror
Add to that Cookie Monster to operate in whitelist only mode. (Also supports temporary allows like NoScript which then purges those cookies on restart.)
Also add Better Privacy which I use to simply wipe all non-whitelisted LSOs (flash cookies) on browser stop/start.
Only PITA is forcing myself to restart my browser on a regular basis. With session saving and Tab Kit, it's really not too painful, but still annoying.
I would not recommend .tv as VeriSign is the registry operator and they would be happy to disable your domain name, just like .com/.net.
Tonga is another tiny island nation - .to - but the registry has a web portal for direct registration (so you don't have to use a registrar which may bow to pressure) and they have a very private WHOIS policy. Almost no details can be gleaned from putting accurate information as the registrant contact.
I would recommend any ccTLD that allows direct registration through an HTTPS session. Avoid the registrar middlemen for ultimate control over your domain. However, you will be responsible for manually renewing your domain! And be sure to read the registry's fine print for how they may revoke a domain. Ensure the contact data is accurate so you can get any email / snail mail correspondence. This will help you defend your domain in case of a dispute, and help prevent against unauthorized transfers of the domain. Make sure the email account on record is not easily hijacked.
That post should be TFA this thread is discussing! Thanks for sharing.
But then you're at the whim of The People's Republic. Even Go Daddy is no longer a registrar for .cn domains after last December's registry rule change (which caught all registrars by surprise).
Or ping-tunnel (apt-cache show ptunnel) -> TCP over ICMP.
That's still a chain, just some links are "stronger" (more trusted) than others. You trust your browser/OS who trusts a large list of CA certs. There are no third parties (web) where some trust a CA (or individual cert) and some do not.
A "web of trust" model is more along the lines of Moxie Marlinspike's proposed 'Notaries' system where you query different notaries for a service behind SSL and based on their responses (a web of them), you decide to trust the cert or not.
The release notes describe some OUTER JOIN changes that may help your (2).
The DNS response is a simple, plain text UDP packet. Google properly responds with the NXDOMAIN answer (or A record not found, whatever), and the ISP looks for those simple packets and replaces them with the A record of their shitty ad page.
Unfortunately, DNSSEC is such a pain in the ass, from the registry updates, to the unique key signing key per zone, to the unique zone signing key, that no one wants to implement it.
Solution: test if this happens with non-existent domains. If you're being hijacked, use a VPN (even if just for DNS queries, see dnsmasq), contact your ISP, or change ISPs.
But that relies on humans (not scalable), or very dexterous robots that can eventually replicate themselves out of the raw materials after they've bootstrapped the tools.
With nano-bots, you start extra-small and scale extra-big. If the bots can replicate themselves, and build nano-structures out of the mined metals, you can gain geometric growth and end up with human habitable super structures.
Of course, we'd have to advance the nanotech here on earth long before we ship it out into space...
Ahh, but if you plan it right you'll be able to use all that equipment to duplicate itself and get some good old fashioned geometric growth going on...
We just need nano-bots to do it!
Give Cookie Monster a try:
https://addons.mozilla.org/en-US/firefox/addon/4703/
It's like NoScript, but for cookies instead of javascript. You can white/black list by subdomain, or parent domain (*.domain). By default, I block all except a whitelist of a few domains of sites I login to. For sites like the New York Times, I simply "temporarily allow" cookies for the current browsing session.
One really nice feature (editable) is that it will delete cookies for the current domain when you change the action from Accept to Reject/Deny.
I was thinking the exact same thing. I read the entire review, simply looking for an explanation of PrestaShop.
Apparently it's a PHP/MySQL app for running a web-based retail store. The core is released under the OSL 3.0 license, but it seems that many add-on modules and themes are available for purchase.
This review makes no mention if you have to purchase anything to build a storefront using PrestaShop, or if the standard OSS version will suffice. Nor does this review give any technical details on setting the thing up, including any dependencies on existing relationships with payment processors / merchant accounts. Perhaps the author could have talked about the example store he setup, and used his praise of the book to illustrate his example.
You can try Spam Mimic. It has been around for years (since around 2000).
http://www.spammimic.com/explain.shtml
Decode this:
Dear Friend , Thank-you for your interest in our publication .com on
. We will comply with all removal requests . This mail
is being sent in compliance with Senate bill 1623 ;
Title 1 , Section 301 . This is different than anything
else you've seen . Why work for somebody else when
you can become rich as few as 58 weeks ! Have you ever
noticed more people than ever are surfing the web plus
nobody is getting any younger . Well, now is your chance
to capitalize on this ! We will help you increase customer
response by 110% & deliver goods right to the customer's
doorstep ! You are guaranteed to succeed because we
take all the risk . But don't believe us ! Mr Simpson
of Washington tried us and says "Now I'm rich, Rich,
RICH" ! We are a BBB member in good standing . We beseech
you - act now . Sign up a friend and you'll get a discount
of 30% . God Bless ! Dear Sir or Madam , Thank-you
for your interest in our publication . If you no longer
wish to receive our publications simply reply with
a Subject: of "REMOVE" and you will immediately be
removed from our mailing list . This mail is being
sent in compliance with Senate bill 1621 , Title 4
; Section 308 . This is different than anything else
you've seen ! Why work for somebody else when you can
become rich as few as 18 weeks ! Have you ever noticed
nearly every commercial on television has a
in it plus people love convenience ! Well, now is your
chance to capitalize on this . We will help you sell
more and deliver goods right to the customer's doorstep
! The best thing about our system is that it is absolutely
risk free for you ! But don't believe us . Mrs Simpson
of Mississippi tried us and says "Now I'm rich many
more things are possible" . This offer is 100% legal
! We beseech you - act now ! Sign up a friend and you
get half off ! Best regards ! Dear Cybercitizen , Your
email address has been submitted to us indicating your
interest in our letter . If you no longer wish to receive
our publications simply reply with a Subject: of "REMOVE"
and you will immediately be removed from our mailing
list . This mail is being sent in compliance with Senate
bill 1625 ; Title 4 ; Section 301 . This is a ligitimate
business proposal . Why work for somebody else when
you can become rich as few as 93 days ! Have you ever
noticed how many people you know are on the Internet
& society seems to be moving faster and faster . Well,
now is your chance to capitalize on this . We will
help you process your orders within seconds plus process
your orders within seconds . You can begin at absolutely
no cost to you . But don't believe us ! Mr Ames who
resides in Montana tried us and says "I was skeptical
but it worked for me" ! We are a BBB member in good
standing ! We beseech you - act now ! Sign up a friend
and you'll get a discount of 60% . Warmest regards
!
Unfortunately, the punctuation has whitespace around it, which is pretty obvious to look for. But you could create your own algorithm, in addition to the other versions on the site.
No. Local repositories make a lot of sense, even if you only have a handful of machines, especially if you upgrade them every 6 months. Any more than a handful, you should be encouraged to run a local repo, even if you have all the bandwidth you need; it's polite to not download the same thing 100 times.
A kernel update heavily outweighs a compact web page.
Java has great 3D support. Java Monkey Engine is a popular library.
List of samples/games: (go up to the main wiki page for details about the library; docs are amazing)
http://www.jmonkeyengine.com/wiki/doku.php/showcase
And how do you know the firmware binary you are installing is free of malware? How do you know the Windows/Linux binary application used to install the firmware is also free of malware? None of that software is open.
Back when I used Windows, I always changed the PuTTY font to "Terminal 9pt" (and increased the window size of course). Then each new server would clone a previous config.
Looks cool, and once started the paddle tracks my mouse, but the ball never bounces back.
Firefox 3.6 on linux.
Perhaps secure from a random researcher, but not secure from a dissident's point of view. If the encryption is not end-to-end (with client-managed PKs), then it is useless, even if it's strong and secure.
The problem is, no one knows if the link is only encrypted between the clients and the server, or only encrypted between the clients. We also don't know if each client maintains its own private asymmetric key or if the server is the only private key holder.
You have to think about Joe Sixpack (or the equivalent of a recent Internet user) first typing in _____.com, then .net, then .org (or perhaps even .org over .net). Unfortunately for domain owners, the other top level domains will not be tried; instead the user will attempt a search.
I figure we slashdotters would climb on just about anything too...
That's exactly what Xenna said: you must claim that the therapy works in order to have the placebo effect.
If the acupuncturist said, "What I'm about to perform with these needles won't directly cause you pain relief (and I may not even prick your skin), but as long as you believe it works you may feel better", they might not get a lot of repeat customers.
Uh, that's because most water tables are large, so if you are above one, you can pretty much poke a well anywhere and find water. Of course the depth of each well may vary depending on substrate and which water table you actually hit. Also, the rate of available water (to pump or even if naturally pressurized) depends on the water table you strike.
Sorry man, you fell for the scam. (He may have "witched" past wells in the larger area and has studied the underlying aquifers. Every well drilled to depth and through various substrate will inform him. Shit, he may be a Geology drop-out.)
This is their code, simply s/[/</g and s/]/>/g
[!-- Experimental framebusting code --]
[style] html { visibility : hidden;} [/style]
[script]
if (self == top) { document.documentElement.style.visibility = "visible"; }
else { top.location = self.location; }
[/script]
[!-- End framebusting code --]
With the local in-line script, could you not first use javascript to change the CSS visibility of the page to hidden, then run their check that returns it to visible? Then for users without javascript, the raw page would at least display? If javascript is disabled, those users shouldn't have to worry about click jacking even if they still get a frame.
Same Origin should prevent the frame from modifying the scripts within it.
According to the DENIC registrar's mailing list, this was just an administrative fuckup. DENIC apparently runs Bind, (on at least the 4 affected logical servers) and they reloaded Bind with an empty zone file. Since the six logical servers are all authoritative, the empty-zone-file servers replied with NXDOMAIN (as they should have).
The parent is correct, non-existent domain responses should only be cached for 2 hours.
Since .de is the largest ccTLD (by count of registrations), this is a pretty big deal. On April 3 2010, there were 13.5 million registered .de domains. I wonder how long it took Bind to start with that many zones!