"The first fact to face is that UNIX was not developed with security, in any realistic sense, in mind; this fact alone guarantees a vast number of holes. (Actually the same statement can be made with respect to most systems.)"
-- Dennis Ritchie, 1979
That's the big difference between all non-MS operating systems and MS. The whole damn world knows that systems are insecure, and that safeguards must be taken, not only to avoid known exploits, but to be prepared for future exploits.
MS shows no remorse or shame every time they're caught with their pants down. Microsoft attitude to security is the same as their attitude to bugs in general. If it sells, why bother fixing it?
I can guarantee you all that Microsoft will continue to ignore security. Untill the day when the computer security industry (antivirus software, firewalls, etc.) is so big that Microsoft decides to corner that market. What a sweet deal that will be for them. It's like having a pharmaceutical company releasing a plague so that they can sell you medicine.
Q: As a result of this case, what is Adobe doing to strengthen the security of its products?
A: Security is an ongoing effort at Adobe. The company is committed to strengthening the security of its products by using
sophisticated, industry-standard levels of software encryption and working with the software community, including White Hat
security experts, to incorporate features to advance the quality of the product.
industry-standard level of encryption? Which industry would that be? Adobe eBooks encryption was written by a guy named Leisure Suit Larry, and the password is "Ken sent me"
In addition, adobe is now encouraging people to violate the DMCA. White Hat activity to circumvent copyright protection gadgets is forbidden according to DMCA. I can't believe they're so stupid as to mention it at all.
What they really mean to say is: "We really didn't want to miss out on the electronic book goldrush. So we slapped some security code( nudge nudge ) on top of pdf, and managed to sell the solution (nudge nudge) to clueless publishers and merchants. Poor suckers. However, starting today, we're going to be really really good. And we hope that some guys with White Hats will help us. We hear they're good at beating up hackers and other scum, so that will provide pleny security"
U.S laws on encryption have always been a weapon against the individual, and an instrument for government and corporations. For many years, encryption could not be exported, and it was illegal to use encryption for personal communication.
People who wanted to keep their correspondence private, were treated as if they were international arms dealers.
Last year, or was it '99 the export restrictions was relaxed a bit, but only to protect U.S business. Suddenly U.S laws were more lax than Chinese laws, and only a few days after, US tried to threaten China. I found it very ironic that U.S blasted China for having too strict laws on encryption.
Now the only legal uses of encryption are:
1) A tool to remove the rights for fair use.
2) A tool to allow for secure finanancial transactions
I have no faith that the superior court will right this wrong, though. This court has been there for hundreds of years. The judges are appointed by presidents, and they appoint judges who have sympathy for that president's party. The slashdot crowd is outraged by these events, but the man in the street could not care less.
The constitution is open to interpretation. In this case the judges must weigh freedom of speech, and right of use against large corporations right of property. We may think that these cases are slam dunks, but the superior court, currently having a republican majority is very fond of the property bits of the law.
All adobe has to do in order to please the judges, is to accomodate fair use on a case-by-base basis.
If a literary critic, or a scholar want to use a quote from an ebook, they'd have to contsact the publisher, prove that they own the book, and specify which excerpts they want. They may even require the fair-use people to copy-protect the derived publication.
Face it, 99% of the people don't give a damn about freedom of speech. They might think they do, but only if it requires no effort on their part, and if all free speech is not offending them. Freedom FROM speech seems to much more popular. That's why there are no cusswords and visible nipples on network television.
Maybe 0.5% is strongly for 1st amendment, and the other 0.5% is strongly against it, and the 0.5% who are against it have the money to buy the legislation, and fight the court battles.
Sounds like this Program Manager is trying to pull a Rambus. Everyone knows how well that went.
In the article, ECMA's geral secretary refutes the MS claims. It's probably some lame misunderstanding. And if not, they've dug a nice big hole for themselves.
I alse see Csound is on of the packages. Csound is pretty amazing stuff that can create unique synthetical music. And now that CPU's are getting a lot faster, it can probably be used to play music in realtime.
As opposed to Midi, a csound instrument can have an unlimited number of parameters. This distro could become the most powerful music creation platform ever.
If I had a webmaster writing any form of asp pages, I'd instantly fire him/her. If I had web developers targeting a specific browser, I'd fire them in a heartbeat. I'd probably fire you if given half a chance.
The sale of alcohol in whatever county Lynchburg is situated is illegal, hence the popular rumors.
So how are the JD guys making any money if they can't sell their hooch? Give it away and hope to make it up on volume? Sounds like the business plan of the average fucked
company to me.
co-location is a good alternative.
(and cheaper in the long run)
Absolutely not true. Outsourcing is the very cheapest way to do this for a small company.
If your company is very small, less than 20 people, outsourcing of email, as well as hosting of a web site, can be had for as little as $20 a month. Shop around and find a reliable provider for the right price.
By doing it yourself, you'll be spending a lot more than $20 a month. Assuming that your time is worth $80 per hour to your company, this is what it would cost to do it yourself:
If you have not already set up a mail system before, 2 days to learn how to configure and set up the box and mail software. 16 hours.
2 hours per month for basic maintenance such as backup, software updates, security updates etc.
Cost of server. Can probably use a cheap server, lets say $1000.
Backup media. $50 should cover it.
So how much for DIY: initial cost of $1280+$1000+$50, and recurring monthly cost of $160. In 2 years DIY would have cost you $6170. And that's not counting time and money wasted every time new admins need to be showed the ropes.
For outsourcing I'll assume 8 hours work to find the right provider, and a monthly charge of $20. Total cost over 2 years: $1120
And I am not pulling these numbers out of my ass, The small company I work for pays $19.95 for our mail accounts, including web space. So far we have not had a single problem. It just works, and we never have to think about it. And if the current provider one day bails out, it would be a quick and simple thing to get another provider, update the whois and dns entries, and there you go.
Generally, I think 'audiophiles' are big into self-deception.
Agree. But them being audiophiles may explain why they found mp3 to be OK. Audiophiles tend to like a very dry and clinical performance. As far as I can tell, mp3 keeps the things audiophiles care about, but drops the tings musicians care about. So when an mp3 recording sounds dry, the audiophile is happy, because dry is what they want.
Which is the very opposite of what musicians like. Musicians like some extra punch in the bass line, and they like a rich sound. They prefer playing in rooms with plenty reverb, because it gives their performance more color, and they can communicate much better when they can hear each other (and themselves). Audiophiles prefer to listen to their music in padded rooms, and they like to be able to isolate every single instrument.
Which again is the exact opposite of what the musicians like. An ensemble tries to play so that they sound like a single powerful instrument. They try to balance their chords, and paint powerful sound pictures.
Which is the opposite of what the audiophile wants. He wants to see every pencil stroke, not the picture.
archaic : of or relating to a household or its management
ECONOMICAL
of or relating to economics
of, relating to, or based on the production, distribution, and consumption of goods and services
of or relating to an economy
having practical or industrial significance or uses : affecting material resources
PROFITABLE
You seem to refer to the PROFITABLE part of economical. It's true, the alternative power sources are not as profitable as fossil fuels, but they are still more economical in terms of resource consumption. Consumption of fossil fuels not only taxes non-renewable resources, they also tax other resources such as fresh air, wildlife, clean water.
If you use the term economic, you need to include these resources, too. Since legislators, corporations, and the grey masses of brainless consumerbots, still consider fresh air and clean water to be unlimited and free resources, the only way to get any progress is to put a price tag on these resources. This can be done by taxation. The proceeds from the taxation can then be used to pay for the recovery of of these vital resources.
Sounds like paradise on earth. Lots of breweries and not a single Starbucks. Starbucks coffee suck bigtime. Their burn their beans when they roast them, so that their pretentious clientele think that they are drinking "finer" coffee, because of the burnt taste.
One of the strengths of the PC industry is the modularity. This allows PC makers to introduce new models quickly, and reduce inventory. We have just in time manufacturing, with an almost unlimited choice of component vendors.
By changing to a model where everything is integrated, the PC industry would lose this advantage. PC makers who move to a proprietary, closed model would lose out to PC makers confirming to modular standards.
Let's say intel started building integrated systems, and DELL, Compaq, and Gateway resold these systems by slapping stickers on them. Now these companies would be forced to have inventories of components $500 a piece, instead of $100-$200 a piece. Their margins would shrink, inventories increase, and they would not be able to react to changing market conditions and customer demand.
PC makers who stick with a modularized model, would be much more nimble, have less inventories, and would be able to add new features and technologies as soon as component manufacturers came up with new things. The part of the industry who depended on fully integrated systems, would always end up being 6 months behind the curve.
I think the author completely missed the advantages of JIT manufactoring. The auto industry used almost 100 years to move to such a model. Although the finished car is less accessible to hackers, the process of building a the car is somewhat similar to the way PC's are built. Car manufacturers rely on 100's of reduntant vendors.
PC form factors and buses may change, but I still think that the future is not proprietary integrated systems. The advantages of having competing vendors making the components are too big.
And for mysql AB, they now can turn to a UN committe that deals with cybersquatting. Being the owner of the trademark, they're almost guaranteed victory. If the nusphere guys have any business acumen and decency, they'll voluntarily give up the domain, and concentrate on their own business, instead of stealing from others.
There's an rfc for VOIP E911. Cell phone providers are required to provide full E911 functionality this year sometime. I think it's October 1., but not sure about that. Try a google search, and be informed.
59 cents/s that's $59000 a day! Holy moly! If his rc5 clients could use that kind of bandwidth, he'd singlehandedly crack the 64 bit key challenge in a couple of days. The Uni should send him the power bill, too. That kind of key cracking must have consumed more electricity than the whole state of Georgia.
Weather satellites would have been able to measure a distinct spike of ultrared coming from campus.
Heck, I'm surprised the campus did't blow up or melt.
By overshooting with such an insane amount, the university will not have credibility in court. I bet even a demented old judge wold be sharp ewnough to send these guys packing. Rc5 uses very little network bandwith. A CPU needs several minutes to process a single key.
He must have pissed someone off, or paranoid pointy-haired beancounters must have gone totally berserk at Georgia.
I bet that if we calculated the dollar cost for the network bandwidth of his rc5 clients, it'll be around the average for a student's surfing budget. I bet my 2 pennies that a download of cnn's homepage including banner ads and graphics, consumes enough bandwith to do a week's worth of rc5 transfers for a handful machines.
Compaq must really hate their customers.
Here's are all the options that are on by default:
Setup the WBEM HTTP server to automatically configure local IP addresses as part of the
ADMINISTRATOR group. This means that any user with access to the local console will be granted full access to the WBEM components, without being challenged for a username and password. (ON)
Automatically delete user directories that have not been accessed within the last days. This is an effective mechanism for only keeping information on the system for active users. (ON) (WTF! Oops, last years holiday photos just disappeared. Junior, did you delete dad's pr0n collection?)
Allow the WBEM HTTP server to participate in HTTP auto-discovery of managed nodes. If enabled, the WBEM HTTP server will broadcast HTTP auto-discovery packets every (default 1) minute(s).
Allow the WBEM HTTM server to participate in HTTP auto-discovery of managed nodes as a Master HMMD. (ON) (This probably means something, but not to the average compaq customer)
It's not a big thing, but Compaq got this remote web management included (and enabled by default) on their PCs. Every few seconds, they broadcast to port 2301, hitting thousands of machines on mediaone's cable network.
Anyone can point their web browser to the luser's machine, and have a look at the HW, even kick off HW diagnostics. Wonder how many of these eventually end up as script kiddie fodder.
Thanks. That was a fun read. Especially Klotz and Stacy's discussions. Must have been really fun having such power over such an angry man. Some things you just can't buy for money.
Pournelle was even lame enough to give them a bonus: "Mr. Pournelle bids me tell you that if you intended to annoy him, you have succeeded,...".
Must have been very rewarding.
These programs are boring soap operas in an outer space setting. Which is why they are called space operas. Calling it science fiction is very pretentious and a disservice to the genre.
If you want science fiction, read some books instead. In general I find short fiction to be the most interesting, but your milage may vary.
Mod me down, I don't care. On this particular subject, I'm happy to be a troll.
Re:Wired News has an article...
on
SMS vs. E-mail?
·
· Score: 2
Yup.
U.S is entering the wireless world with a disadvantage. I always thought that paying for airtime was a ridicolous idea.
The U.S. telco giants all aim at achieving world dominance and monopoly. Those very goals is the reason that they will achieve neither, and that they will be midgets standing in the way of innovation.
Re:The only thing that helps is taxes
on
Eco-Terrorism
·
· Score: 1
Maybe wrongly chosen words from my side. High taxes on gasoline and large vehicles would give 2 things:
1) Money to local, state,federal, and international government. If the tax is earmarked as an environmental tax, the proceeds would go to conserve wetlands, forests. Subsidize clean public transportation, fund clean energy research, fund campaigns on environmental matters. (shouldn't the government have warned against SUVs? They warn about tobacco. Where's the difference?)
2) But the taxes not collected would have an even greater effect.
A higher tax would cause people to chose smaller, more economic cars, and thus contribute to cleaner air.
Slashdot Mirror
-- Dennis Ritchie, 1979
That's the big difference between all non-MS operating systems and MS. The whole damn world knows that systems are insecure, and that safeguards must be taken, not only to avoid known exploits, but to be prepared for future exploits. MS shows no remorse or shame every time they're caught with their pants down. Microsoft attitude to security is the same as their attitude to bugs in general. If it sells, why bother fixing it?
I can guarantee you all that Microsoft will continue to ignore security. Untill the day when the computer security industry (antivirus software, firewalls, etc.) is so big that Microsoft decides to corner that market. What a sweet deal that will be for them. It's like having a pharmaceutical company releasing a plague so that they can sell you medicine.
A: Security is an ongoing effort at Adobe. The company is committed to strengthening the security of its products by using sophisticated, industry-standard levels of software encryption and working with the software community, including White Hat security experts, to incorporate features to advance the quality of the product.
industry-standard level of encryption? Which industry would that be? Adobe eBooks encryption was written by a guy named Leisure Suit Larry, and the password is "Ken sent me"
In addition, adobe is now encouraging people to violate the DMCA. White Hat activity to circumvent copyright protection gadgets is forbidden according to DMCA. I can't believe they're so stupid as to mention it at all.
What they really mean to say is: "We really didn't want to miss out on the electronic book goldrush. So we slapped some security code( nudge nudge ) on top of pdf, and managed to sell the solution (nudge nudge) to clueless publishers and merchants. Poor suckers. However, starting today, we're going to be really really good. And we hope that some guys with White Hats will help us. We hear they're good at beating up hackers and other scum, so that will provide pleny security"
People who wanted to keep their correspondence private, were treated as if they were international arms dealers.
Last year, or was it '99 the export restrictions was relaxed a bit, but only to protect U.S business. Suddenly U.S laws were more lax than Chinese laws, and only a few days after, US tried to threaten China. I found it very ironic that U.S blasted China for having too strict laws on encryption.
Now the only legal uses of encryption are: 1) A tool to remove the rights for fair use.
2) A tool to allow for secure finanancial transactions
I have no faith that the superior court will right this wrong, though. This court has been there for hundreds of years. The judges are appointed by presidents, and they appoint judges who have sympathy for that president's party. The slashdot crowd is outraged by these events, but the man in the street could not care less.
The constitution is open to interpretation. In this case the judges must weigh freedom of speech, and right of use against large corporations right of property. We may think that these cases are slam dunks, but the superior court, currently having a republican majority is very fond of the property bits of the law.
All adobe has to do in order to please the judges, is to accomodate fair use on a case-by-base basis. If a literary critic, or a scholar want to use a quote from an ebook, they'd have to contsact the publisher, prove that they own the book, and specify which excerpts they want. They may even require the fair-use people to copy-protect the derived publication.
Face it, 99% of the people don't give a damn about freedom of speech. They might think they do, but only if it requires no effort on their part, and if all free speech is not offending them. Freedom FROM speech seems to much more popular. That's why there are no cusswords and visible nipples on network television.
Maybe 0.5% is strongly for 1st amendment, and the other 0.5% is strongly against it, and the 0.5% who are against it have the money to buy the legislation, and fight the court battles.
In the article, ECMA's geral secretary refutes the MS claims. It's probably some lame misunderstanding. And if not, they've dug a nice big hole for themselves.
As opposed to Midi, a csound instrument can have an unlimited number of parameters. This distro could become the most powerful music creation platform ever.
If I had a webmaster writing any form of asp pages, I'd instantly fire him/her. If I had web developers targeting a specific browser, I'd fire them in a heartbeat. I'd probably fire you if given half a chance.
So how are the JD guys making any money if they can't sell their hooch? Give it away and hope to make it up on volume? Sounds like the business plan of the average fucked company to me.
Absolutely not true. Outsourcing is the very cheapest way to do this for a small company.
If your company is very small, less than 20 people, outsourcing of email, as well as hosting of a web site, can be had for as little as $20 a month. Shop around and find a reliable provider for the right price.
By doing it yourself, you'll be spending a lot more than $20 a month. Assuming that your time is worth $80 per hour to your company, this is what it would cost to do it yourself:
If you have not already set up a mail system before, 2 days to learn how to configure and set up the box and mail software. 16 hours.
2 hours per month for basic maintenance such as backup, software updates, security updates etc.
Cost of server. Can probably use a cheap server, lets say $1000.
Backup media. $50 should cover it.
So how much for DIY: initial cost of $1280+$1000+$50, and recurring monthly cost of $160. In 2 years DIY would have cost you $6170. And that's not counting time and money wasted every time new admins need to be showed the ropes.
For outsourcing I'll assume 8 hours work to find the right provider, and a monthly charge of $20. Total cost over 2 years: $1120
And I am not pulling these numbers out of my ass, The small company I work for pays $19.95 for our mail accounts, including web space. So far we have not had a single problem. It just works, and we never have to think about it. And if the current provider one day bails out, it would be a quick and simple thing to get another provider, update the whois and dns entries, and there you go.
Agree. But them being audiophiles may explain why they found mp3 to be OK. Audiophiles tend to like a very dry and clinical performance. As far as I can tell, mp3 keeps the things audiophiles care about, but drops the tings musicians care about. So when an mp3 recording sounds dry, the audiophile is happy, because dry is what they want.
Which is the very opposite of what musicians like. Musicians like some extra punch in the bass line, and they like a rich sound. They prefer playing in rooms with plenty reverb, because it gives their performance more color, and they can communicate much better when they can hear each other (and themselves). Audiophiles prefer to listen to their music in padded rooms, and they like to be able to isolate every single instrument.
Which again is the exact opposite of what the musicians like. An ensemble tries to play so that they sound like a single powerful instrument. They try to balance their chords, and paint powerful sound pictures.
Which is the opposite of what the audiophile wants. He wants to see every pencil stroke, not the picture.
economic
You seem to refer to the PROFITABLE part of economical. It's true, the alternative power sources are not as profitable as fossil fuels, but they are still more economical in terms of resource consumption. Consumption of fossil fuels not only taxes non-renewable resources, they also tax other resources such as fresh air, wildlife, clean water.
If you use the term economic, you need to include these resources, too. Since legislators, corporations, and the grey masses of brainless consumerbots, still consider fresh air and clean water to be unlimited and free resources, the only way to get any progress is to put a price tag on these resources. This can be done by taxation. The proceeds from the taxation can then be used to pay for the recovery of of these vital resources.
Troll.
nobody will remember the expression "going postal", instead they'll say "going nasal"
Sounds like paradise on earth. Lots of breweries and not a single Starbucks. Starbucks coffee suck bigtime. Their burn their beans when they roast them, so that their pretentious clientele think that they are drinking "finer" coffee, because of the burnt taste.
By changing to a model where everything is integrated, the PC industry would lose this advantage. PC makers who move to a proprietary, closed model would lose out to PC makers confirming to modular standards.
Let's say intel started building integrated systems, and DELL, Compaq, and Gateway resold these systems by slapping stickers on them. Now these companies would be forced to have inventories of components $500 a piece, instead of $100-$200 a piece. Their margins would shrink, inventories increase, and they would not be able to react to changing market conditions and customer demand.
PC makers who stick with a modularized model, would be much more nimble, have less inventories, and would be able to add new features and technologies as soon as component manufacturers came up with new things. The part of the industry who depended on fully integrated systems, would always end up being 6 months behind the curve.
I think the author completely missed the advantages of JIT manufactoring. The auto industry used almost 100 years to move to such a model. Although the finished car is less accessible to hackers, the process of building a the car is somewhat similar to the way PC's are built. Car manufacturers rely on 100's of reduntant vendors.
PC form factors and buses may change, but I still think that the future is not proprietary integrated systems. The advantages of having competing vendors making the components are too big.
And for mysql AB, they now can turn to a UN committe that deals with cybersquatting. Being the owner of the trademark, they're almost guaranteed victory. If the nusphere guys have any business acumen and decency, they'll voluntarily give up the domain, and concentrate on their own business, instead of stealing from others.
I cad say sediment whed I god this nasty cod. No reason to be pigging on me for that.
There's an rfc for VOIP E911. Cell phone providers are required to provide full E911 functionality this year sometime. I think it's October 1., but not sure about that. Try a google search, and be informed.
By overshooting with such an insane amount, the university will not have credibility in court. I bet even a demented old judge wold be sharp ewnough to send these guys packing. Rc5 uses very little network bandwith. A CPU needs several minutes to process a single key.
He must have pissed someone off, or paranoid pointy-haired beancounters must have gone totally berserk at Georgia.
I bet that if we calculated the dollar cost for the network bandwidth of his rc5 clients, it'll be around the average for a student's surfing budget. I bet my 2 pennies that a download of cnn's homepage including banner ads and graphics, consumes enough bandwith to do a week's worth of rc5 transfers for a handful machines.
What a bunch of losers! Everybody knows that the internet is Internet Explorer.
Setup the WBEM HTTP server to automatically configure local IP addresses as part of the ADMINISTRATOR group. This means that any user with access to the local console will be granted full access to the WBEM components, without being challenged for a username and password. (ON)
Automatically delete user directories that have not been accessed within the last days. This is an effective mechanism for only keeping information on the system for active users. (ON) (WTF! Oops, last years holiday photos just disappeared. Junior, did you delete dad's pr0n collection?)
Allow the WBEM HTTP server to participate in HTTP auto-discovery of managed nodes. If enabled, the WBEM HTTP server will broadcast HTTP auto-discovery packets every (default 1) minute(s).
Allow the WBEM HTTM server to participate in HTTP auto-discovery of managed nodes as a Master HMMD. (ON) (This probably means something, but not to the average compaq customer)
Anyone can point their web browser to the luser's machine, and have a look at the HW, even kick off HW diagnostics. Wonder how many of these eventually end up as script kiddie fodder.
Pournelle was even lame enough to give them a bonus: "Mr. Pournelle bids me tell you that if you intended to annoy him, you have succeeded,...". Must have been very rewarding.
If you want science fiction, read some books instead. In general I find short fiction to be the most interesting, but your milage may vary.
Mod me down, I don't care. On this particular subject, I'm happy to be a troll.
U.S is entering the wireless world with a disadvantage. I always thought that paying for airtime was a ridicolous idea.
The U.S. telco giants all aim at achieving world dominance and monopoly. Those very goals is the reason that they will achieve neither, and that they will be midgets standing in the way of innovation.
1) Money to local, state,federal, and international government. If the tax is earmarked as an environmental tax, the proceeds would go to conserve wetlands, forests. Subsidize clean public transportation, fund clean energy research, fund campaigns on environmental matters. (shouldn't the government have warned against SUVs? They warn about tobacco. Where's the difference?)
2) But the taxes not collected would have an even greater effect. A higher tax would cause people to chose smaller, more economic cars, and thus contribute to cleaner air.