ActiveX is integrated into the Web Browser known as IE. IE is integrated into the Operating System. It's a cascading effect. Anything that Microsoft integrates into the web browser, Internet Explorer, is thus effectively integrated into the OS.
Oh, you thought you actually had something there...
So really, you have no idea what you are talking about.
The use of RPC is a security risk and should never be used unless absolutely necesary. On the exact same machine services should NEVER use RPC to perform tasks. This should be performed through loopback interfaces, named pipes and similar.
RPC isn't something you can fully and easily secure, regardless of the coding practices involved.
If it was a valid option, then the applications I listed in my previous post wouldn't have been coded to use RPC when on seperate machines and needing to communicate to one another and then named pipes and loopback interfaces when on the same system.
Why do you think anyone want to "waste" the time to program two different methods of interprocess communication for something like a Database and Web Server?
It's not done for shins and giggles. (Replace 'n' with 't')
Remember, this came from UNIX programmers, these are the kind of programmers that pride themselves on being "lazy", hence 'cp', 'mv', 'rm', instead of 'copy', 'move' and 'remove'. (At least that is the explanation I have read countless times regarding why those commands have those names, with limited memory space being a second and lesser reason.)
Why would self-proclaimed "lazy" programmers create those two communications methods for such services?
Hint: They didn't want to have to back over the same code time and time again to attempt to patch, patch and patch their way to "victory" over security issues.
Well, ActiveX was really initially designed to not only "kill" Java (which didn't work), but also to attempt to lock everyone into using Windows running PCs for using the Internet. (Thank whatever belief system you have that didn't work.)
By tying ActiveX so tightly into the OS, they not only succeeded in making ActiveX an almost required component of any Windows Installation, they also knee-capped themselves in regards to handling security. Unless it is seperated from OS, ActiveX will always be a threat to the security of a Windows PC.
Of course, if the base design philosophy is flawed to begin with, even if they could "patch everything" the would likely be better off rewriting from the ground up.
Many components of Windows and MS Software on Windows utilized Remote Procedure Calls, even if the applications are on the same exact system. This is inherently flawed, as shown in many past MS Windows exploits. Just look at the MS-SQL expoits as perfect examples.
If designed with security, instead of "ease of coding" was the design from the start, RPC wouldn't be used for communication between processes on the exact same piece of hardware. This is how it is done with MySQL and Apache on Linux and why RPC exploits won't work if those services are running on the exact same hardware.
The list of flawed design decisions that went into Windows at the very beginning continue to haunt the Windows Operating System to this day. No, I am not some blind unqualified moron making these statements, I manage Windows desktops for a living, used to work full time with Windows Servers and one of my hobbies has been looking into OS architecture design and how it relates to system security.
...business model into existence and I suppose he owns the patent or is currently in the process of getting a patent on radically and fundamentally altering the structure of the Internet.
What an ignorant "technology guy". Seriously.
All he could do is create a friggin' nation wide ISP that has strong Porn filters and then he can sell that service to Religious Fundies across America. Then, they can "feel safe" with their "protected" Broadband or dial-up handicapped Internet.
It is absolutely ludicrous that the entire infrastructure of the Internet and network technology be reworked to support his hairbrained scheme of obtainig "teh big pile" of money.
After 5 to 7 years of continuous to near-continouos operation, I would be looking at moving those servers to a back-up position and replace them with newer hardware. Of course, I am not dealing with mainframes and I can barely get the management to let me purchase a server that costs more then $1200 altogether...
That's how long I have been playing and in that time the game has grown by leaps and bounds. I like the Combat Upgrade change, but I love the NGE change even more.
Star Wars Galaxies is going to keep getting better, but if MMORPGs aren't your thing, then they aren't your thing.
The NGE took serious care of the system-resource-intensive issue.
In the Old Game, I had to keep most of the graphics choices cranked to Zero to get consistent Frames Per Second performance, regardless of where I went. Even then, highly populated areas totally blew that down the tubes and gave me almost no FPS.
In the NGE, I have been able to crank everything back up near the top again and I am obtaining VERY consistent FPS, regardless of where I am and how many people are in a given area.
The rest of the NGE is also simple awesome in comparison to the old game. I couldn't go back to playing the old game.
I played the NGE Test Center servers and I was HIGHLY skeptical, because of the poor performance and some of the very buggy issues I kept experiencing. In the live version, none of those bugs are present and it just works very well.
My whole SWG guild was skeptical, I was one of the two hardcore TC subjects reporting to my PA, a few others entered the TC game briefly, but not as long as two of us did. After playing the Live version, not one of them has decided to cancel their account, in fact they are all more happy with what we have now, then what we had before.
As I have experienced since day one of the original release of SWG, the game is simply getting better and better.
It's not the Ethics Boat that they missed. They actually missed the Clue Train, if they had made it, then they would have had a clue that people don't want their "Shopping Bot" shoved down their throat...
Except the blasted media only calls them "Computer Worms", they do not mention Windows as the problem. That is why everytime one of those stupid announcements make it onto "Good Morning America", I get a call from the boss asking if our servers are safe and everytime, I have to say, that is a Windows problem, not a Linux problem.
It's annoying that they don't call those Windows Worms/Virus/Trojan attacks...
...on Slashdot still believe in that fairy tale of the dangers of Hydrogen?
Hasn't there been something like a dozen or stories in the past 5 years about the problems that faced the Hindenburg, the burning of Hydrogen, the Underwriter's Laboratories testing of both a Gasoline and Hydrogen fueled automobile, just to name a few.
Get with it people, this is afterall a news site that claims "News for Nerds. Stuff that matters."
This is the kind of crap that we "Nerds" are supposed to know.
Have you ever seen a Database "constructed" by someone who knows nothing about Database design?
Easier to use tools will make it all the much easier for Oracle DBAs to quickly repair and rebuild or begin anew a DB created from a person with a Microsoft Access 101 class under his/her belt.
Man, that would be something else, if Google were to get behind a Linux Distribution.
With the people they hire, can you imagine the kind of whiz-bang software (That really works!) they would add to "Google Linux" (or should it be called Googlix?...or Goognux?)
Re:How much difference between Java and C++?
on
OpenOffice Bloated?
·
· Score: 1
If you close the "OpenOffice" quick starter application, after disabling Java (As I just did) you will indeed notice an increase in loadup speed from a "Cold start".
It is impressive.
Now, if for some reason, I need Java, I can always enable it later and then restart the application for the time that I will need Java.
Seriously, where the hell did he come up with that idea?
Is it because he has seen someone use JAWS (A program for blind people to use PCs through voice commands) and only happened to see them use it with MSOffic?...or is he thinking that the crappy Voice Recognition software that is part of MSOffice and not in OpenOffice, StarOffice and other OpenDocument Office Suites make MSOffice 'teh bestest' for disabled people?
Actually, there's a significant number of updates that can applied to a compromised server, without rebooting the server. Thus enabling the cracker to "lock-down" the server to keep others from cracking what he/she has already cracked, without necesarily alerting the administrator of the server. For most important Windows security patches, there is still a need to reboot the machine, which could cause a noticeable lapse of service, enough for an Administrator to perhaps investigate the cause.
Anyway, if you know your crap and are out to compromise servers, then you can easily determine what kind of server Apache is running on. If you then really know your crap and compromise that Apache server, chances are you have a very powerful OS via some form of UNIX for which to direct new attacks from.
There's far more of a difference between Windows XP and Windows 2000, then just a graphical skin. The methods for accessing a handful of configuration settings windows has altered and in some cases, those configuration modules have changed significantly on their own.
To say that there won't be changes beyond simple "Graphical skins" simply does not hold with the historical perspective of the sweeping changes with each major iteration of Windows.
Windows 3.11 to Windows 95 to Windows 98 to WindowsMe, there were underlying configuration changes that made learning the "new" OS important.
Windows NT 3.5 to Windows NT 4.0 to Windows 2000 to Windows XP also included significant configuration setting alterations that were far more drastic then the "Consumer Level" Windows Operating Systems.
I was simply pointing out that a corporation can consist of one single person acting as controlling interest, the board, the president and soul employee. Do you read before you post?
Slashdot Mirror
ActiveX is integrated into the Web Browser known as IE. IE is integrated into the Operating System. It's a cascading effect. Anything that Microsoft integrates into the web browser, Internet Explorer, is thus effectively integrated into the OS.
Oh, you thought you actually had something there...
So really, you have no idea what you are talking about.
The use of RPC is a security risk and should never be used unless absolutely necesary. On the exact same machine services should NEVER use RPC to perform tasks. This should be performed through loopback interfaces, named pipes and similar.
RPC isn't something you can fully and easily secure, regardless of the coding practices involved.
If it was a valid option, then the applications I listed in my previous post wouldn't have been coded to use RPC when on seperate machines and needing to communicate to one another and then named pipes and loopback interfaces when on the same system.
Why do you think anyone want to "waste" the time to program two different methods of interprocess communication for something like a Database and Web Server?
It's not done for shins and giggles. (Replace 'n' with 't')
Remember, this came from UNIX programmers, these are the kind of programmers that pride themselves on being "lazy", hence 'cp', 'mv', 'rm', instead of 'copy', 'move' and 'remove'. (At least that is the explanation I have read countless times regarding why those commands have those names, with limited memory space being a second and lesser reason.)
Why would self-proclaimed "lazy" programmers create those two communications methods for such services?
Hint: They didn't want to have to back over the same code time and time again to attempt to patch, patch and patch their way to "victory" over security issues.
Well, ActiveX was really initially designed to not only "kill" Java (which didn't work), but also to attempt to lock everyone into using Windows running PCs for using the Internet. (Thank whatever belief system you have that didn't work.)
By tying ActiveX so tightly into the OS, they not only succeeded in making ActiveX an almost required component of any Windows Installation, they also knee-capped themselves in regards to handling security. Unless it is seperated from OS, ActiveX will always be a threat to the security of a Windows PC.
Of course, if the base design philosophy is flawed to begin with, even if they could "patch everything" the would likely be better off rewriting from the ground up.
Many components of Windows and MS Software on Windows utilized Remote Procedure Calls, even if the applications are on the same exact system. This is inherently flawed, as shown in many past MS Windows exploits. Just look at the MS-SQL expoits as perfect examples.
If designed with security, instead of "ease of coding" was the design from the start, RPC wouldn't be used for communication between processes on the exact same piece of hardware. This is how it is done with MySQL and Apache on Linux and why RPC exploits won't work if those services are running on the exact same hardware.
The list of flawed design decisions that went into Windows at the very beginning continue to haunt the Windows Operating System to this day. No, I am not some blind unqualified moron making these statements, I manage Windows desktops for a living, used to work full time with Windows Servers and one of my hobbies has been looking into OS architecture design and how it relates to system security.
What an ignorant "technology guy". Seriously.
All he could do is create a friggin' nation wide ISP that has strong Porn filters and then he can sell that service to Religious Fundies across America. Then, they can "feel safe" with their "protected" Broadband or dial-up handicapped Internet.
It is absolutely ludicrous that the entire infrastructure of the Internet and network technology be reworked to support his hairbrained scheme of obtainig "teh big pile" of money.
You can't run a business that relies on computer technology for about 50% of your work, without the servers running. Downtime is not acceptable.
After 5 to 7 years of continuous to near-continouos operation, I would be looking at moving those servers to a back-up position and replace them with newer hardware. Of course, I am not dealing with mainframes and I can barely get the management to let me purchase a server that costs more then $1200 altogether...
What's next? Bill Gates professes a manly love for Linux and announces DirectX, Windows Media Player, Microsoft Office and Exchange Server for Linux?
I haven't encountered that, because I haven't had to purchase anything yet.
In my houses, I had enough stored crap from playing that I didn't need to go out and buy any kind of replacement items...
The Highly populated areas have changed. Mos Eisley is one for instance, then other cities on Tatooine. At least that is what I have been seeing.
Try 2 years and 5 months.
That's how long I have been playing and in that time the game has grown by leaps and bounds. I like the Combat Upgrade change, but I love the NGE change even more.
Star Wars Galaxies is going to keep getting better, but if MMORPGs aren't your thing, then they aren't your thing.
The NGE took serious care of the system-resource-intensive issue.
In the Old Game, I had to keep most of the graphics choices cranked to Zero to get consistent Frames Per Second performance, regardless of where I went. Even then, highly populated areas totally blew that down the tubes and gave me almost no FPS.
In the NGE, I have been able to crank everything back up near the top again and I am obtaining VERY consistent FPS, regardless of where I am and how many people are in a given area.
The rest of the NGE is also simple awesome in comparison to the old game. I couldn't go back to playing the old game.
I played the NGE Test Center servers and I was HIGHLY skeptical, because of the poor performance and some of the very buggy issues I kept experiencing. In the live version, none of those bugs are present and it just works very well.
My whole SWG guild was skeptical, I was one of the two hardcore TC subjects reporting to my PA, a few others entered the TC game briefly, but not as long as two of us did. After playing the Live version, not one of them has decided to cancel their account, in fact they are all more happy with what we have now, then what we had before.
As I have experienced since day one of the original release of SWG, the game is simply getting better and better.
It's not the Ethics Boat that they missed. They actually missed the Clue Train, if they had made it, then they would have had a clue that people don't want their "Shopping Bot" shoved down their throat...
Except the blasted media only calls them "Computer Worms", they do not mention Windows as the problem. That is why everytime one of those stupid announcements make it onto "Good Morning America", I get a call from the boss asking if our servers are safe and everytime, I have to say, that is a Windows problem, not a Linux problem.
It's annoying that they don't call those Windows Worms/Virus/Trojan attacks...
Hasn't there been something like a dozen or stories in the past 5 years about the problems that faced the Hindenburg, the burning of Hydrogen, the Underwriter's Laboratories testing of both a Gasoline and Hydrogen fueled automobile, just to name a few.
Get with it people, this is afterall a news site that claims "News for Nerds. Stuff that matters."
This is the kind of crap that we "Nerds" are supposed to know.
That would definately be thinking of the DBAs.
Have you ever seen a Database "constructed" by someone who knows nothing about Database design?
Easier to use tools will make it all the much easier for Oracle DBAs to quickly repair and rebuild or begin anew a DB created from a person with a Microsoft Access 101 class under his/her belt.
Man, that would be something else, if Google were to get behind a Linux Distribution.
...or Goognux?)
With the people they hire, can you imagine the kind of whiz-bang software (That really works!) they would add to "Google Linux" (or should it be called Googlix?
If you close the "OpenOffice" quick starter application, after disabling Java (As I just did) you will indeed notice an increase in loadup speed from a "Cold start".
It is impressive.
Now, if for some reason, I need Java, I can always enable it later and then restart the application for the time that I will need Java.
Seriously, where the hell did he come up with that idea?
...or is he thinking that the crappy Voice Recognition software that is part of MSOffice and not in OpenOffice, StarOffice and other OpenDocument Office Suites make MSOffice 'teh bestest' for disabled people?
Is it because he has seen someone use JAWS (A program for blind people to use PCs through voice commands) and only happened to see them use it with MSOffic?
Yep and anyone that doesn't understand your last bit is... well... a tool.
Actually, there's a significant number of updates that can applied to a compromised server, without rebooting the server. Thus enabling the cracker to "lock-down" the server to keep others from cracking what he/she has already cracked, without necesarily alerting the administrator of the server. For most important Windows security patches, there is still a need to reboot the machine, which could cause a noticeable lapse of service, enough for an Administrator to perhaps investigate the cause.
See This
Haha! You funny.
Anyway, if you know your crap and are out to compromise servers, then you can easily determine what kind of server Apache is running on. If you then really know your crap and compromise that Apache server, chances are you have a very powerful OS via some form of UNIX for which to direct new attacks from.
There's far more of a difference between Windows XP and Windows 2000, then just a graphical skin. The methods for accessing a handful of configuration settings windows has altered and in some cases, those configuration modules have changed significantly on their own.
To say that there won't be changes beyond simple "Graphical skins" simply does not hold with the historical perspective of the sweeping changes with each major iteration of Windows.
Windows 3.11 to Windows 95 to Windows 98 to WindowsMe, there were underlying configuration changes that made learning the "new" OS important.
Windows NT 3.5 to Windows NT 4.0 to Windows 2000 to Windows XP also included significant configuration setting alterations that were far more drastic then the "Consumer Level" Windows Operating Systems.
No crap.
I was simply pointing out that a corporation can consist of one single person acting as controlling interest, the board, the president and soul employee. Do you read before you post?