Well, I must to agree this is a pretty large hole to be cover while coding a script, there are just so many different things that could be exploited...
... but a language shouldn't encourage such public exposure of fundamental things. (which is why the default changed, according to other posters here) ---- That's a design decision, not a rule. PHP is designed to be a highly writable language, just as C is. Both suffer from similar problems - reliability and security issues.
How is this a stupid gap? How are variables dangerous? They are only dangerous when misused. All variables are by default dangerous! Call out the troops!
This is exactly the attitude that makes the open source community look bad. First, documentation is rarely up to date, even on commercial software, so while books are out of date they can be more comprehensive and illustative then a man page. Books can also tie in technologies together in a way that may not present itself immediately.
Re:Double density floppy anyone?
on
High Density CDs
·
· Score: 2, Insightful
According to pricewatch now I see $18 for cd-r, and $86 for dvd-r
18.2 cents per gig DVD-Rs... 24.8 cents per gig for CDR's and for fun... 12.1 cents for 1.4 gig cdr's.
this is of course assuming you don't buy them on rebate - which I do all the time - you can easily pick up a set of cd'rs on rebate for FREE. Don't see any for DVD's.
Even at 6.6 cents per gig, you will need to buy at least 500 gigs worth of data before you save a whopping $30.
Now, of course, the advantadge to a drive that can write 1.4 gig at will is that you have something you don't with dvd's - a choice. A good migration path. If you know the data you need to write will need to be ported to an older machine - you can write it to the old 700 meg format. Otherwise - make the choice.
SCSI drives are no more reliable than IDE drives. The heads, the platters, the casings, nearly everything (except possibly exclusive 15k/10k rpm drives) are manufactured using the exact same factotries. Just because they slap a scsi interface on the back of it doesn't make the whole drive more reliable.
Woah woah woah... I've got uu.net at work and road runner at home and I'm getting the same thing everybody else in this thread reports. Are we sure this just isn't what you're supposed to be getting?
Processors are so fast now adays that talking about the difference between dividing by 2 and shifting a bit is kinda silly since most people are not optimising their code at this level unless they are doing low-level drivers or some other truly intensive operation.*
1024x768 is plenty sharp, it's getting the details right that matters. For years good games were possible at 640x480x256 because graphics were 2d and done by artists.
Not saying we shouldn't got higher than 1024x768, just that it's not the most important factor.
You apparently haven't read that the ti4600 can render final fantasy in real time.
You also haven't read John Carmack and other 3d luminaries who know more about computer graphics than anyone else in the industry say that these last generations of video cards are the first cards with the ability to perform cinematic quality graphics in video games.
However, I do agree with everything else you're mentioning, there is vast room for improvement in the graphics.
It strikes me that this protocol doesn't handle multiple connections to different servers/peers aka Kazaa/winMX, no authentication that the data being transferred is accurate aka Freenet, so why adopt such a protocol? If all you're going to do is re-implement these ideas on top of this B.E.E.P. stuff, really, what's the point?
The simple obvious reason that gates doesn't want to directly own telcom companies is his company is built on high margin intellectual capital they barely support. Why go mucking that up and have a giant arm of the company with tons of physical assets, support issues, and real complications. It's just not necessary for how he wants to run the show. It's a software company, not a hardware company.
Doesn't this seem silly. Why, here we've got the College of Business, the law college, and by golly, here it is, the "Office of Computer Discipline" What are they going to do, make them sit quiet and watch power point slides for the time allotted for their offense?
"Gnutella! Thats a 2 hour violaton in the Computer detention area."
I spent hours on the phone with ATI trying to get it to work with my computer, and ended up sending back the equipment. The vendor (AccessMicro) was nice enough not to charge me a re-stocking fee, but I've decided to invoice ATI for the shipping costs. I haven't gotten anything back yet from them, but I'm guessing they'll just pay the chump change rather than continue to process the bill.
Sure, the net was caught with a serious lack of computing resources. The bandwidth was there, the means to distribute the information was clearly lacking. But the story two days later is completely different.
While big media is continously rattling out the same news story over and over again, and is only willing to dedicate 3 minutes to each story (some of which is spent reading to the viewer text on the screen!) ---- the web is digging deep. Some stories aren't well researched and some are not as factual as they should be, but the side effect of this is ironically that I think it's generating a more informed public. A public which is beginning to understand the subtle relationships of the government and it's diplomacy and is more capable of understanding what our government and other governments are likely to be doing.
For the near future, nothing will beat the ol' broadcast media for real time high definition audio and video. But just like the gap between supercomputer and the PC - the margin is slimming everyday.
I'm seeing hits from strictly default.ida type attacks only as early as the 5th. And from the 5th to the 18th, I don't see many requests at all. (Maybe 15 or so) Which makes me think it's code red or some other variant.
I begin to see the more common cmd.exe root.exe requests only today, started at 9:30. Perhaps if we can trace the exact time of the hits, we can localize the source, though that seems somewhat farfetched.
In good taste, please stop hanging signs of Christianity up all over the place. No more open prayers... etc... Stop assaulting me with unbridled patriotism. It's all free speech and so long as it doesn't stand a very good chance of instigating a violence, just let it be.
In fact, in studies on the first MS ergonomic keyboard found it to cause users much pain. Hence, it was redesigned. My company has two or three of these original MS ergo keyboards, they are simply awful to try and use.
Slashdot Mirror
It has overtaken Linux as the number one topic. Give it a rest.
I beg of you.
Apparently they are going to ambush on the third day.
Is it possible to moderate the article as trolling?
Well, I must to agree this is a pretty large hole to be cover while coding a script, there are just so many different things that could be exploited...
...
but a language shouldn't encourage such public exposure of fundamental things. (which is why the default changed, according to other posters here)
----
That's a design decision, not a rule. PHP is designed to be a highly writable language, just as C is. Both suffer from similar problems - reliability and security issues.
How is this a stupid gap? How are variables dangerous? They are only dangerous when misused. All variables are by default dangerous! Call out the troops!
This is exactly the attitude that makes the open source community look bad. First, documentation is rarely up to date, even on commercial software, so while books are out of date they can be more comprehensive and illustative then a man page. Books can also tie in technologies together in a way that may not present itself immediately.
According to pricewatch now I see $18 for cd-r, and $86 for dvd-r
18.2 cents per gig DVD-Rs...
24.8 cents per gig for CDR's
and for fun... 12.1 cents for 1.4 gig cdr's.
this is of course assuming you don't buy them on rebate - which I do all the time - you can easily pick up a set of cd'rs on rebate for FREE. Don't see any for DVD's.
Even at 6.6 cents per gig, you will need to buy at least 500 gigs worth of data before you save a whopping $30.
Now, of course, the advantadge to a drive that can write 1.4 gig at will is that you have something you don't with dvd's - a choice. A good migration path. If you know the data you need to write will need to be ported to an older machine - you can write it to the old 700 meg format. Otherwise - make the choice.
Hey why doesn't everyone just whine about how Lucas should attribute some credit to anything that is remotely like their favorite movie/show?
SCSI drives are no more reliable than IDE drives. The heads, the platters, the casings, nearly everything (except possibly exclusive 15k/10k rpm drives) are manufactured using the exact same factotries. Just because they slap a scsi interface on the back of it doesn't make the whole drive more reliable.
mirroring raid, that's real reliability.
Woah woah woah... I've got uu.net at work and road runner at home and I'm getting the same thing everybody else in this thread reports. Are we sure this just isn't what you're supposed to be getting?
Processors are so fast now adays that talking about the difference between dividing by 2 and shifting a bit is kinda silly since most people are not optimising their code at this level unless they are doing low-level drivers or some other truly intensive operation.*
* Or they work at some academic institution.
When we could be say analyzing the orbits of near-earth objects. Where is the distributed project for this?
1024x768 is plenty sharp, it's getting the details right that matters. For years good games were possible at 640x480x256 because graphics were 2d and done by artists.
Not saying we shouldn't got higher than 1024x768, just that it's not the most important factor.
You apparently haven't read that the ti4600 can render final fantasy in real time.
You also haven't read John Carmack and other 3d luminaries who know more about computer graphics than anyone else in the industry say that these last generations of video cards are the first cards with the ability to perform cinematic quality graphics in video games.
However, I do agree with everything else you're mentioning, there is vast room for improvement in the graphics.
It strikes me that this protocol doesn't handle multiple connections to different servers/peers aka Kazaa/winMX, no authentication that the data being transferred is accurate aka Freenet, so why adopt such a protocol? If all you're going to do is re-implement these ideas on top of this B.E.E.P. stuff, really, what's the point?
The simple obvious reason that gates doesn't want to directly own telcom companies is his company is built on high margin intellectual capital they barely support. Why go mucking that up and have a giant arm of the company with tons of physical assets, support issues, and real complications. It's just not necessary for how he wants to run the show. It's a software company, not a hardware company.
Doesn't this seem silly. Why, here we've got the College of Business, the law college, and by golly, here it is, the "Office of Computer Discipline" What are they going to do, make them sit quiet and watch power point slides for the time allotted for their offense?
"Gnutella! Thats a 2 hour violaton in the Computer detention area."
"Counterstrike on university computers? 4 hours."
Wilkes Barre is right next to Forty Fort and just down the road from Koonsville...
I spent hours on the phone with ATI trying to get it to work with my computer, and ended up sending back the equipment. The vendor (AccessMicro) was nice enough not to charge me a re-stocking fee, but I've decided to invoice ATI for the shipping costs. I haven't gotten anything back yet from them, but I'm guessing they'll just pay the chump change rather than continue to process the bill.
Except that this viewed was digital, and won't degrade.
Sure, the net was caught with a serious lack of computing resources. The bandwidth was there, the means to distribute the information was clearly lacking. But the story two days later is completely different.
While big media is continously rattling out the same news story over and over again, and is only willing to dedicate 3 minutes to each story (some of which is spent reading to the viewer text on the screen!) ---- the web is digging deep. Some stories aren't well researched and some are not as factual as they should be, but the side effect of this is ironically that I think it's generating a more informed public. A public which is beginning to understand the subtle relationships of the government and it's diplomacy and is more capable of understanding what our government and other governments are likely to be doing.
For the near future, nothing will beat the ol' broadcast media for real time high definition audio and video. But just like the gap between supercomputer and the PC - the margin is slimming everyday.
I'm seeing hits from strictly default.ida type attacks only as early as the 5th. And from the 5th to the 18th, I don't see many requests at all. (Maybe 15 or so) Which makes me think it's code red or some other variant.
I begin to see the more common cmd.exe root.exe requests only today, started at 9:30. Perhaps if we can trace the exact time of the hits, we can localize the source, though that seems somewhat farfetched.
In good taste, please stop hanging signs of Christianity up all over the place. No more open prayers... etc... Stop assaulting me with unbridled patriotism. It's all free speech and so long as it doesn't stand a very good chance of instigating a violence, just let it be.
In fact, in studies on the first MS ergonomic keyboard found it to cause users much pain. Hence, it was redesigned. My company has two or three of these original MS ergo keyboards, they are simply awful to try and use.