That's done already. There are sophisticated algorithms at work to calculate branch prediction (for instance, a simple algorithm is to use the last branch result, as branches are most often loops of some sort) and fetch the next instruction according to that prediction. If the prediction was wrong, then the entire CPU has to stall a few cycles to flush the pipeline.
Marketing, of course!
Nobody cares about the screen size, but 2 screens, ooohh!
Of course, it'll use twice as many batteries, but I doubt marketing will insist on that feature...
Finally a label seems to have done everything right. High enough quality (avg. 205 kbps VBR) so that I can't differentiate from the CD, no DRM crap, reasonnable pricing, and they seem to pay the artists adequately : "Finally, buying music through Bleep means that you are supporting the artists work, and in some cases you are getting mp3's encoded by the artists themselves. After the bandwidth charges and Bleep running costs are subtracted, the artist gets half of the album or track price."
Now if only I had ever heard of one of those bands...
I used to watch news on TV and read the papers, now I browse most of the time. I have good knowledge of tech news and important international events, but I find that I'm not really aware of local news anymore. In fact, "local" here means anything from the city to the country (Canada).
The information is available, it's just that I don't really care much...
Who would honestly let an out of the box Windows machine be open to the rest of the internet with no NAT?
Only a few hundred million people, no more. Hey, I agree that NATing is a quick and easy way to protect a computer, but I suspect that the vast majority of Internet users don't know or care about NAT.
It might log the addresses attempting to spoof webpages, but I'm all for that. And at least this explains clearly that a spoof was attempted through this exploit. I think it's better than just correcting the string, which would access a spoofed webpage anyways, even if showing the right address at the top... which of course would not work as well but many would still fall for it no matter, especially since it probably would look like http://www.paypal.com@paypal.something.net/ which would seem legitimate to the casual looker.
It only redirects if the address being accessed contains illegal caracters (%01 or %02). I agree it seems like a cheap way to get free publicity, but at least it clearly tells that an attack was attempted.
It's a bit ugly but better IMHO than accessing anyways a spoofed webpage. Consider that the average Joe very well might put his credit card info on a page that looks like PayPal even though the address shown is "http://www.paypal.com@www.h4x0r3d.com/buy.cgi?". Many wouldn't be able to tell the difference...
a receive only box has a zero chance of infection as it's physically impossible.
Huh? I don't get this... How would it be physically impossible to infect a receive only box?? (I figure *transmit* only is secure for sure, but receive?)
They say they'll add GPG signatures shortly, which has to be a good thing.
However, realise that this backdoor attempt was caught very early on, and by reading the comments posted on LKML, it almost certainly couldn't have been included in the main BK source tree, as updates to it would have stopped working (locally stored versions being different from the server version, this would have been immediately noticed.) So I'd say that there is already a proper verifications preventing backdoors. Of course, more verifications can't hurt.
"This is a birth of a whole new water sport that will change the direction of the watercraft industry the way the snowboard changed skiing," he said.
But with a custom engine and everything else they designed so that this works correctly, and considering that a standard surf or snowboard is already expensive just for the raw material, I seriously doubt that this sells cheap. I don't think it can change the direction of the watercraft industry if only a few people can afford the thing...
It's not that the techs that don't want to help you, it's management that forbids it.
Basically, they say that if a customer gets support once for linux, then he'll want support next time he calls no matter which tech answers. And of course ISPs don't want to train all their CSRs to support linux and other OSes.
And as most tech support is outsourced anyways, unsupported platforms simply make shorter calls, which both the tech and management loves.
Canadian ISPs have been doing this for years. Although a major one (Bell Sympatico) removed the bandwidth cap a few months ago, as there were too many customer complaints. Another provider (Videotron) is instead offering a more expensive subscription without transfer limits, while the standard plan charges for excess bandwidth usage (over 15 Gb download or 5 Gb upload).
I think that's a good idea, as the average joe probably doesn't know or care about the transfer limit, while more demanding customers (such as myself) are willing to pay extra for unlimited use (and higher throughput).
Incredible. That's the first time I've heard of an ISP actually caring about their customers.
They'll probably lose in court eventually, but it doesn't matter. More opposition to the RIAA is always good. Maybe someday they'll realize they're against everyone, including businesses, not only their customers...
The two men will not eat during their mission, and they are hoping they will not have to go to the toilet either. A special fibre-free diet will begin three days before the trip in the hope that waste will be kept to a minimum.
My guess is that the Times doesn't really care about the CDs, as long as their advertisers are willing to pay big bucks for new multimedia ads...
The paper surely covers easily all the CD-related expenses by those new ads anyway.
Not true.
Quantum physics show that true random numbers are possible. Of course, that's not the case of the Lava lamp, but sophisticated setup exploiting quantum uncertainity are possible.
Often it's not that the techs don't want to help; they simply can't. There is a QA dept. that randomly monitors call. Sometimes the QA guy sits right besides you and evaluates your call. If you happen to support an unsupported product, you're in trouble (basically you fail your audit). The techs are doing their best really, but it's management that sets the rules and gets down on you if your stats aren't quite right.
Slashdot Mirror
That's done already. There are sophisticated algorithms at work to calculate branch prediction (for instance, a simple algorithm is to use the last branch result, as branches are most often loops of some sort) and fetch the next instruction according to that prediction. If the prediction was wrong, then the entire CPU has to stall a few cycles to flush the pipeline.
Marketing, of course!
Nobody cares about the screen size, but 2 screens, ooohh!
Of course, it'll use twice as many batteries, but I doubt marketing will insist on that feature...
Finally a label seems to have done everything right.
High enough quality (avg. 205 kbps VBR) so that I can't differentiate from the CD, no DRM crap, reasonnable pricing, and they seem to pay the artists adequately :
"Finally, buying music through Bleep means that you are supporting the artists work, and in some cases you are getting mp3's encoded by the artists themselves. After the bandwidth charges and Bleep running costs are subtracted, the artist gets half of the album or track price."
Now if only I had ever heard of one of those bands...
Strange, it's kind of the opposite for me.
I used to watch news on TV and read the papers, now I browse most of the time.
I have good knowledge of tech news and important international events, but I find that I'm not really aware of local news anymore. In fact, "local" here means anything from the city to the country (Canada).
The information is available, it's just that I don't really care much...
Yeah, "nu" in french means naked (it's not slang btw), but it implies masculinity. I suspect "nue" would bring more visitors...
See http://www.openwares.org/cgi-bin/exploit.cgi?slash dot.org&www.goatse.cx for instance.
It might log the addresses attempting to spoof webpages, but I'm all for that. And at least this explains clearly that a spoof was attempted through this exploit. I think it's better than just correcting the string, which would access a spoofed webpage anyways, even if showing the right address at the top... which of course would not work as well but many would still fall for it no matter, especially since it probably would look like http://www.paypal.com@paypal.something.net/ which would seem legitimate to the casual looker.
See http://www.openwares.org/cgi-bin/exploit.cgi?slash dot.org&www.goatse.cx for instance.
It's a bit ugly but better IMHO than accessing anyways a spoofed webpage. Consider that the average Joe very well might put his credit card info on a page that looks like PayPal even though the address shown is "http://www.paypal.com@www.h4x0r3d.com/buy.cgi?". Many wouldn't be able to tell the difference...
Err... No, you did not.
Your own dedication to the /. community is also remarkable : posting comments instead of going to see RoTK is a hard sacrifice :)
Huh? I don't get this... How would it be physically impossible to infect a receive only box?? (I figure *transmit* only is secure for sure, but receive?)
Look up their source code on SF, it's all there and looks real to me...
However, realise that this backdoor attempt was caught very early on, and by reading the comments posted on LKML, it almost certainly couldn't have been included in the main BK source tree, as updates to it would have stopped working (locally stored versions being different from the server version, this would have been immediately noticed.) So I'd say that there is already a proper verifications preventing backdoors.
Of course, more verifications can't hurt.
But with a custom engine and everything else they designed so that this works correctly, and considering that a standard surf or snowboard is already expensive just for the raw material, I seriously doubt that this sells cheap.
I don't think it can change the direction of the watercraft industry if only a few people can afford the thing...
Basically, they say that if a customer gets support once for linux, then he'll want support next time he calls no matter which tech answers.
And of course ISPs don't want to train all their CSRs to support linux and other OSes.
And as most tech support is outsourced anyways, unsupported platforms simply make shorter calls, which both the tech and management loves.
And here I was thinking about all the new "Already approved VISA platinum card!" in my inbox...
I think that's a good idea, as the average joe probably doesn't know or care about the transfer limit, while more demanding customers (such as myself) are willing to pay extra for unlimited use (and higher throughput).
Incredible. That's the first time I've heard of an ISP actually caring about their customers.
They'll probably lose in court eventually, but it doesn't matter. More opposition to the RIAA is always good.
Maybe someday they'll realize they're against everyone, including businesses, not only their customers...
My guess is that the Times doesn't really care about the CDs, as long as their advertisers are willing to pay big bucks for new multimedia ads...
The paper surely covers easily all the CD-related expenses by those new ads anyway.
Not true.
Quantum physics show that true random numbers are possible. Of course, that's not the case of the Lava lamp, but sophisticated setup exploiting quantum uncertainity are possible.
I worked 2 years as tech support for Road Runner.
Often it's not that the techs don't want to help; they simply can't. There is a QA dept. that randomly monitors call. Sometimes the QA guy sits right besides you and evaluates your call. If you happen to support an unsupported product, you're in trouble (basically you fail your audit). The techs are doing their best really, but it's management that sets the rules and gets down on you if your stats aren't quite right.
Already /.ed and not yet 5 comments?
Oh wait, it's Windows95.
Progress like the message on their frontpage ?
FYI, Bell ADSL removed the bandwidth limitations last month...