Well, I have 14,000 songs on my in car mp3 player and with the intelligent search system (like autocomplete on mobile phones) on the remote, it typically takes 4 or 5 clicks to find the right song. And with the nice raised buttons on the remote, I don't even need to look at it.
The SSID will be found anyway. I would not advise anyone to rely on hiding it for any form of security. C'mon - lots of sensible progress in wireless security these days, or go that wee bit further and use IPSec or something strong.
You guys do all use a firewall to segregate wireless networks from your home network, right?
You think it isn't a problem because your filtering sorts it? I am interested in why you are happy to pay for all this spam floating about the internet...because you are paying. IService providers are having to build more powerful servers, install higher bandwidth links, and you (as an end user) are having to help pay for the infrastructure. Really.
And it just gets more fun
on
Gone Phishing?
·
· Score: 1
Combine these attacks with cross-site scripting and you can actually be served with a malicious page from the real bank's own servers!
These days education is often not enough - attackers have gone from simply altering host files to actually hooking in to browsers to redirect all requests to banking sites. Even two factor authentication will not prevent a man-in-the-middle attack in this situation.
Although I am a big fan of UT2004, HL, HL2, D3 etc, my favourite computer games of all time are things like Space Invaders, Asteroids, Defender, Centipede, Parodius etc etc (yes - I am that old)
And surely every geek collects computers - it used to be way more than 22, but I had to ditch my RS6000 and some of my Personal Irises (kept one as a bench:-)) They all still run, even my Osborne luggable (I even have a game for it - Space War!)
What are you on about? They did this precisely so you could download or buy in the shops and not be disadvantaged timewise. Top idea, not "Screwing the customer!"
I am just continually baffled as to why people don't just use something suited to the job. If you are going to connect to the Internet, use a dedicated firewall. Sure, a full, enterprise level appliance may well be £50k (new Nokia IP2250) but you can get a decent home firewall for a couple of hundred.
It is a simple segregation of duties issue - a sensible defence from the internet is a filtering router, firewall, DMZ if you need it, AV on your mail gateway and PCs.
And then you need to seriously look at Firefox as a replacement for IE, again this will just add some security, as IE just has too many hooks into the OS and so can seriously bu66er your PC.
Of course, this being Slashdot, I would also have to argue that using any Microsoft product is just wastefull and inappropriate:-)
Some examples:
My mother got a new PC with XP and Norton AV. She connected it up to download updates, and got infected within 2 minutes by a virus Norton can see but can't do anything about.
My firm rolled out XP to all laptops (were on 2000) - now the boot time is longer, many functions don't work, hibernate is flaky, I need admin rights for more apps than I used to and the only good thing is that Excel 2003 has some great features. Even Word sucks even more than it did.
Suffice it to say on my home network I have only one PC running windows (currently 22 running other OS's - BSD, Linux, Solaris, Irix, HPUX, AIX etc) and it is purely for games playing and does not have a connection to the outside world. My firewall filters out pretty much everything - very little is needed inbound except SSH.
Come on up to Scotland next time. Last winter I saw the Aurora Borealis from my back garden at 55 degrees north. And in Orkney (59 north) the milky way is awesome all the time, although in Summer it doesn't really get dark as the sun swings round the northern horizon.
No light pollution here (Livingston) although I am in the M8 belt.
If I park at my nearest petrol station, I have to make sure I'm far enough away from the automatic door, otherwise my key fob fails and I can't start the car or disable the alarm. Pushing the car about 10 feet away fixes the problem.
Noisy and embarrassing - but at least that one is simple. I have heard stories of a more general issue near some coastguard stations - where a tow truck was needed to move the car far enough away:-)
About 4 years ago (with your bog-standard 802.11b) I installed a wireless network for a large computer company's production site. Initially it was for general wireless duties expected of a warehouse (inventory scanning, remote PCs in areas with no network cabling etc.) but as the bandwidth used was so low, we decided we could cut the massive mobile phone bill (thousands per month) by using Symbol VOIP phones. Initial issues of glitching and jitter turned out to be related to roaming across switch ports (and arp tables updating too slowly) and were cured by hooking the WLAN off a dumb hub.
For use with the company's entire VOIP phone network globally, Cisco VOIP gateways tied in beautifully.
Much better sound quality than mobile phones! These days it is even better!
Generally "better" in this field means a combination of "lower file size" and "closer to the original" in terms of sound quality. This means we can store more files - a good thing (tm)
To do this uses an algorithm which is more cpu-intensive, so it needs a more powerful processor. Saying this is a failure of open-source is like complaining that the improvements in OpenGL, DivX etc require video card upgrades. Yes, they do - but look at the improvement.
I for one have never been interested in the iPod for two reasons - it never looked like it would run Vorbis, whereas my player of choice is very hackable/tweakable, and it looks a bit girly (subjective, I know, but really...)
Have to disagree. I put it all down to schooling - if you are taught well at school, then you will be good at it. Irrelevant whether you are native or not.
If you trust Microsoft's spellchecker you will make more spelling mistakes than if you are a good native speaker who had a decent education.
Of course this maybe doesn't apply to the Americans - as they can't spell as a nation (joke)
Yeah that's a good idea, all the mobile phones in there will ramp up the output gain to try and connect with something so you'll fry in a sea of microwaves:-)
For this purpose, there are jammers which work very well, and some which only allow emergency calls. Much preferable.
If there is no decontamination, then I agree - this is a very serious issue. The downside is that it is very difficult to enforce strict standards when companies outsource manufacture to 3rd world countries!
At risk of just sounding argumentative, I actually disagree on almost every point you have just made. My background has led me through assembly and machine code in the days of 6809, 68000, Z80 and 6502, through Pascal, Forth, VB, C++ etc etc so I have had a fair amount of experience of various platforms, and the one thing I have learned above all others is how inferior a GUI usually is.
I agree that word processing is generally easier with a WYSIWYG word processor, but there are damn few of them. If it comes down to needing a specific layout, I know LaTex will work where MS Office often fails. And any graphical manipulation should be easier using graphical tools.
But your other points:
CLI = Dialog? The article mentions the notion of CLI as a dialog. But this is a misleading metaphor because so many CLI commands create invisible effects. A GUI has far more invisible effects, as you can't even tell what commands it runsYou tell the computer to do something and all that returns (in most cases) is a command prompt. A Unix command which returns a prompt implies it completed. Error codes are output from almost everything, and if you want to see them you can.At best its like teaching someone to to do a job while speaking through a door. You give a command to do something (e.g., move a file from directory to another) and then you have to give a command to see the results (ls).Or alternatively, you give the command and trust the agent to perform its duties and only return an issue when there is a problem
Discoverability: GUIs also provides visibility on to the set of available commands and functions. By browsing through the menus (which are usually nicely organized)Some are nicely organised, and to be fair, this is an area where there is great improvement, but in general I find it a nightmare to have to drop down through menu after submenu, sometimes in unintuitive places, to carry out a simple command., you can learn the functions of an application. In contrast, a CLI-only machines provides no obvious way to learn about commands that you did not know existed -- at best you can access an alphabet soup of cryptic vowelless cmmnd names and then access the man page on each command. Therefore, GUI applications tend to be self-documenting, CLI commands require that you first know of the existence of the command and then you must read the man pages (grepping the man pages sometimes works if you know the jargon for what you are looking for).There is an argument for simpler documentation than 'man' pages, but in reality, all that I think would be required is some indexing system.
Undo command: Most well-behaved GUI applications further support user learning via experimentation by having an undo command (and a revert command). CLIs tend to be irrevocable with no possibility for undoing inadvertent damage by a novice user (short of reloading the entire machine from a backup). Erm...novice user...should not have access to anything other than their own files, so should not cause irreversible damage. If they do have root, well, that's kind of the same as letting newbies have administrator access on Windows machines...a very bad idea. There should be no need. Its no wonder *nix people get upset at the thought of novices on computers. But this lack of an "undo" is the fault of *nix CLI (it could easily be remedied with automatic file version tracking and journalling). What do you mean by undo anyway? An undelete? Easy. A 'revert back to before I overwrote that file with this one' option? Does your GUI give you that?
GUI is the superset of a CLI: Some people complain that GUIs take too long and I agree with them. CLI does offer a faster interface for experienced users. Yet a good GUI offers keyboard shortcuts that let experienced users invoke commands from the keyboard. While it is easy to have a keyboard shortcut available and shown in a mouse-oriented graphical GUI menu, it is hard to have a graphical menu shortcut in a keyboard-or
Here they aren't saying anything about the water, but are implying it is 'removed' or 'used up' which is nonsense. It goes somewhere, and probably very near the original 1.3 tons is output as water. What is very important, as mentioned earlier on, is what happens to it, and how effective decontamination is.
Ideally it is still going to it's original destination , valley basin or whatever, just rerouted along the way.
>>I setup a proxy and was a spam relay (unknowingly of course) for just
under a week.
Okay, Yahoo are nazis, but a lot of spam is the fault of folks like yourself who set up open proxies. A little extra work before connecting it to the world would have saved some spam, and prevented you being blacklisted.
If every admin who set up a proxy did it correctly, it would be much harder for spammers to work. Okay, we would still have to combat the "create a spam proxy using a worm" tactic, but every little helps.
If people can't remember, or correctly type in a sentence without it being echoed, what the hell are they doing in front of a keyboard.
In the vast majority of networks I look at, I get over 80% of passwords within 2 hours. The only ones which survive longer all have symbols, no obvious link to dictionary words, and are 10+ characters. On my biggest attack box even a 10 character password is brute forceable within a day.
All my passwords are based on lyrics to songs, with word substitutions following a pattern which is random enough. Okay this means some passwords are 50 characters, but they are easy to remember, pretty quick to type, and as my music isn't world famous, no-one knows the lyrics but me:-)
Slashdot Mirror
Wasn't that Arrrrggggghhhh?
Anyway, he wouldn't write "Arrrrggggghhhhh", he would just say it.
Maybe he was dictating...
Well, I have 14,000 songs on my in car mp3 player and with the intelligent search system (like autocomplete on mobile phones) on the remote, it typically takes 4 or 5 clicks to find the right song. And with the nice raised buttons on the remote, I don't even need to look at it.
But voice activation would have cool geek factor!
The myth around broadcasting SSID's
The SSID will be found anyway. I would not advise anyone to rely on hiding it for any form of security. C'mon - lots of sensible progress in wireless security these days, or go that wee bit further and use IPSec or something strong.
You guys do all use a firewall to segregate wireless networks from your home network, right?
You think it isn't a problem because your filtering sorts it? I am interested in why you are happy to pay for all this spam floating about the internet...because you are paying. IService providers are having to build more powerful servers, install higher bandwidth links, and you (as an end user) are having to help pay for the infrastructure. Really.
It would be an interesting little wakeup call:-)
Combine these attacks with cross-site scripting and you can actually be served with a malicious page from the real bank's own servers! These days education is often not enough - attackers have gone from simply altering host files to actually hooking in to browsers to redirect all requests to banking sites. Even two factor authentication will not prevent a man-in-the-middle attack in this situation.
Although I am a big fan of UT2004, HL, HL2, D3 etc, my favourite computer games of all time are things like Space Invaders, Asteroids, Defender, Centipede, Parodius etc etc (yes - I am that old)
And surely every geek collects computers - it used to be way more than 22, but I had to ditch my RS6000 and some of my Personal Irises (kept one as a bench:-)) They all still run, even my Osborne luggable (I even have a game for it - Space War!)
What are you on about? They did this precisely so you could download or buy in the shops and not be disadvantaged timewise. Top idea, not "Screwing the customer!"
Sheesh!
I am just continually baffled as to why people don't just use something suited to the job. If you are going to connect to the Internet, use a dedicated firewall. Sure, a full, enterprise level appliance may well be £50k (new Nokia IP2250) but you can get a decent home firewall for a couple of hundred.
It is a simple segregation of duties issue - a sensible defence from the internet is a filtering router, firewall, DMZ if you need it, AV on your mail gateway and PCs.
And then you need to seriously look at Firefox as a replacement for IE, again this will just add some security, as IE just has too many hooks into the OS and so can seriously bu66er your PC.
Of course, this being Slashdot, I would also have to argue that using any Microsoft product is just wastefull and inappropriate:-)
Some examples:
My mother got a new PC with XP and Norton AV. She connected it up to download updates, and got infected within 2 minutes by a virus Norton can see but can't do anything about.
My firm rolled out XP to all laptops (were on 2000) - now the boot time is longer, many functions don't work, hibernate is flaky, I need admin rights for more apps than I used to and the only good thing is that Excel 2003 has some great features. Even Word sucks even more than it did.
Suffice it to say on my home network I have only one PC running windows (currently 22 running other OS's - BSD, Linux, Solaris, Irix, HPUX, AIX etc) and it is purely for games playing and does not have a connection to the outside world. My firewall filters out pretty much everything - very little is needed inbound except SSH.
Ah yes - The Light Of Other Days by Bob Shaw.
I, however, like the idea of having the playback speed slower than the input speed so the image steadily gets further out of sync.
Of course, there would be a need for ever increasing buffer space:-)
Come on up to Scotland next time. Last winter I saw the Aurora Borealis from my back garden at 55 degrees north. And in Orkney (59 north) the milky way is awesome all the time, although in Summer it doesn't really get dark as the sun swings round the northern horizon. No light pollution here (Livingston) although I am in the M8 belt.
If I park at my nearest petrol station, I have to make sure I'm far enough away from the automatic door, otherwise my key fob fails and I can't start the car or disable the alarm. Pushing the car about 10 feet away fixes the problem.
Noisy and embarrassing - but at least that one is simple. I have heard stories of a more general issue near some coastguard stations - where a tow truck was needed to move the car far enough away:-)
Unless of course they are SEC registered. This is the fun of SOx 404 in the UK...so many of my clients are registered on US stock exchange. Akkkkk!
About 4 years ago (with your bog-standard 802.11b) I installed a wireless network for a large computer company's production site. Initially it was for general wireless duties expected of a warehouse (inventory scanning, remote PCs in areas with no network cabling etc.) but as the bandwidth used was so low, we decided we could cut the massive mobile phone bill (thousands per month) by using Symbol VOIP phones. Initial issues of glitching and jitter turned out to be related to roaming across switch ports (and arp tables updating too slowly) and were cured by hooking the WLAN off a dumb hub. For use with the company's entire VOIP phone network globally, Cisco VOIP gateways tied in beautifully.
Much better sound quality than mobile phones! These days it is even better!
Think about "better"
Generally "better" in this field means a combination of "lower file size" and "closer to the original" in terms of sound quality. This means we can store more files - a good thing (tm)
To do this uses an algorithm which is more cpu-intensive, so it needs a more powerful processor. Saying this is a failure of open-source is like complaining that the improvements in OpenGL, DivX etc require video card upgrades. Yes, they do - but look at the improvement.
I for one have never been interested in the iPod for two reasons - it never looked like it would run Vorbis, whereas my player of choice is very hackable/tweakable, and it looks a bit girly (subjective, I know, but really...)
Have to disagree. I put it all down to schooling - if you are taught well at school, then you will be good at it. Irrelevant whether you are native or not.
If you trust Microsoft's spellchecker you will make more spelling mistakes than if you are a good native speaker who had a decent education.
Of course this maybe doesn't apply to the Americans - as they can't spell as a nation (joke)
Yeah that's a good idea, all the mobile phones in there will ramp up the output gain to try and connect with something so you'll fry in a sea of microwaves:-)
For this purpose, there are jammers which work very well, and some which only allow emergency calls. Much preferable.
I eat no fish, so I don't care where they swim:-)
If there is no decontamination, then I agree - this is a very serious issue. The downside is that it is very difficult to enforce strict standards when companies outsource manufacture to 3rd world countries!
Licence your IP
I laughed and laughed...
At risk of just sounding argumentative, I actually disagree on almost every point you have just made. My background has led me through assembly and machine code in the days of 6809, 68000, Z80 and 6502, through Pascal, Forth, VB, C++ etc etc so I have had a fair amount of experience of various platforms, and the one thing I have learned above all others is how inferior a GUI usually is.
I agree that word processing is generally easier with a WYSIWYG word processor, but there are damn few of them. If it comes down to needing a specific layout, I know LaTex will work where MS Office often fails. And any graphical manipulation should be easier using graphical tools.
But your other points:
CLI = Dialog? The article mentions the notion of CLI as a dialog. But this is a misleading metaphor because so many CLI commands create invisible effects. A GUI has far more invisible effects, as you can't even tell what commands it runsYou tell the computer to do something and all that returns (in most cases) is a command prompt. A Unix command which returns a prompt implies it completed. Error codes are output from almost everything, and if you want to see them you can.At best its like teaching someone to to do a job while speaking through a door. You give a command to do something (e.g., move a file from directory to another) and then you have to give a command to see the results (ls).Or alternatively, you give the command and trust the agent to perform its duties and only return an issue when there is a problem
Discoverability: GUIs also provides visibility on to the set of available commands and functions. By browsing through the menus (which are usually nicely organized)Some are nicely organised, and to be fair, this is an area where there is great improvement, but in general I find it a nightmare to have to drop down through menu after submenu, sometimes in unintuitive places, to carry out a simple command., you can learn the functions of an application. In contrast, a CLI-only machines provides no obvious way to learn about commands that you did not know existed -- at best you can access an alphabet soup of cryptic vowelless cmmnd names and then access the man page on each command. Therefore, GUI applications tend to be self-documenting, CLI commands require that you first know of the existence of the command and then you must read the man pages (grepping the man pages sometimes works if you know the jargon for what you are looking for).There is an argument for simpler documentation than 'man' pages, but in reality, all that I think would be required is some indexing system.
Undo command: Most well-behaved GUI applications further support user learning via experimentation by having an undo command (and a revert command). CLIs tend to be irrevocable with no possibility for undoing inadvertent damage by a novice user (short of reloading the entire machine from a backup). Erm...novice user...should not have access to anything other than their own files, so should not cause irreversible damage. If they do have root, well, that's kind of the same as letting newbies have administrator access on Windows machines...a very bad idea. There should be no need. Its no wonder *nix people get upset at the thought of novices on computers. But this lack of an "undo" is the fault of *nix CLI (it could easily be remedied with automatic file version tracking and journalling). What do you mean by undo anyway? An undelete? Easy. A 'revert back to before I overwrote that file with this one' option? Does your GUI give you that?
GUI is the superset of a CLI: Some people complain that GUIs take too long and I agree with them. CLI does offer a faster interface for experienced users. Yet a good GUI offers keyboard shortcuts that let experienced users invoke commands from the keyboard. While it is easy to have a keyboard shortcut available and shown in a mouse-oriented graphical GUI menu, it is hard to have a graphical menu shortcut in a keyboard-or
Here they aren't saying anything about the water, but are implying it is 'removed' or 'used up' which is nonsense. It goes somewhere, and probably very near the original 1.3 tons is output as water. What is very important, as mentioned earlier on, is what happens to it, and how effective decontamination is.
Ideally it is still going to it's original destination , valley basin or whatever, just rerouted along the way.
>>I setup a proxy and was a spam relay (unknowingly of course) for just under a week.
Okay, Yahoo are nazis, but a lot of spam is the fault of folks like yourself who set up open proxies. A little extra work before connecting it to the world would have saved some spam, and prevented you being blacklisted.
If every admin who set up a proxy did it correctly, it would be much harder for spammers to work. Okay, we would still have to combat the "create a spam proxy using a worm" tactic, but every little helps.
Only one little premise wrong with your sentence.
I can do 9x10^14 tries per second:-)
Takes just under a day...like I said
And where is Natalie Portman now? I miss her beowulf cluster of petrified hot grits!
If people can't remember, or correctly type in a sentence without it being echoed, what the hell are they doing in front of a keyboard.
In the vast majority of networks I look at, I get over 80% of passwords within 2 hours. The only ones which survive longer all have symbols, no obvious link to dictionary words, and are 10+ characters. On my biggest attack box even a 10 character password is brute forceable within a day.
All my passwords are based on lyrics to songs, with word substitutions following a pattern which is random enough. Okay this means some passwords are 50 characters, but they are easy to remember, pretty quick to type, and as my music isn't world famous, no-one knows the lyrics but me:-)