That's ok, because Microsoft is paying Slashdot. Bringing up Winsupersite or one of the other sites means that Microsoft or whomever is paying Winsupersite.
It's the fact that apple only sells LCD monitors, starting at $699.
This is not true at all. Others have already pointed out that you can use a VGA CRT with a Mac with the included DVI-to-VGA adaptor.
In fact, Apple does sell CRT monitors. Just not with the Apple name. I ordered a dual 1.8 G5 earlier tonight through the online Apple Store for Eduction, and there were two Mitsubishi CRT displays listed as options, one was about $150. I notice though that they're not listed for regular online Apple Store. I didn't pay too much attention since I'm going to be using my beige G3's 17" Optiquest for now.
Or buy a VCR (remember those?) instead. Personally, I could never figure out the attraction of using a device that required a monthly fee to combine finite, hard-to-expand storage of video programming and tv.yahoo.com into a single box.
I'm ready to start doing this. I've had it with rebates.
T-Mobile Color Sidekick - First the T-Mobile store rep (a company store, not a dealer) gave me an expired rebate form. Then he gave me a rebate form which says "Color T-Mobile Sidekick not elgible" which I had already sent in by the time I noticed this little fine print. Then I get a altter back from "Young America" that I didn't activate with a qualified plan.
ATI Radeon Mac Edition - this rebate was offered just before the card was replaced. Never heard from them.
Norton AntiVirus - this was offered in combination with purchase of TurboTax or TaxCut 2002. Got a postcard back complaining that I didn't send in the proof of purchase tab for one of the products, which was not requested in the instructions. Sent requested tab, never heard from them again.
The only good experiences I've had with rebates recently was with Costco; you can submit them completely online and the check actually came, both times.
Definately a problem. One possibility would be to store the private key on a smart card, not on the machine itself, and make it so that the key cannot be removed from the card. The card itself does the digital signing. Problem here is that we'd suddenly need everybody to get smart card readers on their computers. But it would mean we could still sign our email from anywhere.
Here's an article that gives an overview of doing this with smart cards.
Ok, I get it now. I initially read it that you were trying to say that a new key would be needed each time, which is not correct. What you do need is an encryption using a private key for each message. Rereading your original post, I see that this is what you said.
I think the confusion goes back to the problem with the article saying that the "private key" gets attached in the header of a message. This is, of course, a Very Bad Thing to do. Then the article goes on to say that the public key is used to decrypt the private key. This also makes no sense, unless you encrypted the private key with itself and attached the result to the message, which is still a Very Bad Thing.
To stay consistant with the article, the term "private key" is taking on two meanings: Both the private key used to encrypt, and the encrypted message. The second item should be called "digital signature". A digital signature is what you attach to a message.
Your public key is now valuable, and a target for spyware and viruses. Expect to see viruses that steal public keys from (inevitably) Outlook and send them to spammers. Or just send spam from the attacked machine.
Public keys aren't valuable. They're already public. Spammer can get them from DNS. The only thing they can do with is encrypt something that only you can decrypt.
Your paragraph makes more sense if you were talking about private keys. This is always an issue with private key crytpo, it only works as long as the private key is kept private.
Like the other reply said, this is really overblown. From what I remember, the so-called 60 days was really more like a year or two. People would have an argument if Yahoo changed their marketing preferences and didn't tell you, but they did tell you, and gave you specific instructions on how to change it. If you didn't do it, well its your own fault. And if you registered for Yahoo with an email address that rerouted to/dev/null or something, well then missing emails like this is the risk you take when you do that.
(If the "private key" -- something encrypted with the private key -- could be computed once and reused in every message, it could be copied and replayed by a forger.)
With digital signatures, the only replay attack that works is replaying the exact same message. You hash the message using an algorithm like MD5, encrypt that, and attach it to the message. The recipient also hashes the message, uses the sender's public key to decrypt the attached hash, and compares the two.
So if someone wants to do a replay attack by using a previous signature on a new message, the hashes won't match and the recipient will know the message is forged.
The reason the message itself is not encrypted using public key encryption is that it is several orders of magnitude slower than secret key crypto.
The sequence of steps you describe pretty much describe PGP. Major difference is that the encrypted digital signature is a MIME attachment with PGP, rather than going in the header.
The other major piece that's needed is a trusted source to lookup public keys.
One home environment in this does bug me. That is the machine plugged directly into the cable/DSL modem, with no NAT. In that case, a rouge DHCP server could be installed by somebody else in their own home, also directly connected to the cable/DSL, and could then infect the other users on their subnet.
However, I do suspect that most users who would do this haven't enabled remote logins either.
Mail.com is a disaster. I've had a free account with them since the iName days (back then, they advertised that POP was available, but they didn't mention that it was a pay-extra service). Multiple banners, plus popups and most recently, interstitals. It's just painful to browse with IE, and only slightly better with a popup-blocking browser. I use the account as basically a black hole, every few days I log in, hit the global-check button, scan the subjects to make sure there isn't any real email in there, then hit "delete" and go onto the next page.
After free iTools became expensive.Mac, then Smail.info vaporized, I gave up and paid for a Lycos Mail account. Been pretty happy with that. I did have to disable the spam filter though, because the false positive rate was much too high; many YahooGroups emails were getting rerouted (which you don't notice when you mostly use POP).
Re:Ahh.... Forgetting the main thing...
on
Death of the PDA?
·
· Score: 1
Everybody is forgetting the main cost... AIRTIME!
This is the major reason I went with T-Mobile. They charge $20/month to add unlimited data to any of their voice plans. Alternatively, for $30/month you get a plan with unlimited data but no included phone minutes, intended for those who plan to use their device only for data and use a different phone for voice.
I see a dwindling market for non-connected PDAs. The ability to make a network connection, whether via cellular or 802.11, is quite attractive. I've read Slashdot via my Sidekick while waiting for my meal at a restaurant, for instance.
Re:My "killer app" device
on
Death of the PDA?
·
· Score: 2, Informative
As of now, late 2003, I can think of ONE provider that offers 3G connectivity (Sprint), and last I looked, they were still using CDMA for voice calls. They do sell a PCMCIA card compatible with 'Sprint Vision,' but it also uses CDMA for voice.
Despite what Qualcomm (creators of CDMA) would like you to think, Sprint PCS Vision is not a 3G system. PCS Vision and Verizon Wireless both use a cdma2000 1x network (per this site), but cdma2000 1x is really a 2.5G technology, despite what Qualcomm would like you to think.
GPRS, the technology used by AT&T and T-Mobile, is also 2.5G.
T-Mobile also offers a PC Card that allows a laptop or PDA with a PC Card slot to connect via GPRS.
Re:I don't think so...
on
Death of the PDA?
·
· Score: 3, Interesting
[rant]I've used beige Macs. The G3 is Platinum, not Beige[/rant]
I'm running Jaguar quite happily on a G3/300 with a rev C motherboard. Of course, I've made quite a few upgrades since I bought it new.
* Upgraded VRAM from 2MB to 6MB, then later installed ATI Radeon Mac Edition video card.
* Upgraded memory, first from 64MB to 128MB and now at 256MB.
* Added Maxtor 30GB hard drive. Rev C allows two IDE hard drives, but you need a new IDE cable for them. I got mine custom built, and also had to get the drive sled to mount it in the empty drive bay above the Zip drive.
The 30GB hard drive has OS 9 on it, the 6GB is my OS X drive. This has the side benifit that I can set OS X as the default boot, and I can select OS 9 on startup simply by holding down the 'C' key without a CD in the drive.
* At the time I was using a DeskWriter 550C which has no OS X drivers, and OS X doesn't support serial port printers. I haven't tried to get it to work with CUPS yet, as I got a LaserWriter from a friend and a LaserWriter IIg motherboard (which has on board Ethernet) on eBay.
So, the question is, is it worth it? If you're going to be using the old versions of these apps and running in Classic, no. If you're upgrading to the OS X native versions, maybe, but probably only as a stopgap until you get a new computer.
If, like me, you spend most of your time using free or low cost apps (AppleWorks, Mail, AIM, ICQ, OmniWeb, iTunes, etc) and found having a Unix command line helpful for computer science courses, yes.
Slashdot Mirror
That's ok, because Microsoft is paying Slashdot. Bringing up Winsupersite or one of the other sites means that Microsoft or whomever is paying Winsupersite.
But that would generate a cent or two in banner ad revenue for them. :)
Indeed:
This is not true at all. Others have already pointed out that you can use a VGA CRT with a Mac with the included DVI-to-VGA adaptor.
In fact, Apple does sell CRT monitors. Just not with the Apple name. I ordered a dual 1.8 G5 earlier tonight through the online Apple Store for Eduction, and there were two Mitsubishi CRT displays listed as options, one was about $150. I notice though that they're not listed for regular online Apple Store. I didn't pay too much attention since I'm going to be using my beige G3's 17" Optiquest for now.
Or buy a VCR (remember those?) instead. Personally, I could never figure out the attraction of using a device that required a monthly fee to combine finite, hard-to-expand storage of video programming and tv.yahoo.com into a single box.
But then, I do know how to program my VCR.
- T-Mobile Color Sidekick - First the T-Mobile store rep (a company store, not a dealer) gave me an expired rebate form. Then he gave me a rebate form which says "Color T-Mobile Sidekick not elgible" which I had already sent in by the time I noticed this little fine print. Then I get a altter back from "Young America" that I didn't activate with a qualified plan.
- ATI Radeon Mac Edition - this rebate was offered just before the card was replaced. Never heard from them.
- Norton AntiVirus - this was offered in combination with purchase of TurboTax or TaxCut 2002. Got a postcard back complaining that I didn't send in the proof of purchase tab for one of the products, which was not requested in the instructions. Sent requested tab, never heard from them again.
The only good experiences I've had with rebates recently was with Costco; you can submit them completely online and the check actually came, both times.Here's an article that gives an overview of doing this with smart cards.
I think the confusion goes back to the problem with the article saying that the "private key" gets attached in the header of a message. This is, of course, a Very Bad Thing to do. Then the article goes on to say that the public key is used to decrypt the private key. This also makes no sense, unless you encrypted the private key with itself and attached the result to the message, which is still a Very Bad Thing.
To stay consistant with the article, the term "private key" is taking on two meanings: Both the private key used to encrypt, and the encrypted message. The second item should be called "digital signature". A digital signature is what you attach to a message.
Public keys aren't valuable. They're already public. Spammer can get them from DNS. The only thing they can do with is encrypt something that only you can decrypt.
Your paragraph makes more sense if you were talking about private keys. This is always an issue with private key crytpo, it only works as long as the private key is kept private.
Like the other reply said, this is really overblown. From what I remember, the so-called 60 days was really more like a year or two. People would have an argument if Yahoo changed their marketing preferences and didn't tell you, but they did tell you, and gave you specific instructions on how to change it. If you didn't do it, well its your own fault. And if you registered for Yahoo with an email address that rerouted to /dev/null or something, well then missing emails like this is the risk you take when you do that.
With digital signatures, the only replay attack that works is replaying the exact same message. You hash the message using an algorithm like MD5, encrypt that, and attach it to the message. The recipient also hashes the message, uses the sender's public key to decrypt the attached hash, and compares the two.
So if someone wants to do a replay attack by using a previous signature on a new message, the hashes won't match and the recipient will know the message is forged.
The reason the message itself is not encrypted using public key encryption is that it is several orders of magnitude slower than secret key crypto.
The other major piece that's needed is a trusted source to lookup public keys.
I'll make a couple of suggestions, I have various family members using one or the other, both use standard PPP dialup software:
However, I do suspect that most users who would do this haven't enabled remote logins either.
After free iTools became expensive .Mac, then Smail.info vaporized, I gave up and paid for a Lycos Mail account. Been pretty happy with that. I did have to disable the spam filter though, because the false positive rate was much too high; many YahooGroups emails were getting rerouted (which you don't notice when you mostly use POP).
This is the major reason I went with T-Mobile. They charge $20/month to add unlimited data to any of their voice plans. Alternatively, for $30/month you get a plan with unlimited data but no included phone minutes, intended for those who plan to use their device only for data and use a different phone for voice. I see a dwindling market for non-connected PDAs. The ability to make a network connection, whether via cellular or 802.11, is quite attractive. I've read Slashdot via my Sidekick while waiting for my meal at a restaurant, for instance.
Despite what Qualcomm (creators of CDMA) would like you to think, Sprint PCS Vision is not a 3G system. PCS Vision and Verizon Wireless both use a cdma2000 1x network (per this site), but cdma2000 1x is really a 2.5G technology, despite what Qualcomm would like you to think.
GPRS, the technology used by AT&T and T-Mobile, is also 2.5G.
T-Mobile also offers a PC Card that allows a laptop or PDA with a PC Card slot to connect via GPRS.
Handspring Treo 270 $249.99 with rebate, $349.99 without
T-Mobile Sidekick (Danger Hiptop) $249.99 with rebate, $299.99 without
RIM Blackberry 6230 $199.99 with rebate, $299.99 without
AppleWorks for Windows
SCO should sue the parents for using their legal tactics without a license.
public static SCOBusinessModel {
} }Last month I picked up Train's Drops of Jupiter at Costco (the store, not the website) for $8.49 plus tax.
[rant]I've used beige Macs. The G3 is Platinum, not Beige[/rant]
I'm running Jaguar quite happily on a G3/300 with a rev C motherboard. Of course, I've made quite a few upgrades since I bought it new.
* Upgraded VRAM from 2MB to 6MB, then later installed ATI Radeon Mac Edition video card.
* Upgraded memory, first from 64MB to 128MB and now at 256MB.
* Added Maxtor 30GB hard drive. Rev C allows two IDE hard drives, but you need a new IDE cable for them. I got mine custom built, and also had to get the drive sled to mount it in the empty drive bay above the Zip drive.
The 30GB hard drive has OS 9 on it, the 6GB is my OS X drive. This has the side benifit that I can set OS X as the default boot, and I can select OS 9 on startup simply by holding down the 'C' key without a CD in the drive.
* At the time I was using a DeskWriter 550C which has no OS X drivers, and OS X doesn't support serial port printers. I haven't tried to get it to work with CUPS yet, as I got a LaserWriter from a friend and a LaserWriter IIg motherboard (which has on board Ethernet) on eBay.
So, the question is, is it worth it? If you're going to be using the old versions of these apps and running in Classic, no. If you're upgrading to the OS X native versions, maybe, but probably only as a stopgap until you get a new computer.
If, like me, you spend most of your time using free or low cost apps (AppleWorks, Mail, AIM, ICQ, OmniWeb, iTunes, etc) and found having a Unix command line helpful for computer science courses, yes.