Missing topic: when browsers weren't free
on
A History of Firefox
·
· Score: 3, Informative
I think Netscape's mistake came earlier: when they thought that people would each pay $40-50 to buy a standalone browser. IE cut the floor out beneath them and Netscape went down hard after that.
Someone arriving at Netscape at 1999 would have been someone boarding a sinking ship, it would seem...
Yet another online credit card service?
on
PayPal vs Google(Buy)
·
· Score: 3, Interesting
"For the last nine months, Google has recruited online retailers to test GBuy, according to one person briefed on the service. GBuy will feature an icon posted alongside the paid-search ads of merchants, which Google hopes will tempt consumers to click on the ads, says this person. GBuy will also let consumers store their credit-card information on Google."
I think Google may have a point. If this is simply yet another small-volume, web-based credit card processing thing, then the quasi-online bank features of eBay still make it a unique service.
I wonder how long until Google's credit card database gets hacked the first time...you know it will be a prime target.
"Due to my demanding job, I also have no time to learn how to code."
Good thing you don't also have a wife. Or kids. Or family or friends. They take up plenty of time too.
This whole article should be rated "troll." The author is either an idiot or a puss and probably both; it takes a hell of a lot more than an "idea" to make it out there. I'm sure your "employees" will also be impressed with how much faith you have in your idea as you continue to hang onto your day job too.
My favorite StarCraft edition was the "Battlechest" that sold for $9 a pop 3 years ago. That got me started on StarCraft and I bought two for my brothers too. Legal 3-way head-bashing for under $30 - woohoo!
Me too. I'll only play games where you can click through these. I won't play games where there is a clue or something else to be learned from these silly movies. (Warcraft III was a nice game in this regard. If you wanted to watch a little clip, you could, but if you just wanted to get back to the action you could skip all the weepy crap about this or that pointless character dying, etc.)
I think your keyboard keys are stuck together again. All your u's turned out to be asterisks. (I think I agree with your mother: it's time to put away the Showgirls posters in your basement.)
I suppose I could use Google, but what's the point of allowing links in the articles if authors are too lazy to spend one sentence telling us why we might care about this or that random fucko?
Wow - thanks! I'd never even heard of "Daikatana" (2000), but then again I finished up my undergrad, started working full time and got married in 1998 so my knowledge of gaming pretty much drops off at that point. (I was dimly aware that my Linux-powered Doom machines were alive thanks to a pair of programmers, but I wasn't actually aware of their names.)
From the articles...
"John Romero's About To Make You His Bitch" "In January 2004 he married a teenager he met on the internet." ...it sounds like there might be some maturity issues.
Can someone post a link or two that might help explain who John is and what he has done?
Re:I'd prefer to hack open source with FEW AUTHORS
on
Mitnick on OSS
·
· Score: 3, Insightful
"So my question remains, who runs this shitware?"
Accidentally, the answer is "many web hosting providers". If they allow users to upload and execute their own scripts on their site (and who doesn't, these days), they typically end up with several dozen copies of God knows what because web designers find these things on their own and crib them into their own sites. The permissions set to allow these scripts to run are often open enough or there is a powerful enough shared backend database to do something interesting...
OK - I'll bite - the 2 proc limit is significant. Most of the other "here's a free, hobbled copy of the huge thing we hope you will buy someday" seem to have a 2 proc limit.
On the other hand, the truly free databases have so many advantages (for me, it's small footprint) over these that they are not worth looking at - I'd never want the FULL version of these databases, even if those, too, were free.
Re:I'd prefer to hack open source with FEW AUTHORS
on
Mitnick on OSS
·
· Score: 1
How many people run this shitware?
Often it doesn't matter. For example, if I'm trying to deface site XXX (or inject a form information grabber) and I see that it runs message board YYY, the first thing I do is try to get the source code of message board YYY. In other words, if I know what I'm doing, I'm not using a shotgun/Nessus approach anyway. Instead, I'm first going to drop by as an anonymous web user and see what I can use against you before I fire my first shot.
I'd prefer to hack open source with FEW AUTHORS
on
Mitnick on OSS
·
· Score: 5, Insightful
I think I'd agree with Kevin if he said:
"I'd prefer to hack open source with FEW AUTHORS."
There's no doubt that lots of eyes and a security focus have helped Apache, but there's lots of open source shitware (for example, just Google up a list of PHP messageboards) that don't have basic input validation controls, require too much access to the operating system, use plain-text or unsalted MD5 passwords or contain other gaping holes.
Without those extra eyes helping out...yes, many open source projects are easier to hack than similar closed source projects.
The author's never worked with proxy servers, has he?
I laughed when I read this...
"The \ "attribute" is almost certainly the result of people writing markup like (br\) when intending to do (br). Of course, neither is particularly useful to browsers when the page is sent as text/html (as all these pages were)."
(OK, for those who don't get it, one reason that so much content is sent with an "incorrect" text/html header is that many proxy servers will dump content on the floor unless it has a text/html header.)
...but remember that the Web supports "direct" links. In other words, if someone gets a link to just this report's "elements" page, there's no hint. Thus, it's crappy page authoring, because it will look like a broken web page to the average user.
Pretty crappy page authoring...not to tell a poor end user that he/she was missing a required viewer (w/ Mozilla 1.7.6). My old Firefox 1.0 showed a "click here to download plug-in", but never came back with a plug-in.
(OK, so then I tried Firefox 1.5 and it worked.)
Well, if you stick some headlines in a little grey box attached to a "main" story, wouldn't you assume they are related to the main story? (If the "grey box" thing is an attempt to "minimize" items of less-than-wide interest, the interface just sucks.)
I'm not sure what kind of crack-simulator Slashdot put into its related stories selector, but some kind of Bayesian filter to figure out the relationship might be helpful.
For example...
Ask Slashdot: State of WLAN Support on Linux? Related...
IT: Microsoft Spending $120M To Look Smaller
Games: Defying Review Aggregation
Games: Competitive Gaming Hits the Mainstream
Of course, given the low level of credibility required to get posted on Slashdot, this article probably struck the editors as something on par with the Washington Post.
' Load up the src doc Set srcDoc = CreateObject("MSXML.DOMDocument") If Not srcDoc.load("C:\temp\try.xml") Then
WScript.StdErr.WriteLine "Could not load source document"
WScript.StdErr.WriteLine vbTab & "Error: " & Trim(srcDoc.parseError.reason)
WScript.StdErr.WriteLine vbTab & "Line: " & Trim(srcDoc.parseError.line)
WScript.StdErr.WriteLine vbTab & "Char: " & Trim(srcDoc.parseError.linepos)
WScript.Quit 4 End If
I think Netscape's mistake came earlier: when they thought that people would each pay $40-50 to buy a standalone browser. IE cut the floor out beneath them and Netscape went down hard after that.
Someone arriving at Netscape at 1999 would have been someone boarding a sinking ship, it would seem...
I think Google may have a point. If this is simply yet another small-volume, web-based credit card processing thing, then the quasi-online bank features of eBay still make it a unique service.
I wonder how long until Google's credit card database gets hacked the first time...you know it will be a prime target.
Good thing you don't also have a wife. Or kids. Or family or friends. They take up plenty of time too.
This whole article should be rated "troll." The author is either an idiot or a puss and probably both; it takes a hell of a lot more than an "idea" to make it out there. I'm sure your "employees" will also be impressed with how much faith you have in your idea as you continue to hang onto your day job too.
"10% inspiration, 90%..."
My favorite StarCraft edition was the "Battlechest" that sold for $9 a pop 3 years ago. That got me started on StarCraft and I bought two for my brothers too. Legal 3-way head-bashing for under $30 - woohoo!
Me too. I'll only play games where you can click through these. I won't play games where there is a clue or something else to be learned from these silly movies. (Warcraft III was a nice game in this regard. If you wanted to watch a little clip, you could, but if you just wanted to get back to the action you could skip all the weepy crap about this or that pointless character dying, etc.)
I suppose I could use Google, but what's the point of allowing links in the articles if authors are too lazy to spend one sentence telling us why we might care about this or that random fucko?
No, I think he was a gamer, not associated with Google...
Wow - thanks! I'd never even heard of "Daikatana" (2000), but then again I finished up my undergrad, started working full time and got married in 1998 so my knowledge of gaming pretty much drops off at that point. (I was dimly aware that my Linux-powered Doom machines were alive thanks to a pair of programmers, but I wasn't actually aware of their names.)
From the articles...
"John Romero's About To Make You His Bitch"
"In January 2004 he married a teenager he met on the internet."
...it sounds like there might be some maturity issues.
Can someone post a link or two that might help explain who John is and what he has done?
Accidentally, the answer is "many web hosting providers". If they allow users to upload and execute their own scripts on their site (and who doesn't, these days), they typically end up with several dozen copies of God knows what because web designers find these things on their own and crib them into their own sites. The permissions set to allow these scripts to run are often open enough or there is a powerful enough shared backend database to do something interesting...
Hmmm...RSA security is the only company I can think of that still does this. Anyone else?
OK - I'll bite - the 2 proc limit is significant. Most of the other "here's a free, hobbled copy of the huge thing we hope you will buy someday" seem to have a 2 proc limit. On the other hand, the truly free databases have so many advantages (for me, it's small footprint) over these that they are not worth looking at - I'd never want the FULL version of these databases, even if those, too, were free.
How many people run this shitware?
Often it doesn't matter. For example, if I'm trying to deface site XXX (or inject a form information grabber) and I see that it runs message board YYY, the first thing I do is try to get the source code of message board YYY. In other words, if I know what I'm doing, I'm not using a shotgun/Nessus approach anyway. Instead, I'm first going to drop by as an anonymous web user and see what I can use against you before I fire my first shot.
I think I'd agree with Kevin if he said:
"I'd prefer to hack open source with FEW AUTHORS."
There's no doubt that lots of eyes and a security focus have helped Apache, but there's lots of open source shitware (for example, just Google up a list of PHP messageboards) that don't have basic input validation controls, require too much access to the operating system, use plain-text or unsalted MD5 passwords or contain other gaping holes.
Without those extra eyes helping out...yes, many open source projects are easier to hack than similar closed source projects.
I laughed when I read this... "The \ "attribute" is almost certainly the result of people writing markup like (br\) when intending to do (br). Of course, neither is particularly useful to browsers when the page is sent as text/html (as all these pages were)."
(OK, for those who don't get it, one reason that so much content is sent with an "incorrect" text/html header is that many proxy servers will dump content on the floor unless it has a text/html header.)
...but remember that the Web supports "direct" links. In other words, if someone gets a link to just this report's "elements" page, there's no hint. Thus, it's crappy page authoring, because it will look like a broken web page to the average user.
Pretty crappy page authoring...not to tell a poor end user that he/she was missing a required viewer (w/ Mozilla 1.7.6). My old Firefox 1.0 showed a "click here to download plug-in", but never came back with a plug-in. (OK, so then I tried Firefox 1.5 and it worked.)
Not so fast - I'm pulling up mostly blank pages...
Classes
How many different class names do pages use? Well, most pages apparently don't use the class attribute at all, and it's downhill from there:
(nothing for about 15 lines)
Which class names are used on the most pages? Here are the top 20:
(nothing for about 15 lines)
This actually maps very well to the elements that are being proposed in HTML5:
etc...
First spam email in 1978?
http://www.templetons.com/brad/spamreact.html
http://www.clickz.com/experts/media/media_buy/arti cle.php/3430381
Then I think we agree - the new GREY STORY interface sucks donkey balls.
Well, if you stick some headlines in a little grey box attached to a "main" story, wouldn't you assume they are related to the main story? (If the "grey box" thing is an attempt to "minimize" items of less-than-wide interest, the interface just sucks.)
I'm not sure what kind of crack-simulator Slashdot put into its related stories selector, but some kind of Bayesian filter to figure out the relationship might be helpful.
For example...
Ask Slashdot: State of WLAN Support on Linux?
Related...
IT: Microsoft Spending $120M To Look Smaller
Games: Defying Review Aggregation
Games: Competitive Gaming Hits the Mainstream
WTF?
"People's Daily Online" = Commie Rag
Of course, given the low level of credibility required to get posted on Slashdot, this article probably struck the editors as something on par with the Washington Post.
' Load up the src doc
Set srcDoc = CreateObject("MSXML.DOMDocument")
If Not srcDoc.load("C:\temp\try.xml") Then
WScript.StdErr.WriteLine "Could not load source document"
WScript.StdErr.WriteLine vbTab & "Error: " & Trim(srcDoc.parseError.reason)
WScript.StdErr.WriteLine vbTab & "Line: " & Trim(srcDoc.parseError.line)
WScript.StdErr.WriteLine vbTab & "Char: " & Trim(srcDoc.parseError.linepos)
WScript.Quit 4
End If