XXXX? Not sure about anywhere else but I can assure you its consumed in quite large quantities here in QLD Australia - its not too bad either, for cheap piss at least. Though any beer can be good if you give it a chance to get used to.
Lemmie guess, youve been 'reverse engineering' Visual Basic binaries? Or at the leastm very simplistic C programs.
In reality, decompiling is a very difficult thing to do, and IDA pro (which they are using) does a very good job of this difficult task. You can be sure that by using this they are using one of the best tools available for dissassembly. It recognises functions etc but still retains all the low level ASM and optimised C code which is used a lot in the development of drivers which doesnt translate too cleanly to C.
There are a lot of people who are sharing the same class C as spammers. Also, if this becomes common place, spammers will DoS you by setting up a HotMail account and sending a spam or two to get HoTmaiL blacklisted so that you abandon the scheme. Not to mention virii and chain letters coming from innocent people which SpamAssassin may pick up on and blacklist that block. Plus, some class C networks sometimes span different ISPs which would cause you to block some email coming from a different ISP.
Non-authoritative answer: 1.2.3.4.relays.osirusoft.com text = "Please stop using relays.osirusoft.com"
Authoritative answers can be found from: osirusoft.com nameserver = ns4.osirusoft. etc... >
Personnaly, Ive never liked blacklists that much. A whitelist system, combined with HashCash to allow people youve never contacted to get on your whitelist is the most ideal solution. The use of HashCash means spammers can't bulk mail millions of people to get on their whitelist, but it is very easy for someone to get on a few peoples whitelist at a time. The guys over at 'camram.org' are working on such a system. I think Microsoft is working on something called 'penny black' or something which does something similar.
How does this mean there are more boys playing games than girls? The post is comparing two different age brackets.
more women over 18 than young boys are playing games
This means there is a higher % of women from 18 to ~80 playing games than boys 6 to 17. Well duh... there is a hell of a lot more people in the latter age bracket. Completely stupid stats.
2) The automated downloading of patches can be done by just about any linux disto (excuse my ignorance, but the only 'major' (redhat, suse, mandrake, debian, gentoo, slack) distro that I am not sure about is slack (due to my lack of experence with it). apt-get, emerge, up2date, etc can be scheduled in crontab (and have been able to be for many years before a decent 'windowsupdate')
But will it update your custom compile of Apache with a module you downloaded from hacker joe which makes use of the latest Perl tarball you nabbed from CVS? You see what I'm saying?
sure Microsoft has a monopoly and supplies all these components themselves, but it gives you a single place to get well tested updates from. You dont have to subscribe to a hundred different mailing lists and read every mail to make sure you dont miss an update to some obscure kernel module you have to patch in manually....
You are also forced to download everything to do the filtering. If you are on a dial up connection, this is a pita.
I have seen a provider which uses SpamAssassin, but has a web based front end which allows users to customise their own thresholds, rules, what to do with the spam etc. It also has a web frontend to display all the filtered messages, just click on the message and it gets put back into your inbox for download.
An unmaintained system is almost always more vulnerable than a maintained system
Thats exactly right. So what it comes down to is which operating system is easier to maintain (easy to maintain = easy to secure). Personally I think that is windows, just download a couple service packs and your done. On Linux, due to the number of different configurations and heterogenous components it is a lot more difficult to keep it up to date. my 2c.
Aside from not wanting to spam and draw attention to themselves when e-mail is a bit 'hot', they have also most likely lost a lot of their open proxies.
The original SoBig opened a lot of proxies for them to use, but the recent msblaster and new variants of SoBig have cause so much trouble that many people have been forced to scan their systems for viruses. Therefore they are cleaning their system of previous trojans which were leaving their system open for abuse by spammers. Hence, the worms have effectively cleaned up a lot of the net leaving spammers less resources to abuse.
Another theory... the group/guy who wrote SoBig is one of the biggest spam organisations.. and given the current FBI man hunt, is afraid to use his massive proxy network to spew crap out selling stuff cause it could eventually be traced back to him.
I might be reaching a bit here, but perhaps the spammers are waiting for the current SoBig infestation to die down.
Reasons being;
many people are getting flooded with the crap and where they may just get a few spams and be able to read them, now they are inundated and are trigger happy with the delete key.
Many peoples inboxes are filled and can't accept any e-mail
It also may be that your particular address just happened to be 0wn3d by that particular spammer but not any/many others. There are plenty of other people that are on many other spammers lists.
well to be more accurate, AIM was actually using a buffer overlow in their own client to run code on the users computer which would then do the equivalent thing. This is very difficult to emulate, and the reason MS gave up trying to interoperate.
But would you use a client which downloaded and ran arbitrary code everytime you logged in? Probably not, but then again, the users were unaware of this. AOL is a pretty dodge company, I sometimes wonder whether people that give MS a bad name ever look at some of these other companies first...
In the article, it says that if it comes down to it, they may just drop the MSN protocal. This sounds great. Not only will it drop the size of a GAIM installation, but it will give many people a reason to start using a better IM service.
Or it will give many people a reason to drop GAIM in favour of a client which supports MSN....
A possible method to block out other 'rogue' clients which was used by AIM for example, is to have the 'challenge' a random number/offset, and the 'response' being the value in the executable at that offset. Hence the only way to connect is to have a copy of the entire executable, any 3rd party clients would need a copy of this and may be breaking some 'DMCA crap' in doing so.
Of course, another method is to just use PKI, but then extracting the key out of the MSN client for use in login may not be seen as a breach of copyright/other rights/DMCA crap etc.
Given that we were intrigued by what looked like a face on the surface of mars, maybe we should create some face-like formation on earth. This way, passer-by aliens may see the creation and send a probe of their own... heh. just a thought.
Does it matter that the code in question was 'removed from the code because it was ugly'? It was still obviously there in the first place and used as a basis for the new code.
Even if the code wasn't in there at all, but they examined the original SCO code in order to create their own, that would still be in violation of their IP rights.
As other people have said, it would require some better engineering (smaller micron size etc). And when they manage that, although it would result in a cooler chip, they are just going to pump even more power through it so that it runs even faster than previous chips - rather than cooler.
eg. Todays chips are actually quite cool, but only when you run them at yesterdays speeds.
There's always a reason! I think Blaster is a reason enough.
How is that a reason? The exploit that worm used was fixed months ago.
Microsoft have been talking about making auto-updating enabled by default in a service pack which may be linked to the delay. They will need to make sure patches are installed without having too many adverse affects. And a way for business users to have it disabled because they would typically not want it enabled.
If you have a read of the patent, youll agree it is one of those broad catch all going to try milk this later type of patents.... I also think that if they could get money out of MS, then Netscape, shockwave, ICQ, and many others are all to come.
Slashdot Mirror
This is a play on the name "Bill Gates", surely? Why else would they call it that. Interesting concept nonetheless.
When he could have just jumped in the van that was following him? For that matter, why even go up the damn mountain in the first place?
:)
That said, motorbikes are 'cool' and I ride one and would rather that over a damn segway anyday.
XXXX? Not sure about anywhere else but I can assure you its consumed in quite large quantities here in QLD Australia - its not too bad either, for cheap piss at least. Though any beer can be good if you give it a chance to get used to.
Ironically, the sources to that "Reverse Engineering Compiler" are not available in the public domain...
Lemmie guess, youve been 'reverse engineering' Visual Basic binaries? Or at the leastm very simplistic C programs.
In reality, decompiling is a very difficult thing to do, and IDA pro (which they are using) does a very good job of this difficult task. You can be sure that by using this they are using one of the best tools available for dissassembly. It recognises functions etc but still retains all the low level ASM and optimised C code which is used a lot in the development of drivers which doesnt translate too cleanly to C.
There are a lot of people who are sharing the same class C as spammers. Also, if this becomes common place, spammers will DoS you by setting up a HotMail account and sending a spam or two to get HoTmaiL blacklisted so that you abandon the scheme. Not to mention virii and chain letters coming from innocent people which SpamAssassin may pick up on and blacklist that block. Plus, some class C networks sometimes span different ISPs which would cause you to block some email coming from a different ISP.
> set querytype=TXT
> 1.2.3.4.relays.osirusoft.com
Server: x.x.x.x
Address: x.x.x.x
Non-authoritative answer:
1.2.3.4.relays.osirusoft.com text = "Please stop using relays.osirusoft.com"
Authoritative answers can be found from:
osirusoft.com nameserver = ns4.osirusoft. etc...
>
Personnaly, Ive never liked blacklists that much. A whitelist system, combined with HashCash to allow people youve never contacted to get on your whitelist is the most ideal solution. The use of HashCash means spammers can't bulk mail millions of people to get on their whitelist, but it is very easy for someone to get on a few peoples whitelist at a time. The guys over at 'camram.org' are working on such a system. I think Microsoft is working on something called 'penny black' or something which does something similar.
that should read "higher number of women"... or "higher % of gamers are women..."
Either way, the number/% of women in the 6 to 17 age group is only 12%, compared to 21% for boys in the same group.
How does this mean there are more boys playing games than girls? The post is comparing two different age brackets.
more women over 18 than young boys are playing games
This means there is a higher % of women from 18 to ~80 playing games than boys 6 to 17. Well duh... there is a hell of a lot more people in the latter age bracket. Completely stupid stats.
2) The automated downloading of patches can be done by just about any linux disto (excuse my ignorance, but the only 'major' (redhat, suse, mandrake, debian, gentoo, slack) distro that I am not sure about is slack (due to my lack of experence with it). apt-get, emerge, up2date, etc can be scheduled in crontab (and have been able to be for many years before a decent 'windowsupdate')
But will it update your custom compile of Apache with a module you downloaded from hacker joe which makes use of the latest Perl tarball you nabbed from CVS? You see what I'm saying?
sure Microsoft has a monopoly and supplies all these components themselves, but it gives you a single place to get well tested updates from. You dont have to subscribe to a hundred different mailing lists and read every mail to make sure you dont miss an update to some obscure kernel module you have to patch in manually....
You are also forced to download everything to do the filtering. If you are on a dial up connection, this is a pita.
I have seen a provider which uses SpamAssassin, but has a web based front end which allows users to customise their own thresholds, rules, what to do with the spam etc. It also has a web frontend to display all the filtered messages, just click on the message and it gets put back into your inbox for download.
Seems like the most ideal solution.
An unmaintained system is almost always more vulnerable than a maintained system
Thats exactly right. So what it comes down to is which operating system is easier to maintain (easy to maintain = easy to secure). Personally I think that is windows, just download a couple service packs and your done. On Linux, due to the number of different configurations and heterogenous components it is a lot more difficult to keep it up to date. my 2c.
Ok, another theory...
Aside from not wanting to spam and draw attention to themselves when e-mail is a bit 'hot', they have also most likely lost a lot of their open proxies.
The original SoBig opened a lot of proxies for them to use, but the recent msblaster and new variants of SoBig have cause so much trouble that many people have been forced to scan their systems for viruses. Therefore they are cleaning their system of previous trojans which were leaving their system open for abuse by spammers. Hence, the worms have effectively cleaned up a lot of the net leaving spammers less resources to abuse.
Another theory... the group/guy who wrote SoBig is one of the biggest spam organisations.. and given the current FBI man hunt, is afraid to use his massive proxy network to spew crap out selling stuff cause it could eventually be traced back to him.
many people are getting flooded with the crap and where they may just get a few spams and be able to read them, now they are inundated and are trigger happy with the delete key.
Many peoples inboxes are filled and can't accept any e-mail
It also may be that your particular address just happened to be 0wn3d by that particular spammer but not any/many others. There are plenty of other people that are on many other spammers lists.
well to be more accurate, AIM was actually using a buffer overlow in their own client to run code on the users computer which would then do the equivalent thing. This is very difficult to emulate, and the reason MS gave up trying to interoperate.
But would you use a client which downloaded and ran arbitrary code everytime you logged in? Probably not, but then again, the users were unaware of this. AOL is a pretty dodge company, I sometimes wonder whether people that give MS a bad name ever look at some of these other companies first...
A possible method to block out other 'rogue' clients which was used by AIM for example, is to have the 'challenge' a random number/offset, and the 'response' being the value in the executable at that offset. Hence the only way to connect is to have a copy of the entire executable, any 3rd party clients would need a copy of this and may be breaking some 'DMCA crap' in doing so.
Of course, another method is to just use PKI, but then extracting the key out of the MSN client for use in login may not be seen as a breach of copyright/other rights/DMCA crap etc.
Given that we were intrigued by what looked like a face on the surface of mars, maybe we should create some face-like formation on earth. This way, passer-by aliens may see the creation and send a probe of their own... heh. just a thought.
Does it matter that the code in question was 'removed from the code because it was ugly'? It was still obviously there in the first place and used as a basis for the new code.
Even if the code wasn't in there at all, but they examined the original SCO code in order to create their own, that would still be in violation of their IP rights.
As other people have said, it would require some better engineering (smaller micron size etc). And when they manage that, although it would result in a cooler chip, they are just going to pump even more power through it so that it runs even faster than previous chips - rather than cooler.
eg. Todays chips are actually quite cool, but only when you run them at yesterdays speeds.
There's always a reason! I think Blaster is a reason enough.
How is that a reason? The exploit that worm used was fixed months ago.
Microsoft have been talking about making auto-updating enabled by default in a service pack which may be linked to the delay. They will need to make sure patches are installed without having too many adverse affects. And a way for business users to have it disabled because they would typically not want it enabled.
If you have a read of the patent, youll agree it is one of those broad catch all going to try milk this later type of patents.... I also think that if they could get money out of MS, then Netscape, shockwave, ICQ, and many others are all to come.
Some karma whoring links others might find interesting.
EOLAS SUES MICROSOFT FOR INFRINGEMENT OF PATENT...
The patent
No, why would it be? IE is free, and this affects only Microsoft not the end users.