Thank you for a sensible post. I agree that the only real solution has to be some abstraction or alternate mode for memory access that prevents the problem outright. C and C++ not only make it possible, but extremely easy to trash memory.
The people claiming that the problem is programmers who are incompetent or stupid and believing that they are superhuman genius programmers who are somehow immune from errors are living under a delusion. You are not a beautiful and unique snowflake. We are all human and imperfect. I have seen many intelligent and competent programmers write incorrect code. I have personally written code with errors. We need to move beyond unproductive blame assigning mentalities to achieve real solutions or we will never be able to advance the state of software. Realistically, the prima donnas will continue on and other people will actually do something.
memcpy_s is not a step forward for numerous reasons already mentioned. strncpy provides functionality that strcpy does not, namely a bound on its region of effect. memcpy was already bounded and neither memcpy_s or strncpy can prevent bad parameters from causing memory corruption. Hardware support like the NX/ED bits to mark pages as not executable are a good advancement on the security front, but still do not prevent data corruption. Complete removal of memory access like many languages do solves the problem with a high performance cost. Emerging techniques like STM may be able to incorporate data safety while maintaining hardware efficiency.
No, I like this ending. It has a certain poetic justice. The wife was presumably complicit in his spam business and tax evasion unless she was being deceived for five years. Children being raised by these two crooks would not exactly be an asset to society.
Easy for you to say, AC. No, this is all about PR for MIT. Otherwise they would build a box like everyone else.
As other posters mention, Wright's buildings are notorious for leaks and other problems. $1.5 million to fix a $300 million innovative/radical/experimental design isn't going to cause any hardship for MIT. They should be relieved it was so cheap to fix.
Gimp has had a horrible UI from the beginning. I trace it all back to the sucktastic GTK widget set. Everything I've seen made with GTK seems to be hideous looking and lack any sense of usability. As much as C++ sucks, at least Qt seems to have been designed rather than carelessly agglomerated.
There are several Lisp-like DSLs (scheme for GIMP, Emacs Lisp), but I don't think that implies at all that Lisp is a good general purpose language for developing applications. Honestly I think it's just an easy language to implement (poorly:-). My understanding is that different Lisps have different sets of libraries and compatibility issues. Lisp has had 50 years to take over the world and it hasn't.
Frankly the intro about covers the article. It reeks of the "it's good for profits, it must be good!" attitude that seems to happen frequently at the expense of the general population. You know, I wrote one method for a particular open source project that became closed source/commercial and I was still pissed so I can imagine how significant contributors would feel about MySQL's split into enterprise and now limiting availability of their distributions (apparently -- I'm not 100% confident I understand what they are doing here, but I know they forked last year and changed their licensing and are changing distribution now). The real damage to the community was already done with the split, so I'm not sure this is anything but adding a little insult to injury.
The double standard is not coming from the community, it's coming from the companies who do this lead in where they ride the wave of open source until they build up a userbase and then go to some tiered model to wring out more profits. You really get the sense that people are being (ab)used as free labor.
It's not outrage against a company for trying to make money, it's outrage at this bait and switch after they get you hooked. In other words it's not that I blame the company for pursuing an effective business model, it's just that I think that they do it to some extent at the expense of their userbase and the people who contributed. They can't take away the GPLed code, but they are essentially using it as leverage to get businesses into their proprietary fork.
Yes, this enterprise/open split is a model commonly used by other companies. No, it won't end the world. It just leaves a bad taste in the mouth of people who, like me, value freedom more than corporate profit and are disappointed to see the open source model sullied like this.
Hey, but at least they finally bought into that whole ACID thing after years of ridicule from people using real databases.
That article itself is FUD. I'm extremely suspicious of a "watch" site operated by eWeek/ZDNet, a company which probably has strong investment interests in the technology sector.
I keep telling the Linux kernel team they should quit with this "security" thing. They will NEVER stop hackers from breaking in, so why try?
This is just a bad analogy. The security work on Linux doesn't limit your hardware and software choices like DRM does. In my opinion, copy protection schemes have always been primarily a nuisance for people who made legitimate purchases.
Foolish geeks. It's not all about you. It's about keeping all you "hogs" from destroying their networks.
So why service providers impose bandwidth caps if it's a bandwidth issue? Why do they have to inspect packets?
Like I said, you've got a future in the media mafia.
Sounds like you have a good future in large-scale media oppression. You will never, ever stop piracy. Companies keep foolishly thinking they can and they fail every time. ISPs should not be involved in protecting copyrights of these big media conglomerates. RIAA is going to rid the net of malware? Get real.
Thank you token fanboy. Listen, Microsoft can have whatever damned business model they want. But is it too much to ask for them to display some ethical behavior and not lie and say they "enable open standards"?
To update my comments about the attackers, it does appear that this Room 101 group is known for repeated griefing over long periods of time which I don't support. It is not clear to me whether they have done anything that is technically illegal, but they themselves have a negative reputation in Second Life.
As far as I can tell, the penis attack was a one time event. Harassment is usually defined to be persistent. If there was repeated griefing as you suggest, then I would support actions against the perpetrators. I also don't see much evidence that the attackers were seeking publicity themselves.
It seems to me that Anshe Chung has become overly self-important and it was just a matter of time until the world took actions to correct it, legal or otherwise. From the articles I have read, there is significant animosity in this game community about the tactics she has employed to build her virtual empire. I find it completely fascinating that something ostensibly for entertainment can exhibit these complex social interactions which parallel reality.
Even though you see the attack as the problem, I see it as a reassuring reminder that we can create virtual solutions to problems like Anshe Chung.
Updating the CGI effects in movies is every bit as tacky as other misguided modifications like colorizing black and white movies, cropping movies to 4:3, and overdubbing dialog in a different language instead of employing subtitles. The intent of the original creators is compromised by someone trying to "improve" it. We don't fix bad notes in old recordings or cover stray brush strokes in old paintings.
When you decide to get a laptop you are saying performance is secondary, and also that you would like to pay 2-3 times the cost of an equivalent desktop.
I personally dislike dragging a laptop around. Even 5 pounds is too heavy. "desktop replacement" laptops are usually very heavy, and still not as good as a real desktop. I don't see dual core being practical on laptops soon.
I have VPN to work which is much better than having to physically transport data.
Slashdot Mirror
Thank you for a sensible post. I agree that the only real solution has to be some abstraction or alternate mode for memory access that prevents the problem outright. C and C++ not only make it possible, but extremely easy to trash memory.
The people claiming that the problem is programmers who are incompetent or stupid and believing that they are superhuman genius programmers who are somehow immune from errors are living under a delusion. You are not a beautiful and unique snowflake. We are all human and imperfect. I have seen many intelligent and competent programmers write incorrect code. I have personally written code with errors. We need to move beyond unproductive blame assigning mentalities to achieve real solutions or we will never be able to advance the state of software. Realistically, the prima donnas will continue on and other people will actually do something.
memcpy_s is not a step forward for numerous reasons already mentioned. strncpy provides functionality that strcpy does not, namely a bound on its region of effect. memcpy was already bounded and neither memcpy_s or strncpy can prevent bad parameters from causing memory corruption. Hardware support like the NX/ED bits to mark pages as not executable are a good advancement on the security front, but still do not prevent data corruption. Complete removal of memory access like many languages do solves the problem with a high performance cost. Emerging techniques like STM may be able to incorporate data safety while maintaining hardware efficiency.
"The system will also act as a giant weather cock,"
Insightful? 8.5% of Microsoft's income in 2007 was from investments. Do you think big companies keep their cash under a mattress?
No, I like this ending. It has a certain poetic justice. The wife was presumably complicit in his spam business and tax evasion unless she was being deceived for five years. Children being raised by these two crooks would not exactly be an asset to society.
Comic sans is never the right choice for a typeface. That presentation hurts my eyes. -Kevin
As other posters mention, Wright's buildings are notorious for leaks and other problems. $1.5 million to fix a $300 million innovative/radical/experimental design isn't going to cause any hardship for MIT. They should be relieved it was so cheap to fix.
Of course you can turn off UAC, though it still nags when you restart. I like Vista better than XP also.
So it's okay for you to make up statistics AC? http://en.wikipedia.org/wiki/Usage_share_of_desktop_operating_systems
Gimp has had a horrible UI from the beginning. I trace it all back to the sucktastic GTK widget set. Everything I've seen made with GTK seems to be hideous looking and lack any sense of usability. As much as C++ sucks, at least Qt seems to have been designed rather than carelessly agglomerated.
There are several Lisp-like DSLs (scheme for GIMP, Emacs Lisp), but I don't think that implies at all that Lisp is a good general purpose language for developing applications. Honestly I think it's just an easy language to implement (poorly :-). My understanding is that different Lisps have different sets of libraries and compatibility issues. Lisp has had 50 years to take over the world and it hasn't.
The double standard is not coming from the community, it's coming from the companies who do this lead in where they ride the wave of open source until they build up a userbase and then go to some tiered model to wring out more profits. You really get the sense that people are being (ab)used as free labor.
It's not outrage against a company for trying to make money, it's outrage at this bait and switch after they get you hooked. In other words it's not that I blame the company for pursuing an effective business model, it's just that I think that they do it to some extent at the expense of their userbase and the people who contributed. They can't take away the GPLed code, but they are essentially using it as leverage to get businesses into their proprietary fork.
Yes, this enterprise/open split is a model commonly used by other companies. No, it won't end the world. It just leaves a bad taste in the mouth of people who, like me, value freedom more than corporate profit and are disappointed to see the open source model sullied like this.
Hey, but at least they finally bought into that whole ACID thing after years of ridicule from people using real databases.
Yes, procedural like "procedural textures" not like using functions. Please stop posting about OO vs procedural programming.
That article itself is FUD. I'm extremely suspicious of a "watch" site operated by eWeek/ZDNet, a company which probably has strong investment interests in the technology sector.
I'm not sure what the article said - I was busy trying to gouge my eyes out. What a terrible site.
This is just a bad analogy. The security work on Linux doesn't limit your hardware and software choices like DRM does. In my opinion, copy protection schemes have always been primarily a nuisance for people who made legitimate purchases.
So why service providers impose bandwidth caps if it's a bandwidth issue? Why do they have to inspect packets?
Like I said, you've got a future in the media mafia.
Sounds like you have a good future in large-scale media oppression. You will never, ever stop piracy. Companies keep foolishly thinking they can and they fail every time. ISPs should not be involved in protecting copyrights of these big media conglomerates. RIAA is going to rid the net of malware? Get real.
Thank you token fanboy. Listen, Microsoft can have whatever damned business model they want. But is it too much to ask for them to display some ethical behavior and not lie and say they "enable open standards"?
They are just spreading their filthy proprietary standards to Linux. That is doing as much to "enable open standards" as it is to solve world hunger.
Anyway, it is an interesting conversation.
It seems to me that Anshe Chung has become overly self-important and it was just a matter of time until the world took actions to correct it, legal or otherwise. From the articles I have read, there is significant animosity in this game community about the tactics she has employed to build her virtual empire. I find it completely fascinating that something ostensibly for entertainment can exhibit these complex social interactions which parallel reality.
Even though you see the attack as the problem, I see it as a reassuring reminder that we can create virtual solutions to problems like Anshe Chung.
Updating the CGI effects in movies is every bit as tacky as other misguided modifications like colorizing black and white movies, cropping movies to 4:3, and overdubbing dialog in a different language instead of employing subtitles. The intent of the original creators is compromised by someone trying to "improve" it. We don't fix bad notes in old recordings or cover stray brush strokes in old paintings.
This is a case for the archive IMO. This company is really trying to suppress incriminating evidence, not protect its IP.
I personally dislike dragging a laptop around. Even 5 pounds is too heavy. "desktop replacement" laptops are usually very heavy, and still not as good as a real desktop. I don't see dual core being practical on laptops soon.
I have VPN to work which is much better than having to physically transport data.
typo: processor affinity. I wish slashdot let you edit posts.