The observer always, or since the 80s at least, was the trashiest of the broadsheets.
I thought that that particular article wasn't so bad, to be honest. It may have been non-news, and was a bit thin on content, but it didn't seem to be bullshit.
OK, in other virus news, slightly more up-to-date, female virus-writer Gigabyte has been arrested in Belgium.
http://www.sophos.com.au/virusinfo/articles/giga by te.html
Like many of the smarter vxers, she never released a virus into the ecosystem where it would thrive.
If it were the US, she'd a) be 100% protected by the 1st amendment. b) be banged up for being a terrorist instead.
My inbox has dozens of viruses dumped into it every day, which completely and totally pisses me off. However, I'd still shake the hand of the writers of some of the cleverer viruses, I bear them no grudge; they're simply filling a niche created by incompetant programmers at microsoft.
I tried to google for some concrete (cash/sponsorship/similar) link between MS and mi2g, but couldn't find any. That doesn't mean it doesn't exist, of course. I think it's more likely that DKM and mi2g view the whole thing as a chance to make a big noise and pretend that they're somehow going deeper than everyone else, so that suits cough up $$$ in order to read the full report.
It's the empty vessel making the loudest noise, that's all. Or another analogy:
Can't compete in the art-world -- make pictures or sculptures out of faeces. Revolutionary!
They've got one on attrition regarding mi2g's 2004 behaviour - February 2004, in fact. 20th February. Can you guess what it's about? Can you guess if it's a positive report or not? Heheh, enjoy:
http://www.attrition.org/errata/sec-co/mi2g-01.h tm l
DK Matai is simply trying to spin the same propaganda that he did in 2002 with the pretense that it contains pertinant information. On the whole it doesn't - looking at the bottom line -- the dollar -- it's the MS exploits alone which are having any real effect in the real world.
Sure, to pretend that Linux systems are magically impenetrable is equally not in the real world, but I think things need to be put in perspective.
Also - do sysadmin misconfigurations (e.g. setting anonymous ftp with access to all areas) count as an exploit? It's not the OS's fault if a human has selected a brain-dead configuration.
Wrong. They chose, in the wonderful free market that MS resides in, to buy Windows. I, as a non-windows user feel the brunt by having hundreds of viruses dumped through my DSL and into my mail program. If this thing causes chaos, then the windows users are _part of the problem_.
The buck? Sure, that's stops at Microsoft, there's no denying that.
"My first 2000+ withstood the power supply exploding and lasted another 6 months before finally giving out"
Jesus! And they said there were problems with the capacitors on athlon mobos? They sound like they're pretty darned high spec caps if they can feed the system for 6 whole months!!!
Forget IIS, it's perfectly possible for a daemon to exchange packets with the outside world without disclosing any information that it was't explicitly designed to disclose. All other information residing on that computer is therefore inaccessible.
I've written several daemons that hang off port 80/8080 etc., and accept requests which appear to be HTTP-like. However, the only information that the daemons can return is stuff from simple calculations that happen on the fly. The daemons themselves make no access to any file space, and don't even know of any filesystems. Therefore this server cannot divulge _any_ information about any files or filesystems on my computer.
I am assuming that operations like accept(2) etc. do not have any implementation bugs in the kernel that I'm using, of course. However, if for the counter-argument to stand it has to presuppose the existance of as yet undetected bugs in the kernel, then it's really not based in facts, but on speculation.
""" one of the central tenets of computer network security: If it is connected to the Internet, it can be accessed """
That's not one of the central tenets of computer network security. If it's not connected to the internet, it cannot be accessed, but that doesn't imply what you've said.
If it's connected to the internet, and there's a daemon which answers requests with the information requested, then it can be accessed. There's a subtle difference though - namely the daemon which answers the requests. Without that there's no access, and there can never be any access.
Those weren't the first two words that went through my mind as I read the summary. <<< The other development partners are... the Fraunhofer Institute >>>
The first two words that went through my mind were "submarine" and "patent".
Not being load/store, you can do an awful lot without large numbers of registers. Well written x86 code can be extremely fast as long as it has no bottlenecks. As every generation has different bottlenecks, that's pretty hard, alas.
For one generation of P4, the usage of memory, L1 cache specifically, was faster than using registers for some operations! Of course, in their reengineering of the P4 to make it less crap (making address generation not rely on a slow shifter), they've crippled the L1 performance (4 clock latency), which makes registers more of an issue again.
is equally unusable by outside applications. XML doesn't specify semantics. Of course, the more features of the document that are propagated up to the XML level, the less there is to reverse engineer, but if they're going to patent the semantics, then they don't care if people reverse engineer it - that's simply a chance for their lawyer department to become a cash cow again.
MS Files For NZ Patent On XML Word Processor Files Posted by timothy on Tuesday January 20, @05:53AM http://yro.slashdot.org/article.pl?sid=0 4/01/20/03 13258&mode=nested&tid=109&tid=155&tid=187&tid=98&t id=99 Containing the most informative: http://www.nzoss.org.nz/portal/modul es.php?name=Ne ws&file=article&sid=284
No it didn't. Those IP addresses are not blocked. Not from where I'm sitting. If I wanted to block them I could block them. If my ISP wanted to block them, it could block them. I don't and it doesn't. Therefore the intended result has not happened. Therefore SPEWS have not caused the IP address to be blocked.
Slashdot Mirror
The observer always, or since the 80s at least, was the trashiest of the broadsheets.
I thought that that particular article wasn't so bad, to be honest.
It may have been non-news, and was a bit thin on content, but it didn't seem to be bullshit.
YAW.
OK, in other virus news, slightly more up-to-date, female virus-writer Gigabyte has been arrested in Belgium.
a by te.html
http://www.sophos.com.au/virusinfo/articles/gig
Like many of the smarter vxers, she never released a virus into the ecosystem where it would thrive.
If it were the US, she'd
a) be 100% protected by the 1st amendment.
b) be banged up for being a terrorist instead.
My inbox has dozens of viruses dumped into it every day, which completely and totally pisses me off. However, I'd still shake the hand of the writers of some of the cleverer viruses, I bear them no grudge; they're simply filling a niche created by incompetant programmers at microsoft.
YAW.
I tried to google for some concrete (cash/sponsorship/similar) link between MS and mi2g, but couldn't find any. That doesn't mean it doesn't exist, of course. I think it's more likely that DKM and mi2g view the whole thing as a chance to make a big noise and pretend that they're somehow going deeper than everyone else, so that suits cough up $$$ in order to read the full report.
...
It's the empty vessel making the loudest noise, that's all. Or another analogy:
Can't compete in the art-world -- make pictures or sculptures out of faeces. Revolutionary!
Can't compete in the security world --
YAW
There was also pressure not to drop your stack of punched cards in those days!
(hint - draw a diagonal line across their top edges so you can get them in order again quickly.)
Some people seem to no know why "batch" files were so-called, it seems.
YAW.
Vx-Works
A highly respected embedded OS.
YAW.
Thanks for those links.
h tm l
They've got one on attrition regarding mi2g's 2004 behaviour - February 2004, in fact. 20th February. Can you guess what it's about?
Can you guess if it's a positive report or not? Heheh, enjoy:
http://www.attrition.org/errata/sec-co/mi2g-01.
YAW.
"last year" is pretty irrelevant, as mi2g came up with exactly
/ 10 /21/021021hnvulnerable.xml
the same report in 2002.
http://archive.infoworld.com/articles/hn/xml/02
DK Matai is simply trying to spin the same propaganda that he did in 2002 with the pretense that it contains pertinant information. On the whole it doesn't - looking at the bottom line -- the dollar -- it's the MS exploits alone which are having any real effect in the real world.
Sure, to pretend that Linux systems are magically impenetrable is equally not in the real world, but I think things need to be put in perspective.
Also - do sysadmin misconfigurations (e.g. setting anonymous ftp with access to all areas) count as an exploit? It's not the OS's fault if a human has selected a brain-dead configuration.
YAW.
------- Obsolete/local Optional packages in section contrib/web -------
*** Opt contrib/ communicator 4.77-2 <none>
*** Opt contrib/ netscape 4.77-2 <none>
*** Opt contrib/ netscape-bas 4.77-2 <none>
And I still use it too!
YAW.
Wrong. They chose, in the wonderful free market that MS resides in, to buy Windows. I, as a non-windows user feel the brunt by having hundreds of viruses dumped through my DSL and into my mail program.
If this thing causes chaos, then the windows users are _part of the problem_.
The buck? Sure, that's stops at Microsoft, there's no denying that.
YAW.
"My first 2000+ withstood the power supply exploding and lasted another 6 months before finally giving out"
Jesus! And they said there were problems with the capacitors on athlon mobos? They sound like they're pretty darned high spec caps if they can feed the system for 6 whole months!!!
YAW.
Forget IIS, it's perfectly possible for a daemon to exchange packets with the outside world without disclosing any information that it was't explicitly designed to disclose. All other information residing on that computer is therefore inaccessible.
I've written several daemons that hang off port 80/8080 etc., and accept requests which appear to be HTTP-like. However, the only information that the daemons can return is stuff from simple calculations that happen on the fly. The daemons themselves make no access to any file space, and don't even know of any filesystems. Therefore this server cannot divulge _any_ information about any files or filesystems on my computer.
I am assuming that operations like accept(2) etc. do not have any implementation bugs in the kernel that I'm using, of course. However, if for the counter-argument to stand it has to presuppose the existance of as yet undetected bugs in the kernel, then it's really not based in facts, but on speculation.
YAW.
"""
one of the central tenets of computer network security: If it is connected to the Internet, it can be accessed
"""
That's not one of the central tenets of computer network security.
If it's not connected to the internet, it cannot be accessed, but that doesn't imply what you've said.
If it's connected to the internet, and there's a daemon which answers requests with the information requested, then it
can be accessed. There's a subtle difference though - namely the daemon which answers the requests. Without that there's no access, and there can never be any access.
YAW.
"Contributing ... benefit ... "
... the Fraunhofer Institute
Those weren't the first two words that went through my mind as I read the summary.
<<<
The other development partners are
>>>
The first two words that went through my mind were "submarine" and "patent".
Hey, I guess we're both cynics.
YAW.
This is a client problem.
Gopher had URIs. In theory you could go anywhere you wanted to return to instantly.
However, it was shite. I remember it, and it was total crap. Total total crap. The guys behind it never studied HCI at all.
YAW
(First world-viewable web page in 1993)
Not being load/store, you can do an awful lot without large numbers of registers. Well written x86 code can be extremely fast as long as it has no bottlenecks. As every generation has different bottlenecks, that's pretty hard, alas.
For one generation of P4, the usage of memory, L1 cache specifically, was faster than using registers for some operations! Of course, in their reengineering of the P4 to make it less crap (making address generation not rely on a slow shifter), they've crippled the L1 performance (4 clock latency), which makes registers more of an issue again.
YAW.
Ignorance leads to fear, fear leads to hate.
I'm pretty sure there's absolute ignorance, so we converge.
YAW.
If you let it in, and then during the night a dozen armed soldiers climb out in order to do harm, then it's a _trojan_.
YAW.
Well spotted. They also include:
"""
Line 636, column 20: non SGML character number 146 (explain...).
<td>Sorry there hasn?t been a lot of news posted by me lately, I have been very
"""
Let's play spot the windows user...
YAW.
There's not any need to even CDATA it.
7 6299391772466581821756165226 4762 731636
<?xml version="1.0" encoding="utf-8">
<word-document>
<snookies pif="akf3654FHQewr">
<proing>A34Fg3HHF</proing>
125876192882775492958
<boozum/>
94623825431092375095436832187610351371
</snookies>
</word-document>
is equally unusable by outside applications. XML doesn't specify semantics. Of course, the more features of the document that are propagated up to the XML level, the less there is to reverse engineer, but if they're going to patent the semantics, then they don't care if people reverse engineer it - that's simply a chance for their lawyer department to become a cash cow again.
YAW.
Boycott slashdot for dupes, is that?
0 4/01/20/03 13258&mode=nested&tid=109&tid=155&tid=187&tid=98&t id=99l es.php?name=Ne ws&file=article&sid=284
MS Files For NZ Patent On XML Word Processor Files
Posted by timothy on Tuesday January 20, @05:53AM
http://yro.slashdot.org/article.pl?sid=
Containing the most informative:
http://www.nzoss.org.nz/portal/modu
YAW.
10 years makes the ultrasparc (1995/1996) too modern.
YAW.
"and the result happend"
No it didn't. Those IP addresses are not blocked. Not from where I'm sitting. If I wanted to block them I could block them. If my ISP wanted to block them, it could block them. I don't and it doesn't.
Therefore the intended result has not happened. Therefore SPEWS have not caused the IP address to be blocked.
YAW.
"""
When you heat up a house, you run air into a furnace, heat it up, and then pump it through the rest of the house.
"""
No I don't. I heat water, and pump that round the house.
Look up "radiator" in a dictionary some time.
YAW.
Strange. Being more English than the Royal Family, I've never been called a Paki before.
Oh - Madras isn't in Pakistan, for reference.
Get a life, then go somewhere quiet and kill yourself.
YAW.
>> and most people who use image editors dosn't do graphics proressionally
...
/do/ do graphics professionally have comprehension problems?
> Uhm
> I've worked professionally [blah blah blah]
Who gives a shit. Most people who use image editors don't do graphics professionally, like grandparent said.
Do people who
YAW.