All this does is piss the hacker/engineer off and make them try even harder.
For example, I can see someone taking one of their cheap receivers, disassembling it, decoding the display hardware and feeding that into a serial port. That was just one idea that took zero effort to think up!
If their competitors encourage the PC-satellite radio integration, they will hurt.
The equivalent of that just snuck in the back door- any computer with built in networking hardware automatically has a permanent uniquie ID via the Mac address. Built-in means you can't switch the network card, and you probably can't change the Mac address in the BIOS. um, oops!
Now the article didn't say how he logged into AOL- he could've been connected via DSL and possibly used the included networking hardware to do it, nailing him with the MAC address.
To what degree is the mainstream media reviewing reports like this recent one from OSDL? If they are, they're certainly not reporting it. It's looking pretty biased to me!
So, to the average investor, SCO's claim that they matched 1 out of 5 million lines of code in Linux is pretty damning evidence.. whereas domain experts like us can easily see through these lies. Hopefully this comes to light in the courts, 'cause people like us are certainly screaming in a vacuum right now!
I'm thinking that the the financial/business media is leaning towards SCO side since SCO represents a more conventional corporate america, and Linux / GPL threatens that model?
in the latest there is the comment " Leading Linux experts or advocates were not immediately available for comment."
w-w-wha-WHAT?? The open source commuinity has been doing nothing *but* commenting- take the latest extremely well written open leter from Bruce Perens, for example.
Meanwhile SCOX stock price continues to inexplicably rise.. All the harder to fall.
This is scary stuff!!! Companies would love nothing more than turn the internet into another form of TV. This is clearly a step in that direction. A little bit here, a little bit there, and suddenly it'll be the defacto standard behaviour for the internet- consumers thinking they can't author information for this network, just like TV.
On top of that, what's so special about port 80 that makes it so much more secure than other ports? Clueless system administrators think they're safe by blocking all but 80, while clueless application developers push the port concept up one level, shoving multiple buggy, insecure services through one port using RPC mechanisms like SOAP/XML. Now what security analysis tool will be available to understand the *different* requests coming over port 80? hah.
I wonder what the potential for hacking these networks is? If they're running on low power, low performance devices, are they going to have robust encryption?
Even if you couldn't decrypt the signals, you could detect their presence.. which leads to a bunch of potential counter-measures: jam their communications with a bunch of RF noise, sweep a microwave beam to fry their circuits, the list goes on.
Interestingly enough, fairly low tech countermeasures could be used to combat this kind of high technology.
By not promoting IE on the Mac platform, it may reduce the pressure for web site designers to create sites that only work well or even *correctly* on IE.
And not just by resisting os-specific active content, like activeX controls, but browser specific D/HTML and javascript features that work correctly on only one browser.
DMA provides their own "do not call list" for consumers. Only telemarketers that are members of the DMA and elect to honor the list will actually use the list and not call you.
So review their instructions for yourself on how to place yourself on their list:
What a scam! they CHARGE $5.00 to accept online submissions, but mail-in requests are free! Now, what acutally costs them more?!?
They actually try to scare you into using the online form by warning that registering by mail takes longer. This convinces me that they not very interested in representing consumer interests.
Sprint PCS seems to be the first to offer an unlimited data transfer plan (PCS Vision).
Yes, that's unlimited data transfer. Download all the apps you want, run network-enabled J2ME apps, browse the web, as long as you want! This is significant because it raises the incentive for running these phone based apps.
What's interesting is that they're marketing a distinction between their voice and data services - other providers, AT&T, Verizon, TMobile, etc. don't make as clear of a distinction between the two, nor are they setting themselves up to be viewed as a wireless *information* provider, rather than traditional wireless voice services.
I can't wait to trade in my phone for a Samsung A500 or an LG5350.:)
No, I'm not a sprint employee. I was just blown away with the possibilities presented by unlimited wireless data services!:)
It's about 8MB in size- On windows machines it installs automatically like other browser plugins.
What's nice is that this is a plugin maintained by Sun, not one of your own creation. You just write apps that leverage the technology. So far Sun's java WebStart works on windows, MacOS X, Solaris and Linux. Not too shabby!
Assuming you find the installation of the Java 1.4 browser plugin acceptable, WebStart offers a compelling "have your cake and eat it too" alternative to web based applications.
WebStart lets you write web based Java applications that automatically download, install and self upgrade. The initial installation make take some time, but the jar files are stored locally (unlike traditional applets). making subsequent launching and running much faster.
This ultimately allows you to use all of the traditional thick client benefits in a lightweight deployment mechanism.
For an example, check out the thinlet project. Look at their webstart-based demo of the Amazon.com web service catalog browser (lets you browse their database using their SOAP api).
Also notice how fast it is. Using this approach, you're only transmitting the API message and the resulting data, instead of that, the HTML/formatting, graphics, javascript over and over again.
I think technology like this is the future of web-based applications, not further extending a text formatting language like HTML to do web apps.
This is what I wrote to the ACLU. maybe they'll notice. Personally, all of this is scaring the crap out of me.. The ramifications..
- - - - - -
A new violation of free speech by the DMCA:
You may have seen this already. Hewlett Packard is threatening to sue a computer security expert to *not* reveal a security flaw in their Tru64 operating system.
http://news.com.com/2100-1023-947325.html
Plainly put, I feel this is outrageous! HP knew of this flaw for over a year, and did nothing to prevent it!
As we become more dependent upon computers, it's not inconceivable that this flaw could be exploited to harm more than just data- if critical systems are controlled by a computer running this operating system (such as a power plant or a train switching system), a security exploit could mean the safety of human lives!
for more expert perspectives on this matter, please review the comments on this site:
We need to make an example of how crazy the DMCA is.
You know how you can camoflauge writing using colored dots? well, come up with an "encryption" mechanism that hides messages using these colored dots.
When copied using a Black & White photocopier, the copier will be more sensitive to some colors, causing those colors to stand out more... Specifically, the colors making up the dots of the message. Making a photocopy would therefore "decrypt" the message! Bingo! illegal under DMCA!
Maybe an extreme example, but I'm sure there are many things out there that already exist that can be leveraged to show how insane the DMCA is.
I recently participated in a 450 member group purchase for the Megasquirt EFI. Two guys: Bruce Bowling and Al Grippo designed and built this programmable fuel injection computer, and provided all of the information for building the EFI: assembler source code, schematics, PC Configuration program, wiring & tuning diagrams, you name it.
This system will allow you to replace the stock engine management system or fuel inject a carbureated vehicle. The obvious advantage over a the stock fuel injection system is that you can actually manipulate all aspects of the system: fuel curve, startup enrichments, accelerator enrichments, etc.
Since the group purchase, people have been "megasquirting" everything: new cars, old cars, trucks, Rotary engines (Mazda Rx7), even motorcycles!
Check out the website. Be sure to look at the PC configurator...
A lot of this information is very proprietary... They've performed a huge service for the community by developing this project. It inspired me to undertake a comparatively modest project of my own: the uSpark ignition controller
Slashdot Mirror
you can polish a turd but in the end it's still... :)
All this does is piss the hacker/engineer off and make them try even harder.
For example, I can see someone taking one of their cheap receivers, disassembling it, decoding the display hardware and feeding that into a serial port. That was just one idea that took zero effort to think up!
If their competitors encourage the PC-satellite radio integration, they will hurt.
Weird- first time I read the subject line I thought it said "Crazy CTO: Linux clusters don't play in HPC" - and I was like, yeah, that guy is nuts! :)
y'know- for frying RFID tags embedded in things that won't fit in your microwave..
The equivalent of that just snuck in the back door- any computer with built in networking hardware automatically has a permanent uniquie ID via the Mac address. Built-in means you can't switch the network card, and you probably can't change the Mac address in the BIOS. um, oops!
Now the article didn't say how he logged into AOL- he could've been connected via DSL and possibly used the included networking hardware to do it, nailing him with the MAC address.
To what degree is the mainstream media reviewing reports like this recent one from OSDL? If they are, they're certainly not reporting it. It's looking pretty biased to me!
...There's a chance for more "dramatic gains in the SCO stock price"
...The ability to yank one million lines of code out of five million is substantial; Investors seem to believe that SCO's suit has merit
So, to the average investor, SCO's claim that they matched 1 out of 5 million lines of code in Linux is pretty damning evidence.. whereas domain experts like us can easily see through these lies. Hopefully this comes to light in the courts, 'cause people like us are certainly screaming in a vacuum right now!
I'm thinking that the the financial/business media is leaning towards SCO side since SCO represents a more conventional corporate america, and Linux / GPL threatens that model?
It's not April 15th, is it??
I find it interesting that the mainstream news outlets seem to pick and choose what stories to run.
for example, yahoo news on SCOX
in the latest there is the comment " Leading Linux experts or advocates were not immediately available for comment."
w-w-wha-WHAT?? The open source commuinity has been doing nothing *but* commenting- take the latest extremely well written open leter from Bruce Perens, for example.
Meanwhile SCOX stock price continues to inexplicably rise.. All the harder to fall.
This is scary stuff!!! Companies would love nothing more than turn the internet into another form of TV. This is clearly a step in that direction. A little bit here, a little bit there, and suddenly it'll be the defacto standard behaviour for the internet- consumers thinking they can't author information for this network, just like TV.
On top of that, what's so special about port 80 that makes it so much more secure than other ports? Clueless system administrators think they're safe by blocking all but 80, while clueless application developers push the port concept up one level, shoving multiple buggy, insecure services through one port using RPC mechanisms like SOAP/XML. Now what security analysis tool will be available to understand the *different* requests coming over port 80? hah.
So, are paid /. users not subjected to dup articles (in addition to the absence of big ads?)
Had to jab just a little. :)
Cost no object?
How about a house completely made out of a corrosion resistant metal, like titanium or stainless steel.. walls, roof, etc. would be made from this.
foundation would be solid granite blocks.
anything I'm missing?
I wonder what the potential for hacking these networks is? If they're running on low power, low performance devices, are they going to have robust encryption?
Even if you couldn't decrypt the signals, you could detect their presence.. which leads to a bunch of potential counter-measures: jam their communications with a bunch of RF noise, sweep a microwave beam to fry their circuits, the list goes on.
Interestingly enough, fairly low tech countermeasures could be used to combat this kind of high technology.
By not promoting IE on the Mac platform, it may reduce the pressure for web site designers to create sites that only work well or even *correctly* on IE.
And not just by resisting os-specific active content, like activeX controls, but browser specific D/HTML and javascript features that work correctly on only one browser.
DMA provides their own "do not call list" for consumers. Only telemarketers that are members of the DMA and elect to honor the list will actually use the list and not call you. So review their instructions for yourself on how to place yourself on their list:
DMA remove from telemarketing list information
What a scam! they CHARGE $5.00 to accept online submissions, but mail-in requests are free! Now, what acutally costs them more?!?
They actually try to scare you into using the online form by warning that registering by mail takes longer. This convinces me that they not very interested in representing consumer interests.
Bring on the nation-wide do-not-call list!
Sprint PCS seems to be the first to offer an unlimited data transfer plan (PCS Vision).
:)
:)
Yes, that's unlimited data transfer. Download all the apps you want, run network-enabled J2ME apps, browse the web, as long as you want! This is significant because it raises the incentive for running these phone based apps.
What's interesting is that they're marketing a distinction between their voice and data services - other providers, AT&T, Verizon, TMobile, etc. don't make as clear of a distinction between the two, nor are they setting themselves up to be viewed as a wireless *information* provider, rather than traditional wireless voice services.
I can't wait to trade in my phone for a Samsung A500 or an LG5350.
No, I'm not a sprint employee. I was just blown away with the possibilities presented by unlimited wireless data services!
the windows plugin can be downloaded from http://java.sun.com/getjava/.
It's about 8MB in size- On windows machines it installs automatically like other browser plugins.
What's nice is that this is a plugin maintained by Sun, not one of your own creation. You just write apps that leverage the technology. So far Sun's java WebStart works on windows, MacOS X, Solaris and Linux. Not too shabby!
Assuming you find the installation of the Java 1.4 browser plugin acceptable, WebStart offers a compelling "have your cake and eat it too" alternative to web based applications.
WebStart lets you write web based Java applications that automatically download, install and self upgrade. The initial installation make take some time, but the jar files are stored locally (unlike traditional applets). making subsequent launching and running much faster.
This ultimately allows you to use all of the traditional thick client benefits in a lightweight deployment mechanism.
For an example, check out the thinlet project. Look at their webstart-based demo of the Amazon.com web service catalog browser (lets you browse their database using their SOAP api).
Also notice how fast it is. Using this approach, you're only transmitting the API message and the resulting data, instead of that, the HTML/formatting, graphics, javascript over and over again.
I think technology like this is the future of web-based applications, not further extending a text formatting language like HTML to do web apps.
I wonder, does this apply to satellite providers like Dish and DirecTV?
Until you pointed it out, I never knew this site existed! cooool.... time to go search for mp3's.
This is what I wrote to the ACLU. maybe they'll notice. Personally, all of this is scaring the crap out of me.. The ramifications..
m l?tid=153
- - - - - -
A new violation of free speech by the DMCA:
You may have seen this already. Hewlett Packard is threatening to sue a computer security expert to *not* reveal a security flaw in their Tru64 operating system.
http://news.com.com/2100-1023-947325.html
Plainly put, I feel this is outrageous! HP knew of this flaw for over a year, and did nothing to prevent it!
As we become more dependent upon computers, it's not inconceivable that this flaw could be exploited to harm more than just data- if critical systems are controlled by a computer running this operating system (such as a power plant or a train switching system), a security exploit could mean the safety of human lives!
for more expert perspectives on this matter, please review the comments on this site:
http://slashdot.org/articles/02/07/31/0030239.sht
Thank you for your time. I hope this is not lost in the sea of emails you receive..
We need to make an example of how crazy the DMCA is.
You know how you can camoflauge writing using colored dots? well, come up with an "encryption" mechanism that hides messages using these colored dots.
When copied using a Black & White photocopier, the copier will be more sensitive to some colors, causing those colors to stand out more... Specifically, the colors making up the dots of the message. Making a photocopy would therefore "decrypt" the message! Bingo! illegal under DMCA!
Maybe an extreme example, but I'm sure there are many things out there that already exist that can be leveraged to show how insane the DMCA is.
I recently participated in a 450 member group purchase for the Megasquirt EFI. Two guys: Bruce Bowling and Al Grippo designed and built this programmable fuel injection computer, and provided all of the information for building the EFI: assembler source code, schematics, PC Configuration program, wiring & tuning diagrams, you name it.
This system will allow you to replace the stock engine management system or fuel inject a carbureated vehicle. The obvious advantage over a the stock fuel injection system is that you can actually manipulate all aspects of the system: fuel curve, startup enrichments, accelerator enrichments, etc.
Since the group purchase, people have been "megasquirting" everything: new cars, old cars, trucks, Rotary engines (Mazda Rx7), even motorcycles!
Check out the website. Be sure to look at the PC configurator...
Megasquirt Home page
Yahoo discussion groups
A lot of this information is very proprietary... They've performed a huge service for the community by developing this project. It inspired me to undertake a comparatively modest project of my own: the uSpark ignition controller