PHP scripts will still manually implement it, and each one will do it in a slightly different but still broken way, generating hundreds more security vulnerabilities...
4.114 There have been calls in the UK to introduce pure computer software patents to ensure that innovation is properly protected and encouraged. In Europe, patents are not granted for computer programs as such,87 but patents have been granted to computer-based innovations provided they have a technical effect. In the USA, pure computer software patents can be granted. The evidence on the success of pure computer software patents is mixed. The software industry in the USA grew exponentially without pure software patents, suggesting they are not necessary to promote innovation.88 The evidence suggests software patents are used strategically; that is, to prevent competitors from developing in a similar field, rather than to incentivise innovation.
4.116 Introducing pure software patents could raise the costs for small software developers to mitigate against risks surrounding R&D, thereby inflating the capital needs of software development. Sun Microsystems argued that without exceptions that allowed for reverse engineering for interoperability, pure software patents could stifle competition.
4.117 Last year, the European Parliament rejected the Computer Implemented Inventions Directive, but this issue has been raised again. The economic evidence suggests that such patents have done little to raise incentives to innovate, and other evidence suggests that the introduction of such patents will have a chilling effect on innovation. In the absence of such evidence, a new right for pure software patents should not be introduced, and so the scope of patentability should not be extended to cover computer programs as such.
4.122 The Review supports the current position on pure software patents, business method patents and gene patents, and recommends that changes to the current position should only be made in light of economic evidence that such changes would enhance innovation to offset the considerable costs.
Recommendation 17: Maintain policy of not extending patent rights beyond their present limits within the areas of software, business methods and genes. Reference: Gowers Review of Intellectual Property.
Re:So when do we get its successor?
on
X Power Tools
·
· Score: 1
What you are describing is already been worked on. Soon, at least on Linux, Xorg will no longer need to run as root.
Re:So when do we get its successor?
on
X Power Tools
·
· Score: 4, Insightful
Bad analogy. What the original poster said would be more like "I know the internal combustion engine is entrenched and all, aren't we fed up with this dinosaur?..."
Security image, WTF? You should be checking the subject of the certificate that the site presents when you connect to it.
(Of course, this only works if you have already verified the identify of the issuer of the certificate, and trust them to verify the identities of other sites).
You can easily hook these disks up with an external USB (or eSATA, or Firewire) drive enclosure. But before you rifle through any disk that used to belong to someone else, please consider whether you should.
Bear the following text in mind; it is printed out by the 'sudo' program the first time a user runs it:
We trust you have received the usual lecture from the local System Administrator. It usually boils down to these three things:
#1) Respect the privacy of others.
#2) Think before you type.
#3) With great power comes great responsibility.
It would be best if you bugged your vendor to get off their arses and *support their software*. Which is what you presumably pay them for in the first place...
glibc 2.3 has been around since 2001 (at least... that is the date it entered Debian unstable. It may have been released earlier).
Standard Hushmail downloads (& caches) an applet on your computer that encrypts & decrypts your private key with your passphrase. Only the encrypted private key is stored on Hushmail servers, and your email encrypted with the public key. They don't give your decrypted email up to authorities, even with a court order. Because, by design, they CAN'T. The unencrypted private key is never on their server. Are you sure that Hushmail wouldn't deliver a version of their software with a backdoor if ordered to by a court?
lwn.net had a story about this a while back. Worth reading at http://lwn.net/Articles/256904/. One of the comments in particular:
Actually, I really think he has a point. Not only does Google have enough employees working
on Firefox to ram through whatever change they desire, they also control enough members of the
self-appointed WHAT-WG "HTML 5" group to do whatever they want there as well. So an idea can
be "standardized" instantly solely by Google employees, then implemented, reviewed,
super-reviewed, and committed entirely by Google employees.
This is not theoretical, it already happened with the "ping" attribute in HTML 5, which
benefits nobody except advertising companies (read: Google).
Slashdot Mirror
Because their customers want them to.
Using the Windows boot loader to chainload code off another partition is, AFAIK, impossible.
Besides, in Vista the nice, easy-to-modify boot.ini file is gone. It is replaced by yet another binary registry-like database. Typical Microsoft.
The fix is DNSSEC.
You really don't. Anyone can put down $15 and get an SSL certificate issued for their domain in a matter of minutes.
Surely the users wouldn't just ignore the certificate warnings that their browsers presented them with... right?
PHP scripts will still manually implement it, and each one will do it in a slightly different but still broken way, generating hundreds more security vulnerabilities...
Hardware mixing. Sound under Linux is still a total PITA without it.
It's the reason I plan to port my trusty SB Live Value 5.1 from system to system until it finally dies (whereupon I will look for a new one on ebay).
Jesus Christ... and people say Windows is ready for the desktop!
With free software you are empowered to modify the software to your specification, however. With proprietary software, you are stuffed.
Their PGP key is useless... it has not been signed by anyone.
Install the i386 port of your distro.
Hm, just like hard drives!
/dev/hdb ... ... ...
I wonder if flash drives comply with the SMART spec, that allows you to find out how many remapped blocks there are:
# smartctl -A
ID# ATTRIBUTE_NAME FLAG VALUE WORST THRESH TYPE UPDATED WHEN_FAILED RAW_VALUE
5 Reallocated_Sector_Ct 0x0033 253 253 063 Pre-fail Always - 0
So, when VALUE drops below THRESH then the drive is junk and should be replaced ASAP.
ensure that innovation is properly protected and encouraged. In Europe, patents are not
granted for computer programs as such,87 but patents have been granted to computer-based
innovations provided they have a technical effect. In the USA, pure computer software
patents can be granted. The evidence on the success of pure computer software patents is
mixed. The software industry in the USA grew exponentially without pure software patents,
suggesting they are not necessary to promote innovation.88 The evidence suggests software
patents are used strategically; that is, to prevent competitors from developing in a similar
field, rather than to incentivise innovation. 4.116 Introducing pure software patents could raise the costs for small software developers
to mitigate against risks surrounding R&D, thereby inflating the capital needs of software
development. Sun Microsystems argued that without exceptions that allowed for reverse
engineering for interoperability, pure software patents could stifle competition. 4.117 Last year, the European Parliament rejected the Computer Implemented Inventions
Directive, but this issue has been raised again. The economic evidence suggests that such
patents have done little to raise incentives to innovate, and other evidence suggests that the
introduction of such patents will have a chilling effect on innovation. In the absence of such
evidence, a new right for pure software patents should not be introduced, and so the scope of
patentability should not be extended to cover computer programs as such. 4.122 The Review supports the current position on pure software patents, business method
patents and gene patents, and recommends that changes to the current position should only
be made in light of economic evidence that such changes would enhance innovation to offset
the considerable costs. Recommendation 17: Maintain policy of not extending patent rights beyond their present limits within the areas of software, business methods and genes.
Reference: Gowers Review of Intellectual Property.
Google: TLS SNI :)
What you are describing is already been worked on. Soon, at least on Linux, Xorg will no longer need to run as root.
Bad analogy. What the original poster said would be more like "I know the internal combustion engine is entrenched and all, aren't we fed up with this dinosaur? ..."
Security image, WTF? You should be checking the subject of the certificate that the site presents when you connect to it.
(Of course, this only works if you have already verified the identify of the issuer of the certificate, and trust them to verify the identities of other sites).
Someone with access to /usr could replace /usr/bin/firefox with a script that tars up /home, mails it to themselves, and then runs firefox.
So did you configure your BIOS to decrypt the MBR on the boot disk? Or are you using a decent architecture where such things are commonplace?
Bear the following text in mind; it is printed out by the 'sudo' program the first time a user runs it: We trust you have received the usual lecture from the local System
Administrator. It usually boils down to these three things:
#1) Respect the privacy of others.
#2) Think before you type.
#3) With great power comes great responsibility.
It would be best if you bugged your vendor to get off their arses and *support their software*. Which is what you presumably pay them for in the first place...
glibc 2.3 has been around since 2001 (at least... that is the date it entered Debian unstable. It may have been released earlier).
If I'm forced to choose between theads and some crappy proprietary application, I'll take my theads thanks!
You're at stage six, "Explain why a simple collision attack is still useless, it's really the second pre-image attack that counts".
:)
http://www.linuxworld.com/cgi-bin/mailto/x_linux.cgi?pagetosend=/export/home/httpd/linuxworld/news/2007/111207-hash.html
lwn.net had a story about this a while back. Worth reading at http://lwn.net/Articles/256904/. One of the comments in particular:
Please file a bug against the 'installation-reports' package.
http://www.debian.org/releases/stable/i386/ch05s03.html.en#problem-report