I believe it comes from the phrase that what we see of god "we see through a glass, darkly" meaning that we don't actually see very clearly, or very well.
Strangely enough, that's the second *different* ROT-13 of the message I've seen on this article... lucky they're not getting/. to decrypt it I guess;-)
Method 1: command-c and command-v, as available in every OS in existence.
Method 2: Highlight text. Click and hold on highlighted area. Pause a moment. Drag and drop text. (In terminal.app, is almost identical to middle-click, except you drag a little)
Yes, the Mov came from moving. But, like talkies, the ie is just a familiar kinda thing. Like, Moving Picture needed to be abbreviated, and "moov" was already taken by move, so someone was like "movie", and everyone was like "dude".
There's a bit more to it than that, but basically it involves inserting your own content into someone elses webpage, whether by sql injection (messing with their database code, usually through a form) or by managing to run arbitrary code.
I got bitten by an attack like this - I had a site which would include a page (serverside - php) referenced by a variable in the url , like index.php?page=views/page.html. Unfortunately, I'd forgotten to check the input of the variable.
So what this guy did was build a php file with all the code he wanted to run on my server, then just 'include' it with ?page=http://hissite/script.php. Luckily all he did was delete the index page - he could have done a lot more damage. But anyhow, that's what cross site scripting is.
And why is utilizing "the UNIX underpinnings to their full extent," so important? Most people who use Macs aren't looking to that to be productive. Increasing my productivity is more important to me than running apache/cron/sudo on my iBook.
I bought a powerbook because PC laptops are, on the whole, ugly, and getting decent power management under Linux (compared to Mac) is near impossible. The "unix underpinnings" are important to me, and learning about them improves my productivity significantly. It may seem unusual to you, but very few days go by when I don't use the terminal at least once - but I use it very differently to a Linux terminal.
True, if you have a gig or so to spare for a redundant set of utilities, libraries and build tools - like many Mac users, I *only* want Gimp - anything else I need (like color ls) I'll compile myself without fink.
umm, not necessarily saying that selling GPL software = profit-mongering, it just seems to me in this case that $50/item for just building someone else's software seems a little steep.
Companies that sell GPL software make me think - why has the community not gotten together to bypass this sort of profit mongering?
All it would take would be one person to buy it, get the source as macgimp has it (i.e. patched for comp. on Mac OS X), build it themselves then stick it on gimp.org or planetmirror.com or similar... in fact, the community could pool together say 50 people at $1 each, and we have a free (as in speech) version of macgimp:)
my DEKA-BOOTING (FreeBSD, Win2K, MS-DOS 6.2,Win3.11, SuSE 8.2 Personal, RH 9.0, Mandrake 8, Debian 3.0, Gentoo, and Knoppix) primary box
tell me, don't you feel that that's just *slightly* ott?;)
But really, do you use all of them? What for?
I dunno... I'd be using a hard drive in any server. Using a server for file storage makes a whole lotta sense, especially if you have several interchangeable workstations. I'd get fed up with not being able to store files on it.
Also, what's the point of using it as an http/samba/webdav server if it has no hard drive? It's got nothing to serve...
deviantart.com, IIRC, runs about 3 mysql servers behind a load-balancing cache/server, so have had to deal with a lot of the difficulties involved in that.
yeah, but up to a month or so ago (when I'd last previously tried it) sftp wasn't supported. Fortunately they'd upgraded sometime in the intervening month...
SFTP is good, but FTP is *far* better than no FTP at all;)
About the time blaster and sobig.f were doing the rounds, I had some websites to upload. Unfortunately, my ISP decided it was expedient to throttle FTP traffic to death. Luckily, eventually I managed to use SFTP to get in... but I was really not happy.
I'm not saying pornography is worse than hate, rather that "don't be evil" seems to be applied to a rather selective definition of evil. Arguably, pornography and hate are both evil (issues of magnitude notwithstanding)...
Remembering that google's motto is "don't be evil", we again see some of their rather odd decisions. First it was "pornography is alright, but hate isn't", now it's "copyright infringement is wrong, but open advertising of piracy is ok"...
hmm, could it be that "stuff that could get us sued is evil", and "stuff that we get paid for is fine by us"?
Phoenix is now Firebird. The Moz suite is being broken up into Firebird, Thunderbird, and so on.
In the future you won't d/l the Moz suite, you'll d/l the Firebird browser, and the Thunderbird mail client if you, and so on and so forth... all components will be separate.
mysql_query("SELECT * FROM users WHERE userid='$USERID'");
That would expand (with your malicious value) to... userid='5 or 1=1' and so would be harmless. In the worst case, I believe all strings are c-quoted too, by MySQL, so quotes couldn't be escaped either... you'd just end up with userid='5\' or 1' which again would just return nothing.
Much easier in my book, and one less function to execute:)
Slashdot Mirror
I believe it comes from the phrase that what we see of god "we see through a glass, darkly" meaning that we don't actually see very clearly, or very well.
Strangely enough, that's the second *different* ROT-13 of the message I've seen on this article... lucky they're not getting /. to decrypt it I guess ;-)
It's real - it pokes a bit of fun, and you *don't* need the PAK file like they tell you, but it's real and it works.
uh, that would be a "no".
wtf?
Method 1: command-c and command-v, as available in every OS in existence.
Method 2: Highlight text. Click and hold on highlighted area. Pause a moment. Drag and drop text. (In terminal.app, is almost identical to middle-click, except you drag a little)
Method 3: Highlight text. Right-click->Copy. Right-click->Paste.
Dunn't seem so difficult to me...
You *were* the only one.
Please play again.
Yes, the Mov came from moving. But, like talkies, the ie is just a familiar kinda thing. Like, Moving Picture needed to be abbreviated, and "moov" was already taken by move, so someone was like "movie", and everyone was like "dude".
Um yeah...
There's a bit more to it than that, but basically it involves inserting your own content into someone elses webpage, whether by sql injection (messing with their database code, usually through a form) or by managing to run arbitrary code.
I got bitten by an attack like this - I had a site which would include a page (serverside - php) referenced by a variable in the url , like index.php?page=views/page.html. Unfortunately, I'd forgotten to check the input of the variable.
So what this guy did was build a php file with all the code he wanted to run on my server, then just 'include' it with ?page=http://hissite/script.php. Luckily all he did was delete the index page - he could have done a lot more damage. But anyhow, that's what cross site scripting is.
And why is utilizing "the UNIX underpinnings to their full extent," so important? Most people who use Macs aren't looking to that to be productive. Increasing my productivity is more important to me than running apache/cron/sudo on my iBook.
I bought a powerbook because PC laptops are, on the whole, ugly, and getting decent power management under Linux (compared to Mac) is near impossible. The "unix underpinnings" are important to me, and learning about them improves my productivity significantly. It may seem unusual to you, but very few days go by when I don't use the terminal at least once - but I use it very differently to a Linux terminal.
True, if you have a gig or so to spare for a redundant set of utilities, libraries and build tools - like many Mac users, I *only* want Gimp - anything else I need (like color ls) I'll compile myself without fink.
umm, not necessarily saying that selling GPL software = profit-mongering, it just seems to me in this case that $50/item for just building someone else's software seems a little steep.
Companies that sell GPL software make me think - why has the community not gotten together to bypass this sort of profit mongering?
:)
All it would take would be one person to buy it, get the source as macgimp has it (i.e. patched for comp. on Mac OS X), build it themselves then stick it on gimp.org or planetmirror.com or similar... in fact, the community could pool together say 50 people at $1 each, and we have a free (as in speech) version of macgimp
That make any sense?
my DEKA-BOOTING (FreeBSD, Win2K, MS-DOS 6.2,Win3.11, SuSE 8.2 Personal, RH 9.0, Mandrake 8, Debian 3.0, Gentoo, and Knoppix) primary box tell me, don't you feel that that's just *slightly* ott? ;)
But really, do you use all of them? What for?
I dunno... I'd be using a hard drive in any server. Using a server for file storage makes a whole lotta sense, especially if you have several interchangeable workstations. I'd get fed up with not being able to store files on it.
Also, what's the point of using it as an http/samba/webdav server if it has no hard drive? It's got nothing to serve...
You'll also find it's mainly a jaguar thing - apparently Panther pretty much fixes it. But yeah, it's the biggest downer of the aqua interface really.
deviantart.com, IIRC, runs about 3 mysql servers behind a load-balancing cache/server, so have had to deal with a lot of the difficulties involved in that.
Blade, Wes Craven's Vampires, Dracula 2000, Blade 2, Wes Craven's Vampires: Los Muertos?
Um... yeah... I'm gonna just back away real slow now... what? oh, that stake... um, just a little safety measure...
I mean, is that or is that not the vaguest bloody headline you've ever read?
"Linux is fast on a new fast computer"
I mean, come on...
yeah, but up to a month or so ago (when I'd last previously tried it) sftp wasn't supported. Fortunately they'd upgraded sometime in the intervening month...
;)
SFTP is good, but FTP is *far* better than no FTP at all
About the time blaster and sobig.f were doing the rounds, I had some websites to upload. Unfortunately, my ISP decided it was expedient to throttle FTP traffic to death. Luckily, eventually I managed to use SFTP to get in... but I was really not happy.
I'm not saying pornography is worse than hate, rather that "don't be evil" seems to be applied to a rather selective definition of evil. Arguably, pornography and hate are both evil (issues of magnitude notwithstanding)...
Remembering that google's motto is "don't be evil", we again see some of their rather odd decisions. First it was "pornography is alright, but hate isn't", now it's "copyright infringement is wrong, but open advertising of piracy is ok"...
hmm, could it be that "stuff that could get us sued is evil", and "stuff that we get paid for is fine by us"?
Just a thought.
that if the designers had any sense they'd put OS level stuff in ROM -- there'd be no hax0ring that baby :)
Phoenix is now Firebird. The Moz suite is being broken up into Firebird, Thunderbird, and so on.
In the future you won't d/l the Moz suite, you'll d/l the Firebird browser, and the Thunderbird mail client if you, and so on and so forth... all components will be separate.
just quote the variables...
... userid='5 or 1=1' and so would be harmless. In the worst case, I believe all strings are c-quoted too, by MySQL, so quotes couldn't be escaped either... you'd just end up with userid='5\' or 1' which again would just return nothing.
:)
mysql_query("SELECT * FROM users WHERE userid='$USERID'");
That would expand (with your malicious value) to
Much easier in my book, and one less function to execute