Some ingenious ideas , need to be patented so that the inventor can reap the benefits of his hardwork. But inventions which leave us saying "f@#king DUH!", should seriously be quentioned.
What USofA needs is a better patent challanging system. and by challanging a patent I don't mean claim ownership of that patent, I mean demonstrate the use of that idea so commonly in public domain, that no one actually deserves the patent.
I just want to be the fly on the wall of M$'s office
Patch Officer:- Sir, Out windows update service has issued a Patch today.
Billy G:- But I said NO Patches in month of Dec.
Patch Officer:- Yes Sir, but the patch issuing s/w has a bug, We need to patch it ASAP.
Billy G:- But I said no patches in Dec , damn it.
Patch Officer:- But then we won't be able to prevent the windows update service from issuing the first patch
Billy G:- READ MY LIPS man, NO patches in Dec.
From my observations, I have conculded the following two reasons,being responcible for security breaches in computer systems.
One:- Not knowing your priorities. Even if you hire the best security personels in the industry, If you don't know what is THE MOST important aspect of your business you want to guard, you are destined to be owned. People talk about security without implying what exactly are they securing, this leads to lots of holes in your security.
This leads to common mistakes like putting your Database in the same DMZ as your Websever, even if your webserver is running SSL, this is disaster waiting to happen.
Second point is the inability to recognize your enemy. Knowing your enemy goes a long way in implementing your security strategies. Contrary to the popular belif , the people who attack your network are not some internation +3rr0r15+5 but people who are interested in your money (i.e Credit card details, bank statements, finanacial records) etc, or some prick who who just wants to prove a point. Having paranoidal dillusions about your enemy does not really help.
I don't know how to reliably detect when you're "ignoring" email;
Apart from the very obviuos way,as you mentioned by detecting that I have moved the message from one folder to another, there are atleast 2 ways I can think of , at the top of my head.
One If the message is unread after say 2-3 days, chances Are I don't need it. (my vacation time barring).
All message that I mark as READ without downloading the body (i use POP) , can also be detected as the one's I don't need.
I tried pop file on my windows box a couple of months ago .
But the web interface always discouraged me from configuring it. Am I the only person who hates configuring s/w, h/w via a WEB -UI ? either give me a decent nativ GUI application or a simple text file approach. But WEB UI plain sucks.
Also popfile kept crashing all the time. Although I haven't tried the Unix ver. yet.
Especially for my office emails.
The client should follow my trend of sorting emails for a couple of months and then gain enough intelligence to do it own its own.
First sorting SPAM v/s useful email:- I guess this is alsways being worked on, thunderbird does it. But its not adaptive enough.
Second Sorting based on emails that I ignore though they are not spams, like periodic reminders , baby shower notices (really do i need to care ?), emails about personal events in lives of my fellow employes (marriage, death) etc . about which I don't care., Ack. receipts etc.
A lot of time my inbox is filled with mail which is originating from my company but in a sense is junk to me. It is too cumbersome to come with filters for a lot of them. We need some AI in the email client.
Its been a while since i touched cryptography. But as far as I remember about Hash values , they are theorotically irreversible. But As of yet I haven't seen any example of two messages having same hash.
OK, I am making a calculate d guess here , but I may be wrong.
For any system that takes password inputs from users i.e. the password is entered from outside the system, It really doesn't need to store the password even in encrypted format.
The system merely stores a hash value of the password , when the user enters the password, the sytem generates the hash of the user entered password and compares it with stored hash value. If they match bingo, if not try again. Also the system progressively delays the next log-in prompt upon match failure to tackel, such a mass brute force attack.<P> If I am not wrong these days, the password is stored in MD5 hash. And since hash value is theorotically irreversible, it can be stored in plain text. But I guess as an added safety measure, the linux boxes these days store passwords in/etc/shadow rather than/etc/passwd. The shadow file can only be read by root, while other world readable info is in passwd file.
Obligatory Simpsons Quote:- Blame it on the guy who can't speak English<P> Surely you do realise that those very jobs were created by the dot-com boom. It was a bubble which was destined to burst. Don't blame the foreigners for faults in your own economic structure. You chose capitalism as your economy , and now you are seeing the ugly side of it.<P>Capitalism just like any other socio-economical structure has its own advantages and disadvantages.
That is only one side of it, The other being that English is very well rooted in India.
,All the scientific studies are in English, Infact the only subjects you study after highschool in native languages are the languages themselves. And students tend to avoid those subjects too. <P> A Indian student is more career oriented , when it comes to choosing subjects in college, rather than choosing based on interests.<P>That being said, lot of students persue non technical classes like (languages, music) in their spare time, but hardly as a part of their curriculum.<P> Almost all govt. paperwork is in englush, though supplimented by local language. All official business work is in english. The court documents all its transcrtips in English.<P> This is one of the major reason that , support for native language is not a major factor in India, for adoptation of Computers in Every day life.
It is one of the 13 official languages of India and also official language of bangladesh.
It is the official language of the Indian State, West Bengal and has produced some great indian poets including Tagore who won a nobel prize for his poems Geetanjali".
Slashdot Mirror
Is sparc a RISC based system ? Or does it just have a better FPU than x86 ?
Any info against what least common denominator the binaries are compiled for ? 386 , 486, pentium ?
Yep, As long as you use Vim as your text editor, it really doesn't matter what OS you use.
And Pro-Linux and Pro-*BSD guys , sitting on comfortable chairs, enjoying the show, eating pop-corns with extra cheese on it :-)
Darl :- linux turned me into a nute :- Well , I got better
Everyone looks at him,
Darl
Sadly the patent wordings most of the time are so vague or catch-all, that the inventor gets credit for more that he deserves.
This is especially true for software patents
Some ingenious ideas , need to be patented so that the inventor can reap the benefits of his hardwork. But inventions which leave us saying "f@#king DUH!", should seriously be quentioned.
What USofA needs is a better patent challanging system. and by challanging a patent I don't mean claim ownership of that patent, I mean demonstrate the use of that idea so commonly in public domain, that no one actually deserves the patent.
When it comes to clicking links on /., most /.ers are like homer , every time they click a link they say D!oh, and do it again .
Patch Officer :- Sir, Out windows update service has issued a Patch today. :- But I said NO Patches in month of Dec. :- Yes Sir, but the patch issuing s/w has a bug, We need to patch it ASAP. :- But I said no patches in Dec , damn it. :- But then we won't be able to prevent the windows update service from issuing the first patch :- READ MY LIPS man, NO patches in Dec.
Billy G
Patch Officer
Billy G
Patch Officer
Billy G
Shall we say patch-22 :-)
Simple, there is a bug in the patch issuing s/w which needs to be patched .
From my observations, I have conculded the following two reasons ,being responcible for security breaches in computer systems.
One:- Not knowing your priorities. Even if you hire the best security personels in the industry, If you don't know what is THE MOST important aspect of your business you want to guard, you are destined to be owned. People talk about security without implying what exactly are they securing, this leads to lots of holes in your security .
This leads to common mistakes like putting your Database in the same DMZ as your Websever, even if your webserver is running SSL, this is disaster waiting to happen.
Second point is the inability to recognize your enemy. Knowing your enemy goes a long way in implementing your security strategies. Contrary to the popular belif , the people who attack your network are not some internation +3rr0r15+5 but people who are interested in your money (i.e Credit card details, bank statements, finanacial records) etc, or some prick who who just wants to prove a point. Having paranoidal dillusions about your enemy does not really help.
The irony is this will be moded as redundunt.
And not to menstion its poor-excuse-of-an-OS successor Windows ME.
Apart from the very obviuos way ,as you mentioned by detecting that I have moved the message from one folder to another, there are atleast 2 ways I can think of , at the top of my head.
One If the message is unread after say 2-3 days, chances Are I don't need it. (my vacation time barring).
All message that I mark as READ without downloading the body (i use POP) , can also be detected as the one's I don't need.
But the web interface always discouraged me from configuring it. Am I the only person who hates configuring s/w, h/w via a WEB -UI ? either give me a decent nativ GUI application or a simple text file approach. But WEB UI plain sucks. Also popfile kept crashing all the time. Although I haven't tried the Unix ver. yet.
The client should follow my trend of sorting emails for a couple of months and then gain enough intelligence to do it own its own.
First sorting SPAM v/s useful email :- I guess this is alsways being worked on, thunderbird does it. But its not adaptive enough.
Second Sorting based on emails that I ignore though they are not spams, like periodic reminders , baby shower notices (really do i need to care ?), emails about personal events in lives of my fellow employes (marriage, death) etc . about which I don't care., Ack. receipts etc.
A lot of time my inbox is filled with mail which is originating from my company but in a sense is junk to me. It is too cumbersome to come with filters for a lot of them. We need some AI in the email client.
Its definitely been a while , since i last touched cryptography
But it's been a while so I may have faded memory.
Open Sesame..
For any system that takes password inputs from users i.e. the password is entered from outside the system, It really doesn't need to store the password even in encrypted format.
The system merely stores a hash value of the password , when the user enters the password, the sytem generates the hash of the user entered password and compares it with stored hash value. If they match bingo, if not try again. Also the system progressively delays the next log-in prompt upon match failure to tackel, such a mass brute force attack.<P>
If I am not wrong these days, the password is stored in MD5 hash. And since hash value is theorotically irreversible, it can be stored in plain text. But I guess as an added safety measure, the linux boxes these days store passwords in
Obligatory Simpsons Quote :- Blame it on the guy who can't speak English<P>
Surely you do realise that those very jobs were created by the dot-com boom. It was a bubble which was destined to burst. Don't blame the foreigners for faults in your own economic structure. You chose capitalism as your economy , and now you are seeing the ugly side of it.<P>Capitalism just like any other socio-economical structure has its own advantages and disadvantages.
I hate to use Corba/RPC for IPC if applications are running on the same hardware , albeit diff. VMs.
Almost all govt. paperwork is in englush, though supplimented by local language. All official business work is in english. The court documents all its transcrtips in English.<P>
This is one of the major reason that , support for native language is not a major factor in India, for adoptation of Computers in Every day life.
It is the official language of the Indian State, West Bengal and has produced some great indian poets including Tagore who won a nobel prize for his poems Geetanjali".
Oh yeah, the time i spent trying to figure out how to disable him was priceless.