Man, if it's true, how awesome would that BE?! I'm the kind of person that - as skeptical as I am - always holds out hope for discoveries like this. There is more clean energy in this universe than we'll ever need - harvesting it is the difficulty. If someone discovered a way to do it - man alive that'd be sweet.
You seriously need to recalibrate your skepticism meter. Anything that claims to generate energy for no cost is bullsh*t. Either than or get get some further science training.
MS Office is built heavily on MS Windos. There's even a whole secret API especially so that MS Office can beat competing products. Windos, in turn, sells mostly (in the corporate environment) because of Office. Exchange/Outlook are so common because they "fit into" the landscape, and are integrated heavily with both.
And yet they have released a version that runs on OS X.
At the moment the 802.11n standard is at draft 2 stage. The 802.11n gear available now is based on 802.11n draft 1.
The manufacturers of this hardware are betting that any changes in the spec between draft 1 and the final version can be fixed by a firmware upgrade. It is by no means certain that this will be the case.
In addition, it isn't clear whether hardware for the 802.11n draft from different manufacturers will work together.
So the answer (as with most technology) is to wait and see. In this case, given that this is based on a draft, that has been superceded, waiting is certianly a good idea.
The problem is that AV software at the moment scans for signatures of known malware. Essentially they are reactive.
What they should be doing more heuristic scanning, identifying malware by characteristics rather than looking for particular malware signatures.
This is a fundimental weakness in most existing AV software. Certainly this is harder to because legitimate software can do similar things to malware. That doesn't change the fact that AV companies should be concentrating more on this. This is particularly true as most "successful" worms get modified and re-released. As a result it should be possible for the AV companies to detect the altered worms.
Consumer reports is doing us all a service here by exposing this weakness. Provided they ensure the worms don't get out I'm all for it. This is a perfectly valid way of testing the malware. In addition FTA they are doing what most malware writers do anyway: altering the worm just enough so that it is likely to get past the signature based scanning software.
And I've seen the mythbusters make a lethal paper crossbow out of newspaper and a lunch tray, as well as eat through an inch thick steel bar with a DC transformer and salsa.
IIRC it was the AC and the salsa that did the job. The DC was much slower.
Several times. I'm going to keep trying til I get it right.
Re:Formal study vs. Hard Work
on
The Expert Mind
·
· Score: 1
He is a dummy.
Slighly long chain of aquantances, but my sister knows someone whose job is to place people like GWB on boards of companies (this is pre-president days). The verdict was: he is an idiot.
Clearly you have never worked in any environment that involves drafting or technical drawing.
It is the standard for all architectural drawings to use caps only. I believe it is also the cost for most engineering drawings (or it certainly was when I went through University).
Caps is used because: - For reasons of clarity, it is preferred to use either just lower or just upper case. - for shorter text (and most text on drawings is short), it is easier to read upper case only
Next you'll be declaring war on terror. Oh wait, that one has already been done.
The caps lock has a use. For example in some languages it is common practice or required to write in upper case (SQL for one, COBOL also). It saves on holding down shift.
In the article I referenced in Wikipedia attributes that (the bits of paper) to Fermi not Taylor. A quick googling would seem to confirm this.
According to the wikipedia article on the Buckingham Pi Theorem, Taylor is commended for his calculations on the energy from the atomic bomb based on the videos. This is a similar story to the Fermi one, but there appear to be two distinct stories here.
Do people just like patting each other on the back?
Yes.
On sites the have a community (slashdot included), there is a tendancy for that community to homogenise. Dissenting views are shouted down. Everyone pats everyone else on the back. What tends to happen is if people don't like the community they move to another one.
An example of this, the article on Evolution. If I were to express doubt on the existance of a missing link I would get shouted down.
I suggest you research the origin of the term "back of the envelope calculation", you will learn the story of one "Sir Geoffrey Taylor". Then come back and tell me again what is too complex to do by hand.
According to Wikipedia at least the term has more to do with Fermi.
Right. The UN has been able to solve all the world's problems. We were able to talk down Germany and Japan in the 40s, so politics should be able to sort out our difference with the terrorists. I am sure they are reasonable people, willing to open a sincere dialog.
A belligerent nation can still act regardless of international condemnation. Just look at the war in Iraq...
It's so obscenely trivial to make a car bomb it's not funny. Even if you only killed 5 people with each one, I assure you 10 of those in a year would have a bigger impact on day-to-day life in New York than the WTC.
But they did do this. I saw it on Threat Matrix one night.
so, not wanting to fall two stories, in a panic, he popped another nail through his forearm to anchor him until his co-workers could get a ladder in to help him.
I'm not sure I'd call that panic. I'd call it quick thinking.
While he does use XSS to manipulate the site, most of the damagins stuff he does is not done through XSS. The application is poorly designed because:
1. It does not stop someone from URL hacking to edit the data of another client. This is just flat out poor coding.
2. It allows people to upload executable code and execute it, in this case PHP.
What XSS gives him is the potential to gain access to the site under another account. This was because the site maintains state by storing a session cookie. He can inject some XSS that will send the session cookie to another server, where he can pick it up later and use to log in as another user.
So yes, real use of XSS. But to actually own the server he needed to be able to upload the PHP file.
Slashdot Mirror
Man, if it's true, how awesome would that BE?! I'm the kind of person that - as skeptical as I am - always holds out hope for discoveries like this. There is more clean energy in this universe than we'll ever need - harvesting it is the difficulty. If someone discovered a way to do it - man alive that'd be sweet.
You seriously need to recalibrate your skepticism meter. Anything that claims to generate energy for no cost is bullsh*t. Either than or get get some further science training.
MS Office is built heavily on MS Windos. There's even a whole secret API especially so that MS Office can beat competing products. Windos, in turn, sells mostly (in the corporate environment) because of Office. Exchange/Outlook are so common because they "fit into" the landscape, and are integrated heavily with both.
And yet they have released a version that runs on OS X.
No it is not time to upgrade.
At the moment the 802.11n standard is at draft 2 stage. The 802.11n gear available now is based on 802.11n draft 1.
The manufacturers of this hardware are betting that any changes in the spec between draft 1 and the final version can be fixed by a firmware upgrade. It is by no means certain that this will be the case.
In addition, it isn't clear whether hardware for the 802.11n draft from different manufacturers will work together.
So the answer (as with most technology) is to wait and see. In this case, given that this is based on a draft, that has been superceded, waiting is certianly a good idea.
The problem is that AV software at the moment scans for signatures of known malware. Essentially they are reactive.
What they should be doing more heuristic scanning, identifying malware by characteristics rather than looking for particular malware signatures.
This is a fundimental weakness in most existing AV software. Certainly this is harder to because legitimate software can do similar things to malware. That doesn't change the fact that AV companies should be concentrating more on this. This is particularly true as most "successful" worms get modified and re-released. As a result it should be possible for the AV companies to detect the altered worms.
Consumer reports is doing us all a service here by exposing this weakness. Provided they ensure the worms don't get out I'm all for it. This is a perfectly valid way of testing the malware. In addition FTA they are doing what most malware writers do anyway: altering the worm just enough so that it is likely to get past the signature based scanning software.
Shame on you McAfee.
My bad. Thanks for the correction.
And I've seen the mythbusters make a lethal paper crossbow out of newspaper and a lunch tray, as well as eat through an inch thick steel bar with a DC transformer and salsa.
IIRC it was the AC and the salsa that did the job. The DC was much slower.
Yeah Frontline is fantastic. I didn't know it was live to air these day though.
I see you are having your own cash for comments scandal.
Several times. I'm going to keep trying til I get it right.
He is a dummy.
Slighly long chain of aquantances, but my sister knows someone whose job is to place people like GWB on boards of companies (this is pre-president days). The verdict was: he is an idiot.
A determined idiot, but an idiot nonetheless.
Clearly you have never worked in any environment that involves drafting or technical drawing.
It is the standard for all architectural drawings to use caps only. I believe it is also the cost for most engineering drawings (or it certainly was when I went through University).
Caps is used because:
- For reasons of clarity, it is preferred to use either just lower or just upper case.
- for shorter text (and most text on drawings is short), it is easier to read upper case only
It is the standard on archtectural (and other drawings) to use UPPER CASE only. This is for clarity.
Next you'll be declaring war on terror. Oh wait, that one has already been done.
The caps lock has a use. For example in some languages it is common practice or required to write in upper case (SQL for one, COBOL also). It saves on holding down shift.
Thanks for proving my point.
In the article I referenced in Wikipedia attributes that (the bits of paper) to Fermi not Taylor. A quick googling would seem to confirm this.
According to the wikipedia article on the Buckingham Pi Theorem, Taylor is commended for his calculations on the energy from the atomic bomb based on the videos. This is a similar story to the Fermi one, but there appear to be two distinct stories here.
Do people just like patting each other on the back?
Yes.
On sites the have a community (slashdot included), there is a tendancy for that community to homogenise. Dissenting views are shouted down. Everyone pats everyone else on the back. What tends to happen is if people don't like the community they move to another one.
An example of this, the article on Evolution. If I were to express doubt on the existance of a missing link I would get shouted down.
I suggest you research the origin of the term "back of the envelope calculation", you will learn the story of one "Sir Geoffrey Taylor". Then come back and tell me again what is too complex to do by hand.
According to Wikipedia at least the term has more to do with Fermi.
FYI that is not particularly secure (read the sections under wireless packet sniffers).
After that you can use SMAC to spoof the MAC sddress of your card.
Comments like this have been driving me insane.
You might want to drink a little less coffee.
Right. The UN has been able to solve all the world's problems. We were able to talk down Germany and Japan in the 40s, so politics should be able to sort out our difference with the terrorists. I am sure they are reasonable people, willing to open a sincere dialog.
A belligerent nation can still act regardless of international condemnation. Just look at the war in Iraq...
Besides, the UN did not exist until after WWII.
It's so obscenely trivial to make a car bomb it's not funny. Even if you only killed 5 people with each one, I assure you 10 of those in a year would have a bigger impact on day-to-day life in New York than the WTC.
But they did do this. I saw it on Threat Matrix one night.
Not to mention the difference between a "role-acting" terrorist and a real terrorist.
We need to get some real terrorists to test this system.
Maybe we could get Mohamed Atta out of his cell, give him some explosives and see how it goes.
so, not wanting to fall two stories, in a panic, he popped another nail through his forearm to anchor him until his co-workers could get a ladder in to help him.
I'm not sure I'd call that panic. I'd call it quick thinking.
No.
The US has a massive pro-Israel bias that skews their view.
While he does use XSS to manipulate the site, most of the damagins stuff he does is not done through XSS. The application is poorly designed because:
1. It does not stop someone from URL hacking to edit the data of another client. This is just flat out poor coding.
2. It allows people to upload executable code and execute it, in this case PHP.
What XSS gives him is the potential to gain access to the site under another account. This was because the site maintains state by storing a session cookie. He can inject some XSS that will send the session cookie to another server, where he can pick it up later and use to log in as another user.
So yes, real use of XSS. But to actually own the server he needed to be able to upload the PHP file.