What happens when you try to use your untrusted OS to go onto a website to download content?
How do you explain to your relatives that internet access is blocked because the ISP cannot confirm your trusted status?
At first glance, putting your head in the sand and running away from the problem is feasible, but if this plays out as far as people expect, then your machine is not your own, and the only way round it is total compliance.
Think of an x-box as 1st generation.
Without some VERY clever trickery, you cannot run uncertified software, and you can pretty much give up all hope of playing online.
I care about a future where I am still able to download, modify and share OSS software.
If executables have to be validated and signed for trustworthyness, then everyone will need to compile their own.
The "legit" version of firefox may work, but modify the source and compile your own, and it won't play in your windows system. Don't even think of taking it to your friends' house.
Your honor, I accidentally gathered a massive mailing list, sat around many meetings working out what to say, and finally clicked send - all totally accidentally. I thought I was sending my mother some flowers over the internet, honestly I did.
The problem with foreign characters in domain names will remain throughout the western world.
The problem is this:
I cannot easily type unicode addresses into my browser, so how can any company expect to advertise/use them when so many people would have problems?
I agree that this does not solve the rest of the worlds problems, and disabling IDN entirely is bad for the few sites you may need to visit in your life, BUT a normal western person never needs to go onto any "common" bigname site that has IDN characters. I don't want to simply disable IDN, because that doesn't solve anything (paypa1.com type scams would still work)
Simply flagging those sites which break that simple premise will give most westerners peace of mind.
Sorry if that doesn't help Asain countries, but I'm more concerned about myself and everyone I know.
I already have a full proof of concept JS function in place, which identifies strange sites and gives a simple, easily understandable traffic light status of the site (with more information about the actual mismatch), and am just gearing myself up to building it into an extension.
I would rather give millions of people the *ability* to differentiate simple domains from complex ones than sit around for months discussing somebody elses problem while (possibly) my friends/relatives get ripped off.
I thought it was only Windows that did that silly naming thing? But the way it was mentioned in the article was as though it tried to force NRG format save, and he overwrote just the filename, giving possibly an invalid ISO file. Just didn't sound right.
by the way, the discussion we were having yesterday, somebody has posted a very nice mock up of it here
That works perfectly (yes, I know its a hard coded example with fixed markup).
I wonder now if we could expand the actual firefox address bar with something like this, or if we would need to completely re-impliment it as a colored overlay? (Incase your wondering, I work mainly in VB, sad I know, but it pays the bills and all this XUL/extension coding is a little over my head at the moment)
If you don't mind keeping it on your site for a short while, I am going to use your excellent example as the proof of concept for explaining the idea.
That is the thing I was worrying about, and does answer part of my query, but it still doesn't answer whether Nero itself will output a true ISO file when you create and save an image as "music.iso", or if it outputs a NRG formatted file with an incorrect extension.
I wouldn't want to blow somebodies computer up by giving them a file with incorrect data in.
Re:Long story short....
on
NeroLinux vs. K3b
·
· Score: 4, Insightful
Do not underestimate the power of Brand recognition.
People moving over from Windows will see the name and know what they are getting. Lack of options is only a problem for those of us who bother with fussing around.
NeroLinux completed the image in 9 seconds. The file name was saved as music.iso, which I had to add the file extension manually, though it was by default set to.NRG.
Isn't the NRG image format different to ISO, and therefore just renaming the created image just like renaming a jpeg image to GIF? The burning software may assume the format from the data, but that sounds like bad practice, and definately not advisable.
So, my question, does NeroLinux create true ISO images?
How do you explain to your friend/relative whos computer is configured to NOT boot from cd to change their BIOS settings?
I agree though, Live eval cds are invaluable, and are preferable to running a slower emulated environment, but this cd allows both options, so why not say its a good thing?
You could even put a throbber on for mixed type domain words. We cannot rule out colorblindness, so would have to come up with some alternative to cater.
I have just about worked out the similar problems as the linked article raises, but still feel that in my personal case I will do something.
The article is right about users getting confused and disabling it, and its not a clean cut problem. The glyphs displayed are complex, and in my eyes difficult to differentiate. Without *something* to help I fear I may fall victim.
By implimenting something as a firefox extension, I could allow those people who want protecting to have a fighting chance at spotting things:)
Your right, I'm thinking from an English perspective, and 99.9% of the domains I will ever visit will be 7bit ascii.
Perhaps it would be possible to link it to the current code page - domains in the page of your country are displayed just as the 7bit ones are on my machine, but "foreign" pages are the ones displayed differently.
Its the same principal as me automatically blocking spam from Eastern IP ranges - it works perfectly for me, because I know nobody from that part of the world, and if people are contacting me from there, then its not wanted. Somebody in Chine would have the opposite situation where most local mails will be from the Eastern IP ranges, but (for instance) American mails could possibly be flagged.
The more I talk about this, the more I think a FF extension would be in order. I should perhaps go hide away and see what I can come up with.
I agree wholeheartedly that secure sites should be secure, but I am attempting to put a voice to a simple idea. Making changes to firefox or the browsers will surely be easier to impliment than going to each and every website out there and telling them to change all the code they have up there at the moment to something that hasn't been confirmed as globally viable to the customers.
Miss one site, and the spammers will hit that one.
The address bar is the only place in your browser that IS static, that IS a flat color. I'm not talking about coloring the links as they are displayed on the page, but in the address bar at the top.
I want to be proactive and give myself a fighting chance at not being a victim. I don't personally do much financial stuff online, and certainly not without checking the company out first, my idea just allows ME to instantly identify a possible problem at a glance.
I actually think it needs to be extended a little further. We could be on the right track with this, but certainly cannot be solved instantly (hence the delays in fixing within FF etc)
Its not just unicode wildly extended characters that need catering for, it is all characters which can be alternatives to standard characters.
We used to use full ascii, and unicode to allow us to have "normal" looking nicknames in the chatroom where I used to hang out, but still kept unique short names - for instance "liquid" can be entered as "líquíd". To the passing eye, they are identical, but they have been modified.
At what point would you cut it off, and how would you determine the domain characteristics.
The original paypal.com example can be modified numerous times to similar effect. paypál.com or paypa1.com.
If the bar changes too often, then the user will ignore it. If it doesn't display often enough, then things will be missed. Hence my original show the various types of characters in various colours (extended further)
Black = Normal flat 7bit text. Blue = Numerics. Red = 8 bit ascii. Purple = extended Unicode.
You could even put a throbber on for mixed type domain words. We cannot rule out colorblindness, so would have to come up with some alternative to cater.
Re:This is all they need to do to maintain dominan
on
IE7 Details Emerge
·
· Score: 1
Click the Favorites menu at the top of ANY Windows Explorer window, and browse to a bookmark.
Lo and Behold, your magically clean XP with no Internet explorer returns in all its glory. All security exploits intact and enabled as before.
"Iexplore.exe" on XP is nothing more than a wrapper to the core IE engine.
Hint: You can't get rid of it totally without killing the system.
From MS site, you get the following: NOTE: Internet Explorer 6 is preinstalled by default in all versions of Windows XP. To provide computer manufacturers greater flexibility in configuring desktop versions of Windows XP, Microsoft has made it possible for OEMs, administrators, and users to remove user access to Internet Explorer while leaving the Internet Explorer code intact and fully functional to ensure the functionality of programs and operating system functions that rely on it. For example, Windows XP supports an "IEAccess=off" switch in the Unattend.txt file, and Internet Explorer has been added to the Add/Remove Windows Components section of the Add/Remove Programs tool in Control Panel.
Actually, a fairly reasonable visual tradeoff could be to display all extended characters in a different color.
For instance, if the extended characters were displayed in purple, but the normal characters remained black, then you could continue using it, and KNOW that its a mixed domain.
Infact, just typing that gives another solution, have mixed domains (std and extended) come up in a totally different size/style.
That way, all normal domains look normal, and all extended domains also look normal, but those using a combination are glagged as such.
Slashdot Mirror
I think its just unfortunate wording and link positioning.
;)
National High Tech Crime Unit has foiled an attempted fraud by (hackers using keylogging software).
Remember kids, always use parenthesis when describing ambiguous terms
Malicious software will not run on trusted hardware.
Only validated, certified software will run.
This is NOT just about media, this is about the bits on your box.
Think about MS certifying a virus to run on xbox. It won't happen.
What happens when you try to use your untrusted OS to go onto a website to download content?
How do you explain to your relatives that internet access is blocked because the ISP cannot confirm your trusted status?
At first glance, putting your head in the sand and running away from the problem is feasible, but if this plays out as far as people expect, then your machine is not your own, and the only way round it is total compliance.
Think of an x-box as 1st generation.
Without some VERY clever trickery, you cannot run uncertified software, and you can pretty much give up all hope of playing online.
Your right - Mac-mini looks like an even better platform right about now.
I don't care about that mp3 file, or that movie.
I care about a future where I am still able to download, modify and share OSS software.
If executables have to be validated and signed for trustworthyness, then everyone will need to compile their own.
The "legit" version of firefox may work, but modify the source and compile your own, and it won't play in your windows system. Don't even think of taking it to your friends' house.
(somebody please tell me I am wrong about this)
Never underestimate the lure of porn on internet connections.
As connection speeds have been increasing, peoples ability to download more and more porn has also been increasing.
Is there a limit? Could a user REALLY use 100mbit purely for porn. Or is the standard 1-10mbit adequate?
Theres a great site listing lots of these.
:)
Its here
I'm sure it was all an accident ;)
Your honor, I accidentally gathered a massive mailing list, sat around many meetings working out what to say, and finally clicked send - all totally accidentally. I thought I was sending my mother some flowers over the internet, honestly I did.
The problem with foreign characters in domain names will remain throughout the western world.
The problem is this:
I cannot easily type unicode addresses into my browser, so how can any company expect to advertise/use them when so many people would have problems?
I agree that this does not solve the rest of the worlds problems, and disabling IDN entirely is bad for the few sites you may need to visit in your life, BUT a normal western person never needs to go onto any "common" bigname site that has IDN characters. I don't want to simply disable IDN, because that doesn't solve anything (paypa1.com type scams would still work)
Simply flagging those sites which break that simple premise will give most westerners peace of mind.
Sorry if that doesn't help Asain countries, but I'm more concerned about myself and everyone I know.
I already have a full proof of concept JS function in place, which identifies strange sites and gives a simple, easily understandable traffic light status of the site (with more information about the actual mismatch), and am just gearing myself up to building it into an extension.
I would rather give millions of people the *ability* to differentiate simple domains from complex ones than sit around for months discussing somebody elses problem while (possibly) my friends/relatives get ripped off.
They are horrendous.
I believe its something to do with the timing of the advert iFrames, but I could be completely wrong.
Do you perhaps filter out all frames with some kind of proximatron type software? or do you not filter your html in any way?
I thought it was only Windows that did that silly naming thing?
But the way it was mentioned in the article was as though it tried to force NRG format save, and he overwrote just the filename, giving possibly an invalid ISO file.
Just didn't sound right.
by the way, the discussion we were having yesterday, somebody has posted a very nice mock up of it here
Excellent!
;)
That works perfectly (yes, I know its a hard coded example with fixed markup).
I wonder now if we could expand the actual firefox address bar with something like this, or if we would need to completely re-impliment it as a colored overlay?
(Incase your wondering, I work mainly in VB, sad I know, but it pays the bills and all this XUL/extension coding is a little over my head at the moment)
If you don't mind keeping it on your site for a short while, I am going to use your excellent example as the proof of concept for explaining the idea.
You deserve a beer!
ps. there are multiple Body tags in there
That is the thing I was worrying about, and does answer part of my query, but it still doesn't answer whether Nero itself will output a true ISO file when you create and save an image as "music.iso", or if it outputs a NRG formatted file with an incorrect extension.
I wouldn't want to blow somebodies computer up by giving them a file with incorrect data in.
Do not underestimate the power of Brand recognition.
People moving over from Windows will see the name and know what they are getting.
Lack of options is only a problem for those of us who bother with fussing around.
Most people want to simply create a cd.
The article says that:
.NRG.
NeroLinux completed the image in 9 seconds. The file name was saved as music.iso, which I had to add the file extension manually, though it was by default set to
Isn't the NRG image format different to ISO, and therefore just renaming the created image just like renaming a jpeg image to GIF?
The burning software may assume the format from the data, but that sounds like bad practice, and definately not advisable.
So, my question, does NeroLinux create true ISO images?
How do you explain to your friend/relative whos computer is configured to NOT boot from cd to change their BIOS settings?
I agree though, Live eval cds are invaluable, and are preferable to running a slower emulated environment, but this cd allows both options, so why not say its a good thing?
Because you can then let people try before they buy without even needing to reboot.
It just removes one more hurdle. People aren't going to wipe out their system just because the local geek said "its ready for the desktop".
People need some proof that it really is better.
You aren't not totally blind though, look here
:)
You could even put a throbber on for mixed type domain words.
We cannot rule out colorblindness, so would have to come up with some alternative to cater.
I'm not insensitive
Thank you :)
:)
I have just about worked out the similar problems as the linked article raises, but still feel that in my personal case I will do something.
The article is right about users getting confused and disabling it, and its not a clean cut problem.
The glyphs displayed are complex, and in my eyes difficult to differentiate. Without *something* to help I fear I may fall victim.
By implimenting something as a firefox extension, I could allow those people who want protecting to have a fighting chance at spotting things
Your right, I'm thinking from an English perspective, and 99.9% of the domains I will ever visit will be 7bit ascii.
Perhaps it would be possible to link it to the current code page - domains in the page of your country are displayed just as the 7bit ones are on my machine, but "foreign" pages are the ones displayed differently.
Its the same principal as me automatically blocking spam from Eastern IP ranges - it works perfectly for me, because I know nobody from that part of the world, and if people are contacting me from there, then its not wanted.
Somebody in Chine would have the opposite situation where most local mails will be from the Eastern IP ranges, but (for instance) American mails could possibly be flagged.
The more I talk about this, the more I think a FF extension would be in order.
I should perhaps go hide away and see what I can come up with.
I agree wholeheartedly that secure sites should be secure, but I am attempting to put a voice to a simple idea.
Making changes to firefox or the browsers will surely be easier to impliment than going to each and every website out there and telling them to change all the code they have up there at the moment to something that hasn't been confirmed as globally viable to the customers.
Miss one site, and the spammers will hit that one.
The address bar is the only place in your browser that IS static, that IS a flat color. I'm not talking about coloring the links as they are displayed on the page, but in the address bar at the top.
I want to be proactive and give myself a fighting chance at not being a victim.
I don't personally do much financial stuff online, and certainly not without checking the company out first, my idea just allows ME to instantly identify a possible problem at a glance.
I actually think it needs to be extended a little further. We could be on the right track with this, but certainly cannot be solved instantly (hence the delays in fixing within FF etc)
Its not just unicode wildly extended characters that need catering for, it is all characters which can be alternatives to standard characters.
We used to use full ascii, and unicode to allow us to have "normal" looking nicknames in the chatroom where I used to hang out, but still kept unique short names - for instance "liquid" can be entered as "líquíd".
To the passing eye, they are identical, but they have been modified.
At what point would you cut it off, and how would you determine the domain characteristics.
The original paypal.com example can be modified numerous times to similar effect.
paypál.com or paypa1.com.
If the bar changes too often, then the user will ignore it.
If it doesn't display often enough, then things will be missed.
Hence my original show the various types of characters in various colours (extended further)
Black = Normal flat 7bit text.
Blue = Numerics.
Red = 8 bit ascii.
Purple = extended Unicode.
You could even put a throbber on for mixed type domain words.
We cannot rule out colorblindness, so would have to come up with some alternative to cater.
Click the Favorites menu at the top of ANY Windows Explorer window, and browse to a bookmark.
Lo and Behold, your magically clean XP with no Internet explorer returns in all its glory. All security exploits intact and enabled as before.
"Iexplore.exe" on XP is nothing more than a wrapper to the core IE engine.
Hint: You can't get rid of it totally without killing the system.
From MS site, you get the following:
NOTE: Internet Explorer 6 is preinstalled by default in all versions of Windows XP. To provide computer manufacturers greater flexibility in configuring desktop versions of Windows XP, Microsoft has made it possible for OEMs, administrators, and users to remove user access to Internet Explorer while leaving the Internet Explorer code intact and fully functional to ensure the functionality of programs and operating system functions that rely on it. For example, Windows XP supports an "IEAccess=off" switch in the Unattend.txt file, and Internet Explorer has been added to the Add/Remove Windows Components section of the Add/Remove Programs tool in Control Panel.
Actually, a fairly reasonable visual tradeoff could be to display all extended characters in a different color.
For instance, if the extended characters were displayed in purple, but the normal characters remained black, then you could continue using it, and KNOW that its a mixed domain.
Infact, just typing that gives another solution, have mixed domains (std and extended) come up in a totally different size/style.
That way, all normal domains look normal, and all extended domains also look normal, but those using a combination are glagged as such.
just a thought.
No, here at work, we just have to sneeze loudly and we get a new IP.
Windows machines reboot continuously because they keep crashing mean new IPs are allocated every time the user reconnects to his ISP.