Slashdot Mirror


User: fnj

fnj's activity in the archive.

Stories
0
Comments
5,577
First seen
Last seen
Profile
(view on slashdot.org)

Comments · 5,577

  1. Re:Security risk...sure. on Oracle Removes Java Signatures, Breaking Webstart · · Score: 1

    On what planetoid does that make sense, and on what planetoid was it too hard to generate new Oracle signing certificates?

  2. Re:Source on SUA Deprecated In Windows 8? · · Score: 2

    Jesus, did you even read TFS? "WARNING: SUA is deprecated starting with this release and will be completely removed in the next release." Or do you not trust what Microsoft themselves tells you about their products (hmmm, can I get back to you on that one ...)?

  3. You go, Samsung on Samsung May Try To Block Next iPhone In Europe Too · · Score: 1

    You go, Samsung.

  4. Re:False advertising on Patent Attorney Breaks Down Impact of the America Invents Act · · Score: 1

    I think you know the answer to your question "(how about abolishing the patent system?"). There's no MONEY in abolishing it. The thugs in charge on both sides of the aisle continue to contitute a sinister corruptocracy in collusion with megacorporations, in a death struggle against the interests of the people.

  5. SNYF: situation normal; you're fucked on Patent Attorney Breaks Down Impact of the America Invents Act · · Score: 2

    Microsoft and IBM (among others) supported the act, Google and Apple opposed it.

    I think that says all we need to know about the act. It's a big zero. The old situation was no good and this new act is no good either. Big whoop. The corruptocracy of government in collusion with megacorporations continues ... accelerates, actually. Regardless of which band of thugs is in charge in Washington, or even if neither band has clear control. You know why? It's a big charade. They are all the same band of thugs.

  6. Re:Why on New BIOS Exploiting Rootkit Discovered · · Score: 4, Insightful

    Er, the issue is not that you don't allow BIOS updates; it's that you protect them with a "big red switch," so they just can't happen like the dog ate my homework. I understand that the BIOS does at times have to be updated, but I don't want some prick on the other end of the internet doing it for me when it doesn't need to be done.

  7. Re:This is what easy over safe design gets ya on New BIOS Exploiting Rootkit Discovered · · Score: 1

    I think the solution to that design flaw is pretty clear and workable.

  8. Re:This is what easy over safe design gets ya on New BIOS Exploiting Rootkit Discovered · · Score: 1

    Read the whole thread. The idea is to have the BIOS on day one good enough to be failsafe getting to a state where it has a working video and keyboard can at least boot a floppy, CD, or USB stick. Nothing else. It's even conceivable that you don't guarantee the video and keyboard work, but as long as you can boot a DOS media with autoexec.bat you can get the reflashing accomplished.

    Do you really think that's not possible? Funny; the PC and the AT could do better than that.

  9. Re:CIH NEVER Infected BIOS on New BIOS Exploiting Rootkit Discovered · · Score: 1

    Most of the time, yes, that's reassuring, but you're implying there is some of the time when it succeeded in actually infecting the BIOS in a non-bricking way.

  10. Re:Whose idiotic idea was it to make BIOSes writab on New BIOS Exploiting Rootkit Discovered · · Score: 1

    ACPI is a cluster fuck, but do you have any ready reason why it could not all be done in the OS, perhaps a unique module particular to the individual motherboard, rather than the BIOS?

  11. Re:Clocks/corporotes/updates/crash dumps on New BIOS Exploiting Rootkit Discovered · · Score: 2

    Setting the real time clock just writes to data-only CMOS and maybe syncs the registers.

    I strongly suspect changing the BIOS password, boot device settings, etc., work the same way or a very similar way - i.e., don't use program flash. If they don't, it's obvious they COULD.

    Saving a crash dump to BIOS flash? Don't THINK so. Just say no. I doubt anybody does this, but again, if it's that important, it could be done to a hypothetical data-only flash or other storage. There is no excuse to save it to program flash.

    The ability to update critical early parts of the BIOS is just a bit harder to work around. I think it's primarily a matter of coming up on day one of hardware release with always-safe defaults that will always allow you to reach a point with a working display and keyboard. I doubt it would be that big a deal. It might require cooperation with CPU and video card makers. If it's harder than I think, then for god's sake let's get some smart people working on it.

  12. Re:This is what easy over safe design gets ya on New BIOS Exploiting Rootkit Discovered · · Score: 1

    Yes, it was clearly market driven. One day nobody had it, and the next day somebody said "hey, look at this cool feature we have!" Nobody in the public even knew it was possible until the feature appeared.

  13. Re:This is what easy over safe design gets ya on New BIOS Exploiting Rootkit Discovered · · Score: 1

    Why? If it works during testing, but it turns out later to be not perfect, just put reinitialization code into the updates that change the code that comes AFTER that point. How the christ do you think we used to do it before they even used flash memory?

  14. Re:This is what easy over safe design gets ya on New BIOS Exploiting Rootkit Discovered · · Score: 2

    It's a complete lack of safety. A proper design would require at least a password entered while in the BIOS at a point before anything else could get its hooks into it, to temporarily allow updating. The only executable code that occurs before that point after power-on should be READ ONLY MEMORY with no programmability whatsoever.

  15. Why on New BIOS Exploiting Rootkit Discovered · · Score: 4, Insightful

    Name one reason why it is a good idea that application programs or the kernel or ANYTHING ELSE should even be ABLE to screw with the BIOS. There should be a big red PHYSICAL switch which makes the BIOS read-only, and it should only be temporarily turned off to allow updating with the manufacturer's files and NOTHING ELSE.

  16. Re:I felt a great disturbance in the Force... on Microsoft Reveals More Windows 8 Details · · Score: 2, Informative

    Actually Gnome has ALSO decided the desktop is no longer relevant. Fortunately KDE and Xfce have not yet taken leave of their senses.

  17. Re:1ms is worth 100m USD isn't relavent in this ca on $300M To Save 6 Milliseconds · · Score: 1

    Perhaps you can illuminate us on what the point is. Alex sounded informed and well thought out to me.

  18. Re:Cue more irrational nuclear panic in 3...2... on Explosion At French Nuclear Site Kills One · · Score: 1

    Yes, and if an 12 angels could dance on the head of a pin maybe John Lennon would still be alive. You're not very good with statistics, are you?

  19. Re:I dont want smaller.... on Polymer Gel Shows Promise For Smaller, Cheaper Batteries · · Score: 1

    Which is why I still use my old Sanyo SCP-5150 with the high capacity battery. You're pretty much guaranteed 7 days and up to 14 days if you don't talk like a broken Charlie McCarthy record. No GPS crap. No messaging crap. No internet crap. It's a PHONE, dammit.

  20. Re:Cue more irrational nuclear panic in 3...2... on Explosion At French Nuclear Site Kills One · · Score: 1

    Whether you "agree," or "buy that" doesn't make the slightest difference. The statistics, which you do not even contest, tell the story. They are not "arbitrary" numbers. They are an actual accounting of the comparative death tolls, apples to apples. If you are not prepared to apply rational thought to the issue, then you must not expect to be taken very seriously. If an entire nation is not prepared to apply rational thought to the issue, then that nation must not expect to be taken very seriously.

    You have just made the title of this thread come true.

  21. Re:My thoughts are with everyone who lost anyone on Marking 10 Years Since 9/11/2001 · · Score: 1

    BULLSHIT. The daft warped twits who did, and continue to, blow up themselves, innocent people, and forces defending civilization are not screaming "end imperialism." They are screaming ALLAHU AKBAR, or whatever the transliteration of the day is for "God is great." Same with the cattle in the street of Islamic lands who, on cue, foam and call the US the GREAT SATAN, not "the imperialist bastard."

  22. Re:But on Marking 10 Years Since 9/11/2001 · · Score: 3, Informative

    It's not just "good," it's standardized. It's the only correct way. Anyone who doesn't format dates per ISO 8601 is stupid. "American style" and "European style" are both stupid. I haven't used either one in ages.

  23. Re:Wow, that sure inspires confidence. on North Korea Forced US Reconnaissance Plane To Land · · Score: 2

    More than IAS was lost. I understood the gyro was tumbled. And look at the way the stall warning was configured. It periodically went on and off gain as it "decided" IAS was reliable or not reliable. Also your IAS was coming online and back offline. I am as suspect of the crew as anybody is, but the situation they were faced with was pretty much the worst imaginable.

  24. Re:Wow, that sure inspires confidence. on North Korea Forced US Reconnaissance Plane To Land · · Score: 1

    Assuming you mean Air France 447, stall recovery in zero visibility without properly working instruments pretty much requires the powers of god. Without knowing your speed, and with no way to differentiate gravity from acceleration, anyone is in deep shit. There is no way to tell which way is up.

  25. Re:Is There A Reason... on NASA's Twin GRAIL Craft On Their Way To the Moon · · Score: 2

    Because it costs 4 bucks a gallon now, you know.