I originally wanted to sign up with a smaller isp over here, because they were cool guys, and I liked the way they approached the service (quite geeky)...they did the line test and were told that the line quality was unacceptable. So they told me that they couldn't offer the service...I called telstra to double check everything...at which time the sales representative said "I'm sure we can work something out, now, how about we just sign you up for telstra service blah blah"...I told her I just wanted the details of the line test, and a retest so I could be sure, and she told me they would be happy to do that, but I had to sign up (make a commitment to them first), and that, from initial information, it shouldn't be a problem (getting adsl). At which time I got on my high horse and decided that I would rather stick with 56k than participate in what was obviously a scam (and let a sales person corner me into a contract)...anyway, just thought I'd share...telsta has a history of this kind of activity on both standard and net based products...but an inquiry would hurt the governments privatization plans...hence, nothing ever happens
Your system if fully and utterly screwed...proof offered (again) above. Canada, Australia and New Zealand will begin accepting immigration applications shortly.
Just finished reading the nmap questions answered...then moved onto this...found it kinda funny that they talk about all the revenue they're going to get from sueing people...would be salt in the wounds of the open source community if they won the case and used Nmaps OS detection to find linux boxes and issues summons:)
very correct...I'm not a MMORPG player. but I am, like many people here, a developer...and most of us hear about a god flag in the protocol and shake our heads and laugh...it is the ultimate in development stupidity.
Then, pray tell, how in the hell would you offer ingame customer support without some kind of 'god flag'?
I didn't say that having a god flag was stupid, I said having it in the client/server protocol was stupid. Why couldn't it be located as a switch on the server (activate god flag for player x), rather than controlled by the client...that's just dumb...any developer that doesn't say "ummm, hey guys, isn't this a security risk" when coding this deserves a slap about the head:)
I'm still of the opinion that what goes over my ethernet card, and what's installed on my machine (paid for etc), is mine...I don't live in a country that has DMCA (yet thank god)...no matter how you slice it up, putting a god flag in the protocol is stupid...the deserve everything they get for such stupidity. What they _should_ have done, was kept the debug related code server side. Then it would have required an actual (prosecutable?) hack to gain those priviledges.
Your analogy doesn't fit...the write ups and logs said they used a flag in the protocol put their by developers to activate god like abilities. The analogy there, would be that the cable company left a plug, in the middle of a crowded street, with a sign on it saying "This is the main cable that runs the cable company, anything broadcast on this will be broadcast to all our viewers. Please don't use it"...In which case, the cable company deserves everything they get...laws shouldn't take the place of common sense.
If that were my servers (or anyone elses I would guess), I wouldn't have coded a 'god flag' into the protocol, or at least removed it from the 'live' protocol. But they didn't, they left it in, and it got exploited...but they left it in their protocol specifications, and hence, IMHO, left it as fair game for their game. That's not hacking, that's player ingenuity.
However, by offering "free" training...they get a lot of IT staff on board that want to upgrade their, so they can get a better job/get a raise...all these ppl will now push microsoft as a better deal to their bosses...like having a little sales rep in each company, clever (diabolical?) really. So, while not relevant to the business...definitely relevant to a decsion influencer:)
Yeah...because the U.S. and Britian were the only countries that took part....sheesh, do you guys even care that there are other countries on the planet?!?!?
I got dressed up in a tight black vinyl female suit, padded a bra, died my hair black and cut it short, put on lipstick.......yeah, green...I mean yeah, I turned my terminal green too...that's what i did
The only people that _can't_ spam you are people you've done business with. The privacy laws dictate that, unless you have to keep records for legal reasons, or your _primary_ purpose for the records is marketting, then you have to remove them upon request. Which I found really weird. I don't mind if my bank/mechanic/energy company have my details, I _do_ mind that some impossible to track down marketting company called Sydney Promotions Pty Ltd sends me email from pgraysepw@yahoo.com (very professional guys) can get my records from who knows where, keep them for as long as I want, and there's not a damn thing I can do about it:(
Sorry to be cynical...but I wonder if you can buy "school-authorized" laptops, for a generally reasonable price. Or even worse, if laptop MUST be "school-authorized"? Me thinks me smells a scam:)
Article said it could affect earth...oh my god...it's the red weed all over again...oh my god, they're coming....ARRRRRGGGGHGHHHHH
Re:lol...java in the def industry
on
Inside SAIC
·
· Score: 1
my god...why do I keep typing 'whole' when I mean 'hole'...do a mental search and replace on all previous posts
Re:lol...java in the def industry
on
Inside SAIC
·
· Score: 1
Not a security hole (lol...sry for typo) 'in' the JVMPI, I have no info on the JVMPI architecture/implementation security one way or another...however, the ability for an external C app to call back into your java app during runtime and gain notification of every single method being called, stack and variable information, as well as being able to execute a number of callback hooks would be h4cker heaven...usually you wouldn't worry, because who wants to hook into a jvm on a business system and go to the effort of covering things up etc just to see "bill pays jenny $40"...however, I imagine the motivation in a defense app would be significantly higher, and, if the defense app was writen in java, shooting at the JVMPI would be the first (and easiest) target IMHO. I mean, that's not the only issue...the whole default disabled "public/private/protected" stuff is another big whole, but most java guys know about that one (hey, may have even been fixed, I don't know)...java isn't a secure language, java isn't a fast language...don't get me wrong, I love java...have made a living from it exclusively for 6 years now, however...pick your tool for the job, if someone was talking defence, I wouldn't be talking java...just my 0.2c, feel free to refute it, I've been wrong before and no doubt will be many times again:)
oh I could go on forever...haven't even touched on the 40 foot wide security whole that JVMPI would introduce.
Though one good thing...everytime you called System.gc() every U.S. soldier and politician would suddently find themselves miraculously sitting on a boat heading for home..."What tha? How'd that happen"
Slashdot Mirror
XML -- Works for everyone else :)
I originally wanted to sign up with a smaller isp over here, because they were cool guys, and I liked the way they approached the service (quite geeky)...they did the line test and were told that the line quality was unacceptable. So they told me that they couldn't offer the service...I called telstra to double check everything...at which time the sales representative said "I'm sure we can work something out, now, how about we just sign you up for telstra service blah blah"...I told her I just wanted the details of the line test, and a retest so I could be sure, and she told me they would be happy to do that, but I had to sign up (make a commitment to them first), and that, from initial information, it shouldn't be a problem (getting adsl). At which time I got on my high horse and decided that I would rather stick with 56k than participate in what was obviously a scam (and let a sales person corner me into a contract)...anyway, just thought I'd share...telsta has a history of this kind of activity on both standard and net based products...but an inquiry would hurt the governments privatization plans...hence, nothing ever happens
Your system if fully and utterly screwed...proof offered (again) above. Canada, Australia and New Zealand will begin accepting immigration applications shortly.
Just finished reading the nmap questions answered...then moved onto this...found it kinda funny that they talk about all the revenue they're going to get from sueing people...would be salt in the wounds of the open source community if they won the case and used Nmaps OS detection to find linux boxes and issues summons :)
very correct...I'm not a MMORPG player. but I am, like many people here, a developer...and most of us hear about a god flag in the protocol and shake our heads and laugh...it is the ultimate in development stupidity.
:)
Then, pray tell, how in the hell would you offer ingame customer support without some kind of 'god flag'?
I didn't say that having a god flag was stupid, I said having it in the client/server protocol was stupid. Why couldn't it be located as a switch on the server (activate god flag for player x), rather than controlled by the client...that's just dumb...any developer that doesn't say "ummm, hey guys, isn't this a security risk" when coding this deserves a slap about the head
touche :)
I'm still of the opinion that what goes over my ethernet card, and what's installed on my machine (paid for etc), is mine...I don't live in a country that has DMCA (yet thank god)...no matter how you slice it up, putting a god flag in the protocol is stupid...the deserve everything they get for such stupidity. What they _should_ have done, was kept the debug related code server side. Then it would have required an actual (prosecutable?) hack to gain those priviledges.
"As the virtual days go by...."
Your analogy doesn't fit...the write ups and logs said they used a flag in the protocol put their by developers to activate god like abilities. The analogy there, would be that the cable company left a plug, in the middle of a crowded street, with a sign on it saying "This is the main cable that runs the cable company, anything broadcast on this will be broadcast to all our viewers. Please don't use it"...In which case, the cable company deserves everything they get...laws shouldn't take the place of common sense.
If that were my servers (or anyone elses I would guess), I wouldn't have coded a 'god flag' into the protocol, or at least removed it from the 'live' protocol. But they didn't, they left it in, and it got exploited...but they left it in their protocol specifications, and hence, IMHO, left it as fair game for their game. That's not hacking, that's player ingenuity.
However, by offering "free" training...they get a lot of IT staff on board that want to upgrade their, so they can get a better job/get a raise...all these ppl will now push microsoft as a better deal to their bosses...like having a little sales rep in each company, clever (diabolical?) really. So, while not relevant to the business...definitely relevant to a decsion influencer :)
The US and Britain were right
Yeah...because the U.S. and Britian were the only countries that took part....sheesh, do you guys even care that there are other countries on the planet?!?!?
...and the runner up award, in the "waaaaaaaay to much time on his hands" category...goes to......
Sounds good to me...all emails in binary, I can live with that
Attenda
Hey Neal...your developers are about to logon
Go get em slashdotters....
I got dressed up in a tight black vinyl female suit, padded a bra, died my hair black and cut it short, put on lipstick.......yeah, green...I mean yeah, I turned my terminal green too...that's what i did
two wrongs don't make a right
I agree...I generally find it takes 5 or 6
The only people that _can't_ spam you are people you've done business with. The privacy laws dictate that, unless you have to keep records for legal reasons, or your _primary_ purpose for the records is marketting, then you have to remove them upon request. Which I found really weird. I don't mind if my bank/mechanic/energy company have my details, I _do_ mind that some impossible to track down marketting company called Sydney Promotions Pty Ltd sends me email from pgraysepw@yahoo.com (very professional guys) can get my records from who knows where, keep them for as long as I want, and there's not a damn thing I can do about it :(
Sorry to be cynical...but I wonder if you can buy "school-authorized" laptops, for a generally reasonable price. Or even worse, if laptop MUST be "school-authorized"? Me thinks me smells a scam :)
Article said it could affect earth...oh my god...it's the red weed all over again...oh my god, they're coming....ARRRRRGGGGHGHHHHH
my god...why do I keep typing 'whole' when I mean 'hole'...do a mental search and replace on all previous posts
Not a security hole (lol...sry for typo) 'in' the JVMPI, I have no info on the JVMPI architecture/implementation security one way or another...however, the ability for an external C app to call back into your java app during runtime and gain notification of every single method being called, stack and variable information, as well as being able to execute a number of callback hooks would be h4cker heaven...usually you wouldn't worry, because who wants to hook into a jvm on a business system and go to the effort of covering things up etc just to see "bill pays jenny $40"...however, I imagine the motivation in a defense app would be significantly higher, and, if the defense app was writen in java, shooting at the JVMPI would be the first (and easiest) target IMHO. I mean, that's not the only issue...the whole default disabled "public/private/protected" stuff is another big whole, but most java guys know about that one (hey, may have even been fixed, I don't know)...java isn't a secure language, java isn't a fast language...don't get me wrong, I love java...have made a living from it exclusively for 6 years now, however...pick your tool for the job, if someone was talking defence, I wouldn't be talking java...just my 0.2c, feel free to refute it, I've been wrong before and no doubt will be many times again :)
>>A smart display requires a PC running Windows XP to operate and monopolizes the PC while it runs
Nah...I'll leave it alone
BTW, if you are a java programmer in the DC area interested in doing defense work with a great company, send me your resume.
s topscud.jar
Fantastic...java in the defense industry
"Soldier, there's an incoming scud...fire those patriots...now!"
Click
Grind...Grind....Grind....Grind
exception in thread main, java.lang.NoClassDefFoundError..."No class found called gov.defence.patriot.FindAndStopScud"
"Hang on sir...think my classpath may be pooched"
Export CLASSPATH=$CLASSPATH:/usr/java/lib/defence/please
Click
Grind....Grind....Grind
2 weeks, 4 days, 13 hours, 3 minutes later....patriot fires.
oh I could go on forever...haven't even touched on the 40 foot wide security whole that JVMPI would introduce.
Though one good thing...everytime you called System.gc() every U.S. soldier and politician would suddently find themselves miraculously sitting on a boat heading for home..."What tha? How'd that happen"
found to consist mostly of pens, keys and wallets