I gotta back you up on this one. According to Aaron Margosis.
Windows doesn't allow LUA users to change the system time. That is not a LUA bug, because changing the system time has security implications with respect to auditing and to the Kerberos protocol.
Also, Windows won't let your computer authenticate to a domain if your system time differs from the DCs time significantly.
I always run as non-admin on Windows too after a few nasty runins with malware. I feel vulnerable doing anything else, which is how it should be. I seem to remember the analogy that a surgeon doesn't walk around all day holding his scalpels etc.
Unfortunately, games mostly spoil this situation. Some state that they need admin on the packaging but others just assume that you're running a PC freshly delivered from the local store running XP Home with full rights. This is even worse when our local software outlet refuses to take returns to prevent copying or using up CD keys. They insist that you check the minimum spec before purchase, now what if the publisher doesn't say that you need to run as admin? Imagine trying to explain that to the assistant, especially as every PC that you buy will run it by default. My solution to that one is a spare hard drive for games which can be trashed at will.
AND it's nowhere near the resource hog that Norton AV is.
Last night I was at my wifes friends house, removed Norton which was due to start nagging her in 4 weeks for money anyway and installed AVG. 120MB of memory freed and 7 Services uninstalled! I actually wouldn't mind paying for Norton if it wasn't such a complete pile of bloat!
Maybe that 'open ports' advice was given in order to fix a specific problem. Wikipedias page says that SIP should be able to traverse certain types of NAT using STUN. I think I'll download it and try it out. I need a contingency plan in case eBay wreck Skype!
Also note that version 8 of Macromedia Flash now has the ability to allow third party shared objects (SOL files). There has been coverage of companies using this mechanism to track users in the same way that third party cookies are used.
Unlike standard cookies however, every user of a PC has to use an online tool to change your privacy settings. There is no broswer control of this. I've found the easiest method is to nuke the shared objects folder on startup.
DEL "C:\Documents and Settings\Me\Application Data\Macromedia\*.*"/S/Q
RMDIR "C:\Documents and Settings\Me\Application Data\Macromedia"/S/Q
Stick that into a.bat file and put it in the All Users startup directory, that does the trick:-)
You need to open/forward the following ports on your router:
Port Protocol Description
3478 UDP STUN service
3479 UDP STUN service
5002 TCP MLP protocol server
5060 UDP SIP UAS
5060 TCP SIP UAS
and 2 ports (starting from the lowest) for each call from this range:
49152-65535 UDP RTP, RTCP multimedia streaming
OMFG! I need to open what!! When I was in the USA, I switched on my PocketPC, got a green WiFi light, opened Skype and simply dialled. Any guesses as to how far I would have got getting those ports forwarded in the airport lounge?
Don't get me wrong, closed source==bad, eBay owning them==bad but the product is damn good, easy to use and calls are cheap too! Any ideas?
I used Skype on my PocketPC to call the UK whilst on holiday in Florida last month, call quality was really good. Orlando Int. airport seems to have free WiFi access too.
Lets hope that now eBay have it they continue to develop the Linux and mobile versions as there aren't that many cross platform VoIP clients.
We all know what's coming, it will be free whilst there is still competition around. After that it will only be available in the 'Premium' edition. Which means we the customers untimately pay to limit our own choice.
From the article: Microsoft is offering a one-time "compatibility patch" that will be deployed like a hotfix to let users turn off the changes through June.
Wouldn't it be funny if the mandatory upgrade just sets a registry key called EOLAS_Compatibility=1 which anyone can override. Then EOLAS would have to persue all users that set it to 0 for infringing their patent instead!
Good Advice. In the UK digital DJs are being milked by the PPL for 200GBP per setup in any case.
PPL said many DJs wanted to play from laptops or MP3 players instead of records or CDs, despite the fact it was illegal without the permission of the rights owner.
Most of my friends consider mixing from a laptop 'cheating' Whose to say that you're doing it in real time and not just playing back one huge MP3 that you prepared earlier.
And everyone has the Quicktime player on their PC. It's in the list of bog-standard things you do when installing e.g. Windows for someone
Err no. The bog standard thing I do is nuke the "Quicktime Nagware" and "Real Ad-Player" and install QuickTime Alternative and Real Alternative (from the same site).
I was quite depressed reading an article like this, it seems we're on the slippery slope to all sorts of mischief, slowly as you say. eg1eg2
Then again, we can always rely on organisations getting too greedy too quickly. If software piracy is greatly reduced (how many people have actually paid $600 for Photoshop to edit a couple of wedding photos?) this may mean a mass migration to F/OSS software, which could represent too large a userbase for vendor lock-in to be a viable prospect. When Microsoft brought in Product Activation for Windows and Office how much of the savings on piracy was fed back to customers in the form of lower prices? (clue, the answer is negative!)
Signed drivers to collect a tax from hardware vendors I reckon.
Also, from the article: You can even block access to games based on their Entertainment Software Rating Board ratings. Great, now all games will have be digitally signed aswell if you want them to run using the default settings:-(
Same here, except I found it amazing that I could rip the CD to MP3 with no problems but the DRM caused glitches on my brand new standard CD player. Isn't that the exact opposite of what they are trying to achieve?!
Coldplay's latest CD X&Y comes with an insert that discloses all the rules enforced by the DRM they included on the disc. Of course, these rules are only visible after you've paid for the CD and brought it home, and as the disc's rules say, "Except for manufacturing problems, we do not accept product exchange, return or refund," so if you don't like the rules, that's tough.
(Emphasis mine). This basically means that it's your job to ensure that you CD player can play non-CDs which are nobbled to within a hairs breadth of not playing. They will only replace it if it's been pressed improperly not if the DRM causes it not to play.
You're right, I haven't seen any reference to Asterisk testing the processor type to make sure it can handle hundreds of calls at once.
If this was genuine Skype should test for Spyware / Virtual Machines and how many other processes are running before initiating a conference call. It's abuse of monopoly pure and simple.
Hmm, since the only reason that this story is on Slashdot is because of Islamist hackers defacing websites. I'm having a hard time finding any talk of webserver hardening in this thread!
Oh well, my question is why didn't all these vulnerable sites get hacked way before this row blew up?
Re:If you want to have technobabble, get it right!
on
IT Crowd On-line
·
· Score: 4, Interesting
Who spotted the reference to Mark Russinovichs blog on the Sony rootkit?
It's never safe to unload a driver that patches the system call table since some thread might be just about to execute the first instruction of a hooked function when the driver unloads; if that happens the thread will jump into invalid memory.
FWIW. I don't think this is flamebait either. I thought my employer had broken the site with another overzealous web filter the first time I saw it. However, it only took me minutes to work out what had changed and I like the result. It took me much longer to work out what the "1 more" bit meant under some sections.
Slashdot Mirror
Also, Windows won't let your computer authenticate to a domain if your system time differs from the DCs time significantly.
I know it's not explicit but it's unlikely to be the first Windows Media format from Microsoft NOT to have DRM capability, wouldn't you say?
I always run as non-admin on Windows too after a few nasty runins with malware. I feel vulnerable doing anything else, which is how it should be. I seem to remember the analogy that a surgeon doesn't walk around all day holding his scalpels etc.
Unfortunately, games mostly spoil this situation. Some state that they need admin on the packaging but others just assume that you're running a PC freshly delivered from the local store running XP Home with full rights. This is even worse when our local software outlet refuses to take returns to prevent copying or using up CD keys. They insist that you check the minimum spec before purchase, now what if the publisher doesn't say that you need to run as admin? Imagine trying to explain that to the assistant, especially as every PC that you buy will run it by default. My solution to that one is a spare hard drive for games which can be trashed at will.
AND it's nowhere near the resource hog that Norton AV is.
Last night I was at my wifes friends house, removed Norton which was due to start nagging her in 4 weeks for money anyway and installed AVG. 120MB of memory freed and 7 Services uninstalled! I actually wouldn't mind paying for Norton if it wasn't such a complete pile of bloat!
Maybe that 'open ports' advice was given in order to fix a specific problem. Wikipedias page says that SIP should be able to traverse certain types of NAT using STUN. I think I'll download it and try it out. I need a contingency plan in case eBay wreck Skype!
Unlike standard cookies however, every user of a PC has to use an online tool to change your privacy settings. There is no broswer control of this. I've found the easiest method is to nuke the shared objects folder on startup.
Stick that into a
I didn't know that there were PocketPC versions of the SIP client. I do now (thanks) but when I look into it a bit more I find a problem.
here
OMFG! I need to open what!!
When I was in the USA, I switched on my PocketPC, got a green WiFi light, opened Skype and simply dialled. Any guesses as to how far I would have got getting those ports forwarded in the airport lounge?
Don't get me wrong, closed source==bad, eBay owning them==bad but the product is damn good, easy to use and calls are cheap too! Any ideas?
I used Skype on my PocketPC to call the UK whilst on holiday in Florida last month, call quality was really good. Orlando Int. airport seems to have free WiFi access too.
Lets hope that now eBay have it they continue to develop the Linux and mobile versions as there aren't that many cross platform VoIP clients.
But don't worry, the US Government would never abuse that information!
I wonder what Airbus Industries have to say about all their communications potentially ending up in the hands of Boeing.
We all know what's coming, it will be free whilst there is still competition around. After that it will only be available in the 'Premium' edition. Which means we the customers untimately pay to limit our own choice.
I cite this in support.
From the article: Microsoft is offering a one-time "compatibility patch" that will be deployed like a hotfix to let users turn off the changes through June.
Wouldn't it be funny if the mandatory upgrade just sets a registry key called EOLAS_Compatibility=1 which anyone can override. Then EOLAS would have to persue all users that set it to 0 for infringing their patent instead!
Most of my friends consider mixing from a laptop 'cheating' Whose to say that you're doing it in real time and not just playing back one huge MP3 that you prepared earlier.
And everyone has the Quicktime player on their PC. It's in the list of bog-standard things you do when installing e.g. Windows for someone
Err no. The bog standard thing I do is nuke the "Quicktime Nagware" and "Real Ad-Player" and install QuickTime Alternative and Real Alternative (from the same site).
Unfortunately this won't work with ads placed directly into the game maps like those Subway ads that appeared in Counter Strike.
What does this story mean?? I do not speak your crazy pointy-haired manager moon language!!!
Here you go
Forget the dodgy opensource energy story, how on earth could all those people with Alexa installed start reading slashdot. That's extremely worrying!
Did someone port the toolbar to Linux or has Disney.com put in a browser redirect!?
I was quite depressed reading an article like this, it seems we're on the slippery slope to all sorts of mischief, slowly as you say. eg1 eg2
Then again, we can always rely on organisations getting too greedy too quickly. If software piracy is greatly reduced (how many people have actually paid $600 for Photoshop to edit a couple of wedding photos?) this may mean a mass migration to F/OSS software, which could represent too large a userbase for vendor lock-in to be a viable prospect.
When Microsoft brought in Product Activation for Windows and Office how much of the savings on piracy was fed back to customers in the form of lower prices? (clue, the answer is negative!)
Signed drivers to collect a tax from hardware vendors I reckon.
:-(
Also, from the article: You can even block access to games based on their Entertainment Software Rating Board ratings.
Great, now all games will have be digitally signed aswell if you want them to run using the default settings
Same here, except I found it amazing that I could rip the CD to MP3 with no problems but the DRM caused glitches on my brand new standard CD player. Isn't that the exact opposite of what they are trying to achieve?!
You're not going to like this then are you.
(Emphasis mine). This basically means that it's your job to ensure that you CD player can play non-CDs which are nobbled to within a hairs breadth of not playing. They will only replace it if it's been pressed improperly not if the DRM causes it not to play.
You're right, I haven't seen any reference to Asterisk testing the processor type to make sure it can handle hundreds of calls at once.
If this was genuine Skype should test for Spyware / Virtual Machines and how many other processes are running before initiating a conference call. It's abuse of monopoly pure and simple.
Hmm, since the only reason that this story is on Slashdot is because of Islamist hackers defacing websites. I'm having a hard time finding any talk of webserver hardening in this thread!
Oh well, my question is why didn't all these vulnerable sites get hacked way before this row blew up?
FWIW. I don't think this is flamebait either. I thought my employer had broken the site with another overzealous web filter the first time I saw it. However, it only took me minutes to work out what had changed and I like the result. It took me much longer to work out what the "1 more" bit meant under some sections.