Because developers forget that just because somethings hidden in thousands of javascript and never invoked directly by users doesn't mean that it won't be a target, if anything it makes it more of a target because us security folks have long since picked up on that:)
Are they going to make you pay for 1000 channels, when you only watch 10... and STILL show adverts?
And I presume it'll all be DRM'd up to the hilt and only playable on Windows?
Or will they release it in a various formats (flv,mpeg etc.) without DRM and all downloadable on a per-show basis without any adverts, like BBC iPlayer does?
Which is why tools like Valgrind or Numega BoundsChecker exist, they provide much more granular information about how memory's being used and abused, the problem you just described would flag up instantly as writing to previously free'd data along with a few source code locations relevant to where it was allocated/free'd.
Well, in the states the PROTECT act of 2003 provides protection against prosecution for both the government agency that deals with this stuff AND to providers of services where a third party may upload offending material, I cant remember what the IWF's legal status is in the UK, but I'm sure they have some protected status which allows them to investigate, report and monitor stuff legally.
The difference being that in the USA there's a way for ISPs to respond to and report it (which is encouraged, and depending on circumstances actually required by law) without getting individuals hauled off and prosecuted for doing "the responsable thing".
I don't even want to think about what happens if you're an American running British servers, required by American law to preserve "evidence", while being prosecutable in the UK for the actions required to carry this out.
As an ISP I much prefer the American laws in this case, they're surprisingly sound.
Don't you think it's ironic that they're patenting something which doesn't exist yet?
Say I just brainstorm a whole load of outlandish ideas which may or may not be technically possible in the near future, patent them all, then sit back and wait for them to be independently invented when the technology is available, then sue them all for loads o' monies....Isn't that a good definition of a patent troll?
I can spend comparatively nothing on R&D, then reap the rewards of other people's innovation; that's a pretty cool business model!
Well then start with a C compiler frontend that translates from Russian keywords into English keywords (which reminds me, why don't we have the real boolean logic symbols available to program with? My unicode character sets upports them).
The problem with that is that you have one large development group (the entirity of the C programming world) and your own (the Cyrillic C programming world) forking off and going separate ways.
Why don't China and India do the same?
That can be done but it involves re-creating millions of man-hours worth of work, perhaps it could be seen as a way to get rid of the old and in with the new, anyway I'm not in a position to speculate.
Personally I prefer Privoxy to do filtering before my browser has a chance to render it, as an added bonus I get the same crap filtering with every browser I have (IE, Opera, Firefox, Dillo, Konqueror etc.)
And the geek in me goes & writes specific filters for sites which particuarly piss me off.
So if I collected data about the other CNN customers who are sharing my bandwidth via the P2P service, their IP addresses, what they were watching, and when and published it, that would be OK, would it?
Why would it not be OK? Perhaps not morally justifiable, but it's no different from publishing web-server logs or putting a live webcam of your house on the internet. It's a legal way around something that's technically impossible to stop, and something which just happens to be an accepted part of every day life in the real-world.
The consent is implied when the other person accesses your computer, knowingly or unknowingly, that it may be logged and may well pop up somewhere in future, so why should this program do something completely differently from the rest of the internet?
I'm sure i cant be the only person who noticed this, but in many of the graphs TWO of the bars were coloured white with the other being red/green or whatever, not just that but they colouring seemed to be switched at random.
Fluxbox! What do you think I'm running? A super computer? No thank you, I use `dwm` and have none of these silly "overlapping" windows y'all been talking about.
I learned a long time ago to not get too seriously into the window manager flame wars, largely because I've been through so many, progressively seeking out more suitable ones for whatever my current habits and workload.
As long as it works for you (which may even be a KDE killer lol) then that's good enough.
My interpretation of the PROTECT Act of 2003 from the point of view of a website admin is that if I do find child pornography it's my "Duty to Report" [as specified by SEC. 2258A.a.1] all the information along with the offending material to one of the two organizations setup to investigate it, then to preserve all that stuff [as specified by SEC. 2258A.h]
Then... under SEC. 2258B I'm given immunity from prosecution while storing all that stuff as long as a few requirements are met regarding limiting access to employees.
''(a) IN GENERAL.--Except as provided in subsection (b), a civil
claim or criminal charge against an electronic communication
service provider, a remote computing service provider, or domain
name registrar, including any director, officer, employee, or agent
of such electronic communication service provider, remote com-
puting service provider, or domain name registrar arising from
the performance of the reporting or preservation responsibilities
of such electronic communication service provider, remote com-
puting service provider, or domain name registrar under this sec-
tion, section 2258A, or section 2258C may not be brought in any
Federal or State court.
So basically yes:
someone contacting the cops saying "come collect the child porn I have" will be given a medal rather than thrown in jail?
That's exactly how it works, although you don't get any medals.
Currently I can detect between 11 and 16 on a regular basis, with maybe another 7 or 8 APs that only show up now & then depending on time of day/weather/phase of moon etc.
On bad days I often get serious interference with signal quality dropping down to 1mbit, huge amounts of packet loss, varying delay between me & the router between 60 and 900ms... the situation sucks yet I cant do anything about it (strict landlord refuses to put in new phone lines so the only inet access I have is via the shared house wifi etc.)
Other days it's great, particuarly over the christmas holidays when (I presume) lots of people in the neighbourhood were away I had a very stable connection.
To a certain extent I blame this on the high-power wifi APs which are advertised as "stronger signal wherever you are in the house", the only problem is when you have 20+ of these in a small area mostly on the default channels which overall results in connection issues for everybody. I tried explaining this to a neighbour who was having wifi problems too, but the whole concept seems lost on them.
Personally I wish small lower-powered meshing APs were used and placed liberally around peoples houses depending on *where* they needed them so I wouldn't be able to pickup signals from 3 streets away.
It would be incredibly interesting if some people with more experience of school education software could put together a top 10 or top 20 list of common applications which are used throughout the country.
I'm sure the majority of them aren't very complex apps, and the learning material could be easily put together (perhaps with bounties for completing modules, it'd be a nice alternative source of income for teachers).
Anyway, with the goals in hand the problem of "Most educational software is poorly written for Windows." shouldn't be an issue, it's hard for me to write educational software because I don't have kids or experience teaching them... but with the right organisation I'd be happy to oblige.
Couldn't they have e-mailed you the keys instead of having to generate there & then.
That way it wouldn't really matter if there was a backlog, the keys would all be generated and sent out in good time.
Re:Not in "hardware business," won't sell routers
on
Google Router Rumors
·
· Score: 1
Check the Google search appliance, sure it's just a standard 1U machine loaded with their software, but say they did the same with more networking ports and bundled it with some of their cool routing/loadbalancing stuff?
Yes, it is strange that every petition I've been informed enough about and seen as valid enough to sign, has ended up being ignored with some very vague reasons.
Alternatively you can get a big coal burning cooker-range, on a few occasions when we were living out in the country and the power went out, we'd either not notice it or all huddle down in the kitchen sleeping next to the dogs in the warm glow of the rayburn.
RTFA... it's an extremely simple substitution cipher, if the FBI had to outsource this I'd be extremely worried about their technical competancy.
In the age of public/private key encryption, while there's a NSA hashing algorithm competition running with many well respected scientists competing, the FBI's "lab" comes out with this crap?
The guy who found this out (Eddy Nigg) is the founder of another CA who participates in the Mozilla root program aparently. So far from being just some random hacker, it's in his interest not to have vendors like CertStar issuing certificates without validation because it hurts every CA's reputation.
Last time I got a certificate from Comodo we had to go through company identity checks, and it's enraging that some people could be issuing certificates without any form of checks, especially for such a large organisation as Mozilla.
I was going to register somethingch.an, but the registration laws required me to be a resident or a business incorporated in netherlands antilles, and to pay a $140 a year fee. For business that's fine... just for a pet project with a funny domian name? no way.
Slashdot Mirror
Because developers forget that just because somethings hidden in thousands of javascript and never invoked directly by users doesn't mean that it won't be a target, if anything it makes it more of a target because us security folks have long since picked up on that :)
Are they going to make you pay for 1000 channels, when you only watch 10... and STILL show adverts?
And I presume it'll all be DRM'd up to the hilt and only playable on Windows?
Or will they release it in a various formats (flv,mpeg etc.) without DRM and all downloadable on a per-show basis without any adverts, like BBC iPlayer does?
Only time will tell
Which is why tools like Valgrind or Numega BoundsChecker exist, they provide much more granular information about how memory's being used and abused, the problem you just described would flag up instantly as writing to previously free'd data along with a few source code locations relevant to where it was allocated/free'd.
Well, in the states the PROTECT act of 2003 provides protection against prosecution for both the government agency that deals with this stuff AND to providers of services where a third party may upload offending material, I cant remember what the IWF's legal status is in the UK, but I'm sure they have some protected status which allows them to investigate, report and monitor stuff legally.
The difference being that in the USA there's a way for ISPs to respond to and report it (which is encouraged, and depending on circumstances actually required by law) without getting individuals hauled off and prosecuted for doing "the responsable thing".
I don't even want to think about what happens if you're an American running British servers, required by American law to preserve "evidence", while being prosecutable in the UK for the actions required to carry this out.
As an ISP I much prefer the American laws in this case, they're surprisingly sound.
Don't you think it's ironic that they're patenting something which doesn't exist yet?
Say I just brainstorm a whole load of outlandish ideas which may or may not be technically possible in the near future, patent them all, then sit back and wait for them to be independently invented when the technology is available, then sue them all for loads o' monies. ...Isn't that a good definition of a patent troll?
I can spend comparatively nothing on R&D, then reap the rewards of other people's innovation; that's a pretty cool business model!
18:15:43 up 568 days, 6:41, 1 user, load average: 0.01, 0.02, 0.00 - Linux 2.6.11.10 #4 SMP
My penis is bigger, haw haw haw.
Well then start with a C compiler frontend that translates from Russian keywords into English keywords (which reminds me, why don't we have the real boolean logic symbols available to program with? My unicode character sets upports them).
The problem with that is that you have one large development group (the entirity of the C programming world) and your own (the Cyrillic C programming world) forking off and going separate ways.
Why don't China and India do the same?
That can be done but it involves re-creating millions of man-hours worth of work, perhaps it could be seen as a way to get rid of the old and in with the new, anyway I'm not in a position to speculate.
Personally I prefer Privoxy to do filtering before my browser has a chance to render it, as an added bonus I get the same crap filtering with every browser I have (IE, Opera, Firefox, Dillo, Konqueror etc.)
And the geek in me goes & writes specific filters for sites which particuarly piss me off.
So if I collected data about the other CNN customers who are sharing my bandwidth via the P2P service, their IP addresses, what they were watching, and when and published it, that would be OK, would it?
Why would it not be OK? Perhaps not morally justifiable, but it's no different from publishing web-server logs or putting a live webcam of your house on the internet. It's a legal way around something that's technically impossible to stop, and something which just happens to be an accepted part of every day life in the real-world.
The consent is implied when the other person accesses your computer, knowingly or unknowingly, that it may be logged and may well pop up somewhere in future, so why should this program do something completely differently from the rest of the internet?
I'm sure i cant be the only person who noticed this, but in many of the graphs TWO of the bars were coloured white with the other being red/green or whatever, not just that but they colouring seemed to be switched at random.
That's a huge usability failure!
Well, of course it can be silenced... but it's probably the exact same one used to play music on or your ring tone.
Fluxbox! What do you think I'm running? A super computer? No thank you, I use `dwm` and have none of these silly "overlapping" windows y'all been talking about.
I learned a long time ago to not get too seriously into the window manager flame wars, largely because I've been through so many, progressively seeking out more suitable ones for whatever my current habits and workload.
As long as it works for you (which may even be a KDE killer lol) then that's good enough.
My interpretation of the PROTECT Act of 2003 from the point of view of a website admin is that if I do find child pornography it's my "Duty to Report" [as specified by SEC. 2258A.a.1] all the information along with the offending material to one of the two organizations setup to investigate it, then to preserve all that stuff [as specified by SEC. 2258A.h]
Then... under SEC. 2258B I'm given immunity from prosecution while storing all that stuff as long as a few requirements are met regarding limiting access to employees.
''(a) IN GENERAL.--Except as provided in subsection (b), a civil claim or criminal charge against an electronic communication service provider, a remote computing service provider, or domain name registrar, including any director, officer, employee, or agent of such electronic communication service provider, remote com- puting service provider, or domain name registrar arising from the performance of the reporting or preservation responsibilities of such electronic communication service provider, remote com- puting service provider, or domain name registrar under this sec- tion, section 2258A, or section 2258C may not be brought in any Federal or State court.
So basically yes:
someone contacting the cops saying "come collect the child porn I have" will be given a medal rather than thrown in jail?
That's exactly how it works, although you don't get any medals.
I don't have a TV...
Actually, why do I even want to watch the fucking inauguration?
My crappy build-in Centrino wifi chip doesn't support raw packet injection, so no luck there so far otherwise I would :)
Currently I can detect between 11 and 16 on a regular basis, with maybe another 7 or 8 APs that only show up now & then depending on time of day/weather/phase of moon etc.
iwlist eth1 scanning | grep Channel:
Channel:1
Channel:6
Channel:6
Channel:9
Channel:11
Channel:11
Channel:11
Channel:1
Channel:6
Channel:5
Channel:6
Channel:6
Channel:11
On bad days I often get serious interference with signal quality dropping down to 1mbit, huge amounts of packet loss, varying delay between me & the router between 60 and 900ms... the situation sucks yet I cant do anything about it (strict landlord refuses to put in new phone lines so the only inet access I have is via the shared house wifi etc.)
Other days it's great, particuarly over the christmas holidays when (I presume) lots of people in the neighbourhood were away I had a very stable connection.
To a certain extent I blame this on the high-power wifi APs which are advertised as "stronger signal wherever you are in the house", the only problem is when you have 20+ of these in a small area mostly on the default channels which overall results in connection issues for everybody. I tried explaining this to a neighbour who was having wifi problems too, but the whole concept seems lost on them.
Personally I wish small lower-powered meshing APs were used and placed liberally around peoples houses depending on *where* they needed them so I wouldn't be able to pickup signals from 3 streets away.
It would be incredibly interesting if some people with more experience of school education software could put together a top 10 or top 20 list of common applications which are used throughout the country.
I'm sure the majority of them aren't very complex apps, and the learning material could be easily put together (perhaps with bounties for completing modules, it'd be a nice alternative source of income for teachers).
Anyway, with the goals in hand the problem of "Most educational software is poorly written for Windows." shouldn't be an issue, it's hard for me to write educational software because I don't have kids or experience teaching them... but with the right organisation I'd be happy to oblige.
Couldn't they have e-mailed you the keys instead of having to generate there & then.
That way it wouldn't really matter if there was a backlog, the keys would all be generated and sent out in good time.
Check the Google search appliance, sure it's just a standard 1U machine loaded with their software, but say they did the same with more networking ports and bundled it with some of their cool routing/loadbalancing stuff?
Yes, it is strange that every petition I've been informed enough about and seen as valid enough to sign, has ended up being ignored with some very vague reasons.
Alternatively you can get a big coal burning cooker-range, on a few occasions when we were living out in the country and the power went out, we'd either not notice it or all huddle down in the kitchen sleeping next to the dogs in the warm glow of the rayburn.
I always thought it meant "teabag"
e.g. I 3 you
means "I teabag you"
RTFA... it's an extremely simple substitution cipher, if the FBI had to outsource this I'd be extremely worried about their technical competancy.
In the age of public/private key encryption, while there's a NSA hashing algorithm competition running with many well respected scientists competing, the FBI's "lab" comes out with this crap?
The guy who found this out (Eddy Nigg) is the founder of another CA who participates in the Mozilla root program aparently. So far from being just some random hacker, it's in his interest not to have vendors like CertStar issuing certificates without validation because it hurts every CA's reputation.
Last time I got a certificate from Comodo we had to go through company identity checks, and it's enraging that some people could be issuing certificates without any form of checks, especially for such a large organisation as Mozilla.
I was going to register somethingch.an, but the registration laws required me to be a resident or a business incorporated in netherlands antilles, and to pay a $140 a year fee. For business that's fine... just for a pet project with a funny domian name? no way.
I wish other TLDs were like this :/