Some frameworks use a long alphanumeric ID to access objects, gnu enterprise does that, so they thwart this kind of attacks. But i prefer exposing parameters and ID, and check for validity when parsing the request so that a hacker would need to hijack the session to perform any operation.
> IRC is pretty much a shadow of its-self from the good old days of perhaps 10 years ago
Consider that:
- ten years ago internet was somewhat more elitist. Same channels were hosting different people. Do not mistake this for racism, affording a little luxury like chatting on the 'net means the same people had likely time for other luxuries like culture. People might also thought themselves as being part of a clan, back in the day, so there was another atmosphere.
- ten years ago people were different and in a different mood. I'm not going to justify this phrase as IMO it's self evident.
- ten years ago internet was mostly mail+chat+newsgroups+homepages and corporate sites. Web was not much an infrastructure for social networks - except for slashdot.
Of course i didn't RTFA, but maybe the columnist is referring to the way apple reacted to similar announcements in the past (they were so pissed off they terminated deals IIRC).
It's very sensible to underline the amount of work involved in a migration. However I think we're missing the point.
Wouldn't it sound terribly fascist if your public administration got a parking lot manufactured by Smart which accomodates only the measures of Smart vehicles, thereby forcing all employees and visitors to get a smart? yet we accept similar stunts in software.
Isn't it right to devote resources to make public property accessible to people with disabilities? Didn't we rightfully devote resources to ensure equal opportunities regardless the gender? So I want equal opportunity for operating systems and applications, provided they try to adhere to open standards. I'm helping even people who prefer to stay locked in, as I'm forcing MS to fight and have better pricing.
Uhm but let's say we have good dog IE terminating the plugin for an overflow. IE won't be able to tell if it's accidental or malware at work, so it will throw a generic error or a warning at most, and terminate. The user really wants to see "supersexy.mov" so he may be tempted to download or get it from the browser's cache (people getting pr0n likely know about the cache). Or the user got the file by email or downloaded it with a spider. This time Quicktime player is invoked and blam, user is Pwned. So either all players must do bounds checking (inefficient) or it should be the OS, not the browser, the one who babysits processes.
OTOH, babysitting probably takes up more resources so a paranoid OS will slow down. But IMHO the solution is still to taint dangerous stuff (what you got just downloaded) and have the OS babysit it.
Running cubase or protools on mac vs the pc is exactly what got lots of pros going for the mac. Of course that was up to a couple years ago, maybe now windows PCs are less of a nightmare for people needing rock stable systems.
Because Microsoft historically did this: 1)Put all your weight to 0wn a market, no matter the cost (piracy with first iteration of windows, selling at a loss for xbox and zune) 2)profit!!! by abusing its position.
Linux simply competes on the market, there is no step 2, so progress is immediate.
>... a troll will tie this issue to the "Bush administration", or even to "BushCo".
That's easy. Bush is pro-death penalty, death penalties may have occurred because of judgements affected by false proof by the FBI, so Bush's stance killed innocent men.
You happy now that somebody victimizes your precious president? He's just a placeholder, anyway.
> The idea of the authentication system being two devices being shaken together seems like a weak idea.
Yep, why not provide a contact area for devices so you simply have to put them together? It could be used to exchange a key, or act with usb2 speed for data transfer with less effort than implementing accelerometers and software.
> Apple's no cleaner or more honest than MS...Its like telling Christians the Jesus was a real man - and only a man.
I totally agree.
Tying the non-divinity of Jesus to apple being the same as MS is going to convert quite a lot of ipod- and mac- dependent infidels. Thank you for your effort.
Yeah sure, tesla was a loony and all the reports on his experiments in the media of the time were a collective hallucination and the burning up of his useless studio and papers was just an unfortunate coincidence.
All of these assumption to support a theory that there aren't other sources of energy in an universe we don't fully understand. A bit overkill, if you ask me.
Well we do have comparable OSs out there. OSX and Unix-derived, they took less time than MS to bump up version number (irrelevant) and features (relevant). Bugs are fixed fast enough. I dunno about vista, but as stability XPLinux=OSX (except for very new versions of OSX:) ). If the theory were true they should be way less optimized than Windows. Except that even with no AV installed, XP is slow compared to Linux, especially if you serve pages, master DVDs and run another app at the same time.
That's indeed the problem. On one hand we have zealots that tend to contradict explicitly what is written in their books (I don't recall any attempt by the guy called Jesus to force anybody to convert) and fail to give example of the virtues that require from the others. And we have people that call that integralism and push for reform instead of calling then deviants and push for orthodoxy.
On the other hand refusing such zealots leads to remove religion altogether from one's life. Quite a mess.
Under linux I recall explicitly adding to the default user the group audio to become able to hear/capture sound, disk to be able to access removable media. Not to mention bring up network interfaces wired and wireless which needs root. Different distros than debian do that for you, but that doens't resemble the concept of "default" to me.
Compare that to windows (up to XP sorry, ain't got vista), where plugging an usb key, even as a unprivileged user, runs a completely unneeded closed source driver that duplicates e what the SO already does.
As viruses were never just a matter of deployed base in windows vs mac and linux, so is security.
> Hey, some people think that we are only a hyper-realistic, self-aware video game simulation existing in some uber alien kid's computer...
While some others define that simulation as "reality". and the kid "God(s)", and the computer "universe". The latter two being possibly different aspects of a singleton.
Both models are equivalent to a third that applies the "not existing" quality (which is a terribly naive alias for "non meta-existing" quality) to "God(s)".
So religion or philosophy is useless to achieve the truth? Of course. Does this make all religion false? No way, our inability to achieve the truth does not prevent "God" to communicate with us. We simply can't prove or disprove anything about "God" "from the inside" more than a Logo turtle, even a possibly self-aware one, can realize it is a process in a PC, or even more precisely the turtle is an abstraction in our mind for a process in a PC. No amount of miracle can distinguish the "God" from a "hacker", that is somebody who found a way to completely control a reality, but is internal to it instead of transcendent. All is left to accept or reject a message from "god" is, therefore, "faith".
I can't wait for virtual life (no playing with synthesized DNA, i mean a set of computing rules that generate items in a virtual universe, and such items later begin to show lifelike behavior) for these issue to become more apparent.
Slashdot Mirror
The moon committee wanted at least an almond shaped crater, but nobody wasn't proficient with photoshop.
> "Never attribute to malice that which is adequately explained by stupidity". Though instead of "stupidity"
:)
> I'd substitute "error".
Sure way to be caught completely off guard by the eventual malice
I live by
"When widespread madness is the only official excuse, try looking for a better theory".
Some frameworks use a long alphanumeric ID to access objects, gnu enterprise does that, so they thwart this kind of attacks.
But i prefer exposing parameters and ID, and check for validity when parsing the request so that a hacker would need to hijack the session to perform any operation.
> IRC is pretty much a shadow of its-self from the good old days of perhaps 10 years ago
Consider that:
- ten years ago internet was somewhat more elitist. Same channels were hosting different people. Do not mistake this for racism, affording a little luxury like chatting on the 'net means the same people had likely time for other luxuries like culture. People might also thought themselves as being part of a clan, back in the day, so there was another atmosphere.
- ten years ago people were different and in a different mood. I'm not going to justify this phrase as IMO it's self evident.
- ten years ago internet was mostly mail+chat+newsgroups+homepages and corporate sites. Web was not much an infrastructure for social networks - except for slashdot.
Of course i didn't RTFA, but maybe the columnist is referring to the way apple reacted to similar announcements in the past (they were so pissed off they terminated deals IIRC).
bush-clinton-bush...clinton? just like Italian governments- which should ring an alarm over there.
Armed guard should first look for the guy who thinks a sensitive network can adopt wireless connections.
It's very sensible to underline the amount of work involved in a migration. However I think we're missing the point.
Wouldn't it sound terribly fascist if your public administration got a parking lot manufactured by Smart which accomodates only the measures of Smart vehicles, thereby forcing all employees and visitors to get a smart? yet we accept similar stunts in software.
Isn't it right to devote resources to make public property accessible to people with disabilities? Didn't we rightfully devote resources to ensure equal opportunities regardless the gender? So I want equal opportunity for operating systems and applications, provided they try to adhere to open standards. I'm helping even people who prefer to stay locked in, as I'm forcing MS to fight and have better pricing.
Uhm but let's say we have good dog IE terminating the plugin for an overflow. IE won't be able to tell if it's accidental or malware at work, so it will throw a generic error or a warning at most, and terminate. The user really wants to see "supersexy.mov" so he may be tempted to download or get it from the browser's cache (people getting pr0n likely know about the cache). Or the user got the file by email or downloaded it with a spider. This time Quicktime player is invoked and blam, user is Pwned. So either all players must do bounds checking (inefficient) or it should be the OS, not the browser, the one who babysits processes.
OTOH, babysitting probably takes up more resources so a paranoid OS will slow down. But IMHO the solution is still to taint dangerous stuff (what you got just downloaded) and have the OS babysit it.
Running cubase or protools on mac vs the pc is exactly what got lots of pros going for the mac. Of course that was up to a couple years ago, maybe now windows PCs are less of a nightmare for people needing rock stable systems.
One of the best, ever :)
Because Microsoft historically did this:
1)Put all your weight to 0wn a market, no matter the cost (piracy with first iteration of windows, selling at a loss for xbox and zune)
2)profit!!! by abusing its position.
Linux simply competes on the market, there is no step 2, so progress is immediate.
I'd mod him Lamarckian .
Read the comments, then.
> ... a troll will tie this issue to the "Bush administration", or even to "BushCo".
That's easy. Bush is pro-death penalty, death penalties may have occurred because of judgements affected by false proof by the FBI, so Bush's stance killed innocent men.
You happy now that somebody victimizes your precious president? He's just a placeholder, anyway.
> The idea of the authentication system being two devices being shaken together seems like a weak idea.
Yep, why not provide a contact area for devices so you simply have to put them together? It could be used to exchange a key, or act with usb2 speed for data transfer with less effort than implementing accelerometers and software.
Oooh, a professional troll.
> Apple's no cleaner or more honest than MS...Its like telling Christians the Jesus was a real man - and only a man.
I totally agree.
Tying the non-divinity of Jesus to apple being the same as MS is going to convert quite a lot of ipod- and mac- dependent infidels. Thank you for your effort.
Yeah sure, tesla was a loony and all the reports on his experiments in the media of the time were a collective hallucination and the burning up of his useless studio and papers was just an unfortunate coincidence.
All of these assumption to support a theory that there aren't other sources of energy in an universe we don't fully understand. A bit overkill, if you ask me.
Instead of rotten dinosaurs and plants.
Well we do have comparable OSs out there. OSX and Unix-derived, they took less time than MS to bump up version number (irrelevant) and features (relevant). Bugs are fixed fast enough. I dunno about vista, but as stability XPLinux=OSX (except for very new versions of OSX :) ). If the theory were true they should be way less optimized than Windows. Except that even with no AV installed, XP is slow compared to Linux, especially if you serve pages, master DVDs and run another app at the same time.
No.
That's indeed the problem. On one hand we have zealots that tend to contradict explicitly what is written in their books (I don't recall any attempt by the guy called Jesus to force anybody to convert) and fail to give example of the virtues that require from the others. And we have people that call that integralism and push for reform instead of calling then deviants and push for orthodoxy.
On the other hand refusing such zealots leads to remove religion altogether from one's life. Quite a mess.
Under linux I recall explicitly adding to the default user the group audio to become able to hear/capture sound, disk to be able to access removable media. Not to mention bring up network interfaces wired and wireless which needs root. Different distros than debian do that for you, but that doens't resemble the concept of "default" to me.
Compare that to windows (up to XP sorry, ain't got vista), where plugging an usb key, even as a unprivileged user, runs a completely unneeded closed source driver that duplicates e what the SO already does.
As viruses were never just a matter of deployed base in windows vs mac and linux, so is security.
> Hey, some people think that we are only a hyper-realistic, self-aware video game simulation existing in some uber alien kid's computer...
While some others define that simulation as "reality". and the kid "God(s)", and the computer "universe". The latter two being possibly different aspects of a singleton.
Both models are equivalent to a third that applies the "not existing" quality (which is a terribly naive alias for "non meta-existing" quality) to "God(s)".
So religion or philosophy is useless to achieve the truth? Of course. Does this make all religion false? No way, our inability to achieve the truth does not prevent "God" to communicate with us. We simply can't prove or disprove anything about "God" "from the inside" more than a Logo turtle, even a possibly self-aware one, can realize it is a process in a PC, or even more precisely the turtle is an abstraction in our mind for a process in a PC. No amount of miracle can distinguish the "God" from a "hacker", that is somebody who found a way to completely control a reality, but is internal to it instead of transcendent. All is left to accept or reject a message from "god" is, therefore, "faith".
I can't wait for virtual life (no playing with synthesized DNA, i mean a set of computing rules that generate items in a virtual universe, and such items later begin to show lifelike behavior) for these issue to become more apparent.