I see they keep banging on about "trusted" partners. Trusted by whom? That's the point which they seem to be missing... Certainly not "trusted by O2 customers".
"Here I sit, watching a freshly installed FreeBSD box run through cvsup on all ports, to be closely followed by a new kernel compilation. As the output flies by in the xterm, I find myself wondering why I don't run into more FreeBSD in the world."
There's your answer right there. Perhaps people want more from their OS than to sit watching a kernel compilation."
What a great idea. About the only bit of personal information that most Facebook users haven't already given to Facebook is their postal address. Yet this process does just that.
Wouldn't surprise me if this "Annoy Facebook" thing was actually started by Facebook to harvest postal addresses.:-)
I note that using Chrome for Business and allowing auto-updates means that that one can have an auto-updating browser where the end-users are not administrators. This has never been possible with Firefox. It can be done with Internet Explorer too, of course;-)
I am hopeful that the government is only raising this to appease those who genuinely believe it's a good idea, while planning to dismiss it later "after consideration" as being unnecessary.
Apart from the fact that it's basically technically impossible to "block Twitter/FB" (or whatever) in any meaningful way - and everyone knows it - I don't think it would have made any difference to the rioting.
After all, there have been riots and unrest for centuries. However, the post-riot organised cleanup could not easily have happened without social media. And that was a good thing. Also those caught up in areas affected by the riots were able to find out what was going on by using social media. And that's a good thing too.
Federal law prohibits websites from collecting personal information from anyone under the age of 13.
'Federal' suggests you are talking about a U.S. law. Many users of Facebook are not based in the U.S. What implications does this have here, specifically to non-U.S. users of Facebook, if any?
Article reports: "There are reports that this vulnerability is being exploited in the wild in targeted attacks via a Flash (.swf) file embedded in a Microsoft Excel (.xls) file delivered as an email attachment"
*BOGGLE* If that sort of functionality is even possible, then it was just an accident waiting to happen.
However when there was a mass shooting at LAX in 2002, they didn't shut down the airport.
Ah, but shooting is fine. It's much more American for a start. Americans like guns and shooting. It's carrying a bomb that makes you a terrorist, not carrying a gun.
Some extensions I installed use the status bar to display, you guessed it, their status.
Could anyone inform me how the hell would that work if the bar is gone???
Don't worry. Those extensions probably won't work with Firefox 4 anyway, so this won't be a problem;-)
German U-boats (submarines) were given deliberately 'inflated' numbers, to make it seem that there were many more than there really were. The strategic/morale effect of your enemy believing that you have hundreds of submerged threats at sea was an important consideration to the Germans.
I guess they didn't see the need to do this with tanks.
For the first time since, well, quite a long time, we have no sizeable opposition in Parliament.
The size of the opposition (i.e. number of MPs) is fairly typical really. The problem is that the opposition consists of MPs who belong to the unpopular former-governing Labour party. People have become too used, over recent years, to disbelieving them;-)
If you want to play and allow proper nouns, then you don't need an official 'rule change' to do so. You just say to your fellow players "Hey, chaps, shall we allow proper nouns, then?"
And if the new 'offical rules' say that proper nouns are allowed, then you don't have to go along with it. You say to your fellow players "Hey, chaps, let's play Old School Scrabble: no proper nouns!"
Surely people do this all the time, where you have your own House Rules?
His explanation describes how the compromise might work using online pizza ordering as an example. This is a superb way to highlight the risks. No-one wants their pizzas going to someone else, after all.
But the bug is not exploitable on ubuntu, because they set vm.mmap_min_addr > 0 by default.
That doesn't seem to be generally true.
Ubuntu Hardy 8.04 LTS, 2.6.24-25-generic: vm.mmap_min_addr = 65536; Ubuntu Jaunty 9.04, 2.6.28-16-generic: vm.mmap_min_addr = 0. So, by the above logic, Ubuntu Jaunty is vulnerable, although Hardy is safe.
Also seems like vm.mmap_min_addr = 0 for all the Debian boxes I can get my hands on...
(All my comments above relate to the stock/packaged kernels for the distribution)
I don't understand why those with PVRs still watch the ads. I've found that, with the sole exception of the ad-free (but paid-for, of course) BBC channels, the ad breaks are _way_ too long; this is mostly the reason I use a PVR. To skip through the ads.
In addition, the Treat The Audience As If They Have An Attention Span Of Less Than A Minute approach, showing you highlights of what you're going to see soon, then actually showing you it, then showing you a re-cap of what you've just seen; that just encourages more skipping from me, really.
That's because you shouldn't be using OpenOffice for academic writing. It's ok, but it's painful if you have to say.. typeset equations.
You should be using LaTeX.
LaTeX is ideal in two situations:
Large, structured documents (such as a thesis or long report);
Documents including equations.
It's worth pointing out that many academic publications fit neither of the above.
Also remember that most journals/publishers will strip the formatting from your document and re-format/re-typeset it themselves, regardless of the format in which it was submitted. For this reason, most journal submitters are asked to submit minimally-formatted text, with tables/figures provided separately. You can do this equally well in a number of applications (MS Word, OpenOffice Writer, others etc.). I expect even plain text would be OK in this context, since "convert to plain text" might well be the first step the journal takes when they decide to publish your manuscript.
Slashdot Mirror
I see they keep banging on about "trusted" partners. Trusted by whom? That's the point which they seem to be missing... Certainly not "trusted by O2 customers".
52-minutes is 'quick-look'?? Really?
"Here I sit, watching a freshly installed FreeBSD box run through cvsup on all ports, to be closely followed by a new kernel compilation. As the output flies by in the xterm, I find myself wondering why I don't run into more FreeBSD in the world."
There's your answer right there. Perhaps people want more from their OS than to sit watching a kernel compilation."
I think this is all a hoax. I think they really went to Mars.
What a great idea. About the only bit of personal information that most Facebook users haven't already given to Facebook is their postal address. Yet this process does just that.
Wouldn't surprise me if this "Annoy Facebook" thing was actually started by Facebook to harvest postal addresses. :-)
The Mozilla Enterprise Working Group are considering this proposal at present: https://wiki.mozilla.org/Enterprise/Firefox/ExtendedSupport:Proposal
This would provide a 42-week 'stable' release of Firefox, with incremental backported security fixes "just like the old days".
Whether this will come to fruition or not is unclear at this stage, but at least it's being discussed.
You _can_ switch off auto-updates for Google Chrome for Business: see http://www.google.com/support/a/bin/answer.py?answer=187207 although, as they say, they don't recommend it.
I note that using Chrome for Business and allowing auto-updates means that that one can have an auto-updating browser where the end-users are not administrators. This has never been possible with Firefox. It can be done with Internet Explorer too, of course ;-)
I am hopeful that the government is only raising this to appease those who genuinely believe it's a good idea, while planning to dismiss it later "after consideration" as being unnecessary.
Apart from the fact that it's basically technically impossible to "block Twitter/FB" (or whatever) in any meaningful way - and everyone knows it - I don't think it would have made any difference to the rioting.
After all, there have been riots and unrest for centuries. However, the post-riot organised cleanup could not easily have happened without social media. And that was a good thing. Also those caught up in areas affected by the riots were able to find out what was going on by using social media. And that's a good thing too.
Federal law prohibits websites from collecting personal information from anyone under the age of 13.
'Federal' suggests you are talking about a U.S. law. Many users of Facebook are not based in the U.S. What implications does this have here, specifically to non-U.S. users of Facebook, if any?
Article reports: "There are reports that this vulnerability is being exploited in the wild in targeted attacks via a Flash (.swf) file embedded in a Microsoft Excel (.xls) file delivered as an email attachment"
*BOGGLE* If that sort of functionality is even possible, then it was just an accident waiting to happen.
However when there was a mass shooting at LAX in 2002, they didn't shut down the airport.
Ah, but shooting is fine. It's much more American for a start. Americans like guns and shooting. It's carrying a bomb that makes you a terrorist, not carrying a gun.
Some extensions I installed use the status bar to display, you guessed it, their status. Could anyone inform me how the hell would that work if the bar is gone???
Don't worry. Those extensions probably won't work with Firefox 4 anyway, so this won't be a problem ;-)
I think "able to brute-force thousands of passwords in an hour" qualifies as a weakness in SHA-1.
Not really. It just shows that 6-character passwords aren't very strong. The hash itself is not the weak point.
German U-boats (submarines) were given deliberately 'inflated' numbers, to make it seem that there were many more than there really were. The strategic/morale effect of your enemy believing that you have hundreds of submerged threats at sea was an important consideration to the Germans.
I guess they didn't see the need to do this with tanks.
For the first time since, well, quite a long time, we have no sizeable opposition in Parliament.
The size of the opposition (i.e. number of MPs) is fairly typical really. The problem is that the opposition consists of MPs who belong to the unpopular former-governing Labour party. People have become too used, over recent years, to disbelieving them ;-)
Seeing 'Hacker' in the same sentence as 'UK' and 'Government' made me think this story was about http://en.wikipedia.org/wiki/Jim_Hacker
If you want to play and allow proper nouns, then you don't need an official 'rule change' to do so. You just say to your fellow players "Hey, chaps, shall we allow proper nouns, then?"
And if the new 'offical rules' say that proper nouns are allowed, then you don't have to go along with it. You say to your fellow players "Hey, chaps, let's play Old School Scrabble: no proper nouns!"
Surely people do this all the time, where you have your own House Rules?
3. Make sure your PINs don't contain any 1's or 0's (some countries disallow those numbers).
Seriously?!?
His explanation describes how the compromise might work using online pizza ordering as an example. This is a superb way to highlight the risks. No-one wants their pizzas going to someone else, after all.
Goodbye car analogies, Hello pizza analogies :-)
Perhaps it's Wine, then, or another package that has modified it: see http://linux.slashdot.org/comments.pl?sid=1430160&cid=29978100 and further comments.
Installing the wine package on ubuntu automatically sets mmap_min_addr to 0. The default install will have it set higher
Interesting. (See /etc/sysctl.d/wine.sysctl.conf for some comments).
Solution, remove wine.
Hardly a solution if one needs to use Wine, though, is it? Probably just a good idea to wait for a patched kernel, I should think.
But the bug is not exploitable on ubuntu, because they set vm.mmap_min_addr > 0 by default.
That doesn't seem to be generally true.
Ubuntu Hardy 8.04 LTS, 2.6.24-25-generic: vm.mmap_min_addr = 65536; Ubuntu Jaunty 9.04, 2.6.28-16-generic: vm.mmap_min_addr = 0. So, by the above logic, Ubuntu Jaunty is vulnerable, although Hardy is safe.
Also seems like vm.mmap_min_addr = 0 for all the Debian boxes I can get my hands on...
(All my comments above relate to the stock/packaged kernels for the distribution)
I don't understand why those with PVRs still watch the ads. I've found that, with the sole exception of the ad-free (but paid-for, of course) BBC channels, the ad breaks are _way_ too long; this is mostly the reason I use a PVR. To skip through the ads.
In addition, the Treat The Audience As If They Have An Attention Span Of Less Than A Minute approach, showing you highlights of what you're going to see soon, then actually showing you it, then showing you a re-cap of what you've just seen; that just encourages more skipping from me, really.
[...] if they show the person really is from war-torn Elbonia [...]
Everyone knows the Elbonian civil war ended years ago.
That's because you shouldn't be using OpenOffice for academic writing. It's ok, but it's painful if you have to say.. typeset equations.
You should be using LaTeX.
LaTeX is ideal in two situations:
It's worth pointing out that many academic publications fit neither of the above.
Also remember that most journals/publishers will strip the formatting from your document and re-format/re-typeset it themselves, regardless of the format in which it was submitted. For this reason, most journal submitters are asked to submit minimally-formatted text, with tables/figures provided separately. You can do this equally well in a number of applications (MS Word, OpenOffice Writer, others etc.). I expect even plain text would be OK in this context, since "convert to plain text" might well be the first step the journal takes when they decide to publish your manuscript.