The problem is, if listFiles() is inside the JDK then it doesn't NEED to look like this. It will work just fine and all the permission checks inside call() that runs a command-line utility will be green. What you're describing is a manual check inside the listFiles() which is completely beside the point.
ESPN (and the US sport in general) is an exercise in determining how deeply they can screw their customers. They don't offer any real web streaming, they require expensive cable subscriptions, they have geographic restrictions and so on. And on top of that, all of the "traditional" US sports are BORING - matches might take many hours and are usually excruciatingly slow with all the timeouts and replacements.
Is it such a wonder that people who are not slaves to American Hand Egg prefer something more alive and user-friendly?
Security manager works exactly as I described - you whitelist code to invoke privileged actions: https://docs.oracle.com/javase... It's also possible to grant privileges dynamically to the calls down the stack (that's what you're referring to), but it's not the sole model. The JRE uses the whitelisting approach for its own classes - check the jre/lib/security/java.policy file for details if you don't believe me.
In the example above I assumed that listFiles() was somehow made callable with untrusted data (perhaps not even directly).
Suppose that listFiles() is within a trusted package and was left with public access so it's granted appropriate permissions from SecurityManager. The fact that it was left with public access _is_ a bug, of course. The problem is that it's too easy to make such mistakes and it takes only one to bring down the whole system. And if you think such mistakes are rare, here's a partial CVE list: https://www.cvedetails.com/cve... , https://www.cvedetails.com/cve... , https://www.cvedetails.com/cve... , https://www.cvedetails.com/cve... , and so on.
That's what I said - Java uses code access security. It divides code into trusted and untrusted parts, so that trusted code can do privileged actions. The great problem here is that the trusted code can be called from untrusted. And then it takes just one privileged function like:
public String listFiles(String data) {
return call("ls -la "+data);
}
to ruin everything. And it turns out that the JDK is full of these.
The modern approach is to limit the _data_ on which you can operate by restricting you to operations with file descriptors you've inherited with the environment and maybe to IPC calls through a well-defined protocol. Think about this as a classic Unix suid binaries versus network servers with authentication.
Think about it, if you go by your definition then any company can avoid being a monopoly. Just set up a fake "competitor" company with 1 token client and you have a "Get out of jail free" card.
Java 9 modularity spends a lot of spec to describe ways to limit the access from untrusted to trusted modules. The justification is code access security, this model splits _code_ into trusted and untrusted with trusted code having privileged access. And it's the real reason applets were so buggy - it's easy to trick a lot of "trusted code" by carefully crafting the data it works on.
In contrast, modern approaches put the trust boundary at the process level and simply disallow access to anything that is not explicitly whitelisted. See: http://doc.pypy.org/en/latest/... as an example. Your code can be as buggy as you want, but it doesn't matter if it can't access the whole world.
This is what happens when architectural astronauts get involved. The module system was NOT designed to solve clients' problems, it was designed to make JVM "modular" to better support IoT and "containers".
And because it's not a user-driven feature, Snoracle went wild. They designed a complicated system that basically will force a significant redesign of every large Java-based system, all the while ignoring experience of OSGi, Maven and other modular systems. Here's a nice breakdown: https://developer.jboss.org/bl...
I can add a couple of my own comments, Snoracle is _still_ enamored with code access security. They think that they need to mutilate the language to support running of privileged and unprivileged code within the same address space, separated only by module boundaries. To this end, they designed complicated rules of visibility with restrictions for reflective access. You can guess how useful this is going to be - just remember the great security of applets.
From the looks of it (colored chemicals in test tubes) this is a vanadium flow battery. They are known for quite some time but suffer from low energy density, so they aren't even used for stationary applications where additional weight (and volume) is less of an issue.
Really? I haven't seen liberals running for safe spaces. Instead they go out and protest. Meanwhile wittle white snowflawkes come running to daddy for protection every time. Even when they appear grown up, they try to pass laws forbidding free expression or enforcing their views.
Case in point - Alabama has recently passed the law forbidding cities to remove Confederate memorials. Because they feel that their viewpoint must be enforced by the force of law.
Well, you can live in the middle of nowhere very cheaply. However, employment opportunities are really there only in big cities. Small cities with people employed at the local Factory are pretty much a dying breed. And even in states with lots of land the home prices are out of reach. For example in Austin, TX the average home price now is now $410000. At the current median salary in Austin this is around 13 years of income.
Ok, let's add. Coffee bill works out to about $100 a month (I don't know what you're drinking, but Starbucks coffee costs less than $5), meals are about $200 a month. So all-in-all that's less than $500 a month or $5000 a year - still requires more than 20 years of saving for the _downpayment_.
And with millenials, car ownership is actually down compared to previous generations - they're already saving more.
There's simply no way an average millennial can save $50k in 5 years. The median salary for them is right now around $22k per year - that would require savings on the order of two _years_ of salary ( http://www.businessinsider.com... ). Oh, and downpayment of $50k is not enough these days for a home close to a city with good employment perspective.
Old people (primarily baby boomers) often don't understand how deeply they managed to fuck up the most recent generation's live. Perhaps we should reform Medicare and Social Security, after all?
Ok. Suppose that you don't use an iPhone ($25 per month savings) and don't use data ($30 per month savings). So in this case you'll get around $55 per month additional savings - this works out to $660 per year.
So to save enough for a downpayment for a house you need to live without a decent phone for, oh, about 150 years.
But yeah, let's make it more cruel and allow phones only for me-first generation of baby-boomers.
It's not that simple. Supermarket tomatoes are have to be able to survive the trip to supermarket. So they can't just let them ripen on the vine - it makes the skin brittle and ready to burst. However, if you knock out a couple of genes, then you can decouple the process of ripening from thinning of the skin.
Because as a rule, when something awful and authoritarian is proposed it's Republicans who are doing it. Usually with a couple of token Democrats, so that clueless idiots can keep repeating: "but both parties are doing it!"
Blackouts mean that your power grid has failed. A struggling power grid has other symptoms - unstable frequency and voltage. And Germany's grid most definitely has them to the level that actually hurts important industrial consumers.
And I see that you don't have objections to my other points? Are you willing to take my bet? I'll even make it easier - you win if by 2020 Germany has less installed coal capacity than now.
Superconducting lines are efficient only for high-voltage DC transmissions (because inductive losses for AC are so huge) and DC is cost-effective only for large enough streams due to cost of convertors. Also, high-tc superconducting lines will still have to work at around 100kV because their critical current is not that large. TLDR; it's not clear if superconducting power lines even make sense.
Another fun fact - semiconductors used by high-power DC convertors are produced in nuclear reactors ( https://nrl.mit.edu/facilities... ).
Yeah, it's fine. It's the best power grid in the world. It's designed by very very smart people, believe me. In reality, it's struggling to maintain frequency and voltage stability because control capacity is almost tapped out. This has resulted in basically flat new renewable energy utilization for the last 2 years, contrast the installed capacity and the actual produced energy:.
As for superconducting transmission lines - the only one production line in Germany is 200 meters in length, as far as I remember.
How can you call it "hastely expanding" with a straight face? The 2020 target is a problem because German cars became a lot larger and heavier in the past 15 years, not because of coal power plants.
Yes, they are hastily expanding. I keep offering bets to greenies that by 2020 Germany will have more fossil fuel generation than in 2011. Somehow they keep finding excuses to not enter it. Oh, and I was just referring to power generation emissions - the target won't be even close.
Slashdot Mirror
The problem is, if listFiles() is inside the JDK then it doesn't NEED to look like this. It will work just fine and all the permission checks inside call() that runs a command-line utility will be green. What you're describing is a manual check inside the listFiles() which is completely beside the point.
His card got punched. RIP.
ESPN (and the US sport in general) is an exercise in determining how deeply they can screw their customers. They don't offer any real web streaming, they require expensive cable subscriptions, they have geographic restrictions and so on. And on top of that, all of the "traditional" US sports are BORING - matches might take many hours and are usually excruciatingly slow with all the timeouts and replacements.
Is it such a wonder that people who are not slaves to American Hand Egg prefer something more alive and user-friendly?
Security manager works exactly as I described - you whitelist code to invoke privileged actions: https://docs.oracle.com/javase... It's also possible to grant privileges dynamically to the calls down the stack (that's what you're referring to), but it's not the sole model. The JRE uses the whitelisting approach for its own classes - check the jre/lib/security/java.policy file for details if you don't believe me.
In the example above I assumed that listFiles() was somehow made callable with untrusted data (perhaps not even directly).
I should have said "JRE", JDK is basically a JRE with a compiler, source code and examples packaged.
Suppose that listFiles() is within a trusted package and was left with public access so it's granted appropriate permissions from SecurityManager. The fact that it was left with public access _is_ a bug, of course. The problem is that it's too easy to make such mistakes and it takes only one to bring down the whole system. And if you think such mistakes are rare, here's a partial CVE list: https://www.cvedetails.com/cve... , https://www.cvedetails.com/cve... , https://www.cvedetails.com/cve... , https://www.cvedetails.com/cve... , and so on.
That's what I said - Java uses code access security. It divides code into trusted and untrusted parts, so that trusted code can do privileged actions. The great problem here is that the trusted code can be called from untrusted. And then it takes just one privileged function like:
public String listFiles(String data) {
return call("ls -la "+data);
}
to ruin everything. And it turns out that the JDK is full of these.
The modern approach is to limit the _data_ on which you can operate by restricting you to operations with file descriptors you've inherited with the environment and maybe to IPC calls through a well-defined protocol. Think about this as a classic Unix suid binaries versus network servers with authentication.
Think about it, if you go by your definition then any company can avoid being a monopoly. Just set up a fake "competitor" company with 1 token client and you have a "Get out of jail free" card.
Java 9 modularity spends a lot of spec to describe ways to limit the access from untrusted to trusted modules. The justification is code access security, this model splits _code_ into trusted and untrusted with trusted code having privileged access. And it's the real reason applets were so buggy - it's easy to trick a lot of "trusted code" by carefully crafting the data it works on.
In contrast, modern approaches put the trust boundary at the process level and simply disallow access to anything that is not explicitly whitelisted. See: http://doc.pypy.org/en/latest/... as an example. Your code can be as buggy as you want, but it doesn't matter if it can't access the whole world.
This is what happens when architectural astronauts get involved. The module system was NOT designed to solve clients' problems, it was designed to make JVM "modular" to better support IoT and "containers".
And because it's not a user-driven feature, Snoracle went wild. They designed a complicated system that basically will force a significant redesign of every large Java-based system, all the while ignoring experience of OSGi, Maven and other modular systems. Here's a nice breakdown: https://developer.jboss.org/bl...
I can add a couple of my own comments, Snoracle is _still_ enamored with code access security. They think that they need to mutilate the language to support running of privileged and unprivileged code within the same address space, separated only by module boundaries. To this end, they designed complicated rules of visibility with restrictions for reflective access. You can guess how useful this is going to be - just remember the great security of applets.
From the looks of it (colored chemicals in test tubes) this is a vanadium flow battery. They are known for quite some time but suffer from low energy density, so they aren't even used for stationary applications where additional weight (and volume) is less of an issue.
It doesn't matter if there are competitors - if you HAVE a monopoly then you're regulated. It's that simple.
Let's bet that by 2020 Germany will have a higher percentage of renewable power than in 2017 averaged through the year.
Anyway, I offer this bet: by 2020 Germany will use more fossil power in absolute numbers (i.e. more GWt*hr) than now.
Really? I haven't seen liberals running for safe spaces. Instead they go out and protest. Meanwhile wittle white snowflawkes come running to daddy for protection every time. Even when they appear grown up, they try to pass laws forbidding free expression or enforcing their views.
Case in point - Alabama has recently passed the law forbidding cities to remove Confederate memorials. Because they feel that their viewpoint must be enforced by the force of law.
Usually future conservatives (aka "bullies"). And when they grow up, Conservatives usually run screaming for "safe spaces" whenever somebody pushes back ( https://www.nytimes.com/2016/1... or http://www.salon.com/2017/04/0... ).
Regressivism (aka Conservatism) - ideas for people who are deathly afraid of everything (just look at how they fondle their guns).
Well, you can live in the middle of nowhere very cheaply. However, employment opportunities are really there only in big cities. Small cities with people employed at the local Factory are pretty much a dying breed. And even in states with lots of land the home prices are out of reach. For example in Austin, TX the average home price now is now $410000. At the current median salary in Austin this is around 13 years of income.
Yep, millennials are well and truly fucked.
Ok, let's add. Coffee bill works out to about $100 a month (I don't know what you're drinking, but Starbucks coffee costs less than $5), meals are about $200 a month. So all-in-all that's less than $500 a month or $5000 a year - still requires more than 20 years of saving for the _downpayment_. And with millenials, car ownership is actually down compared to previous generations - they're already saving more.
There's simply no way an average millennial can save $50k in 5 years. The median salary for them is right now around $22k per year - that would require savings on the order of two _years_ of salary ( http://www.businessinsider.com... ). Oh, and downpayment of $50k is not enough these days for a home close to a city with good employment perspective.
Old people (primarily baby boomers) often don't understand how deeply they managed to fuck up the most recent generation's live. Perhaps we should reform Medicare and Social Security, after all?
Ok. Suppose that you don't use an iPhone ($25 per month savings) and don't use data ($30 per month savings). So in this case you'll get around $55 per month additional savings - this works out to $660 per year.
So to save enough for a downpayment for a house you need to live without a decent phone for, oh, about 150 years.
But yeah, let's make it more cruel and allow phones only for me-first generation of baby-boomers.
It's not that simple. Supermarket tomatoes are have to be able to survive the trip to supermarket. So they can't just let them ripen on the vine - it makes the skin brittle and ready to burst. However, if you knock out a couple of genes, then you can decouple the process of ripening from thinning of the skin.
Because as a rule, when something awful and authoritarian is proposed it's Republicans who are doing it. Usually with a couple of token Democrats, so that clueless idiots can keep repeating: "but both parties are doing it!"
Are you fucking kidding us? Today's Democrats were called "Republicans" and today's Republicans were called "crazy dingbat wingnuts".
Blackouts mean that your power grid has failed. A struggling power grid has other symptoms - unstable frequency and voltage. And Germany's grid most definitely has them to the level that actually hurts important industrial consumers.
And I see that you don't have objections to my other points? Are you willing to take my bet? I'll even make it easier - you win if by 2020 Germany has less installed coal capacity than now.
Superconducting lines are efficient only for high-voltage DC transmissions (because inductive losses for AC are so huge) and DC is cost-effective only for large enough streams due to cost of convertors. Also, high-tc superconducting lines will still have to work at around 100kV because their critical current is not that large. TLDR; it's not clear if superconducting power lines even make sense.
Another fun fact - semiconductors used by high-power DC convertors are produced in nuclear reactors ( https://nrl.mit.edu/facilities... ).
As for superconducting transmission lines - the only one production line in Germany is 200 meters in length, as far as I remember.
How can you call it "hastely expanding" with a straight face? The 2020 target is a problem because German cars became a lot larger and heavier in the past 15 years, not because of coal power plants.
Yes, they are hastily expanding. I keep offering bets to greenies that by 2020 Germany will have more fossil fuel generation than in 2011. Somehow they keep finding excuses to not enter it. Oh, and I was just referring to power generation emissions - the target won't be even close.