You skip past all this code and just set p = 0.01 in Firebug. Refresh the page and now your item's price is $0.01. This works in at least 20-30% of all the small-to-medium enterprise AJAX carts I've informally tested it on.
Having never checked out (that would be theft) with this modified value, it's impossible to say if those same retailers were using proper serverside validation in the checkout process. I'd guess not, given their lackluster approach to AJAX security.
I don't understand your point. Obviously you can alter a page if you mess with javascript, but every definitive check will always be server-side.
In the shopping cart example product ids would be saved server-side and prices would be calculated by checking those ids against the db. If the user wants to change the page to show "foobar" instead of the real product name and 0.01 euros instead of the real price is his right but it would not change is order.
How would you avoid such a "vulnerabily" by the way?
If someone wants to sell some shit, and they know they can influence people, and their business is about making money, then using marketing is a logical decision.
Yes. And that is exactly the reason why free market won't work.
In a perfect world advertisement would be a simple list of product features, people would choose products on a price/quality basis, monopolies wouldn't exists becouse consumers would boycott the company thinking of their own (mid/long-term) interest.
Marketing is the art of exploiting ignorance, maybe that's why it is hated so much by smart people.
The libraries are preloaded, IEXPLORE.EXE doesn't do much.
Try opening the standard file explorer and type www.google.com. I'm sorry but this is harsh reality.
People aren't stupid. The elitests who believe the average user, and average person, is a gibbering idiot is usually just as dumb when they are confronted with tasks outside their element. A Linux guru might wonder why everyone else is just too dumb to use all the wonderful CLI tools and scripting capabilities, yet when confronted with an automechanical problem, the mechanic is chuckling to himself about how Mr. Linux Guru is too dumb to even perform basic maintenance on his own car.
Mmmh, no. You underestimate the stupidity of the average user.
We are talking about people who can't install a program in Windows, who can't guess that if you want to open a file you might want to check "file" menu.
I've seen people using Word to copy files (open & save as) and centering lines using spaces completely ignoring align icons.
What you forget is that User Interfaces are designed to make interaction easy while car engines are not.
Using your analogy an average user wouldn't know how to change gears or which pedal is the brake.
The problem with people from management is that they usually aren't chosen for their intelligence but for their social skills.
When one of them succesfully climbs the ladder it is in his/her interest to stop people smarter than him/her to get promoted, his/her successors will probably do the same.
Repeat the process a sufficient number of times and you can understand why CEOs are chosen among the dumbest people in the human race.
Why would MS purchase Opera when they have a relatively stable web browser of their own for free?
Really? Are they going to release it?
Seriously, IE is not stable: it is the main source of security problems of the OS.
If they couldn't make it secure with years of work and no other code change the they simply can't.
Even spending millions to acquire another browser can be more cost effective than patch that barely working hack that IE is.
Do you realize that IE has 90% of the market share and hasn't even changed much in 3-4 years? Firefox puts out a brand new browser that is a lot faster with tons better features and only manages to garner 10%.
You got it backwards.
Do you realize that a free browser managed to erode in a significant way the market share of a bundled product backed by MS marketing juggernaut and and a terrifying percent of web sites built to work in it only? And that in a world where users are an exemple of complete ignorance and incompetence?
You forget that there are people who fix friends' and customers' pcs and that those people usually choose the better alternative.
If Joe Sevenpack wants to release his new software under a license that says you can only use it if you have six fingers, he has a right to.
I completely disagree: I love GPL/commercial dual licensing.
If you choose GPL your code becomes free (as in speech). It will help other people to learn, to improve, and these people will reward you with their contributions, their time, their money. With GPL code becomes property of humanity and it will stay so. If you like the project you contribute, if you don't like it you fork. And this is how democracy should be.
If you are selfish a**hole and you choose not help humanity but only yourself you can, but you have to pay a fine for that. And this is how capitalism should be.
WTF does acrobat bring IE and Firefox both to their knees. And why cant you cancel it? Why is it allowed to lock up the browser, and every instance of it completely?
A little that may help you:
Options,Internet,uncheck "Show PDF in the Browser".
The PDF file is loaded in the application and your browser is safe.
With a stronger dollar less will be imported and more exported.
Actually it's viceversa.
A stronger dollar means that other countries will have to pay more local currency to buy US goods, so US exports will decrease.
Extra-US product will cost less to americans so they will buy more.
I'd really like, however, to be spared the posturing, politics, and ideology that comes with a war mentality. Especially for something as silly as a damn web browser.
Yeah, right.
Opera FUDs Mozilla, so Mozilla will counter FUDing Opera. Safari and Konqueror will join shortly. Users read horror stories about alternative browsers and stick with IE: everybody loses, but Microsoft.
Winning against IE must THE priority for every other browser: it's not IE vs. Mozailla/Opera/Safari/Konqueror, it's passive choice vs. active choice.
P.S. in capitalism everything concerning money is politics.
That situation where there is a tax on CD-Rs and hard drives is completely wrong. I could understand a tax on tapes because, very few people seemed to buy tapes to record their own material.
You are absolutely wrong, such a tax is completely immoral and probably illegal.
First you are considered a criminal without a trial, second the tax goes to a private entity and third even after having paid such a stupid tax you can still be sued by majors (!!!).
How do you a private organization that demands a payment from you without giving you anything and using threats?
Slashdot Mirror
I don't understand your point. Obviously you can alter a page if you mess with javascript, but every definitive check will always be server-side.
In the shopping cart example product ids would be saved server-side and prices would be calculated by checking those ids against the db. If the user wants to change the page to show "foobar" instead of the real product name and 0.01 euros instead of the real price is his right but it would not change is order.
How would you avoid such a "vulnerabily" by the way?
1) Enter "about:config" as URL.
2) Search for "middle"
3) Set middlemouse.contentLoadURL to false 4) Done
If someone wants to sell some shit, and they know they can influence people, and their business is about making money, then using marketing is a logical decision.
Yes. And that is exactly the reason why free market won't work.
In a perfect world advertisement would be a simple list of product features, people would choose products on a price/quality basis, monopolies wouldn't exists becouse consumers would boycott the company thinking of their own (mid/long-term) interest.
Marketing is the art of exploiting ignorance, maybe that's why it is hated so much by smart people.
The libraries are preloaded, IEXPLORE.EXE doesn't do much.
Try opening the standard file explorer and type www.google.com. I'm sorry but this is harsh reality.
People aren't stupid. The elitests who believe the average user, and average person, is a gibbering idiot is usually just as dumb when they are confronted with tasks outside their element. A Linux guru might wonder why everyone else is just too dumb to use all the wonderful CLI tools and scripting capabilities, yet when confronted with an automechanical problem, the mechanic is chuckling to himself about how Mr. Linux Guru is too dumb to even perform basic maintenance on his own car.
Mmmh, no. You underestimate the stupidity of the average user.
We are talking about people who can't install a program in Windows, who can't guess that if you want to open a file you might want to check "file" menu.
I've seen people using Word to copy files (open & save as) and centering lines using spaces completely ignoring align icons.
What you forget is that User Interfaces are designed to make interaction easy while car engines are not.
Using your analogy an average user wouldn't know how to change gears or which pedal is the brake.
The problem with people from management is that they usually aren't chosen for their intelligence but for their social skills.
When one of them succesfully climbs the ladder it is in his/her interest to stop people smarter than him/her to get promoted, his/her successors will probably do the same.
Repeat the process a sufficient number of times and you can understand why CEOs are chosen among the dumbest people in the human race.
Why would MS purchase Opera when they have a relatively stable web browser of their own for free? Really? Are they going to release it?
Seriously, IE is not stable: it is the main source of security problems of the OS.
If they couldn't make it secure with years of work and no other code change the they simply can't.
Even spending millions to acquire another browser can be more cost effective than patch that barely working hack that IE is.
Do you realize that IE has 90% of the market share and hasn't even changed much in 3-4 years? Firefox puts out a brand new browser that is a lot faster with tons better features and only manages to garner 10%.
You got it backwards.
Do you realize that a free browser managed to erode in a significant way the market share of a bundled product backed by MS marketing juggernaut and and a terrifying percent of web sites built to work in it only? And that in a world where users are an exemple of complete ignorance and incompetence?
You forget that there are people who fix friends' and customers' pcs and that those people usually choose the better alternative.
If Joe Sevenpack wants to release his new software under a license that says you can only use it if you have six fingers, he has a right to.
I completely disagree: I love GPL/commercial dual licensing.
If you choose GPL your code becomes free (as in speech). It will help other people to learn, to improve, and these people will reward you with their contributions, their time, their money. With GPL code becomes property of humanity and it will stay so. If you like the project you contribute, if you don't like it you fork. And this is how democracy should be.
If you are selfish a**hole and you choose not help humanity but only yourself you can, but you have to pay a fine for that. And this is how capitalism should be.
Try this:
about:config
browser.startup.page, set it to 0
Now the browser starts with a blank page.
If you want to go the home page simply click the icon.
WTF does acrobat bring IE and Firefox both to their knees. And why cant you cancel it? Why is it allowed to lock up the browser, and every instance of it completely?
A little that may help you:
Options,Internet,uncheck "Show PDF in the Browser".
The PDF file is loaded in the application and your browser is safe.
With a stronger dollar less will be imported and more exported. Actually it's viceversa.
A stronger dollar means that other countries will have to pay more local currency to buy US goods, so US exports will decrease.
Extra-US product will cost less to americans so they will buy more.
I'd really like, however, to be spared the posturing, politics, and ideology that comes with a war mentality. Especially for something as silly as a damn web browser.
Yeah, right.
Opera FUDs Mozilla, so Mozilla will counter FUDing Opera. Safari and Konqueror will join shortly. Users read horror stories about alternative browsers and stick with IE: everybody loses, but Microsoft.
Winning against IE must THE priority for every other browser: it's not IE vs. Mozailla/Opera/Safari/Konqueror, it's passive choice vs. active choice.
P.S. in capitalism everything concerning money is politics.
That situation where there is a tax on CD-Rs and hard drives is completely wrong. I could understand a tax on tapes because, very few people seemed to buy tapes to record their own material.
You are absolutely wrong, such a tax is completely immoral and probably illegal.
First you are considered a criminal without a trial, second the tax goes to a private entity and third even after having paid such a stupid tax you can still be sued by majors (!!!).
How do you a private organization that demands a payment from you without giving you anything and using threats?
So you say all the postmen must change their job: they could be delivering child porn.
I agree with you, the option should be in the GUI and would require almost no work to implement it.
The config hides lots of useful options that are unchangeble through the GUI, but extensions like this can show them to the average user.
2) search for browser.startup.page
3) set it to 0
4) done.