except in the kdawson style it was a single link to a message board posting about a router "taking out half the internet." Dupe? Correction? I dont care as long as kdawson is kept away from the site for a while.
I need a phone with a web browser. Its power, thats why. Youre like the guy I knew who was poo-pooing the internet in 96. No, its not a fad, its not just for movie trailers, and "pick up a phonebook" isnt the same.
Right. There's always been a java extension/plugin/control etc. I guess slashdot is targeting the 'OMG ALL CORPORATIONS SUCK AND ARE AFTER ME!!!!' crowd, which sadly, gets ad impressions.
No, these tlds are helpful. If anything ends with.biz its a scam or not worth visiting. I expect the new influx of vanity tlds will be the same, with someone eventually writing an IE and Firefox extension that blacklists all domains that dont end with.com,.net, org, mil, and the established country/state codes.
djb thought potential exploits would appear without port randomization, but he didnt discover this particular flaw. Kaminsky did. As a car analogy, its like saying putting chips in keys keeps cars from being stolen, but coming up with a non-obvious hack that always starts the car without a key is its own work. Even Schneier says so:
Kaminsky's vulnerability is a perfect example of this. Years ago, cryptographer Daniel J. Bernstein looked at DNS security and decided that Source Port Randomization was a smart design choice. That's exactly the work-around being rolled out now following Kaminsky's discovery. Bernstein didn't discover Kaminsky's attack; instead, he saw a general class of attacks and realized that this enhancement could protect against them. Consequently, the DNS program he wrote in 2000, djbdns, doesn't need to be patched; it's already immune to Kaminsky's attack.
We have an IP address for the server hosting the phony pages: "[217.20.175.74]". This is in DNS as "sweeper.globmail.org",
Is there a list of malicious sites and servers out there? I know there's the phishing list that google and MS maintain, but something that has all identified zombies and compromised servers? Id rather just block them globally so my users dont get anywhere near this stuff.
>I always recommend extended warranties (such as AppleCare)
Wait. So they are already paying a premium (2800+ dollars) for Apple quality. Now "Apple Quality" turns out to be a myth so they now have to spend even more for an extended warranty? Wow.
Thats like buying a new car and being told "Well, you need the rust undercoating for this. It'll fall apart in a week!" Its a borderline scam.
Fine, but the findings of the court do not limit MS from doing this. Its not illegal. Last I checked this was a free market capitalist system and MS was not owned by the government. You may not like that, but MS can do this.
Instead people make up rights for themselves and whine. Im sick of calling any action illegal when it is actually not.
Actually, its sounds like they would be a poor fit for the automotive idustry. The design requirements for spacecraft goes like this: its must last x amount of days, anything more is good. For cars its: it must last no more than x amount of days, anything more is bad.
>What about packet loss, ping, ping jitter and resistance to interference?
Heck, how about reporting in standard units? Time it takes to transfer his porn collection in a zip archive, i mean 8.05gigs of data? What the heck is that? How about just running iperf and reporting standard mbps.
Ive worked in non-profit IT and servers is one thing they always needed. They dont really need more hands at soup kitchens, they need equipment and expertise. I bet your local food bank would love that stuff. I also bet their existing servers are a couple of old non-raid desktops moved to a closet. You can probably just call someone at Feeding America and they would dole out the servers to deserving foodbanks via their grants system.
Also, if the businessman in you doesnt have a business plan then theyre just going to waste and will probably end up in a landfill. You might as well give them away to someone who needs them.
>here is a case for legislative intervention to come up with a freely published and accessible interface.
Oh, there was no new legislation for the PC case. Apples and Oranges. The government didnt step in a pass a "FREE THE PC BILL" on a whim. It was a simple trial, like any other. If you honestly think you are wronged by having different chargers, please file suit with an attorney. I'll be waiting.
>This is a typical case where pure laissez-faire capitalism can go against the best interests of the consumer.
Whoa. Are friggin chargers such a hardship on you that you are criticizing the whole system? I have a few chargers here and its pretty easy to keep track of things. Having the government mandate connectors isnt a great idea:
1. USB is mature. Its too late to change it. 2. USB power isnt magical. Its a mess actually. 3. USB mandates mean slower adoption of competitors or elimination of competitors.
Imagine is the government mandated rs-232 serial connectors on phones in the 80s. There probably wouldnt be a USB today. People would be clammoring for rs232 because "thats whats on all my stuff. A 480mbps connector that can charge? Who cares if it doesnt work with my rs232!!!!"
The real problem is that the cell phone industry for men is like how shoes are for women. Its all about style and showing off. The system doesnt cater to sane demands because sane demands arent made for it. Is anyone not buying phones thus voting with their dollars over connectors? No. Is anyone not buying an xbox of a wii because replacement controllers are expensive? No.
I wouldnt mind seeing a new spec, but shoe-horning USB, which has been polluted with proprietary crap isnt the way to go. Perhaps EU would have better luck addressing its concerns with the USB 3.0 spec then trying to turn 2.0 into something its not. Or, heaven forbid, looking outside the box to create a simple yet powerful universal DC connector that'll work on more than just phones (think laptops, AA batteries, game controllers, mp3 players, automotive batteries, emergency equipment, etc).
Young creative talent? Yeah maybe in 1996 or so, but today the internet is just another avenue for established business. It might make you feel self-important that the "man" is after you but in reality there's no such thing going on. Also, please turn down your Rage Against the Machine. I can barely hear you.
Same here. Data networks dont handle hand-offs as well as some people might think. I have yet to see a stream as stable as satellite radio. Or as stable as a bad wifi connection. Toss in all the wires and the lack of a remote control or big buttons and its a deal killer.
Im really getting sick of these 'the iphone can do everything' aritcles. It cant. Satellite isnt popular because its subscribes are backwards hillbillies, its because its works right out of the box.
If being a consumer is a lifestyle and brands are your identity I could see how a Walmart executive making the MS store would be a problem. To the sane people, its just a product with a price, not a religion.
I mean is the GAP that great? With all the kids, annoying 'helpful' salespeople, and blaring music? Ive always had a calmer and better shopping experience at places like JC Penny, Target, or Marshalls. I guess that makes me uncool. Shame that cool and image are what drives people nowadays and that there's no criticism of this out of control brand identity lifestyle bullshit.
I do this at work too. Instead of the received email being 90% spam its only 40%. Weighted blacklisting takes care of the rest. No content filtering at all.
Im tempted to put the same rules into the windows firewall for my relative's and friend's computers. They wont notice and it might save them from malicious sites. A more diplomatic approach would be something Web of Trust firefox extension, but some type of realtime blacklist for malicious servers and botnet zombies sounds like a good idea.
First off, all politics is local. My local laws apply to what you do to me or my equipment in my jurisdiction. On top of that, in civilized countries all this shit is illegal. Remember the sasser worm? MS paid out a 250k bounty and the author was revealed to be a German who was later convicted.
Secondly, its not too hard to figure out who did this. A lot of these trojans wont install if your default language is Russian. How odd, eh? Essentially, this is a hand out to the Russian government because it protects and profits from its industry of malware writers, most notable The Russian Business Network. These guys arent getting caught. They have the full protection of the Russian government. MS and the rest know this, but they also know that money talks and a high profile defector would be good for the cause.
Perhaps its time to just firewall off Eastern Europe, Russia, and China and call it a day. Whitelist them when needed.
>Microsoft deserves exactly what they are getting. They could have very easily allowed a power user setting in XP home.
Thats what vista does and the UAC kicks in when you need admin access. There has been nothing but complaints and bitching about this. People are surprised their 10 year old software that writes to c:\temp doesnt work anymore. Now that there's an NT ecosystem of software out there (write to profile area, not to system area when running), its easier for MS to do this. Shame that even the good changes MS does is received with the same old bellyaching.
>Also, for a project I'm working on, I was looking to secure just the ability to change some network settings
You didnt try too hard did you? Add them to the Network Config built-in group. I also believe there's a group policy setting for this.
>Again, Microsoft deserves everything they are getting.
MS is a company. It doesnt feel pain or shame. Right now the people feeling the pain are innocent users. Perhaps you should have a little sympathy for them.
>It may yet only be used for SETI@Home, Folding@Home, winning a decryption contest, or analyze other spam-producing bot nets to identify their controllers and get them shut down.
How is that non-malicious? If you stole my car to drive you grandma to church its still theft. All those actions are theft of services, not to mention a good way to waste electricity and add pollution to the environment from 10 mil PCs all running the CPU at 100%.
>Of course, I have a strong dislike for electoral college, since I throw my democratic vote away every year here in UT.
Is it going to make any difference? John Kerry and Al Gore would have lost under this system too.
If you want change at home, I suggest volunteering, talking to your neighbors, changing minds, and living a life of a good example. These things will do a lot more for your party and your politics than any rewrite of the electoral college.
>The new system means that one person is no more important than anyone else.
How about giving up a senator while they are at it? My state has 12 million people and we share two senators. Iowa has 3 million people and they get 2 senators.
This isnt about fairness, direct democracy, etc. Its about saving money by not doing the electoral college ritual. They just vote for the majority, so why not just automate the process and save some cash?
>And yet for all the raves these research groups generate, it very seldom turned into successful product launches for the parent company.
So? Its management's job to monetize these inventions. It not R&D's fault that they were showing pearls to swine. Other companies simply picked up the ball. This isnt an argument to get rid of R&D, its an argument to get BETTER MANAGEMENT.
Reading this thread is really difficult. I think the average slashdotter would rather slam MS than defend R&D. That's just a fucking shame.
Slashdot Mirror
except in the kdawson style it was a single link to a message board posting about a router "taking out half the internet." Dupe? Correction? I dont care as long as kdawson is kept away from the site for a while.
I need a phone with a web browser. Its power, thats why. Youre like the guy I knew who was poo-pooing the internet in 96. No, its not a fad, its not just for movie trailers, and "pick up a phonebook" isnt the same.
Right. There's always been a java extension/plugin/control etc. I guess slashdot is targeting the 'OMG ALL CORPORATIONS SUCK AND ARE AFTER ME!!!!' crowd, which sadly, gets ad impressions.
No, these tlds are helpful. If anything ends with .biz its a scam or not worth visiting. I expect the new influx of vanity tlds will be the same, with someone eventually writing an IE and Firefox extension that blacklists all domains that dont end with .com, .net, org, mil, and the established country/state codes.
djb thought potential exploits would appear without port randomization, but he didnt discover this particular flaw. Kaminsky did. As a car analogy, its like saying putting chips in keys keeps cars from being stolen, but coming up with a non-obvious hack that always starts the car without a key is its own work. Even Schneier says so:
Kaminsky's vulnerability is a perfect example of this. Years ago, cryptographer Daniel J. Bernstein looked at DNS security and decided that Source Port Randomization was a smart design choice. That's exactly the work-around being rolled out now following Kaminsky's discovery. Bernstein didn't discover Kaminsky's attack; instead, he saw a general class of attacks and realized that this enhancement could protect against them. Consequently, the DNS program he wrote in 2000, djbdns, doesn't need to be patched; it's already immune to Kaminsky's attack.
We have an IP address for the server hosting the phony pages: "[217.20.175.74]". This is in DNS as "sweeper.globmail.org",
Is there a list of malicious sites and servers out there? I know there's the phishing list that google and MS maintain, but something that has all identified zombies and compromised servers? Id rather just block them globally so my users dont get anywhere near this stuff.
>I always recommend extended warranties (such as AppleCare)
Wait. So they are already paying a premium (2800+ dollars) for Apple quality. Now "Apple Quality" turns out to be a myth so they now have to spend even more for an extended warranty? Wow.
Thats like buying a new car and being told "Well, you need the rust undercoating for this. It'll fall apart in a week!" Its a borderline scam.
>Microsoft is a monopoly.
Fine, but the findings of the court do not limit MS from doing this. Its not illegal. Last I checked this was a free market capitalist system and MS was not owned by the government. You may not like that, but MS can do this.
Instead people make up rights for themselves and whine. Im sick of calling any action illegal when it is actually not.
Actually, its sounds like they would be a poor fit for the automotive idustry. The design requirements for spacecraft goes like this: its must last x amount of days, anything more is good. For cars its: it must last no more than x amount of days, anything more is bad.
>Especially compared to the effort required to change the hard drive in an original clamshell ibook, for example.
Yes, two wrongs make a right. Apple still hasnt learned. Dont compliment them by saying "Oh its not as bad as it used to be!"
>What kind of number crunching is going on at the soup kitchens and food banks that requires 17 servers??
Are you an idiot? I didnt say give them all to one food bank. There are probably 10 food banks in your state alone.
>What about packet loss, ping, ping jitter and resistance to interference?
Heck, how about reporting in standard units? Time it takes to transfer his porn collection in a zip archive, i mean 8.05gigs of data? What the heck is that? How about just running iperf and reporting standard mbps.
Ive worked in non-profit IT and servers is one thing they always needed. They dont really need more hands at soup kitchens, they need equipment and expertise. I bet your local food bank would love that stuff. I also bet their existing servers are a couple of old non-raid desktops moved to a closet. You can probably just call someone at Feeding America and they would dole out the servers to deserving foodbanks via their grants system.
Also, if the businessman in you doesnt have a business plan then theyre just going to waste and will probably end up in a landfill. You might as well give them away to someone who needs them.
>here is a case for legislative intervention to come up with a freely published and accessible interface.
Oh, there was no new legislation for the PC case. Apples and Oranges. The government didnt step in a pass a "FREE THE PC BILL" on a whim. It was a simple trial, like any other. If you honestly think you are wronged by having different chargers, please file suit with an attorney. I'll be waiting.
>This is a typical case where pure laissez-faire capitalism can go against the best interests of the consumer.
Whoa. Are friggin chargers such a hardship on you that you are criticizing the whole system? I have a few chargers here and its pretty easy to keep track of things. Having the government mandate connectors isnt a great idea:
1. USB is mature. Its too late to change it.
2. USB power isnt magical. Its a mess actually.
3. USB mandates mean slower adoption of competitors or elimination of competitors.
Imagine is the government mandated rs-232 serial connectors on phones in the 80s. There probably wouldnt be a USB today. People would be clammoring for rs232 because "thats whats on all my stuff. A 480mbps connector that can charge? Who cares if it doesnt work with my rs232!!!!"
The real problem is that the cell phone industry for men is like how shoes are for women. Its all about style and showing off. The system doesnt cater to sane demands because sane demands arent made for it. Is anyone not buying phones thus voting with their dollars over connectors? No. Is anyone not buying an xbox of a wii because replacement controllers are expensive? No.
I wouldnt mind seeing a new spec, but shoe-horning USB, which has been polluted with proprietary crap isnt the way to go. Perhaps EU would have better luck addressing its concerns with the USB 3.0 spec then trying to turn 2.0 into something its not. Or, heaven forbid, looking outside the box to create a simple yet powerful universal DC connector that'll work on more than just phones (think laptops, AA batteries, game controllers, mp3 players, automotive batteries, emergency equipment, etc).
Young creative talent? Yeah maybe in 1996 or so, but today the internet is just another avenue for established business. It might make you feel self-important that the "man" is after you but in reality there's no such thing going on. Also, please turn down your Rage Against the Machine. I can barely hear you.
Same here. Data networks dont handle hand-offs as well as some people might think. I have yet to see a stream as stable as satellite radio. Or as stable as a bad wifi connection. Toss in all the wires and the lack of a remote control or big buttons and its a deal killer.
Im really getting sick of these 'the iphone can do everything' aritcles. It cant. Satellite isnt popular because its subscribes are backwards hillbillies, its because its works right out of the box.
If being a consumer is a lifestyle and brands are your identity I could see how a Walmart executive making the MS store would be a problem. To the sane people, its just a product with a price, not a religion.
I mean is the GAP that great? With all the kids, annoying 'helpful' salespeople, and blaring music? Ive always had a calmer and better shopping experience at places like JC Penny, Target, or Marshalls. I guess that makes me uncool. Shame that cool and image are what drives people nowadays and that there's no criticism of this out of control brand identity lifestyle bullshit.
I do this at work too. Instead of the received email being 90% spam its only 40%. Weighted blacklisting takes care of the rest. No content filtering at all.
Im tempted to put the same rules into the windows firewall for my relative's and friend's computers. They wont notice and it might save them from malicious sites. A more diplomatic approach would be something Web of Trust firefox extension, but some type of realtime blacklist for malicious servers and botnet zombies sounds like a good idea.
First off, all politics is local. My local laws apply to what you do to me or my equipment in my jurisdiction. On top of that, in civilized countries all this shit is illegal. Remember the sasser worm? MS paid out a 250k bounty and the author was revealed to be a German who was later convicted.
Secondly, its not too hard to figure out who did this. A lot of these trojans wont install if your default language is Russian. How odd, eh? Essentially, this is a hand out to the Russian government because it protects and profits from its industry of malware writers, most notable The Russian Business Network. These guys arent getting caught. They have the full protection of the Russian government. MS and the rest know this, but they also know that money talks and a high profile defector would be good for the cause.
Perhaps its time to just firewall off Eastern Europe, Russia, and China and call it a day. Whitelist them when needed.
>Microsoft deserves exactly what they are getting. They could have very easily allowed a power user setting in XP home.
Thats what vista does and the UAC kicks in when you need admin access. There has been nothing but complaints and bitching about this. People are surprised their 10 year old software that writes to c:\temp doesnt work anymore. Now that there's an NT ecosystem of software out there (write to profile area, not to system area when running), its easier for MS to do this. Shame that even the good changes MS does is received with the same old bellyaching.
>Also, for a project I'm working on, I was looking to secure just the ability to change some network settings
You didnt try too hard did you? Add them to the Network Config built-in group. I also believe there's a group policy setting for this.
>Again, Microsoft deserves everything they are getting.
MS is a company. It doesnt feel pain or shame. Right now the people feeling the pain are innocent users. Perhaps you should have a little sympathy for them.
>It may yet only be used for SETI@Home, Folding@Home, winning a decryption contest, or analyze other spam-producing bot nets to identify their controllers and get them shut down.
How is that non-malicious? If you stole my car to drive you grandma to church its still theft. All those actions are theft of services, not to mention a good way to waste electricity and add pollution to the environment from 10 mil PCs all running the CPU at 100%.
>Of course, I have a strong dislike for electoral college, since I throw my democratic vote away every year here in UT.
Is it going to make any difference? John Kerry and Al Gore would have lost under this system too.
If you want change at home, I suggest volunteering, talking to your neighbors, changing minds, and living a life of a good example. These things will do a lot more for your party and your politics than any rewrite of the electoral college.
>The new system means that one person is no more important than anyone else.
How about giving up a senator while they are at it? My state has 12 million people and we share two senators. Iowa has 3 million people and they get 2 senators.
This isnt about fairness, direct democracy, etc. Its about saving money by not doing the electoral college ritual. They just vote for the majority, so why not just automate the process and save some cash?
>And yet for all the raves these research groups generate, it very seldom turned into successful product launches for the parent company.
So? Its management's job to monetize these inventions. It not R&D's fault that they were showing pearls to swine. Other companies simply picked up the ball. This isnt an argument to get rid of R&D, its an argument to get BETTER MANAGEMENT.
Reading this thread is really difficult. I think the average slashdotter would rather slam MS than defend R&D. That's just a fucking shame.