In my years of working with the web and the Flash platform, I have not yet seen a single workable exploit that could present a credible threat to the majority of Flash user's on the web, not without the user or the site already being compromised in some manner.
So you think that the user's Flash security should depend on whether the site he is visiting has malicious intent?
We are normally measuring web browsers against another standard: A web browser must be so secure that visiting a site with malicious intent can be done without your PC getting infected or your information on the PC getting compromised.
Why is it that a lot of people apparently do not want to apply this requirement to Flash?
"patching" the vulnerabilities is complicated, since the issues exist in the SWF files themselves and not in Flash player
Oh, so you are the person behind this "vulnerable content" nonsense?
How can you seriously describe untrusted content as "vulnerable"?
The software which is handling the content can be vulnerable. The content itself can contain an exploit of this vulnerability.
This can be fixed in two ways:
1. Fix the vulnerability in the software which is handling the content. This is the right way.
2. Continue using vulnerable software and do only accept software from sources who you trust. This may make sense in some closed environments. It absolutely makes no sense when we are discussing Flash content from everywhere on the Internet.
From what I read, VMware trounces WINE in performance and compatibility.
This seems to be the time for a car analogy. Sorry.
From what I read, Parking Spot X trounces Car Model Y in tyre compatibility.
WINE is a car (or rather some part of the suspension of the Linux car). You can fit the tyres if you are lucky, and then you are set to go.
VMware is a parking spot where you can place any car, so theoretically your parking spot is compatible with any tyre you can find a car for. But you will still need to get a car on top of the parking spot if you want to use your tyres.
Are you sure you understand the difference between WMware and WINE?
That's only a solution for making sure that all the machines on the same local net stay synchronized. What I was referring to is when it becomes necessary to compare one server's log files with those on a remote system, e.g. when troubleshooting SMTP problems. In such cases, an out-of-sync server can easily lead to a wild goose chase.
Firstly, I think I know the cause of your SMTP problems if you don't have a working Internet connection for ntp.
Secondly, how long are those outages? Any decent operating system will not only use the ntp data to correct the clock but will also use them to adjust the speed of the system clock (not the hardware clock). This means that it will be able to manage quite well on its own for a long time.
Several years ago, I tested this. I let a Linux PC adjust the speed of the system clock using ntp data, and then I let the system clock run on its own without any external correction. Over the next two weeks, I never saw an error above 20 milliseconds when making a "read-only" ntp check.
End Program - Adobe Acrobat Ending Program... Please wait.
End Program - Adobe Acrobat This program is not responding.
AcroRd32.exe: The only program in the known universe which can thwart a "kill" signal from both user logoff and system shutdown.
I used to hate that too. But now I am somehow beginning to appreciate that I at least get a warning.
There is a whole new breed of software out there which will silently block the shutdown. No warnings or anything - Windows just continues to run like you had never asked it to shut down. A lot of those programs seem to be developed in C#.
As an example, the game Supreme Commander has a C# multiplayer client which will silently block Windows shutdown.
here (in Germany). Of course you can not make a landline number a cell phone number or the other way round
Well, here just 100 km north of Germany, we can. We can take our landline number with us to another geographic region or to a cell phone.
And it doesn't cost us extra - it is by law. But we do take a chance every time we dial an unknown number since we can't know if we are paying for calling our neighbour's land line, a land line in the other end of the country or a cell phone.
Yes, it is important not to over-react to terrorists. But just ignoring them isn't the right answer either.
Ignoring them as terrorists is the right answer.
They should be treated and convicted like any other criminals without acknowledging them as something special. As soon as you label them "terrorists", you give them the credit they want.
The sun is a mass of incandescent gas. A gigantic nuclear furnace, one might say, where hydrogen is built into helium at a temperature of millions of degrees.
The point is that cisco probably made every router and switch in their networks, and they could theoretically destroy the brazilian economy with the flick of a switch (if Cisco put backdoors in the hardware), so brazil is crazy for taking such extreme action.
If Cisco had such backdoors, it would be very wise to provoke them into using them. Better test now and know what you are up against than avoid testing because you are afraid of the answer.
Sounds to me like taking a pressure vessel into use without doing a pressure test because you are afraid it is too weak.
In a way it is sad to see a motherboard which is so close to offering built-in system rescue and system installation help.
If the onboard OS could write to the harddrive or at least a USB stick, this would be perfect for downloading latest drivers prior to performing a Windows installation. Especially network drivers which always seem to create a Catch 22 on newer motherboards (you have to have network drivers installed in Windows if you want to download network drivers). A direct link to the drivers for this specific motherboard could even be preconfigured in the browser.
surprised to find my little personal blog post on Slashdot today, especially since the lead-in description framed it with the completely wrong point
I am very tempted to use the "You must be new here"/. joke.
Slashdot summaries are always written like this. I don't know if the editors/submitters do not understand the point of the article they are linking to, or if said editors/submitters are so biased that they want to prove another point, using that article.
WTF?! Listen, there's a site out there that says "here, please take this picture and use it in your commercial projects". Why on Earth should they feel obligated NOT to do so?
Perhaps because the license only ensures that the photographer - but not the person on the photo - has given his permission?
So... you're basically annoyed that Calc doesn't work exactly like Excel?
No. And that was not what I wrote either.
It is not a matter of working exactly like Excel or not. It is a matter of at least being able to do the same task with the same or less amount of work - copying Excel behaviour or not.
It is always good if someone bothers to post about an application that (s)he is not impressed with (Like you did). But it will help more if users like you give specific examples of what's missing or what's slightly difficult to use etc.
In my case, it is the Calc UI missing simple everyday functionality. Someone compared Calc's UI to walking barefooted on gravel, and I understand why.
One simple example from everyday use: In a selection of cells, there is a "handle" at the bottom right corner which can be dragged with the mouse for filling adjacent cells. On a small selection, this works well in both Excel and Calc.
But then try to select a column or row. In Calc, the handle will still be at the bottom right corner of the selection. That is really far away, since most people work in the top left corner of the spreadsheet. In Excel, the handle will appear at the bottom right corner of the *visible* area.
Another simple example from everyday use: Try to move column C in between column A and B. In Calc, you can't. You first have to insert an new, empty column and then move the contents from the old column. In Excel, you hold down Shift while dragging the column. Or you use Ctrl-X to cut the column and Ctrl-+ to insert it between two other columns.
Slashdot Mirror
So you think that the user's Flash security should depend on whether the site he is visiting has malicious intent?
We are normally measuring web browsers against another standard:
A web browser must be so secure that visiting a site with malicious intent can be done without your PC getting infected or your information on the PC getting compromised.
Why is it that a lot of people apparently do not want to apply this requirement to Flash?
Argh.
#2 should read:
2. Continue using vulnerable software and do only accept CONTENT from [...]
Oh, so you are the person behind this "vulnerable content" nonsense?
How can you seriously describe untrusted content as "vulnerable"?
The software which is handling the content can be vulnerable. The content itself can contain an exploit of this vulnerability.
This can be fixed in two ways:
1. Fix the vulnerability in the software which is handling the content. This is the right way.
2. Continue using vulnerable software and do only accept software from sources who you trust. This may make sense in some closed environments. It absolutely makes no sense when we are discussing Flash content from everywhere on the Internet.
Is this what the world has come to - artificially improving computer graphics with computer graphics?
Quote from former New Zealand Prime Minister Sir Robert Muldoon:
"New Zealanders who leave for Australia raise the IQ of both countries."
I have XP Pro. I run as a limited user on my everyday account. AutoRun works for me.
Comparing them is not absurd, as long as you remember to consider that it is two fundamentally different ways of solving a problem.
Stating that one of them trounces the other is beyond absurd.
OK, so you actually do understand the difference between them. This leads to the obvious question:
Do you also compare parking lots to cars?
This seems to be the time for a car analogy. Sorry.
From what I read, Parking Spot X trounces Car Model Y in tyre compatibility.
WINE is a car (or rather some part of the suspension of the Linux car). You can fit the tyres if you are lucky, and then you are set to go.
VMware is a parking spot where you can place any car, so theoretically your parking spot is compatible with any tyre you can find a car for. But you will still need to get a car on top of the parking spot if you want to use your tyres.
Are you sure you understand the difference between WMware and WINE?
Firstly, I think I know the cause of your SMTP problems if you don't have a working Internet connection for ntp.
Secondly, how long are those outages? Any decent operating system will not only use the ntp data to correct the clock but will also use them to adjust the speed of the system clock (not the hardware clock). This means that it will be able to manage quite well on its own for a long time.
Several years ago, I tested this. I let a Linux PC adjust the speed of the system clock using ntp data, and then I let the system clock run on its own without any external correction. Over the next two weeks, I never saw an error above 20 milliseconds when making a "read-only" ntp check.
I used to hate that too. But now I am somehow beginning to appreciate that I at least get a warning.
There is a whole new breed of software out there which will silently block the shutdown. No warnings or anything - Windows just continues to run like you had never asked it to shut down. A lot of those programs seem to be developed in C#.
As an example, the game Supreme Commander has a C# multiplayer client which will silently block Windows shutdown.
Well, here just 100 km north of Germany, we can. We can take our landline number with us to another geographic region or to a cell phone.
And it doesn't cost us extra - it is by law. But we do take a chance every time we dial an unknown number since we can't know if we are paying for calling our neighbour's land line, a land line in the other end of the country or a cell phone.
Since you believe that age can be calculated from UID, I will assume that you were given your UID at birth and think that everyone else was too.
How old is your 5 digit UID?
Ignoring them as terrorists is the right answer.
They should be treated and convicted like any other criminals without acknowledging them as something special. As soon as you label them "terrorists", you give them the credit they want.
Does each nation have embassies in the other nations' parts of the station?
Perfectly clear to me:
1/1000 of an n. Also called a milli-n.
Yes, but does it run Linux?
If Cisco had such backdoors, it would be very wise to provoke them into using them. Better test now and know what you are up against than avoid testing because you are afraid of the answer.
Sounds to me like taking a pressure vessel into use without doing a pressure test because you are afraid it is too weak.
In a way it is sad to see a motherboard which is so close to offering built-in system rescue and system installation help.
If the onboard OS could write to the harddrive or at least a USB stick, this would be perfect for downloading latest drivers prior to performing a Windows installation. Especially network drivers which always seem to create a Catch 22 on newer motherboards (you have to have network drivers installed in Windows if you want to download network drivers). A direct link to the drivers for this specific motherboard could even be preconfigured in the browser.
Actually, the word "mashup" does not exist on any of those pages. But at least we now know that "mashup" has something to do with the semantic web.
I am very tempted to use the "You must be new here"
Slashdot summaries are always written like this. I don't know if the editors/submitters do not understand the point of the article they are linking to, or if said editors/submitters are so biased that they want to prove another point, using that article.
Perhaps because the license only ensures that the photographer - but not the person on the photo - has given his permission?
No. And that was not what I wrote either.
It is not a matter of working exactly like Excel or not. It is a matter of at least being able to do the same task with the same or less amount of work - copying Excel behaviour or not.
In my case, it is the Calc UI missing simple everyday functionality. Someone compared Calc's UI to walking barefooted on gravel, and I understand why.
One simple example from everyday use:
In a selection of cells, there is a "handle" at the bottom right corner which can be dragged with the mouse for filling adjacent cells. On a small selection, this works well in both Excel and Calc.
But then try to select a column or row. In Calc, the handle will still be at the bottom right corner of the selection. That is really far away, since most people work in the top left corner of the spreadsheet. In Excel, the handle will appear at the bottom right corner of the *visible* area.
Another simple example from everyday use:
Try to move column C in between column A and B. In Calc, you can't. You first have to insert an new, empty column and then move the contents from the old column. In Excel, you hold down Shift while dragging the column. Or you use Ctrl-X to cut the column and Ctrl-+ to insert it between two other columns.
It must be pretty embarrassing to have the user name "PhysicsPhil" when you make a mistake like that.