It does, but you need an account to opt out. Though I've never tried it so I'm not sure if their "opt-out" is smart enough to register the IP address you're connecting from and add it to a list of "addresses not to break DNS for" or if it's a similar "mock-up a browser page".
The web is an incredibly huge piece of the internet.
Please tell us about these 65,000 other services that need a properly functioning DNS. Since the only protocol affected here is HTTP, and the only applications that use invalid URLs are either human-driven (browsers) or malware, I suggest that the NX response is fundamentally outdated and useless.
Not true. The DNS doesn't know if the thing making a request is a web browser or something else, so it affects literally every protocol. SMTP, POP3, SMB, everything. Only now, when you try to debug something like that it looks like the server does exist, it's just ignoring SMTP connections. You spend ages barking up completely the wrong tree.
Even more fun is if the person affected is trying to work from home over a VPN link. If it's set up for split tunnelling, it'll try to resolve a hostname using the default DNS first and only if that fails will it try the VPN. Hint: Windows uses DNS to resolve hostnames for fileshares. All of a sudden, internalhost.yourcompany.com resolves on the public internet and they're trying to save their files to a server that's run by their ISP (and, naturally, isn't offering any SMB fileshares). Cue a bunch of angry calls to the helpdesk.
Hint: Connecting to internal-machine.yourcompany.com over the VPN doesn't work when internal-machine.yourcompany.com can be resolved from outside the company.
I'm curious how you even know you have found a good C programmer to begin with.
What do you look for?
Nobody knows.
Seriously.
That's the biggest thing that department managers the world over don't want to admit. Nobody has yet found a reliable way to interview people that will consistently result in hiring people you can work with that meet all your requirements.
Oh sure, companies ask technical questions, try and build a rapport and all that. Some even make the interview process last a full day with in-depth technical, HR, stress interviews. But there is always some little thing you don't think to check for in the interview process. If you're lucky, that little thing never matters. If you're unlucky - well, anyone who's been out of college more than a couple of years knows exactly what happens.
Don't know about this kid in particular, but back when I was that age, part of the thing that made something like that special was that it was mine that I picked when I was there. A replacement, however well intentioned, was never the same.
I was probably a spoilt little brat, thinking about it.
My common sense tells me that it is generally not a good idea to have a fully automated, non-human-verified system that issues legal documents, claims, and threats in the name of the owner.
There's got to be a joke about lawyers not being human in there somewhere.
How many of us (particularly those who have worked in larger organisations) have seen emails flying around which consist of little more than a word document?
While these are still being sent, Word will not die.
How many of us have been asked to install Sharepoint, done so and found it gets used as a glorified (and, if you buy the full version rather than just using Sharepoint Services, rather expensive) shared drive to store Word files on but with a web GUI, often for documents that are unlikely to ever be printed?
And even if you go for the $200 "ultimate edition", there's still a 5% chance that it won't do any good and Microsoft's advice would be "shoot yourself, reincarnate and try again".
It's slightly more sophisticated than that. Note I say "slightly". Not "much".
You can't make a card with just the mag stripe and then use this card anywhere where they expect ATMs to read the chip. This is because the issuing bank will refuse to authorise a transaction which didn't involve the chip if it should have been possible to do so (they know full well that the card with number 1234 5678 9012 3456 was shipped with a chip, so if an ATM which can read chips tries a transaction with just the details on the stripe, it's dodgy).
So what the criminals do instead is read the stripe (either with a fake cash machine or a skimming device attached to a real cash machine), send the details to some country where ATMs that read chips aren't ubiquitous and make up a fake card for use there.
My guess is that Visa and Mastercard between them will, over time, put pressure on banks all over the world to replace their cash machines. But until that happens, this remains a security hole.
Actually, given the level of detail in the article it's entirely possible that's true.
The article suggests that the only clue that it was fake is that where they expected a camera was just a black hole, and shining a torch in there revealed a PC.
Big deal. Most ATMs these days are basically a PC with a tough number pad and a cash dispenser attached. It's possible (though perhaps unlikely) that the last time the ATM was opened the camera was knocked. One would hope the police made enquiries with whoever was thought to own the ATM before taking it away, but I wouldn't bet on it.
Purely out of morbid curiosity (and I accept we've gone beyond conspiracy theory and are riding off into the sunset at this point), I wonder how the US DOJ would react if this was true and they found out about it.
IANAL, and I'm not even an American, but I can't imagine they'd be too impressed.
The ballot doesn't do you much good when your options for leadership are a couple of lizards and the people assume that the government they voted in more or less represents the government they want.
Well, there are families which constitute the dregs of society, same as you'd get anywhere else. Think "mother had her first child at 15, now has four children with five different fathers, drinks like a fish, has never really paid any attention to what her kids eat, what they do of an evening or how they behave and if they get in trouble is more likely to rush to their defence than to make any effort to find out if they really have done something wrong".
These families are very much in the minority, though they probably cause upwards of 70% of the trouble in any particularly troubled area.
It's these that such schemes are targeting - of course you've got the "slippery slope" argument and there may be some truth to that - I don't think anyone in the public sector in general from the prime minister right down to the lowliest PCSO has ever voluntarily relinquished some of their power, and this gives some people an awful lot of power. But making an effort to understand the causes and treat them rather than the symptom would be far too much like hard work for the majority of ministers.
And then, I flashed it in. And now, it says its permanent. Uh - yeah, right.
If I set it to "on" or "disable", it'll just flip a bit somewhere, and/or do some magic crypto, and flash that result into a region of BIOS.
Of course you could disable it. But that's not the point.
There seems to be a prevalent view on/. that because a security system can be disabled, it always will be and is therefore pointless. But anyone who's got enough knowledge to know about the existence of this is probably not a junkie that steals laptops left alone for a minute on the train. And that's what the great majority of petty theft is.
Wouldn't it be easier to continue creating original music than reselling existing music? It's not like there's a shortage of talented musicians.
If you're running a record company in a creative fashion, maybe.
But if you're an accountant doing the running, you like the idea of a nice, regular product which reliably brings in the cash. Original music doesn't do that. Britney Fucking Spears (or whoever the 12-14 year old girl demographic is listening to these days) does.
What I do find odd is that we hear this on/. We see artists saying pretty much the same. We see companies like Magnatune set up on the basis "we are not evil".
But I don't recall ever hearing of a former record-company staffer coming out and saying "I used to work for (COMPANY) and they are the most incredible bunch of shysters you've ever met."
You are right on. As far as I'm concerned, this is a declaration of war against the people that pay them. This is the much touted 'free market' in action. They dictate the terms and if you don't like it, go without.
Which is well and good except that music is about as far from the free market as it is possible to get for a number of reasons:
1. It's controlled by a very small group of companies that are known to work closely together - a cartel. 2. The product is of the nature where the customer is going to want (in a manner of speaking) a very specific product and is unlikely to accept an alternative. The contracts between artist and record label give the label a monopoly on that artist's work, and the label controls (either directly or indirectly, again through contracts) the complete distribution channel.
Quite true, but there's no shortage of businesses that have single points of failure. In fact, quite often there are multiple single points of failure.
That my convenience level against my morals are favoring me to piracy a lot easier, not that I don't want to pay (I really do), but no one wants my money in the way I want (to buy) my music.
There's got to be a business opportunity right there. Producing a CD, printing the album cover and shipping on demand. There are on-demand publishers, so whyever not?
It does, but you need an account to opt out. Though I've never tried it so I'm not sure if their "opt-out" is smart enough to register the IP address you're connecting from and add it to a list of "addresses not to break DNS for" or if it's a similar "mock-up a browser page".
The web is an incredibly huge piece of the internet.
Please tell us about these 65,000 other services that need a properly functioning DNS. Since the only protocol affected here is HTTP, and the only applications that use invalid URLs are either human-driven (browsers) or malware, I suggest that the NX response is fundamentally outdated and useless.
Not true. The DNS doesn't know if the thing making a request is a web browser or something else, so it affects literally every protocol. SMTP, POP3, SMB, everything. Only now, when you try to debug something like that it looks like the server does exist, it's just ignoring SMTP connections. You spend ages barking up completely the wrong tree.
Even more fun is if the person affected is trying to work from home over a VPN link. If it's set up for split tunnelling, it'll try to resolve a hostname using the default DNS first and only if that fails will it try the VPN. Hint: Windows uses DNS to resolve hostnames for fileshares. All of a sudden, internalhost.yourcompany.com resolves on the public internet and they're trying to save their files to a server that's run by their ISP (and, naturally, isn't offering any SMB fileshares). Cue a bunch of angry calls to the helpdesk.
You could set up your own caching DNS server and have it bypass your ISP altogether, instead drilling down the DNS from the DNS root servers.
DNS is fairly easy to detect so it wouldn't be too hard to set up an invisible proxy, but most ISPs won't go to these kind of lengths.
Then you've never used Cisco's VPN client.
Hint: Connecting to internal-machine.yourcompany.com over the VPN doesn't work when internal-machine.yourcompany.com can be resolved from outside the company.
Unless she sues the customers of the world for not buying her product/service.
I believe SCO have already patented that idea.
I'm curious how you even know you have found a good C programmer to begin with.
What do you look for?
Nobody knows.
Seriously.
That's the biggest thing that department managers the world over don't want to admit. Nobody has yet found a reliable way to interview people that will consistently result in hiring people you can work with that meet all your requirements.
Oh sure, companies ask technical questions, try and build a rapport and all that. Some even make the interview process last a full day with in-depth technical, HR, stress interviews. But there is always some little thing you don't think to check for in the interview process. If you're lucky, that little thing never matters. If you're unlucky - well, anyone who's been out of college more than a couple of years knows exactly what happens.
Don't know about this kid in particular, but back when I was that age, part of the thing that made something like that special was that it was mine that I picked when I was there. A replacement, however well intentioned, was never the same.
I was probably a spoilt little brat, thinking about it.
My common sense tells me that it is generally not a good idea to have a fully automated, non-human-verified system that issues legal documents, claims, and threats in the name of the owner.
There's got to be a joke about lawyers not being human in there somewhere.
How many of us (particularly those who have worked in larger organisations) have seen emails flying around which consist of little more than a word document?
While these are still being sent, Word will not die.
How many of us have been asked to install Sharepoint, done so and found it gets used as a glorified (and, if you buy the full version rather than just using Sharepoint Services, rather expensive) shared drive to store Word files on but with a web GUI, often for documents that are unlikely to ever be printed?
While this is still happening, Word will not die.
And even if you go for the $200 "ultimate edition", there's still a 5% chance that it won't do any good and Microsoft's advice would be "shoot yourself, reincarnate and try again".
It's slightly more sophisticated than that. Note I say "slightly". Not "much".
You can't make a card with just the mag stripe and then use this card anywhere where they expect ATMs to read the chip. This is because the issuing bank will refuse to authorise a transaction which didn't involve the chip if it should have been possible to do so (they know full well that the card with number 1234 5678 9012 3456 was shipped with a chip, so if an ATM which can read chips tries a transaction with just the details on the stripe, it's dodgy).
So what the criminals do instead is read the stripe (either with a fake cash machine or a skimming device attached to a real cash machine), send the details to some country where ATMs that read chips aren't ubiquitous and make up a fake card for use there.
My guess is that Visa and Mastercard between them will, over time, put pressure on banks all over the world to replace their cash machines. But until that happens, this remains a security hole.
Actually, given the level of detail in the article it's entirely possible that's true.
The article suggests that the only clue that it was fake is that where they expected a camera was just a black hole, and shining a torch in there revealed a PC.
Big deal. Most ATMs these days are basically a PC with a tough number pad and a cash dispenser attached. It's possible (though perhaps unlikely) that the last time the ATM was opened the camera was knocked. One would hope the police made enquiries with whoever was thought to own the ATM before taking it away, but I wouldn't bet on it.
No, it's a (somewhat oblique) reference the the Hitchikers' Guide:
http://wso.williams.edu/~rcarson/lizards.html
Neither would I.
Purely out of morbid curiosity (and I accept we've gone beyond conspiracy theory and are riding off into the sunset at this point), I wonder how the US DOJ would react if this was true and they found out about it.
IANAL, and I'm not even an American, but I can't imagine they'd be too impressed.
The ballot doesn't do you much good when your options for leadership are a couple of lizards and the people assume that the government they voted in more or less represents the government they want.
Well, there are families which constitute the dregs of society, same as you'd get anywhere else. Think "mother had her first child at 15, now has four children with five different fathers, drinks like a fish, has never really paid any attention to what her kids eat, what they do of an evening or how they behave and if they get in trouble is more likely to rush to their defence than to make any effort to find out if they really have done something wrong".
These families are very much in the minority, though they probably cause upwards of 70% of the trouble in any particularly troubled area.
It's these that such schemes are targeting - of course you've got the "slippery slope" argument and there may be some truth to that - I don't think anyone in the public sector in general from the prime minister right down to the lowliest PCSO has ever voluntarily relinquished some of their power, and this gives some people an awful lot of power. But making an effort to understand the causes and treat them rather than the symptom would be far too much like hard work for the majority of ministers.
And then, I flashed it in. And now, it says its permanent. Uh - yeah, right.
If I set it to "on" or "disable", it'll just flip a bit somewhere, and/or do some magic crypto, and flash that result into a region of BIOS.
Of course you could disable it. But that's not the point.
There seems to be a prevalent view on /. that because a security system can be disabled, it always will be and is therefore pointless. But anyone who's got enough knowledge to know about the existence of this is probably not a junkie that steals laptops left alone for a minute on the train. And that's what the great majority of petty theft is.
"Ya know all those songs you spend around one thousand dollars to download?"
"Yeah?"
"They'll stop working in about five years time."
"Fuck."
More like (and I've actually had this conversation):
You know all those songs you downloaded?
Yeah?
They'll stop working in about five years time.
Oh come on, why?
Because of DRM. It allows the company that sold it to you to shut off your access to it at any time.
I don't think they'll do that.
It's already happened. (names a few obscure cases where it has)
I don't believe that.... I'm sure someone would have stepped in to keep the licensing running.
Nobody did.
(walks away with fingers in ears)
Wouldn't it be easier to continue creating original music than reselling existing music? It's not like there's a shortage of talented musicians.
If you're running a record company in a creative fashion, maybe.
But if you're an accountant doing the running, you like the idea of a nice, regular product which reliably brings in the cash. Original music doesn't do that. Britney Fucking Spears (or whoever the 12-14 year old girl demographic is listening to these days) does.
What I do find odd is that we hear this on /. We see artists saying pretty much the same. We see companies like Magnatune set up on the basis "we are not evil".
But I don't recall ever hearing of a former record-company staffer coming out and saying "I used to work for (COMPANY) and they are the most incredible bunch of shysters you've ever met."
You are right on. As far as I'm concerned, this is a declaration of war against the people that pay them. This is the much touted 'free market' in action. They dictate the terms and if you don't like it, go without.
Which is well and good except that music is about as far from the free market as it is possible to get for a number of reasons:
1. It's controlled by a very small group of companies that are known to work closely together - a cartel.
2. The product is of the nature where the customer is going to want (in a manner of speaking) a very specific product and is unlikely to accept an alternative. The contracts between artist and record label give the label a monopoly on that artist's work, and the label controls (either directly or indirectly, again through contracts) the complete distribution channel.
I have a hard time seeing what improvement Monsanto (for example) brought to anyone than themselves,
What makes you think Monsanto want to bring an improvement to anyone but themselves?
I haven't tried to steal a bank account but that seems pretty trivial as well.
So tell me exactly why this is a problem for a bunch of geeks?
I don't know about you, but having to be careful not to bend down in the shower for several years would be a real problem for me.
Quite true, but there's no shortage of businesses that have single points of failure. In fact, quite often there are multiple single points of failure.
That my convenience level against my morals are favoring me to piracy a lot easier, not that I don't want to pay (I really do), but no one wants my money in the way I want (to buy) my music.
There's got to be a business opportunity right there. Producing a CD, printing the album cover and shipping on demand. There are on-demand publishers, so whyever not?