heh, my manager plays that mp3 at work really loud. cracks us all up.
donald in his voice is getting it on...
The only mp3 that cracks us up more is the asian guy callin about blinking 12 on his vcr and calls all the support people round eye.
heheh
donald duck adventures and the mad chemist
on
Comic Book Physics
·
· Score: 5, Interesting
finally i can talk about comics and not be off-topic!
In issue 15 of walt disneys donald duck adventures, story "the mad chemist", from 1944 by carl barks.
a letter arrived from joseph b lambert of the cali institute of tech, pointing out a curious refernece in, "the spin of states of carbenes", a tech article soon to be published by P.P. Gaspar and G.s. hammond in Carbene Chemistry.
It seems donald's reference to CH2 was years ahead of its time: the existance of this elusive chemical intermediate had not been proven in 1944.
http://www.uky.edu/Projects/Chemcomics/html/dd_1 5_ 2_c.html shows him in action on page 2!
ah and i found the text i was trying to type out from the actual comic...
http://www.seriesam.com/barks/detc_wdc0044-x1.ht ml
god i love comic books.
flaming carrot is top notch. go bob burden!
Re:Medical students syndrome
on
Cyberchondria
·
· Score: 4, Funny
I was running healthd on my FreeBSD server. It reported my chip was running warm.
I felt my forehead and yup, I had a temperature and fever.
The colo customers who use apple hardware at our old facility never had this problem. Plus on our wired racks must be an apple machine from each era. Some really old ones too!
The old facility had occasional power losses and many apple hardware users do not have a UPS large enough to last more than 7+ minutes.
We never recieved a call from them to turn it back on. Matter of fact I rarely see apple hardware colo customers. Their computers just run, are not hacked easily, and they pay their bills.
I wish more of the colo customers used apple hardware.
that takes real creativity.
Why not search out work from the 1850-1930s. Why not remix that?
Why in the fuck does one choose the beatles and fucking jayz. oh yea, because he has no creative skills. He needed material sure to get a knee jerk reaction.
Give me a fifth of beethoven any day
Speak for yourself.
valetine day is a commercial holiday and i consider it retarded.
I dont need a special day to tell my mother or significant other i love them.
I also need the special sensors. I have no idea what that would run for two exits/entrances. Maybe it would only be a few hundred dollars and that seems very reasonable for a small business.
Seems very useful for stopping mass theft of docs
on
Chemical, Printable RFIDs
·
· Score: 3, Interesting
If the goal is to steal one sheet of information, take a picture, memorize it, copy it, etc... all valid ways to subvert this system.
That is not very practical in the real world. Most times one wants to steal a whole bunch at a time. I am sure we have all read interesting things that are left sitting in the printer unattended... that might have value to someone else outside the company doors.
So that seems to be what this system might stop. One cannot stick 100 pages of information in their pants, covered by their shirt and just walk out.
At one cent a page, it seems very reasonable to install those directly into your printer. I want one too. Well as long as it comes in a normal printer as an added feature. Let the printer company pay the license fee, and I will buy the special inks.
Yea JDS. Our big competitor over at Corning before the telecom market sank like the titanic.
We made DWDMs over in Marlborough, MA. The best thing about them to me, was that they were passive. They worked in pairs and would multiplex 16 channels into once piece of fiber. They used the coolest filters made in a vacuum chamber and diced into small cubes. The glass was under so much pressure it looked like a pringles chip!
I would keep an eye on corning as well. After all, they make the most fiber in the world and have engineers who love this shit.
Re:From Mr. Understatement...
on
WiFi Free-For-All
·
· Score: 2, Interesting
The library is a public place. Anyone can use it for whatever means.
What one can do to abuse wifi is pretty well known. It appears they think the risk is worth it. Why let a few bad apples ruin it for all?
If the admin is capable and has a minimal budget, he can alleviate a lot. Bandwidth shaping (let it burst at first, but after so much data throttle it back). I guess one could filter known attacks.
Also people are actively working on these problems. Check this out.
Roland van Laar has a new, significant wi-fi patch for FreeBSD 5.1 and higher. The patch, available for download and testing, blocks clients with an empty or 'ANY' ssid and disables ssid broadcasting using the underlying firmware feature. SSID (Service Set ID) is used to identify wireless clients to a wireless / wired gateway.
I guess if my nextel got a text message from a cronjob telling me a machine was down i could easily connect via secure www to a lights out management card to reboot it. Then ssh in before the flight and fix it.
Amazing how nice that would be. Since many people spend an hour or two getting there via car you always think of something you need to do before that 8 hour flight.
If it was my own paid for site, I would put damn well whatever opinion I had on it about a professor. Or other peoples' opinion for that matter. I thought freedom of speech allowed this?
Was he using any school resources for this project?
If he is currently attending that school, they can attack him from that vector easily.
And I betcha this prof does not have tenure yet!
What I am unclear on though, is when does it become slander/libel? I do hope those are the correct legal terms for what we are discussing.
The allinurl and site search features can be used to good affect when looking for machines with vunl cgi that give one execute or read permissions.
for example:
allinurl: cgi print site:.mil
You would cry if you realized that to hack.gov and.mil one only needs a web browser to gain the foothold on their DMZ/LAN. (Heh, DMZ, giving them way too much credit).
Anyway, using common cgi tricks like dot traversal, poison null byte (RFP you can kiss my ass), obfuscation (".." == "%2e%2e"), etc... Oh dont forget the pipe operator.
I agree with other posters who say it is not Google's fault. They do a great job. It is the people who program those cgis need to really take a bit more time.
A man comes into the bar and wants a beer. He asks the bartender how much and he says 5 cents. The man asked the bartender how he could afford to stay in business. Well the bartender says he won the lottery and always wanted to sell a drink at a reasonable price. Spend his last days enjoying the company of his customers.
Well the man takes a long pull of his beer and looks around and asks the bartender who those group of people at the end of the bar were. It appeared they were not drinking.
The bartender said with a scowl on his face, oh them, they are high school teachers.
The man asks why did that matter?
The bartender says they are so cheap they are waiting for happy hour.
Such misunderstanding on common hacking lingo
on
Remotely Crash OpenBSD
·
· Score: 0, Flamebait
> To quote Theo, 'it is just a crash.'"
Yes, just a crash. Because you know he was trying like mad to get a remote exploit out of it. Some bugs are a d0s and others are simply not exploitable. Not so hard to understand how people use the phrase, "just a crash", with a disapointed puppy dog look because they cannot get mad props for dissing on Theo.
As for the people who did not understand patching your kernel so you can exploit the bug on openbsd. HA!
Please continue using windows and being an end luser.
I consider this bug to be like an interesting post. Georgi will just get karma from it. Nothing more.
After all, who needs a bug to d0s someone from the face of the earth?
They wont my friend.
A business is a business.
And modern universities are just a business whose main goal is to make money, keep the status quo around, and make sure the top employees get a fat retirement check.
Please forgive me professors, who actually are there to teach AND learn.
> It's too bad that chess has become a matter of memorizing a series of opening moves rather than a game of strategy.
I do not play much chess but this statement interests me. Someone replied to you saying that the amount of possible moves is incomputable.
I am just thinking if I was a Master Chess Player. Would I be studying the source code for the chess program before the match? It seems only fair because the creators studied many previous matches and played countless simulations. Will it be the exception that makes the rule on how future masters play? Think of a video game you have played where some rare ocurrence opened up a new way to play that allowed one to defeat the AI in trivial fashion.
Sure the computer can look out 10+ possible moves on any piece on the board, but if the player can manipulate the program from the beginning in some exceptional way, the AI could stumble easily.
After all, it is just an algorithm. I am sure several "bugs" will be found and abused in different variations in the future.
Heh, and I saw this for the first time today. Just look how slim and fit this mascot is! freebsd.
OBSD btw, has a mascot contest going on right now! My vote is for a traditional daemon.
As usual FreeBSD is way behind linux.
I mean come on, look at this little porky... linux.
Tell me you cannot grab roll of that!
Reminds me of a recent picture I saw of someone in a dunk tank.:pPpPpPpp
I am sure many users of FreeBSD who own computers with multiple processors are eagerly waiting to switch around 5.3.
I know I am drooling over better performance but patience is the key.
After reading that pdf on the new ULE scheduler, I became even more excited by all the hard work put in by the FreeBSD team.
I am still a user of 3.x and mostly 4.x with one 5.x box. I cannot be more pleased with this operating system's stability since 3.4.
Two hundred day uptimes are taken for granted with FreeBSD users.
Also in 5.x perl was removed! thank you for getting that mess out of the base install. One always had to upgrade it anyway for recent software like spamassassin. Keep putting the FreeBSD stories on slashdot editors, because isp admins run it.
> If you're on the level, I hope you're next.
I know you must do something illegal. Everyone does. For some reason I dont hope you get busted.
> It IS a crime. What you did is as well.
Of course. But the question seems to be with this thread, is what type of punishment does it deserve?
> The sentence should be permanent ban from using ALL computer equipment.
Heh.
> Like hacking so much? do something illegal like that and you can NEVER touch a fucking computer again. THAT would work.
You are a very extreme person do you realize that? I wonder how you feel about other things people do that are "illegal" but somehow accepted by others. Smoking weed, driving too fast, etc...
> If that was the penalty, I'm pretty sure most of you script kiddies would not poke your fingers into systems that ARE NOT YOURS. Or worse, brag about it like some 13 year old pimple-faced moron, like you just did.
Script kids? Do you realize these script kids probably know more about unix then you do? Do you realize all your favorite security software was made by ex-hackers?
So instead of making the owners of computer system responsible for their own hardware, you want the gubment to regulate it for us. great...
Slashdot Mirror
http://frogstar.com/wav/displaywav.asp?fil=duckjob .wav
heheh
heh, my manager plays that mp3 at work really loud. cracks us all up.
donald in his voice is getting it on...
The only mp3 that cracks us up more is the asian guy callin about blinking 12 on his vcr and calls all the support people round eye.
heheh
finally i can talk about comics and not be off-topic!
1 5_ 2_c.html
t ml
In issue 15 of walt disneys donald duck adventures, story "the mad chemist", from 1944 by carl barks.
a letter arrived from joseph b lambert of the cali institute of tech, pointing out a curious refernece in, "the spin of states of carbenes", a tech article soon to be published by P.P. Gaspar and G.s. hammond in Carbene Chemistry.
It seems donald's reference to CH2 was years ahead of its time: the existance of this elusive chemical intermediate had not been proven in 1944.
http://www.uky.edu/Projects/Chemcomics/html/dd_
shows him in action on page 2!
ah and i found the text i was trying to type out from the actual comic...
http://www.seriesam.com/barks/detc_wdc0044-x1.h
god i love comic books.
flaming carrot is top notch. go bob burden!
I was running healthd on my FreeBSD server. It reported my chip was running warm.
I felt my forehead and yup, I had a temperature and fever.
I work for an isp.
The colo customers who use apple hardware at our old facility never had this problem. Plus on our wired racks must be an apple machine from each era. Some really old ones too!
The old facility had occasional power losses and many apple hardware users do not have a UPS large enough to last more than 7+ minutes.
We never recieved a call from them to turn it back on. Matter of fact I rarely see apple hardware colo customers. Their computers just run, are not hacked easily, and they pay their bills.
I wish more of the colo customers used apple hardware.
Btw, our facilities have improved.
that takes real creativity. Why not search out work from the 1850-1930s. Why not remix that? Why in the fuck does one choose the beatles and fucking jayz. oh yea, because he has no creative skills. He needed material sure to get a knee jerk reaction. Give me a fifth of beethoven any day
Speak for yourself. valetine day is a commercial holiday and i consider it retarded. I dont need a special day to tell my mother or significant other i love them.
I am not quite sure that method would work for 100-1000s of pages.
I am sure people will start using it on
asset tags soon enough also.
I am so tired of company equipment i need to do my job ends up missing. And I mean taken off company property when it should not have been.
Where did that matching rack monitor go???
Well, I forgot a key thing.
I also need the special sensors. I have no idea what that would run for two exits/entrances. Maybe it would only
be a few hundred dollars and that seems
very reasonable for a small business.
If the goal is to steal one sheet of information, take a picture, memorize it, copy it, etc... all valid ways to subvert this system.
That is not very practical in the real world.
Most times one wants to steal a whole bunch at a time.
I am sure we have all read interesting things that
are left sitting in the printer unattended... that might have
value to someone else outside the company doors.
So that seems to be what this system might stop.
One cannot stick 100 pages of information in their
pants, covered by their shirt and just walk out.
At one cent a page, it seems very reasonable to install those
directly into your printer. I want one too. Well as long as it
comes in a normal printer as an added feature. Let the printer
company pay the license fee, and I will buy the special inks.
Profit.
I just visited their website. I wanted to see if you were wrong. These are my thoughts on a quick browsing looking for a meaty workstation.
They have beautiful workstations. Admittedly my only use of IRIX has been on Computones or NAS* boxes.
They did not have prices on the site. That means i cannot afford it if i have to ask. Maybe the Saudi Arabia linux club can, I cannot.
They obviously cater to a niche of people I never get to meet. I see more people with a need to run SUN machines than SGI.
Yea JDS. Our big competitor over at Corning before the telecom market sank like the titanic.
We made DWDMs over in Marlborough, MA. The best thing about them to me, was that they were passive. They worked in pairs and would multiplex 16 channels into once piece of fiber. They used the coolest filters made in a vacuum chamber and diced into small cubes. The glass was under so much pressure it looked like a pringles chip!
I would keep an eye on corning as well. After all, they make the most fiber in the world and have engineers who love this shit.
The library is a public place. Anyone can use it for whatever means.
What one can do to abuse wifi is pretty well known. It appears they think the risk is worth it. Why let a few bad apples ruin it for all?
If the admin is capable and has a minimal budget, he can alleviate a lot. Bandwidth shaping (let it burst at first, but after so much data throttle it back). I guess one could filter known attacks.
Also people are actively working on these problems. Check this out.
Roland van Laar has a new, significant wi-fi patch for FreeBSD 5.1 and higher. The patch, available for download and testing, blocks clients with an empty or 'ANY' ssid and disables ssid broadcasting using the underlying firmware feature. SSID (Service Set ID) is used to identify wireless clients to a wireless / wired gateway.
I guess if my nextel got a text message from a cronjob telling me a machine was down i could easily connect via secure www to a lights out management card to reboot it. Then ssh in before the flight and fix it.
Amazing how nice that would be. Since many people spend an hour or two getting there via car you always think of something you need to do before that 8 hour flight.
If it was my own paid for site, I would put damn well whatever opinion I had on it about a professor. Or other peoples' opinion for that matter. I thought freedom of speech allowed this? Was he using any school resources for this project? If he is currently attending that school, they can attack him from that vector easily. And I betcha this prof does not have tenure yet! What I am unclear on though, is when does it become slander/libel? I do hope those are the correct legal terms for what we are discussing.
The allinurl and site search features can be used to good affect when looking for machines with vunl cgi that give one execute or read permissions.
.gov and .mil one only needs a web browser to gain the foothold on their DMZ/LAN. (Heh, DMZ, giving them way too much credit).
for example:
allinurl: cgi print site:.mil
You would cry if you realized that to hack
Anyway, using common cgi tricks like dot traversal, poison null byte (RFP you can kiss my ass), obfuscation (".." == "%2e%2e"), etc... Oh dont forget the pipe operator.
I agree with other posters who say it is not Google's fault. They do a great job. It is the people who program those cgis need to really take a bit more time.
A man comes into the bar and wants a beer. He asks the bartender how much and he says 5 cents. The man asked the bartender how he could afford to stay in business. Well the bartender says he won the lottery and always wanted to sell a drink at a reasonable price. Spend his last days enjoying the company of his customers.
Well the man takes a long pull of his beer and looks around and asks the bartender who those group of people at the end of the bar were. It appeared they were not drinking.
The bartender said with a scowl on his face, oh them, they are high school teachers.
The man asks why did that matter?
The bartender says they are so cheap they are waiting for happy hour.
> To quote Theo, 'it is just a crash.'"
Yes, just a crash. Because you know he was trying like mad to get a remote exploit out of it. Some bugs are a d0s and others are simply not exploitable. Not so hard to understand how people use the phrase, "just a crash", with a disapointed puppy dog look because they cannot get mad props for dissing on Theo.
As for the people who did not understand patching your kernel so you can exploit the bug on openbsd.
HA!
Please continue using windows and being an end luser.
I consider this bug to be like an interesting post. Georgi will just get karma from it. Nothing more.
After all, who needs a bug to d0s someone from the face of the earth?
His way was just more elegant.
They wont my friend. A business is a business. And modern universities are just a business whose main goal is to make money, keep the status quo around, and make sure the top employees get a fat retirement check. Please forgive me professors, who actually are there to teach AND learn.
that and a nice bong.
> It's too bad that chess has become a matter of memorizing a series of opening moves rather than a game of strategy.
I do not play much chess but this statement interests me.
Someone replied to you saying that the amount of possible moves is incomputable.
I am just thinking if I was a Master Chess Player. Would I be studying the source code for the chess program before the match? It seems only fair because the creators studied many previous matches and played countless simulations. Will it be the exception that makes the rule on how future masters play? Think of a video game you have played where some rare ocurrence opened up a new way to play that allowed one to defeat the AI in trivial fashion.
Sure the computer can look out 10+ possible moves on any piece on the board, but if the player can manipulate the program from the beginning in some exceptional way, the AI could stumble easily.
After all, it is just an algorithm. I am sure several "bugs" will be found and abused in different variations in the future.
Heh, and I saw this for the first time today. Just look how slim and fit this mascot is! freebsd. OBSD btw, has a mascot contest going on right now! My vote is for a traditional daemon.
As usual FreeBSD is way behind linux. I mean come on, look at this little porky... linux. Tell me you cannot grab roll of that! Reminds me of a recent picture I saw of someone in a dunk tank. :pPpPpPpp
I am sure many users of FreeBSD who own computers with multiple processors are eagerly waiting to switch around 5.3. I know I am drooling over better performance but patience is the key. After reading that pdf on the new ULE scheduler, I became even more excited by all the hard work put in by the FreeBSD team. I am still a user of 3.x and mostly 4.x with one 5.x box. I cannot be more pleased with this operating system's stability since 3.4. Two hundred day uptimes are taken for granted with FreeBSD users. Also in 5.x perl was removed! thank you for getting that mess out of the base install. One always had to upgrade it anyway for recent software like spamassassin. Keep putting the FreeBSD stories on slashdot editors, because isp admins run it.
> If you're on the level, I hope you're next. I know you must do something illegal. Everyone does. For some reason I dont hope you get busted. > It IS a crime. What you did is as well. Of course. But the question seems to be with this thread, is what type of punishment does it deserve? > The sentence should be permanent ban from using ALL computer equipment. Heh. > Like hacking so much? do something illegal like that and you can NEVER touch a fucking computer again. THAT would work. You are a very extreme person do you realize that? I wonder how you feel about other things people do that are "illegal" but somehow accepted by others. Smoking weed, driving too fast, etc... > If that was the penalty, I'm pretty sure most of you script kiddies would not poke your fingers into systems that ARE NOT YOURS. Or worse, brag about it like some 13 year old pimple-faced moron, like you just did. Script kids? Do you realize these script kids probably know more about unix then you do? Do you realize all your favorite security software was made by ex-hackers? So instead of making the owners of computer system responsible for their own hardware, you want the gubment to regulate it for us. great...