Unless you vet all sites with curl before you visit them, you are already wide open to loading content you didn't intend to. Heck, even then, someone could do something like have innocent looking image links that actually have.htaccess redirects to images on a completely different site.
Prefetching takes nothing away from your security.
I expect my browser to protect me from that, for example, not loading images that are from a different domain, etc., or prefetching sites.
And, I expect my browser to tell me what kinds of things it will protect me from, and specifically what it isn't protecting me from.
I generally agree with you, except with your analogy to nVidia. I believe there are open source drivers that can utilize the nVidia cards as regular 2d cards.
Asking nVidia to open source their 3d drivers is similar to asking adobe to open source photoshop, not asking Adaptec to document their raid API.
Also, there's competition with a relatively low barrier to entry in this case (extremely low for existing RAID controller manufacturers). There is a market for fully documented, open source friendly RAID controllers. It'll be interesting to see who grabs it.
Coax cable doesn't have enough bandwidth to provide 200+ channels plus internet services.
The digital set top box can only deliver what it receives over the coax cable. You're a bit confused here.
The issue you're referring to is digital vs. analog encoding, not changing the physical delivery method of cable. That particular issue isn't very exciting, everyone's going digital.
The controversial issue here is what you are allowed to do with the content you receive from your cable provider.
So when you're following the stable 2.6.x.y and 2.6.(x+1) comes out, you potentially have to immediately switch trains to get security patches. Doesn't sound stable to me.
For this idea to work, more than the current 2.6.x needs to be supported as stable.
No need to wait. OpenBSD's pf already can randomize TCP timestamp and IP ID fields, and has been able to do so since 3.4 (November '03 release). Check out the "reassemble tcp" and "random-id" scrubbing options.
What in the world does trying to be a domain registrar have to do with increasing their search capabilities?
I hope Google will offer domain registrations and allow Gmail to work more natively with personal domains. I.e. so you don't have to forward your mail through a 3rd party and your From: address can be something other than @gmail.com.
Yes, Apple can say that iTunes songs only work with th iPod. And create a.iPod format, or whatever. But thats not what they do, they say you get great high quality music. As it turns out, when you use one of their features(music burning) to do something that they advertise(burning music) it degrades the product you purchased.
I don't know if you're trolling or what, but burning the music to CD doesn't degrade the quality. You lose quality if you burn to CD then re-rip to some lossy format.
When you buy the song from iTMS, the quality has already been "degraded" from a CD. Burning to an audio disc yields the same music as playing it any other way.
How naive of you to think that America will change substantially enough that terrorists will not want to destroy it.
That leaves two options for us: change the general opinion of America in the Middle East, or destroy them.
Terrorists resort to terrorism because they have nothing else to negotiate with. America, get out of the Middle East so we can kill more Jews or we'll kill you! America, stop paying us for our oil or we'll kill you! America, become Muslim or we'll kill you! Terrorists, stop killing us when you don't your way! Negotiation only works when there is the potential for give and take where both sides can walk away with something they can live with. Not going to happen.
If we don't bring the 21st century to the middle east, they'll bring the 10th century to us.
Wiping the area (and other similar locations) off the face of the planet would pretty much do the trick, but most people don't consider that an option.
It's amazing how many people don't understand why we're in Iraq.
And btw, I expect the US federal gov't to protect the US. And that means before nukes are detonated in major US cities.
If I'm not mistaken, a buffer overflow works by overflowing the stack and hopefully changing a pointer that existing code will use to jump to the location of the attacker's choice eventually. If you mark executable code pages read only and writable data pages non-executable, that attack becomes significantly more difficult. Don't know if that's what they're talking about here. OpenBSD does that already on x86.
The idea of putting multiple scripts into a singe file is useful, and it's been done. Are you saying there is something patent worthy about using XML instead of HTML,.zip,.tar, etc?
Hell, I think someone else mentioned vim config files being XML and supporting scripts of multiple languages.
That's all nice, but where is the patent-worthiness aspect of this? Is the idea of putting the scripts in an XML file that different from a.zip file? Or creating a directory with multiple files?
There is no step between wanting to put multiple scripts in an XML file and actually doing it.
Oh yeah, and there's that whole Internet thing, with HTML and JavaScript. Notice how you can (must?) specify a script type when you put JavaScript into an HTML page. This goes back a ways, but at one time you could install something client-side to use perl as the script language in an HTML page.
Microsoft's plan for it may be nifty, but it's no invention worthy of a patent.
You have to admit that the idea to control lowercase and uppercase with a single bit has it's advantages. In one operation you can test both 'a' and 'A'. ASCII makes you use test on both and use addition and subtraction instead of the more computer friendly bit flips.
What makes you think that isn't true for ASCII? In ASCII a-z and A-Z are continuous and in-order with "A" starting at 65 and "a" at 97. That's a separation of 32, which makes them differ by a single bit.
Slashdot Mirror
Unless you vet all sites with curl before you visit them, you are already wide open to loading content you didn't intend to. Heck, even then, someone could do something like have innocent looking image links that actually have .htaccess redirects to images on a completely different site.
Prefetching takes nothing away from your security.
I expect my browser to protect me from that, for example, not loading images that are from a different domain, etc., or prefetching sites.
And, I expect my browser to tell me what kinds of things it will protect me from, and specifically what it isn't protecting me from.
I generally agree with you, except with your analogy to nVidia. I believe there are open source drivers that can utilize the nVidia cards as regular 2d cards.
Asking nVidia to open source their 3d drivers is similar to asking adobe to open source photoshop, not asking Adaptec to document their raid API.
Also, there's competition with a relatively low barrier to entry in this case (extremely low for existing RAID controller manufacturers). There is a market for fully documented, open source friendly RAID controllers. It'll be interesting to see who grabs it.
Coax cable doesn't have enough bandwidth to provide 200+ channels plus internet services.
The digital set top box can only deliver what it receives over the coax cable. You're a bit confused here.
The issue you're referring to is digital vs. analog encoding, not changing the physical delivery method of cable. That particular issue isn't very exciting, everyone's going digital.
The controversial issue here is what you are allowed to do with the content you receive from your cable provider.
They do now. :)
That's why I don't use it. When I delete something, I want it gone.
Hopefully, they don't view that as a feature and have fixed the problem.
If Nintendo published their specification, it might be news.
Except WoW players are paying monthly...
So when you're following the stable 2.6.x.y and 2.6.(x+1) comes out, you potentially have to immediately switch trains to get security patches. Doesn't sound stable to me.
For this idea to work, more than the current 2.6.x needs to be supported as stable.
No need to wait. OpenBSD's pf already can randomize TCP timestamp and IP ID fields, and has been able to do so since 3.4 (November '03 release). Check out the "reassemble tcp" and "random-id" scrubbing options.
That would be unimpressive if it was the maximum bandwidth, but it's not.
That's the same as a 64 bit 78 MHz parallel interface - not that impressive.
Actually, lower minimums would be more impressive, as would higher maximums.
Lower minimums allow cheaper devices, higher maximums allow more functionality.
What in the world does trying to be a domain registrar have to do with increasing their search capabilities?
I hope Google will offer domain registrations and allow Gmail to work more natively with personal domains. I.e. so you don't have to forward your mail through a 3rd party and your From: address can be something other than @gmail.com.
Possibly more compressed, but not with Pixlet. Pixlet is for movie *editing* not playback. 24Mbps isn't high compression for regular video.
Bibles aren't supposedly objective textbook.
That is correct. The Holy Bible is supposedly the unquestionable
(or eternal damnation ensues) word of God, not an objective textbook.
Apparently certain religious parents were worried that textbooks might make it more difficult to keep their children from questioning The Holy Bible.
Hence, the (imo pointless) stickers.
Yes, Apple can say that iTunes songs only work with th iPod. And create a .iPod format, or whatever. But thats not what they do, they say you get great high quality music. As it turns out, when you use one of their features(music burning) to do something that they advertise(burning music) it degrades the product you purchased.
I don't know if you're trolling or what, but burning the music to CD doesn't degrade the quality. You lose quality if you burn to CD then re-rip to some lossy format.
When you buy the song from iTMS, the quality has already been "degraded" from a CD. Burning to an audio disc yields the same music as playing it any other way.
It's the design of qmail that rocks. And yes, you need to patch it.
Check out qmail-ldap.
How naive of you to think that America will change substantially enough that terrorists will not want to destroy it.
That leaves two options for us: change the general opinion of America in the Middle East, or destroy them.
Terrorists resort to terrorism because they have nothing else to negotiate with. America, get out of the Middle East so we can kill more Jews or we'll kill you! America, stop paying us for our oil or we'll kill you! America, become Muslim or we'll kill you! Terrorists, stop killing us when you don't your way! Negotiation only works when there is the potential for give and take where both sides can walk away with something they can live with. Not going to happen.
Wake up and smell reality.
If we don't bring the 21st century to the middle east, they'll bring the 10th century to us.
Wiping the area (and other similar locations) off the face of the planet would pretty much do the trick, but most people don't consider that an option.
It's amazing how many people don't understand why we're in Iraq.
And btw, I expect the US federal gov't to protect the US. And that means before nukes are detonated in major US cities.
How many of OSX's exploits were still exploitable when behind a firewall?
The problem with Windows is exploits in IE and Outlook/Outlook Express.
Wikipedia needs to check their own references, as do you. The first link listed by Wikipedia explains the origins of DVD as digital video disk.
If I'm not mistaken, a buffer overflow works by overflowing the stack and hopefully changing a pointer that existing code will use to jump to the location of the attacker's choice eventually. If you mark executable code pages read only and writable data pages non-executable, that attack becomes significantly more difficult. Don't know if that's what they're talking about here. OpenBSD does that already on x86.
The idea of putting multiple scripts into a singe file is useful, and it's been done. Are you saying there is something patent worthy about using XML instead of HTML, .zip, .tar, etc?
Hell, I think someone else mentioned vim config files being XML and supporting scripts of multiple languages.
That's all nice, but where is the patent-worthiness aspect of this? Is the idea of putting the scripts in an XML file that different from a .zip file? Or creating a directory with multiple files?
There is no step between wanting to put multiple scripts in an XML file and actually doing it.
Oh yeah, and there's that whole Internet thing, with HTML and JavaScript. Notice how you can (must?) specify a script type when you put JavaScript into an HTML page. This goes back a ways, but at one time you could install something client-side to use perl as the script language in an HTML page.
Microsoft's plan for it may be nifty, but it's no invention worthy of a patent.
You have to admit that the idea to control lowercase and uppercase with a single bit has it's advantages. In one operation you can test both 'a' and 'A'. ASCII makes you use test on both and use addition and subtraction instead of the more computer friendly bit flips.
What makes you think that isn't true for ASCII? In ASCII a-z and A-Z are continuous and in-order with "A" starting at 65 and "a" at 97. That's a separation of 32, which makes them differ by a single bit.
Try 22 bits.