Trying to ensure only humans sign up for things is just a small part of a bigger problem.
The other night I got javascripted away from the page i'd found in Google to watch a page pretend to put windows on my laptop and find malware, seen it many times before, i run ubuntu so seeing an xp like display of my c: and d: drives and various dll files being scanned isn't very convincing.
I decided to look into why i'd landed on the original page. Google had the page as about no4 after my initial search, but the site was about 4 weeks old whys it ranked so high?
And the answer is incoming links from around 86,000 pages according to google (links:domain.name)a lot of them are created internally passing links between malware site to malware site. But the majority come from sites using php forms which add user posts to the the sites pages.
A number of months ago i found my sites contact forms were sending a lot of garbage emails to me absolutely stuffed with urls and I wondered why bother doing this since i'm not going to visit the sites. anyway the cure was to only allow the forms to be processed with no more than a few urls in them. stopped the junk hitting the inbox. It's not stopped the automated posting but the forms are not processed and i don't get them any more.
When I examined the links to the malware site i found php posted user posts packed with links just like my emails had been the difference being these were posted published and being crawled. Because of these links a site with less than 4 weeks life is ranked highly because of the quantity of inbound links and thats why I got to watch a display of XP like virus and malware scanning,
I also examined the content of the pages of the original malware site and the subjects varied quite widely but they also seemed to have a relation with the trends that google was showing for related keywords in the weeks before the site went live. I've a feeling that the pages were generated by pulling content from legitimate sites that ranked high in the natural search.
I guess site owners tend to think these links are to spam porn at their users but its not its so google will promote the malware sites with gamed page rank.
Clever isn't it find good key phrases (may be just using google trends) scrape content from legit sites and mashup create massive array of links to site. wait for the fish to arrive and scam them.
The Antivirus scam is antivirus2009 but you only get shown it once heres a link for details on removing it and some interesting details.
Thing is the third party linking sites were using captchas but the real problem was not filtering the posts if a suitable max number of url's were used the posts would fail and the pagerank gaming would too.
Fixing the broken php and cgi scripts is whats really needed not just a better captcha The Captcha is just a BandAid on a deeper problem and webmasters need to deal with the issues.
As long as those illegal bandwidth leaches are not downloading at the same time as you it's not a problem. Peak capacity is getting to be an issue, discouraging the downloading of big files at peak times and shifting it to the small hours helps keep everybody happy. on the other hand downloading of legal tv shows is going to grow with people barely content to fill the buffer before watching. Maybe the cable and tv companies should be supplying better boxes with a decent quantity of storage space so when people choose to watch something chances are the box will already have grabbed it. Maybe just have neighborhood servers packed with the current weeks broadcasts. Guessing whats going to be needed for say a 1000 homes probably would be fairly easy after a few months.
compared to mini-cabs maybe. London Cab driver goes through a lot to get his hackney license enforcement of the rules varies and what the rules are varies from place to place. I think most if not all Licensed private hire drivers and taxi drivers do go through some form of criminal record check at least.
But there is definitely a bit of snobbery amongst black cab drivers considering themselves better than private hire drivers even with private hire drivers that are far more experienced than themselves.
It's not all great as that recent court case shows.
your probably right that some third party apps could add services but then shouldn't they be from a trusted source and properly authenticated. Maybe the OS could hold an MD5 Checksum for the known release and if that didn't hold up... I guess the user would still run the dodgy version. what can you do ?
If you bought his kindle from him would you be able to buy ebooks from the kindle store to put on the kindle that was initially bought by him?
Are you saying that if some generous soul on slashdot wanted to buy him an ebook from the kindle store he would be able to load it?
Because if either of these things are no longer possible then the value of his kindle has gone down, and if neither are possible in any kindle then its a pretty poor system and not worth buying into.
see there is a subtle difference from him being barred from borders and say his granny not being able to buy a book at borders as a gift for his birthday.
seems to suggest the serial number is locked to the users device so if amazon choose to end his account the kindles pretty much barred too.
I'm not sure if there is much of a saving on books either, where i could compare, Amazon seemed to sell the paperback and the electronic version for the same price.
perhaps a more worrying trend is that amazon will not support encrypted mobipocket books on the kindle, perhaps rightly but don't amazon own mobipocket books too?
probably wouldn't have had any issues if they ran the pc version in a vm without net access. I guess if you can run osx in a vm on a mac even that version would be sand boxed being as CS4 looks to go on line to register you'd maybe think giving it net access would be risky even without a trojan.
still an interesting lesson that using untrusted binaries can bite. which pretty much leaves Linux in the clear since there is little to pirate and software tends to be from trusted sources but that may change.
Is it flawed that an application should ask the user for root access to the system? Services are part of the role of the operating system and perhaps the operating system should be asking the user if the application can interact with the services provided within the os rather than an application modifying the underlying operating system with the users permission.
what if you could group your keys and rather than returning matches for smith you returned matches for keys starting with S (for over simplicity) then when the encrypted data comes down you only need locally decrypt part of the db. or maybe have one encryption for the key and a separate encryption for the data associated with that key. the portions returned might never hit disk storage and anything decrypted lost as soon as the power was pulled.
actually you could perhaps arrange storage of files in a system of directories and put your info perhaps as what looks like random text in doc files or spreadsheets. Then you need have a scheme for where to store the data and retrieve it from. you could fill in the gaps with white noise.
Actually it effectively reduced the value of his kindle to practically nothing overnight. would you buy a used kindle from this guy?
The value of secondhand ebooks must be pretty low too while its possible some titles might be to your taste a lot won't be and worth zero to you. at least with paper books you don't have to find a buyer with exactly the same tastes as you. Nice thing about the guy with the second hand book stall he'd buy back books as well as sell them.
e) Personally I like Virgins throttling approach peak times are between 4pm and Midnight basically the higher bandwidth you pay for the more you can download between those times before getting throttled for 4 hours. move your mass downloading off peak and there isn't an issue. The difference between 4 10 and 20 meg bandwidth tiers in practical terms is mostly how much your allowed to download at peak times before getting throttled, speed of download seems to be about the same.
In defense of cab drivers, most of those smell problems come from passengers who do things like vomit, piss themselves and worse and drop food, smoke, fuck and various other things in the back of cabs. Most cab drivers will at least try to avoid breaking wind with passengers on board.
Also bare in mind that taxi's are often shared working maybe 20 hours a day typically with a day driver and a night driver which doesn't leave too many opportunities for cleaning the cab out. Taxi drivers do try to maintain a clean car , it's better for tips for one, and if a cabs shabby then they tend to get the worst jobs.
yes I did it too and I'm happier and healthier too but to be honest its kind of obvious when you think about it. If your not happy in a place then theres only a couple of things that can improve, a better job and a new lover both of these are held back due to your state of mind. If your not happy who's going to want to be with you?
So a change of location can raise the spirits give a positive outlook and make you more attractive to others and possibly improve your job prospects. I guess it doesn't always work out but you can always go back or go forward just don't sit in the same rut being miserable. you get one life make the most of it.
In many ways, https is identical to http, because it follows the same basic protocols. The http or https client, such as a Web browser, establishes a connection to a server on a standard port. When a server receives a request, it returns a status and a message, which may contain the requested information or indicate an error if part of the process malfunctioned. Both systems use the same Uniform Resource Identifier (URI) scheme, so that resources can be universally identified. Use of https in a URI scheme rather than http indicates that an encrypted connection is desired.
There are some primary differences between http and https, however, beginning with the default port, which is 80 for http and 443 for https. Https works by transmitting normal http interactions through an encrypted system, so that in theory, the information cannot be accessed by any party other than the client and end server. There are two common types of encryption layers: Transport Layer Security (TLS) and Secure Sockets Layer (SSL), both of which encode the data records being exchanged.
When using an https connection, the server responds to the initial connection by offering a list of encryption methods it supports. In response, the client selects a connection method, and the client and server exchange certificates to authenticate their identities. After this is done, both parties exchange the encrypted information after ensuring that both are using the same key, and the connection is closed. In order to host https connections, a server must have a public key certificate, which embeds key information with a verification of the key owner's identity. Most certificates are verified by a third party so that clients are assured that the key is secure.
The first time a user attempts to access a secured page on your site, he or she is typically presented with a dialog containing the details of the certificate (such as the company and contact name), and asked if he or she wishes to accept the Certificate as valid and continue with the transaction. Some browsers will provide an option for permanently accepting a given Certificate as valid, in which case the user will not be bothered with a prompt each time they visit your site. Other browsers do not provide this option. Once approved by the user, a Certificate will be considered valid for at least the entire browser session.
Also, while the SSL protocol was designed to be as efficient as securely possible, encryption/decryption is a computationally expensive process from a performance standpoint. It is not strictly necessary to run an entire web application over SSL, and indeed a developer can pick and choose which pages require a secure connection and which do not. For a reasonably busy site, it is customary to only run certain pages under SSL, namely those pages where sensitive information could possibly be exchanged. This would include things like login pages, personal information pages, and shopping cart checkouts, where credit card information could possibly be transmitted. Any page within an application can be requested over a secure socket by simply prefixing the address with https: instead of http:. Any pages which absolutely require a secure connection should check the protocol type associated with the page request and take the appropriate action if https is not specified.
Finally, using name-based virtual hosts on a secured connection can be problematic. This is a design limitation of the SSL protocol itself. The SSL handshake, where the client browser accepts the server certificate, must occur before the HTTP request is accessed. As a result
Opting Out is a bit of a joke to these people it seems.
While the privacy safeguards built into BT Webwise mean that sensitive or private content on websites is not compromised, the system also offers a number of mechanisms by which website owners can prevent pages being profiled if they wish. Website owners may implement any of the following methods:
1. HTTPS: No HTTPS traffic passes through the system or is profiled
2. Standard HTTP password-protection : Pages protected using standard HTTP password protection, as defined by RFC 1945, will not be profiled
3. robots.txt: The Webwise system will observe the rules that a website sets for major search engines using the robots.txt method. If the website's robots.txt file is set such that "*" (any robot) is not permitted to crawl it, then Webwise will not profile its pages.
Alternatively, you may request specifically that your website is not scanned by Webwise. To request that your website not be scanned by Webwise, please email:
website-exclusion{at}webwise.com.
[X] How are robots.txt files handled by Webwise?
The Webwise system observes the rules that a website sets for the Googlebot, Slurp (Yahoo! agent) and "*" (any robot) user agents. Where a website's robots.txt file disallows any of these user agents, Webwise will not profile the relevant URL. As an example, the following robots.txt text will prevent profiling of all pages on a site:
user-agent: * disallow: /
The following example will restrict profiling of a directory named "images":
user-agent: Slurp disallow:/images
The system will request the robots.txt file from the root of the host e.g. www.domain.com/robots.txt. When requesting the robots.txt file, the system will follow up to 5 redirects. If no robots.txt file or an HTTP error is returned, if the returned file is not in single-byte ASCII (ISO-8859-x) format, or if the file size is greater than 50Kbytes, then the URL will be marked as allowed for profiling.
Website owners should note the following aspects of the Webwise system's interpretation of robots.txt files:
* Malformed robots.txt files will result in the URL being disallowed for profiling.
* Any of the well-established line-termination tokens are interpreted as a newline, i.e. DOS, UNIX, old-style MacOS linefeeds. Multiple linefeeds are ignored.
* Web-encoded URLs are decoded and handled as normal.
* Variable capitalisation within the robots.txt file is converted to lower case and processed.
* The system does not support Google extensions to the robots.txt standard.
So the options are https, or password protect your site, or use robots.txt to block google and yahoo from indexing your site or email them and ask to be opted out. option a and b inconvenience visitors, option c will reduce visitors since it means your site isnt getting indexed by the major search engines. option 4 seems the only practical way to get these jokers to desist. option d) no phorm in the robots text doesnt exist.
unfortunately you can live for too long crawling around in molten steel and there is nothing that can be done.
I met a guy once who had a large steel ingot land on him (hit his shoulder) at a temperature of say 7-900 degree's C his job was to direct the manipulator operator at a Steel Forge which means being stood in front of a massive anvil as a 10,000 ton press squeezes it. What really got me is he was doing the same job when I met him. brave or mad I don't know which.
Wire drawings another bad one I heard about one guy when hooking the wire got it wrong and it went into his leg not only that he had to stand there while it passed through if he had moved it would have wrapped round him and probably killed him.
Luckily about the only dangerous story I actually had some involvement in was a near miss, The company I was working for made rolls for cold rolling mills these are what can turn a big ingot into razer blades car body sheet or foil. To do the job they have to be very hard. Over 723 degrees C there is a phase change and quenching produces a denser crystaline matrix than slow cooling. quenching the outside is easy enough but the inner part of the roll will cool relatively slowly forming a less dense phase. In simple terms the inside is trying to be bigger than the outside. As you can imagine there are huge stresses within a forged roll. It's been known for a roll to have completed its service life gone for scrap and been stored to explode (luckily in that incident it demolished a warehouse wall at a weekend) anyway this particular roll was experimental and was using a new technique, but after hardening and what's termed a make safe temper over the weekend it was hardness tested by fred at 900 vickers about 50 vickers harder than the usual 800-850 that was at about 12, around 1 oclock it exploded one of the journels (drive ends) broke off and launched itself across the shop floor (probably about a ton and a half of steel) it missed the back of freds leg by inches.
The really scary places are foundrys, you may have heard of the lost wax process essentially the pattern is made in wax which is subsequently melted and molten metal poured in your typical model car gets made that way, very precise and not much work to finish the item. A friend of mine related a tale where they had been experimenting with polystyrene pouring the molten steel into the mould and the polystyrene pattern would just melt for a kilo or so pattern it was ok so they decided to try it out on a big one. unfortunately the trapped air caused the moulding sand to break apart molten steel going everywhere luckily no one was hurt with that one.
I can't see how it will stop in 2010 regardless of who is in power, the only difference will be which asshat is in power. Obviously the political parties will offer us all something that we like the sound of and try to bury the unpopular policies. So a new government comes in or gets restored they then make some show of implementing or delaying implementing the popular policies that got them to power and at the same time doing things we distinctly dislike.
While you can argue that perhaps that it seems reasonable for a general election to be called on change of prime minister, its not backed up in practice
"'When a party in government replaces its leader, there is no need for the new prime minister to call an early general election. Macmillan waited 2¾ years, and Callaghan three years until he was forced to hold one by a Commons vote of no confidence. Douglas Home waited a year, and John Major 15 months, but they were near the five-year limit before an election has to be called. Eden called an election almost immediately after taking office, but the parliament was more than 3½ years old. After succeeding the dying Bonar Law in May 1923, Baldwin went to the polls within six months on the issue of tariff reform, only a year into the Parliament, but lost - an unhappy precedent.' "
So its a bit of a mixed bag theres been a few unelected prime ministers from both sides. John Major was the last Conservative Prime minister to do so. If Gordon Brown wasn't Prime Minister, it would probably still be Tony Blair but definitely not David Cameron till at least 2010.
It depends if you left the front door open on some property you were not using squatters can legally enter and live there at least for a while I think the law basically allows for squatting provided the squatters don't break in.
A lot of wiki's are very open if you want to create a page about anything you pretty much can and the admins may or not delete it. This is just a new variation of ftp, I remember years ago a friend showing me big file blocks which were random data being uploaded to his ftp site and then attempts were made to download them again. The blocks were just tests to see if his ftp site could be used as online storage for warez and the like. Geocitys and the like were often used in similar ways although they tended to have max file sizes and certain types of file were banned but then its just a case of renaming them or encrypting them.
I can't be the only person who started a free website and used it for storing useful tools on-line. With the advent of cheap flash drives and low prices it's mostly pointless (the 8gb drive I have now is the equivalent of around 6-8000 floppy disks). These days portable storage isn't an issue but privacy can still be.
Theres still a case for stashing something on the net, when its possible your system might be examined or confiscated crossing a border for example, especially for people like journalists who may be entering a country with a less than favorable view of journalists.
A really enterprising lawyer might be able to argue fair use. seriously.
After all if i give you a 0.001% of any file its hardly enough to be a substantial part of the original work and by itself meaningless noise. The only thing is by the nature of bit torrent each "fair use" extract tends to be of a different part of the work.
Common sense says is a ludicrous argument, but the law doesn't deal in common sense. And if you cannot be punished for the actions of others (and this seems rather shaky to me since If I get you to shoot someone then that would probably be enough to find me guilty). Then you cannot be guilty of X amount of damage since that was other people and not you. At which point perhaps the Judge should ask why these other people are not in court. There is a pretty good chance that a good proportion of possible defendants are outside the jurisdiction of the court.
Would Google books be guilty of copyright infringement if gave you and your friend a 1000 snippits from the title that you and your friend pieced back together to recreate the original work.
With the old style Kazaar type p2p you would indeed upload multiple copies and it was easy enough to say joe user probably uploaded 10 or more complete copies of a particular work. torrents just don't work the same way.
Actually for music there is a good chance you can download it legally from google china, without legal repercussion since your not entering into any kind of contract just downloading the legally offered files. You don't even have to register. An enterprising individual in china could probably translate the titles for you and provide links.
The chinese symbol for down load looks a bit like a mirrored R with the top taken of and the bar in the middle extended outwards. Does that now make me guilty of breaking copyright if there is a law against clicking links.
Kind of like a scene out of pulp fiction its legal for them to have it and legal for you to possess it (but you broke the terms of the licensing agreement) which you never saw, never read, and never agreed to it's not even shrink wrap and therefore with no contract in place there is no license agreement.
Obviously I'm not a lawyer and this isn't legal advice.
To be honest me neither, there is always something not quite right, with a brand new distro, Intrepid broke sound for a number of people. Was it Hardy with the evolution bug that maxed out the CPU. I think it's always going to be that way but its usually fixed within a month at most. Die hard Ubuntu users hold up their hands in horror and say things like thats it I'm moving back to Windows but it's all good fun and we all get busy fixing the problems and finding cures and occasionally reverting back to the now stable version we have become used to.
The best advice I can give for anyone new to Linux is don't go for a distro which has been out less than a month, there will be wrinkles that need ironing out in the new version and without some experience its going to be more frustrating than fun.
It's not such a big issue for the USA, but for other countries it really is you have to pay to get access to the data you need to convert postcodes to latitude and longitudes or go about collecting it manually, which is a huge task, some places don't even have any system in place.
The likes of tomtom or opentomtom or openstreetmap could use this system for free and ordinary people could use it for sat navs. It can even be made into a barcode. since an area will share common digits within the higher digits it makes it quite easy to sort parcels and letters easily for deliveries and it can be clearly communicated.
With things like google maps its possible to locate a place and derive the geohash online. Theres a bookmark you can create with your browser and you can go from a google map page to the bookmark and the coordinates of the centre of the map are translated to the geohash code. Off road its even more useful.
But the drawbacks to the system as is, is the codes are too long to remember easily which means they will not be used as much as they could, it's easier than the latitude and longitude but still not as easy as a 7 digit code.
TomTom for example already provide the ability to locate a place by latitude and longitude this is just an alternative entry method really. The existing map methods your familiar with are good provided you can get the reference from someone using the same system but I bet that you can fall back to latitude and longitude. The code to implement the encoding and decoding of a geohash is very simple and public with examples in several programing languages (not human simple but computer simple) and not only that every digit that gets passed across increases the accuracy of the location.
Thanks for replying it helps me achieve my real goal of talking about this which is to ensure that it enters the public domain and no one can decide to close source the modified geohash. which might seem rather silly if it wasn't for the fact that things like a one click patent get approved.
while your right its an alien system as of now, but then the original geohash is only a year old.
To be fair, there are some quite poor touch screens out there. I can think of two examples my toshiba e740 occasionally loses calibration generally after the batterys run completely flat. But the other Example is a point of sale (cash register) theres no issues within the POS app but if you want to play around with WIN-CE Calibration is off and recalibrating doesn't seem to help much. Which kinda makes the point that provided the interface is designed well enough a few pixels out will not matter.
Slashdot Mirror
I'd be enthusiastic if i could actually see these hidden images. Even knowing what they are doesn't help
Trying to ensure only humans sign up for things is just a small part of a bigger problem.
The other night I got javascripted away from the page i'd found in Google to watch a page pretend to put windows on my laptop and find malware, seen it many times before, i run ubuntu so seeing an xp like display of my c: and d: drives and various dll files being scanned isn't very convincing.
I decided to look into why i'd landed on the original page. Google had the page as about no4 after my initial search, but the site was about 4 weeks old whys it ranked so high?
And the answer is incoming links from around 86,000 pages according to google (links:domain.name)a lot of them are created internally passing links between malware site to malware site. But the majority come from sites using php forms which add user posts to the the sites pages.
A number of months ago i found my sites contact forms were sending a lot of garbage emails to me absolutely stuffed with urls and I wondered why bother doing this since i'm not going to visit the sites. anyway the cure was to only allow the forms to be processed with no more than a few urls in them. stopped the junk hitting the inbox. It's not stopped the automated posting but the forms are not processed and i don't get them any more.
When I examined the links to the malware site i found php posted user posts packed with links just like my emails had been the difference being these were posted published and being crawled. Because of these links a site with less than 4 weeks life is ranked highly because of the quantity of inbound links and thats why I got to watch a display of XP like virus and malware scanning,
I also examined the content of the pages of the original malware site and the subjects varied quite widely but they also seemed to have a relation with the trends that google was showing for related keywords in the weeks before the site went live. I've a feeling that the pages were generated by pulling content from legitimate sites that ranked high in the natural search.
I guess site owners tend to think these links are to spam porn at their users but its not its so google will promote the malware sites with gamed page rank.
Clever isn't it
find good key phrases (may be just using google trends)
scrape content from legit sites and mashup
create massive array of links to site.
wait for the fish to arrive and scam them.
The Antivirus scam is antivirus2009 but you only get shown it once
heres a link for details on removing it and some interesting details.
http://www.2-spyware.com/remove-antivirus-2009.html
Thing is the third party linking sites were using captchas but the real problem was not filtering the posts if a suitable max number of url's were used the posts would fail and the pagerank gaming would too.
Fixing the broken php and cgi scripts is whats really needed not just a better captcha
The Captcha is just a BandAid on a deeper problem and webmasters need to deal with the issues.
As long as those illegal bandwidth leaches are not downloading at the same time as you it's not a problem. Peak capacity is getting to be an issue, discouraging the downloading of big files at peak times and shifting it to the small hours helps keep everybody happy. on the other hand downloading of legal tv shows is going to grow with people barely content to fill the buffer before watching. Maybe the cable and tv companies should be supplying better boxes with a decent quantity of storage space so when people choose to watch something chances are the box will already have grabbed it. Maybe just have neighborhood servers packed with the current weeks broadcasts. Guessing whats going to be needed for say a 1000 homes probably would be fairly easy after a few months.
compared to mini-cabs maybe. London Cab driver goes through a lot to get his hackney license enforcement of the rules varies and what the rules are varies from place to place. I think most if not all Licensed private hire drivers and taxi drivers do go through some form of criminal record check at least.
But there is definitely a bit of snobbery amongst black cab drivers considering themselves better than private hire drivers even with private hire drivers that are far more experienced than themselves.
It's not all great as that recent court case shows.
your probably right that some third party apps could add services but then shouldn't they be from a trusted source and properly authenticated. Maybe the OS could hold an MD5 Checksum for the known release and if that didn't hold up ... I guess the user would still run the dodgy version.
what can you do ?
If you bought his kindle from him would you be able to buy ebooks from the kindle store to put on the kindle that was initially bought by him?
Are you saying that if some generous soul on slashdot wanted to buy him an ebook from the kindle store he would be able to load it?
Because if either of these things are no longer possible then the value of his kindle has gone down, and if neither are possible in any kindle then its a pretty poor system and not worth buying into.
see there is a subtle difference from him being barred from borders and say his granny not being able to buy a book at borders as a gift for his birthday.
http://gizmodo.com/gadgets/hacks/kindle-drm-hacked-that-was-easy-333415.php
seems to suggest the serial number is locked to the users device so if amazon choose to end his account the kindles pretty much barred too.
I'm not sure if there is much of a saving on books either, where i could compare, Amazon seemed to sell the paperback and the electronic version for the same price.
http://news.cnet.com/8301-13578_3-10196424-38.html is interesting amazon using the DMCA to stop nonkindle books being used on the kindle unsuccessfully http://yro.slashdot.org/comments.pl?sid=1158727&cid=27172053
perhaps a more worrying trend is that amazon will not support encrypted mobipocket books on the kindle, perhaps rightly but don't amazon own mobipocket books too?
i'm not so sure if having a wireless device that updates itself at amazons command is that great if they don't respect their customers, i guess Jeff Bezos http://www.martinmanley.typepad.com/jam_side_down/2009/03/billionaire-amazon-ceo-works-a-week-in-his-own-warehouse.html doesn't look much like Darth Vader but could he say the line I'm altering the deal. Pray I don't alter it still further...
Who's toy is it his or Jeff Bezos?
probably wouldn't have had any issues if they ran the pc version in a vm without net access.
I guess if you can run osx in a vm on a mac even that version would be sand boxed being as CS4 looks to go on line to register you'd maybe think giving it net access would be risky even without a trojan.
still an interesting lesson that using untrusted binaries can bite. which pretty much leaves Linux in the clear since there is little to pirate and software tends to be from trusted sources but that may change.
Is it flawed that an application should ask the user for root access to the system? Services are part of the role of the operating system and perhaps the operating system should be asking the user if the application can interact with the services provided within the os rather than an application modifying the underlying operating system with the users permission.
what if you could group your keys and rather than returning matches for smith you returned matches for keys starting with S (for over simplicity) then when the encrypted data comes down you only need locally decrypt part of the db. or maybe have one encryption for the key and a separate encryption for the data associated with that key. the portions returned might never hit disk storage and anything decrypted lost as soon as the power was pulled.
actually you could perhaps arrange storage of files in a system of directories and put your info perhaps as what looks like random text in doc files or spreadsheets. Then you need have a scheme for where to store the data and retrieve it from. you could fill in the gaps with white noise.
Actually it effectively reduced the value of his kindle to practically nothing overnight. would you buy a used kindle from this guy?
The value of secondhand ebooks must be pretty low too while its possible some titles might be to your taste a lot won't be and worth zero to you.
at least with paper books you don't have to find a buyer with exactly the same tastes as you. Nice thing about the guy with the second hand book stall he'd buy back books as well as sell them.
if you want to pin something in linux just uncheck the update checkbox in update manager
thats not hard is it.
e) Personally I like Virgins throttling approach peak times are between 4pm and Midnight basically the higher bandwidth you pay for the more you can download between those times before getting throttled for 4 hours. move your mass downloading off peak and there isn't an issue. The difference between 4 10 and 20 meg bandwidth tiers in practical terms is mostly how much your allowed to download at peak times before getting throttled, speed of download seems to be about the same.
In defense of cab drivers, most of those smell problems come from passengers who do things like vomit, piss themselves and worse and drop food, smoke, fuck and various other things in the back of cabs. Most cab drivers will at least try to avoid breaking wind with passengers on board.
Also bare in mind that taxi's are often shared working maybe 20 hours a day typically with a day driver and a night driver which doesn't leave too many opportunities for cleaning the cab out.
Taxi drivers do try to maintain a clean car , it's better for tips for one, and if a cabs shabby then they tend to get the worst jobs.
yes I did it too and I'm happier and healthier too but to be honest its kind of obvious when you think about it.
If your not happy in a place then theres only a couple of things that can improve, a better job and a new lover both of these are held back due to your state of mind.
If your not happy who's going to want to be with you?
So a change of location can raise the spirits give a positive outlook and make you more attractive to others and possibly improve your job prospects.
I guess it doesn't always work out but you can always go back or go forward just don't sit in the same rut being miserable.
you get one life make the most of it.
http://www.wisegeek.com/what-is-the-difference-between-http-and-https.htm
In many ways, https is identical to http, because it follows the same basic protocols. The http or https client, such as a Web browser, establishes a connection to a server on a standard port. When a server receives a request, it returns a status and a message, which may contain the requested information or indicate an error if part of the process malfunctioned. Both systems use the same Uniform Resource Identifier (URI) scheme, so that resources can be universally identified. Use of https in a URI scheme rather than http indicates that an encrypted connection is desired.
There are some primary differences between http and https, however, beginning with the default port, which is 80 for http and 443 for https. Https works by transmitting normal http interactions through an encrypted system, so that in theory, the information cannot be accessed by any party other than the client and end server. There are two common types of encryption layers: Transport Layer Security (TLS) and Secure Sockets Layer (SSL), both of which encode the data records being exchanged.
When using an https connection, the server responds to the initial connection by offering a list of encryption methods it supports. In response, the client selects a connection method, and the client and server exchange certificates to authenticate their identities. After this is done, both parties exchange the encrypted information after ensuring that both are using the same key, and the connection is closed. In order to host https connections, a server must have a public key certificate, which embeds key information with a verification of the key owner's identity. Most certificates are verified by a third party so that clients are assured that the key is secure.
http://tomcat.apache.org/tomcat-5.5-doc/ssl-howto.html
The first time a user attempts to access a secured page on your site, he or she is typically presented with a dialog containing the details of the certificate (such as the company and contact name), and asked if he or she wishes to accept the Certificate as valid and continue with the transaction. Some browsers will provide an option for permanently accepting a given Certificate as valid, in which case the user will not be bothered with a prompt each time they visit your site. Other browsers do not provide this option. Once approved by the user, a Certificate will be considered valid for at least the entire browser session.
Also, while the SSL protocol was designed to be as efficient as securely possible, encryption/decryption is a computationally expensive process from a performance standpoint. It is not strictly necessary to run an entire web application over SSL, and indeed a developer can pick and choose which pages require a secure connection and which do not. For a reasonably busy site, it is customary to only run certain pages under SSL, namely those pages where sensitive information could possibly be exchanged. This would include things like login pages, personal information pages, and shopping cart checkouts, where credit card information could possibly be transmitted. Any page within an application can be requested over a secure socket by simply prefixing the address with https: instead of http:. Any pages which absolutely require a secure connection should check the protocol type associated with the page request and take the appropriate action if https is not specified.
Finally, using name-based virtual hosts on a secured connection can be problematic. This is a design limitation of the SSL protocol itself. The SSL handshake, where the client browser accepts the server certificate, must occur before the HTTP request is accessed. As a result
http://www.patentstorm.us/patents/4655276/description.html
might be of interest but other than that I'm saying nothing
Opting Out is a bit of a joke to these people it seems.
While the privacy safeguards built into BT Webwise mean that sensitive or private content on websites is not compromised, the system also offers a number of mechanisms by which website owners can prevent pages being profiled if they wish. Website owners may implement any of the following methods:
1. HTTPS: No HTTPS traffic passes through the system or is profiled
2. Standard HTTP password-protection : Pages protected using standard HTTP password protection, as defined by RFC 1945, will not be profiled
3. robots.txt: The Webwise system will observe the rules that a website sets for major search engines using the robots.txt method. If the website's robots.txt file is set such that "*" (any robot) is not permitted to crawl it, then Webwise will not profile its pages.
Alternatively, you may request specifically that your website is not scanned by Webwise. To request that your website not be scanned by Webwise, please email:
website-exclusion{at}webwise.com.
[X]
How are robots.txt files handled by Webwise?
The Webwise system observes the rules that a website sets for the Googlebot, Slurp (Yahoo! agent) and "*" (any robot) user agents. Where a website's robots.txt file disallows any of these user agents, Webwise will not profile the relevant URL. As an example, the following robots.txt text will prevent profiling of all pages on a site:
user-agent: * disallow: /
The following example will restrict profiling of a directory named "images": /images
user-agent: Slurp disallow:
The system will request the robots.txt file from the root of the host e.g. www.domain.com/robots.txt. When requesting the robots.txt file, the system will follow up to 5 redirects. If no robots.txt file or an HTTP error is returned, if the returned file is not in single-byte ASCII (ISO-8859-x) format, or if the file size is greater than 50Kbytes, then the URL will be marked as allowed for profiling.
Website owners should note the following aspects of the Webwise system's interpretation of robots.txt files:
* Malformed robots.txt files will result in the URL being disallowed for profiling.
* Any of the well-established line-termination tokens are interpreted as a newline, i.e. DOS, UNIX, old-style MacOS linefeeds. Multiple linefeeds are ignored.
* Web-encoded URLs are decoded and handled as normal.
* Variable capitalisation within the robots.txt file is converted to lower case and processed.
* The system does not support Google extensions to the robots.txt standard.
So the options are https, or password protect your site, or use robots.txt to block google and yahoo from indexing your site or email them and ask to be opted out.
option a and b inconvenience visitors, option c will reduce visitors since it means your site isnt getting indexed by the major search engines.
option 4 seems the only practical way to get these jokers to desist.
option d) no phorm in the robots text doesnt exist.
just curious are you the Dave Haynie of Amiga, and Beos fame?
unfortunately you can live for too long crawling around in molten steel and there is nothing that can be done.
I met a guy once who had a large steel ingot land on him (hit his shoulder) at a temperature of say 7-900 degree's C his job was to direct the manipulator operator at a Steel Forge which means being stood in front of a massive anvil as a 10,000 ton press squeezes it. What really got me is he was doing the same job when I met him.
brave or mad I don't know which.
Wire drawings another bad one I heard about one guy when hooking the wire got it wrong and it went into his leg not only that he had to stand there while it passed through if he had moved it would have wrapped round him and probably killed him.
Luckily about the only dangerous story I actually had some involvement in was a near miss, The company I was working for made rolls for cold rolling mills these are what can turn a big ingot into razer blades car body sheet or foil. To do the job they have to be very hard. Over 723 degrees C there is a phase change and quenching produces a denser crystaline matrix than slow cooling. quenching the outside is easy enough but the inner part of the roll will cool relatively slowly forming a less dense phase. In simple terms the inside is trying to be bigger than the outside. As you can imagine there are huge stresses within a forged roll. It's been known for a roll to have completed its service life gone for scrap and been stored to explode (luckily in that incident it demolished a warehouse wall at a weekend) anyway this particular roll was experimental and was using a new technique, but after hardening and what's termed a make safe temper over the weekend it was hardness tested by fred at 900 vickers about 50 vickers harder than the usual 800-850 that was at about 12, around 1 oclock it exploded one of the journels (drive ends) broke off and launched itself across the shop floor (probably about a ton and a half of steel) it missed the back of freds leg by inches.
The really scary places are foundrys, you may have heard of the lost wax process essentially the pattern is made in wax which is subsequently melted and molten metal poured in your typical model car gets made that way, very precise and not much work to finish the item. A friend of mine related a tale where they had been experimenting with polystyrene pouring the molten steel into the mould and the polystyrene pattern would just melt for a kilo or so pattern it was ok so they decided to try it out on a big one. unfortunately the trapped air caused the moulding sand to break apart molten steel going everywhere luckily no one was hurt with that one.
I can't see how it will stop in 2010 regardless of who is in power, the only difference will be which asshat is in power. Obviously the political parties will offer us all something that we like the sound of and try to bury the unpopular policies. So a new government comes in or gets restored they then make some show of implementing or delaying implementing the popular policies that got them to power and at the same time doing things we distinctly dislike.
While you can argue that perhaps that it seems reasonable for a general election to be called on change of prime minister, its not backed up in practice
http://tutor2u.net/blog/index.php/politics/comments/unelected-prime-ministers-the-political-and-constitutional-importance/
"'When a party in government replaces its leader, there is no need for the new prime minister to call an early general election. Macmillan waited 2¾ years, and Callaghan three years until he was forced to hold one by a Commons vote of no confidence. Douglas Home waited a year, and John Major 15 months, but they were near the five-year limit before an election has to be called. Eden called an election almost immediately after taking office, but the parliament was more than 3½ years old. After succeeding the dying Bonar Law in May 1923, Baldwin went to the polls within six months on the issue of tariff reform, only a year into the Parliament, but lost - an unhappy precedent.' "
So its a bit of a mixed bag theres been a few unelected prime ministers from both sides. John Major was the last Conservative Prime minister to do so.
If Gordon Brown wasn't Prime Minister, it would probably still be Tony Blair but definitely not David Cameron till at least 2010.
It depends if you left the front door open on some property you were not using squatters can legally enter and live there at least for a while I think the law basically allows for squatting provided the squatters don't break in.
A lot of wiki's are very open if you want to create a page about anything you pretty much can and the admins may or not delete it. This is just a new variation of ftp, I remember years ago a friend showing me big file blocks which were random data being uploaded to his ftp site and then attempts were made to download them again. The blocks were just tests to see if his ftp site could be used as online storage for warez and the like. Geocitys and the like were often used in similar ways although they tended to have max file sizes and certain types of file were banned but then its just a case of renaming them or encrypting them.
I can't be the only person who started a free website and used it for storing useful tools on-line. With the advent of cheap flash drives and low prices it's mostly pointless (the 8gb drive I have now is the equivalent of around 6-8000 floppy disks). These days portable storage isn't an issue but privacy can still be.
Theres still a case for stashing something on the net, when its possible your system might be examined or confiscated crossing a border for example, especially for people like journalists who may be entering a country with a less than favorable view of journalists.
Tanks tend to fight in the dark or in smoke with no effective means of locating the enemy the iraqi tanks basically couldnt be used.
A really enterprising lawyer might be able to argue fair use. seriously.
After all if i give you a 0.001% of any file its hardly enough to be a substantial part of the original work and by itself meaningless noise. The only thing is by the nature of bit torrent each "fair use" extract tends to be of a different part of the work.
Common sense says is a ludicrous argument, but the law doesn't deal in common sense.
And if you cannot be punished for the actions of others (and this seems rather shaky to me since If I get you to shoot someone then that would probably be enough to find me guilty). Then you cannot be guilty of X amount of damage since that was other people and not you. At which point perhaps the Judge should ask why these other people are not in court. There is a pretty good chance that a good proportion of possible defendants are outside the jurisdiction of the court.
Would Google books be guilty of copyright infringement if gave you and your friend a 1000 snippits from the title that you and your friend pieced back together to recreate the original work.
With the old style Kazaar type p2p you would indeed upload multiple copies and it was easy enough to say joe user probably uploaded 10 or more complete copies of a particular work. torrents just don't work the same way.
Actually for music there is a good chance you can download it legally from google china, without legal repercussion since your not entering into any kind of contract just downloading the legally offered files. You don't even have to register. An enterprising individual in china could probably translate the titles for you and provide links.
The chinese symbol for down load looks a bit like a mirrored R with the top taken of and the bar in the middle extended outwards. Does that now make me guilty of breaking copyright if there is a law against clicking links.
Kind of like a scene out of pulp fiction its legal for them to have it and legal for you to possess it (but you broke the terms of the licensing agreement) which you never saw, never read, and never agreed to it's not even shrink wrap and therefore with no contract in place there is no license agreement.
Obviously I'm not a lawyer and this isn't legal advice.
To be honest me neither, there is always something not quite right, with a brand new distro, Intrepid broke sound for a number of people. Was it Hardy with the evolution bug that maxed out the CPU. I think it's always going to be that way but its usually fixed within a month at most. Die hard Ubuntu users hold up their hands in horror and say things like thats it I'm moving back to Windows but it's all good fun and we all get busy fixing the problems and finding cures and occasionally reverting back to the now stable version we have become used to.
The best advice I can give for anyone new to Linux is don't go for a distro which has been out less than a month, there will be wrinkles that need ironing out in the new version and without some experience its going to be more frustrating than fun.
It's not such a big issue for the USA, but for other countries it really is you have to pay to get access to the data you need to convert postcodes to latitude and longitudes or go about collecting it manually, which is a huge task, some places don't even have any system in place.
The likes of tomtom or opentomtom or openstreetmap could use this system for free and ordinary people could use it for sat navs.
It can even be made into a barcode. since an area will share common digits within the higher digits it makes it quite easy to sort parcels and letters easily for deliveries and it can be clearly communicated.
With things like google maps its possible to locate a place and derive the geohash online. Theres a bookmark you can create with your browser and you can go from a google map page to the bookmark and the coordinates of the centre of the map are translated to the geohash code. Off road its even more useful.
But the drawbacks to the system as is, is the codes are too long to remember easily which means they will not be used as much as they could, it's easier than the latitude and longitude but still not as easy as a 7 digit code.
TomTom for example already provide the ability to locate a place by latitude and longitude this is just an alternative entry method really. The existing map methods your familiar with are good provided you can get the reference from someone using the same system but I bet that you can fall back to latitude and longitude.
The code to implement the encoding and decoding of a geohash is very simple and public with examples in several programing languages (not human simple but computer simple) and not only that every digit that gets passed across increases the accuracy of the location.
Thanks for replying it helps me achieve my real goal of talking about this which is to ensure that it enters the public domain and no one can decide to close source the modified geohash. which might seem rather silly if it wasn't for the fact that things like a one click patent get approved.
while your right its an alien system as of now, but then the original geohash is only a year old.
To be fair, there are some quite poor touch screens out there. I can think of two examples my toshiba e740 occasionally loses calibration generally after the batterys run completely flat. But the other Example is a point of sale (cash register) theres no issues within the POS app but if you want to play around with WIN-CE Calibration is off and recalibrating doesn't seem to help much. Which kinda makes the point that provided the interface is designed well enough a few pixels out will not matter.