Just unpatched Apache HTTP server and absence of firewall could hardly be a reason/means for a successful intrusion/exploitation. I know a lot of popular web servers which have not so fresh apache server and they don't run any sort of firewall, yet user' data is safe and no intrusions have occured.
It's more likely their platform contained SQL injection vulnerabilities or other vulnerable/outdated software 'cause apache web server has a good record of being immune to attacks.
One should always remember that a properly configured web server should never expose any unnecessary services to the WAN in case your firewall rules are not correct or they are not properly enforced. E.g., if you run a usual web server, theoretically and in the best case scenario you should have the only listening port: 80 (or/and 443 for SSL connections) and maybe port 22 for incoming SSH connections (but I personally always reconfigure SSH daemon to listen on any other port other than 22).
There are rumors floating around that Google is also interested in buying Skype, but I really hope Skype will remain independent as I really hate the idea of users data concentration - it will make us so much more vulnerable to being spied on in one centralized way.
With this new release schedule I see on very pesky problem surfacing: as a major number is getting increased every six or so months, only actively maintained extensions will be working (unless you hack extensions compatibility in about:config, but most users will never do that).
Firefox is very popular due to its extensions and by changing the rules of the game, Mozilla is killing most of the extensions. It'll be interesting how this situation is going to turn out. One obvious solution is not to increase a major number internally (I still strongly believe that the new schedule was devised to make Firefox more prominent in the world of web browsers where Opera is already at version 11, IE will soon turn 10, Google Chrome will soon become number 11).
They should block Tor, SSL websites, applications with encryption too (almost all modern archivers support AES, not to mention TrueCrypt and similar products). And special Aussie Windows version without built-in encryption won't hurt.
If you want to buy the fastest futureproof PC and you don't own one yet, hold on!
Later this year Intel will introduce a new 2011 pins socket and 6-8 cores Sandy Bridge CPUs for it. These beasts will be much faster, much more power efficient and they will come with native DDR3-1600MHz RAM support.
Even now under many workloads almost four times cheaper 4 cores Sandy Bridge 2600(K) CPU beats six cores Intel Extreme i7 990X, because SB has much improved IPC (instruction per clock) ratio.
Intel Core i7 990X CPU is largely justified only for the current socket 1366 owners who encode/transcode video, render CGI or compile huge software projects.
Bradley Manning, the US soldier who has spent 10 months in solitary confinement on suspicion of having transmitted a huge trove of state secrets to WikiLeaks, now faces a possible death penalty.
WTF is going on with people? He's now in detention, can he still leak documents? Then why the hell are you treating him like he's a threat to all human beings? Damn the US authorities.
What will happen to it? It doesn't run, nor it can be easily ported to WF7. It seems like Elop has simply overlooked Qt's existence.
Qt's main strength was easy C++ code portability between a lot of platforms (Win/Lin/MacOS/even QNX) and even if Nokia implements C# bindings to Qt, you will still have to rewrite all software specifically for WF7.
Meanwhile KDE developers are already very unhappy and concerned about Nokia's decision.
A lot of people wonder why Nokia didn't choose Android over all other software platforms. Here's what I think:
There are too many companies producing Android based mobile phones and Nokia would become one of many and Nokia will have to compete on hardware quality/price level which they cannot do/afford to do (Finnish labour is very costly).
No company so far has been able to exert Google/Android and Nokia will have to differentiate in order to be competitive - probably Nokia executives couldn't believe they could persuade Google. Since now we are talking about a strategic alliance with Microsoft, I bet Microsoft will be willing to adjust WF7 platform for Nokia needs.
I won't be surprised to learn that Microsoft actually paid Nokia in hard currency to have such a large and advanced mobile phones producer.
However with this kind of alliance there's one question that bugs me a lot: WF7 platform has quite steep hardware requirements and so far Nokia hasn't been able to produce a lot of beefy devices - what will happen to the wide range of devices Nokia is currently selling?
As stock exchange players negatively reacted to this news, I won't be surprised if Microsoft had a hidden agenda of buying out all Nokia assets shortly afterwards.
but the same trick works even for unsuspicious human beings using your wireless/wired connection (you can hijack their web browser sessions, steal their credentials, etc). It's been known probably since the conception of the Internet that HTTP isn't a secure protocol - probably TV manufactures never thought of their devices to be used on [public|untrusted|malicious] networks.
AMD has already got to know about this mischief and I bet new revisions of HD6850 will have a hardware protection against unlocking into HD6970. So, grab it while it's hot.
Hollywood has yet to find any video game property it is willing to treat with the same respect as J.R.R. Tolkien or J.K.Rowling
IMO the Prince of Persia: The Sands of Time movie was top-notch and one of the best movies in 2010. So, if Hollywood really wants to make a movie based on a video game, they can pull it quite easily, effectively and remarkably.
So no attitude needs to be changed. It mostly/just depends on their will to make a real movie.
First of all, let's not make a mountain out of a molehill - 99.999% of users have no idea that they are being constantly tracked and there's such a thing like cookies... or even more not only your browser itself can store cookies, flash player itself has its own cookies (aka persistent storage). Most users will never bother logging off from gmail and clean cookies and they don't realize all their search queries are linked to their gmail account.
The whole technology needs to be revised if someone really cares about users' privacy. But since most of the world will keep on using IE for the next 5-10 years, I doubt any change will be feasible. *All* browsers, not only IE, will have to implement something completely new, so that this new technology would work. And I predict marketers' outcry if such a change is to be implemented.
As for the geeks there are many options available, I for one create a symbolic link from ~/.adobe/Flash_Player and ~/.macromedia to/dev/shm/. After I power off/reboot my PC all flash cookies are gone. Disabling these directories (like suggested earlier) isn't the best idea because some flash clips won't work correctly when local storage is disabled altogether.
Let me be the first to say that the current X.org drivers for DAAMIT, NVIDIA and Intel are all incomplete and buggy and what Mark offers will hit him and all Ubuntu users very hard.
And I'm quite sure ATI and NVIDIA won't bother releasing their binary drivers for this thingy in the foreseeable future (or maybe who cares where there are no AAA native games for Linux). With thousands of unresolved bugs in KDE/Gnome/X.org server itself, with many devices still unsupported or barely supported, I don't think it's the best endeavour in the immature Linux world.
Whereas movie industry has large theaters and music industry has stadiums where they can recoup losses related to pirating of digital content, newspaper have nothing like that and it seems like it's their biggest problem. Good newspapers often have unique content or in-depth investigations, but most people are content with superficial sometimes even factually incorrect information.
Meanwhile paywall doesn't solve the aforementioned issue, it only sieves your readers and leaves the most dedicated ones. At the same time I still wonder what's more profitable - to leave your doors open and fill your website with ads or close your website with a paywall. If paywall allows a newspaper to be more profitable than without it, I see absolutely no problem here. Journalists, numerous personnel, rental payment - running a newspaper business is a costly affair.
To me he's dreaming of putting modern console CPU/GPU into mobile phones - it's not going to happen soon. Not even in the next three years. But even then, playing a game on a big screen with a decent sound system seems like a much more enjoyable experience than tiny, unhandy controls and shitty sound.
When his company bankrupts (people will surely not appreciate this idea) and people start fleeing to other companies for flights, the demand will rise and other companies will become more profitable.
If not saving money for himself, he could actually help other companies earn more.
Slashdot Mirror
Just unpatched Apache HTTP server and absence of firewall could hardly be a reason/means for a successful intrusion/exploitation. I know a lot of popular web servers which have not so fresh apache server and they don't run any sort of firewall, yet user' data is safe and no intrusions have occured.
It's more likely their platform contained SQL injection vulnerabilities or other vulnerable/outdated software 'cause apache web server has a good record of being immune to attacks.
One should always remember that a properly configured web server should never expose any unnecessary services to the WAN in case your firewall rules are not correct or they are not properly enforced. E.g., if you run a usual web server, theoretically and in the best case scenario you should have the only listening port: 80 (or/and 443 for SSL connections) and maybe port 22 for incoming SSH connections (but I personally always reconfigure SSH daemon to listen on any other port other than 22).
There are rumors floating around that Google is also interested in buying Skype, but I really hope Skype will remain independent as I really hate the idea of users data concentration - it will make us so much more vulnerable to being spied on in one centralized way.
Certainly there's a correlation between IQ and real intellect, but there's no causation between one and another one.
So, it's safe to say that IQ tests ... measure "IQ" (exactly these two letters) and nothing more.
With this new release schedule I see on very pesky problem surfacing: as a major number is getting increased every six or so months, only actively maintained extensions will be working (unless you hack extensions compatibility in about:config, but most users will never do that).
Firefox is very popular due to its extensions and by changing the rules of the game, Mozilla is killing most of the extensions. It'll be interesting how this situation is going to turn out. One obvious solution is not to increase a major number internally (I still strongly believe that the new schedule was devised to make Firefox more prominent in the world of web browsers where Opera is already at version 11, IE will soon turn 10, Google Chrome will soon become number 11).
They should block Tor, SSL websites, applications with encryption too (almost all modern archivers support AES, not to mention TrueCrypt and similar products). And special Aussie Windows version without built-in encryption won't hurt.
Good luck with this mission impossible.
If you want to buy the fastest futureproof PC and you don't own one yet, hold on!
Later this year Intel will introduce a new 2011 pins socket and 6-8 cores Sandy Bridge CPUs for it. These beasts will be much faster, much more power efficient and they will come with native DDR3-1600MHz RAM support.
Even now under many workloads almost four times cheaper 4 cores Sandy Bridge 2600(K) CPU beats six cores Intel Extreme i7 990X, because SB has much improved IPC (instruction per clock) ratio.
Intel Core i7 990X CPU is largely justified only for the current socket 1366 owners who encode/transcode video, render CGI or compile huge software projects.
WTF is going on with people? He's now in detention, can he still leak documents? Then why the hell are you treating him like he's a threat to all human beings? Damn the US authorities.
And that's exactly what most people expect from their mobile phones.
Owning a smartphone still requires a non-zero amount of computer literacy skills.
What will happen to it? It doesn't run, nor it can be easily ported to WF7. It seems like Elop has simply overlooked Qt's existence.
Qt's main strength was easy C++ code portability between a lot of platforms (Win/Lin/MacOS/even QNX) and even if Nokia implements C# bindings to Qt, you will still have to rewrite all software specifically for WF7.
Meanwhile KDE developers are already very unhappy and concerned about Nokia's decision.
A lot of people wonder why Nokia didn't choose Android over all other software platforms. Here's what I think:
However with this kind of alliance there's one question that bugs me a lot: WF7 platform has quite steep hardware requirements and so far Nokia hasn't been able to produce a lot of beefy devices - what will happen to the wide range of devices Nokia is currently selling?
As stock exchange players negatively reacted to this news, I won't be surprised if Microsoft had a hidden agenda of buying out all Nokia assets shortly afterwards.
Here's a much better version of this performance with a good sound quality: 6Nerdstock: Nine Lessons and Carols for Godless People
This story in English.
Funnily their English office/rep web site still runs IPv4 exclusively.
but the same trick works even for unsuspicious human beings using your wireless/wired connection (you can hijack their web browser sessions, steal their credentials, etc). It's been known probably since the conception of the Internet that HTTP isn't a secure protocol - probably TV manufactures never thought of their devices to be used on [public|untrusted|malicious] networks.
AMD has already got to know about this mischief and I bet new revisions of HD6850 will have a hardware protection against unlocking into HD6970. So, grab it while it's hot.
Is it a slow news day? ;)
Next you are going to say there are some unpatched vulnerabilities in IE.
Hollywood has yet to find any video game property it is willing to treat with the same respect as J.R.R. Tolkien or J.K.Rowling
IMO the Prince of Persia: The Sands of Time movie was top-notch and one of the best movies in 2010. So, if Hollywood really wants to make a movie based on a video game, they can pull it quite easily, effectively and remarkably.
So no attitude needs to be changed. It mostly/just depends on their will to make a real movie.
First of all, let's not make a mountain out of a molehill - 99.999% of users have no idea that they are being constantly tracked and there's such a thing like cookies ... or even more not only your browser itself can store cookies, flash player itself has its own cookies (aka persistent storage). Most users will never bother logging off from gmail and clean cookies and they don't realize all their search queries are linked to their gmail account.
The whole technology needs to be revised if someone really cares about users' privacy. But since most of the world will keep on using IE for the next 5-10 years, I doubt any change will be feasible. *All* browsers, not only IE, will have to implement something completely new, so that this new technology would work. And I predict marketers' outcry if such a change is to be implemented.
As for the geeks there are many options available, I for one create a symbolic link from ~/.adobe/Flash_Player and ~/.macromedia to /dev/shm/. After I power off/reboot my PC all flash cookies are gone. Disabling these directories (like suggested earlier) isn't the best idea because some flash clips won't work correctly when local storage is disabled altogether.
When XFS was introduced in Linux it also sucked performance wise, so, I think for ZFS on Linux there's certainly a room for improvement.
And even in this early age ZFS shows very remarkable results, so let's just wait and see.
Let me be the first to say that the current X.org drivers for DAAMIT, NVIDIA and Intel are all incomplete and buggy and what Mark offers will hit him and all Ubuntu users very hard.
And I'm quite sure ATI and NVIDIA won't bother releasing their binary drivers for this thingy in the foreseeable future (or maybe who cares where there are no AAA native games for Linux). With thousands of unresolved bugs in KDE/Gnome/X.org server itself, with many devices still unsupported or barely supported, I don't think it's the best endeavour in the immature Linux world.
Whereas movie industry has large theaters and music industry has stadiums where they can recoup losses related to pirating of digital content, newspaper have nothing like that and it seems like it's their biggest problem. Good newspapers often have unique content or in-depth investigations, but most people are content with superficial sometimes even factually incorrect information.
Meanwhile paywall doesn't solve the aforementioned issue, it only sieves your readers and leaves the most dedicated ones. At the same time I still wonder what's more profitable - to leave your doors open and fill your website with ads or close your website with a paywall. If paywall allows a newspaper to be more profitable than without it, I see absolutely no problem here. Journalists, numerous personnel, rental payment - running a newspaper business is a costly affair.
To me he's dreaming of putting modern console CPU/GPU into mobile phones - it's not going to happen soon. Not even in the next three years. But even then, playing a game on a big screen with a decent sound system seems like a much more enjoyable experience than tiny, unhandy controls and shitty sound.
When his company bankrupts (people will surely not appreciate this idea) and people start fleeing to other companies for flights, the demand will rise and other companies will become more profitable. If not saving money for himself, he could actually help other companies earn more.
Suse developers suggested a fix for this vulnerability six years ago http://linux.derkeiler.com/Mailing-Lists/Kernel/2004-09/7904.html however for reasons unknown it wasn't noticed or merged.