Flaimbait? It's true. Palladium would have allowed for *secure* remote connection, with the data from the keyboard being decypherable only on the receiving end.
HAL incompatibilities?/did you actually expect to swap a drive into a radically-different machine (ACPI/NOACPI, MP/UP, whatever/whatever-else) and actually/expect//it//to//function/?
Why is this flaimbait? It's true. It's very curious to see IBM make statement's about a competitor's UNIX offering, while their own is about as closed-source as you can get. (Not only proprietary, but runs on IBM HW only).
In other news, vendor A doesn't want you to buy into vendor B's products. News of the day!
Boy... we need to learn how to use a search engine...
Just searching for WinCE shows no results from/. If you want to restrict self to Microsoft, search for "http://www.google.com/search?hl=ru&client=safari& rls=ru-ru&q=WinCE+site%3Amicrosoft.com&btnG=?????& lr="
Done.
...Idiots. They've basically watched their entire knowledge base die, disintegrate and retire of the past 30 years, and only/NOW/ they're doing something about it.
You should know your history. Germany declared war on the United States AFTER Pearl Harbor and after the US-Japanese conflict began. They had to, as Germany and Japan were both allies.
Not just the TSC. Remember that you can't rely on any PC devices (like the PIT or the ACPI timer, or the RTC), since the HV could trap all I/O accesses to these and provide emulated versions, which from your POV will seem fine.
Now obviously you can glance at your watch at see if some operation takes longer...
If VMWare's solution still needs a host OS (I remember them using stripped-down Linux for their server offering), then no... they might use use a subset of VT, but its not a true hypervisor.
And by the way... yes... device virtualization is still not there, but your page tables claim is bullshit. If you read the VT (and the SVM) docs, you would realize that you can implement shadow page tables RIGHT NOW. The hardware assists are there.
I hope that by "External time source" you really mean a clock sitting near you and NOT a system device, as those can be intercepted and emulated. Otherwise, yes.
Its nice that you were are Rutkowksa's talk, but try actaully reading the SVM/VT docs, so you don't sound like an incompetent goof.
"The side-effect of this is that the hypervisor can simply tell the bios " - wtf? What BIOS? What the hell are you talking about?
1. C-c and C-v. You can enable quick edit in cmd.exe (which is the only place where you might care anyway).
2. Wtf?
3. WSF and Monad.
4. Care to elaborate? Nothing crappy about it. Its system pervasive, too.
5. no comment
6. Mp3, DVD, NFS not supported? What drugs are you on? Plus what do the rest have to do with the OS? Core Linux OS doesn't include GS or a PDF viewer either...
7. Yes, but not for the reasons you think.
No, injecting her code to run within kernel's address space obviously bypasses the whole "signed drivers only", hence that's the issue.
The issue with SVM? Yes. Once you have blue pill running, you can never be sure. For all you know, it overwrote part of the ROM flash to start itself the next time your cold-cycled your machine.
In the end, if people actually listened when Palladium was actual, instead of whining their way about "omg... teh microsoft will 1984 us all", this wouldn't be a problem. If you only allowed SVM to be turned on within SKINIT. Great. But you need a TPM for that. Plus beside SVM, there's also VMX.
What you need is a hole in the virtualization so you could detect whether a hypervisor is running. Something that cannot be intercepted by a "hypervirus" or what-not.
The next time you sit down to think why they have 90% of the market, realize that most of the "latest" technologies in computing have been directly pushed for (and had their design contributed to) by Microsoft.
If you paid attention, you'd realize you can't use SVM facilities without being in ring-0. Now how she got her payload from ring-3 to ring-0? That's the security hole.
Slashdot Mirror
The sheer size and scope of the project? Never mind exposing their own and licensed IP??
Who makes your phone? I've had everything short of dunking it..,. and it's ok.
This actually made me chuckle :)
You can pay-by-touch at Jewel grocery stores too.
Flaimbait? It's true. Palladium would have allowed for *secure* remote connection, with the data from the keyboard being decypherable only on the receiving end.
Right. If you people didn't bitch so much about Palladium, "hardware keyloggers" would have long become irrelevant.
OMG! A Micro$$$$$oft product! The horror!
I don't seem to recall too many RDP issues. Nice FUD. Very fit for Slashdot, though, so don't worry - you're in the right place.
HAL incompatibilities? /did you actually expect to swap a drive into a radically-different machine (ACPI/NOACPI, MP/UP, whatever/whatever-else) and actually /expect/ /it/ /to/ /function/?
Why is this flaimbait? It's true. It's very curious to see IBM make statement's about a competitor's UNIX offering, while their own is about as closed-source as you can get. (Not only proprietary, but runs on IBM HW only).
In other news, vendor A doesn't want you to buy into vendor B's products. News of the day!
Boy... we need to learn how to use a search engine... Just searching for WinCE shows no results from /. If you want to restrict self to Microsoft, search for "http://www.google.com/search?hl=ru&client=safari& rls=ru-ru&q=WinCE+site%3Amicrosoft.com&btnG=?????& lr="
Done.
And besides, "isolationism" in most people's minds doesn't imply "supplying arms to one side of the conflict". FYI.
...Idiots. They've basically watched their entire knowledge base die, disintegrate and retire of the past 30 years, and only /NOW/ they're doing something about it.
You should know your history. Germany declared war on the United States AFTER Pearl Harbor and after the US-Japanese conflict began. They had to, as Germany and Japan were both allies.
Why don't you google it and find out? WinCE has nothing to do with either the Win311/Win95/Win98/WinME or the NT/2K/XP OSes.
Not just the TSC. Remember that you can't rely on any PC devices (like the PIT or the ACPI timer, or the RTC), since the HV could trap all I/O accesses to these and provide emulated versions, which from your POV will seem fine.
Now obviously you can glance at your watch at see if some operation takes longer...
If VMWare's solution still needs a host OS (I remember them using stripped-down Linux for their server offering), then no... they might use use a subset of VT, but its not a true hypervisor.
And by the way... yes... device virtualization is still not there, but your page tables claim is bullshit. If you read the VT (and the SVM) docs, you would realize that you can implement shadow page tables RIGHT NOW. The hardware assists are there.
I hope that by "External time source" you really mean a clock sitting near you and NOT a system device, as those can be intercepted and emulated. Otherwise, yes.
Its nice that you were are Rutkowksa's talk, but try actaully reading the SVM/VT docs, so you don't sound like an incompetent goof. "The side-effect of this is that the hypervisor can simply tell the bios " - wtf? What BIOS? What the hell are you talking about?
1. C-c and C-v. You can enable quick edit in cmd.exe (which is the only place where you might care anyway). 2. Wtf? 3. WSF and Monad. 4. Care to elaborate? Nothing crappy about it. Its system pervasive, too. 5. no comment 6. Mp3, DVD, NFS not supported? What drugs are you on? Plus what do the rest have to do with the OS? Core Linux OS doesn't include GS or a PDF viewer either... 7. Yes, but not for the reasons you think.
Uh, bullshit. You can store >2GB files on NTFS volumes just fine.
Ugh... when will Slashdot stop posting links to NON-TECHNICAL articles.
Have you seen the actual Blue Pill slides? Just out of curiousity... Or are you talking out of your ass?
No, injecting her code to run within kernel's address space obviously bypasses the whole "signed drivers only", hence that's the issue.
The issue with SVM? Yes. Once you have blue pill running, you can never be sure. For all you know, it overwrote part of the ROM flash to start itself the next time your cold-cycled your machine.
In the end, if people actually listened when Palladium was actual, instead of whining their way about "omg... teh microsoft will 1984 us all", this wouldn't be a problem. If you only allowed SVM to be turned on within SKINIT. Great. But you need a TPM for that. Plus beside SVM, there's also VMX.
What you need is a hole in the virtualization so you could detect whether a hypervisor is running. Something that cannot be intercepted by a "hypervirus" or what-not.
The next time you sit down to think why they have 90% of the market, realize that most of the "latest" technologies in computing have been directly pushed for (and had their design contributed to) by Microsoft.
If you paid attention, you'd realize you can't use SVM facilities without being in ring-0. Now how she got her payload from ring-3 to ring-0? That's the security hole.
Sure... if you can stomach living in Bumblefuck, USA.