The point I am making isn't that you do or don't have to tell the company about the flaw. The issue is that these companies are selling the flaws to the highest bidder. In such case yes you should be held liable for any damages arising out of you profiting in giving that information out.
"If I knew how to break into your house, then told you that I was able to but won't tell you how unless you paid up a fee?"
That in itself is a fair point. I mean what if you are working in the security industry and are trying to secure someones business. You certainly aren't going to do it for free.
The issue here is more like after the home owner saying they don't have the money or can't pay that you sell the information to whoever wants it. That I am pretty sure is illegal.
IANAL. If I had a security exploit that if used could get someone killed and I refused to hand it over and instead sold it to a third party who then used it and killed someone I am pretty sure I would be liable in that instance.
"Under the US constitution, the people have a right for their papers to be secure from unreasonable searches. "
While you are correct the USA defines Customs areas as not American soil and as such they can do whatever the f' they want. They routinely use this excuse to hold people without any charges or rights for some years now.
The thing that gets me is I have been to the USA a number of times. Prior owning a laptop I often had a wallet with personal details and maybe an address book/filo-fax.
Will customs copy these when you cross over the border? I don't see a distinction between the two. Ok checking to ensure it is safe is one thing I can understand but physically copying the data is out of order.
I guess you missed the bit that said just using Notes as an email client is a waste?
I am not sure where your lag is. You mention replicating, which would be network transfer. You can configure Notes to limit this if you are on a slow connection. You can also have it run as Basic client if you don't want all the eclipse stuff switched off if your machine can't handle it.
Your wrong on all accounts on your last paragraph.
What they basically mean is they are certifying it for that platform. It can work on most versions of Linux with some tweaking but if you came across any issues they would not be supported.
6.5 was made back in 2003. Of course it is better. Most of the FUD being spouted is from people using older versions of Notes, or having to use applications written by people not qualified to write them (mainly because it is as easy to write as VB). Or worse still they spend all that money and only use it for email.
R8 is pretty much sitting on top of Eclipse. You still have notes backend but you can work with composite applications either as an NSF or as plugins. 8.1 even allows you to link to Google widgets within the client.
R8 works in Linux already (Designer client is scheduled for 8.5). What IBM is doing is certifying the client under Ubuntu 7.
"what you are seeing is Microsoft improving conformance with the specifications."
erm no. By default IE8 is going to render non-compliant and you have to put the tag in to get it to switch on. If they were improving conformance they would do the reverse.
As I understand it, if you are following the standards for coding the pages IE8 will not respect those standards unless you have this tag in your web page. So you are forcing the tag onto the developers in order to display their material.
So it is an MS tag to say your compliant when in fact the standards which everyone uses says they are compliant. So it is not good. Personally I'd go with telling people to stop using IE8 when the rendering breaks because MS are too lazy to fix it.
Having worked with COBOL and Java I can tell you with a straight face no it isn't.
Also Java has pointers. It is just you don't have to worry about them anymore as it is handled by the JVM. Of course if you are doing any serious development in Java or if you were doing JNI development you would learn about pointers.
Nearly every head hunter I have met has no clue what they are talking about when it comes to technology. They have a few fancy buzzwords, believe what they read in the local computer mag. They also try to inflate your CV to the customer they are selling you to.
A bit like your post. I mean comments like "How can someone understand the Linux kernel without C & C++ ?". Why would anyone need to understand the linux kernel or C++ unless they were linux kernel programmers. Even so we have things called an "API" which allows developers to write to a kernel without having to know how the Kernel works or if it is even in C++.
Also your comments on Java are laughable. Java is in use in day to day objects in real life. Phones, Set top boxes, Cars. It is not just web servers. There are even operating systems and emulators in Java which run fine. Go read up on JIT and stop living in the 90's.
"In my experience, 50% could not work out how to develop a data structure for a bitmap that used palettes."
And why would they? Unless they were looking for a job that does that. Seriously, if I was in an interview and they came out with the stuff you posted I would laugh at them.
I disagree with them. The flaw isn't with Java but with how it is most likely being taught to the students. They also undersell Java as a language. dot.com? seriously. And about using Java only for threading and reflection? Are they serious?
I've taught grinds to first year students in Ireland in Java (I'm SCJP 14/5) and their professors do not even allow the use of an IDE when coding. They also grade them over Java patterns and OO rather then knowledge of the language.
C/C++ have their place, but any good CS student normally learns a number of languages.
I can code in a number of languages, certified in quite a few as well and I've never used Ada. Considering both professors work for a company that sells ADA stuff it seems a little biased and uninformed on Java.
The article is kind of stating the obvious. What really helps you learn though is having an interest in the subject matter.
Reading something over and over that is boring takes longer to learn but you learn. Your brain pretty much goes "Hey this stuff is boring and doesn't look important, but he keeps repeating it so it must be important".
What would be nice is more information on metacognition. This is art of studying how to study.
The bombshell is further into the reading. The bit about RoR having an average uptime of 4 minutes would probably need clarification by the creator of RoR.
Slashdot Mirror
The point I am making isn't that you do or don't have to tell the company about the flaw. The issue is that these companies are selling the flaws to the highest bidder. In such case yes you should be held liable for any damages arising out of you profiting in giving that information out.
"If I knew how to break into your house, then told you that I was able to but won't tell you how unless you paid up a fee?"
That in itself is a fair point. I mean what if you are working in the security industry and are trying to secure someones business. You certainly aren't going to do it for free.
The issue here is more like after the home owner saying they don't have the money or can't pay that you sell the information to whoever wants it. That I am pretty sure is illegal.
IANAL. If I had a security exploit that if used could get someone killed and I refused to hand it over and instead sold it to a third party who then used it and killed someone I am pretty sure I would be liable in that instance.
"Under the US constitution, the people have a right for their papers to be secure from unreasonable searches. "
While you are correct the USA defines Customs areas as not American soil and as such they can do whatever the f' they want. They routinely use this excuse to hold people without any charges or rights for some years now.
The thing that gets me is I have been to the USA a number of times. Prior owning a laptop I often had a wallet with personal details and maybe an address book/filo-fax.
Will customs copy these when you cross over the border? I don't see a distinction between the two. Ok checking to ensure it is safe is one thing I can understand but physically copying the data is out of order.
So rather then a firebomb you have a nice broken bottle type knife to bring on the plane? Or are they shipping everything in Plastic these days?
While your comment was half in jest/spite ..
http://www-10.lotus.com/ldd/r5fixlist.nsf
I guess you missed the bit that said just using Notes as an email client is a waste?
I am not sure where your lag is. You mention replicating, which would be network transfer. You can configure Notes to limit this if you are on a slow connection. You can also have it run as Basic client if you don't want all the eclipse stuff switched off if your machine can't handle it.
Your wrong on all accounts on your last paragraph.
randomly loose data? What version of notes client are you talking about?
If R8 is running slow then its something wrong with your system or the applications coded. I have it running without any lag on 2GB, 2 cores system.
http://www-1.ibm.com/support/docview.wss?uid=swg27009485
Linux versions supported:
# SUSE Linux Enterprise Desktop (SLED) 10 XGL
# RedHat Enterprise Linux (RHEL) 5 - Note: AIGLX and SELinux must be disabled
This just means if they find a bug they will fix it if they can reproduce on those platforms.
As I understand since R7 the HTML renderer is basically IE embedded.
What they basically mean is they are certifying it for that platform. It can work on most versions of Linux with some tweaking but if you came across any issues they would not be supported.
Symphony/Notes will allow you to open Smartsuite documents and resave them in opendocument format.
I'm surprised if anyone uses smartsuite anymore, it hasn't had any serious update since 2000.
6.5 was made back in 2003. Of course it is better. Most of the FUD being spouted is from people using older versions of Notes, or having to use applications written by people not qualified to write them (mainly because it is as easy to write as VB). Or worse still they spend all that money and only use it for email.
R8 is pretty much sitting on top of Eclipse. You still have notes backend but you can work with composite applications either as an NSF or as plugins. 8.1 even allows you to link to Google widgets within the client.
R8 works in Linux already (Designer client is scheduled for 8.5). What IBM is doing is certifying the client under Ubuntu 7.
"what you are seeing is Microsoft improving conformance with the specifications."
erm no. By default IE8 is going to render non-compliant and you have to put the tag in to get it to switch on. If they were improving conformance they would do the reverse.
As I understand it, if you are following the standards for coding the pages IE8 will not respect those standards unless you have this tag in your web page. So you are forcing the tag onto the developers in order to display their material.
So it is an MS tag to say your compliant when in fact the standards which everyone uses says they are compliant. So it is not good. Personally I'd go with telling people to stop using IE8 when the rendering breaks because MS are too lazy to fix it.
"Java is the new COBOL"
Having worked with COBOL and Java I can tell you with a straight face no it isn't.
Also Java has pointers. It is just you don't have to worry about them anymore as it is handled by the JVM. Of course if you are doing any serious development in Java or if you were doing JNI development you would learn about pointers.
Nearly every head hunter I have met has no clue what they are talking about when it comes to technology. They have a few fancy buzzwords, believe what they read in the local computer mag. They also try to inflate your CV to the customer they are selling you to.
A bit like your post. I mean comments like "How can someone understand the Linux kernel without C & C++ ?". Why would anyone need to understand the linux kernel or C++ unless they were linux kernel programmers. Even so we have things called an "API" which allows developers to write to a kernel without having to know how the Kernel works or if it is even in C++.
Also your comments on Java are laughable. Java is in use in day to day objects in real life. Phones, Set top boxes, Cars. It is not just web servers. There are even operating systems and emulators in Java which run fine. Go read up on JIT and stop living in the 90's.
"In my experience, 50% could not work out how to develop a data structure for a bitmap that used palettes."
And why would they? Unless they were looking for a job that does that. Seriously, if I was in an interview and they came out with the stuff you posted I would laugh at them.
Sure don't you know that C++ was just a cruel joke by the creators. ;)
http://www.phy.duke.edu/~rgb/Beowulf/c++_interview/c++_interview.html
I disagree with them. The flaw isn't with Java but with how it is most likely being taught to the students. They also undersell Java as a language. dot.com? seriously. And about using Java only for threading and reflection? Are they serious?
I've taught grinds to first year students in Ireland in Java (I'm SCJP 14/5) and their professors do not even allow the use of an IDE when coding. They also grade them over Java patterns and OO rather then knowledge of the language.
C/C++ have their place, but any good CS student normally learns a number of languages.
I can code in a number of languages, certified in quite a few as well and I've never used Ada. Considering both professors work for a company that sells ADA stuff it seems a little biased and uninformed on Java.
"You don't. If unicode domain names becomes commonplace, why would not browsers adapt to displaying them 'properly'?"
Why don't they now?
However even if your correct, it would be easy to make anti-phishing systems to show the difference.
The article is kind of stating the obvious. What really helps you learn though is having an interest in the subject matter.
Reading something over and over that is boring takes longer to learn but you learn. Your brain pretty much goes "Hey this stuff is boring and doesn't look important, but he keeps repeating it so it must be important".
What would be nice is more information on metacognition. This is art of studying how to study.
As I understand it the browser would handle this.
so your URL would look like.
www.myb%10%72nk.com
or something like that.
The bombshell is further into the reading. The bit about RoR having an average uptime of 4 minutes would probably need clarification by the creator of RoR.