I love how you guys take this all seriously when there is an error in OSS software but when there is 1 little error in ASP.net you call it inherently insecure and a piece of garbage.
FYI, the vulnerabilities were announced on "2004/12/15" (hardened-php). The fix was available since "15 Dec 2004".
Conclusion: Zend took AT MOST 23:59:59 to release a fix for said vulnerabilities.
Compare with Microsoft bugs, where it takes an AVERAGE of 6 months to get a vulnerability bug fixed.
In comparison, Microsoft's software "unpatched and exposed" vulnerability time is about 200 times more than Zend's.
Come on folks, announcing security vulnerabilities on a Friday in December? That's just plain mean.
Yeah, while the sysadmins are on vacation, lamers who have nothing to do WILL enjoy this christmas present!
i just hope the idiot who defaced our shared host won't strike again with this new vulnerability. I just hope he was a script kiddie looking for vulnerable servers using an automated tool.
Maybe we can relate this to something that is happening in Mexico recently. Instead of being given a share, employees are given other "comodities" (i.e. food/expense tickets, etc) that are NOT reported as the worker's salary. This means the reported salary is much lower than it actually is.
When the employee retires, they only give him a compensation regarding his REPORTED income, not the real one. This way the company saves millions by giving its employees money in a different denomination.
I *THINK* that somehow, this is what happens with stock shares... that the company is saving taxes / other payments because they give their employees other kind of money, and not cash. That's why the shares must be reported now. Obviously, companies don't like it because they see lost profit in it.
I read the diamond dust article at NanoInvestor News, and frankly it still seems mid to long term.
If you want a WORKING flat display, check this out this experimental flat display (picture) using carbon nanotubes as the electron emission source. I just glimpsed over it, but I think this was done by Motorola. At least, the dates fit (2003).
(Unfortunately for me, on the very same day, some guy posted a story about a _DIFFERENT_ kind of "ultra-flat" displays, also by Samsung, that would be available in 2005. I guess the mods confused the articles - bad luck, heh).
Anyway, the diamond dust tech seems too young for now. Samsung's nanotube displays already exist (at least experimentally).
Another great story getting ripped appart and turned into a money magnet for the producers.
If they wanted to do things like Lord of the Rings, they should have READ AND ENJOYED the book. It's no mystery that Peter Jackson was a huge fan of LOTR, and even the part where they altered a slight point of the plot was controversial. Obviously Jackson wanted to follow the spirit of the book, and try to be the most respectful of it.
But here, these producers are just USING the book for their own benefit, without even consulting the author - and worse, they put words in her mouth.
So, it's a completely different story. A mockery. It does NOT have the right to use the name "Earthsea".
They may simply answer the question: "Are you fed up with your web browser?" with: "Nope. works fine"
Oh, but I'm sure EVERYONE has heard of the infamous MyDoom virus, and I'm also sure that EVERYONE knows at least one person who has been infected by MORE THAN ONE of these viruses. The IE6 exploits are now famous, and people have come to accept Internet Explorer being "vulnerable to attacks", as "facts of life".
The NYTimes ad will put all of those people to consider.
On the other hand, perhaps doing an opinion survey on "what do you think about the insecurities of Internet Explorer?" would have a subliminal effect on those people searching for alternatives. Maybe we could post this on USA Today, or the Enquirer.
"Opinion survey"
* Have you been infected by a virus while browsing the internet? ()Never ()Once ()More than once ()Many times * Has you or one of your friends been infected with Spyware while browing the internet? ()Never ()Once ()More than once ()Many times
* Have you ever had to reinstall Windows (TM) due to virus or spyware problems? ()Never ()Once ()More than once () Many times
* What do you think of the latest security flaws of Microsoft Internet explorer (TM)? [3 blank lines should be printed here] * If there was a viable alternative to Microsoft Internet Explorer, would you consider about switching? () Yes () No Why? [3 blank lines should be printed here]
* Have you ever heard of the Firefox browser? ()No ()Once () More than once * If you have tried it, mention 3 things you didn't like about it. 1. [blank line] 2. [blank line] 3. [blank line]
If you like to cooperate in this survey, please visit www.browsersurvey.com. No personal information required.
---- So, I think that a "survey" (heheh) like this would really have an effect on the masses. What do you think?
My question is: Why couldn't wireless communications use public key encryption in the first pla - THIS POST BANNED BY THE US SECURITY EXPORT REGULATIONS - oh... nevermind.
Evil hacking (from defacing websites and destroying information to stealing credit card info) should be treated as normal crimes (destruction of private property, fraud, stealing, etc).
I remember the times when "hacking" meant to get around limitations of the system. Ah, glorious times. But now script kiddies,lamers who write virii and blatant mobsters are discrediting the name.
I say, send 'em to jail. They deserve it. And we need it too.
I thought the real point of p2p, as in file sharing, was the ability to search many hosts for something, even though you do not know what hosts exist, ideally without even requiring a central server the hosts must register with.
That's right... The *AA should be searching to ban P2P *NETWORKS*. That's what Napster was about, right?
An actually good moderated P2P Network would have a database of filenames, hashes and descriptions be submitted. That way, if a user shared an illegal file, the moderators could ban the user.
The point is that when copyright holders attempt to take action against those people, you all start crying "They're suing children!" So they sue the P2P networks instead, and you start crying "Unfair! Go sue the users!" So they...
So they realize that the whole system is crap, and finally accept to sell songs using P2P.
In my opinion suing sites with torrents is the way to go. That way, it'll be like the good ol' times. Underground networks with warez in the shadows , and the clean networks on the surface.
(Each line has 80 characters or fewer. The first line doesn't count -- it's a label for human readers and is ignored by the computer.)
Oh great. It was the ONLY line I could understand!
Hey I wouldn't have minded if the author wrote a *READABLE* version of the program! It looked more like a contestant for the obfuscated C programming contest.
Just remember the following logic: More options = good Less options = bad
Amen, brother! Microsoft owns windows users because they use ONLY Microsoft products, and don't know anything else.
When Windows users start enjoying _AND_ accepting free open source software running on their windows desktops, they'll start getting used to it.
Besides, saying that with FOSS Windows Software, "people won't be compelled from using Linux", is just major FUD. By being elitist, you guys are just letting Microsoft dominate the market. You're doing PRECISELY what they want you to do.
I imagine Bill-o-borg laughing inside and saying: "Pathetic fools. They're trying to save their kin, but they're only giving me MORE power. HAH HAH HAH!"
It's not windows itself what you're (supposed to be) against, but the bureaucratic closed source system that makes it buggy.
After all, a grand majority of the windows vulnerabilities are windows SOFTWARE vulnerabilities. i.e. VBScript, IE6, Outlook Express, etc etc.
Let FOSS literally invade the windows desktop. Let people customize their windows using FOSS. Then, some years from now, people will see that they have the same software for Linux. "Switch? Why not?"
Besides, there's the ReactOS project as an upcoming alternative to Windows, right? So why this hatred towards Windows?
So, the best way to get rid of Windows is by TURNING Windows into "Linux lite". How? By porting FREE Linux apps to Windows. There are great Linux apps out there. But when I wanna try them, guess what? "No Windows allowed". Seriously, what were they thinking?
As a final note, a very good reason for people to stick with windows, is NOT because of the apps it has or lacks, but because it's DAMN HARD to configure. And it's DAMN HARD to install an app.
Want more users for your product? Don't cheat on your competition. Instead, Be BETTER than it.
Give them a tutorial, and the kid whose game is the most fun, wins. (i.e. kids will VOTE)
Allowed to use ANY graphics except defamatory or sexual ones.
I also remember a MacGyver program, where they had to protect something using electronics... well maybe it's too techy, but who knows, it's just an idea.
Another one would be to make a VIRTUAL robot competition. Like CRobots or PRobots of old... make a virtual field (if it's in 3D, much better!), and the guy with the most witful robot, wins!
Hey you could give them some parameters to add "extra powers" to their robots... you know, like Yu Gi Oh cards, but with virtual electronics. When they design the robot, they program it, and then we'll see which robot wins. (Oh, it would be even MORE interesting if winning robots could get energy/supplies/weapons from the losing robots, like recycling:)
And make the prize a playsation disk or something... trust me, THAT will interest them!
Or maybe a kiss from the prettiest girl in school... that could be even MORE of an incentive;-)
As a cult researcher, I've seen similar events regarding cults. i.e. cult members suing anti-cult websites for millions of dollars, or sending hate letters... etc.
I wonder how many followers Sollog Has. But I PREDICT that the majority will sooner or later abandon him. It happens in all cults.
I mean, you can dictate/write a bunch of equations to some bored kids throwing paper planes at each other, or....
You could do some interactive presentation where a kid can ask you: "and what happens if you do this and that?" and he gets the answer plotted in color and 3D, right away (Given, that you KNOW how to use the math program, of course)
I remember my image processing classes at college. I loved to write my own filters using MATLAB and see how the resulting image looked like. This is what I loved about matlab: After using it, you realize that you can use it not only for "solving homework", but to go BEYOND what your're being taught. It's like a toy. And kids LOVE toys, don't they?:)
This is the essence of education: Let the learner LEARN by himself, and not memorize answers or formulas.
Besides, having an excellent software tool is NOT gonna hinder their learning, is it?
in the "Firefox NYT ad" /. story. One said that Firefox should talk more about IE's vulnerabilities, and another one said:
"The moment you stop speaking about yourself to speak about others, you're politically dead".
Nothing could be more true for SCO.
I love how you guys take this all seriously when there is an error in OSS software but when there is 1 little error in ASP.net you call it inherently insecure and a piece of garbage.
FYI, the vulnerabilities were announced on "2004/12/15" (hardened-php). The fix was available since "15 Dec 2004".
Conclusion: Zend took AT MOST 23:59:59 to release a fix for said vulnerabilities.
Compare with Microsoft bugs, where it takes an AVERAGE of 6 months to get a vulnerability bug fixed.
In comparison, Microsoft's software "unpatched and exposed" vulnerability time is about 200 times more than Zend's.
but it is much harder to shoot yourself in the foot
As it is much harder to shoot ANYTHING without the 1-year + lotsamoney J2EE training.
Come on folks, announcing security vulnerabilities on a Friday in December? That's just plain mean.
Yeah, while the sysadmins are on vacation, lamers who have nothing to do WILL enjoy this christmas present!
i just hope the idiot who defaced our shared host won't strike again with this new vulnerability. I just hope he was a script kiddie looking for vulnerable servers using an automated tool.
Just when I had *FINISHED* upgrading our system to 4.3.9. Seriously, couldn't they choose a more appropriate timing?
:-/
Oh well... here goes another one.
ahhah nowik knowh owthe micro softc
dkeys gotpu blish edwit hnobo dynot
icing
Hello - the title of this /. article is misleading...
:-o :'(
Oh no! what a scandal!
I can't believe such a thing happened in slashdot! We're ruined
(lol)
Maybe we can relate this to something that is happening in Mexico recently. Instead of being given a share, employees are given other "comodities" (i.e. food/expense tickets, etc) that are NOT reported as the worker's salary. This means the reported salary is much lower than it actually is.
When the employee retires, they only give him a compensation regarding his REPORTED income, not the real one. This way the company saves millions by giving its employees money in a different denomination.
I *THINK* that somehow, this is what happens with stock shares... that the company is saving taxes / other payments because they give their employees other kind of money, and not cash. That's why the shares must be reported now. Obviously, companies don't like it because they see lost profit in it.
Someone correct me if I'm wrong, please.
I read the diamond dust article at NanoInvestor News, and frankly it still seems mid to long term.
If you want a WORKING flat display, check this out this experimental flat display (picture) using carbon nanotubes as the electron emission source. I just glimpsed over it, but I think this was done by Motorola. At least, the dates fit (2003).
Recently, Samsung's Korean research achieved the same goal, and apparently they're ready for mass production. I told this in an earlier post elsewhere. They plan to distribute their nanodisplays around 2006.
Here's a PDF about Samsung's nanotech displays.
(Unfortunately for me, on the very same day, some guy posted a story about a _DIFFERENT_ kind of "ultra-flat" displays, also by Samsung, that would be available in 2005. I guess the mods confused the articles - bad luck, heh).
Anyway, the diamond dust tech seems too young for now. Samsung's nanotube displays already exist (at least experimentally).
Another great story getting ripped appart and turned into a money magnet for the producers.
If they wanted to do things like Lord of the Rings, they should have READ AND ENJOYED the book. It's no mystery that Peter Jackson was a huge fan of LOTR, and even the part where they altered a slight point of the plot was controversial. Obviously Jackson wanted to follow the spirit of the book, and try to be the most respectful of it.
But here, these producers are just USING the book for their own benefit, without even consulting the author - and worse, they put words in her mouth.
So, it's a completely different story. A mockery. It does NOT have the right to use the name "Earthsea".
They may simply answer the question: "Are you fed up with your web browser?" with: "Nope. works fine"
Oh, but I'm sure EVERYONE has heard of the infamous MyDoom virus, and I'm also sure that EVERYONE knows at least one person who has been infected by MORE THAN ONE of these viruses. The IE6 exploits are now famous, and people have come to accept Internet Explorer being "vulnerable to attacks", as "facts of life".
The NYTimes ad will put all of those people to consider.
On the other hand, perhaps doing an opinion survey on "what do you think about the insecurities of Internet Explorer?" would have a subliminal effect on those people searching for alternatives. Maybe we could post this on USA Today, or the Enquirer.
"Opinion survey"
* Have you been infected by a virus while browsing the internet? ()Never ()Once ()More than once ()Many times
* Has you or one of your friends been infected with Spyware while browing the internet?
()Never ()Once ()More than once ()Many times
* Have you ever had to reinstall Windows (TM) due to virus or spyware problems?
()Never ()Once ()More than once () Many times
* What do you think of the latest security flaws of Microsoft Internet explorer (TM)?
[3 blank lines should be printed here]
* If there was a viable alternative to Microsoft Internet Explorer, would you consider about switching? () Yes () No Why? [3 blank lines should be printed here]
* Have you ever heard of the Firefox browser?
()No ()Once () More than once
* If you have tried it, mention 3 things you didn't like about it.
1. [blank line]
2. [blank line]
3. [blank line]
If you like to cooperate in this survey, please visit www.browsersurvey.com. No personal information required.
----
So, I think that a "survey" (heheh) like this would really have an effect on the masses. What do you think?
My question is: Why couldn't wireless communications use public key encryption in the first pla - THIS POST BANNED BY THE US SECURITY EXPORT REGULATIONS - oh... nevermind.
Evil hacking (from defacing websites and destroying information to stealing credit card info) should be treated as normal crimes (destruction of private property, fraud, stealing, etc).
I remember the times when "hacking" meant to get around limitations of the system. Ah, glorious times. But now script kiddies,lamers who write virii and blatant mobsters are discrediting the name.
I say, send 'em to jail. They deserve it. And we need it too.
From the website:
:D
HTTP/1.1 503 - Server Slashdotted
Be nice to the SourceForge mirror.
Cool! Now slashdotting has an official HTTP response!
I thought the real point of p2p, as in file sharing, was the ability to search many hosts for something, even though you do not know what hosts exist, ideally without even requiring a central server the hosts must register with.
That's right... The *AA should be searching to ban P2P *NETWORKS*. That's what Napster was about, right?
An actually good moderated P2P Network would have a database of filenames, hashes and descriptions be submitted. That way, if a user shared an illegal file, the moderators could ban the user.
Technically, That's P2P, mind you.
The point is that when copyright holders attempt to take action against those people, you all start crying "They're suing children!" So they sue the P2P networks instead, and you start crying "Unfair! Go sue the users!" So they...
So they realize that the whole system is crap, and finally accept to sell songs using P2P.
In my opinion suing sites with torrents is the way to go. That way, it'll be like the good ol' times. Underground networks with warez in the shadows , and the clean networks on the surface.
From the article:
(Each line has 80 characters or fewer. The first line doesn't count -- it's a label for human readers and is ignored by the computer.)
Oh great. It was the ONLY line I could understand!
Hey I wouldn't have minded if the author wrote a *READABLE* version of the program! It looked more like a contestant for the obfuscated C programming contest.
Just remember the following logic:
More options = good
Less options = bad
Amen, brother! Microsoft owns windows users because they use ONLY Microsoft products, and don't know anything else.
When Windows users start enjoying _AND_ accepting free open source software running on their windows desktops, they'll start getting used to it.
Besides, saying that with FOSS Windows Software, "people won't be compelled from using Linux", is just major FUD. By being elitist, you guys are just letting Microsoft dominate the market. You're doing PRECISELY what they want you to do.
I imagine Bill-o-borg laughing inside and saying: "Pathetic fools. They're trying to save their kin, but they're only giving me MORE power. HAH HAH HAH!"
It's not windows itself what you're (supposed to be) against, but the bureaucratic closed source system that makes it buggy.
After all, a grand majority of the windows vulnerabilities are windows SOFTWARE vulnerabilities. i.e. VBScript, IE6, Outlook Express, etc etc.
Let FOSS literally invade the windows desktop. Let people customize their windows using FOSS. Then, some years from now, people will see that they have the same software for Linux. "Switch? Why not?"
Besides, there's the ReactOS project as an upcoming alternative to Windows, right? So why this hatred towards Windows?
So, the best way to get rid of Windows is by TURNING Windows into "Linux lite". How? By porting FREE Linux apps to Windows. There are great Linux apps out there. But when I wanna try them, guess what? "No Windows allowed". Seriously, what were they thinking?
As a final note, a very good reason for people to stick with windows, is NOT because of the apps it has or lacks, but because it's DAMN HARD to configure. And it's DAMN HARD to install an app.
Want more users for your product? Don't cheat on your competition. Instead, Be BETTER than it.
Hey, why not making FLASH games? Or animations?
:)
;-)
Give them a tutorial, and the kid whose game is the most fun, wins. (i.e. kids will VOTE)
Allowed to use ANY graphics except defamatory or sexual ones.
I also remember a MacGyver program, where they had to protect something using electronics... well maybe it's too techy, but who knows, it's just an idea.
Another one would be to make a VIRTUAL robot competition. Like CRobots or PRobots of old... make a virtual field (if it's in 3D, much better!), and the guy with the most witful robot, wins!
Hey you could give them some parameters to add "extra powers" to their robots... you know, like Yu Gi Oh cards, but with virtual electronics. When they design the robot, they program it, and then we'll see which robot wins. (Oh, it would be even MORE interesting if winning robots could get energy/supplies/weapons from the losing robots, like recycling
And make the prize a playsation disk or something... trust me, THAT will interest them!
Or maybe a kiss from the prettiest girl in school... that could be even MORE of an incentive
"Well Johnson, we found the latest build of Firefox on your machine and a copy of OpenOffice. Clear out your desk by noon"
The name wasn't Johnson. It was "Mr. Anderson".
"Firefox requires a plugin to view this webpage. Click to install".
/user:admin.
Click...
installing Sun Java runtime environment...
what? Not enough privileges? =-/
OK I try again. This time, I use RUNAS
Same error! >:(
Seriously, who invented this Windows crap?
As a cult researcher, I've seen similar events regarding cults. i.e. cult members suing anti-cult websites for millions of dollars, or sending hate letters... etc.
I wonder how many followers Sollog Has. But I PREDICT that the majority will sooner or later abandon him. It happens in all cults.
That's why they're called blackboreds! =P
:)
I mean, you can dictate/write a bunch of equations to some bored kids throwing paper planes at each other, or....
You could do some interactive presentation where a kid can ask you: "and what happens if you do this and that?" and he gets the answer plotted in color and 3D, right away (Given, that you KNOW how to use the math program, of course)
I remember my image processing classes at college. I loved to write my own filters using MATLAB and see how the resulting image looked like. This is what I loved about matlab: After using it, you realize that you can use it not only for "solving homework", but to go BEYOND what your're being taught. It's like a toy. And kids LOVE toys, don't they?
This is the essence of education: Let the learner LEARN by himself, and not memorize answers or formulas.
Besides, having an excellent software tool is NOT gonna hinder their learning, is it?
it's called "graphene" (in French), for which he discovered interesting properties.
Graphene's akin to the new carbon nanotubes recently used to make ultra-fast transistors and other cool stuff.