Google's indexes the web.
If you have a problem with that, put a robots.txt file on your site. Google even explains how to do that in it's own help pages. This is all just a publicity stunt.
And of course, there exist no cgi scripts which use shells to do something, right?
If you find a vulnerability in a CGI script, there's worse things you can do than a fork attack. Infact, if you wanted to retain your remote control over the server, the last thing you want to do is give it a denial of service like this.
On the 3 distros listed as vulnerable, the default settings would stop any remote person from having a chance of getting a shell open on the box to perform the fork attack in the first place.
If a person has enough access to the machine to be able to "forkbomb" it, then there's plenty of other nasty things you could do to it.
Wow I bet it's just like in CSI they will be able to zoom up 10000% on the digital image, 'sharpen' it and read all sorts of interesting things off the back of things after rotating them virtually.
The point is, when you upgrade your computer and if you decide to change from AMD<->Intel, you can save money by not needing to buy a new motherboard.
If all the new motherbaords start coming out with this as standard in a few years, then computer upgrades will be less restritive for the same cost.
This must be the third article about Firefox/Mozilla development process problems this week.
Aren't these kinds of problems going on with most projects, including proprietry software projects?
I can't help but feel as though people are just trying to run a smear campaign against the Mozilla Corporation.
How easy would it be to edit the data on the strips?
For example, would it be possible for me to take my magnetic bus ticket and easily add another 10 trips to it?
Every big company turns evil sooner or later.. it is only matter of time.
What about IBM? They used to be evil. Now they are helping the open source community and fighting off scum like SCO. They still have their own agenda, but they're not evil like it used to be.
Surely the first image to appear in a web browser was one during the development of the browser. You don't just chuck in some code and wait for your users to tell you if it loads images or not. Images would have been one of the first things tested.
Even the standards for displaying the images were thought up and hopefully tested long before the first image compatable web browser was made.
not having RTFA, I think that what they are trying to patent is something like: if ( val1 isNot val2 ) {...
to be interpreted as: if ( *val1 != *val2 ) {...
I really don't see how this is a problem, since I doubt people are really stupid enough to type a whole extra character. It's just the Microsoft way (TM) of making things more complex.
All the books, all the online guides, all existing source code and all the lecturers will still teach pointers the good ol' fashion way.
If Microsoft wants to waste money on something that nobody will ever want, use or need, that's fine with me, as long as they then don't go on to say "Hey, you stole our isNot code and made it better, then made it available to the general public without giving us money, expect a C&D notice from our lawyers."
If you don't trust Windows Update to do anything right, I know I don't, you can use the Microsoft Baseline Security Analyzer to give you a list of what needs updating, and all the relevant information, so you can download the patches for yourself. I use this so I can keep copies of all the patches needed on my hard drive and can install them all without connecting to the internet.
Another good way is to load up Nessus and have a good crack at one of your windows boxes.
Using a modified DES Cracker, for the small sum of up to $38M, SHA-1 can be broken in 56 hours, with current computing power.
Is that assuming that that the collision will be found on the last (or in this case, 590,295,810,358,705,651,712nd time) try? Because statistically it's just as likely you will find a collision on the first try as you are on the last try.
Of course you can hard code an IP address into a program. But these places are notorious for not having static IP's.
And crc'ing the index.html isn't always helpful either, since very often these places are using an *identical* layout and code to the real banks on their main page, also, they're likely to have small changes on them regularly, just like real banks, that would make verifying it with crc a nightmare.
Once these sites get hit they redirect the dns towards legitamate services and change addresses.
So this will probably just end up DDoS'ing the real banks instead of the fake ones, these fake banks move around a lot and create extra damage in their wake as a result of something like this.
Fighting fire with fire just doesn't work like it should.
I've had my electric toothbrush that charges without contact for years. It's not very special. It's just a magnetic field that works like the two parts of a transformer.
I am a Christian, I believe in both Creationism and Evolution. I believe that Genesis is poetic and not supposed to be taken literally.
Religion discusses who created the world and why, where science explains how and when it happened. I don't believe that the big-bang, evolution or other popular scientific theories rule out any of that, and I'm a scientist.
A lot of Christians I know do not rule out these scientific theories either. I fail to see how this sticker is 'creationist'. The theory that the Earth revolves around the Sun is not a 'fact' either, since we have no way of proving that the Earth isn't the central pivot point of the entire universe.
In hundreds of years time evolution may be dismissed for a more accurate model.
Thinking that you can be more right than someone else is a philosophical misconception.
Slashdot Mirror
Google's indexes the web.
If you have a problem with that, put a robots.txt file on your site. Google even explains how to do that in it's own help pages.
This is all just a publicity stunt.
Seriously, the top 2% isn't that special.
There are numerous other IQ societies that will only accept entrants with IQ's in the top 0.x%
Maybe Google will sponsor the triple-9 society or some other higher IQ society to counteract this? (people with IQ's in the 99.9 percentile)
And of course, there exist no cgi scripts which use shells to do something, right?
If you find a vulnerability in a CGI script, there's worse things you can do than a fork attack. Infact, if you wanted to retain your remote control over the server, the last thing you want to do is give it a denial of service like this.
On the 3 distros listed as vulnerable, the default settings would stop any remote person from having a chance of getting a shell open on the box to perform the fork attack in the first place.
If a person has enough access to the machine to be able to "forkbomb" it, then there's plenty of other nasty things you could do to it.
Is NPR some kind of drug? If so where can I get some? I wan't to be on NPR too.
Wow I bet it's just like in CSI they will be able to zoom up 10000% on the digital image, 'sharpen' it and read all sorts of interesting things off the back of things after rotating them virtually.
Will businesses with virtually infinite money just use this to break encryption and destroy their competitors?
The point is, when you upgrade your computer and if you decide to change from AMD<->Intel, you can save money by not needing to buy a new motherboard.
If all the new motherbaords start coming out with this as standard in a few years, then computer upgrades will be less restritive for the same cost.
This must be the third article about Firefox/Mozilla development process problems this week.
Aren't these kinds of problems going on with most projects, including proprietry software projects?
I can't help but feel as though people are just trying to run a smear campaign against the Mozilla Corporation.
Anything as much as a difference in the atmospheric pressure around the Google campus makes the front page on slashdot.
Google has a campus?! Someone ought to submit a Slashdot story about this.
How easy would it be to edit the data on the strips?
For example, would it be possible for me to take my magnetic bus ticket and easily add another 10 trips to it?
Every big company turns evil sooner or later.. it is only matter of time.
What about IBM? They used to be evil. Now they are helping the open source community and fighting off scum like SCO. They still have their own agenda, but they're not evil like it used to be.
I hope the site isn't hosted using one of those hard drives.
Surely the first image to appear in a web browser was one during the development of the browser. You don't just chuck in some code and wait for your users to tell you if it loads images or not. Images would have been one of the first things tested.
Even the standards for displaying the images were thought up and hopefully tested long before the first image compatable web browser was made.
Like any self-respecting user of Google, I choose to change my language in the preferences to my native language, which is Hacker.
While everything else one the site appears to work properly with this language setting, 'movie:' searches do not.
Not even searching for movies like Hackers returns any results.
Hopefully this terrible oversight will be fixed soon.
not having RTFA, I think that what they are trying to patent is something like:
if ( val1 isNot val2 ) {...
to be interpreted as:
if ( *val1 != *val2 ) {...
I really don't see how this is a problem, since I doubt people are really stupid enough to type a whole extra character. It's just the Microsoft way (TM) of making things more complex.
All the books, all the online guides, all existing source code and all the lecturers will still teach pointers the good ol' fashion way.
If Microsoft wants to waste money on something that nobody will ever want, use or need, that's fine with me, as long as they then don't go on to say "Hey, you stole our isNot code and made it better, then made it available to the general public without giving us money, expect a C&D notice from our lawyers."
If you don't trust Windows Update to do anything right, I know I don't, you can use the Microsoft Baseline Security Analyzer to give you a list of what needs updating, and all the relevant information, so you can download the patches for yourself. I use this so I can keep copies of all the patches needed on my hard drive and can install them all without connecting to the internet.
Another good way is to load up Nessus and have a good crack at one of your windows boxes.
Using a modified DES Cracker, for the small sum of up to $38M, SHA-1 can be broken in 56 hours, with current computing power.
Is that assuming that that the collision will be found on the last (or in this case, 590,295,810,358,705,651,712nd time) try?
Because statistically it's just as likely you will find a collision on the first try as you are on the last try.
...Microsoft Office is still the best. It is faster, it has less bugs, it is more stable, it look better, it is more compatible...
Let me guess; you even used MS Office for your spelling and grammar check in your post?
Of course you can hard code an IP address into a program. But these places are notorious for not having static IP's.
And crc'ing the index.html isn't always helpful either, since very often these places are using an *identical* layout and code to the real banks on their main page, also, they're likely to have small changes on them regularly, just like real banks, that would make verifying it with crc a nightmare.
Once these sites get hit they redirect the dns towards legitamate services and change addresses.
So this will probably just end up DDoS'ing the real banks instead of the fake ones, these fake banks move around a lot and create extra damage in their wake as a result of something like this.
Fighting fire with fire just doesn't work like it should.
"The boxes with Windows are less expensive than the boxes without."
This is common sense, they're paying us to help dispose of their rubbish.
I've had my electric toothbrush that charges without contact for years. It's not very special. It's just a magnetic field that works like the two parts of a transformer.
Next they'll be patenting making dumb patents.
I am a Christian, I believe in both Creationism and Evolution. I believe that Genesis is poetic and not supposed to be taken literally.
Religion discusses who created the world and why, where science explains how and when it happened. I don't believe that the big-bang, evolution or other popular scientific theories rule out any of that, and I'm a scientist.
A lot of Christians I know do not rule out these scientific theories either. I fail to see how this sticker is 'creationist'. The theory that the Earth revolves around the Sun is not a 'fact' either, since we have no way of proving that the Earth isn't the central pivot point of the entire universe.
In hundreds of years time evolution may be dismissed for a more accurate model.
Thinking that you can be more right than someone else is a philosophical misconception.