So if the cloaking worked out to say 95% then night vision goggles could probably be used as a countermeasure? If so, how well do you think it might work (I'm guessing 100%)?
If we don't let Japan and China learn about the technology, who will build it? All joking aside, countermeasures already exist and in many cases are far more advanced. Either way India is not considered an enemy http://www.washingtonpost.com/wp-dyn/content/artic le/2006/04/19/AR2006041902480.html. If you're concerned about outsourcing, don't be, let the Indians go to school in the US, that way at least our universities don't rot from lack of use.
Oh, he wants to work at Microsoft, this just reinforces my idea that he is holding on to this for heightened recognition. Had he released his info on day 1, it would be difficult to tell him apart from every plugger on/. running out to write their own version.
I remember watching Black Hawk Down, and noticing that this troop (a motley crew of special forces) had the benefit of night vision effectively throughout the movie. When watching it I thoroughly believed that this was an advantage that made them successful in surviving the event. Imagine to armies fighting with night vision while one side has their special forces being cloaked.
sorry, that was rude, point is though that in a proprietary world "good net citizenship" is just that. If good net citizenship is not profitable f*ck it, symantec or any other AV co. would be sitting on this getting their panties wet pushing for the cover of Time magazine or front page of WSJ, this kid sits on it for a day and you're ready to lynch him.
Now, why would I want to be elite in anything related to Vista? That's like being a world class expert on security in prison showers.
ROFLMAO
Sitting on it and gloating is lame. I guess it's Ok - both you and lonescu will most likely reach the level of maturity required to understand this by your mid-20th.
This whole post is just flamebait, he can build a very lucrative consulting business out of this, or get hired by a company that will pay him the salary he's worth, I mean for all you know he's working at Kinkos. Besides don't you think this is a little odd considering Vista is shipping with it's own antivirus, almost seems like M$s AV could be guaranteed to work better than anything else. Either way the nature of the bug is beyond our understanding and you or I are really in no place to judge his merit.
The boys in Redmond own this code, no one else. You don't know what his correspondence with them has been, personally I wouldn't let M$ off without a nice payout, aside from the fact that they will likely patch it on their own or write some software that does the same as lonescu's. What lonescu most likely gets out of this is nothing more than recognition and he deserves it. And tomorrow if you get some malware on your Vista box that simply can't be removed, you know where to get a tool that may help. On that note have you considered the fact that maybe he doesn't fully understand the depth of what he's discovered yet? Maybe releasing now, would be premature, what if his software is also vulnerable to this problem?
As it is, he is displaying a typical 1337 attitude. "Hahaha, I know how to compromise your system, but I am not going to tell you!".
This is not true, right now lonescu is a world class security expert on Windows Vista, if he didn't play his cards close to his chest he'd be a damn fool. He is elite, you're not, get over it.
no one is a low life for holding on to their code. this guy just cracked the one of the strongest features of Vista. A system that took five years and a billion dollars to produce. About two months after public release and this guy has broken the "heightened security" wide open. If Symantec wants the code they should pay for it or figure it out themselves. Symantec doesn't give me anything for free. If you're using Vista, then you're an early adopter and need to deal with that, just thank this "low life" for providing you with a binary tool you can use if you get into trouble.
no it's worse than crap when it can be exploited so easily. I read it as malware can become a "protected process", as in protected processes that the administrator doesn't have control over.
Once I went here http://rdf.dmoz.org/rdf/
I downloaded the "rss-aol.rdf" file (it's huge).
I isolated the technology section.
Stripped it down to just it's links (http://blah.com/blah.rss).
Then I loaded them all in to my rss reader (~1000 or more 2003)
Then I finally decided that getting a story published on slashdot wasn't really that important.
... financing education we will spend tax dollars on policing students, in order to save a dying industry? This is heavily F'd up, pell grants and loans don't pay for that much as it is. This deal must be great for the RIAA, less students receive funding to get into school (less piracy), and that money is spent harrassing those that can still afford to get there. Once again our tax dollars are going to work for industry rather than the people.
Slashdot Mirror
Doesn't seem like dunc-tank has done anything since '06, I might be mistaken but here's their press release
http://www.dunc-tank.org/press.html
What if I went outside of the package tree? Should I uninstall those first or will they get wiped out by apt anyways?
Hey if you were using FF 1.0 you'd be happy too.
Openoffice 2.0
firef.. er Iceweasel 2.0
php5
life is good again.
So if the cloaking worked out to say 95% then night vision goggles could probably be used as a countermeasure? If so, how well do you think it might work (I'm guessing 100%)?
If we don't let Japan and China learn about the technology, who will build it? All joking aside, countermeasures already exist and in many cases are far more advanced. Either way India is not considered an enemy http://www.washingtonpost.com/wp-dyn/content/artic le/2006/04/19/AR2006041902480.html. If you're concerned about outsourcing, don't be, let the Indians go to school in the US, that way at least our universities don't rot from lack of use.
Oh, he wants to work at Microsoft, this just reinforces my idea that he is holding on to this for heightened recognition. Had he released his info on day 1, it would be difficult to tell him apart from every plugger on /. running out to write their own version.
I remember watching Black Hawk Down, and noticing that this troop (a motley crew of special forces) had the benefit of night vision effectively throughout the movie. When watching it I thoroughly believed that this was an advantage that made them successful in surviving the event. Imagine to armies fighting with night vision while one side has their special forces being cloaked.
That's funny, I got to get out of this country. God help me if I become successful at something.
Paying for education is cheaper and more preferable than paying welfare or the costs of operating a prison.
Did you notice that they aren't here today? :)
sorry, that was rude, point is though that in a proprietary world "good net citizenship" is just that. If good net citizenship is not profitable f*ck it, symantec or any other AV co. would be sitting on this getting their panties wet pushing for the cover of Time magazine or front page of WSJ, this kid sits on it for a day and you're ready to lynch him.
If you weren't using Microsoft's products you really wouldn't give a rats flippen ass about this. I don't.
ROFLMAO
Sitting on it and gloating is lame. I guess it's Ok - both you and lonescu will most likely reach the level of maturity required to understand this by your mid-20th.This whole post is just flamebait, he can build a very lucrative consulting business out of this, or get hired by a company that will pay him the salary he's worth, I mean for all you know he's working at Kinkos. Besides don't you think this is a little odd considering Vista is shipping with it's own antivirus, almost seems like M$s AV could be guaranteed to work better than anything else. Either way the nature of the bug is beyond our understanding and you or I are really in no place to judge his merit.
I thoroughly hate credit cards and love OSS, seems to be a conflict of theories somewhere.
The boys in Redmond own this code, no one else. You don't know what his correspondence with them has been, personally I wouldn't let M$ off without a nice payout, aside from the fact that they will likely patch it on their own or write some software that does the same as lonescu's. What lonescu most likely gets out of this is nothing more than recognition and he deserves it. And tomorrow if you get some malware on your Vista box that simply can't be removed, you know where to get a tool that may help. On that note have you considered the fact that maybe he doesn't fully understand the depth of what he's discovered yet? Maybe releasing now, would be premature, what if his software is also vulnerable to this problem?
As it is, he is displaying a typical 1337 attitude. "Hahaha, I know how to compromise your system, but I am not going to tell you!".This is not true, right now lonescu is a world class security expert on Windows Vista, if he didn't play his cards close to his chest he'd be a damn fool. He is elite, you're not, get over it.
after a $b investment over five years from the dominant player in operating systems, yes "The WOW starts Now!"
no one is a low life for holding on to their code. this guy just cracked the one of the strongest features of Vista. A system that took five years and a billion dollars to produce. About two months after public release and this guy has broken the "heightened security" wide open. If Symantec wants the code they should pay for it or figure it out themselves. Symantec doesn't give me anything for free. If you're using Vista, then you're an early adopter and need to deal with that, just thank this "low life" for providing you with a binary tool you can use if you get into trouble.
no it's worse than crap when it can be exploited so easily. I read it as malware can become a "protected process", as in protected processes that the administrator doesn't have control over.
Once I went here http://rdf.dmoz.org/rdf/
I downloaded the "rss-aol.rdf" file (it's huge).
I isolated the technology section.
Stripped it down to just it's links (http://blah.com/blah.rss).
Then I loaded them all in to my rss reader (~1000 or more 2003)
Then I finally decided that getting a story published on slashdot wasn't really that important.
... financing education we will spend tax dollars on policing students, in order to save a dying industry? This is heavily F'd up, pell grants and loans don't pay for that much as it is. This deal must be great for the RIAA, less students receive funding to get into school (less piracy), and that money is spent harrassing those that can still afford to get there. Once again our tax dollars are going to work for industry rather than the people.
Funny, I'm working on my resume right now. ;)
lol, ok I hate that kind of work, that's why computers are so cool, I'm thinking about 35-45 hours a week.
That's an awesome quote!
define work work work :)