I actually watched this presentation live, and it is definitely worth checking out. Although this is a good presentation, it's not exactly the hack of the century. The guy still hasn't actually found a way around AppArmor yet so this doesn't work with machines with it enabled. Furthermore, the exploit requires local access to the machine AND have a user account already logged in.
I'm sure 99% of you already know how to do this, but if anyone is interested in protecting themselves from this type of attack regardless simply:
1. Open a Nautilus window.
2. Edit -> Preferences. Go to the Media tab.
3. Uncheck the box that is labeled "Browse media when inserted".
It sounds like this is coming along nicely, this is some truly amazing work that's being done. Unfortunately I think the team is being incredibly optimistic thinking that this treatment might be being used on humans in 5 years. I have no ties to the medical field, but it seems that whenever I hear about an excellent but experimental procedure it ends up staying in the testing phase for a very long time, if not forever, before it's approved for regular use.
Hopefully I am wrong.
If this study is in fact correct, then I would imagine part of the reason for the lower IQ could have to do with what else is typical of smokers in the 18-21 age group, partying. I'm not saying that non-smokers don't party but these are the years when many first experience frequent alcohol use, with which usually comes cigarettes since they go so great with a beer.
I would say that the cause has to be this, I would imagine that if you were to examine a group of smokers and compare their IQs to that of non-smokers at an older age you would see the gap close or even show no difference.
Anecdotal, but I smoked between the ages of 14 and 20, consumption was about a pack a day when I started and had grown to around 2.75 packs a day by the end of it last year. Even as a heavy smoker (but non-party goer) I had a 130 IQ and was pulling all A's in my tech courses at university.
If you bother to RTFA (I must be new here, right?) you'll see that it wasn't JUST an IE zero-day that was used in the attack.
"While we have identified the Internet Explorer vulnerability as one of the vectors of attack in this incident, many of these targeted attacks often involve a cocktail of zero-day vulnerabilities combined with sophisticated social engineering scenarios." - George Kurtz
So IE is partially to blame, but you can't just say that this is MS's fault.
Every time I find myself on a Windows box using any other browser I wish I could expand text boxes (like the one I'm typing in now) to be able to see my whole comment.
FYI, Google Chrome has had this functionality for a while now. I believe it's been an included feature since the alpha builds were released. Now if only I could have Adblock & NoScript for this I'd be all set:(
Looking for protected images is one of the ways that can be used to determine if the user is viewing the website; however there is another way apparently.
As you can see IE, Firefox, Safari & Chrome are all included on the vulnerable list.
NoScript will (as usual) keep you protected however.
I know I was very excited about this game for a long time. Then when I purchased it I found that I'd purchased one of the most half-finished games I'd ever played. I for one am surprised that people are still playing this horrible game.
I'm just glad I didn't bother to pay for the lifetime subscription like others who got suckered into it. Biggest waste of $60 I've ever spent.
If maybe there was some kind of test employees could take to ensure that the user is competent so that you don't have clueless employees installing Bonzi Buddy on work systems. Letting people who know what their doing have their systems customized to their liking doesn't seems like it would be a big problem, but you never know I suppose.
Hopefully this will spark a new interest for contributing to OSS projects. I hope to see other open source projects adopt this idea as well. There's good reasons to contribute now of course; however cash is much more of an incentive for most people than just the respect of some fellow OSS devs.
raise your hand if you think this will not be a major boost for pr0n industrie and adult video games?
I wouldn't be too sure about that, none of the console manufacturers even allow AO games. We're quite a ways off from pr0n video games. http://www.gamespot.com/news/6172830.html
Sounds like another case of what happened to The Pirate Bay to me. Since their servers weren't actually hosting the pirated content they weren't doing anything illegal. This event is nothing more than the same old scare tactics we've seen them do in the past.
After implementing all these changes to try to match Gmail they somehow overlooked POP? That's why I'll stick w/ Gmail as my primary service & keep my Hotmail around only for signing up for services which are likely to send a bunch of unwanted spam.
Among his alleged exploits:
* Accessing systems containing customer billing records, addresses, and credit card information
* Infecting machines at an AOL customer support call center in New Delhi, India, with a program to funnel information back to his PC
* Logging in without permission into 49 AIM instant message accounts of AOL customer support employees
* Attempting to break into an AOL customer support system containing sensitive customer information
* Engaging in a phishing attack against AOL staffers through which he gained access to more than 60 accounts from AOL employees and subcontractors
Yeah, sounds like he was JUST trying to get his account back alright.
A few years back when I was hooked on Halo 2 I signed up for Xbox Live with one of those 3-month free cards you got with certain games. I didn't have a credit card at the time to register the account with so I called my parents and used their CC info. Towards the end of the 3 months I decided to cancel the account, so I called the customer service and they told me that the account would not renew once it had expired. I had even received a confirmation e-mail regarding the closure of the account, a few months later I got a call from my mother telling me that they were still charging her credit card every month. So after calling the customer service again they said that they needed to get confirmation from the person who the account was registered to, which surprisingly somehow was not me. Somehow the account had gotten my little brother's name on it and they insisted that they needed to get his confirmation before they would close the account. My brother at the time was 13 years old and I had to have my mother call up and put my brother on the phone to give the ok just to cancel the subscription.
I've dealt with Xbox Live since and had no problems with canceling though so they seem to have fixed their problems.
FireFox was designed to be a light-weight browser so I do think that there should be a stripped down version for those who want a no bloat, lightening-fast, browser and then a full version with some extensions available to choose from.
Some features from FF v3 I would like to see though are:
A built-in UserAgent Spoofer
Customizable context menus
Although I agree it's a horrible security risk, ActiveX does have some legitimate uses so (on the Windows version) giving the option to open the page in IE may be a nice addition.
Full compliance with CSS/2/3
Fix some of the memory issues, even though they're not near as bad as some might say as you can see here.
My hopes that Vista might actually be a secure OS, I pretty much have to keep Windows around because of everyone else in my house and for gaming (WoW addict) and up until now it sounded like Vista may have been a fairly secure OS, but if they include a backdoor to the kernel for these 3rd-party vendors it's just a matter of time until it's discovered by malware developers and exploited to all hell.
Coming from a 17 year old kid, if your kids are tech-savvy at all good luck trying to monitor their online habits. On a Windoze machine "hacking" admin access is easy as pie. Then of course there's doing things such as running a web browser off of a flash drive or using a Live-CD that can get around most filters.
I consider myself a pretty hardcore gamer mostly with consoles but I did get a bad case of "WarCrack" this year and squeezed well over 1K hours onto that as well. Either way I find the opposite is true about the 40 hour game, whenever I pick-up a new game to play and expect it to last me a week or 2 I find myself putting the game down completed 10 or so hours later. I think it's a shame how easy most games are today, there are some nice challenges though still with games like Ninja Gaiden & Halo on Legendary which took a bit of time to complete. I've expected this though since it video games continue to get more and more mainstream the difficulty level will continue to fall in order to accommodate to newbie gamers.
About a year ago I couldn't wait to get my hands on my Wii ( : D ) but now that the "Next-Gen" is here I really don't care. None of the systems in this generation have really shown me anything to justify a purchase. I will be pulling for Nintendo though, it seems that at least they're trying to innovate rather than just pump out an extra 10,000,000,000,000 polygons like the others.
I'll happily stick to my PC and play games of similar quality without dropping $500 on a new system. Besides, good luck finding a halfway decent MMORPG on a console.
It's just a DVD I bought from Babbages, it's not the Super Mario Brothers Super Show (the one that actually had the parts with real people acting) the episodes are from the Super Mario Brothers series. Which is sort of unfortunate since I do prefer the Super Show, but oh well any kind of memorabilia like this deserves a spot on my DVD rack. If you're interested in it here's the link
There's another DVD, but I haven't seen that around yet, I'll have to keep a watch out for it I guess.
I'd have to say hands down my favorite video game cartoon series was the Super Mario ones. I used to watch those all the time as a kid, luckly I snagged the DVD that had something like 6-9 episodes on it. Ahh... good times.
I'm wondering if EA's getting all of these licenses so that if they eventually decide to make their own console they automatically have 100% of the sports gamers out there since they'll be left with no where else to get their fix of Madden and EA's other sports series. I myself wouldn't be influenced by that since I AM one of those people who thinks that there's little innovation in the sports games over the years and are mostly just roster upgrades, but every year Madden is one of the top selling games so I can see that most people either don't care or don't agree with me on that issue (except on SlashDot, it seems evident that I'm not alone in thinking this). So what I'm getting at is that if EA did decide to make their own console one of these generations, these exclusive deals could easily help turn the tides of console wars in their favor.
So I'm a thief because I download music? I personally don't consider that a thief. My favorite artists (Twiztid, ICP, pretty much anyone under Psychopathic Records) I have no problem buying their CD's, those I can listen to all the way through over and over again. But most albums today have 1 or 2 good songs on them and the rest suck. I'm not about to pay $12-$15 for 1 or 2 good songs. If the artists want MY money they can put togther a decent album. But buying a CD for those select tracks would be more like them ripping ME off.
And I would feel bad ripping off video game companies also for the fact that I've had a passion for video games since literally the age of 2 (yes I'm a young'n I know). So I'd appreciate it if you'd keep your statements/oppinons to yourself. Thanks
Slashdot Mirror
I actually watched this presentation live, and it is definitely worth checking out. Although this is a good presentation, it's not exactly the hack of the century. The guy still hasn't actually found a way around AppArmor yet so this doesn't work with machines with it enabled. Furthermore, the exploit requires local access to the machine AND have a user account already logged in.
I'm sure 99% of you already know how to do this, but if anyone is interested in protecting themselves from this type of attack regardless simply:
1. Open a Nautilus window.
2. Edit -> Preferences. Go to the Media tab.
3. Uncheck the box that is labeled "Browse media when inserted".
It sounds like this is coming along nicely, this is some truly amazing work that's being done. Unfortunately I think the team is being incredibly optimistic thinking that this treatment might be being used on humans in 5 years. I have no ties to the medical field, but it seems that whenever I hear about an excellent but experimental procedure it ends up staying in the testing phase for a very long time, if not forever, before it's approved for regular use. Hopefully I am wrong.
If this study is in fact correct, then I would imagine part of the reason for the lower IQ could have to do with what else is typical of smokers in the 18-21 age group, partying. I'm not saying that non-smokers don't party but these are the years when many first experience frequent alcohol use, with which usually comes cigarettes since they go so great with a beer. I would say that the cause has to be this, I would imagine that if you were to examine a group of smokers and compare their IQs to that of non-smokers at an older age you would see the gap close or even show no difference. Anecdotal, but I smoked between the ages of 14 and 20, consumption was about a pack a day when I started and had grown to around 2.75 packs a day by the end of it last year. Even as a heavy smoker (but non-party goer) I had a 130 IQ and was pulling all A's in my tech courses at university.
If you bother to RTFA (I must be new here, right?) you'll see that it wasn't JUST an IE zero-day that was used in the attack.
So IE is partially to blame, but you can't just say that this is MS's fault.
Is it 2008 again?
Every time I find myself on a Windows box using any other browser I wish I could expand text boxes (like the one I'm typing in now) to be able to see my whole comment.
FYI, Google Chrome has had this functionality for a while now. I believe it's been an included feature since the alpha builds were released. Now if only I could have Adblock & NoScript for this I'd be all set :(
Looking for protected images is one of the ways that can be used to determine if the user is viewing the website; however there is another way apparently.
As you can see IE, Firefox, Safari & Chrome are all included on the vulnerable list.
NoScript will (as usual) keep you protected however.
I know I was very excited about this game for a long time. Then when I purchased it I found that I'd purchased one of the most half-finished games I'd ever played. I for one am surprised that people are still playing this horrible game. I'm just glad I didn't bother to pay for the lifetime subscription like others who got suckered into it. Biggest waste of $60 I've ever spent.
If maybe there was some kind of test employees could take to ensure that the user is competent so that you don't have clueless employees installing Bonzi Buddy on work systems. Letting people who know what their doing have their systems customized to their liking doesn't seems like it would be a big problem, but you never know I suppose.
Hopefully this will spark a new interest for contributing to OSS projects. I hope to see other open source projects adopt this idea as well. There's good reasons to contribute now of course; however cash is much more of an incentive for most people than just the respect of some fellow OSS devs.
raise your hand if you think this will not be a major boost for pr0n industrie and adult video games?
I wouldn't be too sure about that, none of the console manufacturers even allow AO games. We're quite a ways off from pr0n video games. http://www.gamespot.com/news/6172830.html
Sounds like another case of what happened to The Pirate Bay to me. Since their servers weren't actually hosting the pirated content they weren't doing anything illegal. This event is nothing more than the same old scare tactics we've seen them do in the past.
After implementing all these changes to try to match Gmail they somehow overlooked POP? That's why I'll stick w/ Gmail as my primary service & keep my Hotmail around only for signing up for services which are likely to send a bunch of unwanted spam.
A few years back when I was hooked on Halo 2 I signed up for Xbox Live with one of those 3-month free cards you got with certain games. I didn't have a credit card at the time to register the account with so I called my parents and used their CC info. Towards the end of the 3 months I decided to cancel the account, so I called the customer service and they told me that the account would not renew once it had expired. I had even received a confirmation e-mail regarding the closure of the account, a few months later I got a call from my mother telling me that they were still charging her credit card every month. So after calling the customer service again they said that they needed to get confirmation from the person who the account was registered to, which surprisingly somehow was not me. Somehow the account had gotten my little brother's name on it and they insisted that they needed to get his confirmation before they would close the account. My brother at the time was 13 years old and I had to have my mother call up and put my brother on the phone to give the ok just to cancel the subscription. I've dealt with Xbox Live since and had no problems with canceling though so they seem to have fixed their problems.
FireFox was designed to be a light-weight browser so I do think that there should be a stripped down version for those who want a no bloat, lightening-fast, browser and then a full version with some extensions available to choose from. Some features from FF v3 I would like to see though are: A built-in UserAgent Spoofer Customizable context menus Although I agree it's a horrible security risk, ActiveX does have some legitimate uses so (on the Windows version) giving the option to open the page in IE may be a nice addition. Full compliance with CSS/2/3 Fix some of the memory issues, even though they're not near as bad as some might say as you can see here.
My hopes that Vista might actually be a secure OS, I pretty much have to keep Windows around because of everyone else in my house and for gaming (WoW addict) and up until now it sounded like Vista may have been a fairly secure OS, but if they include a backdoor to the kernel for these 3rd-party vendors it's just a matter of time until it's discovered by malware developers and exploited to all hell.
Coming from a 17 year old kid, if your kids are tech-savvy at all good luck trying to monitor their online habits. On a Windoze machine "hacking" admin access is easy as pie. Then of course there's doing things such as running a web browser off of a flash drive or using a Live-CD that can get around most filters.
I consider myself a pretty hardcore gamer mostly with consoles but I did get a bad case of "WarCrack" this year and squeezed well over 1K hours onto that as well. Either way I find the opposite is true about the 40 hour game, whenever I pick-up a new game to play and expect it to last me a week or 2 I find myself putting the game down completed 10 or so hours later. I think it's a shame how easy most games are today, there are some nice challenges though still with games like Ninja Gaiden & Halo on Legendary which took a bit of time to complete. I've expected this though since it video games continue to get more and more mainstream the difficulty level will continue to fall in order to accommodate to newbie gamers.
About a year ago I couldn't wait to get my hands on my Wii ( : D ) but now that the "Next-Gen" is here I really don't care. None of the systems in this generation have really shown me anything to justify a purchase. I will be pulling for Nintendo though, it seems that at least they're trying to innovate rather than just pump out an extra 10,000,000,000,000 polygons like the others. I'll happily stick to my PC and play games of similar quality without dropping $500 on a new system. Besides, good luck finding a halfway decent MMORPG on a console.
It's just a DVD I bought from Babbages, it's not the Super Mario Brothers Super Show (the one that actually had the parts with real people acting) the episodes are from the Super Mario Brothers series. Which is sort of unfortunate since I do prefer the Super Show, but oh well any kind of memorabilia like this deserves a spot on my DVD rack. If you're interested in it here's the link
There's another DVD, but I haven't seen that around yet, I'll have to keep a watch out for it I guess.
I'd have to say hands down my favorite video game cartoon series was the Super Mario ones. I used to watch those all the time as a kid, luckly I snagged the DVD that had something like 6-9 episodes on it. Ahh... good times.
I'm wondering if EA's getting all of these licenses so that if they eventually decide to make their own console they automatically have 100% of the sports gamers out there since they'll be left with no where else to get their fix of Madden and EA's other sports series. I myself wouldn't be influenced by that since I AM one of those people who thinks that there's little innovation in the sports games over the years and are mostly just roster upgrades, but every year Madden is one of the top selling games so I can see that most people either don't care or don't agree with me on that issue (except on SlashDot, it seems evident that I'm not alone in thinking this). So what I'm getting at is that if EA did decide to make their own console one of these generations, these exclusive deals could easily help turn the tides of console wars in their favor.
So I'm a thief because I download music? I personally don't consider that a thief. My favorite artists (Twiztid, ICP, pretty much anyone under Psychopathic Records) I have no problem buying their CD's, those I can listen to all the way through over and over again. But most albums today have 1 or 2 good songs on them and the rest suck. I'm not about to pay $12-$15 for 1 or 2 good songs. If the artists want MY money they can put togther a decent album. But buying a CD for those select tracks would be more like them ripping ME off. And I would feel bad ripping off video game companies also for the fact that I've had a passion for video games since literally the age of 2 (yes I'm a young'n I know). So I'd appreciate it if you'd keep your statements/oppinons to yourself. Thanks
I myself am still sticking with the Creationism theroy as to how everything came to be.