It's interesting considering the first offer was kept secret, that the stock peaked and then rapidly tanked right before Microsofts second offer, it like someone quietly bought the shares and then sold rapidly to provoke a fall in price at which point MS stepped in and made an offer for 60% per share..:)
"PJ: This article is either slightly offensive due to the fear mongering, or funny, depending on your mood, but the bottom line is, at least they begin to comprehend that the GPL does have to be respected. You can't just grab the code and do whatever you want with it. So that's progress.
But imagine an article that noticed the Microsoft EULA and decided that the risk of using the software was too high because you can't do whatever you want with the software, due to the EULA. You can't do whatever you want with most software, proprietary or open source/free software. Anyway, be aware of a couple of things.
One, Linux comes to you under GPLv2, not v3. Second, under either license, there are no restrictions on internal use, only for distribution. Three, the rules for certain embedded products are not the same as for software that is intended to continue to be developed and modified. Finally, the 'payment', so to speak, for mixing GPL'd software in your own code in your distribution or product isn't money. It's code. That's the deal. There are no hidden gotchas. Just read the license.]
"at least we might have a decent amount of cross-browser standards in a few years time, as opposed to none if Microsoft simply hadn't bothered"
Well , they could have bothered while they were about cloning Netscape and making running any other browser a jolting experience and preventing Netscale from sabotaging their protocol extensions. Or in english, making web pages not render correctly in other peoples browsers..:)
"a leading trade group, said that U.S. intelligence officials have told him that the PLA in 2003 gained access to a network that controlled electric power systems serving the northeastern United States"
No, what really happened was the grid was overloaded and the SQL virus was playing havoc with connectivity, then a tree fell over and tripped out a line, which spread in a domino effect all the way to Canada. A similar virus tripped out the control system in a Nuclear power plant.
"During the hour before the Aug. 14 blackout, engineers in the control center of an Ohio utility struggled to figure out why transmission lines were failing and complained that a computer failure was making it difficult to determine what was going on, transcripts of telephone communications released Wednesday show"
"Software failure cited in August blackout investigation.. A malfunctioning alarm system may have played a big role in the outage Dan Verton Nov 20 2003"
"gained access to electric power plants in the United States, possibly triggering two recent and widespread blackouts in Florida and the Northeast"
Solution is, don't put your SCADA units on the Internet. And even if this were true the more likely explanation is that they didn't have enough spare capacity.
"You all know that Dick already wrote a script, don't you?"
No, no, no, that hasn't happened in this time stream. Similarly, Andy Gibb died of a drug overdose in your time stream, while here he's still alive, appearing on television and doing benefit gigs with the Bee Gees.
"There's no way that Ubik could be filmed for a mainstream audience"
That's the whole point, you're not meant to understand it. What you do is take some
Lethal Substance D. before you enter the cinema, that way it'll made perfect sense. Philip K. Dick would have made a good writer, if he managed to ever stay off the chemicals, something his own mother started him on in early youth. Notice how the women in his novels are emotionally unavailable, a bit like dear old mom. Same with his five wives. He kept going out and marrying his mom. So to sum up, in the steriotypical PKD story, we have emotional disconnectedness and disruption of the psyche.
Another software solution, which also begs the question, what protects the 'managed code' bits from getting buffer overruns and wouldn't it be simpler to do it in the hardware? Of course the 'managed code' bits are only good in so far as they manage to detect malware all the time. Wouldn't it be simpler to make the kernel immune to these type of bugs as in the SAFECode project. That way when a process fails on garbage collection hooks, exception handling, type safety, array bounds and index checking, nothing happens.
I remember when there was only two kinds of ones and noughts, code and data and as long as you didn't download and run someone elses code you were totally safe. Another question to raise, and I realize I am crying in the wilderness here, is there any other way of achieving Web 2 type functionality without sacrificing security. Like, the current security debacle was caused by bad design decisions made years ago, something that is going to cost and is still not fixed, if at all fixable given the current state of 'innovation'.
"There is the NX bit, but you'd have to know about how far the buffer can overrun"
"we adapted the memory safety techniques from the SAFECode project.. This work makes the kernel immune to buffer overruns, dangling pointers, and other memory error vulnerabilities"
"Boundary failure when parsing SMB responses can result in a buffer overrun"
Does this apply to a particular CPU/MMU compiler combination or is it generic across all systems? Is it technically possible to design a system that is immune to buffer overruns or, by default, fails safe, as in not allowing any old code to walk all over the address space.
"Windows 95 was awesome... but the first versions were crap the 95b was the best one"
Yea, it finally got back to a buggy version of Xtree, drDOS, Novell Netware and Win3.11 Yea I know you could do it with Citrix, but MS bought out Citrix didn't they..:)
The main innovation being you could no longer load WinDOS from a Netware server onto a diskless client, you had to buy licenses and upgrade the memory and install a harddrive on each client, costing a lot if you were cash starved college.
"so far, MS server OSes have lived up to the task of being solid and operable day and day out"
Why is it that here we keep having to remake exchange profiles and the fax server keeps crashing. Not a good sign for a multi-national consultancy. I suppose you are also one of those people that never got a virus..:)
"Hey Adobe: Try Using Stack Canaries! (Score:5, Informative)"
How about building a stack that isn't vulnerable to stack exploits. And no - don't say it isn't possible. It just means the current batch of 'innovators' aren't able to manage it. So to summerise: x86 processor + Windows + Internet Explorer = the current fucked up security situation..
"This isn't the first or the last time Flash will have vulnerabilities discovered"
Do the designers of the OS bare any responcibility? What kind of a design allows remote code execution on a malformed media file? And this one happened by accident, does that mean that there are dozens of exploits out there waiting to be utilized by the criminal fraternity.
Slashdot Mirror
"closed source, non-restrictive libs"
:)
.. :)
"Newlib and Insomniac Games Nocturnal project are two good examples"
Tell us about Newlib and Insomniac, compare and contrast with the GPL license
It's interesting considering the first offer was kept secret, that the stock peaked and then rapidly tanked right before Microsofts second offer, it like someone quietly bought the shares and then sold rapidly to provoke a fall in price at which point MS stepped in and made an offer for 60% per share .. :)
"PJ: This article is either slightly offensive due to the fear mongering, or funny, depending on your mood, but the bottom line is, at least they begin to comprehend that the GPL does have to be respected. You can't just grab the code and do whatever you want with it. So that's progress.
But imagine an article that noticed the Microsoft EULA and decided that the risk of using the software was too high because you can't do whatever you want with the software, due to the EULA. You can't do whatever you want with most software, proprietary or open source/free software. Anyway, be aware of a couple of things.
One, Linux comes to you under GPLv2, not v3. Second, under either license, there are no restrictions on internal use, only for distribution. Three, the rules for certain embedded products are not the same as for software that is intended to continue to be developed and modified. Finally, the 'payment', so to speak, for mixing GPL'd software in your own code in your distribution or product isn't money. It's code. That's the deal. There are no hidden gotchas. Just read the license.]
What are the legal implications of running Ruby on dot.NET and why would you want to do such a thing?
go away astroturfer ..
"at least we might have a decent amount of cross-browser standards in a few years time, as opposed to none if Microsoft simply hadn't bothered"
.. :)
Well , they could have bothered while they were about cloning Netscape and making running any other browser a jolting experience and preventing Netscale from sabotaging their protocol extensions. Or in english, making web pages not render correctly in other peoples browsers
That is of course standards-compliant to the current version of Internet Explorer and not a Browser by any other name .. :)
.. letting Web site developers signal to IE how standards-compliant it ought to be with their pages"
"Microsoft is
How about writing web pages to a generic standard, something like W3C
"a leading trade group, said that U.S. intelligence officials have told him that the PLA in 2003 gained access to a network that controlled electric power systems serving the northeastern United States"
.. A malfunctioning alarm system may have played a big role in the outage Dan Verton Nov 20 2003"
No, what really happened was the grid was overloaded and the SQL virus was playing havoc with connectivity, then a tree fell over and tripped out a line, which spread in a domino effect all the way to Canada. A similar virus tripped out the control system in a Nuclear power plant.
http://www.nationaljournal.com/njmagazine/cs_20080531_6948.php
"During the hour before the Aug. 14 blackout, engineers in the control center of an Ohio utility struggled to figure out why transmission lines were failing and complained that a computer failure was making it difficult to determine what was going on, transcripts of telephone communications released Wednesday show"
http://www.wired.com/science/discoveries/news/2003/09/60285
"Software failure cited in August blackout investigation
http://www.nrc.gov/reading-rm/doc-collections/gen-comm/info-notices/2003/in200314.pdf
http://www.computerworld.com/securitytopics/security/recovery/story/0,10801,87400,00.html
"gained access to electric power plants in the United States, possibly triggering two recent and widespread blackouts in Florida and the Northeast"
Solution is, don't put your SCADA units on the Internet. And even if this were true the more likely explanation is that they didn't have enough spare capacity.
"restrict use of Vista as a GUI until an appropriate update is available from Microsoft"
"You all know that Dick already wrote a script, don't you?"
No, no, no, that hasn't happened in this time stream. Similarly, Andy Gibb died of a drug overdose in your time stream, while here he's still alive, appearing on television and doing benefit gigs with the Bee Gees.
"There's no way that Ubik could be filmed for a mainstream audience"
That's the whole point, you're not meant to understand it. What you do is take some Lethal Substance D. before you enter the cinema, that way it'll made perfect sense. Philip K. Dick would have made a good writer, if he managed to ever stay off the chemicals, something his own mother started him on in early youth. Notice how the women in his novels are emotionally unavailable, a bit like dear old mom. Same with his five wives. He kept going out and marrying his mom. So to sum up, in the steriotypical PKD story, we have emotional disconnectedness and disruption of the psyche.
"Yes, it's called managed code (Java/.NET)"
Another software solution, which also begs the question, what protects the 'managed code' bits from getting buffer overruns and wouldn't it be simpler to do it in the hardware? Of course the 'managed code' bits are only good in so far as they manage to detect malware all the time. Wouldn't it be simpler to make the kernel immune to these type of bugs as in the SAFECode project. That way when a process fails on garbage collection hooks, exception handling, type safety, array bounds and index checking, nothing happens.
I remember when there was only two kinds of ones and noughts, code and data and as long as you didn't download and run someone elses code you were totally safe. Another question to raise, and I realize I am crying in the wilderness here, is there any other way of achieving Web 2 type functionality without sacrificing security. Like, the current security debacle was caused by bad design decisions made years ago, something that is going to cost and is still not fixed, if at all fixable given the current state of 'innovation'.
"There is the NX bit, but you'd have to know about how far the buffer can overrun"
.. This work makes the kernel immune to buffer overruns, dangling pointers, and other memory error vulnerabilities"
"we adapted the memory safety techniques from the SAFECode project
"Samba isn't Windows, this isn't a Windows vulnerability. Thanks for playing. Try again"
Is it a x86 architecture only vulnerability?
"Boundary failure when parsing SMB responses can result in a buffer overrun"
Does this apply to a particular CPU/MMU compiler combination or is it generic across all systems? Is it technically possible to design a system that is immune to buffer overruns or, by default, fails safe, as in not allowing any old code to walk all over the address space.
"Windows 95 was awesome... but the first versions were crap the 95b was the best one"
.. :)
Yea, it finally got back to a buggy version of Xtree, drDOS, Novell Netware and Win3.11 Yea I know you could do it with Citrix, but MS bought out Citrix didn't they
The main innovation being you could no longer load WinDOS from a Netware server onto a diskless client, you had to buy licenses and upgrade the memory and install a harddrive on each client, costing a lot if you were cash starved college.
"so far, MS server OSes have lived up to the task of being solid and operable day and day out"
.. :)
Why is it that here we keep having to remake exchange profiles and the fax server keeps crashing. Not a good sign for a multi-national consultancy. I suppose you are also one of those people that never got a virus
If you call finally managing to make Windows not work with Novell Netware or drDOS ..)
:)", Jim Allchin 1991
"the way to shut out novell in the base is to either ship a full client or make it so there is no network connectivity", Brad Silverberg 1994
"drdos has problems running windows today. And I assume will have more problems in the futire" Brad Silverberg
"You should make sure it has problems in the future
Cone on where are all the memory leak issues comments modded up +5 :)
Just how many accounts do you have .. :)
"How about building a stack that isn't vulnerable to stack exploits", rs232
"Where would YOU propose we put local function variables?"
In other words, you for one don't know how to do it. The rest of your comments are so much attitudenal waffle.
"Hey Adobe: Try Using Stack Canaries! (Score:5, Informative)"
..
How about building a stack that isn't vulnerable to stack exploits. And no - don't say it isn't possible. It just means the current batch of 'innovators' aren't able to manage it. So to summerise: x86 processor + Windows + Internet Explorer = the current fucked up security situation
"This isn't the first or the last time Flash will have vulnerabilities discovered"
Do the designers of the OS bare any responcibility? What kind of a design allows remote code execution on a malformed media file? And this one happened by accident, does that mean that there are dozens of exploits out there waiting to be utilized by the criminal fraternity.
"Adobe has to be the worst company ever to supply popular software for the web"
..
I do believe it's the flakey OS that is at fault here