See, here's another problem. And I have karma to spare to say this.
Another user made a comment about a distro I don't personally work with. I said if he's correct, then that's a problem.
2 things happened: I got modded down for asking an honest question "Is this other person correct?" instead of worshipping debian blindly, and another user followed up attempting to argue with me on a huge tirade. I never claimed I understood what Debian does or what the purpose is, although I do on a surface level, I'm not a guru nor a debian user. That's why I asked.
I never said anything was wrong with the precious Debian. I said if the newest release is "obsolete" (as claimed by the parent); then thats a problem.
Blogs and opinion columns do not exactly make for reliable sources, especially when you're trying to support insinuations of the rather serious charge of electon fraud.
Would slashdot count? Because we discussed this issue at great length here last election season. With a 5 Digit ID; unless you were in a cave I can't believe you weren't on discussion forums during election season.
Open Secrets? Black Box Voting?
Don't like his sources, ehh fine. There's plenty more, its a fact, not an opinion. It's also a fact that mainstream media would not carry. So if you're looking for mainstream coverage, you just figured out why this article is Stuff that Matters.
I'm a reasonably literate computer user, even for slashdot. All of my machines run linux, happily, even my linksys router. I modify my systems to be useful and I have no stupid blue lights on anything.
With that said at work, I've said things like "the internet is broken". Why? Because I'm there to handle medicines, and not beat my head against the wall trying to explain to my PHB which exploit is in the wild and how to patch it. Forget it.
No one at work knows that I know a damn thing about computers, and I'm keeping it that way.
What we need is for somebody to come up with clever e-mail steganography. You type what you want, and it gets sent out encoded in the formatting details of an innocuous looking HTML e-mail to your mother asking how she's doing.
This is good. Since we can't realistically seem to create a universal deployment of standard encryption, and certainly can't under the gun of our employers, this is pretty much the best bet.
Though people might start wondering about the coincidental fact that your mother works at a competing company.
For the sake of argument we're assuming you're forced to use a company based email or they are monitoring your web based email. However, it really is stretching it to think that your recipient, especially one masquerading as your mother, would not have an innocent appearing web based email account.
Parent: any chance you'll use that 300k a month to drop the price of these independent albums to sub $10 each?
Are you smoking the ganj, man? You demonstrated you read the post, but I think you missed this:
GP:91% of all that income goes directly to the musician.
300k - 91% = 27k left to pay hosting/bandwidth costs, advertising, any employees that need to be paid, any other costs of doing business, oh yea and 4) PROFIT!!.
I know the RIAA has left us gun shy of the words "music" and "profit" together; but he's paying the artists fairly and giving everyone the same fair shot. This guy isn't using any industry stranglehold on politicians & airwaves to artificially pump up the prices.
... but let's just say I'd rather have a nice thin and light Mini distro than a bloody huge Maxi.
I suppose it is a good thing they're making that light version then huh? I'm kind of confused as to the point of your comment, other than to get a FP, since it says in the summary the light version is being made, and the presence of a larger version doesn't hinder the light one at all.
Please mod parent up. Projects like NeoOffice/J are making a big difference. A mere $50k a year could potentially mean a world of difference toward the continuation of a project like that
No, mod the grandparent down.
The question is "Who should handle the funds, not who should recieve them."
The best option for handling them is someone who is financially secure, has the proper legal ability to act as trustee, and no personal interest in their own project over another.
Just because e-mail has become a social necessity (like checking your answering machine) doesn't mean you're ADDICTED.
E-mail is a form of communication,
Not to mention being the best thing ever to happen to the hearing impaired or deaf. Now there is a socially acceptable means of communication that works easily between all parties. Many hearing folks I meet comment that they wish their other collegues would use email more instead of "playing phone-tag". 10 years ago reaching me easily meant calling my mother and asking her to relay.
Can anyone who has this service confirm whether it is really "unlimited" or "unlimited, standard airtime fees apply (plus roaming)"?
Haven't been able to get a straight answer out of any sales droids, but this, even slow, would be perfect for school.
~Rebecca
I think they do. As a matter of fact, I joined today. I donated and signed up as a card carrying member.
Today's news about the Real ID was finally enough to make me ask myself what had I done to help in any small way.
The nature of politics is compromise. There will never be a political group with as broad a spectrum as issues as the ACLU deals with that does not disagree with you on something.
So if you disagree on the gun issue, as I do, fine. Realize there are 20 more issues and no one fights harder for your civil rights than the ACLU.
The actual security issue, as you just pointed out, is that *gmail* doesn't use HTTPS. Unfortunately for you, this has nothing to do with the web accelerator (which, I must reiterate, was the sole topic of your original post)
If http truely is the cause and has nothing to do with GWA, I challange you to get my gmail since I have not used GWA (not available for linux). If you decide to take my challange, its the same as my slashdot ID.
While gmail not using https may be a problem in itself, the problem Lowtax points out isn't a problem until we create a situation where another user can access my cached page.
Since, until Google Web Accelerator, it wasn't feasible for this to occur on such a widespread basis, and GWA is required for the problem to occur, it is reasonable to say that GWA has the problem.
Also, a former ISP I worked for had a similar product, a web accelerator they were pushing for their dial up customers. Had the same underlying technology, the ISP cached and compressed data on its server side, etc, etc. It did not have this problem.
So, bottom line, If GWA is required for the problem to exist, and similar products do not have the problem, then the problem lies in GWA.
~Rebecca Can't believe I'm arguing on the internet, even if I win...
First of all, just because Google isn't portrayed as a diety, doesn't make it troll bait.
Second, I read the Google page yesterday, and it doesn't say "If you log in to gmail through the accelerator, someone else might get your cached copy." Also, your link now is dead, Google took it down. As of 5:10p AZ time the page reads "The requested URL was not found on this server." and nothing else.
I believe it is a valid issue considering gmail itself uses http not httpS for the actual reading of your mail.
But as you pointed out so well, this is slashdot, Google can't make mistakes, and those that comment on them are trolls. Check my history if you want, I don't post trolls.
I love Google as much as anyone else here, but this definately points out that even the geniuses at Google can make mistakes, and this is just a tiny look at what can happen with those mistakes.
I hope Google is able to fix this or pulls the web accelerator.
That isn't bad though, that's what their customers want!
I'm a full time college student, I go through a lot of books. I'm also set up with all kinds of account goodies for bn.com. They give me discounts, cheap fast shipping, or local pick up options. They've got all my information stored so I don't have to stop taking notes to enter my credit card, shipping address, book club member, academic association, nothing.
Yes, I use the library too, but copies I can buy allow me mark up the pages with notes and highlights, or just plain rip the pages out.
When it comes time to get more books, I'm usually in class. It's not an impluse buy, but I certainly don't want any hassle. I need to click, click bang and I want my book tomorrow. I don't want any hoop jumping on the website, finding any books that another customer moved to the wrong shelf, lines, traffic jams, or any of that crap.
outpost.com also sold my email address to spammers.
I have the paid version of Yahoo Mail which includes AddressGuard; so for every site like that I go to I can make myspamname-whatever@yahoo.com disposable addresses.
I have about 50 active versions; I made a single purchase from outpost.com and made my email "myspamname-outpost@yahoo.com"; within a week only that one began to recieve spam. Yes, I make a concious effort as well to uncheck anything that says "we will sell you out to spammers"
So, don't forget TINSTAAFL; that money has to come from somewhere.
Sooner or later, not documenting properly will bite them in the ass.
Actually I have found that more often than not, not documenting properly only bites someone else in the ass.
This is likely the source of the problem, and the least likely to change. I suppose it could be part of the QA process to check for notation on code, but I somehow suspect that with programming jobs on a one way trip to Bangalore that readability it secondary to "works cheap."
how will this be different from the flodding of fake files already on P2P networks like Kazaa. Sure, the hash will be the same, but what "JHoe Sixpack" looks at hashes?!
Joe Sixpack may not look at hashes, but his P2P software probably does. I know aMule uses the hash to match files that have had their names changed.
~Rebecca
Re:Slashdot users use mostly Windows
on
Hacking Mac OS X
·
· Score: 1
Its the dirty little secret of/. that for all of our pro-Linux, "I love OSX" rhetoric, Slashdot users use mostly Wintel.
There's also a large enough volume of slashdot users to create the "slashdot effect" and its associated smoking piles of server rubble.
However, very few threads ever even break 1000 posts. Since I don't think most websites go down with less than 1000 hits, perhaps the ones posting that they love Linux/OSX/*BSD are the ones using it?
~Rebecca
PS-- Just upgraded to 2.6.11.5 last night.
PPS-- No idea how I lost the *middle* of my post previously.
Re:Slashdot users use mostly Windows
on
Hacking Mac OS X
·
· Score: 1
Its the dirty little secret of/. that for all of our pro-Linux, "I love OSX" rhetoric, Slashdot users use mostly Wintel.
There's also a large enough volume of slashdot users to create the "slashdot effect" and its associated smoking piles of server rubble.
However, very few threads ever even break 1000 posts. Since I don't think most websites go down with
~Rebecca
PS-- Just upgraded to 2.6.11.5 last night.
Slashdot Mirror
See, here's another problem. And I have karma to spare to say this.
Another user made a comment about a distro I don't personally work with. I said if he's correct, then that's a problem.
2 things happened: I got modded down for asking an honest question "Is this other person correct?" instead of worshipping debian blindly, and another user followed up attempting to argue with me on a huge tirade. I never claimed I understood what Debian does or what the purpose is, although I do on a surface level, I'm not a guru nor a debian user. That's why I asked.
I never said anything was wrong with the precious Debian. I said if the newest release is "obsolete" (as claimed by the parent); then thats a problem.
~Rebecca
If you go for Stable, which is currently Sarge, then, yes, it is behind the times.
So, let me see if I understand you: Debian just had its first release in years within what? The last week? And that is "behind the times"?
I am a linux user, and I respect Debian. But if their latest release is barely out the gate and its obsolete, something IS wrong.
~Rebecca
Blogs and opinion columns do not exactly make for reliable sources, especially when you're trying to support insinuations of the rather serious charge of electon fraud.
Would slashdot count? Because we discussed this issue at great length here last election season. With a 5 Digit ID; unless you were in a cave I can't believe you weren't on discussion forums during election season.
Open Secrets? Black Box Voting?
Don't like his sources, ehh fine. There's plenty more, its a fact, not an opinion. It's also a fact that mainstream media would not carry. So if you're looking for mainstream coverage, you just figured out why this article is Stuff that Matters.
~Rebecca
I'm a reasonably literate computer user, even for slashdot. All of my machines run linux, happily, even my linksys router. I modify my systems to be useful and I have no stupid blue lights on anything.
With that said at work, I've said things like "the internet is broken". Why? Because I'm there to handle medicines, and not beat my head against the wall trying to explain to my PHB which exploit is in the wild and how to patch it. Forget it.
No one at work knows that I know a damn thing about computers, and I'm keeping it that way.
I still think a gallon of milk is about 2.50-3.00
Only nobody drinks 40 gallons of milk per week...
And to be fair, milk is subsidized by our federal government. So its real cost is higher.
~Rebecca
What we need is for somebody to come up with clever e-mail steganography. You type what you want, and it gets sent out encoded in the formatting details of an innocuous looking HTML e-mail to your mother asking how she's doing.
This is good. Since we can't realistically seem to create a universal deployment of standard encryption, and certainly can't under the gun of our employers, this is pretty much the best bet.
Though people might start wondering about the coincidental fact that your mother works at a competing company.
For the sake of argument we're assuming you're forced to use a company based email or they are monitoring your web based email. However, it really is stretching it to think that your recipient, especially one masquerading as your mother, would not have an innocent appearing web based email account.
~Rebecca
Parent: any chance you'll use that 300k a month to drop the price of these independent albums to sub $10 each?
Are you smoking the ganj, man? You demonstrated you read the post, but I think you missed this:
GP:91% of all that income goes directly to the musician.
300k - 91% = 27k left to pay hosting/bandwidth costs, advertising, any employees that need to be paid, any other costs of doing business, oh yea and 4) PROFIT!!.
I know the RIAA has left us gun shy of the words "music" and "profit" together; but he's paying the artists fairly and giving everyone the same fair shot. This guy isn't using any industry stranglehold on politicians & airwaves to artificially pump up the prices.
~Rebecca
This would be a neat slashdot poll, but I think firefox is the clear winnner this year.
~Rebecca
... but let's just say I'd rather have a nice thin and light Mini distro than a bloody huge Maxi.
I suppose it is a good thing they're making that light version then huh? I'm kind of confused as to the point of your comment, other than to get a FP, since it says in the summary the light version is being made, and the presence of a larger version doesn't hinder the light one at all.
Oh, and that "Bloody Maxi" pun was terrible.
~Rebecca
Please mod parent up. Projects like NeoOffice/J are making a big difference. A mere $50k a year could potentially mean a world of difference toward the continuation of a project like that
No, mod the grandparent down.
The question is "Who should handle the funds, not who should recieve them."
The best option for handling them is someone who is financially secure, has the proper legal ability to act as trustee, and no personal interest in their own project over another.
~Rebecca
Let me start out with the obvious, how about the FSF? Maybe see if one of their lawyers could be a trustee?
~Rebecca
Just because e-mail has become a social necessity (like checking your answering machine) doesn't mean you're ADDICTED.
E-mail is a form of communication,
Not to mention being the best thing ever to happen to the hearing impaired or deaf. Now there is a socially acceptable means of communication that works easily between all parties. Many hearing folks I meet comment that they wish their other collegues would use email more instead of "playing phone-tag". 10 years ago reaching me easily meant calling my mother and asking her to relay.
~Rebecca
Can anyone who has this service confirm whether it is really "unlimited" or "unlimited, standard airtime fees apply (plus roaming)"? Haven't been able to get a straight answer out of any sales droids, but this, even slow, would be perfect for school. ~Rebecca
I think they do. As a matter of fact, I joined today. I donated and signed up as a card carrying member.
Today's news about the Real ID was finally enough to make me ask myself what had I done to help in any small way.
The nature of politics is compromise. There will never be a political group with as broad a spectrum as issues as the ACLU deals with that does not disagree with you on something.
So if you disagree on the gun issue, as I do, fine. Realize there are 20 more issues and no one fights harder for your civil rights than the ACLU.
~Rebecca
Here, it made the front page.
~Rebecca
The actual security issue, as you just pointed out, is that *gmail* doesn't use HTTPS. Unfortunately for you, this has nothing to do with the web accelerator (which, I must reiterate, was the sole topic of your original post)
...
If http truely is the cause and has nothing to do with GWA, I challange you to get my gmail since I have not used GWA (not available for linux). If you decide to take my challange, its the same as my slashdot ID.
While gmail not using https may be a problem in itself, the problem Lowtax points out isn't a problem until we create a situation where another user can access my cached page.
Since, until Google Web Accelerator, it wasn't feasible for this to occur on such a widespread basis, and GWA is required for the problem to occur, it is reasonable to say that GWA has the problem.
Also, a former ISP I worked for had a similar product, a web accelerator they were pushing for their dial up customers. Had the same underlying technology, the ISP cached and compressed data on its server side, etc, etc. It did not have this problem.
So, bottom line, If GWA is required for the problem to exist, and similar products do not have the problem, then the problem lies in GWA.
~Rebecca
Can't believe I'm arguing on the internet, even if I win
First of all, just because Google isn't portrayed as a diety, doesn't make it troll bait.
Second, I read the Google page yesterday, and it doesn't say "If you log in to gmail through the accelerator, someone else might get your cached copy." Also, your link now is dead, Google took it down. As of 5:10p AZ time the page reads "The requested URL was not found on this server." and nothing else.
I believe it is a valid issue considering gmail itself uses http not httpS for the actual reading of your mail.
But as you pointed out so well, this is slashdot, Google can't make mistakes, and those that comment on them are trolls. Check my history if you want, I don't post trolls.
~Rebecca
SA Article on Web Accelerator Flaw
I love Google as much as anyone else here, but this definately points out that even the geniuses at Google can make mistakes, and this is just a tiny look at what can happen with those mistakes.
I hope Google is able to fix this or pulls the web accelerator.
~Rebecca
That isn't bad though, that's what their customers want!
I'm a full time college student, I go through a lot of books. I'm also set up with all kinds of account goodies for bn.com. They give me discounts, cheap fast shipping, or local pick up options. They've got all my information stored so I don't have to stop taking notes to enter my credit card, shipping address, book club member, academic association, nothing.
Yes, I use the library too, but copies I can buy allow me mark up the pages with notes and highlights, or just plain rip the pages out.
When it comes time to get more books, I'm usually in class. It's not an impluse buy, but I certainly don't want any hassle. I need to click, click bang and I want my book tomorrow. I don't want any hoop jumping on the website, finding any books that another customer moved to the wrong shelf, lines, traffic jams, or any of that crap.
~Rebecca
outpost.com also sold my email address to spammers.
I have the paid version of Yahoo Mail which includes AddressGuard; so for every site like that I go to I can make myspamname-whatever@yahoo.com disposable addresses.
I have about 50 active versions; I made a single purchase from outpost.com and made my email "myspamname-outpost@yahoo.com"; within a week only that one began to recieve spam. Yes, I make a concious effort as well to uncheck anything that says "we will sell you out to spammers"
So, don't forget TINSTAAFL; that money has to come from somewhere.
~Rebecca
Sooner or later, not documenting properly will bite them in the ass.
Actually I have found that more often than not, not documenting properly only bites someone else in the ass.
This is likely the source of the problem, and the least likely to change. I suppose it could be part of the QA process to check for notation on code, but I somehow suspect that with programming jobs on a one way trip to Bangalore that readability it secondary to "works cheap."
~Rebecca
I'd love to get my hands on this.
So would I.
Unfortunately, I got through, and its only available for Windows. No Linux or Mac support. Bleh.
~Rebecca
how will this be different from the flodding of fake files already on P2P networks like Kazaa. Sure, the hash will be the same, but what "JHoe Sixpack" looks at hashes?!
Joe Sixpack may not look at hashes, but his P2P software probably does. I know aMule uses the hash to match files that have had their names changed.
~Rebecca
Its the dirty little secret of /. that for all of our pro-Linux, "I love OSX" rhetoric, Slashdot users use mostly Wintel.
There's also a large enough volume of slashdot users to create the "slashdot effect" and its associated smoking piles of server rubble.
However, very few threads ever even break 1000 posts. Since I don't think most websites go down with less than 1000 hits, perhaps the ones posting that they love Linux/OSX/*BSD are the ones using it?
~Rebecca
PS-- Just upgraded to 2.6.11.5 last night.
PPS-- No idea how I lost the *middle* of my post previously.
Its the dirty little secret of /. that for all of our pro-Linux, "I love OSX" rhetoric, Slashdot users use mostly Wintel.
There's also a large enough volume of slashdot users to create the "slashdot effect" and its associated smoking piles of server rubble.
However, very few threads ever even break 1000 posts. Since I don't think most websites go down with
~Rebecca
PS-- Just upgraded to 2.6.11.5 last night.