Well, once the large blocks are used up, there will finally be an impact on ISPs/Businesses to start migrating to IPv6..... right?
Definitely. I can just see it now, in a year's time I'll be signing into my account from my corporate Linux desktop over a DNSSEC-authenticated IPv6 connection, using my smart card with its X.509 citizen certificate to authenticate myself. I'd like to write more, but my monorail is coming...
Maybe Skype will actually stop sucking if Cisco buys them.
Nope, you'll just get Cisco's mega-suckage added to the existing Skype suckage.
Actually, this whole mess is my fault. Some years ago I bought a nice Linksys router/AP. Shortly afterwards, Cisco adsorbed Linksys, and turned its suckage-ray of doom on them.
Last week, I bought a Skype phone. Looks like history is about to repeat itself.
Shit, if you're paying hundreds of thousands of dollars per CPU you can afford some top notch programmers.
If you're paying hundreds of thousands of dollars for a multi-GHz CPU then it's probably because you're trying to make up for the product of crap programmers, not the other way round.
If I announce on a website some place that I'm paying I billion dollars to "buy" New Zealand, on condition that it is renamed Mordor, will I get onto the front page of slashdot?
I dunno about all of New Zealand, but I reckon for a billion you could pretty much get West Auckland, and you wouldn't need to change much to pass it off as Mordor.
Believe it or not, I'm not sure that explains these weird robot trades at all.
Has anyone bothered to investigate the obvious Al Qaeda connection yet? Obviously it's Bin Laden using stock trading patterns to signal his subordinates.
(I'm currently waiting for my DHS grant to come through to investigate this).
Nah, let's be fair: fanatics of Amiga and OS/2 were really terrible.
While I agree that pretty much nothing comes close to a true Amigahole, I never thought the OS/2 fanatics were that bad. Mind you since there were only three of them maybe it was just that people barely noticed them.
Linux fanatics are manageable. I find Apple and BSD fanatics way more annoying.
The Linux fanboys have become somewhat less annoying over time, and I don't find the Apple fans that annoying. I think it's because of the following categorization:
Amiga fanatic: Will quote footnotes in the appendix of the Amiga Hardware Reference Manual at you in support of their platform.
Linux fanboy: Stallmanesque rants about why OSS is better, and everything should be free, and the world owes them a living.
Apple fanatics: They just *know* their platform is better, and there's no need to back that up with a supporting argument. Why would anyone question that?
So for Apple fans you can either ignore them or use some technical facts which will instantly baffle them, the fanboys are mostly just ranting, it's the Amigaholes who are the problem because they're often prepared to continue arguing technical trivia (interspersed with personal abuse) until the sun goes out. At least the Apple crowd are polite. Smugly polite, perhaps, but polite.
Perhaps Congress could pass a law guaranteeing that "abusive legal practices in foreign countries [the US] do not prevent non-Americans from fully exercising their rights to play legally purchased audio/video content and write code without paying protection money to US patent trolls".
If I have a choice, I use Foxit or okular - both do the job just fine.
A few years ago Foxit used to be great, but it's slowly succumbing to the Acrobat bloat effect. In addition it's appallingly bad at allowing you to select text (for cut&paste) from documents, in some cases it works, in others it runs all the words into each other, or only selects portions of words, or can't select anything at all. Sumatra is great for bare-bones viewing, if only the select-text facility wasn't so awkward to use. At the moment I'm using STDU Viewer, which is < 2MB (what Foxit used to be years ago), seems to have no problems with text manipulation, and allows customisation of hotkeys so you can make it work like other viewers that you're used to.
So, a hacker wanting to exploit the e-signing mechanism would need to cough up $20k to obtain a producer key, or steal one somehow, before he could even get started.
... or use one of a zillion* non-Adobe PDF signing programs that cost all of $29.95 or so. In any case what's $20K to someone sitting on top of forty thousand stolen Platinum credit cards?
Well Symbian has Nokia behind it, and they aren't a small company.
In compensation Symbian development is quite a bit less fun than an unnecessary root canal. I've developed for pretty much everything out there, and Symbian has a special place in terms of ghastly, unusable, crappy... ugh. So one reason why there's not much enthusiasm for it is because you practically have to hold a gun to someone's head (meaning bribe them with the prospect of $$$$$$$$$) to get them to develop for it. You certainly won't get enthusiasts hacking away at it for the fun of it, unless they're raving masochists.
It's actually pretty scary, if you look at the MS site they have more diagrams there, they rely on spring-loaded contacts and the physical geometry of the battery ends to bring the correct portions into contact with each other. A slightly bent contact, out-of-spec battery, or battery stuck in at a slightly skew angle, and, ouch...
... in practice the major battery-related failure more isn't reverse polarity but failed (or poor) contact due to corrosion, moisture, physical breakage, leaky batteries, low-quality construction,... . What this is doing is making an already fault-prone design even more fault-prone by adding finicky details to the contacts. It's a nice idea in theory, but I can't see it taking the world by storm.
So, you might be able to abuse FIPS-certified components to build something that does ROT-13, but you shouldn't be able to get the resulting cryptographic module certified.
You don't need to get the overall result certified, that's why you're building it using FIPS-certified crypto. So what you do is get some FIPS-140 certified crypto (for example the crypto built into any copy of Windows) and then abuse it to make it about as secure as rot13. The module is certified, but it's used in an insecure manner.
Did any of the examples you have seen end up fulfilling U.S. government contracts that required a FIPS-140 certification?
Yes, pretty much all of them, since getting USG contracts is the main reason for going with FIPS-140 certified crypto in the first place.
It's pretty good. It also has requirements for user-level authentication (machine-to-machine is not good enough) and approved key-generation algorithms. It's also actively maintained by people who know what they are doing, which makes it a much better decision than trying to write your own security requirements spec.
FIPS 140 only covers algorithm and implementation details, and a little bit about key management. There's nothing in there that says you can't use an all-zero key, or prepend the key to the data, or use your company name as the key. So you can still build rot-13 out of FIPS 140-certified products (and I've seen it done on numerous occasions). All this requirement is doing is making it less obvious that something's b0rken.
1. Two elephant bees fighting over conjoined twin nuns
2. Two baby elephants high-fiving with their trunks as they crush something under their front feet.
3. Two tribeswomen carrying buckets and exchanging hearts
4. Cross section of uterus, fallopian tubes, and vagina
5. Moth
6. Dragonfly impaled on a cross-section of a starfruit
7. Two female baboons kissing with their breasts touching
8. Evolution... legged and tailed creatures crawling out of the ocean
9. Cross section of uterus and vagina of a woman giving birth to conjoined twins
10. Two queens wearing grey hats and flowing red robes stealing baby crabs as they fight off the green-clawed mother crabs
I thought it was:
1. A pair of tits.
2. A pair of tits.
3. A pair of tits.
4. A pair of tits.
5. A pair of tits.
6. A pair of tits.
7. A pair of tits.
8. A pair of tits.
9. A pair of tits.
10. A nice pair of tits.
My analyst claims I have "an unhealthy obsession". Can't imagine why.
Linux and OSX seem to have decent free PDF readers. It's only Windows that is lacking.
Only if you pretend that readers like Foxit (and a few other lesser-known ones) don't exist. Given the choice between Foxit and having to install KDE for Windows to run Ocular (good grief, how can PDFReaders.org even list that as a serious proposition?) I'll take Foxit any day. Sadly, it seems to be slowly succumbing to the Acrobat bloat effect, but it's still generally usable.
The parent poster made a typo in the IEEE project name. It's P1619.
You're right, sorry, typo while trying to get first post:-). Their home page is here, and they've had their specs out for nearly two years. How can any group that has an official Wine Tasting Standing Subcommittee be a bad thing?
Slashdot Mirror
Definitely. I can just see it now, in a year's time I'll be signing into my account from my corporate Linux desktop over a DNSSEC-authenticated IPv6 connection, using my smart card with its X.509 citizen certificate to authenticate myself. I'd like to write more, but my monorail is coming...
Yeah, because by the time they overflow I'll either be retired or at a different job, and then it'll be someone else's problem.
Preved?
Nope, you'll just get Cisco's mega-suckage added to the existing Skype suckage.
Actually, this whole mess is my fault. Some years ago I bought a nice Linksys router/AP. Shortly afterwards, Cisco adsorbed Linksys, and turned its suckage-ray of doom on them.
Last week, I bought a Skype phone. Looks like history is about to repeat itself.
If you're paying hundreds of thousands of dollars for a multi-GHz CPU then it's probably because you're trying to make up for the product of crap programmers, not the other way round.
I dunno about all of New Zealand, but I reckon for a billion you could pretty much get West Auckland, and you wouldn't need to change much to pass it off as Mordor.
Has anyone bothered to investigate the obvious Al Qaeda connection yet? Obviously it's Bin Laden using stock trading patterns to signal his subordinates.
(I'm currently waiting for my DHS grant to come through to investigate this).
What's more, the conference talk that's linked to was created by someone from Belgium, and it wasn't even used in a serious screenplay!
No no no, you see, its not a Jailbreak, its an undocumented remote administration feature.
There, FTFY.
It stands for Penetration Document Format. HTH, HAND.
While I agree that pretty much nothing comes close to a true Amigahole, I never thought the OS/2 fanatics were that bad. Mind you since there were only three of them maybe it was just that people barely noticed them.
The Linux fanboys have become somewhat less annoying over time, and I don't find the Apple fans that annoying. I think it's because of the following categorization:
So for Apple fans you can either ignore them or use some technical facts which will instantly baffle them, the fanboys are mostly just ranting, it's the Amigaholes who are the problem because they're often prepared to continue arguing technical trivia (interspersed with personal abuse) until the sun goes out. At least the Apple crowd are polite. Smugly polite, perhaps, but polite.
(Moderation suggestions: Troll, Flamebait, etc).
That was a killer weakness for the Amiga: You went to Computerland to buy an IBM, but you went to Toys-R-Us to buy an Amiga.
(The other killer weakness was Commodore, but that's a different rant).
Perhaps Congress could pass a law guaranteeing that "abusive legal practices in foreign countries [the US] do not prevent non-Americans from fully exercising their rights to play legally purchased audio/video content and write code without paying protection money to US patent trolls".
A few years ago Foxit used to be great, but it's slowly succumbing to the Acrobat bloat effect. In addition it's appallingly bad at allowing you to select text (for cut&paste) from documents, in some cases it works, in others it runs all the words into each other, or only selects portions of words, or can't select anything at all. Sumatra is great for bare-bones viewing, if only the select-text facility wasn't so awkward to use. At the moment I'm using STDU Viewer, which is < 2MB (what Foxit used to be years ago), seems to have no problems with text manipulation, and allows customisation of hotkeys so you can make it work like other viewers that you're used to.
* Number exaggerated slightly for effect.
In compensation Symbian development is quite a bit less fun than an unnecessary root canal. I've developed for pretty much everything out there, and Symbian has a special place in terms of ghastly, unusable, crappy... ugh. So one reason why there's not much enthusiasm for it is because you practically have to hold a gun to someone's head (meaning bribe them with the prospect of $$$$$$$$$) to get them to develop for it. You certainly won't get enthusiasts hacking away at it for the fun of it, unless they're raving masochists.
It's actually pretty scary, if you look at the MS site they have more diagrams there, they rely on spring-loaded contacts and the physical geometry of the battery ends to bring the correct portions into contact with each other. A slightly bent contact, out-of-spec battery, or battery stuck in at a slightly skew angle, and, ouch...
... in practice the major battery-related failure more isn't reverse polarity but failed (or poor) contact due to corrosion, moisture, physical breakage, leaky batteries, low-quality construction, ... . What this is doing is making an already fault-prone design even more fault-prone by adding finicky details to the contacts. It's a nice idea in theory, but I can't see it taking the world by storm.
>Have you heard of the paperless office?
Sure, I have one right next to my paperless toilet.
So, you might be able to abuse FIPS-certified components to build something that does ROT-13, but you shouldn't be able to get the resulting cryptographic module certified.
You don't need to get the overall result certified, that's why you're building it using FIPS-certified crypto. So what you do is get some FIPS-140 certified crypto (for example the crypto built into any copy of Windows) and then abuse it to make it about as secure as rot13. The module is certified, but it's used in an insecure manner.
Did any of the examples you have seen end up fulfilling U.S. government contracts that required a FIPS-140 certification?
Yes, pretty much all of them, since getting USG contracts is the main reason for going with FIPS-140 certified crypto in the first place.
It's pretty good. It also has requirements for user-level authentication (machine-to-machine is not good enough) and approved key-generation algorithms. It's also actively maintained by people who know what they are doing, which makes it a much better decision than trying to write your own security requirements spec.
FIPS 140 only covers algorithm and implementation details, and a little bit about key management. There's nothing in there that says you can't use an all-zero key, or prepend the key to the data, or use your company name as the key. So you can still build rot-13 out of FIPS 140-certified products (and I've seen it done on numerous occasions). All this requirement is doing is making it less obvious that something's b0rken.
1. Two elephant bees fighting over conjoined twin nuns 2. Two baby elephants high-fiving with their trunks as they crush something under their front feet. 3. Two tribeswomen carrying buckets and exchanging hearts 4. Cross section of uterus, fallopian tubes, and vagina 5. Moth 6. Dragonfly impaled on a cross-section of a starfruit 7. Two female baboons kissing with their breasts touching 8. Evolution... legged and tailed creatures crawling out of the ocean 9. Cross section of uterus and vagina of a woman giving birth to conjoined twins 10. Two queens wearing grey hats and flowing red robes stealing baby crabs as they fight off the green-clawed mother crabs
I thought it was:
1. A pair of tits.
2. A pair of tits.
3. A pair of tits.
4. A pair of tits.
5. A pair of tits.
6. A pair of tits.
7. A pair of tits.
8. A pair of tits.
9. A pair of tits.
10. A nice pair of tits.
My analyst claims I have "an unhealthy obsession". Can't imagine why.
Linux and OSX seem to have decent free PDF readers. It's only Windows that is lacking.
Only if you pretend that readers like Foxit (and a few other lesser-known ones) don't exist. Given the choice between Foxit and having to install KDE for Windows to run Ocular (good grief, how can PDFReaders.org even list that as a serious proposition?) I'll take Foxit any day. Sadly, it seems to be slowly succumbing to the Acrobat bloat effect, but it's still generally usable.
You're right, sorry, typo while trying to get first post :-). Their home page is here, and they've had their specs out for nearly two years. How can any group that has an official Wine Tasting Standing Subcommittee be a bad thing?