Why have the server send a challenge to sign at all? Surely the MUA (mail client) could just add an x-header-expensive-hash-of-this-mail
to *every* mail that goes out, which would be wildly different for each mail beacuse the email address would change.
Same concept, but would work with current mail clients/servers and could tell the server/mail client at the other end that the server really wants you to get this..
Authored by: sef on Monday, August 16 2004 @ 11:34 AM EDT Posted on Groklaw, Sef is the author, not me.
"We didn't do it. Even if we did, these guys said we could, but we didn't. And even if we did, which we didn't, not only did these guys say we could (but we didn't), but these nobks did the same thing, so we should be allowed to do it. Which we didn't."
Actually, i posted the bug. Posting bugs is good for mandrake cause it makes the product better. I like mandrake, hence the viva la mandrake, and finally, only cowards post anonymously.
3. Koreans are mainly interested in korean websites.
Ergo, when they pay $5 USD a month for 4mb internet accesss, the ISP is betting on the fact that they wont hardly have to pay for any international traffic.
Is if somone ported airsnort to one of these.. Imagine throwing one under a desk for a week, while it cracked the wep key, then having it switch on its radio and broadcast the key as its SSID..
Comments on the article website seem to suggest that this *may* be a re-engineer of the Win32 api based on the stolen win2k codebase. The phillipines is not known for its strict adherence to interlectual properties laws. Actually, would this even be illegal? If the codebase was stolen in the US, looked at in the phillipines and a program written based on that looking, would the program be legal in the US or not? And what about elsewhere in the world?
Here in the UK, try this. Get your cell phone (or mobile as we say here) dial 2580. Hold the phone up to the radio till it gets disconnected. Wait. A text message will arrive with the name of the song.
It costs about 50p. Disclaimer i do not work for or have any involvment in this venture, except friends who built it.
I believe that it has been proven that the eye can, detecet under ideal circumstances, a single photon. And the brain does some pretty funky things with persisting objects in "the minds eye" if they dissapear for a short amount of time. Your point however is still valid. Its a *lot* of photons.
The CGI looks kind of cartoonely, kind of like when you can tell during the burly brawl when they stopped using keano and started using the all cgi character. That being said ill still go see it...;-)
Yeah, but they havn't replaced the cacerts in the previous versions. So if you download the latest 141 or even 131 version you'll still get the old version.
This is especially relevant to people using app servers like weblogic because the app server ships with a version of the JDK and your only supposed to use that version.
There is a file in the JDK called cacerts. (find . -name cacerts is your friend), this contains the certificates Java uses when initiating ssl connections. As of yesterday Sun was still shipping java with the expired 3a certificate. The way to include the new 3a certificate is to use the keytool command. The format is somthing like: keytool -v -keystore cacerts -import newcert.pem The default password for java's cacerts file is "changeit" VC ps how many geek points do i get for fixing this last week?
Slashdot Mirror
This is the one you really need to look at, its linear and not log.
Link
Why have the server send a challenge to sign at all? Surely the MUA (mail client) could just add an x-header-expensive-hash-of-this-mail
to *every* mail that goes out, which would be wildly different for each mail beacuse the email address would change.
Same concept, but would work with current mail clients/servers and could tell the server/mail client at the other end that the server really wants you to get this..
Anyone know why this wouldn't work?
Authored by: sef on Monday, August 16 2004 @ 11:34 AM EDT Posted on Groklaw, Sef is the author, not me.
"We didn't do it. Even if we did, these guys said we could, but we didn't. And even if we did, which we didn't, not only did these guys say we could (but we didn't), but these nobks did the same thing, so we should be allowed to do it. Which we didn't."
Actually, i posted the bug. Posting bugs is good for mandrake cause it makes the product better. I like mandrake, hence the viva la mandrake, and finally, only cowards post anonymously.
Coward.
Ipod mini and 4g ipods, the cool ones with no buttons, dont mount under the new mdk kernel. :-) ive got to boot into knoppix to update songs.
Other than that, mandrake rocks. viva la mandrake.
(its bug 10619 if anyone cares..)
1. Everyone in korea speaks korean.
2. Noone else speaks korean.
3. Koreans are mainly interested in korean websites.
Ergo, when they pay $5 USD a month for 4mb internet accesss, the ISP is betting on the fact that they wont hardly have to pay for any international traffic.
I think this is one of these "in japan" jokes that seem to have become the new slashdot meme.
mplayer. You have nothing to fear from wmv.
Linux 2.6.7
I thought OpenBSD was dead?!?!?
Its not that bad... The thing is a linux box, with an admin password.
:-)
If you did the right thing and changed you admin password, then what you've really got is a linux box on a wan, with a hard to guess password.
Besides which, your running the Sweadish firmware anyway arn't you.
Is if somone ported airsnort to one of these.. Imagine throwing one under a desk for a week, while it cracked the wep key, then having it switch on its radio and broadcast the key as its SSID..
How big are prions? are these classed as bacteria simply because they have "cell walls"?
Capital punishment for monopolistic, insecure bloatware publishers.
Or atleast a class action lawsuit..
Anyone? Oh what everyone here uses linux anyway right? *snickers*
Considering that the RIAA sued weblisten for RE-distributing allofmp3.com's content, but didnt sue them, this is probably legal..
Comments on the article website seem to suggest that this *may* be a re-engineer of the Win32 api based on the stolen win2k codebase.
The phillipines is not known for its strict adherence to interlectual properties laws.
Actually, would this even be illegal?
If the codebase was stolen in the US, looked at in the phillipines and a program written based on that looking, would the program be legal in the US or not?
And what about elsewhere in the world?
I can see all the cookie cutter jokes about being slashdotted already.
Let me see.
"must have used the webservers 2gb hdd"
"must have back fired"
"hard drives now replacing RAM disks"
etc...
Here in the UK, try this. Get your cell phone (or mobile as we say here) dial 2580.
Hold the phone up to the radio till it gets disconnected.
Wait.
A text message will arrive with the name of the song.
It costs about 50p. Disclaimer i do not work for or have any involvment in this venture, except friends who built it.
I believe that it has been proven that the eye can, detecet under ideal circumstances, a single photon.
And the brain does some pretty funky things with persisting objects in "the minds eye" if they dissapear for a short amount of time.
Your point however is still valid. Its a *lot* of photons.
The CGI looks kind of cartoonely, kind of like when you can tell during the burly brawl when they stopped using keano and started using the all cgi character. ;-)
That being said ill still go see it...
Yeah, but they havn't replaced the cacerts in the previous versions. So if you download the latest 141 or even 131 version you'll still get the old version.
This is especially relevant to people using app servers like weblogic because the app server ships with a version of the JDK and your only supposed to use that version.
There is a file in the JDK called cacerts.
(find . -name cacerts is your friend), this contains the certificates Java uses when initiating ssl connections.
As of yesterday Sun was still shipping java with the expired 3a certificate.
The way to include the new 3a certificate is to use the keytool command.
The format is somthing like: keytool -v -keystore cacerts -import newcert.pem
The default password for java's cacerts file is "changeit"
VC
ps how many geek points do i get for fixing this last week?
Mod this guy up.. That rocks.
What, pray tell, do you find an acceptable course of action for the RIAA?
Fsck off and Die.
Crypto is your friend..