These manuals are not just text. Approach plates and charts are large diagrams, and while they might display fine on the Kindle there is a lot of detail that needs to be zoomed in on. The touch interface is better for this, maybe some Android tablets could take that role, but that would require incentive for the airlines to have it evaluated. It doesn't matter if you hate Apple, it matters if it's cost effective for them to get something else approved, and if they're likely to have it obsolete and unsupported within a few months.
The iPad is the only device that someone has had evaluated and tested by the FAA to gain that approval, and it wasn't Apple paying, it was the airlines that wanted to use it.
If someone wants to use a Kindle, they will have to have it evaluated. Since the iPad has already been approved, there's a lower probability of someone going for another device unless it is somehow an airborne iPad killer.
You're not talking a pad of small paper, you're talking multiple "pads" of several hundred pages if not over a thousand, which have to be periodically updated and replaced but maybe not every page at that time, so you can't even just recycle the whole book. Moving to an electronic chart probably has quite a bit of savings just in man hours alone.
They can glide for more than a few minutes unless they're already low, for example British Airways Flight 9 (747-200) could have glided for 23 minutes and covered 91 nmi from FL370, but they were able to restart the engines.
A320, 747, 767 have a better glide ratio than the typical Cessna 172 trainer, meaning they can cover more ground and have a higher possibility of getting to an airport without the engines, which is the real concern.
Many of the iPad apps already include georeferenced approach plates and airport diagrams, and support third party GPS receivers with support for WAAS. There are already receivers and app support for ADS-B which isn't even supported by most of the carriers at this point.
You're assuming that the pilots can see there is a problem. If the interference is subtle, it may only cause a VOR or DME to point slightly off of where it should be pointing, which could be compounded into very real navigational issues. Of course, you would hope ATC calls you out if you're flying way off course.
I don't think that's as realistic an issue as the threat of LightSquared 4G which is already known to disrupt GPS.
The iPad has airplane mode which turns off all the radios.
Users don't run as admin, even with an administrator account. They are generally unaware of this.
Macs still have a root account, and much like Ubuntu it is locked down and unavailable by default. It is possible to configure the root account and login to the console or gui with it, to make the required fixes, and then disable the account afterwards. Macs also have single user mode, so if things got a little more hectic you could boot into that and remove the malware without an issue and reboot back into a clean system. On a side note this is also why Macs are inherently insecure by default, because it is trivial to login under single user mode and do whatever you want with any user's files. The keychain is an improvement because changing the user's password will not give access, but their files are still insecure by default.
Because maybe you don't want to share all of your Applications with all of the users on the computer?
For a single user it makes no difference, but maybe you don't want your kids messing around with HotPron.app, so you keep it in your own locked down profile.
If it's installing to a user-controller folder, UAC will not activate for it. That's one of the reasons World of Warcraft installs to a user-writable folder (on Windows), so the program can run and/or update without needing to trigger UAC. This same attack vector is present in Windows, Mac and Linux.
You will still get the explorer warning, just like the finder warning you get on the Mac.
Linux doesn't yet have the marketshare, but when it does I think there are some often overlooked areas that could be pretty damaging to the secure reputation at some point.
The first is the continued usage of unsigned packages by some distributions. Take over a mirror and you can infect a ton of users with a patched gnome package, depending on the level of access you may be able to increment the version number and cause everyone to update to the infected version. The second is the apparent lack of oversight when it comes to adding packages into repositories in the first place. If the software source package has been patched on the author's server, there is good chance the patched version is what gets built for the repository if the autobuild system just downloads the patched source package.
Park a Ferrari in a mall parking lot and I guarantee it is more likely to be stolen, or simply keyed, than the old Datsun pickup or the Camry it's parked next to. It's always pointed out and people always yell about fanbois, but I'm just speaking from a basic economic level. Beating the Mac means they get to keep it and enjoy for themselves, or resell it for nearly 100% of the heavily inflated retail cost, and they keep the prize money as well. At that point if they even wanted a new computer, they can get one and still have some left over from the sale of the Mac.
I really think an interesting side premise if they really wanted to test the security of these platforms is to rotate the prizes. You pwn one box and get a different one. I believe there is a very high likelihood that whatever platform provided the Mac would end up pwned first.
In general a safe file is a dmg. There is no exploit taking place here. Someone gets a drive by download, Safari opens the safe file (it is safe, they are not infected at this point), it says they need to install MacDefender, and *they choose to install MacDefender*. If Safari isn't configured to open safe files, then it just downloads the file but doesn't open it. A user could still, and many will, open the downloaded dmg and end up in the same boat.
Yes, it has been an issue, but only with a direct connection to the Internet.
Directly connected Windows XP would generally have contracted a worm before the installation process had even completed, before creating a user account. A lot of the danger with this was fixed in SP2, because the firewall was enabled during the install process at the same time the network was enabled.
Documentaries about Area 51 love to focus on those signs as if they are unique, but they are not. Those signs are pretty ubiquitous on Air Force bases around restricted areas, such as the flight line or a sensitive building. An example is this one from Langley AFB (not my photo). They are also posted on the fences around a base.
If you ever visit an Air Force base for an air show, look around the entry control points, they are sure to have that sign nearby.
Deadly force authorized does not mean shoot on sight, you are more likely to be detained or escorted away. It is unlikely you would be shot, even there, unless you were threatening or attempted to do something stupid like a high speed run onto the property.
Your own key doesn't have to be permanent. You can change your own key between every transaction, if you wanted, which would make it much harder to trace money coming to you from somewhere else.
The formula scales based on the computing power of the whole network. A two node network will have an easier time computationally but theoretically take the same amount of time. The theory is at some point it is simply too expensive physically, as every corporation and botnet is also making the job harder for themselves.
Already happening. When I pay with my debit card, paper bills do not shoot out of the card. This is how cash will be replaced. Slowly, with numbers in the network. Enough people using cards means you can slowly phase out the paper money without them even noticing.
What gamble? If someone uses your card for unauthorized purchases you call up the card company, they cancel the charges and issue you a new card. The most you are charged is $50, but most banks don't even charge that. It's a minor inconvenience waiting for your new card to arrive, but not dangerous unless you don't pay attention to your statements and end up with ruined credit.
If anyone is gambling it is the vendors that accept credit cards, because they are the ones that are out money and product if there is a fraudulent transaction.
Hundreds of millions of hits is every Internet user in the US going to one or two sites. Billions to the tens of billions is more likely the kind of daily transaction records you're looking at if it's HTTP. The story appears to say it would be IP address mappings, which sounds much more manageable and may even end up with more users getting the pseudo-static IP addresses that some ISPs use (my IP hasn't changed in years, despite power outages and Internet disruption).
If you have fraudulent charges and get them canceled, the vendors that sold the merchandise to the thief get hit with the chargebacks. It may affect prices somewhere, but not on the Sony end.
Sony has debit cards because people are stupid sometimes, or they may not have a credit card. I blame the banks for making it so convenient that it "acts like a credit card!" It's great when you want to pay for something that doesn't take debit (restaurant? Not that smart to use debit there either), but horrible anywhere where credit card theft is likely, such as online.
There's a hole in this plan, the USPS Mail Forwarding FAQ makes it clear:
You should receive a letter from the USPS at your old address to validate your move. This letter will not show your new mailing address to protect your privacy. You should also receive a confirmation letter or welcome kit from the USPS after your address has been changed.
If you receive a letter saying your address has been changed, it's probably a good idea to go tell the USPS that this was fraudulent. It would almost be a good thing for this to happen, as the USPS has its own Law Enforcement arm (the Postal Inspection Service) which is, coincidentally, charged with investigating cases of mail fraud and (winner here) identity theft. USPS won't give you the new address, but they certainly know where the intended destination was. ID thief now finds themselves hit with Federal charges.
Slashdot Mirror
These manuals are not just text. Approach plates and charts are large diagrams, and while they might display fine on the Kindle there is a lot of detail that needs to be zoomed in on. The touch interface is better for this, maybe some Android tablets could take that role, but that would require incentive for the airlines to have it evaluated. It doesn't matter if you hate Apple, it matters if it's cost effective for them to get something else approved, and if they're likely to have it obsolete and unsupported within a few months.
The iPad is the only device that someone has had evaluated and tested by the FAA to gain that approval, and it wasn't Apple paying, it was the airlines that wanted to use it.
If someone wants to use a Kindle, they will have to have it evaluated. Since the iPad has already been approved, there's a lower probability of someone going for another device unless it is somehow an airborne iPad killer.
You're not talking a pad of small paper, you're talking multiple "pads" of several hundred pages if not over a thousand, which have to be periodically updated and replaced but maybe not every page at that time, so you can't even just recycle the whole book. Moving to an electronic chart probably has quite a bit of savings just in man hours alone.
They can glide for more than a few minutes unless they're already low, for example British Airways Flight 9 (747-200) could have glided for 23 minutes and covered 91 nmi from FL370, but they were able to restart the engines.
A320, 747, 767 have a better glide ratio than the typical Cessna 172 trainer, meaning they can cover more ground and have a higher possibility of getting to an airport without the engines, which is the real concern.
Many of the iPad apps already include georeferenced approach plates and airport diagrams, and support third party GPS receivers with support for WAAS. There are already receivers and app support for ADS-B which isn't even supported by most of the carriers at this point.
You're assuming that the pilots can see there is a problem. If the interference is subtle, it may only cause a VOR or DME to point slightly off of where it should be pointing, which could be compounded into very real navigational issues. Of course, you would hope ATC calls you out if you're flying way off course.
I don't think that's as realistic an issue as the threat of LightSquared 4G which is already known to disrupt GPS.
The iPad has airplane mode which turns off all the radios.
The company that built the A-12 also built the SR-71, U-2, F-22, F-35 and who knows what else.
Users don't run as admin, even with an administrator account. They are generally unaware of this.
Macs still have a root account, and much like Ubuntu it is locked down and unavailable by default. It is possible to configure the root account and login to the console or gui with it, to make the required fixes, and then disable the account afterwards. Macs also have single user mode, so if things got a little more hectic you could boot into that and remove the malware without an issue and reboot back into a clean system. On a side note this is also why Macs are inherently insecure by default, because it is trivial to login under single user mode and do whatever you want with any user's files. The keychain is an improvement because changing the user's password will not give access, but their files are still insecure by default.
Because maybe you don't want to share all of your Applications with all of the users on the computer?
For a single user it makes no difference, but maybe you don't want your kids messing around with HotPron.app, so you keep it in your own locked down profile.
Not with this "vulnerability" it wouldn't.
If it's installing to a user-controller folder, UAC will not activate for it. That's one of the reasons World of Warcraft installs to a user-writable folder (on Windows), so the program can run and/or update without needing to trigger UAC. This same attack vector is present in Windows, Mac and Linux.
You will still get the explorer warning, just like the finder warning you get on the Mac.
It can happen very easily. It's one of the reasons many Linux boxes also run antivirus software.
OS X Server came with clamav installed, I think it was related to this.
Linux doesn't yet have the marketshare, but when it does I think there are some often overlooked areas that could be pretty damaging to the secure reputation at some point.
The first is the continued usage of unsigned packages by some distributions. Take over a mirror and you can infect a ton of users with a patched gnome package, depending on the level of access you may be able to increment the version number and cause everyone to update to the infected version. The second is the apparent lack of oversight when it comes to adding packages into repositories in the first place. If the software source package has been patched on the author's server, there is good chance the patched version is what gets built for the repository if the autobuild system just downloads the patched source package.
Park a Ferrari in a mall parking lot and I guarantee it is more likely to be stolen, or simply keyed, than the old Datsun pickup or the Camry it's parked next to. It's always pointed out and people always yell about fanbois, but I'm just speaking from a basic economic level. Beating the Mac means they get to keep it and enjoy for themselves, or resell it for nearly 100% of the heavily inflated retail cost, and they keep the prize money as well. At that point if they even wanted a new computer, they can get one and still have some left over from the sale of the Mac.
I really think an interesting side premise if they really wanted to test the security of these platforms is to rotate the prizes. You pwn one box and get a different one. I believe there is a very high likelihood that whatever platform provided the Mac would end up pwned first.
In general a safe file is a dmg. There is no exploit taking place here. Someone gets a drive by download, Safari opens the safe file (it is safe, they are not infected at this point), it says they need to install MacDefender, and *they choose to install MacDefender*. If Safari isn't configured to open safe files, then it just downloads the file but doesn't open it. A user could still, and many will, open the downloaded dmg and end up in the same boat.
Yes, it has been an issue, but only with a direct connection to the Internet.
Directly connected Windows XP would generally have contracted a worm before the installation process had even completed, before creating a user account. A lot of the danger with this was fixed in SP2, because the firewall was enabled during the install process at the same time the network was enabled.
Documentaries about Area 51 love to focus on those signs as if they are unique, but they are not. Those signs are pretty ubiquitous on Air Force bases around restricted areas, such as the flight line or a sensitive building. An example is this one from Langley AFB (not my photo). They are also posted on the fences around a base.
If you ever visit an Air Force base for an air show, look around the entry control points, they are sure to have that sign nearby.
Deadly force authorized does not mean shoot on sight, you are more likely to be detained or escorted away. It is unlikely you would be shot, even there, unless you were threatening or attempted to do something stupid like a high speed run onto the property.
Your own key doesn't have to be permanent. You can change your own key between every transaction, if you wanted, which would make it much harder to trace money coming to you from somewhere else.
The formula scales based on the computing power of the whole network. A two node network will have an easier time computationally but theoretically take the same amount of time. The theory is at some point it is simply too expensive physically, as every corporation and botnet is also making the job harder for themselves.
Already happening. When I pay with my debit card, paper bills do not shoot out of the card. This is how cash will be replaced. Slowly, with numbers in the network. Enough people using cards means you can slowly phase out the paper money without them even noticing.
Although you would think the silver would be a huge giveaway.
What gamble? If someone uses your card for unauthorized purchases you call up the card company, they cancel the charges and issue you a new card. The most you are charged is $50, but most banks don't even charge that. It's a minor inconvenience waiting for your new card to arrive, but not dangerous unless you don't pay attention to your statements and end up with ruined credit.
If anyone is gambling it is the vendors that accept credit cards, because they are the ones that are out money and product if there is a fraudulent transaction.
Hundreds of millions of hits is every Internet user in the US going to one or two sites. Billions to the tens of billions is more likely the kind of daily transaction records you're looking at if it's HTTP. The story appears to say it would be IP address mappings, which sounds much more manageable and may even end up with more users getting the pseudo-static IP addresses that some ISPs use (my IP hasn't changed in years, despite power outages and Internet disruption).
If you have fraudulent charges and get them canceled, the vendors that sold the merchandise to the thief get hit with the chargebacks. It may affect prices somewhere, but not on the Sony end.
Sony has debit cards because people are stupid sometimes, or they may not have a credit card. I blame the banks for making it so convenient that it "acts like a credit card!" It's great when you want to pay for something that doesn't take debit (restaurant? Not that smart to use debit there either), but horrible anywhere where credit card theft is likely, such as online.
There's a hole in this plan, the USPS Mail Forwarding FAQ makes it clear:
You should receive a letter from the USPS at your old address to validate your move. This letter will not show your new mailing address to protect your privacy. You should also receive a confirmation letter or welcome kit from the USPS after your address has been changed.
If you receive a letter saying your address has been changed, it's probably a good idea to go tell the USPS that this was fraudulent. It would almost be a good thing for this to happen, as the USPS has its own Law Enforcement arm (the Postal Inspection Service) which is, coincidentally, charged with investigating cases of mail fraud and (winner here) identity theft. USPS won't give you the new address, but they certainly know where the intended destination was. ID thief now finds themselves hit with Federal charges.