I hope these aren't any northen countries near my country. Normal nuc. power plants are ok. But you don't want anything like that floating really...
Were there not enough oil leaks in recent years from transport ships, to show, that at currect tech level YOU SHOULD NOT UNDERESTIMATE WATER!? (or anything that is in it and can hit your ship hard enough...)
With any other thing I would say - go on - kill yourself. But now thay don't kill themselves only:/
Do you really want to have your (for example) IDE controller memory avaliable in root's userspace? I don't think so - you wouldn't like bugs in any program then. One overflow and you've lost harddrive. Even Connector interacts with kernel memory by sockets.
So, if you want access to kernel from root account - please give us a reason why. What do you expect to gain by that? It's just the way it works. You should not be able to overwrite kernel by accident. You shouldn't be able to read it also. If there are some standard ways to interact with that memory (modules, connector, kmem), that are tested -> only things you lose are many ocasions to mess things up accidentally.
Even if root can be trusted, can programs he runs be trusted?
But in Win. you have to be admin, to use pagefile attack;)
Seriously though - root can't do anything. Without kmem, modules and other things that you can turn off manually, you shouldn't be able to access kernel memory. EVEN as a root. Especially with "new" security concepts like selinux. If you can get to kernel mem in any unauthorized way, even from root account - it is a big problem.
FF will be a loser in this. If new users won't find the popular FF on their brand new system, they'll start looking for some other / official web browser package, before someone will tell them, that Iceweasel / whatever IS in fact FF.
FF's popularity will suffer greatly if more forks will happen. I really don't understand why Mozilla Corp. doesn't worry about that.
It matters, because you now see MS as GREAT company, compared to little Apple. It's not supposed to make sence - it's supposed to make impression.
It's just fud genuine advantage...
It's all about being used to one enviroment... Don't know about vb, because it's... ok - don't want to troll, but in vs2005 c#.net (it should be similar in others):
- You just change the name of a variable / class / whatever and underline appears - move mouse over that changed name and you get menu: "rename 'aaa' to 'bbb'" or the same with preview / confirmations
- Display window when debuging? What's that? Haven't seen it in eclipse.
- Code generation? Vs2005 has it - not the same as eclipse, but it has. One thing is that class variable creator dialog is useless bloat... really - it's only one line to write. Yes - vs lacks properties (get {} set {}) generator, but there are many open source plugins for that. Other generators (event handlers prototypes and such) are build-in already.
Try to have some more fun with VS and you'll even find things not available in eclipse;)
Fortunately for those who detest spam, the authors also present four new defenses that could help stop this newer, more personalized spam. First, e-mail archives can be encrypted, making it difficult for malware to mine them for information.
WOW - so I've got to accept that my computer IS broken into and encrypt even local data? Thank you very much - my computer would rather not be broken into.
Second, these archives can also be "salted" with false information such as spam trap addresses. Third, the authors suggest that all URLs followed from an e-mail client be viewed in a "sandboxed" browser that would prevent automatic downloads.
Sandboxed browser? Ok - they're joking. Who uses external content displaying in their mail? And anyone hasn't got a "HTML=+80% spam" rule in mail client yet, generated AUTOMATICALLY FROM EXAMPLES?
Finally, anti-spam filters can be adjusted to better screen for these types of attacks.
Care to elaborate?
Ok - this is all going in the wrong direction. Why shouldn't I trust *my system*? Why should I allow my incomming mail to use outside objects? I thought that people, who can build a natural-language-messages data mining / composing system can understand basics of home computer security...
Besides - if spam will mimic a friend's style and probably send mail as that friend - then you know exactly who to filter out and who needs billing for a "PC security" lessons;)
Ok... I vote for "incorrect" moderation.
Knowing more about a problem helps solving it, more, than it helps people causing problems. Spamming is work now. They do research too - and not once in a while, but everyday.
Would you be more secure, if algorithms used by SSL were secret?
Would you get less spam, if only IT research guys and spammers knew how to spam "properly"?
We don't need another "keep it silent - it's not a problem" and "don't allow to export it to other countries - even if they know 1000 of other ways to do it..."
Besides - spammers know how a normal email header looks, but they haven't used it yet.;)
uses technology that is reasonably available, technologically feasible, and economically reasonable to prevent the making of copies
That is? I've got no software that can stream DRM'ed content (not available). Even if I had - it's still not preventing making of copies. Of course decompressed real audio compressed back to mp3 vbr loses quality... but it's still many times better than recording analog radio.
So... Is DRM really that technology?
Ok. This patch is really funny - just RTFA: "What the new [re-engineered] update essentially does is simply add the affected third-party software to an 'exception list' so that the problem does not occur."
So what they did? Made a patch, that breaks some functionality and then added some exceptions not to use it, where it breaks things.
I've got no idea how did they let it happen... patch is basically broken, they know it, some applications don't use that patch, because it breaks them and old bugs normally corrected by ver1 patch are still present there. What was the point of releasing patches again?
Worst support ever...
Anyone else finds something funny in this sentence?
"...hackers have infected at least 200 sites, many of which you would not normally expect to associate with such attacks (i.e., porn and pirated-software vendors)."
I see two things...
Probably someone from Justice Department asked something on a web forum and got standard "STFW" with google link.
Some people should just learn to use google, not ask feds to force informations out of it, really...;)
"Making money matters. More importantly, making money sustainably matters. Being a successful commercial software company is very hard... staying successful is even harder," Hilf said. "Developing coopetition strategies is a great way for growth in this environment and we're seeing that today."
He must be a director / big fish. He tells something, everybody knows and still gets public.
Affordable =\= avaliable. I'm waiting now for "The Whitlams" album - "Eternal Nightcap"...
Ordered it on 5th January 2006 (it's only 9 years old!). They're still trying for local distributor, to get it from anyone in Europe - unfortunatelly it is not present in any warehouse. Nope - I can wait till ~March and I already paid 1/4 of price.
I still want to buy it, when it's avaliable, but right now I'm listening to a copy from eMule.
Only one comment: SO SUE ME
Thanks I'm in Europe and "RIAA thing" can't swim;)
So if we do travel through time at 1s/s, we just need to know how animals are so fast. This dog lives about 10 years in my year, so it's living at the speed of 10s/s.
I'd never suspect it...
1. As F-Secure writes, Nyxem deletes files with extenstions: DOC, XLS, PPT, ZIP, RAR, PDF, MDB.
2. News said that deleting file was the problem.
Ok so only one extension of those can be used on a file, that can be a crucial file, that system has to have to keep running. But PLEASE! TELL ME, THAT THEIR STOCK EXCHANGE IS'T BASED ON.MDB FILES! PLEASE!
Maybe I'm not getting the idea right, but isn't it a work for a person skilled, for example, in marketing and adv. to make up descriptions for products? Or if it's a product, that doesn't require a special advertising description, can't it be done by person who spends about the same time to write an ad about that?
So the bird is capable of speaking our language and using our math ideas, but we aren't capable of understanding its own methods of communication... I feel really dumb as a human.
Slashdot Mirror
I hope these aren't any northen countries near my country. Normal nuc. power plants are ok. But you don't want anything like that floating really... :/
Were there not enough oil leaks in recent years from transport ships, to show, that at currect tech level YOU SHOULD NOT UNDERESTIMATE WATER!? (or anything that is in it and can hit your ship hard enough...)
With any other thing I would say - go on - kill yourself. But now thay don't kill themselves only
*COUGH*pagefile attack*COUGH*
No info about rc2 yet, but if they didn't want to correct it in rc1, then... who knows...
Do you really want to have your (for example) IDE controller memory avaliable in root's userspace? I don't think so - you wouldn't like bugs in any program then. One overflow and you've lost harddrive. Even Connector interacts with kernel memory by sockets.
So, if you want access to kernel from root account - please give us a reason why. What do you expect to gain by that? It's just the way it works. You should not be able to overwrite kernel by accident. You shouldn't be able to read it also. If there are some standard ways to interact with that memory (modules, connector, kmem), that are tested -> only things you lose are many ocasions to mess things up accidentally.
Even if root can be trusted, can programs he runs be trusted?
But in Win. you have to be admin, to use pagefile attack ;)
Seriously though - root can't do anything. Without kmem, modules and other things that you can turn off manually, you shouldn't be able to access kernel memory. EVEN as a root. Especially with "new" security concepts like selinux. If you can get to kernel mem in any unauthorized way, even from root account - it is a big problem.
FF will be a loser in this. If new users won't find the popular FF on their brand new system, they'll start looking for some other / official web browser package, before someone will tell them, that Iceweasel / whatever IS in fact FF.
FF's popularity will suffer greatly if more forks will happen. I really don't understand why Mozilla Corp. doesn't worry about that.
It matters, because you now see MS as GREAT company, compared to little Apple. It's not supposed to make sence - it's supposed to make impression.
It's just fud genuine advantage...
Adverbs ok - right. But verbs surely bad. Unevitable!l ery/2001/winners2001/tedholm.htm
http://www.scholastic.com/artandwritingawards/gal
At least Google did it correctly - they didn't use Java for it! When will other people learn... web + client side java = bad developer, no cookie
It's all about being used to one enviroment... Don't know about vb, because it's... ok - don't want to troll, but in vs2005 c#.net (it should be similar in others):
;)
- You just change the name of a variable / class / whatever and underline appears - move mouse over that changed name and you get menu: "rename 'aaa' to 'bbb'" or the same with preview / confirmations
- Display window when debuging? What's that? Haven't seen it in eclipse.
- Code generation? Vs2005 has it - not the same as eclipse, but it has. One thing is that class variable creator dialog is useless bloat... really - it's only one line to write. Yes - vs lacks properties (get {} set {}) generator, but there are many open source plugins for that. Other generators (event handlers prototypes and such) are build-in already.
Try to have some more fun with VS and you'll even find things not available in eclipse
Fortunately for those who detest spam, the authors also present four new defenses that could help stop this newer, more personalized spam. First, e-mail archives can be encrypted, making it difficult for malware to mine them for information.
WOW - so I've got to accept that my computer IS broken into and encrypt even local data? Thank you very much - my computer would rather not be broken into.
Second, these archives can also be "salted" with false information such as spam trap addresses. Third, the authors suggest that all URLs followed from an e-mail client be viewed in a "sandboxed" browser that would prevent automatic downloads.
Sandboxed browser? Ok - they're joking. Who uses external content displaying in their mail? And anyone hasn't got a "HTML=+80% spam" rule in mail client yet, generated AUTOMATICALLY FROM EXAMPLES?
Finally, anti-spam filters can be adjusted to better screen for these types of attacks.
Care to elaborate?
Ok - this is all going in the wrong direction. Why shouldn't I trust *my system*? Why should I allow my incomming mail to use outside objects? I thought that people, who can build a natural-language-messages data mining / composing system can understand basics of home computer security...
Besides - if spam will mimic a friend's style and probably send mail as that friend - then you know exactly who to filter out and who needs billing for a "PC security" lessons
Ok... I vote for "incorrect" moderation.
;)
Knowing more about a problem helps solving it, more, than it helps people causing problems. Spamming is work now. They do research too - and not once in a while, but everyday.
Would you be more secure, if algorithms used by SSL were secret?
Would you get less spam, if only IT research guys and spammers knew how to spam "properly"?
We don't need another "keep it silent - it's not a problem" and "don't allow to export it to other countries - even if they know 1000 of other ways to do it..."
Besides - spammers know how a normal email header looks, but they haven't used it yet.
uses technology that is reasonably available, technologically feasible, and economically reasonable to prevent the making of copies
That is? I've got no software that can stream DRM'ed content (not available). Even if I had - it's still not preventing making of copies. Of course decompressed real audio compressed back to mp3 vbr loses quality... but it's still many times better than recording analog radio.So... Is DRM really that technology?
Ok. This patch is really funny - just RTFA:
"What the new [re-engineered] update essentially does is simply add the affected third-party software to an 'exception list' so that the problem does not occur."
So what they did? Made a patch, that breaks some functionality and then added some exceptions not to use it, where it breaks things.
I've got no idea how did they let it happen... patch is basically broken, they know it, some applications don't use that patch, because it breaks them and old bugs normally corrected by ver1 patch are still present there. What was the point of releasing patches again?
Worst support ever...
Anyone else finds something funny in this sentence?
"...hackers have infected at least 200 sites, many of which you would not normally expect to associate with such attacks (i.e., porn and pirated-software vendors)."
I see two things...
Probably someone from Justice Department asked something on a web forum and got standard "STFW" with google link. ;)
Some people should just learn to use google, not ask feds to force informations out of it, really...
"Making money matters. More importantly, making money sustainably matters. Being a successful commercial software company is very hard ... staying successful is even harder," Hilf said. "Developing coopetition strategies is a great way for growth in this environment and we're seeing that today."
He must be a director / big fish. He tells something, everybody knows and still gets public.
Affordable =\= avaliable. I'm waiting now for "The Whitlams" album - "Eternal Nightcap"...
;)
Ordered it on 5th January 2006 (it's only 9 years old!). They're still trying for local distributor, to get it from anyone in Europe - unfortunatelly it is not present in any warehouse. Nope - I can wait till ~March and I already paid 1/4 of price.
I still want to buy it, when it's avaliable, but right now I'm listening to a copy from eMule.
Only one comment: SO SUE ME
Thanks I'm in Europe and "RIAA thing" can't swim
So if we do travel through time at 1s/s, we just need to know how animals are so fast. This dog lives about 10 years in my year, so it's living at the speed of 10s/s.
I'd never suspect it...
1. As F-Secure writes, Nyxem deletes files with extenstions: DOC, XLS, PPT, ZIP, RAR, PDF, MDB. .MDB FILES! PLEASE!
2. News said that deleting file was the problem.
Ok so only one extension of those can be used on a file, that can be a crucial file, that system has to have to keep running. But PLEASE! TELL ME, THAT THEIR STOCK EXCHANGE IS'T BASED ON
Maybe I'm not getting the idea right, but isn't it a work for a person skilled, for example, in marketing and adv. to make up descriptions for products? Or if it's a product, that doesn't require a special advertising description, can't it be done by person who spends about the same time to write an ad about that?
If one makes the other to make him to.... Human behaviour fractal?
(please remote-controlled-mod-down every "I'm a woman, you insensiti...." reply
I hope it's only part of next issue - "messing with media for fun and profit"...
I see a new google poisoning action comming... this time misspelled democracy words for the crawler, like -> dmeocracy.
Can they filter it all out?
So the bird is capable of speaking our language and using our math ideas, but we aren't capable of understanding its own methods of communication... I feel really dumb as a human.