Yes Palm could write their own sync program using iTune's XML file, but this does not offer the same convenience to the user of having iTunes perform the sync itself. Windows media player will sync to pretty much anything that shows up as USB mass storage/music transfer protocol. iTunes only syncs Apple devices.
That's the use opting to execute extra javascript on your page, if this breaks your web site/application for more than that user then you are not doing it right. The posted hack is something much more fun.
Given the Beebs previous actions with the iplayer, I am going to believe for now this is only because the content providers have requested it. The BBC does sometimes show imported shows like The Wire, Heroes, etc. The makers of these shows are probably reluctant to let the BBC broadcast them in HD without any sort of copy protection*. This is the same problem that made them use DRM on the iplayer, first windows only and now the adobe stuff. (They had the cross platform air application out the same day adobe released air, and even published a news story on their website talking about how some people had broken the windows DRM they were using and what the program was called hint hint nudge nudge.)
*because then us Brits might put them on bittorrent, instead of downloading the American ones that are released months/years earlier. The only time I ever saw a show from here first was some of the last Stargate SG1, because Sky (a UK satellite TV outfit, not free or unencrypted) didn't have the mid season break. Look at the channel ident from any torrent to get a good idea of where it aired first.
Javascript has eval yes, but the only way you can run javascript on your iphone is inside the web browser, . Native apps on the other hand that run on the hardware itself are not allowed to eval, so your app in the appstore can't just be a wrapper that downloads new code each time it is run and evals it. Same is true of any other mechanism for running non-approved code in your apps. You can't have a java VM/.NET.mono runtime, but if you compile your app+mono down to one executable, so the framework bit you can only run your app, that might be ok.
I am on BT in West London, and I get a ping of 15ms to my favourite TF2 server sitting a couple of hops away from Telehouse, so its reasonable that if these guys had a server around there, Latency for London shouldn't be a problem. Reliably supplying the bandwidth, even on their top broadband package (8Mb atm) may be more of a problem.
My understanding is this a protocol based, rather than TCP attack (the proof uses a normal python socket to send some data), so if the firewall eats the packet instead of letting the SMB service get it, the PC will be fine.
MSIs are nice, and even better when deployed with group policy. The only issue for users is download and click on an MSI is pretty much identical to download and click on an exe that looks like a MSI but is not.
Looking through my downloads folder on windows, I have 100s of exes and zips/rars, but only maybe 10 or so MSIs (Apache, Steam, Quake live, TortoiseSVN, Handbrake), clearly their use is far from universal (are the tools required to produce them expensive?)
So it's not a web browser, but rather a HTML rendering widget you can use to write a web browser, or use in other programs? I think.NET has one of those based on the I.E engine...
Much like people downloading exes from all over the place now then, and being lucky if its a nice installer you can remove with add/remove programs. Using the central package manager to manage software installs would be a step up from what we have with windows now.
Linux people can't claim installing software is so much simpler than windows because you just apt-get install AND discourage 3rd parties from using this system at the same time. If it ever hits the desktop big time, Linux will have to cope with www.joescoollinuxshareware.com
For support and troubleshooting, lets add a mechanism to boot with only the distributions modules/packages loaded, and any software pulled from external repositories disabled, could call it safe mode or something....
I think a good idea would be some way of specifying a repo and package in a hyperlink, so when clicked and the user confirms they want to install software, the package manager adds the repo to its list, then installs the package, and said package is then updated the usual way. You get bonus points for a mechanism for signing the packages using the websites SSL cert, as well as an easy way of setting up a repo on any cheap web hosting plan.
This gives the advantages of automatic package management, and allows websites to keep their shiny 'download' links as a way of installing software. Disadvantages would be the risk of repos disappearing leaving the user unable to update their software.
IIRC the google chrome linux installer is a script that does roughly this, but you need to save and execute it.
On the original article, it has a point, having to install updates to 2 or 3 little packages every day is annoying, if its not a massive security flaw, just wait and push them all out once a week or so.
So buy the phone and put your sim card in it.. I think what you mean is the carriers won't subsidise the phone, so you may have to cough up the full hardware price.
But along with signing your DNS records, you can sign a text record containing a hash of your webservers SSL cert, that way anyone who can verify your DNS records can also check that the SSL cert they are being provided with belongs to the owner of the DNS entries. (You know these are correct and have not been MITMed because they are signed by the previous level of DNS, up to the root zone which you have to acquire in some secure way.
The problem is that even without you authorising any applications, as soon as any of your friends take a quiz, that application can see anything about you your friend can. The what length of wood is your dog like quiz has no need of this info, but its not simple to disable its access.
You can turn off this behavior, but only if you don't have any applications authorised yourself (I have an application I have written to fill a box with content from an external site on one of my pages, I can't have this on my profile or access the developers network app AND block quizzes from reading my info at the same time).
Trusting all your friends/networks not to do things that will compromise your privacy is also a non-stater.
According to amazon.co.uk, since I am running XP, I could get a vista home premium upgrade for £60, and they will throw in a full windows 7 home premium free..
You can't mod the TF2 codebase, but owning any source engine game on steam lets you download the source SDK Base. This is a minimal source engine install you can add your own assets and code to for making mods based on the source engine. It included enough assets to load the Lost Coast HDR sample map and the Half-life 2 code. Using this base means your mod can be played by anyone who has a source game (so someone with just L4D can play with someone who only has HL2), but it does mean you need to provide your own content.
Zoe Kleinman tries out Acrossair's software that uses a phone's camera to tell you where the nearest London Underground station is.
It's using the phones GPS, compass and accelerometers to decide what to draw on the screen, NOT the camera, if you watch the video the bloke even says as much. Mush more impressive would be applications that can use what the camera sees by reading text/barcodes or recognising objects and combining it with GPS and internet data to offer more infomation on the world around us.
I think the PHP Gtk binding are still a compile from source mission on ubuntu, there was not a package available when I needed it a few weeks ago. Plus if you leave the module in your default php config, it breaks php (as in won't run even non Gtk scripts) whenever it it run from somewhere without a window manager available (ssh, cron, etc).
I think you are given some random people to follow when you join, not sure why. Most of my random followers seem to be spam, but there are some real people in there.
Slashdot Mirror
Yes Palm could write their own sync program using iTune's XML file, but this does not offer the same convenience to the user of having iTunes perform the sync itself. Windows media player will sync to pretty much anything that shows up as USB mass storage/music transfer protocol. iTunes only syncs Apple devices.
That's the use opting to execute extra javascript on your page, if this breaks your web site/application for more than that user then you are not doing it right. The posted hack is something much more fun.
Reminds me of a very similar worm that hit myspace years ago:
http://web.archive.org/web/20060208182348/namb.la/popular/tech.html
Same thing, find a way of executing javascript and then have it self-replicate by posting itself all over the site.
The 30 and 12 percent are for converting from electricity to light and then back again....
My keyboard does not have a windows key you insensitive clod!
No really, it was 'Made in West Germany' and still works perfectly.
Given the Beebs previous actions with the iplayer, I am going to believe for now this is only because the content providers have requested it. The BBC does sometimes show imported shows like The Wire, Heroes, etc. The makers of these shows are probably reluctant to let the BBC broadcast them in HD without any sort of copy protection*. This is the same problem that made them use DRM on the iplayer, first windows only and now the adobe stuff. (They had the cross platform air application out the same day adobe released air, and even published a news story on their website talking about how some people had broken the windows DRM they were using and what the program was called hint hint nudge nudge.)
*because then us Brits might put them on bittorrent, instead of downloading the American ones that are released months/years earlier. The only time I ever saw a show from here first was some of the last Stargate SG1, because Sky (a UK satellite TV outfit, not free or unencrypted) didn't have the mid season break. Look at the channel ident from any torrent to get a good idea of where it aired first.
No No No
Javascript has eval yes, but the only way you can run javascript on your iphone is inside the web browser, . Native apps on the other hand that run on the hardware itself are not allowed to eval, so your app in the appstore can't just be a wrapper that downloads new code each time it is run and evals it. Same is true of any other mechanism for running non-approved code in your apps. You can't have a java VM/.NET.mono runtime, but if you compile your app+mono down to one executable, so the framework bit you can only run your app, that might be ok.
I am on BT in West London, and I get a ping of 15ms to my favourite TF2 server sitting a couple of hops away from Telehouse, so its reasonable that if these guys had a server around there, Latency for London shouldn't be a problem. Reliably supplying the bandwidth, even on their top broadband package (8Mb atm) may be more of a problem.
My understanding is this a protocol based, rather than TCP attack (the proof uses a normal python socket to send some data), so if the firewall eats the packet instead of letting the SMB service get it, the PC will be fine.
MSIs are nice, and even better when deployed with group policy. The only issue for users is download and click on an MSI is pretty much identical to download and click on an exe that looks like a MSI but is not.
Looking through my downloads folder on windows, I have 100s of exes and zips/rars, but only maybe 10 or so MSIs (Apache, Steam, Quake live, TortoiseSVN, Handbrake), clearly their use is far from universal (are the tools required to produce them expensive?)
So it's not a web browser, but rather a HTML rendering widget you can use to write a web browser, or use in other programs? I think .NET has one of those based on the I.E engine...
Much like people downloading exes from all over the place now then, and being lucky if its a nice installer you can remove with add/remove programs. Using the central package manager to manage software installs would be a step up from what we have with windows now.
Linux people can't claim installing software is so much simpler than windows because you just apt-get install AND discourage 3rd parties from using this system at the same time. If it ever hits the desktop big time, Linux will have to cope with www.joescoollinuxshareware.com
For support and troubleshooting, lets add a mechanism to boot with only the distributions modules/packages loaded, and any software pulled from external repositories disabled, could call it safe mode or something....
I think a good idea would be some way of specifying a repo and package in a hyperlink, so when clicked and the user confirms they want to install software, the package manager adds the repo to its list, then installs the package, and said package is then updated the usual way. You get bonus points for a mechanism for signing the packages using the websites SSL cert, as well as an easy way of setting up a repo on any cheap web hosting plan.
This gives the advantages of automatic package management, and allows websites to keep their shiny 'download' links as a way of installing software. Disadvantages would be the risk of repos disappearing leaving the user unable to update their software.
IIRC the google chrome linux installer is a script that does roughly this, but you need to save and execute it.
On the original article, it has a point, having to install updates to 2 or 3 little packages every day is annoying, if its not a massive security flaw, just wait and push them all out once a week or so.
So buy the phone and put your sim card in it.. I think what you mean is the carriers won't subsidise the phone, so you may have to cough up the full hardware price.
There is much that can be done with a clever client to hide and compensate for latency, see:
http://developer.valvesoftware.com/wiki/Latency_Compensating_Methods_in_Client/Server_In-game_Protocol_Design_and_Optimization
But along with signing your DNS records, you can sign a text record containing a hash of your webservers SSL cert, that way anyone who can verify your DNS records can also check that the SSL cert they are being provided with belongs to the owner of the DNS entries. (You know these are correct and have not been MITMed because they are signed by the previous level of DNS, up to the root zone which you have to acquire in some secure way.
The problem is that even without you authorising any applications, as soon as any of your friends take a quiz, that application can see anything about you your friend can. The what length of wood is your dog like quiz has no need of this info, but its not simple to disable its access.
You can turn off this behavior, but only if you don't have any applications authorised yourself (I have an application I have written to fill a box with content from an external site on one of my pages, I can't have this on my profile or access the developers network app AND block quizzes from reading my info at the same time).
Trusting all your friends/networks not to do things that will compromise your privacy is also a non-stater.
According to amazon.co.uk, since I am running XP, I could get a vista home premium upgrade for £60, and they will throw in a full windows 7 home premium free..
http://www.amazon.co.uk/gp/feature.html/ref=amb_link_84366313_1?ie=UTF8&docId=1000321063&pf_rd_m=A3P5ROKL5A1OLE&pf_rd_s=special-product-offers-3&pf_rd_r=1N0XDYG13SRJD90788PR&pf_rd_t=201&pf_rd_p=470374053&pf_rd_i=B0013O54P8
You can't mod the TF2 codebase, but owning any source engine game on steam lets you download the source SDK Base. This is a minimal source engine install you can add your own assets and code to for making mods based on the source engine. It included enough assets to load the Lost Coast HDR sample map and the Half-life 2 code. Using this base means your mod can be played by anyone who has a source game (so someone with just L4D can play with someone who only has HL2), but it does mean you need to provide your own content.
Zoe Kleinman tries out Acrossair's software that uses a phone's camera to tell you where the nearest London Underground station is.
It's using the phones GPS, compass and accelerometers to decide what to draw on the screen, NOT the camera, if you watch the video the bloke even says as much. Mush more impressive would be applications that can use what the camera sees by reading text/barcodes or recognising objects and combining it with GPS and internet data to offer more infomation on the world around us.
Were there any non trivial reward everyone would go there...
I think the PHP Gtk binding are still a compile from source mission on ubuntu, there was not a package available when I needed it a few weeks ago. Plus if you leave the module in your default php config, it breaks php (as in won't run even non Gtk scripts) whenever it it run from somewhere without a window manager available (ssh, cron, etc).
All in all a pain in the ass.
No, it's your OS's job to decide what pressing keypad-minus does, the keyboard should simply tell the OS that keypad-minus key was pressed
Client != Server?
Quite why you would run a FTP server on windows is a
I think you are given some random people to follow when you join, not sure why. Most of my random followers seem to be spam, but there are some real people in there.