This has NOTHING to do with software as a service, NOTHING to do with thin clients, and this was made clear in several of the posts when this article came around the first time. Yet everyone blindly parrots an article that is almost totally devoid of facts.
Midori is an offshoot of a micro-kernel OS that aims to make development in a distributed environment much easier. Call it "cloud computing" if you wish (a term I hate, but at least it's on the right track).
I don't know how we got from network IPC to "OS on a browser that I have to pay a monthly fee for? OMFGWTF!!!1one!". Honestly.
At the very worst, a self signed certificate is no worse than a plain HTTP connection.
That depends. I'd argue that it's actually worse if it give the user a false sense of security.
Let's say that we implement the trust system that you propose (self-signed certs appear as more secure than plain sites, and less secure than trusted certs). This would do nothing to prevent against phishing attacks. In fact you'd have just as many attacks, but all the phishers would start using self-signed certs so that their sites appear as "more secure" than a regular website.
As firefox gains market share Mozilla has to abandon the assumptions that their userbase is tech-savvy and has web "street-smarts". I agree that this policy is onerous and it has affected me personally for some sites that I'm using self-signed certs on.
Ultimately I think that Firefox 3's policy is the only one that will make a dent in phishing, but there is collateral damage. I think the author's attempt to liken this to a violation of net neutrality is wrong.
I stand corrected! Honestly I assumed he was referring to Douglas Adams who was the writer of the Hitchhiker's Guide and Starship Titanic games. My bad.
A few months back I changed my LDAP password to "I drink your milkshake!". On one hand, it was easy to remember while still being very secure (despite those words being in a dictionary, I'd wager it's still immune from a dictionary attack).
On the downside, whenever I signed on to our application to run a demo the users would see 23 "*" characters in the password field and then look at me like I suffered from acute paranoia (they're probably right, but still, it's embarrassing).
Eventually I changed it to something shorter. Not that it was hard to remember, but because during initial sign-on (before morning coffee) I would invariably fat-finger one of the 23 keypresses.
I don't think anyone's arguing otherwise. Honestly, I think the only hubbub is over the whole "Not creative expression" bit. I think that they are much more concerned with dealing with copyright issues and the fact that these game videos tend to be quite long. They should have kept it at that, and left out the perceived slight to gamers.
Re:Why didn't they just kill the lawyer?
on
Batman Discussion
·
· Score: 1
Why didn't they just kill the lawyer?
Because then you wouldn't have the awesome explosion sequence! I'm sure people will try to go through mental gymnastics to explain it, but the real reason is that because Nolan wanted to blow up a hospital, because explosions are cool.
What I'm wondering is: Why did the Joker go through so much effort to reveal Batman's identity in the first half of the film, only to turn around and ensure that his identity was hidden in a later scene?
The attach rates for the system certainly seems to confirm this theory.
I'd say the Wii Sports pack-in is the #1 factor behind the low attach rate, but #2 is the crappy 3rd party titles. But on the other hand, Wii Sports is the Wii "killer app" -- what if they didn't bundle it and some families bought Ninjabread Man instead, it probably wouldn't be the runaway success it is now.
Personally I've always thought of the Wii as more of a gimmick and that this was all a fad, but after 10 million units sold it's still going strong. So that shows what I know.
Still, I wonder if the Wii's lifecycle will be as long as the N64 and SNES. My personal experience is that my family and I really enjoyed the wii for the first few months, but now we find that we rarely play it. I tend to prefer my 360, and my daughter has gravitated to PC-based games like Webkinz and Nick Arcade. Also, while I think that Nintendo's first party titles are always pretty good, the 3rd party signal-to-noise ratio is getting worse and worse. Nintendo's E3 performance was roundly considered to be the worst of the big three -- even if you come at it from a non-hardcore perspective, they didn't outline as many exciting titles as in previous years.
So what do you guys think? Is the Wii popularity going to stay strong over the next three years, or is there going to be a drop off?
Ubi should sack whatever middle-manager that decided to release this as an "official" patch or lazy programmer that decided to submit this rather than build a proper executable and give THEM a job instead.
Wait a second. You're suggesting that Ubisoft should be taken to task stealing some cracker's hard work? Sounds to me like fair play. Why waste Ubisoft resources on making a patch when they can just steal one?
If I post a picture on the internet, sure anyone can see it, but I still retain right of publication (or the perhaps the site that it is posted on depending on the legal mumbo jumbo).
But that's not what we're talking about here. The newspapers aren't being accused of plagiarism, they are being accused of defamation and invasion of privacy.
If I put up a poster on a University Bulletin Board with a picture of my house saying big party, that does not give you the right to scan it in and use the picture in a news story about about the big party.
Actually, depending on the where you live and the quality of the reproduction, you may have the right to do exactly that. But again, that's not what we're talking about. If you disseminate information to the public at-large, I don't have the right to copy word-for-word what you said, but I can paraphrase it, report on it, etc.
She did not consent to the publication in the media of any photograph of her or her party, or of any material that she wrote on her Bebo site
Too bad. When you publish stuff on the internet for all of the world to see it really undermines your privacy claims. Now, if this girl only allowed her stories to be seen by those she had designated as friends, then she might have a leg to stand on with respect to privacy.
Also, the defamation claim is curious. I haven't ever seen a case where the the originator of the false statements is the same person suing the newspapers for making false statements.
Point taken. And apparently this is a internal "20% project" from google, not something that they acquired. This makes it less of a head scratcher for me. I can't see it becoming popular, but I said the same about myspace...
Why on earth did Google buy this? Yeah, they're scooping up all sorts of social web apps, but they tend to be pretty goo web apps. Maybe they were really after underlying patents?
Agreed. I think that E3 and PAX together serve the audience that was previously attending the "old" E3. And that's a good thing. Now the industry insiders aren't complaining about the signal-to-noise ratio, and gamers get to... well, play new and upcoming games. Sounds like a win/win.
(Note: I left DHL for another company shortly after their takeover of Airborne, so things may have changed since then)
Well, for a multinational like DPWN, the term "Outsourcing" from a geographic sense is a bit tricky to define. They are based in Germany, and have major data centers in Asia, the US, and Europe. Furthermore, since DPWN and DHL both farmed out a lot of their development to Indian and Romanian subcontractors, "outsourcing" to HP in the logical sense may bring more jobs to countries like the US.
It's interesting that DPWN is doing this. When I was working for DHL I remember the business units having an rather contentious relationship with IT (I'm sure that's true at a lot of places, but it seemed more pronounced at DHL). And many clients feared "upgrades" of the DHL EasyShip software because they often came with more bugs and performance issues than the versions they replaced.
According to the Maximum PC Podcast they saw significant framerate hits with single card setups, but that it was much better under SLi. They did stress that they had beta drivers, so things may drastically improve once nvidia gets final drivers out the door.
It isn't a mutually exclusive situation. There are two disparate vulnerabilities here. By themselves they aren't that big of a threat , but when used in concert the threat is greater than the sum of it's parts. You need the IE issue to load the compromised dll and you need Safari in order to "secretly" download the compromised dll in the first place.
Yeah... "Leopard"... "Snow Leopard"... that's not gonna cause any confusion, right?
Perhaps, but the fact the names are so similar is kind of the point: 10.6 isn't going to be all that different from 10.5 on the surface, and apple is trying to set expectations accordingly.
It would be easy enough to test this out though. manually download this DLL using IE (which marks the file as unsafe), then fire up IE7.
I tried it out: the exploit still works when you manually download the file using IE instead of Safari. So either IE isn't marking downloaded executables as unsafe either, or IE ignores this flag when loading DLL's. Either way it undermines the"Apple is at fault" argument.
Carpet bombing is still an issue, if for no reason than it is an annoyance.
Are you sure? Seems crazy that there would be a mechanism for marking files as unsafe when the OS (or at least IE) doesn't respect it. But this is microsoft we're talking about here.
It would be easy enough to test this out though. manually download this DLL using IE (which marks the file as unsafe), then fire up IE7.
I prefer things downloaded to the desktop, too. However, my issue is that the files are downloaded automatically. Let's ignore the dll security flaw for a second. If Safari gains any significant traction among windows users, I guarantee that websites will use this as a vector for spamming you with ads and spyware. At a bare minimum it will be annoying.
In fact, I'm kindof surprised that the surlier parts of the web (warez sites and such) aren't already using this to dump porn ads on your desktop.
Nobody is expecting you to cry for the thousands of people that die every day. You can't grieve for all of them. But it's quite another thing to crack jokes about it, isn't it?
And don't give me your "humor is the best medicine bullshit". Most of the "+5 funny" remarks aren't using humor to work through grief -- they are making fun of somebody who died. Shame on you.
Slashdot Mirror
This has NOTHING to do with software as a service, NOTHING to do with thin clients, and this was made clear in several of the posts when this article came around the first time. Yet everyone blindly parrots an article that is almost totally devoid of facts.
Midori is an offshoot of a micro-kernel OS that aims to make development in a distributed environment much easier. Call it "cloud computing" if you wish (a term I hate, but at least it's on the right track).
I don't know how we got from network IPC to "OS on a browser that I have to pay a monthly fee for? OMFGWTF!!!1one!". Honestly.
That depends. I'd argue that it's actually worse if it give the user a false sense of security.
Let's say that we implement the trust system that you propose (self-signed certs appear as more secure than plain sites, and less secure than trusted certs). This would do nothing to prevent against phishing attacks. In fact you'd have just as many attacks, but all the phishers would start using self-signed certs so that their sites appear as "more secure" than a regular website.
As firefox gains market share Mozilla has to abandon the assumptions that their userbase is tech-savvy and has web "street-smarts". I agree that this policy is onerous and it has affected me personally for some sites that I'm using self-signed certs on.
Ultimately I think that Firefox 3's policy is the only one that will make a dent in phishing, but there is collateral damage. I think the author's attempt to liken this to a violation of net neutrality is wrong.
I stand corrected! Honestly I assumed he was referring to Douglas Adams who was the writer of the Hitchhiker's Guide and Starship Titanic games. My bad.
I like your post, but I think you mean Douglas Adams.
A few months back I changed my LDAP password to "I drink your milkshake!". On one hand, it was easy to remember while still being very secure (despite those words being in a dictionary, I'd wager it's still immune from a dictionary attack).
On the downside, whenever I signed on to our application to run a demo the users would see 23 "*" characters in the password field and then look at me like I suffered from acute paranoia (they're probably right, but still, it's embarrassing).
Eventually I changed it to something shorter. Not that it was hard to remember, but because during initial sign-on (before morning coffee) I would invariably fat-finger one of the 23 keypresses.
I don't think anyone's arguing otherwise. Honestly, I think the only hubbub is over the whole "Not creative expression" bit. I think that they are much more concerned with dealing with copyright issues and the fact that these game videos tend to be quite long. They should have kept it at that, and left out the perceived slight to gamers.
Because then you wouldn't have the awesome explosion sequence! I'm sure people will try to go through mental gymnastics to explain it, but the real reason is that because Nolan wanted to blow up a hospital, because explosions are cool.
What I'm wondering is: Why did the Joker go through so much effort to reveal Batman's identity in the first half of the film, only to turn around and ensure that his identity was hidden in a later scene?
I'd say the Wii Sports pack-in is the #1 factor behind the low attach rate, but #2 is the crappy 3rd party titles. But on the other hand, Wii Sports is the Wii "killer app" -- what if they didn't bundle it and some families bought Ninjabread Man instead, it probably wouldn't be the runaway success it is now.
Personally I've always thought of the Wii as more of a gimmick and that this was all a fad, but after 10 million units sold it's still going strong. So that shows what I know.
Still, I wonder if the Wii's lifecycle will be as long as the N64 and SNES. My personal experience is that my family and I really enjoyed the wii for the first few months, but now we find that we rarely play it. I tend to prefer my 360, and my daughter has gravitated to PC-based games like Webkinz and Nick Arcade. Also, while I think that Nintendo's first party titles are always pretty good, the 3rd party signal-to-noise ratio is getting worse and worse. Nintendo's E3 performance was roundly considered to be the worst of the big three -- even if you come at it from a non-hardcore perspective, they didn't outline as many exciting titles as in previous years.
So what do you guys think? Is the Wii popularity going to stay strong over the next three years, or is there going to be a drop off?
Wait a second. You're suggesting that Ubisoft should be taken to task stealing some cracker's hard work? Sounds to me like fair play. Why waste Ubisoft resources on making a patch when they can just steal one?
It's not necessarily a RAM replacement. I for one would love a SSHD that was as fast as(or perhaps slightly slower than) main system RAM.
But that's not what we're talking about here. The newspapers aren't being accused of plagiarism, they are being accused of defamation and invasion of privacy.
Actually, depending on the where you live and the quality of the reproduction, you may have the right to do exactly that. But again, that's not what we're talking about. If you disseminate information to the public at-large, I don't have the right to copy word-for-word what you said, but I can paraphrase it, report on it, etc.
From the article:
Too bad. When you publish stuff on the internet for all of the world to see it really undermines your privacy claims. Now, if this girl only allowed her stories to be seen by those she had designated as friends, then she might have a leg to stand on with respect to privacy.
Also, the defamation claim is curious. I haven't ever seen a case where the the originator of the false statements is the same person suing the newspapers for making false statements.
Point taken. And apparently this is a internal "20% project" from google, not something that they acquired. This makes it less of a head scratcher for me. I can't see it becoming popular, but I said the same about myspace...
Why on earth did Google buy this? Yeah, they're scooping up all sorts of social web apps, but they tend to be pretty goo web apps. Maybe they were really after underlying patents?
Agreed. I think that E3 and PAX together serve the audience that was previously attending the "old" E3. And that's a good thing. Now the industry insiders aren't complaining about the signal-to-noise ratio, and gamers get to... well, play new and upcoming games. Sounds like a win/win.
(Note: I left DHL for another company shortly after their takeover of Airborne, so things may have changed since then)
Well, for a multinational like DPWN, the term "Outsourcing" from a geographic sense is a bit tricky to define. They are based in Germany, and have major data centers in Asia, the US, and Europe. Furthermore, since DPWN and DHL both farmed out a lot of their development to Indian and Romanian subcontractors, "outsourcing" to HP in the logical sense may bring more jobs to countries like the US.
It's interesting that DPWN is doing this. When I was working for DHL I remember the business units having an rather contentious relationship with IT (I'm sure that's true at a lot of places, but it seemed more pronounced at DHL). And many clients feared "upgrades" of the DHL EasyShip software because they often came with more bugs and performance issues than the versions they replaced.
According to the Maximum PC Podcast they saw significant framerate hits with single card setups, but that it was much better under SLi. They did stress that they had beta drivers, so things may drastically improve once nvidia gets final drivers out the door.
It isn't a mutually exclusive situation. There are two disparate vulnerabilities here. By themselves they aren't that big of a threat , but when used in concert the threat is greater than the sum of it's parts. You need the IE issue to load the compromised dll and you need Safari in order to "secretly" download the compromised dll in the first place.
So NYCL is to lawyers what Blade is to vampires. Intriguing.
Oh my god. Since lawyers and vampires are bloodsuckers, could that mean that NYCL... is... Blade?
Carpet bombing is still an issue, if for no reason than it is an annoyance.
Are you sure? Seems crazy that there would be a mechanism for marking files as unsafe when the OS (or at least IE) doesn't respect it. But this is microsoft we're talking about here.
It would be easy enough to test this out though. manually download this DLL using IE (which marks the file as unsafe), then fire up IE7.
I prefer things downloaded to the desktop, too. However, my issue is that the files are downloaded automatically. Let's ignore the dll security flaw for a second. If Safari gains any significant traction among windows users, I guarantee that websites will use this as a vector for spamming you with ads and spyware. At a bare minimum it will be annoying.
In fact, I'm kindof surprised that the surlier parts of the web (warez sites and such) aren't already using this to dump porn ads on your desktop.
Nobody is expecting you to cry for the thousands of people that die every day. You can't grieve for all of them. But it's quite another thing to crack jokes about it, isn't it?
And don't give me your "humor is the best medicine bullshit". Most of the "+5 funny" remarks aren't using humor to work through grief -- they are making fun of somebody who died. Shame on you.