Well I can see poorly coded websites doing that to programmatically build up frames. Yes, writing JAVASCRIPT into a frame is odd, but I could see it happening. But when you navigate a frame everything that was in the old page should be unloaded. Old JavaScript, especially from a different origin, should not continue to run!
Command Prompt has always been about legacy support. For modern terminal support Microsoft offers Command Prompt... which passes your test find using Select-String. The only variant it fails on is ANSI but I suspect that file did not save properly... I opened it in a few apps and the ñ had been lost.
PS C:\Users\mzzt\Desktop> Select-String
cmdlet Select-String at command pipeline position 1
Supply values for the following parameters:
Pattern[0]: Español
Pattern[1]:
Path[0]: *.txt
Path[1]:
Unicode big endian.txt:1:Español
Unicode.txt:1:Español
UTF-8.txt:1:Español
Android already does this. If you have software on your phone Google has flagged, and unless you have disabled the scanner in Android settings, you get a notification about it. Sideloaded or from Play Store, doesn't matter. You can test with SELinuxModeChanger, which changes SELinux policy status (if you're rooted) and thus Google has flagged it. Sideloading it should be enough to trigger the prompt if you want to see it.
Android already warns users if they have apps installed, sideloaded or not, that are suspicious. I expect Google will (if they haven't already) roll out new malware definitions which will alert users who have one of these apps installed.
It also needed 13% of CPU time to just draw a blinking cursor (!)
Gotta wonder WTF is going on that it takes 13% CPU. There's lots of ways to do a blinking cursor with CSS and it sounds to me like the chosen solution is probably not one of the better ones.
AFIAK some emergency vehicles already have equipment to switch traffic lights. So it's not much of a jump they can signal autonomous vehicles to pull over.
by requiring any extension developer to have 2FA enabled on their Google account, which will make it much harder to compromise accounts. That's really the only thing I see Google doing wrong here, ultimately it's the developer's responsibility to maintain control of the account used to publish updates.
That, and maybe requiring extension updates be signed with the developer's private key. I believe Android's Play Store requires this. Last I checked Chrome Web Store just accepted plain ZIP uploads? The thing is, Chrome has the ability to sign extensions built in. So they could do this today.
But I think the bigger problem is extension devs who sell out their extensions... and their user bases... to individuals who embed malware or ads into it. That's not a technological problem that can be solved that way, unfortunately.
Being able to change the update server would just open the door for malware to infect your machine by issuing updates for all your extensions through their own server. Don't blame Google for a developer who fails to use provided security mechanisms like two factor authentication (at least, I don't see how the author's account could have been compromised so easily if he was using it, and using it properly).
Probably because some third-party apps still use it. Google recently released an app for Android which provides SMB client functionality. Guess what? It only supported SMB1. This was released AFTER the SMB1 deprecation announcement. Since then they did update the app with modern SMB support.
If enough people suffering from your problem do it, Gmail will learn to block e-mails from their senders outright. (If they don't want them blocked like that, they should have used e-mail verification). At the very least, reporting as spam should help Gmail learn how to block them from YOUR inbox. IIRC Gmail also unsubscribes for you if you click the appropriate option.
Sure, for older OS versions, you may have found a hack or trick that improved your experience. So you got used to using it. But guess what? Over the years the developers have been iteratively improving their products. And they are aware of the issue you had in the first place, and probably fixed it a long time ago. Plus you now have better hardware than you did, relaxing many of the limits you were running into before. Trust that the designers of operating systems aren't relying on you to go and do manual processes to improve your system performance, but made sure things ran optimally without needing such hacks. Such things may in fact be hurting performance. I am specifically talking about old tricks still in use, of course, like force closing apps. Newer tips are more likely to actually have been tested on the OS you're using (but still be wary).
Another example, Windows will use unused memory to cache programs and files. Because unused memory is wasted memory. Despite this, you can run "RAM Cleaners" that eat up all your memory and quickly free it, forcing windows to dump its cache, slowing down your PC likely immediately as apps try to use objects that have to be recached from disk. But at least the RAM is clean!
I personally grew up in the era of MS-DOS. When you deleted a file, it was gone. Then as Windows 9x came along they had this fancy Recycle Bin. I didn't need it before, why would I need it now? I would keep doing things the way I was doing it because I knew better. Just bypass the Recycle Bin every time or even turn it off entirely.
A few instances of data loss due to accidental deletions later, I realized perhaps the designers of Windows were smarter than me in at least some respects,and forced myself to begin using the Recycle Bin. My experience with accidental deletions has much improved.
The problem is due to the vendor's failure to provide proper drivers in a timely manner. This sounds like it's a blatant attempt to capitalize on many people's hatred for Windows 10 by blaming Microsoft for Intel's (or Asus'?) problem.
If you put off restarting for too long, it will restart for you. The point of the dialog isn't to allow you to defer restarting indefinitely, but to let you pick a good time to restart. If you fail to do that your PC will do its best to pick one for you but it would have been better if you helped.
It seems almost every time I hear about a major PC infection, it always comes with the footnote that the exploit being used was patched by Microsoft months or years earlier. So knowing this it's not hard to see why MS is making Windows Update more aggressive with patching PCs.
Yeah I was thinking they would need something like this. It doesn't make sense otherwise.
One thought I had: when they change seat configurations to squeeze more passengers in, at worst some passengers will think "that's odd, I don't remember it being this cramped". However this change is much harder to ignore and I suspect/hope this airline's sales will suffer as a result.
The question is, is the ransomware hardcoded with the old e-mail? If so getting a new e-mail address won't help him at this point unless he starts all over with sending out a new version of the malware to infect new victims.
More accurate: Microsoft admits disabling outdated incompatible AV software that was not updated in a timely manner by their vendors to support the newest version of Windows before their users upgraded. Microsoft also ensured these users would remain protected by enabling the built-in AV protection since the users were not guaranteed to have any other compatible AV software installed.
Microsoft does extensive testing of apps and provides shims to make sure as many legacy apps as possible work on the new OS. If your apps were developed in-house and never distributed of course Microsoft is unable to guarantee compatibility with future OS versions as they have no way of knowing what your app is like or how it was coded. It's entirely your company's responsibility.
If you take your refrigerator from the USA to Europe (or visa versa) you'll find the plug won't fit the electrical socket. Just because the fridge is fine doesn't mean it will work in the new environment.
Not if you add the cert to your PC's certificate store as a root certificate. This works fine if you have control over all PCs that will be using the site.
Actually it sounds like they just ported it to Linux. Running it on a Chromebook requires you to be running Linux in some form or another on your Chromebook first, so there's no Chrome app like I thought they meant.
Nope. VS Code runs on Electron, which runs on Windows, MacOS, and Linux. No Android. Since Electron is essentially the Chrome web browser stripped down you could, in theory, have a cloud version that Android could load up in Chrome, but you'd have to rewrite anything relating to file handling and keyboard handling (as most Android devices don't have a hardware keyboard). It would take a lot more work to port it. I would imagine in this project's case they just had to port any native code modules to Linux and change any external process usage to work with Linux tools.
The app can use certificate pinning. If someone else puts a new server up on the domain name the certificate will not match the expected one from the old site and the app will refuse to connect to it.
Slashdot Mirror
Well I can see poorly coded websites doing that to programmatically build up frames. Yes, writing JAVASCRIPT into a frame is odd, but I could see it happening. But when you navigate a frame everything that was in the old page should be unloaded. Old JavaScript, especially from a different origin, should not continue to run!
Command Prompt has always been about legacy support. For modern terminal support Microsoft offers Command Prompt... which passes your test find using Select-String. The only variant it fails on is ANSI but I suspect that file did not save properly... I opened it in a few apps and the ñ had been lost.
PS C:\Users\mzzt\Desktop> Select-String
cmdlet Select-String at command pipeline position 1
Supply values for the following parameters:
Pattern[0]: Español
Pattern[1]:
Path[0]: *.txt
Path[1]:
Unicode big endian.txt:1:Español
Unicode.txt:1:Español
UTF-8.txt:1:Español
Android already does this. If you have software on your phone Google has flagged, and unless you have disabled the scanner in Android settings, you get a notification about it. Sideloaded or from Play Store, doesn't matter. You can test with SELinuxModeChanger, which changes SELinux policy status (if you're rooted) and thus Google has flagged it. Sideloading it should be enough to trigger the prompt if you want to see it.
Android already warns users if they have apps installed, sideloaded or not, that are suspicious. I expect Google will (if they haven't already) roll out new malware definitions which will alert users who have one of these apps installed.
The problem is his files were unversioned and he did not expect the rollback to affect unversioned files, which it did.
It also needed 13% of CPU time to just draw a blinking cursor (!)
Gotta wonder WTF is going on that it takes 13% CPU. There's lots of ways to do a blinking cursor with CSS and it sounds to me like the chosen solution is probably not one of the better ones.
AFIAK some emergency vehicles already have equipment to switch traffic lights. So it's not much of a jump they can signal autonomous vehicles to pull over.
...if you aren't paying for it, you're not the customer. If you aren't the customer, you're the product.
At least, I'm assuming this wasn't a paid service...
by requiring any extension developer to have 2FA enabled on their Google account, which will make it much harder to compromise accounts. That's really the only thing I see Google doing wrong here, ultimately it's the developer's responsibility to maintain control of the account used to publish updates.
That, and maybe requiring extension updates be signed with the developer's private key. I believe Android's Play Store requires this. Last I checked Chrome Web Store just accepted plain ZIP uploads? The thing is, Chrome has the ability to sign extensions built in. So they could do this today.
But I think the bigger problem is extension devs who sell out their extensions... and their user bases... to individuals who embed malware or ads into it. That's not a technological problem that can be solved that way, unfortunately.
Being able to change the update server would just open the door for malware to infect your machine by issuing updates for all your extensions through their own server. Don't blame Google for a developer who fails to use provided security mechanisms like two factor authentication (at least, I don't see how the author's account could have been compromised so easily if he was using it, and using it properly).
Probably because some third-party apps still use it. Google recently released an app for Android which provides SMB client functionality. Guess what? It only supported SMB1. This was released AFTER the SMB1 deprecation announcement. Since then they did update the app with modern SMB support.
If enough people suffering from your problem do it, Gmail will learn to block e-mails from their senders outright. (If they don't want them blocked like that, they should have used e-mail verification). At the very least, reporting as spam should help Gmail learn how to block them from YOUR inbox. IIRC Gmail also unsubscribes for you if you click the appropriate option.
Sure, for older OS versions, you may have found a hack or trick that improved your experience. So you got used to using it. But guess what? Over the years the developers have been iteratively improving their products. And they are aware of the issue you had in the first place, and probably fixed it a long time ago. Plus you now have better hardware than you did, relaxing many of the limits you were running into before. Trust that the designers of operating systems aren't relying on you to go and do manual processes to improve your system performance, but made sure things ran optimally without needing such hacks. Such things may in fact be hurting performance. I am specifically talking about old tricks still in use, of course, like force closing apps. Newer tips are more likely to actually have been tested on the OS you're using (but still be wary).
Another example, Windows will use unused memory to cache programs and files. Because unused memory is wasted memory. Despite this, you can run "RAM Cleaners" that eat up all your memory and quickly free it, forcing windows to dump its cache, slowing down your PC likely immediately as apps try to use objects that have to be recached from disk. But at least the RAM is clean!
I personally grew up in the era of MS-DOS. When you deleted a file, it was gone. Then as Windows 9x came along they had this fancy Recycle Bin. I didn't need it before, why would I need it now? I would keep doing things the way I was doing it because I knew better. Just bypass the Recycle Bin every time or even turn it off entirely.
A few instances of data loss due to accidental deletions later, I realized perhaps the designers of Windows were smarter than me in at least some respects ,and forced myself to begin using the Recycle Bin. My experience with accidental deletions has much improved.
The problem is due to the vendor's failure to provide proper drivers in a timely manner. This sounds like it's a blatant attempt to capitalize on many people's hatred for Windows 10 by blaming Microsoft for Intel's (or Asus'?) problem.
If you put off restarting for too long, it will restart for you. The point of the dialog isn't to allow you to defer restarting indefinitely, but to let you pick a good time to restart. If you fail to do that your PC will do its best to pick one for you but it would have been better if you helped.
It seems almost every time I hear about a major PC infection, it always comes with the footnote that the exploit being used was patched by Microsoft months or years earlier. So knowing this it's not hard to see why MS is making Windows Update more aggressive with patching PCs.
Don't mistake a general claim about an average student for a sweeping claim about all students. There are exceptions to every rule.
Yeah I was thinking they would need something like this. It doesn't make sense otherwise.
One thought I had: when they change seat configurations to squeeze more passengers in, at worst some passengers will think "that's odd, I don't remember it being this cramped". However this change is much harder to ignore and I suspect/hope this airline's sales will suffer as a result.
The question is, is the ransomware hardcoded with the old e-mail? If so getting a new e-mail address won't help him at this point unless he starts all over with sending out a new version of the malware to infect new victims.
More accurate: Microsoft admits disabling outdated incompatible AV software that was not updated in a timely manner by their vendors to support the newest version of Windows before their users upgraded. Microsoft also ensured these users would remain protected by enabling the built-in AV protection since the users were not guaranteed to have any other compatible AV software installed.
Microsoft does extensive testing of apps and provides shims to make sure as many legacy apps as possible work on the new OS. If your apps were developed in-house and never distributed of course Microsoft is unable to guarantee compatibility with future OS versions as they have no way of knowing what your app is like or how it was coded. It's entirely your company's responsibility.
If you take your refrigerator from the USA to Europe (or visa versa) you'll find the plug won't fit the electrical socket. Just because the fridge is fine doesn't mean it will work in the new environment.
Not if you add the cert to your PC's certificate store as a root certificate. This works fine if you have control over all PCs that will be using the site.
Actually it sounds like they just ported it to Linux. Running it on a Chromebook requires you to be running Linux in some form or another on your Chromebook first, so there's no Chrome app like I thought they meant.
Nope. VS Code runs on Electron, which runs on Windows, MacOS, and Linux. No Android. Since Electron is essentially the Chrome web browser stripped down you could, in theory, have a cloud version that Android could load up in Chrome, but you'd have to rewrite anything relating to file handling and keyboard handling (as most Android devices don't have a hardware keyboard). It would take a lot more work to port it. I would imagine in this project's case they just had to port any native code modules to Linux and change any external process usage to work with Linux tools.
The app can use certificate pinning. If someone else puts a new server up on the domain name the certificate will not match the expected one from the old site and the app will refuse to connect to it.