A Zillow employee would know people don't list on Zillow, they list pretty much anywhere else and Zillow just scrapes those listings for their own use.
The irony of them even mentioning copyright in a C&D letter has had my head spinning since the first story on this came out.
Except that you don't choose whether or not to list with Zillow; they scrape listings from other websites, which makes their attempt to protect "their" content (which actually belongs to a slew of other entities) even more laughable. None of Zillow's content... is Zillow's content...
And if you really can't make it work, consider also using min-width and max-width expressions based on physical size in addition to pixels, so you're measuring physical and virtual capabilities of the device. Even Windows can work accurately with those now.
Expressions using min-width and max-width specified in pixels are a good starting point, as those are compared to the Viewport size reported by the browser. Where you go from there depends entirely on your design needs
All iPad models present a 1024x768 viewport in landscape mode, regardless of how many actual pixels there are. If your content is so crammed together that you can't tap a link with a fat finger on a 7" screen, you need to work on your design a bit.
The shittiest Chromebook I can find presents a 1280x720 viewport. Despite having physically fewer pixels, it presents a larger horizontal viewport dimension than any model of iPad so, yes, you can use media queries just fine. You just have to understand how they work.
And if you really can't make it work, consider also using min-width and max-width expressions based on physical size in addition to pixels, so you're measuring physical and virtual capabilities of the device. Even Windows can work accurately with those now.
(1) A duly licensed chiropractor may manipulate and adjust the spinal column and other joints
of the human body and in the process thereof a chiropractor may manipulate the muscle and
connective tissue related thereto.
(2) As part of a course of chiropractic treatment, a duly licensed chiropractor may use all
necessary mechanical, hygienic, and sanitary measures incident to the care of the body,
including, but not limited to, air, cold, diet, exercise, heat, light, massage, physical culture, rest,
ultrasound, water, and physical therapy techniques in the course of chiropractic manipulations
and/or adjustments.
For reference, massage therapy is:
manual manipulation of soft body tissues (muscle, connective tissue, tendons and ligaments) to enhance a person’s health and well-being
which is covered by 302a(1) "and in the process thereof a chiropractor may manipulate the muscle and
connective tissue related thereto" and physiotherapy is:
an independent primary care profession which assesses, plans and implements rehabilitative programs that improve or restore human motor functions, maximizes movement ability, relieves pain syndromes, and treats or prevents physical challenges associated with injuries, diseases and other impairments
which is covered by 302a(2) in its entirety.
So, no, that's not what I'm saying; he is most certainly licensed for what he does.
Most real-world password reset mechanisms will send you the new password by email, and won't be vulnerable to this attack.
I think my point still stands. And yes, I actually have seen password resets that send an actual working password, and not just a link; fairly recently, at that.
Such a thing is monitored and requires authorization.
So, every filesystem or database read is monitored? No. Not even close.
You'd need to compromise more than one person
Unless that person is a DBA or sysadmin.
You seem to be applying 20 year old thinking to the modern IA landscape.
\
Right, and people pulling off successful social engineering attacks today are applying the very same thinking. It works just the same as it did in the 90's, which is exactly how it worked in the 70's. In fact, it's worked for as long as confidential written records have existed and will continue working well beyond our individual mortal existences.
Of course, I should have known you weren't keen on paying attention and putting two and two together when you couldn't piece together why I was talking about sending passwords via email in the first place. You seem to be just the kind if inattentive ninny who gets used in social engineering attacks in the first place, based solely on our interaction here. Perhaps I'm wrong, and I surely hope so given that you appear to at least attempt to take on a security role somewhere. I sincerely hope you pay closer attention to details at work, if that's the case.
Yet you ignored the second vulnerability I mentioned in the post you initially replied to. If you've got plaintext passwords sitting in your email, you've got problems that have nothing at all to do with whether or not I can intercept your traffic. While it may (or may not) be difficult to hack Google's servers, it's not that difficult to pay off someone on the gmail support staff to dump your account contents.
He also didn't consider international calls when making up his bullshit story. If the ring tone comes from the line card my pair connects to, why do I hear different ring tones based on the country I am calling? Of course, he could try to claim that the card plays the correct ring for the country being called, but that wouldn't explain why, sometimes, those tones start at the beginning of the ring pattern (which would always be the case were the line card playing them) and sometimes in the middle of the ring pattern.
The reality is that the receiving carrier determines what you hear when a call connects; a busy signal if the line is busy and a ring if the line is available.
Some carriers use line cards that begin playing the ring pattern when a call has connected (so the ring pattern always starts from the beginning), and some use cards that rely on an external input for their ring pattern; that input is always playing, so the ring may start from any point in the ring pattern.
If you've ever noticed that the ring always starts at the beginning of the ring pattern when you call certain people, but seems to start in the middle of the ring pattern when you call certain other people, you've just proven that it is not your line card generating the ring.
And that proves tlambert's story to be complete and utter bullshit.
That's a start. Hell, even email the password reset link is fine. Just not the password itself. The same applies to Twitter, Facebook, and Google messaging as well; if you send the password, anyone who accesses those accounts has the password.
You think you can realistically hack in to the servers or network at either company? If not there you'd have to get in to one of the tier-1 transit providers.
Or the ISP on either end, or your target user's internal network, or...
Yes, I think I can grab that data in-transit, because I used to do just that for kicks as a teenager. The statute of limitations has long since lapsed, so I'm not afraid to mention it openly now. It's trivial to get most home routers to spit out all kinds of stuff, and most corporate networks are large enough and an employee could plant their own device without being noticed until someone went to clean up the rack it was stuffed into, by which point they'll have already gotten what they were after and moved on.
It's so far from impossible, I wouldn't even call it difficult. A mild challenge, at best.
Opioids are used as painkillers and claiming they aren't used as painkillers (as you and KGIII did) is wrong.
Nobody claimed they weren't used that way, just that they don't work that way. Reading comprehension is a wonderful thing, my friend.
Sure, it may not have worked for you. Does that mean it doesn't work? _NO_
What was claimed is that opioids don't take the pain away, and they don't. They, when they work at all, interfere with your perception of pain by blocking pain receptors, or activating pleasure receptors in your brain. This can make you believe that the pain has gone away, but those pain messages still travel through your nervous system and their presence can still interfere with motor control and concentration. That's on top of the opioids, themselves, dulling motor skills and concentration.
KGill's other claim, which is also absolutely correct, is that opioids carry with them certain other, adverse effects. Those include (in addition to reduced motor skills and concentration, stated above) addiction, tolerance (which increases required dosage, thereby increasing other negative effects), nausea and vomiting, drowsiness, itching, constipation, difficulty breathing, hyperalgesia (the big one that hits me with certain opioids), disruption of hormonal balance, confusion, hallucinations, delirium, urticaria, hypothermia, tachycardia, orthostatic hypotension, dizziness, headache, urinary retention, ureteric or biliary spasm, muscle rigidity, myoclonus, and flushing.
If you're taking any other depressant type drugs, you're more likely to suffer the above-mentioned negative effects; that includes experiencing more of them and intensifying them. All the while, you still have your pain, you just might not feel it as much. It didn't go away, because opioids don't take it away.
There's a reason there are many types of pain management. Some kinds of pain are very hard to reduce, some requires surgery, cutting off nerves, placing electrodes etc.
If managing pain is your goal, enjoy the opioids. Just realize that you don't manage something that's been taken away because, once it's been taken away, it's gone. If you have a joint that's slipped out of position and is pinching a nerve, you don't treat that with drugs, you re-align the joint and relieve the pressure on the nerve. That takes the pain away. If you'd rather just "manage" the pain, well, fuck, I say go for it. Just don't delude yourself into thinking it's actually gotten better.
So just because you had some pain that wasn't helped by opioids doesn't mean the ludicrous idea that opioids doesn't reduce pain itself is right.
Actually, it's not ludicrous and it's absolutely right. Ask any drug company how their opioid medications work, ask them if they reduce pain or reduce the perception of pain. Even the most crooked pharma rep will answer that one honestly.
And I'll remind you that pain signals exist for a reason. Pain indicates damage, or circumstances which may lead to damage.
When my L2 and L3 separate and part of the disc between them slips out, allowing them to compress and squeeze the nerve bundles that exit between them, I'm sure there is some combination of drugs that can reduce, possibly even eliminate, my perception of the resulting pain. However, that doesn't magically make the pain go away; it's still there, and I need to keep taking those drugs to keep masking it. It also doesn't fix the cause of the pain, which is a signal to my brain that critical nerve bundles are in jeopardy, nor does it act to protect those nerve bundles.
The correct treatment, as prescribed by an actual doctor, an MD, is to immobilize for a couple days and see if the disc pulls itself back into place. If that doesn't help
I've met a few, actually. My current chiropractor knows a few as well, and we laugh about them during my visits. Of course, this guy does have an acupuncturist on staff and rents an office to a homeopath. We laugh about her, too, if she's out of the office when I'm there. He doesn't refer patients to her, but he has several who believe in that mumbo jumbo so it makes sense for him to have her there; apparently, there are people who are into that garbage and will refuse to see a chiropractor who doesn't at least give off the air of associating with those types.
How do I know this guy's good? My wife has had jaw problems for half her life and has gotten the runaround from doctors, dentists, and even an orthopedic surgeon. Apparently, an orthopedic surgeon can "fix" it by breaking and re-setting the jaw, but anyone she's gone to says they'll only do it after a doctor has given a referral to a dentist who determined it needs to be done and given a referral for the surgery. That's right, just going to a dentist who says it's needed and gives the referral isn't enough; and, to top it off, 3 dentists told her she needs to get a recommendation for the surgery from an orthopedic surgeon before they'll refer.
How the hell is that supposed to work?
PROTIP: Chiropractors adjust jaws, as well. One adjustment, 20 seconds, no more jaw problems.
I can't say I've ever seen a chiro use a TENS unit. But, then, I don't visit the quacks unless I'm looking for a laugh; my chiropractor adjusts me, gives me stretches and exercises to do for whatever area (usually my back) hurts, and advises me on how to not have to come back to his office. When I first started seeing him (after a year of pain and prescribed painkillers), he treated me for 2 months and I was able to maintain for 6 more without him (or pain... or lack of mobility) before I did something stupid and injured myself again. I've been back for about a month now and rapidly improving from where I was when I started. My life situation has changed and I should be better able to avoid the stress and activities that lead to my relapse this time around.
I'm not sure I'd call TENS a "prime" therapy, though.
I keep one of each on speed dial. I go to the good one when I need an adjustment and the quack when I need a laugh. Sometimes laughter really is the best medicine, so the quack probably gets more of my business than he should.
Slashdot Mirror
A Zillow employee would know people don't list on Zillow, they list pretty much anywhere else and Zillow just scrapes those listings for their own use.
The irony of them even mentioning copyright in a C&D letter has had my head spinning since the first story on this came out.
Except that you don't choose whether or not to list with Zillow; they scrape listings from other websites, which makes their attempt to protect "their" content (which actually belongs to a slew of other entities) even more laughable. None of Zillow's content... is Zillow's content...
And if a funding effort is announced, I have a few hundred earmarked for it; more depending on what this month's invoices look like.
I very well may... Let\s see how this plays out first, though, so I don't have the money tied up in that should she decide to pursue her own defense.
I'd cover 2% of that and I'm sure 50 other people would step up to do the same.
To me, it looks like her site easily passed the four fair use tests
And it need only pass one of them to be considered fair use.
Sad that she didn't fight it; I'd have chipped in a few hundo or more for her defense.
Parody is fair use and Zillow can suck it.
If your content is so crammed together that you can't tap a link with a fat finger on a 7" screen, you need to work on your design a bit.
Phones will have smaller screens and are dead simple to detect with media queries.
Hell, you know what?
@media (pointer:coarse)
Enjoy.
And if you really can't make it work, consider also using min-width and max-width expressions based on physical size in addition to pixels, so you're measuring physical and virtual capabilities of the device. Even Windows can work accurately with those now.
Expressions using min-width and max-width specified in pixels are a good starting point, as those are compared to the Viewport size reported by the browser. Where you go from there depends entirely on your design needs
All iPad models present a 1024x768 viewport in landscape mode, regardless of how many actual pixels there are. If your content is so crammed together that you can't tap a link with a fat finger on a 7" screen, you need to work on your design a bit.
The shittiest Chromebook I can find presents a 1280x720 viewport. Despite having physically fewer pixels, it presents a larger horizontal viewport dimension than any model of iPad so, yes, you can use media queries just fine. You just have to understand how they work.
For more information on viewport sizes, see here: http://viewportsizes.com/
And if you really can't make it work, consider also using min-width and max-width expressions based on physical size in addition to pixels, so you're measuring physical and virtual capabilities of the device. Even Windows can work accurately with those now.
@media
(1) A duly licensed chiropractor may manipulate and adjust the spinal column and other joints of the human body and in the process thereof a chiropractor may manipulate the muscle and connective tissue related thereto.
(2) As part of a course of chiropractic treatment, a duly licensed chiropractor may use all necessary mechanical, hygienic, and sanitary measures incident to the care of the body, including, but not limited to, air, cold, diet, exercise, heat, light, massage, physical culture, rest, ultrasound, water, and physical therapy techniques in the course of chiropractic manipulations and/or adjustments.
For reference, massage therapy is:
manual manipulation of soft body tissues (muscle, connective tissue, tendons and ligaments) to enhance a person’s health and well-being
which is covered by 302a(1) "and in the process thereof a chiropractor may manipulate the muscle and connective tissue related thereto" and physiotherapy is:
an independent primary care profession which assesses, plans and implements rehabilitative programs that improve or restore human motor functions, maximizes movement ability, relieves pain syndromes, and treats or prevents physical challenges associated with injuries, diseases and other impairments
which is covered by 302a(2) in its entirety.
So, no, that's not what I'm saying; he is most certainly licensed for what he does.
Password resets don't send plain text passwords.
Well, since I was replying to this:
Most real-world password reset mechanisms will send you the new password by email, and won't be vulnerable to this attack.
I think my point still stands. And yes, I actually have seen password resets that send an actual working password, and not just a link; fairly recently, at that.
Such a thing is monitored and requires authorization.
So, every filesystem or database read is monitored? No. Not even close.
You'd need to compromise more than one person
Unless that person is a DBA or sysadmin.
You seem to be applying 20 year old thinking to the modern IA landscape.
\ Right, and people pulling off successful social engineering attacks today are applying the very same thinking. It works just the same as it did in the 90's, which is exactly how it worked in the 70's. In fact, it's worked for as long as confidential written records have existed and will continue working well beyond our individual mortal existences.
Of course, I should have known you weren't keen on paying attention and putting two and two together when you couldn't piece together why I was talking about sending passwords via email in the first place. You seem to be just the kind if inattentive ninny who gets used in social engineering attacks in the first place, based solely on our interaction here. Perhaps I'm wrong, and I surely hope so given that you appear to at least attempt to take on a security role somewhere. I sincerely hope you pay closer attention to details at work, if that's the case.
Yet you ignored the second vulnerability I mentioned in the post you initially replied to. If you've got plaintext passwords sitting in your email, you've got problems that have nothing at all to do with whether or not I can intercept your traffic. While it may (or may not) be difficult to hack Google's servers, it's not that difficult to pay off someone on the gmail support staff to dump your account contents.
He also didn't consider international calls when making up his bullshit story. If the ring tone comes from the line card my pair connects to, why do I hear different ring tones based on the country I am calling? Of course, he could try to claim that the card plays the correct ring for the country being called, but that wouldn't explain why, sometimes, those tones start at the beginning of the ring pattern (which would always be the case were the line card playing them) and sometimes in the middle of the ring pattern.
The reality is that the receiving carrier determines what you hear when a call connects; a busy signal if the line is busy and a ring if the line is available.
Some carriers use line cards that begin playing the ring pattern when a call has connected (so the ring pattern always starts from the beginning), and some use cards that rely on an external input for their ring pattern; that input is always playing, so the ring may start from any point in the ring pattern.
If you've ever noticed that the ring always starts at the beginning of the ring pattern when you call certain people, but seems to start in the middle of the ring pattern when you call certain other people, you've just proven that it is not your line card generating the ring.
And that proves tlambert's story to be complete and utter bullshit.
That's a start. Hell, even email the password reset link is fine. Just not the password itself. The same applies to Twitter, Facebook, and Google messaging as well; if you send the password, anyone who accesses those accounts has the password.
whenever the other server supports it
You'd be shocked how many still don't.
You think you can realistically hack in to the servers or network at either company? If not there you'd have to get in to one of the tier-1 transit providers.
Or the ISP on either end, or your target user's internal network, or...
Yes, I think I can grab that data in-transit, because I used to do just that for kicks as a teenager. The statute of limitations has long since lapsed, so I'm not afraid to mention it openly now. It's trivial to get most home routers to spit out all kinds of stuff, and most corporate networks are large enough and an employee could plant their own device without being noticed until someone went to clean up the rack it was stuffed into, by which point they'll have already gotten what they were after and moved on.
It's so far from impossible, I wouldn't even call it difficult. A mild challenge, at best.
Slipped spinal disc, pinched nerve, dislocated joint, need I continue?
Opioids are used as painkillers and claiming they aren't used as painkillers (as you and KGIII did) is wrong.
Nobody claimed they weren't used that way, just that they don't work that way. Reading comprehension is a wonderful thing, my friend.
Sure, it may not have worked for you. Does that mean it doesn't work? _NO_
What was claimed is that opioids don't take the pain away, and they don't. They, when they work at all, interfere with your perception of pain by blocking pain receptors, or activating pleasure receptors in your brain. This can make you believe that the pain has gone away, but those pain messages still travel through your nervous system and their presence can still interfere with motor control and concentration. That's on top of the opioids, themselves, dulling motor skills and concentration.
KGill's other claim, which is also absolutely correct, is that opioids carry with them certain other, adverse effects. Those include (in addition to reduced motor skills and concentration, stated above) addiction, tolerance (which increases required dosage, thereby increasing other negative effects), nausea and vomiting, drowsiness, itching, constipation, difficulty breathing, hyperalgesia (the big one that hits me with certain opioids), disruption of hormonal balance, confusion, hallucinations, delirium, urticaria, hypothermia, tachycardia, orthostatic hypotension, dizziness, headache, urinary retention, ureteric or biliary spasm, muscle rigidity, myoclonus, and flushing.
If you're taking any other depressant type drugs, you're more likely to suffer the above-mentioned negative effects; that includes experiencing more of them and intensifying them. All the while, you still have your pain, you just might not feel it as much. It didn't go away, because opioids don't take it away.
There's a reason there are many types of pain management. Some kinds of pain are very hard to reduce, some requires surgery, cutting off nerves, placing electrodes etc.
If managing pain is your goal, enjoy the opioids. Just realize that you don't manage something that's been taken away because, once it's been taken away, it's gone. If you have a joint that's slipped out of position and is pinching a nerve, you don't treat that with drugs, you re-align the joint and relieve the pressure on the nerve. That takes the pain away. If you'd rather just "manage" the pain, well, fuck, I say go for it. Just don't delude yourself into thinking it's actually gotten better.
So just because you had some pain that wasn't helped by opioids doesn't mean the ludicrous idea that opioids doesn't reduce pain itself is right.
Actually, it's not ludicrous and it's absolutely right. Ask any drug company how their opioid medications work, ask them if they reduce pain or reduce the perception of pain. Even the most crooked pharma rep will answer that one honestly.
And I'll remind you that pain signals exist for a reason. Pain indicates damage, or circumstances which may lead to damage.
When my L2 and L3 separate and part of the disc between them slips out, allowing them to compress and squeeze the nerve bundles that exit between them, I'm sure there is some combination of drugs that can reduce, possibly even eliminate, my perception of the resulting pain. However, that doesn't magically make the pain go away; it's still there, and I need to keep taking those drugs to keep masking it. It also doesn't fix the cause of the pain, which is a signal to my brain that critical nerve bundles are in jeopardy, nor does it act to protect those nerve bundles.
The correct treatment, as prescribed by an actual doctor, an MD, is to immobilize for a couple days and see if the disc pulls itself back into place. If that doesn't help
Instead, they'll be vulnerable to interception of the plaintext email in-transit, and also available to anyone who accesses your email account.
I've met a few, actually. My current chiropractor knows a few as well, and we laugh about them during my visits. Of course, this guy does have an acupuncturist on staff and rents an office to a homeopath. We laugh about her, too, if she's out of the office when I'm there. He doesn't refer patients to her, but he has several who believe in that mumbo jumbo so it makes sense for him to have her there; apparently, there are people who are into that garbage and will refuse to see a chiropractor who doesn't at least give off the air of associating with those types.
How do I know this guy's good? My wife has had jaw problems for half her life and has gotten the runaround from doctors, dentists, and even an orthopedic surgeon. Apparently, an orthopedic surgeon can "fix" it by breaking and re-setting the jaw, but anyone she's gone to says they'll only do it after a doctor has given a referral to a dentist who determined it needs to be done and given a referral for the surgery. That's right, just going to a dentist who says it's needed and gives the referral isn't enough; and, to top it off, 3 dentists told her she needs to get a recommendation for the surgery from an orthopedic surgeon before they'll refer.
How the hell is that supposed to work?
PROTIP: Chiropractors adjust jaws, as well. One adjustment, 20 seconds, no more jaw problems.
That's how I know this guy is good.
I can't say I've ever seen a chiro use a TENS unit. But, then, I don't visit the quacks unless I'm looking for a laugh; my chiropractor adjusts me, gives me stretches and exercises to do for whatever area (usually my back) hurts, and advises me on how to not have to come back to his office. When I first started seeing him (after a year of pain and prescribed painkillers), he treated me for 2 months and I was able to maintain for 6 more without him (or pain... or lack of mobility) before I did something stupid and injured myself again. I've been back for about a month now and rapidly improving from where I was when I started. My life situation has changed and I should be better able to avoid the stress and activities that lead to my relapse this time around.
I'm not sure I'd call TENS a "prime" therapy, though.
I keep one of each on speed dial. I go to the good one when I need an adjustment and the quack when I need a laugh. Sometimes laughter really is the best medicine, so the quack probably gets more of my business than he should.