A buffer overflow vulnerability in the image parsing code in the Java
Runtime Environment may allow an untrusted applet or application to
elevate its privileges. For example, an applet may grant itself
permissions to read and write local files or execute local
applications that are accessible to the user running the untrusted
applet.
A second vulnerability may allow an untrusted applet or application to
cause the Java Virtual Machine to hang.
Sun acknowledges, with thanks, Chris Evans of the Google Security
Team, for bringing these issues to our attention.
These issues are also referenced in the following documents:
For me I don't really care about third party apps, as long as Safari works as advertise.
Safari with AJAX powered webpages can create a very compelling solution. Forget about "Network is computer" crap from Sun.... Apple finally got this working now, albeit 6 years late.
I'm sure a whole new generation of "web 2.0 companies" will be geared to make "iPhone screensize compatible" webpages, and that would be fun!
I asked my secretary to sign up an efax account a few days ago. They claim you can "try it for FREE in one month". And the stupid part, she puts down a credit card number there (It's free rigth?).
So, they charged the credit card fraudulently the next day, even though it's supposed to be a god damn free trial. All right, so:
We try to go to their site, looking for "cancel subscriptions". We search "cancel" and they have 2 links in their help page. But when I clicked on it, it shows nothing (both Firefox and IE 7)
Then we try their web chat. First when I tell the web chat we are cancelling, they give me ANOTHER link for their support chat. Fine. AND THEN, when we try to use their chat, it's broken.
It starts to sound fishy to me up to this point...
We then try to call their support line. It takes forever just to go through the phone menus, and then we were put on hold for 20 minutes. Finally, a guy with distinctly Indian accent answered the call. He did not speak English that, I have to guesstimate what he said. I have to basically just keep saying "I just need to cancel my subscription, no thanks." repeatedly to get him stop repeat the scripted answers.
Anyway... in the end this support guy said he'd give us a refund, but he'd put us on hold again to talk to the billing department. And finally he claimed the support department will refund us "in a few days". Oh yes, takes less than a day to charge the credit card, but a few days to refund...
In the end we spent half an hour to deal with the cancellation. You are free to call their support line, and then see how much time to get to their billing "department".
Here is more efax horror stories. Don't ever try to use efax in your life time. You have been warned.
How these companies manage to piss their customers is beyond me.
I live in Hong Kong, and indeed it was a huge disaster. I run an online flower shop myself, so we see our daily traffic went flat for the last couple of days. And I can't even ssh into our colo in USA.
Recape of the situation: 6 underground fiber lines were cut. "Foreign" sites like Slashdot, Google, EBay and Yahoo! were dead. Hong Kong based sites, Australia sites and a few European sites like BBC does work, so that give us hope. So...
On day 1 ( 12/28 ): we found out Google Hong Kong still works, and Australia sites work... so we search "australia proxy server" and funny that a few ISPs have open proxies open at 3128 (Looks like Squid Cache to me!). Since we must be an early batch, we feel wonderful to be "the only one" in town to go online, beat the odds and get all the pussies...
One day 2 (12/29): news of the proxies must have gotten out. Yahoo! Answers are full of such foreign proxies lists, and some entrepreneur hackers must have wonderful day, building their own proxies and lured people into using it. Of course your average surfers wouldn't know normal http is unencrypted... Meanwhile our "free proxy" running by that friendly Australia ISP finally adds ACL to block us out... We try installing Google Web Accelerator, and it did no good, and accessing local sites are even slower...
On day 3 (12/30): we start looking for Australia colocation / dedicated server plans to run our own proxy server. Their prices are at least 2 times more expensive than US hosting companies, so we start pinging popular hosting in USA.... ev1servers.net? down. Rackspace? up (but too pricey). Godaddy? up, and lo and behold, they have a cheap $29.99 USD virtual linux plan.
So, we setup our own Squid cache and it finally keeps us reading Slashdot until this day:)
In this talk, he outlines some of the challenges of getting the laptop produced, and explains why he stepped down as Media Lab director to focus on the initiative full-time, "for the rest of my life." (Recorded February 2006 in Monterey, CA. Duration: 18:21)
Given all the Chinese (and other asian countries) don't really have these "religious fundamentalist" problem, it would not be long before United States given up its biomed brain powers to all these countries. Just make sure all your Americans don't blame outsourcing and globalization to the downfall this time.
This is a first-person account of how IBM was able to con my execs out of millions of dollars. Gullible management tries to swim with the shark and gets chewed to pieces. Witness the exec-level FUD sales techniques and the $325/hr subcontractor labor bait and switch....More...
Please don't smear great ideas with your hindsights.
- Many of the developing world has no electricity, making the laptop as good as a paperweight Did you RTFA? The laptop came with a handcrack. 1 minutes of cranking can generate great runtime.
- They would be lucky to have telephone service, when it is available it may be in the form of a single public telephone for the village. Internet connection might be available only in the larger urban centres. Computers are useful in their own rights. Networks are great, but sneakernet works as well. Plus if you don't have the computers, how can you build the networks? And the reverse argument if somebody builds a network in 3rd world countries, nansayers will say "there are no computers".
- Illiteracy rates still run high in many parts of the world, making use of the laptop difficult at best Okay, does this rephrase make sense: Illiteracy rates still run high in many parts of the world, making use of books difficult at best ?
- Many of the needy people who receive the laptop will likely resell them for a profit for essential goods to the well off in their country. Judging from the response here, there will be no shortage of people willing to pay more than a $100 for such a laptop - and a $100 is a lot of money for the poor in most parts of the world.
First they won't be available for sale, and it makes all the ebay and 2nd market look obviously greedious, and help reduce them. Also looking at the specs, it's hardly something the 1st world would use anyway given a $4xx Dell laptops can give you with Windows and all the bells and whistles, unless you really like the hand crank.
Before you are serious to start a company, make sure you've the right mantra and willing to endure a lot of hardship. I'm not going to lecture you too much as you've to experience it anyway...
Location:Paul Graham's advice on this.
If you're looking for a regular office, try to find a place that you can pay by month-to-month. Yes this kind of stuff does exist. Signing a one year contract is not so nice. If you can afford, please find a work-live space or a loft.
Phone: If you need a landline, don't do it. We pay SBC $135 USD just to get a line into the building, and then another $135 USD for "inside wiring", which is just connecting the line from the building phone box to the room. @#$#@ing rip off. Even if you choose the most basic plan for just a dial tone for $7 USD, they'll still end up giving you $15 USD a month bill. Ah yes, if for some reason you use the phone to dial a long distance call, prepared to get shafted heavily.... They charged me $69 USD for 6 minutes call to Asia (because somebody used the wrong phone !!) Instead, go get Vonage. $25 USD unlimited is so nice. You will thank me for telling you this.
Furniture: if you're in Bay Area, IKEA's tables are good enough especially you can dismantle the legs quickly and MOVE. If you happen to catch good price, you can get one for around $21 USD. Don't go to OfficeMax or Office Depot to buy those rip off tables.
Also, we got A LOT OF IKEA stuff free on Craigslist: one Ikea table worth $30 USD, a cloth hanger, halogen lamps plus a sofa. (It's good to be near a big university with many rich kids too. So watch out Craigslist on around 15th and 30th each month. Move out time!)
Computers and software: I don't see the point on using a specific platform. As long as it does the job well you need to learn it. We have Powerbooks and Mac mini running MacOS X, a lot of PCs running Debian, OpenBSD, Solaris and a SGI O2 plus Indy (picked up free from Craigslist too) running Irix.
And most important of all, focus. There are so many possibilities but you only have that much time. Good luck.
Well, USA is fighting a "terroisom war" and Iraq is quite a mess, with a possible invasion of other "rogue countries" like North Korea.... so the college student database is a great aid to draft people into the army.
Well, unlike Nam's time, people who is smart enough getting into college will also be drafted to the military. Military needs a lot of electrical engineers and programmers too.
>I just learned that the University of Hong Kong, >the largest university in Hong Kong, has just >closed its electrical engineering department
That is not true, they're running just fine.
>There's no way Hong Kong can catch up >technologically with mainland China now, not >without heavy academic research in new arenas of >technology.
Technologies change all the time. Brazil once had a vibrant software technology scene too. Wordstars, Lotus 1-2-3, Visicalc and Apple ][ have their glory days.
By the way, the world has just been globalized for 10 years. Don't give up just yet.
>So, basically what he's saying is that is a complex for creators of CGI Chop Socky?
Yes you can laugh all the way you want, but there's a vibrant CG industry in Hong Kong. O yes they are definitely not as advanced as ILM or Dreamworks , but they've made many entries into Siggraph. Some samples on Archive.org: Cola Cola's Clay Dolls and Master Q.
And the space program, think of Wernher Von Braun that builds the Saturn 5, nevermind he was a Nazi, and the computer industry, to John von Neumann, from the ENIAC to his von neumann architecture.
There should be no reason to recruit outside the USA for PhD programs. We should be able to have a good pool of undergrads in the USA to fill almost every PhD seat.
Many foreign universities will be delight if more Americans think this way and stop their braindrain. Way to go !
Ahhh.... good old days.... can share iTunes library across the Internet until some suckers like ileech and itunsdl come out, forcing Apple to downgrade the feature.
Meanwhile, you can setup a rendezvous proxy with ileech, work on Mac and PC.
Slashdot Mirror
It looks like AusCERT has published on their page about this:
- 2007-2788
- 2007-2789
Quoted from
AL-2007.0071 -- [Win][Linux][Solaris] -- Sun Java Runtime Environment vulnerability allows remote compromise
1. Impact
A buffer overflow vulnerability in the image parsing code in the Java
Runtime Environment may allow an untrusted applet or application to
elevate its privileges. For example, an applet may grant itself
permissions to read and write local files or execute local
applications that are accessible to the user running the untrusted
applet.
A second vulnerability may allow an untrusted applet or application to
cause the Java Virtual Machine to hang.
Sun acknowledges, with thanks, Chris Evans of the Google Security
Team, for bringing these issues to our attention.
These issues are also referenced in the following documents:
CVE-2007-2788 at
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE
CVE-2007-2789 at
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE
> India launches them. China shoots them down.
I believe that it should be:
"India launches them. The United States, Russia and China shoot them down. "
For me I don't really care about third party apps, as long as Safari works as advertise.
Safari with AJAX powered webpages can create a very compelling solution. Forget about "Network is computer" crap from Sun.... Apple finally got this working now, albeit 6 years late.
I'm sure a whole new generation of "web 2.0 companies" will be geared to make "iPhone screensize compatible" webpages, and that would be fun!
- We try to go to their site, looking for "cancel subscriptions". We search "cancel" and they have 2 links in their help page. But when I clicked on it, it shows nothing (both Firefox and IE 7)
- Then we try their web chat. First when I tell the web chat we are cancelling, they give me ANOTHER link for their support chat. Fine. AND THEN, when we try to use their chat, it's broken.
It starts to sound fishy to me up to this point...
- We then try to call their support line. It takes forever just to go through the phone menus, and then we were put on hold for 20 minutes. Finally, a guy with distinctly Indian accent answered the call. He did not speak English that, I have to guesstimate what he said. I have to basically just keep saying "I just need to cancel my subscription, no thanks." repeatedly to get him stop repeat the scripted answers.
Anyway... in the end this support guy said he'd give us a refund, but he'd put us on hold again to talk to the billing department. And finally he claimed the support department will refund us "in a few days". Oh yes, takes less than a day to charge the credit card, but a few days to refund...
In the end we spent half an hour to deal with the cancellation. You are free to call their support line, and then see how much time to get to their billing "department". Here is more efax horror stories. Don't ever try to use efax in your life time. You have been warned. How these companies manage to piss their customers is beyond me.I live in Hong Kong, and indeed it was a huge disaster. I run an online flower shop myself, so we see our daily traffic went flat for the last couple of days. And I can't even ssh into our colo in USA.
:)
Recape of the situation: 6 underground fiber lines were cut. "Foreign" sites like Slashdot, Google, EBay and Yahoo! were dead. Hong Kong based sites, Australia sites and a few European sites like BBC does work, so that give us hope. So...
On day 1 ( 12/28 ): we found out Google Hong Kong still works, and Australia sites work... so we search "australia proxy server" and funny that a few ISPs have open proxies open at 3128 (Looks like Squid Cache to me!). Since we must be an early batch, we feel wonderful to be "the only one" in town to go online, beat the odds and get all the pussies...
One day 2 (12/29): news of the proxies must have gotten out. Yahoo! Answers are full of such foreign proxies lists, and some entrepreneur hackers must have wonderful day, building their own proxies and lured people into using it. Of course your average surfers wouldn't know normal http is unencrypted... Meanwhile our "free proxy" running by that friendly Australia ISP finally adds ACL to block us out... We try installing Google Web Accelerator, and it did no good, and accessing local sites are even slower...
On day 3 (12/30): we start looking for Australia colocation / dedicated server plans to run our own proxy server. Their prices are at least 2 times more expensive than US hosting companies, so we start pinging popular hosting in USA.... ev1servers.net? down. Rackspace? up (but too pricey). Godaddy? up, and lo and behold, they have a cheap $29.99 USD virtual linux plan.
So, we setup our own Squid cache and it finally keeps us reading Slashdot until this day
Watch Nicholas Negroponte on TEDTalks.
Funny that US has bugged a Boeing 767 purchased from the US for use by former President Jiang Zemin.
Didn't hear the Chinese stop buying jumbo jets.
Given all the Chinese (and other asian countries) don't really have these "religious fundamentalist" problem, it would not be long before United States given up its biomed brain powers to all these countries. Just make sure all your Americans don't blame outsourcing and globalization to the downfall this time.
So this is Slashdot? Sorry I don't find this topic being funny, with actual people being laid off and probably in a very difficult situation.
Do you like other people joke about YOU when it's your turn? Grow up people!
Well, since you're posting as anonymous with high praise for IBM Global Service, let's see this counter argument from Kuro5hin: How IBM Conned My Execs Out Of Millions .
This is a first-person account of how IBM was able to con my execs out of millions of dollars. Gullible management tries to swim with the shark and gets chewed to pieces. Witness the exec-level FUD sales techniques and the $325/hr subcontractor labor bait and switch.... More...
Please don't smear great ideas with your hindsights.
- Many of the developing world has no electricity, making the laptop as good as a paperweight
Did you RTFA? The laptop came with a handcrack. 1 minutes of cranking can generate great runtime.
- They would be lucky to have telephone service, when it is available it may be in the form of a single public telephone for the village. Internet connection might be available only in the larger urban centres.
Computers are useful in their own rights. Networks are great, but sneakernet works as well. Plus if you don't have the computers, how can you build the networks? And the reverse argument if somebody builds a network in 3rd world countries, nansayers will say "there are no computers".
- Illiteracy rates still run high in many parts of the world, making use of the laptop difficult at best
Okay, does this rephrase make sense: Illiteracy rates still run high in many parts of the world, making use of books difficult at best ?
- Many of the needy people who receive the laptop will likely resell them for a profit for essential goods to the well off in their country. Judging from the response here, there will be no shortage of people willing to pay more than a $100 for such a laptop - and a $100 is a lot of money for the poor in most parts of the world.
First they won't be available for sale, and it makes all the ebay and 2nd market look obviously greedious, and help reduce them. Also looking at the specs, it's hardly something the 1st world would use anyway given a $4xx Dell laptops can give you with Windows and all the bells and whistles, unless you really like the hand crank.
Before you are serious to start a company, make sure you've the right mantra and willing to endure a lot of hardship. I'm not going to lecture you too much as you've to experience it anyway...
Location:Paul Graham's advice on this.
If you're looking for a regular office, try to find a place that you can pay by month-to-month. Yes this kind of stuff does exist. Signing a one year contract is not so nice. If you can afford, please find a work-live space or a loft.
Phone: If you need a landline, don't do it. We pay SBC $135 USD just to get a line into the building, and then another $135 USD for "inside wiring", which is just connecting the line from the building phone box to the room. @#$#@ing rip off. Even if you choose the most basic plan for just a dial tone for $7 USD, they'll still end up giving you $15 USD a month bill. Ah yes, if for some reason you use the phone to dial a long distance call, prepared to get shafted heavily.... They charged me $69 USD for 6 minutes call to Asia (because somebody used the wrong phone !!) Instead, go get Vonage. $25 USD unlimited is so nice. You will thank me for telling you this.
Furniture: if you're in Bay Area, IKEA's tables are good enough especially you can dismantle the legs quickly and MOVE. If you happen to catch good price, you can get one for around $21 USD. Don't go to OfficeMax or Office Depot to buy those rip off tables.
Also, we got A LOT OF IKEA stuff free on Craigslist: one Ikea table worth $30 USD, a cloth hanger, halogen lamps plus a sofa. (It's good to be near a big university with many rich kids too. So watch out Craigslist on around 15th and 30th each month. Move out time!)
Computers and software: I don't see the point on using a specific platform. As long as it does the job well you need to learn it. We have Powerbooks and Mac mini running MacOS X, a lot of PCs running Debian, OpenBSD, Solaris and a SGI O2 plus Indy (picked up free from Craigslist too) running Irix.
And most important of all, focus. There are so many possibilities but you only have that much time. Good luck.
Well, Sony PSP can play h.264 video format. Okay maybe need some simple tweaking with the container format.
Maybe this is something Sony would like to collaborate with Apple on?
Well, USA is fighting a "terroisom war" and Iraq is quite a mess, with a possible invasion of other "rogue countries" like North Korea.... so the college student database is a great aid to draft people into the army.
Well, unlike Nam's time, people who is smart enough getting into college will also be drafted to the military. Military needs a lot of electrical engineers and programmers too.
>I just learned that the University of Hong Kong,
>the largest university in Hong Kong, has just
>closed its electrical engineering department
That is not true, they're running just fine.
>There's no way Hong Kong can catch up
>technologically with mainland China now, not
>without heavy academic research in new arenas of
>technology.
Technologies change all the time. Brazil once had a vibrant software technology scene too. Wordstars, Lotus 1-2-3, Visicalc and Apple ][ have their glory days.
By the way, the world has just been globalized for 10 years. Don't give up just yet.
>Why go there just for the bandwidth, when they
>can locate their factory in mainland China
>and enjoy the benefits of genuine slave labor.
Yea, why go to USA, when they can locate their companies in Guantanamo Bay and enjoy the benefits of genuine slave labor.
>Until the local population develops respect
>for intellectual property, I don't expect much
>to happen...
Are you referring to your friends happily running Kazaa downloading tunes in USA/Canada as well?
>So, basically what he's saying is that is a complex for creators of CGI Chop Socky?
Yes you can laugh all the way you want, but there's a vibrant CG industry in Hong Kong. O yes they are definitely not as advanced as ILM or Dreamworks , but they've made many entries into Siggraph. Some samples on Archive.org: Cola Cola's Clay Dolls and Master Q.
PC and Macs are not the only places that browsers live.
Opera browsers are perfect for cellphones, set top boxs and thin clients. One quarter of losses does not mean a whole lot.
What? I did a simple traceroute and see it goes to Yahoo's server , complimented with a Yahoo! NIC domain.
Yahoo! should shut this site immediately !
Yahoo! syndicates news from AP. So if Associate Press is not reliable enough, who'd ?
And the space program, think of Wernher Von Braun that builds the Saturn 5, nevermind he was a Nazi,
and the computer industry, to John von Neumann, from the ENIAC to his von neumann architecture.
There should be no reason to recruit outside the USA for PhD programs. We should be able to have a good pool of undergrads in the USA to fill almost every PhD seat.
Many foreign universities will be delight if more Americans think this way and stop their braindrain. Way to go !
Hmmm, I doubt the Super Computers at Lawrence Berkeley Labs won't do nuclear simulations either.
Ahhh.... good old days.... can share iTunes library across the Internet until some suckers like ileech and itunsdl come out, forcing Apple to downgrade the feature.
Meanwhile, you can setup a rendezvous proxy with ileech, work on Mac and PC.
Meanwhile I'm happy with my iPod....
This is still fairly easy to defeat.... just invert the bytes of the files or gzip the file or whatever
Another doomed approach to solve a social problem with technology...