...thus marking the first time that using XML ever made any data representation more compact.
I realize you're going for funny, but this isn't true. This paper evaluates a number of XML compression techniques. They compared binary formats to uncompressed XML to compressed XML. The paper states that "three methods compressed the XML to less than the size of the corresponding binary file." One of the best compression approaches is XMill.
Re:Back-seat drivers: discipline
on
iPods at War
·
· Score: 1
In that case, the comment should read: "People... don't realize that soldering is 99% boredom and 1% sheer terror."
So, each file currently costs about $1 to download. Consumers want to be able to mix-and-match songs across albums. Enter the artists that either want: 1) to sell more songs by bundling them into an album or 2) to maintain artistic integrity. In the latter case, let them bundle the entire album into a single file (to be sold for $1). Call the bluff and we'll see whether it's profit or art that rules.
The FTA is not always right. If you peruse the TightPod website, you will see that the manufacturer makes no mention of MP3 players. Laptops, yes. Musical instruments, yes. Books, yes. MP3 players, no. The only mention I could find of iPod is on their FAQ.
We used a revision control system. That lets you time travel; it doesn't let you visualize the changes. Seeing the changes imbedded in the document with deletions and insertions inline is an incredibly valuable learning tool.
Myself (and a number of my fellow students) love the 'track changes' features in Word. When writing academic papers in LaTeX, I had a tough time understanding how the edits my advisors made improved the paper. The visual nature of track changes made it much easier to emulate their writing style (if nothing else so that they'd sign off on the dissertation, which was written entirely in Word).
The attacker doesn't need to control the local computer; the attacker only needs to trust that the local computer doesn't introduce its own jitter. Isn't it telling that the researchers implemented the attack without modifying the local computer?
Given the delays you specify, I can easily imbed the message 1011 in your traffic. I do this by ensuring that every 1-bit in my message corresponds to an interval that ends in 5 and every 0-bit corresponds to an interval that ends in 0. So, given your input sequence (100,110,90,40), I delay the keystrokes to produce the sequence (105,110,95,45). This only requires that the network variance be less than 5ms.
I only skimmed the research paper, but this appears to be exactly what they propose as well. In particular, I think it's telling that they transmitted a secret message across the planet using their mechanism (using a 20ms window instead of the 5ms I used in my example).
There was no demand, and they were unable to create one.
I'd like to refine that statement to read: There was no demand for commercial media centre products. My experiences jive with the article; the extant demand is readily supplied using commodity hardware and free software.
top 100 cities that are too small to have any real culture, too large to feel intimate, and too uninteresting to naturally attract attention
I moved to Rockville, which narrowly missed the top 25, a year ago. Rockville has an active arts community (including concert band, ballet and theatre). If local arts aren't enough, DC is a short Metro ride away.
Since moving to Rockville, I've had meaningful discussions with most of the neighbors, half of the city council, and a handful of business owners. I grew in central MN, and Rockville compares very nicely in terms of intimacy.
Finally, the main drag has so many nice restaurants that people from all over the DC region visit Rockville. This includes an absolutely fabulous Peruvian restaurant. Rockville is also attracting the interest of many biotech companies.
This is why small shops will often have some minimum transaction to accept credit.
Of course, in the case of Visa and MasterCard, this is a violation of the agreement that the store signed with the credit card company. See Visa's FAQ and MasterCard's FAQ. For more information, check out this article. (As an aside, it's interesting that the store is prohibited from demanding identification in most cases.)
Oh the humanity! Bush has issued statements on 30 more laws than Clinton!
However, from the article you cited:
"There is a sense that the president has taken the signing statements far beyond the customary purviews," Specter told the administration's representative, Michelle E. Boardman, deputy assistant attorney general in the Justice Department's Office of Legal Counsel. "There's a real issue here as to whether the president may, in effect, cherry-pick the provisions he likes and exclude the ones he doesn't like."
Moreover, the problem is not that Bush is commenting on the laws, it is that he is effectively rewriting the laws. For example, he signs a law banning torture. Then, he 'comments' that the law doesn't apply to government employees (or some such nonsense).
So, what's a 'silver bullet' supposed to be good for? Killing werewolves, right? (Or wererats or warehouses or werecanaries.)
Given that it's really only good for one extremely limited function, why in the world does a 'silver bullet' represent a solution to a wide range of problems?
I, too, was sceptical of Opera. Regardless, yesterday (based on the browser comparison) I installed Opera. Since then (some 12 hours of browsing later) I am not going back to those pathetic browsing environments known as Firefox (doesn't work with multiple desktops, ever, despite frequent bug complaints) or IE (never saw a standard it couldn't break). Opera does everything I want, and more. The fast forward and fast reverse buttons alone are worth conversion. Okay, part of my enthusiasm stems from being a new convert, but usually I would focus on what doesn't work. Moreover, my banking sites work perfectly, my online access to Exchange email works perfectly, every site I've hit so far works perfectly.
"So a specially-crafted RFID tag could cause code to execute on a vulnerable RFID reader. That's not a virus. But if this code causes the RFID reader to begin writing copies of the bad data to tags, then we have a virus."
The real article (not the lame BBC article) describes how to construct a self-replicating virus that copies itself to RFID tags as they are written. They also describe how to create RFID worms. The attack vectors are basically SQL injection, cross-site scripting, and buffer overflows.
Are you implying that members of Congress don't have to pay Social Security taxes? If so, I'd like to direct your attention to a debunking of this myth.
The point is not that writing a compiler is necessarily that difficult. The point is that simply reading the source code (assuming it's crystal clear code) gives you some magical guarantee. Assuming you can trust the hardware, you need a combination of a verified compiler, access to the source code, and sufficient documentation to recognize when the source code is doing something suspect. In other words, open-source software is necessary, but not sufficient.
I was unable to quickly find information on gcc bootstrapping. Can you provide any information describing this process?
The chicken-and-egg problem is a big problem. If you need to verify the security of a system, you need to have written the compiler, from scratch. You cannot rely on a third-party tool, unless you can verify the compiler executable (not its source code). The article also notes that the problem is even worse: you need to verify that the hardware implementation of the instruction set is correct.
Don't get me wrong, I think that open-source is important. It just doesn't provide any absolute guarantees.
The solution for OSS is simple. Any OSS software that goes into a Command and Control system needs to have it's source code audited by an independent authority.
Unfortunately, it's not as simple as auditing the source code. You also need to have complete control over the compiler, as implemented in machine code. For example, see Ken Thompson's comments on how to imbed self-replicating code into a compiler so that every program has a back door.
*Sigh* Some days it seems that if wikipedia had a penny for everyone who bashed it, the wikipedia organization would be richer than Gates.
I hate to nitpick (okay, not really). If wikipedia had a penny for every person on the planet, the organization would have less than $70 million. By comparison, billg is currently worth more than $25 billion. The sad realization is that if you had a dollar for every person on the planet (regardless of whether or not they bash you), you'd still have a ways to go to catch up. Of course, you shouldn't believe numbers posted to Slashdot or Wikipedia!
Hey, that's my story! About 9 years ago, a consultant at the firm at which I was working had dissambled her laptop (and docking station) so that a new desk could be installed. She then carefully reassembled the computer. A couple hours later, I was asked to figure out why her machine kept crashing. I turned the laptop on, and sure enough, partway through the boot process, it shut off. Sort of like the battery was almost dead. I traced the power cable to the power strip, which was plugged into itself. I wonder just how common this is.
Slashdot Mirror
I realize you're going for funny, but this isn't true. This paper evaluates a number of XML compression techniques. They compared binary formats to uncompressed XML to compressed XML. The paper states that "three methods compressed the XML to less than the size of the corresponding binary file." One of the best compression approaches is XMill.
In that case, the comment should read: "People ... don't realize that soldering is 99% boredom and 1% sheer terror."
So, each file currently costs about $1 to download. Consumers want to be able to mix-and-match songs across albums. Enter the artists that either want: 1) to sell more songs by bundling them into an album or 2) to maintain artistic integrity. In the latter case, let them bundle the entire album into a single file (to be sold for $1). Call the bluff and we'll see whether it's profit or art that rules.
I concede the point.
No problem, they're labeled Jgr, Ms, and Tr (for Jägermeister).
The FTA is not always right. If you peruse the TightPod website, you will see that the manufacturer makes no mention of MP3 players. Laptops, yes. Musical instruments, yes. Books, yes. MP3 players, no. The only mention I could find of iPod is on their FAQ.
We used a revision control system. That lets you time travel; it doesn't let you visualize the changes. Seeing the changes imbedded in the document with deletions and insertions inline is an incredibly valuable learning tool.
Myself (and a number of my fellow students) love the 'track changes' features in Word. When writing academic papers in LaTeX, I had a tough time understanding how the edits my advisors made improved the paper. The visual nature of track changes made it much easier to emulate their writing style (if nothing else so that they'd sign off on the dissertation, which was written entirely in Word).
The attacker doesn't need to control the local computer; the attacker only needs to trust that the local computer doesn't introduce its own jitter. Isn't it telling that the researchers implemented the attack without modifying the local computer?
Given the delays you specify, I can easily imbed the message 1011 in your traffic. I do this by ensuring that every 1-bit in my message corresponds to an interval that ends in 5 and every 0-bit corresponds to an interval that ends in 0. So, given your input sequence (100,110,90,40), I delay the keystrokes to produce the sequence (105,110,95,45). This only requires that the network variance be less than 5ms.
I only skimmed the research paper, but this appears to be exactly what they propose as well. In particular, I think it's telling that they transmitted a secret message across the planet using their mechanism (using a 20ms window instead of the 5ms I used in my example).
I'd like to refine that statement to read: There was no demand for commercial media centre products. My experiences jive with the article; the extant demand is readily supplied using commodity hardware and free software.
I moved to Rockville, which narrowly missed the top 25, a year ago. Rockville has an active arts community (including concert band, ballet and theatre). If local arts aren't enough, DC is a short Metro ride away.
Since moving to Rockville, I've had meaningful discussions with most of the neighbors, half of the city council, and a handful of business owners. I grew in central MN, and Rockville compares very nicely in terms of intimacy.
Finally, the main drag has so many nice restaurants that people from all over the DC region visit Rockville. This includes an absolutely fabulous Peruvian restaurant. Rockville is also attracting the interest of many biotech companies.
Thus, I find your cynicism misplace.
Of course, in the case of Visa and MasterCard, this is a violation of the agreement that the store signed with the credit card company. See Visa's FAQ and MasterCard's FAQ. For more information, check out this article. (As an aside, it's interesting that the store is prohibited from demanding identification in most cases.)
However, from the article you cited:
"There is a sense that the president has taken the signing statements far beyond the customary purviews," Specter told the administration's representative, Michelle E. Boardman, deputy assistant attorney general in the Justice Department's Office of Legal Counsel. "There's a real issue here as to whether the president may, in effect, cherry-pick the provisions he likes and exclude the ones he doesn't like."
Moreover, the problem is not that Bush is commenting on the laws, it is that he is effectively rewriting the laws. For example, he signs a law banning torture. Then, he 'comments' that the law doesn't apply to government employees (or some such nonsense).
So, what's a 'silver bullet' supposed to be good for? Killing werewolves, right? (Or wererats or warehouses or werecanaries.)
Given that it's really only good for one extremely limited function, why in the world does a 'silver bullet' represent a solution to a wide range of problems?
How does "You are goatse guy" constitute 7 syllables?
I, too, was sceptical of Opera. Regardless, yesterday (based on the browser comparison) I installed Opera. Since then (some 12 hours of browsing later) I am not going back to those pathetic browsing environments known as Firefox (doesn't work with multiple desktops, ever, despite frequent bug complaints) or IE (never saw a standard it couldn't break). Opera does everything I want, and more. The fast forward and fast reverse buttons alone are worth conversion. Okay, part of my enthusiasm stems from being a new convert, but usually I would focus on what doesn't work. Moreover, my banking sites work perfectly, my online access to Exchange email works perfectly, every site I've hit so far works perfectly.
"So a specially-crafted RFID tag could cause code to execute on a vulnerable RFID reader. That's not a virus. But if this code causes the RFID reader to begin writing copies of the bad data to tags, then we have a virus."
The real article (not the lame BBC article) describes how to construct a self-replicating virus that copies itself to RFID tags as they are written. They also describe how to create RFID worms. The attack vectors are basically SQL injection, cross-site scripting, and buffer overflows.
Are you implying that members of Congress don't have to pay Social Security taxes? If so, I'd like to direct your attention to a debunking of this myth.
The point is not that writing a compiler is necessarily that difficult. The point is that simply reading the source code (assuming it's crystal clear code) gives you some magical guarantee. Assuming you can trust the hardware, you need a combination of a verified compiler, access to the source code, and sufficient documentation to recognize when the source code is doing something suspect. In other words, open-source software is necessary, but not sufficient.
I was unable to quickly find information on gcc bootstrapping. Can you provide any information describing this process?
The chicken-and-egg problem is a big problem. If you need to verify the security of a system, you need to have written the compiler, from scratch. You cannot rely on a third-party tool, unless you can verify the compiler executable (not its source code). The article also notes that the problem is even worse: you need to verify that the hardware implementation of the instruction set is correct.
Don't get me wrong, I think that open-source is important. It just doesn't provide any absolute guarantees.
The solution for OSS is simple. Any OSS software that goes into a Command and Control system needs to have it's source code audited by an independent authority.
Unfortunately, it's not as simple as auditing the source code. You also need to have complete control over the compiler, as implemented in machine code. For example, see Ken Thompson's comments on how to imbed self-replicating code into a compiler so that every program has a back door.
*Sigh* Some days it seems that if wikipedia had a penny for everyone who bashed it, the wikipedia organization would be richer than Gates.
I hate to nitpick (okay, not really). If wikipedia had a penny for every person on the planet, the organization would have less than $70 million. By comparison, billg is currently worth more than $25 billion. The sad realization is that if you had a dollar for every person on the planet (regardless of whether or not they bash you), you'd still have a ways to go to catch up. Of course, you shouldn't believe numbers posted to Slashdot or Wikipedia!
What makes the US dollar the national currency is the fact that you can only pay taxes in dollars
Sure taxes are assessed in US dollars, but have you ever tried to pay your income taxes using US paper money. Not a chance, kiddo!
Hey, that's my story! About 9 years ago, a consultant at the firm at which I was working had dissambled her laptop (and docking station) so that a new desk could be installed. She then carefully reassembled the computer. A couple hours later, I was asked to figure out why her machine kept crashing. I turned the laptop on, and sure enough, partway through the boot process, it shut off. Sort of like the battery was almost dead. I traced the power cable to the power strip, which was plugged into itself. I wonder just how common this is.