Out of respect. Not to just throw G-d's name (proper noun) around.
Basically, Jewish law (Yorah Deah, Hilchos Sefer Torah) forbids erasing G-d's name. So, many have accustomed themselves to not write G-d's name in Hebrew outright. This means leaving out a letter, or using the wrong letter (e.g. daleth instead of hay) or using a dash in between the letters, which is very common when the intent is not to write G-d's name, but use a name that include's one. This is not required, but is a custom based on respect and a "fence".
Many have carried this custom over to other languages.
We're using MSSQL where I work (it might be the only Microsoft product I have respect for)
Ehem. It's a fork of Sybase SQL Server.:)
but found the language quick and easy to pick up.
When taught properly. Otheriwse, people "sort of" know how to use it.
As it so happens SQL Server is not strict to the standard, and transfering to strict databases (DB2, Oracle, PostgreSQL, etc) always generates questions like "How do i do this in...", because they actually never learned the standard.
I do agree it's mostly laziness that gets people (not bothering to research enough on SQL injections) but it is hard to test my own code for all possible attacks..
Testing for attacks is after secure code is written. If the "security" is by adding in "preventions" for the attack, that is not a sign of good coding.
If one of my apps were to be SQL-Injected I would not chalk that one up to laziness, but possibly incompetence.
Which in a coder, is a sign of laziness. At least that's my feeling on the matter.
I've done my homework, the only suggestions I've ingored are parameterized stored-proc calls.. I'm not even sure *they* could prevent an attack.
They can. And it's very easy. The first lines of code should be parameter verification based on bounds checking, and RETURN (or RAISE) an error and exit the PROCEDURE.
MySQL is not a database. It does not support Transactions. It doesn't use normal syntax. Why? Because it's easy. So a programmer who has better things to do than learning some arcane syntax can just get the job done and move on. Good? No!
It is because of this laziness that such attacks occur by someone who did take the time to learn the syntax. If people want a quick and dirty solution, so be it, but don't pretend to be a database and open all sorts or vulnerabilities.
The ease of SQL is made for people who take the time to learn it, and naturally code it securely. For those who don't have the time, just don't use SQL.
So, i blame MySQL (and its ilk) for this. And i can only laugh at the sites that get attacked because of their own laziness.
Sounds to me as realistic as the numbers in this story.
OK, some details.
New PCs will cost $1,500-$2,000.
Um, no, they won't. A new computer *without* corporate discounts is 25%-30% of that.
Darn few existing corporate PCs will have the video horsepower needed to run Aero
Methinks this person knows not what he speaks of. My "corporate" computer is more powerful than my (admittedly older) gaming PC.
Vista's primary upgrade inducement.
Is this guy serious? The "primary" upgrade inducment is looks? I bet he doesn't have a girlfriend...
Vista, for better or worse, has quite a bit more to offer than just "looks".
You need 256MB of video RAM to run Aero properly, no matter what Microsoft's marketing says.
So, i should believe this guy more than MS. Granted MS has a stake in saying it needs less, but this guy seems to have it in for MS just the same.
I don't know of any motherboard-based video chip sets that include 256MB of RAM.
Even if that was true, why does that affect corporate PCs, which are usually higher quality.
Upgrade? While in the PC, add memory: Vista needs a minimum of 1GB of RAM. The hardware cost of the RAM may be less than your labor costs getting that installed in every PC.
Actually, if we're talking corporate, upgrades are rarely done for a variety of reasons.
If your exiting PCs can take full advantage of Vista,
I assumed this meant "existing". Exiting is a different word, having nearly the opposite meaning.
I'm happy for you. I don't believe you, but I hope your upgrade goes well.
And sarcasm? *This* is an article?
The rest of the "article" is worse FUD than MS puts out.
One of the fundamental tenants of social psychology, indeed any psychology, is that common sense isn't.
That is a ridiculious statement. Seriously, read it a second time. Do you seriously believe common sense "isn't"? Do you actually know *anything* about psycology?
Certain things may require more intense study, but that does not negate common sense or correlation.
Wow, G-d wins again with prior art. Scienctists (who deny Him) are still looking to His creation for the best way to do things. At least they know where to look.
We should be happy He didn't take out any patents!
Moo is particularly appropriate for a null subject, although it should more properly be spelled Mu. Unless you are going for a Friends Joey-esque moo, as in a moo point, you know, like a cow's opinion? The point is moo.
In other news, Microsoft has said thet their version of Genuine Internet Explorer has no bugs, and any bugs, must be due to a bad download, or user tampering. As such, all user installs of Internet Explorer will be renamed to "Meshed-Screen Interpolated E-reader" (MSIE for short), and will subsequently be subject to licensing fees.
So, let me get this straight. Microsoft opens the code for their browser and lets people look at it, and submit "patches". All patches must go through a slow for approval (for good code) process. Anyone who releases it on their own is sued for copyright violations. And anyone who reports a bug mysteriously reports the next day it was a hoax and a joke.
I want this Microsoft FUD to stop right now!
oh, wait, this is Mozilla? Err.. umm...
I wholly support Mozilla Corparation's moves in the Open Source community, they are right in this case, and anyone who goes against them is against successful open source projects.
I started on Slackware, but went to Debian after i destroyed my system upgrading glibc2 because pat was a tad slow on that realease. (Of course, know i know why!:P )
Slackware evokes a nostalgic feeling in me, and quite a few others. That's all. I meant no offense. Honest!
Huh? Since when do companies make more money than they know what to do with?
On why most small businesses fail. Reasons include the owner not delegating, not having a business plan for growth, and not knowing where to spend money. Something like eighty percent of small businesses fail for this reason within three-to-five years. Ergo, if a business is successful, they probably do know where to put their money. But, it still remains as a childish insult, calling them "small" and "inexperienced".
So, while you're overall point is on the mark, this particular nudge is incorrect.
Good thing Nobel prize is based out of Sweden. If it was based out of Slashdot, I am sure by now the Anonymous Cowards and the Teenage Left would have positioned themselves on the Governing Board and the results would be significantly different.
I can just see the list of this year's Nobel Prize winners, if the Nobel Prize was based in Slashdot.
Nobel Prize in Physics - Anonymous Coward for breaking the speed-of-light breaking first posts about the Microsoft FUD which proved that Microsoft makes money by holding everyone at gunpoint.
Nobel Prize in Physiology - Anonymous Coward, who, using complex 1337 5p34|<, proved beyond doubt that Soviet Russia is still alive and kicking.
Nobel Prize in Literature - Anonymous Coward, who exposed the greatest perils that free societies face today - Gutless Lying Conservatives who will sell your daughters and sisters to evil billionaires.
Nobel Prize in Peace - Osama Bin Laden, who tried to free millions of Americans from a brutal dictator.
Slashdot Mirror
What reason did you put the dash in there for?
Out of respect. Not to just throw G-d's name (proper noun) around.
Basically, Jewish law (Yorah Deah, Hilchos Sefer Torah) forbids erasing G-d's name. So, many have accustomed themselves to not write G-d's name in Hebrew outright. This means leaving out a letter, or using the wrong letter (e.g. daleth instead of hay) or using a dash in between the letters, which is very common when the intent is not to write G-d's name, but use a name that include's one. This is not required, but is a custom based on respect and a "fence".
Many have carried this custom over to other languages.
We're using MSSQL where I work (it might be the only Microsoft product I have respect for)
:)
...", because they actually never learned the standard.
Ehem. It's a fork of Sybase SQL Server.
but found the language quick and easy to pick up.
When taught properly. Otheriwse, people "sort of" know how to use it.
As it so happens SQL Server is not strict to the standard, and transfering to strict databases (DB2, Oracle, PostgreSQL, etc) always generates questions like "How do i do this in
I do agree it's mostly laziness that gets people (not bothering to research enough on SQL injections) but it is hard to test my own code for all possible attacks..
Testing for attacks is after secure code is written. If the "security" is by adding in "preventions" for the attack, that is not a sign of good coding.
If one of my apps were to be SQL-Injected I would not chalk that one up to laziness, but possibly incompetence.
Which in a coder, is a sign of laziness. At least that's my feeling on the matter.
I've done my homework, the only suggestions I've ingored are parameterized stored-proc calls.. I'm not even sure *they* could prevent an attack.
They can. And it's very easy. The first lines of code should be parameter verification based on bounds checking, and RETURN (or RAISE) an error and exit the PROCEDURE.
Id's under 10k have some cred, for longevity reasons if nothing else.
*10* **k** ?????
Them youngsters??
Is there some way to tell if a slashdot comment is just phishing for more comments, or actually has something to say?
Blame MySQL.
MySQL is not a database. It does not support Transactions. It doesn't use normal syntax. Why? Because it's easy. So a programmer who has better things to do than learning some arcane syntax can just get the job done and move on. Good? No!
It is because of this laziness that such attacks occur by someone who did take the time to learn the syntax. If people want a quick and dirty solution, so be it, but don't pretend to be a database and open all sorts or vulnerabilities.
The ease of SQL is made for people who take the time to learn it, and naturally code it securely. For those who don't have the time, just don't use SQL.
So, i blame MySQL (and its ilk) for this. And i can only laugh at the sites that get attacked because of their own laziness.
Someone needs to rewrite history, and have Lucas make this decision *before* he remastered Episode 1.
Sounds to me as realistic as the numbers in this story.
OK, some details.
Um, no, they won't. A new computer *without* corporate discounts is 25%-30% of that.
Methinks this person knows not what he speaks of. My "corporate" computer is more powerful than my (admittedly older) gaming PC.
Is this guy serious? The "primary" upgrade inducment is looks? I bet he doesn't have a girlfriend...
Vista, for better or worse, has quite a bit more to offer than just "looks".
So, i should believe this guy more than MS. Granted MS has a stake in saying it needs less, but this guy seems to have it in for MS just the same.
Even if that was true, why does that affect corporate PCs, which are usually higher quality.
Actually, if we're talking corporate, upgrades are rarely done for a variety of reasons.
I assumed this meant "existing". Exiting is a different word, having nearly the opposite meaning.
And sarcasm? *This* is an article?
The rest of the "article" is worse FUD than MS puts out.
I wonder if they'll have a vote whether to keep the boxes or not.
I just searched for "20 GOTO 10". Oh my. I don't know if that is funny or sad.
Of course, the official definition of the format will be in French, and all dates must use Paris Mean Time.
Most scientists are not atheists.
Tell that to Slashdot.
Putting a dash for the "o" in "God" is a misinterpretation of Scripture.
Oh? Do you have any idea *why* i put the dash there, to then state that is a misinterpretation?
If God had taken out patents, people would be able to reference them, a good thing.
Well, after they learned the language...
We could probably cure cancer, and the whole Human Genome thing wouldn't have been necessary.
More accurately, we'd be closer, if the goal is possible.
Also, they would have expired twenty years after they were granted, so they'd be public domain now anyway.
Which would destroy current patents...
only drives people away from the very beliefs you want to convince them of.
:)
Actually, that wasn't my intention at all.
One of the fundamental tenants of social psychology, indeed any psychology, is that common sense isn't.
That is a ridiculious statement. Seriously, read it a second time. Do you seriously believe common sense "isn't"? Do you actually know *anything* about psycology?
Certain things may require more intense study, but that does not negate common sense or correlation.
Wow, G-d wins again with prior art. Scienctists (who deny Him) are still looking to His creation for the best way to do things. At least they know where to look.
We should be happy He didn't take out any patents!
Of course we all know that correlation does not equal causation,
But it sure is a good starting point to finding causation!
I really can't believe they needed a *study* for this. What ever happened to common sense?
Because of the low priced (with subsidies!) American products?
The subsidies are provided by the US itself!
"And for our next robot".... "drumroll please"....
Moo is particularly appropriate for a null subject, although it should more properly be spelled Mu. Unless you are going for a Friends Joey-esque moo, as in a moo point, you know, like a cow's opinion? The point is moo.
:)
Heh. Very cute.
FireFox has no exploits. All exploits are actually in IceWeasel, to avoid legal action from Mozilla.
In other news, Microsoft has said thet their version of Genuine Internet Explorer has no bugs, and any bugs, must be due to a bad download, or user tampering. As such, all user installs of Internet Explorer will be renamed to "Meshed-Screen Interpolated E-reader" (MSIE for short), and will subsequently be subject to licensing fees.
So, let me get this straight. Microsoft opens the code for their browser and lets people look at it, and submit "patches". All patches must go through a slow for approval (for good code) process. Anyone who releases it on their own is sued for copyright violations. And anyone who reports a bug mysteriously reports the next day it was a hoax and a joke.
I want this Microsoft FUD to stop right now!
oh, wait, this is Mozilla? Err.. umm...
I wholly support Mozilla Corparation's moves in the Open Source community, they are right in this case, and anyone who goes against them is against successful open source projects.
heh.
Most people seems to write it before the body is written, or worse, make it part of the body.
So, moo has become my favorite usless subject for comments.
Heh. I know. :)
:P )
I started on Slackware, but went to Debian after i destroyed my system upgrading glibc2 because pat was a tad slow on that realease. (Of course, know i know why!
Slackware evokes a nostalgic feeling in me, and quite a few others. That's all. I meant no offense. Honest!
Huh? Since when do companies make more money than they know what to do with?
On why most small businesses fail. Reasons include the owner not delegating, not having a business plan for growth, and not knowing where to spend money. Something like eighty percent of small businesses fail for this reason within three-to-five years. Ergo, if a business is successful, they probably do know where to put their money. But, it still remains as a childish insult, calling them "small" and "inexperienced".
So, while you're overall point is on the mark, this particular nudge is incorrect.
Good thing Nobel prize is based out of Sweden. If it was based out of Slashdot, I am sure by now the Anonymous Cowards and the Teenage Left would have positioned themselves on the Governing Board and the results would be significantly different.
I can just see the list of this year's Nobel Prize winners, if the Nobel Prize was based in Slashdot.
Nobel Prize in Physics - Anonymous Coward for breaking the speed-of-light breaking first posts about the Microsoft FUD which proved that Microsoft makes money by holding everyone at gunpoint.
Nobel Prize in Physiology - Anonymous Coward, who, using complex 1337 5p34|<, proved beyond doubt that Soviet Russia is still alive and kicking.
Nobel Prize in Literature - Anonymous Coward, who exposed the greatest perils that free societies face today - Gutless Lying Conservatives who will sell your daughters and sisters to evil billionaires.
Nobel Prize in Peace - Osama Bin Laden, who tried to free millions of Americans from a brutal dictator.
Nobel Prize in Chemistry - Discontinued.