The computer would have seen the geese, and not hit them in the first place. The weather was clear, and a large flock of geese is easy to see in plenty of time to avoid. Computer vision is good enough to detect an object like that, with two cameras maybe on the wing tips the geese would stand out very clearly using basic stereo vision.
Having hit the geese, Sullenberger quickly realized that he had lost both engines close to the ground. But he then pissed about for a full 30 seconds before beginning the turn, with the river an option all the while. I can tell you as a Weekend Wairor (occasional light aircraft pilot) it would only take me a couple of seconds if that fan stopped -- a pilot should always be thinking about that in the first minute after take off.
And then "Sully" became the Hero of the Hudson because he did not stuff up the water landing, which he should have practiced in the simulator many times.
The pilot must always fly the plane to stay current. Without Autothrotle and other dangerous aids. The computer watches the pilot, and warns them of things like geese. Then if the pilot does not react, the computer takes over.
The votes can be altered by any election official. Some voting machines even had an adjust votes.
Paper ballots are even worse UNLESS they are properly scrutineered. In the US, they are counted in secret rooms and nobody is allowed in. And there are strict laws to prevent any recounts or external scrutiny.
Republicans seem to be better at hacking elections than Democrats.
In civilized countries, like Australia, the votes are counted in front of scrutineers appointed by the candidates. All done in a couple of hours on election night. Very efficient, cheaper than voting machines, and impossible to hack.
The trick for modern (post 1980s) garbage collection is that objects are *moved* in to different generations. So things that hang around are kept separate from transient objects. That provides huge improvements, as well as eliminating fragmentation. But in order to do that you need to know *exactly* where the pointers are. And that cannot be done with a crude 1960s model of programming.
The Bohem collector "uses a mark-sweep algorithm". I.e. NOT a modern GC. It presumably works by assuming that anything that looks like pointer is a pointer. Very hacky.
C++ creates heaps of garbage. Every time you assign a string you are creating garbage. Without proper GC C++ programs tend to do a lot more copying of data structures than Java/.Net ones.
The purpose of Encryption is to sell people Certificates. Thus Let's Encrypt is destroying the Purpos of encryption.
Very few people check the URLs. So the whole thing is pointless. EV certs do nothing but ensure that PayPalThieves.com is really owned by those thieves.
In the bigger scheme of things, a Glassdoor that allows leaks reduces fraud. But killing the site (and similiar sites) means that in future there will be no users to disclose.
Courts need to focus on the public good in general and not just on one particular case.
By the partizan electoral officials that control them. Heck, the Diabold machine was even found to have and "Adjust Votes" option on the menu, no need for any actual hacking.
It amazes me that Americans put up with this grossly dubious system.
I am sure that the Australian election was not hacked. I was one of the scrutineers who watched while every paper ballot (at a particular booth) was tallied. And then forwarded those subtotals on to the candidate themselves. No fuss. No court cases. Just transparency.
When Mnsiter Conroy (Labor) tried to introduce internet censorship a few years ago the outcry was so large and pervasive that they had to back down They did not do so lightly, the saga went on for years. Conroy did everything to force it through. But then an election loomed and it was dropped.
The current conservative Liberals would love to introduce it, but having watched Conroy burn they do not dare. (Things could be different if they ever did really well in the polls.)
The UK public, on the other hand, just rolled over. We do not quite have the tabloid press that they do though.
(Not to say all is well down under, surveillance, etc. is hot. But we value their porn far more than our British cousins. )
(Conroy is a devout catholic, who having left parliament took up a job lobbying for the poker machine industry.)
The real problem is that ADA has End If, and all the cool kids use {}. It also normally counts from 1 which is so archaic -- had a word about that to my kid's kindy teacher.
(Ada is also obsolete because it does not have garbage collection, which is the number one issue with C in practice (providing you write it very carefully). Ada is also rather facist. There is a place for the very occasional explicit unsafe array access (like.Net). C was obsolete when it was invented, and many people said at the time how horrible it was. But it grew prominant with Unix. And no, Java is not slower than C in practice.)
Middle class Indians just do not have a few lazy hundred dollars to spend. (The rich certainly do, but not the middle.) In the west, you need an iPhone because your friends all use iMessage, and it would not be cool to be without. Not so India.
Hence the Apple attempt to focus Indians on the local market, which Apple wishes to enter more fully. But I suspect the money for Indian developers is still in the west.
I've been able to run Cygwin for decades. But I prefer to use a real scripting language. The Windows CMD language can do anything for people with grit and determination.
What the world needs is a good implementation of CMD that runs on Unix.
Ten years ago, Ethanol was going to be the future. Now it is batteries.
In 2040 robots will be everywhere. The world will change beyond recognition.
Interesting that nobody tries to make films set in the realistic future. For example, there were no films in the 1980/90ss showing social media and smart phones, even though these were very much on the Moore's law horizon at the time.
There is no reason that a "text file" cannot have a null In it. Just open an editor and put one there.
What the effect of that is depends on how the C code happened to be written. If, for example, it scans for new lines, and ":"s, it will just happily include the null in the string. But then some strlen function will truncate it.
Most programmers will make the same assumption that you did. Namely that nulls should not be there, and will therefor ignore the problem.
This type of attack is not theoretical, it was used to break Certificates.
Yes, but what part of the username? The bit before the null or the whole lot. What if someone creates a user rootstuff, and has the password for the full name but not for root?
This sort of thing was used to break certificate processing in a number of implementations, due to inconsistent handling of nulls.
At any point in time, one of the millions of Wikipedia pages will experience a surge, just by luck. If you then look for the page with the greatest surge you will certainly find one. That's why statisticians use ANOVA.
So, how does it behave if we put a Null in a username. A good way to break most C grade programs. (Sure, not supposed to be allowed, but if an upstream process has a bug that lets it through, the world should not collapse.)
Slashdot Mirror
Almost correct.
The computer would have seen the geese, and not hit them in the first place. The weather was clear, and a large flock of geese is easy to see in plenty of time to avoid. Computer vision is good enough to detect an object like that, with two cameras maybe on the wing tips the geese would stand out very clearly using basic stereo vision.
Having hit the geese, Sullenberger quickly realized that he had lost both engines close to the ground. But he then pissed about for a full 30 seconds before beginning the turn, with the river an option all the while. I can tell you as a Weekend Wairor (occasional light aircraft pilot) it would only take me a couple of seconds if that fan stopped -- a pilot should always be thinking about that in the first minute after take off.
And then "Sully" became the Hero of the Hudson because he did not stuff up the water landing, which he should have practiced in the simulator many times.
The pilot must always fly the plane to stay current. Without Autothrotle and other dangerous aids. The computer watches the pilot, and warns them of things like geese. Then if the pilot does not react, the computer takes over.
They are no longer hacker conferences.
They are business conferences that compete with RSA security. The Hacker element is just a bit of tinsel.
And the corporate customers and IT companies are in the US.
I met a Russian back packer from Siberia who thought global warming was a great idea.
The votes can be altered by any election official. Some voting machines even had an adjust votes.
Paper ballots are even worse UNLESS they are properly scrutineered. In the US, they are counted in secret rooms and nobody is allowed in. And there are strict laws to prevent any recounts or external scrutiny.
Republicans seem to be better at hacking elections than Democrats.
In civilized countries, like Australia, the votes are counted in front of scrutineers appointed by the candidates. All done in a couple of hours on election night. Very efficient, cheaper than voting machines, and impossible to hack.
The trick for modern (post 1980s) garbage collection is that objects are *moved* in to different generations. So things that hang around are kept separate from transient objects. That provides huge improvements, as well as eliminating fragmentation. But in order to do that you need to know *exactly* where the pointers are. And that cannot be done with a crude 1960s model of programming.
The Bohem collector "uses a mark-sweep algorithm". I.e. NOT a modern GC. It presumably works by assuming that anything that looks like pointer is a pointer. Very hacky.
C++ creates heaps of garbage. Every time you assign a string you are creating garbage. Without proper GC C++ programs tend to do a lot more copying of data structures than Java/.Net ones.
He is talking about junk languages like C++, which can only handle crude reference counting.
Visual Basic has (optional) static typing.
That alone makes it a much better language than Python for any significant code.
The purpose of Encryption is to sell people Certificates. Thus Let's Encrypt is destroying the Purpos of encryption.
Very few people check the URLs. So the whole thing is pointless. EV certs do nothing but ensure that PayPalThieves.com is really owned by those thieves.
There is a technical solution. It is called Secure Remote Password (SRP). https://en.wikipedia.org/wiki/....
Or even just nonce based passwords where the password entered is not sent to the server or its JavaScript.
But nobody does this. Because at the end of the day nobody cares about security other than security vendors that would hate a solution to Phishing.
I've written code after a lunch like that that took weeks to fix afterwards...
In the bigger scheme of things, a Glassdoor that allows leaks reduces fraud. But killing the site (and similiar sites) means that in future there will be no users to disclose.
Courts need to focus on the public good in general and not just on one particular case.
By the partizan electoral officials that control them. Heck, the Diabold machine was even found to have and "Adjust Votes" option on the menu, no need for any actual hacking.
It amazes me that Americans put up with this grossly dubious system.
I am sure that the Australian election was not hacked. I was one of the scrutineers who watched while every paper ballot (at a particular booth) was tallied. And then forwarded those subtotals on to the candidate themselves. No fuss. No court cases. Just transparency.
When Mnsiter Conroy (Labor) tried to introduce internet censorship a few years ago the outcry was so large and pervasive that they had to back down They did not do so lightly, the saga went on for years. Conroy did everything to force it through. But then an election loomed and it was dropped.
The current conservative Liberals would love to introduce it, but having watched Conroy burn they do not dare. (Things could be different if they ever did really well in the polls.)
The UK public, on the other hand, just rolled over. We do not quite have the tabloid press that they do though.
(Not to say all is well down under, surveillance, etc. is hot. But we value their porn far more than our British cousins. )
(Conroy is a devout catholic, who having left parliament took up a job lobbying for the poker machine industry.)
https://en.wikipedia.org/wiki/...
The real problem is that ADA has End If, and all the cool kids use {}. It also normally counts from 1 which is so archaic -- had a word about that to my kid's kindy teacher.
(Ada is also obsolete because it does not have garbage collection, which is the number one issue with C in practice (providing you write it very carefully). Ada is also rather facist. There is a place for the very occasional explicit unsafe array access (like .Net). C was obsolete when it was invented, and many people said at the time how horrible it was. But it grew prominant with Unix. And no, Java is not slower than C in practice.)
Middle class Indians just do not have a few lazy hundred dollars to spend. (The rich certainly do, but not the middle.) In the west, you need an iPhone because your friends all use iMessage, and it would not be cool to be without. Not so India.
Hence the Apple attempt to focus Indians on the local market, which Apple wishes to enter more fully. But I suspect the money for Indian developers is still in the west.
I've been able to run Cygwin for decades. But I prefer to use a real scripting language. The Windows CMD language can do anything for people with grit and determination.
What the world needs is a good implementation of CMD that runs on Unix.
Ten years ago, Ethanol was going to be the future. Now it is batteries.
In 2040 robots will be everywhere. The world will change beyond recognition.
Interesting that nobody tries to make films set in the realistic future. For example, there were no films in the 1980/90ss showing social media and smart phones, even though these were very much on the Moore's law horizon at the time.
Unlike Android, Microsoft etc.
For other companies, security is about protecting their customers. For Apple, security is about protecting Apple's walled garden.
There is no reason that a "text file" cannot have a null In it. Just open an editor and put one there.
What the effect of that is depends on how the C code happened to be written. If, for example, it scans for new lines, and ":"s, it will just happily include the null in the string. But then some strlen function will truncate it.
Most programmers will make the same assumption that you did. Namely that nulls should not be there, and will therefor ignore the problem.
This type of attack is not theoretical, it was used to break Certificates.
That was root[null]stuff.
Yes, but what part of the username? The bit before the null or the whole lot. What if someone creates a user rootstuff, and has the password for the full name but not for root?
This sort of thing was used to break certificate processing in a number of implementations, due to inconsistent handling of nulls.
Almost correct. Its statistics.
At any point in time, one of the millions of Wikipedia pages will experience a surge, just by luck. If you then look for the page with the greatest surge you will certainly find one. That's why statisticians use ANOVA.
Electric motor bikes will not solve the problem.
The streets are clogged with motorbikes. The elite cannot drive their cars. So get rid of the bikes ... in the name of pollution.
The only ones executed are those that did not pay the right bribes to the right people.
So, how does it behave if we put a Null in a username. A good way to break most C grade programs. (Sure, not supposed to be allowed, but if an upstream process has a bug that lets it through, the world should not collapse.)