Put simply, XSS and CSRF can perform actions on behalf of whoever is using the browser without their consent. In that case the user happened to be using the admin side of cpanel, and the action was to change the root password. The protection against CSRF is to require re-entry of logon details for all sensitive actions, or to use a unique "key" in the link.
For most web security issues, the fix is trivial, you just have to know about it.
Another "hacking" trick is "session fixation", and it works like this: provide a victim with a link to a site that's using php, passing a php session id in the url. Victim logs in to site, you can now use their (logged-in) session, because you have the session id (you gave it to them!). The fix is to regenerate the session id on login, or to restrict a session to the IP of the user who started it, or to disable using session ids from the url. Or all of the above. It also helps to store the last session id used by each user into your users table to stop a user being logged in to multiple sessions at once.
CSRF is when there is a link or even better an image on another site that causes some action on the first site. Image (img tags) work better because they are normally downloaded automatically by the browser, and there is no restriction on them that means the URL they load has to be an image...
It's normally pretty limited as to what they can do though.
The problem is with all the programs currently using _core_windows_service_ that aren't expecting it to disappear for a second while it's being updated. They'd crash.
Windows needs to reboot after most Windows updates, because it needs to restart whatever has just been updated, and the easiest way is to restart.
As for rebooting after an install/uninstall of an application, that is the fault of a shitty app installer, not Windows. 99% of the time they run fine without rebooting, and 99% of the rest of the time you can dig out the commands they've requested to be run on next boot and run them NOW, and they'll run fine after that. The remaining apps tend to plug into the kernel in interesting ways, like antivirus or firewall apps. Even drivers for most devices (including graphics cards in recent versions of Windows) can be installed without a restart.
Well in that case, is the GCC created in stage 1 of compiling (the one that is compiled using another compiler, in this case ICC) faster than the stage 2 and 3 compilers (created by the ICC-compiled GCC and the GCC-compiled GCC respectively).
Unless you buy all 3 popular consoles, you can only play about a third of the available console games.
The majority of the better games are cross-platform. This generation, if you have a wii and a 360 you can play 99% of games. Hell, if you have just a wii or just a ps2 you can play quite a lot (75%?) of recent releases.
Whereas PCs can play about 1/2 of all console games, plus every PC game.
Well, not every pc game, as there isn't one pc that they can all run on.
And don't forget: Loading...
And on the flip side, streaming levels works a lot better on consoles where loading speed, seek times and even the layout of data on the disk is guaranteed. It would be better if PC games could be run from their DVD, but for some reason companies don't want to go for that idea.
Saying that you're gay is to express your sexual preference. It doesn't affect anything else but who you feel physically (i.e. sexually) attracted to. Saying it to a straight person of the same sex often scares them into thinking that you just said that you find them sexually attractive. People don't like to be "come on to" by people that they don't like, even if they only think they are being come on to.
To most people, writing "I am Gay" (or lesbian, or bi, or whatever) in a public profile is the same as writing "I prefer it doggy-style". It's a mention of sexual preference, not appropriate, and they take offence. But then some people take offence at the idea that people have sex at all... But it's a public profile! Anything except insulting someone else, or saying that you commit crimes, should be allowed.
To pick apart one of your examples, someone mentioning to you that they think Angelina Jolie is hot isn't a reason to say that you're gay. You could agree or disagree, depending on what you think. Just because you're gay doesn't mean that you're incapable of assessing the attractiveness of a woman, just as a straight man isn't incapable of assessing the attractiveness of another man. If you thought that the other person would take it the wrong way you could mention it, but saying "No, I'm gay" is as bad as saying "No, I'm straight" if a straight person is asked the attractiveness of another member of the same sex.
I haven't come across a single SATA device that won't work with a Molex->SATA power adapter. Do you have examples?
No. But leaving something out because you don't think it's used is stupid, and just asking for compatibility problems. Also note that the section of article you quote implies that such drives exist (italics mine):
Understanding this, drive manufacturers have largely left the 3.3 V power lines unused.
The closest I've come to a pc self-exploding is only partial self-combustion: One power-supply:...that lit the wall up with pretty lights and turned out to be full of disconnected black pieces when I opened it. The fuse in the power cord (5A@240V) blew, meaning more than double the PSU's rating had flown through it. I'm surprised the motherboard survived, let alone everything else in the case. One motherboard with optional power-stabilization add-in-card:...which wasn't itself stable, and fell out. Followed by a loud *crack* from the motherboard's own power circuits, seeing flames through the window my pc had in the side at the time, and needing to replace the cpu, gfx card, and mobo. If I'd had any pci cards they'd probably have died too. Thankfully my drives survived. One cpu:...which didn't have the cooler on properly, was about 150W, and didn't have temp throttling. The spacer pads in the corners crackled as they melted, then the core went *bang* and the pc turned itself off. I was in the bios at the time, just got to the sensors page, first time I'd seen a 3 digit temp on there...
I've also lost two more psus, two more cpus, and a graphics card or two to apparently random unspectacular failure.
Yeah, I'm one of the guinea pBzzBzzzBzzzzzt*click*
I am not involved in any government mind control program. Testing... Testing... Hey bob, it works! Oh crap, better turn it off n*click* *blink blink* *post*
(so long as you keep it someplace where the noise won't bother you).
Or modify it to run quieter.
Dynamic fan speed controls, fitting better fans (i.e. quieter but similar air-flow), better cpu / north-bridge coolers (that can cool the cpu sufficiently at its full load while still being quieter than the originals), etc.
It did wonders for my old twin Athlon-MP file-server. A few years ago I was short on space and so I kept it in my bedroom, and I got it quiet enough to sleep with it still on. Now it's under my desk (opposite side to my actual pc), and I'm still glad I quietened it.
Though my virus theory is massively more likely than DRM, and even if it was just the fact that he was trying to use the junction point as a folder, he could still have got a virus from the hacked dll he tried to use on photoshop. The "being an idiot" and "getting a virus" theories aren't mutually exclusive, unfortunately...
I know a lot of application crackers take pride in their work, but some people take their work, infect it with whatever, and re-release it under the reputable cracker's name. Unfortunately that means it's hard to trust any of them.
I think it's more likely that that "hacked" dll he used on photoshop was infected with some virus, and THAT is why he can no longer go into his own user folder.
If your computer starts acting up after you do something, blame yourself, not the computer.
The guy's an idiot.
Of course, this post is so far down the comments that very few people are going to see its wisdom...
A slight correction: Multi-processor systems had existed for a while, but dynamic clock speed scaling was new, and it was THAT that threw out the use of RDTSC as a timer. The problem just got more obvious when multi-socket chips were introduced that could change speed independently.
With a single chip that could adjust clock speed dynamically (based on load) the problem with using rdtsc wasn't too bad, because most games were (and still are) written to thrash a CPU (core) to 100% load anyway. However with two cpu (cores) in a system, one core could slow down while the other was running full-tilt. When this happened the tick counts would get out of sync. If the program using rdtsc then got scheduled onto the other cpu, it would see time as having jumped forwards or backwards.
It's worth noting that running different speed CPUs in a dual-socket board was possible before dynamic frequency scaling, as long as the FSBs matched. I accidentally had a 2GHz and a 600MHz cpu (133MHz FSB IIRC) in dual socket-A board at the same time once, and aside from horrifically confusing the dedicated server I was running on it, it ran fine. Not only were the rdtsc readings out of sync, causing it to keep thinking it had jumped into the past or future, but they were running at significantly different rates, causing it to keep switching between real-time and slomo or super-speed!
Slashdot Mirror
Put simply, XSS and CSRF can perform actions on behalf of whoever is using the browser without their consent.
In that case the user happened to be using the admin side of cpanel, and the action was to change the root password.
The protection against CSRF is to require re-entry of logon details for all sensitive actions, or to use a unique "key" in the link.
For most web security issues, the fix is trivial, you just have to know about it.
Another "hacking" trick is "session fixation", and it works like this: provide a victim with a link to a site that's using php, passing a php session id in the url. Victim logs in to site, you can now use their (logged-in) session, because you have the session id (you gave it to them!).
The fix is to regenerate the session id on login, or to restrict a session to the IP of the user who started it, or to disable using session ids from the url. Or all of the above.
It also helps to store the last session id used by each user into your users table to stop a user being logged in to multiple sessions at once.
I'll have to try my eeepc with that, it got 15 fps at the highest when I tried the classic client on it.
It has a GMA 945 IIRC.
CSRF is when there is a link or even better an image on another site that causes some action on the first site. Image (img tags) work better because they are normally downloaded automatically by the browser, and there is no restriction on them that means the URL they load has to be an image...
It's normally pretty limited as to what they can do though.
The problem is with all the programs currently using _core_windows_service_ that aren't expecting it to disappear for a second while it's being updated. They'd crash.
It has that.
Windows needs to reboot after most Windows updates, because it needs to restart whatever has just been updated, and the easiest way is to restart.
As for rebooting after an install/uninstall of an application, that is the fault of a shitty app installer, not Windows. 99% of the time they run fine without rebooting, and 99% of the rest of the time you can dig out the commands they've requested to be run on next boot and run them NOW, and they'll run fine after that. The remaining apps tend to plug into the kernel in interesting ways, like antivirus or firewall apps. Even drivers for most devices (including graphics cards in recent versions of Windows) can be installed without a restart.
Well in that case, is the GCC created in stage 1 of compiling (the one that is compiled using another compiler, in this case ICC) faster than the stage 2 and 3 compilers (created by the ICC-compiled GCC and the GCC-compiled GCC respectively).
Does GCC run faster if compiled with ICC?
That would take the biscuit.
Unless you buy all 3 popular consoles, you can only play about a third of the available console games.
The majority of the better games are cross-platform. This generation, if you have a wii and a 360 you can play 99% of games. Hell, if you have just a wii or just a ps2 you can play quite a lot (75%?) of recent releases.
Whereas PCs can play about 1/2 of all console games, plus every PC game.
Well, not every pc game, as there isn't one pc that they can all run on.
And don't forget:
Loading...
And on the flip side, streaming levels works a lot better on consoles where loading speed, seek times and even the layout of data on the disk is guaranteed. It would be better if PC games could be run from their DVD, but for some reason companies don't want to go for that idea.
Saying that you're gay is to express your sexual preference. It doesn't affect anything else but who you feel physically (i.e. sexually) attracted to. Saying it to a straight person of the same sex often scares them into thinking that you just said that you find them sexually attractive. People don't like to be "come on to" by people that they don't like, even if they only think they are being come on to.
To most people, writing "I am Gay" (or lesbian, or bi, or whatever) in a public profile is the same as writing "I prefer it doggy-style". It's a mention of sexual preference, not appropriate, and they take offence. But then some people take offence at the idea that people have sex at all...
But it's a public profile! Anything except insulting someone else, or saying that you commit crimes, should be allowed.
To pick apart one of your examples, someone mentioning to you that they think Angelina Jolie is hot isn't a reason to say that you're gay. You could agree or disagree, depending on what you think. Just because you're gay doesn't mean that you're incapable of assessing the attractiveness of a woman, just as a straight man isn't incapable of assessing the attractiveness of another man. If you thought that the other person would take it the wrong way you could mention it, but saying "No, I'm gay" is as bad as saying "No, I'm straight" if a straight person is asked the attractiveness of another member of the same sex.
I haven't come across a single SATA device that won't work with a Molex->SATA power adapter. Do you have examples?
No. But leaving something out because you don't think it's used is stupid, and just asking for compatibility problems. Also note that the section of article you quote implies that such drives exist (italics mine):
Understanding this, drive manufacturers have largely left the 3.3 V power lines unused.
The pictures seem to be using a molex->sata power adapter, which doesn't support the 3.3v line. This means that some drives won't work with it.
But it would eat a lot of bandwidth as everyone downloaded their email...
Complete and total lack of unicode support.
The closest I've come to a pc self-exploding is only partial self-combustion: ...that lit the wall up with pretty lights and turned out to be full of disconnected black pieces when I opened it. The fuse in the power cord (5A@240V) blew, meaning more than double the PSU's rating had flown through it. I'm surprised the motherboard survived, let alone everything else in the case. ...which wasn't itself stable, and fell out. Followed by a loud *crack* from the motherboard's own power circuits, seeing flames through the window my pc had in the side at the time, and needing to replace the cpu, gfx card, and mobo. If I'd had any pci cards they'd probably have died too. Thankfully my drives survived. ...which didn't have the cooler on properly, was about 150W, and didn't have temp throttling. The spacer pads in the corners crackled as they melted, then the core went *bang* and the pc turned itself off. I was in the bios at the time, just got to the sensors page, first time I'd seen a 3 digit temp on there...
One power-supply:
One motherboard with optional power-stabilization add-in-card:
One cpu:
I've also lost two more psus, two more cpus, and a graphics card or two to apparently random unspectacular failure.
And that's only my home systems!
I wonder why they didn't test EVE's IGB (In-Game Browser).
It sucks, but still...
At least the "Intel Integrated" desktop PCs normally CAN be upgraded with a dedicated graphics card.
You should see Via's approach: "What graphics slot?"
A PCI nVidia 5600 was actually an upgrade...
Yeah, I'm one of the guinea pBzzBzzzBzzzzzt*click*
I am not involved in any government mind control program.
Testing...
Testing...
Hey bob, it works!
Oh crap, better turn it off n*click*
*blink blink*
*post*
(so long as you keep it someplace where the noise won't bother you).
Or modify it to run quieter.
Dynamic fan speed controls, fitting better fans (i.e. quieter but similar air-flow), better cpu / north-bridge coolers (that can cool the cpu sufficiently at its full load while still being quieter than the originals), etc.
It did wonders for my old twin Athlon-MP file-server. A few years ago I was short on space and so I kept it in my bedroom, and I got it quiet enough to sleep with it still on. Now it's under my desk (opposite side to my actual pc), and I'm still glad I quietened it.
Seems pretty likely.
Though my virus theory is massively more likely than DRM, and even if it was just the fact that he was trying to use the junction point as a folder, he could still have got a virus from the hacked dll he tried to use on photoshop. The "being an idiot" and "getting a virus" theories aren't mutually exclusive, unfortunately...
I know a lot of application crackers take pride in their work, but some people take their work, infect it with whatever, and re-release it under the reputable cracker's name. Unfortunately that means it's hard to trust any of them.
I think it's more likely that that "hacked" dll he used on photoshop was infected with some virus, and THAT is why he can no longer go into his own user folder.
If your computer starts acting up after you do something, blame yourself, not the computer.
The guy's an idiot.
Of course, this post is so far down the comments that very few people are going to see its wisdom...
The difference is that the cell splits into two that are of typical size for its species (or at least grow to typical size). The rock doesn't.
A slight correction: Multi-processor systems had existed for a while, but dynamic clock speed scaling was new, and it was THAT that threw out the use of RDTSC as a timer. The problem just got more obvious when multi-socket chips were introduced that could change speed independently.
With a single chip that could adjust clock speed dynamically (based on load) the problem with using rdtsc wasn't too bad, because most games were (and still are) written to thrash a CPU (core) to 100% load anyway. However with two cpu (cores) in a system, one core could slow down while the other was running full-tilt. When this happened the tick counts would get out of sync. If the program using rdtsc then got scheduled onto the other cpu, it would see time as having jumped forwards or backwards.
It's worth noting that running different speed CPUs in a dual-socket board was possible before dynamic frequency scaling, as long as the FSBs matched. I accidentally had a 2GHz and a 600MHz cpu (133MHz FSB IIRC) in dual socket-A board at the same time once, and aside from horrifically confusing the dedicated server I was running on it, it ran fine. Not only were the rdtsc readings out of sync, causing it to keep thinking it had jumped into the past or future, but they were running at significantly different rates, causing it to keep switching between real-time and slomo or super-speed!
It's not a point of no return until they get to chapter 7. Midway could still recover.
It also only affects Midway's US operations. The impending release of Wheelman developed by Midway Newcastle is unaffected!
It's actually stereoscopic projection (two images, one image for each eye), not full 3D.
So it should be 2048x1080 x2.