Wonder why it took so long to put up this fix. I'd just recompile the afflicted apps and upload that as the fix, instead of waiting to add some other fix to the release batch. Especially when SSL is the thing broken.
3158 posts • joined 12 Oct 2007
Wonder why it took so long to put up this fix. I'd just recompile the afflicted apps and upload that as the fix, instead of waiting to add some other fix to the release batch. Especially when SSL is the thing broken.
To be honest, the US already had accumulated a lot of bitterness during the Cold War, so much that a good chunk of their current problems are caused by their past evils.
- Iran? They CAUSED it, along with the UK, with Operation AJAX. So much that said operation is no longer considered a good thing as it basically triggered a series of events that caused the Islamic Revolution and turned Iran into the US-hating, religious-zealot-run country it is today.
- Most of Latin America suffered bloody tyrants and South America in particular had at one time a CIA backed dictatorship in most of its countries. Ever wonder how Chavez got to be President in Venezuela? That's why. Having a US hating prez is the new cool in most of South America.
- The Iraq WMD lie basically killed whatever goodwill was left in the remaining part of the world that didn't have a grudge against the US. Dubya's Administration foreign policy brought hatred to the US and the whole NSA/PRISM thing was just the finishing touch to all that.
It is indeed sad to see this happen, given that the US at one point was the shining beacon of freedom during the 19th Century. Today? Not so much.
The point is that NSA (and pretty much any other agency) can simply send a secret FISA warrant and seize all the data by themselves. They don't need to hack stuff within their borders, they already have the omnipresent power there. That's why lavabit shut down.
Same thing applies to CBP, they can simply dump all your HDD's contents for later "research" if they want to at customs. This is why I had to delete sensitive client data before traveling to the US; I'd be involuntarily breaking NDAs just by entering the US. Extra points as the CBP power was given by a judge during a pedophile case, so it gets the added "for the children" mantra used instead of going after "terrists".
hehehe. My High School was the HS for a college here, which is pretty common over here (most High Schools are either linked to a university's "system" or are wholly part/owned by one) but in my HS case, we actually were in the university campus… so we shared everything with the actual college dudes. So one of the students had done some work for some company which had a Red Hat Linux 5 server somewhere. Naturally, he compiled a CircleMUD variant and put it up for everyone to use. So we used the university workstations to play on a MUD secretly running at a server. hehe. The computer lab admin for the lab where all the RS/6000s were (the ones we used for MUDding) actually allowed us to do this as long as we didn't do it when real work was needed to be done.
After a year and a half of this, someone got wise on the company and killed the MUD. A sad day that was...
ISP's shouldn't use proxies for their service. Not. At. All. It just serves for them to engage in shady content favoritism practices or snooping. It's one of the things that ISPs should never do unless they have a really good reason to do so (say, being a satellite ISP and even then, the proxy would live within your premises.) The other horrible thing they shouldn't do is CGNAT.
Both practices, however, are done by the Cable ISPs here in Mexico, the main reason why I don't ever use them.
You're assuming that the backend connection for the reverse proxy isn't SSL. While I'll admit that the places with reverse proxies I've worked at have both the reverse proxy and the backend in the same site, I do know that everything is covered by SSL. Hell, a certain bank that shall not be named has SSL from Internet to Reverse Proxy, RP to yet-another-RP, to Application Server, to MQ, to Mainframe.
Usage of reverse proxies doesn't automatically mean "cleartext on the backend".
Looks like MtGox is starting to sink. Truly sink.
Fortunately there are still other exchanges, but what the hell?
Those are found in the same place where the Reptilian Thetans have their Space Hitler base, launched by the Iluminati and Raptor Jesus during the establishment of the New World Order. The Khazar are really inhabitants from Nibiru and are just waiting the deep space signal from Mothra to destroy OUR WORLD!!!! OMGWTFBBQ!!!
I'll give you Aledbaran. On the other hand, Alpha Centauri, Arcturus, Bootes, Betelgeuse, Antares, Canis Major, Sirius, Ursa Major and Minor, Rigel, Upsilon Andromedae, and Zeta Orionis are Greek or Latin. And Polaris too.
Fun! Zeta Orionis is called Alnitak, and Betelgeuse is actually a corrupted translation from Arabic as well. The 'proper' Greek name is Alpha Orionis. Even Antares was known by the Persians, so it seems to be more of a case of both camps observing stars. Though it is worthy of noting that they are Greek names, which reinforces the Middle Ages "brute" belief that science just stagnated during those centuries.
We have SANs for two things: sharing resources and reliability. The resource sharing is basically to be able to up total storage space and just allocate it to the zillion servers we have. The reliability is for failover capabilities; if the server crashes, the data can still be accessed from another server without much hassle. The SAN itself might even be made to have HA capabilities. Local storage? If the server goes poof, your data might do so as well.
So Curiosity is basically moonwalking? Or better said as 'Marswalking'?
I do wonder why on earth are they using goto in C. Isn't this a bad sign of someone trying to do stuff the ole BASIC way? That goto is frowned upon most functional/procedural languages?
He's referring to the zillion dev "howto" manuals and "guru" programmer recommendations when dealing with SSL certs. A lot of them end up telling the dev to "disable SSL validation" or doing something similarly dumb like that. Even some of the howto's that shouldn't give this advice (those concerning security stuff like Identity Management and Access Mgt suites) are still giving advice on how to disable SSL validation or how to trick the tool into accepting self-signed certs.
You know someone's going to build an actual T-1000 out of this, if only for the lulz. Then it'll become self-aware...
The problem with a lot of these things is that they run on System/390 (which we now know as z/OS) and use stuff that only those familiar with S390 know: CICS, TSO, ISPF, COBOL, RACF, OMVS … if you know what any of those things are, you're probably better qualified than most people in IT these days. Note that I said "you know what it means", not "know how to do stuff with that".
It also doesn't help that a lot of stuff from the mainframe's heyday was done in COBOL, which was all the rage back then in business realms up until Dijkstra rightfully slammed it and fell out of favor. (Sadly, nobody was able to do the same to Visual Basic.) Maybe the only thing worse than having to work with VB6 code or COBOL has to be MUMPS, and that language will also live for eons thanks to its usage in the US healthcare system.
Some banks have been migrating their code to better languages like Java, but some of these projects take years or decades, and even then they only get something like "now we got 40% COBOL code in our core systems". Most of them have simply made some kind of "core system" for the lower-level stuff, and simply develop middleware stuff on top of that. Because nobody wants to be the team that broke the bank's code!
Because BBM actually does it right. Instead of giving away and slurping through your phone number, they use a BB PIN that is unrelated to the phone number itself. (It is related to a BB device if the user's using a BlackBerry, but that is less of a concern.) Thus BBM is useless to Facebook as they don't get Grand Theft Data upon buying that stuff.
There's only one commenter stating that smug thing … and it's right-winger troll Ted Treen. Don't worry too much about him, and what you stated has already been stated to him as well. :)
Search Google for OTT. First hit.
Missing the point? That's what he said, that the only thing he found is "Over The Top" and it isn't how any of us would describe IM apps on smartphones.
There goes the neighborhood. There's a good chance WhatsApp will be either shuttered or forcibly migrated to use FaceBook credentials in the near future. And that will be the moment some other I'm solution will take over. Maybe BBM? At least that one can shield you from giving away your phone number, which is required by WhatsApp.
I've been (un)pleasantly surprised by the daft security concerning user/password registries. Years ago, while I was still at college, I had mostly figured out that DB-stored user/password combos were insecure, even if a one-way hash was used, but especially if MD5 or crypt was used. Having on-server encryption or code-hidden keys to encrypt the stuff was also useless as someone 0wning the box would also get the keys. I found better theft-dampening solutions by having LDAP as a user registry. This is because that LDAP could reside somewhere else (read: not the web server that is going to be eventually owned) and by smart ACL crafting, the hashes wouldn't be available for someone to dump off. Adding to this having the hashes themselves as SSHA, you should have a fairly hard to dump-to-crack-later user registry on your hands.
Come on, even Apache supports LDAP authentication. Why haven't all these sites moved to this?
Wonder if someone's password ended up being that?
Ah, the right-winger troll is back at it…
No my dear, while BTC has fallen from the $1000 mark, they're still doing $612-650 on other exchanges. MtGox seems to be no longer the one and only BTC exchange, and its woes are probably bigger since they started complying with FinCEN's rules (they're actually asking for ID and proof of residence these days). Even though I'm not a US Citizen, I still got bit when OKPAY stopped serving 'em. Had I bought BTC back then, I'd have profited a lot by now (BTC was at $55, the up/down swings would've landed me a truckload of BTCs and USDs by now).
I've probably erred too far on caution on these thingies. Of course I wouldn't send my life savings on BTC, but I would send a stash of my non-critical savings there as it seems it gets better returns than my current bank does (3% per year! meh….) While I am skeptic on BTC, I don't dismiss them as "tulip mania" or even "ponzi scheme" as most detractors do. The BTCs will still hold value even if the exchanges go poof as long as someone's willing to use them as currency or trade 'em for hard cash. The same applies to other currencies like USD, GBP, EUR and such, most of our modern currencies value isn't set but is actually given by us ("us" being the markets, reserves, GNP, whatever.) That's why it's called "fiat currency"… and BTC is also a fiat currency, even though the most fervent BTC followers insist in this not being the case.
they've dragged the desktop GUI back to Win 95 levels of sophistication.
I'd say you went too far into yesterday's future. The Start Screen is basically a revival of the awful Program Manager UI. It's even been commented by TIFKAM detractors, and they're probably right on the spot. App-centric UI makes sense in mobile devices but it never made sense in PCs. The whole Win95 UI revamp copied System 7's (and earlier) approach where files were the main thing on UI navigation, and it was one of the most liked changes in Windows.
And now they backtracked on that.
As many others have mentioned already, the optional Launchpad app which did attempt something similar to what Metro does (stick a mobile UI on a PC OS) is probably the one app that is either unused or hated by most OSX users. Noticeable by the fact that most OSX users are probably iOS users as well, so it isn't that they don't like that UI at all, they like it as long as it keeps to their mobile devices. This is where MS failed: their TIFKAM interface was loved by WinPhone 7 users when they put that on their new revamped WinPho OS. Then they force-fed it to Windows 8 … which has now turned it from "nice mobile UI" to "that fugly thing on new PCs".
Win8 will keep on being a non-seller 'till they either get rid of Metro/Modern, or turn it into an optional thing returning the Start Menu and letting TIFKAM apps run as a window. Keep the UI on tablets though, that's where it does belong.
There's a good chance they'll actually do it this time. The business sector has held on to Win7 even for their XP phase-out programs.
If MS bothered to ask consumers this would have never happened.
Beta testers did tell MS that it was awful for desktops. Freakin' UI designers told MS the interface sucked donkey balls. The only thing they did was to disable the registry trick that allowed you to bring back the Start Menu and excised the Start Menu code from Win8. The results are obvious; Win8 ain't selling. Even those 200 million W8 licenses aren't a sure thing; there's a good chance those Win8 boxes were purchased but immediately wiped clean and had a fresh install of Win7 in its place. MS did that with Vista, giving "XP downgrade rights" just to fluff up Vista "sales" numbers. It's just doing it again with Win8.
I find it funny that JDX thinks Win8 looks like OSX. Nope, it doesn't. There's no fullscreen tiled interface here, and the only iOS-ish thing would be the Launchpad. And that's optional, not mandatory like the Start Screen.
It could be that Silk Road being busted proves that law enforcement might be able to trace 'em. Also, BTC exchanges falling under regulation by certain entities (FinCEN) means that they might be traced at the exit points of conversion. Volatility may be a reason, but "I might get busted" is probably the main reason behind this.
Heh. I did a project on both nuclear fission and fusion at High School (preparatoria in Spanish) back in 1997. Same thing here, I was fascinated on tokamaks and the NIF thingy, though I was also kind of let down when I saw that break-even was still pretty far down the road. Yet I'm seeing progress in this area, so we'll probably crack it sometime during my lifetime, and hopefully we will.
Given that AOL was for a long time the only ISP in most of the US, it probably is an appropriate comparison. However I doubt it'll have the same ending; AOL's demise was because broadband ate away its market, Comcast and TWC are the broadband in those places. The only way the AOL story would repeat itself is if another broadband ISP were to roll out nationwide and have better service than Comcast/TWC.
I don't know about TWC, but Comcast are the guys who were forging RST packets and tried to get away with it in court. They're EVIL. Hopefully this will fuel the Net Neutrality fire...
A mistake really??? Apple concentrating on short term profit (ie the high end) has made them almost immune from the general slump in PC and Laptop sales.
You're thinking current markets. Back in the 80's, they had the PC market with the Apple II. There's a good chance that guys my age had their first hands-on experience with an Apple II if they lived in the US, there were a lot of 'em in many elementary schools. It even had the first real killer app for personal computers: VisiCalc (the very first spreadsheet program!). The Macintosh was even better as it had a GUI at a time where most computers were mostly text only. See the Texas Instruments one, the C-64 or the Apple II. And only a couple of years later, the Macintosh had killer apps for office productivity, like Aldus PageMaker and yes, even Word and Excel (this is where Office was born!). But Apple had to sell it at an expensive price, and thus the adoption rate was slower.
Hell, they managed to keep the Macintosh platform pretty good all the way to System 7.1, even when Windows came out System 7 was still nice compared with the fugly Win3.1 GUI (Program Manager, anyone?). It was probably 'till Windows 95 that MS reached near-parity with System 7 … and even then they were still behind the line. But PCs were now at least somewhat user friendly and combined price differential and the post-Sculley slump meant that the PC kicked them out of the personal computer market. It was a sad thing to see...
Yeah, AppleTalk was far better than COM: or even LPT: back then. It worked like a boxy Token-Ring-ish LAN as well, though these capabilities weren't really exploitable out of the box until System 7 came out. Printers could be connected to the AppleTalk network though, which was pretty awesome for that time.
I still remember that the first LAN ever at home was AppleTalk-based, so much that my later PC had an LPT to AppleTalk adapter to talk with the rest of the home LAN. Ah, those were the days...
Technically it was still called ARPANet and/or NSFNet back then, though it started to get the 'Internet' moniker sometime around the late 80's or early 90's. The Internet as we know it today was probably "born" sometime around 1992, and the final restrictions on commercial stuff didn't go until 1995. Technically, we can talk of pre-1995 as the "pre-Internet" era as before then, NSFNet (the primary backbone) didn't allow commercial use of the network.
P. Lee - OSX basically did the "GUI for BSD", as NeXTStep and OSX are based off BSD. It's easy to use for those comfortable with BSD, but it is pretty mind boggling for those who are only used to Linux.
Oh, and the person who ended up bringing Jobs back to Apple originally wanted to build their GUI around Solaris. That would've been interesting, had Apple done both the turnaround and done "Apple on Solaris" Sun Microsystems would probably still exist to this day.
System 7 was far better than its contemporary Windows brethren, and that includes Windows 95. While System 7 could bomb (yes, I remember both Sad Macs and 'Sorry, a system error has occurred') Windows 3.x and 95 had a bad habit of doing this at random, and it was far more common back in those days. OS X came out by 2001, but the first really consumer-oriented memory-protected MS OS was Windows XP (as MS had Windows 2000 more of an enterprise OS) so both companies were really on equal footing (NT was more of a business OS).
Nope, process isolation in MacOS vs. OSX isn't what made MS win the war. It was mostly on pricing as PCs went far cheaper than Macs and a couple of blunders by Apple during the post-Sculley years. If stability were the real differentiation between platforms, we'd probably be running Solaris everywhere these days.
I gotta agree on some of the things they tried, and the Newton particularly is one thing that I liked back then. Even the article states what many of us already know: the Newton wasn't killed for being a failure, it was killed because Jobs had to have his sweet revenge against the guy who succeeded him as CEO. He actually pissed off a lot of developers back then, as the Newton ecosystem was slowly but surely evolving.
Proof that Jobs wanted the Newton dead? Right before his return, Newton was going to be spun off as a separate company. This was halted upon Jobs' return. He really wanted the thing dead.
Careto is not Mask. "Máscara" is Mask.
There's a fun game with Spanish: depending on the words used, you can actually know what country the writer/speaker is from. Given the use of Careto, it indeed sounds like Spain, unless we're being sidetracked and it's actually Portugal and/or Brazil (with "Careto" being actually Portuguese instead of Spanish).
Now, an easy way to find out if it's Spaniard is easy if computers are involved: every single Spanish speaking country that isn't Spain calls computers, computers. Spaniards call computers "sorting machines" (ordenadores). That single word narrows down Spain real quick!
The other country that is equally easy to lock into is Argentina; if they speak weird Spanish (as in, "weird to anyone not from Argentina" it probably is from that country. Example: "compártelo" in regular Spanish turns into "compartilo" in Argentinian, "tienes" into "tenés" , or "eres" into "sos".
If they call pineapples "bananas" without the B, it's at least South American. It's probably a fun game to wade through the zillion Spanish dialects, but at least you can narrow down quickly if it comes from certain countries.
ANY throttling is bad. They're selling you a link that advertises X speed. They should give you X, or at least something near X most of the time. Yet it seems that in many parts of the US, they're getting less than 50%, sometimes 30% most of the time. The FCC should be given the regulatory power to clamp down on these practices, enforce Net Neutrality, outlaw CGNAT and put a mandatory contention limit. That is, no oversubscribing above a certain ratio. ISPs have the money to upgrade their lines and most of the time, it is only a matter of upgrading endpoint equipment. They don't do it because it's more profitable to milk their subscribers without actually doing anything.
See also: IPv6 rollouts. ISPs are happier pimping off uberexpensive IPv4 addys.
The Stallman is strong with this one!
As much as RMS has gone down the ARRRGH RENEGADE path in much things, this is one thing where I do stand beside him. "Intellectual Property" doesn't exist and is used to warp different laws into something that isn't true.
Copyright is the right for the creator of a work (book, play, film, song, whatever) to profit for a LIMITED time, after that the work is released to public domain for everyone's benefit. Disney made sure that Copyright got unconstitutionally extended quasi-infinitely with things like the Mickey Mouse Protection Act.
Patents have a similar purpose to Copyright, except these were never extended and still have their original 24 (25?) year limit. Same principle applies, you publish the process being patented, everyone can reproduce it but they have to pay you royalties for a limited time.
Trademarks are well, images/words/sounds that identify a brand, and those are bought and maintained by paying the Trademark Office. Unlike the previous two, these can be extended indefinitely as long as the term isn't turned into a common word (see Xerox, Band-Aid, Hoover). A lot of companies that should be using this, are instead using Copyright thus the infinite expansion of that one.
The only thing here that can be "intellectual property" is the Trademark. The other two, not so much.
"There wasn't much pre-existing plot behind the Doom film either - look how well that turned out."
The original Doom game and its sequel didn't have much of a story, mostly "UAC set up base in Phobos and Deimos, find gateways, play with them, get invaded by Hell" with the second one extending the invasion to Earth. But Doom 3's reboot/remake of the whole story actually fleshed out a well-planned story. Hell, a whole play through could've been recorded by FRAPS and made for a movie by itself, and would've managed to be a far better movie than what was actually made.
IIRC the Doom movie had its plot changed to "Resident Evil IN SPAAAACE" out of fear from the whole Hell and Satanic themes causing an uproar from the conservatard/religious zealot groups. The resulting mess was… okay, better than an Uwe Boll movie, but anything is better than an Uwe Boll movie.
If you want to see a movie based on a near-to-none background story, I'd point to Super Mario Bros, which also turned out to be a turd.
If Notch is not certifying Minecraft as an anti-Windows8 strategy (that is, to discourage Win8 adoption) he gets my full support. While Apple is the epitome of not only closed and controlled platforms but control-freakery and "screw the devs, we'll do what I say" not even Jobs did what Ballmer and Sinofsky pulled off with the TIFKAM thingy on Win8. They were told by pretty much everyone that TIFKAM was a disaster and they stayed course. The end result is that the thing isn't being bought except on new PCs, and given that new PCs no longer have Win7 as an option (at least not easily for consumers) the PC sales that were already falling took a nosedive.
Win 8's TIFKAM should be deprecated, those responsible should be fired and a service pack should be offered for free allowing to revert the UI into Aero at the very least and turn TIFKAM into an optional thing. (Keep the UI on tablets, where it's supposed to be useful.)
Compare Apple; they did add iOS-ish features to OSX but all of these are optional. I'm not forced to use Launchpad and it seems that most OSX users don't use it. On Win8, you have to use the hideous Start Screen, and a lot of config stuff is now only available on TIFKAM. They screwed the pooch big time.
Cuba is a bad example for your point, dude. Cuba was a USSR counter to the US putting up a similar thing in Turkey and thus within the USSR's spitting range. So the Soviets simply went 'Oh yeah? Well, we'll do the same in Cuba!". Both sides ended up negotiating to dismantle both systems, the US would dismantle the Turkey one, while the USSR would dismantle the Cuban one.
The US doesn't have a shining record on international negotiations, and Dubya's tenure probably shot whatever goodwill towards the US was left in the world (decades of CIA ops shot it decades ago in most of Latin America). But in the Koreas, the US does not want to re-engage in hostilities against NK at all, for the same reason they didn't during the USSR's existence: there's a good chance that a US/SK first strike into NK will trigger a Chinese counterattack. Unlike the NK, China actually has nukes and long-range strike capability. And well, all those shiny gadgets are being made over there, so the economic incentive not to piss off China is also strong. Also, Obama is trying very hard to shun the warmongering US image that his predecessor bestowed upon the US.
On the other hand, if NK decides to go stupid and attack South Korea, it would be really bloody … but there's a good chance China won't interfere. Some analysts have concluded that such a war would eventually be won by South Korea, but at the cost of thousands (probably millions) of lives.
And the MS troll now goes "Intellectual Property Troll". Weee!!!
Copyright is intended to protect works for a limited amount of time, but thanks to Disney it now extends beyond the creator's lifetime thus the "limited" part being defeated. Companies keeping copyright on works no longer published, sold or distributed by them are defeating the purpose of copyright and don't deserve to have those "copy rights" enforced.
At least some companies have relented and instead of going copyright trolling, they've either relaxed their stance on stuff like this, or have even re-released the older games for sale.
hehe. Cholo also means something like "gangbanger" which makes you wonder how that player earned his nickname...
Maybe they're simply going down the "why not go full evil?" road, or someone in the NRO has a twisted sense of humor.
Indeed, all radioactive stuff has explicit labels like the all-known fan-shaped one and "MATERIAL RADIOACTIVO" stamped on it. They probably didn't check the cargo until after hearing the news about what exactly they had stolen. And even then they were stupid enough to open the container … that makes them doubly stupid!
I'd probably agree with the Darwin award as well. Unlike the 1983 incident, it seems that the only dudes who got Chunky Rad Exposure were the robbers themselves, so no innocent bystanders affected. And given the violence involved in truck-jacking (or many gunpoint crimes in Mexico), I hope they die a slow and very painful death.
I'd say that Nokia is a special case. They were in the peak-but-starting-to-fall phase and had the hindsight to know they needed to choose a new CEO and change their direction if they wanted to avoid crashing. Unfortunately the CEO they chose pushed the yoke straight down and sent 'em faster down to the ground!
… if they strike down the other garbage they did pass, the America Invents Act or the "Patent Troll Porkfest Act" where whoever files for patent first wins the patent, even if there's prior art. So while the risks of losing are higher, the chances you'll lose a troll patent are also smaller because "prior art" will no longer be valid defense against new patents.
They're the ones who fund a popular astroturfing group known collectively as "The Tea Party" in the US. Of course, you've probably never known of either the Kochs or the Tea Party if you aren't following US politics.
Anyone even slightly concerned about security knows that the BlackBerry is still the only one with the certs and the security for serious stuff. Not really surprised that Obama has to keep his BlackBerry "Special Edition". If anything, the NSA would have him migrate to a Sectera Edge...
Biting the hand that feeds IT © 1998–2018