Latest posts of: f0dder - DonationCoder.com
HOME | Blog | Software | Reviews and Features | Forum | Help | Donate
Click here to
donate and join now!
Welcome Guest.   Make a donation to an author on the site April 21, 2015, 04:52:59 AM  *

Please login or register.
Or did you miss your validation email?


Login with username and password (forgot your password?)
Why not become a lifetime supporting member of the site with a one-time donation of any amount? Your donation entitles you to a ton of additional benefits, including access to exclusive discounts and downloads, the ability to enter monthly free software drawings, and a single non-expiring license key for all of our programs.


You must sign up here before you can post and access some areas of the site. Registration is totally free and confidential.
 
The N.A.N.Y. Challenge 2010! Download 24 custom programs!
   
  Forum Home Thread Marks Chat! Downloads Search Login Register  
  Show Posts
      View this member's profile 
      donate to someone Donate to this member 
Pages: Prev 1 ... 5 6 7 8 9 [10] 11 12 13 14 15 ... 352 Next
226  Main Area and Open Discussion / General Software Discussion / Re: Opera to move to webkit/chromium rendering engines on: February 19, 2013, 02:02:11 PM
So, Opera fires 90 people, basically most of the Core engineers. Even if switching to webkit, that seems... somewhat short-sighted.
227  Main Area and Open Discussion / Living Room / Re: CyberGhost VPN Special Deal (worth a look) on: February 19, 2013, 01:56:29 PM
Could someone clarify for the dumb end user aka me.
Are VPNs useful for doing banking in public hot spots?
Web banking should use SSL connections, and thus should be safe without a VPN - except that there's nastyness like DNS poisoning, so don't do it (and get hold of something like the FireFox Certificate Patrol addon, which lets you spot SSL certificate tampering).

A VPN connection would add safety in this situation, but you've got to have trust in the company you get the VPN through.

Personally, when I'm on public WiFi I SSH to my home server, and use that as a socks4 proxy. Ultimate trust, and no extra cost smiley
228  Main Area and Open Discussion / General Software Discussion / Re: How-to on taking ownership of your new UEFI equipped PC on: February 19, 2013, 01:52:03 PM
re-edit: [/color]re-reading the advice, I (again) think it said No. The lack of "NX" is vital, isn't it?
Hmmm, which CPU do you have? It has to be of almost archeological quality to not support NX (the ability to mark memory, in page-sized (4k) regions, as "not executable" - a security feature that was added ages ago).

You might have disabled NX support in your BIOS, though. (And some really lame, especially laptop, BIOSes turn NX-support off without offering you a way to enable it, even though the CPU is capable. One has to wonder, sometimes Roll Eyes ).
229  Main Area and Open Discussion / General Software Discussion / Re: Windows Batchfile can't recognize long file name...!!!! on: February 19, 2013, 01:38:23 PM
hulkbuster: your animated gif shows that you're using the start to (try to) launch stuff with spaces in - as rjbull wrote, you need a quoted "window title" (which is unused for most stuff, so you can just pass "").

For running executables, you should be able to launch a quoted path without using start, unless you need some of the parameters you can use with the start command.
230  Other Software / DC Gamer Club / Re: Pre-Purchase Sniper Elite: Nazi Zombie Army 4-Pack on: February 18, 2013, 06:35:50 PM
...Sniper... Nazi... Zombies?

Has anyone really been far even as decided to use even go want to do look more like?
231  Main Area and Open Discussion / General Software Discussion / Re: How-to on taking ownership of your new UEFI equipped PC on: February 18, 2013, 06:31:50 PM
I have Windows 8 Pro, but has not installed it because the Microsoft Upgrade Adviser said No!
Interesting - it's the smoothest Windows experience I've had so far, and should run better than XP (at least the bloated SP3 pig) even on old hardware smiley
232  Main Area and Open Discussion / General Software Discussion / Re: How-to on taking ownership of your new UEFI equipped PC on: February 18, 2013, 05:59:08 PM
Especially since it's so unnecessary to implement it the way they have. And how effective SB will be still remains to be seen.
Unnecessary? The overall design is actually pretty open and flexible. If you want a trusted boot sequence, it could be done a helluva lot worse. Yes, the UX is clumsy, but (for UEFI implementations that do have key management features), you actually have full control and quite a bit of flexibility, and you aren't limited to One Master Key To Bind Them.

As for effectiveness, we'll see indeed. There's no such thing as perfect security, and if you can escalate your exploit-code to kernelmode you'll probably be able to defeat SecureBoot easily. And UEFI is a big and complex beast, so there's probably exploitable bugs in it. But the key architecture seems sound, and security is about a mix of breadth and depth - and SB does raise the bar against pre-OS attacks.

I do predict a lot of people are going to work hard on attacking it, though, since it's such a hated featured and high-profile target.

A computer can officially only run Windows 8 if it has the very same "new UEFI secure boot platform", so it doesn't matter what else I might be planning, if my plans included Win 8
While UEFI+SB might be a requirement to get the "designed for windows 8" certification, Win8 works just perfectly without SecureBoot, and it doesn't need UEFI either, works fine with BIOS booting.
233  Other Software / Developer's Corner / Re: Discourse - A discussion platform by StackExchange's Jeff Atwood on: February 17, 2013, 03:51:58 PM
F0dder, can you say what makes ASP.net better than rails? This is the first time I hear this.
I've already outlined why in posts above smiley

But to recap: Ruby is dead slow (and can't handle threading, so you kinda need one process per request - this makes it even slower), and rails is a rats nest of vulnerabilities.
234  Main Area and Open Discussion / General Software Discussion / Re: How-to on taking ownership of your new UEFI equipped PC on: February 17, 2013, 03:46:33 PM
Warning: It's not exactly a simple or intuitive process,
 Cool
Seems reasonably straightforward to me.

Not end-user-simple, but the steps are pretty logical?
235  Main Area and Open Discussion / Living Room / Re: Ancient Seagate 2.5 GB USB 1.1 drive still functioning perfectly... on: February 17, 2013, 03:26:18 PM
How did this topic get pinned, and why? huh
Drunk Stephen? tongue
236  Main Area and Open Discussion / Living Room / Re: CyberGhost VPN Special Deal (worth a look) on: February 17, 2013, 03:16:18 PM
I wonder what people use these VPN services for? About the only useful thing I can think of is subverting sites that try to geo-restrict you based on IP.

For anybody thinking they get any kind of "security" from it...  Roll Eyes
Don't they provide anonymity for torrent downloading?
I wouldn't count on it. Sure, it makes it a bit harder to get hold of your IP address, but anybody remember HideMyAss? "Secure and anonymous" my ass.
 
237  Main Area and Open Discussion / Living Room / Re: CyberGhost VPN Special Deal (worth a look) on: February 16, 2013, 10:44:40 AM
Not I. But grugq definitely is smiley
238  Main Area and Open Discussion / Living Room / Re: Gadget WEEKENDS on: February 16, 2013, 06:43:32 AM
  • paracord line - dunno what to do with it Wink
Handy if you're in an emergency where you need to beat somebody up? smiley
239  Main Area and Open Discussion / Living Room / Re: CyberGhost VPN Special Deal (worth a look) on: February 16, 2013, 06:40:21 AM
but still, adding in a VPN there is still a good idea. TOR also helps. But a VM is a must.
Adding a VPN is an OK idea, but in and by itself it brings you pretty much nada security.

Yep, if you're doing things that might get you in trouble, you need to be on a VM, on an open public (or hacked) WiFi, through TOR, and some distance from your home. If you add a VPN to the mix, be sure you go TOR->VPN and not VPN->TOR, and be sure you pay for the the VPN with bitcoin - otherwise it's jailtime.

OPSEC for hackers smiley
240  Main Area and Open Discussion / Living Room / Re: Scientists Claim They’ve Built a Computer That Never Crashes on: February 15, 2013, 09:37:13 PM
Give it to my mum, for 2 hours...it will crash...I guarantee it.
In seriousness, this is the kind of thing that would be a big scientific breakthrough - securing against end-users. I am going to be very impressed when that happens.

But... mumblegrumble... unintelligiblemumblings... yes, and the quantum flux proves that our Schrödinger devices purrform as promised, the Heisenbox model is proving it's worth; the relativistic probability models are within safe parameters. We are all going to enjoy it down here.
241  Main Area and Open Discussion / Living Room / Re: Scientists Claim They’ve Built a Computer That Never Crashes on: February 15, 2013, 07:34:26 PM
It would be nice though... Still, I'm sure that NVIDIA and ATI could manage to crash it. They have years of experience! tongue
To be fair, I don't recall seeing an nvidia driver *crash* (as in BSOD, not "things went flaky, screen flickered, and things were restored") since Vista, when Microsoft yanked big parts of the graphic driver stack back out from kernelmode to usermode. Used to be that way in the early NT days for über security, but most stuff was moved kernelmode in... NT4?... for performance reasons - CPUs were slow back then. Linux is finally catching up on (the right) split between kernel- and usermode, and OSX still has too much kernel (remember the Chrome-can-crash-OSX debacle last year? That was a mix of small bug in chrome, bigger bug in Intel video drivers, and ugly OSX architecture :-)).

Also, graphics drivers are insane these days, they're mini operating systems. Shader compilers, fragment schedulers and sundry.
242  Main Area and Open Discussion / Living Room / Re: Scientists Claim They’ve Built a Computer That Never Crashes on: February 15, 2013, 04:35:38 PM
Sounds... convoluted. And one ting is "crashes", another your standard run-of-the-mill logic bugs - nothing can really do anything about those.

The executive overview doesn't really give much info, anyway. But it sounds like something that's going to be hard to make reach the speeds we're currently seeing - lots of duplicated units (that might be idle when not selected by the RNG, and thus wasting expensive silicon?), how is the data transfered back and forth, etc.

Also:
Quote
Even when it feels like your computer is running all your software at the same time, it is just pretending to do that, flicking its attention very quickly between each program," Bentley says.
...has Bentley been living under a rock for the last, dunno, 10 years? We've had multicore machines for quite a while. Sure, each core runs one step at a time, but cores do run in parallel :-)

Might be an interesting idea, but even in the newscientist story that gizmodo links to, there's not a lot of information. How is the system different from clock-synchronized failover systems that have also been around for quite a while (albeit in the pretty high-end of computing)?
243  Main Area and Open Discussion / Living Room / Re: CyberGhost VPN Special Deal (worth a look) on: February 15, 2013, 04:25:32 PM
I also wonder how those "DNS" solutions work - either the content providers has some really, really bad location detection, or the "DNS" solution actually does proxy the video stream through the "DNS" provider - which means that the stream speed will be no better(*) than through a VPN service.

(*): there's some overhead to VPN, but given the routing is decent and there's bandwidth enough, it shouldn't make much of a difference compared to a non-VPN proxying service.
244  Main Area and Open Discussion / Living Room / Re: CyberGhost VPN Special Deal (worth a look) on: February 15, 2013, 09:23:23 AM
I wonder what people use these VPN services for? About the only useful thing I can think of is subverting sites that try to geo-restrict you based on IP.

For anybody thinking they get any kind of "security" from it...  Roll Eyes
245  Main Area and Open Discussion / Living Room / Re: Adobe Reader zero-day on: February 14, 2013, 10:31:33 PM
After Java and Flash, now PDF Reader is under attack
Those have been the three major ways for malware to enter Windows machines for a while smiley

A couple alternate (and lightweight!) PDF readers are Sumatra and Foxit Reader. Unless you specifically need Adobe's edition (some government forms and whatever might need it), switch to one of the alternatives - and at the very least, disable the browser plugin and download+open only the PDFs you really need.
246  Main Area and Open Discussion / Living Room / Re: silly humor - post 'em here! [warning some NSFW and adult content] on: February 14, 2013, 10:26:35 PM
Haha, app - wonderful cheesy
247  Main Area and Open Discussion / General Software Discussion / Re: 2013 Version: Browser Wars on: February 14, 2013, 06:02:37 PM
Hmm, I read those articles as saying that the only browsers they allow are things that use the deep Safari core, and not just any old browser like for example if MS wanted to stick IE on there, or Firefox.
Dunno if they only allow safari core, but disallowing access to JS JIT (even for alternate browsers that use the safari core, as far as I understand) make the point pretty moot.
248  Main Area and Open Discussion / General Software Discussion / Re: 2013 Version: Browser Wars on: February 14, 2013, 05:45:43 PM
A guy at Softpedia thinks that Apple's refusal to allow browsers in the App Store is behind this.
Apple does allow browsers (unless something has changed), but (as you mention later) they don't allow access to the JavaScript JIT'er. While they probably don't mind the added monopoly value, the prime reason cited is security - it's very likely that their JS JIT'er could be used to generate pretty much whatever native code you want, thus making it much easier to jailbreak the iOS devices.

Gotta love walled gardens, aye?
249  Main Area and Open Discussion / General Software Discussion / Re: Game Author Posts on The Pirate Bay on: February 14, 2013, 09:24:41 AM
Quote
The Pirate Bay is well-known for not removing torrents to any content, unless it’s criminally illegal in Sweden or contains malware or a virus. So with this in mind, try searching for Anodyne on the site. Actually, save yourself some time and don’t bother. The torrent, which was uploaded by a user called Frewyrn, has been deleted.
So, who deleted it? TPB admins or Frewyrn?
250  Main Area and Open Discussion / General Software Discussion / Re: MS Office 2013 Home/Business - non-transferable (1 PC p.person) - Caveat emptor. on: February 14, 2013, 09:22:45 AM
Humm, some people on Slashdot say that you can login to your office2013 (not *365!) account and de-auth for the current PC and auth for another - are they wrong?

Is there anything (intelligible) from Microsoft itself, or is all this based on people interpreting EULAs without actually trying the product? Does "non-transferable" really mean you can't move it to another PC, or that you cannot give the license to another person?

I wouldn't put it beyond MS to attempt something like this, especially considering they probably want to move people to their subscription based Office365... but the information on the licensing seems pretty muddy to me.
Pages: Prev 1 ... 5 6 7 8 9 [10] 11 12 13 14 15 ... 352 Next
DonationCoder.com | About Us
DonationCoder.com Forum | Powered by SMF
[ Page time: 0.048s | Server load: 0.09 ]


Share on Facebook
submit to reddit