topbanner_forum
  *

avatar image

Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
  • Sunday November 16, 2025, 7:27 am
  • Proudly celebrating 15+ years online.
  • Donate now to become a lifetime supporting member of the site and get a non-expiring license key for all of our programs.
  • donate

Recent Posts

Pages: prev1 ... 21 22 23 24 25 [26] 27 28 29 30 31 ... 230next
626
Living Room / Re: SSL broken, again, in POODLE attack
« Last post by app103 on October 15, 2014, 07:50 PM »
  • Opera: You are screwed too.
-app103 (October 15, 2014, 05:39 PM)

Solved! (solution found here)

1) Find your proper Opera executable folder, e.g. C:\Program Files (x86)\Opera\25.0.1614.50_0
    It is NOT in C:\Program Files (x86)\Opera\
2) Run opera.exe --ssl-version-min=tls1
3) SSL is now turned off. Check it for the vulnerability at the link NigelH posted above.
 (see attachment in previous post)

-Renegade (October 15, 2014, 07:44 PM)

And just like the Chrome fix, you will have to put it in the shortcut you use to launch it, because it has to be done every time you start the browser. It's not a one time fix & forget.
627
Living Room / Re: SSL broken, again, in POODLE attack
« Last post by app103 on October 15, 2014, 07:19 PM »
My first hint about this issue was when my IRC client disconnected from Slack very early this morning and wouldn't reconnect. I thought the issue was on my end, rebooted twice, went googling the error messages I was getting, etc. But it turned out that Slack turned off SSLv3 as soon as they found out about this, and my IRC client didn't support TLS, so I had to go find a version of Xchat that does and doesn't crash when I lose my internet connection. That was a big chunk out of my day today.  :(
628
Living Room / Re: SSL broken, again, in POODLE attack
« Last post by app103 on October 15, 2014, 06:29 PM »
Damn.
Since my main box blew up, I have had to use a spare computer with dismal graphics and no way to remedy.  Opera is the only browser that 'behaves' on this box.  Damn.
 :(
-Edvard (October 15, 2014, 06:15 PM)

Windows box? If so, try K-Meleon. If it ran well on my ancient Pentium I with 64mb RAM and the 2mb onboard S3 Trio graphics, it should run well on just about anything better.  ;)
629
Living Room / Re: SSL broken, again, in POODLE attack
« Last post by app103 on October 15, 2014, 05:39 PM »
To fix your browser:


630
Living Room / SSL broken, again, in POODLE attack
« Last post by app103 on October 15, 2014, 05:30 PM »
From the researchers that brought you BEAST and CRIME comes another attack against Secure Sockets Layer (SSL), one of the protocols that's used to secure Internet traffic from eavesdroppers both government and criminal.

Calling the new attack POODLE—that's "Padding Oracle On Downgraded Legacy Encryption"—the attack allows a man-in-the-middle, such as a malicious Wi-Fi hotspot or a compromised ISP, to extract data from secure HTTP connections. This in turn could let that attacker do things such as access online banking or e-mail systems. The flaw was documented by Bodo Möller, Thai Duong, and Krzysztof Kotowicz, all of whom work at Google. Thai Duong, working with Juliano Rizzo, described the similar BEAST attack in 2011 and the CRIME attack in 2012.

The attack depends on the fact that most Web servers and Web browsers allow the use of the ancient SSL version 3 protocol to secure their communications. Although SSL has been superseded by Transport Layer Security, it's still widely supported on both servers and clients alike and is still required for compatibility with Internet Explorer 6. SSLv3, unlike TLS 1.0 or newer, omits validation of certain pieces of data that accompany each message. Attackers can use this weakness to decipher an individual byte and time of the encrypted data, and in so doing, extract the plain text of the message byte by byte.

As with previous attacks of this kind against SSL, the most vulnerable application is HTTP. An example attack scenario would work something like this. An adversary (typically in cryptography literature known as Mallory) sets up a malicious Wi-Fi hotspot. That Wi-Fi hotspot does two things. On non-secure HTTP connections, it injects a piece of JavaScript. And on secure HTTP connections, it intercepts the outgoing messages and reorganizes them.

631
Living Room / Re: silly humor - post 'em here! [warning some NSFW and adult content]
« Last post by app103 on October 14, 2014, 04:49 PM »
(see attachment in previous post)
-app103 (October 13, 2014, 06:40 PM)

Ah, the multiverse, where there are versions of you who are serial killers or bimbos.
-Arizona Hot (October 14, 2014, 03:03 PM)

Or turtles that are still too young to leave home.  :P
-app103 (October 14, 2014, 04:38 PM)

That's a great scenario! Grow up to be ninjas!
-Renegade (October 14, 2014, 04:46 PM)

Turtles are always too young to leave home, even if they are 100 years old. They carry it with them wherever they go.  :D
632
Living Room / Re: silly humor - post 'em here! [warning some NSFW and adult content]
« Last post by app103 on October 14, 2014, 04:38 PM »
(see attachment in previous post)
-app103 (October 13, 2014, 06:40 PM)

Ah, the multiverse, where there are versions of you who are serial killers or bimbos.
-Arizona Hot (October 14, 2014, 03:03 PM)

Or turtles that are still too young to leave home.  :P
633
Living Room / Re: DRM in your coffee maker, to stop you from brewing unlicensed coffees
« Last post by app103 on October 13, 2014, 10:21 PM »
...
Because the whole point of the Keurig was to not waste money making a whole pot when you only wanted one cup.
-Stoic Joker (October 12, 2014, 01:38 PM)

You see, what we have here is a failure to drink enough coffee... 
-Edvard (October 13, 2014, 08:36 PM)

There is no failure to drink enough regular coffee in my home. When a full pot is made by me, the full pot is consumed by me.

Where this becomes an issue is with flavored coffees. I don't really like to drink more than a cup of it at a time and usually only brew it when I have someone else willing to drink the rest of the pot.

I had recently considered buying one of these coffee makers for the purpose of brewing single cups of flavored coffees, using one of those refillable cups...and for my hubby to brew an occasional cup of decaf for himself.

But now? Forget it! I'll just have to use one of these.

634
N.A.N.Y. 2015 / Re: NANY 2015 - NEW APPS FOR THE NEW YEAR 2015 - START YOUR ENGINES!
« Last post by app103 on October 13, 2014, 07:57 PM »
Nope it's a different one.
-mouser (October 08, 2014, 04:33 PM)

Yeah, I still need to finish this one. It has some things that need to be tweaked.

But I don't think it would be quite suitable for NANY. It really is designed purely for Coding Snacks.

cereal box- breakfast of coders2 (black) resize.png
635
Living Room / Re: silly humor - post 'em here! [warning some NSFW and adult content]
« Last post by app103 on October 13, 2014, 06:40 PM »
Multiverse[1].png
636
Living Room / Re: DRM in your coffee maker, to stop you from brewing unlicensed coffees
« Last post by app103 on October 12, 2014, 07:45 AM »
So, now you'll have to jailbreak your coffee maker to be able to brew the coffee of your choice?  :huh:
637
Living Room / DRM in your coffee maker, to stop you from brewing unlicensed coffees
« Last post by app103 on October 12, 2014, 07:42 AM »
As you may have heard, Keurig is engaged in a battle with a host of companies that aspire to provide consumers with ‘pirate’ coffee pods. And who is losing this battle? The consumer.

For those of you who aren’t familiar with it, Keurig’s business model is pretty much the same as the business model used by most producers of desktop printers. Desktop printers have become almost trivially cheap — you can buy a laser printer for under a hundred bucks now — but the cartridges cost a bundle. That’s where they make their money. Likewise, Keurig sells its popular single-cup coffee makers at astonishingly reasonable prices, and makes its money on the coffee pods. Naturally, given that the pods are lucrative and easy to make, there have been imitators. A large number of companies have sold, over the last few years, their own “K-cups,” pods of coffee designed specifically to work in Keurig’s machines. Consumers love this, both because competition lowers prices and because it expands the range of roasts and flavours available.

To fight the onslaught of packagers of (perfectly legal) pirate K-cups, Keurig recently starting selling its “Keurig 2.0″ line of coffee makers. The 2.0 machines incorporate a digital rights management (DRM) system, designed to ensure that Keurig machines work only with Keurig branded and Keurig licensed pods, effectively shutting out the competition, at least temporarily. The result is that all those non-licensed Keurig imitators won’t work in the new 2.0 machines.

638
Living Room / Re: silly humor - post 'em here! [warning some NSFW and adult content]
« Last post by app103 on October 10, 2014, 05:24 AM »
Because it can be easy to misread tone in text.

639
Living Room / Re: silly humor - post 'em here! [warning some NSFW and adult content]
« Last post by app103 on October 09, 2014, 10:17 PM »
Fun fund raiser idea:
"Salt the police officer for charity".

"Sponsors can take a salt shaker and sprinkle salt on the officers". Viral media gold: "Today I salted one hundred police officers"! Bonus followup: You can give them a battery of their choice!
;D
-TaoPhoenix (October 09, 2014, 08:56 PM)

Just gotta watch out that the officers don't pepper you in return.
640
Developer's Corner / Sitepoint is giving away 5 annual Learnable memberships
« Last post by app103 on October 08, 2014, 09:38 PM »
Sitepoint is having a drawing, giving away 5 annual Learnable memberships. (That a full year of Learnable, with unlimited online access and unlimited downloads)

To enter, visit this link: http://www.sitepoint.com/competition/

You will have to complete a number of actions to earn entries. The more actions you complete, the more entries you will have in the drawing.


Disclosure: I work for Sitepoint/Learnable, but was not encouraged or compensated in any way, to make this post.
641
Living Room / Re: silly humor - post 'em here! [warning some NSFW and adult content]
« Last post by app103 on October 06, 2014, 12:10 PM »
So... Now we're calling out the bomb squad for litter bugs
Note: Sadly this completely absurd overreaction is an actual -currently happening - real live event.
-Stoic Joker (October 01, 2014, 12:03 PM)

We just had a similar incident over an abandoned suitcase full of stuffed animals.

http://www.nj.com/mo...over_parsippany.html

And my daughter's boyfriend just announced that he wants a job on the bomb squad...specifically, the Teddy Ruxpin Disposal Unit.

10711059_10153338434320639_2412075003665102003_n[1].jpg
642
Living Room / Re: silly humor - post 'em here! [warning some NSFW and adult content]
« Last post by app103 on October 03, 2014, 01:06 PM »
So the Department of Homeland Security releases a Cyber Security Guide, that triggers a security warning on load:
Failing to read your own material ... Priceless!
-Stoic Joker (October 03, 2014, 12:35 PM)

Oh, that's nothing! There are tons of security sites that should know better, running outdated CMSs with known security vulnerabilities.

http://www.whitefird...tdated-web-software/

And these should give you a chuckle:

Drupal site running on an outdated version of Drupal
Joomla site running on outdated, unsupported, and vulnerable version of Joomla that is more than 2 years old
643
Living Room / Re: Win9 will be FREE!
« Last post by app103 on October 02, 2014, 09:18 AM »
As it turns out, Java lets you do stupid stuff like this.  :huh:

https://searchcode.c...28%22windows+9%22%29
-app103 (October 02, 2014, 03:07 AM)

But if they name it Windows 10, what about all the legacy software that checks for Windows 1.x by string compare???!
-Jibz (October 02, 2014, 07:52 AM)

Was there ever a version of Java that ran on 1.x that could have provided a reason or means for doing something so stupid?  :tellme:
644
Living Room / Re: Win9 will be FREE!
« Last post by app103 on October 02, 2014, 05:29 AM »
As it turns out, Java lets you do stupid stuff like this.  :huh:

https://searchcode.c...28%22windows+9%22%29
-app103 (October 02, 2014, 03:07 AM)
That's not Java to blame, just stupid/sloppy/lazy programming, and people tend to repeat their mistakes :-\
-Ath (October 02, 2014, 04:01 AM)

No, I blame Java, since it allows you to get the OS version from the Java platform, rather than directly from the OS itself, and it delivers it as a pretty plain English string. This allows you to easily do stupid stuff you could never get away with in another language that forces you to get the info directly from the OS or delivers the info through its built in functions in a way that forces you to do things in a less asinine way. This is one of those cases where Java lets you shoot yourself in the foot*.

http://docs.oracle.c...ronment/sysprop.html

*Yes, I know every language includes shoot your foot stuff.

645
Living Room / Re: Win9 will be FREE!
« Last post by app103 on October 02, 2014, 03:07 AM »
As it turns out, Java lets you do stupid stuff like this.  :huh:

https://searchcode.c...28%22windows+9%22%29
646
Living Room / Re: Win9 will be FREE!
« Last post by app103 on October 01, 2014, 08:33 PM »
And then there is this: http://gizmodo.com/w...-lazy-cod-1641383218

Blames the skipping of 9 on "lazy coders" that detected any windows version beginning with 9 as win9x.

gb3w7slygquhxpekupd1[1].png

Sounds like someone was trolling to me, because any coder that has ever written code to detect Windows version knows that example code wouldn't never work, because Win95/98/ME version number begins with 4 and not 9.  ;)
647
Living Room / Re: silly humor - post 'em here! [warning some NSFW and adult content]
« Last post by app103 on October 01, 2014, 05:12 PM »
Much as I appreciate the vote of confidence, I gotta say - It's my home town - It really was just a bunch of dumb hicks having a Barney Fife moment.. ;)
-Stoic Joker (October 01, 2014, 05:01 PM)

Well, better for them to have their Barney Fife moment than some local pranksters actually make one of those things out of a plastic pop bottle, some Draino, water, a bit of candle wax and some aluminum, and for it to explode with someone a bit too close to it, and they end up getting sprayed with the Draino.

Because of prankster teens building these things and leaving them places for unsuspecting people to find, in some areas you actually have to show ID to prove you are over 18, to buy drain cleaner.  :o
648
Living Room / Re: silly humor - post 'em here! [warning some NSFW and adult content]
« Last post by app103 on October 01, 2014, 04:53 PM »
Stephen Hawking in Monty Python Live (mostly)

649
Living Room / Re: silly humor - post 'em here! [warning some NSFW and adult content]
« Last post by app103 on October 01, 2014, 04:51 PM »
So... Now we're calling out the bomb squad for litter bugs
Note: Sadly this completely absurd overreaction is an actual -currently happening - real live event.
-Stoic Joker (October 01, 2014, 12:03 PM)

It may have been mistaken for one of these aluminum Draino bottle bombs: http://www.snopes.co...nings/bottlebomb.asp
650
Living Room / Re: Programming/Coder humor
« Last post by app103 on October 01, 2014, 08:23 AM »
Oh, your head hasn't exploded yet? This should do it.

HTML9 Responsive Boilerstrap JS
Pages: prev1 ... 21 22 23 24 25 [26] 27 28 29 30 31 ... 230next