So, digg fans, you wanna see Alex in between his rock and a hard place?
Monday, February 19, 2007
Sunday, February 11, 2007
Hardware DEP Always On, please
Windows XP SP2 introduced Hardware DEP, which was then at first only available to 2 AMD processors and One type (Itanium) Intel processor.
IrfanView will run fine in Opt-Out mode, but NOT Always On mode (because stack pages that look like data are actually code that Irfan wants to run - unnecessarily. This is a very easy fix on Irfan's part, according to Gibson, and any other programmer familiar with Stack loading, hence the occasional overflows, but certainly critical in running bad hacks.)
Multiple Boot.ini files (or use DEPuty, a program written by PC Security Expert,
Live C programming is just a limited work-around, according to Gibson.
ASLR is not available for XP natively, however there is some freeware that DOES add ASLR to Windows XP SP2, and combined with Hardware DEP Always On and programmers stop sending executable code to stack pages for execution, then hackers will almost have a ZERO uptime in PC memory.
Microsoft's software DEP is NOT DEP (it will only block a very specific overflow problem, and that was so 5 years ago).
ALL processors made now and in the future will most probably have Hardware DEP and have it enabled by default as ALWAYS ON.
ALWAYS ON (Strongest - most problems)
OPT OUT (Strong - not many problems for the old-school coders using stack executable code)
OPT IN (weakest - mostly for testing malicious hacks on purpose)
ALWAYS OFF (non-existent)
<-- copyright 2005+ by Dan Prowse -->
IrfanView will run fine in Opt-Out mode, but NOT Always On mode (because stack pages that look like data are actually code that Irfan wants to run - unnecessarily. This is a very easy fix on Irfan's part, according to Gibson, and any other programmer familiar with Stack loading, hence the occasional overflows, but certainly critical in running bad hacks.)
Multiple Boot.ini files (or use DEPuty, a program written by PC Security Expert,
Steve Gibson
The MS Control Panel Opt-In / Opt-Out modes switch does NOT let you choose Always On or Always Off modes - which are ONLY available out-of-the-box through the BIOS settings. Some BIOSes will turn Hardware DEP to Always OFF, without the ability for you to turn in Always ON.Live C programming is just a limited work-around, according to Gibson.
ASLR is not available for XP natively, however there is some freeware that DOES add ASLR to Windows XP SP2, and combined with Hardware DEP Always On and programmers stop sending executable code to stack pages for execution, then hackers will almost have a ZERO uptime in PC memory.
Microsoft's software DEP is NOT DEP (it will only block a very specific overflow problem, and that was so 5 years ago).
ALL processors made now and in the future will most probably have Hardware DEP and have it enabled by default as ALWAYS ON.
ALWAYS ON (Strongest - most problems)
OPT OUT (Strong - not many problems for the old-school coders using stack executable code)
OPT IN (weakest - mostly for testing malicious hacks on purpose)
ALWAYS OFF (non-existent)
<-- copyright 2005+ by Dan Prowse -->
Wednesday, February 07, 2007
Porn: "The Perfect Porn Storms"
Leo LePorte said it. I say it.
If you let your Internet porn filter licenses lapse, then you have yourself to blame.
If I am surfing the net on YOUR equipment, and then all of a sudden I start getting multiple, uncontrollable pop-up windows full of PORN, and YOU blame ME - I WILL sue you.
I will sue you as sure as you read this.
"You have to physically click on this in order to get these kind of sites". The person who says that to you better be looking for another job in a field OTHER THAN IT.
<-- copyright 2007+ by Dan Prowse -->
If you let your Internet porn filter licenses lapse, then you have yourself to blame.
If I am surfing the net on YOUR equipment, and then all of a sudden I start getting multiple, uncontrollable pop-up windows full of PORN, and YOU blame ME - I WILL sue you.
I will sue you as sure as you read this.
"You have to physically click on this in order to get these kind of sites". The person who says that to you better be looking for another job in a field OTHER THAN IT.
<-- copyright 2007+ by Dan Prowse -->
Wednesday, January 24, 2007
If it's not Delivery, it's DeStupido!
If you have a message to deliver a friend or a coworker, don't wait, try to remember, especiallly if you even think it could be a bad idea not to deliver it ASAP.
Wise words from me. And my supervisor; who agrees:
Next time: "ahead of time is on time!" Slogan of PTK, an honorable society of real brainiacs.
<-- copyright 2007+ by Dan Prowse -->
Wise words from me. And my supervisor; who agrees:
Next time: "ahead of time is on time!" Slogan of PTK, an honorable society of real brainiacs.
<-- copyright 2007+ by Dan Prowse -->
Sunday, December 31, 2006
World Link TV good for something!
VARTTINA
Wow. Just wow.
Well, that's something, but nothing compared to the new 2007 (World) Link TV music site!
-
-
-
-
Wow. Just wow.
Well, that's something, but nothing compared to the new 2007 (World) Link TV music site!
-
-
-
-
Saturday, December 23, 2006
RSS Help
The following is an example of an improper RSS feed url:
http://citrixcommunity.com/blogs/MainFeed.aspx
results from running the same run through a validator:
http://www.feedvalidator.org/check?url=http://citrixcommunity.com/blogs/MainFeed.aspx
Below is a non-working example of an "opml" feed url:
(merely a page that explains what xml or opml is)
http://citrixcommunity.com/blogs/Opml.aspx
Again, results from running the same run through the same validator:
http://www.feedvalidator.org/check?url=http://citrixcommunity.com/blogs/Opml.aspx
Although I actually use the Citrix products, I am saddened to see the lack of deatail in the simplest of forms represented in their poorly constructed xml and opml references and application.
=============================
Next, what follows are 2 good examples that will actually work:
proper RSS feed url:
http://feeds.pixelcorps.com/feeds/macbreakipod.xml
(This can be dropped in both an aggregate reader AND iTunes for the audio portions)
and then a
working example of an "xml" podcast feed url:
http://www.stratfor.com/reports/podcast.xml
WOW, (notice the ACTUAL "xml" extension used at the END of the url - this is a clue!)
If you cannot see the difference in the urls, look closer or stop trying to make bad urls -
OR
try this, and make good:
http://blogs.open.ac.uk/Maths/ajh59/sbFeedsOPMLFeedBlender.html
and then try this:
(it's fun)
http://www.justinpfister.com/gnewsfeed.php
===============================
Not to worry, for those of you who just want to USE rss in your readers or don't want to get all that technical, you can try IE7 - RSS is built in!
http://nick.typepad.com/blog/2006/12/microsofts_cont.html
(Although, I disagree with Nick's assesment that Microsoft's patent application here is due to the degredation of the Patent Office. More likely this represents continuing frivolity of legal eagles)
and then follow Nick's advice and read:
http://appft1.uspto.gov/netacgi/nph-Parser?Sect1=PTO1&Sect2=HITOFF&amp;d=PG01&p=1&u=%2Fnetahtml%2FPTO%2Fsrchnum.html&r=1&amp;f=G&l=50&s1=%2220060288329%22.PGNR.&OS=DN/20060288329&RS=DN/20060288329
then follow someone else's advice:
http://www.nosoftwarepatents.com/en/m/forum/index.html
-
-
http://citrixcommunity.com/blogs/MainFeed.aspx
results from running the same run through a validator:
http://www.feedvalidator.org/check?url=http://citrixcommunity.com/blogs/MainFeed.aspx
Below is a non-working example of an "opml" feed url:
(merely a page that explains what xml or opml is)
http://citrixcommunity.com/blogs/Opml.aspx
Again, results from running the same run through the same validator:
http://www.feedvalidator.org/check?url=http://citrixcommunity.com/blogs/Opml.aspx
Although I actually use the Citrix products, I am saddened to see the lack of deatail in the simplest of forms represented in their poorly constructed xml and opml references and application.
=============================
Next, what follows are 2 good examples that will actually work:
proper RSS feed url:
http://feeds.pixelcorps.com/feeds/macbreakipod.xml
(This can be dropped in both an aggregate reader AND iTunes for the audio portions)
and then a
working example of an "xml" podcast feed url:
http://www.stratfor.com/reports/podcast.xml
WOW, (notice the ACTUAL "xml" extension used at the END of the url - this is a clue!)
If you cannot see the difference in the urls, look closer or stop trying to make bad urls -
OR
try this, and make good:
http://blogs.open.ac.uk/Maths/ajh59/sbFeedsOPMLFeedBlender.html
and then try this:
(it's fun)
http://www.justinpfister.com/gnewsfeed.php
===============================
Not to worry, for those of you who just want to USE rss in your readers or don't want to get all that technical, you can try IE7 - RSS is built in!
http://nick.typepad.com/blog/2006/12/microsofts_cont.html
(Although, I disagree with Nick's assesment that Microsoft's patent application here is due to the degredation of the Patent Office. More likely this represents continuing frivolity of legal eagles)
and then follow Nick's advice and read:
http://appft1.uspto.gov/netacgi/nph-Parser?Sect1=PTO1&Sect2=HITOFF&amp;d=PG01&p=1&u=%2Fnetahtml%2FPTO%2Fsrchnum.html&r=1&amp;f=G&l=50&s1=%2220060288329%22.PGNR.&OS=DN/20060288329&RS=DN/20060288329
then follow someone else's advice:
http://www.nosoftwarepatents.com/en/m/forum/index.html
-
-
Subscribe to:
Posts (Atom)
