3N16MA
Apr 9, 02:33 PM
Edit: Post too long. I doubt anyone would read it. :D
Moyank24
Mar 27, 07:27 PM
What does "anti-gay" mean? Is it a vague synonym for "homophobic?"
I agree: There's a place for that kind of therapy. I even know people who felt conflicted about their sexual orientation. Unfortunately, the conflict caused them some of the severest emotional pain I could imagine.
Of course it did. I think at one point or another all of us experienced some type of emotional pain where our sexuality is concerned. Who wants to be different? Or preached to? Or told by people like you that we may have some type of mental health issue? Or be discriminated against? It's scary and painful.
I can only imagine what the people you know felt conflicted about. I hope that they can find themselves in a place where they will be accepted for what they are, and not what those around them think they should be. Am I wrong to think that if you know these people, their homosexuality wasn't readily accepted by those around them? Of course they would be conflicted. Nobody wants to be hated.
As I said, Dr. Spitzer disagrees. Please watch his video, CalBoy. I've already posted a link to it in the post where I mentioned Focus on the Family.
I wouldn't waste my time giving that quack one more hit on his You Tube video.
I guess with enough "therapy" we would be able to persuade you to become a homosexual?
I agree: There's a place for that kind of therapy. I even know people who felt conflicted about their sexual orientation. Unfortunately, the conflict caused them some of the severest emotional pain I could imagine.
Of course it did. I think at one point or another all of us experienced some type of emotional pain where our sexuality is concerned. Who wants to be different? Or preached to? Or told by people like you that we may have some type of mental health issue? Or be discriminated against? It's scary and painful.
I can only imagine what the people you know felt conflicted about. I hope that they can find themselves in a place where they will be accepted for what they are, and not what those around them think they should be. Am I wrong to think that if you know these people, their homosexuality wasn't readily accepted by those around them? Of course they would be conflicted. Nobody wants to be hated.
As I said, Dr. Spitzer disagrees. Please watch his video, CalBoy. I've already posted a link to it in the post where I mentioned Focus on the Family.
I wouldn't waste my time giving that quack one more hit on his You Tube video.
I guess with enough "therapy" we would be able to persuade you to become a homosexual?
Ivan0310
Apr 28, 07:39 AM
I dont think iPads should be included. A computer shouldn't need a computer to be usable.
Agreed. I disagree completely with Steve & Co. when they refer to this or any other of their mobile devices as a 'Post-PC' device. Something that is 'after' the PC shouldn't rely on one (in large or small part) in order to function.
Agreed. I disagree completely with Steve & Co. when they refer to this or any other of their mobile devices as a 'Post-PC' device. Something that is 'after' the PC shouldn't rely on one (in large or small part) in order to function.
myamid
Sep 12, 06:39 PM
The HDD space worries me a little. I'm betting they'll offer different versions with $299 being the entry level model with the smallest hard drive. More space will come on higher priced sets. But the harddisk size is something I'm a little concerned about. Does anyone know if it was mentioned wether movies bought can be transfered to another harddrive for safekeeping, or something along those lines?
I don't think the box will have local storage per-se. - it isn't advertised (yet) as a DVR. It's more like the Elgato EyeHome as it streams content stored on your computer. So the HD issue will be on the computer.
I don't think the box will have local storage per-se. - it isn't advertised (yet) as a DVR. It's more like the Elgato EyeHome as it streams content stored on your computer. So the HD issue will be on the computer.
elbirth
Oct 21, 10:33 PM
Anyone know anything about these suppliers, other than Crucial Technology?
Several co-workers of mine have used 18004memory and Datamem and rave about how good they are. Pretty low prices compared to other places and they seem to be fairly reliable.
I bought a 1GB stick from 18004memory for my MacBook Pro but it makes it reboot once every few days or so (once I take it out, it'll go weeks without randomly rebooting). I need to RMA it, but I think it was just bad luck on my part.
Several co-workers of mine have used 18004memory and Datamem and rave about how good they are. Pretty low prices compared to other places and they seem to be fairly reliable.
I bought a 1GB stick from 18004memory for my MacBook Pro but it makes it reboot once every few days or so (once I take it out, it'll go weeks without randomly rebooting). I need to RMA it, but I think it was just bad luck on my part.
VPrime
Apr 6, 05:46 PM
My main issues when I switched was no
-cut/paste files in finder.
-No maximise window
-red x didnt quit program.
-enter/return renames instead of opens
-No directory location bar in finder (to tell you the folder structure/where you are)
-Plus a few more that were already mentioned
But after a few weeks all the problems went away. These "issues" are not really issues, it is just a different OS and you are still in the windows mindset. Once you accept things are different you learn and adapt.
Cut and paste in finder, sure it would be handy sometimes.. But the UI of OSX is built around an alternative. you can click and drag any file, hold t over a location and the folders spring open. Its not a perfect replacement (sometimes quite slower) but it gets the job done.
Or you just get accustomed to having more windows open and drag between them (usually the case especially because expose is awesome)..
This being said, I still want cut/paste in finder.. But the alternative is quite usable.
-Maximize.. Really this is just a different OS. You cant expect it to behave the same way. OSX is a great multi tasking OS. Having multiple windows open is much easier to manage (especially because of tools like expose). The "maximise" is really a fit window to contents button. It will increase the window size to make sure everything fits. So a web page will get as big as it needs to fit with out scrolling... The only problem I have with this is that it isn't consistent with every app.. Some programs don't enlarge the window to fit the contents. It is up to the developer.
But after using it for a few weeks you get used to it, and actually like it comapred to taking up the full screen (usually...).
-return/enter renaming.. This is just a different OS. you have to re learn some hot keys. It's the way of life. Instead of enter, you press command+o.
-No Directory path... Well there is. inside of finder you can turn on 2 options. One to show the folder structure at the bottom of the finder window (like a status bar) and navigate up/down a folder tree. open up finder, go to View> select show PAth bar.
2. customize the finder tool bar and add a path icon. This adds a trop down button which shows the path and lets you jump back.
3. Terminal command which shows the directory path right at the top of a finder window. This replaces the current directory name with the path.
Really, there are changes. Some annoying, but that comes with the territory . You are using a different OS after all. Most of the annoyances or frustrations are early on and mainly because you are not familiar with the OS. But after survive them, you really do tend to work faster and more efficient in OS X.
I have been a windows user since 3.1, grew up with windows. Windows was work.
But A few years ago I took the dive and switched to OSX.. I love every second of it and don't think I will ever go back to using windows full time..
My brother who was even a big gamer and used windows exclusively.. even said he would never use another OS full time other than windows (used linux ont he side..) has switched to OSX. Bought a macbook for school (due to large battery and build quality). Now he plans to buy an iMac to replace his desktop because he likes OSX so much (which he didn't at first).
-cut/paste files in finder.
-No maximise window
-red x didnt quit program.
-enter/return renames instead of opens
-No directory location bar in finder (to tell you the folder structure/where you are)
-Plus a few more that were already mentioned
But after a few weeks all the problems went away. These "issues" are not really issues, it is just a different OS and you are still in the windows mindset. Once you accept things are different you learn and adapt.
Cut and paste in finder, sure it would be handy sometimes.. But the UI of OSX is built around an alternative. you can click and drag any file, hold t over a location and the folders spring open. Its not a perfect replacement (sometimes quite slower) but it gets the job done.
Or you just get accustomed to having more windows open and drag between them (usually the case especially because expose is awesome)..
This being said, I still want cut/paste in finder.. But the alternative is quite usable.
-Maximize.. Really this is just a different OS. You cant expect it to behave the same way. OSX is a great multi tasking OS. Having multiple windows open is much easier to manage (especially because of tools like expose). The "maximise" is really a fit window to contents button. It will increase the window size to make sure everything fits. So a web page will get as big as it needs to fit with out scrolling... The only problem I have with this is that it isn't consistent with every app.. Some programs don't enlarge the window to fit the contents. It is up to the developer.
But after using it for a few weeks you get used to it, and actually like it comapred to taking up the full screen (usually...).
-return/enter renaming.. This is just a different OS. you have to re learn some hot keys. It's the way of life. Instead of enter, you press command+o.
-No Directory path... Well there is. inside of finder you can turn on 2 options. One to show the folder structure at the bottom of the finder window (like a status bar) and navigate up/down a folder tree. open up finder, go to View> select show PAth bar.
2. customize the finder tool bar and add a path icon. This adds a trop down button which shows the path and lets you jump back.
3. Terminal command which shows the directory path right at the top of a finder window. This replaces the current directory name with the path.
Really, there are changes. Some annoying, but that comes with the territory . You are using a different OS after all. Most of the annoyances or frustrations are early on and mainly because you are not familiar with the OS. But after survive them, you really do tend to work faster and more efficient in OS X.
I have been a windows user since 3.1, grew up with windows. Windows was work.
But A few years ago I took the dive and switched to OSX.. I love every second of it and don't think I will ever go back to using windows full time..
My brother who was even a big gamer and used windows exclusively.. even said he would never use another OS full time other than windows (used linux ont he side..) has switched to OSX. Bought a macbook for school (due to large battery and build quality). Now he plans to buy an iMac to replace his desktop because he likes OSX so much (which he didn't at first).
zacman
Oct 7, 01:41 PM
Apple already seems to have lost some parts of the European market with the 3GS because they didn't add the features that are frequently used there (like HSUPA, (r)SAP, etc.). For example GFK numbers showed that the Android based HTC Hero outsold the 3GS in Germany.
PCUser
Oct 8, 09:54 AM
What? No Dynamic Link Libraries in the MacOS X? You've got to be kidding me. That's a very bad choice on Apple's part. Especially since UNIX has their own type of DLL's. The whole point of a DLL is to make it so that programs don't need to load the same exact libraries into memory and waste space... the standard C library alone is about 2 megs. And the speed benefit from static libraries versus dynamic in *nix is nill. I know, I've compiled the same library both ways just to test that fact. (For those that don't know, static libraries are compiled into an app, and dynamic libraries are stored only once in memory.)
The point you had said before was that the reason x86 sucked was that it was 25 year old technology. Your exact wording was:
Don't assume anything about the quality of a 25 year old architecture. X86 blows crap, and always will.
The point you had said before was that the reason x86 sucked was that it was 25 year old technology. Your exact wording was:
Don't assume anything about the quality of a 25 year old architecture. X86 blows crap, and always will.
dukebound85
Apr 24, 01:02 PM
I was always under the impression that reincarnation was considered a kind of living hell, like reliving Junior High School over and over again.
The fire and brimstone of hell certainly figures in a lot of the fundamentalist sects of Christianity and many of the Protestant ones too. My father-in-law is a presbyterian lay preacher and constantly prattled on about it.
or better yet....wouldn't living forever a hell? who would want to go to Heaven and live forever...
What makes life so sweet is that it is NOT everlasting
The fire and brimstone of hell certainly figures in a lot of the fundamentalist sects of Christianity and many of the Protestant ones too. My father-in-law is a presbyterian lay preacher and constantly prattled on about it.
or better yet....wouldn't living forever a hell? who would want to go to Heaven and live forever...
What makes life so sweet is that it is NOT everlasting
edifyingGerbil
Apr 24, 06:44 PM
You and I have a terribly different definition of ruins I suppose. I consider a place ruins when its not even inhabitable.
Well if you were to look at world history, rather than just look at the world through a religious lens, you'd know the reasons for ongoing conflicts in much of that section of the world. Hint: it tends to do with imperialists powers tamperings.
Also, where is the biggest muslim population in the world? ;)
Most Islamic countries are not inhabitable by homosexuals or religious minorities, your mileage may vary.
The biggest muslim population right now is Indonesia, and they tried banning Christians from using Allah to describe their God. They're also trying to ban the Ahmadiyah sect...
I don't think France or Britain are responsible for Iran's strict implementation of Islamic law and ruthless persecution of dissidents, and to claim that they are responsible is insulting to Muslims because it implies they're far too reactionary to deal with anything using Reason. Just like people who want to ban qur'an burnings and blasphemy because they're afraid of how muslims might react. Are Muslims animals who are so easily goaded? No, they're human beings so they should be expected to act responsibly and not go on rampages at the slightest provocation.
Well if you were to look at world history, rather than just look at the world through a religious lens, you'd know the reasons for ongoing conflicts in much of that section of the world. Hint: it tends to do with imperialists powers tamperings.
Also, where is the biggest muslim population in the world? ;)
Most Islamic countries are not inhabitable by homosexuals or religious minorities, your mileage may vary.
The biggest muslim population right now is Indonesia, and they tried banning Christians from using Allah to describe their God. They're also trying to ban the Ahmadiyah sect...
I don't think France or Britain are responsible for Iran's strict implementation of Islamic law and ruthless persecution of dissidents, and to claim that they are responsible is insulting to Muslims because it implies they're far too reactionary to deal with anything using Reason. Just like people who want to ban qur'an burnings and blasphemy because they're afraid of how muslims might react. Are Muslims animals who are so easily goaded? No, they're human beings so they should be expected to act responsibly and not go on rampages at the slightest provocation.
econgeek
Apr 12, 10:59 PM
Your quick denigration of Adobe shows how much you don't know about the industry
Obviously I know a lot more about it than you. Of course, there are multiple industries that use editing software... but that doesn't matter. You're just puffing out your chest and being snotty.
Obviously I know a lot more about it than you. Of course, there are multiple industries that use editing software... but that doesn't matter. You're just puffing out your chest and being snotty.
WestonHarvey1
Apr 15, 12:09 PM
And I can't think of a better way to get a whole bunch of children raped by 'chaste' Catholic priests.
Right, lame jokes. Ok. Modern equivalent of female stand-up comics that used to joke about men leaving the toilet seat up.
Real sophisticated.
Right, lame jokes. Ok. Modern equivalent of female stand-up comics that used to joke about men leaving the toilet seat up.
Real sophisticated.
Dr.Gargoyle
Aug 29, 03:00 PM
if anyone was wondering, Stem cells have the remarkable potential to develop into many different cell types in the body. Serving as a sort of repair system for the body, they can theoretically divide without limit to replenish other cells as long as the person or animal is still alive. When a stem cell divides, each new cell has the potential to either remain a stem cell or become another type of cell with a more specialized function, such as a muscle cell, a red blood cell, or a brain cell.
Dont you think people can google it for themselves if they feel a need to know?
Dont you think people can google it for themselves if they feel a need to know?
samcraig
Mar 18, 09:22 AM
Please point that out in the contract, know it all.
Guess what, it isn't there.
Go look up the word Unlimited in the dictionary. Internalize and understand it. Come back here when you're done. Then come into a court room. Id like to sit back watch you (as I will eventually be watching AT&T) dance around the clear and concise definition of the word.
I've engaged in long, drawn out discussions with my legal pals about this very issue for several years, and they all agree it would completely impossible for AT&T to get out of court unscathed over this word "Unlimited"
Most of you people don't grasp the significance of the word in this case, which is not at all surprising given the crowd. (young and/or naive).
Most also think that because AT&T includes fine print in a contract, they can enforce it however they wish...which of course is a laughable fantasy to anyone who has sat through the first day of contract law.
Go look up the words: entitlement, spoiled, ignorance and unfounded :)
Guess what, it isn't there.
Go look up the word Unlimited in the dictionary. Internalize and understand it. Come back here when you're done. Then come into a court room. Id like to sit back watch you (as I will eventually be watching AT&T) dance around the clear and concise definition of the word.
I've engaged in long, drawn out discussions with my legal pals about this very issue for several years, and they all agree it would completely impossible for AT&T to get out of court unscathed over this word "Unlimited"
Most of you people don't grasp the significance of the word in this case, which is not at all surprising given the crowd. (young and/or naive).
Most also think that because AT&T includes fine print in a contract, they can enforce it however they wish...which of course is a laughable fantasy to anyone who has sat through the first day of contract law.
Go look up the words: entitlement, spoiled, ignorance and unfounded :)
leomac08
Mar 11, 01:09 AM
Dam... I hope that damage isn't that bad, but it being 8.9 I won't hold my breathe.
I'm seeing CNN, and the images are just horrifying, images from Sri Lanka and Indonesia from the 2004 Tsunami come back:eek:
I'm seeing CNN, and the images are just horrifying, images from Sri Lanka and Indonesia from the 2004 Tsunami come back:eek:
maclaptop
Apr 28, 07:47 AM
However the iPad is not a pc, so this report is a bit on the Apple side here.
Very true. Plus it could be a fad to own the latest toy. We won't know until some time passes. Anything new from Apple gets a lot of attention.
Wait til the newness wears off.
Very true. Plus it could be a fad to own the latest toy. We won't know until some time passes. Anything new from Apple gets a lot of attention.
Wait til the newness wears off.
AppliedVisual
Oct 25, 11:57 AM
If I get a 30", then I need to also get an expensive dualink DVI KVM, but the dell is so less expensive, getting that over the apple would completely offset the cost of the switch.
Just thought I'd put in my piece of advice about DVI-DL KVM switches. I'm only aware of three of them on the market, the two most common are from Gefen (www.gefen.com). I'm using the 4x1 Gefen and it works perfectly switching my primary display between my G5 quad, two PCs and my MBP. I know the quad switch is double the price, but DO NOT BUY THE 2x1 DVI-DL SWITCH from Gefen!!! It is using an older design and internal chipset and requires you to disassemble it to tweak an internal control dial. Then use two fine-tuning dials on the front (one for each input) to stabilize the picture. Unfortunately, unless all your devices are using identical video chipsets and putting out identical (or as close as possible) signals, you will never get both displays synchronized. Gefen knows about the problem but remains silent about the issue. They swapped my 2x1 switch for a 4x1 switch and gave me a decent discount after I went through two 2x1s with the same issue. Finally one of their senior tech guys admitted to the problem... So if you're connecting two G5's with the same video card, go for it. but if you have different hardware, then steer well away. The 4x1 switch has no compensation dials and does it's own on the fly signal tuning for each input, just as DVI is supposed to.
Sorry for the rant, but I just wanted to vent on this and maybe share someone else the frustration. Besides, dealing with Gefen is a total PITA! It's been two months of me calling them every other day trying to get a refund for something I returned long ago.
The other DVI-DL switch I know of is a matrix switch costing close to $6K. If you want the details I'll fill you in, but it's a commercial A/V electronic patching matrix suitable for running a mix of high-res or HD res displays and video walls in sports bars and/or shopping malls. :D
Just thought I'd put in my piece of advice about DVI-DL KVM switches. I'm only aware of three of them on the market, the two most common are from Gefen (www.gefen.com). I'm using the 4x1 Gefen and it works perfectly switching my primary display between my G5 quad, two PCs and my MBP. I know the quad switch is double the price, but DO NOT BUY THE 2x1 DVI-DL SWITCH from Gefen!!! It is using an older design and internal chipset and requires you to disassemble it to tweak an internal control dial. Then use two fine-tuning dials on the front (one for each input) to stabilize the picture. Unfortunately, unless all your devices are using identical video chipsets and putting out identical (or as close as possible) signals, you will never get both displays synchronized. Gefen knows about the problem but remains silent about the issue. They swapped my 2x1 switch for a 4x1 switch and gave me a decent discount after I went through two 2x1s with the same issue. Finally one of their senior tech guys admitted to the problem... So if you're connecting two G5's with the same video card, go for it. but if you have different hardware, then steer well away. The 4x1 switch has no compensation dials and does it's own on the fly signal tuning for each input, just as DVI is supposed to.
Sorry for the rant, but I just wanted to vent on this and maybe share someone else the frustration. Besides, dealing with Gefen is a total PITA! It's been two months of me calling them every other day trying to get a refund for something I returned long ago.
The other DVI-DL switch I know of is a matrix switch costing close to $6K. If you want the details I'll fill you in, but it's a commercial A/V electronic patching matrix suitable for running a mix of high-res or HD res displays and video walls in sports bars and/or shopping malls. :D
KnightWRX
May 2, 05:51 PM
Until Vista and Win 7, it was effectively impossible to run a Windows NT system as anything but Administrator. To the point that other than locked-down corporate sites where an IT Professional was required to install the Corporate Approved version of any software you need to do your job, I never knew anyone running XP (or 2k, or for that matter NT 3.x) who in a day-to-day fashion used a Standard user account.
Of course, I don't know of any Linux distribution that doesn't require root to install system wide software either. Kind of negates your point there...
In contrast, an "Administrator" account on OS X was in reality a limited user account, just with some system-level privileges like being able to install apps that other people could run. A "Standard" user account was far more usable on OS X than the equivalent on Windows, because "Standard" users could install software into their user sandbox, etc. Still, most people I know run OS X as Administrator.
You could do the same as far back as Windows NT 3.1 in 1993. The fact that most software vendors wrote their applications for the non-secure DOS based versions of Windows is moot, that is not a problem of the OS's security model, it is a problem of the Application. This is not "Unix security" being better, it's "Software vendors for Windows" being dumber.
It's no different than if instead of writing my preferences to $HOME/.myapp/ I'd write a software that required writing everything to /usr/share/myapp/username/. That would require root in any decent Unix installation, or it would require me to set permissions on that folder to 775 and make all users of myapp part of the owning group. Or I could just go the lazy route, make the binary 4755 and set mount opts to suid on the filesystem where this binary resides... (ugh...).
This is no different on Windows NT based architectures. If you were so inclined, with tools like Filemon and Regmon, you could granularly set permissions in a way to install these misbehaving software so that they would work for regular users.
I know I did many times in a past life (back when I was sort of forced to do Windows systems administration... ugh... Windows NT 4.0 Terminal Server edition... what a wreck...).
Let's face it, Windows NT and Unix systems have very similar security models (in fact, Windows NT has superior ACL support out of the box, akin to Novell's close to perfect ACLs, Unix is far more limited with it's read/write/execute permission scheme, even with Posix ACLs in place). It's the hoops that software vendors outside the control of Microsoft made you go through that forced lazy users to run as Administrator all the time and gave Microsoft such headaches.
As far back as I remember (when I did some Windows systems programming), Microsoft was already advising to use the user's home folder/the user's registry hive for preferences and to never write to system locations.
The real differenc, though, is that an NT Administrator was really equivalent to the Unix root account. An OS X Administrator was a Unix non-root user with 'admin' group access. You could not start up the UI as the 'root' user (and the 'root' account was disabled by default).
Actually, the Administrator account (much less a standard user in the Administrators group) is not a root level account at all.
Notice how a root account on Unix can do everything, just by virtue of its 0 uid. It can write/delete/read files from filesystems it does not even have permissions on. It can kill any system process, no matter the owner.
Administrator on Windows NT is far more limited. Don't ever break your ACLs or don't try to kill processes owned by "System". SysInternals provided tools that let you do it, but Microsoft did not.
All that having been said, UAC has really evened the bar for Windows Vista and 7 (moreso in 7 after the usability tweaks Microsoft put in to stop people from disabling it). I see no functional security difference between the OS X authorization scheme and the Windows UAC scheme.
UAC is simply a gui front-end to the runas command. Heck, shift-right-click already had the "Run As" option. It's a glorified sudo. It uses RDP (since Vista, user sessions are really local RDP sessions) to prevent being able to "fake it", by showing up on the "console" session while the user's display resides on a RDP session.
There, you did it, you made me go on a defensive rant for Microsoft. I hate you now.
My response, why bother worrying about this when the attacker can do the same thing via shellcode generated in the background by exploiting a running process so the the user is unaware that code is being executed on the system
Because this required no particular exploit or vulnerability. A simple Javascript auto-download and Safari auto-opening an archive and running code.
Why bother, you're not "getting it". The only reason the user is aware of MACDefender is because it runs a GUI based installer. If the executable had had 0 GUI code and just run stuff in the background, you would have never known until you couldn't find your files or some chinese guy was buying goods with your CC info, fished right out of your "Bank stuff.xls" file.
That's the thing, infecting a computer at the system level is fine if you want to build a DoS botnet or something (and even then, you don't really need privilege escalation for that, just set login items for the current user, and run off a non-privilege port, root privileges are not required for ICMP access, only raw sockets).
These days, malware authors and users are much more interested in your data than your system. That's where the money is. Identity theft, phishing, they mean big bucks.
Of course, I don't know of any Linux distribution that doesn't require root to install system wide software either. Kind of negates your point there...
In contrast, an "Administrator" account on OS X was in reality a limited user account, just with some system-level privileges like being able to install apps that other people could run. A "Standard" user account was far more usable on OS X than the equivalent on Windows, because "Standard" users could install software into their user sandbox, etc. Still, most people I know run OS X as Administrator.
You could do the same as far back as Windows NT 3.1 in 1993. The fact that most software vendors wrote their applications for the non-secure DOS based versions of Windows is moot, that is not a problem of the OS's security model, it is a problem of the Application. This is not "Unix security" being better, it's "Software vendors for Windows" being dumber.
It's no different than if instead of writing my preferences to $HOME/.myapp/ I'd write a software that required writing everything to /usr/share/myapp/username/. That would require root in any decent Unix installation, or it would require me to set permissions on that folder to 775 and make all users of myapp part of the owning group. Or I could just go the lazy route, make the binary 4755 and set mount opts to suid on the filesystem where this binary resides... (ugh...).
This is no different on Windows NT based architectures. If you were so inclined, with tools like Filemon and Regmon, you could granularly set permissions in a way to install these misbehaving software so that they would work for regular users.
I know I did many times in a past life (back when I was sort of forced to do Windows systems administration... ugh... Windows NT 4.0 Terminal Server edition... what a wreck...).
Let's face it, Windows NT and Unix systems have very similar security models (in fact, Windows NT has superior ACL support out of the box, akin to Novell's close to perfect ACLs, Unix is far more limited with it's read/write/execute permission scheme, even with Posix ACLs in place). It's the hoops that software vendors outside the control of Microsoft made you go through that forced lazy users to run as Administrator all the time and gave Microsoft such headaches.
As far back as I remember (when I did some Windows systems programming), Microsoft was already advising to use the user's home folder/the user's registry hive for preferences and to never write to system locations.
The real differenc, though, is that an NT Administrator was really equivalent to the Unix root account. An OS X Administrator was a Unix non-root user with 'admin' group access. You could not start up the UI as the 'root' user (and the 'root' account was disabled by default).
Actually, the Administrator account (much less a standard user in the Administrators group) is not a root level account at all.
Notice how a root account on Unix can do everything, just by virtue of its 0 uid. It can write/delete/read files from filesystems it does not even have permissions on. It can kill any system process, no matter the owner.
Administrator on Windows NT is far more limited. Don't ever break your ACLs or don't try to kill processes owned by "System". SysInternals provided tools that let you do it, but Microsoft did not.
All that having been said, UAC has really evened the bar for Windows Vista and 7 (moreso in 7 after the usability tweaks Microsoft put in to stop people from disabling it). I see no functional security difference between the OS X authorization scheme and the Windows UAC scheme.
UAC is simply a gui front-end to the runas command. Heck, shift-right-click already had the "Run As" option. It's a glorified sudo. It uses RDP (since Vista, user sessions are really local RDP sessions) to prevent being able to "fake it", by showing up on the "console" session while the user's display resides on a RDP session.
There, you did it, you made me go on a defensive rant for Microsoft. I hate you now.
My response, why bother worrying about this when the attacker can do the same thing via shellcode generated in the background by exploiting a running process so the the user is unaware that code is being executed on the system
Because this required no particular exploit or vulnerability. A simple Javascript auto-download and Safari auto-opening an archive and running code.
Why bother, you're not "getting it". The only reason the user is aware of MACDefender is because it runs a GUI based installer. If the executable had had 0 GUI code and just run stuff in the background, you would have never known until you couldn't find your files or some chinese guy was buying goods with your CC info, fished right out of your "Bank stuff.xls" file.
That's the thing, infecting a computer at the system level is fine if you want to build a DoS botnet or something (and even then, you don't really need privilege escalation for that, just set login items for the current user, and run off a non-privilege port, root privileges are not required for ICMP access, only raw sockets).
These days, malware authors and users are much more interested in your data than your system. That's where the money is. Identity theft, phishing, they mean big bucks.
totoum
Apr 13, 02:32 AM
Oh but it will sync the sound for you
Right,because wasting time syncing audio manually when you could be doing actual editing is what makes someone a pro.
Right,because wasting time syncing audio manually when you could be doing actual editing is what makes someone a pro.
ezekielrage_99
Sep 26, 10:48 PM
And UT2007 and Q4 and render video. All at the same time :confused:
Do we need that?
Sounds kind of fun :cool:
I'm sure the studios are drooling for a 80 core model, it would make rendering a lot faster. I heard that Monsters Inc had single frames that took up to 90 hours to render. :eek:
Got to love Renderman, Global Illumination and Raytraced Shadows.....
The rendertime is a bitch but it looks totally sweet.
Do we need that?
Sounds kind of fun :cool:
I'm sure the studios are drooling for a 80 core model, it would make rendering a lot faster. I heard that Monsters Inc had single frames that took up to 90 hours to render. :eek:
Got to love Renderman, Global Illumination and Raytraced Shadows.....
The rendertime is a bitch but it looks totally sweet.
Benjy91
May 2, 10:00 AM
Wirelessly posted (Mozilla/5.0 (iPhone; U; CPU iPhone OS 4_2_1 like Mac OS X; en-gb) AppleWebKit/533.17.9 (KHTML, like Gecko) Version/5.0.2 Mobile/8C148 Safari/6533.18.5)
WOW! Malware that requires the user to do a Google search, then download, and install. For all of this, it asks for your credit card number.
How can we ever defend our computers against such a diabolical threat?!
Most Malware requires direct user intervention, people are idiots.
WOW! Malware that requires the user to do a Google search, then download, and install. For all of this, it asks for your credit card number.
How can we ever defend our computers against such a diabolical threat?!
Most Malware requires direct user intervention, people are idiots.
RedTomato
Mar 15, 06:28 PM
Sorry doublepost but different topic now:
Wikileaks: Japan warned over nuclear plants
http://www.telegraph.co.uk/news/worldnews/wikileaks/8384059/Japan-earthquake-Japan-warned-over-nuclear-plants-WikiLeaks-cables-show.html
WikiLeaks cables show Japan was warned more than two years ago by the international nuclear watchdog that its nuclear power plants were not capable of withstanding powerful earthquakes, leaked diplomatic cables reveal.
Why does this not surprise me? Japan nuclear has a long history of coverups and poor operational procedures - including mixing nuclear fuel in a bucket and being surprised when it went critical.
Even the UK here has a long history of blunders and covering up - look at Windscale, later renamed Sellafield in a PR move. Some of the radiation leaks here were only revealed decades later.
Building reactors to a 1 accident in 1000 years standard of protection, as pushed by the industry PR, is just not good enough. Given 100 reactors, that equates to a serious issue every 10 years on average, and we already have far more than 100 reactors globally.
Wikileaks: Japan warned over nuclear plants
http://www.telegraph.co.uk/news/worldnews/wikileaks/8384059/Japan-earthquake-Japan-warned-over-nuclear-plants-WikiLeaks-cables-show.html
WikiLeaks cables show Japan was warned more than two years ago by the international nuclear watchdog that its nuclear power plants were not capable of withstanding powerful earthquakes, leaked diplomatic cables reveal.
Why does this not surprise me? Japan nuclear has a long history of coverups and poor operational procedures - including mixing nuclear fuel in a bucket and being surprised when it went critical.
Even the UK here has a long history of blunders and covering up - look at Windscale, later renamed Sellafield in a PR move. Some of the radiation leaks here were only revealed decades later.
Building reactors to a 1 accident in 1000 years standard of protection, as pushed by the industry PR, is just not good enough. Given 100 reactors, that equates to a serious issue every 10 years on average, and we already have far more than 100 reactors globally.
skunk
Mar 27, 07:10 PM
Meanwhile, please listen to Nicolosi's first answer in video 3 of the first set of videos, the last part of the three-part interview, where he says that homosexuals have a right to live a gay lifestyleHomosexuals have a right to live the same lifestyle as anybody else, under the Constitution and under the UN Declaration.
Maybe with better furnishings, though...
Maybe with better furnishings, though...
alexdrinan
Sep 12, 04:15 PM
I totally agree with this. This is the perfect device for Apple to start selling subscriptions to shows to replace cable. A la cart cable legislation is picking up steam and this will put iTunes in the cable business. Think about how many households have iPods, now compare that number to the HUGE number of houses that have cable. Wouldn't you rather pay for only the shows that you watch?
I don't think any of these services will ever replace cable. Maybe the "premium" packages that offer ondemand and DVR etc., but never just plain old cable TV. Sometimes you want to just turn on the TV and flip around to see what's on, beyond just the local channels you can pick up with an antenna.
I don't think any of these services will ever replace cable. Maybe the "premium" packages that offer ondemand and DVR etc., but never just plain old cable TV. Sometimes you want to just turn on the TV and flip around to see what's on, beyond just the local channels you can pick up with an antenna.
No comments:
Post a Comment