nlewis - Slashdot User

Comment Alternate Data Streams (Score 2, Informative) 166

by nlewis on Tuesday December 22, 2009 @01:38PM (#30525650) Attached to: Microsoft Policies Help Virus Writers, Says Security Firm

As I understand it, any file in an NTFS partition can have one or more Alternate Data Streams associated with it, regardless of its type or location. So if you tell someone not to scan something like "Edb.log", does that imply that they should not scan "Edb.log:virus.exe" either?

I have to agree with Trend Micro on this one. Completely skipping specific files in specific directories may prevent performance issues, but it may also make it easier for malware authors to find new hiding places.

Submission + - Adobe Reader Update Available (adobe.com)

Submitted by nlewis on Friday July 31, 2009 @01:54PM

nlewis writes: Following up on my previous submission, Adobe has just released an update (version 9.1.3) for the security issue we discussed here recently.

Now, much as I would love to provide you with a direct download link, Adobe's much criticized policy of only posting the major version updates (e.g. 9.1) on the main product download page makes that impossible. I'm afraid you'll have to either use their oh-so-wonderful update utility, or visit their generic Latest Product Updates page and dig for it yourself.

Or, as many of my fellow Slashdotters pointed out last time around, you can save yourself the hassle and just use another (more secure) PDF reader such as Foxit or SumatraPDF.

Submission + - Adobe Security Updates for Flash and Shockwave

Submitted by nlewis on Thursday July 30, 2009 @05:57PM

nlewis writes: Adobe has finally released updates for their Flash and Shockwave Players. These updates should, in theory, address the security issues outlined in this Security bulletin. This issue has been mentioned here previously. Don't expect an update to the equally flawed Acrobat Reader until sometime tomorrow, though.

Repairman Steals Hard Drive And Charges To Reinstall It 181

Posted by samzenpus on Thursday May 07, 2009 @02:39PM from the new-geek-squad-terms-of-service dept.

Phase 1: Break into a realty office, and steal a computer hard drive.

Phase 2: Ask if they will pay you $50 to fix the computer.

Phase 3: Get charged with theft and receiving stolen property!

Comment Re:Possible related to Google filtering options? (Score 3, Informative) 332

by nlewis on Friday April 17, 2009 @11:52AM (#27614461) Attached to: Microsoft Family Safety Filter Blocks Google

Following up on my own post, yes it is DansGuardian that can be configured to block Google searches if Google SafeSearch is turned off. So maybe Microsoft's filter is taking a similar approach? The obvious thing to try is to turn off the MS filter, check your Google preferences and make sure SafeSearch is enabled, then turn the filter back on and see if the problem persists.

Comment Possible related to Google filtering options? (Score 5, Informative) 332

by nlewis on Friday April 17, 2009 @10:55AM (#27613097) Attached to: Microsoft Family Safety Filter Blocks Google

I seem to recall a much older filtering software package (I don't recall which offhand - DansGuardian, maybe?) that will block Google if you have disabled "SafeSearch" in the Advanced Preferences - that is, if you have it set to "Do not filter my search results."

Comment Re:You Have Stolen From Your Bandmates & the R (Score 0, Redundant) 672

by nlewis on Thursday March 05, 2009 @01:00PM (#27078861) Attached to: Lars Ulrich Pirates His Own Album

Who is "Deaf Leopard"? Are they bigger than Def Leppard?

Comment Re:User-Agent "sniffing" (Score 0, Redundant) 165

by nlewis on Friday February 06, 2009 @01:23PM (#26754537) Attached to: The Broken Design of Microsoft's "Fix it" Tool

Semantics, semantics. My point was that User-Agent detection is *not* the right way to handle the problem.

As long as the setup program (EXE, MSI or otherwise) handles the detection prior to installation, it meets the requirement I stated: "That way, the setup program could *authoritatively* determine what OS was in use, and block installation onto any invalid systems".

Comment User-Agent "sniffing" (Score 5, Informative) 165

by nlewis on Friday February 06, 2009 @01:02PM (#26754153) Attached to: The Broken Design of Microsoft's "Fix it" Tool

User-Agent "sniffing" is a bad approach under any circumstances - it's too easy, not to mention common, to fake. And since all script-based approaches I am aware of rely on User-Agent detection, they would be effectively broken as well.

If I were doing it, I would put the OS detection in the setup EXE itself. That way, the setup program could *authoritatively* determine what OS was in use, and block installation onto any invalid systems. But we may never know since you didn't finish the download and give it a shot. ;)

Comment ...and the real kicker is... (Score 1) 220

by nlewis on Saturday October 06, 2007 @06:22PM (#20883031) Attached to: Internet Explorer Drops WGA Requirement

IE7 is now flagged as a Critical update, whereas the "Update Rollup 2 for Windows XP Media Center Edition 2005" (KB900325) is an Optional update. And guess what? If you install IE7 first - for example, if it is done for you automatically courtesy of Automatic Updates - the KB900325 update fails to install!

Slashdot Top Deals