Comment Re:Definitely interesting.... (Score 1) 220
But if you are vulnerable to automated attacks, then you most certainly are also vulnerable to directed attacks, no? The attacker can just use a known (or new) attack against WordPress once they see that that is what you are running:
"Aha! From the Meta Tags I can tell they're running WordPress. Looks like it's version X. I'll do a POST to site/wp-admin/tiny-mce/lang/en-us/takefile.php of a PHP script. If they didn't apply the patch that was released yesterday I should be able to upload my PHP script which will allow me write access or at least read access..." If you were not up-to-date in your install (or if you haven't audited any plugins you used), then the entire hack might takes just a few minutes, and could be done by someone with only rudimentary skills.
No?
Comment Re:Definitely interesting.... (Score 4, Insightful) 220
A non-custom CMS like WordPress is very often the target of massive automated attacks: a new bug is discovered in WP and a tool is written to seek out vulnerable installations and exploit that bug. If you have the skill or $$ to pour over the code, you can probably find your own bugs before they become publicly known.
On the other hand, if your site is specifically targeted, then your custom CMS is as vulnerable or more than the WordPresses out there. You might have a bit of security through obscurity (in a standard WP install, the attacker might know file names and locations, variable names, classes, etc.) but this will probably do you little good if you weren't able to harden the code.
Lesson: you are screwed if a rich, powerful, or smart attacker singles you out. A standard CMS can land you in hot water if you don't have a knowledgeable person administering it (and who has that?).
Comment Re:Realistic analysis of he daa (Score 1) 299
Your analysis seems messed-up to me. I assume you are referring to this chart http://www.conceivablytech.com/wp-content/uploads/2011/02/browser2.jpg Chrome's rate of growth might have slowed a bit, but it still grew by what looks like 10%. IE has had negative growth pretty consistently. Safari's growth rate seems to be much lower than Chrome's. Since your understanding of the data seems so far off the mark, I doubt your conclusions are accurate.
Submission + - Firefox, Chrome, Safari: what can extensions do? (wordpress.com)
jamienk writes: Firefox defined add-ons in the browser. But Chrome and now Safari offer programmers and users ways to easily extend the abilities of their browsers. What are the differences in capabilities of the 3 systems? Which is best?
Submission + - Breakthroughs in HTML Audio & JavaScript (vocamus.net)
jamienk writes: Imagine if you could grab and manipulate audio with JavaScript just like you can images with canvas... Firefox experimental builds let you do just that: crazy audio visualizations, a graphic equalizer, even text-to-speech, all in JavaScript! Work in progress, you need a special build of Firefox (videos available), being worked on via W3C. Weren't people just saying that Firefox doesn't innovate?
Justice Not As Blind As Previously Thought 256
NotSoHeavyD3 writes "I doubt this is much of a surprise but apparently Cornell University did a study that seems to show you're more likely to get convicted if you're ugly. From the article: 'According to a Cornell University study, unattractive defendants are 22 percent more likely to be convicted than good-looking ones. And the unattractive also get slapped with harsher sentences — an average of 22 months longer in prison.'"
Comment Re:Fundamentally different things, though (Score 3, Interesting) 224
The conceptions of what we "do" with music and film have been limited by the sales and "IP" models. Remixing, adding/replacing tracks, mashups, even sampling, all come about as a consequence of ignoring the "consumption" model as you describe it. So does all "traditional" or "folk" music. There are places that film and music can go that we can't easily think of today. Try to come up with your own examples of what can be done. If you can't think of anything or if your ideas don't seem all that revolutionary or important, maybe you're not an artist.
Bing Loses More Money As Microsoft Chases Google 317
angry tapir writes "Microsoft posted strong results for the third quarter of its 2010 fiscal year, largely thanks to sales of Windows 7. But the company continues to suffer heavy losses in its Online Services Division [warning: obnoxious interstitial] as it tries to match Google in the online search and advertising market. ... The division's quarterly loss grew by 73 percent to $713 million, compared to a loss of $411 million during the same period last year."
Submission + - CSS "flexible box model" holy grail of layout? (mozilla.org)
jamienk writes: I don't know how I missed this, but a new method of layout has worked it's way into the CSS3 spec — it allows web developers to stack, columnize, and otherwise control our HTML boxes. You can easily make same-height columns, you can reverse or precisely control the order of elements, you can flex the boxes however you like. Looks complicated, but very very cool. It seems like they still have to work out a few edge cases. Firefox, Chrome, and Safari only so far. IE sucks.
Comment To get software truly correct... (Score 4, Insightful) 596
Since when does MS have the right to say "To get software truly correct..."? They KNOW how to make software secure?
Comment iPhone Games (Score 1) 268
My 3 year old son urges me to download games on the iPhone. I get all the free ones listed for each category and listed under "most popular." He and I agree that 99% of the games we see are some of the worst crap you can imagine. There are a few types:
* Stuff that requires a lot of downloading, rendering, entering passwords, connecting to various multiplayer networks, answering their questions, etc. It takes 5 minutes before the game starts, but by then, we've both lost patience.
* The games are obnoxiously crippled -- they offer only teases, or they constantly try to trick you into clicking to their ordering system, or their ads, or they suddenly stop in the middle of play. You feel interrupted, short-changed, and ripped off.
* The games themselves strike us as weirdly unimaginative. The graphics are retreds of crap I've been seeing since the 80s, or else they look like the standard manga stuff. They often have cliched, muzak-style "soundtracks" and have the game equivalents of a laugh-track: clapping, "awww"-ing, etc.
In sum: these games suck. How they can represent some sort of billion-dollar-industry is so baffling that I suspect a hyped bubble; I can't imagine masses of people paying for this junk. It's more fun to kill time by flipping a coin. It feels like there are no original artists in the game-making work, just "industry" hacks. Maybe one day game-making will somehow be more democratic like website creation and some will try to innovate.
German Killers Sue Wikipedia To Remove Their Names 859
Jason Levine writes "Wolfgang Werlé and Manfred Lauber killed a German actor in 1990. Now that they are out of prison, German law states that they can't be referred to by name in relation to the killings. Therefore, they have sued to get Wikipedia to remove their names from the Wikipedia article about the killings. The German edition of Wikipedia has already complied, but the English edition is citing US freedom of speech and a lack of presence in Germany as reasons why they don't need to remove the name. In a bit of irony, their lawyer e-mailed the NY Times: 'In the spirit of this discussion, I trust that you will not mention my clients' names in your article.'"
Comment Deserving (Score 0, Troll) 1006
When the lamb has struggled so long and hard to get food fight illness and brave the elements, don't you think it deserves to not be killed by the lion? WinZip, that succulent little lamb, will be eaten by us, the vicious software pirates, however we moralize. It is our nature.
AT&T's City-By-City Plan To Up Wireless Coverage 158
alphadogg writes "AT&T has created different mobile calling models for every major city in America as it tries to improve a network that has come under fire for poor performance as the data-friendly iPhone has proliferated, an executive said Thursday. Other carriers just use one nationwide calling model to plan for all cities, claimed CTO John Donovan, speaking at the Open Mobile Summit conference in San Francisco. The nation's second-largest mobile operator has had a hard time planning for bandwidth needs in the rapidly changing mobile world, Donovan said. AT&T has seen rapidly growing mobile data usage — and much criticism over its 3G coverage — as the exclusive iPhone carrier in the US. 'If a network is not fully loaded, it's hard to know exactly how much demand is out there,' Donovan said. 'You put all you can in the ground, and they eat it all up, and then you put more in there, and they eat it all up.'" The story notes that mobile data at AT&T has grown 4,932% over the last 3 years.
