Forgot your password?
typodupeerror

Comment: Re:Sloppy code (Score 1) 447

by billrp (#46723841) Attached to: Heartbleed Coder: Bug In OpenSSL Was an Honest Mistake
Here's where I see a pointer to an array on the stack getting passed around: In the openssl-1.0.1f release, in ssl/d1_pkt.c in the function dtls1_dispatch_alert(), at line 1731 "buf" is declared as a local array of chars. At line 1758 a call is made to do_dtls1_write() where the third argument is the address of this array is passed. In that function you'll see this pointer being assigned to a field to a heap alloc'd variable. But maybe this is dead code so it's never reached, but there are no comments.

Comment: Sloppy code (Score 5, Informative) 447

by billrp (#46721161) Attached to: Heartbleed Coder: Bug In OpenSSL Was an Honest Mistake
I glanced at some of the OpenSSL C code, in particular the new code that introduced this bug. No comments, no asserts, no cross-checks, stupid variable names (like "payload" for the size of the payload, "pl" for a pointer to the payload data), no suggestions for how to test this new feature (such as what if the request has the payload size field that's not the same as the actual payload). In an unrelated function I saw an array declared on the stack, getting filled up, and then a pointer to this array getting assigned to a field of an argument to this function, and then a return...

Comment: It seems like any user tracking can be a mood (Score 2) 79

by billrp (#46128181) Attached to: Pending Apple Patent For 'Inferring User Mood'
In a quick skim of the patent I didn't see a definition of mood, so can almost any user tracking be considered mood inference? Suppose I bought something yesterday at Amazon, then something similar today, now if Amazon raises the prices for me on similar items tomorrow - is that an infringement because Amazon detected that I'm in the "mood" to buy similar items?

Comment: Re:Is there wireless signal above 10,000 feet? (Score 2) 183

by billrp (#45487187) Attached to: FCC To Consider Cellphone Use On Planes
If you look at wireless signal strength maps like this http://www.datasync.com/~rsf1/cell-air.htm you will see there are gaps in vertical coverage - where there's no signal. So I don't see how even any special equipment in planes can work with such low signal levels. (The old airfones used a different communication connection)

Comment: So instead of WIndows, what's the choice? (Score 3, Insightful) 488

by billrp (#41986429) Attached to: The Empire In Decline?
There's really no alternative to Windows for most desktop and laptop usage, and there are "apps" to hide or disable the silly touch UI in Win so that the reasonable Win 7 UI can be used. Trying to use Linux on a laptop or desktop in a real work environment is a deadend, and Macs are a niche - so what's left?

+ - Should this be touted in an Apple iPhone 5 ad?->

Submitted by billrp
billrp (1530055) writes ""Hidden web code means hackers 'can wipe Samsung Galaxy S3'. Malicious hackers can hide a code in a web page that will trigger a full factory reset of Samsung’s best-selling Galaxy S3 smartphone, deleting contacts, photographs, music, apps and other valuable data, security researchers have discovered.""
Link to Original Source

New systems generate new problems.

Working...