Catch up on stories from the past week (and beyond) at the Slashdot story archive


Forgot your password?

Comment Re:brb banging head against wall (Score 2) 221

The world was a different place in the early days of NT 4

Arguably true... but only for the monolithic win 9x series releases, which aren't relevant to this topic since the NT kernel was developed independently within Microsoft by Dave Cutler from DEC. It was Microsoft's first truly modern operating system. As many comm enters above me have mentioned NT originally did have functions such as font rendering in userspace due to its heavy hardware abstraction. As the pending issues with 9x loomed however MS could read the writing, on the wall; porting 9x to Unicode (it was ANSI throughout, a separate "Layer for Unicode" had to be used to run Unicode programs on 9x machines) as well as supporting newer hardware (AHCI, USB, true Plug and Play) was going to be nearly impossible (the attempt was called Windows ME). So Microsoft began with NT4 to prep for the mass migration from 9x. Since the average consumer at the time didn't want to drop $3k for a workstation that would be able to run the NT model correctly, Microsoft made some compromises to the OS for the sake of speed.

No, it wasn't. NT4 was released in 1996. By that time, many people here on /. had been exploiting bugs like that for 10 or 20 years already. Granted, mostly for fun or to cheat in (single-player) games, but still...

NT4 already had a security architecture. There was a different place available (basically anywhere outside ring0) and it should have been put there, and it definitely should have been obvious to anyone with three grams of brains that stuff like this doesn't belong into ring0.

You however are making the assumption that everybody in Microsoft talks to each other. A most incorrect assumption. The reality is most likely that WinDiv (The division responsible for the OS) made the assumption that fonts would not be loaded from insecure sources, e.g. Word documents. The Office division however faced the problem of what do you do when some user uses a font that is not on another users system? So they made the decision to allow the embedding of fonts into the file format, along with a bunch of other really bad decisions in hindsight (remember the Melissa virus?) that would have been caught if they had had the same security reviews as WinDiv did. To compound the problem, Office used unpublished and most likely unhardened APIs (it probably still does in parts) that allowed it the capabilities to do things like on the fly font loading something that wasn't exposed to the rest of us until Windows 2000 (NT 5.0). My point being that at the time it WAS a safe decision as far as WinDiv was concerned. Should they have been a little more careful with those unpublished APIs... yes they should have, it would have prevented a lot of anti-trust issues, but they weren't. So here we are with yet another security bug.

Comment According to Sysinternals... (Score 1) 375

Firefox is using:

Image (executables): 95,084K

Mapped File: 56,892K

Sharable Pages: 133,100k

Heap: 25,100K

Stack: 46,080K

Private Data (explicit mallocs): 205,280K

Page Table: 1,372K

Unusable (leftover area of explicitly allocated pages that were LESS than 64K): 9,440K

Only 10M unusable isn't bad on windows... (start inevitable trolling here) as the memory manager only allocates pages in increments on 64k


Submission + - Taken Down Thanks to MPA (

dsavi writes: The International Music Score Library Project's website (A library of public domain scores and recordings of classical music) has been taken down by GoDaddy per a DMCA takedown request from the Music Publisher's Association. According to the MPA, a score of Rachmanioff's Bells is under copyright in the US, while according to IMSLP it is most definitely not. A DMCA counter-notice has been issued to GoDaddy by IMSLP, unfortunately there is a ten-day waiting period before the domain can be restored. While the domain is down, the music library can still be accessed at Anyone who is interested in helping with counter-suing the MPA can email imslproject at yahoo dot ca.

Comment Re:Money (Score 1) 758

I wish we had a score six to mod this too. As a .NET developer I agree that devs who only know .NET or Java or PHP etc. are a liability, we recently interviewed someone with extensive .NET experience, looked to be a good candidate too, and then we asked him about exception handling. He responded that anything that can throw should be wrapped in a try/catch block this answer was fine... although of concern. However what caused us to see other candidates was his reasoning "Because that's the way we've always done it where I work," a statement revealing how much he fundamentally didn't understand about what he was working with. While he was a perfectly fine technical coder he was under no circumstances an engineer. I think this is what the critically misguided CEO meant, however I still wouldn't work for someone that decides any technology is a liability, every technology has its purpose and to discount that as he has done is just idiotic

Submission + - Jack Thompson Threatens Gabe Newell Over HL2 Mod (

Anonymous Coward writes: "Disbarred Jack Thompson is threatening Gabe Newell over a user mod called School Shooter, calling it a murder simulator and Columbine mod.

"Speaking for myself alone (for now), you have until five o'clock pm Eastern standard time this Friday, March 18, 2011, to shut down this public safety hazard I predicted years ago this school massacre game would arrive. I hate being right all the time.""


Submission + - Ubisoft Pirates their own soundtrack (

kantos writes: Ubisoft, well known for their draconian DRM recently released a 'Digital Deluxe' edition of their game 'Assassin's Creed Brotherhood' the edition comes with a soundtrack encoded by 'arsa13' and appears to come straight from a torrent.

Comment Re:Makes me glad I quit Windows years ago (Score 3, Interesting) 241

Honestly.... this argument is stupid, Group Policy arose because on Windows everything is a COM object with an ACL and it was neigh impossible to manage to provide even a modicum of security without some sort of system policy at a high level. Linux of course doesn't need this because it operates in a fundamentally different manner where everything is a file and the file system permissions (group based) determine if a is executable or not. Thus the Linux kernel doesn't need to know what specific COM+ handler needs to be loaded, but rather if a file is a supported executable format or not, and what to do from there. Both systems have fundamental advantages, Linux is deceptively simple leading to a power on the command line that is daunting for many users. Whereas Windows can be easy worked with to extend using COM and the registry (The registry was never designed to hold most of the crap that people shove in there... it was designed to be a central repository of information for COM objects).

If anything this model shows MS's lack of foresight into the importance of networking and their focus on the single standalone box.

Comment Re:Option? (Score 1) 340

Sadly this is due to COM+ registration, every single file type that has a program association (including exe in which case the association is the loader) is registered to tell windows what to do with it.

.NET CLR takes care of some of these issues... but doesn't sadly change the overall system. The fact that so few devs take advantage of application manifests to lock down their programs and use Side by Side to specify the precise dependencies allows virus writers to simply bypass the OS and aim for third party apps

Submission + - Recovering a drive on the cheap

kantos writes: I have a hard drive that that as best I can tell is a brick... I figured that I would ask slashdot before I turned the platters into sun catchers for my patio.

The drive in question is a WD1000BB-00CAA0 and this is what shows up in syslog on boot: Feb 2 05:54:56 Jester kernel: [ 115.982684] ata1.00: BMDMA stat 0x25 Feb 2 05:54:56 Jester kernel: [ 115.982691] ata1.00: failed command: READ DMA Feb 2 05:54:56 Jester kernel: [ 115.982706] ata1.00: cmd c8/00:08:00:00:00/00: 00:00:00:00/e0 tag 0 dma 4096 in Feb 2 05:54:56 Jester kernel: [ 115.982710] res 51/10:08:00:00:00/00: 00:00:00:00/e0 Emask 0x81 (invalid argument) Feb 2 05:54:56 Jester kernel: [ 115.982717] ata1.00: status: { DRDY ERR } Feb 2 05:54:56 Jester kernel: [ 115.982723] ata1.00: error: { IDNF } Feb 2 05:54:56 Jester kernel: [ 116.041376] ata1.00: configured for UDMA/100 Feb 2 05:54:56 Jester kernel: [ 116.041407] ata1: EH complete Feb 2 05:54:56 Jester kernel: [ 116.042651] ata1.00: exception Emask 0x0 SAct 0x0 SErr 0x0 action 0x0 Feb 2 05:54:56 Jester kernel: [ 116.042658] ata1.00: BMDMA stat 0x25 Feb 2 05:54:56 Jester kernel: [ 116.042665] ata1.00: failed command: READ DMA Feb 2 05:54:56 Jester kernel: [ 116.042680] ata1.00: cmd c8/00:08:00:00:00/00: 00:00:00:00/e0 tag 0 dma 4096 in Feb 2 05:54:56 Jester kernel: [ 116.042684] res 51/10:08:00:00:00/00: 00:00:00:00/e0 Emask 0x81 (invalid argument) Feb 2 05:54:56 Jester kernel: [ 116.042691] ata1.00: status: { DRDY ERR } Feb 2 05:54:56 Jester kernel: [ 116.042697] ata1.00: error: { IDNF } Feb 2 05:54:56 Jester kernel: [ 116.102657] ata1.00: configured for UDMA/100 Feb 2 05:54:56 Jester kernel: [ 116.102687] sd 0:0:0:0: [sda] Result: hostbyte =DID_OK driverbyte=DRIVER_SENSE Feb 2 05:54:56 Jester kernel: [ 116.102696] sd 0:0:0:0: [sda] Sense Key : Abor ted Command [current] [descriptor] Feb 2 05:54:56 Jester kernel: [ 116.102707] Descriptor sense data with sense d escriptors (in hex): Feb 2 05:54:56 Jester kernel: [ 116.102712] 72 0b 14 00 00 00 00 0c 00 0a 80 00 00 00 00 00 Feb 2 05:54:56 Jester kernel: [ 116.102735] 00 00 00 00 Feb 2 05:54:56 Jester kernel: [ 116.102744] sd 0:0:0:0: [sda] Add. Sense: Reco rded entity not found Feb 2 05:54:56 Jester kernel: [ 116.102754] sd 0:0:0:0: [sda] CDB: Read(10): 2 8 00 00 00 00 00 00 00 08 00 Feb 2 05:54:56 Jester kernel: [ 116.102774] end_request: I/O error, dev sda, s ector 0 Feb 2 05:54:56 Jester kernel: [ 116.102784] Buffer I/O error on device sda, lo gical block 0 Feb 2 05:54:56 Jester kernel: [ 116.102843] ata1: EH complete Feb 2 05:54:56 Jester kernel: [ 116.166764] type=1400 audit(1296651296.883:23)

So slashdot.... is this drive beyond all hope other than a data recovery specialists jig, or is there some way I can get at least something off this drive?

Submission + - Sony's New root kit in FW 3.56 (

JonChance writes: Vagabundo posts:
Apparently, examination of the OFW has found a new feature that will allow Sony to download and run code when you login to PSN. The code they can run is obviously to check for CFW or whatever, but the code could change to check for anything really.

And with the current state of PS3 security there is the possibility that others might be able to run their code on your PS3 without your knowledge.

I don't run CFW and I'm pretty pissed about this. What they are doing might be illegal in the EU.

Feed Engadget: Android Honeycomb port for Nook Color gets graphics acceleration, first demo vid (

Can't wait until February 2nd to see more of Android 3.0 in action? That's not a problem, as today we've got a whole 129 seconds of video showing Google's latest mobile software doing its thing on the Nook Color. The OS was ported to B&N's tablet on Friday, when we were promised further work would be taking place over the weekend to enable hardware acceleration of the GUI, and what do you know, that goal has been achieved with plenty of Sunday to spare! Most core functionality is still not available, but the delicious Honeycomb interface is very much in effect. Jump past the break for the eye candy feast.

[Thanks, Jules]

Continue reading Android Honeycomb port for Nook Color gets graphics acceleration, first demo video

Android Honeycomb port for Nook Color gets graphics acceleration, first demo video originally appeared on Engadget on Sun, 30 Jan 2011 07:53:00 EDT. Please see our terms for use of feeds.

Permalink | xda-developers |Email this|Comments
The Courts

Submission + - FCC Wants Net Neutrality Suits Stopped

adeelarshad82 writes: The FCC moved to dismiss the net neutraliy challenges filed by MetroPCS and Verizon, claiming they were "filed prematurely." Verizon and MetroPCS have both sued the FCC, arguing that the commission did not have the authority to hand down its December net neutrality rules. The FCC maintains that it does indeed have the right to regulate broadband, thanks to provisions in the Communications Act.

Comment For me.... (Score 1) 1

I frequently use C#/.NET as such XML is the fastest and easiest for me. However I'm a firm believer in using what's best for the project, however I shy away from proprietary formats because they are hard to recover data from later.

Submission + - R.I.P. Bill Zeller (

kantos writes: Bill Zeller a programmer who on many occasions contributed to Gawker media sites Gizmodo and Lifehacker, took his life two days ago. His last agonizing words can be found HERE

Slashdot Top Deals

A verbal contract isn't worth the paper it's written on. -- Samuel Goldwyn