Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!


Forgot your password?

Comment Re:Yeah, yeah, yeah. (Score 2) 156

The designers of Java tried to do two things regarding security:
1. allow running untrusted code (applets) without letting it break out of its sandbox
2. prevent unsafe memory access by bounds checking, type checking on casts, no explicit deallocation

#2 is a prerequisite for #1, since if code can write to arbitrary memory locations then it can take over the Java runtime process. However, #1 is not a prerequisite for #2. Java has in practice done poorly at meeting goal #1 but has been quite solid at #2.

Comment Re:wow, McAfee has fallen to new lows! (Score 1) 196

Finding a security vulnerability is not "making viruses". Would you prefer that this be first discovered by someone who's not so nice as to disclose their findings, so that insulin pumps just start mysteriously "malfunctioning" and killing patients?

Regardless of what you may think of the quality of McAfee's software, they're not being anything besides white-hat here.

Comment Re:McAfee for insulin pumps next (Score 1) 196

That could have been believable back in the DOS days, when most viruses seemed to have no real purpose besides amusement, but today the vast majority of malware is written for profit. Selling antivirus software would be counterproductive if you're making a lot more money from owning a botnet and the antivirus would eat into that.

Comment Re:They have a right to be angry ... (Score 4, Insightful) 151

So-called "democracy" as it exists in countries like the US is a complete sham. The government can act against the public interest on literally every single issue and still stay in power: any individual is only going to be knowledgeable about a small fraction of what the government does, and a majority of people will just take the media's word for it that they're doing right on most everything else.

The only issues on which the public actually has any influence are those which our rulers recognize to be of relatively minor importance, so the parties can put on a show of virulently disagreeing on them, which makes people feel like they're actually making a difference when they throw out corporate-owned party A and put into power corporate-owned party B. On the most important issues, there's always bipartisan agreement on the wrong side.

Comment Re:Yay! (Score 4, Insightful) 426

I used to think of Flash as a CPU hog, but it pales in comparison to Javascript/HTML5. Even simple 2D games in Javascript will run at about 3 frames per second despite constantly using 100% CPU, and they often hog memory too (which Flash has never been all that bad about in my experience, unless you leave a dozen YouTube tabs open or something).

Annoying ads won't go away just because Flash does; they'll move to HTML5 and will be just as annoying, more resource hungry, and harder to block (disabling Javascript everywhere makes the Web unusable; a whitelist system like NoScript is going to be a necessity).

Comment Re:WebM (Score 5, Informative) 320

WebM supporters: Free Software Foundation, Participatory Culture Foundation, Xiph, Android, Codecian, Collabora, CoreCodec, Digital Rapids, FFmpeg, Adobe Flash Player, Flumotion Services, Google Chrome, Grab Networks, iLink, Inlet Technologies, Oracle Java, Matroska, Moovida, Mozilla, ooVoo, Opera, Oracle, Harmonic Rhozet, Skype, SightSpeed, Sorenson, Telestream, Tixeo, Ucentrik, VideoLAN, Wildform, Winamp Media Player, Wowza Media Server, XBMC Media Center, Allwinner Tech, AMD, Anyka, ARM, Broadcom, Chinachip, Chips&Media, C2 Microsystems, DSP Group, Freescale, GeneralPlus, Hisilicon, Hydra Control Freak, Imagination Technologies, Shanghai InfoTM Microelectronics, Leadcore Technology, Logitech, Marvell, MIPS, MStar Semiconductor, nVidia, Qualcomm, Rockchip Microelectronics, RayComm Group, SEUIC, Socle Technology Corp., ST-Ericsson, Texas Instruments, Verisilicon, Videantis, ViewCast, ZiiLABS, ZTE Corporation, Anevia, Brightcove, Delve Networks, Encoding.com, EntropyWave, Flumotion Services, HD Cloud, HeyWatch.com, Kaltura, Media Core, MetaCDN, ooyala, Panda, Panvidea, Sorenson 360, thePlatform, VideoRX.com, VMIX, YouTube, Zencoder

Comment Re:Ok, I give up (Score 1) 232

And worse, to supposedly "protect" the programmer from himself (pointers are evil, GAHHHHH)? If the developer does not know how to make a good program in one language, it will still not know how to do in any other language.

It's not about "protecting the programmer from himself", it's about protecting the users. Practically nobody can write secure code in C or C++, where a very significant portion of bugs allow an attacker to run arbitrary code.

Slashdot Top Deals

"They that can give up essential liberty to obtain a little temporary saftey deserve neither liberty not saftey." -- Benjamin Franklin, 1759