|
open bugs moreover...
Caveat Emptor.
"Progress doesn't come from early risers – progress is made by lazy men looking for easier ways to do things." Lazarus Long
|
|
|
|
|
Free software is not the same as open-source software. However, open-source software implies that it's free because you have the source code and can modify it to your heart's content. If you're doing it for yourself, you don't have to share it, but if you DO share (or distribute) it, you also have to make your source freely available.
".45 ACP - because shooting twice is just silly" - JSOP, 2010
-----
You can never have too much ammo - unless you're swimming, or on fire. - JSOP, 2010
-----
When you pry the gun from my cold dead hands, be careful - the barrel will be very hot. - JSOP, 2013
|
|
|
|
|
The article said: There’s a war going on.
... And I'll happily continue to sleep through it.
I wanna be a eunuchs developer! Pass me a bread knife!
|
|
|
|
|
On small scales, astronomers understand how stars are born. But if you take a step back, it turns out there are still some big gaps. On a large scale — on a galactic scale — how does this whole star-making thing work? They're so cute when they're young
|
|
|
|
|
There's another of those missing variables of the Drake-equation 
Bastard Programmer from Hell 
If you can't read my code, try converting it here[^]
"If you just follow the bacon Eddy, wherever it leads you, then you won't have to think about politics." -- Some Bell.
|
|
|
|
|
Oh, for f***'s sake, don't get me started on the bollocks that come out of the mouths of astronomers!
I wanna be a eunuchs developer! Pass me a bread knife!
|
|
|
|
|
Monitoring systems were looking for attacks using technique popularized by the NSA. Wow, that anti-malware code does something?
|
|
|
|
|
I think I was on Windows 2000 or Windows XP circa 2002-2004 the first time I tried to programmatically open C:\Windows\calc.exe with the CREATE_SUSPENDED flag unmap the section view and overwrite it with the contents of what was in c:\Windows\notepad.exe and ... it worked. It was harmless and funny and I laughed. I did not discover this... I learned it was possible in an old netsec IRC channel nearly 20 years ago. I am not sure who discovered it.. but I think it may have been Joachim Bauch around 2003, 2004. I'm not really sure, it was a really long time ago.
Anyway it just seems so strange that nearly 20 years later this is still possible. I can't even think of a legitimate reason why this should be allowed. Especially for signed executables. I am not even sure if the Huawei engineer knew this was possible. This is probably what he was thinking:
- Only System, Administrator or TrustedInstaller group can write to the protected path C:\Program Files\
- The executable is code-signed and has a secure ACL owned by TrustedInstaller.
- If we verify the path from IRP_MJ_CREATE no security boundary can be crossed.
Just like probably 75% of the software engineers here on codeproject he might not have known about the attack vector. In fact even if they would have verified the executable signature the attack would still work. The resource section has already been mapped by the NT loader so initial code-signing checks would pass.
Here is part of the problem: Sites like codeproject want to be responsible. The moderators do not allow the dissemination of any code they deem malicious. Seems like the right thing to do... right? The problem with that philosophy is that 'good-guy' engineers are being less exposed to software security issues.
Is overwriting all of the instructions or replacing entire code sections in an executable malicious? Hell yes. Should programming sites prevent programmers from learning how to do these things? I personally think it's better to allow malicious code to be disseminated as long as it's not a zero-day. This helps software engineers learn what to guard against.
Best Wishes,
-David Delaune
|
|
|
|
|
well microsoft are forever fixing bugs...besides i wonder how adobe managed long time back to make flash player a part of the os...
Caveat Emptor.
"Progress doesn't come from early risers – progress is made by lazy men looking for easier ways to do things." Lazarus Long
|
|
|
|
|
Randor wrote: I personally think it's better to allow malicious code to be disseminated as long as it's not a zero-day. This helps software engineers learn what to guard against.
That's why I know of Lena151!
|
|
|
|
|
A number theorist with programming prowess has found a solution to 33 = x^3 + y^3 + z^3, a much-studied equation that went unsolved for 64 years. Well, I'll sleep better tonight
|
|
|
|
|
64 years to figure out the question to the wrong answer.
Gotta give 'em points for tenacity, though.
I wanna be a eunuchs developer! Pass me a bread knife!
|
|
|
|
|
Quote: With 33 out of the way, the only one left is 42.
Now they just need to find The Answer to the Ultimate Question of Life, the Universe and Everything!
#SupportHeForShe
Government can give you nothing but what it takes from somebody else. A government big enough to give you everything you want is big enough to take everything you've got, including your freedom.-Ezra Taft Benson
You must accept 1 of 2 basic premises: Either we are alone in the universe or we are not alone. Either way, the implications are staggering!-Wernher von Braun
|
|
|
|
|
That's easy... 42! 
"When you are dead, you won't even know that you are dead. It's a pain only felt by others; same thing when you are stupid."
Ignorant - An individual without knowledge, but is willing to learn.
Stupid - An individual without knowledge and is incapable of learning.
Idiot - An individual without knowledge and allows social media to do the thinking for them.
modified 19-Nov-21 21:01pm.
|
|
|
|
|
Is there a solution for k = 2?
I can't find one.
Whenever you find yourself on the side of the majority, it is time to pause and reflect. - Mark Twain
|
|
|
|
|
1^3 + 1^3 + (-1)^3
 oops, caffeine depletion
Software rusts. Simon Stephenson, ca 1994. So does this signature. me, 2012
modified 27-Mar-19 7:48am.
|
|
|
|
|
3^2 + (-2)^3 + 1^3
"The greatest enemy of knowledge is not ignorance, it is the illusion of knowledge". Stephen Hawking, 1942- 2018
|
|
|
|
|
Needs to be x^3 + y^3 + z^3
Whenever you find yourself on the side of the majority, it is time to pause and reflect. - Mark Twain
|
|
|
|
|
I have to drink more...
7^3 + (-6)^3 + (-5)^3
"The greatest enemy of knowledge is not ignorance, it is the illusion of knowledge". Stephen Hawking, 1942- 2018
modified 27-Mar-19 8:40am.
|
|
|
|
|
73 + (-6)3 + (-5)3 = 2
EDIT: ARRGH - beaten by Peter Kornfeld
Freedom is the freedom to say that two plus two make four. If that is granted, all else follows.
-- 6079 Smith W.
|
|
|
|
|
Beaten by both of you!
I wrote done all the cubes up to 10 and got one wrong (which was 6 so it rather scuttled me) - and didn't quite get round to writing a program to work it out for me.
Must remember that years of computing have sapped my powers of mental arithmetic!
Points shared between the two of you, I think (unless you fancy having a shoot-out with 42 as the target  ).
(Edit)Computer has found some more:
2 = -24^3(-13824) + -47^3(-103823) + 49^3(117649)
2 = -54^3(-157464) + -161^3(-4173281) + 163^3(4330747)
2 = -96^3(-884736) + 385^3(57066625) + -383^3(-56181887)
2 = -150^3(-3375000) + 751^3(423564751) + -749^3(-420189749)
Now we just need to work out why it's a remotely useful thing to know about a number ...
Whenever you find yourself on the side of the majority, it is time to pause and reflect. - Mark Twain
modified 27-Mar-19 10:22am.
|
|
|
|
|
|
That's rather cool although it would be nice if it showed what ranges for x, y and z it was testing on.
As a non-mathematician I must confess to being a bit lost by the time it gets to implied derivatives and the hieroglyphics that go with them, but that's very much my problem.
Whenever you find yourself on the side of the majority, it is time to pause and reflect. - Mark Twain
|
|
|
|
|
In the paper, professors talk about how recent technological advancements have been biased towards automation, thereby, changing the focus from creating new tasks to productively employ labor. Beware AI from the wrong side of the server rack
|
|
|
|
|
To summarize; professors from MIT and Boston University struggle to justify why they have jobs.
|
|
|
|
General 
News 
Suggestion 
Question 
Bug 
Answer 
Joke 
Praise 
Rant 
Admin 
Submit an article or tip
