Persian: My arm!and
Stelios: It's not yours, anymore.
Persian General Slaughtered: Spartans, lay down your weapons.Of course, it's better in the original Greek: Molon labe!
[a spear flies out and impales him through the chest, and he falls out of the saddle, dead]
King Leonidas: Persians! Come and get them!
"I could make that."And Boy, Howdy, can he ever. This week's deli special: Pig Candy Sandwich. As Bruce would say, it's wicked good*.
Turkey slicesSlap it all between a couple slices of bread, and you're in (ahem) hog heaven. I'm sure that there are things not improved with bacon, but none of them are found at the deli counter.
Stuffing
Cranberry-Orange relish
Pig Candy
The European Commission has called out for help on how it can "put Europe into the lead of the transition to Web 3.0". It doesn't seem sure what web 3.0 is or could be in the future - it just knows it wants it.Probably mostly harmless, whatever it is. The smart money is betting that security isn't an afterthought - it isn't though of at all. But I digress. The Reg has better snark than I do, anyway:
Way, way, waaay back in 2005 when we were all working out what web 2.0 was made of, El Reg ran its own consultation exercise, which determined that mash-up, social networks and wikis are made of badgers paws, stardust and otters tears. And "a great big shit sandwich".Pretty much sums up Internet Security, come to think of it.
Dear Sir, I'm writing to complain about that sketch about people failing out of a high building. I have worked all my life in such a building and have never once... WWAAAAAAAAAAAAAHHHHHHHH!!!!!!!!!!!
That's awfuly sweet, but I'm already married. Thanks, though!
Well, squeezing the trigger works for me. Remember, it's squeeze, not pull. Always remember the 4 Rules, and if your "boom" is successful, you'll want ear protection.teletubbies shooting, shoot time for teletubbies, etc
I see so many of this sort of thing, that I assumed that I was the number 1 Google hit for this. Pretty disturbing. I find, to my relief, that I'm not even on the first page.ur doing it rong
That said, you should be ashamed of yourself. I say that as someone who's actually shot a Telletubby.
Well, you're here, aren't you?winchester 30 30 1894 ranger
Mmmmmm. Lever Gun!
Judas Iscariot was nothing but a low down, premature congressman.
"Why go out for hamburger when you have a steak at home?"Maybe most people wouldn't act like that given the same circumstances, but Hollywood is about dreams, isn't it? I'll keep this one, thank you very much.
Like, oh, Bob Weir and Mickey Hart of the Grateful Dead playing at a political fundraiser for Al Gore. Yeah, Al Gore. The political genius behind the PMRC. One can only hope that somewhere, Frank Zappa was kicking Jerry Garcia in the ass...RTWT.
I NEED TO ASK YOU TO SUPPORT AN URGENT SECRET BUSINESS RELATIONSHIP WITH A TRANSFER OF FUNDS OF GREAT MAGNITUDE.I can't remember an example that targeted more people, or for more money. Stay safe out there.
I AM MINISTRY OF THE TREASURY OF THE REPUBLIC OF AMERICA. MY COUNTRY HAS HAD CRISIS THAT HAS CAUSED THE NEED FOR LARGE TRANSFER OF FUNDS OF 800 BILLION DOLLARS US. IF YOU WOULD ASSIST ME IN THIS TRANSFER, IT WOULD BE MOST PROFITABLE TO YOU.
I AM WORKING WITH MR. PHIL GRAM, LOBBYIST FOR UBS, WHO WILL BE MY REPLACEMENT AS MINISTRY OF THE TREASURY IN JANUARY. AS A SENATOR, YOU MAY KNOW HIM AS THE LEADER OF THE AMERICAN BANKING DEREGULATION MOVEMENT IN THE 1990S. THIS TRANSACTIN IS 100% SAFE.
THIS IS A MATTER OF GREAT URGENCY. WE NEED A BLANK CHECK. WE NEED THE FUNDS AS QUICKLY AS POSSIBLE. WE CANNOT DIRECTLY TRANSFER THESE FUNDS IN THE NAMES OF OUR CLOSE FRIENDS BECAUSE WE ARE CONSTANTLY UNDER SURVEILLANCE. MY FAMILY LAWYER ADVISED ME THAT I SHOULD LOOK FOR A RELIABLE AND TRUSTWORTHY PERSON WHO WILL ACT AS A NEXT OF KIN SO THE FUNDS CAN BE TRANSFERRED.
PLEASE REPLY WITH ALL OF YOUR BANK ACCOUNT, IRA AND COLLEGE FUND ACCOUNT NUMBERS AND THOSE OF YOUR CHILDREN AND GRANDCHILDREN TO WALLSTREETBAILOUT@TREASURY.GOV
SO THAT WE MAY TRANSFER YOUR COMMISSION FOR THIS TRANSACTION. AFTER I RECEIVE THAT INFORMATION, I WILL RESPOND WITH DETAILED INFORMATION ABOUT SAFEGUARDS THAT WILL BE USED TO PROTECT THE FUNDS.
YOURS FAITHFULLY MINISTER OF TREASURY PAULSON
The Declaration of IndependenceWhile there's no CMT video for this, here's a Youtube with the lyrics.
Think I could tell you that first sentence
But then I’m lost
I can't begin to count the theories
I've had pounded in my head
That I forgot
I don't remember all that Spanish
Or the Gettysburg address
But there is one speech from high school
I'll never forget
(Chorus)
Come on in boy sit on down
And tell me about yourself
So you like my daughter do you now?
Yeah we think she's something else
She's her daddy's girl
Her momma's world
She deserves respect
That’s what she'll get
Ain’t it son?
Hey y'all run along and have some fun
I'll see you when you get back
Bet I’ll be up all night
Still cleanin' this gun
Well now that I’m a father
I’m scared to death one day my daughter
Is gonna find
That teenage boy I used to be
That seems to have just one thing on his mind
She’s growin' up so fast
It won't be long before
I’ll have to put the fear of god into
Some kid at the door
(Chorus)
Come on in boy sit on down
And tell me about yourself
So you like my daughter do you now?
Yeah we think she's something else
She's her daddy's girl
Her momma's world
She deserves respect
That’s what she'll get
Now ain't it son?
Y’all go out and have some fun
I'll see you when you get back
Probably be up all night
Still cleanin' this gun
Now it's all for show
Ain’t nobody gonna get hurt
It’s just a daddy thing
And hey, believe me, man it works
(Chorus)
Come on in boy sit on down
And tell me about yourself
So you like my daughter do you now?
Yeah we think she's something else
She's her daddy's girl
Her momma's world
She deserves respect
That’s what she'll get
Now ain't it son?
Y’all run along and have a little fun
I'll see you when you get back
Probably be up all night
Still cleanin' this gun
Son, now y'all buckle up and have her back by te- let's say about nine...thirty.
Drive safe.
In a nutshell, it’s when you visit a malicious website and the attacker is able to take control of the links that your browser visits. The problem affects all of the different browsers except something like lynx. The issue has nothing to do with JavaScript so turning JavaScript off in your browser will not help you. It’s a fundamental flaw with the way your browser works and cannot be fixed with a simple patch. With this exploit, once you’re on the malicious web page, the bad guy can make you click on any link, any button, or anything on the page without you even seeing it happening.The biggest concern is when you visit sites like Paypal, your online bank, or broker. The vulnerability allows the attacker to modify parts of the web page you view, filling out forms without your knowlege. This includes overwriting buttons (like "Submit") to do something different. Slashdot has a good discussion with the following comment that does a good job of summing up the situation:
Imagine you're in a car showroom looking at a super-expensive car. It looks great and price is pretty good. So you tell the dealer you'll take the car. Except when you get in the car, you realize that someone had put a cardboard cutout in front of the car. The car you got in was actually an economy vehicle. Except now it's too late to undo your purchase!Yuck. So, what do you do?
Here's another one: Let's say you've got a bunch of buttons on your dash. Most of them control the radio, but one controls the ejection seat. While you're away, some neighbor kids from MIT think it's funny to come over and rewire the buttons on your radio. Now when you press the button to turn on your radio, you actually get ejected from the car.
... an attacker can use his control over the FEP server to insert a generic electric grid malware...in order to cause harm to the gridIt's pretty surprising how vulnerable the power grid is to someone who wanted to start taking it apart, bit by bit. The grid was designed to be robust against storms and natural disasters, and is very robust indeed. Against single impact events. An attacker who exploited this SCADA vulnerability to take out an important point in the grid would stress the entire grid, as it tried to route around the failure. If the attacker took out another key point, and possibly another, the grid might collapse.
The advisory comes as concern mounts about the safety of software used to run gasoline refineries, manufacturing plants and other industrial facilities. In June, a now-patched vulnerability in CitectSCADA potentially exposed plants' critical operations to outsiders or disgruntled employees. Law makers on both sides of the Atlantic have warned that lax security may make critical infrastructure vulnerable to saboteurs or terrorists.Forget nukes. If the Mullahs want good deterent, this is a lot cheaper.
The sights are simply outstanding. If you've never fired one, the square front sight is white on a black background. The rear sights are black, highlighted in white. The front and back sights line up better than maybe anything I've ever fired, once you get used to them. I have no idea how well they would work in tactical situations (presumably very well indeed), but there was nothing to complain about on the range. Boy, howdy, not at all.
So, everything is vulnerable. Attackers can pretty much get anywhere they want to , if they're patient and really want to - the smart ones can, at least. The rest of us face a never ending Hobbesian Choice of patch and pray.Computers in Lima, Peru are no more secure than computers in Poughkeepsie. So why are there so many infected ("bot") computers here?
Follow-up questions revealed that the students seemed to find any dialog box a distraction from their assigned task; nearly half said that all they cared about was getting rid of these dialogs. The results suggest that a familiarity with Windows dialogs have bred a degree of contempt and that users simply don't care what the boxes say anymore.Well, yeah. Especially when they get security popups like this:
"The instruction at '0x77f41d24 referenced memory at '0x595c2a4c.' The memory could not be 'read.' Click OK to terminate program."What the heck does this mean? So what folks think is "I remember that time I clicked 'No' and my browser wouldn't run any more. I think I'll click 'Yes'". Even the article, written by security geeks for security geeks, recognizes this. They have a popup that might be an improvement:
"The instruction at '0x77f41d24 referenced memory at '0x595c2a4c.' The memory could not be 'read.' Ted at Borepatch thinks that this is no big deal. Do you want to do what he did, or something else?"Actually, if you replace "Ted at Borepatch" with "Best Buy's Geek Squad", this might work pretty well, as long as you don't overwhelm the user with security popups, like Vista:
When you file your taxes online, you want to be sure that the Web site you visit — www.irs.gov — is operated by the Internal Revenue Service and not a scam artist.Well, yeah.
This looks like the sort of toy that Norman Podhoretz or Bill Kristol would buy for their kids.Not that there's anything wrong with that, of course. And just who is in ur dollhouse?
Like most little girls I longed for a Barbie doll, but unlike most little girls, I never got one. This was because my mom, a radical feminist, felt that they were sexist.That sound you hear? Radical feminist's heads coming off, like that Fembot scene in Austin Powers.
Mind if I sit down?Bitter and clingy, yessiree.
Can I buy you a round?
Haven't seen your face before
Are you new in town?
It's the same old line
Oh every time
Are you here alone?
Can I take you home?
Now every woman sees
With every "pretty please"
There's a pair of lyin' eyes
And a set of keys
He says come be a star
In the back seat of my car
Oh but baby slow down
You're goin' way too far
Let me make it clear
To you my dear
If you're not
In it for love (baby)
If you're not
Willin' to give it all you got
If you're not in it for life
If you're not in it for love
Let me make it clear
To you my dear
If you're not in it for love
I'm outta here!
Babe I can change your world
Make you a cover girl
Yeah you could be a beauty queen
In a magazine
Now tell me, what's your sign?
Why always the same old line?
I'll be number 409
If you change your mind
Let me make it clear
To you my dear
If you're not
In it for love (baby)
If you're not
Willin' to give it all you got
If you're not in it for life
If you're not in it for love
Let me make it clear
To you my dear
If you're not in it for love
I'm outta here!
(repeat chorus)
If you're not in it for life
If you're not in it for love
I'm outta here!
On September 9th, security teams met, reviewed the updates, set priorities and assigned resources. Remember that unlike other vendors, Apple did not provide any advanced notification on timing or the magnitude of the updates. This update caught everyone off guard. Then again, without notice, security teams were brought back to the meeting room to discuss the updates on September 12th (repeat drill above). Then yes, you guessed it, same story again on September 15th and again on the16th. Who knows, maybe by the time this is published, there will be another update?Microsoft thought long and hard before shifting all security patch releases to "Patch Tuesday." Apple is still releasing willy-nilly, which makes it very hard for corporate IT staffs to plan their update workload. As Apple finds itself releasing almost as many security patches as Microsoft (maybe more this month), it's starting to look like it's more expensive to manage OS X than Windows.
Barack Obama, September 2007:Biden Calls Paying Higher Taxes A Patriotic Act.
There’s no way for the Democrats to cope with this as long as the echo chamber they’ve constructed for themselves keeps reassuring them that the war is lost, and if it’s not looking lost right now it’s unwinnable, and if by some freaky fluke in the dialectic of history we win it voters will…uh, yeah, they’ll understand that we shouldn’t have fought it and surely, surely the ultimate American defeat that will make us look wise and prescient will be secured when the Iraqis oblige us by fucking up badly (this is the stage Obama is at right now).The nature of the echo chamber has been discussed all over the place, but most interestingly at Engram Backtalk. What's interesting there is numeric analysis of the leftwards bias in the media:
That’s the trouble with cocooning. There always comes a point at which reality stops cooperating and you have to deal with what is rather than what you wish were so — the surge, and the Sarahcuda. That’s what happening to the Democrats. And they’re not coping well, not at all. They don’t have a lot of time left to recover before voting day.So the super size cranium liberals are damaging the Democratic party. The question that Raymond doesn't ask, but needs to be asked, is at what point is society better off without them?
State support of public universities has been declining, forcing many public universities to seek private support.Add the fact that the Academy seems to be pricing itself out of the market, and there's a Bad Moon Rising. While support for hard sciences, engineering, and (maybe) economics remains strong, how long should the intellectual class expect support for postmodern theory, ethnic studies, and the rest?
This is pretty boring, but raises some interesting questions:The cache of stolen data contains five screenshots from Palin's account, including the text of an e-mail exchange with Alaska Lt. Gov. Sean Parnell about his campaign for Congress.
Another screenshot shows Palin's inbox and a third shows the text of an e-mail from Amy McCorkell, whom Palin appointed to the Governor's Advisory Board on Alcoholism and Drug Abuse in 2007.
Jeremiah Grossman and Robert "RSnake" Hansen say they planned to demonstrate serious "clickjacking" vulnerabilities involving every major browser during a presentation scheduled for September 24 at OWASP's AppSec 2008 Conference in New York. They canceled their talk at the request of Adobe, one of the developers whose software is vulnerable to the weakness, they say.This is a big, big deal in the security field, for several reasons:
The pair planned to disclose flaws in the architecture of all of today's web browsers that allow malicious websites to control the links visitors click on. Once lured to a fraudulent address, a user may think he's clicking on a link that leads to Google - when in fact it takes him to a money transfer page, a banner add that's part of a click-fraud scheme, or any other destination the attacker chooses.While this perhaps could be fixed on the web server (as opposed to the browser), this is extremely unlikely to happen. First, it might not be possible. Second, the web server's owner would have to know about the problem in their HTML - most won't. Lastly, the web server's owner would have to care, and unfortunately, that's not a bet I'd care to risk my personal information on.
Both my regular readers will remember the discussion of the Boston MBTA fiasco.Hansen struck a more conciliatory tone in discussing the cancellation.
"I must stress, this is not an evil 'the man is trying to keep us hackers down' situation, a la Michael Lynn vs. Cisco, or Chris Paget vs. HID, or MIT vs. MBTA and so on," he wrote, referring to some of the more visible examples of security researchers being forcibly muzzled.
Efforts to reduce the number of collisions - which cause thousands of human injuries and some 200 deaths a year - haven't been very successful. ... Some experts believe that the only real solution is wildlife overpasses and underpasses to get animals, from salamanders to grizzly bears, safely across the roads.Hmmm, let's see. Lots of people hurt, some killed by a wildlife problem. The solution according to "some experts"? Spend a ton of the taxpayer's dough on animal bridges.
Mmm ... Lever gun!The flaws in ImageIO, QuickDraw Manager, VideoConference and ATS could lend themselves to hostile code injection. Meanwhile security bugs in libresolv could allow DNS cache poisoning, Apple's security notice explains.Hostile code injection has become one of the preferred techniques that the Bad Guys use to whack you. And while Apple likes to snark at Microsoft about security, they are starting to get a reputation for being slow to update. They only now fixed the DNS-flaw-from-hell problem that I discussed back in July.
One of the women at the office wanted to go shooting, so we went.
Once gain, lots of shooty fun, and excellent grouping for a first outing. By this time we'd shot enough to have the discussion about not worrying so much about the x-ring, just keep the groupings small.
You Americans. Guns are bad, mkay? Palin is hockey mom, get it? You're about to load up a hockey mom. Get it? GET IT?Three thirty in the morning,The music video only does these verses, but the story line gives away the ending.
Not a soul in sight,
The city's lookin' like a ghost town
On a moonless summer night.
Raindrops on the windshield,
There's a storm moving in.
He's headin' back from somewhere
That he never should have been.
And the thunder rolls.
And the thunder rolls.
Every light is burnin'
In a house across town.
She's pacin' by the telephone
In her faded flannel gown.
Askin' for a miracle,
Hopin' she's not right,
Prayin' it's the weather
That's kept him out all night.
And the thunder rolls.
And the thunder rolls.
(Chorus)
The thunder rolls
And the lightnin' strikes.
Another love grows cold
On a sleepless night,
As the storm blows on
Out of control
Deep in her heart
The thunder rolls.
She's waitin' by the window
When he pulls into the drive
She rushes out to hold him
Thankful he's alive
Through all the wind and rain
A strange new perfume blows
And the lightnin' flashes in her eyes
And he knows that she knows
And the thunder rolls
And the thunder rolls
*chorus*
She runs back down the hallway
To the bedroom door
She reaches for the pistol
Kept in the dresser drawer
Tells the lady in the mirror
He won't do this again
Cause tonight will be the last time
She'll wonder where he's been
*chorus*Interestingly, the video was banned from CMT (and TNN) when it came out in 1991. When the GAC network first started, it was the first to air the video, and it was the first video they aired.
"Wow PC, it looks like your Vista users are really having headaches running great software like iTunes 8. Mac runs them just fine."
"You son of a bitch." (Pulls out a gun)
"Whoa PC, whoa, let's not..."
BLAM.
HOW TO INSTALL A HOME SECURITY SYSTEM IN THE SOUTHGo check it out for the punchline. Not only is it funny, I'm fixin' to do it here in the People's Republic of Massachusetts.
1. Go to a second-hand store and buy a pair of men's used size 14-16 work boots.
2. Place them on your front porch, along with a copy of Guns & Ammo magazine and your NRA magazines.
3. Put a few giant-sized dog dishes next to the boots and magazine.
4. Leave a note on your door that reads:
Miscreants have created a tool that dumbs down the process of using fake YouTube websites to spread malware.So yesterday when I couldn't embed a Youtube video, this may be a feature, not a bug. Just looking out for my readers.
ANY time you're told that you "need to download a new codec" you say NO.Remember, "Download this code" is internet-speak for "open your mouth and close your eyes."
Gozer: Are you a God?
[Ray looks at Venkman, who nods]
Ray: No.
Gozer: Then... DIE!
[Lightning flies from her fingers, Ghostbusters almost wiped out]
Winston: Ray, when someone asks you if you're a god, you say "YES"!
God bless the military. Thanks, guys.Christine Hanson, 2The town I live in has a 9/11 memorial, for the three residents who were on the planes.
Juliana Valentine McCourt, 4
Zoe Falkenberg, 8
Dana Falkenberg, 3
David Brandhorst, 3
Bernard Brown, 11
Asia Cottom, 11
Rodney Dickens, 11
Good news. The most recent poll shows Barack is favored by 80% of the electorate--the French electorate!Ouch. I mean, ouch.
"The reason that you have this principle is not to be soft on terrorism. It's because that's who we are. That's what we're protecting," Obama said, his voice growing louder and the crowd rising to its feet to cheer. "Don't mock the Constitution. Don't make fun of it. Don't suggest that it's not American to abide by what the founding fathers set up. It's worked pretty well for over 200 years." [my emphasis]Mkay, how about this?
A well regulated Militia, being necessary to the security of a free State, the right of the people to keep and bear Arms, shall not be infringed.Hey, dude. Don't mock the Constitution.
