wycats - Slashdot User

Comment Re:FUD? (Score 1) 148

by wycats on Monday June 23, 2008 @01:41PM (#23906041) Attached to: Multiple Security Holes In Ruby 1.8, 1.9

Exactly. Rails, which is built on top of Ruby, doesn't allow arbitrary input as integer keys on Arrays, nor does it allow the user to force-execute a (very) long while loop. The vectors for attacking this vulnerability in Rails is limited to incoming params or POST bodies, and so far nobody has been able to show a vector for using these vulnerabilities to execute remote code or cause a DoS attack on Rails or Merb.

Submission + - RIAA backtracks after embarrassing P2P defendant (arstechnica.com)

Submitted by Harmony on Monday July 30, 2007 @06:56PM

Harmony writes: When the RIAA sued Sgt. Nicholas Paternoster, it included a screenshot of a shared folder with over 4,600 files — some of which were pornographic images unrelated to the case. Last week, the RIAA got permission from a judge to, as a 'professional courtesy,' swap out the original exhibit for one with only the 350+ songs the defendant is accused of sharing on Kazaa. The RIAA's carelessness may come back to haunt it, however: 'After the suit was filed — and the exhibit made public — Sgt. Paternoster decided to fight back, filing a counterclaim accusing the RIAA of violating his privacy and seeking to "shame Counter-Plaintiff... into giving in to their unreasonable demands regarding their copyrighted materials."'

Submission + - '$100 laptop' production begins (bbc.co.uk)

Submitted by

chris_mahan

on Monday July 23, 2007 @02:46AM

chris_mahan writes: "From the article at the BBC: Five years after the concept was first proposed, the so-called $100 laptop is poised to go into mass production. Hardware suppliers have been given the green light to ramp-up production of all of the components needed to build millions of the low-cost machines."

Slashdot Top Deals