01 August 2015, 13:00 | #141 |
Banned
Join Date: Nov 2007
Location: Trondheim, Norway
Posts: 1,893
|
Btw, somewhere I have a keylogger a friend wrote. It logs to ram, survives warmboots, and can dump the log to file, trigger code on certain words etc.
|
01 August 2015, 13:04 | #142 | |||||
son of 68k
Join Date: Nov 2007
Location: Lyon / France
Age: 51
Posts: 5,323
|
Quote:
Right, the fact you're paranoid doesn't mean they're not after you Quote:
Going to Twitter is looking for trouble anyway if you ask me Quote:
Quote:
Why not having in real life what we have in computers ? Quote:
Ok, some parts are real stupid, because driven by stupid marketing needs. But nevertheless, the miracle with it, is that it can work at all, and this, my friend, requires real good programmers. |
|||||
01 August 2015, 13:06 | #143 | |
son of 68k
Join Date: Nov 2007
Location: Lyon / France
Age: 51
Posts: 5,323
|
Quote:
EDIT: I have connected MiamiDx thru WinUae's uaenet.device. Come and hack me Last edited by meynaf; 01 August 2015 at 13:12. |
|
01 August 2015, 13:17 | #144 | |||
Glastonbridge Software
Join Date: Jan 2012
Location: Edinburgh/Scotland
Posts: 2,243
|
Quote:
Quote:
also memory protection can help against attacks, for instance making the stack non-executable helps against buffer overruns. Quote:
|
|||
01 August 2015, 13:35 | #145 | ||
son of 68k
Join Date: Nov 2007
Location: Lyon / France
Age: 51
Posts: 5,323
|
Quote:
Quote:
How so ? |
||
01 August 2015, 13:37 | #146 | ||
Computer Nerd
Join Date: Sep 2007
Location: Rotterdam/Netherlands
Age: 47
Posts: 3,751
|
Quote:
Even better would be an assembler that optionally adds code to check memory access and stack usage. Only during development, of course. Quote:
Yes. You can use the editor for placing things that are static into the 3D space (there's a 2D mode as well, never used it), and code for things that change (such as those randomly spawning monsters). You also use code for game mechanics. Or you could do everything with code. It's up to the programmer, really. |
||
01 August 2015, 14:24 | #147 | |||||||||||||
Banned
Join Date: Nov 2007
Location: Trondheim, Norway
Posts: 1,893
|
Quote:
Quote:
Quote:
Quote:
Quote:
Quote:
Quote:
Quote:
The idea, of course, is to have a service (remote login) available, and still be fairly safe. Quote:
Quote:
Quote:
Quote:
Quote:
If I am a software developer for a system that may run with virtual private memory space, or with shared common memory space... hmm, why would I want to write software for the latter? |
|||||||||||||
01 August 2015, 14:55 | #148 | |||
Glastonbridge Software
Join Date: Jan 2012
Location: Edinburgh/Scotland
Posts: 2,243
|
Quote:
Quote:
Quote:
Actually customers is not such a good analogy, either. It may not likely be the customers who do the damage. But maybe some of them have fleas... fleas with lasers controlled by the evil laser-flea overlord. One bug we recently fixed in a client's (Windows) code was that it required to run from an admin account. Of course it didn't really need to at all, but it was storing its config files in the application directory. Windows users are of course used to only using an admin account, and approving of everything that asks for permissions. There must be a parable about this involving wolves, i'm sure. Last edited by Mrs Beanbag; 01 August 2015 at 15:01. |
|||
01 August 2015, 15:04 | #149 | ||||||||
son of 68k
Join Date: Nov 2007
Location: Lyon / France
Age: 51
Posts: 5,323
|
Quote:
Quote:
Quote:
Try it. Maybe. Quote:
Quote:
Quote:
I see zero change. Quote:
Read this thread and you'll know. Quote:
You don't write software for either mode. Your code doesn't even know in which mode it is. |
||||||||
01 August 2015, 15:14 | #150 | ||||
son of 68k
Join Date: Nov 2007
Location: Lyon / France
Age: 51
Posts: 5,323
|
Quote:
Quote:
Quote:
Quote:
|
||||
01 August 2015, 15:27 | #151 | |||||
Glastonbridge Software
Join Date: Jan 2012
Location: Edinburgh/Scotland
Posts: 2,243
|
Quote:
Your idea of each app being in its own sandbox is a good one though, and memory protection would help enforce it (in fact i don't know how you'd do it without). Quote:
Quote:
Maybe calling them customers confuses the issue, if i was the customer and they were coming into my home to provide me with a service, would that be a better analogy? Well, maybe. I don't have plumbers, builders and all other sorts of tradesmen in my house every single day, but if i did, again, maybe i'd be wise to invest in internal security. Also there is another reason the analogy fails. In the real world, if someone breaks in, or if a tradesman steals my stuff, i can call the police. That is a sort of internal security that we all have. There is no police on the internet. It is like the wild west. Quote:
Quote:
You know there's something very school playground about all this tit-for-tat. "You can't kill me i've got a shield!" "Yeah well i've got a shield-breaking bazooka!" Last edited by Mrs Beanbag; 01 August 2015 at 15:35. |
|||||
01 August 2015, 15:47 | #152 |
Registered User
Join Date: Sep 2007
Location: Stockholm
Posts: 4,332
|
I think Meynaf's entire argumentation proves the point that programmers should be kept as far away as possible from systems design.
|
01 August 2015, 16:21 | #153 |
Total Chaos forever!
Join Date: Aug 2007
Location: Waterville, MN, USA
Age: 49
Posts: 2,186
|
Gunnar von Boehn is a hardware designer who advocates Oberon 2 style managed code over MMU based memory protected environments. He is designing the softcore for the Vampire 2 accelerator.
|
01 August 2015, 16:29 | #154 |
Glastonbridge Software
Join Date: Jan 2012
Location: Edinburgh/Scotland
Posts: 2,243
|
i do really like the idea of managed code, but it does tie you down to writing in particular supported languages. So no Asm!
Although i have been wondering lately about the possibility of safer instruction set architectures. Perhaps it would be an easy mod of 68k to, for instance, forbid address register indirect modes if the relevant address register is zero (including lea instructions). |
01 August 2015, 16:57 | #155 | |||||||
son of 68k
Join Date: Nov 2007
Location: Lyon / France
Age: 51
Posts: 5,323
|
Quote:
- You don't currently have the correct permissions to access the file location. - But, stupid computer, i am the supervisor and i own you ! - Sorry, you don't have permission. Quote:
Quote:
But remember that a system that is tolerant to errors, actually favors the existence of said errors. Quote:
No. They have something that works right away (especially when it is preinstalled at the time of buying). Everyone trolls me here already Quote:
Quote:
Quote:
I'm not against the idea of managed code, as long as i can still do asm. Some people like bare metal programming and i want it to be possible. The machine i want to have is a programmer's dream, not a dumb internet terminal. Security ? Bah. I surfed the net with my A1200 for more than 15 years and never got hacked. It's about likeliness ; it's less likely to get attacked with such a rare machine than having some attacker pass the numerous defenses on a mainstream machine. So what ? |
|||||||
01 August 2015, 17:22 | #156 | |||
Glastonbridge Software
Join Date: Jan 2012
Location: Edinburgh/Scotland
Posts: 2,243
|
Quote:
it's a funny thing, is Windows. Because early on, it had very little security at all, because the average home or business user just didn't really need it. but as things moved on, it needed more and more security, so they started locking things down, and of course this frustrates users because they think "why can't i do this, i used to be able to do this why can't i anymore, this latest version of Windows sucks..." Windows is getting more Unix-like in its security in its latest incarnations, now it requires permissions for all sorts of things, but because people still expect to be able to configure and use Windows the same way they did before, it all ends up a bit of a mess. Like the example i gave earlier, of a software that requires admin privileges to run, because the programmers thought it was reasonable to demand this from the user even though there was no real need to do so, because it was just too much effort to do it properly (or they didn't know better or there wasn't time or whatever). Quote:
Quote:
I think it is possible to serve everyone's needs here. I outlined a way in which it might be possible for hardcore users to run programs in kernel space if they wanted to, but you didn't like it for some reason. |
|||
01 August 2015, 17:39 | #157 | |
Total Chaos forever!
Join Date: Aug 2007
Location: Waterville, MN, USA
Age: 49
Posts: 2,186
|
Quote:
To check the address of an array lookup of type long for range validity, you do something like this on 68020+: Code:
CHK.W #ARRAY_MAX,D0 ; range check TST.L A0 ; null check TRAPEQ MOVE.L (A0,D0.W*4),D1 ; actual load with scaling address mode |
|
01 August 2015, 17:41 | #158 | |
Registered User
Join Date: May 2013
Location: Grimstad / Norway
Posts: 839
|
Quote:
Good for you, but I want _my_ OS to protect me from myself. Humour me this: -a programmed and intentional write to $100 -a bug ending up writing to $100 how does the OS know the difference? |
|
01 August 2015, 17:50 | #159 | ||
Glastonbridge Software
Join Date: Jan 2012
Location: Edinburgh/Scotland
Posts: 2,243
|
Quote:
Quote:
|
||
01 August 2015, 17:57 | #160 | |||||
son of 68k
Join Date: Nov 2007
Location: Lyon / France
Age: 51
Posts: 5,323
|
Quote:
It's much like the option to run under linux or uclinux (or something else) on the same machine. Quote:
Quote:
I prefer to be able to run programs in the same way for both options ; they don't know if they run in protected mode or not and they don't have to. Frankly the argue that's made here because of that simple option is a little bit overkill... I bet that if i did the system this way, nobody here using it would even notice the option is there Quote:
Assuredly. You're dangerous. You need a straitjacket But don't worry. The memory protection option will be active by default. So you will not harm yourself. Quote:
Perhaps you have to test and debug your code before you make a release |
|||||
Currently Active Users Viewing This Thread: 1 (0 members and 1 guests) | |
Thread Tools | |
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
Amiga 1200 computer | sidrulez! | MarketPlace | 4 | 01 January 2015 23:36 |
looking for my amiga 3000 computer | amicrawler | MarketPlace | 4 | 19 September 2009 21:50 |
Amiga inc reveal new entry Amiga computer - $489usd | Mikey_C | News | 132 | 01 October 2007 13:10 |
The DADDY Amiga computer is? | Bloodwych | Retrogaming General Discussion | 27 | 05 August 2002 18:14 |
|
|