Forum Groups
  All forums
    Help & Feedback
      Questions
      Work in progress
      Finished Art
      Non-Max related
    Community
      Offtopic
      News
    Hardware
    Photography


Featured Threads
  inspiration alert!!!
(37 replies)
  Indespensible MaxScripts, Plugins and 3rd Party Tools
(37 replies)
  The allmighty FREE Resources Thread !
(17 replies)
  spam alert!!!
(4886 replies)
  Maxforums member photo gallery index
(114 replies)
  Maxforums Member Tutorials
(89 replies)
  three cheers to maxforums...
(240 replies)
  101 Things you didnt know in Max...
(198 replies)
  A Face tutorial from MDB101 :D
(95 replies)
  Maxforums.org Members Gallery
(516 replies)
  SON OF POST YOURSELF
(637 replies)
  Dub's Maxscript Tutorial Index
(119 replies)

Maxunderground news unavailable

 
First page  Go to the previous page   [01]  [02]  Go to the next page  Last page
 
Microsoft - no plans to support WebGL ...
show user profile  advance-software
http://blogs.technet.com/b/srd/archive/2011/06/16/webgl-considered-harmful.aspx

"We recognize the need to provide solutions in this space however it is our goal that all such solutions are secure by design, secure by default, and secure in deployment."

Just sounds like the DirectX vs. OpenGL war being played out in the the browser space to me.

slashdot analysis: http://news.slashdot.org/story/11/06/17/121236/Microsoft-Brands-WebGL-a-Harmful-Technology

read 915 times
6/17/2011 3:02:47 PM (last edit: 6/17/2011 3:14:28 PM)
show user profile  Nik Clark
Microsoft accusing others of creating security risks is pretty bloody cheeky. What about Flash? Acrobat?

But, I won't be using Internet Explorer. They won't be able to stop others using it though, will they?



read 896 times
6/17/2011 3:22:21 PM (last edit: 6/17/2011 4:01:08 PM)
show user profile  advance-software
nope - other browsers will continue to increase in popularity if people want to access webgl content.

I have issues with webgl too, but mine are in regard to capability & performance.

they have a point that a suitably crafted webgl shader can lock up a pc, but that's hardly a security issue.

if a site locks up your pc, don't visit the site.

read 890 times
6/17/2011 3:36:59 PM (last edit: 6/18/2011 9:28:25 PM)
show user profile  Nik Clark
I didn't realise a shader could lock up the PC. That's not good, and I can see why that's a risk.




read 869 times
6/17/2011 4:01:03 PM (last edit: 6/17/2011 4:01:03 PM)
show user profile  spoon
*cough*
http://blog.jprosevear.org/2011/05/13/webgl-security/
http://contextis.co.uk/resources/blog/webgl/

But yeah, M$ is evil!


read 855 times
6/17/2011 4:18:57 PM (last edit: 6/17/2011 4:20:30 PM)
show user profile  Nik Clark
Hey, I just use these things. I leave the rest up to you programming nerds. If you programmers can't make secure code, then what hope does a user have?

What we can learn from this is that all programmers are lazy and incompetent.

:P




^ Every programmer looks like this.

:o)




read 844 times
6/17/2011 4:34:11 PM (last edit: 6/17/2011 4:34:44 PM)
show user profile  advance-software
a browser that came with locked down secure pre-configured shaders would protect you against this type of security threat. (though obviously you'd only be able to access the pre-configured shaders)

how lazy and incompetent am I for not having thought about stuff like this ?

sounds like the webgl stuff will be more secure once the drivers are upgraded to support that proposed arb extension.
read 840 times
6/17/2011 4:36:14 PM (last edit: 6/17/2011 4:39:26 PM)
show user profile  Nik Clark
>>how lazy and incompetent am I for not having thought about stuff like this ?

T'was a joke. I should have used Joke tags so programmers got that, eh?



read 831 times
6/17/2011 4:41:21 PM (last edit: 6/17/2011 4:41:21 PM)
show user profile  advance-software
we have no sense of humour and are all exactly the same.

pass the pringles.
read 828 times
6/17/2011 4:42:33 PM (last edit: 6/17/2011 4:45:36 PM)
show user profile  killerbee2
"we have no sense of humour and are all exactly the same"

that's correct, just checked it and wolfram alpha can't make any match whatsoever between programmer + humour





read 810 times
6/17/2011 4:54:12 PM (last edit: 6/17/2011 4:54:34 PM)
show user profile  Nik Clark
Ha ha ha ha ha ha ha! ( more proof, I'm not a programmer)



read 804 times
6/17/2011 4:59:44 PM (last edit: 6/17/2011 5:00:49 PM)
show user profile  advance-software
so ... the counter argument that shaders should be wide open to allow for maximum experimentation is that you can do stuff like this (webgl browser required).

http://www.processing.org/learning/topics

(not sure if all of this is actually webgl - some might be canvas)
read 775 times
6/17/2011 6:38:25 PM (last edit: 6/17/2011 6:44:47 PM)
show user profile  Nik Clark
Processing: Javascript and Canvas afaik.



read 766 times
6/17/2011 6:48:03 PM (last edit: 6/17/2011 6:48:03 PM)
show user profile  advance-software
would be surprised if all of that is pure javascript given the speed.

looks like there's some java there too.

anyways a few techniques to look at.
read 764 times
6/17/2011 6:49:49 PM (last edit: 6/17/2011 6:52:30 PM)
show user profile  Toen
My video card has crashed before when viewing a WebGL demo in Google Chrome.

Also recently Google Chrome has had some serious security vulnerabilities:
Vulnerability Details : CVE-2011-1301

Use-after-free vulnerability in the GPU process in Google Chrome before 10.0.648.205 allows remote attackers to execute arbitrary code via unknown vectors.

Vulnerability Details : CVE-2011-1302

Heap-based buffer overflow in the GPU process in Google Chrome before 10.0.648.205 allows remote attackers to execute arbitrary code via unknown vectors.

Vulnerability Details : CVE-2011-1806

Google Chrome before 11.0.696.71 does not properly implement the GPU command buffer, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.
read 759 times
6/17/2011 6:54:17 PM (last edit: 6/17/2011 6:54:17 PM)
 
First page  Go to the previous page   [01]  [02]  Go to the next page  Last page
 
#Maxforums IRC
Open chat window


Support Maxforums.org