Why don't these companies choose any one of the bands already free for use, rather than pissing on other's established usage and then asking for rules to be changed due to their own incompetence?
2330 posts • joined 15 Mar 2007
Really, is it wise to depend on communications for an "autonomous" car?
I thought the whole point is they can deal with current real-life traffic and the millions of human-driven vehicles that will still be in use for decades after the first self-driving cars are able to be deployed.
So while data links are nice and helpful to coordinate avoiding traffic jams and to warn about up and coming road conditions, accidents, etc, you still have to be be able to deal with that if you are the first car there thus operation without radio links should be a starting point in certifying a design.
Yes it is simple for some old bugger like myself to see how foolish some young person is to allow a photograph or video to be taken that might appear later. Also I can point out the hypocrisy and deceit of a society that will judge you by the odd image depicting you without the requisite amount of clothing.
But that is a reflection of my, and other's, own weakness and prejudice.
Though I suspect the whole 'revenge porn' law and action is more about self-serving wankers in power, I do feel deep down that we, the mass of humanity, need to take a look at ourselves and to realise that a photo or video of some consensual activity should NEVER be seen as a problem for those taking part. Only for those who object without any experience or justification (probably the psychological reason for such a 'problem' in the first place).
My thought exactly, if I want "full screen and no controls" I can use F11
Nope - creeps me out too...
Re: The more I think about the security of Google Cloud.
You seem to be missing the obvious - you are then sharing EVERYTHING with Google and therefore are under Uncle Sam's laws.
Oh yes, and if you get in to any sort of contract or IP/DMCA-style dispute they can make your business vanish in a stroke.
Re: Two words...
"Few options but to kill the power and corrupt the SD card"
Can't you SSH in and shutdown from there?
Firefox warns you it needs restarted, so unless you really hold the browser open for days on end (just how much RAM do you have?) that is dealt with.
Also any new instance of a call (e.g. starting flash for a new video) gets the new version, so unless you are watching the same compromised video for weeks, same applies.
Its not perfect, but it seems a better approach than Windows where you cant replace an open file, so all sorts of stuff has to be done on shutdown/restart.
"get stuck waiting for a disk check"
That is not too long if you use ext4 (default these days). E.g. my PCs typically take 10-20 seconds to check and that is with spinning rust HDD filled with 100+GB of crap I could probably safely delete.
Still, if you ever had to wait for the old non-journalled systems like ext2 to fsck then you have reason to be concerned.
"With Linux 4.x you will not have to reboot at all soon for ANY updates..."
For the kernel maybe, but what about the cluster-fsck that is systemd?
Re: Clearly it's a case of...
Oh I don't know - being unable to use your PC for 17 minutes due to updates is a serious flaw in the OS design.
While not really wanting to start a pointless OS willy-waving competition, I still ought to point out that other OS can updated without needing you to stop and more critically, for updates that actually need a reboot such as a new kernel, its just the usual 30 seconds or so to restart.
All possible because the new files were already in-place earlier as *NIX style file systems allow an atomic in-place replacement of files, but still allows an open file handle to continue using the previous on-disk data until the last handle is closed (i.e. on shut-down for the kernel or similar).
Re: Attack surface
While you might think that is a good idea, its not really as then your IT folk are unlikely to be good at all of the systems.
Sure, chose the less-attacked OS if you can (i.e. you can get matching applications that work for you) but you really need to concentrate on:
1) Having someone (internal or contractor) who is good at their job and looks after things. For example, having someone who really knows Windows and is allowed to lock things down will be better than a monkey who thinks they know Linux, even if the attack statistics point the other way.
2) Keeping stuff patched as far as possible.
3) Having an isolated backup that you KNOW you can recover when its needed (i.e. something that randsomware can't also encrypt because its not visible as a file system to normal computers).
4) Training staff not to do dumb things and, more importantly, if they do make a mistake or suspect something odd is happening to get it dealt with immediately and not pretend it never happened.
My 2p worth.
Re: It's not expensive
Have you noticed that site, like most, tells you bugger-all about the screen resolution unless you click on technical details for each one in turn?
WTF is the reason why screen resolution is not a searchable/choice option for selection?
I don't want "retina" resolution, mostly because I'm too old to be able to view things at ~30cm or less like the kids of today seem to do :(
What I do want to see is more vertical scale, since 1080 lines is OK for a 15" screen and bloody well ought to be the norm for 14"+ anyway. Apple are one of the few how offer 16:10 aspect which is better for practically everything but DVD viewing than 16:9
But 1080 "HD" becomes pants when you get to 24" or more. Really, I want a 42" 4k monitor at an affordable price, but that is not going to be a portable set-up no matter what...
Well here in the UK we have a little short of 3000 deaths per year due to cars & road transport, should we all surrender the freedom and opportunity that road transport has given us for the last century us for that?
Re: At last!
11, 12 even 13...
Two beams at 6.5TeV? So finally they can turn it up to 11?
(Alas! No Spinal Tap icon to go with this)
Re: Timestamps @Frumious Bandersnatch
I think you are talking about changing the underlying system clock (i.e. UTC time).
That is normally slewed by NTP unless its a leap second (where the kernel gets that and ought to handle it properly for event timers, etc) or if the time error is too big to be done in a sensible window (typically at system boot where you have no idea if the clock is OK).
The "jump" I am referring to is in local time when the daylight saving hour goes in/out of effect. I don't know of any system that would slew the DST value, but its not an impossible thing to consider.
Why - cheap (usually) code monkeys not using/understanding the details of time/time-libraries, and NOT BLOODY TESTING them!
The standard *NIX approach is to do all your data storage and maths in linear UTC and only for humans do you display it in a readable form and at that point you allow for the local time-zone & language. Its the sensible way.
The complication arises when you have a time-of-day event that some human wants at a set local time and you need special logic if that is in the hour where the "clocks change" as you could get either 2 or 0[*] time-crossing occurrences depending on the direction of the change. But that is independent of which zone your in, other than it is a zone that has "daylight saving" with is practically all significantly northern and southern latitudes.
It makes bugger-all difference to the amount of daylight of course, but humans seem unable to cope in modern times with doing things that are not a set times.
* - of course when local time jumps from 1am to 2am you cross all times in between, but how do you handle that? You could trigger all events set for 1-2 simultaneously, but what if the person needed A to be 5 mins before B, and both 10 min before C and all in that 1 hour window?
While I was quite happy to condemn the original politics of Galileo where the EU weasels, sorry ministers, said it would all be paid by the commercial use, we all knew that was a lie. With GPS being free and mostly available courtesy of Uncle Sam, almost no one will pay much for an alternative.
But I fully support the EU doing Galileo for the following reasons:
1) Developing the technology & infrastructure in the EU to do it.
2) Having an alternative to GPS in case Uncle Sam throws a hissy-fit (or a budget stale-mate turns things off).
3) Improving the overall reliability and accuracy for everyone as they then have a choice of GPS. GLONASS, BeiDou, Galelio and any other regional or LF options.
While it may represent several billion Euros, per person in the EU it is small change and we have already seen the UK gov piss away similar sums on failed IT projects over the last decade.
So cheap for what we get in my view.
I'm sure its just commercial considerations. Just now, in spite of the on going politics and strife over the Ukraine, etc, the EU and Russia do business and this is part of it. Maybe future launches will be more birds in fewer Ariane rockets, most certainly if Russia causes trouble in this area, but for now I guess those in engineering and contract roles just get on with the best deal for the current time & place.
Re: I remember that medicated Izal toilet paper
You have to add those moulded plastic seats that made everyone's arse sweaty and uncomfortable even up in less-than-tropical Scotland.
Silly - that is what post-it notes are for! Put one next to your monitor and you wont have any problems with forgetting your password.
In related news, bears are catholic and the pope...
"...biggest threats outside of Russia, China and France."
When and how did France become a major threat to the USA?
Did they threaten to take away their French fries? Shrug and set about cooking good food in a sophisticated plot to topple McDonalds?
I would say this is completely BT's fault, after all it matters not if the end user is business or consumer, the kit they supplied LIED to the admin about the firewall being on, and it LIED about UPnP being off.
More over, this is a known vulnerability that BT has done bugger-all about because it might add to their support costs.
Re: So the Spartans have invited the Trojans around to advise on the decor?
Great title, if I could give you 300 up-votes I would!
Re: @Ian Easson
"You may be, but Microsoft cannot afford to be as a corporation."
So what if MS decides to ditch IE and drop support for all legacy systems, maybe with patching stopped in 2-3 years? Those enterprise customers have no where to go, they will simply have to update and move on to a future without IE's awful stuff.
What alternatives do they have? They can't realistically go on with old OS/browser without MS providing security patches, so they simply have to either suck up MS' latest offerings, maybe pay a fortune for post-end-of-life support, or go elsewhere.
Where is the 'elsewhere' for them to go? Apple has abandoned any real interest in anything outside of consumer use. While I am a keen supporter of Linux, I am in no doubt that if you are IE-bound and MS-dependant for all sorts of specialist software then you have more pain in changing OS than fixing IE-related stuff.
So basically MS can do as the please and corporate users of Windows just have to follow because so little software was ever designed to be cross-platform. That my friend is the real "End of Story".
Missed opportunity here
Really, I don't see why MS should keep on IE other than for some locked-in corporate customers. So why don't they make Spartan the only supplied browser for Win10 and sell IE11 as an extra-cost option, maybe chucking it in with the "W10 professional enterprise edition" or whatever?
Those who really, really, must use IE will either stick to Win7 or whatever for the next 5 years, or simply pony up for it on Win10. Their pointy-hired bosses might just see that its time to fix their Intranet once they see an on-going cost for not doing so.
But, and this is the important bit, Joe Public won't consider it as an option as nobody has paid for a browser since, oh yes, IE was bundled for free two decades ago. Thus the few remaining web sites that rely on IE-specific support (and all public-facing gov sites, who are often offenders there) will get endless complaints until they fix their shit and become cross-platform.
Similar to slysoft's AnyDVD I guess.
It would be funny if the company then sued Visa/Mastercard for blocking payments in China, won, and made them pay out $Million/day or whatever in compensation. Same for Google, Facebook, whatever. See how it feels when another big country extends its laws to the US business.
Make it big enough and the US laws might change. After all, the only thing that seems to matter in US politics or law-making is money.
Re: revoked cert
Not if you are using Chrome...
In spite of the apparent positive spin, the fact remains they don't properly check for revocation. The last point in the article basically says they whole system is crap/broken (as we know) but offers no proper solution to the stupidly lax design of certificate issuing where ANY one of nearly a thousand issuers can sign an imposter certificate for any domain.
The action should be obvious - revoke all trust in the company that issued the certificates.
If they face financial melt-down due to this, and others see the consequences, maybe the future will be a little better. But saying so, it really points to a fundamentally broken system, and the certificate pinning that some browsers support is not enough of a "standard" to deal with it.
The idea of AI machines destroying vast swaths of humanity is pretty applying.
Until you stop and look at vast swaths of humanity that is...
Firstly, the issue of compliance with data protection ought not to be a problem if you encrypt your backup data BEFORE it goes cloudy, and that your cloud provided never has access to the key. In fact, that ought to be the Golden Rule of cloud storage: "no data without perfect secrecy".
Secondly, the idea that a home user only takes minutes to back up is laughable. If you have a 'typical' upstream rate of 0.5-1Mbit/sec on broadband, that is 225-450Mbyte/hour. If you have any sort of history of using a digital camera your archive could easily be 10-100GB of photos, so you are looking at 1-18 days of uninterrupted transfer to back up initially, and this is not taking ISP capping in to account.
Still, the idea of a NAS fronting your cloud backup is great, fast local syncing of data but with the off-site and (hopefully) backed-up/snapshotted storage if you lose your NAS or get a file-encrypting virus.
And don't forget that if there is any dispute, your cloudy "partner" can make it all disappear at the drop of a hat. Sure you can fight them through the courts, but just how long will your business have the funds to do so if its IT systems have been turned off?
With on-site software, even if licensed (and not free-as-in-speech), the boot is on the other foot. If they dispute then they have to take you to court and prove it and until they do you still have a business.
Really, what is Win10 refuses to run unlicensed copies of Office?
"customers over time will realise the value of properly licensing Windows" - does not compute.
"stands to win more cash under its as-a-service model if it can convince the world to dump its old operating systems" - ah, now that makes sense!
However, given the Chinese government has already said no to Win 8 over (possibly spurious) "security concerns" over data sovereignty, etc, how will they react to Win 10 if its "as-a-service" model allows the US gov to pull the plug at any time on its citizens' business operations?
"2. As described in the article, the attack requires physical access to the machine. Frankly, if somebody has this, it's always going to be game over."
Indeed, but p0wning the BIOS has the big advantage of getting the SMI and boot stages so it becomes possible to have an infection that is totally transparent to any booted OS, and can't even be seen when booting a rescue CD sort of tool. And if you can automate that to slip in USB, boot and press F11, 30 seconds later job done and power off, that is pretty tidy.
Re: This wouldn't be (much of) a problem...
"tablets, phones, and other sealed hardware "
The sort with various power & volume buttons on the side that could be held down in some odd manner to enable it passers?
Re: This wouldn't be (much of) a problem...
Its not just the UEFI stuff that is stupidly complex, its all of the pointless "eye candy" that MB makers seem to think you want/need. Really, the only folk who should ever be fiddling with BIOS/UEFI settings are the sort who really know what they are doing, and they are quite capable of using text-mode operations.
Its high time that we started pressing for MB makers to fully and openly support coreboot, at least then you have a chance of getting the source code inspected and maybe bugs fixed. Might even save them money in the long term for support and development.
And yes, I would like to see the return of a physical switch to allow BIOS writing, that would put a stop to most of these issues (aside from pre-installed malware, obviously).
Re: @AC w.r.t AF447
"You simply do not have the necessary background to understand what went on and how it happened."
I did not claim that I would have done any better, nor that I understand the details of how the pilots reaction to various conflicting warnings and instrument inconsistencies led them to not recover the plane from stalling.
But what I am absolutely certain of is that having an autonomous system throw back the controls to humans under "difficult" conditions is a recipe for disaster. And equally for cars the conditions that are unlikely to be handled well, such as an unexpected conflict of sensors while approaching a junction, blind bend, etc, will leave the human operator with bugger-all time to come to terms with being in control, let alone to apprise the situation and react accordingly.
So why even consider that case? Maybe so the car manufacturers can pin the blame for out-of-capability accidents upon the meat sack failing to drive correctly...
Re: @Phil Dude
Folk who care about edge cases are the sort you want working on safety-critical stuff! Typically they are the ones to trust your well-being to. As for reliability, the current US death rate is around 1-2 per 100 million miles driven, or about 150-250 per million vehicle - years:
So an autonomous car has to be pretty good to match that. Sure humans do really dumb things, and they are easily distracted, etc, which probably covers a good 90% or so of those deaths. But cars have to at least match that 2E-8 fault/mile figure under real-world conditions to be taken seriously.
"Well, if it resembles auto-pilot systems (such as those on the Airbus), the correct fall-back would be manual control by the driver"
Yes, and look how well that worked out for AF447 after all!
See that is the problem, if it can't cope near-perfectly with anything on the roads your screwed. You won't be sitting there with full concentration all the time "just in case" - otherwise you might as well be driving. And in the event of an unhanded exception as car has seconds to impact, not the minute or two the startled pilots of AF447 had.
Robots in a factory doing precisly defined work is one thing, and they work really well. Its the uncertainty in what a real road will throw at the system that matters, and how it copes.
Also I think it is moronic to have the assumption of "phone home" operation. What if you loose connectivity or the central servers go down for whatever reason? Does your car just stop?
So then what if someone simply jamms the radio for a short while to stop you and rob you?
Re: Not a problem solved
If it is a 10% driving failure it is not "annoying" but "potentially fatal".
Having looked at that link I feel quite dirty now :(
I should have noticed it as the Daily Fail.
You seem to forget that C was largely created to be a systems language in order to write UNIX in the 70s. Do you really think an OS written in assembler would be a better idea?
Of course, the other side of a "systems" tool is it lets you do things that might not be smart, even though you might just need to that sort of thing inside an OS. Common mistakes relate to memory usage (not bound-checking, use after freeing, etc) and the notorious printf()-like calls that can really mess things up on the same basis (it relies on you telling it correctly what type of arguments are being passed).
Wile other languages take away your ability to make some of those mistakes, much of those problems are now managable if only folk would use the C-language tools that are already out there! Static analysis tools (e.g. Coverity) and using maximum warnings from your compiler (gcc can now check printf formats, and please us snprintf() to force memory length restrictions) will help if you are willing to take the time to check what they are squaking about, and fix it.
Re: Prices for flash are wrong
"To be fair, a consumer-grade flash drive (with SATA interface) is only 10x the $/GB of a SATA hard disk"
It was mentioned, and for fairness it also has costing for both "consumer" and "enterprise" SATA disks (really, use the SAS version for high-capacity HDD for various reasons to do with reliable identification and proper command queuing, but the pricing is not so different these days).