3070 posts • joined 25 Mar 2008
I think we are splitting hairs. By "centralised" I mean one mechanism provided by the hosting OS. That may back onto a main network-server of some kind, or separate system but all the applications get updates from the same system which checks at the same time. Not each application running it's own checks and employing its own security (if any).
So, IMHO, the repos are "centralised" But that's all so much semantics.
Yes, if you update systems at different times you may hit problems. In that case you want some admin-type system to make all the related updates at once. There are a plethora of systems to do this, but they can only be as good as the data that feeds them.
By having some common repo-type system (apt, yum, whatever) it makes this much easier and one does not need a bazillion plug-ins or client scripts to click pop-ups just to get system updated.
As for version clashes...well yes that is ball-ache. It's been ball-ache since the dawn of IT and I don't see it getting any better any time soon. One option is to let a third party pack and test the various updates before rolling them out to you (say Red Hat or Canonical). But this means you may have to wait a while as things get tested, which may or may not be ideal.
At least you can access the source code and, possible, patch it yourself if it comes to that. Not ideal either I grant you, but it is at least another option.
"Who's going to control that central update?"
The user (or admin). Quite easily too. They can add a thing (lets call it ""a repository") that contains signed-code from a trusted source. Once this "thing" is added (either to the PC itself or to some network-central doofer by an admin) the PC's OS just checks periodically to see if there is anything new.
Repository 1? Nup
Repository 2? Nup
Repository 3? Oh look, updates for this that and the other.
It can the auto-install, inform user or whatever.
No "one ring to bind them all", the power remains with the end-user to use (or not) the third-party repositories. All the OS provides is the mechanism for this to happen. It's a shame no one in computing has thought of such a thing. A real shame. If only there was some kind of OS platform that did such a feat right out of the box. That would be all of the awesomes. :-)
Especially as the competitor OSs do this out of the box. And, more often than not, they don't need to reboot once the updates are done. Nice.
Because it is so much butt-pain trying to keep Windows apps up to date. Each on uses it's own (crappy) update system because the OS layer provides nothing. Just one reason why I am cutting the Windows out of my life.
MS says that F/OSS systems cost more than MS ones?
Yahoo ranks Yahoo higher?
Business analyst discovers water is wet?
Is it really any surprise that Google promote their own wares? I mean, is it? All companies do this, it should come as no surprise to anyone. Maybe Google will claim that their sites are in some way "better" and so deserve higher ranks. "Better" meaning "easing for our algorithms to deal with".
That shouldn't be a stunner either. Their engineers know the algorithms, so it's a simple matter of massaging the site to match the algorithm. It amounts to the same thing, but does allow Google to state that their algorithms (not sites) are not biased.
Now if you will excuse me, I must investigate ursine religious demographics and arboreal papal defecation.
Depends on the theme. OOTB I would say (bar wallpaper) that the 10.10 theme is orange. Ornage buttons, orange highlights etc. The only thing purple is the wallpaper.
So it's all down to personal perception I guess.
But I disagree with your support of Unity and related changes. I have found that Ubuntu hides/changes too much and makes some things nigh-on impossible. I recently had to install the missing parts of PulseAudio in order to gain proper control - what Canonical provides OOTB is inadequate.
This isn't a problem if users remain dumb consumers like most Windows jockeys are, but it is infuriating when you know that a sub-system can do something, but the way Canonical has mangled it prevents one from easily doing it.
My rant aside, the main thrust of your argument is sound. MS is the new IBM. It is too old and too big to innovate, hence why it uses its restrictive, predatory tactics and standards-breaking tactics. Everything must be extended or tweaked so that they can claim "standards", but it's just different enough to not work well with everything else.
Unfortunately I can see echoes of that in what Canonical do. Uh-oh, back at my rant.
...Julian making mention and publicising the conditions under which Manning is being held. Let WikiLeak's treatment and support of Manning be and indication to all would-be informers.
"such advertising becomes as accepted as the adverts one is obliged to see when searching the web, or reading most of it."
Indeed. And a decent phone will soon come with a handy app that will nealty trash all these ads (and optionally spoof you location to ensure privacy).
With regards to web ads - if they didn't flash so much, contract with the site, take up excessive bandwidth and make the content nigh-on impossible read; I wouldn't block them (nor would I use GraseMonkey to "re-edit" sites to make them usable).
If these are old machines (and they probably are) then Ubuntu will create the poor image. it's just too big and demanding (and it's only going to get worse - Wayland/Unity). Lubuntu....maybe but I reckon a good Pup-dervied distro would be the best way to go.
"There are several well-known examples of that."
Yeah, so well-known you don't mention any!
"Placing faith in a sociopath is a sign of a weak mind."
I think that's the one. Unless you have evidence that Assange is a sociopath of course.
Assange and his followers have IMHO been a bit childish at times and they are certainly playing the PR to the max, but unfortunately the world needs Wikileaks, cryptome etc. When one has government hires securing the services of "dancing boys" and covering it up, one has a serious problem. A mature person would, of course, censure the culprits like any other padeo; but instead our masters see no real issue with it and cover it up.
It takes something like Wikileaks to get the truth out.
Then there is undue pressure applied to democracies to implement draconian laws (e.g. USA making outrageous demands on Spain). Once again we (the public) need something like Wikileaks to get the truth out.
Assange may or may not have issues, but that does not detract from the good which has come from Wikileaks.
*IF* the PIN was stolen, the PIN was written down.
If the PIN was written down, the customer was negligent.
As there is no way (according to the banks) for the PIN refactored ar machines compromised, the customer *MUST* have been at fault if they ever query a transaction where the PIN was used.
It really is that simple.
....banks have to show that the customer is the cause of fraud - true
How is this proved? If a PIN is used. The customer must have disclosed (by some means) their PIN.
Ergo, if it's a chip+PIN either it is a valid transaction or the customer is at fault. Either way, the bank does not care and the law is useless (the transaction was authorised by the PIN and that should only be known to the customer).
The banks are not "the man", they simply own "the man".
Every night almost all gadgets get powered off and unplugged. Even the router. The only thing that gets left n stand-by is one PC, and it's job is to record TV, so it often wakes up, does it's thing and then goes back to sleep.
If I am ever daft enough to connect a TV to a network (and why would I? The DRM-crippled usage wouldn't be worth it), then I'll have to make sure I am running a router and a firewall that can pick-up crap like this on the network. One simply cannot rely on the OEM to do it correctly.
...do not connect the TV to the local network. Why are people obsessed with doing this anyway? The experience is usually marred by DRM and proprietary interfaces with are a total pain in the balls. Use the TV as a dumb-monitor, nothing else. Drive it from some kind of media centre front-end (i.e. a PC). That can be easily upgraded/reconfigured/firewalled/etc and you neatly insulate yourself from the TV manufacturer deciding that your 2 year-old TV is now "obsolete".
It's just a shame that when you get a big TV, you end up paying from USB, Ethernet, DLNA and other crap that you simply do not need.
"it beefed up the increasingly-popular browser with support for managed group policies and authentication protocols"
....so all your systems run encryption and will only connect to authenticated devices? Laptops are chained to desks? USB is disabled? There is no VPN (except to a few locked down units)? Any employee taking *any* business device home for *any* reason is subject to summary dismissal?
Because unless all the answer to all the above is "Yes", then you have no hope in hell of keeping "business data" within the company should an employee choose to lift it. And even then I don't fancy your chances.
I'd be more worried about personal data on corporate systems. My personal devices are leagues more secure than anything my company provides me.
I think I just found the same CV. Two epic fails on it; "never used the toolset that [I am] recruiting for"? Not been a programmer for ten years? Next please! (Unless I happen to be in that very small niche).
He's got some serious skills though and I can think of quite a few F/OSS projects that would have his hand-off for some help and that experience could be used to re-skill in current tech. For example, take Myth. I am sure there are a few tuners driving that lot to complete distraction, this chap could probably figure out how to poke/prod them and at the same time pick up some C++/python/whatever.
Bim-boom-bash, three months time what we have is a hardware engineer with some decent skills, self-starter, team player, mentor, leader blah-de-blah in what is probably going to be the biggest boom for domestic computing - home entertainment (just ask Sony, MS et al). Hell, configuring and selling UK-ready Myth boxes could be a nice little earner.
Not trying to do you down Mr. Harston, but you need to take a step back and re-assess your approach. When was the last time you went to a Tech Meet Up? LUG? Anything like that? Be like the reed in the storm, it bends; the oak stands firm and resolute, then gets blown over.
...if after 260 applications and no offer, you're doing it wrong. No one owes you a living, it's up to you to beat a path to *their* door. If you are not getting offers you have to change how you present yourself, network and job hunt. Maybe your CV is crap, maybe your skills are too niche, maybe you're aiming too high (or low!), maybe you need to relocate...maybe...maybe...
"Great Answers to Touch Interview Questions" by Martin John Yate is an excellent book. Buy it, read it, follow the advice.
Have your tried getting involved with a F/OSS project? It will keep your skills sharp and mean you can add experience to your CV, the fact you are active will look good to any employer.
Perhaps you have done all of the above, but moaning about it on a board won't help!
Best of luck.
...quite frankly, terrifying.
"parents taking pics of their offspring kitted out as angels or shepherds is not a Data Protection matter."
Any one of the random adults in attendance could be a SICK and DEPRAVED PAEDOPHILE trying to get an UP-SKIRT shot of Mary to fuel their DISGUSTING and TWISTED fantasies! Heads WILL ROLL and the ICO if even ONE child is harmed by them NOT PROTECTING the children.
Will NO ONE think of the children?
Where is the Daily Mail when you need it?
Good. That service really sucks balls. I have actually abandoned purchases because sites force me to use that pile of vomit.
They walk about about saying "Hi! I'm a Ninja!" Kind of misses the whole point of "concealment".
Oh, and they didn't wear black; that came from the No theatre hands who used to wear black so as to not disrupt the play too much. No point in being a master of silent death and camouflage, then sticking out like a sore thumb when you try to get near the target! They tended to dress in whatever fitted in.
As for the training? You can go as hard as you like when there is every chance you'll be dead before you're 40; equation changes slightly when that is no longer the case and it is not your source of employment.
"knowing the 'apparent theory' of how to do something isn't the same as having done the equivalent things"
Abso-fraggin-lutely. The question is "If I had to defend myself from myself, could I do so?" if the answer is "No", then one's training is inadequate. If the answer is "Yes", then one does understand how to apply shock and violence in the manner of a person who is intent on causing one harm; so one's training is inadequate.
I can't take "Ninjas" seriously anyway, not after watching "Taxi 2". *Ninja!*
Is Assange some fighter for freedom and protector of democracy?
Is he some pawn in a government mis-information operation?
Is he a sex-mad, anarchist, nutbar of the highest order?
All of the above?
It really depends on who people see as more vital? Oracle with their databases, or Apache with their various servers and projects.
Unfortunately Apache is tech-level and the decision makers have probably never heard of it, Oracle can get access to the boards; so Oracle will probably win.
If I want to watch NBC, ABC, PBS etc shows is easy enough. Watching HBO live is simple too. These services are even starting to push HD out. Oh, and I can do all this on an old xBox (no HD, obviosuly).
So I ask again - why would I pay MS for what I can do right now? And if I want HD, I can just use a different front-end (I'd need new kit anyway) and STILL have no need to pay MS anything. The content is already there to be consumed.
The only way MS would get a penny from me, is if they wrapped up all the broadcasters in some kind of exclusivity deal (can you say "monopoly abuse"?) and even if that did happen, the USA is not the only broadcaster in the world and there are many other services available.
I will even choke down the ads, these can just be injected into the stream at the relevant breaks (they could even be region specific).
...why would I pay MS for what I can do right now for free?
And why would I pay them when most of the services are region-locked in one way or another? I'd just chuck a few notes at a VPN service and be done with it.
Oh, I dream of 10mb. And I live in a major urban area, but not London.
Guess I'm sutffed then.
Policy by gut feel and popularism, rather than hard facts and evidence. Have these morons learned *nothing*? If the facts show that drug X does less harm that (say) alcohol, then that's the hard truth, deal with it.
"Bollocks to the lot of em, I'll save my record buying money for something I actually like"
Congratulations, you are the first person here to get the point.
...become the establishment. Just as "Rolling Stone".
If it works this year, a big corporate will simply hijack the idea next year and coin it in.
The revolution will not be televised, but it sure as hell will be monetised!
"we get left with a small number for the most widely used wheel sizes. If you have a particularly unpopular size of rim, good luck with finding any at all"
Not an issue. Buy cheapo rims that fit the car, fit a standard sized snow tyre (some care is needed on size matching, check with the manufacturer, tyre company or decent mechanic). You won't want to use your alloys in winter anyhoo, have you seen what salt does? Come winter, 20 mins with a jack and yer done. Simples.
One more thing...learn how to drive in snow/ice as in, go take friggin' lessons. The theory on how to control a car in slippy condisiton and how skids work "Oh, you just turn into the skid. La de dah." is all well and good, but being able to actually do it is much more important. So, what's yer Chrimbo present? A day on the skid pan. It's wicked fun!
This is the nation that basically shuts down when some white stuff falls from the sky.
Snow tyres...I should set up a business importing snow tyres and then lobby government to make them mandatory (as in Germany et al). Saving the nation and my wallet!
"the sooner an open standard is reached the better."
This. With bells on.
...Silverlight is not cross-platform and cannot be run on Linux.
With all respect to Mono and Moonlight, they are either a few versions behind or can only offer a reduced subset of the functionality, so one cannot develop on .Net or Silverlight and guarantee with 100% certainty that it will execute on these frameworks - not with taking a lot of care over features and versions (or developing directly on those platforms).
I thought it was more the compiler that did the type checking, the language (certainly at runtime) would just go "WTF is this?" before vomiting a stack out to the console and going off in a huff.
JS may be far from perfect, but you can at least guarantee that the client can execute it. Not that I fancy doing much heavy-logic in JS (been there, got that t-shirt, it didn't fit)
This is not so for Silverlight, and until that is fully cross-platform it cannot succeed.
As for Java (and I am a Java dev) it never got anywhere on the client (due to it, basically, sucking donkey balls) and people need their heads examined if they use it on the web. It's found a niche in server apps and it does pretty good there; that's where it should stay. Use a known standard for comms to a client built in a more client-side friendly language and all is right with the world.
Because if it does not run on Linux, it is a dead duck. Yes, I said "Linux". And no, I do not mean the desktop. The mobile market is stuffed with Linux (or Linux-like) devices, as well as set-up boxes. if you don't work on those (esp. set-tops moving forward) then you are boned.
"open source where possible"
All the big-vendors need to do is say "Open source is not viable here". The Civil Servants don't have the knowledge to know whether or not that's true. If they did have that knowledge, then they wouldn't have signed such crappy deals over the last few years.
Not that Open Source is the answer in all cases (nor is it always free, as some people seem to think), but if Drupal is good enough for the Whitehouse...
One thing it would be nice to see is the government to stop forcing MS Office on schools. For teaching word processing, spreadsheets, basic databases etc; LibreOffice (and others) are more than up to the job.
I had read of the EC2 crack, very interesting. I'm not a security expert (as you can tell) but all of this is very interesting.
Isn't that now out of date? Should SHA1 or something be used instead? (Genuine question, it was an off-hand comment in a audiocast I listened to on Monday).
Hmm...seems it might be, considering one of the closing statements in the first post.
...Pal A says to Pal B that think this Pal C is a butt-monkey.
Pal A gets all upset when Pal B tells Pal C that they think they are a butt-monkey.
Basic, infantile, playground politics. And the answer is very simple.
Pal A should either not be pals with C at all, or keep their friggin' trap shut!
No need to charge him. The USA can demand his extradition from the UK if he is here (there seems to be no way to block that, ask McKinnon) and if hat does fail, the USA can just grab him from anywhere they see fit, take him to some island and torture the hell out of him (the USA has form for that too).
I don't see the latest set of leaks putting any lives at risk, nor do I see them being particularly interesting. And whilst I totally agree that some things should be kept secret, I really would appreciate it if politicians would stop spouting bull-crap all the time*; then there would be no need for a sites like WikiLeaks.
Until that happens, roll on the next leak. Just chill the PR assault a big, mm-kay?
*Although it is amusing when one catches the buggers out.
Breaking crypto is against the law.
So no one should do it.
Every employee at ElcomSoft involved should now be in the gulag.
What do you mean "That's not how the world works"?
Tell that to the MAFIAA and their DMCA fanatics
...but I have a feeling I am.
Virtual Desktops...thin clients...isn't this the old Unix model of having a beast of a server and then a client creating a "window" on to the user session? Isn't this exactly what the X Server was meant to do?
I'm not knocking it, I am just wondering why people are running around and getting all excited about this "new" idea when...err...it isn't that new.
A plug-computer and a monitor with a couple of USB ports (simply for ease of access) is appealing. Although if the network goes down...one is well screwed. At least with all my VMs on the desktop, I can struggle along for a bit.
"Did you build your car? No? Then don't complain about anything about it, fridge, carpets,house, in fact ANYTHING you own that YOU personally didn't make, don't EVER complain about."
I don't, I pay a guy (or gal) to fix them for me. Or I buy an alternative. Same with software. I can either fund (or part fund) the fix, find an alternative or get involved with fixing it.
There is a great malaise today where people expect every little thing to be sorted for them by some mythical higher power, or for every little thing to be perfect from the get go.
Standing on the sidelines and moaning isn't going to get anyone anywhere. In any aspect of life.
It's put up or shut up.
Ah yes...this will be a doctor who lives on thin air than and does not expect any remuneration for their time. My, my, my.
So I do "put up" for the doctor. It's called "paying the bill".
...how much time have YOU devoted to fixing and testing the bugs that you complain about?
Put up or shut up.
"A malicious PDF is reportedly used to download and install the ransomware"
So it is just Adobe Reader that is exploited, or are other readers affected too?
Still, as only the last 24 hours worth of personal data should have been affected (and it doesn't change that often). It would mean wiping, re-installing and then recovering data from the off-site back-ups (I presume the back-up drives would have been jiggered). Annoying, yes. Devastating, no.
Everyone has off-site back-ups for their home PCs, don't they?
Why are you giggling?