3710 posts • joined 10 Jun 2009
Re: DNT obsolete
Unless there is a way for a browser to track whether or not ad sites are honoring DNT or not. Doubt it could be logistically pulled off (since the ads can pretty much become indistinguishable from actual pages), but a framework like that would be needed to make DNT enforceable since sites ignoring DNT could be labeled untrustworthy and blocked by default.
Re: DNT is already dead, sadly
I don't know. If Microsoft starts considering these ad firms to be untrustworthy, they may start using DNT in a whitelist and ENFORCE trust by saying "you better be honoring DNT or we'll block you by default". Since Microsoft doesn't need ad money to exist, they don't have to kowtow to them, so the ad agencies can't pressure Microsoft.
Re: W3C against privacy & for DRM
Put it this way. The content providers don't need the web. They can either embrace the web or marginalize it. At this stage, they already seem to be learning towards marginalize since they intend to push forth a 4K standard that's under their complete control from top to bottom, from the encoders to the receivers.
But hosting the Torrent file on their own website can serve the same effect, which is what I'm saying. There is logic to this. Why else would the other torrents be hosted in "haven" websites other than they have no place to call home? That's why I use the "pirate's cove" argument.
If a torrent is for legitimate content, these torrents can be hosted on mainstream websites legally. Most of the distro sites I've seen are more than capable of hosting torrents for their own distros, and since it's for THEIR OWN content, hosting these torrents on their websites puts them in no legal trouble and also allows them to provide some safeguards like hosting hash files for verification.
"More fun, however, would be for everyone to upload a torrent link to legitimate downloads - say, Linux distro of your choice - to each of these sites, then all club together to raise the funds to sue the idiot who granted this order for blocking access to legitimate content."
Except they already have a counter for it in that, since the content is legitimate, the content can safely be hosted in places other than torrent distribution sites. Sites like, maybe, the distros' own websites, which IINM most of them keep at least one. In their minds, the primary reason the torrent sites exist is because there is no legitimate place for them otherwise. It's like saying, 'Where else can pirates find haven except in a pirate's cove?"
Re: Kit Kat update
Or just root their phone and wait on a custom ROM. That being said, this may be a bit as the custom designers are only now cutting their teeth on Jelly Bean 4.3, which has been found to have more than a few changes that require working around.
Re: Howabout this
Because my phone uses the AP whenever I'm home, and without the broadcast, it can't tell that I'm home (and polling would chew up the battery time), and since it comes and goes, having to switch the network each time is a PITA. So yes, some of us DO have to broadcast to signal transient devices (that doesn't mean I don't take other precautions; I use a spec-limit password and have turned off the WPS PIN).
The problem with circular plugs is that you need to be able to (1) establish a connection to several pins, for the data at the least (USB uses a pretty simple 4-plus-ground setup--two for voltage, two for data), AND (2) be electrically safe by designing it so the ground pin/shield touches first. Since USB transmits power, you can't rely on a setup like the 3.5mm plug since you might short something, not to mention the socket design leaves something to be desired in the realms of reliable connectivity. That's why even the Lightning connector is oblong: it's the most practical way to achieve both (1) and (2) in a robust way. Note that these connectors weren't just shots in the dark but carefully-considered designs with significant goals in mind (for USB, one consideration was socket grip--not too tight, not too loose).
Re: There should not really be any problem here
But the same product ID can mean completely different things between two different vendors.
For example, Product Code 0x0000 is a CD-RW drive for one vendor (0x03EE Mistumi) and a USB Hub for another vendor (0x0403 Future Technology Devices International, Ltd). Within each vendor, the product list is unique, and it's the COMBINATION of the two the tells the OS which driver to load up.
Anyway, this is simple to get around. Just use ONE specific Vendor/Product combination to indicate you need to invoke a subsystem driver to look up what you need now from further details. It involves a little more tedium, yes, but it's only done one per insertion and it can mostly be done in software. All the USB device itself would need is some additional way to describe itself, probably using some other basic capability. So in exchange for just ONE of the IF's codes (and if you borrow a code from an existing vendor, there may be little the IF can do about it), you can open up a whole new space of devices AND still be within the original specification.
Re: Patent Exhaustion
That would only be true if the USB-IF were actually enforcing patents pertaining to the system. A thorough search, however, only turns up patents for extensions of the technology (such as device implementations) rather than patents for the base technology itself. A legally-binding C&D letter would likely cite the patents in question, but we do not know what they are. Perhaps you can point us to them. Furthermore, the USB specification has been around for nearly 20 years. Allowing time for development of the implementation, there is a likelihood some or all of the base implementation patents (if any) are approaching expiration, meaning they will be accessible soon to all and sundry.
Re: Dead vendor squatting?
But that would essentially defeat the "U" in USB (Universal). Part of the goal is to use USB more universally. It would be much easier to use a single Vendor/Product ID combination to indicate an alternate product code scheme for them. This could be implemented all in software without any need to change out existing USB hardware.
Re: Dead vendor squatting?
According to the USB ID List, there's an unknown vendor with code 0xABCD and a product "PetCam" with a product code 0xCDEE. Perhaps this one with a Product code 0xFFFF?
And what if your open-source signature happens to cross with one of the Forum's signatures? That's the main reason for the standards: to prevent confusion.
Perhaps the best solution (provided they can obtain it) is to obtain a single Vendor ID and combine it with a single Product ID (with a class of 0xEF--Miscellaneous) and use them to indicate that the device will use a USB SUBsystem that can be used to support open-source hardware in its own way. Perhaps one of the already-open providers can supply one product ID--say 0xFFFF, and use that as a magic number to invoke a new USB driver system. Since it would be using an already-existent ID, what could the Forum do about it?
If Fred-down-the-road has a reputation for fencing phones, odds are the cops will learn of it too, and he'll receive a visit from a stinger with a bugged plant phone. They track him through that, locate his seller, bust them both. And if Fred crosses the state line to do so, then he's committed a federal crime and the feds can get involved, meaning instead of a stint in state prison, he could be looking at hard time in Atlanta or Leavenworth.
Re: @Charles 9
"How does spying on my email prevent avian flu?"
How about an ENGINEERED flu? One that you're communication over the e-mail using codewords like "inoculation"? Recall the time antrax spores were sent over the mail. Bioweapons DO exist, and not necessarily in government facilities.
PS. I don't trust tinfoil hats. That's propaganda meant to get you zapped even MORE (think antennae--or foil in a microwave).
So how do you penetrate a very tight organization, one that seriously vets everyone and is only composed of kin or other "untouchables" (to use the Prohibition-era phrase)? That's why you still need sigint--because sometimes humint is too risky to attempt or the adversary is surrounded by untouchables.
Re: To H with privacy
Privacy is a relatively recent innovation, mostly a byproduct of the Industrial Revolution and the big city boom. Back in the days of the villages, there was pretty much NO expectation of privacy., as the community was small enough that people naturally kept tabs on each other: something a big city could prevent. Every time I think about this difference, I recall "The Scarlet Letter" (which was about small communities and shames that eventually came to light).
Re: This is just Crypto 101
The trouble with that approach is that the smaller the secret, the easier it is to copy and slip away with it. No matter how tight you seal it, you can't keep out an insider who needs the key to conduct business, and if that insider's doubled...
It's an alternate approach to security. Think the lockbox vs. the chain. Sometimes you WANT a big secret...because it makes the secret too big to move and thus steal.
Re: Long Live Bletchley Park!
“Once you eliminate the impossible, whatever remains, no matter how improbable, must be the truth.”
But then you have to ask yourself, "What's really impossible?" Given the advances of technology, the list is getting considerably shorter, and if you eliminate something you THINK is impossible but in reality IS possible, you've lost the game already.
Re: War or no war
That's not a true libertarian. That's a crony. A TRUE Libertarian distrusts government, period. They're essentially anarchists. Sure, the rich can pretty much get their way right now in China and Russia, but recall that was true in Cuba, too...until the late 1950's. The big problem with government is it's prone to changing and/or reneging, meaning you can never be truly safe with them. Most Libertarians as you see them AREN'T true libertarians because they see SOME role in government: just a very SMALL one (minarchists). But real libertarians don't see a role for government AT ALL. It's like that banner you see in the beginning of BioShock (which BTW was based a lot on Randian Libertarianism): "No Gods or Kings. Only Men."
Re: @Charles 9
How about a variant of avian flu with a longer incubation time? The one after WW1 was plenty deadly and was done with almost no air travel. Imagine one worse in today's world.
But one can live without civilisation. It can become a stark choice between anarchy and death (or as of now, the risk of absolute death vs. the certainty of chaotic existence), in which case, what would be your choice?
So what can civilisation do if one man can REALLY wreck a country, can live within your borders (look at Oklahoma City, done by natural-born Americans), and can conceal his activities until it's too late? That's the biggest fear of the spy agencies: the existential threat (and it's hard to gauge a threat as existential until it's exposed or committed) that gets away. We may not be there YET, but there are signs it is dangerously close (the current leader is a long-incubation airborne rapidly-mutating RNA virus that's carried by a world-hopper who spends time in front of airport ventilation intakes and such).
As for human intelligence, they've always had a big problem: the bad guys know the good guys' rules and can screen based on them--usually by taking you past a point of no return. For example, picture an organization that won't trust you until you commit a murder and get on the wanted list (preferably that of a soldier which would basically make you a traitor). Now you're basically stuck with them.
Re: @Mr C Hill - Batteries!
"Use screws and/or clips. A screw should take *less* space and weight than their blob of glue (scews are stronger than glue, d'ya see), holding the end of a strap round the battery that would be of thin metal."
No offense, but I've seen plenty of screws shear off at the head and more than a few screw mounts split lengthwise. One advantage glue has over screws is bonded surface area, and that's a big plus when it comes to tension or stress forces. There was a tale of an experimental sign that survived the harsh winds of Hurricane Katrina when many others blew off their poles. The reason? It was affix with a high-bonding-strength foam tape. Glue uses the same principles.
Re: @Don Jefe - "notorious, proprietary pentalobe screws"
"Google is your friend. Remove any Netnanny filter first though."
It's not that unsafe. Most of the time it's a simple matter of vandalism and petit theft. SOMEONE somewhere will take anything that isn't nailed down (and to them, anything that can be removed by a tool in their pocket inside of ten seconds isn't considered nailed down). They'll usually steal the fittings or the hasps, which they can pocket and then pop to a scrap yard for a pittance. Don't believe me? How many mom-and-pop bathrooms have you come across that have jury-rigged latches in the stalls...or simply no latches at all?
"It's broken... Fix or replace, please... Thank you!"
The unspoken addendum to this statement is always, "Preferably fix, as it's cheaper, thank you AGAIN." A machine that lends itself to easy self-repair ALSO lends itself to easy repair in a shop. If batteries need changing, for example, it would much be preferable to just disconnect and remove old batteries and hook in a replacement set.
Re: "notorious, proprietary pentalobe screws"
That's nothing. The Nintendo Wii uses Tri-Wing (Y-shaped holes) screws in some of its innards, but at least with either one you can unscrew them.
If Apple were REALLY set on saying "you cannot open this," they'd have used one-way screws. These are designed so the only solid contact point is when you're tightening; everywhere else is too smooth to gain purchase.
"If you MUST have admin access from outside the network then you NEVER go straight into the kit interface - you always tunnel though something that you trust and that logs everything."
Would if I could, but IF a router has a VPN server built in (basically, cheap ones don't--not enough memory), it's almost always a bridging one (TAP mode). Unfortunately, Android's VPN client only supports tunneling (TUN mode).
Except ANY suitable blank for a subtractive process would be subtracting MOST of the metal (given the U shape of the finished product with LOTS of space in between). Not to mention the interior parts of the horseshoe itself where machining can only remove so much material with its given bit set. That's one of the beauties of the additive process. You can build up fine-but-strong structures in ways no subtractive process can duplicate. Not to mention it doesn't waste so much metal (both in the base block and in too wear and tear).
Re: This version is too complicated
But what if the troll pounces BEFORE the product gets to market or finds a manufacturer?
Re: watch this space ...
For anyone interested, the bold firm is a California company called FindTheBest. They were sued by a troll firm Lumen View Technology, over US Patent 8069073. FTB turned around andalleged that LVT is engaged in racketeering as a criminal organization (since LVT is a shell company), meaning it could be charged under RICO.
Thing is, this is not the first time a troll has been charged under RICO. Thing is, judges are reluctant to use RICO unless it's a more-traditional case of organized crime, so there's a tough stress test, which the last attempt didn't pass.
Re: Corporate lockdown.
"It cuts both ways. What about large patent owners with illegitimate patents? A small company could never fight for fair use if they accidentally used a illegitimate patent unintentionally. Little guys will always be on the defense taking a hammering from the big players, big players that can still choose their targets (ie. small players)."
But these guys run the risk of targeting someone who then hires a contingency lawyer (meaning eh client's not on the hook for losing) who wouldn't mind risking eating the costs because shooting down one of those illegitimate patents would mean excellent press and reputation (meaning more business). Plus groups like the EFF would likely back them up because they're for the little guys in the electronics world.
Re: Corporate lockdown.
"In any case, the "original patent owner" clause (if done right) should deal with it. Big "if" of course. IMHO it will be much better to limit the scope of the patents in the first place - no software, no business methods, no UI, etc. Only for real stuff that has a real "technical effect" (as defined in the patentability rules)."
Software is going to be patentable. Copyright cannot cover a clean-room translation (think the PC Clone BIOS), nor can it cover an algorithm that's then implemented in silicon (making it hardware instead). Instead, limit the scope by limiting the terms. All the problems have emerged in fast-moving industries, so simply shorten them to something like four years. Long enough to make something of it but not long enough that it's worth trolling over (your patent would expire too soon to run it through the courts, and any kind of restraint would be temporary at best).
Re: lateral thinking..
The problem with sandboxing is that SOMETHING has to be OUTSIDE the sandbox to act as a guard (usually the process that created the sandbox in the first place, such as the Java runtime). That means a malicious process can take a shot in the dark, hook the outside process, and escape the sandbox. This is the same mentality behind the "Ring -1" attack (attempting to hijack a VM hypervisor from inside the VM): the hypervisor has to interact with the VM--attack through that.
Basically, no airgap is going to be 100% effective. You have to be able to communicate across the airgap or it's useless, and as Stuxnet showed, a very determined adversary can find a way to attack across the airgap.
Re: a solution is required
Funny that. The developer of "World of Goo" took an entirely different perspective on the same issue, and he was even able to quantify the level of piracy he had: somewhere around 90%, and this supposedly accounting for dynamic IPs and the like.
Re: No, thanks
But what about these tight data allowances we're seeing of ISPs? And with no trunk investment, these limits aren't likely to go up anytime soon. BluRay had some flawed implementations which are leaving some things open, although the use of BD+ (which is updateable) is slowing down the piracy rate for the new releases.
So this time, they're taking no chances. NO digital copy capability whatsoever, and given the extent of today's cryptoprocessors and busses, this time they have a fighting chance. Cryptoprocessors with keys in OTP XOM memory so they can't be read (and likely with suicide mechanisms if someone tries to decap it),, hardware-based chains of trust, and serialized discs using technique akin to the BluRay ROM-Mark. There ARE some chains of trust that have yet to be broken, this IN SPITE of lots of motivation to break them, so there DOES appear to be a right way of doing this.
Another thing they'll probably do is make the movies too large to move over the Internet. Imagine a 4K movie that ran at least 100GB of not 400GB. That'll be bigger by itself than most users' data allowances. And the only way to make them fit would be to reduce the quality so much it's not worth it anymore, which (like with exploiting the analogue gap) is possibly acceptable or at least less of a concern to the movie companies.
Re: No, thanks
But that was only the MUSIC industry. Music is easy to pass through the Interwebs. Even a near-audiophile-quality song of five minutes can be passed through modern pipes in seconds. Movies, OTOH, is are and will likely always be BIG. A one-hour clip of 1080p footage runs at least 2GB at any decent quality. Furthermore, the movie companies are much bigger and more stubborn than their music counterparts. Not only do they have more skin in the game (compare the average movie budget to that of the average album) but they also have more alternatives, many of which take precedence over the web (most of their revenue, for example, comes from the box office). They're the ones pushing for a locked-down 4K video standard, and they DO have the audacity (and the leverage) to keep PCs out of the loop entirely this time. They are insisting on purpose-built devices exclusively with complete, to-the-metal, and updateable chains of trust or they won't put their movies out for people to see. So in their view, either the web can play by their rules, or they can go back to the box office and wait for 4K to establish itself before really re-entering the home video market.
There's also the fact that the subsidized plans frequently offer value-added services, such as visual voicemail and Wi-Fi calling, that none of the prepaid carriers can offer (at least where I see it in the US. None of the unsubsidized GSM carriers I know support call forwarding that allows a third-party voicemail to work; some won't even support shortcodes).
Re: New Contract =/= New Customer
I'd be interested to see if shared or "family" plans are counted by the phone or by the contract (two phones, one contract servicing both of them). If it's the latter, then new devices probably wouldn't account for it since many people would roll their new devices into their existing contracts where they offer lower rates for extra devices vs. an independent plan.
Then you'll soon be expendable. Eventually, being able to reach the ankles and call out, "Hello Sailor" will become a job requirement. That's what happens with a race to the bottom. Eventually, someone desperate enough will step forward, leaving you and all the like-minded behind.
"If technology really were that invasive, if it really were that controlling, more people would be pressing that OFF button."
It's not just that. The work standard is basically REQUIRING it of workers. Put simply, if you can't answer the phone in the middle of the night, don't expect to have a cubicle in the morning: someone else is there with YOUR job, willing to undercut you for your position.
They go overboard with it because, by the 6th and 7th Amendments, they only get ONE chance at it, and since some of their evidence may be tossed, they need to be sure they still have enough to make the case stick. It's not so much "going overboard" as "overabundance of caution".
If it's anything like the one built into my Netgear router, it's a bridging (TAP mode) server. Which is useless for mobiles which can only work in tunnel (TUN mode). IIRC it's a basic limitation of Android 4+'s VPN client and I've yet to see a workaround for it, nor does my router have a good custom firmware available for it (yet--it's a new model).
Re: Eye for an eye?
I don't think so. This seems more like a mutual business agreement. Going with Gorilla Glass has been a boon to Samsung with their mobiles and TVs; their devices can take more abuse giving them more value. meanwhile, Corning appreciates Samsung's business since it lets them spread and improve the technology.
I wouldn't read this much further than just two partners taking a good thing and running with it.
Re: IP issues
"are they really that interested in seeing you living long after retirement age?"
Since a longer life means more time for treatment regimens, then yes they'd be interested in keeping their customers alive.
That said, the economics of repeat business being superior to one-time business means private enterprise can be counted on researching permanent solutions like cures and long-term vaccine regimens. This is one reason I don't like private enterprise controlling medicine: their motivations are against its best interests.
Maybe. Did the Herpes Simplex Virus exist in animals in a previous evolutionary form? We're pretty confident the Human Immunodeficiency Virus evolved from the Simian version, so it's not outside the realm of possibility for the first human herpes infections to have come from animals: most likely primates or simians.
Re: Kiss and Tell
Then ask yourself: if the migration was two-way, why didn't the Asian herpes strains COME BACK to Africa?
Re: Can't Google remove the apps from phones
It probably was until Amazon was stung with the "1984" scandal. Suddenly, people wondered: if the app stores can remove apps from my device, what's to say they could abuse it to, say, remove sideloaded apps?
Re: Need better power numbers for uptake
"To do that you need a minimum battery life of a shift. Sure, people could work around this issue by recharging during breaks, but being able to do a whole shift without a recharge is a significant psychological hurdle for any such tech."
And that's assuming your shift is EIGHT hours. What if you have a TEN-hour watch? Or TWELVE? Since you bring up the medical profession, I think some can go as high as 18 hours at a time (say for an 18-up/18-down rotation).
- Geek's Guide to Britain Kingston's aviation empire: From industry firsts to Airfix heroes
- Analysis Happy 2nd birthday, Windows 8 and Surface: Anatomy of a disaster
- Breaking news: Google exec veep in terrifying SKY PLUNGE DRAMA
- Adobe spies on readers: EVERY DRM page turn leaked to base over SSL
- Google chief Larry Page gives Sundar Pichai keys to the kingdom