* Posts by Charles 9

7189 posts • joined 10 Jun 2009

It's 2016 and idiots still use '123456' as their password

Charles 9
Silver badge

The easier to use, the less secure it is. Plus people have bad memories and our adversaries are nearing MiniLuv levels of sophistication.

1
1
Charles 9
Silver badge

Re: Nothing wrong with insecure passwords

This has been known FOR DECADES. The chief problem comes from the wetware requirement. Against a resourceful opponent (and as you note, the requirement keeps falling), there's no way to convulsively distinguish someone from an imposter. Passwords can be copied, looks can be matched, factors can be stolen, even DNA can be cloned. Yet we live in a world where proof of identity is a daily requirement, so we're caught between Scylla and Charybdis: needing a form of authentication that frankly cannot exist. So what do we do?

0
0
Charles 9
Silver badge

Re: tools...

But a smarter botherder would install a malware that rifles through the entire system for secrets. A password safe would immediately be marked as a juicy target and the mark the target of a logger to spot the password and/or keyfile that cracks it open.

1
0
Charles 9
Silver badge

Re: pUctuAt10n

Even worse, many people need to keep tabs on many different sites and may not even have a computer to call his/her own, meaning password safes are not an option. So now you're staring at the password prompt and thinking to yourself:

"Now as it correcthorsebatterystaple or muleturbineclipwrong?"

And then there are those with just plain bad memory (due to bad luck or maybe senility), How do we help people like that?

3
0

Waving Microsoft's Windows 10 stick won't help Intel's Gen 6 core

Charles 9
Silver badge

Re: There has been a dearth of PC innovation, 'tis true

Until SteamOS Linux can do the headliners like Fallout 4, it's pretty much Windows or bust for gamers.

0
2

New open-source ad-blocking web browser emerges from brain of ex-Mozilla boss Eich

Charles 9
Silver badge

Re: Looks like a great idea...

More than you think because although fewer they at least pay the bills unlike all the other leeches. Or would you rather 90% of the Internet switch to paywalls that demand your credit card? And leaving the Internet is less of an option as print sources shut their doors. Finally, while one could go without information, many would also point to a lower standard of living compared to today.

0
3
Charles 9
Silver badge

Re: Maybe I wasn't reading properly

Even if it's the ONLY source of something important like an obscure device driver?

2
1

Pentagon fastens lasers to military drones to zap missiles out of the skies

Charles 9
Silver badge

Re: Isn't there a standard defence against lasers?

Make the laser powerful enough, and the reflective coat will heat and warp before any serious reflection can occur. Since reflective coats aren't anywhere near 100% reflective nor physically will likely ever be able to approach that, mirrors aren't practical.

4
2

Robots. Machine learnin', 3D-printin' AI robots: They'll take our jobs – Davos

Charles 9
Silver badge

Re: Still waiting for no work

The utopian vision overlooks one key element: someone's going to OWN these robots, and "the State" is just another owner in this regard. Whoever controls the robots gets to dictate terms, and if it's the State owning them, then it's whoever controls the State that has all the power.

As for the beer, they could always keep the beer cheap for the "bread and circuses" effect. Plus drunk people tend to be more pliable.

0
0
Charles 9
Silver badge

Re: Who owns the A.I. ?

Or rather, the rest of the world becomes irrelevant to them. By the time they're finished, the rest of the world will be literally crumbs. Picture if you will an isolated island. One guy manages to vanish with all but one of the coconuts, leaving just one for all the rest to fight over.

0
0
Charles 9
Silver badge

Re: The need to show off social status...

Unfortunately, it's also a basic instinct. Showing off is just one way of making sure you get the girl (or whatever) and the other guy doesn't. Frankly, showing off may be seen as preferable to a fistfight.

Bottom line, showing off won't be going away.

1
0
Charles 9
Silver badge

Re: Interesting combination with existing wealth imbalance

And then they develop the robot that can maintain any other robot, including another of itself. Keep a tag team of these guys and the amount of human work needed to keep them going will become extremely small.

0
0
Charles 9
Silver badge

Re: Gender imbalance

Who needs history? Just look at China.

3
0
Charles 9
Silver badge

Re: Who owns the A.I. ?

The rich can just cater to each other, closing off the walled garden.

3
0

Internet of Things 'smart' devices are dumb by design

Charles 9
Silver badge

Re: Do not despair

Problem is, I bet the survey only counts those who deign to answer. The ones you have to worry about with this tech are the blissfully ignorant and the apathetic who simply don't care.

3
0
Charles 9
Silver badge

Re: Home cloud?

ONLY when the market's mature or there's a synergy between them. Otherwise, the applicable terms are "acquisition," "buyout," and "cheating". It's all in the name of getting the most dollar.

As for using nuts and bolts, that depends. Apple was notorious for using penta-star screws, if you'll recall. The only reason nuts and bolts standardized is because the market was extremely mature and well settled. IoT is an emerging market; not much is settled, and just like with the HD-DVD/BluRay war, companies are jockeying to become the standard-bearer, which gives them big market advantage over the longer term.

2
0

Computer sales not a matter of life and death, they're more important than that

Charles 9
Silver badge

Re: Small business here . . .

How do you keep the EOL systems from getting pwned while still being useful for your business?

0
0

European human rights court rules mass surveillance illegal

Charles 9
Silver badge

Re: Who will rid me of the ECHR?

Which, history shows, doesn't work very well because the average man has other concerns than keeping an eye on his representatives.

3
0
Charles 9
Silver badge

Re: Unfortunately

Unless, of course, the UK decides to LEAVE the EU...

1
1

For fsck's SAKKE: GCHQ-built phone voice encryption has massive backdoor – researcher

Charles 9
Silver badge

Re: They all have the same flaw...

What's to stop a man in the middle from identifying and/or mangling the stego?

0
0

Hey, Intel and Micron: XPoint is phase-change memory, right? Or is it? Yes. No. Yes

Charles 9
Silver badge
Joke

It could be an intelligent midget goose able to use a duck call.

6
0

Spoilsport scientists unstick Spider-Man

Charles 9
Silver badge

Re: How would the pads work through his gloves and boots?

They may have retconned it as science marched on. I mean, we didn't understand how the gecko stuck to walls using van der Waals forces until recently.

0
0
Charles 9
Silver badge

Re: and yet

I think it's difficult to properly correlate size with lifespan. It basically depends on different biological factors. I mean, certain breeds of smaller birds like macaws can live for 50+ years. For an animal that can stand on your arm, that's a pretty long time. So who's to say what can live how long?

0
0

Put your private parts on display if you want to keep earning a living

Charles 9
Silver badge

Re: maybe? we could call it a "union" . . . or something.

Because Wednesday they'll be back under the desks...THIS time with the "one-way" screws you see in restroom stalls.

0
0
Charles 9
Silver badge

Re: Bah!

They won't. It costs too much, and they have to answer to the investors.

2
0

Test burn on recycled SpaceX rocket shows almost all systems are go

Charles 9
Silver badge

Re: A Barge is not stable enough...

But what do they say about the weather? Sure, under calm seas the barge should hold steady, but Murphy can strike, and if the barge is caught up in a sudden storm too late to scrub the mission, you got a problem, because even massive tankers get nervous around sudden storms.

0
0
Charles 9
Silver badge

But the clamp can have a larger margin of error AND could potentially be able to clamp the rocket beyond the unstable point, which you cannot guarantee with a passive barge rolling in unexpectedly unstable seas. Also, thrusting into the clamp can be employed as a motive force, like how lever action closes the clamps of a grab arm. Use a decent diameter cone, like how mid-air refueling boom has a margin, plus with such a rig there's a greater margin of vertical velocity error versus trying to land on a rolling deck.

0
0
Charles 9
Silver badge

I'm pretty sure SpaceX have done their homework on this, but perhaps someone can enlighten me on exactly why they need to recover their first stage by means of a controlled landing rather than something simpler like say some kind of flexible webbing to catch it as it falls a short distance or some kind of docking clamp system with room for error, thus reducing the odds of hard collisions.

1
0

Microsoft’s Get Windows 10 nagware shows signs of sentience

Charles 9
Silver badge

Re: Turn off updates - problem solved.

Except last I checked TeamViewer and Join.me are both potential avenues for malware themselves from their respective publishers. Plus what happens when the GWX stuff gets piggybacked into mandatory security patches, making it a Take It Or Leave It proposition?

0
1
Charles 9
Silver badge

Re: Works for me.

Don't be surprised if a mandatory security update sneaks that back in in another form.

1
0
Charles 9
Silver badge
Joke

Re: An idea

Guessing Microsoft, I think they'll install it anyway and send you the bill.

PS. Though I'm kidding right now, I dread to think it's not really a joke.

1
0
Charles 9
Silver badge

"PS. LibreOffice remains an unfinished, under-featured knockoff. Does itr have macros yet?"

It certainly does. I've used LibreOffice Basic and other languages for some time now.

0
0
Charles 9
Silver badge

Re: That's a nice OS you have there, Microsoft

Go ahead and try, they'll say. They'll be after your head when their WINDOWS-ONLY software won't work on it...

And BTW, the software that'll get you in trouble won't work on WINE, either...

0
1
Charles 9
Silver badge

Re: and the winners are...

And then they get slammed when they find out their tax software or the latest came won't run on Linux. Even most consumer software is Windows-only with no analogue on other systems. So before you jump ship, you BETTER make sure the lifeboat's fully stocked.

1
1
Charles 9
Silver badge

They won't try, under the risk that another update links GWX to tightly to the OS so that trying to remove GWX elements risks bricking, meaning the AV vendors can be staring down the barrel of a lawsuit.

0
1
Charles 9
Silver badge

Re: BULLOCKS

If Linux is all that, where are all the games? And I'm not just talking indie stuff, either. I'm talking the latest mainstream games like Fallout 4. Why aren't they on Linux or SteamOS in spite of all the pushing by Valve?

0
2
Charles 9
Silver badge

"Luckily Linux seems not to honour that crappery on files but removing Microsoft malware from the registry can be a problem."

There are some things even root can't remove. Like things under control of the kernel like a zombie process (something locked in something like an I/O wait state that'll never clear). That was the thing with that North Korean OS mentioned a while back. A lot of the Big Brother stuff is baked straight into the kernel, to the point that not even root can mess with it.

2
0

Confirmed: How to stop Windows 10 forcing itself onto PCs – your essential guide

Charles 9
Silver badge

Re: "Upgrade" will be pushed down to everyone's throats, as security patch if nothing else helps.

"So it will happen when semi-voluntary updates stop: Only way to stop it is to stop updates, as long as you still can do it."

Then you get caught between Scylla and Charybdis when a zero-day total-pwn exploit appears in drive-bys, meaning you face a dilemma: get the necessary security update and get pwned by Microsoft or go without and get pwned by the malware. And going Linux is not an option because most games require a to-the-metal Windows install (especially once DX12 hits mainstream--VMs don't work well with the cutting edge).

0
0
Charles 9
Silver badge

Re: Give MS feedback

Nah, they'll just start filtering the mail en masse and dumping anything resembling a rant into the incinerator. Only something that directly influences their finances or their investors will get their attention. That usually requires legal action, but Microsoft also has plenty of legal bases covered.

0
0

Council of Europe gets tough on net neutrality

Charles 9
Silver badge

Re: QoS...

But they ARE selling what they can actually deliver, as an "up to" only describes a maximum, not a minimum. Anyway, minimum speed is frequently beyond their control--weak links in any given communication can come from one of the myriad links along the way, meaning minimum speed is impossible to deliver. So how are you going to deal with this kind of market where the ONLY thing you can guarantee is a maximum?

0
0
Charles 9
Silver badge

And then there's the matter of obfuscation. How will an ISP do QoS when the bulk of traffic is encrypted and thus hard to inspect?

0
0

Debug code cracked case in hunt for mystery Silverlight zero day

Charles 9
Silver badge

Re: Silverlight

No chance. There are plenty of systems that REQUIRE Silverlight to run, just as there are expensive systems that REQUIRE Flash to run. Unless there's an exploit that can run their damage into 8 or 9 figures, the accountants will have no justification to switch out the expensive piece of kit.

0
0

Nvidia GPUs give smut viewed incognito a second coming

Charles 9
Silver badge

Re: A couple of lines of C will fix this

Unless the program is performance-sensitive and needs to hand off quickly. That's the thing with GPUs; they're built for high performance, and things like memory wipes are time-consuming. How do you reconcile the two?

0
0
Charles 9
Silver badge

"One can also check an executable before it becomes a process (pretty sure scanners do this) and by watching the _actions_ of a process: You want to open SMTP?"

But what if the malware waits until it becomes a process AND disguises its malware act as a legitimate act (Yes, I have to open SMTP--I'm an e-mail client!)? Then you need more sophisticated sniffing that can also work outside an encryption envelope, meaning it has to be able to see the process while running.

0
0
Charles 9
Silver badge

Re: Linux Nvidia here

Not just you. Happens with my AMD card, too. Think is has to do with the HDMI standard more than anything in that it has issues with displays being turned off.

0
0
Charles 9
Silver badge

Re: I imagine NVIDIA are in the clear

"A GPU driver could use a similar scheme and (as already mentioned) certainly has the bandwidth to make it affordable."

But not the TIME. GPUs are normally built for high performance, so there are frequently zero-time context switches (a freed buffer has to immediately go to another application, with no chance to wait because, like I said, performance is demanded). Now you're in a security-vs-speed dilemma, and people why buy performance GPUs will demand the latter.

0
0

UN privacy head slams 'worse than scary' UK surveillance bill

Charles 9
Silver badge

Re: The more I think about all this

But plenty of poor are poor of their own doing, some sick are beyond help, some bums are too proud to accept shelter, and as a comedian said, "You can't fix stupid.". Also, as others say, "Haters gonna hate." Some people want to destroy you simply because you exist, and people today won't accept even minimal levels of personal risk. So what do you do when people are threatening to vote you out unless you stop such an enemy scenario?

0
0

13,000 Comcast customers complain to FCC over data caps

Charles 9
Silver badge

Re: Data caps are just a small problem by comparison

All fine and dandy. But how do you force the issue?

0
0

Boffins switch on pinchfist incandescent bulb

Charles 9
Silver badge

Re: TCO? @ Jonathan Richards 1

"On the other hand if "they" had ensured that there was enough clean nuclear power available ...."

There are those who would argue that emboldened term is an oxymoron.

1
0
Charles 9
Silver badge

Re: TCO?

" This has now been exposed, though known by anyone expert for years. You need about 20W + of CFL or LED to light the same area to same brightness as a 100W lamp."

Funny. From what you say, the packages I read on a regular basis would then be accurate, because the 100W incandescent analogue in CFL is rated 26W (over 20 as you said). The watt ratio is roughly 4:1. A 9W CFL is roughly supposed to put out as much light as a 40W incandescent, a 15W a 60W, and I think an 18W a 75W.

1
0

Forums