Posts by Charles 9

Re: That's kinda the minimalist solution

But then wouldn't they just hack that library? Seems you can't win one way or the other without going back to the bad old days, but then we'd just be outvoted by the rest of the public...

Re: Rearranging the deckchairs

IOW, soon all the tracking will move server-side (where it can't be blocked or even detected) via methods essential to the modern operation of the web (like client hashes meant to prevent things like CiTM attacks). Are we just taking the long way round to the Stateful Internet?

Re: Definitions, please

OK, so how about something from images.dailymail.co.uk? Or cdn.dailymail.co.uk? Not in the hierarchy (for sensible reasons), but not third-party, either.

Re: It's about time

'penny wise, pound foolish' I say.

Then how come it works SO well that Chrome overtook Firefox, either because or in spite of the single menu button. Frankly, I don't see what all the fuss is about. An extra click or flick isn't gonna kill anyone, and I can use Waterfox just as easily after as before. Perhaps it's time to pick your battles. You've been clearly outvoted on the UI, move on to security.

Re: So how is this Google, or Android's fault?

No, it's the OEM's fault they forced Google's hand when Android started out. They wanted proprietary add-ons or they wouldn't sign on. It's only with Android the clear dominant OS that Google is able (starting with Nougat) to start taking back control of some of the core of the OS, but without the OEMs signing on, they never would've gotten off the ground in the first place against the iPhones.

Plus, what if they use your "open" accounts to glean information for a social engineering attack to get to your more secure stuff? That's one reason most sites insist on passwords and so on: they don't want the liability, especially if they're under journalistic scrutiny.

Re: Store all your passwords in your wallet...

Thing is, you can MIS-recall your algorithm, and everything starts going wrong and you can't recall the right method you were using. I routinely have to deal with people with such bad recall they common words, sometimes their own name, yet need online access to reach their appointments, benefits, bills, etc. Makes me worry if their caregiver pops the cogs before them from stress...

$64M Question: Change it into WHAT? As bad as passwords are, any alternative cooked up has had drawbacks of its own (biometrics can be copied, dongles can be lost, etc.).

Re: What's so difficult?...

"Three tries are you're out."

So what happens when it's am executive that gets locked out, misses closing a deal because of it due to not being able to get critical documents in time, and starts asking, "Who hired these clowns that cost us the deal?"

Re: The Only Winning Move is Not to Play

To which the next question would be, "Then what do you use that can work even with CEOs with poor recall, can't be stolen or coerced, and can't be copied or imitated?" If even ONE of those gotchas remains, it WILL be exploited: for the lulz if nothing else.

Re: It's just a mental trick

And I routinely deal with people with really, REALLY bad memories. That's why I always counter "correcthorsebatterystaple" with "donkeyenginepapercliprong". Their thought processes get twisted around, leading to incorrect recall. Now multiply that by a few dozen.

Re: Dictionaries

"Then the people who pick good passwords get to keep them and the people who pick poor passwords have to come cap in hand to IT and ask for a new one."

Watch it. An executive probably won't go through that door with a cap but with a replacement, and probably a report of a reduced IT budget and a communique to his friends at other firms black-marking you.

Re: Over Your Head

But like I said, what do you do when the problem comes FROM the board?

Re: Over Your Head

EXACTLY! The real problem is if it's the senior management who isn't following the procedure. You can't force them and executives to do anything because they're over your head (unless you're an executive yourself). Any attempt will be met with a "Who hired this clown?"

Well, how do you make them care, especially if they're over your head?

Re: This is a perfect example

EVERY man has his price.

- Even more too many to cite.

If you can talk to a legislator, you can bribe or blackmail him, and there are ways around any law, such as hiring siblings and spouses as lobbyists (now go ahead and try to stop them talking to each other, especially if they have children).

Re: Default passwords...

Last I checked, though, the Internet can't directly cause a fire and damage neighboring property (including PUBLIC property like the nearby street): allowing an overriding public interest like with the cars. Plus, most Internet infrastructure is privately owned.

Re: @897241.... ans so on

So what happens when you NEED (not want, say for employment reasons) a spyphone just to stay a member of modern society? Do you TRY to go to the cabin in the mountains where the landsats can still see you? Or just bend over and realize you're simply outnumbered (as in everyone else wants to rape your data, and they only have to be lucky ONCE to pwn you for life)?

Re: recaptcha?

Well, Craigslist had no choice if they wanted to block bots. Anything homemade would likely get broken, and there's always CAPTCHA mills.

Re: 'The nature of some data may also surprise. App developers receive your age and gender'

>"Leverage" is not a bleedin' verb.

https://www.dictionary.com/browse/leverage?s=t

verb (used with object), lev·er·aged, lev·er·ag·ing.

to use (a quality or advantage) to obtain a desired effect or result:

She was able to leverage her travel experience and her gift for languages to get a job as a translator.

So leverage IS a verb (a transitive verb, to be specific), and if I have to, I'll look up OED, too.

Re: For a system that requires no encryption - why wait on boot

"no - not every system has a need for it - my media server as example."

What makes you think a malcontent can't usurp your media server and use it as a springboard to other parts of your network...or even as part of a botnet to attack the greater Internet (in which case it doesn't matter if it has secrets or not, just oomph and access).

Re: "[T]he Trump administration was cracking down on Muslim people traveling into the States."

"Dear Peter, no UN member state¹ may, in the legitimate exercise of its sovereignty, discriminate against people by reason of their metaphysical / religious convictions, culture or ethnicity."

Says nothing about the places or people said people have visited.

Re: Entering a country becomes more and more like entering a prison.

You also forget India and Israel. If those two are low bars, then the bar must be pretty low EVERYWHERE.

And note, a lot of these are speaking from firsthand experience. My own firsthand experience tells be to be cautious no matter where you go.

Re: Lots of Stupidity...

"Better phones have two (or more) SIM-slots for that. ;-)"

You can't really rely on that going to the US as LTE Band III is taken (1.8GHz was already in use by the government before LTE was even a thing). The chief LTE Bands in the US are II (shared), IV (T-Mobile), XIII (Verizon) and XVII (AT&T). Now, I don't know about newer phones, but I always kept an unlocked Galaxy S5 on hand for international travel because it at least supported Band III, and I usually look for an inexpensive local phone just in case. Band issues are the main reason I don't get much truck for dual-SIMs (the phone still has to support the correct bands in any event, and some of the carriers like Sprint use the newer TDD-LTE rather than the more traditional FDD-LTE used by the above).

Re: So easy

Single? Given how many machines there are in the country, I'd say they're a bit harder to bribe than manual vote counters (and if you know the size of the major political parties, you cannot rule out the possibility of them infiltrating and/or bribing most if not all of them).

Re: Security devices and web interfaces

And if you get overridden because the higher ups insist on it and tell you to Do It or Else?

Re: Africa

What entity supports the currency that is the basis for the e-commerce being used there now? Last I checked, most currencies are fiat and require something like government backing to have any worth.

Re: Why does Apple want eSIMs?

"Now they're well known as ..well, a phone brand... so the more customers who can use their device the better."

But the best way to do that is to find a way to have universal LTE frequency support, supporting ALL FDD and TDD LTE Bands so that they can truly be used anywhere in the world, regardless of the operator and the frequencies used (case in point: it's tricky to buy a US phone that works well internationally or vice versa because the frequencies they use are often mutually exclusive, for reasons predating LTE). Then they won't need an eSIM or anything of the sort: just pop in a SIM, ANY SIM at all and it just works: first time every time. That's the kind of ease of use the late Steve Jobs would be crowing about.

Re: Startup time

They fixed the startup in the 2.10 cycle by making font loading asynchronous, so it doesn't have to wait for all the fonts to be loaded to continue startup.

Re: Please use standard Windows UI

Anyway, according to the developers, this is because GIMP uses GTK+, which IS the standard I/O system if you're using GNOME IIRC and doesn't accommodate any other because of this. It's not just Windows users complaining. Those using other Linux desktops like KDE (which uses QT) complain, too, and have been given the WONTFIX.

Thing is, this isn't really an issue with GIMP but with GTK+.

Re: 'It's not clear whether he also has a FB account or whether he's a non-account'

"More for infrastructure to comply or 4% of turnover for the rest of the firms existence?"

Ever heard of The Cost of Doing Business? If they can find a way to reduce their legal turnover (I don't think there's a fine in the world that can't be finagled--that's what lawyers are for, partially), they could just pay the fines so as to keep going.