Re: I'm thankful I don't live in the US
You ever thought the callers are actually kinky enough to get off on their own drivel?
5256 posts • joined 10 Jun 2009
You ever thought the callers are actually kinky enough to get off on their own drivel?
"Meanwhile, Windows runs on millions if not billions of disparate configurations, and users can pretty much upgrade the day the new OS is released."
Those millions of PCs happen to run on standardized hardware pushed due to need to have a common clone design back in the 80's which grew from there. The phone market matured differently, with multiple highly-competitive firms delivering proprietary, often Trade-Secret- and Patent-protected all-in-one designs that ticked the major box of power efficiency. Such an ecosystem prevents a one-size-fits-all design and because Trade Secrets and Patents are involved (many of them being linchpins), not even Google could force the manufacturers to toe the line.
And if they sell direct to international customers over the Internet?
"Fit for Purpose" laws can trump contracts, even ones with "No Liability" clauses.
It's more than that because of the automatic negotiation and the fact they can tie it to your existing number: something IIRC SIP can't do.
And yet it was the only way to make inroads against the iPhone, since only a company like Apple (with its uniquely sirenesque appeal) could actually usurp the control from the carriers. Everyone else (Google included), the carriers could impose "take it or leave it" conditions. And if Google left it, they'd be conceding the phone market to Apple, which to them was unacceptable. So what do you do?
Besides, the core of Android (where the fault lies) is open-source, meaning anyone can make forks of it (like Amazon has done). Once someone rolls their own, it's basically out of your hands.
"You could make the phone suppliers responsible for any reasonable loses due to known but unpatched bugs for, say, 5 years after the product was last sold."
And how do you do that when the manufacturers are located in countries that simply don't care?
Hard to say. BB10 is supposed to have QNX under the hood which is normally hardened against exploits, but it's still manmade. About the only reason it and Sailfish don't make headlines are their abysmally-low takeup rates. Much like how MacOS and Linux usually didn't get as much attention by the hackers until recently.
There can be A LOT of under-the-bonnet changes to the baseline Android core to make a manufacturer's unique features run. Take Samsung's TouchWiz. They added quite a bit to the standard Android. In particular, the WiFi Calling that keeps me on T-Mobile is inseparable with TouchWiz on a Samsung phone. AIUI it's the same across the board; the only phones that do T-Mobile WiFi Calling all have custom UIs where the feature is baked in. It must be baked in pretty deep as in over two years since the likes of the S4 have been released, no one's been able to disentangle the feature and add it to an AOSP-based UI.
That'll never happen. With the car example, people were KILLED as a DIRECT result of the flaws. You'll never be able to pin the same thing on a phone and therefore can never make the risk great enough to require overriding oversight (which in turn gets pushed back by privacy concerns).
No, the OP says they work at contactless range, up to a few inches. Cassette adaptors only work at contact range, right up against the playback head. I've broken open a few of them myself to see how they work.
Then the phones can use THAT. That's the point. Anything that can take a stripe can take this.
So if an American with a Chip card comes along, the retailers are SOL?
Contactless took a slide due to retailers wanting control of the transaction. Only when Apple Pay came along did it start a comeback because the retailers didn't want to snub Apple and its loyal base. As for Chip and PIN, the transition's in progress. Many retailers have installed Chip-readable terminals but haven't turned the readers on yet. Mostly it's the third-party readers that can do it right now. BTW, most of these new terminals can also do contactless, but like the Chip reader, most retailers leave it turned off on preference. As for a phone emulating a Chip card, the physics of the reader and the design of the cards will likely preclude integration.
PS. Early experience with the Chip notes that using it is slower, especially on low-value transactions, than the stripe, which may turn off some people who already have zero-liability on small-ticket (no need to sign) transactions (as do the retailers).
"No doubt that this has been patented, even though it's the same technology used in those line audio to cassette tape adaptors we all had in our cars before in-car CD players became the norm ten years ago."
Actually, cassette adapters utilize heads similar to those used by the playback, except they're used in reverse, to induce magnetism in the heads instead of detect them. Crack one open and you'll see it really isn't all that complicated. About the only things inside are the induction head, some electronics to convert the line-level audio in to a level comparable to that stored on tapes, and some takeup mechanics to ensure the player's on the correct playback side.
But did any of those past civilizations have the power we have today, where a chosen few, if the need arose, could easily eradicate a few million people without much in the way of outside assistance? How would the oppressed masses feel if even their combined might were no match for, say, a nuke in their backyard? Even worse, what if these oppressors felt, in the final analysis, if they couldn't win, then MAD would be considered preferable to ceding power (Death Before Dishonor)?
Markets can't self-regulate because markets are run by humans...and humans, in spite of popular belief, default to irrational behavior. Essentially, they run on emotions first and logic only when the former doesn't get in the way. It's for this reason that things like lotteries (that play on inherent optimism) can make a killing. It's why you have runs on the bank and panic spikes.
"The fact that they chose to ignore the warning is purely indicative of stupidity, payola, incompetence or whatever but, now that the FBI, Department of Defense and others actually have had their fingerprint database stolen, how confident do you think they will be in the next snake oil salesman?"
Probably just as confident as they were last time. The people making the decisions now probably weren't the ones who made the decision when the fingerprint scanners appeared, have been lulled into complacency, and will willingly make the same mistakes again, banking on persistence paying off before insanity hits.
But in each and every one of those scenarios, there's something between the IT and the life involved. Since IT is mostly nonphysical, it's hard to DIRECTLY pin the blame on the IT to the point the average joe has no recourse but to blame it and nothing in between.
"You mean something like this?"
Even that's going to be shaky. See, with IT you're mostly dealing with virtual, non-physical things. There's always at least one degree of separation between IT and your life. In this case, faulty compilation, not a flaw in the code itself, was the primary problem. It could also be one of a hundred other things between the code and the life that proves the linchpin. Yet it has to be that DIRECT connection that will make people pay direct attention to the actual code enough to make it matter.
"That worldview is fucking appalling."
It's also the only one THAT ACTUALLY WORKS. Welcome to Reality. Why else has no other beast on Earth tried what we're doing?
"Jesus H mother of goddamned donkeyfucking christ, what the hell happened to us that we've forgotten so much, so fast?"
We've come to the realization that, in the final analysis, it's every man for himself. Nice guys finish last, and if you don't pass on to the next generation, you might as well be whizzing in the wind...
"If my country follows, it too won't be fit to call civilized either."
So what happens when ALL the countries fall down the slippery slope? Are you willing to say then that civilization as a whole is a failed experiment against the baser instincts of humanity?
"suitcases of campaign contributions" - BZZZT!
You broke what wasn't broken. That's just the carrot. You forgot the stick of, "Do what we demand or we'll take our business (and our taxes) someplace friendlier to us!" How else do you think oil companies can get such generous tax terms except because 10% of something is better than 100% of nothing?
And I disagree on the disagree. It's happening EVERYWHERE; you just don't see enough of it on your side yet, but it HAS happened, it IS happening, and it WILL happen, inevitably, to every civilization you see. Yours just may not be that far along, but it will be soon enough.
If "Following Orders" is the only way to put food on the table, ethics kind of takes second priority.
"We probably need a large scale disaster, like Seveso in Europe that lead to the EU Seveso Directive for chemical plants safety"
People won't pay attention until their lives are in danger. Think of all the regulations that are in place in other industries. Nearly all of them came about because someone DIED or was SERIOUSLY HURT as a result. It's about the only motivator that matters. But since IT deals primarily with virtual, non-physical matters, it's going to take something truly extraordinary to pin IT on a death.
A civilized shithole, and the inevitable result of civilization if history is any indication.
"Or maybe you just want to wait until the price of individual selfishness and cowardice on behalf of developers is measured in bodies."
About the only way you'll make people care is when you can directly pin security faults and so on to people dying. That's what it took to mandate seatbelts and airbags, recall cars with explosive gas tanks and ground faulty airplanes. Nothing less will do.
"Engineering in civilized countries functions this way. It's time to apply this to development, and IT in general."
But in really civilized countries, the executives have the legislature's ear with carrots and sticks, blocking such efforts. What then?
"Or, perhaps: "which corporation has leaked or sold your personal information today?""
What happens when the answer comes back, "ALL of them", and you're faced with a desperate need to put food on the table? Principles are tough to defend when you're starving...
"It makes some sense for users in really sparse areas, but not for high density cities, etc, where putting in some fibre and a few mobile base stations operating at frequencies that penetrate building is going to work much better."
But what about a place like New York, which is already so built up that trying to add anything else, even fiber, is a project instead of an operation due to having to dig around so much (still-operational) crap AND is a concrete jungle so dense that trying to get even 700Mhz waves through is a crapshoot?
Actually, you'd think what they want is masers (substitute light for microwave). Thing is, tight-beam communications on mobile bases suffer a huge drawback: the need for steering.
Actually, there's NO better way. It's like with the front door. If someone steals or copies your keys, you're screwed. As long as there are criteria for SOMEONE to get in, someone else can mimic that someone enough to pass the criteria also.
"Can the computer be programmed to follow some simple rules that mimic the ICANN processes? Can the software that the computer uses be perfectly open and verifiable at any time by any interested party?
Isn't it time we stop giving responsibility to humans that have naturally human foibles?"
Only one problem. Computers are programmed by humans (if not, you have a RotM scenario). They can sneak stuff behind the scenes and hide the secret code from prying eyes. Think the rogue compiler or rogue hardware scenario.
"...is there really much evidence that we could do worse than ICANN without actively working at it?"
Ever heard the phrase, "the worst thing there is with the exception of everything else"? There's a distinct chance, given the bureaucratically-charged power-grabbing atmosphere, that this is the least worst possibility on offer. Anything truly beneficial will never be backed, and anything that will be backed will be corrupt as Hell. So what's your choice?
Unless the solution that appears is even worse. And to top it all off, if anything other than ICANN were to take over, the end result may be a fracturing of the Internet standards. After all, if the US loses control of the Internet standards, might there be a mad power grab in the vacuum left in its wake?
Sense goes out the window when an existential threat looms. And as far as many people are concern, they ARE under existential threat...
Yes, but the restriction was lifted when foreign encryption standards outside of US control caught up, making the whole exercise meaningless.
You'd have thought they'd have banned them and box cutters already after 9/11. After all, there we have concrete proof of it being used to kill thousands of lives in a single day. Metal detectors, meet ceramic knives. Even with hardened cockpit doors, all that's needed is one slip during one of the pilot's snack or meal breaks and BOOM! the setup for 9/11 part two!
PS. And if that fails, there's always the dildo bomb (INSIDE a kinky woman; won't find it with anything short of a strip search) filled with homemade ANFO (like Oklahoma City). Good luck trying to stop a truly determined adversary from using things we need everyday to ruin civilization.
(Could only choose one icon; using this one in sarcasm; bear with me)
But the moment you invoke children and the future, then all bets are off, no holds are barred, no search is unreasonable. Which means the search is within the law. After all, without children, where will our country be in a few decades?
"Actually, in practice FY needs space equivalent to the total size of the collection in quite a few cases unless you're happy with the increased cost of memoising the swaps and losing the O(1) property (that would be a total no-no in crypto apps where side channel attacks need considering)."
I was talking in terms of a simple music playlist, in which case the playlist is a separate array from the actual table of music files (stored separately), which makes sense if you want to customize the playback in other ways. With the Modern Fisher-Yates Shuffle, you alter the playlist in situ by going down the list in order (direction doesn't matter) and swapping each entry you come across with any of the ones after it. All you need is one placeholder to hold values during swapping, nothing else. And it's O(1) space, O(n) time, and uses no floating points, so it's something any processor capable of MP3 playback should be able to do.
"The basic rule is that PRNGs are all but useless for anything other than toy applications. Even the best ones are subject to predictability, if one had enough data and knows the algorithm being used (and, one has to believe that there are organizations out there that can reverse engineer the hardware/software being used)."
So you're basically saying Cryptographically-Secure PRNGs (CSPRNGs) is basically a misnomer? Even if it were to be re-seeded in relatively short periods with numbers from a hardware RNG?
"However, what you want most of the time is a shuffle, not a random!"
But a shuffle (list randomization) isn't that difficult either. A Modern Fisher–Yates shuffle is iterative and needs no more space than the playlist itself. The only limiting factor is the RNG.
Overwhelmed, last I heard. There's a comparable product called the TrueRNG on the market now that seems to have plenty on hand and is competitively priced.
I've always been curious as to why the Linux kernel entropy pool is (AFAIK) normally capped at 4096 bits even in a world where there is an increasing need for good random numbers (which /dev/urandom can't always provide).
Wanna bet they can STILL access it by specially tuned microwaves and then get the password out of you with rubber hoses?
The radio chip probably takes a cue or two from the avalanche diode, which is known to be random but IINM isn't as quick.
But net streams are more compressed than disc streams. I think for SD streaming 2Mbit/sec is a safe bet while IINM Netflix says you need 15Mbit/sec for HD.
It's very much like guns, in that the very thing you need to defend yourself in a world of minutes away when seconds count is also the very thing that can start a massacre. It's part and parcel, inseparable. The only thing that determines its ultimate role is the holder, and it's AFAWK impossible to determine how the holder will use it before the deed is already done.
IOW, it's a "dual use" technology, with both sides being able to go to uncomfortable extremes. Knowledge of the atom is another extreme one (atomic power = GOOD, atomic bombs = BAD). And it's hard to perform a risk assessment because of those extremes; we can't see far enough into those extremes to be able to balance it out against human uncertainty.
"It always amazes me how certain types of management always think that timing is everything - so they'll happily release utter crap, so long as it releases on time. I've yet to meet a customer who's been pleased to accept a steaming pile of turds on the appointed day..."
Then again, that may be considered preferred to not having anything at all on the deadline. As they say, 10% of something is better than 100% of nothing. Plus, one has to figure competition into the equation. If the competition plans to release a competing product around the same time, then the deadline becomes hard because, in many cases, first in wins as people grab the first product to meet their needs. Once that happens, the market disappears and a miss is as good as a mile.