283 posts • joined 17 Oct 2006
Yet more reason to disable SSL 3
It's almost impossible to not have TLS support in anything that supports SSL, and this is just one more of the dozens of existing vulnerabilities in SSL 3. Even TLS 1.0 is past its prime and needs to be replaced by 1.2 ASAP, so it's time to just turn SSL off for good.
YouTube description says that the quad was undamaged. Those things are tough! ROTM can't be stopped that easily, we need laser hawks....
Re: 100W? Isn't the copper a bit thin for that??
Higher voltages allow lower resistance (heat). 12V and 24V are the standard PoweredUSB voltages, but even then you're still talking 4-8A, quite a bit for a little wire. They'd have to go up to 48V (PoE) to get it under the 2.1A that seems pretty standard on USB chargers now, and maybe that's exactly what they did.
Re: BS Marketing 101
That has to do with all of the conspiracy theories that Facebook demands money for exposure... they assume everyone who "liked" them is still an active user, didn't unfollow them for spamming feeds, and even cares about anything they post. FB's algorithm is dirt simple: If you stop liking, sharing, and commenting on a page of with a friend, it stops showing you anything from that friend/page, and by and large, people are actually happy to have your uninteresting crap cleaned off their feed.
Quite a few pages have paid their money only to realize users still don't give a damn, and still aren't seeing their posts, so I basically just unlike pages that persist in spreading that rumor now.
Re: Half of the Story
Didn't OpenSSL refuse numerous contributions and refuse to give outsiders any say in the project? It was run like a hobby project despite being used in so many critical things; it's more like businesses should have forked it much earlier than they did.
Blame MPEG-LA for the Pi's codes
The only reason Pi has to be activated is the MPEG-LA demanding their pound of flesh, otherwise Raspberry would be sued. In these cases you have to differentiate between vendors demanding more money because fark you pay me, and ones that are forced to by outside patent-holding entities.
Less an American thing, more a case of a self-styled big shot getting away from the corporate oversight and consequences, around a bunch of strangers with a few drinks in hand. As someone said, it's also a reflection of their general character, writ larger with alcohol; they're probably giant assholes to most of the men they encounter too, not just the women, even if the harassment isn't sexual.
Unfortunately, this is one of the most common characters you meet at conventions. Fortunately, there are lots of others and there are ways to report them, too.
Re: "a single purpose: to play demanding PC games"
I guess you've been under a rock for a decade, if you haven't noticed that the era of consoles in the living room and PCs in the bedroom is long past. Aside from all the Xbox and PS games available for PC, Steam has spent years building living-room friendly PC gaming, and in the meantime, console games have been retreating to online-multiplayer that isn't as living-room-friendly.
> No. That is not true.
Agency requires a contract! This is true in all Berne convention nations. The ONLY time agency is implicit is if the creator is both traditionally employed (not contracted) and the creation is part of their job duties. In all other cases the copyright would either be with the one who pressed the button at the right time, be shared with the one who edited the raw into a final, or simply be in dispute.
How can you possibly defend the idea that a random stranger firing the camera falls under an agency agreement?
Re: It really doesn't matter
Welcome to ten years ago, the hate train on Wikipedia left the station a long time back.
But what makes you think they've lost anything? You aren't important, you make a few minor edits and haven't donated money, so how can you speak for those who do? Your opinion means nothing to them, especially if more support it than don't; from what I've seen, that's the case -- Wikipedia is huge with the "information wants to be free" (aka freetard) crowd already.
Re: Not saying PGP is perfect
Fingerprints are so broken. They're a straight MD5, which only gets more broken every year. Every email client I've used only presents 32 bits of the fingerprint for your visual verification. It's time for PGP to move on and some of the brilliant people who put modern TLS together to start working on secure email, otherwise Google and Yahoo will be the only ones controlling it.
We've already patched and bodged SMTP into the 21st century, kicking and screaming all the way, at least; that proves that smart people could tackle PGP too.
zip-with-password is an encrypted file. Locally, at that.
Re: sounds nice on paper
And I doubt it works too well if someone sets up a VPN for exfiltration, or even a dropbox or encrypted zip. But hey, it's flashy and sounds amazing, and it keeps people from casually emailing Important Stuff to anyone, security theater at its best.
Foxit is nice enough...
...but I just finally had to dump it for Adobe last night, despite the incredibly bad taste in my mouth. It just plain couldn't handle huge PDFs, leaving a black screen instead, and it was always slow as molasses at rendering complex PDFs anyway. It seems to have been largely abandoned, no performance updates for years, just little UI changes and bugfixes. But yeah, you can imagine how awesome it feels to have a critical update come out the day I switch over.
(The fact that it's now almost as spammy about upgrading as Adobe doesn't help.)
If this is anything like the last major rewrite...
...it'll be delayed for years and hardly deliver any of what it promised. OpenGL 3 was a disaster, and with the same Khronos still in control, I don't have any hopes for this new OpenGL 5 either.
Would probably be more interesting on a county level (or in the west, ZIP code, since our counties are larger than some states). Whole-state mapping doesn't mean much for anyone living in the wrong part of the state.
Given how much of VA is hinterlands, Arlington, Richmond, and Norfork must have absolutely insane average bandwidth!
Re: Could this happen with LibreSSL too?
One thing this article didn't approach is that Chrome is based on NSS, not OpenSSL, and the totally different APIs are what make the drop-in so painful. If it was just OpenSSL to BoringSSL or LibreSSL, it would be much smoother. (Well, not so much in LibreSSL's case, since all of the neat kludgy platform-specific hacks were removed, making it much less portable at this time.)
Re: I hearby revoke your techie creds
Not really, no. Idle for a laptop is around 10-25W depending on what you have inside. The savings are less than one percent (significantly less if you have an older laptop). Getting an extra minute or three on a full charge is nice, but hardly substantial.
Re: I don't know why all the red tape is needed.
Smaller SMEs are by far the worst about abusing their employees, because they know they're too small for regulators to care about, and they'll just declare bankruptcy and vanish if they do get caught. The hospitality and restaurant industries are particularly bad, but small business in general all does it.
Smells like copy-protections
Am I the only one who thinks Oracle is going to use this to enable or disable cores depending on what you pay? They'll probably drop you down to one core if you get a bit behind on your licensing, as well....
Java? On iOS?
Re: These are getting too much
That's absolutely not true. 17 USC Section 512(f):
(f) Misrepresentations.— Any person who knowingly materially misrepresents under this section—
(1) that material or activity is infringing, or
(2) that material or activity was removed or disabled by mistake or misidentification,
shall be liable for any damages, including costs and attorneys’ fees, incurred by the alleged infringer, by any copyright owner or copyright owner’s authorized licensee, or by a service provider, who is injured by such misrepresentation, as the result of the service provider relying upon such misrepresentation in removing or disabling access to the material or activity claimed to be infringing, or in replacing the removed material or ceasing to disable access to it.
I don't see anything about WHO you represent and a lot about WHAT you claim to represent.
How do you suppose they do that? Subpoena ISPs for the names of their customers? Not every public-facing server has a public domain name, some are just badly misconfigured.
Re: Even more confused by the choice of Micro SD slot now
CF is dead, and its successor XQD was stillborn. SD is up to 280MB/s compared to CF/XQD's 168MB/s maximum, and hardly any new cards have been released for years. Lexar's 3333x would be amazing but it's been vaporware for 6 months, without even pricing released, while SD continues to advance.
Regarding the SD size problem, SD to MicroSD adapters exist just like MicroSD to SD. Just buy one. Outside of the DSLR world, MicroSD is where the entire memory card industry is going, so it's no surprise. (I'm just insanely appreciative that a slot was included; even Google dropped them.)
Re: Why bother making things so thin?
Removing the screen is the first step to every Surface repair, so yeah. Surface and Surface 2 do have replacement screens available, so Surface 3 is almost certain to get them too.
I'd argue that the screen is "fragile" since it's thin enough that Microsoft probably won't be able to repair it, and will have to replace the screen each time. Sturdier glass would lower repair costs for them as well as everyone else.
Re: Can it play Crysis?
That was a reply to the Canon 6D comment.
Re: Still News?
I think you're deeply confused about how repairable most technology is, Dave. In particular, iPhone 4 and up are actually pretty easy to repair, it's only the older ones that are a pain in the ass. They have high repairability scores. Thousands of people a day use iFixit guides to repair their stuff, whether the manufacturer supports it or not.
So no, no one actually KNEW that it wasn't repairable until the attempt was made; quite often they are.
Re: Planned obsolescence
I'm sure if people were obsessed with buying the thinnest, lightest cars that could also exceed 200MPH while barely sipping gas/leccy, cars would also be basically unserviceable. (Some are anyway, just ask any mechanic what they think about working on an Audi.)
Re: So where was the growth supposed to come from?
I think you're looking at the wrong year -- US corporate spending is finally opening up in a big way this year, after trickling up for the past couple years. It's mainly Oracle who isn't benefiting from all of this, from the looks of it.
This sounds like missing the point entirely
Most non-trivial unpackers are already based on tracing and reassembling the code as it executes, or by having completely reverse-engineered the packer. I don't understand what this solves, since all of the routines that programmers will want to protect are also likely to be the ones executed most often. I'm not aware of many obfuscation schemes that are easily beaten by "algebraic methods", so this lands squarely in the land of "fancy tricks that impress programmers but have no real-world applicability".
So... what's the options, then?
Deciding how to normalize this disparate data into something that can be combined into a single dataset is basically why Mr. Fancy Math gets paid to crunch numbers. How about expanding the article with that?
You don't consider the BOFH an administrator?
Well he administers the pints, that's for sure.
Re: XP x64 screwed?
If enough people care, whole "alternative update" sites will spring up, that will repackage Server 2003 updates for XP x64 and all the Vista/7 and supported XP variations for mainline XP (or simply "obtained" from companies that retain support contracts). Then you just repoint update.microsoft.com in your hosts file and poof, updates and false sense of security are yours for the taking.
Re: Wait a minute...
The tweet leads me to believe he felt out both SpaceX and Aerojet before the contract was awarded. If SpaceX had offered the position, who knows if they'd have the contract right now? (And a lawsuit from Aerojet instead.) There are people that corrupt out there, but it's impossible to know if Correll is one. It's conjecture until it gets to court.
Re: I reckon Musk has the goods on Correll about trying to get a job off Spacex
No one gives a damn about that, people have been going back and forth between military and civil service for centuries. I mean, no one likes it, but at this point only bushy tailed university students think that they can change anything. What gets people up in arms about this and other blatant instances is approving a sweetheart deal right before you get a sweetheart deal back from the same company. That just makes everyone angry; people like to think they have a voice, no one likes to be reminded that companies buy and sell all of the laws no matter what the people think.
Re: Not bad for the big leagues
This must be why you failed science classes. Look at the units again.
Re: Can't you mix them?
Sure, Powershell can be used purely as a drop-in replacement for Perl, but the only reason you use Bash everywhere is because it's everywhere, but so is Powershell in Windows. Leave the Bash/Perl/awk/sed ghetto behind, there are enough scripting languages that make doing everything from top to bottom simple now.
I assumed they're trying to go for the "so bad it's funny" angle, because they can't possibly be serious. It looks like something a high student would make for their first web design project. (All it's missing is the flashing UNDER CONSTRUCTION GeoCities-era banners.)
And if they are....
Re: Bitcoin is strongly deflationary
The real problem with Bitcoin is that it was designed to wildly enrich early speculators, leaving the rest of us with very little reason to use it -- basically transferring our wealth into their pockets upon buying in. So far that seems to be the only impact it's had.
It's always hilarious reading about people who think inflation shouldn't exist, as if the human population isn't constantly growing. If we were completely stable and stagnant, then zero inflation would work just fine, but aside from that something has to give when more people participate in an economy. This is basically the Bitcoin problem, people who already have some wealth would rather hoard it, since the value of that wealth increases as the economy grows. Inflation helps oil the economy in that case.
Re: Disappointing real world results...
You're out of your flipping noggin. The 4K numbers are 50-100x what you'd see on the top end consumer platter drives, and sequential read/write at over 3x. I don't think it's fair to compare this to enterprise 15K drives, if that's what you mean. (Where it's only 20x the 4K, what a slouch!)
Re: Forget pixel count/density
Why? The film-look is what draws people into suspension of disbelief for the movies. There's a reason that US TV is moving from 60i to 24p: It gives people the impression of extra polish, of larger-than-life production, and more immersive. It may not be rational, but neither is entertainment in the first place.
Maybe future generations that grow up entirely without film's limitations will see 120fps as most immersive, rather than highlighting the unreality of the medium. Headsets that eliminate all outside distraction might be the key. To me and most people today, it just screams FAKE FAKE FAKE like some kind of low-budget soap opera, because the eye is constantly interrupted by the borders of the TV.
Re: Laptop resolutions... (@Pascal)
It's not disingenuous at all. Microsoft introduced scaling in XP, improved it in Vista, and apps have slowly improved ever since. All but a few that try to reach deeper into the system than they're supposed to easily support Vista-style fallback scaling, even if it is a bit blurry it's not much worse than having a monitor with that crappy physical resolution anyway. Anything that supports (or can be coerced into using) real scaling gets all the benefits.
Games are a whole class of suck, given how many run like crap on low- and mid-range systems anyway. If driver writers stopped forcing resolution changes and let the card upscale games with extra sharpness, you wouldn't have to make the tradeoff between crappy monitor scaling and disabling features. Some work with Windows scaling and some freak out, which isn't surprising given how badly most are coded anyway. If you game heavily, you already deal with worse issues than your screen resolution.
Re: A good whine
In the world of Champagne, £12.99 isn't all that cheap; perfectly acceptable bottles exist at £4 or £5, although that's definitely "cheap" and lacks some of the fun bits of bubbly that real sparkle lovers appreciate. By the third glass you'll be too tipsy to notice anyway.
With Dom Perignon, Cristal, and Krug, all you're buying is the name... in other words, impressing your client into a contract or your date into sexytimes. Quality doesn't matter at all.
For only $200thousand-$2million more in license costs, plus doubling whatever they pay currently for DBA expertise, they could have managed an extra 1-2% performance! Absolutely gobsacking amazing.
A fully tuned MySQL or Postgres is right up there with all the heavyweights in raw performance, until you need advanced site clustering capability. (And SQL Server is just starting to catch up there.) You seriously think a startup gives two shits about that?
For most apps it's bound to be a useless waste of time, but I wonder how many security bugs in OpenSSL itself may have been prevented by always using a secure malloc.
Re: These are beta drivers.
Don't stick your head in the sand, full release drivers from all of of major vendors have crash bugs too, especially with non-AAA or newly released games. Check any forums. They're merely less common with release versions, which is reason enough for me to stick with them as I get older.
Re: You missed an important development
Boss would just remote in/screen-share if he cares that much.
I'd be much more interested in a comparison of WebScale vs My vs Maria, to be honest, both upsides and downsides. It sounds quite rosy, but there has to be a downside over it not being integrated.
Re: "Like taking antidepressants"
The window theory really isn't it; there's just lots of things that can go wrong with brain imbalances with millions of variables, and short of a non-existent total brain mapping and diagnosis, docs have to start with the common drugs and work their way down to the weird and unusual. Unfortunately, if you're unusual, a common drug might pull you in exactly the opposite direction and lead to more debilitating depression or psychotic crazy.
They help far more than they hurt, but they aren't perfect, just like the rest of life. Trying a few is the only real fix unless you manage to get your personal life in order int he meantime.
- +Comment Trips to Mars may be OFF: The SUN has changed in a way we've NEVER SEEN
- OnePlus One cut-price Android phone on sale to all... for 1 HOUR
- MARS NEEDS WOMEN, claims NASA pseudo 'naut: They eat less
- UNIX greybeards threaten Debian fork over systemd plan
- Back to the ... drawing board: 'Hoverboard' will disappoint Marty McFly wannabes