Re: Adobe Flash player bugs
39 single spaced pages or so for one of the two articles and 54 for the other, without the code.
967 publicly visible posts • joined 12 Jan 2011
I thought CMM was a purely Military thing? I didn't know that they'd borrowed from NASA.
Can't say that I'm too impressed either as an outsider to the world of development, I thought you were always supposed to make sure new code didn't break existing stuff, and test it before deployment in the first place. I mean you're always going to have something unexpected happen, but having new code break the part that's actually selling something like in the example sounds like a piss poor QA/testing regime.
How was Fukushima recoverable?
Preventable, yes, but it was far from recoverable after the generators were destroyed and the coolant stopped flowing, even after they reconnected the coolant systems to the external power grid to get the pumps moving it was too late. About the only thing they could have done was connect them faster, that may or may not have stopped the meltdowns, but as noone's entirely sure about just how much damage there really is to the cores noone's sure about just how fast they would have had to have moved.
Now if what you mean is that it was preventable, you are absolutely correct. They could have mitigated by not building reactors on a coastline prone to earthquakes and by making damned sure electrical power would always flow to the plant's pumps no matter what, but aside from that I don't think it was a recoverable situation, unless they had ripped the vessel heads off the reactors to pull the fuel manually (a death sentence for anyone involved after about 3 to 5 minutes inside the containment building at reactor 3) which isn't realistic at all.
I know for a fact that Miami-Dade also has American Theft and Thoughtlessness, who will rip you off way worse than Comcast will and play games with your billing. I had them for two months and they did their utmost to ensure I'll never do anything with AT&T again. They sure as hell aren't the old school death star anymore.
They also have a local company called Atlantic Broadband but I'm pretty sure they're limited to Miami itself, Miami Beach and Miami Shores.
You mean OpenIndiana? I guess you could, but unless you're already familiar with Solaris' quirks, why bother? Its not impossible to learn obviously, its just another damned unixlike, but I'd argue its a waste of time on an older niche OS that even Oracle doesn't seem to care that much about. Sort of like OpenVMS and HPE, sometimes I wonder if HPE even remembers that they own it.
Anyway, If you want ZFS and DTRACE, and a great deal more support, try FreeBSD. Its really not that much different than Gentoo. If you don't care that much about ZFS but still want DTRACE with no fuss, use OSX.
I'm late on this one, but Linux isn't UNIX. *BSD is not UNIX, even though its close. Solaris, AIX, z/OS, and HP-UX are UNIX. OS X is UNIX. If it meets the Single Unix Specification, its UNIX. If it doesn't, its not UNIX. And while POSIX compatability is part of the SUS, it is not everything in it.
>> FreeBSD, NAS4FREE, PC-BSD. It isn't hard.
No it really isn't. ZFS works pretty damned well too, I've used it and btrfs (as well as NTFS which there's no avoiding if you use MS products at all, and I do) and I much prefer ZFS. The only area that I'm not convinced of its utility is through lack of experience as I haven't used it with any of our SSDs yet, but it does work exceptionally well for complex drive arrangements with regular ol' HDDs.
I use ZFS every day as well. I don't use NAS4FREE but I do use FreeBSD and PC-BSD daily. While Linux chases its tail yet again because of people bitching and moaning we've been using ZFS for what, like 12 years now?
Its actually kind of sad really, ZFS is not a new technology at this point by any means but Linux still doesn't/can't ship with it. I hope Canonical does do this and gets away with it, and its immense popularity convinces other distributions to push Oracle to change the license to 3 clause BSD so everyone can use it and it'll still make GPL zealots cry themselves to sleep. Everyone wins.
Well if you really want continuity and resiliency, you're going to have multiple encrypted copies and multiple providers with a wide geographic separation and distribution in case shit happens as a matter of course, not just as leverage with your vendors come negotiation time. Disaster happens a lot more often than people seemingly would like to think.
The community for me.
The Linux community is fucking awful, especially to newcomers. It didn't get any better during the 10 years I used it daily, if anything, it got worse and I really doubt it is ever going to improve at this point.
The FreeBSD community is really helpful and much less prone to people throwing fits over bullshit. I've been using FreeBSD for about two years now and it works, solidly, with no systemd (which I didn't mind but some people seem to really hate) if you can bother to follow directions. OpenBSD is good if security is your thing. Honestly, its been years since I heard anything about NetBSD, I didnt even know they were still making releases. PC-BSD is also pretty good for a unixlike desktop, its easy to use FreeBSD for all intents and purposes, with KDE or GNOME its basically indistinguishable from Linux using one of those two DEs unless you're in the terminal.
ZFS was the reason I tried it in the first place, the community was the reason I stayed.
>>Yes, it works well, but I got fed up
I see what you did there, even though I think that they call it something different now with DNF.
And didn't we all? I'll never forget fighting with fedup to get F21 to install and then fighting with yum to sort out a bunch of broken bullshit. Then when F22 or 23 came out and the maintainer of the kmod for the AMD proprietary driver threw a fit and no one picked it up, which is the same sort of situation that AMD users on Ubuntu are facing now apparently.
I have no idea if anyone ever did eventually pick it up because I gave up trying to play games or do anything else graphically intense on Linux and use Windows for that, and for my servers I switched to using FreeBSD, it may not be flashy but it works.
Your comment reminded me of something. Awhile back I read a really good article about a guy who put himself through figuring out what was wrong with Atari's (in)famous E.T. : The Extraterrestrial game for the 2600. Since you put yourself through debugging an Oric game, you'd probably like it.
Apparently its not that hard to make the game playable, granted that you have a hex editor.
Check it out here.
Don't forget that networking infrastructure was straight out of BSD. I'm not a Windows hater, if anything I can't stand Linux anymore (not the Kernel, I love the Kernel, the distributions killed it for me. Been using PC-BSD and FreeBSD since early 2014 along with Windows 7 and now Windows 10 and I couldn't be happier when it comes to my UNIXlike or with Windows for that matter) but it likely wasn't Microsoft's idea, if anyone it was probably whoever was doing networking for Open, Free or NetBSD at the time.
Quite agreed. They haven't even retargeted the Tridents yet, the Navy made a big deal when they de-targeted so I'd imagine they'd say something if they retargeted them. They're still actively downsizing the cruise missile and bomber fleets, and the B-1s haven't been re-nuclearized.
As soon as they do the opposite of any of that, we can say that its the Cold War again, til then its Russia willingly getting itself into the Middle Eastern quagmire, which isn't very Soviet like. The Soviets were never stupid enough to openly fight in the Middle East. They always had proxies do it for them. If anything, it shows the lack of political clout that Russia possesses anymore.
They could be trying. Its a hell of a lot harder with fiber optics than with the copper cables that were being used by the Soviets during the Cold War though. I mean it could be possible, but I don't know of any "weird" boats that the Russian Navy uses, which isnt to say they don't have any, I just don't know if they do or not. You can't just use a stock attack sub or boomer for it, its gotta have some specialized equipment.
The US Navy used to do it all the time though, check out the histories of the USS Halibut (SSN-587) after 1965 and USS Seawolf (SSN-575) post-1971. They were what we used to tap their cables. That is, until the Soviets figured out what was going on. Anecdotally (I've heard this from NSG Spooks with CT* ratings and a guy with an Intelligence Specialist rating who were all in the Navy at the time) because some cookie pusher at the State Department fucked up and asked a Politburo Central Committee member about something she couldn't have known about unless we were listening to them over a Submarine cable, this politician went and reported it to the KGB, which a couple of months later had the information stolen by the GRU who immediately had the Soviet Navy banging away at their cables with active sonar looking for the collection devices. The Soviets didn't bother encrypting anything sent over the cables because the Imperialist running dog pirates had no way of intercepting them, or so they had thought.
In reality, John Anthony Walker ("Johnnie Walker Red") probably found out about it and told the Soviets, as his son who was a member of the spy ring was stationed aboard the USS Simon Lake (AS-33) and the tenders were privy to things that the rest of the Pac and Lant fleets weren't, like what the individual boats were doing, where and when. When even the toilet paper order goes through the same supply system that missile and reactor parts do, really mundane shit ends up with an exceptionally high classification, and the Walkers were selling as much as they could to the GRU.
The Soviets located and then hauled one of the collectors up to the surface. The geniuses at the NSG or maybe even the NSA itself forgot to pull the riveted metal "Property of US Government" tabs off of them, at least on that one. The game was up at that point.
So much for plausible deniability eh?
Do you work for BBC's legal department or something? You keep saying the same old shit over and over again like it makes it okay for them to do this or something. You don't address any of the issues that are raised by blocking VPNs. I live in the US and I don't pay a license fee, I shouldn't have access. But someone using a VPN from inside the UK who does pay should have access.
>> All Most US governmental agencies use them.
I can think of two entire departments that do not and use either Samsung handsets with KNOX instead or whatever MS calls their preferred MDM and Security solution for WinPho. The Congresscritters and Justice are still hung up on BB though, as are parts of DHS, and as I recall CIA was as well as recently as two years ago. So there's plenty of BlackBerry usage in the Federal Government still, but its by no means universal any longer.
The date's been set and has been for quite awhile.
I don't know there's much anyone can do, outside of persuading the President, the JCS, Secretary of Homeland Security and DNI letting ICANN take over is a threat to National Security, which would be a tough sell.
Uh no. We're not going to be asking China to do something we don't want them doing, ASAT is one of those things we (and the rest of the world) really don't need to be doing with any kind of frequency.
Especially not when its something the Navy itself can do if they have to shoot it down.
An Aegis-equipped cruiser or destroyer can shoot the damned thing down with a Standard Missile 3, its just where do we do it? It might be a real issue to destroy this thing if there are other satellites, especially those owned by other countries, sharing the same orbit, and there probably are. The Army could also probably bring it down with the Missiles in Alaska or a THAAD battery, but I doubt the Navy would let them.
The X-37B's actually the better idea, if (and that's a big damned if) its capable of doing anything to fix or disable it. The Air Force won't say what it can do so no one really knows. And the people who do know are in a Top Secret - Secure Compartmented Intelligence measured Special Access Program that probably has an SI and COMINT caveat. They're probably not gonna say.
I agree, the bitching about Windows 10 out of the writers here is getting very old. I've been using it for two months and have had no problems. The one thing I'll agree with is Mozilla's complaint about changing default programs, it is kind of a pain in the ass and its not just for browsers.
And keep in mind what they're not telling you about Matt Asay's background, he's a FOSS evangelist, which they used to make very clear on his articles when he was a regular writer here. So much for disclosure anymore, eh?
Just like HP right?
That kind of thinking reminds me of the Army. To quote Colonel Charles Alvin Beckwith, the man who fought with the US Army for years after he'd been with the SAS on an exchange program to create something like the SAS here, which eventually became Delta Force (or whatever you wanna call em, Delta, Task Force Green, 1SFOD-D, CAG, The Fort Bragg Bicycle club, etc. It must be nice to not exist.): "The problem with officers is that they worry about pissants while elephants are stomping them into the ground". And its true.
Save a sinking ship with a tie and jacket, yeah right.
Creative Commons has something like this. CC-BY-NC.
You spend a lot of time here, Destroy All Monsters, so you surely know about xkcd, whether you like Randall's artwork or not. He licenses his stuff under it, and his description of it is pretty good, you're free to use it and share it, but not sell it.
Since Hacking Team were selling this guy's product, which they're free to do as long as they follow the terms of the GPL and include the source, he could license it under CC-BY-NC to prevent anyone from selling it. It might dissuade people from wanting to use your software in other projects, but it does prevent someone fucked up from selling your code at least.
CC BY-NC would work for what he's after, it allows the source to be used freely, but with attribution and not at all in a commercial product. Since I don't think he's selling the code, it would stop for-profits from taking his code and selling it. CC was mostly designed for artwork, but there's no reason you couldn't use it for software that I can see anyway.
I don't think FSF would think too highly of it, but really, who gives a shit about them if you're really that concerned and outraged about a for-profit that does some unethical shit using your tools in their software to make money.
>> Else, what's next? USB drivers showing advertising every time you plug your phone in? Your printer driver printing a full-page American Express ad at the start of every document? The BIOS message reading "Drink Coca-Cola"?
For the love of all that is good and holy, do not give them any ideas or else we'll be seeing that fairly soon.
NARA handles service members records after they've left the armed forces after a period of time. It would definitely help with cross referencing information with everything they got out of copying all of those SF-86s if they're really trying to create fake credentials or recruit spies.
If this was at St. Louis, that's probably pretty likely what they were after since your personnel file has your MOS, rating or AFSC on the first page, I think my 201 even has a copy of my SF-86 in it as well. If they're indeed trying to find people to sell information to them it would make sense to nail the archives, especially at that center.
Given that Dammam is basically Aramco country, and they can charge whatever they want to them and get away with it, its probably far too expensive to mail them from there or the Saudi Postal service will only give the company a bulk rate if you mail it from an agreed upon facility.
The same kind of thing exists in the West, if you're American have you ever wondered why Del Rio and Plano, Texas always seem to be where junk mail originates or goes to?
I'm amazed to see that myself. They probably torch records they want torched left and right. It must be great if you're up to something fucked up.
I dunno about the Federal government's requirements, but the parts I've worked around or in seem to save everything even if its really pointless (at least the Army saves [in triplicate, mind you] damned near everything, especially if it relates to money. Yet keep in mind that they say DoD, which the Army is part of, can't be audited as its too big so draw your own conclusions there) but I do know for a fact that my state has a really strict law about that, we call it Government in the Sunshine, and everyone from the State level down is subject to it, even some services that aren't "government" technically but use public funds are responsible for storing their data for auditing.
I suspect your State or equivalent government or maybe even your central government does as well judging by your reaction.
It is strange to see a government have something like FOIA, but at the same time be able to burn its archives so FOIA doesn't really matter. And what gets me is that no civil liberties lawyers existed that were able to see through that arrangement. The UK needs something like the ACLU to keep these people a little more honest because it's really outrageous that they can basically burn or shred what pleases them.
At least in Florida, we have this law called the Government in the Sunshine Law. It basically says no matter who you are, if you're paid by the Government, you have to retain your email archives as they are a public record and anyone deleting them is breaking the law and they actually do prosecute people over it.
It was one of many charges that my former county commissioner got charged with when they brought her to book over corruption. Its funny, since she's been convicted we've had growth, re-zoning, improvements and new construction every quarter. Before it was all going to District 4, small wonder why.
They may be doing this to have fake press conferences where Apple Employees are "journalists". FEMA got in some serious trouble with world+dog when they found out they were doing this at press conferences following some wildfires in California in 2007. I'm serious about that.
However, if Apple has a fake press conference it would applauded as something innovative from corporate communications. Compare to when FEMA did it, with the bad ol Government trying to fake people out before they put em on death trains. Gotta love people's fuckin' priorities and their level of paranoia.
Well the first experiments with central banking were ended by a congress under a war-monger that manged to get most of Washington burned to the ground after having untrained rabble serving as militia attack civilians and civilian grain stores in Canada, and a jackass* that let the second attempt's term expire.
But no, it didn't work at all. Bank runs and financial crisis were both fairly normal over here. People got sick of it after the 1907 Bank Run, which followed bank runs in 1873, 20 years later in 1893, and again in 1907, but congress shammed something together and Wilson signed it.
Y'know, Its pretty sad when your country's had enough bank runs that they get titles like they're military campaigns.
*Andrew Jackson got called a Jackass by the Adams campaign, it became his symbol and eventually the entire Democratic party started using it and still uses it to a degree, though nowadays their official logo really sucks, it looks like a DC Metro line more than a political party's logo.
I don't believe in security. Only idealists and fools do.
Edward Snowden stole how many files off NSAnet and JWICS and didn't get caught? He knew noone was paying attention and exploited that lapse in security to create a conversation the world should have been having at the end of the Cold War. Aside from the National Command Authority's emergency action messaging system, JWICS alone is supposed to be the most secure communications network there is by design, and even they're vulnerable to an insider launching an attack.
I do believe in layers of security, that old defense in depth maxim. It costs more (whether its actual money or just time) but if you believe in keeping people who don't belong away from looking at your stuff it is well worth it. As long as it actually works correctly. But its hard to tell what works and what doesn't, especially not in the early days of an Arms race.
There will always be a way to counter any sort of defensive measures somehow anyway. Best you can do is make yourself so difficult a target and make your garbage look so interesting that A.) no one bothers because the problem looks too difficult, and B.) if they do manage to succeed, they don't get anything of value other than maybe some plaintexts which will have nothing to do with the real keys but are there to drive opposing forces cryptographers insaner and waste their time.
I've spent the past 30 minutes trying to make heads or tails of what you wrote and how it relates to the IANA/ICANN debacle. I don't get it, and it is quite simply not happening. Not without copious amounts of psychoactive intoxicants that aren't suitable for a Tuesday during a four day work week.
At least I can't find a way to relate the supposed "Agnostic Farmer" (which I've heard before from a Jewish Chaplain while damned near in the geographic center of a very Muslim country, so go figure) toward internet governance.
Keep in mind, the Special Forces only recruit men that are Specialists who are promotable (E-4P) or Sergeants (E-5) with one exception that I'm not at all sure that the Army's doing anymore, where you enlist as an 18X Special Forces Candidate, go to Fort Benning for Infantry OSUT or Fort Leonard Wood for Combat Engineer OSUT, do Airborne School at Fort Benning, and then go to Fort Bragg for Special Forces Assessment and Selection and the Q Course. It takes two years of very specialized classroom training at the DLIFLC in California after you pass selection and the Q course also, and thats the part that kept me out of SF. I have a very hard time learning to speak foreign languages.
The attrition rate is like 70% overall for them. Other Special Operations Forces (this is a distinct thing from Special Forces, in the Army SOF is everything from 1SFOD-D to Orange to Det-A/39th Special Forces Detachment, the 75th Ranger Regiment, to the 160th Special Operations Aviation Regiment to Civil Affairs and Psychological Operations, but also includes the Special Forces Command) have higher washout rates actually. I've heard of Delta not selecting anyone in the past for instance.
Special Forces and most SOF also get several other types of pay and allowances that DFAS isn't listing on the basic pay chart, like Hazardous Duty/forward area pay, Airborne Pay, Language pay, Basic Allowance for Subsistence, Basic Allowance for Housing, and some others.
My Lenovo doesn't have anything like this because I blasted their crapware laden Windows 8 abortion off that hard drive as fast as I possibly could and clean installed Windows 7. But then again, after Superfish and my experience with that computer's weirdness, I'm never buying from them again.
I kind of second the post above me, giving the PLA access to whatever they sell is probably a concern for them, and they're probably backdoored to hell and back, I wonder if there are any hardware backdoors because I formatted everything with GParted after finding the weird partitions with DISKPART. DISKPART found two extra partitions when I ran it, one was big enough to run Linux or *BSD (with KDE or GNOME even, it was a good sized partition, like a couple/few GiB), on my hard drive when I was preparing for the Windows 7 install, it was really strange because they weren't the recovery partition at all, had a different file system even, so I switched over to GParted to have a look and finished the formatting part of the install with it. I called them and asked them what was up with them, because I didn't want to brick the computer and I've never gotten an answer as to why they were there. They did say I could delete them and the computer would be fine, but nothing else.
Those partitions lasted as long as Windows 8 did on that computer. All I know is that I don't trust them after my own experience with Lenovo's customer service idiots himming and hawing to me about what the deal was and not explaining anything really, and then the Superfish fiasco.
Also, don't be too surprised if the Wumao/50 Cent Army and Putinistas downvote you for complaining about Lenovo or Kaspersky. Its an occupational hazard.
Content recognition, and contextual/cultural analysis is extremely difficult for a computer to do on its own. Sometimes you really have to have someone fluent or from the culture in question to pick up on what's really being said.
But shifting all of the translation and some analysis work to a computer, even if it was possible (which it isn't, at least not yet) would be a nightmare for everyone involved. It'd just add another layer of Male Bovine Feces to work through but one that's completely unresponsive. I can tell you with near 100% certainty that it would also seriously piss off the voice and non-voice collectors who are hanging their asses out in some very hot places a lot of times to get the linguists and analysts their product. You have to be able to talk to the analysts if they or you have questions, and you can't do that with some dumb-ass computer. And I can see that kind of extra bullshit getting people killed.
I'm pretty sure that the Army at least is still taking anyone who can qualify for at least 35S, 35P, 35N, 35F, 35G, 350F, 350G, 351L, 351M, 352N, 352S, 353T, 35A on the commissioned officer side and 09L.
Then again, spaces change around day to day. One day an Enlisted or Warrant MOS or commissioned officer Career Management Field will be open, the next it ain't. Its a hell of alot more flexible on the Enlisted side than for either type of Officers, but there simply aren't as many spaces for Warrant Officers that ain't flying a helicopter and Commissioned Officers as there are for Enlistedmen.
Knowing the Army, I would seriously doubt that the two Military Intelligence brigades at Fort Meade aren't using all the personnel spaces that they can possibly get from HRC. Two brigades is quite alot of people really. I also seriously doubt a computer program's being substituted for a linguist and analyst going over it.
Black helicopter because it looks like a Kiowa misshapen blackhawk.