Feeds

* Posts by tnovelli

122 posts • joined 4 Feb 2011

Page:

Intel unleashed octo-core speed demon for the power-crazed crowd

tnovelli

Re: @Joerg

Agreed in principle... but 3-4 GHz CPUs have been around for 5 years, maybe 10 for the most 'leet :)

0
0

Comcast-Time Warner merger: CloudFlare's fare flare fair warning

tnovelli

It's more like a CDN/host hybrid. It takes over a site's DNS and routes all traffic through the CF infrastructure, for DDoS mitigation etc. And it has a free tier that takes about 3 minutes to set up... they're kinda asking for trouble with spammers/phishers/etc.

0
0

Goog says patch⁵⁰ your Chrome

tnovelli

I've been using Pale Moon for some things; not bad. It's a mod of Firefox 24.x, so no newfangled GUI, and readily available in 64-bit. Only problem is FF24 is becoming obsolete already (it's a whole year old) and FF29+ is crap... what to do? Oh nice - fork Firefox! (http://forum.palemoon.org/viewtopic.php?f=1&t=5440)

Still using Chrome/Chromium for development though... it has the best devtools and the most users, by far. That's the way it is...

0
0

China hopes home-grown OS will oust Microsoft

tnovelli

OS from scratch? easier than you think

If you're targeting fairly uniform hardware, you can build an OS in a year. What you need is a single architect and a few developers, mostly experienced pragmatic types along with a little young blood and a couple OCD types to curtail the "we'll iron out that API later" hand-waving.

The tough part is getting enough apps written (preferably from scratch) for you pristine new OS. And, as mentioned in the article, having too much government funding and too many developers pulling in different directions.

Basically, anyone can do this. You don't need (or want) one government-backed OS to rule them all.

0
3

The agony and ecstasy of SteamOS: WHERE ARE MY GAMES?

tnovelli

Re: Does Steam OS support linux games, not bought through Steam?

FYI- like a lot of Linux distros, SteamOS is built on Debian 7, a stable vanilla release for people who know what they want. I just use deb7, not steam or steamos... but I guess Valve just added a nice default GUI and all the drivers+libraries you might need for a gaming box, the goal being to "just work" after beta testing.

WINE runs some Windows games decently, probably not the latest AAA titles but certainly lots of indie & older titles. Total crapshoot of course. May work one month and not the next.

0
0
tnovelli

Re: It's unlikely to improve

DrXym, have you actually tried game coding in Linux within the past decade?

0
0
tnovelli

Re: It's unlikely to improve

Speaking as a developer... Windows is a pain in the ass. Linux is easy if you're building a new game engine with OpenGL. It keeps getting better while Windows decays into a fragmented hell like Linux was 10 years ago. While I try to maintain a Windows build, it's an afterthought.

Expect to see some SteamOS exclusives, at least from indies.

For marketing purposes... SteamOS and Linux have a "cool factor" where Microsoft only has volume. Guess which is more important for a niche developer who's happy to get 10,000 sales.

8
5

Lazy sysadmins rooted in looming Mozilla cert wipeout

tnovelli

Re: PKI..

I'd like to scrap the whole CA infrastructure. It's no more trustworthy than self-signed certs; probably worse.

0
0

Your move, sucker! Microsoft tests cloud gaming system that cuts through network lag

tnovelli

twitchy Doom 3?

FPSes are relatively tolerant of lag. They should be testing twitchy 2D games.

0
1

Best shot: Coffee - how do you brew?

tnovelli
Windows

low-tech for me

I doubt anyone will read this far but... anyone else use a percolator? Or grind the beans with a mortar & pestle?

0
0

Claim: Microsoft Alt-F4'd Chilean government open-source install bid

tnovelli

Android sucks too

You can't assume Microsoft haters are like that. Apple was hateworthy before Windows even existed, Google's been getting there for 10 years, and Linux ain't pretty either. Microsoft is merely the worst so far.

3
2
tnovelli

Re: Big deal

Microsoft must spend a lot more than $15M. They seem to have people everywhere, especially in the public sector, pulling dirty tricks to undermine all their competition (open-source and otherwise).

7
1

RealVNC distances itself from factories, power plants, PCs hooked up to password-less VNC

tnovelli

Re: Pretty sure we had...

Yep, they did the same thing in 2012. Maybe every year. Just keeps getting better....

1
0

'Chinese crims' snatch 4.5 MILLION patient files from US hospitals

tnovelli

Throw in the towel

It's utterly hopeless. I do my best to stay away from healthcare IT, and I've still seen some shit. I assume this kind of thing happens all the time and simply isn't detected, especially in CMMS and the other myriad government bureaucracies.

0
0

Think crypto hides you from spooks on Facebook? THINK AGAIN

tnovelli

Re: Old news..

A store-and-forward network (uucp style) with random timing, random padding, and random routing.

1
0

Take the shame: Microsofties ADMIT to playing Internet Explorer name-change game

tnovelli

Re: Too little, too late

If they made it open-source, BSD licensed... I'd give it a shot.

1
0

It's time for PGP to die, says ... no, not the NSA – a US crypto prof

tnovelli

Re: Not saying PGP is perfect

Read the article. He said newer Elliptical Curve keys are a lot smaller, i.e. a 40-char MiniLock key equivalent to a ~10x bigger 3072-bit PGP key.

0
0

Totes AMAZEBALLS! Side boob, binge-watch and clickbait added to Oxford Dictionary

tnovelli
Thumb Up

"a course that will school you to code from the console like a true neckbeard"

Nice... they're telling coders to man up. Yep, that's in there too.

1
0

Password manager LastPass goes titsup: Users LOCKED OUT

tnovelli

Re: Lastpass

there's KeePassX - open source & cross platform

4
0

HTTP-Yes! Google boosts SSL-encrypted sites in search results

tnovelli

$10/yr is the tip of the iceberg

Much much more when you have multiple domains, wildcard domains, CDNs, etc in a business/organization. Plus the time spent/wasted coordinating with contractors and subs, explaining arcane bullshit, getting certs purchased, installation, configuring crazy old backend stacks to work with SSL, patching OpenSSL, downtime due to expired certs, etc, etc.

7
1

Microsoft: IE11 for Windows Phone 8.1 is TOO GOOD. So we'll cripple it like Safari

tnovelli

Re: Mobile-specific web pages are usually a UI travesty

Can't zoom? Blame Apple for this nonsense which originated on early iPhones:

<meta name="viewport" content="initial-scale=1.0, user-scalable=no">

You need that if you want a mobile site to fill the screen width and only scroll vertically (because 4-way scrolling on a phone is pretty horrible). You can say user-scalable=yes, but users will zoom in by accident and then wonder why everything's broken. What a trainwreck.

Oh, apparently Android browsers ignore this... but web designers all use Apple.

4
2

Comcast, Time Warner boost net speeds in Google Fiber city – COINCIDENCE?

tnovelli

Probably coincidence

Guys, the original article says the cable companies are only increasing speeds from 25-50 to 50-105 mbps, nothing close to Google's 1gbps. Seems to be typical for urban areas. I live in a semi-rural town of 30,000... last year Comcast upgraded service to 25-50 mbps, for real, pretty consistently. They serve a decent chunk of the surrounding rural towns too.

Problem is the lack of competition, unserved rural areas, and apparently inadequate infrastructure in some cities. State/municipal broadband gradually rolling out though... maybe that's what's keeping the cable companies on their toes.

0
0

Another day, another Firefox: Version 31 is upon us ALREADY

tnovelli

Re: Firebuggered?

If they wanted to do it right, they could show a "recommended extensions" dialog after installation, also available from Addons. Want pdfjs and sync? Want our devtools and/or firebug? Various ad blockers? Check the boxes.

But I guess the extension architecture might be inadequate somehow, and the recommendations might be unfair or "whatever's most popular".

0
0
tnovelli

ESR, heh

If only end-users used ESR... like back In the good old days -- of 2012 -- when ESR was "release", 25-28 would've been would've been 5.0-beta, and 29-31 would've been 5.0-rc1, rc2, rc3... and end-users were not auto-upgraded to a new release which breaks everything.

I remember there being some "move the web forward" rationale for this, having to do with HTML5 and security patches. Time to rethink that. Yes, Microsoft is actually setting a good example, problem is nobody trusts them, for good reason.

1
0

Mozilla fixes CRITICAL security holes in Firefox, urges v31 upgrade

tnovelli

Re: Memory growth in v29+ on Win 7

Yeah, FF 29 broke Firebug 1.12, so you need 2.0, but there have been serious bugs in that too. 2.0.2 came out last week; maybe that's the long-awaited fix.I can't confirm, as I reverted to FF 24 when 29 came out, and I shifted to Chrome for development earlier this year. In that time I've learned that Chrome has some nasty bugs as well. Screw 'em all.

1
0

50,000 sites backdoored through shoddy WordPress plugin

tnovelli

Re: Old news - WordPress is a disaster

WWW is a huge pile of fail. FTFY.

And we keep coming back for more....

0
0

UK government officially adopts Open Document Format

tnovelli

Consumers?

It's up to document producers (also known as government bureaucrats) to lead the way.

0
0

NEW, SINISTER web tracking tech fingerprints your computer by making it draw

tnovelli

AdBlock

Just subscribe to the Privacy / Tracking / AntiSocial filter lists. No "like" buttons, no GA, no AddThis... it's beautiful.

0
0

US judge: YES, cops or feds so can slurp an ENTIRE Gmail account

tnovelli

I have a folder called "crack dealers".. as of 2 seconds ago. It's full of recruiter spam.

2
0

Programming languages in economics: Cool research, bro, but what about, er, economics?

tnovelli

Re: @Charles Manning

I would use APL if it was nicely integrated with today's software environments. Modern languages suck at vector math. NumPy feels like the cumbersome Python bolt-on it is. I'll take the funny symbols any day.

I wrote a little APL frontend to NumPy a few years ago, and someone made one for Javascript. But just setting up the keyboard layout is a chore, and there's a lot more to it implementation-wise, and I've got a million other things to do...

0
0

NSA man says agency can track you through POWER LINES

tnovelli

Re: "You would need a tap on every one of thousands of transformers..."

No you wouldn't, not if you're already tapping millions of microphones.

I doubt it's precise... maybe state- or country-level accuracy. Useful for tracking an elusive whistleblower, though.

0
0

VC who wants to split California REVEALED as Silk Road Bitcoin slurper

tnovelli

Re: Splitting California

It's true, the poorer parts of California (and NY and MA, where I've lived) would be better off without the big cities which tend to leech off them. (Maybe that's why they're poor, eh?)

Also true that Bitcoin is more stable than some countries' currencies.

0
0

Oh SNAP! Old-school '80s Unix hack to smack OSX, iOS, Red Hat?

tnovelli

Re: Confused...

We all make mistakes... especially when we're in a hurry.

2
0

AVG: We need laws to stop biz from tracking our kids

tnovelli

He's probably right

Software like AVG can't do much about social engineering, and so far at least, it hasn't been very effective against tracking and malware. Laws are ineffective against hackers and malware, but a company selling apps or running websites is an easy target for enforcement IF the law is clear. I wouldn't get my hopes up, but I'm not opposed...

[Edit:] A law against data mining would be a can of worms. Simply saying "you can't ask for certain personal info" woud stop the most egregious behavior.

2
0

MONSTER COOKIES can nom nom nom ALL THE BLOGS

tnovelli

Bingo

Yup, servers can't properly fix this. If they accept unlimited cookies they'll get DoS'd. There's no way to skip long cookies without receiving and parsing them... for example:

GET /archive/2014/06/browsers-are-total-crap

...most of the important headers...

Cookie: <100 MB of garbage>

Connection: keep-alive

Cache-Control: max-age=0

I suppose a server could stop after ~80k of cookie and ASSUME those last two headers are the only ones after Cookie, but that seems dodgy.... and more importantly it would block POSTs from commentards.

0
0

Boffins untangle why your software builds fail

tnovelli

Re: Errm, Richard...

I find that life's easier when I use a stable linux distro, even if I have to build a few things the old fashioned way. This is especially so with music/audio, where the apps are rapidly improving (and some aren't even included in distros yet) but you want to stick with an older kernel because the new ones keep breaking things. Even in webdev work, given the choice between an outdated package or config-make-install, I'll sometimes choose the latter. I'm used to it. :D

1
0
tnovelli

It gets even better

No web devs here? So many levels of hell now....

- configure-make-install hell

- linux package dependency hell

- php/python/ruby/nodejs package system hell

- wordpress plugin hell

- browser bug/feature hell

- frontend javascript mix'n'match hell

- css's own special hell

- 3rd-party SaaS soup hell

0
0

Mozilla to cram a full web-dev IDE inside Firefox browser

tnovelli

Re: Marvellous.

Yep.. 10 years ago Firefox was JUST a browser, and it was great.

WebIDE looks like a training environment for Firefox OS mobile app creation. Try it out, then graduate to a grown-up webdev env, or iOS/Android. Should be a separate addon like Firebug.

2
0

Expert view: What is the forecast for cloud backup?

tnovelli

Re: how much data loss can you afford?

Definitely. So many idiots out there giving advice to basically do what Code Spaces did. Encrypted S3 backups don't do any good if your crypto keys and S3 credentials are sitting there on your highly hackable webserver.

0
0

YouTube will nuke indie music videos in DAYS, says Google exec

tnovelli

Re: An opportunity for the competition

Nice thought.... but most of them are already dead. Since this article was posted, one more (Pixorial) announced it's shutting down. Vimeo, Metacafe, Dailymotion, and Clowdy are about the only ones left in the running, and that's quite a stretch.

If all you care about is the music, sites like BandCamp and SoundCloud and Jamendo are competitive with Youtube.

2
0

Tech companies are raising their game (and pants) post-Snowden

tnovelli

"secure and private internet protocols, which balance legitimate access to law enforcement"

Whoa there! Protocols are either 100% secure, or not secure at all. Law enforcement backdoors are unacceptable. Cops can do detective work the old fashioned way, and find physical evidence. Electronic evidence should be inadmissible in court anyhow; it's too easy to forge.

2
1
tnovelli

Were they all in denial?

Am I the only one who *expected* the NSA to be tapping fiber optics all over the world? It's a logical step from the telephone and radio interception they've done for decades. Mark Klein confirmed it in 2006. Paying or intimidating private companies into handing over customer data? Credit card companies were doing that 20 years ago.

I'm only surprised at how amateur these guys are. The DUAL_EC_DRBG standard. The internal Sharepoint crap. The powerpoint slides where they brag about how 'l33t they think they are for doing script-kiddie hacks. The woeful lack of internal security...

5
0

Docker blasts into 1.0, throwing dust onto traditional hypervisors

tnovelli

Not convinced

As a sysadmin this sounds nice to me in theory, but as a programmer I'm afraid it will usher in a new era of platform dependence.

...as in "This website is only known to run on CentOS 5 (i386) with PHP 5.2, Python 2.1, Ruby 1.8.42, MySQL 5.1, and OpenSSL 1.0.1d"..... what could possibly go wrong?

1
1

Indie record labels to haul YouTube before the European Commission

tnovelli

Yeah! I find all kinds of stuff on there... mostly amateur recordings and bootleg concert videos from before I was born, which seem to pass below Google's indie-label-extortion radar.

But why Youtube? Why isn't there a blogosphere for music/video? There should be.

0
0

Linux Foundation flings two full-time developers at OpenSSL

tnovelli

Re: LibreSSL

LibreSSL is a stripped-down fork of OpenSSL, not a from-scratch alternative. Given that the SSL protocol itself is pretty flawed, the LibreSSL approach seems like the best compromise for now.

3
1

TrueCrypt considered HARMFUL – downloads, website meddled to warn: 'It's not secure'

tnovelli
Mushroom

Replacement?

1. Ideally you understand all the crypto algorithms and write your own software, as simple as possible. You write your own OS, compiler, everything. You fab your own CPU and chipset.

2. Too hard? Ok, download something from the internet, examine the source code until you understand every line of it and know for a fact that it's flawless, and compile it yourself. Do that with the whole OS. Audit your hardware, somehow.

3. Still too hard? YES. You're screwed. Assume all electronic devices are 100% insecure.

3
0

Google's SPDY blamed for slowing HTTP 2.0 development

tnovelli

Re: WWW cannot be saved

No, do you? NSA fucking loves SSL.

Dat false sense of security...

0
0
tnovelli

WWW cannot be saved

Just search 'spdy issues' and you'll find plenty. A big one is that SPDY *requires* SSL/TLS in order to bypass proxies.

Glancing at the mailing list, I see Poul catching flak for other proposals, like "get rid of cookies", which would be great but break ~99% of websites. Thing is, mandatory SSL/TLS is also unrealistic. If that's in HTTP 2.0, most of the web will stay on 1.1.

And SSL/TLS is a security & management nightmare which should be deprecated ASAP, not enshrined in the next generation of protocols.

But anyway, this is all an exercise in turd polishing. The entire WWW is a rough prototype, long overdue for replacement.

2
3

Help. Mailing blacklists...

tnovelli

Re: Don't

"E-mail is dying in the water anyway. Within five years, it will be unusable"

That's what devs thought 10 years ago. Didn't happen. We know email's got issues but I'd like to see you invent a decentralized communication system that does any better when *everyone* is using it. But if you want to do something *useful*, the world needs better email readers after 10 years of neglect.

2
0

Graphics pros left hanging as Adobe Creative Cloud outage nears 24 hours

tnovelli

Is this any indication of the reliability we can expect from the new Firefox DRM by Adobe?

7
0

Page: