AR-15 is that like PG-13?
So the MPAA has age categories for assault rifles?
2547 publicly visible posts • joined 12 Jun 2009
Are the standards of behaviour of politicians really "declining", are they "coarsening"? The red lines on the floor between the Government and Opposition are two sword lengths apart to prevent over-exicited MPs whipping out their weapons in the pursuit of immediate satisfaction from other members.
Hmm... the pink tool set is just a pink tool set, the closest they get to saying they intend it for a woman is the rather neutral, "Parents find it an empowering gift to give children as they leave the nest. " At least the tools appear to have normal functionality for a tool set. Happy Stan destroys the function of the tool by making it a joke. Then, on page 5 of the "also bought" is:
https://www.amazon.com/TANKING-Shaped-Folding-Defense-Keychain/dp/B01NBICV9C/
is a 2-inch pocket knife in a fake key a concealed weapon? Would anyone be stupid enough to use it in self-defence? Hopefully, the only damage will be to whatever the owner uses to carry it.
@Barry Rueger - "the questions could be answered by anyone with access to my Facebook account (assuming I actually gave FB the info)"
It's worse than that, you don't even need a FB account if your maternal grandparents post that you visited them on their FB account. These questions are inherently leaky.
@Martin Gregorie - "Emergency services will be unable to operate if all road-using vehicles are forced to become autonomous."
Fireman: "Take us to Mega-Shopping Centre, Townsville, maximum speed!"
Fire Engine: "A fire has been reported at your destination, for your safety and convenience you are being re-routed. New destination Maxi-Shopping Centre, Citiesville"
@AC - Sarcastic? Me?
TBH, I was aware it was possible to replace the batteries ("quite easy" for very small values of easy... it does involve a specialist toolkit and instructions), but I didn't know Apple would do it. Easy would be like the Nokia 6150, possible with one hand, no tools.
@ Jet Set Willy - Sorry I can only upvote you once.
@Kiwi - "It was thought that making the workers responsible for their own safety would reduce the workplace accidents."
Can't that lead to employers demanding bribes from workers?
"Here's your work station"
"The safety guards don't work"
"It's your work station, I'm going to have to report you... unless..."
Yes, I did read what you wrote, and I found your reasoning unpersuasive.
I do apologise for my sloppy use of exploits instead of bugs (maybe vulnerabilities would be even better).
I also think I expressed this wrongly: "Operationally, you can't assume your 0day is really a 0day for your enemy - maybe they found it last week, so your deployment strategy should assume that many, or even most, of the exploits new vulnerabilities that you discover are already known." Sorry for my sloppy writing.
"Finding and exploiting bugs is significantly more work than developing patches." I suppose that depends on the bug. There are cases where malware exploiting a bug has appeared very soon after the patch was released. Which means that either it was quite simple to exploit, so the malware developer(s) thought it worthwhile to try to catch the slow patchers by reverse-engineering the patch to understand the bug and then develop the malware using it, or they'd already discovered it and were quietly using it on high-value targets, so it was no trouble to do a mass release when it was going to loose value anyway.
"It's pretty rare that the same bug is discovered and successfully exploited independently by multiple actors." Got any statistics for that? That seems like an overly-optimistic assumption. Be a pessimist: if you've found a bug, it's low-hanging fruit that almost anyone could find and someone probably already has.
At least we agree that we have to assume there are exploitable bugs we have no idea about, and we need proper layered security.
@patrickstar - "Which means that they must be allowed to stockpile 0days"
Why? If you keep it secret, you are extended the time that your colleagues within your agency, and your fellow citizens outside, are vulnerable to it. Defensively, you have more than one opponent, so (assuming equal "effectiveness" of the research teams) you won't be the first to discover most exploits and getting it patched is damaging your opponents' abilities to attack you.
Don't aim for a 0day stockpile, aim for a 0day treadmill, you keep searching for new ones before yesterday's are patched. Operationally, you can't assume your 0day is really a 0day for your enemy - maybe they found it last week, so your deployment strategy should assume that many, or even most, of the exploits are already known.
TL;DR:
0days are like strawberries, they go mouldy quickly.
@AC - "Now if I was Kaspersky I would just add the US cyber warfare signatures to their database along with every other countries spyware attempts and let market forces do the rest."
That's SOP for AV companies. Look up the 'FBI Magic Lantern' controversy from 2001 - 2007.
Anyway, how do you know (barring the smoking gun of source code) that a malware sample was developed by an intelligence agency? Do they tell you, if you phone up and ask nicely?
@VinceH - I've got the evidence of drawers full of the extra cables that came with everything, because there was 'one of each' in the box, I used the one I needed, and stored the rest for all those occasions when I would need the alternative. Of course, I can never find the right bloody alternative when the occasion arises!
And then there's the times where you find the monitor has been hooked up to the computer with both VGA and DVI cables...
But now we face a future where, because there are two cables that appear interchangeable but have different capabilities, some people will be paying through the nose for a fancy cable they don't need, and others will be complaining their new TV isn't an improvement because they've used a low-spec cable (possibly because it was thinner and easier to route, or a colour that matched their decor).
icon - [wanders off muttering about finding that UHF-to-ultra-wide-SCSI adapter]
"Our thoughts go out to the senior officer who has to, with a long straight face, tell a room full of pilots that this is absolutely not funny."
I'd suggest calling out the miscreant in front of his colleagues and asking, "Are you compensating for something?", leaving him with a humiliating nickname would discourage any repetition.
Streets? No, not merely streets, entire towns, cities, and even states (I'm looking at you, Australia!) were named after Victoria, along with rivers, lakes and even Hong Kong's famous fragrant harbour. Though HK did quietly drop using the name Victoria for it's capital, even before the handover. It's now fairly indistinguishably divided into Western, Central and Wan Chai Districts.
Neither Liz nor Charlie have any hope of catching up, without an Empire.