* Posts by Jeff 11

288 posts • joined 7 Jul 2009

Page:

GitHub flub spaffs 8Tracks database, 18 million accounts leaked

Jeff 11

As the company explains in its fess-up post, the source of the leak was an inadequately-secured GitHub repository: an employee wasn't using two-factor authentication. 8Tracks found out when there was an unauthorised attempt at a password change, and on investigation it found backups of database tables in the staffer's repo.

The source of the leak was storing backups in source control on a public service, and inadequate access controls - either allowing devs access to production data or ops to source control! How does 2-factor auth address that?

2
0

ICO fines Morrisons for emailing customers who didn't want to be emailed

Jeff 11
FAIL

So basically this tells businesses that the cost of blatantly violating the rules and spamming people is roughly £0.08 per address - sounds like a good deal to me. Nice one, ICO.

13
0

Firefox 54 delivers sandboxes Mozilla's wanted since 2009

Jeff 11

"As Mozillan Ryan Pollock explains, “Firefox now creates up to 4 separate processes for web page content. So, your first 4 tabs each use those 4 processes, and additional tabs run using threads within those processes. Multiple tabs within a process share the browser engine that already exists in memory, instead of each creating their own.”

I'm not saying this approach can't work, but having some experience in this area, it sounds like Mozilla's devs may have created a lot of hassle for themselves in trying to combine processes and threads to achieve their desired outcome. The old problems of one misbehaving tab deadlocking the others (well, presumably only a quarter of them) may still exist, and with the added problem of having to rebalance running tabs to the other 3 processes when one becomes overloaded? I appreciate this approach saves memory, but the one-tab-per-process model devolves so much of this scheduling and resource management overhead to the OS kernel, which is what it's designed to do.

4
1

Roses are red, violets are blue, fake-news-detecting AI is fake news, too

Jeff 11

The problem with feature detection and machine learning in general is that it assumes honesty in the learning material. Emergent technologies in an environment where the spectrum for deception is effectively infinite will at best result in an AI-poisoning arms race between the liars and the engineers trying to root them out. Full Fact's solution might make it harder for liars to get their material on the web, but any system that classifies data based on relationships between statements, news organisations, past reputations and so on is completely open to being gamed.

Blockchain could be *part* of the answer, in a cryptographically reliable, extensible chain of evidence of where a fact came from. Having to publish a chain of sources when they source garbage from World Truth Tv or even Wikipedia might make journos a lot more responsible about fact checking in the first place, and out those who mutate the truth for their own ends. In the same vein, reports that come from individuals that fanatically pursue truth on the front lines are going to be that much more credible.

0
0

FTC accuses man of faking its news to further tech support scam

Jeff 11
Mushroom

The FTC says the so-called press release is fake news.

Welcome to 2017 - the year when the scam died and fake news took its place in the dictionary.

4
0

Microsoft: Why we had to tie Azure Stack to boxen we picked for you

Jeff 11

Engineers presumably like to build and test things incrementally in smaller test environments, perhaps using commodity or obsolete hardware no longer in use, to ensure things work acceptably before buying the production-scale hardware (which if supported by MS, should have no problem running them). It seems bizarre that they could do that using something like OpenStack, but not Azure.

The conspiracy theorist in me suspects that might just be because Azure is ever so slightly less solidly built than you'd expect from a cloud platform.

0
0

Corbyn lied, Virgin Trains lied, Harambe died

Jeff 11

On the CCTV and breach of privacy policy issue...

...it's a complete red herring, because no information that Jeremy Corbyn actually provided has been disclosed. His being on a train is a matter of public record, not provided information - he's already 'disclosed' his whereabouts to the media anyway and the released CCTV images do not show anything sensitive beyond that. Virgin has not breached its own policy.

Whether it has breached ICO guidelines and can be sanctioned is another story, but any such sanctions will likely be very light given that CCTV material is often released into the public domain.

4
4

Star Trek Beyond: An unwatchable steaming pile of tribble dung

Jeff 11

Re: The horrible thing is...

Thankfully the upcoming CBS series has ditched the reboot timeline and gone back to basics of the original, somewhat more intellectual continuity set after the events of The Undiscovered Country. That puts some helpful constraints on what the writers can('t) do...

2
0

Silicon Valley's contribution to the US Republican Convention: Gayness

Jeff 11

Applying the contrarian argument to his crusade against Gawker is fatuous at best. Being outed at a time when you may not be ready is a horrid experience regardless of whether you can later say you're proud to be gay. And let's not forget Gawker is one of the nastiest examples of unrelenting gutter journalism there's ever been and definitely deserves to die.

9
0

Florida U boffins think they've defeated all ransomware

Jeff 11

Detection could be a moot point if a successive generation of ransomware works silently as a rootkit, encrypting the disk gradually in the background and intercepting filesystem calls to provide the plaintext version until everything is locked up. Then it uploads the keys to a box on the net somewhere, removes them from the machine, and sticks up the user with the 'pay up' dialog box.

If I were a malware writer, that's how I'd do it!

0
0

Managing infrastructure, a newbie's guide: Simple stuff you need to know

Jeff 11

"Running a single operating system on a physical server is incredibly last year"

On the contrary, for some applications, VM multi-tenancy is last year. Containerisation seems to have reached the mainstream - particularly Docker (https://www.thoughtworks.com/radar/a-z)

0
0

Ex-GCHQ chief: Bulk access to internet comms not same as mass surveillance

Jeff 11

Headline: "Ex-GCHQ chief: Bulk access to internet comms not same as mass surveillance"

"He also claimed that bulk access to internet communications was the same as mass surveillance."

The article doesn't make clear who made the second statement, care to clarify?

4
0

Manchester fuzz 'truly sorry' for 'accidentally' hacking phone of whistleblower cop's girlf

Jeff 11

"Experts analysed the phone for the police and found that the '1' key would have had to be pressed and held down to access the voicemail and then, during that call, the adjacent '#' key had to be pressed to connect to the person who had left the message, as happened on this occasion."

Wow. You might want to provide a third set of quotes around the word 'hacking'?

9
0

Cell-network content crunch needs new cache designs, say boffins

Jeff 11

Worth it?

Has anyone looked at just how what percentage of backhaul traffic a local cache at the cell level is going to save?

So much of what we consume on our phones is streaming content, which is difficult or impossible to cache as a third party. And even when you're talking about simple HTTP requests with relatively static responses, is there a great enough proportion of content that's repeatedly requested to substantially affect a large enough proportion of users?

I don't want to say 'no', but I would imagine this is the case. It sounds to me like a massive amount of investment, maintenance and administrative headaches will be needed for a questionable return...

2
0

Oracle pulls CSO's BONKERS anti-bug bounty and infosec rant

Jeff 11

"I am not dissing bug bounties, just noting that on a strictly economic basis, why would I throw a lot of money at 3% of the problem (and without learning lessons from what you find, it really is “whack a code mole”) when I could spend that money on better prevention like, oh, hiring another employee to do ethical hacking, who could develop a really good tool we use to automate finding certain types of issues, and so on."

Maybe because defensive, top-down, bureaucratic corporate culture is only ever an obstacle to security research and bug fixing? Other corporates have recognised that the independence of thought encourages novel approaches to finding those software defects your internal team can't handle.

2
0

Labour policy review tells EU where to stuff its geo-blocking ban

Jeff 11

Some digital products will not sell to anyone in certain territories of Europe because the economics are so different, especially those that don't use the Euro. Try selling content to parts of eastern Europe at a converted GBP/EUR -> local currency price and you get almost zero uptake. Instead, content providers can make additional revenue by selling the same product on volume at a much lower normalised price. That's actually a lot more fair to foreign EU citizens than forcing everyone to pay a normalised charge everywhere, despite the fact that disposable incomes can be fractional between countries.

This law is effectively an order to shut off those revenue streams and kill off jobs and business that rely on them.

1
7

LEAKED: Samsung's iPHONE 6 KILLER... the Samsung Galaxy S6

Jeff 11

If Samsung have realised - in their sixth iteration - that build quality matters, and spending serious money on a lump of scratch-happy plastic is a crap proposition for people whose pockets have other things in them, then I'll be looking into the S6.

0
4

Erik Meijer: AGILE must be destroyed, once and for all

Jeff 11

Re: All methodologies will fail in the right conditions

"The real mistake is to pretend that there is a single process that can fit all situations well enough."

...this. And there seems to be a fundamental problem with understanding what Agile means - it's not adhering to any one methodology but an agreement between stakeholders and development teams that we live in an imperfect world and must collaborate to organise an efficient process accordingly. For example, Scrum doesn't work for agencies whose teams are responsible for a number of unrelated projects. In this case Agile doesn't say 'find another methodology', it says adapt something whose fundamentals help avoid team, communication and legal problems and so avoid widening the divide between different parties involved in a project. It's also a response to traditional development methodologies creating software that's already obsolete when it goes into production, rather than products that might be imperfect to start with, but generate substantial value even in that state. Being successful in business is usually about being pragmatic, and Agile is all about pragmatism.

9
0

High-end SAN clan Dot Hill outshone by software biz Veeam

Jeff 11

Turnover is vanity, profit is sanity...

0
0

Forget Paris: OpenStack is not a cheap alternative to VMware

Jeff 11

I don't disagree with the idea that OpenStack as a universal alternative to VMWare falls short - but you don't back up your assertion with any reasoning whatsoever.

Virtualization is a lot more broad than 'just' migrating legacy stacks into VMs. At its core there's nothing in VMWare that can't also be done in OS because of the underlying technologies involved. As far as I can see, it's just the (present) lack of holistic management tools that makes administering OS infeasible for large legacy deployments. I'm sure certain workloads will perform better on VMWare and HyperV but I foresee that this gap will also narrow in the near future.

If there's one area where I can see a cost differential it's getting in the skilled people to plan and build up the infrastructure in the first place, and the spinup time to deployment.

0
0

Amazon offers Blighty's publishing industry 'assisted suicide'

Jeff 11

I reckon publishers are in this situation in part because they've refused to modernise to faster paced retail demands. Printing presses might be the most cost-efficient system for mass production, but some smaller publishers have been doing print on demand for over a decade at a decent profit (IIRC ~$5 for a 300 page technical manual is a decent going rate). No doubt an insane amount of labour goes into running traditional presses, but if printing and supplier logistics are the biggest business issues faced by publishers (review, editorial, marketing etc. will probably always be human processes), then they should be collectively adapting to make that more agile.

I also imagine the terms imposed by Amazon aren't hitting them hard enough to make book sales in any way unprofitable, otherwise they really would tell them to get stuffed and sell through the many other online alternatives.

1
0

Has Google gone too far? Indie labels say it's crunch time for The New Economy

Jeff 11

Useful middlemen using legitimate business tactics to take a larger cut of profit? Good God, whatever next!

The total naiveté of businesses who got into bed with Amazon and then realised they're locked in to the revenue stream to keep their business going is astonishing. A major client of mine has always been aware of this and sees Amazon sales as a major side channel to their direct revenue streams; everything they offer is available through their own site, and there are incentives other than price for customers to buy directly rather than through Amazon. And for B2C orders, it works out slightly more in favour of direct sales than through Amazon.

That doesn't mean to say Amazon is irreplaceable. Take products away from sale there and some of those sales will be made directly, with no cut taken by middlemen. The question is how large a cut Amazon can take of your sales compared to the percentage of lost sales in not using Amazon, something that's not easily answered without some risk to your cash flow.

The fact is that Amazon, Google and Apple have invested a lot of time, money and human innovation into building software that lets businesses sell things in large volumes over the web, while producers and suppliers have lazily soaked up the profits opened up by these gateways to the global market - rather than reinvesting them in diversifying their distribution channels to prevent lock-in. Now they're whining because these innovators have taken advantage of that myopic short-termism.

I am mystified as to why there hasn't yet been a jointly owned or independent audio distribution platform funded by the major players in the music industry, who can then keep licensing costs down and empower them to give the middle finger to the giants in negotiations.. Even if it isn't the best platform to sell music on, it's existence and potential exclusivity would still be enough to make Apple, Google, Spotify et al think twice about trying to gouge their suppliers.

9
0

Google's driverless car: It'll just block our roads. It's the worst

Jeff 11

Deadlocks

Defensive, safe driving doesn't work when every vehicle on the road does it and rules and algorithms can't produce a safe answer as to how to proceed in a deadlock situation. For example, if four cars arrive in each lane of a four-spoked mini roundabout in the UK, someone has to take the risk and go first despite no-one having right of way - which is surely anathema to Google's vision of crash proof vehicles. Perhaps that could be solved by seeding each vehicle with a small degree of randomness, or having something like quorum resolution between vehicles, but there are probably a lot of more complex scenarios which would require more work...

0
0

Gigabyte Brix Pro: You don't need no steenkin' Xbox... when you have 4K-ing amazing graphics

Jeff 11

Gaming at 4K? Really?

Even the most modern, high specced dual SLI/Crossfire PCs can't comfortably run modern games in 4K without reducing visual quality in other areas. There's no way Iris Pro - which has a small fraction of the rendering power of such systems - could possibly do the same unless restricted to graphically trivial games.

As for the XBox One, doesn't it still have problems rendering in 'just' 1080p?

2
0

Australia targets software maintenance costs with Drupal plan

Jeff 11

Drupal is fundamentally crap for performance because of its modular approach - bootstrapping every single installed module on every single page request makes it incredibly sluggish. One of our sites runs an enormously customised Drupal 6 installation and we've had to roll in hundreds of optimisations and low level techniques to get it to run at an acceptable level of performance when it needs to execute dynamically. It doesn't matter which version you use - the everything including the kitchen sink approach will never match rivals that are built around lazy loading of functionality for performance.

On the plus side, it's the quickest PHP-based CMS I've encountered for prototyping and building new functionality, and extending existing functionality - but you need the capability to optimise your critical, high-traffic paths through your site you'll end up with an obese, wheezing dog of a responsive experience.

0
0

Here comes the SAN: HP gives away virtual one

Jeff 11

"Up to 1TB of storage"!?

Perhaps the story should be "HP gives away virtual SAN trialware"?

...Or perhaps it's not much of a story at all.

1
1

New iPhones: C certainly DOESN'T stand for 'Cheap'

Jeff 11
WTF?

Delusion much?

"...but it is a significant upgrade."

Did Apple gas the world's media with hysteria-inducing drugs at the unveiling?

Pretty much every tech news outlet and market analyst has been saying the same thing, but for me this has been the least substantial upgrade I've ever seen from Cupertino.

64-bit isn't significant in the phone space. It wasn't significant in the PC market 10 years ago when it became de facto standard in CPUs. Perhaps In the gaming space, for higher fidelity visuals - but then the sort of games the massively vast majority of the market play on phones don't make much use of the graphics technologies that most phones have had for the past few years.

That leaves us with a fingerprint sensor to unlock your phone, a slightly tweaked camera and flash, and the option of a gold case.

To be honest, Apple's literature says it all - "we've managed to do all this clever stuff you'll never notice without even changing the design, or increas... err, decreasing the battery life". All smartphone makers may end up at this apparent dead end, but Apple seems to have won that race.

10
1

Attention, addicts: LEGO meth lab pays homage to Breaking Bad

Jeff 11

Re: wow..

I was thinking Heisenburglary...

1
0

OWN GOAL! 100s of websites blocked after UK Premier League drops ball

Jeff 11

All this misdirected ire towards the FA is astounding. Yes, they gave the judge a list of IP addresses but it was the judge who ordered ISPs to block them. However much you may dislike them, the FA do have a legitimate grievance towards their copyrighted material being leeched and profited from, and are certainly entitled to seek a legal solution. The implementation of that solution was extremely stupid, I'm pointing the finger squarely at the legal apparatus for making this collateral damage possible.

0
5

Cameron demands Brits BOYCOTT angry-troll-infested websites

Jeff 11

"Cameron telling us that we should simply turn off the Internet for our kids or apply filters etc to limit the sites they access simply isnt enough, we need to be able to allow our kids to get away from all the bullying."

Why?

Why is there a fundamental human need for your child to visit Facebook or Twitter?

Was there such a need when you were of the same age?

People like yourself keep saying how essential it is to ingrain social media sites and services into your lives, but this is a modern, self-perpetuating lie. I have zero day to day interaction with Facebook and zero day to day interaction with Twitter. You don't get ostracized for not having a profile. You don't automatically become a luddite by refusing to use them. The fact that parents are allowing their kids to use these sites is probably doing them more physcial and mental harm than keeping them away from it - it promotes the idea that you can have proper relationships via messaging services and arguably keeps them (at least in part) from having real lives themselves.

7
2

UN to call for 'pre-emptive' ban on soulless robot bomber assassins

Jeff 11

I'm a bit surprised at the rather flawed analogy between an autonomous drone and a guided weapon - usually your analyses are more on the ball Lewis!

A Tomahawk missile is of course capable of failing to achieve its objective and causing collateral damage, but its simplicity (it's basically an autopilot without the landing code) means that's less likely to happen than something that can make decisions autonomously - and even if it does happen, it can only blow up the wrong thing once.

A reusable machine that can decide how to fulfill its objective can do so in many more ways, and, potentially, multiple times. Fortunately that sort of real intelligence is far beyond our means to effectively implement at the moment.

1
0

Microsoft reveals Xbox One, the console that can read your heartbeat

Jeff 11

It's not much of a surprise to me but this could be a fairly important moment in gaming, for it means all the heavyweight consoles now have something in common - x86 CPUs. The new Xbox also runs DirectX, which should make it technically trivial to have dual releases on the Xbox and Windows PCs. The PS4 will also handle x86 code, although it'll no doubt have lots of proprietary APIs and GPU intricacies to handle, but they'll probably be much less of a complexity gap for doing multi-platform ports.

1
1

WTF is... LTE Advanced?

Jeff 11
Stop

What's the point in increasing front-line radio data speed if the backhaul can't accommodate it? There are practically no websites that are going to transfer data to you at 1Gbit, never mind that most phones wouldn't be able to pull at that speed. I'm all for advances in technology but there is always seems to be a trade off between increasing data rate and decreasing viable range, and right now the world needs the latter, not the former.

2
1

Object Storage: A solution in search of a problem?

Jeff 11

Just because you can theoretically build a multi-petabyte cluster to store hundreds of nodes' worth of data doesn't necessarily mean you should. Object storage is and probably always will be a niche product, but there are numerous advantages to not putting massive amounts of unstructured data on a filesystem; the first, obviously, being that you don't have to worry about designing and maintaining an artificial structure around it as your data pool grows. You don't have to worry about errant processes on your storage boxes doing things they shouldn't on data being stored as regular files. You don't have to worry about the intricacies of the underlying filesystem, or whether you'll be able to grow your clustered filesystem indefinitely while maintaining scale. You don't have to worry about whether a software bug in a very complex system like Gluster will cause an unrecoverable error or split brain, because object storage tends to be fundamentally simpler than layered filesystems and storage protocols working together to produce the same result.

0
0

Ofcom: Parents, here's how to keep grubby tots from buying Smurfberries

Jeff 11
Thumb Down

I'm riled by the lack of pragmatism from parents whose nippers have been caught by the in-app purchase trap. There are a number of things a parent can do to stop this from being possible - like having a decently hard to crack app store password, changing their password every so often, checking their account balance online to make sure no unauthorised activity is going on, or just doing the totally sensible thing of removing your credit card details from a device YOUR CHILD HAS ACCESS TO. I'm all for adding better controls to more granularly restrict certain activities, but you're ultimately undertaking a massive level of risk by giving a device to your child that's linked to your bank account. Wallets are not toys, why should phones be?

"It is down to parental supervision, but when ad companies target young children in such a way it is wrong."

From an ethical perspective I'd agree, but companies have been doing this for decades and the more integrated technology becomes with our lives the more creative extracting money from children's pockets will be, and the further ahead of regulators and authorities the ad boys will be.

Ultimately the price of security is convenience, and vice versa - choose your poison.

3
7

How the iPad ruined the lives of IT architects

Jeff 11
Facepalm

If this article was about "how the internet ruined the lives of IT architects" and was written 14 years ago then this article might have elicited something more positive than, at best, mild contempt.

0
0

MasterCard stings PayPal with payment fee hike

Jeff 11

Google and PayPal going into the legacy card business? Very very unlikely. The reason you can get cash out of the wall is because VISA and MC integrate tightly with all the providers of ATMs in the world. If they didn't, you'd be limited to your bank's cash machines. I don't think the banks of the world want to spend hundreds of man-years implementing and then paying for a new competing system which would provide them no benefit at all.

There's nothing anti-competitive about VISA and MC, they're simply the incumbents who the banks will only deal with.

0
0

Time to put 'Big Data' on a forced diet

Jeff 11

IOPS

...is a term that makes me think of trendy teenagers verbally masturbating over SSD benchmarks in their gaming PCs. It doesn't mean anything real; the performance you get out of a SAN is going to depend more on the workload you give it on top of variables like how you partition it, which filesystem you use, the size of the controller caches, the underlying network media and so on. The big name vendors all have their own proprietary technologies that dictate, on top of these variables, how well they map on to the underlying technology. Raw hardware capabilities mean very little in real world environments and that's why vendors are reluctant to harp on about them. EMC, Dell/Equalogic and Netapp might quote similar figures if pushed but the experience you'll get with each platform will be markedly different in a fair comparison.

0
0

Holy crap! EMC gives Vatican Library 2.8PB to store manuscripts

Jeff 11
WTF?

150MB per page!?

0
0

British, Belgian boffins battle buffering bandwidth bogeyman

Jeff 11

@Trevor_Pott

"So what gives? What the heck am I missing here? How is this something any government at any level should be involved in? I am legitimately confused as to how this came about."

Well, governments (and trans-governmental organisations) tend to invest public money in infrastructure projects in order to attract investment from multinationals. In the EU's case, however, I can't see how that could directly happen as any positive outcome from this project would surely be contributed back to the world in an open format. It *does* stand to benefit the involved institutions - as any advances they make might develop together might bring in R&D investment from outside the EU, leading to future intangible benefits etc.

0
0

PC sales in the toilet? Excuse Lenovo while it gut laughs at you

Jeff 11
Meh

Turnover is vanity, profit is sanity

It's a 34% rise, but a 34% rise on something that was giving them ~1.4% profit (and now gives them ~2%) of profit on turnover. This is still pretty insignificant given that Lenovo is geared towards the business market, which should make more than the consumer market. If Lenovo can continue this growth trend for the next ten years, then they can indeed flip the bird to the rest of the market, otherwise they don't have that much to be proud of.

0
0

Dotcom's Mega smacks back: Our crypto's not crap

Jeff 11
Stop

You can certainly dedupe encrypted data if it's a copy of the same file uploaded into the same account, but the recurrence of an encrypted block of data of any appreciable size is infinitesimally likely. So either Mega's using encryption that's somehow dedupe-friendly (i.e. insecure), their dedupe feature is just crap, or they know more about your data than they should.

It's little wonder people are deriding Mega's marketing as disingenuous, at best.

6
2

How to build a BONKERS 7.5TB, 10GbE test lab for under £60,000

Jeff 11

Trevor, did you look at using Infiniband instead of 10GbE? Obviously it wouldn't be suited to a production environment where you already have the switching infrastructure in place, but I'd be interested to see if you could shave £10k off the price for ostensibly the same set of capabilities...

0
0

Student claims code flaw spotting got him expelled from college

Jeff 11

To be fair it sounds as though curiosity got the better of him and he wanted a second go at the hole he'd uncovered, to see exactly what data he could pull through it. No doubt he envisioned a pat on the back, a wodge of social media likes on his blog and a bit of personal glory, and had no malicious intent at all.

The law however has to be pragmatic. There will always be imperfect, buggy and vulnerable software and often the world just has to live with it, and so the law needs to offer some protection from people who CAN cause damage with the exercise of their skills (although SQL injection is often laughably trivial). There are plenty of open source applications to poke holes in, so why not install one of those and have a go, instead of accessing a production system with real data on it?

1
1

How to build a perfect private cloud with Windows Server 2012

Jeff 11
WTF?

"If someone wants to debate me, they had better come out with some strong engineering principles that might have a chance of contradicting my assertion that Windows is not fit to be a serious cloud."

Number 1: You mentioned Hadoop, an *application* that's useful to few real world cloud projects. Not everything is about data mining.

Number 2: Interoperability. If a customer uses an entire Windows ecosystem, you're just going to stick your own stack in there and then spend the rest of your days maintaining it separately. You're trading 'Microsoft lock in' for a paid salary or a support contract. Fantastic for the customer!

Number 3: Your Powershell argument was out of date half a decade ago. It does what a shell is supposed to do - provide a syntactically consistent interface for an administrator to efficiently manage his systems. If you make the effort to learn it, it'll be as useful as your choice of UNIX shell.

The only valid point you make is about licensing, which has nothing to do with engineering.

As someone firmly in the Unix camp I don't enjoy Microsoft's success, but credit where credit's due - if Server was useless crap no-one would be using it. The only reason I wouldn't go near a Windows deployment is because it'd take me an order of magnitude longer to get the job done, but that's down to the shortcomings in my own skills.

4
0

Schmidt 'very proud' of Google's tiny tax bill: 'It's called capitalism'

Jeff 11

Starbucks was embarrassed into paying more tax by the government. Google won't be, because a verbal tongue-lashing in a select committee and a bit of embarrassment for Schmidt and co. isn't worth the hundreds of millions it'd cost to concede.

Personally I think the government should make a few regular public service announcements on TV summarising the offensive tax arrangements of the worst multinationals - the fall in share price and brand integrity might convince them to rethink their schemes.

1
1

Kim Dotcom shows off new mega service

Jeff 11
Stop

'I'm also unconvinced that one can legally wipe one's hands clean if one has reasonable suspicion that the law is being broken. If there are a zillion files on the site each the length of a movie, then I'm not sure Kim can play innocent any more than someone saying "I was just giving a hitch-hiker with a mask a lift from the bank. I had no way of knowing he'd just robbed it".'

The idea of total client side encryption and decryption is that the storage service fundamentally CANNOT know anything about the data that's being sent to it - in theory it'll be about as legally responsible as your ISP for not knowing what's going through your HTTPS connections.

0
0

10 Gigabit Ethernet still too expensive on servers

Jeff 11
Stop

£400 10Gig adapters aren't the issue. They cost roughly three times as much as high quality Gigabit adapters. Spending that much on organic tech growth is pretty much discretionary.

By contrast the switches cost around eight times as much as decent Gigabit switches; they're all managed affairs (which isn't particularly desirable in a lot of backbone networks) and an £8k barrier to entry is not an easy pill for a lot of smaller businesses to swallow. The market is not going to take off until this becomes more balanced.

9
0

Design guru: Windows 8 is 'a monster' and 'a tortured soul'

Jeff 11

Windows 8 pretty much reiterates just how insane revolutions in interface design can be; compounding that by throwing out all the interface concepts of your previous work is going to terminally piss off a lot of people.

Pretty much all the news about Windows 8 over the past few months has been disdain over Microsoft doing what it does best and shoehorning a system that works on two different classes of device (technically brilliant) but with a hopelessly flawed execution that will keep the vast majority of its customer base on Windows 7.

I'm reluctant to give Apple credit for anything these days after they crippled Safari as a useful web browser and development platform, but they did grasp the fact that innovation in their core OS has to come in small bursts and new features need to be introduced gradually instead of all at once.

1
1

Dead Steve Jobs was dead wrong on Flash, bellows ColdFusion man

Jeff 11
Stop

I have no doubt about Jobs' ingenuousness on Flash, but for me there is a much deeper issue. Flash only works as a modern platform *because* it's closed, and Adobe can add features at a much faster rate than native browser features because it's completely in control of Flash's capabilities and update model.

By contrast look at how long it's taken the open HTML5 model - loads of bickering about capabilities, best practices, and then a long lag for browsers to implement the agreed functionality - it's tortoise versus hare.

However running any sort of browser plugin on your device to provide native code-execution capabilities for web apps (currently) places device-wide trust on the plugin provider. If Adobe gets something wrong - and it does, pretty much every day of the week for Flash there's a security hole and corresponding update - then errant Flash apps can cause however much havoc they want because they've got the same level of native access as the browser itself. Now that could change with the introduction of a better HTML plugin model, which defines a standardised sandbox for running native code, but getting it right and standardised would be as enormous an undertaking as HTML5 itself.

Peddling an alternative to Flash - that's all this fundamentally is - is not the answer.

6
2

Page:

Forums

Biting the hand that feeds IT © 1998–2017