github.com · Domains · Slashdot Mirror

Yes, it already does! by someboy43 · 2017-09-24 05:42 · Score: 1 · on Microsoft and Canonical Make Custom Linux Kernel (neowin.net)

Yes.

But this isn't really any news, MS has provided custom canonical distributions for Azure deployment for years, and the image MS already provides as their recommenced/default distribution for azure VMs already contains several telemetry and remote management daemons, to facilitate better integration with Azure monitoring. The image is also configured to trust ms' own apt repo source.

The code for the telemetry daemon is even open source on github.
https://github.com/Microsoft/O...

There has been a few bugs in these daemons, most significant is the bug which starts shell scripts which doesn't terminate, i.e. the server becomes super slow after a few days due to thousands of running processes. Google on "OMSConsistencyInvoker".

I now withdraw an issue for WordPress/Calypso by Paul+Fernhout · 2017-09-23 12:43 · Score: 1 · on Facebook Relents, Switches React, Flow, Immuable.js and Jest To MIT License (theregister.co.uk)

From almost two years ago: "Replace React with Mithril for licensing reasons"
https://github.com/Automattic/...

That said, I still feel Mithril.js + Tachyons.css is a better way to develop web apps (see my other comment on this article).

Why Mithril.js is what web development should be by Paul+Fernhout · 2017-09-23 12:39 · Score: 1 · on Facebook Relents, Switches React, Flow, Immuable.js and Jest To MIT License (theregister.co.uk)

Mithril.js emphasizes leveraging JavaScript using the HyperScript API (instead of an adhoc templating language) and automatic redrawing when your application changes via user interaction or a network event. This makes web single-page application development quite pleasant to write and maintain and is scalable. You can also test much of such vdom-based UIs without creating real DOM nodes.
https://mithril.js.org/

Check out Tachyons and similar CSS libraries which use CSS classes to essentially define inline styles efficiently and in a maintainable way across big applications. Tachyons works especially well with HyperScript, letting you can do almost all your UI styling in JavaScript.

Here is one example FOSS project I wrote in that style: https://github.com/pdfernhout/...

Of course, few web developers grok this yet because most affirm "best practices" from years ago (e.g. semantic CSS, HTML-first design, JavaScript as a progressive afterthought). Most web developers are used to coding in non-standard HTML-ish templating systems (e.g. Angular, Vue, JSX). This give them a false sense of security they can maintain more complex apps that are mostly about JavaScript. By leveraging JavaScript from the start, Mithril.js may have a slightly higher learning curve (learning more about JavaScript), but it pays off down the road with much more maintainable applications.

React has helped a lot of developers begin to move past some of that, but it has its own baggage (including JSX) from being only half-way to the new paradigm outlined above. MIT licensing improves things, but I still feel Mithril is better for technical reasons. Mithril is simpler internally because Mithril does not emphasize subtree component rendering which React does for "efficiency" but which I'd suggest in practice leads to worse designs and a less understandable core. I also feel HyperScript is a better way to write UIs than JSX by keeping all your code in standard JavaScript/TypeScript without other awkward object constructions. While you can use HyperScript with React via a third-party library, it is a bit klunky as an add on, and most of the React code examples and libraries use JSX.

Re:This is why I jumped off the Apple treadmill by shmlco · 2017-09-23 09:50 · Score: 2 · on Apple's Swift 4.0 Includes A Compatibility Mode For 'The Majority' Of Swift 3.x Code (infoworld.com)

Actually there's a swift-evolution project where quite a few people (including non-Apple employees) are involved with Swift language design, proposals, and evolution.

https://github.com/apple/swift...

And as there's a Swift roadmap out there, I don't think the whole "on a whim" thing has merit either.

Re: Canonical have a custom Ubuntu kernel for AWS by buchanmilne · 2017-09-23 05:42 · Score: 1 · on Microsoft and Canonical Make Custom Linux Kernel (neowin.net)

The Ubuntu kernel for AWS also includes the ENA (Elastic Network Adapter) driver (source code: https://github.com/amzn/amzn-d...), which allows you to get 20Gbps networking on certain instance types (https://aws.amazon.com/about-aws/whats-new/2016/06/introducing-elastic-network-adapter-ena-the-next-generation-network-interface-for-ec2-instances/).

I believe RHEL 7.4 also added the ENA driver, and the Amazon Linux image has it of course.

Re:More games with controller support too by Stormwatch · 2017-09-21 09:31 · Score: 1 · on PC Gaming Is Back in Focus at Tokyo Game Show (bloomberg.com)

Good tip. But that doesn't always work. And some games lack controller support entirely. In such cases, try AntiMicro.

Re:Guess better than suing or being assholes by shutdown+-p+now · 2017-09-19 16:28 · Score: 1 · on Will Linux Innovation Be Driven By Microsoft? (infoworld.com)

The problem is that .NET has never had something that would be a ready fit for a cross-platform GUI framework, historically

There was Windows Forms and WPF, but both of these are Windows-specific frameworks to begin with. WinForms is so tied to Win32 concepts (window handles and messages etc) that it cannot conceivably be ported - Mono tried that, and they eventually had to resort to reusing Wine code to do so, and ditch any attempts to use platform-native look and feel. WPF can conceptually run outside of Windows by design, but the implementation has a lot of native code that's intimately tied to Direct3D, so managing that is a Sisyphean task (indeed, Microsoft hasn't even ported WPF to Direct3D 11 to date!). There's a third party project called Avalonia that tries to reimplement it from scratch, but the sheer size and scope of a full-fledged modern UI framework means that they aren't going to ship a stable version anytime soon.

Realistically, when GUI comes to .NET Core, it would probably be Xamarin's XWT (to remind, Xamarin is currently owned by Microsoft). Given that Xamarin still ships MonoDevelop / Xamarin Studio (now rebranded as Visual Studio for Mac for the world at large - although MonoDevelop is still there on Linux), they might have some interest in a cross-platform .NET GUI. Currently they're using Gtk# for that, and running on Mono, but it's clear that .NET Core is going to subsume Mono long term.

In the meantime, .NET Core is focused almost entirely on the server side of things. I suppose a good way to think of it is a Java-like platform that offers a similar but more powerful and more thoroughly modernized language; a more lightweight, slimmer runtime that is designed to ship self-contained with the app; and modern package-based dependency management for libraries and frameworks (instead of Java's and traditional .NET "everything and the kitchen sink" approach to stdlib). Oh, and licensing - the runtime and all the standard libraries in the stack are MIT. All development is out in the open on GitHub, too.

As far as ASP security - ASP.NET had nothing in common with ASP of old (back when it was still Active Server Pages, with "Active" being a reference to ActiveX), except for the name, because branding. ASP.NET MVC was, in turn, a near-complete replacement for the original ASP.NET, reusing some low-level bits of the stack (HTTP request handling and such). The most recent incarnation, ASP.NET Core is a complete rewrite of everything from scratch for .NET Core, but with design strongly reminiscent of MVC, with various legacy bits trimmed, and the rest simplified and made more flexible (e.g. the entire HTTP pipeline is componentized, to make it easy to swap servers etc). I'm not aware of any fundamental security issues in it - although of course, as with any framework, security depends on how you use it.

Re:They are making good choices by theweatherelectric · 2017-09-19 13:34 · Score: 1 · on iOS 11 Released (theverge.com)

HEIF offering much better than JPG compression

HEIF doesn't offer any compression because it's just an image container format, which can also contain JPEG data.

Re:He did not say that by urusan · 2017-09-19 04:57 · Score: 1 · on Ethereum Will Match Visa In Scale In a 'Couple of Years,' Says Founder (techcrunch.com)

He's expecting this change due to the planned switch-over to proof of stake:
https://www.coindesk.com/ether...
https://www.coindesk.com/ether...
https://github.com/ethereum/wi...

If proof of stake works, it will fix the fundamental scalability issues that cryptocurrencies currently struggle with. It could also implode spectacularly if people figure out how to game the system or figure out a major exploit. It makes sense that he'd be very confident in his course of action, but only time will tell whether he's right or not.

What I don't get is... by urusan · 2017-09-19 03:48 · Score: 1 · on Ethereum Will Match Visa In Scale In a 'Couple of Years,' Says Founder (techcrunch.com)

Why do none of these stories contain any information about the real reason he's so confident in his assertions?
https://www.coindesk.com/ether...
https://www.coindesk.com/ether...
https://github.com/ethereum/wi...

Etherium is going to move to a whole new way of handling transactions (proof of stake) that will blow the current methods out of the water...if it works safely. Proof of work is not particularly scalable, but proof of stake is.

As you can see from these coindesk news stories, this planned transition is old news, so I don't get why these stories aren't mentioning it.

What cert for .test? by tepples · 2017-09-18 11:42 · Score: 1 · on Chrome To Force Domains Ending With Dev and Foo To HTTPS Via Preloaded HSTS (ttias.be)

Then how does one obtain a certificate for a domain in .test and use it on all devices on a home LAN? I thought Android 7 "Nougat" and later didn't trust user-installed root certificates unless a particular app opts into trusting user-installed root certificates through the network security config file in the application's package. Chrome for Android appears to opt in, but Firefox for Android is untested. Using cleartext HTTP is not an option because more sensitive APIs are unavailable outside secure contexts.

Re:User Controlled Technology vs. Company. by tepples · 2017-09-18 06:01 · Score: 1 · on Can An Individual Still Resist The Spread of Technology? (chicagotribune.com)

I can either install Skype, make an account and chat about that job I want, or I can tell them I don't have Skype and the reasons why I don't want to install it or make an account

If you have used Outlook.com or Hotmail that preceded it, you have a Microsoft account. If you have set up Windows 8 or 10 and accepted the defaults, you created a Microsoft account. And if you have a Microsoft account, a web browser, and the Pidgin IM client, you can log in to Skype for Web once with your Microsoft account credentials and then build and install Skype for Pidgin.

Re:Why Java? by Anonymous Coward · 2017-09-17 10:41 · Score: 0 · on IBM Open Sources Their Own JVM/JDK As Eclipse OpenJ9 (eclipse.org)

Java has the huge advantage of automatic garbage collection.

That may be an advantage over C, or older C++. In Modern C++ this is mostly a non-issue - assuming you use smart pointers (in the standard library) judiciously and follow the Coding Guidelines. Explicit memory allocations is essentially gone and you don't have to worry about it. No garbage, no leaks. Of course, you could be keeping to much stuff alive, but that's just as much of a problem with Java, since that memory doesn't get GCed.

So Java garbage collection is more of a hindrance than a benefit relative to Modern C++.

So, its still GPL by technosaurus · 2017-09-17 03:02 · Score: 1 · on IBM Open Sources Their Own JVM/JDK As Eclipse OpenJ9 (eclipse.org)

If you want an ISC licensed jvm, there is https://github.com/ReadyTalk/a....
IIRC avian has its own class library or it can use OpenJDK or the Android class library.

Re: In this context... by truedfx · 2017-09-16 20:43 · Score: 1 · on WordPress Ditches ReactJS Over Facebook's Patent Clause (techcrunch.com)

In the PATENTS file, I see:

The license granted hereunder will terminate, automatically and without notice, if you (or any of your subsidiaries, corporate affiliates or agents) initiate directly or indirectly, or take a direct financial interest in, any Patent Assertion: (i) against Facebook or any of its subsidiaries or corporate affiliates, (ii) against any party if such Patent Assertion arises in whole or in part from any software, technology, product or service of Facebook or any of its subsidiaries or corporate affiliates, or (iii) against any party relating to the Software.

You're right that it reads "relating to the software", but this only applies to (iii), not (i) or (ii).

Re:WordPress is right by jcfandino · 2017-09-16 11:03 · Score: 1 · on WordPress Ditches ReactJS Over Facebook's Patent Clause (techcrunch.com)

I don't think that's exactly right, Amazon wouldn't loose the license to the software (the BSD), but they would loose any Facebook patent license that ReactJs is potentially infringing, and then Facebook would sue back on those patents. Source.
Still seems a risk and I think Apache made the right choice banning this license.

Link To The Patent Clause by Anonymous Coward · 2017-09-16 09:29 · Score: 5, Informative · on WordPress Ditches ReactJS Over Facebook's Patent Clause (techcrunch.com)

Here's the actual patent clause being discussed:

https://github.com/facebook/rocksdb/blob/132013366d202dbd5d5c6463c60898bdd420055b/PATENTS

Bringing AI into the mainstream office structure by Tablizer · 2017-09-15 09:28 · Score: 1 · on Artificial Intelligence Pioneer Says We Need To Start Over (axios.com)

The future may be table-oriented AI (TOAI).

It uses tools and/or conventions more typical of a regular office and thus allows AI problems to be split up and analyzed in a modular team-oriented fashion. Tables are easier to relate to than traditional neural nets (without a lot of training, at least). TOAI allows compartmentalizing AI tasks to distribute to staff (tasks, sub-tasks, etc.), and encourages a kit-oriented approach (modularization).

For example, you may have 3 sub-teams: 1) pattern/test makers, 2) results examiners, and 3) coordinators.

The first group focuses on making the individual tests (patterns or "factors"), the second group focuses on determining which tests are most or least useful for given situations, and the 3rd group be the coordinators who split up the problems and/or AI decision flow between groups and/or template sets (filters).

Re:A good start by infolation · 2017-09-14 08:13 · Score: 3, Interesting · on Every Major Advertising Group Is Blasting Apple for Blocking Cookies in the Safari Browser (adweek.com)

^^^
This really needs modding up. I am surprised the advertisers are even slightly concerned about cookies anymore when browser fingerprinting is a far more insidious and (currently) difficult to overcome privacy invasion for the end-user.

Since Google has persuaded almost everyone and their kid brother to run adsense code on the page, they have a canvas-fingerprint-trackable record of clickstream from page-to-page/site-to-site.

Tools like panopticlick and ipduh can give you an immediate sense of the problem, but trying to reduce it is tricky.

To sidestep fingerprinting pretty much means running the Tor browser or Firefox with Random Agent Spoofer, Decentraleyes, and a custom user.js set up with something like pyllyukko's prefs.

Postscript language. by DrYak · 2017-09-12 09:42 · Score: 1 · on The Only Safe Email is Text-Only Email (theconversation.com)

in this totally safe PDF?

Yes, Postscript is a turing complete language
(you can even write a ray tracer in it).

BUT

postscript can only output to the document (or screen), and can't read input from the internet.

Thus, as long as there isn't a critical bug in the displaying software...
- (Adobe Acrobat reader, I'm looking at you right now !),
...and as long as there isn't some asinine extra feature implemented...
- (you can bet that someone at microsoft on the outlook team would dream of a document viewer that can automatically extract attachments embed inside PDF files and execute them)
...there isn't an actual risk in opening random PDF files, except that some might take a few hours to render.

(And other can generate 1000 - worth of pages on the printer with only a few lines of code, if you're so stupid to send a raw post-script to the printer without even looking at it).

Re:Text-only Email safe? by skids · 2017-09-12 07:46 · Score: 1 · on The Only Safe Email is Text-Only Email (theconversation.com)