Social media makes it much easier to control the masses. People in power want nothing more than everyone being cataloged and analyzed, ready to be influenced by targeted campaigns for said people in power.
Buying adapters is not about the cost. It's about having that f... adapter available whenever you need it. I hate having to go and fetch and adapter when I just want to get stuff done.
Did you even remember to bring it with you?
HDMI is pretty much the default for hooking up to any projector/screen, and it's going to stay like that for at least the lifetime of the next macbook pro line.
I got the 15" 2015 model fully specced and it's nice, but I will not be bying a new Macbook Pro as they are now.
No magsafe, no USB A and that useless touchbar.. ffs.
And the price? What are they thinking? Come on
The thing is. I don't really care if they "innovate" or not. I just want a good laptop. Good battery, good screen, good keyboard, good performance, good build quality. Throw in a SD card reader and USB A ports so I don't have to go and find that stupid dongle every time I need to connect something. When I bought the 2015 model there was no other laptop out there that could do SSD above SATA speed, high res display, dedicated graphics and still be able to last for 10 hours if you just are writing some code. It was my first mac, so I didn't really think magsafe and touchpad would be that good, but they truly are. The reasoning for them to remove Magsafe only make sense inside an Excel sheet before the eyes of an MBA.
Apple used to provide really good laptops for professionals. Now it seems they main target is bloggers.
Physical security of is just one aspect that is messed up here.
Incompetent persons wandering around between servers doing damage is one thing. Storing all your sensitive data on an open browsable webserver which only protection is "not being plugged in", doesn't make things that much better.
My favourite:
"That someone probably, when updating at some point, seen that there was a free networking cable slot, and I guess they thought, some technician: ‘Aha, there should probably be a cable here, but it fell out [sic]’, and then they have connected a networking cable, so that it’s become connected to the Internet. That is just, like, how you do these things" - CEO of Voice Integrate Nordic AB
That is not entirely accurate.
Browser will stop you from clicking a submit-button on a form, but nothing stops an attacker from using XMLHttpRequests (ajax call back in the day) to pass credentials. Button could then be wired up to just to a regular HTTP GET.
This just highlights the importance of HTTPS and Strict Transport Security Header.
Preloaded HSTS would require the attacker to install a root certificate on the victims computer or compromise an already existing one.
If you have that amount of control you can do far more than bypass 2FA.
Totally agree on the laugh track. It complety ruins pretty much any show.
Fake laugh track can work if the jokes are funny and/or they adjust the laugh-intensity to fit the joke. The problem with Big Bang is that after 2 seasons the jokes are so predictable it's just sad. Adding a hysterical laugh after each lame punchline just makes it that much worse
Laugh track didn't really bug me much until I watched Better Off Ted. It doesn't have any laugh track at all and I'm lauging because of the show actually being funny, not because I hear someone else laugh. Now laugh tracks just annoys me.
Your mundane page showing cat pics or whatever can be a serious threat if the script-kiddie on the next table can inject whatever javascript he wants into it before you receive it.
Yes, a source can be compromised too, but the ease of mitm http is just amazing. Also, any http security header (csp, hsts, hpkp, etc) or other mitigation techniques are futile if transport can't be trusted.
This can also be prevented by simply using a decent router that doesn't allow local IP replies from a public DNS.
Load up pfsense and you are protected from this. Even with default settings.
Code samples are pretty much always "not for proudction". It's good that samples are easily available, as code often explains a concept better than documentation for many developers.
The risk is that these samples are just copied in to an application with all the codesmells that it contains.
Really?
Being a company with stockholders you need to try and benefit from anything that could gain positive PR
So even if you really JUST want to help, you also need to be visible doing it. Because of the way the stockmarked works.
And for all you know, what if they did some initiatives without any PR. Would you know about it to complain?
Lighten up, this is not a bad thing.. for anyone.
Yes. But the book doesn't run code on your end. It's actually just text.
A browser will run whatever code it gets from the website.Or any code picket up on the way from the server to your browser if it's not encrypted.
If you access unencrypted wikipedia from your local Starbucks or library, pretty much anyone can play man-in-the-middle and inject javascript into your site. Good frameworks exists (ex. BeeF) that makes it really easy to do phishing (facebook login, work login, etc) and many other creative attacks. If you are then running on a vulnerable browser it will be easily hacked.
You can do this with a phone and a few clicks (ex. the app dSploit).
So yes. Even if the information itself is not worth protecting, the Web 2.0/3.0/NextGen certainly needs transport encryption.
No errors?
All sites validated to be serving torrents of copyrighted material?
Not one mistake?
So we can conclude that everyone issuing DMCA is perfectly honest and no sites with critical viewpoints of countries, companies or people are on that list?
Right?
Pseudo random numbers generate ok distribution, but pseudo still means false..
It's not a random number. Not even close. It's very much predictable.
For this particilar application I can't really see how it could be exploited, as I assume Excel does a decent job of seeding the generator.
The question really is:
Why is there a class/method/function/library named Random when it's not random? It's the same for Java,.Net, Javascript, MS SQL, Oracle, Pretty much any language/framework has a Random feature that is so far from random it's just laughable..
Jordan Peterson did not demand that at all.
Are you stating this because you heard or read someone say so or do you fabricate stuff like this on your own?
Slashdot is _really_ going downhill when post like yours gets modded +4.
Too bad people can't just look at the current research. The only reason it's controversial is that it contradicts dietary beliefs.
And I do mean beliefs.
No.
As I clearly stated: "They link to actual research"
You can verify it yourself, it's just more entertaining having someone discuss it instead of reading all papers yourself. So verify those that contradicts your beliefls or read them all. It's up tp you.
Many diets are not based on science, but ketogenic diet (and Atkins as the base before it) are actually based on real science.
If you are interested then Carl Franklin and Richard Morris does an excellent job discussing it (and linking to actual research) in their podcast "2 Keto Dudes".
Highly recommend it if you (or anybody else) are interested in learning about the topic.
Btw. start at show number 1 og go from there. Most of the details are explained in great detail in the first few shows.
Shit happens and provides an opportunity to learn.
I've been reading slashdot for quite some time (years before signing up for an account).
When I started reading slashdot I was genuinely suprised reading comments that I agreed with, and then reading a reply that changed my thoughts on the matter. Maybe just for a different perspective, understanding arguments from otther point of views. But sometimes actually changing my opinion, or making me go out and search for more information.
That is gold. I love that. Especially with todays polarized media discussions (can't really call them discussions even).
It's great that you guys are back! Thank you for an awesome site!
Slashdot Mirror
Social media makes it much easier to control the masses.
People in power want nothing more than everyone being cataloged and analyzed, ready to be influenced by targeted campaigns for said people in power.
Buying adapters is not about the cost. It's about having that f... adapter available whenever you need it.
I hate having to go and fetch and adapter when I just want to get stuff done.
Did you even remember to bring it with you?
HDMI is pretty much the default for hooking up to any projector/screen, and it's going to stay like that for at least the lifetime of the next macbook pro line.
This!
I got the 15" 2015 model fully specced and it's nice, but I will not be bying a new Macbook Pro as they are now.
No magsafe, no USB A and that useless touchbar.. ffs.
And the price? What are they thinking? Come on
The thing is. I don't really care if they "innovate" or not. I just want a good laptop. Good battery, good screen, good keyboard, good performance, good build quality. Throw in a SD card reader and USB A ports so I don't have to go and find that stupid dongle every time I need to connect something.
When I bought the 2015 model there was no other laptop out there that could do SSD above SATA speed, high res display, dedicated graphics and still be able to last for 10 hours if you just are writing some code. It was my first mac, so I didn't really think magsafe and touchpad would be that good, but they truly are.
The reasoning for them to remove Magsafe only make sense inside an Excel sheet before the eyes of an MBA.
Apple used to provide really good laptops for professionals. Now it seems they main target is bloggers.
Physical security of is just one aspect that is messed up here.
Incompetent persons wandering around between servers doing damage is one thing. Storing all your sensitive data on an open browsable webserver which only protection is "not being plugged in", doesn't make things that much better.
It's wrong on so many levels.
Almost makes it funny, if it wasn't so serious.
This one is well above average when it comes to pure stupidity
This writeup highlights some of the mind-boggling explanations from management:
https://medium.com/@rikardhjor...
My favourite:
"That someone probably, when updating at some point, seen that there was a free networking cable slot, and I guess they thought, some technician: ‘Aha, there should probably be a cable here, but it fell out [sic]’, and then they have connected a networking cable, so that it’s become connected to the Internet. That is just, like, how you do these things" - CEO of Voice Integrate Nordic AB
That is not entirely accurate.
Browser will stop you from clicking a submit-button on a form, but nothing stops an attacker from using XMLHttpRequests (ajax call back in the day) to pass credentials. Button could then be wired up to just to a regular HTTP GET.
This just highlights the importance of HTTPS and Strict Transport Security Header.
Preloaded HSTS would require the attacker to install a root certificate on the victims computer or compromise an already existing one.
If you have that amount of control you can do far more than bypass 2FA.
Who claims to be indifferent to the show, and who is lying?
Totally agree on the laugh track. It complety ruins pretty much any show.
Fake laugh track can work if the jokes are funny and/or they adjust the laugh-intensity to fit the joke. The problem with Big Bang is that after 2 seasons the jokes are so predictable it's just sad. Adding a hysterical laugh after each lame punchline just makes it that much worse
Laugh track didn't really bug me much until I watched Better Off Ted. It doesn't have any laugh track at all and I'm lauging because of the show actually being funny, not because I hear someone else laugh. Now laugh tracks just annoys me.
Take a look at this youtube video of a Big Bang epsiode without laugh track. It is indeed cringy.
https://www.youtube.com/watch?...
Your mundane page showing cat pics or whatever can be a serious threat if the script-kiddie on the next table can inject whatever javascript he wants into it before you receive it.
Yes, a source can be compromised too, but the ease of mitm http is just amazing. Also, any http security header (csp, hsts, hpkp, etc) or other mitigation techniques are futile if transport can't be trusted.
This can also be prevented by simply using a decent router that doesn't allow local IP replies from a public DNS.
Load up pfsense and you are protected from this. Even with default settings.
Code samples are pretty much always "not for proudction".
It's good that samples are easily available, as code often explains a concept better than documentation for many developers.
The risk is that these samples are just copied in to an application with all the codesmells that it contains.
Really?
Being a company with stockholders you need to try and benefit from anything that could gain positive PR
So even if you really JUST want to help, you also need to be visible doing it. Because of the way the stockmarked works.
And for all you know, what if they did some initiatives without any PR. Would you know about it to complain?
Lighten up, this is not a bad thing.. for anyone.
Yes. But the book doesn't run code on your end. It's actually just text.
A browser will run whatever code it gets from the website.Or any code picket up on the way from the server to your browser if it's not encrypted.
If you access unencrypted wikipedia from your local Starbucks or library, pretty much anyone can play man-in-the-middle and inject javascript into your site. Good frameworks exists (ex. BeeF) that makes it really easy to do phishing (facebook login, work login, etc) and many other creative attacks. If you are then running on a vulnerable browser it will be easily hacked.
You can do this with a phone and a few clicks (ex. the app dSploit).
So yes. Even if the information itself is not worth protecting, the Web 2.0/3.0/NextGen certainly needs transport encryption.
No errors?
All sites validated to be serving torrents of copyrighted material?
Not one mistake?
So we can conclude that everyone issuing DMCA is perfectly honest and no sites with critical viewpoints of countries, companies or people are on that list? Right?
Pseudo random numbers generate ok distribution, but pseudo still means false..
.Net, Javascript, MS SQL, Oracle, Pretty much any language/framework has a Random feature that is so far from random it's just laughable..
It's not a random number. Not even close. It's very much predictable.
For this particilar application I can't really see how it could be exploited, as I assume Excel does a decent job of seeding the generator.
The question really is:
Why is there a class/method/function/library named Random when it's not random? It's the same for Java,
How about you find the link to what Jordan Peterson actually said? with context
I can assure you that he do not have the oppinion you assume on this matter.
Funny how haters always link to some article with someone else posing a straw man.
Jordan Peterson did not demand that at all.
Are you stating this because you heard or read someone say so or do you fabricate stuff like this on your own?
Slashdot is _really_ going downhill when post like yours gets modded +4.
Too bad people can't just look at the current research. The only reason it's controversial is that it contradicts dietary beliefs.
And I do mean beliefs.
Totaly agree, and a very valid point
It's called Ketogenic Diet, so I used the term in my post, but I think I'll try and avoid using the term diet when discussing Keto from now on
No.
As I clearly stated: "They link to actual research"
You can verify it yourself, it's just more entertaining having someone discuss it instead of reading all papers yourself. So verify those that contradicts your beliefls or read them all. It's up tp you.
Many diets are not based on science, but ketogenic diet (and Atkins as the base before it) are actually based on real science.
If you are interested then Carl Franklin and Richard Morris does an excellent job discussing it (and linking to actual research) in their podcast "2 Keto Dudes".
Highly recommend it if you (or anybody else) are interested in learning about the topic.
Btw. start at show number 1 og go from there. Most of the details are explained in great detail in the first few shows.
Shit happens and provides an opportunity to learn.
I've been reading slashdot for quite some time (years before signing up for an account).
When I started reading slashdot I was genuinely suprised reading comments that I agreed with, and then reading a reply that changed my thoughts on the matter. Maybe just for a different perspective, understanding arguments from otther point of views. But sometimes actually changing my opinion, or making me go out and search for more information.
That is gold. I love that. Especially with todays polarized media discussions (can't really call them discussions even).
It's great that you guys are back! Thank you for an awesome site!
I'm more concerned that the system freezes and lures the driver to think the area is free and clear when it's not.