A Mars colony doesn't have to be a closed system like BioDome (failed) or the Soviet equivalent BIOS-3 (successful). Mars has a bunch of natural resources that make it less challenging, or more accurately challenging in a different way, than living in space.
Have you opened a smartphone? It _is_ a large number of discrete parts. My gripe with them is that they are glued together so you can't get to those parts.
I'm okay with gluing them, too, if it's for a legitimate engineering reason. If it's just to make them harder to service then that's not cool.
The best way to defuse this is for the meme-author to step up and say he published it.
CNN only has power here because he is letting them set the terms. At any point he can take that power back and make them look like assholes in the process.
When I ask for something to have some modicum of repairability I'm not asking for component-level repairs. If the flash fails on my kit, I am unlikely to desolder the micro BGA chip, clean it, and solder in a new one. I am much more likely to swap out the board its attached to. (Just like they do in the Apple store...)
This is analogous to how appliances and cars are repaired. It's rare for someone to rewind their alternator or starter, you just swap them out. If an ECU fails, you swap it out. If the main board on your phone fails and you can get one on eBay for $15, you swap it out.
For people saying that this type of repair makes stuff more expensive, I don't see it. I have a 40" Westinghouse LCD TV sitting here that I swapped the main board on and it wasn't any harder than swapping the motherboard on a PC.
(Not that some people don't do component level repairs. I've heard good things about these classes, but don't want to drop 2k to attend. http://mendonipadrehab.com/pra...)
Gluing the machine together helps with drop-rating tests too, and I'm not discounting that at all. If there is a legitimate engineering reason to seal a device, so be it.
"So when it breaks they can buy another one" isn't an _engineering_ reason.
>> Torx screws have been in heavy use in the automotive industry since about 1980. They are HARDLY "special" at this point.
I don't have a problem with Torx screws. I don't have a problem with any screw I can buy drivers to fit. I have a serious problem when a manufacturer creates a proprietary screw, patents it, and won't sell or license the driver to anyone.
There are a number of manufacturers, not just Apple, that produce tablet PCs and phones where the case is glued closed. Dissembling these units, even to replace the battery, requires heating the screen and prying it off. It's very easy to break the screen in this process.
Screens are cheap though, so you can replace those too, right? Apple recently backed away from a decision to firmware lock their screens' home buttons.
I don't think we need repairability laws yet. I think we do need manufacturers scared of legislators creating these laws so they back of of the more aggressive forms of anti-repair designs.
I have some hands-on experience here and can make a reasonable comparison.
In an Iphone 4, the last iPhone I disassembled, there were three circuit boards, a battery, the screen, case, back, camera, button, and a small pile of cables.
There are dramatically more parts than this in a LG front-loading washing machine. The control panel, case, front and side covers, feet, drum suspension, drum bearing, water inlet valves, motor, drain pump, vibration sensor, tubes and wiring, soap dispenser, door, door seal/spring, door latch, door safety switch, door lock solenoid, bellows seal, drum support bearing, etc.
I have less experience with refrigerators, but they are similar. My fridge has two doors and two exterior drawers, 6 seals, 4 door mounts, water valves for the icemaker and water dispenser, plumbing to connect those, a pair of electrical switches for these, a digital control panel, two different lights, a water filter and cover, a crap-ton of shelves/supports/drawers, a compressor, evaporator, condenser, and a couple of fans.
A refrigerator and washing machine have a higher number of field replaceable parts than a cellphone. By this measure they are more "complex" than a cellphone.
As a child I read story. There was young a boy tending sheep. He loved to watch the people drop everything and scurry out to protect him and the sheep he yelled "Wolf!". It was great fun until one day he saw the wolf, cried "WOLF!", and no one came so the wolf ate him.
Shouting "RUSSIA ATTACKS!" is a valid strategy to undermine the current US republican-dominated government and Trump specifically. The people doing this need to understand that there can be expensive and painful consequences if it turns out not to be true.
My employer contacted the FBI for a security incident in 2009-ish. We were told that they don't consider matters with damages less than $10,000. Is that still the case?
Is it truly unreasonable to ask your macro developers to sign code before they distribute it in your enterprise? You aren't asking them to make a pilgrimage to the oracle, you are asking them to open the document and go to Developer >> Code >> Visual Basic >> Tools >> Digital Signature >> and pick a certificate.
"It's hard" is why enterprises have huge numbers of unsigned Java apps and ActiveX controls that IT has to manually whitelist. Spend the half-hour it takes to learn to do it right and then "It's hard" isn't an excuse anymore.
It's not just Avast, others have issues too. The wrong rev of McAffee DLP will cause the windows shell not to display any text, and the wrong rev of several products will block the OS from booting entirely.
Microsoft has done some work around this on the Windows side.
They build a locked-down domain that requires Ipsec for all communication, and use it to build secure hosts called Privileged access workstations (PAWs) from known good media.
The configuration and software bits will obviously be different from Windows to Linux, but the underlying ideas should be the same.
Those are: * restrict network communications with IPSec * no internet access on the PAWs * build everything in the red forest, including the PAWs, from known good media.
There has been a great deal of discussion about the "right" (tm) way to bring data into and out of the red forest. You can argue for moving this data in via bastion host file servers, but I don't like that. If I'm going to all of the trouble to air gap a network then I want it to be an air gap. That means USB sticks and sneakernet.
I'm not familiar with the intricacies of the recent Intel AMT vulnerabilities, but I _assume_ that requiring IPSec for communications at the OS layer won't prevent that vulnerability. I'd be delighted to be wrong. . (Save the Microsoft bashing for another post. I work for them. They buy my groceries. They aren't paying or pushing me to write this. In fact, I should be working.)
Tesla updated the Autopilot feature to have a five-mile-over-the-limit maximum after this crash.
The US is not like Europe vis-a-vis speed limits. Driving at or under the speed limit here is an uncommon and sometimes dangerous behavior. That's really stupid, but that's the way it has been ever since they set the interstate speed limits nationally at 55 mph.
(Yes, I know that speed limits are higher than 55mph now, but that's when it started.)
No, it is not an autonomous car. It is a lane following gps-enabled adaptive cruise control. Calling it autonomous will confuse people into thinking it has Google-car like capabilities it does NOT.
It is an advanced form of cruise control, and people need to be really clear on that or they'll die for their ignorance.
I use Bitlocker drive encryption and have my Documents/pictures/music etc on my dropbox. This arrangement prepares me for lost/stolen computers as well as (far more common) hardware failures. It also gives me near-real-time sync to my other PCs as well.
There are some nice bonuses to this arrangement.
I (via my unlimited data) sync my photos to my PCs with dropbox automagically in near real-time.
I can pull up password safe on my Android Phone from my dropbox-made-available-offline psafe3 file.
Domain 1 has eighth layer political problems that no technical solution can address.
Domain 2 doesn't sound like it is a great application for a domain at all. If it were desktop users on the dozen machines and not industrial control equipment you could make some argument for Azure AD, but you'd have to show me there was some value in it before I'd implement.
> A lot of application use (or can use) AD/LDAP group membership to handle rights management.... and with ADFS or another federation service those apps don't have to be on premise either. My current customer uses Ping for federation, and they have dozens of cloud apps that do automagic single-sign-on.
(I work for Microsoft, but the above is not paid shilling. Yes, I know that by working for MS my opinion is immediately invalid.)
Slashdot Mirror
A Mars colony doesn't have to be a closed system like BioDome (failed) or the Soviet equivalent BIOS-3 (successful). Mars has a bunch of natural resources that make it less challenging, or more accurately challenging in a different way, than living in space.
Have you opened a smartphone? It _is_ a large number of discrete parts. My gripe with them is that they are glued together so you can't get to those parts.
I'm okay with gluing them, too, if it's for a legitimate engineering reason. If it's just to make them harder to service then that's not cool.
The best way to defuse this is for the meme-author to step up and say he published it.
CNN only has power here because he is letting them set the terms. At any point he can take that power back and make them look like assholes in the process.
When I ask for something to have some modicum of repairability I'm not asking for component-level repairs. If the flash fails on my kit, I am unlikely to desolder the micro BGA chip, clean it, and solder in a new one. I am much more likely to swap out the board its attached to. (Just like they do in the Apple store...)
This is analogous to how appliances and cars are repaired. It's rare for someone to rewind their alternator or starter, you just swap them out. If an ECU fails, you swap it out. If the main board on your phone fails and you can get one on eBay for $15, you swap it out.
For people saying that this type of repair makes stuff more expensive, I don't see it. I have a 40" Westinghouse LCD TV sitting here that I swapped the main board on and it wasn't any harder than swapping the motherboard on a PC.
(Not that some people don't do component level repairs. I've heard good things about these classes, but don't want to drop 2k to attend. http://mendonipadrehab.com/pra...)
Gluing the machine together helps with drop-rating tests too, and I'm not discounting that at all. If there is a legitimate engineering reason to seal a device, so be it.
"So when it breaks they can buy another one" isn't an _engineering_ reason.
>> Not with these youth unemployment numbers.
There is no place in this discussion for fact-based assessments using historical data. XD
>> Torx screws have been in heavy use in the automotive industry since about 1980. They are HARDLY "special" at this point.
I don't have a problem with Torx screws. I don't have a problem with any screw I can buy drivers to fit. I have a serious problem when a manufacturer creates a proprietary screw, patents it, and won't sell or license the driver to anyone.
There are a number of manufacturers, not just Apple, that produce tablet PCs and phones where the case is glued closed. Dissembling these units, even to replace the battery, requires heating the screen and prying it off. It's very easy to break the screen in this process.
Screens are cheap though, so you can replace those too, right? Apple recently backed away from a decision to firmware lock their screens' home buttons.
I don't think we need repairability laws yet. I think we do need manufacturers scared of legislators creating these laws so they back of of the more aggressive forms of anti-repair designs.
I have some hands-on experience here and can make a reasonable comparison.
In an Iphone 4, the last iPhone I disassembled, there were three circuit boards, a battery, the screen, case, back, camera, button, and a small pile of cables.
There are dramatically more parts than this in a LG front-loading washing machine. The control panel, case, front and side covers, feet, drum suspension, drum bearing, water inlet valves, motor, drain pump, vibration sensor, tubes and wiring, soap dispenser, door, door seal/spring, door latch, door safety switch, door lock solenoid, bellows seal, drum support bearing, etc.
I have less experience with refrigerators, but they are similar. My fridge has two doors and two exterior drawers, 6 seals, 4 door mounts, water valves for the icemaker and water dispenser, plumbing to connect those, a pair of electrical switches for these, a digital control panel, two different lights, a water filter and cover, a crap-ton of shelves/supports/drawers, a compressor, evaporator, condenser, and a couple of fans.
A refrigerator and washing machine have a higher number of field replaceable parts than a cellphone. By this measure they are more "complex" than a cellphone.
The battery on $20,000 a car lasts, at best, about five years. It costs $150 to get a new one.
If auto manufacturers made the batteries non-removable people wouldn't buy cars.
The battery on a $800 phone lasts, at best, about 3 years. It costs $10 for a new battery.
Why is it okay to hand-wave away the phone manufacturer's choice to glue these units closed?
I'm putting my money where my mouth is here. I won't buy a phone that doesn't have a MicroSd slot and user-replaceable battery.
> No one really gains from Russia being blamed if it wasn't Russia.
This is incorrect. The US is attempting to pick a fight with Russia, and this is another pinprick. Why we are trying to pick this fight I do not know.
As a child I read story. There was young a boy tending sheep. He loved to watch the people drop everything and scurry out to protect him and the sheep he yelled "Wolf!". It was great fun until one day he saw the wolf, cried "WOLF!", and no one came so the wolf ate him.
Shouting "RUSSIA ATTACKS!" is a valid strategy to undermine the current US republican-dominated government and Trump specifically. The people doing this need to understand that there can be expensive and painful consequences if it turns out not to be true.
See also "Iraqi Weapons of Mass Destruction"
My employer contacted the FBI for a security incident in 2009-ish. We were told that they don't consider matters with damages less than $10,000. Is that still the case?
Is it truly unreasonable to ask your macro developers to sign code before they distribute it in your enterprise? You aren't asking them to make a pilgrimage to the oracle, you are asking them to open the document and go to Developer >> Code >> Visual Basic >> Tools >> Digital Signature >> and pick a certificate.
"It's hard" is why enterprises have huge numbers of unsigned Java apps and ActiveX controls that IT has to manually whitelist. Spend the half-hour it takes to learn to do it right and then "It's hard" isn't an excuse anymore.
In an enterprise you can
Digitally sign the macro
Add the certificate to the trusted publishers
Set the machine to only run trusted content in Office.
I've helped a customer with this in the past.
It's not just Avast, others have issues too. The wrong rev of McAffee DLP will cause the windows shell not to display any text, and the wrong rev of several products will block the OS from booting entirely.
>> If Windows could make their OS as hardened as OSX
It's called Windows 10 S, and Slashdotters excoriated them for releasing it as a crippled piece of software.
Microsoft has done some work around this on the Windows side.
They build a locked-down domain that requires Ipsec for all communication, and use it to build secure hosts called Privileged access workstations (PAWs) from known good media.
Their reference material is here:
http://aka.ms/cyberpaw
The configuration and software bits will obviously be different from Windows to Linux, but the underlying ideas should be the same.
Those are:
* restrict network communications with IPSec
* no internet access on the PAWs
* build everything in the red forest, including the PAWs, from known good media.
There has been a great deal of discussion about the "right" (tm) way to bring data into and out of the red forest. You can argue for moving this data in via bastion host file servers, but I don't like that. If I'm going to all of the trouble to air gap a network then I want it to be an air gap. That means USB sticks and sneakernet.
I'm not familiar with the intricacies of the recent Intel AMT vulnerabilities, but I _assume_ that requiring IPSec for communications at the OS layer won't prevent that vulnerability. I'd be delighted to be wrong.
.
(Save the Microsoft bashing for another post. I work for them. They buy my groceries. They aren't paying or pushing me to write this. In fact, I should be working.)
Tesla updated the Autopilot feature to have a five-mile-over-the-limit maximum after this crash.
The US is not like Europe vis-a-vis speed limits. Driving at or under the speed limit here is an uncommon and sometimes dangerous behavior. That's really stupid, but that's the way it has been ever since they set the interstate speed limits nationally at 55 mph.
(Yes, I know that speed limits are higher than 55mph now, but that's when it started.)
No, it is not an autonomous car. It is a lane following gps-enabled adaptive cruise control. Calling it autonomous will confuse people into thinking it has Google-car like capabilities it does NOT.
It is an advanced form of cruise control, and people need to be really clear on that or they'll die for their ignorance.
The driver was watching a Harry Potter movie when he crashed, according to earlier published reports.
I use Bitlocker drive encryption and have my Documents/pictures/music etc on my dropbox. This arrangement prepares me for lost/stolen computers as well as (far more common) hardware failures. It also gives me near-real-time sync to my other PCs as well.
There are some nice bonuses to this arrangement.
I (via my unlimited data) sync my photos to my PCs with dropbox automagically in near real-time.
I can pull up password safe on my Android Phone from my dropbox-made-available-offline psafe3 file.
If you are using MDM in Azure, yes.
Domain 1 has eighth layer political problems that no technical solution can address.
Domain 2 doesn't sound like it is a great application for a domain at all. If it were desktop users on the dozen machines and not industrial control equipment you could make some argument for Azure AD, but you'd have to show me there was some value in it before I'd implement.
> A lot of application use (or can use) AD/LDAP group membership to handle rights management. ... and with ADFS or another federation service those apps don't have to be on premise either. My current customer uses Ping for federation, and they have dozens of cloud apps that do automagic single-sign-on.
(I work for Microsoft, but the above is not paid shilling. Yes, I know that by working for MS my opinion is immediately invalid.)