Normally LAN to LAN traffic over a proper switched network is relatively safe, seeing that an ARP storm to a switch for redirecting LAN traffic would ALSO be noticed by you the network admin, and ideally has been proactively prevented as well.
Storms maybe, but just try to secure a server core where the systems guys want to just keep moving VMs from hypervisor to hypervisor from even just plain old arp spoofing, and I'll see you a year or so later crawling out of the dot1Qaw rabbit hole looking for a career change to something that involves staring calmly at growing plant life.
I'm sure it can be used, just like the rest of the hardware "can be used."
But these things in one form or another have been around for over two decades and everyone who has ever set up real server hardware from scratch knows they're there and their existence has never been a secret. (The closed-source code they run, on the other hand...) It's not even "news" that chipset manufacturers have started to integrate these systems directly into CPUs.
The earliest one of these I remember was called iLOM on a Sun Systems but I'm sure they predate that. Just LOM and ILO are other names I've seen.
Once desktops started to need active runtime heat management, many of them got a "systems management" co-processor that helped with thermal/power control.
Personally I'd be just as worried about whatever firmware is running on the ethernet card these days... which is to say, not very, because there's not much to be done about it, unless you have the reason and time to invest in completely open hardware from top to bottom and the willingness to live within the limitations that might entail. So while I would normally suggest the mildly paranoid just not use the onboard ethernet ports, I can't say I really trust ethernet cards, either.
Also since there are so many gaping holes just staring me in the face in commercial OSes when it comes to (software) VPN and WPA drivers, I figure it'll be a long, long time before I can get around to finessing things down to the metal, if ever.
I don't know if I'd throw the term "modern" around so much as "trendy". After all, isolating apps in containers where they cannot integrate with the rest of the OS is pretty much warmed over mainframe thinking.
I like the show, but then, I liked Breaking Bad too and still stopped in the middle, for no particular reason. I don't need reasons to stop watching a show, but if the thought crosses my mind, this'll be one.
Oh, I didn't realize that sysadmins weren't part of the Internet.
I think GP is talking about highly customized scripts, mostly unpublished, and specific to a particular system or site. You can only discern the prevalence of these uses of a language through the rather imperfect tool of performing surveys -- you can't tell by scraping github or service identifiers.
I lurk the IRC channel. There were some motions to start working on this. They got as far as a gist which seems to have now disappeared. As a "troll hugging" culture that aims to actually teach people with less social graces to grow up a bit, Perl 6 has to write its own that is more likely to doll out lots of wrist-slaps at first rather than shooting first and wondering why everyone left the community later.
Right. Right wingers are for PRIVATE theft of private funds.
Heheh. Also private theft of public funds, it appears. Though really they are probably OK with anything just as long as whatever is stolen won't find its way into the mouths of the poors.
But that's not how the secure password systems these days work. The ones that are worth their salt (no pun intended) never actually send a password to the remote host. They use the password to create a crypt which the remote server can re-create using what it knows of the password. The only way to actually do this sort of "auto-correction" is to make multiple actual attempts against the auth server. The auth server cannot tell whether these attempts are auto-correct attempts, or someone trying to brute force the password, because it cannot see that "oh that's the right password just with capslock on", all it sees is "0xa1362356322bcba173823cd1763726372323d != 0xf563782893287facde". So you have to decrease the security because the auth server has to be told to allow more bad authentications before it starts tar-pitting or locking the account.
(Still waiting for XKCD to do a ven diagram of "things you should not use as passwords" against "things banks ask you for security questions")
Pretty much, we don't want "smart TV"s at most we want monitors with stepped up video processing features (sometimes the interpolated motion modes can work well for example, just there had better be a low latency game mode too.) Anything more is just another closed source computing platform you have to worry about either getting hacked, or the company doing something stupid with a software update.
My friend just got a new 4k. Honest to god, every once in a while if he pauses his DVR for a while, or in some other circumstances, the thing blanks the screen and won't respond to the remote until it has played the chorus of the song "Ante Up" through the speakers. Nobody can up with a plausible theory as to why this behavior is happening -- or why any manufacturer would think this is a good idea.
Though, something better than an IR remote would be very nice. Can't believe they are still the dominant remote interface.
In answer to GGP, you may not have been born early enough to have reason to know that "escape sequences" also is used to refer to in-band signalling on TTYs (which, yes, there are some in the other direction than what is covered in that article). As far as this post I mean specifically ascii character 0x1b (U+001B), which browsers will happily allow to be stuffed in the clipboard and which is what makes exploits of pastes into certain text editors possible. A strong argument could be made for certain of the other control characters which are generally only used as hotkeys on terminal apps. Of course you don't want to mess with things actually commonly used as whitespace like tabs.
To your point, it could also be handled by the desktop clipboard services. Getting sundry terminals and apps to ignore 0x1b from clipboards (we'll call this plan C) is probably harder than (plan A) not putting it in there in the first place or (plan B) banning their presence in the OS/desktop clipboard services. The terminal-based ecosystem does not have this problem internally, because they chose plan A by making certain dangerous characters generate harmless representations on output, which prevents them from getting cut into clipboards (U+001B shows up as two characters "^[" and if you cut and paste it, you paste those two characters, even if the terminal app knows they are just one escape character). It is likely the best choice -- no garbage allowed in, hence no garbage out.
There is probably little good use for having an 0x1b or several other control characters stored in the desktop clipboard, but there may be some obscure places where that might be handy, and choosing B or C would interfere with that. Plan C also involves going into lots of forks of lots of very old code and making changes, unless you try to use only new shiny terminal applications. Personally I cannot, because all the new shiny ones broke or just failed to implement important must-have features when they were implemented (I'm glaring at you, libvte.)
Newlines are one thing. but browsers should not be allowing escape sequences to get into the paste buffer. Which, by the way, is why you cannot use most text editors to check what the clipboard contains without taking special measures.
("xclip -o > file.txt" and "xclip -selection prmary -o > file.txt" are your friend.)
There's a company that makes iceduring the night time when it is more efficient to do so and electricity rates are lower, then melts it during the day to provide AC.
Yeah there are tons of opportunities to replace naive-but-working code with more sophisticated techniques/algorithms out there.
I think TFA is right in that rewriting existing code is indeed productive -- but really the reason is not so much practice at writing, but that you are learning the one skill people who "know how to program" do not necessarily have even if they think they do: how to fluently read code, rather than write it. So, with your suggestion, find an academic paper, think where it applies in an OSS project, and go check how that project implements that functionality. See if using those ideas in that spot improves the project.
In addition it is a good suggestion in that it also builds the skills of taxonomy and research which are needed to avoid wheel re-invention - you can;t avoid it if you do not know the given wheels actually exist.
Well, I'll have to agree that 300-600 calories a day would pretty much guarantee weight loss since otherwise you'd probably have to be in a coma to burn that little just keeping your cells alive. Or you're a bear and can hibernate.
But, I do find it interesting how your yelling washed off the veneer and exposed the self-righteousness these assholes have under the surface.
I too am sick and tired of the irrational, unscientific "work-ethic" mores of the majority of people in the U.S. It's a huge contributing factor to people falling for motivational/self-help con artists, harmful to the general population as a whole, and anti-science.
And before one of them accuses me of being an obese person in denial, I'm not considered obese.
Barring someone in-the-know posting further research, it wasn't tested. The mouse study (3rd link) is the most interesting, but does extensive testing on saccharine, after determining it was the one with the most pronounced effect between it and sucralose and aspartame. Stevia and ACE-K were not tested at all.
The only place I've seen saccharine still in use is as one of the sweeteners offered for coffee at Denny's. As far as I know it's been mostly left on the scrap-heap in the U.S. But I don't read the ingredients on everything, so...
One of the comments on the 4th link, which is a more accessible account of the 3rd, suggests that there has been quite some research on this impact with sucralose in other studies and a suggests a general mechanism of fooling the body into thinking it is getting sugar, then not giving it sugar, may desensitize the body to not react when it actually gets sugar, so when that happens sugar levels would spike because the early-warning system has been bypassed. Depending on which receptors each sweetener activates, this could vary among sweeteners.
Another note is that only a portion of people in the (tiny) human volunteer group had changes that suggested their microbiome may have changed after introducing saccharine, so individualized responses are to be expected.
If you eat half an apple more per day you will reach a new equilibrium where you weigh just enough more that you burn thst much more per day.
...or your system will stop digesting as efficiently to make up the difference. It's not as simple as calories in/calories burned, which is kind of the point of the whole article.
Actually I thought that explanation more or less tried to cram the square peg of "diets work" into the round hole of "TFA says diets don't stick pretty much ever."
The part about a "broken internal regulation loop often tries to counteract external regulation" is true to TFA, but the part about "unhealthy diet can damage the internal regulation" is not what the TFA is saying. The diets causing the internal regulation to break would, by laymen, be considered rather healthy.
McGee is lucky to be alive. She attempted to take a selfie at 107mph at got a crotch shot on some other car's bumper. But thanks to advances in stem cell research and the fine work of Doctors Krinsky and Altschuler, she should regain full reproductive function again.
RTFA. He had tried diet alteration already. Though granted, probably not thoroughly given his somewhat casual proclivities. Not that I can blame him: chronic intestinal distress eats away at your willpower and mental acuity quite severely over time. It's very hard to stay rational with a constant worm in your stomach. I can totally sympathize with the level of desperation that drove him to this. So, if doctor's don't want us nearly-schizophrenic IBS-ravaged patients turning to crazy DYI procedures, getting this area of medicine more science and evidence should be a priority, rather than giving us diazepam-laced anti-cholergenic cocktails, probably an antidepressant, and telling us to "avoid stress" (hah!), essentially treating it as a purely neurological problem.
Prediction: the primary use for this service will be to turn off or close all digital pornography when the girlfriend's cell joins the AP because she pulled up in the driveway.
And of *course* it's cloud based with no need to be. There'd be no way to sell the metadata to marketers otherwise.
Slashdot Mirror
Sure, but it totally does not make life easy for network security, let me tell you.
Normally LAN to LAN traffic over a proper switched network is relatively safe, seeing that an ARP storm to a switch for redirecting LAN traffic would ALSO be noticed by you the network admin, and ideally has been proactively prevented as well.
Storms maybe, but just try to secure a server core where the systems guys want to just keep moving VMs from hypervisor to hypervisor from even just plain old arp spoofing, and I'll see you a year or so later crawling out of the dot1Qaw rabbit hole looking for a career change to something that involves staring calmly at growing plant life.
I'm sure it can be used, just like the rest of the hardware "can be used."
But these things in one form or another have been around for over two decades and everyone who has ever set up real server hardware from scratch knows they're there and their existence has never been a secret. (The closed-source code they run, on the other hand...) It's not even "news" that chipset manufacturers have started to integrate these systems directly into CPUs.
The earliest one of these I remember was called iLOM on a Sun Systems but I'm sure they predate that. Just LOM and ILO are other names I've seen.
Once desktops started to need active runtime heat management, many of them got a "systems management" co-processor that helped with thermal/power control.
Personally I'd be just as worried about whatever firmware is running on the ethernet card these days... which is to say, not very, because there's not much to be done about it, unless you have the reason and time to invest in completely open hardware from top to bottom and the willingness to live within the limitations that might entail. So while I would normally suggest the mildly paranoid just not use the onboard ethernet ports, I can't say I really trust ethernet cards, either.
Also since there are so many gaping holes just staring me in the face in commercial OSes when it comes to (software) VPN and WPA drivers, I figure it'll be a long, long time before I can get around to finessing things down to the metal, if ever.
Most people don't know that many people who have been murdered or who have died by suicide
Even if the list were accurate, "most people" don't know anywhere near the number of people the Clintons know, so it's a moot point, statistically.
The problem with Trump is that's all he is. Well that and the sociopathy.
I don't know if I'd throw the term "modern" around so much as "trendy". After all, isolating apps in containers where they cannot integrate with the rest of the OS is pretty much warmed over mainframe thinking.
I like the show, but then, I liked Breaking Bad too and still stopped in the middle, for no particular reason. I don't need reasons to stop watching a show, but if the thought crosses my mind, this'll be one.
Stop suing fans.
Idiots.
Oh, I didn't realize that sysadmins weren't part of the Internet.
I think GP is talking about highly customized scripts, mostly unpublished, and specific to a particular system or site. You can only discern the prevalence of these uses of a language through the rather imperfect tool of performing surveys -- you can't tell by scraping github or service identifiers.
I lurk the IRC channel. There were some motions to start working on this. They got as far as a gist which seems to have now disappeared. As a "troll hugging" culture that aims to actually teach people with less social graces to grow up a bit, Perl 6 has to write its own that is more likely to doll out lots of wrist-slaps at first rather than shooting first and wondering why everyone left the community later.
Right. Right wingers are for PRIVATE theft of private funds.
Heheh. Also private theft of public funds, it appears. Though really they are probably OK with anything just as long as whatever is stolen won't find its way into the mouths of the poors.
But that's not how the secure password systems these days work. The ones that are worth their salt (no pun intended) never actually send a password to the remote host. They use the password to create a crypt which the remote server can re-create using what it knows of the password. The only way to actually do this sort of "auto-correction" is to make multiple actual attempts against the auth server. The auth server cannot tell whether these attempts are auto-correct attempts, or someone trying to brute force the password, because it cannot see that "oh that's the right password just with capslock on", all it sees is "0xa1362356322bcba173823cd1763726372323d != 0xf563782893287facde". So you have to decrease the security because the auth server has to be told to allow more bad authentications before it starts tar-pitting or locking the account.
(Still waiting for XKCD to do a ven diagram of "things you should not use as passwords" against "things banks ask you for security questions")
Pretty much, we don't want "smart TV"s at most we want monitors with stepped up video processing features (sometimes the interpolated motion modes can work well for example, just there had better be a low latency game mode too.) Anything more is just another closed source computing platform you have to worry about either getting hacked, or the company doing something stupid with a software update.
My friend just got a new 4k. Honest to god, every once in a while if he pauses his DVR for a while, or in some other circumstances, the thing blanks the screen and won't respond to the remote until it has played the chorus of the song "Ante Up" through the speakers. Nobody can up with a plausible theory as to why this behavior is happening -- or why any manufacturer would think this is a good idea.
Though, something better than an IR remote would be very nice. Can't believe they are still the dominant remote interface.
In answer to GGP, you may not have been born early enough to have reason to know that "escape sequences" also is used to refer to in-band signalling on TTYs (which, yes, there are some in the other direction than what is covered in that article). As far as this post I mean specifically ascii character 0x1b (U+001B), which browsers will happily allow to be stuffed in the clipboard and which is what makes exploits of pastes into certain text editors possible. A strong argument could be made for certain of the other control characters which are generally only used as hotkeys on terminal apps. Of course you don't want to mess with things actually commonly used as whitespace like tabs.
To your point, it could also be handled by the desktop clipboard services. Getting sundry terminals and apps to ignore 0x1b from clipboards (we'll call this plan C) is probably harder than (plan A) not putting it in there in the first place or (plan B) banning their presence in the OS/desktop clipboard services. The terminal-based ecosystem does not have this problem internally, because they chose plan A by making certain dangerous characters generate harmless representations on output, which prevents them from getting cut into clipboards (U+001B shows up as two characters "^[" and if you cut and paste it, you paste those two characters, even if the terminal app knows they are just one escape character). It is likely the best choice -- no garbage allowed in, hence no garbage out.
There is probably little good use for having an 0x1b or several other control characters stored in the desktop clipboard, but there may be some obscure places where that might be handy, and choosing B or C would interfere with that. Plan C also involves going into lots of forks of lots of very old code and making changes, unless you try to use only new shiny terminal applications. Personally I cannot, because all the new shiny ones broke or just failed to implement important must-have features when they were implemented (I'm glaring at you, libvte.)
Newlines are one thing. but browsers should not be allowing escape sequences to get into the paste buffer. Which, by the way, is why you cannot use most text editors to check what the clipboard contains without taking special measures.
("xclip -o > file.txt" and "xclip -selection prmary -o > file.txt" are your friend.)
There's a company that makes iceduring the night time when it is more efficient to do so and electricity rates are lower, then melts it during the day to provide AC.
Yeah there are tons of opportunities to replace naive-but-working code with more sophisticated techniques/algorithms out there.
I think TFA is right in that rewriting existing code is indeed productive -- but really the reason is not so much practice at writing, but that you are learning the one skill people who "know how to program" do not necessarily have even if they think they do: how to fluently read code, rather than write it. So, with your suggestion, find an academic paper, think where it applies in an OSS project, and go check how that project implements that functionality. See if using those ideas in that spot improves the project.
In addition it is a good suggestion in that it also builds the skills of taxonomy and research which are needed to avoid wheel re-invention - you can;t avoid it if you do not know the given wheels actually exist.
I knew someone would eventually get that. Or bother to google.
Well, I'll have to agree that 300-600 calories a day would pretty much guarantee weight loss since otherwise you'd probably have to be in a coma to burn that little just keeping your cells alive. Or you're a bear and can hibernate.
But, I do find it interesting how your yelling washed off the veneer and exposed the self-righteousness these assholes have under the surface.
I too am sick and tired of the irrational, unscientific "work-ethic" mores of the majority of people in the U.S. It's a huge contributing factor to people falling for motivational/self-help con artists, harmful to the general population as a whole, and anti-science.
And before one of them accuses me of being an obese person in denial, I'm not considered obese.
Barring someone in-the-know posting further research, it wasn't tested. The mouse study (3rd link) is the most interesting, but does extensive testing on saccharine, after determining it was the one with the most pronounced effect between it and sucralose and aspartame. Stevia and ACE-K were not tested at all.
The only place I've seen saccharine still in use is as one of the sweeteners offered for coffee at Denny's. As far as I know it's been mostly left on the scrap-heap in the U.S. But I don't read the ingredients on everything, so...
One of the comments on the 4th link, which is a more accessible account of the 3rd, suggests that there has been quite some research on this impact with sucralose in other studies and a suggests a general mechanism of fooling the body into thinking it is getting sugar, then not giving it sugar, may desensitize the body to not react when it actually gets sugar, so when that happens sugar levels would spike because the early-warning system has been bypassed. Depending on which receptors each sweetener activates, this could vary among sweeteners.
Another note is that only a portion of people in the (tiny) human volunteer group had changes that suggested their microbiome may have changed after introducing saccharine, so individualized responses are to be expected.
If you eat half an apple more per day you will reach a new equilibrium where you weigh just enough more that you burn thst much more per day.
...or your system will stop digesting as efficiently to make up the difference. It's not as simple as calories in/calories burned, which is kind of the point of the whole article.
Actually I thought that explanation more or less tried to cram the square peg of "diets work" into the round hole of "TFA says diets don't stick pretty much ever."
The part about a "broken internal regulation loop often tries to counteract external regulation" is true to TFA, but the part about "unhealthy diet can damage the internal regulation" is not what the TFA is saying. The diets causing the internal regulation to break would, by laymen, be considered rather healthy.
In Asia only people are "fat" that want to be fat. Because it is a sign of success and luck. Or they don't care for their body.
That's not going to be true for much longer.
McGee is lucky to be alive. She attempted to take a selfie at 107mph at got a crotch shot on some other car's bumper. But thanks to advances in stem cell research and the fine work of Doctors Krinsky and Altschuler, she should regain full reproductive function again.
RTFA. He had tried diet alteration already. Though granted, probably not thoroughly given his somewhat casual proclivities. Not that I can blame him: chronic intestinal distress eats away at your willpower and mental acuity quite severely over time. It's very hard to stay rational with a constant worm in your stomach. I can totally sympathize with the level of desperation that drove him to this. So, if doctor's don't want us nearly-schizophrenic IBS-ravaged patients turning to crazy DYI procedures, getting this area of medicine more science and evidence should be a priority, rather than giving us diazepam-laced anti-cholergenic cocktails, probably an antidepressant, and telling us to "avoid stress" (hah!), essentially treating it as a purely neurological problem.
Prediction: the primary use for this service will be to turn off or close all digital pornography when the girlfriend's cell joins the AP because she pulled up in the driveway.
And of *course* it's cloud based with no need to be. There'd be no way to sell the metadata to marketers otherwise.