It's a disaster. I installed it on a VM. Luckily, I never use the console of that VM for anything and simply bring up windows on the host computer's X server. I have been highly reluctant to install Fedora 15 on anything after experiencing what it looks like and works like on my VM. It's nearly completely broken. I would be significantly less efficient if I actually tried to use it, and I would be constantly frustrated and annoyed by things that didn't work at all, or were stupidly redone to be more obscure and difficult.
And that's with 'forced compatibility mode' because my VM doesn't support 3D acceleration very well.
To be clear, it's the panel, shell and window manager that are broken. The applications that use the toolkit are fine.
I feel that the Republican party is basically the Tea Party in spirit. So I tend to attribute most things republicans do to the tea party.
Additionally, listening to tea party rhetoric, it's quite clear that it's the same old christian nation, authority rules BS with a side of 'no taxes for people who make tons of money' that the Republican party has been about for the last 2-3 decades.
And I spread my dislike of government actions around a bunch. I have no love of the democrats either. But the tea partyers feel like so many faux libertarians to me.
Yep, this is what the small-government people want. More regulation and requirements on business so it can continue to innovate. This is government getting out of the way.
I hate the way this group lies blatantly. The rampant hypocrisy and lying is endemic to this movement. I hope you small government fiscal conservative types take note here. Or maybe you should stop telling yourselves that's what you stand for.
There is no algorithm at all that will help you if your cell phone is compromised. Two factor authentication or no, once your cell phone is compromised it's game over.
But having your gmail password on your cell phone is a very bad thing because you might use that password for other things, or your passwords might follow a theme, or any number of other things. You should never store a password if you can help it, and you certainly shouldn't be storing it on a cell phone.
So, that leaves a password that's basically a string of random characters. You're right, there is not much gained by it being a public key. The important thing is that it is a long string of completely random gibberish that's specific to the particular device it's stored on.
If you want a device-specific password, Google already support that for their services through their two-factor authentication with application specific passwords [google.com].
What I want is a password that is unguessable. Storing any kind of user password at all is totally unacceptable. I haven't used a password to remotely log into any of my computers for at least a couple of years now. Somebody who somehow got a copy of my password database would be unable to use it to get remote access to my computer. They'd have to get private keys instead.
I have separate private keys for each device capable of physically authenticating me. So if I lose any of those devices I can easily revoke its access to anything in a very short period of time without affecting my ability to use any of my other devices to.
Nothing. But there is no way data can be stored on the phone that cannot be used to access the service.
The best you can do is make sure that it's apparent when the phone is being used to do something via the service so a user can monitor it and cut off access is something untoward is happening.
It should generate a certificate for access to your account. The password should only be used the first time you log in to establish the certificate as one which has access to your account. You should then be able to go to the web and see what kind of history of access and operations each authorized certificate has been performing, and allow you to revoke any certificate which is misbehaving.
But that, of course, is good security that isn't a huge pain and a headache for the user. And, as we all know, and the TSA is fond of reminding us, security must be a tradeoff between ease of use and good security. So I'm guessing that solution will never be adopted.
I wish it made sense for Canada to revoke all of its extradition treaties with the US over this. Unfortunately, that would mean Canada would become a haven for actual criminals, which would be quite bad for Canadians. I do think though that Canada should seriously rethink extradition issues and make it much, much harder for the US to extradite people as a result of this.
Well then that would be a pretty revolutionary reform of our entire economic system.
Yeah, unhappily, it would be. The responsibility cutout implied by the existence of a public corporation really disturbs me. I think it's a part of the reason why almost all public companies of any size are so bad and frequently hated.
I feel this makes a public corporation a giant machine for externalizing costs. The more costs you can semi-legitimately force someone else to pay, the more profit. And if nobody has any responsibility for the damage you cause by externalizing costs that makes the strategy that much more attractive.
Yeah, having a large enough portion of the network under your control would certainly help in tracking it all down. That is one strategy. If I were the designer, I would have each node cache the addresses of all the other nodes, but only use some small number of nodes out of that cache. Only cycle a node out if it's been unreachable for a few days.
That both makes it really hard to track down the whole network, even if you own 0.1% of the total nodes. You'd have to own something like 5-10% of the nodes in order to do it. And even if you tracked down 90% of the network, the other 10% would still be able to find each other.
Should you be forced to pay 1000 bucks out of your pocket because some company in your portfolio made a bad decision?
Yes, you invested in that company. You should bear some liability for its actions. Lack of responsibility and accountability is one of the chief ills affecting our government. Tea partiers are all for this idea when it comes to poor people, but have the hardest time when it comes to big companies.
What about dams (Banqiao Dam 171.000 deaths, Vajont 2000 deaths), will you support hydroelectric power only when you will get honesty and real accountability?
The chemical industry suffers terribly from a lack of accountability. By all accounts, someone should get the death penalty for the Union Carbide disaster, the stockholders should be forced to cough up a few thousand apiece, and their corporate charter should be revoked.
I'm not sure how to handle the chemical industry. We're too dependent on them for giving up on them to be feasible.
I was not aware of mass deaths from broken dams. If these happened in developed countries, I'm now very suspicious of hydroelectric as well. Chernobyl did not make me suspicious of nuclear power because of the nature of the soviet union. But Fukishima did. Especially the way people who were nuclear energy boosters who were not even associated with it toed the company line. That's really scary to me. Especially now that they continue to toe it rather than admit the problem exists.
I feel the coal industry has problems which are fairly well understood no matter what their PR says. And while those problems might affect a whole lot of people, at least they go into it without any false sense of security about it.
And this bug would've randomly cropped up 1 in 256 times a specific feature was used in a specific way. And it was data dependent. The testers would've had to have magically chosen just the right set of data to test the feature with. It would never have happened in test. At least, not until I came up with a data set that was purposely designed to exercise the bug to prove that it was there, and gone after it was fixed.
You do realize the Fukushima Daiichi plant is 40 years old, right?
Yes, and I'm also aware that the plant was supposed to have been decommissioned already, per the regulatory code you cite. It just wasn't because that regulatory code was ignored for the sake of profit and convenience.
There are a lot of plants built during that time, sure, but every plant that I know of keeps up with the current safety standards and are under constant, continuous monitoring to make sure everything is safe.
And with all the lies about the state of Fukishima while it was occuring, how can I trust anything you say about these inspections? Are the inspectors on the take from the industry? Did they used to work in the industry? Are they ignoring this hairline crack or that little problem because "it'll be OK"?
I don't trust the regulators. I don't trust the industry. They both lie. How can I have any trust for any part of it when they lie?
At least I know the coal industry isn't lying to me. I know what the dangers are and I trust that people are aware. I do not trust any booster of nuclear power anymore. With so many lies, how can I? And you don't even bother to address that point at all, which tells me you don't actually care that they lie.
The danger and scope of Fukishima was consistently understated. Repeated posts by people just like you told me how many redundant safety features there were and how they now had it all under control. You all lied to me. You're probably lying to me now. I suspect a lot of you even believed yourselves when you posted the nonsense you did. The liar who believes their own lies is the most dangerous kind.
Nevermind that in the entire history of nuclear power, only a handful of people have been killed by nuclear incidents, compared with hundreds of thousands of people killed by coal over the same period of time.
I don't care what kind of bogus statistics you quote. How can I even trust them when the industry lies so freely and easily?
All I care about is how the accident is minimized to the point of lying about it while it's happening and after it happened. It takes months for anything even close to resembling the truth to come out, and even then I don't trust it. How can I trust any of the statistics you quote when everybody involved in the industry lies through their teeth?
I want honesty and real accountability. When those are provided, I'll be happy to support nuclear power. But not until then. And by being an industry apologist, you aren't helping.
Japan's nuclear disaster has proven to me that neither the companies responsible for nuclear power plants, nor the people responsible for ostensibly regulating them can be trusted. I think Germany's decision is absolutely correct until we can come up with a better political/organizational technology for regulating nuclear power plants.
Sure I'm generalizing but not many of us get to work for enlightened management, most of us have a mortgage to pay and when the person who can easily replace us asks us to adopt a particular goal, we do.
And each and every single person who buys into this attitude is part of the problem.
My goal, as a developer, is to make sure QA never catches any bugs. When they find a bug, I'm embarrassed, as I should be. Developers who have a purposeful strategy of waiting for QA to find their bugs should be fired.
Slashdot Mirror
Then why is there no way to add an applet to the panel? Why don't I get software update notifications anymore?
It's a disaster. I installed it on a VM. Luckily, I never use the console of that VM for anything and simply bring up windows on the host computer's X server. I have been highly reluctant to install Fedora 15 on anything after experiencing what it looks like and works like on my VM. It's nearly completely broken. I would be significantly less efficient if I actually tried to use it, and I would be constantly frustrated and annoyed by things that didn't work at all, or were stupidly redone to be more obscure and difficult.
And that's with 'forced compatibility mode' because my VM doesn't support 3D acceleration very well.
To be clear, it's the panel, shell and window manager that are broken. The applications that use the toolkit are fine.
I feel that the Republican party is basically the Tea Party in spirit. So I tend to attribute most things republicans do to the tea party.
Additionally, listening to tea party rhetoric, it's quite clear that it's the same old christian nation, authority rules BS with a side of 'no taxes for people who make tons of money' that the Republican party has been about for the last 2-3 decades.
And I spread my dislike of government actions around a bunch. I have no love of the democrats either. But the tea partyers feel like so many faux libertarians to me.
Yep, this is what the small-government people want. More regulation and requirements on business so it can continue to innovate. This is government getting out of the way.
I hate the way this group lies blatantly. The rampant hypocrisy and lying is endemic to this movement. I hope you small government fiscal conservative types take note here. Or maybe you should stop telling yourselves that's what you stand for.
Yep, I agree with you completely. That's what I'm trying to defend against.
There is no algorithm at all that will help you if your cell phone is compromised. Two factor authentication or no, once your cell phone is compromised it's game over.
But having your gmail password on your cell phone is a very bad thing because you might use that password for other things, or your passwords might follow a theme, or any number of other things. You should never store a password if you can help it, and you certainly shouldn't be storing it on a cell phone.
So, that leaves a password that's basically a string of random characters. You're right, there is not much gained by it being a public key. The important thing is that it is a long string of completely random gibberish that's specific to the particular device it's stored on.
If you want a device-specific password, Google already support that for their services through their two-factor authentication with application specific passwords [google.com].
What I want is a password that is unguessable. Storing any kind of user password at all is totally unacceptable. I haven't used a password to remotely log into any of my computers for at least a couple of years now. Somebody who somehow got a copy of my password database would be unable to use it to get remote access to my computer. They'd have to get private keys instead.
I have separate private keys for each device capable of physically authenticating me. So if I lose any of those devices I can easily revoke its access to anything in a very short period of time without affecting my ability to use any of my other devices to.
Nothing. But there is no way data can be stored on the phone that cannot be used to access the service.
The best you can do is make sure that it's apparent when the phone is being used to do something via the service so a user can monitor it and cut off access is something untoward is happening.
It should generate a certificate for access to your account. The password should only be used the first time you log in to establish the certificate as one which has access to your account. You should then be able to go to the web and see what kind of history of access and operations each authorized certificate has been performing, and allow you to revoke any certificate which is misbehaving.
But that, of course, is good security that isn't a huge pain and a headache for the user. And, as we all know, and the TSA is fond of reminding us, security must be a tradeoff between ease of use and good security. So I'm guessing that solution will never be adopted.
I wish it made sense for Canada to revoke all of its extradition treaties with the US over this. Unfortunately, that would mean Canada would become a haven for actual criminals, which would be quite bad for Canadians. I do think though that Canada should seriously rethink extradition issues and make it much, much harder for the US to extradite people as a result of this.
Yet, thousands die in wars all the time. All the grunts there know they're expendable too.
I think the most interesting 20% of my Facebook friends are on Google+. Perhaps the percentage is even higher.
So, as far as I'm concerned, everybody's already on Google+.
Well then that would be a pretty revolutionary reform of our entire economic system.
Yeah, unhappily, it would be. The responsibility cutout implied by the existence of a public corporation really disturbs me. I think it's a part of the reason why almost all public companies of any size are so bad and frequently hated.
I feel this makes a public corporation a giant machine for externalizing costs. The more costs you can semi-legitimately force someone else to pay, the more profit. And if nobody has any responsibility for the damage you cause by externalizing costs that makes the strategy that much more attractive.
Yeah, having a large enough portion of the network under your control would certainly help in tracking it all down. That is one strategy. If I were the designer, I would have each node cache the addresses of all the other nodes, but only use some small number of nodes out of that cache. Only cycle a node out if it's been unreachable for a few days.
That both makes it really hard to track down the whole network, even if you own 0.1% of the total nodes. You'd have to own something like 5-10% of the nodes in order to do it. And even if you tracked down 90% of the network, the other 10% would still be able to find each other.
Thanks! :-) I've fixed it now.
Should you be forced to pay 1000 bucks out of your pocket because some company in your portfolio made a bad decision?
Yes, you invested in that company. You should bear some liability for its actions. Lack of responsibility and accountability is one of the chief ills affecting our government. Tea partiers are all for this idea when it comes to poor people, but have the hardest time when it comes to big companies.
I have in the past, and I was considered a better employee because I did it.
What about dams (Banqiao Dam 171.000 deaths, Vajont 2000 deaths), will you support hydroelectric power only when you will get honesty and real accountability?
The chemical industry suffers terribly from a lack of accountability. By all accounts, someone should get the death penalty for the Union Carbide disaster, the stockholders should be forced to cough up a few thousand apiece, and their corporate charter should be revoked.
I'm not sure how to handle the chemical industry. We're too dependent on them for giving up on them to be feasible.
I was not aware of mass deaths from broken dams. If these happened in developed countries, I'm now very suspicious of hydroelectric as well. Chernobyl did not make me suspicious of nuclear power because of the nature of the soviet union. But Fukishima did. Especially the way people who were nuclear energy boosters who were not even associated with it toed the company line. That's really scary to me. Especially now that they continue to toe it rather than admit the problem exists.
I feel the coal industry has problems which are fairly well understood no matter what their PR says. And while those problems might affect a whole lot of people, at least they go into it without any false sense of security about it.
No coder is that good, except, maybe, DJB.
And this bug would've randomly cropped up 1 in 256 times a specific feature was used in a specific way. And it was data dependent. The testers would've had to have magically chosen just the right set of data to test the feature with. It would never have happened in test. At least, not until I came up with a data set that was purposely designed to exercise the bug to prove that it was there, and gone after it was fixed.
You do realize the Fukushima Daiichi plant is 40 years old, right?
Yes, and I'm also aware that the plant was supposed to have been decommissioned already, per the regulatory code you cite. It just wasn't because that regulatory code was ignored for the sake of profit and convenience.
There are a lot of plants built during that time, sure, but every plant that I know of keeps up with the current safety standards and are under constant, continuous monitoring to make sure everything is safe.
And with all the lies about the state of Fukishima while it was occuring, how can I trust anything you say about these inspections? Are the inspectors on the take from the industry? Did they used to work in the industry? Are they ignoring this hairline crack or that little problem because "it'll be OK"?
I don't trust the regulators. I don't trust the industry. They both lie. How can I have any trust for any part of it when they lie?
At least I know the coal industry isn't lying to me. I know what the dangers are and I trust that people are aware. I do not trust any booster of nuclear power anymore. With so many lies, how can I? And you don't even bother to address that point at all, which tells me you don't actually care that they lie.
The danger and scope of Fukishima was consistently understated. Repeated posts by people just like you told me how many redundant safety features there were and how they now had it all under control. You all lied to me. You're probably lying to me now. I suspect a lot of you even believed yourselves when you posted the nonsense you did. The liar who believes their own lies is the most dangerous kind.
I don't think the regulations can be reformed. The regulations in place were perfectly adequate, they were just ignored.
Nevermind that in the entire history of nuclear power, only a handful of people have been killed by nuclear incidents, compared with hundreds of thousands of people killed by coal over the same period of time.
I don't care what kind of bogus statistics you quote. How can I even trust them when the industry lies so freely and easily?
All I care about is how the accident is minimized to the point of lying about it while it's happening and after it happened. It takes months for anything even close to resembling the truth to come out, and even then I don't trust it. How can I trust any of the statistics you quote when everybody involved in the industry lies through their teeth?
I want honesty and real accountability. When those are provided, I'll be happy to support nuclear power. But not until then. And by being an industry apologist, you aren't helping.
Japan's nuclear disaster has proven to me that neither the companies responsible for nuclear power plants, nor the people responsible for ostensibly regulating them can be trusted. I think Germany's decision is absolutely correct until we can come up with a better political/organizational technology for regulating nuclear power plants.
Sure I'm generalizing but not many of us get to work for enlightened management, most of us have a mortgage to pay and when the person who can easily replace us asks us to adopt a particular goal, we do.
And each and every single person who buys into this attitude is part of the problem.
My goal, as a developer, is to make sure QA never catches any bugs. When they find a bug, I'm embarrassed, as I should be. Developers who have a purposeful strategy of waiting for QA to find their bugs should be fired.