> Setup a basic API where any new website, forum, > blog, etc can simply post that email and password > to the appropriate place, and come back with a > response.
You overlook the fact that the consumer site must never handle the password. Otherwise federation fails because that site can masquerade as the user to other federated consumer sites.
> But the thing is, people shouldn't *have* to learn.
Everything in life requires learning. Even using an escalator for the first time or determining why there are perforations in toilet paper.
It is impossible to design software that does not require ``learning'' as otherwise it would accomplish nothing. Far better to have a steep learning curve so that the user becomes productive as quickly as possible ( which is what that term means - think about it ).
> Why is NO ONE from UK protesting against this monstrous humongous assault on > rights and freedom?
And how do you propose that we do that? Who in Government do you really think CARES what we say? And we can't even assemble outside Parliament to protest - that is now illegal.
At present The Lords are our last backstop, but they can't resist the Parliament Act.
Believe me, I want my country back. I can't even take the option of fleeing without submitting my biometrics to the system to renew my passport.
> Now to see if I can get it to boot off a Compact Flash card.
Posting this from OBSD 4.3 booting from a Toshiba 1GB CF for the system and a 4GB generic CF for writable partitions. With the CFs in an IDE adapter ( or even a Cardbus adapter ) the OBSD installer just treats the CFs as IDE disks.
but Toyota already makes the MR2s, which it then turns around and sells the chassis to Lotus
Err...
The original MR2 ( AW11, the wedgey mini-Esprit analogue ) was designed in cooperation with Lotus, based on an internal design concept which the British company determined that they could not produce on the anticipated scale.
The current MR2 has no connection with Lotus. Some Celica components ( engine, gearbox ) are used on US models of the Elise but the chassis is made here in Blighty.
> A dead man's switch won't do you much good. If you've been picked up your computer has too
Yes, your computer containing the encrypted data has been seized and the disk cloned. But the keys are bunt-out in EEPROM
of the the coprocessor or smartcard.
That's one issue that I have with PGP; it popularised the use of a passphrase to store the keys on the same medium as the data, instead of hardware protection. This reliance on human factors makes laws such as RIPA possible; just look at how many posts on this thread have confused ``passphrase'' with ``key''.
I am not a lawyer and this is not advice, but I did consult on the RIPA.
If the encryption key is destroyed by a pre-configured ``technical measure'' then by my reading of the Act one cannot be held in contempt for failure to disclose.
For example, a dead-man's switch that destroys all traces of keys if the owner does not log-in for a pre-arranged number of days.
Note that *all* traces must be destroyed. The Act can compel other parties ( e.g. work colleagues or holders of back-ups ) to disclose even if they are not directly involved in the case.
``The aircraft [VH-OJH] landed long in a driving rainstorm after confusion between the Captain and First Officer on whether to go-around. The aircraft overran the [Bangkok] runway coming to rest on the fairway of an adjacent golf course. Pilot error.''
Technically not a hull-loss because $200 million was reportedly spent to to completely rebuild the aircraft...
> If a company though that a CEO or whoever was not worth $35 million they wouldn't pay them that much.
Nonsense! The company doesn't set the CEO remuneration, the Board does.
Every year I and 30,000 other shareholders vote against the remuneration package of my mortgagee and every year we are defeated by the Board's one million nominal votes. ONE MILLION.
Why? Because members of the Board are themselves CEOs and Directors in other companies...
> * The most effective SPAM filter is a human, sitting in front of their e-mail client, deleting mail that they know is SPAM from the subject line.
I would contend that the most effective spam solution is BEING CAREFUL with your e-mail ``intellectual property''.
Never, ever give-out your primary e-mail account address. Instead treat it as a private root node. Anchored from this node, create an alias for each context that requires an address. Once the lifetime of that context has expired, delete the alias.
I have never received a single piece of spam in my personal account. No spam filters or grey-listing or scoring; just caution.
> The White House roof is said to be a photoshop to mask the sniper and MANPADS emplacements up there.
See, I find this bizarre.
What exactly do they anticipate will happen with the debris of a 200 tonne airliner in the near-impossible case that an FIM-92 could actually cause structural failure?
> I wonder how many russian satellites have good coverage of the United States.
Since 1992 it has been possible to purchase Resurs and Kometa imagery of the US through the state company Soyuzkarta. This required the declassification of the military Kometa's cameras - a 10-metre resolution topo and a 2-metre resolution mapping camera.
One of the first customers, and one which has been a reliable repeat customer, was the USAF. They used imagery of Washington to plan General Dolittle's cortege.
> those organizations didn't donate that money, those organizations' employees did
Per the link: Their employees, political action committee or owners.
What alarms me as a non-USian is how politicised US companies appear to be. Why are PACs permitted within companies? Sholudn't the workplace be a zero-politics environment?
And why would an employee of, say, Google even declare his employer's name when making a donation?
> It's supposed to be the case that anything that talks to a third-party server is controllable via preferences and options. He ran into a few that slipped through
If every element of functionality that could relay data to a third-party is to be controllable then there is no reason on this Earth why this was not caught at design, code review, unit testing or assembly testing.
If the requirements state that ``all such functionality must be controllable'' then nothing ships until that is the case.
Therefore I do not believe Google's excuse. Do you?
Slashdot Mirror
> the used market kicks in.
Yes indeed it does:
http://www.abebooks.com/servlet/SearchResults?sts=t&tn=aerofax+mig-21&x=0&y=0
A dollar per page? In other words, unattainable.
> Setup a basic API where any new website, forum,
> blog, etc can simply post that email and password
> to the appropriate place, and come back with a
> response.
You overlook the fact that the consumer site must never handle the password. Otherwise federation fails because that site can masquerade as the user to other federated consumer sites.
> But the thing is, people shouldn't *have* to learn.
Everything in life requires learning. Even using an escalator for the first time or determining why there are perforations in toilet paper.
It is impossible to design software that does not require ``learning'' as otherwise it would accomplish nothing. Far better to have a steep learning curve so that the user becomes productive as quickly as possible ( which is what that term means - think about it ).
> How can they set limits without you being able to see them?!
From my ISP's RSS feed:
``If the same rate of usage continues for 31 days
then the total for the month will be:
1.94 GB Download - (Peak: 1.85 GB
Off-Peak: 0.09 GB)
0.1 GB Upload - (Peak: 0.08 GB
Off-Peak: 0.02 GB)''
The limits are clearly specified in the contracts.
The tools are there.
So where does the problem lie?
``over 10 million broadband customers never reading their FUP''
Aha!
> For the new era of Malware that will soon find their way onto these phones.
So, who controls the kill-switch on your PC? You know, in case it becomes infected
with malware that affects other systems on the Internet?
> Why is NO ONE from UK protesting against this monstrous humongous assault on
> rights and freedom?
And how do you propose that we do that? Who in Government do you really think
CARES what we say? And we can't even assemble outside Parliament to protest -
that is now illegal.
At present The Lords are our last backstop, but they can't resist the Parliament Act.
Believe me, I want my country back. I can't even take the option of fleeing without
submitting my biometrics to the system to renew my passport.
> Now to see if I can get it to boot off a Compact Flash card.
Posting this from OBSD 4.3 booting from a Toshiba 1GB CF for the system and a 4GB generic CF for writable partitions. With the CFs in an IDE adapter ( or even a Cardbus adapter ) the OBSD installer just treats the CFs as IDE disks.
but Toyota already makes the MR2s, which it then turns around and sells the chassis to Lotus
Err...
The original MR2 ( AW11, the wedgey mini-Esprit analogue ) was designed in cooperation with Lotus, based on an internal design concept which the British company determined that they could not produce on the anticipated scale.
The current MR2 has no connection with Lotus. Some Celica components ( engine, gearbox ) are used on US models of the Elise but the chassis is made here in Blighty.
> Which is worse: a password that you can remember, or changing passwords every 30/60/90 days to a new password...
If you can remember the password, it's not strong enough.
Schneier himself recommends the write-it-down approach. It is better to secure a strong password in your wallet than to memorise a weak password.
> A dead man's switch won't do you much good. If you've been picked up your computer has too
Yes, your computer containing the encrypted data has been seized and the disk cloned. But the keys are bunt-out in EEPROM of the the coprocessor or smartcard.
That's one issue that I have with PGP; it popularised the use of a passphrase to store the keys on the same medium as the data, instead of hardware protection. This reliance on human factors makes laws such as RIPA possible; just look at how many posts on this thread have confused ``passphrase'' with ``key''.
I am not a lawyer and this is not advice, but I did consult on the RIPA.
If the encryption key is destroyed by a pre-configured ``technical measure'' then by my reading of the Act one cannot be held in contempt for failure to disclose.
For example, a dead-man's switch that destroys all traces of keys if the owner does not log-in for a pre-arranged number of days.
Note that *all* traces must be destroyed. The Act can compel other parties ( e.g. work colleagues or holders of back-ups ) to disclose even if they are not directly involved in the case.
> Qantas never crashed.
They have not suffered a *jet* hull-loss.
Also:
``The aircraft [VH-OJH] landed long in a driving rainstorm after confusion between the Captain and First Officer on whether to go-around. The aircraft overran the [Bangkok] runway coming to rest on the fairway of an adjacent golf course. Pilot error.''
Technically not a hull-loss because $200 million was reportedly spent to to completely rebuild the aircraft...
> Do you know for certain what they have up there?
Yes; KH-12.
http://www.globalsecurity.org/space/systems/kh-12.htm
Imagine the 2.4 metre mirror from the HST, but pointing towards Earth. Now imagine several of those on-orbit at any one time.
> I personally have nothing against bicycles, as long as they don't create a major obstruction to car traffic.
Why does car traffic have priority in your view?
> If a company though that a CEO or whoever was not worth $35 million they wouldn't pay them that much.
Nonsense! The company doesn't set the CEO remuneration, the Board does.
Every year I and 30,000 other shareholders vote against the remuneration package of my mortgagee and every year we are defeated by the Board's one million nominal votes. ONE MILLION.
Why? Because members of the Board are themselves CEOs and Directors in other companies...
> There was one reviewed on the register a little while ago.
Maplin currently sell a MIPS netbook running Linux for 170UKP:
http://www.maplin.co.uk/Module.aspx?ModuleNo=225532&TabID=1&source=3&C=RSS
But the battery life is only 3 hours and it runs some form of ``locked-down'' OS; not entirely sure what that means:
http://labs.pcw.co.uk/2008/09/maplin-replies.html
Specs here:
http://194.150.201.35/cnmlifestyle/specification.htm
> not wanting to give over financial information for just an email account.
For the incredible benefits that e-mail provides in this connected World, you're not even willing to pay a dollar | pound | yen for an account?
Really?
> How about something interactive?
Perhaps a little game - catch five falling stars in the bucket without catching any apples, or somesuch.
Or just charge the damn users for opening an account...
> * The most effective SPAM filter is a human, sitting in front of their e-mail client, deleting mail that they know is SPAM from the subject line.
I would contend that the most effective spam solution is BEING CAREFUL with your e-mail ``intellectual property''.
Never, ever give-out your primary e-mail account address. Instead treat it as a private root node. Anchored from this node, create an alias for each context that requires an address. Once the lifetime of that context has expired, delete the alias.
I have never received a single piece of spam in my personal account. No spam filters or grey-listing or scoring; just caution.
> The White House roof is said to be a photoshop to mask the sniper and MANPADS emplacements up there.
See, I find this bizarre.
What exactly do they anticipate will happen with the debris of a 200 tonne airliner in the near-impossible case that an FIM-92 could actually cause structural failure?
Inertia is mean.
> I wonder how many russian satellites have good coverage of the United States.
Since 1992 it has been possible to purchase Resurs and Kometa imagery of the US through the state company Soyuzkarta. This required the declassification of the military Kometa's cameras - a 10-metre resolution topo and a 2-metre resolution mapping camera.
One of the first customers, and one which has been a reliable repeat customer, was the USAF. They used imagery of Washington to plan General Dolittle's cortege.
> those organizations didn't donate that money, those organizations' employees did
Per the link: Their employees, political action committee or owners.
What alarms me as a non-USian is how politicised US companies appear to be. Why are PACs permitted within companies? Sholudn't the workplace be a zero-politics environment?
And why would an employee of, say, Google even declare his employer's name when making a donation?
> It's supposed to be the case that anything that talks to a third-party server is controllable via preferences and options. He ran into a few that slipped through
If every element of functionality that could relay data to a third-party is to be controllable then there is no reason on this Earth why this was not caught at design, code review, unit testing or assembly testing.
If the requirements state that ``all such functionality must be controllable'' then nothing ships until that is the case.
Therefore I do not believe Google's excuse. Do you?
> trying to navigate and strain my eyes reading webpages on those tiny screens.
Samsung will ( allegedly ) be selling mobiles containing 3M microprojectors by EOY 2008. So throw the webpage onto the wall.
In 2010, who knows. Perhaps a mobile will dock with a USB3 slot on your laptop or on the side of your 32" monitor?
> I could never trouble myself to try to get them published in academic journals.
Couldn't you have posted them on your personal site for the World to see?
After all the Web is intended to be an everyman publishing system and there is a lot of content out there less meritorious than your essays.
Get them out there, get them indexed and share with the World.