I haven't had the... pleasure... of having to deploy it, just poked around; but won't the Windows SRP signature-based rules work just fine if you create your own internal certificate, bless it, and then sign anything you want to run; but don't have a publisher signature for?
Doesn't do you much good if you don't know what you are signing, or something gets munged on its way from the vendor to IT; but you don't have to tithe to verisign if the machines are on your domain and will trust you as a CA if you tell them to.
You're 82, Leonard. Holding yourself up as an example of the ravages of smoking after reaching the age of 82 is illogical. Refusing to accept death at 82 is illogical. Go with grace.
His problem is that 'grace' isn't really one of the features of COPD. First the coughing starts. Then you begin to experience difficulty breathing and shortness of breath. These become more severe until you can't maintain adequate O2 saturation without supplemental oxygen. Then they become more severe until you can't maintain adequate O2 saturation with supplemental oxygen. Then you die. Available treatments are largely aimed at easing the symptoms, and rarely effective in halting the disease's progression.
It's hardly the worst (there's a lot of competition); but a long, futile, struggle to breath isn't a pretty exit. If he's really lucky, something else will kill him fast and first.
Oh, I'm hardly crying for poor, poor, little Google (and every time they start shoving Google Plus into one of their services that I formerly liked, that's one less reason to even put up with them), it just strikes me that pulling out your slimey-SEO act might not be the wisest of actions when facing a company that has a more or less existential dislike of such things.
I'm hardly surprised that EA is doing something mendacious and evil; but it's a trifle gutsy to overtly game Google's rating system. Google is a company whose entire value consists of the ability to construct ranked lists well enough that users will endure ads to receive those lists. It may or may not be a safe assumption that they are desperate enough for EA's shovelware mobile ports to let this sort of manipulation go unanswered.
Some aspects of software security have improved; but the decline in 'just put a computer on the internet and it gets rooted in about 15 seconds' attacks, at a population level, probably owes more to the prolific spread of nasty little plastic NAT boxes.
Those things are hardly real security(and more than a few have shipped with nasty flaws of their own); but they do tend to eat unsolicited inbound traffic pretty enthusiastically, which has really cut down on the number of totally helpless computers that end up being given a brutal taste of the open internet before they've even had time to patch.
Probably more than resilience, moving the intelligence to the edges of the network allowed for innovation. It's not as though POTS is a quagmire of reliability issues (indeed, it stacks up pretty well compared to any internet connection not expensive enough to have a proper SLA); but it's an ossified wasteland because essentially any change had to run the gauntlet of "Is it worth making the necessary modifications and upgrades to the intelligence at the center of the network and will doing it make AT&T more money?" If something new couldn't be squeezed through the network as though it were a voice call, or officially blessed by Ma Bell (as with 1-900 numbers and billing for them), it just didn't happen. Even with the introduction of mobile phones, and the opportunity to hammer out huge swaths of new spec, they added what, SMS? Virtually all the features of today's "phones", with the exception of voice calls and maximum-compatibility SMS snippets have gone IP because that is where the versatility is.
With intelligence at the edges, if you want something done, all you need is two or more endpoints with the right software and there you are. This goes for malice as well, of course, which is part of why the internet is kind of a rough neighborhood; but it's also why IP-based capabilities have changed so radically, while systems with more centralized intelligence have largely stagnated(even more impressive 'dumb endpoint' arrangements, like Minitel, have been eclipsed).
Just for the sake of clarity: We do have chemical lasers that are quite peppy indeed. Unfortunately, a deuterium fluoride laser (or pretty much any chemical laser) is a fairly nasty customer in terms of care, feeding, and exhaust gasses, so there has been a lot of interest in trying to scale up solid-state lasers, which are much better behaved; but still pretty pitiful at present.
Please....the push is to be allowed a front seat at the money trough, nothing else matters.
The money trough is a factor; but virtually anything sufficiently complex can become an arbitrarily expensive procurement project. The fact that lasers specifically, rather than fancy interceptor missiles, or Block Whatever autocannon fire control systems, or explosive-reactive-composite-unobtanium, or any number of other possible projects is because photons are among the few things that you might have a realistic shot of delivering to an incoming projectile.
To have no project at all would offend the spenders; but the specifics of the project(at least until part of it puts down roots in Senator Somebody's home state) are influenced at least in part by what seems useful.
And this would be why the R&D types, especially Navy, have been pushing like mad to get higher output lasers without the clunkiness of the old chemical-powered ones...
It also seems a bit weird because the merchant foundry business isn't exactly facing a worldwide shortage of fabless companies, or demand for their designs burned into silicon(and, unlike AMD, IBM isn't having its face held underwater and being allowed to flop around just enough to satisfy the FTC, so they presumably aren't facing an impossible capital crunch). I'd also assume that IBM would be better placed than many to grab the (probably low volume; but nice margin) Must Be Red, White, and Blue and More American Than Mom's Apple Pie fab jobs. They've got domestic facilities, and have been doing assorted DoD and fed work longer than most of us have been alive.
Have they recently acquired new executives that are hellbent on selling absolutely everything that isn't mainframes and $$$$$/hour consultants?
The issue is obviously a dead letter, since any expensive structural change would probably involve moving away from little paper rectangles with dead guys printed on them; but for any serialized currency, it wouldn't be rocket surgery to add a little OCR to certain choke-points in the system to increase the difficulty of handling bills with an other-than-honorable chain of custody. Not much you could do about less official channels; but just dumping them in the ATM could get hazardous.
And iDevices are pretty much the cool, shiny, face of the contemporary DRM lockdown appliance. Exactly the state of computation that is bad enough without legal mandate.
Already half of all robberies in San Francisco and 75 percent of those in Oakland involve a mobile device and the number is rising in Los Angeles, according to police figures.
Really, what we need, is a kill switch for Oakland, San Francisco and LA.
We also need some insight into whether those robberies were for the mobile device, or whether they were somebody pulling a knife and saying 'gimme your shit', combined with the fact that cellphones are at least as common as wallets at this point.
This would be a disaster. Even if the objective is noble, there's an ugly architectural fact: as with any other DRM scheme, you can't have effective control unless the 'owner' of the device is no longer the most privileged user of the device. Whether you bake it into the OS, some sort of hypervisor, the firmware, or whatever, there has to be an agent one level higher to enforce restrictions on the user.
The only exception (in this bill's case, not in that of DRM generally) would be if the control mechanism were cryptographically keyfilled by the user, leaving them as the root of control but still providing for strong lockout of third parties. I'm just guessing that that concept won't be a big hit in consumer electronics, though...
In practice, this would make it illegal to sell a tablet or smartphone that isn't tivoized and locked down, since anything that lets you reflash the firmware would be overwhelmingly likely to allow a modestly competent attacker to neutralize a killswitch. Fan-fucking-tastic.
I'm pretty sure that the Inherent Superiority of the Private Sector is an axiom, not an empirical conclusion open to reevaluation in light of new data...
(Plus, even outside of the kool aide drinkers, is someone who would feel rewarded if you gave him a job, rather than a big, cushy, contract going to make a worthwhile campaign donor?)
Coreboot is, unfortunately, not available for nearly as many chipsets as one would like; but where it is available, it's pretty neat. It can boot a variety of payloads; but it's ability to get you from power-on to linux like a bat out of hell is an impressive reminder of how slow your usual firmware is.
Not that this makes either Panasonic or Apple 'better' in any way; but what strikes me as insane is that Panasonic would feel that they are in the position to be all fiddly and demanding about 'apps' submitted for their 'smart TV' platform.
Apple, as obnoxious as their control freakery has always been, undeniably have a walled garden that people would fight like dogs to get their applications into. Their position, in terms of platform ownership, is unbelievably enviable. They can be dicks all they like; because what are you going to do about it?
Panasonic? One of the largely-interchangeable makers of perfectly adequate but not thrilling TVs, pretty much every last one of which has a shitty 'smart TV' platform, all braindead in somewhat different and incompatible ways? What kind of leverage do they think they have?
Also, anybody whose development environment his HTML5/Javascript is...shall we say... poorly positioned to complain about people using giant stacks of abstraction layers.
Somewhat surprisingly, given its land area and population, China has total shit for arable land. Obviously more than zero; and a long history of intensive, relatively high-yield agriculture; but huge parts of the country are unsuitable in various ways (and various incidents of pollution, desertification, aquifer overdraw, and other mismanagement haven't helped).
Given that, along with the nigh-universal tendency of people to eat more meat (far less efficient per calorie than stuff lower on the food chain) if they get wealthier, and to rise up in revolution like they have nothing to lose (because they don't) if food supplies are dangerously constrained, doing absolutely everything they possibly can to keep agricultural yields high, and preferably rising, is probably about the sanest policy the Chinese government could be pursuing.
Sure, hypersonic missiles and supercavitating torpedoes and fancy fighter planes and stuff are good for dick waving, keeping Americans at a distance while rattling the sabre at Taiwan, and general jingoism; but it's not as though anybody outside of China wants to start a land war in Asia and directly slug it out with the PLA on Chinese soil, so all that stuff is really pretty secondary.
1.2 billion people (including the ones who you've provided with guns, and their families and friends) who are starting to see more and more of the weekly grocery list slipping beyond their buying power? Now that is what has any sensible leader (whether of a despotism, a monarchy, a republic, a democracy, doesn't matter) wake up screaming and drenched in cold sweat night after night.
It's particularly curious given that 'don't pay for any web devs, coast along in bare-minimum maintenance mode, and ride it as long as it lasts' is always an available strategy, unless you have somebody breathing down your neck and demanding magic ROI levels.
Honestly, that's what surprises me more than anything when I see some web property being churned without obvious reason. Unless the backend is utterly fucked (in which case churning the frontend is Not where you should be spending your time) letting it coast along on commodified and encheapened 'cloud' VMs from one vendor or another is cheap, and can be drawn down at almost a moment's notice without having to hold a firesale on your datacenter gear. Given that, watching somebody who appears to have no clue what they want to accomplish voluntarily paying additional dev and/or designer salaries when they could just let the property coast always makes me wonder about that person or organization's sanity.
Slashdot Mirror
Ah, ok, that's fair enough. Architecturally feasible is only the beginning of the long, painful, road under those circumstances.
I haven't had the... pleasure... of having to deploy it, just poked around; but won't the Windows SRP signature-based rules work just fine if you create your own internal certificate, bless it, and then sign anything you want to run; but don't have a publisher signature for?
Doesn't do you much good if you don't know what you are signing, or something gets munged on its way from the vendor to IT; but you don't have to tithe to verisign if the machines are on your domain and will trust you as a CA if you tell them to.
I'm given to understand that his intrinsic human worth and dignity require no less...
You're 82, Leonard. Holding yourself up as an example of the ravages of smoking after reaching the age of 82 is illogical. Refusing to accept death at 82 is illogical. Go with grace.
His problem is that 'grace' isn't really one of the features of COPD. First the coughing starts. Then you begin to experience difficulty breathing and shortness of breath. These become more severe until you can't maintain adequate O2 saturation without supplemental oxygen. Then they become more severe until you can't maintain adequate O2 saturation with supplemental oxygen. Then you die. Available treatments are largely aimed at easing the symptoms, and rarely effective in halting the disease's progression.
It's hardly the worst (there's a lot of competition); but a long, futile, struggle to breath isn't a pretty exit. If he's really lucky, something else will kill him fast and first.
Oh, I'm hardly crying for poor, poor, little Google (and every time they start shoving Google Plus into one of their services that I formerly liked, that's one less reason to even put up with them), it just strikes me that pulling out your slimey-SEO act might not be the wisest of actions when facing a company that has a more or less existential dislike of such things.
I'm hardly surprised that EA is doing something mendacious and evil; but it's a trifle gutsy to overtly game Google's rating system. Google is a company whose entire value consists of the ability to construct ranked lists well enough that users will endure ads to receive those lists. It may or may not be a safe assumption that they are desperate enough for EA's shovelware mobile ports to let this sort of manipulation go unanswered.
Some aspects of software security have improved; but the decline in 'just put a computer on the internet and it gets rooted in about 15 seconds' attacks, at a population level, probably owes more to the prolific spread of nasty little plastic NAT boxes.
Those things are hardly real security(and more than a few have shipped with nasty flaws of their own); but they do tend to eat unsolicited inbound traffic pretty enthusiastically, which has really cut down on the number of totally helpless computers that end up being given a brutal taste of the open internet before they've even had time to patch.
Probably more than resilience, moving the intelligence to the edges of the network allowed for innovation. It's not as though POTS is a quagmire of reliability issues (indeed, it stacks up pretty well compared to any internet connection not expensive enough to have a proper SLA); but it's an ossified wasteland because essentially any change had to run the gauntlet of "Is it worth making the necessary modifications and upgrades to the intelligence at the center of the network and will doing it make AT&T more money?" If something new couldn't be squeezed through the network as though it were a voice call, or officially blessed by Ma Bell (as with 1-900 numbers and billing for them), it just didn't happen. Even with the introduction of mobile phones, and the opportunity to hammer out huge swaths of new spec, they added what, SMS? Virtually all the features of today's "phones", with the exception of voice calls and maximum-compatibility SMS snippets have gone IP because that is where the versatility is.
With intelligence at the edges, if you want something done, all you need is two or more endpoints with the right software and there you are. This goes for malice as well, of course, which is part of why the internet is kind of a rough neighborhood; but it's also why IP-based capabilities have changed so radically, while systems with more centralized intelligence have largely stagnated(even more impressive 'dumb endpoint' arrangements, like Minitel, have been eclipsed).
You'd want to go to nuclear chemistry if you want proper destruction.
Just for the sake of clarity: We do have chemical lasers that are quite peppy indeed. Unfortunately, a deuterium fluoride laser (or pretty much any chemical laser) is a fairly nasty customer in terms of care, feeding, and exhaust gasses, so there has been a lot of interest in trying to scale up solid-state lasers, which are much better behaved; but still pretty pitiful at present.
Please....the push is to be allowed a front seat at the money trough, nothing else matters.
The money trough is a factor; but virtually anything sufficiently complex can become an arbitrarily expensive procurement project. The fact that lasers specifically, rather than fancy interceptor missiles, or Block Whatever autocannon fire control systems, or explosive-reactive-composite-unobtanium, or any number of other possible projects is because photons are among the few things that you might have a realistic shot of delivering to an incoming projectile.
To have no project at all would offend the spenders; but the specifics of the project(at least until part of it puts down roots in Senator Somebody's home state) are influenced at least in part by what seems useful.
And this would be why the R&D types, especially Navy, have been pushing like mad to get higher output lasers without the clunkiness of the old chemical-powered ones...
Stack Ranking only works on a short term basis where you want to trim the fat.
If you do it for too long, two things happen (a) you start cutting into good performers (b) people will not collaborate to make others look good
Plus, this is Adobe. They probably had to give up after HR was the victim of 15 stack-smashing attacks in a row.
It also seems a bit weird because the merchant foundry business isn't exactly facing a worldwide shortage of fabless companies, or demand for their designs burned into silicon(and, unlike AMD, IBM isn't having its face held underwater and being allowed to flop around just enough to satisfy the FTC, so they presumably aren't facing an impossible capital crunch). I'd also assume that IBM would be better placed than many to grab the (probably low volume; but nice margin) Must Be Red, White, and Blue and More American Than Mom's Apple Pie fab jobs. They've got domestic facilities, and have been doing assorted DoD and fed work longer than most of us have been alive.
Have they recently acquired new executives that are hellbent on selling absolutely everything that isn't mainframes and $$$$$/hour consultants?
Apparently carbon isn't very good at introspection...
The issue is obviously a dead letter, since any expensive structural change would probably involve moving away from little paper rectangles with dead guys printed on them; but for any serialized currency, it wouldn't be rocket surgery to add a little OCR to certain choke-points in the system to increase the difficulty of handling bills with an other-than-honorable chain of custody. Not much you could do about less official channels; but just dumping them in the ATM could get hazardous.
And iDevices are pretty much the cool, shiny, face of the contemporary DRM lockdown appliance. Exactly the state of computation that is bad enough without legal mandate.
Already half of all robberies in San Francisco and 75 percent of those in Oakland involve a mobile device and the number is rising in Los Angeles, according to police figures. Really, what we need, is a kill switch for Oakland, San Francisco and LA.
We also need some insight into whether those robberies were for the mobile device, or whether they were somebody pulling a knife and saying 'gimme your shit', combined with the fact that cellphones are at least as common as wallets at this point.
This would be a disaster. Even if the objective is noble, there's an ugly architectural fact: as with any other DRM scheme, you can't have effective control unless the 'owner' of the device is no longer the most privileged user of the device. Whether you bake it into the OS, some sort of hypervisor, the firmware, or whatever, there has to be an agent one level higher to enforce restrictions on the user.
The only exception (in this bill's case, not in that of DRM generally) would be if the control mechanism were cryptographically keyfilled by the user, leaving them as the root of control but still providing for strong lockout of third parties. I'm just guessing that that concept won't be a big hit in consumer electronics, though...
In practice, this would make it illegal to sell a tablet or smartphone that isn't tivoized and locked down, since anything that lets you reflash the firmware would be overwhelmingly likely to allow a modestly competent attacker to neutralize a killswitch. Fan-fucking-tastic.
I'm pretty sure that the Inherent Superiority of the Private Sector is an axiom, not an empirical conclusion open to reevaluation in light of new data...
(Plus, even outside of the kool aide drinkers, is someone who would feel rewarded if you gave him a job, rather than a big, cushy, contract going to make a worthwhile campaign donor?)
Coreboot is, unfortunately, not available for nearly as many chipsets as one would like; but where it is available, it's pretty neat. It can boot a variety of payloads; but it's ability to get you from power-on to linux like a bat out of hell is an impressive reminder of how slow your usual firmware is.
Not that this makes either Panasonic or Apple 'better' in any way; but what strikes me as insane is that Panasonic would feel that they are in the position to be all fiddly and demanding about 'apps' submitted for their 'smart TV' platform.
Apple, as obnoxious as their control freakery has always been, undeniably have a walled garden that people would fight like dogs to get their applications into. Their position, in terms of platform ownership, is unbelievably enviable. They can be dicks all they like; because what are you going to do about it?
Panasonic? One of the largely-interchangeable makers of perfectly adequate but not thrilling TVs, pretty much every last one of which has a shitty 'smart TV' platform, all braindead in somewhat different and incompatible ways? What kind of leverage do they think they have?
Also, anybody whose development environment his HTML5/Javascript is...shall we say... poorly positioned to complain about people using giant stacks of abstraction layers.
Somewhat surprisingly, given its land area and population, China has total shit for arable land. Obviously more than zero; and a long history of intensive, relatively high-yield agriculture; but huge parts of the country are unsuitable in various ways (and various incidents of pollution, desertification, aquifer overdraw, and other mismanagement haven't helped).
Given that, along with the nigh-universal tendency of people to eat more meat (far less efficient per calorie than stuff lower on the food chain) if they get wealthier, and to rise up in revolution like they have nothing to lose (because they don't) if food supplies are dangerously constrained, doing absolutely everything they possibly can to keep agricultural yields high, and preferably rising, is probably about the sanest policy the Chinese government could be pursuing.
Sure, hypersonic missiles and supercavitating torpedoes and fancy fighter planes and stuff are good for dick waving, keeping Americans at a distance while rattling the sabre at Taiwan, and general jingoism; but it's not as though anybody outside of China wants to start a land war in Asia and directly slug it out with the PLA on Chinese soil, so all that stuff is really pretty secondary.
1.2 billion people (including the ones who you've provided with guns, and their families and friends) who are starting to see more and more of the weekly grocery list slipping beyond their buying power? Now that is what has any sensible leader (whether of a despotism, a monarchy, a republic, a democracy, doesn't matter) wake up screaming and drenched in cold sweat night after night.
It's particularly curious given that 'don't pay for any web devs, coast along in bare-minimum maintenance mode, and ride it as long as it lasts' is always an available strategy, unless you have somebody breathing down your neck and demanding magic ROI levels.
Honestly, that's what surprises me more than anything when I see some web property being churned without obvious reason. Unless the backend is utterly fucked (in which case churning the frontend is Not where you should be spending your time) letting it coast along on commodified and encheapened 'cloud' VMs from one vendor or another is cheap, and can be drawn down at almost a moment's notice without having to hold a firesale on your datacenter gear. Given that, watching somebody who appears to have no clue what they want to accomplish voluntarily paying additional dev and/or designer salaries when they could just let the property coast always makes me wonder about that person or organization's sanity.