Number one consumer of electric power: Air conditioning unit. THOUSANDS OF WATTS Number two consumer of electric power: Refrigerator. HUNDREDS OF WATTS
Cable boxes don't come in number two and they don't consume 35 watts.
So if you're keeping track not only is not "number 2" (a dubious distinction) but its use of electric power is ORDERS OF MAGNITUDE below what's chewing up power. In fact, here in Arizona our A/C runs about 20 hours a day. That uses more power per day than the cable box uses in a year. I could ditch cable altogether (I have Comcast so it's a constant thought) and my power bill won't change by 1%.
How do I know? I use a http://www.amazon.com/P3-Inter... kill-a-watt. The cable box draws less than 1 amp (12W) and that's while it's on and it's the big Motorola unit just like the picture in the original article.
Do you like facts and statistics and data upon which to base conclusions? You should get one of these kill-a-watts. They're awesome and they're quickto end stupid discussions that say you should unplug your cable box.
Off to unplug my wifi router. I hear it draws 0.5A.
Everything Tim Cook says in his official capacity reflects what Apple thinks. That means that if it later comes out HE MADE THE WHOLE THING UP BASED ENTIRELY ON HIS OPINION and that there are no statistics to back it up, if the stock goes down, shareholders will sue.
How could he have statistics? Simple. Apple is in a unique position to have every iPhone purchaser fill out a survey. But... they don't. So there is no such data. That means any "conclusion" is purely anecdotal (as in "My buddy said so and my other buddy agreed, yeah Android was a mistake.") That's not statistically significant, and it's irresponsible for a CEO of a public company to say so.
It's a clever idea (like Comcast wanting Netflix to pay them for what Comcast's own customers pay them already).
Right now you have 15,000 paying customers. They are almost "captive" in the sense that they get Internet service without having to put any effort into it, so they will continue to be customers so long as you treat them fairly.
Your customers pay you to give them access to the whole Internet. If you remove parts of the net until someone else double-pays you for that same service, you'll find yourself on the wrong side of a Judge certifying a class-action suit against you for lots of fun things like breach of contract, tortious interference, and possibly material misrepresentation (not fraud - fraud isn't covered by E&I insurance).
Your safe bet if you wanted to do something this stupid is to give your 15,000 customers FREE Internet with the caveat that some sites may not be reachable unless the other side pays for it. This would be legal, but it won't be financially profitable.
So you can either retain a sustainable model where you're not getting sued, not extorting third parties, and making money, OR you can extort third parties and likely get sued OR you can move to a financially non-sustainable model.
As an IT director I guess your job is to figure out how to implement what the Directors wants. As anyone with half a brain I would recommend they make the selection from the choices above before spending a minute researching firewalls and private-dickhead-networks.
I'm sure Mr. Zuckerberg is aboard the first American Airlines flight from San Francisco to Tehran. Oh wait, no Southwest flight goes to Tehran.
Surely he's booked on United Airlines. No, wait, they don't fly to Tehran either.
Looks like NONE of the US carriers go there. Is it because they don't like money? That can't be right. Is it because they are shareholder driven and their shareholders are all either dirty jews or clean jews or some combination of clean and dirty jews? That seems unlikely.
OH WAIT, I GOT IT!
IRAN IS A TERRORIST NATION, A SPONSOR OF TERRORIST GROUPS, CALLS THE US THE GREAT SATAN AND WANTS TO DESTROY US AND ISRAEL TOO AND IS A HOTBED OF RELIGIOUS CRAP THAT MAKES THE BIBLE BELT AND WASHINGTON DC LOOK LIKE SECULAR NOOBS.
I guess they won't have Zuckerberg to demonize if he doesn't go there.
Perhaps they'll burn his effigy along with President Obama, the US Flag, and a fake nuclear wessel.
In the next few projects focus on - planning the programming before you do it, so you can explain your design decisions and the inevitable tradeoffs to prevent people who come after you from trying to "fix" what isn't broken. - documenting what you did do so anyone can support your code
If you are fond of saying any of these: - "Anyone who can read code can see what it does" - "the obvious doesn't need documenting" - "there were no tradeoffs" - one day I will rewrite this to be better...this would help you understand why you're unemployable.
University education is a good first step to something something complete. Being a freshman is not a bonus nor a hindrance. Experience with github, software RCS etc are all good. The keys are making choices before coding, knowing and being able to explain those choices, and documenting them for others to take the burdens of support off your inventive shoulders.
These concepts were part of the commercial Internet circa the early 1990s and were part of the reason CIX was so successful. Then PAIX then others.
In time, Internet exchanges were themselves bogged down and companies did private peering. Those who connected to like-quantity produders of content did so for free (settlement-free peering). Those who were unequal paid for transiting the network (paid transit).
That hasn't changed in 32 years. All that's changed is the up and down of who provides more traffic where. The dominant player in each interconnection point ALWAYS demanded transit, and often did so with the "wherever our two networks meet" even if elsewhere it was not the dominant player.
Comcast could be made to behave, but Netflix blinked and paid them money. Now others will as well.
This CAN BE FIXED BY REGULATION but not the kind people are thinking of. No, not net neutrality. Rather the elimination of the cable-company monopolies on entire swaths of subscribers. Eliminate the government-granted access to rights-of-way, towers, utility poles, and infrastructure. Let them not have a "sole franchise" but rather be one of many competing in the market.
Remove Comcast and their ilk from their high post as the monopolistic "owner" of all these households by fiat, and having to compete to keep them, and instead of throttling their peerings to make Netflix users (THEIR OWN CUSTOMERS) suffer... they'll get peering with netflix.
More government regulation doesn't solve a market-driven problem. Removing the government regulation harming free competition is the key.
Bitcoin is a concept. It has no value. People can trade, arbitrage, wield, barter, or exchange for it. It still has no value.
Best fortune to all those making money with Bitcoin. For every one of you someone has lost an almost equal amount. (originally mined bitcoins loss value 0 but it grows exponentially).
And as for the holdback bitcoins created and untouched -- that's why bitcoin will NEVER be a currency. "Oh we invented this so we kept some for ourselves." Yeah, do that. And doom the coin.
LOL. No, it's not sensible and it goes against dozens of years of legal precedent. It will be overtuned.
Actors do not have rights to the final work unless they were contractually given it, none of which ever are.
While in some eutopia it would be great if revenge porn could be stopped, that's an outlier case.
Imagine if you went to Paris and took a video of yourself at the EIffel Tower, but some random Parisian who happened to be in the background got your video taken down. That's not eutopian -- that's distopian. Best,
No. She didn't win a lawsuit. All she "won" was an unconstitutional prior restraint against Youtube (google) forcing them to remove the segment of the movie she's in.
The actual Kozinski ruling suggests that actors HAVE a copyright in the final work despite decades of copyright law to the contrary.
Google has appealed. This will be decided back the way it should be (that actors don't magically get copyright laws).
The case -- in case you want to read the facts instead of making them up -- is Garcia v Google.
Please provide a source cite to a statute that indicates the act of "downloading" (feel free to massage as appropriate; I am not splitting hairs) is unlawful.
As for the lawyer cited, he isn't a very good lawyer: "Fighting a subpoena that attempts to reveal your identity is a waste of money because you will reveal your identity by fighting it." Lawyers that give advice on the Internet are not creme de la creme. Lawyers that give incorrect advice less so.
However, this is a HORRIBLE writeup. It suggests that "...IP-address evidence can't identify the person who actually downloaded the pirated file."
Under current US law: 1. There is no copyright infringement in downloading a file. 2. Files are. They just are. They are not "pirated files." 3. MAKING INFRINGING CONTENT AVAILABLE TO OTHERS is what is considered copyright infringement/distribution. THAT is why an IP address is important... if one SHARES and MAKES AVAILABLE A FILE. It takes a court to determine whether the actions constitute an actionable behavior.
I can't believe Torrentfreak got it wrong. At least they got the headline right. And this is a good ruling. Hopefully fightcopyrighttrolls.com and dietrolldie.com won't make that mistake.
No, it would not transmit more than the flight data recorders. Those things store everything. If there's something they don't store, it's added so they do.
To maintain a bitstream of sufficient width and density to share what the FDRs do for an entire flight is beyond our available satellite uplink capacity even if cost were no factor. Which it is.
At the end of all this the expenditure would save zero lives. It would prevent zero crashes. It would just make investigations go quicker.
It would be nice to know where the plane is and why. However, crashes happen so infrequently that spending billions of dollars and not preventing a single one -- merely accelerating the speed at which we get the "black box" data is not worth it.
Everyone involved including the airline industry has decided that it's not worth the expense to spend $100,000 per airplane as well as untold costs to maintain that, and pass the costs onto your relatives.
Tell that the the families of passengers on Flight MH370.
No. You have no modpoints on this thread, and your comment amounts to a threat asking for prior restraint so EVEN IF YOU DID HAVE MOD POINTS they would be removed.
"Hello, thank you for calling ISRO tek-nee-kull support, this is Jim, how may I help you?"
"Jim, this is the capsule! We are stuck here! Help!"
"Yes, this is Jim from tek-nee-kull support. I am happy to help you today. I will need to ask you some questions first. Is it okay if I ask you questions?"
"We're running out of oxygen! The lift-off failed! We can't open the door!"
"Yes, I understand you are running out of oxygen. Is it okay if I ask you questions?"
"Yes, ask, ask! We're dying here!!!"
"Yes, thank you for allowing me to ask you questions. I will be glad to provide you service today. First I need to ask, what is your name?"...
The culture of understanding operating system design and coding has eroded so much and slashdot mods are so random that there are none left who understand what real-time os programming is all about. That's why the parent is mod 0. Sadly this is just one of many topics that random slashdot mods know nothing about, and vote things down because they don't say PS-4 or Kinect or Supermodels or whatever. It's not the beginning of dumbing down slashdot and it's not the end, but it's definitely part of the process.
More bad news. Those of us who do understand these things will quit reading slashdot because as you mods with no training nor knowledge continue to eviscerate anyone who gives you a clue (because you don't know any better lacking any education on the topic) we'll quit reading. You'll like that, because the high fives and accolades we don't give you will be filled by those who do.
I'm not warning you. It's too late. I'm just sharing so later when you wonder "how did we get to be an inbred community of idiots when we asked for input from all quarters" you'll know... you didn't ask for input from all quarters. You randomly elevated those who randomly liked posts they understood. The knowledge of the edges will be lost here, and all you'll have is a like minded community of apes who love to argue Linux vs BSD without understanding anything.
1. Either build your new system yourself from retail purchased parts, or acquire a used laptop locally. In other words, you go give money and get a machine, not have someone send it to you where it might be intercepted or modified. YOU pick the hardware seller randomly and then YOU take it home unintercepted.
2. This is the part that hurts. Lock your machine PHYSICALLY so nobody can mess with it without making it obvious. I recommend a BIOS-PASSWORD, and then epoxy the case so nobody can mess with the chips without you knowing about it.
3. Lock the operating system down so that nobody can enter single-user mode, or boot from alternate devices. I recommend whole-disk encryption, disabling single-user-mode or rescue mode, and eliminating the bootloader menu (I use GRUB, but the concept carries over).
4. Lock the privileged access so that nobody can execute privileged commands, load drivers, etc. unless IT'S REALLY YOU doing it NOT UNDER DURESS. That means have alternatives so if there's a gun or warrant to your head you can appear to be cooperative but the end result is less useful for the villain.
5. Once you have a configuration you like, consider it LOCKED, STATIC, FROZEN, and do not update operating system components, drivers, applications, etc. If you install new applications ensure you trust the source.
FINALLY, now that you have the hardware and software set, realize that you're still emitting lots of data whether screen, network, audio, etc. ENSURE that ALL your outside access is encrypted. If you're able to, route it through a VPN or TOR. You may think "Oh I don't need to encrypt everything... I'll just use the web normally for nonsensitive stuff." This is a fallacy. It both shows what you DON'T put out publicly (black box take shape the more you do public stuff but then don't do some stuff publicly) and it removes your ability to claim that encrypting is not purposefully deceptive, because --as you should-- you encrypt everything.
Also you've probably figured this out by now... but the COSTS to this security may include your destroying the device if it either fails to boot or appears to have been taken over or opened. It's a high cost in dollars, but it keeps your security absolute.
Ok, there's one more thing. Don't be a dipshit and enter in privileged passwords anywhere where someone is using a cellphone camera, Google Glass, or security cams are in play. It's not like "everyone" has those magic keep-zooming-forever-on-stored-video-because-resolution-is-unlimited cameras, but you don't know who does and who doesn't. If someone really wants your root or administrative password and they think you're gun/warrant proof, a few hidden spy cams are nothing in comparison.
Slashdot Mirror
Number one consumer of electric power: Air conditioning unit. THOUSANDS OF WATTS
Number two consumer of electric power: Refrigerator. HUNDREDS OF WATTS
Cable boxes don't come in number two and they don't consume 35 watts.
So if you're keeping track not only is not "number 2" (a dubious distinction) but its use of electric power is ORDERS OF MAGNITUDE below what's chewing up power. In fact, here in Arizona our A/C runs about 20 hours a day. That uses more power per day than the cable box uses in a year. I could ditch cable altogether (I have Comcast so it's a constant thought) and my power bill won't change by 1%.
How do I know? I use a http://www.amazon.com/P3-Inter... kill-a-watt. The cable box draws less than 1 amp (12W) and that's while it's on and it's the big Motorola unit just like the picture in the original article.
Do you like facts and statistics and data upon which to base conclusions? You should get one of these kill-a-watts. They're awesome and they're quickto end stupid discussions that say you should unplug your cable box.
Off to unplug my wifi router. I hear it draws 0.5A.
E
Everything Tim Cook says in his official capacity reflects what Apple thinks.
That means that if it later comes out HE MADE THE WHOLE THING UP
BASED ENTIRELY ON HIS OPINION and that there are no statistics to
back it up, if the stock goes down, shareholders will sue.
How could he have statistics? Simple. Apple is in a unique position to
have every iPhone purchaser fill out a survey. But... they don't. So
there is no such data. That means any "conclusion" is purely anecdotal
(as in "My buddy said so and my other buddy agreed, yeah Android was
a mistake.") That's not statistically significant, and it's irresponsible for
a CEO of a public company to say so.
Still, whatever helps him sleep at night.
E
It's a clever idea (like Comcast wanting Netflix to pay them for what Comcast's own customers pay them already).
Right now you have 15,000 paying customers. They are almost "captive" in the sense that they get Internet service without having to put any effort into it, so they will continue to be customers so long as you treat them fairly.
Your customers pay you to give them access to the whole Internet. If you remove parts of the net until someone else double-pays you for that same service, you'll find yourself on the wrong side of a Judge certifying a class-action suit against you for lots of fun things like breach of contract, tortious interference, and possibly material misrepresentation (not fraud - fraud isn't covered by E&I insurance).
Your safe bet if you wanted to do something this stupid is to give your 15,000 customers FREE Internet with the caveat that some sites may not be reachable unless the other side pays for it. This would be legal, but it won't be financially profitable.
So you can either retain a sustainable model where you're not getting sued, not extorting third parties, and making money, OR you can extort third parties and likely get sued OR you can move to a financially non-sustainable model.
As an IT director I guess your job is to figure out how to implement what the Directors wants. As anyone with half a brain I would recommend they make the selection from the choices above before spending a minute researching firewalls and private-dickhead-networks.
E
I'm sure Mr. Zuckerberg is aboard the first American Airlines flight from San Francisco to Tehran.
Oh wait, no Southwest flight goes to Tehran.
Surely he's booked on United Airlines. No, wait, they don't fly to Tehran either.
Looks like NONE of the US carriers go there. Is it because they don't like money? That can't be
right. Is it because they are shareholder driven and their shareholders are all either dirty jews
or clean jews or some combination of clean and dirty jews? That seems unlikely.
OH WAIT, I GOT IT!
IRAN IS A TERRORIST NATION, A SPONSOR OF TERRORIST GROUPS, CALLS THE US
THE GREAT SATAN AND WANTS TO DESTROY US AND ISRAEL TOO AND IS A HOTBED
OF RELIGIOUS CRAP THAT MAKES THE BIBLE BELT AND WASHINGTON DC LOOK LIKE
SECULAR NOOBS.
I guess they won't have Zuckerberg to demonize if he doesn't go there.
Perhaps they'll burn his effigy along with President Obama, the US Flag, and a fake
nuclear wessel.
Ehud
Tucson AZ US
Someone please forward the memo to microsoft. They can stop referencing BING as if it's a thing.
It's a DEAD thing.
[click here to have Bing translate this thing lol]
I read your list of achievements. Very nice.
In the next few projects focus on
- planning the programming before you do it, so you can explain your design decisions
and the inevitable tradeoffs to prevent people who come after you from trying to "fix"
what isn't broken.
- documenting what you did do so anyone can support your code
If you are fond of saying any of these: ...this would help you understand why you're unemployable.
- "Anyone who can read code can see what it does"
- "the obvious doesn't need documenting"
- "there were no tradeoffs"
- one day I will rewrite this to be better
University education is a good first step to something something complete.
Being a freshman is not a bonus nor a hindrance. Experience with github,
software RCS etc are all good. The keys are making choices before coding,
knowing and being able to explain those choices, and documenting them for
others to take the burdens of support off your inventive shoulders.
E
These concepts were part of the commercial Internet circa the early 1990s
and were part of the reason CIX was so successful. Then PAIX then others.
In time, Internet exchanges were themselves bogged down and companies
did private peering. Those who connected to like-quantity produders of
content did so for free (settlement-free peering). Those who were unequal
paid for transiting the network (paid transit).
That hasn't changed in 32 years. All that's changed is the up and down of
who provides more traffic where. The dominant player in each interconnection
point ALWAYS demanded transit, and often did so with the "wherever our
two networks meet" even if elsewhere it was not the dominant player.
Comcast could be made to behave, but Netflix blinked and paid them money.
Now others will as well.
This CAN BE FIXED BY REGULATION but not the kind people are thinking
of. No, not net neutrality. Rather the elimination of the cable-company
monopolies on entire swaths of subscribers. Eliminate the government-granted
access to rights-of-way, towers, utility poles, and infrastructure. Let them not
have a "sole franchise" but rather be one of many competing in the market.
Remove Comcast and their ilk from their high post as the monopolistic "owner"
of all these households by fiat, and having to compete to keep them, and instead
of throttling their peerings to make Netflix users (THEIR OWN CUSTOMERS)
suffer... they'll get peering with netflix.
More government regulation doesn't solve a market-driven problem. Removing the
government regulation harming free competition is the key.
E
To "invest" is to put money where value is.
Bitcoin is a concept. It has no value. People can trade, arbitrage, wield, barter, or exchange for it.
It still has no value.
Best fortune to all those making money with Bitcoin. For every one of you someone has lost
an almost equal amount. (originally mined bitcoins loss value 0 but it grows exponentially).
And as for the holdback bitcoins created and untouched -- that's why bitcoin will NEVER be a currency.
"Oh we invented this so we kept some for ourselves." Yeah, do that. And doom the coin.
E
LOL. No, it's not sensible and it goes against dozens of years of legal precedent.
It will be overtuned.
Actors do not have rights to the final work unless they were contractually given it,
none of which ever are.
While in some eutopia it would be great if revenge porn could be stopped, that's
an outlier case.
Imagine if you went to Paris and took a video of yourself at the EIffel Tower, but
some random Parisian who happened to be in the background got your video taken
down. That's not eutopian -- that's distopian.
Best,
E
No. She didn't win a lawsuit. All she "won" was an unconstitutional prior restraint against Youtube (google)
forcing them to remove the segment of the movie she's in.
The actual Kozinski ruling suggests that actors HAVE a copyright in the final work despite decades
of copyright law to the contrary.
Google has appealed. This will be decided back the way it should be (that actors don't magically get
copyright laws).
The case -- in case you want to read the facts instead of making them up -- is Garcia v Google.
E
Oh Nos!
This will surely help blackberry survive in the market!
Good job with those patents! Now nobody can have a working keyboard, not their
nonexistent client nor the iPhone people who could have used a Typo.
E
http://linux.slashdot.org/comm...
The Slashdot summary says "safety advocates." The first link says "safety advocates" but doesn't specify who those are.
WHO IS LOBBYING FOR A CELLPHONE BAN ON THE ROADS?
Please advise. My bet is the [required mandatory] insurance lobby.
E
I beg to differ.
Please provide a source cite to a statute that indicates the act of "downloading" (feel free to
massage as appropriate; I am not splitting hairs) is unlawful.
As for the lawyer cited, he isn't a very good lawyer: "Fighting a subpoena that attempts to reveal your identity is a waste of money because you will reveal your identity by fighting it."
Lawyers that give advice on the Internet are not creme de la creme. Lawyers that give incorrect advice less so.
E
The ruling is good. Let's enjoy that.
However, this is a HORRIBLE writeup. It suggests that "...IP-address evidence can't identify the person who actually downloaded the pirated file."
Under current US law:
1. There is no copyright infringement in downloading a file.
2. Files are. They just are. They are not "pirated files."
3. MAKING INFRINGING CONTENT AVAILABLE TO OTHERS is what is considered copyright infringement/distribution. THAT is why an IP address is important... if one SHARES and MAKES AVAILABLE A FILE. It takes a court to determine whether the actions constitute an actionable behavior.
I can't believe Torrentfreak got it wrong. At least they got the headline right. And this is a good ruling.
Hopefully fightcopyrighttrolls.com and dietrolldie.com won't make that mistake.
No, it would not transmit more than the flight data recorders. Those things store everything.
If there's something they don't store, it's added so they do.
To maintain a bitstream of sufficient width and density to share what the FDRs do for an
entire flight is beyond our available satellite uplink capacity even if cost were no factor.
Which it is.
At the end of all this the expenditure would save zero lives. It would prevent zero crashes.
It would just make investigations go quicker.
E
It would be nice to know where the plane is and why. However, crashes happen so infrequently
that spending billions of dollars and not preventing a single one -- merely accelerating the speed
at which we get the "black box" data is not worth it.
Everyone involved including the airline industry has decided that it's not worth the expense
to spend $100,000 per airplane as well as untold costs to maintain that, and pass the costs
onto your relatives.
Tell that the the families of passengers on Flight MH370.
I just did.
E
You'd have to go through a lot more effort than that, but it's certainly possible.
Fortunatley meta-mod eventually ferrets out the dicks no matter how much they hide.
E
No. You have no modpoints on this thread, and your comment amounts to a threat asking
for prior restraint so EVEN IF YOU DID HAVE MOD POINTS they would be removed.
Fortunately you cannot affect this thread.
E
"Hello, thank you for calling ISRO tek-nee-kull support, this is Jim, how may I help you?"
"Jim, this is the capsule! We are stuck here! Help!"
"Yes, this is Jim from tek-nee-kull support. I am happy to help you today. I will need to ask you some questions first. Is it okay if I ask you questions?"
"We're running out of oxygen! The lift-off failed! We can't open the door!"
"Yes, I understand you are running out of oxygen. Is it okay if I ask you questions?"
"Yes, ask, ask! We're dying here!!!"
"Yes, thank you for allowing me to ask you questions. I will be glad to provide you service today. First I need to ask, what is your name?" ...
There's no need to "remember" Microsoft's anticompetitive actions.
They're still engaging in the very same behavior.
I don't hate Microsoft's behavior because of my "pappy" or because
of some judicial order from 20 years ago. I despise their current
behavior.
Microsoft continues to be worth despising. Their astroturf lobbying
and their blogs about how misunderstood they are fool nobody.
E
"That compares with the cost of a few thousand dollars an hour to rent a helicopter with pilot"
Bell LongRanger with pilot $1300/hr
Bell JetRanger with pilot $980/hr
Robinson R44 with pilot $650/hr
Robinson R22 with pilot $300/hr
A few thousand an hour? PUHLEAZE.
E (a real live helicopter pilot)
The culture of understanding operating system design and coding has eroded so much and slashdot mods are so random that there are none left who understand what real-time os programming is all about. That's why the parent is mod 0. Sadly this is just one of many topics that random slashdot mods know nothing about, and vote things down because they don't say PS-4 or Kinect or Supermodels or whatever. It's not the beginning of dumbing down slashdot and it's not the end, but it's definitely part of the process.
More bad news. Those of us who do understand these things will quit reading slashdot because as you mods with no training nor knowledge continue to eviscerate anyone who gives you a clue (because you don't know any better lacking any education on the topic) we'll quit reading. You'll like that, because the high fives and accolades we don't give you will be filled by those who do.
I'm not warning you. It's too late. I'm just sharing so later when you wonder "how did we get to be an inbred community of idiots when we asked for input from all quarters" you'll know... you didn't ask for input from all quarters. You randomly elevated those who randomly liked posts they understood. The knowledge of the edges will be lost here, and all you'll have is a like minded community of apes who love to argue Linux vs BSD without understanding anything.
Ehud
1. Either build your new system yourself from retail purchased parts, or acquire a used laptop locally. In other words, you go give money and get a machine, not have someone send it to you where it might be intercepted or modified. YOU pick the hardware seller randomly and then YOU take it home unintercepted.
2. This is the part that hurts. Lock your machine PHYSICALLY so nobody can mess with it without making it obvious. I recommend a BIOS-PASSWORD, and then epoxy the case so nobody can mess with the chips without you knowing about it.
3. Lock the operating system down so that nobody can enter single-user mode, or boot from alternate devices. I recommend whole-disk encryption, disabling single-user-mode or rescue mode, and eliminating the bootloader menu (I use GRUB, but the concept carries over).
4. Lock the privileged access so that nobody can execute privileged commands, load drivers, etc. unless IT'S REALLY YOU doing it NOT UNDER DURESS. That means have alternatives so if there's a gun or warrant to your head you can appear to be cooperative but the end result is less useful for the villain.
5. Once you have a configuration you like, consider it LOCKED, STATIC, FROZEN, and do not update operating system components, drivers, applications, etc. If you install new applications ensure you trust the source.
FINALLY, now that you have the hardware and software set, realize that you're still emitting lots of data whether screen, network, audio, etc. ENSURE that ALL your outside access is encrypted. If you're able to, route it through a VPN or TOR. You may think "Oh I don't need to encrypt everything... I'll just use the web normally for nonsensitive stuff." This is a fallacy. It both shows what you DON'T put out publicly (black box take shape the more you do public stuff but then don't do some stuff publicly) and it removes your ability to claim that encrypting is not purposefully deceptive, because --as you should-- you encrypt everything.
Also you've probably figured this out by now... but the COSTS to this security may include your destroying the device if it either fails to boot or appears to have been taken over or opened. It's a high cost in dollars, but it keeps your security absolute.
Ok, there's one more thing. Don't be a dipshit and enter in privileged passwords anywhere where someone is using a cellphone camera, Google Glass, or security cams are in play. It's not like "everyone" has those magic keep-zooming-forever-on-stored-video-because-resolution-is-unlimited cameras, but you don't know who does and who doesn't. If someone really wants your root or administrative password and they think you're gun/warrant proof, a few hidden spy cams are nothing in comparison.
Ehud
Thanks, bud!
I'm a pilot. I passed the exam by knowing how things work, not making up shit.
Best regards :)
E