The problem is you currently can't escape everything reliably.
Why? Because the mainstream browser security concept is making sure that all the thousands of "Go" buttons are not pressed aka "escaped". But people are always introducing new "Go" buttons. If your library is not aware of the latest stuff it will not escape the latest crazy "Go" button the www/html/browser bunch have come up with.
So in theory a perfectly safe site could suddenly become unsafe, just because someone made a new "Go" button for the latest browser. Your library could also parse things differently from the victim browser.
Many years ago I proposed a tag to disable any active stuff. A "Stop" button if you like in a world full of "Go" buttons. But most of the browser and W3C people weren't interested. If they had done it, a lot of those worms (MySpace etc) wouldn't have worked at all.
"Stop" buttons aren't 100% but it's way easier to specify a "Stop" than it is to make sure that all the hundreds of current AND future "Go" buttons are properly escaped.
Car Analogy: before CSP, browsers were like cars with hundreds of accelerator pedals. To stop you had to make sure ALL the pedals were not pressed!
Anyone who thinks escaping is easy to do 100% should go look at the various security researcher/hackers guides on exploiting stuff. Especially if you are trying to still allow HTML content (say from advertisers or HTML email for your users). It's easy if you are only going to allow ASCII text. But once you throw in HTML and unicode, it all starts to get complicated.
I'm right handed and I can use the mouse with my left hand (not good enough for games though). I use it with the default button layouts too - don't see the point of switching them. I learnt to do it when I had some mild RSI in my right hand (too much gaming, so for work it was mouse with left and for play mouse with right;) ).
From what I see the right handed things when it comes to PCs are the numeric pads, and many device buttons/knobs are on the right- monitor, speakers etc.
I wonder who has the advantage with the default "fight/arcade stick" layouts - joystick on left and buttons on right. Right hander or left hander? FWIW I've seen someone play competitive streetfighter with his mouth (go look for the videos)...
Other than the ambidextrous folks, I think for most people you can learn to do stuff well with the "other" hand - it's mainly a matter of practice and time. The reason why we don't is it takes a fair bit of time (if we aren't ambidextrous). So we learn and practice the main task with our main hand and do supporting tasks with our other hand, and don't bother spending the extra time learning to do it the other way round. Try doing the supporting tasks one day with your main hand/leg and you are likely to find it is about as awkward as using your "other hand" for a main task (assuming that task also takes some dexterity).
Nadal is right handed but he plays very competitive tennis with his left. Right handed pianists have to actually press heavier keys with their left hands. Guitarists need a fair bit of strength and dexterity in their left hands (assuming conventional set up). Millions have learnt to drive stick shift, some on the left and some on the right.
It's not just computation. As I mentioned where we look at changes. So you won't be able to produce the correct blended images that our eyes expect without knowing what they are tracking. Worse if there are multiple viewers for the same display/screen.
So why do it? Why not go to 120Hz or even higher and let our eyes do the blurring?
This has been proven to be incorrect or at least incomplete:
everything that occurs inside of a time interval that short will still be blended together on your retina. Our brains are basically wired to automatically interpret this as continuous motion.
There is no need to blend stuff for the perception of continuous motion. All that needs is for something similar to appear at a different position that's not too far from the first position and at a sufficiently short interval.
That's why we can still perceive continuous motion on unblurred artificial images on computer monitors.
Speak for yourself, 30fps may be enough for you. It's not for many of us. We can notice the difference between 30fps, 60 fps, 85 fps and 120Hz.
We also have eyes that track and focus and thus reduce the blurriness of moving objects that we are looking at. For us, when we look at a fast moving object, the object is sharp and in focus, the background might be blurred. But if we look at the background the background is sharp and the object is blurred.
Whereas if you blur stuff before displaying it, there's no way your eyes can make it sharp even if you look at it.
The solution to more realistic graphics is to go 120Hz or more and let the limitations of human eyes do the blurring.
The other thing that many people miss is latency (which is related to the topic). A high FPS does not mean low latency. In theory you could have a crappy video system which produces a high average FPS but with a 1 second delay between what happens and what appears on the screen. That would be acceptable for movies with some audio delay corrections, but not acceptable for most games and interactive stuff. In fact there was a time where many displays had very bad latency (not one second but still too high).
Who needs to stumble upon that? Who's changing their product keys? The only reason this guy did is because he used the enterprise version from his MSDN subscription rather than the normal or Pro version and in the case of using the Enterprise version this task would not normally be done by the user but by the sysadmin.
Who needs to stumble upon that? The sysadmin and whoever else needs to install the thing, who else?
It's the same as launching applications, opening files, etc... through search.
Which is the same as CLI to a user if they don't know "slui 3" does what they want. How are they going to stumble across that on Windows 8 alone?
In contrast giving the user the option to enter a new key if activation fails is a GUI way to do things.
Probably because you shouldn't need to change your product key,
In this case Windows 8 did not prompt for the user for the key in the first place. It just assigned an invalid one during installation, and doesn't provide the user the option to enter a valid one if it fails.
As for your strawman, GUI options for this task were already present in previous versions of Windows, they didn't clutter the UI. This is a regression.
That's ridiculous. How much more impaired could a normal person be at 0.01? Seems to be a major injustice to me if there wasn't even an accident or explicit dangerous driving.
I bet there are plenty of other things that would be a greater problem: 1) being sleepy (not enough sleep, big dinner, etc) 2) being very upset 3) Having an itchy eye 4) Having a cold (I know someone who crashed after a big sneeze), or being unwell for whatever reason. 5) Last but not least not being a very competent driver.
If you're going to set it > 0.00 then it should be illegal to drive in all the scenarios I mentioned and more.
And as for 5) I doubt you'd want driving tests to be as stringent as what airliner pilots have to pass in well regulated countries[1]. Because I think a lot of people wouldn't be able to pass. If they can't drive, they have fewer jobs available. If they can't work, the average life expectancy of the country drops.
There are also some people with slow reflexes >400ms? If they are good they leave a bigger gap, but if people keep overtaking them and getting into that bigger gap, it starts being dangerous to have so many overtaking incidents near a person with slow reflexes...
[1] I think the dropout rate is as high as 80% in some places.
From the "Large Enterprise" point of view the only reason "Windows 7 is the Next Windows XP" is because Microsoft is going to stop supporting Windows XP. They don't need anything Windows 7 or 8 provides. All they care is that Windows XP keeps running the applications they need.
If Microsoft continued supporting Windows XP, those business would continue running Windows XP. No need to spend time and money to retrain staff, no need to change anything. Not every industry is like the IT industry.
Microsoft on the other hand NEEDS to keep moving the "goal posts", they need to change things (but not too much). Why? Because if they kept the goal posts stationary for too long someone could come up with a "Windows XP" compatible OS (you can see some already trying with ReactOS, I doubt they'll succeed but Microsoft really has to move).
If there are viable "Windows compatible" operating systems, Windows would end up like the IBM PC BIOS, with competing BIOS software. And BIOS manufacturers don't make enough money to make Microsoft shareholders, bosses, employees happy.
Most people don't know what BIOS they run, nor do they need to. To them the different BIOS all work the same and they just focus on using their applications.
Advertising is not evil. How's it evil? Some of it is good, some bad and some actually entertaining.
The micropayments model is out there already - it's called ads! How much does it cost you to just frigging download the ad (assuming you're not on international roaming...)? You don't even have to look at ads. If you find ads annoying then block them. But trying to say they're evil and suggesting replacing them with a micropayment and subscription model is ridiculous. That's like curing a disease with something worse.
Even more so if you're one of those who are afraid of being tracked. When the money trail is more direct to you it's even easier to track you! You can talk about bitcoin till cows come home, but guess what will really happen once you've slapped on all the technology to really make it work. Think about the difficulty of creating a micropayment model that's secure, not annoying and ubiquitous ( works internationally etc). You can't have some hackers or pranksters suddenly cause you to pay X bucks per visit to some site.
And that's why you should only block ads for yourself if you really don't want to see ads. Don't set up blocks for others unless they ask you - if they don't get around to figuring out how to block ads for themselves or ask others to help, they are the target audience... They're the ones who will help get stuff paid for. Bless their souls.
When you have a violent revolution don't be surprised if you get a dictatorship.
With the American Revolution it was more of the American ruling class overthrowing the British - closer to a war of independence than one of those semi-chaotic "winner takes all" revolutions.
The problem I see is the popular implementation plan (e.g. Communist Manifesto) involves violence (forcible overthrow etc).
Generally if you have a violent revolution, amidst the turmoil, the group that is willing and capable of the most violence will rise to the top (by defeating all others). Once these bunch get to the top, they generally don't let go of their power and it has already been shown that nobody else had the firepower to defeat them. And therefore you end up with a Dictatorship.
And that's why most "Communist" countries are Dictatorships.
And that's why the bunch who think that "voting" with bullets is a good idea, are stupid and crazy.
Well from a guy's perspective. 0) I'm rather attached to my balls. 1) We regularly think with our balls, so having our balls shrink is not considered a good thing. Imagine if a contraceptive shrunk your brains, would you be happy with that? 2) Since there's already a side effect that's so measurable, I won't be surprised there are other negative side effects. "The Pill" for women already has been known to have long term effects on their libido and also affect their preference in men. Even stuff like hair-loss treatments for men can affect libido (apparently permanently in some cases). So I'd be surprised if something that shrinks our balls doesn't do much else. A contraceptive drug that causes people to not feel like having sex is normally counter productive and not just counter reproductive;). Unless it's for people whose sexual urges cause them too much problems.
He did mention Carrington Events. Carrington Events aren't extinction level events anymore than severe lightning storms are extinction events.
As for a major asteroid/comet strike, that would be an extinction level event that we MIGHT be able to do something about if we detected it soon enough.
We don't need to worry about the sun going nova, since there's nothing we can do about it at the moment.
The Amish might wonder why suddenly they have so many visitors...;)
Seriously though, I don't think it would be such a big deal. People would work overtime to restore power ASAP. In many places they are used to dealing with stuff failing due to lightning and fixing it. If powerful lightning bolts strike nearby and your stuff still doesn't fry (surge protection etc), I doubt a Carrington Event will fry it either.
So think of it as the equivalent of very many lightning storms around the world for a few days, albeit without as much incendiary effect (not as many forest fires). It'll be expensive, insurance companies will try to weasel out blaming "God" etc, but we will recover fairly quickly.
We'd be doomed if it was anything way beyond that.
Windows Azure SQL Database provides two database editions: Web Edition and Business Edition. Web Edition databases can grow up to a size of 5 GB and Business Edition databases can grow up to a size of 150 GB.
Slashdot Mirror
The problem is you currently can't escape everything reliably.
Why? Because the mainstream browser security concept is making sure that all the thousands of "Go" buttons are not pressed aka "escaped". But people are always introducing new "Go" buttons. If your library is not aware of the latest stuff it will not escape the latest crazy "Go" button the www/html/browser bunch have come up with.
So in theory a perfectly safe site could suddenly become unsafe, just because someone made a new "Go" button for the latest browser. Your library could also parse things differently from the victim browser.
Many years ago I proposed a tag to disable any active stuff. A "Stop" button if you like in a world full of "Go" buttons. But most of the browser and W3C people weren't interested. If they had done it, a lot of those worms (MySpace etc) wouldn't have worked at all.
Only recently they have finally come up with something called Content Security Policy: https://developer.mozilla.org/en-US/docs/Security/CSP/Introducing_Content_Security_Policy
"Stop" buttons aren't 100% but it's way easier to specify a "Stop" than it is to make sure that all the hundreds of current AND future "Go" buttons are properly escaped.
Car Analogy: before CSP, browsers were like cars with hundreds of accelerator pedals. To stop you had to make sure ALL the pedals were not pressed!
Anyone who thinks escaping is easy to do 100% should go look at the various security researcher/hackers guides on exploiting stuff. Especially if you are trying to still allow HTML content (say from advertisers or HTML email for your users). It's easy if you are only going to allow ASCII text. But once you throw in HTML and unicode, it all starts to get complicated.
It's the one with the legal documents stating it's the original ship. ;)
I'm right handed and I can use the mouse with my left hand (not good enough for games though). I use it with the default button layouts too - don't see the point of switching them. I learnt to do it when I had some mild RSI in my right hand (too much gaming, so for work it was mouse with left and for play mouse with right ;) ).
From what I see the right handed things when it comes to PCs are the numeric pads, and many device buttons/knobs are on the right- monitor, speakers etc.
I wonder who has the advantage with the default "fight/arcade stick" layouts - joystick on left and buttons on right. Right hander or left hander? FWIW I've seen someone play competitive streetfighter with his mouth (go look for the videos)...
Other than the ambidextrous folks, I think for most people you can learn to do stuff well with the "other" hand - it's mainly a matter of practice and time. The reason why we don't is it takes a fair bit of time (if we aren't ambidextrous). So we learn and practice the main task with our main hand and do supporting tasks with our other hand, and don't bother spending the extra time learning to do it the other way round. Try doing the supporting tasks one day with your main hand/leg and you are likely to find it is about as awkward as using your "other hand" for a main task (assuming that task also takes some dexterity).
Nadal is right handed but he plays very competitive tennis with his left. Right handed pianists have to actually press heavier keys with their left hands. Guitarists need a fair bit of strength and dexterity in their left hands (assuming conventional set up). Millions have learnt to drive stick shift, some on the left and some on the right.
What's the problem?
;) ).
If Europe prove it can be done, China may happily offer to sell them windmills etc to do it on a massive scale (and burn all the coal to do it
The US might sue them all for patent infringement. But other than that, no I don't see an issue with it.
It's not just computation. As I mentioned where we look at changes. So you won't be able to produce the correct blended images that our eyes expect without knowing what they are tracking. Worse if there are multiple viewers for the same display/screen.
So why do it? Why not go to 120Hz or even higher and let our eyes do the blurring?
This has been proven to be incorrect or at least incomplete:
everything that occurs inside of a time interval that short will still be blended together on your retina. Our brains are basically wired to automatically interpret this as continuous motion.
There is no need to blend stuff for the perception of continuous motion. All that needs is for something similar to appear at a different position that's not too far from the first position and at a sufficiently short interval.
That's why we can still perceive continuous motion on unblurred artificial images on computer monitors.
See also:
http://academic.evergreen.edu/curricular/emergingorder/seminar/week_1_anderson.pdf
Can you point out to me where this is documented in Microsoft's official documentation either on their website or Windows 8?
From what I see the sysadmin will need to search for it using Google or Bing.
That doesn't seem moronic to you?
Speak for yourself, 30fps may be enough for you. It's not for many of us. We can notice the difference between 30fps, 60 fps, 85 fps and 120Hz.
We also have eyes that track and focus and thus reduce the blurriness of moving objects that we are looking at. For us, when we look at a fast moving object, the object is sharp and in focus, the background might be blurred. But if we look at the background the background is sharp and the object is blurred.
Whereas if you blur stuff before displaying it, there's no way your eyes can make it sharp even if you look at it.
The solution to more realistic graphics is to go 120Hz or more and let the limitations of human eyes do the blurring.
The other thing that many people miss is latency (which is related to the topic). A high FPS does not mean low latency. In theory you could have a crappy video system which produces a high average FPS but with a 1 second delay between what happens and what appears on the screen. That would be acceptable for movies with some audio delay corrections, but not acceptable for most games and interactive stuff. In fact there was a time where many displays had very bad latency (not one second but still too high).
Who needs to stumble upon that? Who's changing their product keys? The only reason this guy did is because he used the enterprise version from his MSDN subscription rather than the normal or Pro version and in the case of using the Enterprise version this task would not normally be done by the user but by the sysadmin.
Who needs to stumble upon that? The sysadmin and whoever else needs to install the thing, who else?
Talk about moronic.
It's the same as launching applications, opening files, etc... through search.
Which is the same as CLI to a user if they don't know "slui 3" does what they want. How are they going to stumble across that on Windows 8 alone?
In contrast giving the user the option to enter a new key if activation fails is a GUI way to do things.
Probably because you shouldn't need to change your product key,
In this case Windows 8 did not prompt for the user for the key in the first place. It just assigned an invalid one during installation, and doesn't provide the user the option to enter a valid one if it fails.
As for your strawman, GUI options for this task were already present in previous versions of Windows, they didn't clutter the UI. This is a regression.
That's still CLI in effect.
Go look at how the previous Windows versions did it. Why didn't they reuse that? There's no need to type anything but your product key.
That's ridiculous. How much more impaired could a normal person be at 0.01? Seems to be a major injustice to me if there wasn't even an accident or explicit dangerous driving.
I bet there are plenty of other things that would be a greater problem:
1) being sleepy (not enough sleep, big dinner, etc)
2) being very upset
3) Having an itchy eye
4) Having a cold (I know someone who crashed after a big sneeze), or being unwell for whatever reason.
5) Last but not least not being a very competent driver.
If you're going to set it > 0.00 then it should be illegal to drive in all the scenarios I mentioned and more.
And as for 5) I doubt you'd want driving tests to be as stringent as what airliner pilots have to pass in well regulated countries[1]. Because I think a lot of people wouldn't be able to pass. If they can't drive, they have fewer jobs available. If they can't work, the average life expectancy of the country drops.
There are also some people with slow reflexes >400ms? If they are good they leave a bigger gap, but if people keep overtaking them and getting into that bigger gap, it starts being dangerous to have so many overtaking incidents near a person with slow reflexes...
[1] I think the dropout rate is as high as 80% in some places.
From the "Large Enterprise" point of view the only reason "Windows 7 is the Next Windows XP" is because Microsoft is going to stop supporting Windows XP. They don't need anything Windows 7 or 8 provides. All they care is that Windows XP keeps running the applications they need.
If Microsoft continued supporting Windows XP, those business would continue running Windows XP. No need to spend time and money to retrain staff, no need to change anything. Not every industry is like the IT industry.
Microsoft on the other hand NEEDS to keep moving the "goal posts", they need to change things (but not too much). Why? Because if they kept the goal posts stationary for too long someone could come up with a "Windows XP" compatible OS (you can see some already trying with ReactOS, I doubt they'll succeed but Microsoft really has to move).
If there are viable "Windows compatible" operating systems, Windows would end up like the IBM PC BIOS, with competing BIOS software. And BIOS manufacturers don't make enough money to make Microsoft shareholders, bosses, employees happy.
Most people don't know what BIOS they run, nor do they need to. To them the different BIOS all work the same and they just focus on using their applications.
I'm running RTM Enterprise on a Dell E6520 laptop, and it's flawless.
Flawless? OK please tell me the flawless way to do the following without resorting to the CLI: http://www.windows7hacker.com/index.php/2012/08/how-to-change-windows-8-product-key-to-complete-activation/
I installed the Windows 8 Enterprise Edition, and apparently the install wizard never asked me for the activation key.
I couldn't find a UI that allows me to change or even enter my activation key. Time for a "hack" to activate Windows 8.
First, you need to go to the Start screen type "cmd" and right click. Make sure you choose run as "Administrator" from the bottom options.
Maybe not the average user, but unless they change things in the "real release" I think this is ridiculous:
http://www.windows7hacker.com/index.php/2012/08/how-to-change-windows-8-product-key-to-complete-activation/
I installed the Windows 8 Enterprise Edition, and apparently the install wizard never asked me for the activation key.
I couldn't find a UI that allows me to change or even enter my activation key. Time for a "hack" to activate Windows 8.
First, you need to go to the Start screen type "cmd" and right click. Make sure you choose run as "Administrator" from the bottom options.
Advertising is not evil. How's it evil? Some of it is good, some bad and some actually entertaining.
The micropayments model is out there already - it's called ads! How much does it cost you to just frigging download the ad (assuming you're not on international roaming...)? You don't even have to look at ads. If you find ads annoying then block them. But trying to say they're evil and suggesting replacing them with a micropayment and subscription model is ridiculous. That's like curing a disease with something worse.
Even more so if you're one of those who are afraid of being tracked. When the money trail is more direct to you it's even easier to track you! You can talk about bitcoin till cows come home, but guess what will really happen once you've slapped on all the technology to really make it work. Think about the difficulty of creating a micropayment model that's secure, not annoying and ubiquitous ( works internationally etc). You can't have some hackers or pranksters suddenly cause you to pay X bucks per visit to some site.
And that's why you should only block ads for yourself if you really don't want to see ads. Don't set up blocks for others unless they ask you - if they don't get around to figuring out how to block ads for themselves or ask others to help, they are the target audience... They're the ones who will help get stuff paid for. Bless their souls.
Read your link more carefully. That's world wide, not USA.
See also:
http://en.wikipedia.org/wiki/List_of_causes_of_death_by_rate#Developed_vs._developing_economies
I don't see mention of violence or violent revolutions with Kibbutzim so no surprise if the end result is different. In contrast the popular official communism document mentions it: http://www.marxists.org/archive/marx/works/1848/communist-manifesto/ch04.htm
When you have a violent revolution don't be surprised if you get a dictatorship.
With the American Revolution it was more of the American ruling class overthrowing the British - closer to a war of independence than one of those semi-chaotic "winner takes all" revolutions.
The French Revolution did actually end up with something like a dictatorship at some points, and some parts were pretty bad:
http://en.wikipedia.org/wiki/French_Revolution#Reign_of_Terror
http://en.wikipedia.org/wiki/Reign_of_Terror
at least you did better than those who were picking the anthem in the latest Olympics...
The problem I see is the popular implementation plan (e.g. Communist Manifesto) involves violence (forcible overthrow etc).
Generally if you have a violent revolution, amidst the turmoil, the group that is willing and capable of the most violence will rise to the top (by defeating all others). Once these bunch get to the top, they generally don't let go of their power and it has already been shown that nobody else had the firepower to defeat them. And therefore you end up with a Dictatorship.
And that's why most "Communist" countries are Dictatorships.
And that's why the bunch who think that "voting" with bullets is a good idea, are stupid and crazy.
Well from a guy's perspective. ;). Unless it's for people whose sexual urges cause them too much problems.
0) I'm rather attached to my balls.
1) We regularly think with our balls, so having our balls shrink is not considered a good thing. Imagine if a contraceptive shrunk your brains, would you be happy with that?
2) Since there's already a side effect that's so measurable, I won't be surprised there are other negative side effects. "The Pill" for women already has been known to have long term effects on their libido and also affect their preference in men. Even stuff like hair-loss treatments for men can affect libido (apparently permanently in some cases). So I'd be surprised if something that shrinks our balls doesn't do much else. A contraceptive drug that causes people to not feel like having sex is normally counter productive and not just counter reproductive
He did mention Carrington Events. Carrington Events aren't extinction level events anymore than severe lightning storms are extinction events.
As for a major asteroid/comet strike, that would be an extinction level event that we MIGHT be able to do something about if we detected it soon enough.
We don't need to worry about the sun going nova, since there's nothing we can do about it at the moment.
The Amish might wonder why suddenly they have so many visitors... ;)
Seriously though, I don't think it would be such a big deal. People would work overtime to restore power ASAP. In many places they are used to dealing with stuff failing due to lightning and fixing it. If powerful lightning bolts strike nearby and your stuff still doesn't fry (surge protection etc), I doubt a Carrington Event will fry it either.
So think of it as the equivalent of very many lightning storms around the world for a few days, albeit without as much incendiary effect (not as many forest fires). It'll be expensive, insurance companies will try to weasel out blaming "God" etc, but we will recover fairly quickly.
We'd be doomed if it was anything way beyond that.
I just noticed that they actually run on Amazon Web Services... Wonder if that affects their granularity.
I think he does mean 150GB: http://msdn.microsoft.com/en-us/library/windowsazure/ee336245.aspx#dcasl
Windows Azure SQL Database provides two database editions: Web Edition and Business Edition. Web Edition databases can grow up to a size of 5 GB and Business Edition databases can grow up to a size of 150 GB.
Here are some benchmarks - which might be out of date:
http://blogs.microsoft.co.il/blogs/applisec/archive/2012/02/02/windows-azure-benchmarks-part-13-sql-azure-read-throughput.aspx
http://blogs.microsoft.co.il/blogs/applisec/archive/2012/02/08/windows-azure-benchmarks-part-14-sql-azure-write-throughput.aspx
http://blogs.microsoft.co.il/blogs/applisec/archive/2012/02/13/windows-azure-benchmarks-part-15-sql-azure-read-latency.aspx
http://blogs.microsoft.co.il/blogs/applisec/archive/2012/02/16/windows-azure-benchmarks-part-16-sql-azure-write-latency.aspx
http://blogs.microsoft.co.il/blogs/applisec/archive/2012/02/22/windows-azure-benchmarks-part-17-compare-storage-types-performance.aspx
The performance might have increased since.
Couldn't they just put an IR blocking filters on the cameras?
http://en.wikipedia.org/wiki/Infrared_cut-off_filter