So this Tesla isn't worse at all in that case. Sure it could be better, but it's not autopilot is increasing the danger in this situation compared to a car with no automatic features.
The summary is wrong that Vivaldi is a fork of old Opera (the Presto engine), it is in fact the same Blink engine that powers Chrome and new Opera, but with brand new chrome (non-capital, aka the interface around the engine) which is recreating the power-user features of old Opera rather than the cut-down interfaces that other browsers are working towards:
Well, yes. Obviously. If "they" compromise at a level below what we are capable of seeing - for example baseband controllers on every brand of motherboard that we own, then there's nothing we can do about it. There's nothing anyone can do about that, including the theoretical "run my own email server from home".
So I don't waste much sleep worrying about that case, because there's nothing I could about it. We do everything we can to ensure security - for example airgapped internal networks with physically separate switching hardware rather than VLANs to avoid the risk of compromised switch firmware.
If that's still too much risk for you, the choice is to get offline entirely. We're not in that business, we're in the business of providing a really usable email service with the best security protections that we can provide without compromising the usability to the point that people won't use it.
Thanks for the plug. We definitely recommend that users who are concerned about security use GPG with our servers via the standard IMAP/SMTP protocols. We have very good standards support, and as others have pointed out in this thread - if we ran GPG server-side, you'd be delegating the security to us anyway, because we would see plaintext versions of your communication.
For the best security, you should definitely be running the encryption on equipment under your control (and not 0wned under you... which is your own lookout in that scenario)
Yeah, indeed. Let me know when somebody has one of those that doesn't have a laughably small pentalty for Facebook if they change their mind and I will completely change my tune.
Honestly, I use FB's messaging interchangably with SMS. I don't expect to keep history of either of them. Anything I want to keep gets sent as email.
IRC is great for work. I don't use it for random people though. All my choir and gym friends are on Facebook, and coordinate things through there. I'm not going to cut myself off from that.
The core question with running on anybody else's platform, unless they are a regulated carrier somewhere which is required by a law to carry your traffic, is what happens when they change the rules?
Would you be comfortable building your entire business on top of it? What if Facebook imposes new limits or rules that mean you can't use it any more.
I had a conversation with a friend back in 2008-2009 some time over Facebook Messanger. We tried to find it last year. It rembered a chat we had in 2007, then nothing until 2010. It's not your own immutable copy the way that email is. Every new messaging platform claims it will kill email, but funnily enough they never do, because they don't offer what email offers - your own immutable copy and interoperability with everyone else. Email actually is the real distributed social network.
The coward might laugh at your storage cluster, but I'm laughing too, because I've heard this song before.
And every time I see another one of these, I am reminded why I run standalone replicas with the replication right up at the application level with integrity checks to ensure that a failure in one place doesn't wipe other things.
People are right to laugh that a single bad disk can take your site offline for hours because the storage cluster software screwed up. I don't use heartbeat any more, because we found it was LESS reliable than our servers, and we had more downtime because heartbeat screwed up. Clusters and SPOF SANs fall right into the same basket in my mind - a single place where everything breaks.
I feel for your ops team, but like the others - I hope they learn the points-of-failure lesson from this.
I was home-schooled untli year 11. I got 96/100 in the school system, which I considered to be a pretty good score (made me about 8th in a school of 500ish). My sister came through 3 years later and got a straight 100/100. She was also home-schooled until year 11.
The plural of annecdote is still at the opinion level here. Just like any schooling - it depends more on the method of teaching and the individual student than where the schooling is.
In my case, my parents mostly just left me to my own devices. They pointed me at the enclopedia and told me that most of what I needed was in there somewhere, and showed me how to use the index. This was mostly pre-internet. They also took us to the library frequently so we could have access to more books than they could afford.
Fuck yeah. If I make major software changes on a server, I damn well want to reboot it and make sure it can bootstrap from scratch.
Actually, unless it was a really minor fix, I'd probably want to reinstall it from scratch. That takes ~10 minutes (bit longer these days because hardware takes so bloody long to init).
That way I know I haven't built a multi-tentacled monster of a system with cross dependencies which will never start ever again. You already need a failover plan for when (not if) you have a hardware failure, so you may as well be testing it frequently by going through said steps - and a significant upgrade is a good time to do it.
This idea of upgrading everything in random order and restarting just the affected services doesn't scale. Reinstalls all the way, baby.
"The issue with systemd: it reeks of a solution looking for a problem."
I dunno - I've rolled a bunch of stuff using daemontools, a bunch of stuff using other daemonisation techniques and a nasty complicated dependency tracking system on top of that - it's complex, but it works.
If there's a standard tool doing a significant part of that heavy lifting across all the linuxes, that's a big win in my book. I buy some of the "it's too complex" argument, but not enough to overthrow the benefits of being a standard part of my installs.
Which leaves security exposure, and that's an interesting question... but assuming it's not really awful, its ubiquity should get more eyes and more fixes than running something rare.
Tell me the last time you heard a cash story that wasn't about money laundering or counterfeit cash.
Person pays person for product and/or service, everybody happy with transaction - not news.
Basically, news stories are an indication of shit that sells news - and unsurpisingly, money laundering is one of those things. So news stories are biased. You mostly hear about the things which are crap, because they're "newsworthy".
Yeah, I was just picking on the XP box rather than the watching "nature documentaries" bit because, well... It was a joke to pick on the XP box, because the average HR person would be more interested in nature of the documentaries and whether you would be likely to do that on work time (people do, amazingly enough).
I'm happy to agree that you don't really (or don't realise that you do) look down on other services. Certainly posing => posting changes the nature of your post significantly!
Anyway, I think we've done the topic to death now...
"And if I were a recruiter, I'd probably consider having extensive profiles online a negative quality -- indicative of spending too much time posing and not enough actually working."
(and don't worry - I didn't go into the bit with your really disgusting habits like running unpatched Windows XP)
Maybe a recruiter wouldn't check Slashdot - maybe they would. But you sure look like you spend a bunch of time on here from the frequency of comments - and yet you were dissing other people who spend "too much time posing on the internet". That's what the "for shame" was about, the elitism of dismissing people who "pose" by using a social network which you obviously look down upon.
So says the athiest who had a hangover on New Year's Day and doesn't speak English as a first language and likes Torchwood and uses the word Fuck and develops Android Apps but is looking for something else.
And I've only read the first two pages of the comments you've posted to Slashdot while logged in.
Pot/kettle. Looks like you have a plenty extensive online profile on a site which is pretty much one of the oldest social networks of your "tribe" (nerds) and you look down on non-nerds who do the same thing but on other sites. For shame.
Slashdot Mirror
Thanks for the kind words! We're very proud of our support department and their close integration with the technical team.
So this Tesla isn't worse at all in that case. Sure it could be better, but it's not autopilot is increasing the danger in this situation compared to a car with no automatic features.
The summary is wrong that Vivaldi is a fork of old Opera (the Presto engine), it is in fact the same Blink engine that powers Chrome and new Opera, but with brand new chrome (non-capital, aka the interface around the engine) which is recreating the power-user features of old Opera rather than the cut-down interfaces that other browsers are working towards:
https://en.wikipedia.org/wiki/...
https://en.wikipedia.org/wiki/...
https://en.wikipedia.org/wiki/...
Well, yes. Obviously. If "they" compromise at a level below what we are capable of seeing - for example baseband controllers on every brand of motherboard that we own, then there's nothing we can do about it. There's nothing anyone can do about that, including the theoretical "run my own email server from home".
So I don't waste much sleep worrying about that case, because there's nothing I could about it. We do everything we can to ensure security - for example airgapped internal networks with physically separate switching hardware rather than VLANs to avoid the risk of compromised switch firmware.
If that's still too much risk for you, the choice is to get offline entirely. We're not in that business, we're in the business of providing a really usable email service with the best security protections that we can provide without compromising the usability to the point that people won't use it.
Thanks for the plug. We definitely recommend that users who are concerned about security use GPG with our servers via the standard IMAP/SMTP protocols. We have very good standards support, and as others have pointed out in this thread - if we ran GPG server-side, you'd be delegating the security to us anyway, because we would see plaintext versions of your communication.
For the best security, you should definitely be running the encryption on equipment under your control (and not 0wned under you... which is your own lookout in that scenario)
We run encrypted channels between our datacentres - we're not trusting telco pipes to be private.
Oops, that was me - I managed to get logged out through not posting here for so long.
Cloudflare only helps with web.
Spamhaus - lovely, but the traffic is already coming down your uplink by then - we were already firewalling it all, doesn't help.
(FastMail Ops btw)
But we have a solution in place now, so we're in a lot nicer place than we were on Sunday when we were first hit.
Oh cool - can I have user ID 666 then, since you won't need it any more?
Anything that needs more than FB or SMS I just use email. My email delivers fast, and straight to my watch/phone/ipad/laptop:
https://www.youtube.com/watch?...
The watch is more convenient when it's on my wrist, but it doesn't film as well.
No, nobody has noticed that:
http://www.smh.com.au/business...
They're just imaginging things. The data says it's bullshit.
Yeah, indeed. Let me know when somebody has one of those that doesn't have a laughably small pentalty for Facebook if they change their mind and I will completely change my tune.
Honestly, I use FB's messaging interchangably with SMS. I don't expect to keep history of either of them. Anything I want to keep gets sent as email.
IRC is great for work. I don't use it for random people though. All my choir and gym friends are on Facebook, and coordinate things through there. I'm not going to cut myself off from that.
The core question with running on anybody else's platform, unless they are a regulated carrier somewhere which is required by a law to carry your traffic, is what happens when they change the rules?
Would you be comfortable building your entire business on top of it? What if Facebook imposes new limits or rules that mean you can't use it any more.
I had a conversation with a friend back in 2008-2009 some time over Facebook Messanger. We tried to find it last year. It rembered a chat we had in 2007, then nothing until 2010. It's not your own immutable copy the way that email is. Every new messaging platform claims it will kill email, but funnily enough they never do, because they don't offer what email offers - your own immutable copy and interoperability with everyone else. Email actually is the real distributed social network.
The coward might laugh at your storage cluster, but I'm laughing too, because I've heard this song before.
And every time I see another one of these, I am reminded why I run standalone replicas with the replication right up at the application level with integrity checks to ensure that a failure in one place doesn't wipe other things.
http://blog.fastmail.com/2014/...
People are right to laugh that a single bad disk can take your site offline for hours because the storage cluster software screwed up. I don't use heartbeat any more, because we found it was LESS reliable than our servers, and we had more downtime because heartbeat screwed up. Clusters and SPOF SANs fall right into the same basket in my mind - a single place where everything breaks.
I feel for your ops team, but like the others - I hope they learn the points-of-failure lesson from this.
See there it is - horse fucking. That's exactly the kind of slippery slope that the anti-gay-marriage people are fighting against.
(/sarcasm)
I was home-schooled untli year 11. I got 96/100 in the school system, which I considered to be a pretty good score (made me about 8th in a school of 500ish). My sister came through 3 years later and got a straight 100/100. She was also home-schooled until year 11.
The plural of annecdote is still at the opinion level here. Just like any schooling - it depends more on the method of teaching and the individual student than where the schooling is.
In my case, my parents mostly just left me to my own devices. They pointed me at the enclopedia and told me that most of what I needed was in there somewhere, and showed me how to use the index. This was mostly pre-internet. They also took us to the library frequently so we could have access to more books than they could afford.
Yeah, but it's probably about the same quality as what Galileo had, which might be kinda the point...
Fuck yeah. If I make major software changes on a server, I damn well want to reboot it and make sure it can bootstrap from scratch.
Actually, unless it was a really minor fix, I'd probably want to reinstall it from scratch. That takes ~10 minutes (bit longer these days because hardware takes so bloody long to init).
That way I know I haven't built a multi-tentacled monster of a system with cross dependencies which will never start ever again. You already need a failover plan for when (not if) you have a hardware failure, so you may as well be testing it frequently by going through said steps - and a significant upgrade is a good time to do it.
This idea of upgrading everything in random order and restarting just the affected services doesn't scale. Reinstalls all the way, baby.
"The issue with systemd: it reeks of a solution looking for a problem."
I dunno - I've rolled a bunch of stuff using daemontools, a bunch of stuff using other daemonisation techniques and a nasty complicated dependency tracking system on top of that - it's complex, but it works.
If there's a standard tool doing a significant part of that heavy lifting across all the linuxes, that's a big win in my book. I buy some of the "it's too complex" argument, but not enough to overthrow the benefits of being a standard part of my installs.
Which leaves security exposure, and that's an interesting question... but assuming it's not really awful, its ubiquity should get more eyes and more fixes than running something rare.
Erm, preview drongo:
#include things_which_are_crap_like_beta.h
Tell me the last time you heard a cash story that wasn't about money laundering or counterfeit cash.
Person pays person for product and/or service, everybody happy with transaction - not news.
Basically, news stories are an indication of shit that sells news - and unsurpisingly, money laundering is one of those things. So news stories are biased. You mostly hear about the things which are crap, because they're "newsworthy".
#include
Yeah, I was just picking on the XP box rather than the watching "nature documentaries" bit because, well... It was a joke to pick on the XP box, because the average HR person would be more interested in nature of the documentaries and whether you would be likely to do that on work time (people do, amazingly enough).
I'm happy to agree that you don't really (or don't realise that you do) look down on other services. Certainly posing => posting changes the nature of your post significantly!
Anyway, I think we've done the topic to death now...
"And if I were a recruiter, I'd probably consider having extensive profiles online a negative quality -- indicative of spending too much time posing and not enough actually working."
(and don't worry - I didn't go into the bit with your really disgusting habits like running unpatched Windows XP)
Maybe a recruiter wouldn't check Slashdot - maybe they would. But you sure look like you spend a bunch of time on here from the frequency of comments - and yet you were dissing other people who spend "too much time posing on the internet". That's what the "for shame" was about, the elitism of dismissing people who "pose" by using a social network which you obviously look down upon.
So says the athiest who had a hangover on New Year's Day and doesn't speak English as a first language and likes Torchwood and uses the word Fuck and develops Android Apps but is looking for something else.
And I've only read the first two pages of the comments you've posted to Slashdot while logged in.
Pot/kettle. Looks like you have a plenty extensive online profile on a site which is pretty much one of the oldest social networks of your "tribe" (nerds) and you look down on non-nerds who do the same thing but on other sites. For shame.