Yes, it's one of the provisions of the Regulation of Investigatory Powers Act (the RIP Act - how appropriate). However I challenge anyone to hand over the keys used during an HTTPS session...
That's great and all, but what about your major cities? NYC for instance is pretty densely populated, why is the broadband speed there not comparable to that in Tokyo?
Exactly. Any change to the file's contents is going to change the hash. I'd hate to think that deciding that the song is actually worth 4 stars rather than 3 would break my "password"...
No, I think he has a point. Wouldn't the output of an unsuccessful decryption attempt on encrypted plain text look much the same as the output of a successful decryption attempt on a payload that is itself encrypted? Or does every (popular) encryption scheme identify the output file in some way, thus making it obvious that you have successfully cracked stage one of the decryption process, and should now proceed to brute-force the output to get stage two?
What do you do when your local computer shuts down? How about a server on your company intranet?
Well with the former I can pull the hard drive and shove it in a new machine and be at least trying to recover my data inside of an hour. With the latter, the systems team could be doing the equivalent inside of a day (as the servers don't tend to be in the office).
If my remote document storage/app server/whatever goes down, even transiently, there's nothing I can do until it comes back up (other than hope that it does come back up).
So yes, backups are your friend, but the situation isn't quite the same.
Except that you'd have to do that for all realistic bitrates and encoders, values of the id3 tags, etc - basically anything that would alter the hash of the file. I wouldn't be too concerned about that.
What I would be concerned about however would be targeted attacks, with malware being distributed that scans the PC for suitable media files, produces the hashes, and sends them home along with some identifier for the user...
Well, it is a Microsoft product, so it's not without its flaws (The Vista dependency for one)
Well if you really want to run DX10 apps but really, really don't want Vista, you can run them on Server 2008, which actually makes for a pretty nice desktop. (So much so that I'm considering buying it when my trial runs out in a few months, if I can spare the cash - it really isn't cheap)
There isn't one, because you're supposed to mod up good posts and mod down trolls and flamebait; stuff that is merely wrong is supposed to be left alone (or even modded up to make it and its correction more prominent, if it's a widely-held belief)
How is that different to finding me by coming to my town (which is actually just an area of London), then finding my street, then finding the 68th house on it? Remembering that in fact one side of the street is even-numbered, the other odd-numbered (true of most but not all streets), there's no guarantee that they count in the same direction or that some numbers might not be skipped entirely (mostly in non-residential areas). About the only difference I see is that houses in the UK tend to have numbers on them - but then again, mine doesn't as I've not gotten round to getting one since I had my front door changed (several years ago).
Banning Google's Streetview would prevent people from seeing the area, but would not prevent an enemy of yours from placing a perfectly legal webcam and watching you specifically
Actually here in the UK I'd imagine you'd be in danger of falling foul of anti-stalking and various privacy laws if you did that, depending on exactly how you did it.
You know what? I'm sick and tired of the fact that every PHP related post to Slashdot ends up sludgefest of old jokes, one-line jabs at PHP, and misinformation.
That's just slashdot, it's nothing against PHP specifically. Java,.NET, perl, Windows, OS X, etc all get the same treatment to greater and lesser degree.
The sad fact of the matter is that many of the most vocal people here have the maturity of a teenager.
Traditionally, when network engineers and administrators draw diagrams of networks, they represent the connection to the Internet as a big bumpy object not unlike a child's drawing of a cloud.
That's true, and I've done it often enough myself. I also draw databases in the traditional manner, and yet I never feel the need to refer to them as cylinders.
Except that it doesn't. The blacklist in question does not blacklist applications on the phone.
That's all well and good, but the OP was saying that he objected to the iPhone phoning home without his knowledge, not that the list was used to remotely kill arbitrary apps.
Why? The PIN I use (along with a swipe card) to get into work has a 1 in it, and I refuse to believe that I'm the only one. (For that matter the PIN to my debit and credit cards both contain a 0).
Also, why the hostility? Too much caffeine this morning?
Entering Japan is voluntary and requires action on my part. Where do I sign to tell Google that it's ok for them to feature me or my property in StreetView?
Google is a net company, and views the world as if it was an extension of the internet.
I'd buy that for a first or second offence, but you then go on to list a number of similar offences; Google really should have learnt its lesson by now.
Not only that, but Google is just a company, and a company is made up of people - it is the people who make the decisions. Those people really should appreciate the difference between the online and offline worlds, and should realise that the vast majority of people value their privacy.
Which makes perfect sense - if you're the only vendor for something like that, then it'll either never take off or take off very slowly (unless it's truly revolutionary) as games won't require it because too few people have it. So, you help your competitors develop an offering - perhaps keeping the best tech to yourself as you do so. Now the availability of compatible cards is much higher, there's more chance games will use them, more chance people will buy them, and so more money for you. Especially as you kept the best of the tech to yourself...
For myself, there are two "luxuries" that actually really are worth the money you spend on them: shoes and beds.
While I personally believe that it's perfectly possible to get long-lasting, comfortable footwear for a reasonable price (though thinking about it $100 is roughly £50 which sounds about right), I agree 100% with the bed. Over the years I had a series of beds ranging from ordinary to down-right uncomfortable. A few years ago my then gf was having back problems, so we bought a fairly expensive bed and mattress. It is the single most comfortable bed I have ever had - I love it, and consider it to be money very well spent indeed.
Slashdot Mirror
Yes, it's one of the provisions of the Regulation of Investigatory Powers Act (the RIP Act - how appropriate). However I challenge anyone to hand over the keys used during an HTTPS session...
That's great and all, but what about your major cities? NYC for instance is pretty densely populated, why is the broadband speed there not comparable to that in Tokyo?
It's just that Slashdot doesn't read the articles.
Or, for the most part, understand much more than the most basic premises of the science in question.
Exactly. Any change to the file's contents is going to change the hash. I'd hate to think that deciding that the song is actually worth 4 stars rather than 3 would break my "password"...
Well given that the bug only surfaced today, I'd say "so far so good".
Ask again in a day or so, but don't start flinging accusations when they've not had time to develop a patch, let alone QA and release it.
No, I think he has a point. Wouldn't the output of an unsuccessful decryption attempt on encrypted plain text look much the same as the output of a successful decryption attempt on a payload that is itself encrypted? Or does every (popular) encryption scheme identify the output file in some way, thus making it obvious that you have successfully cracked stage one of the decryption process, and should now proceed to brute-force the output to get stage two?
That's all well and good if they're merely storing the data, but not if you're using an online app suite like Google Apps.
What do you do when your local computer shuts down? How about a server on your company intranet?
Well with the former I can pull the hard drive and shove it in a new machine and be at least trying to recover my data inside of an hour. With the latter, the systems team could be doing the equivalent inside of a day (as the servers don't tend to be in the office).
If my remote document storage/app server/whatever goes down, even transiently, there's nothing I can do until it comes back up (other than hope that it does come back up).
So yes, backups are your friend, but the situation isn't quite the same.
Except that you'd have to do that for all realistic bitrates and encoders, values of the id3 tags, etc - basically anything that would alter the hash of the file. I wouldn't be too concerned about that.
What I would be concerned about however would be targeted attacks, with malware being distributed that scans the PC for suitable media files, produces the hashes, and sends them home along with some identifier for the user...
Well, it is a Microsoft product, so it's not without its flaws (The Vista dependency for one)
Well if you really want to run DX10 apps but really, really don't want Vista, you can run them on Server 2008, which actually makes for a pretty nice desktop. (So much so that I'm considering buying it when my trial runs out in a few months, if I can spare the cash - it really isn't cheap)
If you know the HTML entity code for € in the first place, then that shouldn't be much of a test...
There isn't one, because you're supposed to mod up good posts and mod down trolls and flamebait; stuff that is merely wrong is supposed to be left alone (or even modded up to make it and its correction more prominent, if it's a widely-held belief)
How is that different to finding me by coming to my town (which is actually just an area of London), then finding my street, then finding the 68th house on it? Remembering that in fact one side of the street is even-numbered, the other odd-numbered (true of most but not all streets), there's no guarantee that they count in the same direction or that some numbers might not be skipped entirely (mostly in non-residential areas). About the only difference I see is that houses in the UK tend to have numbers on them - but then again, mine doesn't as I've not gotten round to getting one since I had my front door changed (several years ago).
Banning Google's Streetview would prevent people from seeing the area, but would not prevent an enemy of yours from placing a perfectly legal webcam and watching you specifically
Actually here in the UK I'd imagine you'd be in danger of falling foul of anti-stalking and various privacy laws if you did that, depending on exactly how you did it.
You know what? I'm sick and tired of the fact that every PHP related post to Slashdot ends up sludgefest of old jokes, one-line jabs at PHP, and misinformation.
That's just slashdot, it's nothing against PHP specifically. Java, .NET, perl, Windows, OS X, etc all get the same treatment to greater and lesser degree.
The sad fact of the matter is that many of the most vocal people here have the maturity of a teenager.
Traditionally, when network engineers and administrators draw diagrams of networks, they represent the connection to the Internet as a big bumpy object not unlike a child's drawing of a cloud.
That's true, and I've done it often enough myself. I also draw databases in the traditional manner, and yet I never feel the need to refer to them as cylinders.
"Bug" is more concise than "a software flaw which causes behavior the developers didn't intend"
It's also due to the fact that early in the history of computing, a fault was found to be due to a moth being trapped between the contacts of a relay.
For what it's worth, I don't like people calling the Internet "the Cloud" either.
Except that it doesn't. The blacklist in question does not blacklist applications on the phone.
That's all well and good, but the OP was saying that he objected to the iPhone phoning home without his knowledge, not that the list was used to remotely kill arbitrary apps.
Eliminate zero and one
Why? The PIN I use (along with a swipe card) to get into work has a 1 in it, and I refuse to believe that I'm the only one. (For that matter the PIN to my debit and credit cards both contain a 0).
Also, why the hostility? Too much caffeine this morning?
Entering Japan is voluntary and requires action on my part. Where do I sign to tell Google that it's ok for them to feature me or my property in StreetView?
Google is a net company, and views the world as if it was an extension of the internet.
I'd buy that for a first or second offence, but you then go on to list a number of similar offences; Google really should have learnt its lesson by now.
Not only that, but Google is just a company, and a company is made up of people - it is the people who make the decisions. Those people really should appreciate the difference between the online and offline worlds, and should realise that the vast majority of people value their privacy.
Which makes perfect sense - if you're the only vendor for something like that, then it'll either never take off or take off very slowly (unless it's truly revolutionary) as games won't require it because too few people have it. So, you help your competitors develop an offering - perhaps keeping the best tech to yourself as you do so. Now the availability of compatible cards is much higher, there's more chance games will use them, more chance people will buy them, and so more money for you. Especially as you kept the best of the tech to yourself...
Oddly the lawyer didn't argue that downloading by the RIAA can't be infringement by definition.
Well the girl wasn't authorised to distribute the songs, so surely it doesn't matter who she distributed them to?
Well, this is the State of Massachusetts, not Congress...
For myself, there are two "luxuries" that actually really are worth the money you spend on them: shoes and beds.
While I personally believe that it's perfectly possible to get long-lasting, comfortable footwear for a reasonable price (though thinking about it $100 is roughly £50 which sounds about right), I agree 100% with the bed. Over the years I had a series of beds ranging from ordinary to down-right uncomfortable. A few years ago my then gf was having back problems, so we bought a fairly expensive bed and mattress. It is the single most comfortable bed I have ever had - I love it, and consider it to be money very well spent indeed.