The US is closer to legalizing than the EU is. Some states allow it and the Feds aren't making it a priority to enforce the national laws. After one more generation of voting old fogies kicks off...
Re:application security? = fail
on
OpenBSD 4.5 Released
·
· Score: 4, Insightful
Who cares if your browser is jailed? Someone who owns your browser also owns your online banking, stock trading, webmail... you get the picture.
Actually, I disagree with your assertion that knowing which database indexing structures scale in which ways is the same as being intimately familiar. You don't have to know how to implement an algorithm to know its properties.
Further, in some companies it is the job of the DBA, not the app developer, to decide how the database should index some value.
With web apps, it is obvious when the bottleneck is with the DB, and if your datastructures are at all sane, it's dead simple to pick the right DB index by trial and error without even needing to google for the properties of the sorting methods.
So I'm not saying it's worthless to have refined sort-fu but it's not nearly as useful as it was in the old days. Its another one of those "solved" problems that, for the most part, rarely even requires consideration.
ARIN really is the most trustworthy source you could have for a claim like that, though. Sure, many have made the claim before, but this is the next best thing to having Jesus, Moses, Mohamed, Buddha, and Thor all sit down with you around a burning bush and explain the importance of implementing IPv6.
Are you saying cybersex is skillful literary art? If so, I would be amused to see your examples which support this claim. My impression is that this particular form of writing goes something like "im taking off ur shirt. ur sooo hott."
I mean, how well do you think a person could compose using one hand?
This is a great point. Suppose you're being investigated for tax fraud. The UK police order you to provide a password to your encrypted volume. You give the password to the dummy drive. They say "your registry lists S:\foreign accounts.xls as a recently-opened document, yet the password you provided opens a partition with no such file. You're using software which supports two partitions, therefore you must have a second password."
The legal system is not a mathematical proof, and I suspect this would be sufficient imprison you for failure divulge your encryption key (self-incrimination, we call it over here).
Actually, XP does this badly. It's just that corporations have substantial existing investment in tools, scripts, processes, and other workarounds for XP's flaws.
I write web apps. I never have to sort anything, except when I ask the database to give me data in a certain order. Why would it be useful for me to implement and be intimately familiar with sorting algorithms? I haven't used them since college.
No, it is essential to know how they scale, not how/why they work. As software development becomes less of an art and more of an engineering discipline, we will realize that it is impossible to know everything about every component you use, and instead focus on the important properties of those components.
Doesn't anyone care about security? Bluetooth periphs are encrypted and paired. Nobody can snoop what you're doing, and you don't have to worry about your neighbor getting a similar product and having his clicks and keystrokes showing up on your computer.
Add that to the fact that the Bluetooth devices need no dongles for a lot (most?) new hardware, and you have a clear winner.
No, actually, Adobe can't do that. If they want to deploy software to the masses, they need to either make it part of Reader or make it part of Flash. Anything else is bound to fail.
Consolidating this to a single card would be utterly retarded, as it provides both the issuer (the government) and entities that you do business with far more information about you than they need to know,
No, you're wrong. It would provide only identity/authentication information. No more.
I am referring to a strong authentication system. The government would have no control over bank accounts or anything like that. It would simply enable me to prove to my bank that I am me.
None of the security issues you attempt to describe are unique to smartcard-based authentication systems.
Imagine government IDs had contactless smart cards with certificates on them keyed to an ID database managed by the government (for revocation purposes and identity information). Now imagine contactless smart card readers were standard equipment in PCs.
You would just need one card in your wallet to log you in to any computer or web site, make purchases, board planes or trains... anything! No more wasted effort on having a hundred weak authentication cards and passwords. You have one strong authentication method that can't be forged, or at least not without fantastically more effort than forging a check or credit card.
The best way to handle a situation like this is to have an account used only for updateing, have all logs going to a central syslog server, and have a log monitoring system like OSSEC send you alerts whenever the special account is used.
You should never see these alerts, except during maintenance windows.
Slashdot Mirror
The US is closer to legalizing than the EU is. Some states allow it and the Feds aren't making it a priority to enforce the national laws. After one more generation of voting old fogies kicks off...
Who cares if your browser is jailed? Someone who owns your browser also owns your online banking, stock trading, webmail... you get the picture.
Actually, I disagree with your assertion that knowing which database indexing structures scale in which ways is the same as being intimately familiar. You don't have to know how to implement an algorithm to know its properties.
Further, in some companies it is the job of the DBA, not the app developer, to decide how the database should index some value.
With web apps, it is obvious when the bottleneck is with the DB, and if your datastructures are at all sane, it's dead simple to pick the right DB index by trial and error without even needing to google for the properties of the sorting methods.
So I'm not saying it's worthless to have refined sort-fu but it's not nearly as useful as it was in the old days. Its another one of those "solved" problems that, for the most part, rarely even requires consideration.
"Learn to read what other people write before commenting."
Go fuck yourself, you pathetic douchebag.
My understanding of the ruling in the US was that the guy was forced to give up his key only because he initially cooperated with the investigation.
We still have a right against self-incrimination in the states. UK citizens have no such right.
ARIN really is the most trustworthy source you could have for a claim like that, though. Sure, many have made the claim before, but this is the next best thing to having Jesus, Moses, Mohamed, Buddha, and Thor all sit down with you around a burning bush and explain the importance of implementing IPv6.
Are you saying cybersex is skillful literary art? If so, I would be amused to see your examples which support this claim. My impression is that this particular form of writing goes something like "im taking off ur shirt. ur sooo hott."
I mean, how well do you think a person could compose using one hand?
This is a great point. Suppose you're being investigated for tax fraud. The UK police order you to provide a password to your encrypted volume. You give the password to the dummy drive. They say "your registry lists S:\foreign accounts.xls as a recently-opened document, yet the password you provided opens a partition with no such file. You're using software which supports two partitions, therefore you must have a second password."
The legal system is not a mathematical proof, and I suspect this would be sufficient imprison you for failure divulge your encryption key (self-incrimination, we call it over here).
"Cybersex" is not prostitution. It's more like writing erotic poetry (sans skill).
Actually, XP does this badly. It's just that corporations have substantial existing investment in tools, scripts, processes, and other workarounds for XP's flaws.
And if you use that today, the maintenance programmers will kick your ass.
I write web apps. I never have to sort anything, except when I ask the database to give me data in a certain order. Why would it be useful for me to implement and be intimately familiar with sorting algorithms? I haven't used them since college.
No, it is essential to know how they scale, not how/why they work. As software development becomes less of an art and more of an engineering discipline, we will realize that it is impossible to know everything about every component you use, and instead focus on the important properties of those components.
Doesn't anyone care about security? Bluetooth periphs are encrypted and paired. Nobody can snoop what you're doing, and you don't have to worry about your neighbor getting a similar product and having his clicks and keystrokes showing up on your computer.
Add that to the fact that the Bluetooth devices need no dongles for a lot (most?) new hardware, and you have a clear winner.
... and everyone I know has a job, so I'm not surprised.
Today as with a smartcard-based national ID, people who want to leave no digital trails pay cash. Nothing changes in that respect.
No, actually, Adobe can't do that. If they want to deploy software to the masses, they need to either make it part of Reader or make it part of Flash. Anything else is bound to fail.
CSS and tables are not opposites. CSS can be used to style tables.
These days, anyone doing web page development without CSS, tables or no, probably just woke up from a multi-year coma.
No, you're wrong. It would provide only identity/authentication information. No more.
1) PKI systmes have revocation, so you're wrong.
2) A good PKI system would have an online photo database, so you're wrong unless the guy looked like you and you have not had your card revoked
I am referring to a strong authentication system. The government would have no control over bank accounts or anything like that. It would simply enable me to prove to my bank that I am me.
None of the security issues you attempt to describe are unique to smartcard-based authentication systems.
Imagine government IDs had contactless smart cards with certificates on them keyed to an ID database managed by the government (for revocation purposes and identity information). Now imagine contactless smart card readers were standard equipment in PCs.
You would just need one card in your wallet to log you in to any computer or web site, make purchases, board planes or trains... anything! No more wasted effort on having a hundred weak authentication cards and passwords. You have one strong authentication method that can't be forged, or at least not without fantastically more effort than forging a check or credit card.
Enormous economic and security benefit.
According to the BLS, teachers make as much money per hour as mechanical engineers.
You forgot to mention that holographic storage has zero trans fats.
The best way to handle a situation like this is to have an account used only for updateing, have all logs going to a central syslog server, and have a log monitoring system like OSSEC send you alerts whenever the special account is used.
You should never see these alerts, except during maintenance windows.