That's a good point and something we will look at. Should we weight firehose voting more heavily so that highly voted stories make the front page regardless of an editor?
That would make me nervous. Is there already some sort of firehose widget that can show the top stories in firehose?
To address "helping people post quality front page material", there may be room for a stackoverflow-style editing system. Maybe allow high karma users with a good moderating history to make edits (attributed to the user)? Could work well with simple guidelines and something akin to metamoderation.
Or just get a few more trusted editors and have them actually edit.
For RAID-5, the big issue is "lose a drive on a large-enough array and you could be looking at an unrecoverable read error during the array recovery".
This gets repeated a lot, but isn't a problem for any halfway decent RAID setup because they slowly read data from the drives in the background (called patrol read on LSI/Dell controllers). The chances of a problem with a drive not turning up in one of the numerous patrol reads yet happening during a recovery are astronomically small.
I'm not sure how you define "astronomically", but I've seen this more than a few times in my career. And it has become increasingly common with larger disks and larger arrays.
RAID 5 is decent for availability... but you'd better be able to restore from your backups. RAID 6 should be the default these days (though I prefer ZFS RAIDZ2 or RAIDZ3). And don't be one of those idiots who makes a 32-disk, 192 TB RAID5 (or 6 for that matter).
Secretary Clinton has stated in at least one interview that when she asked her aides to strip the headings, she meant for them to send only the unclassified information. While something like that is suspicious, I'm sure that it was followed up on by the appropriate investigators, and the fact that no one has been indicted means that whatever was done in that instance was not enough to charge anyone.
Anyone who has ever handled classified information knows better. The sanitization process is not just "strip the headings and obviously classified stuff". You have to be much more thorough.
Consider the following:
(TS//SI//DONTFKNSHARE) __ indicates the DPRK is suffering severe famine and ___ is plotting a coup.
(U) ___ is widely believed second in line for the throne
(U) Korea has not had a serious coup attempt since the last widescale famine in...
A bit of a dramatization, but if anyone in the military or intelligence communities pulled this shit they would be rotting in prison.
Hillary Clinton does not currently hold an office or position that would put her in possession of classified information. The idea that her answer was given to save face for being called on her previous bullshit is the most likely scenario.
I'd say she still has access to a lot of people who do have access to classified information, and she probably has advisors who had access very recently...
I wouldn't be so quick to rule out her having access to classified information.
Though her comment on this is reprehensible either way. Either she just leaked classified information to save face, or she is pretending to leak classified information to save face.
I also click on the lastpass icon to login... not sure how anyone could fake the login modal coming out of the extension like that. I'm guessing this doesn't apply to me because I'd hit cancel and go to my normal method.
How hard would it be for an attacker to disable LastPass and replace it with a pixel perfect look alike?
That is a good point. I suppose we are relying on Chrome's security to prevent an attacker from completely replacing the extension itself.
Obviously, mimicking its icon and dialog window would be easy enough.
Then again, if they can do that on my machine they can probably already read passwords from memory or keyboard input? So now I'm just relying on my 2FA
Either you can remember a lot of passwords or you can't. If you can't, just use the same password everywhere. It's as effective as using a "master" password.
Putting 2fa on the vault seems like a sane thing to do... Also it's fewer places that can leak your "master" password... Ie. only lastpass has your master password, so it's only if they get compromised that it is leaked...And they hopefully hash passwords properly... Can't say I believe every other random site hashes passwords correctly.
Also once the browser session is authenticated you shouldn't need to do lastpass again, right?... So you type your master password fewer times.
Honestly, I've been planning to move to password manageing system... like lastpass. It doesn't magically fix all attack vectors, but reduces a lot.
^ This. I have 2FA on my email and on lastpass. Email and LastPass both have separate passwords. I also have 2FA on the banks I care about. I also receive instant text/email about significant transactions.
Every site has its own, extremely complex unique password. Most of the sites I really care about also require email confirmation of any security-significant changes.
So to really do anything with my accounts, you need all of my lastpass passwords, my 2FA for email, my email password, and you have to do it in such a way that I won't notice (either receiving the email notifications or losing access to my email) before I can stop you.
I'll call this "good enough"
I also click on the lastpass icon to login... not sure how anyone could fake the login modal coming out of the extension like that. I'm guessing this doesn't apply to me because I'd hit cancel and go to my normal method.
I have been very clear about my disdain for Hillary over the last decade. So don't lump me in with her supporters.
If forced to pick between her and Trump, I will swallow my pride and vote for her. Most of the left feels the same way (or they just won't vote). She's our Romney, and I am convinced Dems will lose if she is nominated.
I agree there are different kinds of lies. That's my problem with the current Republican candidates. Hillary lies to protect herself, but she at least shows respect for facts and thinks facts matter in political discourse.
Trump, in contrast, completely lies about just about everything. You don't think whipping up a populist frenzy over "immigrant rapists" is actually important?
I hate to agree with the troll, but your whole "DNC Plantation" attack really undermines your credibility as someone who cares about racism.
But just to be clear, you're also lying like a dirty politician.
1) Bernie Sanders is not rich ($700k net worth). Marco Rubio has less ($100k last I saw).
2) "lying", that claim can also be fact-checked. Fact-checking consistently shows that Sanders and Clinton lie significantly less than the Republican candidates. Even if you exclude Trump from the GOP numbers.
I know, I know, facts are controlled by the Masons/Illuminati/Jew/Hollywood so you have to go with your gut instead of the facts, but the GOP candidates really are lying sacks of shit. Dems generally respect facts, though they can misrepresent them.
I hear this a lot... which makes me think there must be a ton of really competent, socially well-adjusted developers just dying to find a good job.
Then I have to conduct interviews. Maybe it's just HR sending bad candidates (at every company), but I consistently see very low quality candidates. You know the type, brags of their Python experience, yet has never heard "list comprehension", "generator", or anything that begins with "PEP". I find very few who can both code something as "complex" as fizzbuzz and explain their solution.
And yes, salaries are very competitive and my current company has great work-life balance.
First, my response was intended to be more tongue in cheek than anything. I don't really care.
Second, "guys getting viruses from trying to view porn" is a stereotype even if it also happens to be a real life example. I think everyone who worked in IT in the 90s or 2000s knows that is a stereotype based on something that really happens.
My point is that you're countering one gender stereotype with another gender stereotype, which holds even if it's inadvertent or you also have an anecdote. You may as well have said "women aren't that bad of drivers, I have a bunch of Asian friends who are terrible".
All that said, it's hard to argue against stereotypes. Personal anecdotes have the same biases as stereotypes. I'd prefer multiple studies with large sample sizes.
One actual use case: a lot of waiters, waitresses, and other service workers are not allowed to check their phones at work. They are, however, allowed to wear a watch and glance at it.
Somebody recently told me his girlfriend loved hers because she could read messages at work as they came in.
I didn't RTFA, but if UTM9 is anything like Pfsense, it could be either. There's no reason you can't run a firewall in a type 2 hypervisor (e.g. Windows running VMware).
I've done this with Pfsense in a pinch. Also done it in ESXi (type 1) plenty often. Running the firewall in a VM on two different boxes is also a pretty cheap/easy way to get firewall HA.
Women are not any worse than men when it comes to security and apps. At my (small) office, the opposite is true, it is always the guys getting viruses, usually from trying to check out porn.
I like how you used one gender stereotype to counter another gender stereotype.
DevOps here. A straight DevOps position in the bay area/silicon valley is higher salary than pure ops or pure dev. And my experience has been that it doesn't displace devs.
It is about a methodology that is largely abused by companies who are trying to "hire devops". But I'd argue good talent should interpret that as hiring an internal consultant / devops evangelist and act accordingly.
You can't code if you're doing sysadmin work, and you can't do sysadmin work if you're coding.
You can't do DevOps if you're not coding, and you can't do DevOps if you're not managing system deployments the same way you're managing code deployments. And you can't do either well at scale without tight integration of the two.
Sixth, there is no means in any current MDM to enable or perform any type of screen sharing or access anything like cameras or other electronics.
Bottom line, MDMs are quite limited in their ability to do any snooping of any user data. The worst that can happen is someone issuing a remote erase command or device lock command. Nothing more invasive can be done.
How does TeamViewer's mobile app fit in with that? I'm guessing different because the user has to agree to some sort of pop-up?
Just curious. I know they advertise some of that functionality, but I never got around to demoing it.
I use Atom (and TextMate before that). It works fine with rmate, just have to do port forwarding on ssh. I use the rmate bash script so I don't have to install anything else on remote servers.
Too late. "Begging the question" has now entered common usage as meaning "raises the question." You can keep jousting at that windmill or accept the reality that it has two definitions and the stupider one is the prevalent one.
And "literally" has now entered common usage to mean "illiterally". But people who use it that way are still literally ignorant.
Sudafed has 120mg of PE HCI. That seems to be more than 10mg in the study?
Anyway, decongestants with PE are the only ones that work for me. I really don't know why so many people here are saying it doesn't do anything. And no, it's not the placebo effect for me.
Reactions to drugs vary widely. Morphine doesn't work for everybody, but it works for most. PE doesn't work everybody, but it also doesn't seem to work for many.
When a drug has no effect for most people, people are allowed to say "drug does not work" rather than "drug does not work for most people, except for a few ACs on slashdot who say it works for them"
The general vibe I've gotten from other peers is to stay away from Dell Storage with a 10ft pole, but EMC hardware was pretty good for traditional storage.
If I was you it's those peers I'd stay away with a 10ft pole, and this for two reasons:
1) Dell has sold Dell-branded EMC hardware since forever
2) Any of the few acquisitions made by Dell in the storage space over the last 10 years is absolute science-fiction compared to "bleeding edge" EMC
EMC is a terrible company and they have dragged VMWare down. Hopefully Dell can salvage it.
Isilon is still good. It's basically everything I like about ZFS... with clustering. I'm not saying it's cheap, or that it's always the best solution, but Isilon is damned good at what it does.
I'm curious to see what Dell does with it. And how long Isilon can keep using supermicro when they're part of Dell.
My father, who's 87, has smoked since he was 12. He started rolling his own and smoked Camels, sometimes two packs a day. Yeah he's one of those data points that contradict what we're being told and know but there he is still.
A friend has done research on this. The latest indicates that your father likely has really, really good genes that have done a great job of protecting him from the ill effects... but that he'd still be better off if he hadn't smoked at all.
And yeah, I'm waiting for the Cheeto Man ads. Pictures of attractive, skinny women eating big juicy burgers come close, though.
Why? How "unixy" Linux or MacOS is is a really rather tired argument by now, isn't? Having cut my unix teeth on Solaris, AIX, and HP-UX, seems like I should be able to tell how "unixy" something is. I have MacOS because of my work, but I hate it. It doesn't really fee like unix to me at all, and I have a hard time understanding how "unixy" it really is since the kernel is a heavily modified mach clone. But whatever, just saying your reasoning on how "unixy" Mac is seems a bit strained to me, even with a big web page with small characters explaining how "unixy" it is.
The point of my post was more to correct the semantics in the discussion than to debate how unixy either OS is. Mac, Linux, *BSD, and Solaris are all sufficiently unixy for me. But I'm not a real neckbeard--I never used AIX or HP-UX.
By "the distinction should be maintained" I meant the distinction between OS and GUI. Why not? GUIs are interchangeable and optional. I do the vast majority of my work in terminal, my cross-platform text editor, and a browser. I care a lot more about how the OS handles path resolution, variables, ssh, port forwarding over ssh, symlinks, shell expansion, regex, etc. than crap like launchctl or X. Is there even a POSIX standard or anything similar regarding windowing systems?
I'd agree that Mac doesn't "feel" Unixy. But in my experience, it implements the standard reliably enough. I'm curious where it falls short for you (aside from personal dislike, which I totally get).
If you haven't read the standards, you might want to glance at IEEE Std 1003.1, 2013.
Slashdot Mirror
That's a good point and something we will look at. Should we weight firehose voting more heavily so that highly voted stories make the front page regardless of an editor?
That would make me nervous. Is there already some sort of firehose widget that can show the top stories in firehose?
To address "helping people post quality front page material", there may be room for a stackoverflow-style editing system. Maybe allow high karma users with a good moderating history to make edits (attributed to the user)? Could work well with simple guidelines and something akin to metamoderation.
Or just get a few more trusted editors and have them actually edit.
For RAID-5, the big issue is "lose a drive on a large-enough array and you could be looking at an unrecoverable read error during the array recovery".
This gets repeated a lot, but isn't a problem for any halfway decent RAID setup because they slowly read data from the drives in the background (called patrol read on LSI/Dell controllers). The chances of a problem with a drive not turning up in one of the numerous patrol reads yet happening during a recovery are astronomically small.
I'm not sure how you define "astronomically", but I've seen this more than a few times in my career. And it has become increasingly common with larger disks and larger arrays.
RAID 5 is decent for availability... but you'd better be able to restore from your backups. RAID 6 should be the default these days (though I prefer ZFS RAIDZ2 or RAIDZ3). And don't be one of those idiots who makes a 32-disk, 192 TB RAID5 (or 6 for that matter).
They were not classified when she dealt with them.
Why do you post false information?
Your lie has been debunked at least a thousand times on slashdot. Why do you keep reposting it?
Secretary Clinton has stated in at least one interview that when she asked her aides to strip the headings, she meant for them to send only the unclassified information. While something like that is suspicious, I'm sure that it was followed up on by the appropriate investigators, and the fact that no one has been indicted means that whatever was done in that instance was not enough to charge anyone.
Anyone who has ever handled classified information knows better. The sanitization process is not just "strip the headings and obviously classified stuff". You have to be much more thorough.
Consider the following:
(TS//SI//DONTFKNSHARE) __ indicates the DPRK is suffering severe famine and ___ is plotting a coup.
(U) ___ is widely believed second in line for the throne
(U) Korea has not had a serious coup attempt since the last widescale famine in...
A bit of a dramatization, but if anyone in the military or intelligence communities pulled this shit they would be rotting in prison.
Hillary Clinton does not currently hold an office or position that would put her in possession of classified information. The idea that her answer was given to save face for being called on her previous bullshit is the most likely scenario.
I'd say she still has access to a lot of people who do have access to classified information, and she probably has advisors who had access very recently...
I wouldn't be so quick to rule out her having access to classified information.
Though her comment on this is reprehensible either way. Either she just leaked classified information to save face, or she is pretending to leak classified information to save face.
I also click on the lastpass icon to login... not sure how anyone could fake the login modal coming out of the extension like that. I'm guessing this doesn't apply to me because I'd hit cancel and go to my normal method.
How hard would it be for an attacker to disable LastPass and replace it with a pixel perfect look alike?
That is a good point. I suppose we are relying on Chrome's security to prevent an attacker from completely replacing the extension itself.
Obviously, mimicking its icon and dialog window would be easy enough.
Then again, if they can do that on my machine they can probably already read passwords from memory or keyboard input? So now I'm just relying on my 2FA
Either you can remember a lot of passwords or you can't. If you can't, just use the same password everywhere. It's as effective as using a "master" password.
Putting 2fa on the vault seems like a sane thing to do... Also it's fewer places that can leak your "master" password... Ie. only lastpass has your master password, so it's only if they get compromised that it is leaked.. .And they hopefully hash passwords properly... Can't say I believe every other random site hashes passwords correctly.
Also once the browser session is authenticated you shouldn't need to do lastpass again, right?... So you type your master password fewer times.
Honestly, I've been planning to move to password manageing system... like lastpass. It doesn't magically fix all attack vectors, but reduces a lot.
^ This. I have 2FA on my email and on lastpass. Email and LastPass both have separate passwords. I also have 2FA on the banks I care about. I also receive instant text/email about significant transactions.
Every site has its own, extremely complex unique password. Most of the sites I really care about also require email confirmation of any security-significant changes.
So to really do anything with my accounts, you need all of my lastpass passwords, my 2FA for email, my email password, and you have to do it in such a way that I won't notice (either receiving the email notifications or losing access to my email) before I can stop you.
I'll call this "good enough"
I also click on the lastpass icon to login... not sure how anyone could fake the login modal coming out of the extension like that. I'm guessing this doesn't apply to me because I'd hit cancel and go to my normal method.
I have been very clear about my disdain for Hillary over the last decade. So don't lump me in with her supporters.
If forced to pick between her and Trump, I will swallow my pride and vote for her. Most of the left feels the same way (or they just won't vote). She's our Romney, and I am convinced Dems will lose if she is nominated.
I agree there are different kinds of lies. That's my problem with the current Republican candidates. Hillary lies to protect herself, but she at least shows respect for facts and thinks facts matter in political discourse.
Trump, in contrast, completely lies about just about everything. You don't think whipping up a populist frenzy over "immigrant rapists" is actually important?
I hate to agree with the troll, but your whole "DNC Plantation" attack really undermines your credibility as someone who cares about racism.
But just to be clear, you're also lying like a dirty politician.
1) Bernie Sanders is not rich ($700k net worth). Marco Rubio has less ($100k last I saw).
2) "lying", that claim can also be fact-checked. Fact-checking consistently shows that Sanders and Clinton lie significantly less than the Republican candidates. Even if you exclude Trump from the GOP numbers.
I know, I know, facts are controlled by the Masons/Illuminati/Jew/Hollywood so you have to go with your gut instead of the facts, but the GOP candidates really are lying sacks of shit. Dems generally respect facts, though they can misrepresent them.
I hear this a lot... which makes me think there must be a ton of really competent, socially well-adjusted developers just dying to find a good job.
Then I have to conduct interviews. Maybe it's just HR sending bad candidates (at every company), but I consistently see very low quality candidates. You know the type, brags of their Python experience, yet has never heard "list comprehension", "generator", or anything that begins with "PEP". I find very few who can both code something as "complex" as fizzbuzz and explain their solution.
And yes, salaries are very competitive and my current company has great work-life balance.
First, my response was intended to be more tongue in cheek than anything. I don't really care.
Second, "guys getting viruses from trying to view porn" is a stereotype even if it also happens to be a real life example. I think everyone who worked in IT in the 90s or 2000s knows that is a stereotype based on something that really happens.
My point is that you're countering one gender stereotype with another gender stereotype, which holds even if it's inadvertent or you also have an anecdote. You may as well have said "women aren't that bad of drivers, I have a bunch of Asian friends who are terrible".
All that said, it's hard to argue against stereotypes. Personal anecdotes have the same biases as stereotypes. I'd prefer multiple studies with large sample sizes.
One actual use case: a lot of waiters, waitresses, and other service workers are not allowed to check their phones at work. They are, however, allowed to wear a watch and glance at it.
Somebody recently told me his girlfriend loved hers because she could read messages at work as they came in.
I didn't RTFA, but if UTM9 is anything like Pfsense, it could be either. There's no reason you can't run a firewall in a type 2 hypervisor (e.g. Windows running VMware).
I've done this with Pfsense in a pinch. Also done it in ESXi (type 1) plenty often. Running the firewall in a VM on two different boxes is also a pretty cheap/easy way to get firewall HA.
Because he is a sexist douchebag.
Women are not any worse than men when it comes to security and apps. At my (small) office, the opposite is true, it is always the guys getting viruses, usually from trying to check out porn.
I like how you used one gender stereotype to counter another gender stereotype.
I'm not arguing the point (because I agree on this one), but your post reminded me of Spurious Correlations.
DevOps here. A straight DevOps position in the bay area/silicon valley is higher salary than pure ops or pure dev. And my experience has been that it doesn't displace devs.
It is about a methodology that is largely abused by companies who are trying to "hire devops". But I'd argue good talent should interpret that as hiring an internal consultant / devops evangelist and act accordingly.
You can't code if you're doing sysadmin work, and you can't do sysadmin work if you're coding.
You can't do DevOps if you're not coding, and you can't do DevOps if you're not managing system deployments the same way you're managing code deployments. And you can't do either well at scale without tight integration of the two.
WGU? Not exactly the most demanding school, but congratulations on finally finishing your bachelor's.
Or maybe we could acknowledge a few facts instead of being condescending dicks.
FTR, most of my friends under 35 rent, and the majority of them have graduate or postgraduate educations.
Sixth, there is no means in any current MDM to enable or perform any type of screen sharing or access anything like cameras or other electronics.
Bottom line, MDMs are quite limited in their ability to do any snooping of any user data. The worst that can happen is someone issuing a remote erase command or device lock command. Nothing more invasive can be done.
How does TeamViewer's mobile app fit in with that? I'm guessing different because the user has to agree to some sort of pop-up?
Just curious. I know they advertise some of that functionality, but I never got around to demoing it.
I use Atom (and TextMate before that). It works fine with rmate, just have to do port forwarding on ssh. I use the rmate bash script so I don't have to install anything else on remote servers.
Too late. "Begging the question" has now entered common usage as meaning "raises the question." You can keep jousting at that windmill or accept the reality that it has two definitions and the stupider one is the prevalent one.
And "literally" has now entered common usage to mean "illiterally". But people who use it that way are still literally ignorant.
Sudafed has 120mg of PE HCI. That seems to be more than 10mg in the study?
Anyway, decongestants with PE are the only ones that work for me. I really don't know why so many people here are saying it doesn't do anything. And no, it's not the placebo effect for me.
Reactions to drugs vary widely. Morphine doesn't work for everybody, but it works for most. PE doesn't work everybody, but it also doesn't seem to work for many.
When a drug has no effect for most people, people are allowed to say "drug does not work" rather than "drug does not work for most people, except for a few ACs on slashdot who say it works for them"
As an Ansible fan and user, that is comforting to hear. Also gives me some hope they'll open source Tower.
The general vibe I've gotten from other peers is to stay away from Dell Storage with a 10ft pole, but EMC hardware was pretty good for traditional storage.
If I was you it's those peers I'd stay away with a 10ft pole, and this for two reasons:
1) Dell has sold Dell-branded EMC hardware since forever
2) Any of the few acquisitions made by Dell in the storage space over the last 10 years is absolute science-fiction compared to "bleeding edge" EMC
EMC is a terrible company and they have dragged VMWare down. Hopefully Dell can salvage it.
Isilon is still good. It's basically everything I like about ZFS... with clustering. I'm not saying it's cheap, or that it's always the best solution, but Isilon is damned good at what it does.
I'm curious to see what Dell does with it. And how long Isilon can keep using supermicro when they're part of Dell.
My father, who's 87, has smoked since he was 12. He started rolling his own and smoked Camels, sometimes two packs a day. Yeah he's one of those data points that contradict what we're being told and know but there he is still.
A friend has done research on this. The latest indicates that your father likely has really, really good genes that have done a great job of protecting him from the ill effects... but that he'd still be better off if he hadn't smoked at all.
And yeah, I'm waiting for the Cheeto Man ads. Pictures of attractive, skinny women eating big juicy burgers come close, though.
...but the distinction should be maintained.
Why? How "unixy" Linux or MacOS is is a really rather tired argument by now, isn't? Having cut my unix teeth on Solaris, AIX, and HP-UX, seems like I should be able to tell how "unixy" something is. I have MacOS because of my work, but I hate it. It doesn't really fee like unix to me at all, and I have a hard time understanding how "unixy" it really is since the kernel is a heavily modified mach clone. But whatever, just saying your reasoning on how "unixy" Mac is seems a bit strained to me, even with a big web page with small characters explaining how "unixy" it is.
The point of my post was more to correct the semantics in the discussion than to debate how unixy either OS is. Mac, Linux, *BSD, and Solaris are all sufficiently unixy for me. But I'm not a real neckbeard--I never used AIX or HP-UX.
By "the distinction should be maintained" I meant the distinction between OS and GUI. Why not? GUIs are interchangeable and optional. I do the vast majority of my work in terminal, my cross-platform text editor, and a browser. I care a lot more about how the OS handles path resolution, variables, ssh, port forwarding over ssh, symlinks, shell expansion, regex, etc. than crap like launchctl or X. Is there even a POSIX standard or anything similar regarding windowing systems?
I'd agree that Mac doesn't "feel" Unixy. But in my experience, it implements the standard reliably enough. I'm curious where it falls short for you (aside from personal dislike, which I totally get).
If you haven't read the standards, you might want to glance at IEEE Std 1003.1, 2013.