Companies that make money from this service should probably be paying something.
They are paying something. They are paying in the form of jobs and GDP. That's kind of how the relationship between enterprises and governments work. They provide jobs, jobs provide taxation revenue, revenue provides infrastructure, good infrastructure attacks more companies which provides jobs, etc etc.
How about you stop being pedantic on what the background information means, and either helpfully answer the (fairly easy to understand) question or decide you have nothing useful to add to the conversation and not try to.
Actually he may be the only person so far who has something meaningful to add. *OMG I WAS HACKED HOW DO I STOP* is not an question that anyone can answer without further details. For all anyone knows every solution in this thread right now may have the same holes and present the same risk.
Asking someone to clarify a question is not about being pedantic. Its the common sense lacking in so many technical people who love jumping to solutions or conclusions without ever considering if the problem actually exists.
roll in with your clever meta-answers
Where you saw a clever meta-answer, many people saw a very important question in order to suggest a good solution. But you sound like you're more interested in "state of the art" regardless of what "art" is actually being produced or asked for. Here, have some art: https://www.theguardian.com/ar...
Why? There are petty few Windows related security issues that don't exploit some part of the user mode. Out of the box Windows comes with firewalls galore, and most services including filesharing disabled. It automatically updates. It automatically reboots too:-). Without a user to spam the UAC control box or surf porn sites on internet explorer Windows itself is actually pretty damn secure.
It's just so damn hard to convince people to leave it that way.
Now let's flip it around. Linux has a 90% market share and Windows has 2% of experts using it. You can't honestly say that half the computer users won't have logged in as root, and chmod 777 -r * because something didn't work.
Linux's biggest fault is it gives you so much rope you can hang yourself. It's biggest success is that most people currently picking up that rope understand that if they put it around their neck it is bad for them.
Eye halve a spelling chequer It came with my pea sea It plainly marques four my revue Miss steaks eye kin knot sea. Eye strike a quay and type a word And weight four it two say Weather eye am wrong oar write It shows me strait a weigh. As soon as a mist ache is maid It nose bee fore two long And eye can put the error rite Its really ever wrong. Eye have run this poem threw it I am shore your pleased two no Its letter perfect in it's weigh My chequer tolled me sew.
After this population decline will there still be more people?
Yep.
Was the US, Japan, Italy, the UK, Germany under populated 100 years ago?
Nope.
so... Problem?
The problem is not a problem providing the population is evenly distributed. Unfortunately there was an event of sorts around the 40s which reduced the population. Shortly after there was a birth rate so high that it became the defining name of a generation. When that slug of population hits retirement it places an incredible strain on the government which suddenly supports a chunk of a population contributing few taxes, very little GDP, all while putting upwards pressure on social care.
Looking at something in absolute numbers is the single worst way to make a decision about anything.
Increase your population by over 1% a year, we do! It's fantastic.
The Aussie model? You mean this one:
“I encourage people who can, if you have the opportunity, if you’re young enough, to have one for mum, one for dad and one for the country” - Costello in May, 2006, after introducing the baby bonus.
By the way sustainability is precisely why a lot of western countries are desperate to keep their population growing. Or did you forget what happened post war, and just how close those people are getting to retirement at which point they cease becoming productive members of society beyond paying GST on the food they consume?
Or maybe I just do not care about these things. Like at all. No, not even a bit.
I hope you're not an engineer. The way the result of some design affects the minds of those people who will use it should matter to you a lot. It can mean the difference between a paycheck and a lawsuit. Anyone who's job it is to create something for someone should at least take a marginal interest in how the brain can turn their work against them.
Nope, that's just stupid. It's blatantly "brain storm" (or "grain stall", it is really bad quality), there is nothing even remotely resempling "needle" in there.
... I heard green needle. Played it back 10 times and I can't find brain storm in there anywhere.
Writing things in ALL CAPS does not torpedo anything. You effectively admitted yourself that there's a very very narrow set of cases where this will make a difference... kind of like the very narrow set of cases where the word "Secure" makes a difference.
Point is, bumpers mattered in the 60s, just like DV certificates and the word secure mattered in the 90s. However when we made crumple zones, bumpers effectively ceased mattering, and when we moved to EV certification in 2005 combined with the fact that it is now rare to not access a secure site with even fraudsters happily getting DV certificates, the word Secure ceases mattering too.
We're not telling anyone to do any more work or telling anyone to change any practices. What we are doing is trying to roll back the stupid suggestion that an encrypted channel implies complete trust. It was a broken suggestion to the users and has nothing to do with the trusted authorities.
I think what you are upset about is that the CAs are a note arbiter of good character. There have been very few cases of certificates miss issued or trust problems with CAs. The fact that these issues where CAs have been miss trusted have been dealt with quickly and efficiently through revocation processes is a testament to just how well it has worked. However that doesn't stop someone issuing a DV certificate to www.paiypal.com and really it shouldn't.
It was never about ensuring the host on the other end is who you think it is, and it never will be.
Actually it has been precisely about that since 2005.
Maybe when CAs fuck up EV certs so badly in 2020 the clowns decide we need EV+ or EV2 certs you'll realize this.
Or maybe everything will work fine and you can stop running around flapping your undersized wings shouting the sky is falling.
Now that the brakes work most of the time we can take the bumpers off the cars? Goofballs.
Good analogy. Bumpers do fuck all to save lives. They are disposable pieces of plastic that don't dampen any crash impact with all of the life saving features of cars having been transferred to the crumple zones in the body.
What? Did your analogy not got the way you wanted it to? Flashing the word "Secure" for www.payipal.com is not good security practice. It's confusing to the users to tell them to not type their password in on pages that say Secure. Instead add a tiny indication showing encryption status, focus the user on Extended Validation credentials, and maybe we can undo the horrible screwup of teaching users shitty security practices we started in the 90s that have exposed so many people to fraud.
So care to justify what makes it so stupid? Or are you going to repeat the shitty advice of the late 90s that says if you see the the word "Secure" just go ahead and type all your credit cards in? Because that worked a treat!/sarcasm
HTTPS is not security. Desensitizing people to the word "secure" is not security. We should be focusing on indications of proper EV certificates rather than confusing users.
You mean like the exclamation mark that is drawn on an insecure webpage, the one which when you click says in bright red "Your connection to this site is not secure" Is that the insecure indicator you are talking about?
It's just interesting knowledge. If you choose to believe that rust-removal systems shouldn't be ingested, then you can avoid ketchup.
That's what I keep telling people when I have my morning cup of Benzine. It's only a risk if you chose to believe that cancer causing substances cause cancer when ingested.
As a product liability issue, if I were selling physical products in California, I'd be tempted to put a warning label on everything I sold, regardless of whether they said I had to.
Reading this post gave me cancer. Expect a lawsuit.
The incompetence Microsoft is showing at the moment really knows no bounds. It is one thing to offload your quality control to an insider program of free labour but then it's quite another to not to actually listen to any of the responses.
The problem that affected the Spring Creator's Update which caused it to be pulled in the last minute was identified in 4 separate reports months earlier by the insiders. After fixing it the insider release was so short basically any new bugs were unable to be reported.
And now this. A problem that affects a large group of SSDs including the 2017 Surface Pro. Microsoft's premier hardware product.
It's one thing to offload widespread testing onto customers. It's quite another to screw up your most premium of products. This is no longer lack of quality control, this is sheer and utter incompetence.
It looks like the SSDs that stuck to the standard drivers and interfaces did not run into any problems at all. Basically this only impacted drives that used custom drivers.
I like the way that they give you a little frowny face when Windows crashes:-(. It's about time that MS outsourced manufacture of all hardware to Mattel. Then the entire ecosystem would at least be correctly represented.
Companies that make money from this service should probably be paying something.
They are paying something. They are paying in the form of jobs and GDP. That's kind of how the relationship between enterprises and governments work. They provide jobs, jobs provide taxation revenue, revenue provides infrastructure, good infrastructure attacks more companies which provides jobs, etc etc.
How about you stop being pedantic on what the background information means, and either helpfully answer the (fairly easy to understand) question or decide you have nothing useful to add to the conversation and not try to.
Actually he may be the only person so far who has something meaningful to add. *OMG I WAS HACKED HOW DO I STOP* is not an question that anyone can answer without further details. For all anyone knows every solution in this thread right now may have the same holes and present the same risk.
Asking someone to clarify a question is not about being pedantic. Its the common sense lacking in so many technical people who love jumping to solutions or conclusions without ever considering if the problem actually exists.
roll in with your clever meta-answers
Where you saw a clever meta-answer, many people saw a very important question in order to suggest a good solution. But you sound like you're more interested in "state of the art" regardless of what "art" is actually being produced or asked for. Here, have some art: https://www.theguardian.com/ar...
Wrong. Worst would be any windows solutions.
Why? There are petty few Windows related security issues that don't exploit some part of the user mode. Out of the box Windows comes with firewalls galore, and most services including filesharing disabled. It automatically updates. It automatically reboots too :-). Without a user to spam the UAC control box or surf porn sites on internet explorer Windows itself is actually pretty damn secure.
It's just so damn hard to convince people to leave it that way.
Now let's flip it around. Linux has a 90% market share and Windows has 2% of experts using it. You can't honestly say that half the computer users won't have logged in as root, and chmod 777 -r * because something didn't work.
Linux's biggest fault is it gives you so much rope you can hang yourself. It's biggest success is that most people currently picking up that rope understand that if they put it around their neck it is bad for them.
Eye halve a spelling chequer
It came with my pea sea
It plainly marques four my revue
Miss steaks eye kin knot sea.
Eye strike a quay and type a word
And weight four it two say
Weather eye am wrong oar write
It shows me strait a weigh.
As soon as a mist ache is maid
It nose bee fore two long
And eye can put the error rite
Its really ever wrong.
Eye have run this poem threw it
I am shore your pleased two no
Its letter perfect in it's weigh
My chequer tolled me sew.
After this population decline will there still be more people?
Yep.
Was the US, Japan, Italy, the UK, Germany under populated 100 years ago?
Nope.
so... Problem?
The problem is not a problem providing the population is evenly distributed. Unfortunately there was an event of sorts around the 40s which reduced the population. Shortly after there was a birth rate so high that it became the defining name of a generation. When that slug of population hits retirement it places an incredible strain on the government which suddenly supports a chunk of a population contributing few taxes, very little GDP, all while putting upwards pressure on social care.
Looking at something in absolute numbers is the single worst way to make a decision about anything.
Increase your population by over 1% a year, we do! It's fantastic.
The Aussie model? You mean this one:
“I encourage people who can, if you have the opportunity, if you’re young enough, to have one for mum, one for dad and one for the country” - Costello in May, 2006, after introducing the baby bonus.
By the way sustainability is precisely why a lot of western countries are desperate to keep their population growing. Or did you forget what happened post war, and just how close those people are getting to retirement at which point they cease becoming productive members of society beyond paying GST on the food they consume?
Or maybe I just do not care about these things. Like at all. No, not even a bit.
I hope you're not an engineer. The way the result of some design affects the minds of those people who will use it should matter to you a lot. It can mean the difference between a paycheck and a lawsuit. Anyone who's job it is to create something for someone should at least take a marginal interest in how the brain can turn their work against them.
Nope, that's just stupid. It's blatantly "brain storm" (or "grain stall", it is really bad quality), there is nothing even remotely resempling "needle" in there.
... I heard green needle. Played it back 10 times and I can't find brain storm in there anywhere.
What? Does conceptual thinking evade you?
Given the way the conversation went I would postulate precisely the opposite.
Now that the analogy has been properly torpedoed
Writing things in ALL CAPS does not torpedo anything. You effectively admitted yourself that there's a very very narrow set of cases where this will make a difference... kind of like the very narrow set of cases where the word "Secure" makes a difference.
Point is, bumpers mattered in the 60s, just like DV certificates and the word secure mattered in the 90s. However when we made crumple zones, bumpers effectively ceased mattering, and when we moved to EV certification in 2005 combined with the fact that it is now rare to not access a secure site with even fraudsters happily getting DV certificates, the word Secure ceases mattering too.
er no, that was over ten percent in total.
Wow. So either you suck at Math or have no idea what the PC market actually looks like.
10% Linux Desktop market share.... Oooooh you're just trying a standup routine on me. meh. 2/5 needs work, the joke isn't very funny.
We're not telling anyone to do any more work or telling anyone to change any practices. What we are doing is trying to roll back the stupid suggestion that an encrypted channel implies complete trust. It was a broken suggestion to the users and has nothing to do with the trusted authorities.
I think what you are upset about is that the CAs are a note arbiter of good character. There have been very few cases of certificates miss issued or trust problems with CAs. The fact that these issues where CAs have been miss trusted have been dealt with quickly and efficiently through revocation processes is a testament to just how well it has worked. However that doesn't stop someone issuing a DV certificate to www.paiypal.com and really it shouldn't.
It was never about ensuring the host on the other end is who you think it is, and it never will be.
Actually it has been precisely about that since 2005.
Maybe when CAs fuck up EV certs so badly in 2020 the clowns decide we need EV+ or EV2 certs you'll realize this.
Or maybe everything will work fine and you can stop running around flapping your undersized wings shouting the sky is falling.
You have brain damage. You think the market needs or wants yet another slow piece of shit tablet. Kill yourself for being so stupid.
I didn't know some people were so easy to trigger. Now on this chart, show me where the low priced tablet touched you inappropriately.
Now that the brakes work most of the time we can take the bumpers off the cars? Goofballs.
Good analogy. Bumpers do fuck all to save lives. They are disposable pieces of plastic that don't dampen any crash impact with all of the life saving features of cars having been transferred to the crumple zones in the body.
What? Did your analogy not got the way you wanted it to? Flashing the word "Secure" for www.payipal.com is not good security practice. It's confusing to the users to tell them to not type their password in on pages that say Secure. Instead add a tiny indication showing encryption status, focus the user on Extended Validation credentials, and maybe we can undo the horrible screwup of teaching users shitty security practices we started in the 90s that have exposed so many people to fraud.
Not secure already shows an exclamation mark which when clicked gives you a big red warning text about the connection not being secure.
So care to justify what makes it so stupid? Or are you going to repeat the shitty advice of the late 90s that says if you see the the word "Secure" just go ahead and type all your credit cards in? Because that worked a treat! /sarcasm
HTTPS is not security. Desensitizing people to the word "secure" is not security. We should be focusing on indications of proper EV certificates rather than confusing users.
You mean like the exclamation mark that is drawn on an insecure webpage, the one which when you click says in bright red "Your connection to this site is not secure" Is that the insecure indicator you are talking about?
The latest Raspberry Pi model 3's
Seriously man? The guy is looking to repurpose hardware, how is your first suggestion to give him yet another piece of junk?
What? The first thing I did when I moved out was get a HEPA filter for each room, and clean it weekly.
And you are one of the "very few". I didn't say none, but most people don't have HEPA filter and borderline no one has it in their workplace.
stop or move to some place sane.
Please don't. We don't want their kind here.
It's just interesting knowledge. If you choose to believe that rust-removal systems shouldn't be ingested, then you can avoid ketchup.
That's what I keep telling people when I have my morning cup of Benzine. It's only a risk if you chose to believe that cancer causing substances cause cancer when ingested.
As a product liability issue, if I were selling physical products in California, I'd be tempted to put a warning label on everything I sold, regardless of whether they said I had to.
Reading this post gave me cancer. Expect a lawsuit.
The incompetence Microsoft is showing at the moment really knows no bounds. It is one thing to offload your quality control to an insider program of free labour but then it's quite another to not to actually listen to any of the responses.
The problem that affected the Spring Creator's Update which caused it to be pulled in the last minute was identified in 4 separate reports months earlier by the insiders. After fixing it the insider release was so short basically any new bugs were unable to be reported.
And now this. A problem that affects a large group of SSDs including the 2017 Surface Pro. Microsoft's premier hardware product.
It's one thing to offload widespread testing onto customers. It's quite another to screw up your most premium of products. This is no longer lack of quality control, this is sheer and utter incompetence.
It looks like the SSDs that stuck to the standard drivers and interfaces did not run into any problems at all. Basically this only impacted drives that used custom drivers.
Like the 2017 Surface Pro.
I like the way that they give you a little frowny face when Windows crashes :-(. It's about time that MS outsourced manufacture of all hardware to Mattel. Then the entire ecosystem would at least be correctly represented.