It's not entirely the app developers' fault. They're not bypassing the PKI wank just out of spite, they're doing it because after having spent hours, possibly days, beating their heads against the wall of PKI they've given up and just want their app to work. The same occurs on an even larger scale in Android, with endless NullTrustFactories and equivalent created out of frustration by developers who just want the damn thing to work without requiring a PhD in computer security as a prerequisite.
So there'd be a lot less of this if the tools that developers were given weren't such a massive pain to use. And by "tools" I don't mean slightly less godawful PKI, I mean alternative, far more effective and functional mechanisms that stay as far away from PKI as possible.
We wanted to verify that the certificate we get from our service is issued by the CA we actually get our certificate from (sometimes called certificate pinning), but Apple only allows this for their own apps. Us third-party, second-class developers have to trust whatever bogus certificate comes over the network. Blame Apple.
Is it just me, or is this the PKI version of "the dog ate my homework", and about as credible? Apple puts a gun to your head and forces you to accept any arbitrary cert that turns up?
It doesn't matter, the Goldman Sachs is too busy acting as an intermediary for selling the treasury bonds to the Fed in order to implement the quantitative easing. Who needs the insider trading when you're running the Grand Central on that gravy train?
It's also not an "Ultra Accessory Connector", it's an "Apple Gratuitously Incompatible And We'll Litigate To Keep It Incompatible Oh Did We Mention Its Incompatible You'll Have To Buy It From Us At 10x The Price Its True So Sad" connector.
I'm puzzled about the fact that they're pitching it as a cost-cutting measure. Won't having to hire people to stand next to the fingerprint readers constantly wiping them with cleaning solution so they continue to function increase rather than decrease costs?
Yeah, true. You do lose some potentially valuable input from people when you moderate strictly, but then it does keep a lot of the dross out, it's a tradeoff. My pet peeve with StackExchange is the "due to low-quality answers, you can't post here because you don't have any pixie points". It's a discussion on the history of Ethiopian pottery in 4000BC, how many pixie points do you expect me to have collected so far on this topic?
Actually my pet peeve is how they absolutely refuse to allow private messaging, despite endless requests going back years for it. Everything else pales into insignificance compared to that global-scale piece of braindamage.
Other people want different problems solved and look at Rust and think "Well that looks a bit inconvenient" and dismiss it, and continue to write browsers and servers and daemons and MTAs and other internet facing things full of security exploits.
Right, because if you use Rust your code will magically become secure, and bug-free, and crash-proof, and all your problems will go away, and Adriana Lima will fall in love with you and have your babies. I've heard similar stuff from other True Believers about their pet languages, e.g. the academic who said that everything should be written in Haskell because it's impossible to write bad code in it (this actually happened!).
You need to balance a lot of things when deciding which language you want to use. We have an infinite number of them, and it's possible to write crap code in all of them. OTOH if you're using something so specialised that you're having trouble finding developers, tools, add-ons, and support infrastructure, then you're losing more than you gain. Which looks to be the case with Rust. Building some specialised app whose environment you control with it is one thing, but a mainstream, cross-platform, mass-market product? Sounds like a recipe for infinite future pain.
Kaspersky Lab is developing a new app -- FFForget will allow people to back up all of their memories from the social networks they use and keep them in a safe, encrypted memory container
Yeah, yeah, and then we have to pay you guys BTC 5 to unlock it again. We know the drill, your colleagues have been doing this to us for years.
Aggressive forum users are a sign of the failure of the moderators.
The specific behaviour the OP describes is more a sign of the type of forum they're participating in, it's, unfortunately, fairly common behaviour among geek/techie personalities. Go to a forum dealing with, say, gardening or pets or childcare and you'll very rarely see this sort of thing, the standard response there is sympathy and advice. So the best advice perhaps is to hold your nose and ignore the crap, or try posting to several different technical forums in the hope that you'll get good advice from at least one of them.
Moderation, I agree, is one way of dealing with this, e.g. Stackexchange does a pretty good job of keeping things on-topic, but sometimes you just have to mentally lint-filter the crap in the hope of finding the nuggets of good advice.
I've seen this brought up a number of times as a counterargument to ready auditability, and it's always seemed like a red herring to me. I don't live in the US so I don't know whether this sort of thing is rampant over there, but vote-buying in the countries I've lived in (stable democracies, e.g. the Netherlands) is essentially nonexistent. It's just not done, so there's no need to compromise your voting system auditability in order to deal with it.
It is, sort of. They fired the wrong people, these guys aren't really affecting Mo//:http::a//'s market share. If they'd instead fired Asa Dotzler it would constitute a quite significant gain.
I'm not that fussed about Chrome since I don't use it, but I'm not looking forward to when Chromefox copies it, as it's copied every other boneheaded decision Chrome makes. Yes, I know there's Pale Moon, but it has too many annoying old bugs that have long since been removed in Chromefox for me to have much enthusiasm for it. Mind you, given the ongoing downhill direction that Chromefox has been heading in, I'll probably have to switch to Pale Moon eventually.
In any case this is just slashvertising, USB power meters have been available for years, you can get them for as little as a few dollars from your favourite crapvendor, not $30 like Satechi is asking for. In any case what you need isn't a power meter but something to test the USB cable itself to see whether it's properly configured for the power it can pass (typically a 56k pullup).
For anyone outside NZ, here's the obligatory link to Ultra-fast broadband terminal installed in toilet. The problem with decreeing that everyone gets fibre as quickly as possible is that the quality of some of the work done isn't the highest...
Regarding printing in FF, I must say that under Linux it works great. I often print to PDF from FF.
Ah, and that's the trick with FF, print first to PDF and then print the PDF from a PDF reader. You still get broken printed docs sometimes, but it's not nearly as bad as printing directly to the printer. Just out of interest, what happens if you go straight to printer under Linux?
Slashdot Mirror
It's not entirely the app developers' fault. They're not bypassing the PKI wank just out of spite, they're doing it because after having spent hours, possibly days, beating their heads against the wall of PKI they've given up and just want their app to work. The same occurs on an even larger scale in Android, with endless NullTrustFactories and equivalent created out of frustration by developers who just want the damn thing to work without requiring a PhD in computer security as a prerequisite.
So there'd be a lot less of this if the tools that developers were given weren't such a massive pain to use. And by "tools" I don't mean slightly less godawful PKI, I mean alternative, far more effective and functional mechanisms that stay as far away from PKI as possible.
We wanted to verify that the certificate we get from our service is issued by the CA we actually get our certificate from (sometimes called certificate pinning), but Apple only allows this for their own apps. Us third-party, second-class developers have to trust whatever bogus certificate comes over the network. Blame Apple.
Is it just me, or is this the PKI version of "the dog ate my homework", and about as credible? Apple puts a gun to your head and forces you to accept any arbitrary cert that turns up?
It doesn't matter, the Goldman Sachs is too busy acting as an intermediary for selling the treasury bonds to the Fed in order to implement the quantitative easing. Who needs the insider trading when you're running the Grand Central on that gravy train?
the semiconductor giant won't disclose precisely how many chips are affected
Thanks to a leak by an Intel integrator, we can now reveal that the number of defective devices is exactly 1,999,999.999975243.
It's also not an "Ultra Accessory Connector", it's an "Apple Gratuitously Incompatible And We'll Litigate To Keep It Incompatible Oh Did We Mention Its Incompatible You'll Have To Buy It From Us At 10x The Price Its True So Sad" connector.
I'm puzzled about the fact that they're pitching it as a cost-cutting measure. Won't having to hire people to stand next to the fingerprint readers constantly wiping them with cleaning solution so they continue to function increase rather than decrease costs?
There is no talk of removing support for extensions. This is only about plugins.
And they're specifically keeping the least secure plugin there is, while disabling all the others. Thanks, Mo://http:://a.
Yeah, true. You do lose some potentially valuable input from people when you moderate strictly, but then it does keep a lot of the dross out, it's a tradeoff. My pet peeve with StackExchange is the "due to low-quality answers, you can't post here because you don't have any pixie points". It's a discussion on the history of Ethiopian pottery in 4000BC, how many pixie points do you expect me to have collected so far on this topic?
Actually my pet peeve is how they absolutely refuse to allow private messaging, despite endless requests going back years for it. Everything else pales into insignificance compared to that global-scale piece of braindamage.
Other people want different problems solved and look at Rust and think "Well that looks a bit inconvenient" and dismiss it, and continue to write browsers and servers and daemons and MTAs and other internet facing things full of security exploits.
Right, because if you use Rust your code will magically become secure, and bug-free, and crash-proof, and all your problems will go away, and Adriana Lima will fall in love with you and have your babies. I've heard similar stuff from other True Believers about their pet languages, e.g. the academic who said that everything should be written in Haskell because it's impossible to write bad code in it (this actually happened!).
You need to balance a lot of things when deciding which language you want to use. We have an infinite number of them, and it's possible to write crap code in all of them. OTOH if you're using something so specialised that you're having trouble finding developers, tools, add-ons, and support infrastructure, then you're losing more than you gain. Which looks to be the case with Rust. Building some specialised app whose environment you control with it is one thing, but a mainstream, cross-platform, mass-market product? Sounds like a recipe for infinite future pain.
Kaspersky Lab is developing a new app -- FFForget will allow people to back up all of their memories from the social networks they use and keep them in a safe, encrypted memory container
Yeah, yeah, and then we have to pay you guys BTC 5 to unlock it again. We know the drill, your colleagues have been doing this to us for years.
Aggressive forum users are a sign of the failure of the moderators.
The specific behaviour the OP describes is more a sign of the type of forum they're participating in, it's, unfortunately, fairly common behaviour among geek/techie personalities. Go to a forum dealing with, say, gardening or pets or childcare and you'll very rarely see this sort of thing, the standard response there is sympathy and advice. So the best advice perhaps is to hold your nose and ignore the crap, or try posting to several different technical forums in the hope that you'll get good advice from at least one of them.
Moderation, I agree, is one way of dealing with this, e.g. Stackexchange does a pretty good job of keeping things on-topic, but sometimes you just have to mentally lint-filter the crap in the hope of finding the nuggets of good advice.
And you don't think that, the fact that the voting system is not exploitable, plays a large part in making vote-buying nonexistent?
I know this unicorn repellant I'm wearing works because I've never been attacked by a unicorn.
The secret to Democracy is trust.
Yep, and once you can con people into trusting that their vote counts, you've got it made.
I've seen this brought up a number of times as a counterargument to ready auditability, and it's always seemed like a red herring to me. I don't live in the US so I don't know whether this sort of thing is rampant over there, but vote-buying in the countries I've lived in (stable democracies, e.g. the Netherlands) is essentially nonexistent. It's just not done, so there's no need to compromise your voting system auditability in order to deal with it.
It is, sort of. They fired the wrong people, these guys aren't really affecting Mo//:http::a//'s market share. If they'd instead fired Asa Dotzler it would constitute a quite significant gain.
Backups were ineffective. 30% of our users lost their home directories permanently. He never lived it down. Check your backups!
Actually: Check your privilege! (Especially if rm -rf is involved).
DRM+flash+ads always on in chrome now?
I'm not that fussed about Chrome since I don't use it, but I'm not looking forward to when Chromefox copies it, as it's copied every other boneheaded decision Chrome makes. Yes, I know there's Pale Moon, but it has too many annoying old bugs that have long since been removed in Chromefox for me to have much enthusiasm for it. Mind you, given the ongoing downhill direction that Chromefox has been heading in, I'll probably have to switch to Pale Moon eventually.
Neither linux or OS X / MacOS will force you to update.
Android is even better, I've never had that update on me, ever.
Oh, excuse me while I make my monthly Bitcoin payment to the Russians, not sure how they keep taking over my phone...
In any case this is just slashvertising, USB power meters have been available for years, you can get them for as little as a few dollars from your favourite crapvendor, not $30 like Satechi is asking for. In any case what you need isn't a power meter but something to test the USB cable itself to see whether it's properly configured for the power it can pass (typically a 56k pullup).
No, New Zealand exists outside of Auckland.
Only as far as the Bombay Hills. After that it's... I dunno, hobbits? wetas? moas? I suppose there must be something out there, not sure what though.
For anyone outside NZ, here's the obligatory link to Ultra-fast broadband terminal installed in toilet. The problem with decreeing that everyone gets fibre as quickly as possible is that the quality of some of the work done isn't the highest...
That would go against the name they picked for the project. It's Ultra fast. Beyond the very concept of high speed.
Huh! I won't sign up for that until they provide ludicrous-speed broadband. I want my router to go plaid.
when you combine two protons, and convert one to a neutron via election capture, how many protons do you have left?
If you're dealing with election capture you have zero protons but at least one Trump.
Jacks and docks are remnants of the past best forgotten and left behind.
I don't really care about jocks and dicks, what I want to know is can I start a fire with it like the 7 could?
Regarding printing in FF, I must say that under Linux it works great. I often print to PDF from FF.
Ah, and that's the trick with FF, print first to PDF and then print the PDF from a PDF reader. You still get broken printed docs sometimes, but it's not nearly as bad as printing directly to the printer. Just out of interest, what happens if you go straight to printer under Linux?