Just to be open, I already sold everything I own. I fully believe the market can continue to be irrational for another year and I would not recommend shorting bitcoin. It's a bubble but I have no idea how to predict when it will burst. I do think at some point a crypto currency will replace some portion of the worlds M1 money supple (currently 70 Trillion dollars) but it won't be bitcoin. It might be ripple but I hope to god it isn't. I'm sort of hoping it will be some new currency or an evolution of an existing one (Vertcoin, Monero?) It would be ironic if US drug enforcement's actions led to Monero being the next big currency.
Side note: I bought my first house with Nortel Shares sold at around $90 while I worked there. They went up to $124 but never should have been over $5. The company wasn't profitable and their sales predictions something like 100% growth rate ever 9 months for the next 10 years. No one could have possible believed that.
The current average fee is $57 USD per transaction. That doesn't even guarentee you will be in the next block. It used to be pennies for a transaction. The current reward for mining a block is 25 bitcoin (225000)plus the transaction fees which add another $100,000. The miners are making a killing but the currency is useless. Worse it's in the miners best interest to keep things this way. The miners control the bitcoin protocol and they like making $100,000 per block in transaction fees. Efforts to increase the block size or decrease the difficulty so blocks are mined more frequently are not going to go anywhere. The price is going to crash but the miners won't care. They sell as soon as they mine and they can either switch to a different SHA 256 based coin or throw out their mining rigs (the rigs were always intended to be obsolete in 6 months anyway)
I would like to see a study that has quantified the risk and dangers to children watching porn. Until you show me the risk I won't support your mitigation. That seems pretty obvious. Am I missing something?
I have five kids. I don't want my young daughters thinking their bodies are sex objects. I don't want them worrying about always covering up. I can't control what other people think and I don't think it matters what thoughts other people have in their heads. What I do care about is what other people say or do. So if my daughters upload something where they are having fun and they happen to also be in pajamas or their bathing suits I don't want someone saying they are being pornographic and shouldn't post it. I don't want my daughters actions or activities to be restricted because some people are worried about what other people are thinking. That's just messed up.
We lost badly we just don't admit it. After the war much of southern Ontario was damaged. Our native allies lost their leader and any chance of forming a nation or even a political entity in Canada. England abandoned us and eventually recognized the USA's independence. The Duke of Wellington argued that North America was not in England's interest to defend and the negotiators gave America more than what they started with (and continued to do so for the next 120 years). We even paid America for damages and for the value of escaped slaves.
Saying Canada won the war of 1812 is like saying the USA won the war in Vietnam because they killed more people.
I am "Very Concerned" about Justin's masculinity. I thought there were men in Canada, not girly men.
The guy ran a 22:37.4 for 5K while shaking hands and leaving a trail of women in near orgasm. He's fit, a good boxer and one of the most desired men on the planet. Maybe you should rethink your definition of masculine cause I would rather take dating tips from him than you.
TTP will likely go through. Canada is pushing to drop all the American Copy right and patient stupidity. Since Japan desperately wants it and Canada is now the second largest country in the TTP it will likely go through. With out the American provisions I see it as a pretty good trade deal. As a Canadian, who's country has lost most of the NAFTA disputes, I still see the dispute resolution system as a good thing. Canada really did deserve to lose those disputes. Now if we could only get softwood lumber included...
If I want to sell advertising on my websites I have to sell to Google. There just isn't anyone else who offers anything like Google's service and value unless I want to sell porn or malware. If I wanted to buy advertising on the internet, I advertise on Google or Facebook. No one else can reach my target audience.
I like the idea of unions however every union I've been in has been about protecting the jobs of the union organizers. Supposedly anyone could run for a union position. In reality the current board members control the agenda, the vote and the communication. 2 out of the 3 times I was in a union they acted specifically against my interests. One union had less respect for peoples lives the employer, this was a Canadian hospital so the bar was pretty low.
I think we need laws to protect union members from the unions, to make the unions more transparent and to better regulate how people are appointed to union positions. Until then unions will be useless or harmful to their members.
Those great discount credit card offers you get in the mail aren't sent to everyone. The credit card company bought a profile of your neighbourhood from a credit bureau before mailing them out.
to safegraph. If the data is say held by Google and they allow only certain aggregate queries to be done but never give you anything but the aggregate answer then Safegraph won't know what happened in individual houses. This gets very tricky though. You have to have some thresholds about how small an area you can give a report on.
For example - The Canadian credit bureaus will sell reports based on postal code (a postal code is a side of a street, between intersections), that give the high, low and median score. Now if there were under a certain number of people in that postal code we didn't give the information (This was a decision made by the programmers, legally the company could) but what about the case where the high and the low score were almost the same? In such a case, revealing the high and the low essentially revealed everyone's score.
It's 60 - 0 in 1.9 seconds. The brakes are regenerative. I may never want 0 - 60 in 1.9 seconds but I like the idea of stopping that fast. Note: that is almost 1.5G, so your coefficient of friction would have to be 1.5. You won't have that kind of traction with your standard road tires.
I'm Canadian, but I lived in Atlanta in the early 90s. This was when Atlanta was the violent crime capital of the USA. I found Canadian kids are more violent than their American counter parts. They tease, bully and particularly in sports resort to fighting far more often.
The Canadian apology is part de-escalation, half social signalling (and part programmed reflex). When I apologies for someone else bumping into me I'm avoiding a fight and I'm showing confidence that I'm big enough not to be offended. Call me an idiot, I'm not going to take the bait and get a penalty. I will let you go first through the door to show I'm organized, and not in a rush. (yes, I'm guilty, I've been in a few Canadian standoffs) .
In work, if something goes wrong, I'll take the blame and then work on the solution. This is doubly effective in some cultures as I'm remembered as the one who took charge and solved the problem and also saved someone else embarrassment.
One last note. I did find the people of the American south the most friendly, open and genuine people I've ever met. They will always start a conversation and will tell you anything you want to know.
You are not google's customer. You are the product. There is no monopoly on search, there is almost no barrier to creating a new search engine and there is nothing sticky about me using Bing, Google or DuckDuckGo. Google is completely up front about what they do with the data people freely give them.
Google is how ever a monopolist in advertising. If I want to buy advertising on the internet I go to Google. They make it easy, they give me amazing tools and they can sell me placement everywhere. No other advertiser on the non-facebook internet is even relevant. On the flip side if you want to sell advertising space on your website, unless you want to have a real sales team, you have no choice but to sell to Google. The barrier to entry in online advertising is massive. Search, email, maps, documents, etc., those are just added lines of defense to protect adwords.
http://scientistswarning.fores...
I really wish reporters would link to the actual articles they talk about. Sort of like when they jump all over someone's statements but don't actually quote what the person said.
Even that doesn't always help. If the system is complicated enough you can still be hacked. Here is a bug we found in one of our systems where the files where encrypted and the process handling the data could only access one particular users data. Also the output of the system could only send an email to the active user. Somewhere in the processing of the data a javascript function was called with the data. In the javascript we were able to redefine one of the functions so that it acted correctly on the current users data but then stored that users in an array. The malicious user could put this code in their own data. It would then run normally for every other user but when the malicious user data was processed again it would email back everyone's data. The exploit was in a kendo grid framework, five layers removed from the person who did the database securing. I'm 100% sure that we could have found other bugs but this was just an example of why all these fancy layers and tools make security impossible.
It's caused by multiple layers of code/tools/frameworks. My guess: What one programmer assumed to be a synchronous function call to get an authorization code turns out to eventually get passed to some sort of inter-process messaging system. The messaging system never had a way to match requests to responses and just passes the last message it gets back.
In my opinion these types of systems, that is ones with multiple layers of frameworks and processes communicating with each other, can't be secure. Unfortunately that attitude got me "let go" from my last security job.
Is it in his best interest to know these answers? Most CEOs are pretty smart and hard working. He should have been able to learn this stuff, had notes or a binder in front of him with answers prepared by someone like you. He didn't. I suspect the lawyers decided it was better not to answer in case the answers came back to bite him or Equifax.
What the hell does " encrypting at rest" prevent in this context? The data is constantly being queried in a thousand different ways. So sure you could encrypt it and if someone gained access to the raw data then it would be useless but since every process is decrypting it anyway and that's the vector the attacker will come in on it doesn't do you any good.
Some controls could be put in place like storing address and personal identifiable information encrypted and only giving the decryption keys to processes that add data to the database and not ones that pull data but that's work, complexity and well it's the credit bureau's business to sell the data and there isn't a single piece of data they won't try and monetize.
Aside - I used to carry the entire backup of the data, unencrypted to the offsite storage.
Google released "A New Hope", a lattice based key exchange for securing communication. It would be immune to Shor's Algrithm, so safe in a post quantum world. Unfortunately, there are other issues with it. Someone might find a classical computing way to break it, it might leak information, it can sometimes fail etc. There are other possible quantum resistant algorithms. XMSS can be used to sign documents but the signatures and keys are huge compared to what we have now. There is also Supersingular isogeny key exchange https://en.wikipedia.org/wiki/... but the math for it makes lattices seem easy.
Smart contracts are actually a programming language. What is put into the block chain is actually code. For a transaction to be valid you run the program and check the output. Bitcoin is very restrictive about what programs are allowed to run. Etherium is less restrictive. The code for Etherium should have said to spend this coin a transaction requires some number of signatures from this list. It appears that devops199 was able to change that list to a list of only one signer. He then killed that signer. The transactions to do both those things are now buried in the block chain. To take them out a fork has to be made before devops199's transactions.
Still trying to figure out if the bug was in the smart contract or in the "mining" code that allowed devops199's transactions into the block chain.
Slashdot Mirror
Just to be open, I already sold everything I own. I fully believe the market can continue to be irrational for another year and I would not recommend shorting bitcoin.
It's a bubble but I have no idea how to predict when it will burst. I do think at some point a crypto currency will replace some portion of the worlds M1 money supple (currently 70 Trillion dollars) but it won't be bitcoin. It might be ripple but I hope to god it isn't. I'm sort of hoping it will be some new currency or an evolution of an existing one (Vertcoin, Monero?) It would be ironic if US drug enforcement's actions led to Monero being the next big currency.
Side note: I bought my first house with Nortel Shares sold at around $90 while I worked there. They went up to $124 but never should have been over $5. The company wasn't profitable and their sales predictions something like 100% growth rate ever 9 months for the next 10 years. No one could have possible believed that.
The current average fee is $57 USD per transaction. That doesn't even guarentee you will be in the next block. It used to be pennies for a transaction. The current reward for mining a block is 25 bitcoin (225000)plus the transaction fees which add another $100,000. The miners are making a killing but the currency is useless. Worse it's in the miners best interest to keep things this way. The miners control the bitcoin protocol and they like making $100,000 per block in transaction fees. Efforts to increase the block size or decrease the difficulty so blocks are mined more frequently are not going to go anywhere. The price is going to crash but the miners won't care. They sell as soon as they mine and they can either switch to a different SHA 256 based coin or throw out their mining rigs (the rigs were always intended to be obsolete in 6 months anyway)
Almost all rockets are steam powered. It's what you get when you burn hydrogen. He may very well have made a perfectly usable rocket.
I would like to see a study that has quantified the risk and dangers to children watching porn. Until you show me the risk I won't support your mitigation. That seems pretty obvious. Am I missing something?
I have five kids. I don't want my young daughters thinking their bodies are sex objects. I don't want them worrying about always covering up. I can't control what other people think and I don't think it matters what thoughts other people have in their heads. What I do care about is what other people say or do. So if my daughters upload something where they are having fun and they happen to also be in pajamas or their bathing suits I don't want someone saying they are being pornographic and shouldn't post it. I don't want my daughters actions or activities to be restricted because some people are worried about what other people are thinking. That's just messed up.
We lost badly we just don't admit it. After the war much of southern Ontario was damaged. Our native allies lost their leader and any chance of forming a nation or even a political entity in Canada. England abandoned us and eventually recognized the USA's independence. The Duke of Wellington argued that North America was not in England's interest to defend and the negotiators gave America more than what they started with (and continued to do so for the next 120 years). We even paid America for damages and for the value of escaped slaves.
Saying Canada won the war of 1812 is like saying the USA won the war in Vietnam because they killed more people.
I am "Very Concerned" about Justin's masculinity. I thought there were men in Canada, not girly men.
The guy ran a 22:37.4 for 5K while shaking hands and leaving a trail of women in near orgasm. He's fit, a good boxer and one of the most desired men on the planet. Maybe you should rethink your definition of masculine cause I would rather take dating tips from him than you.
TTP will likely go through. Canada is pushing to drop all the American Copy right and patient stupidity. Since Japan desperately wants it and Canada is now the second largest country in the TTP it will likely go through. With out the American provisions I see it as a pretty good trade deal. As a Canadian, who's country has lost most of the NAFTA disputes, I still see the dispute resolution system as a good thing. Canada really did deserve to lose those disputes. Now if we could only get softwood lumber included...
If I want to sell advertising on my websites I have to sell to Google. There just isn't anyone else who offers anything like Google's service and value unless I want to sell porn or malware. If I wanted to buy advertising on the internet, I advertise on Google or Facebook. No one else can reach my target audience.
I like the idea of unions however every union I've been in has been about protecting the jobs of the union organizers. Supposedly anyone could run for a union position. In reality the current board members control the agenda, the vote and the communication. 2 out of the 3 times I was in a union they acted specifically against my interests. One union had less respect for peoples lives the employer, this was a Canadian hospital so the bar was pretty low.
I think we need laws to protect union members from the unions, to make the unions more transparent and to better regulate how people are appointed to union positions. Until then unions will be useless or harmful to their members.
Those great discount credit card offers you get in the mail aren't sent to everyone. The credit card company bought a profile of your neighbourhood from a credit bureau before mailing them out.
Steam is what you get from burning Hydrogen. He's trolling and 99% of Slashdot fell for it.
It's what you get when burning hydrogen and oxygen. This is a great troll.
to safegraph. If the data is say held by Google and they allow only certain aggregate queries to be done but never give you anything but the aggregate answer then Safegraph won't know what happened in individual houses. This gets very tricky though. You have to have some thresholds about how small an area you can give a report on.
For example - The Canadian credit bureaus will sell reports based on postal code (a postal code is a side of a street, between intersections), that give the high, low and median score. Now if there were under a certain number of people in that postal code we didn't give the information (This was a decision made by the programmers, legally the company could) but what about the case where the high and the low score were almost the same? In such a case, revealing the high and the low essentially revealed everyone's score.
It's 60 - 0 in 1.9 seconds. The brakes are regenerative. I may never want 0 - 60 in 1.9 seconds but I like the idea of stopping that fast. Note: that is almost 1.5G, so your coefficient of friction would have to be 1.5. You won't have that kind of traction with your standard road tires.
I'm Canadian, but I lived in Atlanta in the early 90s. This was when Atlanta was the violent crime capital of the USA. I found Canadian kids are more violent than their American counter parts. They tease, bully and particularly in sports resort to fighting far more often.
The Canadian apology is part de-escalation, half social signalling (and part programmed reflex). When I apologies for someone else bumping into me I'm avoiding a fight and I'm showing confidence that I'm big enough not to be offended. Call me an idiot, I'm not going to take the bait and get a penalty. I will let you go first through the door to show I'm organized, and not in a rush. (yes, I'm guilty, I've been in a few Canadian standoffs) .
In work, if something goes wrong, I'll take the blame and then work on the solution. This is doubly effective in some cultures as I'm remembered as the one who took charge and solved the problem and also saved someone else embarrassment.
One last note. I did find the people of the American south the most friendly, open and genuine people I've ever met. They will always start a conversation and will tell you anything you want to know.
You are not google's customer. You are the product. There is no monopoly on search, there is almost no barrier to creating a new search engine and there is nothing sticky about me using Bing, Google or DuckDuckGo. Google is completely up front about what they do with the data people freely give them.
Google is how ever a monopolist in advertising. If I want to buy advertising on the internet I go to Google. They make it easy, they give me amazing tools and they can sell me placement everywhere. No other advertiser on the non-facebook internet is even relevant. On the flip side if you want to sell advertising space on your website, unless you want to have a real sales team, you have no choice but to sell to Google. The barrier to entry in online advertising is massive. Search, email, maps, documents, etc., those are just added lines of defense to protect adwords.
http://scientistswarning.fores... I really wish reporters would link to the actual articles they talk about. Sort of like when they jump all over someone's statements but don't actually quote what the person said.
Even that doesn't always help. If the system is complicated enough you can still be hacked. Here is a bug we found in one of our systems where the files where encrypted and the process handling the data could only access one particular users data. Also the output of the system could only send an email to the active user. Somewhere in the processing of the data a javascript function was called with the data. In the javascript we were able to redefine one of the functions so that it acted correctly on the current users data but then stored that users in an array. The malicious user could put this code in their own data. It would then run normally for every other user but when the malicious user data was processed again it would email back everyone's data. The exploit was in a kendo grid framework, five layers removed from the person who did the database securing. I'm 100% sure that we could have found other bugs but this was just an example of why all these fancy layers and tools make security impossible.
It's caused by multiple layers of code/tools/frameworks. My guess: What one programmer assumed to be a synchronous function call to get an authorization code turns out to eventually get passed to some sort of inter-process messaging system. The messaging system never had a way to match requests to responses and just passes the last message it gets back.
In my opinion these types of systems, that is ones with multiple layers of frameworks and processes communicating with each other, can't be secure. Unfortunately that attitude got me "let go" from my last security job.
Is it in his best interest to know these answers? Most CEOs are pretty smart and hard working. He should have been able to learn this stuff, had notes or a binder in front of him with answers prepared by someone like you. He didn't. I suspect the lawyers decided it was better not to answer in case the answers came back to bite him or Equifax.
What the hell does " encrypting at rest" prevent in this context? The data is constantly being queried in a thousand different ways. So sure you could encrypt it and if someone gained access to the raw data then it would be useless but since every process is decrypting it anyway and that's the vector the attacker will come in on it doesn't do you any good.
Some controls could be put in place like storing address and personal identifiable information encrypted and only giving the decryption keys to processes that add data to the database and not ones that pull data but that's work, complexity and well it's the credit bureau's business to sell the data and there isn't a single piece of data they won't try and monetize.
Aside - I used to carry the entire backup of the data, unencrypted to the offsite storage.
Google released "A New Hope", a lattice based key exchange for securing communication. It would be immune to Shor's Algrithm, so safe in a post quantum world. Unfortunately, there are other issues with it. Someone might find a classical computing way to break it, it might leak information, it can sometimes fail etc. There are other possible quantum resistant algorithms. XMSS can be used to sign documents but the signatures and keys are huge compared to what we have now. There is also Supersingular isogeny key exchange https://en.wikipedia.org/wiki/... but the math for it makes lattices seem easy.
$100 is the minimum for a bug. They will pay more if the bug is security related or more serious in some other way.
Smart contracts are actually a programming language. What is put into the block chain is actually code. For a transaction to be valid you run the program and check the output. Bitcoin is very restrictive about what programs are allowed to run. Etherium is less restrictive. The code for Etherium should have said to spend this coin a transaction requires some number of signatures from this list. It appears that devops199 was able to change that list to a list of only one signer. He then killed that signer. The transactions to do both those things are now buried in the block chain. To take them out a fork has to be made before devops199's transactions.
Still trying to figure out if the bug was in the smart contract or in the "mining" code that allowed devops199's transactions into the block chain.