I sure do. But Facebook is no MySpace. Their biggest mistake was staying static once getting to the top, whereas Facebook kept adding features, improving the systems in the backend and front. There are numerous games/apps that spread like wildfire. They were always actively trying to court companies into promoting through the platform and making it easier (read:harder) to share content without their direct cooperation and blessing.
They may be unscrupulous with regard to their cattle, but one thing FB never was, was complacent.
Simple... If Facebook has the guts to do it. Turn all of Facebook off. That's right, just a blank page to Facebook.com and make all FB powered comments show one thing:
Dear Facebook user : We're currently being threatened with litigation by Rembrandt Social Media (link to their site for extra lulz). As of this moment we're unable to serve Facebook until this matter is resolved. Please contact your local congress person regarding the unfairness of this blah... blah... blah...
Do that worldwide.
Facebook will lose a day's revenue, and my-oh-my, will that get everyeone's attention. And before someone asserts that they're just protecting their IP... um... no. Not only do "copyright holding" companies fly against the very face of the very spirit of copyright protection -- that is to give innovators of a concept and creation to profit from that creation -- these guys don't invent anything, don't produce anything, don't contribute anything to society. It's the copyright equivalent of cybersquatting.
All new videos, I think, get encoded into HTML5 friendly formats. Older videos may still not be.
HTML5 A/V could be a fantastic alternative, if only people would settle on a universal codec. Google is still firmly on WebM, while Opera and Firefox is all over Theora/Vorbis and Ogg and, of course, IE 9+ still natively supports MP4 only in H.264, I think. And Safari does QuickTime too.
Right now, the only way anyone publishing video will get away with only an HTML5 video option is if they encode to different formats, different resolutions and still provide a Flash fallback for older/incompatible browsers. Quite a mess.
It probably doesn't help that electricity, especially at these levels, is a tricky thing to begin with. Even in the article, they mention they're not entirely sure why the relays fail.
And if you mention The Gay Science, how many people do you know that think of Nietzsche? Terms change with the times. Not always for the better, but they do.
From part 11 of the "Statement of faccts" in that motion :
An IP address does not identify a specific individual or even a specific computer. As such, it is not analogous to a driver's license, a Social Insurance Number, or a fingerprint. On the contrary, an IP address can be used as a shared component to access the internet for multiple users. For example, it may be used to create a wireless network shared by multiple persons in a household, or in an office local area network, or an Internet coffee shop.
Now I've seen many of the summaries for a lot of these motions (not one against them 'till now, since most ISPs offer resistance with a wimper) and not once have I seen an ISP actually explain what an IP is with layman-friendly clarity and how fickle a method of identifying a user it is. If this is how everyone treats IP addresses, there really wouldn't be any standing for disclosure of personally identifying information on any user unless law enforcement is already conducting surveillance on that IP.
But that's not what happened here.
They (copyright/troll folks) basically used a piece of software that flagged (apparently) content matching some signature of theirs to a bunch of addresses with no corroborating evidence like which P2P network was being used, if that, pseudonyms (although, I was under the impression most networks don't require them now), protocols or anything remotely grounding their assertion that their copyright was violated.
This is basically a fishing exepedition and this time, the ISP called on it. I don't know what they're normally like or if they offered resistance like this in the past. TFA says they didn't fight a notice back in November 2012. But these guys asking for subscriber info has no standing at all. Kudos to them for standing up to this!
Basically to power down the system before catastrophic failure will cause wires to melt, cause fires and other bad things. So essentially, it did its job. They just needs to dial down the sensitivity.
I don't know about confirmation bias, but I've hidden scores so I can focus more on the crux of the message vs. catering to some perceived acceptance. You should try it too so you won't be needlessly aggravated over a number in a database.
And the IE6 support until 2014 makes my argument still valid I.E. A large percentage still uses it, which makes every vulnerable user potentially drafted into a bot army. And botnets, last I checked, are still considered a threat to NS.
The fact that IE6 is being patched means someone dropped a NS bomb on them (National Security) which is a sure fire way to motivate companies to keep their software secure. I know it's not the favorite company here, but they fought (sometimes dirty) to get where they are. They made it and have to deal with the "now what?" phase. Software monocultures suck no matter who's culture it is.
What I found really interesting is that bulletins 7-9 and 11 are for escalation of privilege whereas the rest are for remote code execution. Which means, it may not have helped much to be logged in as an unprivileged user anyway.
"...the sale of Iron-oxide and Aluminum powder has increased dramatically as more and more people have started to make Thermite. Officials believe, this is due to the ease of destruction of hard drives and other storage media in the extremely high temperatures. No word yet on the number of estimated house fires next year, however it is expected to increase dramatically."
Sorry to hear about this. That makes me very nervous.
My handwriting, spelling and grammar weren't always this terrible and just recently I started to learn the guitar. It never occured to me this may be an issue with my motor skills. I'm a fairly OK typist, but then I don't type too much in plain English and typing code isn't normally that fast to begin with. I suppose I'd have to get myself checked just in case, but the "smart pen" seemed like a quick fix for everything.
Assuming they have keyboards. If the latest string of asinine patents are a hint, I'm willing to bet, they're two guys called Bill and Ted (but 80 years old) and instead of having an awesome phone booth adventure, they get to go on a ladder ride among dusty shelves full of patents.
For someone with atrocious spelling and grammar like me, this would have been a godsend. Some part of me thinks this may be a genuine psychological problem since I've always had trouble with both, including handwriting. I know it in my head, but by the time it comes out on paper, it's almost complete gibberish. This would have helped so much!
Ideally, if they used a salt, then yes, size wouldn't matter since technically just one character supplied by the user is enough. Problem is a lot of places still don't and it's a real pain to implement login changes when there's a large user base. Clients really don't want to hear that their passwords need to be reset (since that would take a short while even for hundreds of thousands of records), even though they can easily change it to something else with a reset email.
Those password guidelines sound pretty solid and generally those are what most banks (should) follow these days, but just in case, I prefer to do my banking in person... which has nothing to do with the free coffee. But seriously, bill paying is one of those things I'd rather use my bank for, since I really can't afford late fees.
But then the question is do we still need steely eyed missle men? I admit, I get all nostalgic and starry eyed when I read about the old aviators. Dashing folks with scarves and mustaches going up in rickety contraptions. And then look at today, where some fella can get drunk on a plane and cause a scene or crying children or just plain "bus adventure" at 30K feet. I fear this may be the future of space travel at some point as well.
In a way, it's great, because we're getting more access to this frontier, but in another way, something special is gone. Oh, sure, we can get a pilot's license, save up and spend some money and enjoy a private flight in a Cessna or something, but it's still not quite the same.
Chopping off things is usually harder to do on people who're paranoid to begin with.;)
If it's fingerprint recognition, I think the Mythbusters ran an episode where they duplicated a fingerprint from a CD. Voice passwords can be spliced together from existing recordings of the victim's speech (Burn notice). Retinal scans can be hacked into by tapping into the data feed of the scanner (some movie with a title I can't remember). Hey, they have skimmers for credit cards already, so this isn't much of a stretch. Besides, we practically every week a new report of industrial control/automation devices and platforms being exposed to the internet all ripe with vulnerabilities.
DNA, of course, may be the last bastion for security. That is until biohacking and cheap cloning (of cells scraped from some part of the body or just found laying around) will become commonplace.
That's usually a guarantee they don't hash passwords:/
Or they use some kind of encoding scheme instead that just lengthens with password size and letter case (DB field width will get maxed out) and don't use parameters for DB inserts/updates so special chars would wreak havoc with queries. Sometimes that's because they're running ancient software, but other times it's pure and simple laziness or disregard. It's hard to care about a project under near-slave-labor conditions in some of those sweatshops.
The problem with this is that most people demand to use an easy to remember password and will stubbornly ignore their own password hints. This happened quite a lot at a fashion company I worked for (I wasn't responsible for the web end, thankfully), and customers kept complaining, no joke, "why should a password be case sensitive?"
It wasn't uncommon for customers to blurt out their passwords on the phone either. One lady started giving me her credit card number out of the blue, thinking that was the problem. When these are the types of people you're dealing with, the lockout is quite a bit more of a hassle. I think they switched to OAuth as a result.
People are getting used to the idea of online security, but growing pains are plenty.
I used my online banking today and they limit to 8 characters EXACTLY... even though they demand a non alpha-numeric character and mixed case. I keep thinking, these idiots still don't get it. Also, obligatory.
Slashdot Mirror
I sure do. But Facebook is no MySpace. Their biggest mistake was staying static once getting to the top, whereas Facebook kept adding features, improving the systems in the backend and front. There are numerous games/apps that spread like wildfire. They were always actively trying to court companies into promoting through the platform and making it easier (read:harder) to share content without their direct cooperation and blessing.
They may be unscrupulous with regard to their cattle, but one thing FB never was, was complacent.
Simple... If Facebook has the guts to do it. Turn all of Facebook off. That's right, just a blank page to Facebook.com and make all FB powered comments show one thing :
Do that worldwide.
Facebook will lose a day's revenue, and my-oh-my, will that get everyeone's attention. And before someone asserts that they're just protecting their IP... um... no. Not only do "copyright holding" companies fly against the very face of the very spirit of copyright protection -- that is to give innovators of a concept and creation to profit from that creation -- these guys don't invent anything, don't produce anything, don't contribute anything to society. It's the copyright equivalent of cybersquatting.
All new videos, I think, get encoded into HTML5 friendly formats. Older videos may still not be.
HTML5 A/V could be a fantastic alternative, if only people would settle on a universal codec. Google is still firmly on WebM, while Opera and Firefox is all over Theora/Vorbis and Ogg and, of course, IE 9+ still natively supports MP4 only in H.264, I think. And Safari does QuickTime too.
Right now, the only way anyone publishing video will get away with only an HTML5 video option is if they encode to different formats, different resolutions and still provide a Flash fallback for older/incompatible browsers. Quite a mess.
It probably doesn't help that electricity, especially at these levels, is a tricky thing to begin with. Even in the article, they mention they're not entirely sure why the relays fail.
And if you mention The Gay Science, how many people do you know that think of Nietzsche? Terms change with the times. Not always for the better, but they do.
Oops, "facts". That spelling issue again.
From part 11 of the "Statement of faccts" in that motion :
Now I've seen many of the summaries for a lot of these motions (not one against them 'till now, since most ISPs offer resistance with a wimper) and not once have I seen an ISP actually explain what an IP is with layman-friendly clarity and how fickle a method of identifying a user it is. If this is how everyone treats IP addresses, there really wouldn't be any standing for disclosure of personally identifying information on any user unless law enforcement is already conducting surveillance on that IP.
But that's not what happened here.
They (copyright/troll folks) basically used a piece of software that flagged (apparently) content matching some signature of theirs to a bunch of addresses with no corroborating evidence like which P2P network was being used, if that, pseudonyms (although, I was under the impression most networks don't require them now), protocols or anything remotely grounding their assertion that their copyright was violated.
This is basically a fishing exepedition and this time, the ISP called on it. I don't know what they're normally like or if they offered resistance like this in the past. TFA says they didn't fight a notice back in November 2012. But these guys asking for subscriber info has no standing at all. Kudos to them for standing up to this!
Ah! Touché. Yeah, the're gonna lose a lot more than trust. I.E. All the nice things that come with trust... like clients and money.
Basically to power down the system before catastrophic failure will cause wires to melt, cause fires and other bad things. So essentially, it did its job. They just needs to dial down the sensitivity.
I don't know about confirmation bias, but I've hidden scores so I can focus more on the crux of the message vs. catering to some perceived acceptance. You should try it too so you won't be needlessly aggravated over a number in a database.
And the IE6 support until 2014 makes my argument still valid I.E. A large percentage still uses it, which makes every vulnerable user potentially drafted into a bot army. And botnets, last I checked, are still considered a threat to NS.
The fact that IE6 is being patched means someone dropped a NS bomb on them (National Security) which is a sure fire way to motivate companies to keep their software secure. I know it's not the favorite company here, but they fought (sometimes dirty) to get where they are. They made it and have to deal with the "now what?" phase. Software monocultures suck no matter who's culture it is.
What I found really interesting is that bulletins 7-9 and 11 are for escalation of privilege whereas the rest are for remote code execution. Which means, it may not have helped much to be logged in as an unprivileged user anyway.
"...the sale of Iron-oxide and Aluminum powder has increased dramatically as more and more people have started to make Thermite. Officials believe, this is due to the ease of destruction of hard drives and other storage media in the extremely high temperatures. No word yet on the number of estimated house fires next year, however it is expected to increase dramatically."
Sorry to hear about this. That makes me very nervous.
My handwriting, spelling and grammar weren't always this terrible and just recently I started to learn the guitar. It never occured to me this may be an issue with my motor skills. I'm a fairly OK typist, but then I don't type too much in plain English and typing code isn't normally that fast to begin with. I suppose I'd have to get myself checked just in case, but the "smart pen" seemed like a quick fix for everything.
Bit+coin ... Wait, that's already taken
Assuming they have keyboards. If the latest string of asinine patents are a hint, I'm willing to bet, they're two guys called Bill and Ted (but 80 years old) and instead of having an awesome phone booth adventure, they get to go on a ladder ride among dusty shelves full of patents.
For someone with atrocious spelling and grammar like me, this would have been a godsend. Some part of me thinks this may be a genuine psychological problem since I've always had trouble with both, including handwriting. I know it in my head, but by the time it comes out on paper, it's almost complete gibberish. This would have helped so much!
Ideally, if they used a salt, then yes, size wouldn't matter since technically just one character supplied by the user is enough. Problem is a lot of places still don't and it's a real pain to implement login changes when there's a large user base. Clients really don't want to hear that their passwords need to be reset (since that would take a short while even for hundreds of thousands of records), even though they can easily change it to something else with a reset email.
Mine gives out muffins and coffee :)
Those password guidelines sound pretty solid and generally those are what most banks (should) follow these days, but just in case, I prefer to do my banking in person... which has nothing to do with the free coffee. But seriously, bill paying is one of those things I'd rather use my bank for, since I really can't afford late fees.
But then the question is do we still need steely eyed missle men? I admit, I get all nostalgic and starry eyed when I read about the old aviators. Dashing folks with scarves and mustaches going up in rickety contraptions. And then look at today, where some fella can get drunk on a plane and cause a scene or crying children or just plain "bus adventure" at 30K feet. I fear this may be the future of space travel at some point as well.
In a way, it's great, because we're getting more access to this frontier, but in another way, something special is gone. Oh, sure, we can get a pilot's license, save up and spend some money and enjoy a private flight in a Cessna or something, but it's still not quite the same.
I'd venture some banks don't bother either. Credit Unions especially are notorious for having backwards technology, software, practices, you name it.
Ack, I meant to write, "we see practically every week".
Chopping off things is usually harder to do on people who're paranoid to begin with. ;)
If it's fingerprint recognition, I think the Mythbusters ran an episode where they duplicated a fingerprint from a CD. Voice passwords can be spliced together from existing recordings of the victim's speech (Burn notice). Retinal scans can be hacked into by tapping into the data feed of the scanner (some movie with a title I can't remember). Hey, they have skimmers for credit cards already, so this isn't much of a stretch. Besides, we practically every week a new report of industrial control/automation devices and platforms being exposed to the internet all ripe with vulnerabilities.
DNA, of course, may be the last bastion for security. That is until biohacking and cheap cloning (of cells scraped from some part of the body or just found laying around) will become commonplace.
That's usually a guarantee they don't hash passwords :/
Or they use some kind of encoding scheme instead that just lengthens with password size and letter case (DB field width will get maxed out) and don't use parameters for DB inserts/updates so special chars would wreak havoc with queries. Sometimes that's because they're running ancient software, but other times it's pure and simple laziness or disregard. It's hard to care about a project under near-slave-labor conditions in some of those sweatshops.
The problem with this is that most people demand to use an easy to remember password and will stubbornly ignore their own password hints. This happened quite a lot at a fashion company I worked for (I wasn't responsible for the web end, thankfully), and customers kept complaining, no joke, "why should a password be case sensitive?"
It wasn't uncommon for customers to blurt out their passwords on the phone either. One lady started giving me her credit card number out of the blue, thinking that was the problem. When these are the types of people you're dealing with, the lockout is quite a bit more of a hassle. I think they switched to OAuth as a result.
People are getting used to the idea of online security, but growing pains are plenty.
I used my online banking today and they limit to 8 characters EXACTLY... even though they demand a non alpha-numeric character and mixed case. I keep thinking, these idiots still don't get it. Also, obligatory.