I'm sure millions of college students, when sent to an educational site that uses Java, will heed your advice. Java is still widely used in academia as well as the corporate world. It may be frustrating, but a lot of people are required to have Java running to get the shit that they are required to do done. Does it suck? Yes. Can you just disable and ignore vulnerabilities like this? No.
An email to their personal address (not their school account) for obvious reasons. Though I do have to admit that a few times mistakes have been made made (real mistakes, not BOFH in disguise) and the password reset template was emailed only to their school account.
I know that some people are looking at that 'help companies get their mail into inboxes rather than filtered' comment with trepidation. But I don't think it's nefarious like that. I work at a small university, and it's pretty common (and frustrating for students) to have important emails like 'Here is how you log in for the first time' get filtered out as spam because the same email is sent to thousands of students... it looks like spam. These tools just let us register our domain and add tags to our emails marking it as official email from the school.
That still allows the user algorithms to reduce the significance of the email, tossing it in the 'Advertisement' category, or 'Low Priority', or other variations of 'not spam, but maybe you'd like to hide it anyway' category. But it should reduce how ofter the email is thrown away completely, and they can't even search for it because it was tossed out with the garbage.
I took a look at the postmaster tools, and as soon as the DNS update goes through (which proves to Google that I'm allowed to manage our postmaster tools) I'll have a better idea what options it gives us.
I'm gonna side with OCP on this one. It is far more economical to deal with reliability via redundancy than it is via expensive parts. This is why we use RAID rather than speccing our drives to last 10 years minimum. All the big players in the datacenter market have put thousands of hours each into designing systems tolerant of missing parts.
The downside is that writing custom stacks tolerant of missing pieces is fucking hard and a huge up-front investment for a company. Most off-the-shelf software does not have that level of redundancy and fault tolerance baked in already. This means that for many small to medium sized deployments it's cheaper to buy a really expensive fault tolerant rack of servers and run your off-the-shelf software on it than it is to buy into OCP with inexpensive hardware that's more open to failure, because your software is NOT open to failure.
Different strokes for different folks and all. Use the right tool for the job. And OCP was made by companies with massive data farms to fit their needs... and their needs are probably not your needs.
And I never understood the deal with fighting for culture. That's like fighting to ensure your kids believe the same thing you do. With violence. The same argument is made when Christian folks bemoan the lack of church attendance. You don't have a right to force your meme's down everyone's throat, but that's what 'defending culture' means. It means you want the guarantee that your children will believe the same thing you do by removing dissenting beliefs. It's bullshit.
I'd like to clarify that I don't think Hawaiian culture is bullshit. But the method of promoting your culture by forcibly removing other viewpoints is a shitty tactic. If your culture is worthwhile people won't need to be coerced into practicing it.
It's not on your list of causes, so perhaps you won't care, but the crew running Child's Play have been up front on where the money goes: it is spent on nothing but toys. None of the staff, such as it is, get paid out of your donations; they all work for Penny Arcade, who run Child's Play on the side.
You are making assumptions about laws and construction. The simple solution is to have part of the 'bulb' be the crosswalk. Have the lines for the crosswalk start ON the bulb (say, on the wheelchair pedestrian ramp) and then you have a safe place to stand where cars must legally stop for you.
Now I'm not in San Diego, so I have no idea if this is part of their plan or what their laws are. I'm just saying that even with your example law there are simple, safe solutions.
I think it's more that a group which claims to be focused on external threats, and uses tactics that few would be comfortable using on citizens of their country, is focusing mostly on standard internal issues which are normally the purview of the regular police.
To put it another way, when I use my handgun to deal with an armed intruder to my home nobody would think ill of me. If I use that handgun to deal with my disobedient teenager then it's an entirely different issue. Even if the teenager is (for example) stealing from me just like the burgler was trying to, it's not an acceptable response. We have acceptable means to deal with our children, and a handgun is not on the menu.
Similarly, using DDOS, propaganda, and blackmail on your own citizens is not the appropriate response even if we may condone it against foreign nations in limited circumstances, just as we condone (at least in the United States) the use of handguns in limited circumstances.
While I agree it's probably an overvaluation, I should point out that valuations also take into account the likely future growth of a service. Github is the dominant repository site, and still growing. Other repositories are being out-competed and shrinking or shutting down. If you put a valuation of $100 per user (more reasonable) with an expectation that they will double in size in the next few years then the valuation is understandable.
This will depend on advertisers being on board. Assuming they are (which is not guaranteed, since you can't click their ad to visit their site) at a reasonable CPM this looks doable. I like the model.
I am amused at the idea of news-via-image-macro (aka, meme pic).
Kasperski must characterize the malware as ultra-advanced, targeted, government hacking. Otherwise they look like fools for being penetrated.
I'm not saying they are lying; I'm saying there is no way to tell, because their success as a company depends on them assuring everyone that they can competently defend against ordinary malware.
Like a wife swap. Just two of you, and it's quite possible the swap won't be fun because at least one pair doesn't hit it off. But bring 10 couples together and the chances of finding a way to pair everyone up so that they have a good time is a lot better.
Because it can be mangled to fit any observation. It's not disprovable. All of the alternatives are better because they are actually disprovable via experimentation.
A problem for some students at my University is an inability to access content in Java. The Applet loads fine (the browser does the fetching), but as soon as the applet runs and tries to access content it can't go anywhere or get anything. Disabling IPv6 fixes the issue. It's not just one Java applet from one vendor either; three separate Java based tools from different vendors fail for these users, and all three work when IPv4 is made the primary protocol.
Other than that hiccup though, I've seen surprisingly little issues with IPv6 in the past year. Hoping we get transitioned fully to IPv6 as soon as possible, though I'm gonna miss troubleshooting with easy to type dotted quads.
I'm aware it affects more, but the discussion was about job seeking and hiring practices, and I remembered that article from a few years back. Bringing up every study on bias ever just dilutes the argument.
I don't understand how Skype grew to such dominance in the ip communication field while being such a bad piece of software. I've been helping users improve their computer's abysmal performance by uninstalling Skype for years.
What does Skype do better than everyone else? Why is it so popular? Is it just the network effect, or does it have actual good points to offset the bad?
Way to not pay attention. Valve took 30%. Bethesda decided they deserved 45%, and left 25% for the mod maker. 30% is Valve's cut on nearly everything, so this is not unusual or odd. If Bethesda had taken 20% that would have left mod makers with 50%, and the outcry would have not been there. If Bethesda had decided to forgo a cut in order to sell more copies of the game, everyone would have been cheering the 70% cut that mod makers received.
Should Valve have anticipated that 25% to makers would look bad? Yes. Perhaps they should have refused to roll it out with that initial revenue split. They certainly should have put better moderation tools in place to control graft and mod theft.
But the idea of charging for mods is completely fine; we've been doing it for years already with games like Dota and TF2. What's a community created hat? It's a mod that you pay money for.
what ever happened to cell phones getting smaller?
Phone's stopped being just 'a phone' and became 'a primary device'. When it's also your email device, gaming device, note taking device, etc then you want a bigger screen. However, there are a lot of great, long battery life, small phones still being made... for under $99. Don't get a flagship device if you just want a phone.
I'm no Googler, nor have I interviewed, but I suspect this is more about Google's hiring methods than their hiring policies or biases. They run contests, which are essentially easter egg hunts that result in a potential interview. Who has the time and inclination to play around with hoops like that? The young, college attending, and childless nerds and hackers. They don't need to have a bias in who they hire, because they create an innate bias in who chooses to apply by putting that 'application' behind a lot of hoops and rigamarole.
No such thing. You can't balance a girls school on topic A with a boys school on topic B. I don't care what private schools do with their money, but I do not want tax dollars funding this idiocy.
I am all for inclusiveness. But this is not it. This is farcical.
Try and open a publicly funded All Black School of Business, balance it with an All White School of Jazz, and tell me this makes sense. I'll be over here trying not to simultaneously laugh and cry.
The 'stiction' is evident when the rocket is initially coming down and swinging to the left of the video frame, before you see it (over-)correct and swing back to (and past) vertical. I watched that section wondering why the rocket went excessively to the left in the first place, and a stuck valve makes a lot of sense.
I find it interesting that nobody is disputing the validity of the patents, but only the amount you can charge for them. Both sides want patents to remain strong.
I know what the term means, but heat is just another type of EM radiation (infra-red) that doesn't have dedicated communication hardware. The accomplishment is neat, but not useful.
As a counter-example, the paper on reading monitors from their diffuse reflected luminance is actually useful. You get a high-bandwith, air-gapped eavesdropping method. This communication by heat is more likely to be detected (as a problem, not necessarily as communication) than a steganographic (thank you) communication channel using more common EM radiation.
I'm not saying it's not 'neat'. It's just not neat and useful.
Slashdot Mirror
I'm sure millions of college students, when sent to an educational site that uses Java, will heed your advice. Java is still widely used in academia as well as the corporate world. It may be frustrating, but a lot of people are required to have Java running to get the shit that they are required to do done. Does it suck? Yes. Can you just disable and ignore vulnerabilities like this? No.
An email to their personal address (not their school account) for obvious reasons. Though I do have to admit that a few times mistakes have been made made (real mistakes, not BOFH in disguise) and the password reset template was emailed only to their school account.
I know that some people are looking at that 'help companies get their mail into inboxes rather than filtered' comment with trepidation. But I don't think it's nefarious like that. I work at a small university, and it's pretty common (and frustrating for students) to have important emails like 'Here is how you log in for the first time' get filtered out as spam because the same email is sent to thousands of students... it looks like spam. These tools just let us register our domain and add tags to our emails marking it as official email from the school.
That still allows the user algorithms to reduce the significance of the email, tossing it in the 'Advertisement' category, or 'Low Priority', or other variations of 'not spam, but maybe you'd like to hide it anyway' category. But it should reduce how ofter the email is thrown away completely, and they can't even search for it because it was tossed out with the garbage.
I took a look at the postmaster tools, and as soon as the DNS update goes through (which proves to Google that I'm allowed to manage our postmaster tools) I'll have a better idea what options it gives us.
I'm gonna side with OCP on this one. It is far more economical to deal with reliability via redundancy than it is via expensive parts. This is why we use RAID rather than speccing our drives to last 10 years minimum. All the big players in the datacenter market have put thousands of hours each into designing systems tolerant of missing parts.
The downside is that writing custom stacks tolerant of missing pieces is fucking hard and a huge up-front investment for a company. Most off-the-shelf software does not have that level of redundancy and fault tolerance baked in already. This means that for many small to medium sized deployments it's cheaper to buy a really expensive fault tolerant rack of servers and run your off-the-shelf software on it than it is to buy into OCP with inexpensive hardware that's more open to failure, because your software is NOT open to failure.
Different strokes for different folks and all. Use the right tool for the job. And OCP was made by companies with massive data farms to fit their needs... and their needs are probably not your needs.
That's like fighting to ensure your kids believe the same thing you do. With violence. The same argument is made when Christian folks bemoan the lack of church attendance. You don't have a right to force your meme's down everyone's throat, but that's what 'defending culture' means. It means you want the guarantee that your children will believe the same thing you do by removing dissenting beliefs. It's bullshit.
It's not on your list of causes, so perhaps you won't care, but the crew running Child's Play have been up front on where the money goes: it is spent on nothing but toys. None of the staff, such as it is, get paid out of your donations; they all work for Penny Arcade, who run Child's Play on the side.
You are making assumptions about laws and construction. The simple solution is to have part of the 'bulb' be the crosswalk. Have the lines for the crosswalk start ON the bulb (say, on the wheelchair pedestrian ramp) and then you have a safe place to stand where cars must legally stop for you.
Now I'm not in San Diego, so I have no idea if this is part of their plan or what their laws are. I'm just saying that even with your example law there are simple, safe solutions.
I think it's more that a group which claims to be focused on external threats, and uses tactics that few would be comfortable using on citizens of their country, is focusing mostly on standard internal issues which are normally the purview of the regular police.
To put it another way, when I use my handgun to deal with an armed intruder to my home nobody would think ill of me. If I use that handgun to deal with my disobedient teenager then it's an entirely different issue. Even if the teenager is (for example) stealing from me just like the burgler was trying to, it's not an acceptable response. We have acceptable means to deal with our children, and a handgun is not on the menu.
Similarly, using DDOS, propaganda, and blackmail on your own citizens is not the appropriate response even if we may condone it against foreign nations in limited circumstances, just as we condone (at least in the United States) the use of handguns in limited circumstances.
While I agree it's probably an overvaluation, I should point out that valuations also take into account the likely future growth of a service. Github is the dominant repository site, and still growing. Other repositories are being out-competed and shrinking or shutting down. If you put a valuation of $100 per user (more reasonable) with an expectation that they will double in size in the next few years then the valuation is understandable.
This will depend on advertisers being on board. Assuming they are (which is not guaranteed, since you can't click their ad to visit their site) at a reasonable CPM this looks doable. I like the model.
I am amused at the idea of news-via-image-macro (aka, meme pic).
Kasperski must characterize the malware as ultra-advanced, targeted, government hacking. Otherwise they look like fools for being penetrated.
I'm not saying they are lying; I'm saying there is no way to tell, because their success as a company depends on them assuring everyone that they can competently defend against ordinary malware.
Like a wife swap. Just two of you, and it's quite possible the swap won't be fun because at least one pair doesn't hit it off. But bring 10 couples together and the chances of finding a way to pair everyone up so that they have a good time is a lot better.
You know. In theory.
Because it can be mangled to fit any observation. It's not disprovable. All of the alternatives are better because they are actually disprovable via experimentation.
A problem for some students at my University is an inability to access content in Java. The Applet loads fine (the browser does the fetching), but as soon as the applet runs and tries to access content it can't go anywhere or get anything. Disabling IPv6 fixes the issue. It's not just one Java applet from one vendor either; three separate Java based tools from different vendors fail for these users, and all three work when IPv4 is made the primary protocol.
Other than that hiccup though, I've seen surprisingly little issues with IPv6 in the past year. Hoping we get transitioned fully to IPv6 as soon as possible, though I'm gonna miss troubleshooting with easy to type dotted quads.
I'm aware it affects more, but the discussion was about job seeking and hiring practices, and I remembered that article from a few years back. Bringing up every study on bias ever just dilutes the argument.
I don't understand how Skype grew to such dominance in the ip communication field while being such a bad piece of software. I've been helping users improve their computer's abysmal performance by uninstalling Skype for years.
What does Skype do better than everyone else? Why is it so popular? Is it just the network effect, or does it have actual good points to offset the bad?
Your comment is absolutely true. But that's not the whole story... in a study a few years back, "applicants with white-sounding names were 50% more likely to get called for an initial interview than applicants with black-sounding names." This is a real problem that affects minorities, so while preferential treatment is also a problem the biases have to change quite far before it's likely that minorities are getting actual preferential treatment.
Way to not pay attention. Valve took 30%. Bethesda decided they deserved 45%, and left 25% for the mod maker. 30% is Valve's cut on nearly everything, so this is not unusual or odd. If Bethesda had taken 20% that would have left mod makers with 50%, and the outcry would have not been there. If Bethesda had decided to forgo a cut in order to sell more copies of the game, everyone would have been cheering the 70% cut that mod makers received.
Should Valve have anticipated that 25% to makers would look bad? Yes. Perhaps they should have refused to roll it out with that initial revenue split. They certainly should have put better moderation tools in place to control graft and mod theft.
But the idea of charging for mods is completely fine; we've been doing it for years already with games like Dota and TF2. What's a community created hat? It's a mod that you pay money for.
Phone's stopped being just 'a phone' and became 'a primary device'. When it's also your email device, gaming device, note taking device, etc then you want a bigger screen. However, there are a lot of great, long battery life, small phones still being made... for under $99. Don't get a flagship device if you just want a phone.
I'm no Googler, nor have I interviewed, but I suspect this is more about Google's hiring methods than their hiring policies or biases. They run contests, which are essentially easter egg hunts that result in a potential interview. Who has the time and inclination to play around with hoops like that? The young, college attending, and childless nerds and hackers. They don't need to have a bias in who they hire, because they create an innate bias in who chooses to apply by putting that 'application' behind a lot of hoops and rigamarole.
I'm last to the party on the race / gender swap. Ahh well. I should read comments instead of the article before posting next time.
No such thing. You can't balance a girls school on topic A with a boys school on topic B. I don't care what private schools do with their money, but I do not want tax dollars funding this idiocy.
I am all for inclusiveness. But this is not it. This is farcical.
Try and open a publicly funded All Black School of Business, balance it with an All White School of Jazz, and tell me this makes sense. I'll be over here trying not to simultaneously laugh and cry.
The 'stiction' is evident when the rocket is initially coming down and swinging to the left of the video frame, before you see it (over-)correct and swing back to (and past) vertical. I watched that section wondering why the rocket went excessively to the left in the first place, and a stuck valve makes a lot of sense.
I find it interesting that nobody is disputing the validity of the patents, but only the amount you can charge for them. Both sides want patents to remain strong.
Air gap... like Bluetooth?
I know what the term means, but heat is just another type of EM radiation (infra-red) that doesn't have dedicated communication hardware. The accomplishment is neat, but not useful.
As a counter-example, the paper on reading monitors from their diffuse reflected luminance is actually useful. You get a high-bandwith, air-gapped eavesdropping method. This communication by heat is more likely to be detected (as a problem, not necessarily as communication) than a steganographic (thank you) communication channel using more common EM radiation.
I'm not saying it's not 'neat'. It's just not neat and useful.