At least not at this point. It's an empty pledge, which is why he made it. The UK is who wants him. Regardless of the status or validity of the original rape charge, he fled bail (and is still fleeing) in the UK so they have a criminal case against him. Skipping bail is illegal, even if the court later determines the charge that lead to the arrest and subsequent bail is complete BS.
Given that he's been flaunting it for quite some time, they are very likely to pursue it as well.
I would agree it was just Democrats shouting in the dark... if there didn't keep being problems. See here's the thing: The issue isn't with the e-mail leaks. That's not what is being talked about, it is if any of Trump's associates had illegal ties to the Russians and more importantly if Trump tried to cover it up.
Trump was told that Flynn was likely compromised and he shouldn't hire him. Had he not, well that story would end there. But he did hire him. He then pressured the FBI director to drop the investigation in to Flynn, and only fired Flynn when it leaked that he had this conflict of interest. He then implied the problem, and the reason he fired Flynn, was the leak not the compromise. Then he later fired the FBI director which his people claimed was related to the e-mails but he came out and said was because of the Russia investigation.
Guess what? That shit starts to look a lot like obstruction of justice. That's why this thing continues to have legs.
Oh an impeachment of a president? That's not "corrupt politicians" "overthrow[ing] of an elected President," it is constitutional, and is what is supposed to happen if the president breaks the law. Article one section 1 states that "The House of Representatives shall choose their speaker and other officers; and shall have the sole power of impeachment." Article two section four states "The President, Vice President and all civil officers of the United States, shall be removed from office on impeachment for, and conviction of, treason, bribery, or other high crimes and misdemeanors."
So ya, if it turns out he obstructed justice, which you'd need an investigation to determine (and that is what is going on), accepted bribes, or other illegal acts then the House would be within its constitutional power to impeach him and the Senate to try him. That's not some covert scheme to subvert the Constitution, it is written right in the original text.
Too much room for false positives/negatives. I mean look at your phone: You can put a fingerprint on it but it'll require a backup PIN in case that doesn't work. You don't gain any security if there has to be a backup password, it is just a convenience thing.
The right answer is a smart card (or other device with that chip in it like Yubikey). Here you go to token+PIN. It's two factor, thus much harder for an adversary to get around, and it allows for a much shorter, easier to remember password. Reason is that the password/PIN is stored on the card itself, and you get only a small, fixed number of attempts to try it (3 normally) before it locks and can only be unlocked with an administrative code. That means it isn't the kind of thing subject to brute force and thus doesn't need to be long and complex.
There's also no issue with replay attacks since it is PKI, you actually auth by doing a challenge response with a private key stored only on the secure element of the card. At no time does your password/PIN transit the network and even if someone captures all the traffic it is useless since all they get is that particular challenge/response communication, it will be difference next time.
Downside is cost and complexity, of course, but really it is worth it and works damn well. You basically eliminate the problem of accounts getting stolen, and once users get used to it it is easier. Especially since the ID card can be the same card they use to open the doors and so on. HID makes combo cards that work with their existing ISOProx readers and function as NIST PIV smart cards too, or you can get readers that work directly with the smart card certificate.
Biometrics is neat, and I think bio+token could be great in the future, but for now it just seems too problematic. It is useful on a phone, as a convenience thing, but you are actually decreasing your security for it.
1) If that is a big concern, use multi-factor. When real authentication security is important, multi-factor is important. You can't go and say an account is super important and needs high levels of protection but then refuse to go multi-factor.
2) How long are you ok with an adversary having access to your systems? Is 6 months ok? 12? Those are usually what you see password change requirements set at. Are you really ok with someone having unauthorized access to your systems for 12 months, but that's it, any longer is an issue? Of course not. But to change it often enough to keep an unknown compromise to what you'd consider acceptable users would need to change passwords multiple times a day.
Heavy on the "rah rah", light on the details. None of the things they are saying will matter if the chip they produce isn't good. The current chip makers out there make chips that are VERY good for their given purposes, and they have a lot of R&D going in to that. It isn't as though designing a CPU that is fast, efficient, highly capable, etc, etc is some easy feat.
Now maybe these guys did that... but then let's see some info. What are the specs on the chip(s) and what are they designed to compete with? Let's see how it all stacks up. Talking about being "open" and low cost really doesn't matter that much, there are few markets where those would be the primary concerns. Even in things like lower end mobile devices a company will pay more to get a chip that is physically smaller and lower power consumption. So it is going to have to offer something competitive in any market it tries to go in to. What you need varies by market, the primary demands in a mobile chip are very different from a HPC chip, but regardless they have to show how they can at least compete with the existing players.
Any time I see lots of fluff and little numbers... well that makes me think perhaps the numbers aren't all that good.
The biggest thing I miss about my Blackberry from long ago is the physical keyboard. I still suck with on screen keyboards, in part because I have big fingers. However I found that BB keyboard fast to use, despite the tiny keys, because of the tactile feedback.
For one, English is still the language of the United States who is still and exceedingly important trade and military partner with most of the world. That alone makes English pretty important. Likewise while the UK may be leaving the EU, they'll still be trading with the EU, nothing really changes there.
However the real importance of English comes not from the nations where it is the primary language, but all the nations where it isn't. The reason is that while English is only the 3rd or 4th most spoken first language it is, by a mile, the most spoken second language in the world. When people from different nations get together to do business, English is generally the language they use. Chinese is not widely spoken in Japan and Japanese is sure as hell not popular in China, but English is a common second language in both and so usually used when companies from the two nations do business.
In the EU it is even more important as there are a ton of primary languages. If you wanted to do business in the native language of all EU nations you'd need to speak Dutch, French, German (a couple variants thereof), Danish, Irish, Greek, Portuguese, Finnish, Swedish, Hungarian, Greek, Turkish, Czech, Estonian, Latvian, Lithuanian, Maltese, Polish, Slovak, Slovene, Bulgarian, Romanian, and Croatian. While you can find people with that kind of language skill, they are very rare and very sought after. Getting one for your firm is unlikely... However English is a popular second language in all those places, so you can do business in that. You can have people from Germany, Croatia, Greece, and Spain all at a table and English is a language they can probably all use whereas the likelihood that they all speak each other's native tongue is pretty low.
English has become the language of common exchange, and nothing seems to be changing that. Should another language take over for that, French is not likely to be it, much though the French may wish it was.
The problem with "You have to give us your password/PIN/combo/whatever or be in contempt and go to jail," is that even if you are ok with any constitutional issues (or perhaps are from a country without such protections), it is still open to a big issue: What happens when someone forgets? People forget their passwords ALL the time. Anyone who's worked in IT can tell you and yes, this includes things like phone PINs. Problem is with a law like this, you can go to jail, forever. The police demand access to something of yours that is encrypted, you can't remember the password, you get thrown in jail until you give it up. Since you legitimately can't remember, that is the rest of your life.
This gets even more problematic when you consider that good encryption looks just like randomness, and good stenography is undetectable. So a random bit of data in a deleted area on the harddrive: Hidden encrypted data, or just leftover garbage from something the system did? All those high res photos of random shit nobody cares about: Just your hobby and data hoarding, or used to hide encrypted stego data? There is literally no way to prove which, presuming that it was done right. So if the police can say "Decrypt this or else," and it isn't actually anything encrypted, or at least not something you have the key to, then there's a real problem.
If I were a major stake holder in Apple, I'd want my money. Yes, they'd have to pay taxes on it when they brought it in to pay it out as dividends but then I get some of it, whereas right now I'd get none of it. Apple just seems to hoard cash for no discernible purpose. I mean this has gone WAY beyond the amount you'd want to keep as a reserve. Yet for some reason investors are happy to let that continue, rather than demanding their rightful share of all the profits.
And yet the software you are complaining about is MS Word. That is consumer software. To me, this just seems lime more "MS should be held accountable for everything because I don't like them," crap.
You can have that however you have to accept a few things:
1) Costs are going to go way up. You aren't going to pay $50 or $100 for a software package, it'll be 5 or 6 figures. You'll be paying for all the additional testing, certification, and risk.
2) You won't get new stuff. Everything you use will be old tech. You'll be 5-10 years out of date because of the additional time needed to test and prove things. When a new chip or whatever comes on the market it'll be a good bit of time before it has undergone all the validation it needs to be ready for such a critical use.
3) You will not be permitted to modify anything. You will sign a contract (a real paper one) up front that will specify what you can do with the solution, and what environment it must be run in. Every component will have to be certified, all software on the system, the system itself, any systems it connects to, etc. No changes on your part will be permitted, everything will have to be regression tested and verified before any change is made.
If you are ok with that, then off you go! The way I know this is how it goes is that we have shit like this, we have critical systems out there and this is the kind of shit they go through. They are expensive, inflexible, and out of date compared to the latest mass market shit. If you look at the computers that control a fighter plane or the like you'll be amazed at how "dated" they are. Well they are that way because development took a long time and once they are developed, they continue to be used, they aren't changed often.
Now if that's not ok, if you want the free wheeling environment we have now where you can buy new tech when you like, put things together in any configuration, and run whatever you want that's cool, but accept that means problems will happen. You cannot have it both ways.
Oh and also with that critical stuff:
4) There will be no FOSS. If there's liability for losses, nobody will be willing to freely distribute their work. They aren't going to accept liability for no payment, and aren't going to accept that if their code was used by someone else they might be liable.
Turns out research shows that a non-trivial amount of happiness in your life is related to your commute. Long commutes, particularly by car, lead to less happiness.
That is another huge determining factor. The big cost is laying the infrastructure. The kind doesn't matter so much. So, if you are doing new deployments, fiber is more likely. The cable company here is all FTTH all the time for new build outs. However once that shit is deployed a replacement is a lot of money that you'd rather not spend. So they are less inclined to do it.
Well new developments also tend to not be low income. Usually middle and upper class is what they target. No surprise then that is where you see more of it.
There are plenty of rich neighbourhoods where I live with no fibre. The one right next to me is a good example. About 2 blocks away, and they have the same cable and DSL offerings I do in my cheap condo. Neither the telco nor cable company feels there's enough money to be made in ripping up and redoing the lines in either place, despite the fact that those houses are almost all 7 figures.
Go out in to a new subdivision though, and it is usually FTTH.
Also when they do rip things up and replace, of course they target the rich places since those people are more willing to spend the money. Offer someone low income the option of $100/month gigabit or $20/month 1.5mbit and they will likely go with the 1/5mbit. Ya it is way more per bit and annoyingly slow on the modern Internet, but it gets the job done and $80/month is a lot in the budget of someone low income.
Namely that they deliberately under-produced them so they'd be out of stock and thus seen as more desirable, and then suddenly just discontinued their production for no apparent reason.
Thanks. I like the look of those a lot. It's a good deal cheaper than a similar Netgate device (my go to since they own PFSense). Only real area it looks like it would have notably worse performance would be VPN since it lacks AES acceleration. But so long as that isn't being used it should be around the same speed as the 4 core atoms Netgate uses.
I may think about one for home. I'll probably stick with my Edgerouter Lite since those Cavium chips just get lower latency than you can get in pure software at this point, but I am a bigger fan of PFSense than EdgeOS for sure.
Moving to a better router? DD-WRT isn't as updated as it should be these days and has slow performance. Modern consumer routers are fast because they use packet acceleration tech built in to their chips. DD-WRT doesn't know how to do that (at least not that I've ever seen).
So what I recommend for geek types is go to three devices: Modem -> router -> wireless. You can repurpose your existing router as a WAP, or get a purpose built WAP. Either way, you don't do routing on it. Then get a purpose built router.
My top recommendation is a Ubiquiti EdgeRouter Lite. About $100 for a little wired 3-port device that'll pass a gig of traffic with low latency since it has packet acceleration and knows how to use it. It's a bit on the complex side and you can't do all setup through the GUI (IPv6 requires commandline work) but it is powerful, and they are pretty good at updating it. Runs a customized version of VyOS and provides you with access to all the low level stuff. You can compile your own shit for it if you like (is MIPS64 though).
If that isn't to your taste my second choice is PFSense. You can run that on anything x86 but the devices they sell on their site, made by Netgate, are great choices. Its more expensive to hit a gigabit speed because it runs all in software, and that also means its latency is higher. However that said I like the interface better and it is an exceedingly powerful and flexible firewall. It's updated regularly, you can buy professional support, and since it is software you can run it on anything, including a VM. Runs BSD underneath and you can get access to the low level if you want to mess with it.
Third choice would be a something like a Cisco RV340 or maybe RV320. It's the same general hardware as the EdgrRouter Lite, a Cavium Octeon processor which is MIPS64+packet processing, but with Cisco's OS whacked on. Easier to use overall, though not as flexible. Cisco tends to be ok with security updates. They use a slower CPU and less RAM so you aren't going to get a full gig, but they are pretty fast and are nice and low latency. Not too bad price wise either, like $150 for the RV320.
Oh ok, gotcha. In that case, I'd go for Private Internet Access. Their privacy rules are very good (in all cases we have to take the company's own statement on it), price is good, performance seems to be good, and it uses open standards for VPN connections. It also isn't like some where they are located in some minor island nation you've never heard of, they are in the US.
It's what I use and what my instructor at SANS recommended to someone else this week who asked the same question.
If you wanted to filter all systems though it you'd just need a router/fw that did it, again PFSense would do. It uses OpenVPN by default (can do IPSec as well) and PFSense supports that. Your internal systems talk to PFSense, have PFSense VPN to PIA and then set your routing to do 0.0.0.0 over the VPN. Make sure outbound rules are properly configured so traffic is only allowed over VPN interface and you've got an automatic, transparent, system where all systems will communicate via the VPN. You can always change rules if needed to permit direct communication.
If you don't want a network box you can set up your OSes to auto-dial PIA on start. For Windows this is best accomplished with the inbuilt IPSec VPN client, on Linux OpenVPN works nicely (though either can do both). Again you set local firewall/routing rules to prohibit traffic over the local net and require the VPN to be up. Then just treat it like dialup from the old days.
It is getting hard to work in the world with no 'net access. The governments want to use it themselves for many reasons, including just entertainment for the party elite. So, cut that off and they are brought down to the level of their citizens, and that they don't like.
Sanctions can work when they can actually effect the powerful. If you can do something that makes their life worse, that has an effect on them, then they care. This is something that has the potential to do that.
With IPSec you can set up all kinds of policies as to what can communicate with what and you can, if you wish, encrypt all traffic, even over the local LAN. Be warned: It can get complex and you are going to need PKI set up if you want to have any realistic hope of managing it in an enterprise. However you can set things up so that all traffic is encrypted on the wires for all communications, and so that devices can only communicate with other devices of your choosing.
So for a simple setup you could have a firewall (PFSense if you want a cheap one) that talks to whatever your VPN/Proxy is. Then set IPSec policies so that all your computers talk only to it. All traffic will pass only through the PFSense (even internal traffic) and it'll all be encrypted (if you specify that). You set the firewall/routing rules on the PFSense and you can force all outbound traffic over the VPN, and decide what can talk to what inside.
That's a simplistic setup, and the firewall will be a bottleneck, but that's a simple startup. You then can do things like have system to system IPSec communication, more firewall, additional routing controls (on systems or the network) etc etc.
GM looks severely undervalued. What a "normal" P/E valuation should be varies depending on who you ask but usually in the realm of 14-20. In really bad bear markets indexes go down to like 7-10.
Well, GM is like 5. That would imply that it is quite undervalued at the moment.
So you have a very undervalued stock, compared to a stock that people are buying heavily on hyper/hope. That doesn't make for an accurate comparison. Sure Tesla has a bigger market cap... now compare earnings and get back to me.
GDDR5 (I have to imagine DDR5 was a misprint) has a 32-bit wide memory controller. It then gets the bandwidth by stacking those in parallel. So 384-bit = 12 32-bit controllers.
Man is this a "duh" moment. Purpose built ASICs are extremely fast and low power for what they accomplish. That's why we use them. Look at a small desktop network switch: Little tiny processor that can pass 16gb/sec of traffic around. try and put 8 NICs in a computer and have it switch traffic and you'll be amazed at how much power you need. The reason the switch is small is it is purpose built: It's ASIC does nothing but switch Ethernet packets.
Same deal with some thing on a CPU. You find that decoding an AVC video stream takes next to no CPU power on modern CPUs, yet decoding an MPEG-2 video takes some. Why? Because they have a small bit of dedicated logic for AVC decoding (usually some other formats too). It is low power because it is dedicated.
Always the question in designing a system is flexibility and unit cost vs fixed function and up front cost. A CPU is great because it can do anything, and you can just buy them straight out, tons of companies have them available for purchase right now. However they take a lot of silicon and power to perform a given task. An ASIC takes a bunch of up front money to design and do a manufacturing run, but is very small and efficient, however it can't be reconfigured to do anything else and needs a full respin. In the middle there is something like an FPGA. Which one is right for a application just depends on the balance of a lot of factors.
1) Sort of valid but then big screens are available at home these days. It is all about size vs distance, you don't need as big a screen if you are close.
2) Can be nice but can be hell. Yes watching movies with friends is nice (can do that at home) but other people are often inconsiderate.
3)...what? You can be as focused, or not, as you want at home or at the theater.
4) This is just dumb.
5) This is not an advantage IMO. Not because I dislike good sound, but I have a big system at home that'll do THX reference (105dB SPL) levels. Thing is, my system is properly calibrated and set at the right level. Theaters, IMAX in particular, like to turn it up too loud. There is, in fact, a "right" level for movies they are encoded with absolute sound level data.
6) Fuck you.
7) I have less distributions at home. I can focus in on the movie with nobody else bothering me. At the theater, other people control how much focus I can have.
8) Wait, what? I'm not even sure what they are arguing. Also I'd say you get better quality time with a friend/loved one at home than in a theater.
9) I'm not sure if he's aware, but all major soda vendors sell their products at all major retailers. It proves to be very easy to get whatever brand of cola you like at home. 32oz cups are easy to buy as well.
10) Again, fuck you.
If these are the 10 best reasons, then theaters are doomed.
Slashdot Mirror
At least not at this point. It's an empty pledge, which is why he made it. The UK is who wants him. Regardless of the status or validity of the original rape charge, he fled bail (and is still fleeing) in the UK so they have a criminal case against him. Skipping bail is illegal, even if the court later determines the charge that lead to the arrest and subsequent bail is complete BS.
Given that he's been flaunting it for quite some time, they are very likely to pursue it as well.
I would agree it was just Democrats shouting in the dark... if there didn't keep being problems. See here's the thing: The issue isn't with the e-mail leaks. That's not what is being talked about, it is if any of Trump's associates had illegal ties to the Russians and more importantly if Trump tried to cover it up.
Trump was told that Flynn was likely compromised and he shouldn't hire him. Had he not, well that story would end there. But he did hire him. He then pressured the FBI director to drop the investigation in to Flynn, and only fired Flynn when it leaked that he had this conflict of interest. He then implied the problem, and the reason he fired Flynn, was the leak not the compromise. Then he later fired the FBI director which his people claimed was related to the e-mails but he came out and said was because of the Russia investigation.
Guess what? That shit starts to look a lot like obstruction of justice. That's why this thing continues to have legs.
Oh an impeachment of a president? That's not "corrupt politicians" "overthrow[ing] of an elected President," it is constitutional, and is what is supposed to happen if the president breaks the law. Article one section 1 states that "The House of Representatives shall choose their speaker and other officers; and shall have the sole power of impeachment." Article two section four states "The President, Vice President and all civil officers of the United States, shall be removed from office on impeachment for, and conviction of, treason, bribery, or other high crimes and misdemeanors."
So ya, if it turns out he obstructed justice, which you'd need an investigation to determine (and that is what is going on), accepted bribes, or other illegal acts then the House would be within its constitutional power to impeach him and the Senate to try him. That's not some covert scheme to subvert the Constitution, it is written right in the original text.
Too much room for false positives/negatives. I mean look at your phone: You can put a fingerprint on it but it'll require a backup PIN in case that doesn't work. You don't gain any security if there has to be a backup password, it is just a convenience thing.
The right answer is a smart card (or other device with that chip in it like Yubikey). Here you go to token+PIN. It's two factor, thus much harder for an adversary to get around, and it allows for a much shorter, easier to remember password. Reason is that the password/PIN is stored on the card itself, and you get only a small, fixed number of attempts to try it (3 normally) before it locks and can only be unlocked with an administrative code. That means it isn't the kind of thing subject to brute force and thus doesn't need to be long and complex.
There's also no issue with replay attacks since it is PKI, you actually auth by doing a challenge response with a private key stored only on the secure element of the card. At no time does your password/PIN transit the network and even if someone captures all the traffic it is useless since all they get is that particular challenge/response communication, it will be difference next time.
Downside is cost and complexity, of course, but really it is worth it and works damn well. You basically eliminate the problem of accounts getting stolen, and once users get used to it it is easier. Especially since the ID card can be the same card they use to open the doors and so on. HID makes combo cards that work with their existing ISOProx readers and function as NIST PIV smart cards too, or you can get readers that work directly with the smart card certificate.
Biometrics is neat, and I think bio+token could be great in the future, but for now it just seems too problematic. It is useful on a phone, as a convenience thing, but you are actually decreasing your security for it.
1) If that is a big concern, use multi-factor. When real authentication security is important, multi-factor is important. You can't go and say an account is super important and needs high levels of protection but then refuse to go multi-factor.
2) How long are you ok with an adversary having access to your systems? Is 6 months ok? 12? Those are usually what you see password change requirements set at. Are you really ok with someone having unauthorized access to your systems for 12 months, but that's it, any longer is an issue? Of course not. But to change it often enough to keep an unknown compromise to what you'd consider acceptable users would need to change passwords multiple times a day.
Heavy on the "rah rah", light on the details. None of the things they are saying will matter if the chip they produce isn't good. The current chip makers out there make chips that are VERY good for their given purposes, and they have a lot of R&D going in to that. It isn't as though designing a CPU that is fast, efficient, highly capable, etc, etc is some easy feat.
Now maybe these guys did that... but then let's see some info. What are the specs on the chip(s) and what are they designed to compete with? Let's see how it all stacks up. Talking about being "open" and low cost really doesn't matter that much, there are few markets where those would be the primary concerns. Even in things like lower end mobile devices a company will pay more to get a chip that is physically smaller and lower power consumption. So it is going to have to offer something competitive in any market it tries to go in to. What you need varies by market, the primary demands in a mobile chip are very different from a HPC chip, but regardless they have to show how they can at least compete with the existing players.
Any time I see lots of fluff and little numbers... well that makes me think perhaps the numbers aren't all that good.
The biggest thing I miss about my Blackberry from long ago is the physical keyboard. I still suck with on screen keyboards, in part because I have big fingers. However I found that BB keyboard fast to use, despite the tiny keys, because of the tactile feedback.
For one, English is still the language of the United States who is still and exceedingly important trade and military partner with most of the world. That alone makes English pretty important. Likewise while the UK may be leaving the EU, they'll still be trading with the EU, nothing really changes there.
However the real importance of English comes not from the nations where it is the primary language, but all the nations where it isn't. The reason is that while English is only the 3rd or 4th most spoken first language it is, by a mile, the most spoken second language in the world. When people from different nations get together to do business, English is generally the language they use. Chinese is not widely spoken in Japan and Japanese is sure as hell not popular in China, but English is a common second language in both and so usually used when companies from the two nations do business.
In the EU it is even more important as there are a ton of primary languages. If you wanted to do business in the native language of all EU nations you'd need to speak Dutch, French, German (a couple variants thereof), Danish, Irish, Greek, Portuguese, Finnish, Swedish, Hungarian, Greek, Turkish, Czech, Estonian, Latvian, Lithuanian, Maltese, Polish, Slovak, Slovene, Bulgarian, Romanian, and Croatian. While you can find people with that kind of language skill, they are very rare and very sought after. Getting one for your firm is unlikely... However English is a popular second language in all those places, so you can do business in that. You can have people from Germany, Croatia, Greece, and Spain all at a table and English is a language they can probably all use whereas the likelihood that they all speak each other's native tongue is pretty low.
English has become the language of common exchange, and nothing seems to be changing that. Should another language take over for that, French is not likely to be it, much though the French may wish it was.
The problem with "You have to give us your password/PIN/combo/whatever or be in contempt and go to jail," is that even if you are ok with any constitutional issues (or perhaps are from a country without such protections), it is still open to a big issue: What happens when someone forgets? People forget their passwords ALL the time. Anyone who's worked in IT can tell you and yes, this includes things like phone PINs. Problem is with a law like this, you can go to jail, forever. The police demand access to something of yours that is encrypted, you can't remember the password, you get thrown in jail until you give it up. Since you legitimately can't remember, that is the rest of your life.
This gets even more problematic when you consider that good encryption looks just like randomness, and good stenography is undetectable. So a random bit of data in a deleted area on the harddrive: Hidden encrypted data, or just leftover garbage from something the system did? All those high res photos of random shit nobody cares about: Just your hobby and data hoarding, or used to hide encrypted stego data? There is literally no way to prove which, presuming that it was done right. So if the police can say "Decrypt this or else," and it isn't actually anything encrypted, or at least not something you have the key to, then there's a real problem.
If I were a major stake holder in Apple, I'd want my money. Yes, they'd have to pay taxes on it when they brought it in to pay it out as dividends but then I get some of it, whereas right now I'd get none of it. Apple just seems to hoard cash for no discernible purpose. I mean this has gone WAY beyond the amount you'd want to keep as a reserve. Yet for some reason investors are happy to let that continue, rather than demanding their rightful share of all the profits.
I just don't get it.
... says the guy posting on a forum during work hours.
And yet the software you are complaining about is MS Word. That is consumer software. To me, this just seems lime more "MS should be held accountable for everything because I don't like them," crap.
You can have that however you have to accept a few things:
1) Costs are going to go way up. You aren't going to pay $50 or $100 for a software package, it'll be 5 or 6 figures. You'll be paying for all the additional testing, certification, and risk.
2) You won't get new stuff. Everything you use will be old tech. You'll be 5-10 years out of date because of the additional time needed to test and prove things. When a new chip or whatever comes on the market it'll be a good bit of time before it has undergone all the validation it needs to be ready for such a critical use.
3) You will not be permitted to modify anything. You will sign a contract (a real paper one) up front that will specify what you can do with the solution, and what environment it must be run in. Every component will have to be certified, all software on the system, the system itself, any systems it connects to, etc. No changes on your part will be permitted, everything will have to be regression tested and verified before any change is made.
If you are ok with that, then off you go! The way I know this is how it goes is that we have shit like this, we have critical systems out there and this is the kind of shit they go through. They are expensive, inflexible, and out of date compared to the latest mass market shit. If you look at the computers that control a fighter plane or the like you'll be amazed at how "dated" they are. Well they are that way because development took a long time and once they are developed, they continue to be used, they aren't changed often.
Now if that's not ok, if you want the free wheeling environment we have now where you can buy new tech when you like, put things together in any configuration, and run whatever you want that's cool, but accept that means problems will happen. You cannot have it both ways.
Oh and also with that critical stuff:
4) There will be no FOSS. If there's liability for losses, nobody will be willing to freely distribute their work. They aren't going to accept liability for no payment, and aren't going to accept that if their code was used by someone else they might be liable.
Turns out research shows that a non-trivial amount of happiness in your life is related to your commute. Long commutes, particularly by car, lead to less happiness.
That is another huge determining factor. The big cost is laying the infrastructure. The kind doesn't matter so much. So, if you are doing new deployments, fiber is more likely. The cable company here is all FTTH all the time for new build outs. However once that shit is deployed a replacement is a lot of money that you'd rather not spend. So they are less inclined to do it.
Well new developments also tend to not be low income. Usually middle and upper class is what they target. No surprise then that is where you see more of it.
There are plenty of rich neighbourhoods where I live with no fibre. The one right next to me is a good example. About 2 blocks away, and they have the same cable and DSL offerings I do in my cheap condo. Neither the telco nor cable company feels there's enough money to be made in ripping up and redoing the lines in either place, despite the fact that those houses are almost all 7 figures.
Go out in to a new subdivision though, and it is usually FTTH.
Also when they do rip things up and replace, of course they target the rich places since those people are more willing to spend the money. Offer someone low income the option of $100/month gigabit or $20/month 1.5mbit and they will likely go with the 1/5mbit. Ya it is way more per bit and annoyingly slow on the modern Internet, but it gets the job done and $80/month is a lot in the budget of someone low income.
Namely that they deliberately under-produced them so they'd be out of stock and thus seen as more desirable, and then suddenly just discontinued their production for no apparent reason.
Thanks. I like the look of those a lot. It's a good deal cheaper than a similar Netgate device (my go to since they own PFSense). Only real area it looks like it would have notably worse performance would be VPN since it lacks AES acceleration. But so long as that isn't being used it should be around the same speed as the 4 core atoms Netgate uses.
I may think about one for home. I'll probably stick with my Edgerouter Lite since those Cavium chips just get lower latency than you can get in pure software at this point, but I am a bigger fan of PFSense than EdgeOS for sure.
You have any companies that make a setup you like for it? I'm always shopping for new places to get low power/embedded type network devices.
Moving to a better router? DD-WRT isn't as updated as it should be these days and has slow performance. Modern consumer routers are fast because they use packet acceleration tech built in to their chips. DD-WRT doesn't know how to do that (at least not that I've ever seen).
So what I recommend for geek types is go to three devices: Modem -> router -> wireless. You can repurpose your existing router as a WAP, or get a purpose built WAP. Either way, you don't do routing on it. Then get a purpose built router.
My top recommendation is a Ubiquiti EdgeRouter Lite. About $100 for a little wired 3-port device that'll pass a gig of traffic with low latency since it has packet acceleration and knows how to use it. It's a bit on the complex side and you can't do all setup through the GUI (IPv6 requires commandline work) but it is powerful, and they are pretty good at updating it. Runs a customized version of VyOS and provides you with access to all the low level stuff. You can compile your own shit for it if you like (is MIPS64 though).
If that isn't to your taste my second choice is PFSense. You can run that on anything x86 but the devices they sell on their site, made by Netgate, are great choices. Its more expensive to hit a gigabit speed because it runs all in software, and that also means its latency is higher. However that said I like the interface better and it is an exceedingly powerful and flexible firewall. It's updated regularly, you can buy professional support, and since it is software you can run it on anything, including a VM. Runs BSD underneath and you can get access to the low level if you want to mess with it.
Third choice would be a something like a Cisco RV340 or maybe RV320. It's the same general hardware as the EdgrRouter Lite, a Cavium Octeon processor which is MIPS64+packet processing, but with Cisco's OS whacked on. Easier to use overall, though not as flexible. Cisco tends to be ok with security updates. They use a slower CPU and less RAM so you aren't going to get a full gig, but they are pretty fast and are nice and low latency. Not too bad price wise either, like $150 for the RV320.
Oh ok, gotcha. In that case, I'd go for Private Internet Access. Their privacy rules are very good (in all cases we have to take the company's own statement on it), price is good, performance seems to be good, and it uses open standards for VPN connections. It also isn't like some where they are located in some minor island nation you've never heard of, they are in the US.
It's what I use and what my instructor at SANS recommended to someone else this week who asked the same question.
If you wanted to filter all systems though it you'd just need a router/fw that did it, again PFSense would do. It uses OpenVPN by default (can do IPSec as well) and PFSense supports that. Your internal systems talk to PFSense, have PFSense VPN to PIA and then set your routing to do 0.0.0.0 over the VPN. Make sure outbound rules are properly configured so traffic is only allowed over VPN interface and you've got an automatic, transparent, system where all systems will communicate via the VPN. You can always change rules if needed to permit direct communication.
If you don't want a network box you can set up your OSes to auto-dial PIA on start. For Windows this is best accomplished with the inbuilt IPSec VPN client, on Linux OpenVPN works nicely (though either can do both). Again you set local firewall/routing rules to prohibit traffic over the local net and require the VPN to be up. Then just treat it like dialup from the old days.
So give PIA a look, they seem to do well.
It is getting hard to work in the world with no 'net access. The governments want to use it themselves for many reasons, including just entertainment for the party elite. So, cut that off and they are brought down to the level of their citizens, and that they don't like.
Sanctions can work when they can actually effect the powerful. If you can do something that makes their life worse, that has an effect on them, then they care. This is something that has the potential to do that.
No silver bullet, but nothing is.
With IPSec you can set up all kinds of policies as to what can communicate with what and you can, if you wish, encrypt all traffic, even over the local LAN. Be warned: It can get complex and you are going to need PKI set up if you want to have any realistic hope of managing it in an enterprise. However you can set things up so that all traffic is encrypted on the wires for all communications, and so that devices can only communicate with other devices of your choosing.
So for a simple setup you could have a firewall (PFSense if you want a cheap one) that talks to whatever your VPN/Proxy is. Then set IPSec policies so that all your computers talk only to it. All traffic will pass only through the PFSense (even internal traffic) and it'll all be encrypted (if you specify that). You set the firewall/routing rules on the PFSense and you can force all outbound traffic over the VPN, and decide what can talk to what inside.
That's a simplistic setup, and the firewall will be a bottleneck, but that's a simple startup. You then can do things like have system to system IPSec communication, more firewall, additional routing controls (on systems or the network) etc etc.
GM looks severely undervalued. What a "normal" P/E valuation should be varies depending on who you ask but usually in the realm of 14-20. In really bad bear markets indexes go down to like 7-10.
Well, GM is like 5. That would imply that it is quite undervalued at the moment.
So you have a very undervalued stock, compared to a stock that people are buying heavily on hyper/hope. That doesn't make for an accurate comparison. Sure Tesla has a bigger market cap... now compare earnings and get back to me.
GDDR5 (I have to imagine DDR5 was a misprint) has a 32-bit wide memory controller. It then gets the bandwidth by stacking those in parallel. So 384-bit = 12 32-bit controllers.
Man is this a "duh" moment. Purpose built ASICs are extremely fast and low power for what they accomplish. That's why we use them. Look at a small desktop network switch: Little tiny processor that can pass 16gb/sec of traffic around. try and put 8 NICs in a computer and have it switch traffic and you'll be amazed at how much power you need. The reason the switch is small is it is purpose built: It's ASIC does nothing but switch Ethernet packets.
Same deal with some thing on a CPU. You find that decoding an AVC video stream takes next to no CPU power on modern CPUs, yet decoding an MPEG-2 video takes some. Why? Because they have a small bit of dedicated logic for AVC decoding (usually some other formats too). It is low power because it is dedicated.
Always the question in designing a system is flexibility and unit cost vs fixed function and up front cost. A CPU is great because it can do anything, and you can just buy them straight out, tons of companies have them available for purchase right now. However they take a lot of silicon and power to perform a given task. An ASIC takes a bunch of up front money to design and do a manufacturing run, but is very small and efficient, however it can't be reconfigured to do anything else and needs a full respin. In the middle there is something like an FPGA. Which one is right for a application just depends on the balance of a lot of factors.
Some of these are a little valid but more are BS:
1) Sort of valid but then big screens are available at home these days. It is all about size vs distance, you don't need as big a screen if you are close.
2) Can be nice but can be hell. Yes watching movies with friends is nice (can do that at home) but other people are often inconsiderate.
3) ...what? You can be as focused, or not, as you want at home or at the theater.
4) This is just dumb.
5) This is not an advantage IMO. Not because I dislike good sound, but I have a big system at home that'll do THX reference (105dB SPL) levels. Thing is, my system is properly calibrated and set at the right level. Theaters, IMAX in particular, like to turn it up too loud. There is, in fact, a "right" level for movies they are encoded with absolute sound level data.
6) Fuck you.
7) I have less distributions at home. I can focus in on the movie with nobody else bothering me. At the theater, other people control how much focus I can have.
8) Wait, what? I'm not even sure what they are arguing. Also I'd say you get better quality time with a friend/loved one at home than in a theater.
9) I'm not sure if he's aware, but all major soda vendors sell their products at all major retailers. It proves to be very easy to get whatever brand of cola you like at home. 32oz cups are easy to buy as well.
10) Again, fuck you.
If these are the 10 best reasons, then theaters are doomed.