Because you can't reproduce, the bug doesn't exist?
I'd be looking for a commit that specifically says it patches this bug, or a closure of all related bug-reports, before I started walking off in disgust.
And I'm sure there's a switch somewhere that means it gets delivered to you even if you've opted out (I'm assuming that's possible), in case there's a serious incident.
One hacker, brief access to the system, and a malicious link or even just photograph if they can craft it just right, and make it look innocuous so people look at it and just delete it rather than get into a panic. Voila... millions of compromised devices.
Seriously, this is the most big-brother feature I've ever heard of. We might have emergency broadcast in my country but I have literally never received one, ever, on any device. Presumably because we reserve them for fecking emergencies that require EVERYONE to panic, rather than whatever car chase is going on nearby.
I guarantee you that I can find a piece of paper older than 25 years quite easily. I probably have one in my attic.
I can find you a microscope and telescope even older. Or if we're talking electronics, electronic games and games older than 25 years.
25 years is, to be honest, pathetic in terms of longevity. I have electronic toys from my childhood that haven't been particularly looked after which still work just fine.
To be honest, I'm sitting here thinking "Only 25 years?". I have a 1960's memory chip on my desk. It's the size of a dinner plate. If I had the room-sized supercomputer that went with it, I might even be able to tell you if it's working. I see no reason for it not to as it's in perfect condition and still in the original box.
25 years is really pathetic. And how much tech has lasted that long? A handful of things across the world.
How much is going to last 50-100 years? Almost nothing.
And there goes entire periods of history with no permanent record, of technology or data.
To give you a clue, this memory chip only has the code C630-5150-T001 on it. Find me a spec sheet. A manufacturer. Tell me what it does or how to interface with it.
It's pretty, but it's completely dead technology without spending literally tens of thousands to analyse how it works and destroying it in the process.
Now consider what's going to happen to everything else by the time they are that old. It's only another 20 years that you're asking of this C64. By then, even the generation that grew up with it and now enjoy it on emulators will have started to forget about it, and certainly how it works. You think your grandchild's generation are going to care at all, even the archivists and museum curators?
Was the first Arctic traversal a government mission? How about the first summit of Mount Everest? How about the first flight?
Nope.
Either private enterprise or not-for-profit groups.
Government does little in the way of firsts as they are bound by health and safety laws and sending people on fact-gathering missions is generally a waste of money. Technically the moon missions would come under military, even then, wouldn't they?
Don't wait for your government to be the first to cross the Atlantic or swim the English Channel. It ain't going to happen.
To quote XKCD: "For Man has earned his right to hold this planet against all comers, by virtue of occasionally producing someone totally batshit insane."
Where's that "So you think you have a way to block spam?" fill-out-form joke?
A website, or a game server, is EXACTLY the kind of machine that receives a significant portion of its requests from people it's never seen before.
On top of that, a DDoS doesn't care if you "block" it. It's still consumed 1Tb of traffic. Even if every single packet never reaches the server, the DDoS will knock you offline by swamping your connection.
You can "firewall" it right at the first point that your connection comes in. It still consumes your connection.
You have to ask your upstream to block it - who have EXACTLY the same problem. They block it, but it still consumes Terabytes of otherwise-usable bandwidth to do so.
I'm afraid your suggestion would tick almost every one of the the "Will not work because" boxes.
Though the attack might be targeted at a games server, OVH and their datacentres almost certainly run a number of much more important services for much better paying customers.
DDoS is indiscriminate and affects everybody, not just the target of it.
"So what will be the impact of this? Will we see cheaper, lower-power encryption devices? Or maybe quicker cracking times in brute force attacks?"
Neither.
It's a method to discover primes using elimination of non-primes up to the square root of the number you're after.
If you can get that far, you can get to the prime itself quite easily. It's not going to help discover new large primes without eliminating BILLIONS of numbers in between.
And from there it has nothing to do with cracking encryption whatsoever.
The impact of this is that a child's method of eliminating factorisable numbers slowly takes up slightly less storage space (i.e. slightly less variables held in RAM) than before. It's not a breakthrough in maths, but a slight efficiency saving in the computer science to perform the algorithm in practical terms.
Though it doesn't seem to apply to home networks, how can you be an IT professional of any kind and NOT know what's coming into or going out of your network?
If nothing else, precisely because of things like this where your CCTV NVR or your thermostat could be hacked and doing whatever it likes. In fact, DDoS of someone else is the LEAST of your worries if someone is able to coax your devices into running arbitrary code on your local network.
Sorry, but this kind of thing needs management and there isn't a home router on this planet that does things like send you an email when a "new" device connects, or alerts you to unusual activity from your local network devices.
So the US are openly picking battles with Russia AND North Korea now?
Guys, seriously, has the terrorist thing worn thin or something? Or have you realised that piling into other people's countries and "fixing" them achieves fuck-all that people in that country consider "fixing"?
If you want another hundred billion for the military just say so, stop picking fights with people who either do - or may soon - have the capability to fight back once and for all.
And if the Russians are manipulating your election and affecting your candidates, maybe you should look at your election and candidates instead of the Russians. Because, for sure, you'd do exactly the same if you could over in their country.
How about fixing your election system and having news channels that report on real things, like who's taking backhanders, what crappy laws have been slipped into completely unrelated bills, and such-like?
Oh, sorry, that would involve having impartial news channels not already owned by the people in charge, right?
It's literally best practice and the way any sensible organistion should do it. An authentication server is just that - it authenticates. Whether that's RADIUS or whatever else, it should do one job and do it well and have the minimum amount of access necessary to do that job.
With someone like Yahoo's money and resources there is no excuse.
And with an auth server farm, how do you get hacked? It has to be deliberate insider intrusion (i.e. someone who works on those machines). Done properly, even sniffing the entire network around it wouldn't do much and certainly wouldn't be able to affect older logons.
If the auth servers were just doing auth, and nothing else, and isolated, and had a single "auth" port exposed that ran a limited-scope protocol that only returns the bare minimum of data, the scope for attack is almost zero. And you literally lock them away and don't let anyone but your most trusted engineers touch them.
So it's quite obvious that all these places that do get hacked AREN'T running proper auth servers at all.
Even Steam, when it had credit card data stolen, the data was encrypted (so nothing ever came of the data leak) but... how did they get that? Why is that not stored on a completely isolated system? Why were they able to get historical records rather than only those flying over the live network (which is, I admit, harder to secure)? It means it wasn't isolated and secured.
Even CA's have had their root certificates compromised and you'd expect that to be the most secure thing in the world. Literally, make them on an offline computer, generate and sign some other root certs that you actually use, and then switch that thing off and never turn it on again unless you need it.
But, in real life, despite all the posturing about security, none of this ever happens.
The curse of general-purpose operating systems, general-purpose computers and even - as could happen in real life if people took your suggestion - using VM hypervisors as the gateway between your data and the VMs running the outside services (nothing wrong with VMs themselves, so long as the entire server farm was completely isolated from all the others - personally, for an auth farm, I'd use physical servers only to reduce the attack area even more).
200m user details stored in one place that can get hacked?
I wouldn't hold your breath here.
At most, you'd expect some kind of isolated authentication service, separate from the rest of their servers but I doubt it.
If someone has just sucked it out of a SQL table, the chances of it being properly hashed and salted are minimal. And the chances they used MD5 - which even hashed and salted is cracked beyond belief nowadays - rather than something sensible? Minimal.
Because this is new evidence that may show someone lied to the court, or provide new avenues for charges?
If this guy was asked "Did you delete emails?" and said no, this case is wide-open again because he could be found to be lying based on this discovery. If his competency was used as a factor in ensuring the regulations were met, that might be brought into question by experts if the court interprets this evidence in certain ways.
Double-jeopardy doesn't apply if new evidence is brought in most countries.
But then, most countries don't have nonsense laws like that anyway, or prescribe them in such a way that they only stop harassment of a defendant rather than letting murderers get off because the lawyers were stupid but it doesn't quite qualify as a mistrial.
To me, that just sounds like a committee that looks and sees what it can forget to check or do, not a committee that watches and manages a set of people.
I know that, technically, the word also means to manage people but... that's not what I think when I read it.
And the summary headline just makes it worse. It makes it sounds like it's happened by accident.
Not "lead-free solder" but using some cheap junk instead.
Lead-free solder, in and of itself, isn't the problem. It's people using cheap junk. Same way you could haved used pound-shop leaded solder and got the same problem.
Or capacitors with stolen-formula electrolyte that failed over time taking out millions of devices (Google "Capacitor Plague"). Nothing to do with "using capacitors". Everything to do with using cheap junk instead.
Particle could be anything, probably sub-atomic to actually work, so it barely matters what atom is actually SENT down the wire. Most likely a photon, though, in these cases though you can do it with electrons and similar.
Information is probably not much per attempt. Maybe as low as a bit each time. But that's enough to form a bitstream. Slow, but a bitstream. That means you can send a conventional PKE key or DH exchange using it because they are small but need to be transmitted securely.
You're measuring a property of the photon. Most likely a particular Bell State (google it) that it falls into.
Measuring that is HARD. Entangling it is harder.
Measuring the state actually destroys the "connection", as such - like ripping open the envelope means you can't reseal it without someone noticing something has changed.
Thus, you can't measure the state AND then pass it on as the original. Which means you can't interfere with a message without people knowing, and then they throw that message / key away and make a new one.
And quantum teleportation is when something is in an entangled state. You send it anywhere in the universe. You measure it. And THAT MEASUREMENT determines what the particle was all along, everywhere, in all the universe, immediately, without care of the speed of light (Quantum stuff is WEIRD).
Think of it as not "putting a message into a particle" but as "revealing what universe you WERE already in". When you measure, you know EXACTLY what universe you are in NOW, for that time of measuring. But it could be any universe and you could end up measuring all kinds of values. But in YOUR universe, for THAT measurement, your special code is whatever you measured. There's no way to determine that before you measure.
But as soon as you know that, you know what everyone else sent too because of the universe you happen to be in.
It's like being at a murder mystery party and not knowing that the murderer was YOU until the very end. when you measure them all. Even though you've already killed the guy, you didn't know until that point.
Quantum stuff is weird. It's never going to be easy to understand.
Because of many reasons, but one of them is that you stop when the thing says you've hit your target exercise amount etc.
Totally useless.
The other day colleagues were talking about the same thing. I mentioned that my phone is set to "get me fit" on Samsung Health apps.
For context, I do NO exercise whatsoever. I'm a lazy bum who's as skinny as hell, in that respect.
The "target" it set me - I've "achieved" it every single day since I got the phone. Without even trying. Literally just walking around the office each day in normal activity. I'm not trying - I see no need - but literally just ordinary things I do every day make me seem "fit" by the default settings that someone who bought into the fad would probably accept as a LONG-TERM target.
And then I drop my phone when I'm at home so it can't monitor that, so technically I'm probably doing TWICE as much as it recommends. Without doing anything.
Everyone else I asked said the same, even those fitness fanatics. They don't use the apps because the recommendations are so low they "achieve" them every single day whereas they are quite happy to then go on three or four hour runs after work too. If you just relied on the activity trackers and apps, you'll stop midway through the day even if you're constantly upping the recommendations, and then think you're doing something special.
And it just gives you an excuse - "I did better today than yesterday, I might as well stop". If the tracking wasn't there, you'd probably say "I'm still feeling good, I'll give it another half-hour" or whatever.
And, let's be honest, the reason I have the app in the first place is to measure my heart rate for a laugh. I really don't care when it goes out of the recommended box, I just like measuring it as a gimmick. The activity trackers are all the same, so you can "boast" that you've done 10,000 steps today or whatever.
I do 20,000 steps every single day without trying or being in an active profession (I work in an IT office, ffs!).
Tell me when every computer chassis is like that, every laptop chassis, and I can pick up the upgrade boards in PC World (not that I would, but there you go).
Until then, it's nothing more than "yet-another-standard"
Sorry, I can't remember the last time a solder joint failed on me. To be honest, I can't remember the last time a board failed on me. What I get nowadays is physical breakage (screens, hinges, plastics, etc.) on much less sophisticated parts, and the much MORE sophisticated parts break nowhere near as often as the boards in my TV's that I had back in the "renting-a-TV" days.
I honestly can't remember how old my TV is. Or my DVD player. Or my router. Or any of the PCs in my house. They are all at least three-four years old and still going, and I have items that are older than that. And anything in the last decade or so must have been RoHS and lead-free solder.
I even do hobbyist electronics, it works just fine, thanks.
And nowadays you can't throw lead from PCBs into landfill which then leaks into the watertable and poisons everyone.
It's nice to see you have a hobby, but does it have to be spreading rubbish about something because it wasn't like that when you grew up inhaling lead fumes? I suppose you want lead-based paint back because "paint hasn't been the same since the 50's" too?
Been telling people (on here even) this for years.
Some companies do do it properly. A lot just ship off to China to someone who signs a form to SAY they are compliant when they are quite obviously not.
There are documentaries galore where they GPS-tag junk and it ends up in landfill.
There's no way to make things profitable that aren't, unless you break laws, cut corners or don't do what you say you will.
In previous years, I shipped 100 old dead CRT's to a WEEE-authorised disposal firm. Some guy came round and picked them up for nothing. He charged me nothing. He loaded them on a van, supplied the official WEEE disposal forms all filled out, and then drove off.
Before he left, I asked him what he does with it all. He drives them to London Heathrow (I work in London). Some guy gives him 1GBP per monitor. They load them into containers, sign HIS official forms and then put them on planes. The 1GBP pays the van guy's fuel cost. Anything else (e.g. copper cables, salvageable hardware) pays his wages. He used to LOVE me because I gave him a box of old power leads each time. That was "his profit" as he would say.
Why on EARTH would you pay 1GBP for an old CRT? Why would you then pay to ship it out at cargo-rates to ANY country via a plane, effectively multiply the cost by ten times or more? What do you think you're going to make at the other end to make that profitable?
I always suspected they are paid subsidies to dispose of it. They give the guy 1GBP of that. They ship it out to landfill and pay some company out in the middle of nowhere with lax laws to sign their forms and bury it. The guy in the van pretty much suspects the same, but doesn't care.
There's almost no salvageable material. The hazardous waste more than cancels out any profit from it even if there is. Then shipping, handling, etc. costs a fortune. Where is that money coming FROM? Who's paying, say, 1000GBP for the useful metal out of 100 CRT's? It's all a fraud to hide people landfilling waste but because "the paper says so", it's hushed up.
Then include things like toasters that cost 5GBP to buy, so have a pittance of salvageable metal or wire, and who the hell is profiting from broken toasters?
The guy in China who's just burying them, signing a form in a language he doesn't understand and which isn't legally binding on him in his country, who just loads it on a truck to the local tip while some idiot country pays him a fortune to do what they could do themselves.
"have (the signature on a document) attested to by a notary."
To notarize something, usually by a solicitor, is to say that that something existed, was seen, what the content of it was, and prove that it existed. You notarize things like contracts and wills and things like that, but there's no reason you can't notarize data itself.
Using the Bitcoin blockchain you would be able to provide proof of the time/date of that notarization, what was notarized and by whom, with virtually-certainty that in the future that proof will still be around and intact and provably unfalsified (i.e. people can't tamper with it to make it look like you signed a different document yesterday, etc.) and you could even provide proof of WHO you were by being in possession of the private wallet associated with the transactions that provide the proof in the blockchain.
In the same way that we will know Satoshi (the inventor of Bitcoin) if he ever reveals himself, because only he would have the ability to make transactions from his original wallet (which address is well-known but nobody else can fake).
Which is probably why that guy that CLAIMED to be Satoshi has been very quiet the last few months because he actually WASN'T able to demonstrate a transaction from one of the original wallets.
Slashdot Mirror
Because you can't reproduce, the bug doesn't exist?
I'd be looking for a commit that specifically says it patches this bug, or a closure of all related bug-reports, before I started walking off in disgust.
My very first thought.
And I'm sure there's a switch somewhere that means it gets delivered to you even if you've opted out (I'm assuming that's possible), in case there's a serious incident.
One hacker, brief access to the system, and a malicious link or even just photograph if they can craft it just right, and make it look innocuous so people look at it and just delete it rather than get into a panic. Voila... millions of compromised devices.
Seriously, this is the most big-brother feature I've ever heard of. We might have emergency broadcast in my country but I have literally never received one, ever, on any device. Presumably because we reserve them for fecking emergencies that require EVERYONE to panic, rather than whatever car chase is going on nearby.
I guarantee you that I can find a piece of paper older than 25 years quite easily. I probably have one in my attic.
I can find you a microscope and telescope even older.
Or if we're talking electronics, electronic games and games older than 25 years.
25 years is, to be honest, pathetic in terms of longevity. I have electronic toys from my childhood that haven't been particularly looked after which still work just fine.
To be honest, I'm sitting here thinking "Only 25 years?". I have a 1960's memory chip on my desk. It's the size of a dinner plate. If I had the room-sized supercomputer that went with it, I might even be able to tell you if it's working. I see no reason for it not to as it's in perfect condition and still in the original box.
25 years is really pathetic.
And how much tech has lasted that long? A handful of things across the world.
How much is going to last 50-100 years? Almost nothing.
And there goes entire periods of history with no permanent record, of technology or data.
To give you a clue, this memory chip only has the code C630-5150-T001 on it. Find me a spec sheet. A manufacturer. Tell me what it does or how to interface with it.
It's pretty, but it's completely dead technology without spending literally tens of thousands to analyse how it works and destroying it in the process.
Now consider what's going to happen to everything else by the time they are that old. It's only another 20 years that you're asking of this C64. By then, even the generation that grew up with it and now enjoy it on emulators will have started to forget about it, and certainly how it works. You think your grandchild's generation are going to care at all, even the archivists and museum curators?
Was the first Arctic traversal a government mission?
How about the first summit of Mount Everest?
How about the first flight?
Nope.
Either private enterprise or not-for-profit groups.
Government does little in the way of firsts as they are bound by health and safety laws and sending people on fact-gathering missions is generally a waste of money. Technically the moon missions would come under military, even then, wouldn't they?
Don't wait for your government to be the first to cross the Atlantic or swim the English Channel. It ain't going to happen.
To quote XKCD: "For Man has earned his right to hold this planet against all comers, by virtue of occasionally producing someone totally batshit insane."
Where's that "So you think you have a way to block spam?" fill-out-form joke?
A website, or a game server, is EXACTLY the kind of machine that receives a significant portion of its requests from people it's never seen before.
On top of that, a DDoS doesn't care if you "block" it. It's still consumed 1Tb of traffic. Even if every single packet never reaches the server, the DDoS will knock you offline by swamping your connection.
You can "firewall" it right at the first point that your connection comes in. It still consumes your connection.
You have to ask your upstream to block it - who have EXACTLY the same problem. They block it, but it still consumes Terabytes of otherwise-usable bandwidth to do so.
I'm afraid your suggestion would tick almost every one of the the "Will not work because" boxes.
Collateral Damage.
Though the attack might be targeted at a games server, OVH and their datacentres almost certainly run a number of much more important services for much better paying customers.
DDoS is indiscriminate and affects everybody, not just the target of it.
Er... the newest there is Firefox 19.0 from three years ago.
Good luck!
"So what will be the impact of this? Will we see cheaper, lower-power encryption devices? Or maybe quicker cracking times in brute force attacks?"
Neither.
It's a method to discover primes using elimination of non-primes up to the square root of the number you're after.
If you can get that far, you can get to the prime itself quite easily. It's not going to help discover new large primes without eliminating BILLIONS of numbers in between.
And from there it has nothing to do with cracking encryption whatsoever.
The impact of this is that a child's method of eliminating factorisable numbers slowly takes up slightly less storage space (i.e. slightly less variables held in RAM) than before. It's not a breakthrough in maths, but a slight efficiency saving in the computer science to perform the algorithm in practical terms.
I beat my record!
Run the Win98 one.
Shut it down.
It BSOD's with 0E exception in VXD VDD.
That's got to be a world-record in terms of "number of instructions executed before a fatal error".
Not a chance in hell that IE would run that.
Edge minimum, I should think.
You'd even struggle to download a modern Firefox that worked on '98.
Though it doesn't seem to apply to home networks, how can you be an IT professional of any kind and NOT know what's coming into or going out of your network?
If nothing else, precisely because of things like this where your CCTV NVR or your thermostat could be hacked and doing whatever it likes. In fact, DDoS of someone else is the LEAST of your worries if someone is able to coax your devices into running arbitrary code on your local network.
Sorry, but this kind of thing needs management and there isn't a home router on this planet that does things like send you an email when a "new" device connects, or alerts you to unusual activity from your local network devices.
So the US are openly picking battles with Russia AND North Korea now?
Guys, seriously, has the terrorist thing worn thin or something? Or have you realised that piling into other people's countries and "fixing" them achieves fuck-all that people in that country consider "fixing"?
If you want another hundred billion for the military just say so, stop picking fights with people who either do - or may soon - have the capability to fight back once and for all.
And if the Russians are manipulating your election and affecting your candidates, maybe you should look at your election and candidates instead of the Russians. Because, for sure, you'd do exactly the same if you could over in their country.
How about fixing your election system and having news channels that report on real things, like who's taking backhanders, what crappy laws have been slipped into completely unrelated bills, and such-like?
Oh, sorry, that would involve having impartial news channels not already owned by the people in charge, right?
They should.
It's literally best practice and the way any sensible organistion should do it. An authentication server is just that - it authenticates. Whether that's RADIUS or whatever else, it should do one job and do it well and have the minimum amount of access necessary to do that job.
With someone like Yahoo's money and resources there is no excuse.
And with an auth server farm, how do you get hacked? It has to be deliberate insider intrusion (i.e. someone who works on those machines). Done properly, even sniffing the entire network around it wouldn't do much and certainly wouldn't be able to affect older logons.
If the auth servers were just doing auth, and nothing else, and isolated, and had a single "auth" port exposed that ran a limited-scope protocol that only returns the bare minimum of data, the scope for attack is almost zero. And you literally lock them away and don't let anyone but your most trusted engineers touch them.
So it's quite obvious that all these places that do get hacked AREN'T running proper auth servers at all.
Even Steam, when it had credit card data stolen, the data was encrypted (so nothing ever came of the data leak) but... how did they get that? Why is that not stored on a completely isolated system? Why were they able to get historical records rather than only those flying over the live network (which is, I admit, harder to secure)? It means it wasn't isolated and secured.
Even CA's have had their root certificates compromised and you'd expect that to be the most secure thing in the world. Literally, make them on an offline computer, generate and sign some other root certs that you actually use, and then switch that thing off and never turn it on again unless you need it.
But, in real life, despite all the posturing about security, none of this ever happens.
The curse of general-purpose operating systems, general-purpose computers and even - as could happen in real life if people took your suggestion - using VM hypervisors as the gateway between your data and the VMs running the outside services (nothing wrong with VMs themselves, so long as the entire server farm was completely isolated from all the others - personally, for an auth farm, I'd use physical servers only to reduce the attack area even more).
200m user details stored in one place that can get hacked?
I wouldn't hold your breath here.
At most, you'd expect some kind of isolated authentication service, separate from the rest of their servers but I doubt it.
If someone has just sucked it out of a SQL table, the chances of it being properly hashed and salted are minimal. And the chances they used MD5 - which even hashed and salted is cracked beyond belief nowadays - rather than something sensible? Minimal.
There are notification requirements, yes.
But nowhere does it say 24 hours.
Because this is new evidence that may show someone lied to the court, or provide new avenues for charges?
If this guy was asked "Did you delete emails?" and said no, this case is wide-open again because he could be found to be lying based on this discovery. If his competency was used as a factor in ensuring the regulations were met, that might be brought into question by experts if the court interprets this evidence in certain ways.
Double-jeopardy doesn't apply if new evidence is brought in most countries.
But then, most countries don't have nonsense laws like that anyway, or prescribe them in such a way that they only stop harassment of a defendant rather than letting murderers get off because the lawyers were stupid but it doesn't quite qualify as a mistrial.
I'm just laughing.
A House Oversight Committee.
To me, that just sounds like a committee that looks and sees what it can forget to check or do, not a committee that watches and manages a set of people.
I know that, technically, the word also means to manage people but... that's not what I think when I read it.
And the summary headline just makes it worse. It makes it sounds like it's happened by accident.
Attributed to:
"use of the wrong type of lead-free solder"
Not "lead-free solder" but using some cheap junk instead.
Lead-free solder, in and of itself, isn't the problem. It's people using cheap junk. Same way you could haved used pound-shop leaded solder and got the same problem.
Or capacitors with stolen-formula electrolyte that failed over time taking out millions of devices (Google "Capacitor Plague"). Nothing to do with "using capacitors". Everything to do with using cheap junk instead.
"Does no one else think cars + computers + network connectivity = bad?"
Does no one else think that phone + computer + network connectivity + radio connectivity + location sensing + chargeable services + .... + ... = bad?
Apparently only a few.
Particle could be anything, probably sub-atomic to actually work, so it barely matters what atom is actually SENT down the wire. Most likely a photon, though, in these cases though you can do it with electrons and similar.
Information is probably not much per attempt. Maybe as low as a bit each time. But that's enough to form a bitstream. Slow, but a bitstream. That means you can send a conventional PKE key or DH exchange using it because they are small but need to be transmitted securely.
You're measuring a property of the photon. Most likely a particular Bell State (google it) that it falls into.
Measuring that is HARD.
Entangling it is harder.
Measuring the state actually destroys the "connection", as such - like ripping open the envelope means you can't reseal it without someone noticing something has changed.
Thus, you can't measure the state AND then pass it on as the original. Which means you can't interfere with a message without people knowing, and then they throw that message / key away and make a new one.
And quantum teleportation is when something is in an entangled state. You send it anywhere in the universe. You measure it. And THAT MEASUREMENT determines what the particle was all along, everywhere, in all the universe, immediately, without care of the speed of light (Quantum stuff is WEIRD).
Think of it as not "putting a message into a particle" but as "revealing what universe you WERE already in". When you measure, you know EXACTLY what universe you are in NOW, for that time of measuring. But it could be any universe and you could end up measuring all kinds of values. But in YOUR universe, for THAT measurement, your special code is whatever you measured. There's no way to determine that before you measure.
But as soon as you know that, you know what everyone else sent too because of the universe you happen to be in.
It's like being at a murder mystery party and not knowing that the murderer was YOU until the very end. when you measure them all. Even though you've already killed the guy, you didn't know until that point.
Quantum stuff is weird. It's never going to be easy to understand.
Because of many reasons, but one of them is that you stop when the thing says you've hit your target exercise amount etc.
Totally useless.
The other day colleagues were talking about the same thing. I mentioned that my phone is set to "get me fit" on Samsung Health apps.
For context, I do NO exercise whatsoever. I'm a lazy bum who's as skinny as hell, in that respect.
The "target" it set me - I've "achieved" it every single day since I got the phone. Without even trying. Literally just walking around the office each day in normal activity. I'm not trying - I see no need - but literally just ordinary things I do every day make me seem "fit" by the default settings that someone who bought into the fad would probably accept as a LONG-TERM target.
And then I drop my phone when I'm at home so it can't monitor that, so technically I'm probably doing TWICE as much as it recommends. Without doing anything.
Everyone else I asked said the same, even those fitness fanatics. They don't use the apps because the recommendations are so low they "achieve" them every single day whereas they are quite happy to then go on three or four hour runs after work too. If you just relied on the activity trackers and apps, you'll stop midway through the day even if you're constantly upping the recommendations, and then think you're doing something special.
And it just gives you an excuse - "I did better today than yesterday, I might as well stop". If the tracking wasn't there, you'd probably say "I'm still feeling good, I'll give it another half-hour" or whatever.
And, let's be honest, the reason I have the app in the first place is to measure my heart rate for a laugh. I really don't care when it goes out of the recommended box, I just like measuring it as a gimmick. The activity trackers are all the same, so you can "boast" that you've done 10,000 steps today or whatever.
I do 20,000 steps every single day without trying or being in an active profession (I work in an IT office, ffs!).
Great.
Tell me when every computer chassis is like that, every laptop chassis, and I can pick up the upgrade boards in PC World (not that I would, but there you go).
Until then, it's nothing more than "yet-another-standard"
Sorry, I can't remember the last time a solder joint failed on me. To be honest, I can't remember the last time a board failed on me. What I get nowadays is physical breakage (screens, hinges, plastics, etc.) on much less sophisticated parts, and the much MORE sophisticated parts break nowhere near as often as the boards in my TV's that I had back in the "renting-a-TV" days.
I honestly can't remember how old my TV is. Or my DVD player. Or my router. Or any of the PCs in my house. They are all at least three-four years old and still going, and I have items that are older than that. And anything in the last decade or so must have been RoHS and lead-free solder.
I even do hobbyist electronics, it works just fine, thanks.
And nowadays you can't throw lead from PCBs into landfill which then leaks into the watertable and poisons everyone.
It's nice to see you have a hobby, but does it have to be spreading rubbish about something because it wasn't like that when you grew up inhaling lead fumes? I suppose you want lead-based paint back because "paint hasn't been the same since the 50's" too?
Been telling people (on here even) this for years.
Some companies do do it properly. A lot just ship off to China to someone who signs a form to SAY they are compliant when they are quite obviously not.
There are documentaries galore where they GPS-tag junk and it ends up in landfill.
There's no way to make things profitable that aren't, unless you break laws, cut corners or don't do what you say you will.
In previous years, I shipped 100 old dead CRT's to a WEEE-authorised disposal firm. Some guy came round and picked them up for nothing. He charged me nothing. He loaded them on a van, supplied the official WEEE disposal forms all filled out, and then drove off.
Before he left, I asked him what he does with it all. He drives them to London Heathrow (I work in London). Some guy gives him 1GBP per monitor. They load them into containers, sign HIS official forms and then put them on planes. The 1GBP pays the van guy's fuel cost. Anything else (e.g. copper cables, salvageable hardware) pays his wages. He used to LOVE me because I gave him a box of old power leads each time. That was "his profit" as he would say.
Why on EARTH would you pay 1GBP for an old CRT? Why would you then pay to ship it out at cargo-rates to ANY country via a plane, effectively multiply the cost by ten times or more? What do you think you're going to make at the other end to make that profitable?
I always suspected they are paid subsidies to dispose of it. They give the guy 1GBP of that. They ship it out to landfill and pay some company out in the middle of nowhere with lax laws to sign their forms and bury it. The guy in the van pretty much suspects the same, but doesn't care.
There's almost no salvageable material. The hazardous waste more than cancels out any profit from it even if there is. Then shipping, handling, etc. costs a fortune. Where is that money coming FROM? Who's paying, say, 1000GBP for the useful metal out of 100 CRT's? It's all a fraud to hide people landfilling waste but because "the paper says so", it's hushed up.
Then include things like toasters that cost 5GBP to buy, so have a pittance of salvageable metal or wire, and who the hell is profiting from broken toasters?
The guy in China who's just burying them, signing a form in a language he doesn't understand and which isn't legally binding on him in his country, who just loads it on a truck to the local tip while some idiot country pays him a fortune to do what they could do themselves.
"Notarize"
"have (the signature on a document) attested to by a notary."
To notarize something, usually by a solicitor, is to say that that something existed, was seen, what the content of it was, and prove that it existed. You notarize things like contracts and wills and things like that, but there's no reason you can't notarize data itself.
Using the Bitcoin blockchain you would be able to provide proof of the time/date of that notarization, what was notarized and by whom, with virtually-certainty that in the future that proof will still be around and intact and provably unfalsified (i.e. people can't tamper with it to make it look like you signed a different document yesterday, etc.) and you could even provide proof of WHO you were by being in possession of the private wallet associated with the transactions that provide the proof in the blockchain.
In the same way that we will know Satoshi (the inventor of Bitcoin) if he ever reveals himself, because only he would have the ability to make transactions from his original wallet (which address is well-known but nobody else can fake).
Which is probably why that guy that CLAIMED to be Satoshi has been very quiet the last few months because he actually WASN'T able to demonstrate a transaction from one of the original wallets.