I suspect that OPSEC leaks via social media will be easier to identify and deal with than through traditional means.
Yeah, the selfie is pretty easy to identify. The guy holding the camera? That's your damned security leak.
Plus you have to consider than many cell phones embed the GPS coordinates in EXIF tags in the picture... which means if you can get it in real time, you know where to start shelling.;-)
It's not your problem to deal with Russia's opsec. And if you're going to have a bunch of conscripts doing mandatory service... well, don't expect them to give a damn.
What apple and the other vendors don't control although they do have some say are the carriers and if an update is released IOS or Android then it is up to the carriers to push it out.
Actually, I'm pretty sure Apple does control this.
First, they don't allow carriers to customize iOS for their own purposes. Second, the updates for iOS come from Apple themselves.
Which means carriers can't put shit on the Apple devices, and they can't fail to push out security updates. Because they're not part of the process.
Android vendors routinely abandon devices and stop providing updates. And carriers routinely fail to add anything past the initial crap they put on the phone.
But an iOS device is pretty much the same thing wherever you buy it. Which means you only need to worry about one company stopping providing with updates.
You do realize Samsung has their own store, and isn't interested in your access to Google's, right?
A Nexus device is Android as Google envisions it. Anything else has been designed to steer you towards making money for someone else.
So, Samsung makes a device, customizes the heck out of of Android for their own purposes. And then the greedy telcos add their shit.
And the consumer gets left with a device which may or may not receive updates as both Samsung and the carrier have moved onto new things, and don't care about devices they've already sold.
Because carriers aren't in the business of supporting devices and software, just putting in enough effort to steer you to their stuff.
You want something which you can always update? Buy an unlocked Nexus device at full price. Pretty much everything else has been messed with by people who have their own interests at heart, not yours.
Yeah, no kidding. WTF are we trusting carriers for?
They don't care about your security, they want to sell you phones which have their custom shit in it to maximize their profits.
Trusting carriers to spend the time and effort applying updates is utterly insane, because they're lazy and greedy -- which means you likely won't get the update at all.
But since they have nothing to lose and no liability for failing to push the updates, what do you think will change? The carriers simply don't give a damn.
Android is a decent platform, but the splintering which takes place due to manufacturers and carriers means there's simply no way to know if what you have is safe at all -- because chances are the crap the carrier puts on isn't secure either.
Typical Apple, stabbing their partner companies in the back. Harkens back to the Motorolla days.
Well, that's one way to interpret. But it's complete bullshit.
The complaint, which was spotted by USA Today, alleges that Beats co-founders Dr. Dre and Jimmy Iovine concealed business dealings and slowly cut out Monster and its CEO Noel Lee's involvement on its way to selling to Apple in a $3 billion deal made last year.
So, the founders of Beats squeezed out Monster on the way to selling themselves to Apple.
But don't let that get in the way of your whining about Apple, or pointing out that Bill Gates eats babies, or any other crap you feel like throwing out which isn't actually based on facts.
Nosiree. This is clearly the evil Apple at work. Except, of course, it was Beats before Apple bought them.
So 20 years ago or so, the concept of ubiquitous computing was floating around. You know, where everything follows you, and CPU loads could pushed onto other idle machines because it all had excess capacity 90% of the time.
And then the network was the computer. And then the computer was the cloud.
And now we're back to offloading CPU into a bunch of ubiquitous devices.
What next, client server computing, mainframes, and dumb terminals?
You don't say, "Don't buy this card if you don't have a 4k monitor because it will be useless. There is nothing you can do with it. No reason to own one. Just stick with your old card until you decide to buy a 4k monitor."
If a marketing droid came up with that genius campaign for my company he'd be out on his ass. If you sell exotic sports cars do you really want to emphasize how their current car is 'good enough' since both cars can reach the speed limit quite easily? No.
Honestly, pick one.
Either you want them to flog the latest and greatest, or you don't. You've complaining that they're pushing 4K, and then saying they should totally push 4K.
I don't even have a 1080p monitor but I would only consider buying the highest end card
So, you're a wannabee, who doesn't use these, doesn't have the gear to run it... but you'd totally buy the biggest and baddest out there just because, but you're complaining they're pushing the high end 4K stuff and not even mentioning the 1080p performance.
Oh, don't misunderstand me... I know you could do more with this video card than you could with... well, all the technology in 1981.
I have always joked 1GB of iron core memory would knock the Earth out of orbit.
I remember things measured in kilohertz and megahertz, and kilobytes, and megabytes.
And my poor little monkey brain looks at the specs for those things and they're just beyond what I can wrap my head around. I feel like a caveman looking at a CNC machine when I see some of these things.
My inner gear head feels old, and conspicuously lacking in opposable thumbs.;-)
What do you mean by '4k offerings'? That means nothing to me
Umm... products (offerings) what do 4K resolution?
Are you implying that the high end cards won't function at lower resolutions?
Nobody is saying that... but if you're trying to do the marketing of your big shiny product, you do the penis waggling and show off the 4K resolution because it's the new hotness.
People can already get performance for 1080P, so why advertise it?
Bah, I want to know if they've solved the refrobulation problem with the niblitz which was leading to the excess deuterium depletion in the fourth quarter at low revs.
Honestly, as someone who stopped slavishly following hardware specs a very long time ago... my eyes glazed over half way through the summary.
I haven't directly touched Java in years... but one of the things which struck me was that it just seemed too damned brittle.
What should have been core APIs for published interfaces would suddenly change in the number of parameters between versions, or not be there at all, or return something new.
They'd "fix" something by simply deprecating it/removing it.
It felt very much like a young language which was constantly shifting under your feet, constantly calling for a do-over, and often breaking backwards compatibility.
Flash forward a decade, and I see the same kinds of things you mention -- software which ships with exactly one version it supports, and woe to anybody who ever updates it or has security people who say "you can't run that version".
It feels kind of half-assed and not very maintainable if you need to spend that much effort not breaking it. All the while the platform itself constantly nags you to update, but if you do that you're probably screwed.
And then Oracle started putting the Ask.com bullshit in, and made it essentially a platform you can't really trust because it's constantly trying to subvert your machine.
I'm betting if you have a large enough pool of open source things, which depend on other open source things, then the bugs in the dependencies will trickle up to the projects which rely on them.
Though, admittedly, Java has also made this more annoying -- a decade or so ago when I was actively working on a Java project, it always amazed me how a new version of Java could completely break everything and then you'd have to re-test and re-certify everything.
It got to the point we put in very large bold characters in our release notes... we work on this version of Java, if you get clever and introduce your own version of Java, we won't talk to you until you confirm the bug in the version we support.
A surprising number of clients were willing to blaze trail with whatever version of Java came along, and then kept expecting we'd be supporting custom versions from vendors or features which didn't exist when our version was built.
Eventually we learned to dread a new release of Java. Because invariably things went to hell and stopped working.
None of the tech companies have been shown to be co-operating voluntarily
Quite honestly, does it matter if this is voluntary?
When you have secret laws which say "give us this or else", WTF difference does 'voluntary' matter?
Even the transparency reports say "we can't actually tell you what we did because we're under a gag order".
Unless the government no longer has secret laws, or tech companies stand up to them and implement tech which doesn't have built in security bypass... voluntary don't mean a damned thing.
Slashdot Mirror
Yeah, the selfie is pretty easy to identify. The guy holding the camera? That's your damned security leak.
Plus you have to consider than many cell phones embed the GPS coordinates in EXIF tags in the picture ... which means if you can get it in real time, you know where to start shelling. ;-)
Bah ... loose tweets sheep bleats. ;-)
More like an oxymoron.
Honestly, I'm willing to believe that actual incompetence plays a large factor here.
Yes, Microsoft was pretty much always going to fuck over Nokia with the "all Windows all the time" crap they did. That was pretty transparent.
But that doesn't mean neither Elop nor Ballmer weren't incompetent.
Elop could have been both incompetent and a plant intended to shift Nokia to Microsoft stuff. In fact, I assume that's the case.
Honestly though ...
It's not your problem to deal with Russia's opsec. And if you're going to have a bunch of conscripts doing mandatory service ... well, don't expect them to give a damn.
What's "too long"? Still working isn't too long.
Since when is owning something for an extended period of time "too long"?
Actually, I'm pretty sure Apple does control this.
First, they don't allow carriers to customize iOS for their own purposes. Second, the updates for iOS come from Apple themselves.
Which means carriers can't put shit on the Apple devices, and they can't fail to push out security updates. Because they're not part of the process.
Android vendors routinely abandon devices and stop providing updates. And carriers routinely fail to add anything past the initial crap they put on the phone.
But an iOS device is pretty much the same thing wherever you buy it. Which means you only need to worry about one company stopping providing with updates.
You do realize Samsung has their own store, and isn't interested in your access to Google's, right?
A Nexus device is Android as Google envisions it. Anything else has been designed to steer you towards making money for someone else.
So, Samsung makes a device, customizes the heck out of of Android for their own purposes. And then the greedy telcos add their shit.
And the consumer gets left with a device which may or may not receive updates as both Samsung and the carrier have moved onto new things, and don't care about devices they've already sold.
Because carriers aren't in the business of supporting devices and software, just putting in enough effort to steer you to their stuff.
You want something which you can always update? Buy an unlocked Nexus device at full price. Pretty much everything else has been messed with by people who have their own interests at heart, not yours.
Right, because nobody has ever faked those.
Branding, marketing, differentiation, integration with the rest of their crap, and probably analytics.
The usual crap.
Yeah, no kidding. WTF are we trusting carriers for?
They don't care about your security, they want to sell you phones which have their custom shit in it to maximize their profits.
Trusting carriers to spend the time and effort applying updates is utterly insane, because they're lazy and greedy -- which means you likely won't get the update at all.
But since they have nothing to lose and no liability for failing to push the updates, what do you think will change? The carriers simply don't give a damn.
Android is a decent platform, but the splintering which takes place due to manufacturers and carriers means there's simply no way to know if what you have is safe at all -- because chances are the crap the carrier puts on isn't secure either.
Well, that's one way to interpret. But it's complete bullshit.
So, the founders of Beats squeezed out Monster on the way to selling themselves to Apple.
But don't let that get in the way of your whining about Apple, or pointing out that Bill Gates eats babies, or any other crap you feel like throwing out which isn't actually based on facts.
Nosiree. This is clearly the evil Apple at work. Except, of course, it was Beats before Apple bought them.
My god, we've come full circle.
So 20 years ago or so, the concept of ubiquitous computing was floating around. You know, where everything follows you, and CPU loads could pushed onto other idle machines because it all had excess capacity 90% of the time.
And then the network was the computer. And then the computer was the cloud.
And now we're back to offloading CPU into a bunch of ubiquitous devices.
What next, client server computing, mainframes, and dumb terminals?
It's like some strange time loop.
Honestly, pick one.
Either you want them to flog the latest and greatest, or you don't. You've complaining that they're pushing 4K, and then saying they should totally push 4K.
So, you're a wannabee, who doesn't use these, doesn't have the gear to run it ... but you'd totally buy the biggest and baddest out there just because, but you're complaining they're pushing the high end 4K stuff and not even mentioning the 1080p performance.
Dude, whatever you're smoking, use less of it.
Oh, don't misunderstand me ... I know you could do more with this video card than you could with ... well, all the technology in 1981.
I have always joked 1GB of iron core memory would knock the Earth out of orbit.
I remember things measured in kilohertz and megahertz, and kilobytes, and megabytes.
And my poor little monkey brain looks at the specs for those things and they're just beyond what I can wrap my head around. I feel like a caveman looking at a CNC machine when I see some of these things.
My inner gear head feels old, and conspicuously lacking in opposable thumbs. ;-)
Umm ... products (offerings) what do 4K resolution?
Nobody is saying that ... but if you're trying to do the marketing of your big shiny product, you do the penis waggling and show off the 4K resolution because it's the new hotness.
People can already get performance for 1080P, so why advertise it?
Bah, I want to know if they've solved the refrobulation problem with the niblitz which was leading to the excess deuterium depletion in the fourth quarter at low revs.
Honestly, as someone who stopped slavishly following hardware specs a very long time ago ... my eyes glazed over half way through the summary.
You guys and your wacky video cards. :-P
So, is it more lucrative to claim the bounty, or exploit the bug?
Seems to me you can sell it to shady people for more money.
I haven't directly touched Java in years ... but one of the things which struck me was that it just seemed too damned brittle.
What should have been core APIs for published interfaces would suddenly change in the number of parameters between versions, or not be there at all, or return something new.
They'd "fix" something by simply deprecating it/removing it.
It felt very much like a young language which was constantly shifting under your feet, constantly calling for a do-over, and often breaking backwards compatibility.
Flash forward a decade, and I see the same kinds of things you mention -- software which ships with exactly one version it supports, and woe to anybody who ever updates it or has security people who say "you can't run that version".
It feels kind of half-assed and not very maintainable if you need to spend that much effort not breaking it. All the while the platform itself constantly nags you to update, but if you do that you're probably screwed.
And then Oracle started putting the Ask.com bullshit in, and made it essentially a platform you can't really trust because it's constantly trying to subvert your machine.
I'm betting if you have a large enough pool of open source things, which depend on other open source things, then the bugs in the dependencies will trickle up to the projects which rely on them.
Though, admittedly, Java has also made this more annoying -- a decade or so ago when I was actively working on a Java project, it always amazed me how a new version of Java could completely break everything and then you'd have to re-test and re-certify everything.
It got to the point we put in very large bold characters in our release notes ... we work on this version of Java, if you get clever and introduce your own version of Java, we won't talk to you until you confirm the bug in the version we support.
A surprising number of clients were willing to blaze trail with whatever version of Java came along, and then kept expecting we'd be supporting custom versions from vendors or features which didn't exist when our version was built.
Eventually we learned to dread a new release of Java. Because invariably things went to hell and stopped working.
What are yours?
His are that he was trusted as an admin in one of the most secret places you can imagine, and found that they were doing appalling things.
I trust corporations to do the "right thing" inasmuch as PR dictates there is a public perception that this is important.
But I do not trust corporations to ever do the "right thing" out of a corporate sense of morality.
I expect corporations to act like vicious sociopaths trying not to be noticed and miming "the right thing" without actually giving a damn.
Trusting the moral compass of a corporation is a pathetic joke and a lie.
Quite honestly, does it matter if this is voluntary?
When you have secret laws which say "give us this or else", WTF difference does 'voluntary' matter?
Even the transparency reports say "we can't actually tell you what we did because we're under a gag order".
Unless the government no longer has secret laws, or tech companies stand up to them and implement tech which doesn't have built in security bypass ... voluntary don't mean a damned thing.
So, it's a nearly perfect mirror for a specific wavelength?
So, more useful for lasers than say, optics?
That's some crazy stuff.
The use of the word irony.