The head of HUD almost certainly didn't think this through; he was probably too busy shopping for dining room furniture. However, there are probably a quite a few lower-level people hanging on there who still have some shred of integrity.
Any locally installed app run by a user will have 100% access to all of that users' data files, and could trivially upload them all to any website in the world. (Except maybe on Android and iOS, where it would first have to ask the user for "network access", who would click "yes" 99.9% of the time.)
The OS does not help protect users from locally installed programs at all.
the idea that a sandboxed in the browser website is a potential risk, and a compiled binary program installed with full access to the CPU/RAM/HDD and OS is somehow less of a risk
You do realize that modern web browsers compile downloaded programs to binary?
The whole problem is the nebulous nature of the browser "sandbox" you mention. New exploits for these are published on a daily basis. Even as these are fixed, all of the major browsers add new features and complexity at a breakneck pace (unlike most OSes). So sandbox exploits will keep appearing daily. Also unlike OSes, browser sandboxes are ill-defined and constantly in flux. OS security boundaries are usually clearly documented and defined.
Like I mentioned, most all of a user's important data reside within one OS account which also runs the browser, so the OS is of little help here.
(For servers as opposed to clients, replace "browser" with "web server, middleware stack and database" for a similar huge and ill-defined attack surface)
These days, the largest security threat is probably web browsers: They usually have direct access to the most critical information a user has (passwords, all personal files under their user account, data from all the external services the user accesses, etc.) Under the very same OS user account, web browsers also download and run thousands of untrusted programs from random locations on the internet every day (we'll ignore the handful of hardcore geeks who run Noscript).
The boundary separating these two realms is enormous and incredibly convoluted, involves many layers of abstraction (some of which can be breached by a single misplaced bracket or quote character), and is enforced entirely by the web browser itself. It presents a massive attack surface that dwarfs even the most monolithic OS API.
By default, MythTV runs a web server on localhost:6544. You can use any device with a browser to access its web interface.
The biggest problem is that out of the box, MythTV saves the videos in native digital TV default, which isn't very compatible with web browsers. In particular, you can't skip around in a show. Supposedly, you can set up MythTV to auto-transcode shows into a web-friendly format, which should fix that.
Since I use the web interface infrequently, I instead usually use it to just download the video files to my device, then use VLC to watch it locally.
this control becomes "deadened," such that accidentally pulling it in space would do nothing.
Hopefully this eject disable includes a manually operated hardware interlock, so if the onboard AI turns against the crew, it won't be able to set the crew members adrift in space.
You were the one who started a "moral argument" by claiming that these people were freeloading off your tax dollars, when in fact you should be paying them rent.
Irrelevant. Your logic is like a schoolyard bully swiping your lunchbox then saying: "I can hold onto this lunchbox better than you, so you don't deserve it."
Then he gives it to his buddy, who says "*I* didn't take this lunchbox from anybody, so it's 100% mine! By the way, you owe me rent on the lunch."
Yes, it was pinched hundreds of years ago. You're enjoying trillions of dollars of booty because of it, so there's no need to be such a petty little bitch about a little ISP discount.
virtualization is even good enough now to run AAA games in a VM
I've got a one of those AA-powered dongles that plugs into a TV component jack; it contains almost 100 8-bit games... But I've never heard of such a device that runs on AAA; it must be really compact. Where did you get it?
At any rate, I'm not surprised that today's 64-bit PCs can easily handle emulating those games.
As if SpaceX wouldn't take a bite if the government offered them a bit of the ballistic missile pie.
I heard that the government is looking into this.
After internal reviews, they've realized that it's wasteful to deploy hundreds of disposable ICBMs, when they could instead do the job with just a handful of missiles that can be reloaded time and again.
What I'm seeing here is that scrap recycling stuff is cheap as hell right now ("prices plummeted")... considering that scrap and waste are not going away any time soon, this seems like THE mark in history to buy cheap scrap futures/stock now while I can. Mark my words and I'll link to this post from my Yacht in 20 years.
Ironically, your yacht was broken up for scrap in 2034.
Slashdot Mirror
Did you think HUD didn't think this through?
The head of HUD almost certainly didn't think this through; he was probably too busy shopping for dining room furniture. However, there are probably a quite a few lower-level people hanging on there who still have some shred of integrity.
What are you talking about?
Any locally installed app run by a user will have 100% access to all of that users' data files, and could trivially upload them all to any website in the world. (Except maybe on Android and iOS, where it would first have to ask the user for "network access", who would click "yes" 99.9% of the time.)
The OS does not help protect users from locally installed programs at all.
the idea that a sandboxed in the browser website is a potential risk, and a compiled binary program installed with full access to the CPU/RAM/HDD and OS is somehow less of a risk
You do realize that modern web browsers compile downloaded programs to binary?
The whole problem is the nebulous nature of the browser "sandbox" you mention. New exploits for these are published on a daily basis. Even as these are fixed, all of the major browsers add new features and complexity at a breakneck pace (unlike most OSes). So sandbox exploits will keep appearing daily. Also unlike OSes, browser sandboxes are ill-defined and constantly in flux. OS security boundaries are usually clearly documented and defined.
Like I mentioned, most all of a user's important data reside within one OS account which also runs the browser, so the OS is of little help here.
(For servers as opposed to clients, replace "browser" with "web server, middleware stack and database" for a similar huge and ill-defined attack surface)
These days, the largest security threat is probably web browsers: They usually have direct access to the most critical information a user has (passwords, all personal files under their user account, data from all the external services the user accesses, etc.) Under the very same OS user account, web browsers also download and run thousands of untrusted programs from random locations on the internet every day (we'll ignore the handful of hardcore geeks who run Noscript).
The boundary separating these two realms is enormous and incredibly convoluted, involves many layers of abstraction (some of which can be breached by a single misplaced bracket or quote character), and is enforced entirely by the web browser itself. It presents a massive attack surface that dwarfs even the most monolithic OS API.
By default, MythTV runs a web server on localhost:6544. You can use any device with a browser to access its web interface.
The biggest problem is that out of the box, MythTV saves the videos in native digital TV default, which isn't very compatible with web browsers. In particular, you can't skip around in a show. Supposedly, you can set up MythTV to auto-transcode shows into a web-friendly format, which should fix that.
Since I use the web interface infrequently, I instead usually use it to just download the video files to my device, then use VLC to watch it locally.
this control becomes "deadened," such that accidentally pulling it in space would do nothing.
Hopefully this eject disable includes a manually operated hardware interlock, so if the onboard AI turns against the crew, it won't be able to set the crew members adrift in space.
You were the one who started a "moral argument" by claiming that these people were freeloading off your tax dollars, when in fact you should be paying them rent.
Apple is the only one doing it right.
You mean lighting up the back shell like a Christmas tree with a big-assed glowing corporate logo?
No, but you can make your own out of some old-fashioned shiny clear Scotch tape.
I'd like to see you try checking in to a high-rise Las Vegas hotel with that.
Irrelevant. Your logic is like a schoolyard bully swiping your lunchbox then saying: "I can hold onto this lunchbox better than you, so you don't deserve it."
Then he gives it to his buddy, who says "*I* didn't take this lunchbox from anybody, so it's 100% mine! By the way, you owe me rent on the lunch."
I wish I had trillions of dollars but my pockets don't feel that full. Besides my family is not even from America.
Nevertheless, your family presumably felt that leaving whatever shithole they came from to take advantage of all the loot available here was a win.
Yes, it was pinched hundreds of years ago. You're enjoying trillions of dollars of booty because of it, so there's no need to be such a petty little bitch about a little ISP discount.
It seems like a discount on their ISP bill is the least we can do in exchange for pinching about $25 Trillion worth of their land.
virtualization is even good enough now to run AAA games in a VM
I've got a one of those AA-powered dongles that plugs into a TV component jack; it contains almost 100 8-bit games... But I've never heard of such a device that runs on AAA; it must be really compact. Where did you get it?
At any rate, I'm not surprised that today's 64-bit PCs can easily handle emulating those games.
Shouldn’t we give the same love to ULA?
They already get plenty of love from the tax payers, in the form of countless millions of dollars premium per launch over the competition.
As if SpaceX wouldn't take a bite if the government offered them a bit of the ballistic missile pie.
I heard that the government is looking into this.
After internal reviews, they've realized that it's wasteful to deploy hundreds of disposable ICBMs, when they could instead do the job with just a handful of missiles that can be reloaded time and again.
Tarrifs are enforced exactions, not voluntary contributions. To demand more in the name of jerbs is mere cant.
revenues in April totaled $515 billion — a 13% increase over last April
But apparently, they didn't cut taxes enough: The budget deficit this year is up by 21%.
All of those problems can be easily solved by passing yet another revenue-generating tax cut.
This is really impressive from the technical standpoint, but I am wondering if they have a Code of Conduct for the language?
The main requirement in the code of conduct is that you must be willing to accept and respect homoiconic activity.
I estimate I will need about 256 of these. How much are they at Best Buy?
I started with Intel's base price for these modules. Then I multiplied by Best Buy's markup for things like HDMI cables. Then I multiplied by 256.
The result on my calculator says: "Err.0r"
What could possibly go wrong in the long run with such genetic uniformity?
You could ask the dandelions in my yard if they think that any genetic issues are holding them back.
What I'm seeing here is that scrap recycling stuff is cheap as hell right now ("prices plummeted")... considering that scrap and waste are not going away any time soon, this seems like THE mark in history to buy cheap scrap futures/stock now while I can. Mark my words and I'll link to this post from my Yacht in 20 years.
Ironically, your yacht was broken up for scrap in 2034.
You know, an update you'd like to have a beer with at the bar.
Usually, you'll have time to go out for a whole night on the town with each update before you're allowed to log in again.