Slashdot Mirror


User: bill_mcgonigle

bill_mcgonigle's activity in the archive.

Stories
0
Comments
18,097
First seen
Last seen
Profile
(view on slashdot.org)

Comments · 18,097

  1. Re:Yet again C bites us in the ass on OpenSSL Bug Allows Attackers To Read Memory In 64k Chunks · · Score: 1

    Feel free to rewrite OpenSSL in a more secure language and still make it as generic and cross-platform as it is now, with no loss in performance.

    With transistor count doubling every 18 months, isn't is sensible at some point to trade *some* performance for security?

    Real CPU usage is almost never pegged these days outside of dedicated purely-mathematical tasks.

    Security breaches are becoming *more* expensive than transistors. The only issue at this point is properly accounting for those costs and correctly assigning liability. But that's not a problem that can yet be solved with a compiler.

  2. Re:Loser Pay Legislation on Why There Are So Few ISP Start-Ups In the U.S. · · Score: 1

    We already have a legal system where the person with the best-paid lawyers almost always wins, regardless of the merits, and now you want them to be able to recover the cost of those high-paid lawyers?

    What you're saying makes sense if the courts provided some objective measure of justice, but that's not the case here - you're suggesting we double down on the corruption.

  3. Re:Why Ubuntu?! on Tesla Model S Has Hidden Ethernet Port, User Runs Firefox On the 17" Screen · · Score: 3, Funny

    I would feel safer on the road with CentOS.

    What, you want your car to last 10 years?

    Quick, somebody come up with a car analogy to explain this...

  4. Re:Prosecute the child and father! on Five-Year-Old Uncovers Xbox One Login Flaw · · Score: 1

    If this were AT&T, the boy would be on his way to Gitmo by now.

    But Microsoft, so ... wow, good for them. </icky>

  5. Re:systemd Architecture on Linus Torvalds Suspends Key Linux Developer · · Score: 1

    I thought the point was that it starts all the system services in parallel

    Yes, and it also removes the need for a separate cron/udev/dbus/puppet stack all doing their own loops.

    It's a neat idea to have a pid1 do all those things. This one also seems to be buggy, the documentaiton is scant, it's hard to debug, and the developers rapidly lose interest in solving problems.

    So you have one camp, thus bitten, who claim it's useless, and the other camp, so smitten, who claim that it's perfect.

    Meanwhile, the other fifty million users are just flapping in the wind.

  6. Re:Short story: See to what Linus responds on Linus Torvalds Suspends Key Linux Developer · · Score: 4, Insightful

    Then the same guy claims that the debug keyword is generic so it can't be reserved by the kernel, even if it's been used first by it since a long time...

    Linus made this argument in a different forum yesterday (paraphrasing from memory): "Look, something has to be authoratitive when it comes to parameters. On a linux system, that's the kernel".

    Which is aribitrary, but not without merit.

    Here's the rub, that causes Kay's downfall: he's arguing for namespaces (systemd.debug, kernel.debug, etc.) but he's consuming 'debug' without a namespace and complaining that the kernel isn't using namespaces, even though he knows the linux policy is "don't break people's programs".

    Kay could simply take his own advice, only consume systemd.foo parameters, and lead by example, without trying to claim the null namespace for systemd. One is left to conclude that he's doubling down on a bad decision rather than actually wanting to fix things.

    Linus is not the only kernel developer who is torqued at the systemd guys. It appears to many players that they're trying to become the userspace kernel but haven't quite earned their stripes yet and are leaving a trail of unhappy developers and sysadmins in their wake, as legitimate complaints about breakage are handwaved away.

    systemd isn't perfect, but it's not terrible either, and there's no good reason for such a level of discontent in the community. Many proponents say, "those dinosaurs don't want change", but that's not at all what the trouble is about. It would be silly to fork systemd at this point, but that's what some people are talking about, and it's purely for personnel reasons. A mutually beneficial resolution to this and other problems with systemd is in everybodys' best interest.

  7. Re:Don't bother. on The Problem With Congress's Scientific Illiterates · · Score: 2, Interesting

    CO2 is a greenhouse gas. Not the most potent, but the primary driver.

    Except for water vapor. That's why it's so important to get the cloud response models right. CO2 molecules last longer than water vapor molecules, but if the amount of water vapor increases permanently then that distinction becomes less important.

    Since the industrial revolution began,
    a) Atmospheric CO2 has gone from 280 ppm to 400 ppm (40% increase)
    b) ocean pH has gone down 0.1 (30% increase in acidity).

    Indeed. One unanswered question is why the current spike started in 1830 (see Scripp's sea bed sediment research). That's the year the first train service started in the UK, but Faraday wouldn't discover electromagnetic current until the next year. The next few decades would see the invention of gasoline, concrete, steel, and electrical generation on a large scale, but there just wasn't that much new emission happening in 1830 as compared with the preceeding decades. This kind of increase should be very linear and the ocean response should be similar. Yet we have this spike that's yet to be properly explained.

    The core science is not in dispute. It is accepted by every established scientific association on the planet, for every branch of science.

    Some people claim to know exactly what's going to happen and why. Others claim to know when. But nobody really knows how the atmospheric system works fully yet - none of the models are great predictors yet. We still need better models - even the people who think they have the best models are still writing grants to build better ones!

    It's basically accepted by everyone except one political faction in one scientifically illiterate country.

    What's accepted? Surely not that we're done with the science! Be careful of people who have religion at either extreme of such debates.

  8. Re:I think this is bullshit on Brendan Eich Steps Down As Mozilla CEO · · Score: 1

    The current laws (nearly all of them) are set up to recognize social groups of two.

    Isn't bigoted laws what we're talking about? I'm not saying you're making this argument, but those who would make the "it's too hard to change them" argument are similar to those who argued for only "biblical marriage" (though we know how absurd that term is) because that's what the laws provided for.

    which is another reason why poly is rejected. It's assumed to be the mysogynist version.

    And the anti-miscegenation laws assumed that a black husband would pollute his wife's womb. Baseless claims can be made, but usually they're being used to support an unjust position.

    I think this is going to wind up with a DIY website where you can build-your-own marriage contract, and people will be able to do whatever the heck they want with all the legal protections they desire. One could fairly easily incorporate all of the existing privileges granted to certain-types-of-marriages in such contracts, except that there may be laws that override such contracts. But that just leads us back to the government getting its nose out of how people choose to love each other.

  9. Re:I think this is bullshit on Brendan Eich Steps Down As Mozilla CEO · · Score: 1

    why is it 'just another way to think' when its about giving (or more accurately, denying) equal rights to same-sex couples?

    The way it is right now, it's just whatever privileges the mob wants to give to specific groups. It started out as a way to keep good white girls from marrying those scary black men, and the excuses just keep changing over time.

    Good luck getting married anywhere if you're poly today. Oh, but those aren't "couples", right? That's the same thing as "oh, but they're not a man and a woman".

    It's just for bigoted bullshit reasons in any era that governments claim the power to control who loves each other and wants to make a life commitment to them. I'm happy being in a marriage with one woman, but it's not my business if other people want to make different arrangements.

    Let the churches or whatever secular institutions recognize whatever they want. If a government wants to serve as secretary and register then it probably can't do too much damage, but as soon as you give them power to grant permission, then the whole thing goes to hell.

    Did Eich stand against government recognition of gay marriages because he's a bigot or because he's sick of the whole thing and didn't want to further perpetuate the system? I looked at his blog last week and couldn't tell.

  10. Re:Politcs vs. Science on NASA Halts Non-ISS Work With Russia Over Ukraine Crisis · · Score: 1

    NASA is not a political body

    Did you happen to notice the story title?

    Perhaps NASA used to be different, but today, for the money it spends, it functions mostly as a way for Congressmen to funnel cash back to their home district.

    At this point, they should just spin off JPL as a non-profit and sell the rest to SpaceX for launch vouchers. With level funding *much* more science would actually get done.

  11. Re:Politcs vs. Science on NASA Halts Non-ISS Work With Russia Over Ukraine Crisis · · Score: 1

    US doesn't want to recognize this vote.

    Of course not - most of the US States would be better off leaving the Empire. USG can't possibly recognize a peaceful secession.

    It's hard to make a case for why Vermont e.g. wouldn't be better off as a province of Canada than a State of the US.

  12. Re:Maybe someone else will? on Interviews: J. Michael Straczynski Answers Your Questions · · Score: 2

    I mean Kickstarter.

    I thought it was 'Blender'?

    Seriously, though, the fans should pick one scene, just one scene, probably one without any film matting (and not the gathering at Corriana 6!), and nail it - render the bloody thing in 4K while you're at it.

    That will build confidence in doing another scene, attract more contributors, etc.

    If there's enough momentum WB will be forced to act. They can either C&D the fans and cause a shitstorm, farm it out to their cronies at a "real" effects house, or hire the crew already working on it.

    Even if they pick the first one, some folks will get noticed for their talent and possibly get jobs out of it. The other two result in a full HD release of B5 and then probably some mediocre games.

  13. Re:no kidding on Indie Game Jam Show Collapses Due To Interference From "Pepsi Consultant" · · Score: 3, Insightful

    Sorry these nerds had to learn the hard way that pretty much everything on TV is fake.

    I once tried to figure out what this "reality TV" thing was by watching one of those "tough job" shows. It was clear that the guys had a hard job but also much more clear that the TV people were trying to create drama and rifts where none or very little existed.

    I might have kept watching if it was more about some of the really interesting challenges that the job entailed, but it turned out to be mostly about trying to get this guy to be mad at his boss, show how upset this other guy's wife was that his job required him to be gone for some lengths of time, etc.

    But ... all that aside - these are indie developers and YouTube people who are trying to do something on broadcast TV with a Network get a half-million dollars in sponsorship from Pepsi? Dudes and dudettes - look into this Internet thing. If your idea doesn't suck, fund it on IndieGoGo and make it back with YouTube ads. Then again, maybe there's a reason they didn't go that route in the first place (they could fool Pepsi out of half a million but not ten thousand savvy investors).

  14. Re:like always on Canonical Shutting Down Ubuntu One File Services · · Score: 1

    a pretty complex piece of code that has been open source since day one

    Thanks, Beuno! I didn't even realize it was multi-platform. Hopefully with the server going open source there will be new interest sparked in replacing the proprietary commercial offerings.

    to pick up where we left off.

    I just have to ask - Be Uno? Ubuntu One? Just a coincidence? :)

  15. Re:If you take the profits on Vermont Nuclear Plant Seeks Decommission But Lacks Funds · · Score: 1

    All nuclear power plants should be using modern negative-feedback self-limiting designs that consume most of their fuel, resulting in relatively short lived radioactive waste.

    Can you please explain how this helps the interests of the fossil fuel corporations? I fail to see the relevance to this conversation when we're talking about government regulators.

  16. Re:like always on Canonical Shutting Down Ubuntu One File Services · · Score: 5, Interesting

    they start so many project , and neither of them actually works great

    This would be my last complaint about Canonical. In any industry, 90+% of ideas are going to turn out to be unworkable. It's admirable that Canonical puts resources into trying so many in the first place. Perhaps they need to learn when to cut losses sooner, but trying is the mature approach.

    Now then, back to complaining about Canonical: they're releasing the code for the backend? Somebody tell me that the front end was just a webdav client and that the backend handled all the locking and synchronization parts so that this isn't a meaningless gesture for customers who are getting cut off with a whole two months' notice to re-design their workflows.

  17. Re:" Basically, if you communicated with someone . on NSA Confirms It Has Been Searching US Citizens' Data Without a Warrant · · Score: 1

    But how do you make distinction between a terrorist and a freedom fighter

    Both 'terrorists' - so all of your communications are subject to search and seizure if you "communicate" within 2-degrees of separation with any of them.

    Heck, I've seriously begun to wonder if the Nigerian spammers aren't actually State-sponsored, to establish a 2-degree network of "communications" regarding "financing" that spans every Internet user. After all, the NSA cannot be expected to individually analyze every case, so they have to go by keyword matches and network analysis.

    Mohammad received financial communications from Boseda and Richard received financial communications from Boseda, so Richard and Mohammad have reasonable suspicion of being in the same terrorist finance network and therefore all three of their communications are subject to search and seizure.

  18. Re:Free To Do What We Tell You on NSA Confirms It Has Been Searching US Citizens' Data Without a Warrant · · Score: 1

    They are violating the PLAIN PAINSTAKING WORDS of the Constitution!

    You seem to have missed that the Courts, SCOTUS especially, seem to now exist to tell the People that they cannot possibly understand the plain words of the Constitution, and that it often means the opposite of what a plain understanding of it would seem to mean.

    Their ultimate argument, therefore, is that the People cannot understand the Constitution, and therefore and logically, could never have been competent to authorize a government under it.

  19. Time for some VM infrastructure on New Apache Allura Project For Project Development Hosting · · Score: 1

    Just happened to post this on G+ this morning:

    When Sourceforge and similar sites first came online they were offering a service that was hard to duplicate locally for most open source development teams.

    Today the equivalent would be offering virtual machine instances running complex application frameworks, probably deployed with a set of puppet modules maintained by the development team and also offered for download. That's the "missing infrastructure" in 2014.ï

    I was just looking at a web project an hour ago that has some annoying bugs that I can probably fix easily enough, but it's reported to take days to weeks to get an instance of it running, and even if I managed to do so it would be because I have the infrastructure to spin up a few new VM's, which not everybody has. That's serious friction for gaining contributions. I figure the patch itself will take about four hours to complete and test.

    I'd love to go to some site, click on 'deploy new foobar server' and have it return to me some sudo-blessed user@ credentials, with the source already checked out in git with everything running and ready to tweak, test, and commit. Clean commit trees and inactivity could easily be used as a metric to dispose of the COW-diffs file for the VM, since making a new one would be just as straightforward.

  20. Re:Times have changed on NSA Infiltrated RSA Deeper Than Imagined · · Score: 1

    One thing's for sure, RSA is toast.

    Toast implies a nice, controlled browning. RSA? Burn it with fire.

  21. Re:Where are the farmers? on UN Report: Climate Changes Overwhelming · · Score: 2, Insightful

    agricultural lobbies

    Higher temperatures in the historical record have been associated with a higher total biomass on the planet. Melt some of the Antarctic, get some more clouds in the atmosphere, grow wheat in the Sahara and grapes in Greenland - I'm guessing the Ag lobbies aren't too worried (though they should be angling for some subsidies to "help them survive" by now).

  22. Re:ZRAM on Linux 3.14 Kernel Released · · Score: 1

    That's how they get to compressed RAM - they don't build a new RAM subsystem, they allocate it as swap and then use the swap system to get at it. Saves on code, doesn't require duplicated work.

    I tried it on my wife's laptop, which at 2GB is apparently too anemic to open KDE on Fedora with 5 Facebook tabs open in Firefox while Thunderbird is also running (:shakes fist about 32MB Mac running Netscape Communicator).

    Anyway, it seemed to make performance rather terrible, which was a bit surprising. That was last year, out of -staging, though.

  23. Re:0.99.14 on Linux 3.14 Kernel Released · · Score: 1

    You can count commits if it makes you feel better.

  24. Re:Two solutions (Encrypt or leave) on Dropbox's New Policy of Scanning Files For DMCA Issues · · Score: 1

    There's not a technical reason why browsers couldn't support stream ciphers for media playback. If the need becomes great enough somebody will do it.

  25. Re:you keep saying that even though you know bette on An Engineer's Eureka Moment With a GM Flaw · · Score: 1

    What do you call someone who goes around saying things that they know are untrue?

    A foe.

    Thanks for the head's up.