Slashdot Mirror


User: bill_mcgonigle

bill_mcgonigle's activity in the archive.

Stories
0
Comments
18,097
First seen
Last seen
Profile
(view on slashdot.org)

Comments · 18,097

  1. Trying to understand on Slashdot Killed My Kickstarter Campaign · · Score: 5, Insightful

    So, I think I get the point here.

    I have multiple ISP's here (I use pfSense for load balancing) but I can't aggregate them for a single connection because I have multiple IP's and unicast doesn't work that way. So the cloud-hosted version would have allowed all my pipes to talk to your endpoint, which would give a single IP to the data-provider and then you could backhaul it over my multiple links. So, a multi-link VPN, right?

    So, that sounds like it could be useful in some cases.

    Now then, if I'm running my own server, where is it? If it's just here it doesn't do anything new, since I'm back to where I started. So, I can buy the software and then run it on a VPS provider or something?

  2. Re:takes a certain kind of mind -- on 'Smart Gun' Firm Wants You To Fund Its Prototype · · Score: 2

    This is the sort of thing that sounds like a great idea to people who don't know much about computers or guns, and the ways that they can fail.

    Maybe that's what they're counting on. What dictator wouldn't love to EMP a rebel army and disable all their weapons?

  3. Re:If so much money is wasted... on 'Smart Gun' Firm Wants You To Fund Its Prototype · · Score: 1

    A gun, which refuses to shoot unarmed people?

    yeah, 'cause a few more rapes here and there are only statistics.

  4. Re:I bet the people who would fund this... on 'Smart Gun' Firm Wants You To Fund Its Prototype · · Score: 1

    I can't imagine any reason that I would want their project to succeed.

    Really? They probably want the government to mandate that their patented technology be used by all gun manufacturers. It's a rent-seeking goldmine if they succeed.

  5. Re:Car analogy on 'Smart Gun' Firm Wants You To Fund Its Prototype · · Score: 1

    Anyone driving a car has to do a test to get a licence.

    No, anybody driving a car on a public road has to be licensed or face prosecution if they get caught.

    People can drive all over their own or others' private property all they want without any sort of license.

  6. 6% to go on Ubuntu Closes Longstanding Bug #1 · · Score: 2

    according to Wikimedia. I agree with the trend sentiment, but they still have a majority.

  7. Re:Sounds like a huge risk on Google Advocates 7-Day Deadline For Vulnerability Disclosure · · Score: 1

    If nobody tells the customers, they risk getting owned and don't know to take precautionary measures above and beyond the usual.

    Exactly. Here's a proposal I made here last year on something called Informed Disclosure. Leaving customers in the dark when a workaround that will protect them exists - that's not 'Responsible'. And if it's critical enough, there's always the workaround of disconnecting affected systems. Whether it's 60 days or longer or shorter, customers deserve to know and many vendors will abuse the grace period given the chance.

  8. Re:Mexico! on Casting a Harsh Light On Chinese Solar Panels · · Score: 1

    At least it's made in North America then.

    I had a good GE dishwasher, so when it died after 20 years I got another one. It was from Mexico and was out of here after 3 years, after several major parts failed.

    I used to buy Carhartt jeans. The ones I have from the early 2000's are faded but usable. The ones I bought from the late 2000's are all gone - they moved operations and cotton to Mexico and none of those jeans lasted more than a year before the fabric fell apart.

    It may be coincidental in that the companies looking to cut way back on quality are the ones moving to Mexico, so maybe it's not Mexico's fault, but the metric for a product consumer is the same - avoid stuff made in Mexico. Perhaps if the company is itself based in Mexico that should be re-evaluated.

  9. Re:Impediment to interoperability... on EFF Makes Formal Objection to DRM In HTML5 · · Score: 0

    But there is a lesser of two evils. Given that DRM will happen regardless, making things a bit more standardized and easier for all is better than leaving it more fragmented and harder for all.

    I disagree. If it's easy and endorsed by the W3C it will become pervasive and erode years of progress. If it's hard and non-standard, it'll be more rare.

    To argue otherwise we'd have to accept that there are not web businesses that do not use DRM because of the complexity, but would continue to refrain from doing so if it were easy. It seems exceedingly unlikely that these do not exist.

  10. Re:The End of Passwords on Drupal.org User Accounts Compromised · · Score: 1

    I've "given up" too. Until the pony is delivered, LastPass is a good solution. It supports Firefox, Chrome, and Dolphin on Android (have to subscribe to get the mobile support), which covers my needs, and uses local strong encryption so the LastPass people's can't get at your data. My first dog's name was jRffr9CDMNhD (I just generated that automagically with Alt-G - different for every site). It should be %6mjDYs*uwysVz%YYwTz2!7rcAt8!B%H, but too many websites don't sanitize input and have length limitations. Conveniently the length and character class differences are just a click away. Inconveniently, almost no websites will tell you what kind of data they will accept for a given field (that would make a nice form field spec enhancement).

    Yes, it's basically using a short key without the benefits of PKI, but compared to using human-recalled passwords, it's better.

    Browsers should really have implemented this sort of password manager 5 years ago, and also provided a usable UI for doing client-side certificates 10 years ago, but here we are today with nothing like that in sight.

  11. Re:Too bad he wasn't fired ..... on Why Everyone Gets It Wrong About BYOD · · Score: 1

    Maybe this IT guy knows exactly how to grab the AppleTV's MAC and put the connection into a VLAN and route it out the firewall only onto the Internet. But the same CEO refused the funds to upgrade the switches to handle VLAN's and the Internet connection is completely full from 7AM to 6PM every day.

    Meanwhile the IT guy is personally responsible for information security under federal regulations.

  12. Re:Fair enough on Judge Orders Child Porn Suspect To Decrypt His Hard Drives · · Score: 1

    Soon we won't even have the presumption of innocence anymore. Look at a cop wrong, and you will be guilty of terrorism

    If you give me six lines written by the hand of the most honest of men, I will find something in them which will hang him.

    Cardinal Richelieu

  13. Re:Good on Judge Orders Child Porn Suspect To Decrypt His Hard Drives · · Score: 1

    Justice isn't only about being fair, it's also about getting revenge and punishing the weird.

    The entire Western "justice" system is based on vengeance. Which is kinda funny when people start claiming that it's a Christian establishment. I've read what he said, and it wasn't that.

  14. Re:Good on Judge Orders Child Porn Suspect To Decrypt His Hard Drives · · Score: 2

    Do you have any specific examples of people being convicted for CP when all they had were pictures of people who could easily be on either side of 18?

    I was reading just the other day how the entire Traci Lords series of videos (100+, IIRC) is now considered illegal. As well as the Vanessa Williams Penthouse issue, since she posed in that too. The videos and that issue were best-sellers in the 80's.

    Dozens of known pornographers, including big corporate ones like Penthouse, got tricked by her deception about her age (using a friend's birth certificate). Nobody knew because she apparently looked several years older than she was, and apparently she was incredibly popular with average people at the time (who were not pedophiles).

    So, go ahead and find a private collection of these, digitize them, and put them up for sale on a website. Let's see what happens.

  15. Re:Here's his best defense.. on Judge Orders Child Porn Suspect To Decrypt His Hard Drives · · Score: 1

    Bullshit. Most children understand the concept of right and wrong. Are you saying that most LEOs don't understand what children do understand?

    About 95% of the general population does. The others are what we call 'psychopaths' (clinical term, not Hollywood).

    Psychopaths are tremendously overrepresented in law enforcement. That's just a known statistic, not a value judgement. Surgeons too, it turns out.

    That doesn't make them bad people - bad is only how somebody acts. Psychopaths can learn what is right and wrong, they just have no innate ability to figure it out for themselves. So, a higher percentage of psychopaths are bad people than the general population (a non-psychopath can choose to act in a wrong manner despite his built-in knowledge). This translates to a higher percentage of cops being bad people than the general population too. Giving them a license to commit what would otherwise be crimes only makes it more attractive to the bad ones.

  16. Re:Here's his best defense.. on Judge Orders Child Porn Suspect To Decrypt His Hard Drives · · Score: 1

    so they hammer LEOs to find or bust more people

    decent LEO's would take their oaths seriously and not comply.

    and then choose to railroad people on their own

    So you testify in favor of the defendant in court, right?

  17. Re:Here's his best defense.. on Judge Orders Child Porn Suspect To Decrypt His Hard Drives · · Score: 1

    What is illegal is for the most part wrong.

    The US has over 600,000 political prisoners. These are people who have committed no true crimes, but violated prohibitions. Google 'mala in se' and 'mala prohibita'. Only 'mala in se' acts are wrong, but the list of 'mala prohibita' is seemingly endless.

    In related news, it's illegal in many jurisdictions to feed the homeless.

  18. Re:Who cares about Javascript on Taking Action For Free JavaScript · · Score: 1

    FSF doesn't care about that freedom, just their favorite freedoms.

    Maybe they're fighting fire with fire. But they've never said so, as far as I can recall. If they did believe that they could say it and not lose their legal standing.

  19. Re:Impediment to interoperability... on EFF Makes Formal Objection to DRM In HTML5 · · Score: 1

    Yeah, because the current scheme ... isn't an impediment to interoperability at all.

    Careful of two wrongs make a right.

    which would have never happened if the stores of yesteryear hadn't first gotten the RIAA comfortable with digital distribution, then weaned them off the DRM teat

    Yet we've already been through all this, know that DRM-free distribution is the most successful sales model, and nearly all the movie companies own record companies and know this already. So it's not the same situation - this time they realize the status quo but also realize that they want to control the player and tell people how, when, and where they can enjoy the content they acquire.

  20. Re:Sounds Horrible on Google Rolling Out Gmail Redesign · · Score: 1

    what they think you want to read

    That's a heck of a tricky metric. But I've been very happy using Thunderbird to create a "_Most Important" saved search that whitelists certain domains and senders that I need to deal with quickly, while the rest of the Inbox collects other messages that I need to deal with eventually.

    If there's a way to force a certain tab set on Thunderbird startup I'd like to know about that.

  21. Re:Why restrict it at all? on PayPal Reviewing Qualifying Age For Vulnerability Rewards · · Score: 1

    Good analysis.

    If a 15 year old submits a bug, gets paid, and uses the money to buy drugs, could the parent sue, claiming they were irresponsible to give so much money to a teenager directly?

    Just to strip away the euphemisms here for clarity - Paypal likely isn't afraid of paying the youngster for good work - it's afraid of what government thugs might do to them if they do.

    I'd rather live in the world where a youth can be rewarded for diligent, intelligent work.

  22. Re:Getting started on How Did You Learn How To Program? · · Score: 1

    Did you have the memory expansion? Our Recreation Dept. held a computer class and the instructor had a VIC-20. He had ordered a memory expansion module for BASIC, but it never arrived, so instead he used an assembly language cart (google tells me it was VICMON and brand new) and so he taught us that. This was a 4th-grade class, maybe 5 weeks. That summer my folks got me a C=64 to hook to the old TV and I was pretty impressed with the BASIC on it.

    It wasn't until I got to college that I learned that assembly is a difficult topic and only for higher-level courses. Thank goodness nobody told us nine to eleven-year-olds that.

  23. Re:Hunting for science! on Scientists Recover Wooly Mammoth Blood · · Score: 1

    Hunting? I have it on good authority that powdered woolly mammoth bones are the ultimate aphrodisiac and male virility enhancement.

  24. 'Create' is the tricky part on Ask Slashdot: Safe Learning Environment For VMs? · · Score: 4, Informative

    Next year I'm planning on allowing students to create and run their own VMs

    Running their own VM's is straightforward. Allowing the students to create their own VM's implies that they'll be root on the hypervisor.

    Do you intend to run the hypervisor on the client machines of the DRBL system, or run a single hypervisor on the server and deploy the VM's there as DRBL clients?

    To satisfy your requirements you probably want to run the hypervisor on the clients so they students can each have their own root on the hypervisor. This would require a hypervisor compatible with DRBL. I don't know how it works, but just from reading the description on the webpage, it sounds like it's geared to PXE booting a host OS.

    If you go with Xen, you'll have to probably separately PXE boot Xen and then DRBL boot the Dom0. Which would probably work fine and get you decent performance, but it will expose the students to DRBL (is this what you want?)

    If you go with KVM, the performance is a bit slower, but for a student shop that's probably OK, and you'll be able to DRBL-deploy the hypervisor and then let the students create their own non-DRBL (or DRBL) guests. This probably fits your model the best unless you have old hardware that KVM does not support - then you might need to go with the Xen-PXE-Boot model (because it can paravirtualize without hardware assistance).

    You could also use VirtualBox, and while it offers a nice GUI, it's probably too simple for teaching your students about virtualization (it just feels like an app).

    BTW, it sounds like you're doing great work based on that article. Kudos on your accomplishments and being an inspiration for others in your field.

  25. Re:Too many beeers? on Artist Turns Volcano Into Naked-Eye Observatory · · Score: 1

    More likely too many Orange Crushes.