Nice writeup. Just wanted to mention that an alternative for those without PS hardware is a raw Sling TV subscription. It goes for $20/mo (+$5 for sports) and runs seamlessly on the FireTV as an app. The interface isn't too bad and definitely passes the wife test.
Btw, I also run Kodi sideloaded on the FireTV despite Amazon's attempts to bury it. Its gets used as a media center for displaying my ripped DVD movies from Netflix for watching later. But it's also a great interface to my mythtv box and HDHomerun tuners. So it's not really useful for viewing OTA within the interface (for that just switch to the native TV's tuner), but it serves as a DVR interface to the mythtv backend for broadcast recordings. The mythtv backend shares duty as a NAS so the hardware cost wasn't one-off for just that purpose.
What you say is true but no matter the price tag, imo it shows real commitment to the technology. They could have done the same thing with OLED back when Universal Display (the supplier of OLED chemicals) was around $100-200m market cap but didn't. So perhaps this shows that Samsung really is making real progress toward true emissive QLED displays, with QD enhanced LCD as the stepping stone.
Btw, various articles I've seen speculated that emissive QLED TV would be released in the 2019-2020 range but of course every estimate turns out to be way optimistic. However, this purchase does make one think that's it's more than a PR maneuver against the chinese and LG. Unlike OLED where there were so many manufacturing problems along the way, they're hitting the ground running with QD enhanced which will actually be a revenue driver. Then QLED TVs, monitors and general displays being the ultimate displacement of LCD. Jmho.
That's actually a pretty interesting list. Beyond the obvious ones, I think we tend to forget that the data aggregators like Acxiom are always there, operating in the background to scoop up any information they can to sell. And that a company like Uber would sell your location and any other data related to timing/pickup/dropoffs at the drop of a hat. Whatsapp got exposed recently for privacy violations but guess that falls under the umbrella of Facebook. Then outside of the privacy realm you have pay-for-play schemes like Yelp that should be investigated formally too.
But strictly to the point of privacy, of course the dividing line is what do you voluntarily expose vs. what is exposed involuntarily or against the published TOS. i.e. you get what you deserve by signing up to Pinterest, Facebook, etc. The problem is you would need a cluster of superhuman Al Frankens to get through most TOS's. Not unlike skynet, that's something that should be seriously debated before implementation.
Agreed. But please keep port 25 closed to those home servers. My spam folder is bursting at the seams right now from all the broken Windows boxes in the world now. We don't need another vector.
Hope the MPAA doesn't see this article and find all the movies stashed on those servers. They'll want quadrillions in infringement which would bankrupt Netflix...right before Narcos S2!
Options/Blocks: @BlockTradeAlert, @WallStJesus, @CashRocket, @OpenOutcrier, @SpeedyCalls T/A: @WrigleyTom, @OptionsHawk for example Some pro biotech/pharma guys who actually know what they're talking about: @DewDiligence, @Ogut_Ozgur, @Biomaven, @BioDueDiligence, @DavidBautz, @zbiotech, @AF_biotech/@CNS_Investing. Too many to list, check the overlap of who they follow for more.
That's true and most likely what Muddy Waters did. Further, biotech traders especially are notorious for watching option flow because blowups are more common than positive outcome trials. And leaks are almost expected these days no matter how the trades are structured to hide inside info.
But in this particular case it's almost definitely what you described, basically front-running their research just like Citron, Streetsweeper and others do. As a matter of fact, here's a screen shot showing a decent size put position being put on $STJ a few days ago (probably not just Muddy Waters but other cohorts too): https://twitter.com/WallStJesu...
It's actually one of the few ways the little guy can bank based on "inside info" just by keeping an eye out for activity like this. I personally follow about 5 users who exclusively tweet blocks and unusual option activity, it pays off about 60% of the time (not just puts, calls too). Some opening positions really are most definitely based on the illegal-type inside info, the rest are front-running research like described above.
Is there anything in those databases (e.g. Acxiom) that can realistically be poisoned? And what would be worth poisoning these days, stuff that's possible to do and really does have an effect on their end-product quality?
My wife was trying to get my attention last night and finally yelled "SystemD!!" in desperation. I immediately turned and instinctively shouted "you're a useless hipster pos!!".
I ended up sleeping on the couch and she's seeing a divorce attorney tomorrow morning.
Goes without saying but the moral of the story is to stick with init and stay far, far away from systemd.
Yeah and not limited to insecure transmissions to foreign servers, embedded stock passwords and keys too. If you check out his other reviews, he actually outs them on another product. For example:
Oh this is all pretty terrible. To start: the security on this device is a joke. The communication between the app and the device is encrypted with AES, but the encryption key is the same for all devices and is contained within the app - it's "fdsl;mewrjope456fds4fbvfnjwaugfo". This means that it's easy to decrypt any traffic you can see other people send, and also easy to encrypt your own commands. This isn't too much of a problem on your local network (the majority of smart devices will allow anybody on your wifi to control them), but it's awful when it comes to the cloud interface. By default, anyone in the world can send a command to the plug and it'll just perform it. That means anyone can just turn your plugs on and off, and also set the timer. You can avoid the worst of this by setting a password in the app, but there's no sort of rate limiting on the queries so if someone has identified your plug it won't take too long for them to crack your password.
But wait! There's more!
It runs ssh by default and has a default root password (" p9z34c"), so anyone on your network can log into it and run whatever they want on it. Anyone who can see your network traffic can decrypt the commands and extract the password, so don't use the app on any untrusted networks. It downloads app updates and plug firmware updates over http and doesn't do signature validation, so anyone can man in the middle you and get you to flash backdoored firmware onto your plug."
Needless to say, a big thank you to Mr. Garrett for exposing these issues. This is the kind of thing I might buy on a whim and certainly don't have time to figure out what level of security these things are operating at. He's performing a much needed public service.
I may be naive and eventually end up with egg on my face but here goes. In today's world we all know the horse has left the gate wrt privacy. It seems the issue now isn't who's collecting the data, it's what happens to your data after it's been scooped up. And what keeps the data from escaping comes down to the question of how that data is being exploited for generating revenue.
Google gets a lot of flack around here but if you follow the money, they have a pretty good incentive to do whatever it takes to keep the tracking data high-quality and most definitely in-house. Mainly because they own the search market and the better the ad targeting, the more protected Alphabet's revenue stream is.
Apple is obviously dependent on hardware sales so not much needs to be said about that. Plus they really don't want bad PR from data escaping.
So let's compare that to the other 800lb gorilla(s). I don't see any reason why Facebook, Pinterest, etc. wouldn't incorporate outright sale of their tracking data to third parties (if they don't ship it out the back door already). Sure, they're dependent on ad/affiliate revenue too but with one other important difference. Google has an (effective) search monopoly where data exposure would stir up a hornet's nest of legal issues directly or indirectly.
Facebook has little to lose since their product (users) don't seem to care what happens to their data as long as they can post their cat pictures. And they've built a Terms of Use that guarantees they own every aspect of the data (https://en.wikipedia.org/wiki/Criticism_of_Facebook#Terms_of_Use_controversy). Not to mention there's not been much talk of anyone caring about a company holding a monopoly in the social network sphere. It's a 'meh' issue when compared to search market share.
So what's keeping Facebook from transforming more of their revenue stream from ad sales to data sales down the road? Especially with the ad controversies that were swirling around (https://youtu.be/oVfHeWTKjag)? Following the money...not much?
So not only isn't it a KibiCPU as would be expected, but it won't be a true KiloCPU either? Calling my lawyer right now to discuss remediation options.
That's not true. As a matter of fact I'm trying to catch up on paying hundreds of invoices right now that were emailed to me recently. Only inconvenience is it's a pain to unzip each one.
Bing's neural nets were trained by Twitter girlfriends with long memories. When you entered "java" it folded its virtual arms and went into grudge mode.
Thanks for pointing that out, hadn't heard of the project. And after spending some time on the site, it looks like you may be right. This may be the distro that fixes the damage from the UI wars. Going to try it in a VM and throw a few bucks in the tip jar just because they seem to have their heads screwed on straight.
Just guessing but I'd think a majority is gaming where dual boot is still an issue. Mainly because of the difficulty getting good graphics performance through a VM (i.e. older games using Direct3d exclusively). There's a few games that really do run great under Wine, every once in a while I'll fire up Flatout2 and it runs flawlessly.
Good post. As an aside, here's something interesting I stumbled across recently: applied mathematicians are actually in very high demand right now and salaries have caught up with that demand.
And it kind of makes sense given what's happened in the last 20 years in finance (quant), biotech (statistics), etc. But before that it was pretty much assumed that any math major would be limited to a lower paying field like education.
Been using Opera Developer on Mint/Cinnamon for a few weeks and it's definitely ok. Only one crash (surprisingly, expected more) and very fast (unsurprisingly given the engine underneath). As a matter of fact, I was somewhat stunned that after getting to the bottom of this thread there wasn't any mention of it.
Random thoughts: - One process per tab (ps aux |grep opera...whoa!) - Lazy tab loading (enabled in settings) - No multirow tabs afaict, didn't see an extension like Tab Mix on FF - uBlock works great (extension) - New tab gives a customizable dial page. It shows only the site name in different fonts unless it finds a logo, not a thumbnail preview. Still undecided. - Dial page allows grouping of sites into one tile, gets close to the group your tabs concept in FF. - No significant rendering problems with various sites like in the old days of Opera. - Bookmarks sidebar is ok but not as polished as Firefox yet. Don't have a list of "gripes", just feel like it needs some more polish and TLC. - Extensions are pretty cool embedded in the sidebar. - Interface is definitely "slim" like Australis so it's not like going back to the pre-hipster interface days (e.g. Palemoon freezing FF). Probably fair to say it's not the holy grail of interface usability+speed, just a very decent alternative.
Lastly (and most importantly to me personally), what I really liked about FF was the group your tabs feature but then the announcement that it was going to be removed came up. That's why I gave Opera to see what features it had, it would be very cool to see that revived in Opera.
Slashdot Mirror
Nice writeup. Just wanted to mention that an alternative for those without PS hardware is a raw Sling TV subscription. It goes for $20/mo (+$5 for sports) and runs seamlessly on the FireTV as an app. The interface isn't too bad and definitely passes the wife test.
Btw, I also run Kodi sideloaded on the FireTV despite Amazon's attempts to bury it. Its gets used as a media center for displaying my ripped DVD movies from Netflix for watching later. But it's also a great interface to my mythtv box and HDHomerun tuners. So it's not really useful for viewing OTA within the interface (for that just switch to the native TV's tuner), but it serves as a DVR interface to the mythtv backend for broadcast recordings. The mythtv backend shares duty as a NAS so the hardware cost wasn't one-off for just that purpose.
2 cents.
What you say is true but no matter the price tag, imo it shows real commitment to the technology. They could have done the same thing with OLED back when Universal Display (the supplier of OLED chemicals) was around $100-200m market cap but didn't. So perhaps this shows that Samsung really is making real progress toward true emissive QLED displays, with QD enhanced LCD as the stepping stone.
Btw, various articles I've seen speculated that emissive QLED TV would be released in the 2019-2020 range but of course every estimate turns out to be way optimistic. However, this purchase does make one think that's it's more than a PR maneuver against the chinese and LG. Unlike OLED where there were so many manufacturing problems along the way, they're hitting the ground running with QD enhanced which will actually be a revenue driver. Then QLED TVs, monitors and general displays being the ultimate displacement of LCD. Jmho.
Is this 2.0 version of "security through obscurity"...now it's "security through anecdote"?
That's actually a pretty interesting list. Beyond the obvious ones, I think we tend to forget that the data aggregators like Acxiom are always there, operating in the background to scoop up any information they can to sell. And that a company like Uber would sell your location and any other data related to timing/pickup/dropoffs at the drop of a hat. Whatsapp got exposed recently for privacy violations but guess that falls under the umbrella of Facebook. Then outside of the privacy realm you have pay-for-play schemes like Yelp that should be investigated formally too.
But strictly to the point of privacy, of course the dividing line is what do you voluntarily expose vs. what is exposed involuntarily or against the published TOS. i.e. you get what you deserve by signing up to Pinterest, Facebook, etc. The problem is you would need a cluster of superhuman Al Frankens to get through most TOS's. Not unlike skynet, that's something that should be seriously debated before implementation.
Agreed. But please keep port 25 closed to those home servers. My spam folder is bursting at the seams right now from all the broken Windows boxes in the world now. We don't need another vector.
Hope the MPAA doesn't see this article and find all the movies stashed on those servers. They'll want quadrillions in infringement which would bankrupt Netflix...right before Narcos S2!
Someone else had asked the other day too, see here: https://science.slashdot.org/c...
Options/Blocks: @BlockTradeAlert, @WallStJesus, @CashRocket, @OpenOutcrier, @SpeedyCalls
T/A: @WrigleyTom, @OptionsHawk for example
Some pro biotech/pharma guys who actually know what they're talking about: @DewDiligence, @Ogut_Ozgur, @Biomaven, @BioDueDiligence, @DavidBautz, @zbiotech, @AF_biotech/@CNS_Investing. Too many to list, check the overlap of who they follow for more.
HTH.
That's true and most likely what Muddy Waters did. Further, biotech traders especially are notorious for watching option flow because blowups are more common than positive outcome trials. And leaks are almost expected these days no matter how the trades are structured to hide inside info.
But in this particular case it's almost definitely what you described, basically front-running their research just like Citron, Streetsweeper and others do. As a matter of fact, here's a screen shot showing a decent size put position being put on $STJ a few days ago (probably not just Muddy Waters but other cohorts too): https://twitter.com/WallStJesu...
It's actually one of the few ways the little guy can bank based on "inside info" just by keeping an eye out for activity like this. I personally follow about 5 users who exclusively tweet blocks and unusual option activity, it pays off about 60% of the time (not just puts, calls too). Some opening positions really are most definitely based on the illegal-type inside info, the rest are front-running research like described above.
Ergo: Kevin Bacon did it. In Arkansas. With guns.
Lots of guns.
Is there anything in those databases (e.g. Acxiom) that can realistically be poisoned? And what would be worth poisoning these days, stuff that's possible to do and really does have an effect on their end-product quality?
My wife was trying to get my attention last night and finally yelled "SystemD!!" in desperation. I immediately turned and instinctively shouted "you're a useless hipster pos!!".
I ended up sleeping on the couch and she's seeing a divorce attorney tomorrow morning.
Goes without saying but the moral of the story is to stick with init and stay far, far away from systemd.
Yeah and not limited to insecure transmissions to foreign servers, embedded stock passwords and keys too. If you check out his other reviews, he actually outs them on another product. For example:
Morjava®MJ-SmallK Intelligent Smart Wifi Plug Socket Wireless Switch Timer Wifi Socket Wifi Smart US Plug for iPhone iPad Android Smartphone APP
https://www.amazon.com/dp/B01F...
"The ugly:
Oh this is all pretty terrible. To start: the security on this device is a joke. The communication between the app and the device is encrypted with AES, but the encryption key is the same for all devices and is contained within the app - it's "fdsl;mewrjope456fds4fbvfnjwaugfo". This means that it's easy to decrypt any traffic you can see other people send, and also easy to encrypt your own commands. This isn't too much of a problem on your local network (the majority of smart devices will allow anybody on your wifi to control them), but it's awful when it comes to the cloud interface. By default, anyone in the world can send a command to the plug and it'll just perform it. That means anyone can just turn your plugs on and off, and also set the timer. You can avoid the worst of this by setting a password in the app, but there's no sort of rate limiting on the queries so if someone has identified your plug it won't take too long for them to crack your password.
But wait! There's more!
It runs ssh by default and has a default root password (" p9z34c"), so anyone on your network can log into it and run whatever they want on it. Anyone who can see your network traffic can decrypt the commands and extract the password, so don't use the app on any untrusted networks. It downloads app updates and plug firmware updates over http and doesn't do signature validation, so anyone can man in the middle you and get you to flash backdoored firmware onto your plug."
Needless to say, a big thank you to Mr. Garrett for exposing these issues. This is the kind of thing I might buy on a whim and certainly don't have time to figure out what level of security these things are operating at. He's performing a much needed public service.
I may be naive and eventually end up with egg on my face but here goes. In today's world we all know the horse has left the gate wrt privacy. It seems the issue now isn't who's collecting the data, it's what happens to your data after it's been scooped up. And what keeps the data from escaping comes down to the question of how that data is being exploited for generating revenue.
Google gets a lot of flack around here but if you follow the money, they have a pretty good incentive to do whatever it takes to keep the tracking data high-quality and most definitely in-house. Mainly because they own the search market and the better the ad targeting, the more protected Alphabet's revenue stream is.
Apple is obviously dependent on hardware sales so not much needs to be said about that. Plus they really don't want bad PR from data escaping.
So let's compare that to the other 800lb gorilla(s). I don't see any reason why Facebook, Pinterest, etc. wouldn't incorporate outright sale of their tracking data to third parties (if they don't ship it out the back door already). Sure, they're dependent on ad/affiliate revenue too but with one other important difference. Google has an (effective) search monopoly where data exposure would stir up a hornet's nest of legal issues directly or indirectly.
Facebook has little to lose since their product (users) don't seem to care what happens to their data as long as they can post their cat pictures. And they've built a Terms of Use that guarantees they own every aspect of the data (https://en.wikipedia.org/wiki/Criticism_of_Facebook#Terms_of_Use_controversy). Not to mention there's not been much talk of anyone caring about a company holding a monopoly in the social network sphere. It's a 'meh' issue when compared to search market share.
So what's keeping Facebook from transforming more of their revenue stream from ad sales to data sales down the road? Especially with the ad controversies that were swirling around (https://youtu.be/oVfHeWTKjag)? Following the money...not much?
P.S. - s/tailer/tailor
Maybe this will ease your nagging feelings: http://lmgtfy.com/?q=earth+eng...
So not only isn't it a KibiCPU as would be expected, but it won't be a true KiloCPU either? Calling my lawyer right now to discuss remediation options.
Even the devil is having trouble picking sides on this one. Mainly because it would mean favoring one child over the other.
The most common password after 'password1' was 'dadada'. Wonder what that's all about?
Your ideas are intriguing to me and I wish to synergize with your periodic information dispersal service.
That's not true. As a matter of fact I'm trying to catch up on paying hundreds of invoices right now that were emailed to me recently. Only inconvenience is it's a pain to unzip each one.
Oh there's another one...back to it.
Bing's neural nets were trained by Twitter girlfriends with long memories. When you entered "java" it folded its virtual arms and went into grudge mode.
Thanks for pointing that out, hadn't heard of the project. And after spending some time on the site, it looks like you may be right. This may be the distro that fixes the damage from the UI wars. Going to try it in a VM and throw a few bucks in the tip jar just because they seem to have their heads screwed on straight.
Just guessing but I'd think a majority is gaming where dual boot is still an issue. Mainly because of the difficulty getting good graphics performance through a VM (i.e. older games using Direct3d exclusively). There's a few games that really do run great under Wine, every once in a while I'll fire up Flatout2 and it runs flawlessly.
Good post. As an aside, here's something interesting I stumbled across recently: applied mathematicians are actually in very high demand right now and salaries have caught up with that demand.
And it kind of makes sense given what's happened in the last 20 years in finance (quant), biotech (statistics), etc. But before that it was pretty much assumed that any math major would be limited to a lower paying field like education.
http://www.forbes.com/pictures...
http://www.careercast.com/jobs...
Been using Opera Developer on Mint/Cinnamon for a few weeks and it's definitely ok. Only one crash (surprisingly, expected more) and very fast (unsurprisingly given the engine underneath). As a matter of fact, I was somewhat stunned that after getting to the bottom of this thread there wasn't any mention of it.
Random thoughts:
- One process per tab (ps aux |grep opera...whoa!)
- Lazy tab loading (enabled in settings)
- No multirow tabs afaict, didn't see an extension like Tab Mix on FF
- uBlock works great (extension)
- New tab gives a customizable dial page. It shows only the site name in different fonts unless it finds a logo, not a thumbnail preview. Still undecided.
- Dial page allows grouping of sites into one tile, gets close to the group your tabs concept in FF.
- No significant rendering problems with various sites like in the old days of Opera.
- Bookmarks sidebar is ok but not as polished as Firefox yet. Don't have a list of "gripes", just feel like it needs some more polish and TLC.
- Extensions are pretty cool embedded in the sidebar.
- Interface is definitely "slim" like Australis so it's not like going back to the pre-hipster interface days (e.g. Palemoon freezing FF). Probably fair to say it's not the holy grail of interface usability+speed, just a very decent alternative.
Lastly (and most importantly to me personally), what I really liked about FF was the group your tabs feature but then the announcement that it was going to be removed came up. That's why I gave Opera to see what features it had, it would be very cool to see that revived in Opera.
FWIW.