My problem with school is it always felt like teaching too abstractly. A certain level is good and I do want people to learn to innovative, but I do not think there is enough application.
Don't teach calculus, teach engineering. I feel like i spent months doing super complex math that I wouldn't even use as a rocket scientist. I would have loved to predict planetary motion than solving random math problems for hours and hours only to never use those skills.
The real world is generally open book. If I forget how to solve an equation I look up a solution on the internet or even my old math text books. I think if kids learn how to solve problems vs solving problems we'd be in a better place. I'd rather just give kids a problem and help them solve it vs give them a predefined example and make them solve it correctly the first time or get an F.
I don't really feel like the open source community is "ready" to talk about what security means.
It's nice that communities found these issues, but if I was in organized crime I'd be not only following this, but looking for exploits. Which should be a lot easier given the code. Looking for lesser projects vs even the big boys and going after that.
Do a search for "QA" in open source and the results are a little eye opening...in that you won't see much. I think in general open source projects need to actively find help and have their code scanned and analyzed more.
I believe open source can be far more secure and possibly already is, but just flat out denials of any issues in our communities is just being complacent.
Open source has security issues does not equal go back to closed source, but it does mean we have work to do to get better.
Two form authentication is the real solution. Given enough time and computing people will break your hashed password. Heck with the oncoming quantum computers who knows if they will be secure at all.
Oh and heres an idea. Why don't we do a much better job of protecting the hashes in the first place. Encrypted the hash so a simple sql inject only returns even harder to see data. Put the data in another table. Use a stored procedures ( I know *GASP* ) to only allow one password hash to be retrieved at once. Use database schema permissions ( if available ) to make select password_hashed from hashes not allowed by the front end server.
I think honestly we hashed the password and then rubbed our hands together and patted each other on the back.
I often wonder why the community does not create more tools that abstract away the differences as much as possible.
Every distro has it's package manager and with it different syntax. Imaging if you had a tool like "install-it mysql" which on Ubuntu goes to apt-get install, or pacman's syntax, or yum or whatever.
The thing I mostly worry about is packages. Say what you will about Windows and Mac, but developing an app for them generally has a limited set of ways. There is only one way to do services in Windows, etc.
It is hard to get say Webcam apps to get ported to Linux because the poor devs have to figure out webcams in 10 different distros. Everyone in the boards say "ubuntu 14 +1",.... no no Arch first!!! and so on. Should it matter as much app to app? Shouldn't distros at least have some level of uniformity...a layer of it.
I would go further and say that both Apple and MS have some standard libraries at their core. Imagine trying to write a WebCam based app for Linux. For OSX or Windows you'd do a search and get pretty standard answer. For linux you'd get a ton of links to different libraries at different levels.
In general developing an app for OSX is way easier than for X. Yah most things are just webapss these days, but not everything. Which is why Chromebooks haven't totally take off. If Chromebooks had MS Office, Photoshop and a few other installed apps ( free or otherwise ) I think it would have more success. I mean why can't I installed Eclipse, Sublimetext, a Shell on a Chromebook....if I could we would have a Linux desktop technically.
At this point I think you would need to manage the device from start to finish.
Basically put out limited line like Apple. Use high quality and standard chipset. I mean like a good ethernet chip, a good sound card, etc. With a standard build it is way easier to test your OS and make sure everything functions on your various models.
From there take Gnome or KDE and fork it. Go the Linux Mint Gnome route. If you are a company you can just decide how things work. Macs work one way, Windows another, but for the most part they work the way their company's wants to. That standard is what makes them popular, even amongst developer types and the kind of people that go to OSCon.
Then get a good testing community going. Make sure it works with printers. Make sure it works with projectors, make sure it works with dual monitors, make sure it works with the keyboards.
Come out with your own damn keyboards and mice.
Make the upgrade process simple, straightfoward, and automated. Certainly use a package manager, but hide it away.
The community might be able to take it and abstract, but given the linux community they would just tweak it to the point where it isn't as "beautiful".
Ubuntu tried and failed many of things. I think mostly because the people who generally run linux do so because they want to.
The difference here is that someone will walk into best buy, login to amazon, or your own site, maybe a dedicated store (think apple store) and walk out with a device that runs an OS which happens Linux...not buy some hardware and "try" to get linux working on it.
I don't think HP, Dell, etc have any interest in this and so someone needs to start it. Maybe we can leverage open hardware, maybe not, but I think we need to replicate the Apple model.
From there the hard part. Get the gaming community behind you, get Office to run on it...I mean the real Office, and keep going to get the world to treat your product with respect.
They hacked Chase, Amazon, and a few other apps as well.
This has very little do to with GMail and more to do with a novel way to attack GUI based apps on the Android platform. By chance GMail had one of the highest success rates.
This would be like getting keylogging malware installed on your computer and then getting your your slashdot password compromised by reading keystrokes...and then saying Slashdot got hacked. No you computer go hacked, not Slashdot.
It also seems as GMail app gets updated it's rate might vary since this has to do with "guessing" what an app is doing by looking at system metrics.
Am I the only one that thinks things have gotten a bit hyperbolic. I hear a lot of non technical people talking about how "bad" the architecture is.
This is a new product and has more users a few weeks in then most of the big boys had in over a year.
We are not selling a iPhone or a plane ticket here. This is a complex infrastructure with lots of back end interactions. The front end is fairly modern. They haven't gotten around to minimizing and consolidating the JS files, but that will come I'm sure.
I've gotten through the sign up process, they added some stuff to do some ad-hoc shopping. I've seen much more dragging of feet by supposed enterprise players. What are we 20 days into this enormous platform? Most of the people complaining don't even need the damn thing because they already have insurance.
At the end of the day the exchanges are not even selling insurance. Insurance companies are doing that. It's like using googles shopping feature. Ultimately the insurance company is Amazon.com. If you need the insurance you'll go directly to the person selling it. Hell we probably should have started with the exchanges being nothing more than a fancy craigslist.
People who need insurance because they are sick or scared will get it. They will get the subsidies etc. The vast majority of these so called "healthy young" are just declining insurance through there employers. They just have to fill out a bunch of paper work with their HR department.
At the end of the day healthcare.gov is something to help people get insurance. The subsides and the new rules are what will get it for them.
"Since Microsoft has a very vague idea of what users want"... BS
Do you own a truck? If you don't and don't want one you wouldn't tell Ford and Ram(Dodge) what they should put in their trucks.
Excel is the Grep\AWK\Sed of the enterprise\business world. Not all of it, but a large percentage. The fact of the matter is there is a whole lot in your life that was built with the assistance of Word, Excel, and hell even PowerPoint. You think the construction company that built the building your in uses VIM to manage there shit.
Slashdot in general does not get this. I'm sure there are plenty of desktop support guys on here who do. Google docs is great an I use them all the time, but it's a tinker toy to some of the more advanced features in Excel that most people haven't even heard of.
Throw together a pivot table with a slicer and then see me in the morning. Take a look at stock symbol DATA for tableu...there is a world outside of compilers, web servers, and VIM people.
You can't tell me you haven't heard a iPad guy tell you he wishes he had Excel on there.
MS has done okay with the XBox. I think the phone and tablet is a catch 22 for them. If they don't do it people will wonder why. If they do people will wonder why.
I wouldn't be surprised if UPS would be interested. Trucker gets tired just hand off. No more potty breaks etc.
I'm interested in the security and reliability of the connection. Cloud cover, overpasses, etc etc. Although I suppose you could combine a little auto driving in there like auto breaking and dealing with being cutoff. I don't think you could react fast enough remotely...plus if you wrecked the impact is less for you so you might get lazy.
Regardless of your political leanings this is a job that the private sector could handle way way better. It is super hard to create a good software shop...let alone being the military.
We use paycor and we have good to great IT in general. We could program a pay app, but why the hell would we? Is pay schedule really that complicated....if it is why not simplify it...a great opportunity for reform.
CNBC asked a bunch of kids if they wanted glasses or least wanted to try them. Some CNET guy was there.
All the little kiddies raised there hands. Then told it was 1500 bucks they lowered them.
I think cost is its biggest problem. Everyone who sees the videos thinks it is cool..everyone will use them why they drive or walk around town. They will probably take them off when they sit down at the bar.
Seems like an easier data set to parse and a bit more truthful. You can tweet how happy you are, but at the end of the day your taking pills for depression your are not(of course excluding certain medical conditions). L.A. and other areas might be exposed for people seeming to be happy, but ultimately not.
would a secondary dedicated IP stack work. Hardware wise could we tell the CPU that a byte or range is where stack is and fault if its written twice...write once or clear.
Are we ever going to fix the real issue? You generally use one to start horking the stack and then get the CPU to jump to some address. Then these protections come into play.
I get the feeling people have just given up versus trying to change compilers and hardware to protect the stack. I should be able to keep writing into an unprotected char array and never come close to some instruction pointer shouldn't I. Is it too much to demand?
So the tech note mentions that this is only accessible from a small subset of ips...WHAT IPS!!!!!!
At least it doesn't sound like a zero day so we have time to get it patched. Since we block the management ips from our firewall it sounds like this would only effect attacks from within your network.
Why exactly do we need applets on joe smoe's machine? If your a corporation enable it.
It would be great if all browser had a whitelist of domains that you tag a site for any of this stuff. Yes youtube can play flash, other sites not. Advertisers will just use animated gif\javascript or whatever.
Sure there is this plugin and that to accomplish this...time for FF, Chrome, and IE to build this stuff in and make it off by default and super simple to address. Of course you've got grandma on IE 6/7/8, but even then MS could put out a patch that just turns off applets. The next time IE starts up it ask the user. Group policy would override.
What a developer thinks, but not what managers who actually sees the forest through the trees think.
The guy who knows what he is going off and does his thing. No one meets or talk. Developers later finds out someone else was doing the same thing or solved the same problem.
Meetings can increase productivity if they have a point, use some kind of software to manage work originating from (like Trello), and have general rules.
You can take my daily standup meeting from my cold dead hands.
Bad meetings are just that. It's like people who hate government not being good at running a government. Since you demise them so much you probably go in with a super negative attitude about them. You doom yourself and your team to fail. I've seen meeting make measurable improvement, watch the meeting stop happening because of it, and then watch it revert, rinse repeat...not a horrible approach at the end of the day. Syssies with developers, developers with qa, etc. etc.
Productivity claims are just people bitchin...and a lot of it has to do with the simplicity of the product, users, and other measurements. You go into companies with lots of complexity, legacy overhead, needy clients, and you'll end up with low productivity.
And oh yah, don't capitalize meetings. It only shows your immaturity. Claiming that other people don't know what they are doing and that you do is also pretty cocky...I'm sure you know everything right? Come on slashdot stop being so reactionary.
Marketing is the only group that are bigger divas then developers these days. Relax your not nearly as smart as you think you are...you are just used to people telling you are because you like math.
I want this patched, but I'm very curious as to how this really compromises anything.
I can see how it can affect virtual keyboards. Who exactly is this market? People using IE and using Virtual keyboards for security reasons? Can we have a slashdot poll of virtual keyboards users and there favorite browser.
It says these ad sites are using the data. What exactly does this give them...maybe the fact that I click the start button at 10:01 A.M. every day? Otherwise it is just random X,Y coords without knowing what app has focus.
Besides being an ugly word it is imposing a sort of emotional response to something that is more practical and dare scientific.
At the end of the day we have created fusion. Most of it came through bombs, but from a scientific standpoint we know about fusion.
This is about creating a clean, reliable, cost effective energy solution.
There should not be hard feelings or even a feeling of failure. The idea was sound enough to look into. Maybe it's just not practical. No use throwing good money after bad or crying over spilled milk.
"Just when you think the cable TV viewing experience couldn't get any worse..."
I have DirectTV which could be considered cable I suppose. I also have Netflix, Hulu Plus, and a Roku box with some other stuff. My DirectTV box supports Youtube for that occasional time I want to watch Gangam style on the big screen.
I have a DVR and I love my cable "experience". My box has a basic search, but it's good enough. It records fine. I get all the shows just fine. I rarely get weather issues and never get "buffering..." messages. Add in ondemand.
Lets not confuse experience with price. We have also become a super cheap bunch. The same person that lays down 2k for an Apple laptop will complain about 100 dollar cable bill. I've spent more on dinner for a few friends then my cable bill. To bad we can't pipe our cable in from China huh?
At the same time people love their fast Internet cable modem...at this point about the best we got. Fiber at the kind of scales we need it is just not practical...and honestly coax could rival it as we move more and more spectrum to the cable modem.
What I don't understand is why Netflix doesn't offer a premium service. Offer me a 50 dollar a month plan and get the good stuff and get it faster. The real question, are our cheap asses willing to pay for what we want or not?
All that said this Kinnect thing is stupid and would never fly...and probably just someone trying to get on slashdot.
Slashdot Mirror
None of this would be an issue if Apple would allow for alternative stores. Even these could be filtered to some point.
Apple can run their store however they want, but having to jailbreak my phone to install a competitor to iTunes seems like anti competitive behavior.
My problem with school is it always felt like teaching too abstractly. A certain level is good and I do want people to learn to innovative, but I do not think there is enough application.
Don't teach calculus, teach engineering. I feel like i spent months doing super complex math that I wouldn't even use as a rocket scientist. I would have loved to predict planetary motion than solving random math problems for hours and hours only to never use those skills.
The real world is generally open book. If I forget how to solve an equation I look up a solution on the internet or even my old math text books. I think if kids learn how to solve problems vs solving problems we'd be in a better place. I'd rather just give kids a problem and help them solve it vs give them a predefined example and make them solve it correctly the first time or get an F.
I don't really feel like the open source community is "ready" to talk about what security means.
It's nice that communities found these issues, but if I was in organized crime I'd be not only following this, but looking for exploits. Which should be a lot easier given the code. Looking for lesser projects vs even the big boys and going after that.
Do a search for "QA" in open source and the results are a little eye opening...in that you won't see much. I think in general open source projects need to actively find help and have their code scanned and analyzed more.
I believe open source can be far more secure and possibly already is, but just flat out denials of any issues in our communities is just being complacent.
Open source has security issues does not equal go back to closed source, but it does mean we have work to do to get better.
Two form authentication is the real solution. Given enough time and computing people will break your hashed password. Heck with the oncoming quantum computers who knows if they will be secure at all.
Oh and heres an idea. Why don't we do a much better job of protecting the hashes in the first place. Encrypted the hash so a simple sql inject only returns even harder to see data. Put the data in another table. Use a stored procedures ( I know *GASP* ) to only allow one password hash to be retrieved at once. Use database schema permissions ( if available ) to make select password_hashed from hashes not allowed by the front end server.
I think honestly we hashed the password and then rubbed our hands together and patted each other on the back.
I often wonder why the community does not create more tools that abstract away the differences as much as possible.
Every distro has it's package manager and with it different syntax. Imaging if you had a tool like "install-it mysql" which on Ubuntu goes to apt-get install, or pacman's syntax, or yum or whatever.
The thing I mostly worry about is packages. Say what you will about Windows and Mac, but developing an app for them generally has a limited set of ways. There is only one way to do services in Windows, etc.
It is hard to get say Webcam apps to get ported to Linux because the poor devs have to figure out webcams in 10 different distros. Everyone in the boards say "ubuntu 14 +1", .... no no Arch first!!! and so on. Should it matter as much app to app? Shouldn't distros at least have some level of uniformity...a layer of it.
If slashdot allowed for +1ing I would.
I would go further and say that both Apple and MS have some standard libraries at their core. Imagine trying to write a WebCam based app for Linux. For OSX or Windows you'd do a search and get pretty standard answer. For linux you'd get a ton of links to different libraries at different levels.
In general developing an app for OSX is way easier than for X. Yah most things are just webapss these days, but not everything. Which is why Chromebooks haven't totally take off. If Chromebooks had MS Office, Photoshop and a few other installed apps ( free or otherwise ) I think it would have more success. I mean why can't I installed Eclipse, Sublimetext, a Shell on a Chromebook....if I could we would have a Linux desktop technically.
At this point I think you would need to manage the device from start to finish.
Basically put out limited line like Apple. Use high quality and standard chipset. I mean like a good ethernet chip, a good sound card, etc. With a standard build it is way easier to test your OS and make sure everything functions on your various models.
From there take Gnome or KDE and fork it. Go the Linux Mint Gnome route. If you are a company you can just decide how things work. Macs work one way, Windows another, but for the most part they work the way their company's wants to. That standard is what makes them popular, even amongst developer types and the kind of people that go to OSCon.
Then get a good testing community going. Make sure it works with printers. Make sure it works with projectors, make sure it works with dual monitors, make sure it works with the keyboards.
Come out with your own damn keyboards and mice.
Make the upgrade process simple, straightfoward, and automated. Certainly use a package manager, but hide it away.
The community might be able to take it and abstract, but given the linux community they would just tweak it to the point where it isn't as "beautiful".
Ubuntu tried and failed many of things. I think mostly because the people who generally run linux do so because they want to.
The difference here is that someone will walk into best buy, login to amazon, or your own site, maybe a dedicated store (think apple store) and walk out with a device that runs an OS which happens Linux...not buy some hardware and "try" to get linux working on it.
I don't think HP, Dell, etc have any interest in this and so someone needs to start it. Maybe we can leverage open hardware, maybe not, but I think we need to replicate the Apple model.
From there the hard part. Get the gaming community behind you, get Office to run on it...I mean the real Office, and keep going to get the world to treat your product with respect.
They hacked Chase, Amazon, and a few other apps as well.
This has very little do to with GMail and more to do with a novel way to attack GUI based apps on the Android platform. By chance GMail had one of the highest success rates.
This would be like getting keylogging malware installed on your computer and then getting your your slashdot password compromised by reading keystrokes...and then saying Slashdot got hacked. No you computer go hacked, not Slashdot.
It also seems as GMail app gets updated it's rate might vary since this has to do with "guessing" what an app is doing by looking at system metrics.
Am I the only one that thinks things have gotten a bit hyperbolic. I hear a lot of non technical people talking about how "bad" the architecture is.
This is a new product and has more users a few weeks in then most of the big boys had in over a year.
We are not selling a iPhone or a plane ticket here. This is a complex infrastructure with lots of back end interactions. The front end is fairly modern. They haven't gotten around to minimizing and consolidating the JS files, but that will come I'm sure.
I've gotten through the sign up process, they added some stuff to do some ad-hoc shopping. I've seen much more dragging of feet by supposed enterprise players. What are we 20 days into this enormous platform? Most of the people complaining don't even need the damn thing because they already have insurance.
At the end of the day the exchanges are not even selling insurance. Insurance companies are doing that. It's like using googles shopping feature. Ultimately the insurance company is Amazon.com. If you need the insurance you'll go directly to the person selling it. Hell we probably should have started with the exchanges being nothing more than a fancy craigslist.
People who need insurance because they are sick or scared will get it. They will get the subsidies etc. The vast majority of these so called "healthy young" are just declining insurance through there employers. They just have to fill out a bunch of paper work with their HR department.
At the end of the day healthcare.gov is something to help people get insurance. The subsides and the new rules are what will get it for them.
"Since Microsoft has a very vague idea of what users want" ... BS
Do you own a truck? If you don't and don't want one you wouldn't tell Ford and Ram(Dodge) what they should put in their trucks.
Excel is the Grep\AWK\Sed of the enterprise\business world. Not all of it, but a large percentage. The fact of the matter is there is a whole lot in your life that was built with the assistance of Word, Excel, and hell even PowerPoint. You think the construction company that built the building your in uses VIM to manage there shit.
Slashdot in general does not get this. I'm sure there are plenty of desktop support guys on here who do. Google docs is great an I use them all the time, but it's a tinker toy to some of the more advanced features in Excel that most people haven't even heard of.
Throw together a pivot table with a slicer and then see me in the morning. Take a look at stock symbol DATA for tableu...there is a world outside of compilers, web servers, and VIM people.
You can't tell me you haven't heard a iPad guy tell you he wishes he had Excel on there.
MS has done okay with the XBox. I think the phone and tablet is a catch 22 for them. If they don't do it people will wonder why. If they do people will wonder why.
I wouldn't be surprised if UPS would be interested. Trucker gets tired just hand off. No more potty breaks etc.
I'm interested in the security and reliability of the connection. Cloud cover, overpasses, etc etc. Although I suppose you could combine a little auto driving in there like auto breaking and dealing with being cutoff. I don't think you could react fast enough remotely...plus if you wrecked the impact is less for you so you might get lazy.
I know we all hate MS here, but doesn't it worry you that you can't have a product name with the word Sky in it.
I mean if MS renamed themselves to SkySoft or something maybe...and even then...
Seems like we just gave this company a bunch of free publicity that wasn't actually being harmed. Was anyone confused by the names?
Have they been asked? Do they keep a copy?
Regardless of your political leanings this is a job that the private sector could handle way way better. It is super hard to create a good software shop...let alone being the military.
We use paycor and we have good to great IT in general. We could program a pay app, but why the hell would we? Is pay schedule really that complicated....if it is why not simplify it...a great opportunity for reform.
from you, but not from the masses
CNBC asked a bunch of kids if they wanted glasses or least wanted to try them. Some CNET guy was there.
All the little kiddies raised there hands. Then told it was 1500 bucks they lowered them.
I think cost is its biggest problem. Everyone who sees the videos thinks it is cool..everyone will use them why they drive or walk around town. They will probably take them off when they sit down at the bar.
Seems like an easier data set to parse and a bit more truthful. You can tweet how happy you are, but at the end of the day your taking pills for depression your are not(of course excluding certain medical conditions). L.A. and other areas might be exposed for people seeming to be happy, but ultimately not.
would a secondary dedicated IP stack work. Hardware wise could we tell the CPU that a byte or range is where stack is and fault if its written twice...write once or clear.
Are we ever going to fix the real issue? You generally use one to start horking the stack and then get the CPU to jump to some address. Then these protections come into play.
I get the feeling people have just given up versus trying to change compilers and hardware to protect the stack. I should be able to keep writing into an unprotected char array and never come close to some instruction pointer shouldn't I. Is it too much to demand?
So the tech note mentions that this is only accessible from a small subset of ips...WHAT IPS!!!!!!
At least it doesn't sound like a zero day so we have time to get it patched. Since we block the management ips from our firewall it sounds like this would only effect attacks from within your network.
Why exactly do we need applets on joe smoe's machine? If your a corporation enable it.
It would be great if all browser had a whitelist of domains that you tag a site for any of this stuff. Yes youtube can play flash, other sites not. Advertisers will just use animated gif\javascript or whatever.
Sure there is this plugin and that to accomplish this...time for FF, Chrome, and IE to build this stuff in and make it off by default and super simple to address. Of course you've got grandma on IE 6/7/8, but even then MS could put out a patch that just turns off applets. The next time IE starts up it ask the user. Group policy would override.
What a developer thinks, but not what managers who actually sees the forest through the trees think.
The guy who knows what he is going off and does his thing. No one meets or talk. Developers later finds out someone else was doing the same thing or solved the same problem.
Meetings can increase productivity if they have a point, use some kind of software to manage work originating from (like Trello), and have general rules.
You can take my daily standup meeting from my cold dead hands.
Bad meetings are just that. It's like people who hate government not being good at running a government. Since you demise them so much you probably go in with a super negative attitude about them. You doom yourself and your team to fail. I've seen meeting make measurable improvement, watch the meeting stop happening because of it, and then watch it revert, rinse repeat...not a horrible approach at the end of the day. Syssies with developers, developers with qa, etc. etc.
Productivity claims are just people bitchin...and a lot of it has to do with the simplicity of the product, users, and other measurements. You go into companies with lots of complexity, legacy overhead, needy clients, and you'll end up with low productivity.
And oh yah, don't capitalize meetings. It only shows your immaturity. Claiming that other people don't know what they are doing and that you do is also pretty cocky...I'm sure you know everything right? Come on slashdot stop being so reactionary.
Marketing is the only group that are bigger divas then developers these days. Relax your not nearly as smart as you think you are...you are just used to people telling you are because you like math.
I want this patched, but I'm very curious as to how this really compromises anything.
I can see how it can affect virtual keyboards. Who exactly is this market? People using IE and using Virtual keyboards for security reasons? Can we have a slashdot poll of virtual keyboards users and there favorite browser.
It says these ad sites are using the data. What exactly does this give them...maybe the fact that I click the start button at 10:01 A.M. every day? Otherwise it is just random X,Y coords without knowing what app has focus.
Besides being an ugly word it is imposing a sort of emotional response to something that is more practical and dare scientific.
At the end of the day we have created fusion. Most of it came through bombs, but from a scientific standpoint we know about fusion.
This is about creating a clean, reliable, cost effective energy solution.
There should not be hard feelings or even a feeling of failure. The idea was sound enough to look into. Maybe it's just not practical. No use throwing good money after bad or crying over spilled milk.
"Just when you think the cable TV viewing experience couldn't get any worse..."
I have DirectTV which could be considered cable I suppose. I also have Netflix, Hulu Plus, and a Roku box with some other stuff. My DirectTV box supports Youtube for that occasional time I want to watch Gangam style on the big screen.
I have a DVR and I love my cable "experience". My box has a basic search, but it's good enough. It records fine. I get all the shows just fine. I rarely get weather issues and never get "buffering..." messages. Add in ondemand.
Lets not confuse experience with price. We have also become a super cheap bunch. The same person that lays down 2k for an Apple laptop will complain about 100 dollar cable bill. I've spent more on dinner for a few friends then my cable bill. To bad we can't pipe our cable in from China huh?
At the same time people love their fast Internet cable modem...at this point about the best we got. Fiber at the kind of scales we need it is just not practical...and honestly coax could rival it as we move more and more spectrum to the cable modem.
What I don't understand is why Netflix doesn't offer a premium service. Offer me a 50 dollar a month plan and get the good stuff and get it faster. The real question, are our cheap asses willing to pay for what we want or not?
All that said this Kinnect thing is stupid and would never fly...and probably just someone trying to get on slashdot.