Hella better than Verizon with customer service, features, and choices.
I think it depends on where you're using the phone. If I'm near an ocean of some kind, my experience with T-Mobile has been pretty good. When I've been further inland is when things turned sour. I had no service anywhere east of Spokane, Washington through the entire western half of Montana, for example. All the features in the world don't matter if you can't connect to their network.
FWIW, Nextel was the same way if not worse. I went on a longer drive with one of their phones back in 2006, and I didn't have service between Spokane and Chicago. Meanwhile, the AT&T phone I'd brought along from work had service except in the most remote rural parts of Wyoming.
So far T-Mobile has been the least offensive option for cellular service that I've found, but if I lived farther from a city they probably wouldn't work out very well.
When was the last major functional change for ls? When was the last time you saw a major support contract signed for the ls command?
When was the last time the landscape of Unix-style directory listings changed significantly? Security-related products need to constantly adapt to new types of threat as well as new variations on older types.
Think about how much the world of computer security has changed over the last couple of decades. When I had my first dialup shell account with internet access, the idea that there would be a major black-market industry for professionals writing malicious code was literally science fiction.
Meanwhile, the standard Unix-style directory listing still seems to work fine for most people. I haven't looked into the more specialized (SELinux) variations, but I imagine if there were significant changes to the Unix filesystem security model (e.g. if very complicated NTFS-style permissions were implemented), then ls would probably be significantly extended so that it would accurately represent the additional information.
Re:854,000 people currently holding a TS clearance
on
Top Secret America
·
· Score: 2, Interesting
It's been twenty years since I've done anything that needed clearances. The DoD may have now have a secret clearing house where spy employers and employees can meet. If not, it should start one.
When we had an open position in my group at work earlier this year, one of the candidates had spent most of his career working for organizations that required those kind of clearances. Maybe if I worked for a spy agency, there would be something available like you describe, but he said there was literally no way he could tell anyone about what he'd worked on. We've had a couple of people with TS or above clearance (because of past work), and apparently even if they had the same clearances for previous work and got together alone in the same secure room, they still couldn't discuss it outside the oversight of the government.
It was kind of frustrating for both parties. How can you prove to a potential employer that you know your line of work when you can't tell them what you've done for the last decade?
He should be honored and respected for his actions, not called abnormal.
I would also like to point out the he is in no way suffering a relapse of his previous trouble with holo-addiction. Working inside a simulation of Voyager instead of a conventional office is the most effective way for him to relax, and gives him an opportunity to bounce ideas off of the virtual crewmembers (who he is more comfortable interacting with than his real-world coworkers).
Oh, so today we're mad at Apple for dastardly approving apps that they should have rejected on the grounds of software look-and-feel... because that totally holds up in court, not to mention it's totally Apple's job to ensure that every app has no resemblance to any other software ever published. Got it!
This isn't a game that looks vaguely like the original Lemmings and has somewhat similar gameplay mechanics. It's an exact copy that uses the "Lemmings" name and logo.
So, go ahead and buy from the MPAA. Do you really think that any of your money makes it to the people who wrote, directed and produced the content?
As reprehensible as I think Hollywood's accounting/royalty practices are, they don't negate the fact that if the studios weren't making money, they wouldn't have hired the film/TV crews who made the content in the first place. The money that's spent by consumers on today's content is what ends up being used (in part) to pay the people who are working on tomorrow's.
Been there, done that... There is these nice utilities called SSH and http-tunnel: www.http-tunnel.com
That's a step in the right direction, but I was specifically thinking of something that would dynamically generate content that looked (at least superficially) like a website, except that the content on the page would actually represent the tunneled traffic, and the client would send data back in the guise of form posts. IE unless the HTML code were read by a human, it would look like someone had just been doing a lot of reading and posting on a web forum.
I've been wondering for awhile when someone would respond to SSL inspection by proxy servers by making a proxy server package that sits on the internet, tunneling HTTPS over innocuous-looking HTTP traffic. It would be inefficient (especially if the text/HTML looked more or less real) but I don't see why it wouldn't work.
Sure you may be trying to do things the right way, i.e. fully standard compliant, but it isn't the real world answer.
I managed to write a web application a couple of years ago that not only displayed consistently in IE and Firefox, but also printed consistently from both of them, while remaining standards-compliant and not using HTML or CSS hacks. The printing was by far the harder part - the browsers initially returned very different printed results even though they rendered the page on-screen almost identically. Changes to the CSS would frequently fix the printing of one while breaking the other, yet not affecting the on-screen rendering of either. I can see why people who do a lot of printing lean towards PDF.
It's easy to assume that your experience is the same as everyone else's, even when it is not. If no one is buying shrink-wrapped/boxed software, why do stores (in the US) like Best Buy, Circuit City, and Target still have large selections of it in stock?
PowerShell is a big step forward for Microsoft, but it's still a little rough around the edges.
For example, try using the Get-Acl command against a path that has a square bracket character in it. Now try to come up with a way to dynamically escape the character when passing a path to that command - e.g. if you are writing a function that recurses through directories and operates against each subdirectory. There were a few that supposedly worked in beta versions of PowerShell, but to my knowledge there is nothing that works in the release version.
Most (all?) of the other PowerShell commands have a workaround for this, but Get-Acl doesn't, and it's been a problem literally for years now without a fix from MS. Issues like this are the reason I've gone back to VBScript when I'm doing scripting instead of development.
I don't believe that PCI mandates "good" encryption, just encryption.
As of 1.1 (the only document I have handy), the requirement is "Strong cryptography, such as Triple-DES 128-bit or AES 256-bit". I'm sure it only got more stringent after that.
..."bleeps and bloops"? Seriously, I know I'm getting a bit old, but I've been seeing that exact same phrase used in articles about videogame sound and music literally for decades now. Most people who play games today probably don't even remember when the sound was that primitive, because they weren't born yet. At least come up with a different way of describing it!
Can you think of a situation where violence is not inherently bad? I can think of many where it is the lesser of two evils, or just punishment, an understandable response, etc., but not any where it's actually something I would consider "good".
I don't want to tinker, but if I fix something simple like an air filter, I want to be able to reset the console warning lights.
If you just want to be able to read diagnostic codes and reset the warning light(s), at most you need a standalone OBDII device, not a laptop, special hardware and software. Harbor Freight has them for US$50 right now, and I got one on sale there for about $30.
The only reason I know of to go the laptop route is to get detailed engine data like an emissions-testing station or performance tuning shop would want.
Wait a moment. MacOS and Win 3.1 in their time being able to run on the same hardware? Win 3.1 has always been restricted to x86 processors.
Back in the olden days, it was possible to buy an expansion card for several types of non-x86 system that had all the x86 hardware necessary to run DOS and Windows.
I had one for my parents' Apple IIe - the Applied Engineering PC Transporter. IIRC, it was similar to the Atari 2600 module for the ColecoVision in that it really just used the Apple for its keyboard and monitor (and for best results a separate monitor was necessary). Separate disk drives were needed, for example.
I believe the Amiga equivalent (which I heard referred to as a "bridge board" at the time) was more integrated into the Amiga hardware/OS and the x86 software could be run inside a window within Workbench.
What we really need for these kind of processes is a computer made out of very simple, small and fast elements that do exactly the task you want them to do and that are all connected.
I believe Thinking Machines beat you to it, but almost no one was interested in writing software for the architecture.
Not a limitation at all. If you need 16-bit color to manipulate the hell out of your picture to reduce color round off error, then maybe capturing a good shot to begin with will solve that problem.
Ah, the old "if you do everything perfectly in the field, you don't need fancy features in the studio" argument. The equally-inaccurate friend of "I don't have to do anything right in the field, because I can fix it all in the studio".
The display on my DSLR is tiny. Being able to work with 16-bit-per-channel colour gives me the flexibility to correct for issues that I didn't notice on that small display. It also means I can do non-destructive editing using effects layers after converting from RAW. I typically do this so I can clean up an image once (removing sensor dust, etc.) and then change my mind later about the levels I set on it. I can't go back in time and re-shoot the images - I have to work with what I have. The more flexibility I can have in that respect, the better.
However, the main reason I use 16bpc images is that I work with infrared and ultraviolet shots in addition to visible light. Mass-market DSLRs are not designed with those parts of the spectrum in mind, so getting useful images often means squeezing as much detail as possible out of a narrow dynamic range. Doing that with 8-bit images looks like crap (predictably). Working in 16bpc, it looks fine.
I imagine this is also a huge factor for people who shoot conventional black-and-white photos. 256 shades of grey is not a lot of fidelity.
They started adding in new flashy shit that no-one really needs, and forgetting about actually getting a STABLE distro out there.
Kubuntu 10.04 is much more responsive on my laptop than the last release. Unfortunately, whereas the last release was rock-solid stable on that laptop (once I manually edited xorg.conf to disable some arcane feature whose use was causing the bottom half of the display to be garbage), this new release is pretty sketchy. So far I've discovered that when recording audio in Audacity, there is a ~90% probability that all of X will crash (with an error along the lines of "Unable to write bytes: broken pipe") when I hit the stop button, or after it's been recording for awhile. That specific error seems to have cropped up frequently (but in regards to different components) in the various 10.04 releases (Ubuntu/Kubuntu/Xubuntu).:\ Maybe I should look into another KDE-based distribution.
And because there is only a security problem with this if the security on the systems and applications on the network is broken in the first place.
I would be extremely interested to see a real-world example of a functioning production network used by a major business or government institution that was not vulnerable to security threats introduced by the use of devices which migrate between that environment and a less-restrictive one (e.g. employees' homes).
Does TrueCrypt support key rotation? IE changing to a new encryption key every 90 days? Obviously that would require that all of the data on the encrypted volume be re-encrypted, but it's a requirement where I work. I looked over the documentation and didn't see anything that explicitly covered this, although the implication is that it isn't supported. Specifically, the part about how changing the master key (as opposed to an individual password that unlocks that key) requires that all data be copied to a new volume.
data can be made accessible without being stored locally.
While this can be true, it's important for the developers who implement the software to understand the implications of their design decisions. For example, if the data is made accessible in a web application, there is a good chance that it is being stored locally on client systems, in the form of the browser cache, and possibly the page and/or hibernation file(s). Data confidentiality requirements that I've seen usually tend to be fairly broad in their definition of what "at rest" or "written to disk" means, to the point that my reading of them often gives me the impression they include all modern desktop and server operating systems, simply because of the page/swap file. IANAL, etc.
Slashdot Mirror
Hella better than Verizon with customer service, features, and choices.
I think it depends on where you're using the phone. If I'm near an ocean of some kind, my experience with T-Mobile has been pretty good. When I've been further inland is when things turned sour. I had no service anywhere east of Spokane, Washington through the entire western half of Montana, for example. All the features in the world don't matter if you can't connect to their network.
FWIW, Nextel was the same way if not worse. I went on a longer drive with one of their phones back in 2006, and I didn't have service between Spokane and Chicago. Meanwhile, the AT&T phone I'd brought along from work had service except in the most remote rural parts of Wyoming.
So far T-Mobile has been the least offensive option for cellular service that I've found, but if I lived farther from a city they probably wouldn't work out very well.
When was the last major functional change for ls? When was the last time you saw a major support contract signed for the ls command?
When was the last time the landscape of Unix-style directory listings changed significantly? Security-related products need to constantly adapt to new types of threat as well as new variations on older types.
Think about how much the world of computer security has changed over the last couple of decades. When I had my first dialup shell account with internet access, the idea that there would be a major black-market industry for professionals writing malicious code was literally science fiction.
Meanwhile, the standard Unix-style directory listing still seems to work fine for most people. I haven't looked into the more specialized (SELinux) variations, but I imagine if there were significant changes to the Unix filesystem security model (e.g. if very complicated NTFS-style permissions were implemented), then ls would probably be significantly extended so that it would accurately represent the additional information.
It's been twenty years since I've done anything that needed clearances. The DoD may have now have a secret clearing house where spy employers and employees can meet. If not, it should start one.
When we had an open position in my group at work earlier this year, one of the candidates had spent most of his career working for organizations that required those kind of clearances. Maybe if I worked for a spy agency, there would be something available like you describe, but he said there was literally no way he could tell anyone about what he'd worked on. We've had a couple of people with TS or above clearance (because of past work), and apparently even if they had the same clearances for previous work and got together alone in the same secure room, they still couldn't discuss it outside the oversight of the government.
It was kind of frustrating for both parties. How can you prove to a potential employer that you know your line of work when you can't tell them what you've done for the last decade?
He should be honored and respected for his actions, not called abnormal.
I would also like to point out the he is in no way suffering a relapse of his previous trouble with holo-addiction. Working inside a simulation of Voyager instead of a conventional office is the most effective way for him to relax, and gives him an opportunity to bounce ideas off of the virtual crewmembers (who he is more comfortable interacting with than his real-world coworkers).
Oh, so today we're mad at Apple for dastardly approving apps that they should have rejected on the grounds of software look-and-feel... because that totally holds up in court, not to mention it's totally Apple's job to ensure that every app has no resemblance to any other software ever published. Got it!
This isn't a game that looks vaguely like the original Lemmings and has somewhat similar gameplay mechanics. It's an exact copy that uses the "Lemmings" name and logo.
Those free-floating projections from the movies are, based on current knowledge, impossible.
No, they're not. The MIT Media lab was building them about a decade ago.
So, go ahead and buy from the MPAA. Do you really think that any of your money makes it to the people who wrote, directed and produced the content?
As reprehensible as I think Hollywood's accounting/royalty practices are, they don't negate the fact that if the studios weren't making money, they wouldn't have hired the film/TV crews who made the content in the first place. The money that's spent by consumers on today's content is what ends up being used (in part) to pay the people who are working on tomorrow's.
Been there, done that...
There is these nice utilities called SSH and http-tunnel:
www.http-tunnel.com
That's a step in the right direction, but I was specifically thinking of something that would dynamically generate content that looked (at least superficially) like a website, except that the content on the page would actually represent the tunneled traffic, and the client would send data back in the guise of form posts. IE unless the HTML code were read by a human, it would look like someone had just been doing a lot of reading and posting on a web forum.
I've been wondering for awhile when someone would respond to SSL inspection by proxy servers by making a proxy server package that sits on the internet, tunneling HTTPS over innocuous-looking HTTP traffic. It would be inefficient (especially if the text/HTML looked more or less real) but I don't see why it wouldn't work.
Sure you may be trying to do things the right way, i.e. fully standard compliant, but it isn't the real world answer.
I managed to write a web application a couple of years ago that not only displayed consistently in IE and Firefox, but also printed consistently from both of them, while remaining standards-compliant and not using HTML or CSS hacks. The printing was by far the harder part - the browsers initially returned very different printed results even though they rendered the page on-screen almost identically. Changes to the CSS would frequently fix the printing of one while breaking the other, yet not affecting the on-screen rendering of either.
I can see why people who do a lot of printing lean towards PDF.
Shrink wrapped/boxed software is _dead_.
It's easy to assume that your experience is the same as everyone else's, even when it is not. If no one is buying shrink-wrapped/boxed software, why do stores (in the US) like Best Buy, Circuit City, and Target still have large selections of it in stock?
PowerShell is a big step forward for Microsoft, but it's still a little rough around the edges.
For example, try using the Get-Acl command against a path that has a square bracket character in it. Now try to come up with a way to dynamically escape the character when passing a path to that command - e.g. if you are writing a function that recurses through directories and operates against each subdirectory. There were a few that supposedly worked in beta versions of PowerShell, but to my knowledge there is nothing that works in the release version.
Most (all?) of the other PowerShell commands have a workaround for this, but Get-Acl doesn't, and it's been a problem literally for years now without a fix from MS. Issues like this are the reason I've gone back to VBScript when I'm doing scripting instead of development.
I don't believe that PCI mandates "good" encryption, just encryption.
As of 1.1 (the only document I have handy), the requirement is "Strong cryptography, such as Triple-DES 128-bit or AES 256-bit". I'm sure it only got more stringent after that.
DNA is simply a more complete, and more invasive, fingerprint.
It's really not. Can a fingerprint be (reliably) used to indicate your ancestry, diseases you are genetically likely to develop, etc.?
..."bleeps and bloops"? Seriously, I know I'm getting a bit old, but I've been seeing that exact same phrase used in articles about videogame sound and music literally for decades now. Most people who play games today probably don't even remember when the sound was that primitive, because they weren't born yet. At least come up with a different way of describing it!
How do you argue that violence is inherently bad?
Can you think of a situation where violence is not inherently bad? I can think of many where it is the lesser of two evils, or just punishment, an understandable response, etc., but not any where it's actually something I would consider "good".
I don't want to tinker, but if I fix something simple like an air filter, I want to be able to reset the console warning lights.
If you just want to be able to read diagnostic codes and reset the warning light(s), at most you need a standalone OBDII device, not a laptop, special hardware and software. Harbor Freight has them for US$50 right now, and I got one on sale there for about $30.
The only reason I know of to go the laptop route is to get detailed engine data like an emissions-testing station or performance tuning shop would want.
The hole is pretty small, do we *need* that much power that a nuke is necessary*?
"Need" is such a strong word.
Wait a moment. MacOS and Win 3.1 in their time being able to run on the same hardware?
Win 3.1 has always been restricted to x86 processors.
Back in the olden days, it was possible to buy an expansion card for several types of non-x86 system that had all the x86 hardware necessary to run DOS and Windows.
I had one for my parents' Apple IIe - the Applied Engineering PC Transporter. IIRC, it was similar to the Atari 2600 module for the ColecoVision in that it really just used the Apple for its keyboard and monitor (and for best results a separate monitor was necessary). Separate disk drives were needed, for example.
I believe the Amiga equivalent (which I heard referred to as a "bridge board" at the time) was more integrated into the Amiga hardware/OS and the x86 software could be run inside a window within Workbench.
What we really need for these kind of processes is a computer made out of very simple, small and fast elements that do exactly the task you want them to do and that are all connected.
I believe Thinking Machines beat you to it, but almost no one was interested in writing software for the architecture.
Not a limitation at all. If you need 16-bit color to manipulate the hell out of your picture to reduce color round off error, then maybe capturing a good shot to begin with will solve that problem.
Ah, the old "if you do everything perfectly in the field, you don't need fancy features in the studio" argument. The equally-inaccurate friend of "I don't have to do anything right in the field, because I can fix it all in the studio".
The display on my DSLR is tiny. Being able to work with 16-bit-per-channel colour gives me the flexibility to correct for issues that I didn't notice on that small display. It also means I can do non-destructive editing using effects layers after converting from RAW. I typically do this so I can clean up an image once (removing sensor dust, etc.) and then change my mind later about the levels I set on it. I can't go back in time and re-shoot the images - I have to work with what I have. The more flexibility I can have in that respect, the better.
However, the main reason I use 16bpc images is that I work with infrared and ultraviolet shots in addition to visible light. Mass-market DSLRs are not designed with those parts of the spectrum in mind, so getting useful images often means squeezing as much detail as possible out of a narrow dynamic range. Doing that with 8-bit images looks like crap (predictably). Working in 16bpc, it looks fine.
I imagine this is also a huge factor for people who shoot conventional black-and-white photos. 256 shades of grey is not a lot of fidelity.
They started adding in new flashy shit that no-one really needs, and forgetting about actually getting a STABLE distro out there.
Kubuntu 10.04 is much more responsive on my laptop than the last release. Unfortunately, whereas the last release was rock-solid stable on that laptop (once I manually edited xorg.conf to disable some arcane feature whose use was causing the bottom half of the display to be garbage), this new release is pretty sketchy. So far I've discovered that when recording audio in Audacity, there is a ~90% probability that all of X will crash (with an error along the lines of "Unable to write bytes: broken pipe") when I hit the stop button, or after it's been recording for awhile. :\
That specific error seems to have cropped up frequently (but in regards to different components) in the various 10.04 releases (Ubuntu/Kubuntu/Xubuntu).
Maybe I should look into another KDE-based distribution.
And because there is only a security problem with this if the security on the systems and applications on the network is broken in the first place.
I would be extremely interested to see a real-world example of a functioning production network used by a major business or government institution that was not vulnerable to security threats introduced by the use of devices which migrate between that environment and a less-restrictive one (e.g. employees' homes).
Does TrueCrypt support key rotation? IE changing to a new encryption key every 90 days? Obviously that would require that all of the data on the encrypted volume be re-encrypted, but it's a requirement where I work.
I looked over the documentation and didn't see anything that explicitly covered this, although the implication is that it isn't supported. Specifically, the part about how changing the master key (as opposed to an individual password that unlocks that key) requires that all data be copied to a new volume.
data can be made accessible without being stored locally.
While this can be true, it's important for the developers who implement the software to understand the implications of their design decisions. For example, if the data is made accessible in a web application, there is a good chance that it is being stored locally on client systems, in the form of the browser cache, and possibly the page and/or hibernation file(s).
Data confidentiality requirements that I've seen usually tend to be fairly broad in their definition of what "at rest" or "written to disk" means, to the point that my reading of them often gives me the impression they include all modern desktop and server operating systems, simply because of the page/swap file. IANAL, etc.