Sure, many people are distracted by what is on their smartphone screens, but what about those listening to music and not paying attention to audio cues that impact their safety, such as the sounds of approaching cars? In some places in the US it is against the law to wear headphones / earbuds while driving. While being a pedestrian, it is not illegal, but it can certainly be dangerous if you can't hear the sound of an approaching car or other danger.
How is this different than advertising? Coke and Pepsi for example both try to convince you should buy their product over the other's. They attack from multiple fronts, pay for commercials and product placement, sponsor major sporting events, are active on multiple forms of social media, etc. All with the goal of swaying public opinion and convincing you that you should so something that you probably should not (drink stuff that generally isn't health for you).
It is sad that the cost of rent and not the cost of a house / mortgage is being used as a benchmark when talking about IT, which is usually considered a higher paying profession. The concept that higher paying professions aren't assumed by default as leading you to property / home ownership is worrying. Yes, I get that "IT" spans a wide range from low level call center work to senior level architects, but nonetheless, it is a sad statement on the state of our world.
The protection against man-in-the-middle attack is relevant only in a handful of cases. With home Internet access, MitM can more or less only be performed by network operators, who have a lot to lose if they are caught playing these games. It is more of an issue with public access, but still rather minor.
There is no difference between protection from man in the middle attacks for home users and users using public access. The user (or software / browser on the user's computer) is either validating certificates or they are not. Validation includes checking cryptographic signatures, checking revocation lists, and checking that the subject matches the requested resource (web site). It is true that checking signatures requires keeping tabs on what certificate authorities are trusted, which is a difficult problem, but this challenge isn't any different for home or mobile users. The whole point of Public Key Infrastructure is to prevent man in the middle attacks (provide secure communications.)
I would argue that MitM is relevant in all cases, especially when you consider that beyond your (or the coffee shop's) ISP, you have to worry about spyware on your machine doing it. You may have even have agreed to it by installing something like comScore or any anti-virus product that "protects encrypted sessions". In the workplace you can have similar issues, many companies have egress filtering firewalls which perform MitM attacks on outbound encrypted traffic (otherwise they would not be able to monitor the traffic). In the work place though, the company owns the machine and can add the firewall's on the fly generated certificates to your trusted CA list.
Man in the middle attacks are possible and relevant pretty much everywhere.
Does the bandwidth used by uploading and downloading video count against any of your data caps or ratings? If not, would similar video streams from a competing service count?
This point isn't that all tools are equal. Different tools are clearly better or worse for different jobs. The point is that poor performance is not the tool's fault, it is the the fault of the worker for either choosing the wrong tool or not knowing how to be productive with the tools available. Or the short form, "Only a Tool would blame the tool."
If you make people jump through hoops like circus animals to come work at your company you only get the desperate, or the ones who want the job as a status symbol.
Or the ones who like being made to jump through hoops like a circus animal. I guess if you are into that it's okay; who am I to judge?
Yellow means "Stop if safe to do so" in many places.
Red means "Do not enter".
If you think about it, it also doesn't make any sense that Red means get out of the intersection as anyone in the intersection would not see the red light in many countries due to layout. e.g. In most of Europe (UK excluded) the lights are at the entrance to the intersection.
In the US, it also varies by state. In some US states if the light is red and any portion of your car (even the last inch of your rear bumper) is in the intersection, you have run a red light (committed a traffic infraction). In other states, as long your car is completely in the intersection prior to the light turning red, you are okay.
I guess having a patch within a week is pretty good though.
Assuming that the patch actually fixed the problem and just doesn't disable the instruction (or feature set) on the CPU. Disabling CPU functionality would "solve" the problem, but then you would be effectively getting a reduced capacity CPU and not what you were paying for.
While encryption itself is an issue to be worked out, the real question is key/encryption password management: How do you keep the keys off of a server that you worry about being stolen or physically compromised? Specialized hardware exists specifically for this. There are network versions of hardware security modules and you would put one of these in a secure location, apart from your server, but available to your server over a network so if you need to restart the server, it can access its encryption keys (probably with human intervention on the HSM side.)
HSM equipment comes in all sorts of shapes and sizes with the smallest being the chip in your credit card or a TPM chip in your laptop, to big ones which are rack mounted and require multiple key cards to activate.
I for me think that's fine and dandy but be careful not to throw out the good with the bad. Electronic-only boarding passes? How am I supposed to hold those? So they're now requiring me to carry a mobile phone or tablet just to hold that ticket?
The article talked about paper tickets not paper boarding passes. They are not the same thing. A paper ticket is a document that holds the value of your journey, it is like cash and similar to cash, expensive to handle. A boarding pass is a document that says you may get on the plane and on most airlines indicates your seat assignment. The boarding pass holds no monetary value. The boarding pass typically has a ticket reference number on it, but it is not the actual ticket. All other airlines that I am aware of (at least the majors in the US) got rid of paper tickets years ago, they all still have options for paper boarding passes. I don't fly Southwest due to their boarding process and lack of assigned seats, so I wasn't aware but was surprised to hear that an airline was still using paper tickets.
seems redundant to maintain two phones & two phone numbers
Redundancy is good, it gives you a usable option when one thing fails.
Accurate location services are not a sure thing with a cell phone, whereas if you call 911 (emergency services, for those not in the US) from a land line, they will know exactly where you are.
Every article about old people is them being too poor, stupid, etc to handle life. Let's go back to the old days, the days of Logan's Run, where only the young are around.
Other than the articles about congress where the members are old people who are rich and powerful and hmmm maybe Logan's Run isn't such a bad idea after all.
All of your engineers will need healthcare at some point. You could probably save a mint if your engineers could diagnose and treat some simple medical problems on their own.
Actually I would expect engineers (and everyone really) to be able to diagnose and treat simple medical problems. Have a headache? Take an aspirin, ibuprofen, etc. Have a small cut or scrape? Wash it and put on a band aid. Sure, a headache that won't go away or a cut that becomes horribly infected may need a doctor but these are stepping away from "simple medical problems". Most people know where the line between simple and not simple medical problems lies and those that don't create quite a burden on society (using the emergency room for a simple headache as an example). Being able to do simple medical diagnostics is a basic life skill that I would expect anyone with at least average intelligence to have.
I would argue that in today's society that basic technological knowledge is also a basic life skill that someone with average intelligence should have. Since a competent engineer would be someone with above average intelligence, there is really no excuse for not having basic technological understanding. By basic I mean simple "take an aspirin for a headache" kind of stuff such as checking to see if equipment is plugged in and has power before calling the doctor (IT support) or knowing that a message on the screen saying that you need to change your password means that you need to change your password.
Someone didn't follow Lock Out Procedures or those procedures were inadequate.
The only possible liability lies with her, or the company, not the robot manufacturers.
For those who don't know what "Lock Out Procedures" means... It is safety protocol that has been used in industry for at least decades in which a person who is going to work near dangerous machinery turns off the power to the system and physically puts a padlock on the switch so that it can not be turned back on. Protocol is that there is only one key to the padlock and the person who placed the padlock carries the key with them. This way the person is responsible for their own safety. If 15 people are working on the equipment there are 15 padlocks hanging off the switch (there are special devices that allow a whole gob of padlocks to placed on a switch.) Lockout can be mechanical in addition to electrical, but the concept is that when something is locked it, it is not physically possible for it to operate. It important to note that control systems are not locked out, actual power sources are, this way even a computer or control system failure can not cause a dangerous condition when something is "locked out".
The problem is that each new generation of programmers is lazier than the one before them.
Lazier or more expensive? While I have been doing this a long time and have my share of complaints about kids these days who won't stay off my lawn, I also acknowledge the business side of things where if you can use a programmer who is "lazy" by leveraging already existing code and libraries that may not be specifically optimized for the task at hand, you can do so and still get the job done because the hardware is fast enough to compensate for the inefficiencies in coding.
TLDR; Lazy can be inefficient, cheap, and usually enough.
Yeah it bugs me that so much processing power is wasted, but I get it.
An attempt to create a TCP connection to an Internet connected machine is not an attack, or I at least hope not. I would hate to click on a link, be taken to a site that considers a regular connection as an attack, and be subject to legal retaliatory hacking. How about a ping? It would be bad if packets blocked by a firewall are considered an attack...
So did she really create the app, or did she just have the idea for someone else to do it? I seriously doubt she sat down and learned how to do this like the SJWs would have us believe.
Why not? At 81 she is retired and has plenty of time. Anyone who can think logically, understand abstractions, and is willing the to put in the time can learn how to program. Article said she was a banker, so she was a professional and would have at least basic math and logic skills. Article also said "She calls herself a technology evangelist and even wrote her own PC textbooks", so she has at least a basic computer understanding. Given determination it wouldn't be that hard to go find a sample application (and associated build process) and keep tweaking it until it does what you want.
If you sign up for this, you sign up for all of your location data and the operational parameters of your car being constantly uploaded and sold to the highest bidder. Actually the trap has already been sprung and that data (or some of it) is already being uploaded. The real trap is that with this you get to pay for the privilege of giving up your privacy.
While the science around this is indeed interesting, there are ethical questions beyond just those involved with gene editing. Specifically around if it is appropriate to risk reduction of one endangered population of animals to attempt to revive an extinct one.
Slashdot Mirror
Sure, many people are distracted by what is on their smartphone screens, but what about those listening to music and not paying attention to audio cues that impact their safety, such as the sounds of approaching cars? In some places in the US it is against the law to wear headphones / earbuds while driving. While being a pedestrian, it is not illegal, but it can certainly be dangerous if you can't hear the sound of an approaching car or other danger.
How is this different than advertising? Coke and Pepsi for example both try to convince you should buy their product over the other's. They attack from multiple fronts, pay for commercials and product placement, sponsor major sporting events, are active on multiple forms of social media, etc. All with the goal of swaying public opinion and convincing you that you should so something that you probably should not (drink stuff that generally isn't health for you).
It is sad that the cost of rent and not the cost of a house / mortgage is being used as a benchmark when talking about IT, which is usually considered a higher paying profession. The concept that higher paying professions aren't assumed by default as leading you to property / home ownership is worrying. Yes, I get that "IT" spans a wide range from low level call center work to senior level architects, but nonetheless, it is a sad statement on the state of our world.
The protection against man-in-the-middle attack is relevant only in a handful of cases. With home Internet access, MitM can more or less only be performed by network operators, who have a lot to lose if they are caught playing these games. It is more of an issue with public access, but still rather minor.
There is no difference between protection from man in the middle attacks for home users and users using public access. The user (or software / browser on the user's computer) is either validating certificates or they are not. Validation includes checking cryptographic signatures, checking revocation lists, and checking that the subject matches the requested resource (web site). It is true that checking signatures requires keeping tabs on what certificate authorities are trusted, which is a difficult problem, but this challenge isn't any different for home or mobile users. The whole point of Public Key Infrastructure is to prevent man in the middle attacks (provide secure communications.)
I would argue that MitM is relevant in all cases, especially when you consider that beyond your (or the coffee shop's) ISP, you have to worry about spyware on your machine doing it. You may have even have agreed to it by installing something like comScore or any anti-virus product that "protects encrypted sessions". In the workplace you can have similar issues, many companies have egress filtering firewalls which perform MitM attacks on outbound encrypted traffic (otherwise they would not be able to monitor the traffic). In the work place though, the company owns the machine and can add the firewall's on the fly generated certificates to your trusted CA list.
Man in the middle attacks are possible and relevant pretty much everywhere.
Does the bandwidth used by uploading and downloading video count against any of your data caps or ratings? If not, would similar video streams from a competing service count?
This point isn't that all tools are equal. Different tools are clearly better or worse for different jobs. The point is that poor performance is not the tool's fault, it is the the fault of the worker for either choosing the wrong tool or not knowing how to be productive with the tools available. Or the short form, "Only a Tool would blame the tool."
If you make people jump through hoops like circus animals to come work at your company you only get the desperate, or the ones who want the job as a status symbol.
Or the ones who like being made to jump through hoops like a circus animal. I guess if you are into that it's okay; who am I to judge?
This varies by country.
Yellow means "Stop if safe to do so" in many places. Red means "Do not enter".
If you think about it, it also doesn't make any sense that Red means get out of the intersection as anyone in the intersection would not see the red light in many countries due to layout. e.g. In most of Europe (UK excluded) the lights are at the entrance to the intersection.
In the US, it also varies by state. In some US states if the light is red and any portion of your car (even the last inch of your rear bumper) is in the intersection, you have run a red light (committed a traffic infraction). In other states, as long your car is completely in the intersection prior to the light turning red, you are okay.
I guess having a patch within a week is pretty good though.
Assuming that the patch actually fixed the problem and just doesn't disable the instruction (or feature set) on the CPU. Disabling CPU functionality would "solve" the problem, but then you would be effectively getting a reduced capacity CPU and not what you were paying for.
Not bad, a bullshit bingo win in the title alone.
While encryption itself is an issue to be worked out, the real question is key/encryption password management: How do you keep the keys off of a server that you worry about being stolen or physically compromised? Specialized hardware exists specifically for this. There are network versions of hardware security modules and you would put one of these in a secure location, apart from your server, but available to your server over a network so if you need to restart the server, it can access its encryption keys (probably with human intervention on the HSM side.)
HSM equipment comes in all sorts of shapes and sizes with the smallest being the chip in your credit card or a TPM chip in your laptop, to big ones which are rack mounted and require multiple key cards to activate.
I for me think that's fine and dandy but be careful not to throw out the good with the bad. Electronic-only boarding passes? How am I supposed to hold those? So they're now requiring me to carry a mobile phone or tablet just to hold that ticket?
The article talked about paper tickets not paper boarding passes. They are not the same thing. A paper ticket is a document that holds the value of your journey, it is like cash and similar to cash, expensive to handle. A boarding pass is a document that says you may get on the plane and on most airlines indicates your seat assignment. The boarding pass holds no monetary value. The boarding pass typically has a ticket reference number on it, but it is not the actual ticket. All other airlines that I am aware of (at least the majors in the US) got rid of paper tickets years ago, they all still have options for paper boarding passes. I don't fly Southwest due to their boarding process and lack of assigned seats, so I wasn't aware but was surprised to hear that an airline was still using paper tickets.
seems redundant to maintain two phones & two phone numbers
Redundancy is good, it gives you a usable option when one thing fails.
Accurate location services are not a sure thing with a cell phone, whereas if you call 911 (emergency services, for those not in the US) from a land line, they will know exactly where you are.
Every article about old people is them being too poor, stupid, etc to handle life. Let's go back to the old days, the days of Logan's Run, where only the young are around.
Other than the articles about congress where the members are old people who are rich and powerful and hmmm maybe Logan's Run isn't such a bad idea after all.
All of your engineers will need healthcare at some point. You could probably save a mint if your engineers could diagnose and treat some simple medical problems on their own.
Actually I would expect engineers (and everyone really) to be able to diagnose and treat simple medical problems. Have a headache? Take an aspirin, ibuprofen, etc. Have a small cut or scrape? Wash it and put on a band aid. Sure, a headache that won't go away or a cut that becomes horribly infected may need a doctor but these are stepping away from "simple medical problems". Most people know where the line between simple and not simple medical problems lies and those that don't create quite a burden on society (using the emergency room for a simple headache as an example). Being able to do simple medical diagnostics is a basic life skill that I would expect anyone with at least average intelligence to have.
I would argue that in today's society that basic technological knowledge is also a basic life skill that someone with average intelligence should have. Since a competent engineer would be someone with above average intelligence, there is really no excuse for not having basic technological understanding. By basic I mean simple "take an aspirin for a headache" kind of stuff such as checking to see if equipment is plugged in and has power before calling the doctor (IT support) or knowing that a message on the screen saying that you need to change your password means that you need to change your password.
Someone didn't follow Lock Out Procedures or those procedures were inadequate.
The only possible liability lies with her, or the company, not the robot manufacturers.
For those who don't know what "Lock Out Procedures" means... It is safety protocol that has been used in industry for at least decades in which a person who is going to work near dangerous machinery turns off the power to the system and physically puts a padlock on the switch so that it can not be turned back on. Protocol is that there is only one key to the padlock and the person who placed the padlock carries the key with them. This way the person is responsible for their own safety. If 15 people are working on the equipment there are 15 padlocks hanging off the switch (there are special devices that allow a whole gob of padlocks to placed on a switch.) Lockout can be mechanical in addition to electrical, but the concept is that when something is locked it, it is not physically possible for it to operate. It important to note that control systems are not locked out, actual power sources are, this way even a computer or control system failure can not cause a dangerous condition when something is "locked out".
The problem is that each new generation of programmers is lazier than the one before them.
Lazier or more expensive? While I have been doing this a long time and have my share of complaints about kids these days who won't stay off my lawn, I also acknowledge the business side of things where if you can use a programmer who is "lazy" by leveraging already existing code and libraries that may not be specifically optimized for the task at hand, you can do so and still get the job done because the hardware is fast enough to compensate for the inefficiencies in coding.
TLDR; Lazy can be inefficient, cheap, and usually enough.
Yeah it bugs me that so much processing power is wasted, but I get it.
An attempt to create a TCP connection to an Internet connected machine is not an attack, or I at least hope not. I would hate to click on a link, be taken to a site that considers a regular connection as an attack, and be subject to legal retaliatory hacking. How about a ping? It would be bad if packets blocked by a firewall are considered an attack...
So did she really create the app, or did she just have the idea for someone else to do it? I seriously doubt she sat down and learned how to do this like the SJWs would have us believe.
Why not? At 81 she is retired and has plenty of time. Anyone who can think logically, understand abstractions, and is willing the to put in the time can learn how to program. Article said she was a banker, so she was a professional and would have at least basic math and logic skills. Article also said "She calls herself a technology evangelist and even wrote her own PC textbooks", so she has at least a basic computer understanding. Given determination it wouldn't be that hard to go find a sample application (and associated build process) and keep tweaking it until it does what you want.
If you sign up for this, you sign up for all of your location data and the operational parameters of your car being constantly uploaded and sold to the highest bidder. Actually the trap has already been sprung and that data (or some of it) is already being uploaded. The real trap is that with this you get to pay for the privilege of giving up your privacy.
Unless you are furry.
For your argument to work, you should really pick something that is an insult or negative.
This title is not an exception.
I first read launches as launders and thought it funny. I thought about is some more and it may be more of a risk than a joke.
While the science around this is indeed interesting, there are ethical questions beyond just those involved with gene editing. Specifically around if it is appropriate to risk reduction of one endangered population of animals to attempt to revive an extinct one.