So your chain of trust includes the United States Postal Service? That's quite a leap of faith.
USPS dependence is not required. After I fill out my (Oregon) ballot, I drop it off at the elections office instead of mailing it. There are lots of official drop off locations - some of which are even "drive through" on election day. I do this not because I don't trust the postal service, I do it because I am I am opposed to the concept of paying (with a stamp) to vote. If you trust the USPS and you don't care about paying for a stamp, you can use the mail. It is your choice.
When you fill out you your paper ballot (which is a "fill in the bubble" machine readable thing), you put it in a "secrecy" envelope. The secrecy envelope is placed inside the "mailing" envelope that has your voter id and a signature line on it.
When the elections office receives your ballot they look up your voter id, visually verify your signature with your registration, and note that you have voted. Next they put the secrecy envelope containing your ballot into a ballot box for counting. Someone else who has not seen the outer envelope with your name on it, opens up the secrecy envelopes, extracts the ballots, and feeds them into the ballot scanner.
This system validate voters by signature, makes sure people don't vote more then once, provides anonymous voting, and supports recounts - both automated and manual. If you want to verify that your ballot was processed you can ask the elections office.
Then I would say that these sorts of things need to be corrected. I am just concerned that the concept of "securing" will include control of application level content and attempts to eliminate or reduce anonymity.
I didn’t realize the Internet itself was insecure.
We could talk about securing applications that run on top of the Internet, but that would be a different conversation and I am not sure that is where we want the government to be.
Put enough comments in your code so that five years from now you (and others) can remember what you indented the code to do. Remember that comments are not for describing what the code technically does (that is what the code is for), comments are for what the code is intended to do. Try and comment the decisions you made when developing the code, specifically why you took the approach you did and why you didn't use other options.
the fact of the matter is they are being psychologically manipulated.
So we should also eliminate or create legal liability for all forms of psychological manipulation? Advertising and political speech come to mind, do we want to protect against that? How about your peers, your boss, your spouse / significant other, or your parents? They are consistently trying to psychologically manipulate you.
I am sorry, but the world is trying to psychologically manipulate you. This has always been the case and always will be. Deal with it. Have some personal responsibility.
Totally weird. I just finished watching that episode on Netflix, walked in the other room to scan Slashdot and found this article. Yes, the episode was "FireWalker". Maybe the truth IS out there.
Three 5.25" drive bays above each other can hold a case with four 3.5" drive bays and a 120mm fan. Thermaltake sells them, as do zillions of other companies.
In a few years presumably some even higher bandwidth specification will come along - no problem if they used version-numbers, but once you have labelled the first generation "standard" and the current generation "High Speed" what're you going to be left with to use next and not end up looking stupid?
"new higher speed", "max speed", "ultimate speed", "super more ultimate than ultimate speed", "I Can't believe its not high speed... speed"?
The article said it was to prevent animals from swallowing spent casings and introducing lead into the food chain. I couldn't speak to the likelihood or real impact of that actually happening.
It is not the shell casings, it is the bullet or the shot inside shotgun shells. Birds that bottom feed eat the used shot on the bottom of lakes and waterways causing the lead to get into the (animal) food chain. It is not just waterfowl, scavengers such as the condor are also effected. Lead Shot
I am hoping this is a joke. In case it is not or in case you are thinking about attaching something else to your steering wheel, please don't forget that there is an airbag with an explosive charge to drive it in modern cars. In an accident do you really want your ipad or something else heading toward your face at explosive speeds?
You could always add a traditional clutch to the system for safety purposes only. In the video he refers to a "powered neutral" state which as the GP suggests might be tricky to implement during start up. A traditional clutch could be added to create an unpowered neutral as a fail safe.
Software Restriction Policies. It allows you to white list applications at the binary executable level. It is a feature of the Group Policy Object (GPO) infrastructure that is part of Microsoft's Active Directory (AD).
How we Americans deal with it (some of us anyway) is we hack the phone to tether anyway for free, and smile every time we use it.
Or we purchase a plan that (legitimately) allows tethering. Yes, it is more expensive, but it is available. If you actually abide by your contract with your carrier, the carrier doesn't try and disable features that you have paid to use.
I am on AT&T with a tethering plan and I overall get good performance. I use it when I am at client sites that don’t have unrestricted Internet access for consultants or at hotels that have a crappy Internet connection (which is common). In the cities I travel to (Portland, Seattle, Cleveland, Dallas, Boston, Wash DC, Jacksonville) I typically get several hundred KB to a MB worth of download speed and a couple hundred KB upload speed. When I am in fringe areas the speed drops down and sometimes I have to fall back to the slow "edge" speed, but I can almost always get a connection. I found that the tethering software provided by AT&T sucks, but WMWifiRouter works great on my HTC Tilt phone.
Animated GIF? Web page executes in a browser causing the browser to perform additional I/O (the IMG SRC tag) to the server to retrieve an application (the GIF file) and executes it. (Animated GIF files contain a "program" of sorts that specify what images to decompress in what order and how long to display them.) How long has GIF been around?
The fine article refers to a ruling that says you don't have to be notified if your email is accessed. It doesn't talk about if it is legal or not to access your email. I guess the theory being that if your mail is stored "publicly" at an ISP and that someone has the legal right to look at your mail, they don't have to tell you that you have been snooped on.
The article doesn't seem to make the distinction between mail at rest (on a mail server) and mail in transit (passing on the wire) so I don't know if running your own mail server makes any difference here or not. It would at least reduce the exposure time for "snapshots" to be taken and disclosed. If your mail was on your own server you would at least have to be approached by a court with a subpoena or similar that demands access, which you would probably notice.
What if the bank by mistake send this information via US Mail? Would the bank been able to go to the Postmaster General and ask that the person's physical mailbox be opened and any envelopes inside it be removed? How about forcing the person's mailing address be revoked or changed? Somehow I don't think a bank could make me change the numbers painted on the front of my house. (I hope not anyway.)
Why should email be any different then postal mail in this case?
You can't fire a developer that's leading in resolutions and completed requirements. It's that simple. Skip the drama and get to work.
Sure you can.
In a really large company or a public service sector job you may have a Human Resources department with policies that offer some protection, but otherwise you manager can fire you just because he or she feels like it. Did your original job offer letter mention anything about employment being "at will"? if so you can be fired for any reason or none at all.
If you want to keep your job you need to make it politically unfeasible to be fired (in addition to doing your regular work). The TFA mentions a couple of ways to do this.
The only way to keep your data secure in any reasonable fashion is to make a copy of it and store it offline, off site. Ideally "off site" would be in another building or city, but it at least has to be on something not attached or accessible to your computer.
Without regard to if you use software or hardware RAID or the quality of the RAID system, RAID only protects you from a physical disk failure. If you as a user screw up (delete or change something you didn't want to) or if some software bug screws up for you, or if you have a non-disk related hardware failure (causing a data corrupting machine crash) then you have lost your data -- RAID doesn't help.
Even if you are only trying to protect against disk errors, if the RAID system fails (even expensive quality ones can), or if you don't know and follow the recovery procedures EXACTLY, you can lose all your data.
The only reliable solution is making a copy or a "backup". Backup does not mean making a copy of the data on the same machine. (Whatever took out your RAID might also take out the other non-RAID disk or directory that you put your copy on.) If you are paranoid (or just prudent) your backup should not be a mapped or mounted drive on another machine. (Viruses can write to the network as well.)
And finally... Backups only count if you have tested your restore process.
Slashdot Mirror
So your chain of trust includes the United States Postal Service? That's quite a leap of faith.
USPS dependence is not required. After I fill out my (Oregon) ballot, I drop it off at the elections office instead of mailing it. There are lots of official drop off locations - some of which are even "drive through" on election day. I do this not because I don't trust the postal service, I do it because I am I am opposed to the concept of paying (with a stamp) to vote. If you trust the USPS and you don't care about paying for a stamp, you can use the mail. It is your choice.
When you fill out you your paper ballot (which is a "fill in the bubble" machine readable thing), you put it in a "secrecy" envelope. The secrecy envelope is placed inside the "mailing" envelope that has your voter id and a signature line on it.
When the elections office receives your ballot they look up your voter id, visually verify your signature with your registration, and note that you have voted. Next they put the secrecy envelope containing your ballot into a ballot box for counting. Someone else who has not seen the outer envelope with your name on it, opens up the secrecy envelopes, extracts the ballots, and feeds them into the ballot scanner.
This system validate voters by signature, makes sure people don't vote more then once, provides anonymous voting, and supports recounts - both automated and manual. If you want to verify that your ballot was processed you can ask the elections office.
Memorex claims 300 year life for their fancy (expensive) archival CD-R and 100 years for DVD-R.
Take that with a grain of salt, of course.
I would recommend keeping salt and your archival CDs separate.
Then I would say that these sorts of things need to be corrected. I am just concerned that the concept of "securing" will include control of application level content and attempts to eliminate or reduce anonymity.
I didn’t realize the Internet itself was insecure.
We could talk about securing applications that run on top of the Internet, but that would be a different conversation and I am not sure that is where we want the government to be.
Put enough comments in your code so that five years from now you (and others) can remember what you indented the code to do. Remember that comments are not for describing what the code technically does (that is what the code is for), comments are for what the code is intended to do. Try and comment the decisions you made when developing the code, specifically why you took the approach you did and why you didn't use other options.
the fact of the matter is they are being psychologically manipulated.
So we should also eliminate or create legal liability for all forms of psychological manipulation? Advertising and political speech come to mind, do we want to protect against that? How about your peers, your boss, your spouse / significant other, or your parents? They are consistently trying to psychologically manipulate you.
I am sorry, but the world is trying to psychologically manipulate you. This has always been the case and always will be. Deal with it. Have some personal responsibility.
Totally weird. I just finished watching that episode on Netflix, walked in the other room to scan Slashdot and found this article. Yes, the episode was "FireWalker". Maybe the truth IS out there.
Three 5.25" drive bays above each other can hold a case with four 3.5" drive bays and a 120mm fan. Thermaltake sells them, as do zillions of other companies.
Five drives actually.
In a few years presumably some even higher bandwidth specification will come along - no problem if they used version-numbers, but once you have labelled the first generation "standard" and the current generation "High Speed" what're you going to be left with to use next and not end up looking stupid?
"new higher speed", "max speed", "ultimate speed", "super more ultimate than ultimate speed", "I Can't believe its not high speed... speed"?
Ludicrous Speed
At first glance this seems like a ridiculously good idea. What's the catch?
One catch is that all financial transactions are automatically reported to the government. Imagine the fun that could be had with that information.
The article said it was to prevent animals from swallowing spent casings and introducing lead into the food chain. I couldn't speak to the likelihood or real impact of that actually happening.
It is not the shell casings, it is the bullet or the shot inside shotgun shells. Birds that bottom feed eat the used shot on the bottom of lakes and waterways causing the lead to get into the (animal) food chain. It is not just waterfowl, scavengers such as the condor are also effected. Lead Shot
I am hoping this is a joke. In case it is not or in case you are thinking about attaching something else to your steering wheel, please don't forget that there is an airbag with an explosive charge to drive it in modern cars. In an accident do you really want your ipad or something else heading toward your face at explosive speeds?
You could always add a traditional clutch to the system for safety purposes only. In the video he refers to a "powered neutral" state which as the GP suggests might be tricky to implement during start up. A traditional clutch could be added to create an unpowered neutral as a fail safe.
You all do realize that electrons spin backwards there, right?
Only when you are not watching.
and SRP stands for?
Software Restriction Policies. It allows you to white list applications at the binary executable level. It is a feature of the Group Policy Object (GPO) infrastructure that is part of Microsoft's Active Directory (AD).
Sadly, your comment contains more actual information, and is better written, than the 'article.'
You read the articles?
Only in Playboy
How we Americans deal with it (some of us anyway) is we hack the phone to tether anyway for free, and smile every time we use it.
Or we purchase a plan that (legitimately) allows tethering. Yes, it is more expensive, but it is available. If you actually abide by your contract with your carrier, the carrier doesn't try and disable features that you have paid to use.
I am on AT&T with a tethering plan and I overall get good performance. I use it when I am at client sites that don’t have unrestricted Internet access for consultants or at hotels that have a crappy Internet connection (which is common). In the cities I travel to (Portland, Seattle, Cleveland, Dallas, Boston, Wash DC, Jacksonville) I typically get several hundred KB to a MB worth of download speed and a couple hundred KB upload speed. When I am in fringe areas the speed drops down and sometimes I have to fall back to the slow "edge" speed, but I can almost always get a connection. I found that the tethering software provided by AT&T sucks, but WMWifiRouter works great on my HTC Tilt phone.
Animated GIF? Web page executes in a browser causing the browser to perform additional I/O (the IMG SRC tag) to the server to retrieve an application (the GIF file) and executes it. (Animated GIF files contain a "program" of sorts that specify what images to decompress in what order and how long to display them.) How long has GIF been around?
The fine article refers to a ruling that says you don't have to be notified if your email is accessed. It doesn't talk about if it is legal or not to access your email. I guess the theory being that if your mail is stored "publicly" at an ISP and that someone has the legal right to look at your mail, they don't have to tell you that you have been snooped on.
The article doesn't seem to make the distinction between mail at rest (on a mail server) and mail in transit (passing on the wire) so I don't know if running your own mail server makes any difference here or not. It would at least reduce the exposure time for "snapshots" to be taken and disclosed. If your mail was on your own server you would at least have to be approached by a court with a subpoena or similar that demands access, which you would probably notice.
Encryption is of course, the answer.
What if the bank by mistake send this information via US Mail? Would the bank been able to go to the Postmaster General and ask that the person's physical mailbox be opened and any envelopes inside it be removed? How about forcing the person's mailing address be revoked or changed? Somehow I don't think a bank could make me change the numbers painted on the front of my house. (I hope not anyway.)
Why should email be any different then postal mail in this case?
Sure you can.
In a really large company or a public service sector job you may have a Human Resources department with policies that offer some protection, but otherwise you manager can fire you just because he or she feels like it. Did your original job offer letter mention anything about employment being "at will"? if so you can be fired for any reason or none at all.
If you want to keep your job you need to make it politically unfeasible to be fired (in addition to doing your regular work). The TFA mentions a couple of ways to do this.
Basically, the invention here is the inclusion of information that lets third-party programs better understand what to do with the format.
So how are hints different than schema?
I can scratch my butt or something else to make stuff happen? Awesome!
Stallman has said that they must be on the same server.
It doesn't matter what Stallman said, it matters what the GPL license says.
The only way to keep your data secure in any reasonable fashion is to make a copy of it and store it offline, off site. Ideally "off site" would be in another building or city, but it at least has to be on something not attached or accessible to your computer.
Without regard to if you use software or hardware RAID or the quality of the RAID system, RAID only protects you from a physical disk failure. If you as a user screw up (delete or change something you didn't want to) or if some software bug screws up for you, or if you have a non-disk related hardware failure (causing a data corrupting machine crash) then you have lost your data -- RAID doesn't help.
Even if you are only trying to protect against disk errors, if the RAID system fails (even expensive quality ones can), or if you don't know and follow the recovery procedures EXACTLY, you can lose all your data.
The only reliable solution is making a copy or a "backup". Backup does not mean making a copy of the data on the same machine. (Whatever took out your RAID might also take out the other non-RAID disk or directory that you put your copy on.) If you are paranoid (or just prudent) your backup should not be a mapped or mounted drive on another machine. (Viruses can write to the network as well.)
And finally... Backups only count if you have tested your restore process.