Yeah, because this is only an Apple problem. In the past history of PKI, nobody has ever had a certificate compromised. Except for just about everyone.
that's easy - weak or compromised (read: intercepted through unencrypted email or social engineering) password on the enterprise developer account on http://adc.apple.com/
Because that's never been a problem in the past, ever.
Yeah, because certificates have never been compromised before. If anything, the almost-instant revocation of the certificate across millions of devices shows that it works great.
And by "infection vector" you mean "documented and intended functionality to support large organizations with custom app development", right?
Because that's what we're talking about - they used a certificate they stole from a registered enterprise developer account to sign apps and load them in via a profile, which has been available since iOS 6 or so. And, that app is still beholden to the same sandboxing rules as any other app.
That cert has now been revoked, and anything signed with it is now useless non-executable bits.
You're exactly right. In my new job that I've had for a month now, we've been picking open-source solutions wherever we can, and it usually takes far more time and effort to get it set up properly because the documentation is lacking, the different components don't always work together as they should, what documentation that does exist highly favors one particular distort family, and you're compiling from source and dealing with dependency hell if you're on the other family, etc.
Say what you will about Windows / OS X, but you usually don't run into those problems, because they have paid people to QA and document.
With percentage of user base arguments, you could say that if 5 SCO UnixWare machines got infected it's the worst outbreak ever, because that would be like 15% of their installed user base!
Massaging the statistics still doesn't make the orders of magnitude of difference between infected Windows boxes and infected Macs any different.
I just recently took a new job after 10 years with the same company, and the only two reasons I did was because they were offering me 40% more money than I was making before, and the opportunity to spread out into a new field and away from what was getting stale.
You present your ID to the nice old lady volunteer. She checks your ID against the roll for that polling place, and crosses you off after verifying your name and address (name for voter registration, address for being at your proper polling place). Some other nice old gentlemen volunteer then hands you a ballot, after not seeing your ID or your address.
Anonymous, and one vote per person. Address on your ID doesn't match the voting roll? You get a provisional ballot that gets counted two weeks later, after the election has already been decided except for in the most extremely tight races.
and will only presume the worst possible electronic systems.
That's because the only electronic systems to ever be certified by election officials are the worst possible electronic systems. The reason electronic voting is being shit on, is because every single implementation that has ever been created and certified is shit.
Go ahead and produce your ideal electronic system and get 5 or so Secretaries of State to sign off on them - I'm not even asking for you to get the whole 50 states - you'll be rich AND you can show us all how you're right at the same time.
It was proven a few years ago that someone could feed the scanner with malicious instructions that cause it to register negative votes, as well as lots of false votes, and falsify the register tape that corresponds with the electronic tally.
In order to disprove it, the paper ballots would have to be counted by hand, and that's not going to happen unless there is a lawsuit and court order to do it.
Yeah, add all the computer problems to all the problems of your standard office printer, and you end up with a completely non-functional polling station.
No thanks. I'll take the "fill-in-the-circle" ballots we have here in Ohio.
Except that OS X is not a monopoly, so it doesn't run afoul of antitrust law.
You're missing my point - Apple has a monopoly (a term which has a specific legal definition) over NOTHING. Now, if they collaborated with Google to shut out CurrentC, there could be a case made for collusion (much like what Apple ran afoul of with the iBooks thing). But there is not a violation of antitrust law if Apple decides to take their ball (read: app store) and go home, because they only have ~25% of the market.
They do have a monopoly on app sales for Apple devices.
Which means nothing. They also have a monopoly on sales of computers licensed to run the OS X operating system, which means jack squat to antitrust law because there are other PCs out there, just like there are other phones out there.
Whoops, people below me say it's 15 basis points (0.15%). Yeah, they're really putting the screws to people - and by "people" I mean the intermediary processor that usually gets that 0.15%.
Yeah, because this is only an Apple problem. In the past history of PKI, nobody has ever had a certificate compromised. Except for just about everyone.
that's easy - weak or compromised (read: intercepted through unencrypted email or social engineering) password on the enterprise developer account on http://adc.apple.com/
Because that's never been a problem in the past, ever.
Yeah, because certificates have never been compromised before. If anything, the almost-instant revocation of the certificate across millions of devices shows that it works great.
And by "infection vector" you mean "documented and intended functionality to support large organizations with custom app development", right?
Because that's what we're talking about - they used a certificate they stole from a registered enterprise developer account to sign apps and load them in via a profile, which has been available since iOS 6 or so. And, that app is still beholden to the same sandboxing rules as any other app.
That cert has now been revoked, and anything signed with it is now useless non-executable bits.
Can we put away the straw man that people actually say that first?
You're exactly right. In my new job that I've had for a month now, we've been picking open-source solutions wherever we can, and it usually takes far more time and effort to get it set up properly because the documentation is lacking, the different components don't always work together as they should, what documentation that does exist highly favors one particular distort family, and you're compiling from source and dealing with dependency hell if you're on the other family, etc.
Say what you will about Windows / OS X, but you usually don't run into those problems, because they have paid people to QA and document.
With percentage of user base arguments, you could say that if 5 SCO UnixWare machines got infected it's the worst outbreak ever, because that would be like 15% of their installed user base!
Massaging the statistics still doesn't make the orders of magnitude of difference between infected Windows boxes and infected Macs any different.
Clearly, XProtect does "just work" as Apple was able to stamp that shit out in less than a day.
There's probably STILL Windows machines infected with iloveyou out there.
And there's also a thing called "metered postage" which is far cheaper than using stamps if you send out the kind of mail volume that a bank does.
Yeah, show me a 4 foot by 8 foot sheet of wallboard, or a 50-gallon water heater on Amazon.
Didn't think so.
And if they are already inside your network from an unsecured port on a wall somewhere, or through internal wireless?
Point-of-sale systems should be firewalled out the ass.
I just recently took a new job after 10 years with the same company, and the only two reasons I did was because they were offering me 40% more money than I was making before, and the opportunity to spread out into a new field and away from what was getting stale.
How's "Big Data" gonna find that one?
How it works in Ohio:
You present your ID to the nice old lady volunteer. She checks your ID against the roll for that polling place, and crosses you off after verifying your name and address (name for voter registration, address for being at your proper polling place). Some other nice old gentlemen volunteer then hands you a ballot, after not seeing your ID or your address.
Anonymous, and one vote per person. Address on your ID doesn't match the voting roll? You get a provisional ballot that gets counted two weeks later, after the election has already been decided except for in the most extremely tight races.
and will only presume the worst possible electronic systems.
That's because the only electronic systems to ever be certified by election officials are the worst possible electronic systems. The reason electronic voting is being shit on, is because every single implementation that has ever been created and certified is shit.
Go ahead and produce your ideal electronic system and get 5 or so Secretaries of State to sign off on them - I'm not even asking for you to get the whole 50 states - you'll be rich AND you can show us all how you're right at the same time.
But I imagine that's not going to happen.
It was proven a few years ago that someone could feed the scanner with malicious instructions that cause it to register negative votes, as well as lots of false votes, and falsify the register tape that corresponds with the electronic tally.
In order to disprove it, the paper ballots would have to be counted by hand, and that's not going to happen unless there is a lawsuit and court order to do it.
Where in Ohio do you have that? In Hamilton and Clermont Counties (Cincinnati) we're still doing the fill-in-the-circle and feed the scanner ballots.
Yeah, add all the computer problems to all the problems of your standard office printer, and you end up with a completely non-functional polling station.
No thanks. I'll take the "fill-in-the-circle" ballots we have here in Ohio.
If Intel follows what they did with Ivy Bridge and Haswell, they will release a NUC based on these designs.
So you go through Tor to access Facebook, where you immediately have to log in, and...
What's the point again?
Except that OS X is not a monopoly, so it doesn't run afoul of antitrust law.
You're missing my point - Apple has a monopoly (a term which has a specific legal definition) over NOTHING. Now, if they collaborated with Google to shut out CurrentC, there could be a case made for collusion (much like what Apple ran afoul of with the iBooks thing). But there is not a violation of antitrust law if Apple decides to take their ball (read: app store) and go home, because they only have ~25% of the market.
Yeah, someone else bought Motorola Solutions: http://dealbook.nytimes.com/20...
I think the only bit of Motorola that still exists as Motorola is the division that makes police radios and such.
Motorola Semiconductor is now Freescale
Motorola Solutions is now Zebra
Motorola Mobility is now Google^H^H^H^H^H^H Lenovo
Is there anything else left?
They do have a monopoly on app sales for Apple devices.
Which means nothing. They also have a monopoly on sales of computers licensed to run the OS X operating system, which means jack squat to antitrust law because there are other PCs out there, just like there are other phones out there.
They are reducing the fee - Apple Pay is always a "card present" transaction which has a lower fee.
Whoops, people below me say it's 15 basis points (0.15%). Yeah, they're really putting the screws to people - and by "people" I mean the intermediary processor that usually gets that 0.15%.