> If your software was in control of nuclear missles you would have killed everyone twice. And what's the bug count for the Linux kernel or GNU/Linux system?? Compared to OpenBSD, Linux is insecure out-of-the-box.
> if your compiler has a bug and there is no way to get a patched compiler you have to go through an entire compiler bootstrap to be sure the patch for the compiler works. What this a rhetorical rant or do you have a link for more information? Thanks.
Wow, not even the alternative OS's are free from drama -- sad to see Linus (Linux) and Theo (OpenBSD) having to resort to name calling over "best practices" about security.
The conventional wisdom is "Tabs for indentation, spaces for alignment."
The problem is the people _mis-using_ tabs -- which SUCKs. When people use tabs for everything it completely screws you over with formatting unless you use _also_ use the exact same tab settings.
Until then, spaces solved the problem of perfect alignment and indentation 100% of the time. Tabs don't. Hence "spaces are the lowest common denominator".
I don't like most people's code formatting anyways spaces vs tabs doesn't solve the problem. Usually they have crappy variable names, piss-poor design with bad locality, don't understand multi-column alignment, over-engineer the simplest algorithms. Whitespace is only a small problem compared to the bigger problems.
Thinking a little more about maybe the security should only apply to commercial products that connect to the internet? That way Joe Blow can add his home test device(s) on the internet without being bogged down by interfaces that no one will use.
But guess we'lll have to wait and see which business and government is going to go with this.
LOL. I'm not sure whether to laugh or cry at the truth of that.
I agree that far too often security is an afterthought. "Gee, is it no wonder you got rooted?"
As much as I hate government interference maybe we need the FCC equivalent for Internet Security? i.e. All devices on the internet much support encryption of X bits.
Although with the government's retarded stance on encryption (e.g. with the false justification that only criminals use encryption) that might be a hard sell.
Interesting point about making the devices display only! Though I'm not sure I'd want an alarm system where someone can query it for "current active people detected.":-) At least the "damage" would be minimal if it couldn't accept remote commands.
I would have far less qualms about IoT if they adopted something like SSH public+private key. I guess the question is "How much security is good enough for IoT" ?
(Obviously any at this point is a step up from none.)
Actually it is worse then that. This is a list of things that Sean said were in the game, implied they were, or where shown in the trailers. Some things made it in, a lot of things didn't:
* www.onemanslie.info/the-original-reddit-post/
When a game has a price of $60 gamers expect a certain level of polish and completeness to it. Go figure.
If the devs had been more upfront about what is and isn't in the game, and the priced itself at $20, basically followed Minecraft's development, gamers would be much more forgiving of an incomplete game.
> The developers weren't just intentionally vague, they outright lied, straight yes-or-no answers to straight yes-or-no questions about what was in the game, just days before the release
Sadly this is correct. Summary of the all the things promised but not delivered, along with things that did make it:
Ad blocker says 8 ads are blocked but Forbes won't let me in./Oblg. "And nothing of value was lost." I'll get my news elsewhere that doesn't nag me for being protective of my computer running your buggy / malicious code.
> (and most large US companies for exempt employees).
Most??
1. Citation 2. Your sample size is too small.
Currently I work for a Fortune 50 company (we have over 100,00 employees) doing WebGL / UI work and the 40 hour week is definitely adhered to.
As I've climbed the "corporate ladder" it really varies from company to company. Some worked you to the bone with ~70 hours whiles others only worked you 35+ hours.
The only trend I've noticed is the East coast vs West coast thing. East coast definitely tries not to over work people. West coast tend to favor over-working people.
Anyways, it is always about _good_ management respecting their employees _long term_ health.
VLC is awesome for playback but I find its UI to be lacking.
There are still numerous OSX UI bugs in the latest version, Version 2.2.4 Weatherwax (Intel 64bit), at the time of this writing
* Why does basic Preferences show "Hotkeys", but advanced via "Show all" does not??
* Why is there no hotkey for Previous Frame?
* Why does Next Frame not appear in the Playback menu? * Why does Previous Frame not appear in the Playback menu?
* Binding a key without any modifiers, such as J, to Very Short Jump Backwards doesn't trigger. * Binding a key without any modifiers, such as L, to Very Short Jump Forwards doesn't trigger.
* Where is there no search in Preferences like WebStorm ?
Other then that, great job! I don't understand how Media Player on Windows screws up a simple concept such as using Space to Toggle Play/Pause. At least you guys seem to use your stuff.:-)
On my current gaming rig (i7, GTX 980Ti, SSD, etc) I didn't even bother with the optical drive when I built it a few years ago. Yeah, the DVD Burner was only $20 but with USB sticks so cheap I haven't used a optical disk it in a few years. I already have enough old machines with DVD Burners that they are accessible.
I do miss not having an optical drive on my MacBook Pro. I guess it is motivation to finish ripping my Audio CD's to FLAC.
I also miss EAC (Exact Audio Copy) for making perfect rips of my audio CD's. Does anyone know of a replacement on Linux and OSX ?
* Only wimps use tape backup: real men just upload their important stuff on ftp, and let the rest of the world mirror it;) * If Microsoft ever does applications for Linux it means I've won. * In short: just say NO TO DRUGS, and maybe you won't end up like the Hurd people. * My name is Linus Torvalds and I am your god. * Dijkstra probably hates me. * This is why we don't compile with "-W". Gcc is crap * GCC 4.9.0 Seems To Be Terminally Broken * (the spill is insane, btw, since it's spilling a constant value!)
No mention of how Linux used to be stuck with gcc 2.7.2 for years until egcs became stable?
Slashdot Mirror
For monitors yes, but one can't calibrate tablets (yet). :-/
Whoa, calm down.
> Every fucking release has mountains of errors flaws holes and bugs.
So does every OS. There is no "magic code" where there are zero bugs.
> https://www.openbsd.org/errata...
I count 25 issues. Doesn't look like a "mountain" to me.
> If your software was in control of nuclear missles you would have killed everyone twice.
And what's the bug count for the Linux kernel or GNU/Linux system?? Compared to OpenBSD, Linux is insecure out-of-the-box.
> if your compiler has a bug and there is no way to get a patched compiler you have to go through an entire compiler bootstrap to be sure the patch for the compiler works.
What this a rhetorical rant or do you have a link for more information? Thanks.
Two things caught my eye in the release notes:
Security improvements:
* Remove systrace.
* Remove Linux emulation support.
Theo has some cool slides about "Pledge" that replaced systrace. Slide 3 has this "gem":
"Loudmouth Linus"
http://www.openbsd.org/papers/...
Note: NSFW
That was a response to Linus saying "the OpenBSD crowd is a bunch of masturbating monkeys."
http://www.zdnet.com/article/l...
Ouch.
Wow, not even the alternative OS's are free from drama -- sad to see Linus (Linux) and Theo (OpenBSD) having to resort to name calling over "best practices" about security.
Theo might be getting the last laugh though:
http://www.openbsd.org/papers/...
http://www.openbsd.org/papers/...
I guess if name calling helps make the OS's better so be it. :-)
No, but the sad reality is that you're Microsoft's bitch.
Bend over.
And take the broken "updates" whether you like it or not.
When are you going to stop allowing MS to control your life?
Agreed !
Site A: super secure secret hashing function.
Site B: a different super secure secret hashing function.
Site C: crappy hashing function
Dumbass user: Re-uses same password on all three sites. BOOM, all three sites are now compromised. You're only as strong as your weakest link.
The lessons should be:
* Use an unique password for every site
* Use a password manager
The conventional wisdom is "Tabs for indentation, spaces for alignment."
The problem is the people _mis-using_ tabs -- which SUCKs. When people use tabs for everything it completely screws you over with formatting unless you use _also_ use the exact same tab settings.
The tab solution would be great IF (text) editors implement elastic tabs:
http://nickgravgaard.com/elast...
Until then, spaces solved the problem of perfect alignment and indentation 100% of the time. Tabs don't. Hence "spaces are the lowest common denominator".
I don't like most people's code formatting anyways spaces vs tabs doesn't solve the problem. Usually they have crappy variable names, piss-poor design with bad locality, don't understand multi-column alignment, over-engineer the simplest algorithms. Whitespace is only a small problem compared to the bigger problems.
Unfortunately they are also the:
Kartrashians
The garbage on society.
*ba dum tis*
Thanks for the info about the NIST 800 !
Thinking a little more about maybe the security should only apply to commercial products that connect to the internet? That way Joe Blow can add his home test device(s) on the internet without being bogged down by interfaces that no one will use.
But guess we'lll have to wait and see which business and government is going to go with this.
LOL. I'm not sure whether to laugh or cry at the truth of that.
I agree that far too often security is an afterthought. "Gee, is it no wonder you got rooted?"
As much as I hate government interference maybe we need the FCC equivalent for Internet Security?
i.e. All devices on the internet much support encryption of X bits.
Although with the government's retarded stance on encryption (e.g. with the false justification that only criminals use encryption) that might be a hard sell.
Interesting point about making the devices display only! :-)
Though I'm not sure I'd want an alarm system where someone can query it for "current active people detected."
At least the "damage" would be minimal if it couldn't accept remote commands.
I would have far less qualms about IoT if they adopted something like SSH public+private key.
I guess the question is "How much security is good enough for IoT" ?
(Obviously any at this point is a step up from none.)
Actually it is worse then that. This is a list of things that Sean said were in the game, implied they were, or where shown in the trailers. Some things made it in, a lot of things didn't:
* www.onemanslie.info/the-original-reddit-post/
When a game has a price of $60 gamers expect a certain level of polish and completeness to it. Go figure.
I.e. Going to the center of the galaxy is one major disappointment. (SPOILER)
If the devs had been more upfront about what is and isn't in the game, and the priced itself at $20, basically followed Minecraft's development, gamers would be much more forgiving of an incomplete game.
> The developers weren't just intentionally vague, they outright lied, straight yes-or-no answers to straight yes-or-no questions about what was in the game, just days before the release
Sadly this is correct. Summary of the all the things promised but not delivered, along with things that did make it:
http://www.onemanslie.info/the...
I was going to say the same thing.
It's all fun and games until you get hacked.
IoT is a complete security clusterfuck disaster waiting to happen.
I don't "need" my fridge or toaster to be on the internet where some script kiddie can hack it.
As opposed to the soap opera of "un-reality crap" ??
At least you can learn interesting history.
"But wait" you go, "I watch Sci-Fi, such as Dark Matter, Farscape, Fringe, Killjoys, etc."
Well that's a soap opera in set in space.
The question isn't "Is this a soap opera?"
The question is: "Is this interesting?"
I'll 4th that as well. FreeNAS + RAIDZ FTW !
Also, make you sure you:
* run memtest on your RAM
* run the manufactures' provided sector diagnostic utility over the hard drive BEFORE inserting into production.
/cynical And here I thought PC stood for Political Correctness. Oh wait, it still means the same thing. :-/
No dice.
Ad blocker says 8 ads are blocked but Forbes won't let me in. /Oblg. "And nothing of value was lost." I'll get my news elsewhere that doesn't nag me for being protective of my computer running your buggy / malicious code.
> (and most large US companies for exempt employees).
Most??
1. Citation
2. Your sample size is too small.
Currently I work for a Fortune 50 company (we have over 100,00 employees) doing WebGL / UI work and the 40 hour week is definitely adhered to.
As I've climbed the "corporate ladder" it really varies from company to company. Some worked you to the bone with ~70 hours whiles others only worked you 35+ hours.
The only trend I've noticed is the East coast vs West coast thing. East coast definitely tries not to over work people. West coast tend to favor over-working people.
Anyways, it is always about _good_ management respecting their employees _long term_ health.
I saw that -- just hoping these don't slip under the radar.
VLC is awesome for playback but I find its UI to be lacking.
There are still numerous OSX UI bugs in the latest version, Version 2.2.4 Weatherwax (Intel 64bit), at the time of this writing
* Why does basic Preferences show "Hotkeys", but advanced via "Show all" does not??
* Why is there no hotkey for Previous Frame?
* Why does Next Frame not appear in the Playback menu?
* Why does Previous Frame not appear in the Playback menu?
* Binding a key without any modifiers, such as J, to Very Short Jump Backwards doesn't trigger.
* Binding a key without any modifiers, such as L, to Very Short Jump Forwards doesn't trigger.
* Where is there no search in Preferences like WebStorm ?
Other then that, great job! I don't understand how Media Player on Windows screws up a simple concept such as using Space to Toggle Play/Pause. At least you guys seem to use your stuff. :-)
On my current gaming rig (i7, GTX 980Ti, SSD, etc) I didn't even bother with the optical drive when I built it a few years ago. Yeah, the DVD Burner was only $20 but with USB sticks so cheap I haven't used a optical disk it in a few years. I already have enough old machines with DVD Burners that they are accessible.
I do miss not having an optical drive on my MacBook Pro. I guess it is motivation to finish ripping my Audio CD's to FLAC.
I also miss EAC (Exact Audio Copy) for making perfect rips of my audio CD's. Does anyone know of a replacement on Linux and OSX ?
/whoosh
Your humor detector is broken. It's all in good fun.
25 years and they couldn't even include some of the best quotes by Linus over the years?
https://en.wikiquote.org/wiki/...
* Only wimps use tape backup: real men just upload their important stuff on ftp, and let the rest of the world mirror it ;)
* If Microsoft ever does applications for Linux it means I've won.
* In short: just say NO TO DRUGS, and maybe you won't end up like the Hurd people.
* My name is Linus Torvalds and I am your god.
* Dijkstra probably hates me.
* This is why we don't compile with "-W". Gcc is crap
* GCC 4.9.0 Seems To Be Terminally Broken
* (the spill is insane, btw, since it's spilling a constant value!)
No mention of how Linux used to be stuck with gcc 2.7.2 for years until egcs became stable?
Pfft, kids. :-)
Sadly, there is nothing you can do. :-/
You can fix ignorant but you can't fix stupid.
The only way people will learn is when it personally effects them in a negative way until then you're talking to a log who has no concept of fire. :-(
WOW.
I didn't realize it was that bad.
Thanks for the update!