Re:The response of 99.9% of humanity:
on
GitHub Hacked
·
· Score: 1
This is Slashdot, the 99.9% doesn't come here
Getting close, UID 2018246, I see that 1e9*0.001 = 6000000 so apparently you show we're more than 1/3 of the way there... What is the largest/. UID and how does it compare to six million? I donno how to account for astroturfing and spam and gnaa accounts, on the other hand lots of people read and few open accounts to write, so we're probably breaking into the 99.9% range.
You may want to look at what he actually did. The problem is people who don't understand "mass assignment protection" dumping rails apps on the internet with CRUD functionality and "sensitive" portions of the data.
There's an inherent conflict between just being able to scaffold something up "instantly" and keeping certain attributes locked away from the average users, and this inherent conflict has never been decisively resolved. Any time you have a tool that makes it easy to CRUD, you're going to end up with people going too far and not protecting anything. Going crazy and locking it down is just going to make the 99% of users who don't need it fork, and the 1% who do need it only putting in enough effort to re-open it.
Re:Nice hacker
on
GitHub Hacked
·
· Score: 5, Informative
I find it funny that since this guy hacked github
See that's the problem. He didn't hack github. There is a wide open door in scaffolded rails apps. I am somewhat involved in rails development and even I know this, but "most people don't care". The problem in as few words as possible is a lack of input sanitation and/or more or less is the equivalent of allowing SQL injection. Makes for easy scaffolding and rollout. All you need to do is tell rails which attributes people should and should not be able to F with, which is trivially easy and impossible to default without turning rails into a fully cognitive AI system smarter than the programmers who refuse to declare which attributes are sensitive and which are not....
The phrases you don't know to google for are "mass assignment protection" and attr_accessible and attr_protected
Re:What no Guantanamo Bay for him?
on
GitHub Hacked
·
· Score: 5, Insightful
Oh wait.. this is an open source community that understood what his intentions where and didn't have a knee jerk reaction. What I guess intelligence trumps mass panic and ignorance.
You have to realize this isn't some random dude, but a guy "well known" as having an octocat tattoo on his arm...
I chose to have a house down-payment rather than spending ~$1000/year on a phone...
I believe this is another example of early adopter-itis
True, at one (recent) point if you wanted a iphone you were writing a check for $120 per month for 2 years plus $500 upfront is more like $1500/year. So, I heard the price and "Forget about it, I'm priced out so I don't care anymore". Much like I don't bother following the price of sailboats over 50 feet long, or the new Ferrari market.
I "upgraded" in December from paying about $7/month for a dumb phone to a shocking $20/month for an android phone. So far so good.
Another example of early adopter-itis is when first released a picture window sized TV would have cost more than a (cheap) new car, so I ignore the entire market for years. To my complete amazement last fall when my old SD CRT was failing after 25 years of service, a picture window sized TV only costs about as much as a picture window, so I bought one. The TV shows and movies continue to suck, but now they suck in higher res, and my wife is happy, and it was very cheap.
I intentionally removed myself from the market when first released because the price was insane. Now its cheap and I'm shocked to be in the market. This happens over and over...
Me: What's 5x8? Them: 40! Me: What's 9x9? Them: 81! Me: What's 12x12? Them:.... erm... one hundred.... and... forty...... four? Me: What's 52x27? Them: How should I know?
When you spend your life memorising a small set of details you get screwed as soon as you are faced with a problem outside your bounds.
Bzzzzzzzzzzzt. The fail you're talking about is a total inability to generalize and skillfully apply knowledge, which unfortunately manifests through all human experience not just math problems. Inability to apply history. Inability to apply science skills. Inability to apply driving skills. Inability to handle social relationships based on past general experience... You can recognize this anti-pattern when you hear things like "I do know how to change the oil on one specific model car, but I've never done that on a different model car, so I'll just have to give up take it to the dealer". "I do know how to untar, make, and make install one software package, but this is a different software package so I'll just have to fail because change is not OK". "I know one OS completely, but this is a microscopically different version so I'll just give up and say its impossible" . Almost all people can generalize and estimate, its kind of a learned helplessness thing, assuming no organic brain dysfunction as an excuse.
The answer to 52x27 is fifty is a bit less than 52, and 30 is a bit more than 27, so my guess is going to be "about right" to only 1 or 2 sig figs, but for 99.999% of life tasks, thats close enough, assuming your judgment and discrimination is any good. 50x30 does not require a calculator assuming you memorized those difficult x10 multiplication tables and x3 tables, thats 5x10x3x10 or 3x5x10x10 or (3x5) x 100 or 1500. The width of the error bar should be in the general range of 2x27+3x52 or about 2x25+3x50 or about 50+150 or 200 wide total. So the answer is (obviously?) 1500 +/- 100.
I came up with that answer and error estimate in about 3 maybe 4 seconds, with no real effort. Using my smartphone calculator took about 30 seconds (gotta think about if the phone is charged and where it is, get the phone off desk/outta cargo pocket/outta coat pocket/whatever, wipe the eternally greasy filthy screen so I can read it, wipe my hands in a pitiful attempt not to filth up the screen, unlock the phone because the russians are after me and I store nuclear missile launch codes on my phone, remember how to start the calc app, type it all in (using RPN thats 52, enter, 27, times), fix touch screen typo where my finger slipped on the non-tactile screen and I entered 47 accidentally instead of 27, then try again, and eventually it seems 52x27 = 1404, so my estimating skills still work and are about ten times faster than using a calculator.
Key loggers things, if properly installed, can even read work you do in a USB thumb-drive based Linux distribution.
Thats weird, unless you're talking about a hardware logger, and thats even weirder because most laptops don't have space for it. Plug in a USB keyboard?
Even with simple concepts there are often multiple ways to obtain the same solution - do you put them all in; if not how do you decide which ones to include?
Luckily, with cost per kilobyte reaching record lows, this is not so big of an issue, especially if used as e-books or whatever.
Heck, even printed out, 2000 pages from a photocopier is still usually cheaper than 200 pages from a publisher...
In the early 90s I had the option of buying a textbook that cost over $1 per page, or back then 4 cent per page photocopying was available, so...
In my high school, the teachers were involved in selecting books. At least the experienced teachers were. The newer teachers had to go with the decision made by the others.
My experience from talking to a teacher involved in the process is they were not allowed to analyze the books, they were given "intern jobs" like count by hand the racial distribution of the characters in "story problems" as a major selection criteria.
They were paid for the work, and it was semi-competitive to get easy work like that, so no great surprise that the old timers got first choice.
Oh now wait a second that is not going to help with square/cube law bone strength side effects, unless you're messing around with the gravitational constant.
Knowing how rough farm livestock has it, I've always wondered how dinosaurs survived... like tip one over and its dead, all bones smashed. The TV imaginative animations that show dinos fighting like wolves might not be terribly realistic if simply tipping over means all ribs smashed.
Something I've always wondered about that UK company, does the adjective virgin have the same connotation in the UK as it does here? Or is it kind of like "I need a fag" means something completely different in the UK vs US? Do all Virgin(TM) advertisements revolve around the inside breathless account of men penetrating deeply into the never before seen trench or cave or whatever female analogy they can scare up?
If you're aware of Jefferson's religious belief, or lack thereof, the hilarious part is they put that on his coin but they were not smart enough to remove him from our currency.
For them to offer conditional approval later shows someone was pushing for Lightsquared to succeed.
They appear to be crooks and what they're doing was a dumb idea from a tech standpoint... but... from personal experience the FCC will license almost anyone to do almost anything on a conditional experimental non-interfering basis. I know this goes against/. group think about the govt, but at least WRT to temporary conditional experimental licenses the FCC has always been very libertarian, perhaps the most so of all the fedgov, maybe more than all the rest of the fedgov put together.
The way its supposed to work, for a real world example, is 20 ham radio guys who know what they're doing, get a temporary experimental license to F around near the now unused traditional 500 KHz marine radio band, mostly trying to figure out how they can do it without interfering with any remaining primary users (if any?). Then the experiment ends and everyone goes away, more or less happy. Someday, maybe Very Soon the data those guys gathered will get the hams a 500 KHz allocation... or maybe not. What LS did instead of basically a big lab experiment, was get their standard off the shelf FCC response of "go out there, F around, and for gods sake don't break anything and stop the moment I tell you to" permission slip that anyone else can get for the asking, and then used it to raise Billions of dollars and make campaign contributions and then started crying unfair when it turns out it didn't work out.
Its not like the FCC was "pushing" just for LS, they pretty much rubber stamp any non-totally stupid experimental request. LS is just crying because the experiment failed and they owe Billions and though thousands in campaign contributions would fix it. Millions in bribes might have. But thousands? Not gonna work.
When the people in the White House do things the Chicago Way in Washington it is a felony.
You do know the whole point of this "drama" is he did it perfectly legally?
Well there is some weirdness with the non-legally-required job data they gather where he listed his former employer, but since its optional data, no one did anything illegal.
You might have the quaint idea that illegal = immoral = unethical but that hasn't been the American way, ever, although its traditionally been how we look inaccurately at the past. Kind of like how we traditionally believe the founding fathers were hyperreligious; you know like Jefferson with the ironic "in god we trust" on his coin...
You know, really depressing thing I've found is that there appears to be no proof of this allegation. The accusation enough seems to have been sufficient to stop anyone from even trying to prove it.
If you're getting paid to astroturf, I hope its in cash because LS already stiffed Inmarsat for $50M last week. Its gone, all of it.
LS raised billions of dollars... yet just defaulted on their first payment to inmarsat last week. Those billions are gone. All of it. If I were that guy, I'd be getting out of my contract by any means necessary, purchasing a new identity, grabbing my family and running for the hills. Heck if I took company paper clips home I'd be using that as an ethics violation to get the heck out, alive.
Its an educational tool not a training tool. Education is learning how stuff works, training is votech. Almost no one in the world will ever be hired because of minix on a resume. It is helpful for learning how OS work. Another way to put it is education gives you something interesting to think about, makes life worth living. Training gives you a way to make money to afford the contemplative life of an educated person. Its an educational tool.
This is Slashdot, the 99.9% doesn't come here
Getting close, UID 2018246, I see that 1e9*0.001 = 6000000 so apparently you show we're more than 1/3 of the way there... What is the largest /. UID and how does it compare to six million? I donno how to account for astroturfing and spam and gnaa accounts, on the other hand lots of people read and few open accounts to write, so we're probably breaking into the 99.9% range.
the inherent weakness in a cloud storage system
You may want to look at what he actually did. The problem is people who don't understand "mass assignment protection" dumping rails apps on the internet with CRUD functionality and "sensitive" portions of the data.
There's an inherent conflict between just being able to scaffold something up "instantly" and keeping certain attributes locked away from the average users, and this inherent conflict has never been decisively resolved. Any time you have a tool that makes it easy to CRUD, you're going to end up with people going too far and not protecting anything. Going crazy and locking it down is just going to make the 99% of users who don't need it fork, and the 1% who do need it only putting in enough effort to re-open it.
I find it funny that since this guy hacked github
See that's the problem. He didn't hack github. There is a wide open door in scaffolded rails apps. I am somewhat involved in rails development and even I know this, but "most people don't care". The problem in as few words as possible is a lack of input sanitation and/or more or less is the equivalent of allowing SQL injection. Makes for easy scaffolding and rollout. All you need to do is tell rails which attributes people should and should not be able to F with, which is trivially easy and impossible to default without turning rails into a fully cognitive AI system smarter than the programmers who refuse to declare which attributes are sensitive and which are not....
The phrases you don't know to google for are "mass assignment protection" and attr_accessible and attr_protected
http://enlightsolutions.com/articles/whats-new-in-edge-scoped-mass-assignment-in-rails-3-1
Oh wait.. this is an open source community that understood what his intentions where and didn't have a knee jerk reaction.
What I guess intelligence trumps mass panic and ignorance.
You have to realize this isn't some random dude, but a guy "well known" as having an octocat tattoo on his arm...
http://homakov.blogspot.com/2011/07/octocat-tattoo.html
I chose to have a house down-payment rather than spending ~$1000/year on a phone...
I believe this is another example of early adopter-itis
True, at one (recent) point if you wanted a iphone you were writing a check for $120 per month for 2 years plus $500 upfront is more like $1500/year. So, I heard the price and "Forget about it, I'm priced out so I don't care anymore". Much like I don't bother following the price of sailboats over 50 feet long, or the new Ferrari market.
I "upgraded" in December from paying about $7/month for a dumb phone to a shocking $20/month for an android phone. So far so good.
Another example of early adopter-itis is when first released a picture window sized TV would have cost more than a (cheap) new car, so I ignore the entire market for years. To my complete amazement last fall when my old SD CRT was failing after 25 years of service, a picture window sized TV only costs about as much as a picture window, so I bought one. The TV shows and movies continue to suck, but now they suck in higher res, and my wife is happy, and it was very cheap.
I intentionally removed myself from the market when first released because the price was insane. Now its cheap and I'm shocked to be in the market. This happens over and over...
Me: What's 5x8? .... erm. .. one hundred .... and ... forty ... ... four?
Them: 40!
Me: What's 9x9?
Them: 81!
Me: What's 12x12?
Them:
Me: What's 52x27?
Them: How should I know?
When you spend your life memorising a small set of details you get screwed as soon as you are faced with a problem outside your bounds.
Bzzzzzzzzzzzt. The fail you're talking about is a total inability to generalize and skillfully apply knowledge, which unfortunately manifests through all human experience not just math problems. Inability to apply history. Inability to apply science skills. Inability to apply driving skills. Inability to handle social relationships based on past general experience... You can recognize this anti-pattern when you hear things like "I do know how to change the oil on one specific model car, but I've never done that on a different model car, so I'll just have to give up take it to the dealer". "I do know how to untar, make, and make install one software package, but this is a different software package so I'll just have to fail because change is not OK". "I know one OS completely, but this is a microscopically different version so I'll just give up and say its impossible" . Almost all people can generalize and estimate, its kind of a learned helplessness thing, assuming no organic brain dysfunction as an excuse.
The answer to 52x27 is fifty is a bit less than 52, and 30 is a bit more than 27, so my guess is going to be "about right" to only 1 or 2 sig figs, but for 99.999% of life tasks, thats close enough, assuming your judgment and discrimination is any good. 50x30 does not require a calculator assuming you memorized those difficult x10 multiplication tables and x3 tables, thats 5x10x3x10 or 3x5x10x10 or (3x5) x 100 or 1500. The width of the error bar should be in the general range of 2x27+3x52 or about 2x25+3x50 or about 50+150 or 200 wide total. So the answer is (obviously?) 1500 +/- 100.
I came up with that answer and error estimate in about 3 maybe 4 seconds, with no real effort. Using my smartphone calculator took about 30 seconds (gotta think about if the phone is charged and where it is, get the phone off desk/outta cargo pocket/outta coat pocket/whatever, wipe the eternally greasy filthy screen so I can read it, wipe my hands in a pitiful attempt not to filth up the screen, unlock the phone because the russians are after me and I store nuclear missile launch codes on my phone, remember how to start the calc app, type it all in (using RPN thats 52, enter, 27, times), fix touch screen typo where my finger slipped on the non-tactile screen and I entered 47 accidentally instead of 27, then try again, and eventually it seems 52x27 = 1404, so my estimating skills still work and are about ten times faster than using a calculator.
Postnatural
Its one of those self referential things, postnatural itself is a postnatural mutation of the one true platonic form of the true grammar.
A zoo would be more fun than a museum.
WRT to selective breeding, isn't that like... practically everything?
Key loggers things, if properly installed, can even read work you do in a USB thumb-drive based Linux distribution.
Thats weird, unless you're talking about a hardware logger, and thats even weirder because most laptops don't have space for it. Plug in a USB keyboard?
Even with simple concepts there are often multiple ways to obtain the same solution - do you put them all in; if not how do you decide which ones to include?
Luckily, with cost per kilobyte reaching record lows, this is not so big of an issue, especially if used as e-books or whatever.
Heck, even printed out, 2000 pages from a photocopier is still usually cheaper than 200 pages from a publisher...
In the early 90s I had the option of buying a textbook that cost over $1 per page, or back then 4 cent per page photocopying was available, so...
In my high school, the teachers were involved in selecting books. At least the experienced teachers were. The newer teachers had to go with the decision made by the others.
My experience from talking to a teacher involved in the process is they were not allowed to analyze the books, they were given "intern jobs" like count by hand the racial distribution of the characters in "story problems" as a major selection criteria.
They were paid for the work, and it was semi-competitive to get easy work like that, so no great surprise that the old timers got first choice.
... and what creature of the deep surfaces 9 months later... Godzilla!
Oh now wait a second that is not going to help with square/cube law bone strength side effects, unless you're messing around with the gravitational constant.
Knowing how rough farm livestock has it, I've always wondered how dinosaurs survived... like tip one over and its dead, all bones smashed. The TV imaginative animations that show dinos fighting like wolves might not be terribly realistic if simply tipping over means all ribs smashed.
Something I've always wondered about that UK company, does the adjective virgin have the same connotation in the UK as it does here?
Or is it kind of like "I need a fag" means something completely different in the UK vs US?
Do all Virgin(TM) advertisements revolve around the inside breathless account of men penetrating deeply into the never before seen trench or cave or whatever female analogy they can scare up?
Written as "huge" I was expecting 8 to 21 cm not 8 to 21 mm. Sooo unimpressed.
I'm told you guys in Florida have cockroaches the size of dachshunds, that kind of scale is what I was expecting.
Five hundred Kelvin-Hertz, eh? So hams are going straight to hell now?
hell is 75 meter sideband or 20 meter sideband and the bandswitch (and/or tuning dial) is broken
If you're aware of Jefferson's religious belief, or lack thereof, the hilarious part is they put that on his coin but they were not smart enough to remove him from our currency.
For them to offer conditional approval later shows someone was pushing for Lightsquared to succeed.
They appear to be crooks and what they're doing was a dumb idea from a tech standpoint ... but... from personal experience the FCC will license almost anyone to do almost anything on a conditional experimental non-interfering basis. I know this goes against /. group think about the govt, but at least WRT to temporary conditional experimental licenses the FCC has always been very libertarian, perhaps the most so of all the fedgov, maybe more than all the rest of the fedgov put together.
The way its supposed to work, for a real world example, is 20 ham radio guys who know what they're doing, get a temporary experimental license to F around near the now unused traditional 500 KHz marine radio band, mostly trying to figure out how they can do it without interfering with any remaining primary users (if any?). Then the experiment ends and everyone goes away, more or less happy. Someday, maybe Very Soon the data those guys gathered will get the hams a 500 KHz allocation ... or maybe not. What LS did instead of basically a big lab experiment, was get their standard off the shelf FCC response of "go out there, F around, and for gods sake don't break anything and stop the moment I tell you to" permission slip that anyone else can get for the asking, and then used it to raise Billions of dollars and make campaign contributions and then started crying unfair when it turns out it didn't work out.
Its not like the FCC was "pushing" just for LS, they pretty much rubber stamp any non-totally stupid experimental request. LS is just crying because the experiment failed and they owe Billions and though thousands in campaign contributions would fix it. Millions in bribes might have. But thousands? Not gonna work.
When the people in the White House do things the Chicago Way in Washington it is a felony.
You do know the whole point of this "drama" is he did it perfectly legally?
Well there is some weirdness with the non-legally-required job data they gather where he listed his former employer, but since its optional data, no one did anything illegal.
You might have the quaint idea that illegal = immoral = unethical but that hasn't been the American way, ever, although its traditionally been how we look inaccurately at the past. Kind of like how we traditionally believe the founding fathers were hyperreligious; you know like Jefferson with the ironic "in god we trust" on his coin...
Hmm.. When you put it like that, I'm surprised the Iranian government hasn't already implemented this technology.
How do you know?
http://www.qsl.net/n9zia/wireless/gps_jam-pics.html
You know, really depressing thing I've found is that there appears to be no proof of this allegation. The accusation enough seems to have been sufficient to stop anyone from even trying to prove it.
If you're getting paid to astroturf, I hope its in cash because LS already stiffed Inmarsat for $50M last week. Its gone, all of it.
LS raised billions of dollars... yet just defaulted on their first payment to inmarsat last week. Those billions are gone. All of it.
If I were that guy, I'd be getting out of my contract by any means necessary, purchasing a new identity, grabbing my family and running for the hills.
Heck if I took company paper clips home I'd be using that as an ethics violation to get the heck out, alive.
These days you can't even compile a lot of software if you have a different version of GCC than the author did.
These days? For C++, "these days" go back to the 90s, based on personal experience. C++? never again.
training tool
Its an educational tool not a training tool. Education is learning how stuff works, training is votech. Almost no one in the world will ever be hired because of minix on a resume. It is helpful for learning how OS work. Another way to put it is education gives you something interesting to think about, makes life worth living. Training gives you a way to make money to afford the contemplative life of an educated person. Its an educational tool.
After an outage this long, it takes a LOOONG time to earn your way back to five nines (which works out to 5.5 minutes of downtime per year).
Only 84 years per the article, and growing at a rate of a year every 5 minutes.
Thats probably about how long it would take me to trust MS in an enterprise environment.