The catch 22 is in order to be a climate scientest you have to basically sign on to beleiving in AGW, so it is a bit like saying 97% of Catholic preists believe in god.
There are plenty of people and institutes that are willing to fund research to disprove AGW, so someone with a sufficiently convincing theory could easily have a good career as a climate scientist. So what's the catch 22?
Unfortunately, some people have gotten it into their heads that they have a right to not feel awkard, and that feeling awkward makes them "violated". A clear abuse of the word, if I've ever seen any.
If a woman ask men kindly not to do some kinds of things because it makes her feel awkward (and it should be obvious even without asking), and if a man then does it anyway, the word `violated' seems pretty accurate to me. He's not interested in her comfort, he's just interested in is own jollies.
Hint, pressing your body up against an unwilling partner is unwanted sexual contact.
Greeting someone with a hug is not sexual contact, unwanted or otherwise.
No, and women will not interpret it as such, even if you misread a situation and give a hug when it was not expected.
There is a big difference between a friendly hug and something sexually suggestive. Duration, for a start.
How the fuck is someone meant to know when you do and don't hug anyway.
It may be a social faux-pas, but trust me, it's equally fucking awkward when you have Aspergers and people actually expect a hug.
Yes, understanding when and when not to hug can be problematic if you don't always read the social signs properly. Similar with social kissing.
I think most people have had awkward moments like this. There are huge differences between social groups anyway, so misreading the signs is not such a big deal, as long as you keep it friendly. And you can always err on the safe side.
Or are you telling me that all those women I know are actually making sexual overtures when they expect me to hug them?
No, of course not. What point are you trying to make?
So sorry but I give no fucking credibility to a study that treats greeting hugs as 'sexual assault'.
Let's put it more simply. Aside from the one time pad, there is no publicly available encryption the NSA can't crack.
Although that might be the safest assumption to make, it is not at all clear that that is true. The standard algorithms and key sizes that are currently considered safe are certainly far too strong for brute-force attacks, even using massive and dedicated hardware, and they will remain so in the foreseeable future. It is always possible that there is a weakness in an algorithm, but there are no indications that there are, despite a lot of public scrutiny.
More directly: Edward Snowdon says that he trusts these algorithms.
Right, it's not iCloud that was hacked, it was individual user accounts. It's the distinction between "the rotary club has been murdered" and "the members of the rotary club have been murdered".
No, some members of the rotary club have been murdered. (And also some members of the local droid knitting club.)
There is no indication that every iCloud account was hacked, or even that a disproportional number of iCloud accounts were hacked.
For these people, with their resources, your "encryption", unless it's a one time pad, is no better than ROT13.
From the Snowdon leaks it looks like even the NSA cannot crack properly used strong encryption. That's why they try to harvest or weaken keys, try to get in before or after encryption, or use traffic (metadata) analysis.
True, but as I said I was generous in my assumptions anyway. In reality the alphabet is larger, Apple must have a minimum password length of at least 8, and I really doubt that you can do 100 tries per second. I therefore am very sceptical that even with a dictionary attack you can get very far, at least not without choosing a specific dictionary for your victim. And if you do that it is no longer a brute-force attack.
As I wrote in an earlier discussion, I know very few websites that impose a limit on the number of login attempts, so it is not reasonable to suddenly declare this an epic fail of Apple. It is good they plugged the hole (although they could just block you for an hour after three failed login attempts), but guessable passwords must have contributed to this.
Yes, it was a brute force attack. Apples now trying to cover it up by claiming "If only you had a better password." Which may be true, if their passwords had been 50 characters long it would have taken the brute force attack a lot long to complete. But the fact of the matter is, Apple forgot to put in an X number of wrong attempts = account locked, procedure in... or it wasn't working properly and people exploited it.
In cryptography, a brute-force attack means that you don't know anything about the password, but just try all the billions of possibilities. Assuming that a password character can only be a-z, A-Z, 0-9, and 10 other characters, and assuming that a password has exactly 6 characters, you would have to try on average (72^6)/2=69657034752 passwords. Assuming you can do 100 tries per second, that would still take more than 8062 days, or more than 22 years on average. Note that I'm being very generous in my assumptions here.
In other words, unless there was another weakness, a brute-force attack was impractical, even without any limit on the number of attempts.
What probably happened was that the passwords were indeed weak. If you know your victim has a dog called 'fido', you can try if she used that name in her password, and in my example you only have to guess two more characters. That only takes seconds or minutes. The attackers may call this brute force, but that's misleading.
Nobody forces you to listen to only the most recent one-hit wonders. There is now more than 50 years of good-quality recordings of popular music to choose from, and then there are the vast worlds of latin-american music, world music, and classical music. And with services like Spotify they are more accessible than ever.
I admit that seeing good visual art in person is a bit more difficult, especially in some cultural wastelands, but things are no worse than in earlier decades, and there are more good reproductions available online than ever before. Just one good example: https://www.rijksmuseum.nl/en/....
Art has always been like that: 90% of the output is garbage, 9% is pretty good, and perhaps 1% is beyond that. Don't obsess about that 99%, in a few years it will be forgotten. Enjoy the 1%.
Your sweeping evaluation of the entire field of social sciences is of course not at all subjective, so you can back this up with rigorous peer-reviewed research. Citations please?
I thought Find My iPhone didn't lock accounts after too many failed logins? This was discussed in many twitter conversations yesterday and how the script used no longer works since apple updated the system. I call that a failure in Apple's security. Who the hell forgets to put in that kind of fail safe anymore?
As far as I know, the only website that I use that enforces such a limit is my bank, and even there I think it is heavy-handed. They could just block you for an hour after three failed attempts, or make the time exponential, or something.
Logging in to FMi will be a relatively slow process anyway. A full brute-force attempt is extremely unlikely to succeed, so scripting only makes sense if the attacker knows at least some of the password. That is, if you want to try if one of 'fido1' to 'fido9999' is the right password, you may succeed. Beyond that the search will quickly require too much time.
It is good they plugged the hole, but I hardly consider this an epic failure. Sometimes I think people are just searching for things to grumble at, and the big players, be they Apple, Google, Microsoft, or whatever, are held to impossibly strict standards.
All true, except narrow-minded bible thumpers haven't committed any genocides lately.
True, the non-islamic people who recently committed genocide were not thumping a holy book, but rather a history book. I'm not sure this is progress, though.
The ones fighting are a tiny percentage of muslims though.
Actively fighting? Probably. That's usual in war. Supporting the fight against the goons? A vast percentage. Like Joe Average, Ahmed Average just wants a quiet life, and only gets into heated disputes about the merits of the local football teams. And narrow-minded Koran thumpers are just as bad for such a quiet life as narrow-minded Bible thumpers.
The fact is a percentage of muslim inman are indirectly supporting the IS through sharing similar beliefs about sharia law.
Funny how you left out `tiny' before `percentage' here. You don't really belief that this percentage is large, do you?
Once I tried using its vi emulation mode - only to discover that it (the version at the time) had TWO of them, in true emacs kitchen sink style, and each had different deltas from getting the vi commands right. With only one I might have gone on to use it, and learn the deltas, while edging into native commands. But with two, and no obvious selection, I didn't bother.
That's why wise people have said that emacs is a nice operating system, but they should write a decent editor for it.
Wikimedia Foundation efforts to address this "gender gap" have so far remained fruitless.
Why must everything be gender balanced?
I don't know about everything, but perhaps the Wikimedia Foundation simply would like to have a larger pool of contributors? There are often pragmatic reasons to worry about a gender gap.
Fixing the mess is at least straightforward. Discard software patents. Their legality has always been questionable, for sound technical and legal reasons, and they're one of the greatest drains on the patent office. They also have profound, demonstrable adverse effects on industry and on innovation in practice.
Is it really? Now suppose that instead of that clever new valve the OP was talking about I invent a whole new concept of fuel injection that also saves 5% of fuel. And I have an implementation, but as software in a standard electronic fuel controller. Do I deserve a patent? If not, why is it fair that the OP gets rewarded for his mechanical invention, and I am not for my software invention?
Do you really believe that a culture/tribe/village/group can develop such stupid rituals to deal with the dead and diseased and survive to this day? Do you really think that `primitive' people don't know anything about quarantaine or other measures against infectious diseases? Do you really think that a group of people that has just seen some of their own die in a horrible way will quietly slink off to meditate on their sins rather than seek (quite possibly rough) justice for this? But you're not one of the RFSP, right?
It is quite possible that this attack was stupid, but clearly we're not getting all of the story here.
Hmm, this smells like a talking point from a lobbying group.
In any case, it is irrelevant. It is a rare opportunity for a before/after comparative study of the effect of this level of radiation. Why not take it?
Slashdot Mirror
The catch 22 is in order to be a climate scientest you have to basically sign on to beleiving in AGW, so it is a bit like saying 97% of Catholic preists believe in god.
There are plenty of people and institutes that are willing to fund research to disprove AGW, so someone with a sufficiently convincing theory could easily have a good career as a climate scientist. So what's the catch 22?
Unfortunately, some people have gotten it into their heads that they have a right to not feel awkard, and that feeling awkward makes them "violated". A clear abuse of the word, if I've ever seen any.
If a woman ask men kindly not to do some kinds of things because it makes her feel awkward (and it should be obvious even without asking), and if a man then does it anyway, the word `violated' seems pretty accurate to me. He's not interested in her comfort, he's just interested in is own jollies.
Hint, pressing your body up against an unwilling partner is unwanted sexual contact.
Greeting someone with a hug is not sexual contact, unwanted or otherwise.
No, and women will not interpret it as such, even if you misread a situation and give a hug when it was not expected. There is a big difference between a friendly hug and something sexually suggestive. Duration, for a start.
How the fuck is someone meant to know when you do and don't hug anyway.
It may be a social faux-pas, but trust me, it's equally fucking awkward when you have Aspergers and people actually expect a hug.
Yes, understanding when and when not to hug can be problematic if you don't always read the social signs properly. Similar with social kissing. I think most people have had awkward moments like this. There are huge differences between social groups anyway, so misreading the signs is not such a big deal, as long as you keep it friendly. And you can always err on the safe side.
Or are you telling me that all those women I know are actually making sexual overtures when they expect me to hug them?
No, of course not. What point are you trying to make?
So sorry but I give no fucking credibility to a study that treats greeting hugs as 'sexual assault'.
Is there any evidence that they do?
It looks to me like mod prime is gently giving some friendly advice. Pretty damn obvious advice that should not be necessary, but friendly advice.
Is it really so hard to see that s/he has a point?
Your description certainly reads like calm and objective description of the situation.
Let's put it more simply. Aside from the one time pad, there is no publicly available encryption the NSA can't crack.
Although that might be the safest assumption to make, it is not at all clear that that is true. The standard algorithms and key sizes that are currently considered safe are certainly far too strong for brute-force attacks, even using massive and dedicated hardware, and they will remain so in the foreseeable future. It is always possible that there is a weakness in an algorithm, but there are no indications that there are, despite a lot of public scrutiny.
More directly: Edward Snowdon says that he trusts these algorithms.
Right, it's not iCloud that was hacked, it was individual user accounts. It's the distinction between "the rotary club has been murdered" and "the members of the rotary club have been murdered".
No, some members of the rotary club have been murdered. (And also some members of the local droid knitting club.)
There is no indication that every iCloud account was hacked, or even that a disproportional number of iCloud accounts were hacked.
For these people, with their resources, your "encryption", unless it's a one time pad, is no better than ROT13.
From the Snowdon leaks it looks like even the NSA cannot crack properly used strong encryption. That's why they try to harvest or weaken keys, try to get in before or after encryption, or use traffic (metadata) analysis.
Don't forget all the military SF for the ammosexuals out there.
I'm sure the United States would be more willing to consider ending the embargo if Alan Gross was freed from prison.
`more willing' in this case would mean saying 'No, no, no way' to ending the embargo, rather than 'No, no, no, no way'.
In other words, it is the political reality in the US that makes this impossible, not the imprisonment of a single guy.
True, but as I said I was generous in my assumptions anyway. In reality the alphabet is larger, Apple must have a minimum password length of at least 8, and I really doubt that you can do 100 tries per second. I therefore am very sceptical that even with a dictionary attack you can get very far, at least not without choosing a specific dictionary for your victim. And if you do that it is no longer a brute-force attack.
As I wrote in an earlier discussion, I know very few websites that impose a limit on the number of login attempts, so it is not reasonable to suddenly declare this an epic fail of Apple. It is good they plugged the hole (although they could just block you for an hour after three failed login attempts), but guessable passwords must have contributed to this.
Oh, and does /. impose such a limit?
Yes, it was a brute force attack. Apples now trying to cover it up by claiming "If only you had a better password." Which may be true, if their passwords had been 50 characters long it would have taken the brute force attack a lot long to complete. But the fact of the matter is, Apple forgot to put in an X number of wrong attempts = account locked, procedure in... or it wasn't working properly and people exploited it.
In cryptography, a brute-force attack means that you don't know anything about the password, but just try all the billions of possibilities. Assuming that a password character can only be a-z, A-Z, 0-9, and 10 other characters, and assuming that a password has exactly 6 characters, you would have to try on average (72^6)/2=69657034752 passwords. Assuming you can do 100 tries per second, that would still take more than 8062 days, or more than 22 years on average. Note that I'm being very generous in my assumptions here.
In other words, unless there was another weakness, a brute-force attack was impractical, even without any limit on the number of attempts.
What probably happened was that the passwords were indeed weak. If you know your victim has a dog called 'fido', you can try if she used that name in her password, and in my example you only have to guess two more characters. That only takes seconds or minutes. The attackers may call this brute force, but that's misleading.
Nobody forces you to listen to only the most recent one-hit wonders. There is now more than 50 years of good-quality recordings of popular music to choose from, and then there are the vast worlds of latin-american music, world music, and classical music. And with services like Spotify they are more accessible than ever.
I admit that seeing good visual art in person is a bit more difficult, especially in some cultural wastelands, but things are no worse than in earlier decades, and there are more good reproductions available online than ever before. Just one good example: https://www.rijksmuseum.nl/en/....
Art has always been like that: 90% of the output is garbage, 9% is pretty good, and perhaps 1% is beyond that. Don't obsess about that 99%, in a few years it will be forgotten. Enjoy the 1%.
Your sweeping evaluation of the entire field of social sciences is of course not at all subjective, so you can back this up with rigorous peer-reviewed research. Citations please?
I thought Find My iPhone didn't lock accounts after too many failed logins? This was discussed in many twitter conversations yesterday and how the script used no longer works since apple updated the system. I call that a failure in Apple's security. Who the hell forgets to put in that kind of fail safe anymore?
As far as I know, the only website that I use that enforces such a limit is my bank, and even there I think it is heavy-handed. They could just block you for an hour after three failed attempts, or make the time exponential, or something.
Logging in to FMi will be a relatively slow process anyway. A full brute-force attempt is extremely unlikely to succeed, so scripting only makes sense if the attacker knows at least some of the password. That is, if you want to try if one of 'fido1' to 'fido9999' is the right password, you may succeed. Beyond that the search will quickly require too much time.
It is good they plugged the hole, but I hardly consider this an epic failure. Sometimes I think people are just searching for things to grumble at, and the big players, be they Apple, Google, Microsoft, or whatever, are held to impossibly strict standards.
All true, except narrow-minded bible thumpers haven't committed any genocides lately.
True, the non-islamic people who recently committed genocide were not thumping a holy book, but rather a history book. I'm not sure this is progress, though.
The ones fighting are a tiny percentage of muslims though.
Actively fighting? Probably. That's usual in war. Supporting the fight against the goons? A vast percentage. Like Joe Average, Ahmed Average just wants a quiet life, and only gets into heated disputes about the merits of the local football teams. And narrow-minded Koran thumpers are just as bad for such a quiet life as narrow-minded Bible thumpers.
The fact is a percentage of muslim inman are indirectly supporting the IS through sharing similar beliefs about sharia law.
Funny how you left out `tiny' before `percentage' here. You don't really belief that this percentage is large, do you?
Once I tried using its vi emulation mode - only to discover that it (the version at the time) had TWO of them, in true emacs kitchen sink style, and each had different deltas from getting the vi commands right. With only one I might have gone on to use it, and learn the deltas, while edging into native commands. But with two, and no obvious selection, I didn't bother.
That's why wise people have said that emacs is a nice operating system, but they should write a decent editor for it.
Wikimedia Foundation efforts to address this "gender gap" have so far remained fruitless.
Why must everything be gender balanced?
I don't know about everything, but perhaps the Wikimedia Foundation simply would like to have a larger pool of contributors? There are often pragmatic reasons to worry about a gender gap.
RISC architecture is going to change everything.
Agreed, as soon as they can do submicron technology. By the way, for some strange reason I feel like I've been sleeping a decade.
Moreover, it is also very likely to be an astroturfed meme.
I can find plenty of astroturfing groups that are soros backed and do the same thing, [...]."
Examples please?
Fixing the mess is at least straightforward. Discard software patents. Their legality has always been questionable, for sound technical and legal reasons, and they're one of the greatest drains on the patent office. They also have profound, demonstrable adverse effects on industry and on innovation in practice.
Is it really? Now suppose that instead of that clever new valve the OP was talking about I invent a whole new concept of fuel injection that also saves 5% of fuel. And I have an implementation, but as software in a standard electronic fuel controller. Do I deserve a patent? If not, why is it fair that the OP gets rewarded for his mechanical invention, and I am not for my software invention?
Do you really believe that a culture/tribe/village/group can develop such stupid rituals to deal with the dead and diseased and survive to this day? Do you really think that `primitive' people don't know anything about quarantaine or other measures against infectious diseases? Do you really think that a group of people that has just seen some of their own die in a horrible way will quietly slink off to meditate on their sins rather than seek (quite possibly rough) justice for this? But you're not one of the RFSP, right?
It is quite possible that this attack was stupid, but clearly we're not getting all of the story here.
Hmm, this smells like a talking point from a lobbying group.
In any case, it is irrelevant. It is a rare opportunity for a before/after comparative study of the effect of this level of radiation. Why not take it?