As you mentioned, proactive costs money, which has to come from somewhere. If you were in charge of YouTube Kids, would you fund proactive review by requiring a valid YouTube Red subscription in order to access the app?
The article also mentions demonetization. That could be considered censorship, as the uploader in some cases (such as Robot Chicken-type productions) may have to pay royalties per view to the upstream licensor.
Since when does the packaging of mainstream* laptop PCs include a penguin logo or other notice of compatibility with X11/Linux?
you might also want an AMD machine (though they may have their own secrets.)
AMD kit includes the analogous AMD Secure Processor, which runs ARM TrustZone. (It used to be called the Platform Security Processor until people who bought AMD-powered PS4 consoles were disappointed that they couldn't download and play purchased PSP games.) But at least ARM TrustZone is a multi-vendor standard.
* By which I exclude the more expensive, mail-order-only products of System76 and the like.
the primary reason he wants Windows instead of a MacBook is gaming.
I always recommend that unless you specifically need special hardware, to just get a $300-$400 refurbished laptop.
The problem is that you need to be careful in order not to end up with Intel integrated graphics, which isn't always suitable for the newest games. It'll take a while for Intel's deal with Radeon to bring products to the market, and it'll take another while for those to end up on the refurbished market. Therefore, gamers "specifically need special hardware." If gaming weren't the reason, he could just buy a Windows license to run in Boot Camp.
give em Linux and tell them to figure out how to run Windows games.
The result of such will be that the user will run into third-party digital restrictions management and anti-cheat software that explicitly forbids use of Wine.
I'm surprised why more people are not enabling authentication.
It's in part because these providers insist on using SMS as the preferred second factor despite its disadvantages compared to U2F or TOTP. SMS has two problems:
SMS is expensive
Cellular carriers in Slashdot's home country charge 10 cents per received text message unless a subscriber pays hundreds of dollars per year for a cellular plan including unmetered text messaging. I doubt that most people would want to pay their cellular carrier 10 cents every time they check their email.
SMS is insecure
SMS messages can be intercepted, such as by social engineering a replacement SIM out of the victim's carrier or by exploiting SS7 flaws. U.S. National Institute of Science and Technology has warned firms about this, but firms haven't been listening.
This wouldn't be a problem if services like Google, Twitter, and Steam offered a way to set up TOTP without first setting up SMS. But they don't. Google says "first you need to complete SMS/Voice setup", and the instructions for Twitter include "set up your personal account with the service on your phone" as part of the first step. Nor do they offer a way for someone who has set up TOTP to disable SMS without also disabling TOTP. Twitter in particular sends SMS on every 2-factor login attempt, in effect treating TOTP as a backup for SMS rather than vice versa.
From your mention of "proper JS blocking", you'd probably be happy moving an item in a list up several dozen positions by clicking "move item up one position", waiting for the page to reload, clicking "move item up one position", waiting for the page to reload, etc.
I'm not going to want to drag and drop something in the first place. I'd actually have to FIND my desktop in the first place (I like full-screen windows, lots of them)
It's not necessarily dragging and dropping from one window to another. It's also moving an item in the list, where said list is already in the web application, up or down by possibly a few dozen positions.
I'd probably have to add an exception to noscript, which may be unlikely. That latter part might be necessary anyway
If you were to move the list item in the web application without using script, you'd have to activate the form control that moves the list item up or down by one position, wait for the HTML document to completely reload, and repeat a few dozen times.
Such a device doesn't need internet connectivity though
It does in order to avoid offline access surcharges. Streaming services like Pandora and Spotify charge extra per month for offline access, and services that don't charge per month charge on the order of $1.29 per track, which adds up fairly quickly.
it doesn't even need to be digital or computerized.
An analog player for use on the bus or train needs to be portable, which rules out vinyl and reel-to-reel. And Slashdot recently ran a story about it being hard to find blank cassettes in the 2010s. What portable analog recording medium does that leave?
Selling your unrootable device probably won't provide enough revenue to buy a rootable one.
the network administrator lacks "sufficient rights" over visitors' devices
That's NOT a TRUE administrator then
I detect a "no true Scotsman" fallacy here. So for purposes of this comment, I'll define "true administrator" to mean "administrator of all devices connected to a particular IP LAN", and "guest network" as a LAN operated by someone other than a true administrator.
Hosts is fine for a true administrator. But not everyone has the luxury of being a true administrator; some people have a reason to operate a guest network. For these, a DNS filter component can run on the gateway appliance that already manages the guest network. And many of these can take list files generated using your app.
IF I was the controller of the IP stack itself? I'd do a 'wildcard' @ considerably LESS expense in hosts
On this, I wholeheartedly agree. Have you considered writing a patch for the resolvers in the Linux and FreeBSD kernels?
A. The model of Android device that you own has no root exploit. B. You depend on applications that incidentally detect whether a particular Android device is rooted and refuse to run if it is, "for your security." C. It's a bring-your-own-device (BYOD) situation, where the network administrator lacks "sufficient rights" over visitors' devices. D. An adtech server rotates among millions of wildcard subdomains. (Unlike DGAs used by malware, wildcard subdomains incur no extra cost to register a domain.)
How well does Pi-hole work when you are browsing through a public Wi-Fi hotspot or over cellular Internet? How well would it work for someone whose home ISP blocks connections to devices on his LAN from the Internet? A local DNS blacklist doesn't require running a server
I assume that "move up/down buttons" move an item above the item above it or below the item below it. If so, good luck moving something up from the bottom of a list of a dozen or more items to near the top this way. If not, how would the user specify how far "move up/down buttons" move a particular item?
A nice, usability focused UI will be fine, thanks.
What "nice, usability focused UI" do you recommend for reordering the relative position of items in an outline, or chat rooms in a server, or priorities in a to-do list, without slide gestures?
Maybe web sites should not be trying to behave like apps.
Have you considered that a website might be trying to behave like an app in order to circumvent the costs and censorship aspects of being in Apple's App Store?
When dragging is the standard way to scroll - as it is on mobile
True, a slide usually means a scroll. But a slide beginning with a long press is also the gesture on Android to move an object, such as a shortcut on the home screen. Why should a web application designed for browsers on Android not support a gesture consistent with the rest of Android?
The featured article claims that "All websites and web apps that did any sort of draggable UI (sliders, maps, reorderable lists, even slide-in panels)". In such web applications, if the user is performing a slide gesture, he doesn't necessarily want to make the whole document scroll just because the gesture has approached the edge of the document.
So let me get this straight: Are you claiming that such web applications "should fuck off"? Must they instead be rewritten as native executable applications that work only on one brand of operating system?
English isn't the only language spoken by iOS users.
Afrikaans and Dutch: tien Danish and Norwegian: ti French: dix Irish: deich Italian: dieci Mandarin Chinese (Pinyin IME): shí Spanish: diez Swedish: tio Vietnamese: mu'ò'i
As you mentioned, proactive costs money, which has to come from somewhere. If you were in charge of YouTube Kids, would you fund proactive review by requiring a valid YouTube Red subscription in order to access the app?
The article also mentions demonetization. That could be considered censorship, as the uploader in some cases (such as Robot Chicken-type productions) may have to pay royalties per view to the upstream licensor.
Check the hardware for linux compatibility.
Since when does the packaging of mainstream* laptop PCs include a penguin logo or other notice of compatibility with X11/Linux?
you might also want an AMD machine (though they may have their own secrets.)
AMD kit includes the analogous AMD Secure Processor, which runs ARM TrustZone. (It used to be called the Platform Security Processor until people who bought AMD-powered PS4 consoles were disappointed that they couldn't download and play purchased PSP games.) But at least ARM TrustZone is a multi-vendor standard.
* By which I exclude the more expensive, mail-order-only products of System76 and the like.
the primary reason he wants Windows instead of a MacBook is gaming.
I always recommend that unless you specifically need special hardware, to just get a $300-$400 refurbished laptop.
The problem is that you need to be careful in order not to end up with Intel integrated graphics, which isn't always suitable for the newest games. It'll take a while for Intel's deal with Radeon to bring products to the market, and it'll take another while for those to end up on the refurbished market. Therefore, gamers "specifically need special hardware." If gaming weren't the reason, he could just buy a Windows license to run in Boot Camp.
give em Linux and tell them to figure out how to run Windows games.
The result of such will be that the user will run into third-party digital restrictions management and anti-cheat software that explicitly forbids use of Wine.
I'm surprised why more people are not enabling authentication.
It's in part because these providers insist on using SMS as the preferred second factor despite its disadvantages compared to U2F or TOTP. SMS has two problems:
SMS is expensive Cellular carriers in Slashdot's home country charge 10 cents per received text message unless a subscriber pays hundreds of dollars per year for a cellular plan including unmetered text messaging. I doubt that most people would want to pay their cellular carrier 10 cents every time they check their email. SMS is insecure SMS messages can be intercepted, such as by social engineering a replacement SIM out of the victim's carrier or by exploiting SS7 flaws. U.S. National Institute of Science and Technology has warned firms about this, but firms haven't been listening.This wouldn't be a problem if services like Google, Twitter, and Steam offered a way to set up TOTP without first setting up SMS. But they don't. Google says "first you need to complete SMS/Voice setup", and the instructions for Twitter include "set up your personal account with the service on your phone" as part of the first step. Nor do they offer a way for someone who has set up TOTP to disable SMS without also disabling TOTP. Twitter in particular sends SMS on every 2-factor login attempt, in effect treating TOTP as a backup for SMS rather than vice versa.
if you're using their app you can't block the ads they want to serve you.
Would you prefer to pay 4 USD per site per month to view websites without ads? How many different websites do you access over the course of a day?
From your mention of "proper JS blocking", you'd probably be happy moving an item in a list up several dozen positions by clicking "move item up one position", waiting for the page to reload, clicking "move item up one position", waiting for the page to reload, etc.
I'm not going to want to drag and drop something in the first place. I'd actually have to FIND my desktop in the first place (I like full-screen windows, lots of them)
It's not necessarily dragging and dropping from one window to another. It's also moving an item in the list, where said list is already in the web application, up or down by possibly a few dozen positions.
I'd probably have to add an exception to noscript, which may be unlikely. That latter part might be necessary anyway
If you were to move the list item in the web application without using script, you'd have to activate the form control that moves the list item up or down by one position, wait for the HTML document to completely reload, and repeat a few dozen times.
Such a device doesn't need internet connectivity though
It does in order to avoid offline access surcharges. Streaming services like Pandora and Spotify charge extra per month for offline access, and services that don't charge per month charge on the order of $1.29 per track, which adds up fairly quickly.
it doesn't even need to be digital or computerized.
An analog player for use on the bus or train needs to be portable, which rules out vinyl and reel-to-reel. And Slashdot recently ran a story about it being hard to find blank cassettes in the 2010s. What portable analog recording medium does that leave?
Slashdot: "Chrome Will Whack Website Bait-and-Switch Tactics"
You're DUMB if you don't use a rooted "dumbphone"
Selling your unrootable device probably won't provide enough revenue to buy a rootable one.
the network administrator lacks "sufficient rights" over visitors' devices
That's NOT a TRUE administrator then
I detect a "no true Scotsman" fallacy here. So for purposes of this comment, I'll define "true administrator" to mean "administrator of all devices connected to a particular IP LAN", and "guest network" as a LAN operated by someone other than a true administrator.
Hosts is fine for a true administrator. But not everyone has the luxury of being a true administrator; some people have a reason to operate a guest network. For these, a DNS filter component can run on the gateway appliance that already manages the guest network. And many of these can take list files generated using your app.
IF I was the controller of the IP stack itself? I'd do a 'wildcard' @ considerably LESS expense in hosts
On this, I wholeheartedly agree. Have you considered writing a patch for the resolvers in the Linux and FreeBSD kernels?
If a website insists "go download our app!" then that's a website I'm not going to be visiting anymore.
Say you try to drag and drop something in a web app in Chrome, but then you see something like this:
"Learn why" links to an article explaining Chrome's willful violation of web standards. Would you open the web app in Firefox?
Unless one of the following is the case:
A. The model of Android device that you own has no root exploit.
B. You depend on applications that incidentally detect whether a particular Android device is rooted and refuse to run if it is, "for your security."
C. It's a bring-your-own-device (BYOD) situation, where the network administrator lacks "sufficient rights" over visitors' devices.
D. An adtech server rotates among millions of wildcard subdomains. (Unlike DGAs used by malware, wildcard subdomains incur no extra cost to register a domain.)
How well does Pi-hole work when you are browsing through a public Wi-Fi hotspot or over cellular Internet? How well would it work for someone whose home ISP blocks connections to devices on his LAN from the Internet? A local DNS blacklist doesn't require running a server
nor does it make a huge amount of sense for slidable controls to be within a scrollable container that can scroll in the slide direction
A to-do item in a scrolling list of several dozen.
I assume that "move up/down buttons" move an item above the item above it or below the item below it. If so, good luck moving something up from the bottom of a list of a dozen or more items to near the top this way. If not, how would the user specify how far "move up/down buttons" move a particular item?
But does it work for (say) the 90 minute bus or train commute that some Slashdot users claim to have?
A nice, usability focused UI will be fine, thanks.
What "nice, usability focused UI" do you recommend for reordering the relative position of items in an outline, or chat rooms in a server, or priorities in a to-do list, without slide gestures?
Could you explain what steps one ought to take in order to avoid doing boredom to oneself? Or were you quoting a movie that I happen not to have seen?
You still need a device to play the music.
Maybe web sites should not be trying to behave like apps.
Have you considered that a website might be trying to behave like an app in order to circumvent the costs and censorship aspects of being in Apple's App Store?
When dragging is the standard way to scroll - as it is on mobile
True, a slide usually means a scroll. But a slide beginning with a long press is also the gesture on Android to move an object, such as a shortcut on the home screen. Why should a web application designed for browsers on Android not support a gesture consistent with the rest of Android?
The featured article claims that "All websites and web apps that did any sort of draggable UI (sliders, maps, reorderable lists, even slide-in panels)". In such web applications, if the user is performing a slide gesture, he doesn't necessarily want to make the whole document scroll just because the gesture has approached the edge of the document.
So let me get this straight: Are you claiming that such web applications "should fuck off"? Must they instead be rewritten as native executable applications that work only on one brand of operating system?
there's no "i" in ten
English isn't the only language spoken by iOS users.
Afrikaans and Dutch: tien
Danish and Norwegian: ti
French: dix
Irish: deich
Italian: dieci
Mandarin Chinese (Pinyin IME): shí
Spanish: diez
Swedish: tio
Vietnamese: mu'ò'i