google approved certificates complete with extortionate prices
Let's Encrypt offers TLS certificates to domain owners without charge. Its website lists the division of Google that maintains Chrome as a sponsor. So no, I don't see Chrome requiring "extortionate prices" for TLS certificates any time soon.
Comcast has been caught injecting advertisements into HTML documents that Comcast customers view over cleartext HTTP. If BBC doesn't want Comcast performing cross-site scripting on BBC's site, BBC needs to use HTTPS.
W3C maintains a spec called Secure Contexts, which encourages web browsers to completely disable certain sensitive JavaScript features within HTML documents served over a cleartext HTTP connection. Only HTTPS and http://localhost/ are allowed to use Service Workers, Geolocation, Payment Request, Presentation, and several other web platform APIs.
It's about making sure that only registered publishers put material on the internet.
I don't see what practical problem that causes for publishers on the Internet, seeing as Let's Encrypt allows anybody who owns a domain name to register as a publisher without charge. Or are you anticipating tighter control of domain names in the first place?
I would at least propose to restrict pages served over HTTP from any form of interactivity. No scripts, no plugins, no forms, no "responsive" CSS, limited media formats—no audio or video
Under your suggestion, with what certificate on what domain should the operator of a private video server on a home LAN run HTTPS? Public CAs don't sign certificates for RFC 1918 private IP addresses or for names within non-public TLDs (such as.local used by mDNS). Some users have suggested using dynamic DNS, but in order to qualify for a certificate from Let's Encrypt, a subdomain needs a TXT record, and the domain it's under needs a Public Suffix List entry. Many dynamic DNS providers don't support those.
I just tried your suggestion in Firefox ESR 52 on Debian 9, with media.autoplay.enabled changed to false. Though the preference successfully blocked VP8, VP9, and AVC video from autoplaying, several methods of presenting video managed to sneak past it: GIF, JPEG sequence, PNG sequence, JPEG filmstrip, and PNG filmstrip.
Unless the cable ISP for your area charges more for a 50 Mbps business connection than for a 100 Mbps residential connection. Or unless the cable ISP for your area doesn't offer business connections at all to customers in residential neighborhoods.
True, you can watch an episode that's no longer quite as relevant as it was when it was released. Part of the draw of political talk shows is analysis and opinion about a political event within one business day after the event happens.
Browsers allow a muted VP8, VP9, or AVC file to autoplay because allowing it takes less Internet bandwidth than falling back to animated GIF, a sequence of discrete JPEG files, or a JPEG filmstrip animated with CSS sprites.
If you plan to build an extension to block all autoplay, here are some test cases. Good luck getting them all.
Want to watch GoT? Sub when it's running and cancel.
Unless a series is running year-round, such as Sesame Street or Real Time with Bill Maher. This is also why people on the left keep traditional cable, as The Rachel Maddow Show runs year-round, and why people on the right keep traditional cable, as Hannity runs year-round.
If the selection on one all-you-can-eat over-the-top video-on-demand provider is incomplete, then rotate among providers. Have Netflix for a month, and watch Netflix exclusive programming during that month. Have HBO for a different month, and watch HBO exclusive programming during that month. It's not like either of those services specializes in live programming (with the exception of Bill Maher on HBO).
Probably because the plan with a greater data rate per month also happens to come with a greater data rate per second as a side effect. A 50 Mbps plan with a 200 GB/mo cap is in effect a 200*8000/(86400*30) = 0.6 Mbps sustained plan.
2. Pay sports website a much-cheaper-than-cable monthly fee and watch online.
Blacked out if exclusive rights have been sold to national cable or regional cable.
3. Go to sporting event.
Misses away games, a favorite team that has relocated, a favorite player that has been traded, the team of the city where you grew up, or the team of the university that your university-age child attends. Nor is a lot of the country within reasonable cycling distance of a major league or minor league ball park, especially outside the top 100 metropolitan markets.
4. Go to bar/restaurant and watch there.
Can't bring your kids to a bar to watch with you in a 21-to-enter state.
The only awkward part is that it's easy to forget everything you're doing is in (essentially) a Chrome browser window, so pressing ctrl+w while in a remote session will close it out.
The other awkward part is what happens when you close your Chromebook, board the bus, and try to get back to what you were doing. Unless you're using Crostini (a GNU/X11 environment that is currently exclusive to more recent, high-end Chromebooks), you're relying on an Internet connection to get things done, and buses in many cities (such as my own) don't provide a hotspot even for fare-paying riders.
Form can be pleasing but function is all that truly matters; those who prefer the former over the latter are braindead zombies and should be regarded accordingly.
Unfortunately, people with money to invest in your proposal aren't in the habit of regarding them accordingly.
I would almost venture to say that anyone who can get away with an under-powered power saving CPU could probably do their work on a cheaper tablet.
Lightweight programming is practical on, say, the quad-core Pentium processor in a Dell Inspiron mini 11 3000 series laptop running Windows or Xubuntu. I doubt it's practical on the flat sheet of glass that is a tablet's default text input device. And by the time you've connected an external keyboard, you might as well use a laptop.
If you really wanted to work on performance in the server room, you'd be ssh'ing into Linux boxes
Though ASP.NET is ported to Linux, as of July 2018, Microsoft SQL Server is still exclusive to the Windows® operating system. So if your existing application is designed for ASP.NET and Microsoft SQL Server, and you lack the time==money to migrate the application's database layer to PostgreSQL, you'd still be running Windows in a virtual machine on those Linux boxes. When you do use SSH, you'll probably end up tunneling RDP inside it.
You'd be surprised at how well RDP works over high latency connections.
I imagine RDP doesn't work so well under the constraint of a packet latency of days or weeks. Say you send the last packet of the month over a satellite or cellular link, which causes you to exhaust the monthly data transfer quota that your satellite or cellular ISP imposes on you. It can be days or weeks until your satellite or cellular ISP allows your hotspot to start receiving packets again at the start of the next billing cycle.
Slashdot Mirror
google approved certificates complete with extortionate prices
Let's Encrypt offers TLS certificates to domain owners without charge. Its website lists the division of Google that maintains Chrome as a sponsor. So no, I don't see Chrome requiring "extortionate prices" for TLS certificates any time soon.
Comcast has been caught injecting advertisements into HTML documents that Comcast customers view over cleartext HTTP. If BBC doesn't want Comcast performing cross-site scripting on BBC's site, BBC needs to use HTTPS.
W3C maintains a spec called Secure Contexts, which encourages web browsers to completely disable certain sensitive JavaScript features within HTML documents served over a cleartext HTTP connection. Only HTTPS and http://localhost/ are allowed to use Service Workers, Geolocation, Payment Request, Presentation, and several other web platform APIs.
Some ISPs inject advertisement scripts directly into the port 80 TCP connection regardless of what DNS server is used.
It's about making sure that only registered publishers put material on the internet.
I don't see what practical problem that causes for publishers on the Internet, seeing as Let's Encrypt allows anybody who owns a domain name to register as a publisher without charge. Or are you anticipating tighter control of domain names in the first place?
I would at least propose to restrict pages served over HTTP from any form of interactivity. No scripts, no plugins, no forms, no "responsive" CSS, limited media formats—no audio or video
Under your suggestion, with what certificate on what domain should the operator of a private video server on a home LAN run HTTPS? Public CAs don't sign certificates for RFC 1918 private IP addresses or for names within non-public TLDs (such as .local used by mDNS). Some users have suggested using dynamic DNS, but in order to qualify for a certificate from Let's Encrypt, a subdomain needs a TXT record, and the domain it's under needs a Public Suffix List entry. Many dynamic DNS providers don't support those.
I use a lot of strange addons, and nearly every one was available immediately or just a few months after the switchover.
That's a big "nearly". There's no counterpart to Keybinder for Firefox 57 and later, and there won't be until bug 1325692 is fixed.
I just tried your suggestion in Firefox ESR 52 on Debian 9, with media.autoplay.enabled changed to false. Though the preference successfully blocked VP8, VP9, and AVC video from autoplaying, several methods of presenting video managed to sneak past it: GIF, JPEG sequence, PNG sequence, JPEG filmstrip, and PNG filmstrip.
if talking performance , something in a server room with a heavy load, you're going to be using a real database, not MS SQL server running on windows.
Stack Overflow is written in C# and runs on IIS and MS SQL Server. Or would you characterize Stack Overflow as not being built for performance?
Cable is cheaper than moving to the right place, especially with inflated Bay Area real estate prices.
Unless the cable ISP for your area charges more for a 50 Mbps business connection than for a 100 Mbps residential connection. Or unless the cable ISP for your area doesn't offer business connections at all to customers in residential neighborhoods.
You can watch past episodes
True, you can watch an episode that's no longer quite as relevant as it was when it was released. Part of the draw of political talk shows is analysis and opinion about a political event within one business day after the event happens.
And no, disabling javascript is no longer an option.
If you don't disable JavaScript, sites will use a setInterval to load each frame of the video as a JPEG and display it, as in this demo.
Browsers allow a muted VP8, VP9, or AVC file to autoplay because allowing it takes less Internet bandwidth than falling back to animated GIF, a sequence of discrete JPEG files, or a JPEG filmstrip animated with CSS sprites.
If you plan to build an extension to block all autoplay, here are some test cases. Good luck getting them all.
Want to watch GoT? Sub when it's running and cancel.
Unless a series is running year-round, such as Sesame Street or Real Time with Bill Maher. This is also why people on the left keep traditional cable, as The Rachel Maddow Show runs year-round, and why people on the right keep traditional cable, as Hannity runs year-round.
If the selection on one all-you-can-eat over-the-top video-on-demand provider is incomplete, then rotate among providers. Have Netflix for a month, and watch Netflix exclusive programming during that month. Have HBO for a different month, and watch HBO exclusive programming during that month. It's not like either of those services specializes in live programming (with the exception of Bill Maher on HBO).
Why do you need 50mb down anyhow?
Probably because the plan with a greater data rate per month also happens to come with a greater data rate per second as a side effect. A 50 Mbps plan with a 200 GB/mo cap is in effect a 200*8000/(86400*30) = 0.6 Mbps sustained plan.
2. Pay sports website a much-cheaper-than-cable monthly fee and watch online.
Blacked out if exclusive rights have been sold to national cable or regional cable.
3. Go to sporting event.
Misses away games, a favorite team that has relocated, a favorite player that has been traded, the team of the city where you grew up, or the team of the university that your university-age child attends. Nor is a lot of the country within reasonable cycling distance of a major league or minor league ball park, especially outside the top 100 metropolitan markets.
4. Go to bar/restaurant and watch there.
Can't bring your kids to a bar to watch with you in a 21-to-enter state.
No, you become a fan of the local team, and you accept that you'll miss out on its away games and post-season.
The only awkward part is that it's easy to forget everything you're doing is in (essentially) a Chrome browser window, so pressing ctrl+w while in a remote session will close it out.
The other awkward part is what happens when you close your Chromebook, board the bus, and try to get back to what you were doing. Unless you're using Crostini (a GNU/X11 environment that is currently exclusive to more recent, high-end Chromebooks), you're relying on an Internet connection to get things done, and buses in many cities (such as my own) don't provide a hotspot even for fare-paying riders.
Form can be pleasing but function is all that truly matters; those who prefer the former over the latter are braindead zombies and should be regarded accordingly.
Unfortunately, people with money to invest in your proposal aren't in the habit of regarding them accordingly.
I would almost venture to say that anyone who can get away with an under-powered power saving CPU could probably do their work on a cheaper tablet.
Lightweight programming is practical on, say, the quad-core Pentium processor in a Dell Inspiron mini 11 3000 series laptop running Windows or Xubuntu. I doubt it's practical on the flat sheet of glass that is a tablet's default text input device. And by the time you've connected an external keyboard, you might as well use a laptop.
If you really wanted to work on performance in the server room, you'd be ssh'ing into Linux boxes
Though ASP.NET is ported to Linux, as of July 2018, Microsoft SQL Server is still exclusive to the Windows® operating system. So if your existing application is designed for ASP.NET and Microsoft SQL Server, and you lack the time==money to migrate the application's database layer to PostgreSQL, you'd still be running Windows in a virtual machine on those Linux boxes. When you do use SSH, you'll probably end up tunneling RDP inside it.
You'd be surprised at how well RDP works over high latency connections.
I imagine RDP doesn't work so well under the constraint of a packet latency of days or weeks. Say you send the last packet of the month over a satellite or cellular link, which causes you to exhaust the monthly data transfer quota that your satellite or cellular ISP imposes on you. It can be days or weeks until your satellite or cellular ISP allows your hotspot to start receiving packets again at the start of the next billing cycle.
Then I guess we disagree on definitions. The Statute of Anne was the first copyright granted to authors, not to a printing company.