This really depends on rarity. In the first expansion or two nearly everything in EverQuest was droppable, however items were actually rare, content wasn't instanced and had only a single location where they could drop. Thus for late game items a server might only see 0-2 of a particular item a day, for end game items a month or more could pass without one entering a server.
Later games fell into the trap of allowing everyone to do everything simultaneously and made drops significantly more common. Crafted items are an anathema to rarity, designers and players don't appear to have the stomach for the rarity required for the crafted drops and/or the failure rate to reduce their entrance into game economies.
I agree, sounds like someone trying to make a name for themselves. Seems unlikely that the large scale investors would use the NASDAQ to monitor their portfolio so its unlikely someone would be spear phishing for stock tips.
Following your links I don't see anything that says its a 64-bit OS, its all ambigious. A binary that runs on 32-bit and 64-bit devices may simply mean its able to use new registers.
I haven't seen any references anywhere about a 64-bit iOS, this sounds much like the amd64 systems being used to run the 32-bit version of Windows. While they will have some advantages with registers for 64-bit arithmetic now, more likely this has been done so when Apple releases a 64-bit version of iOS in 2-3 years they can also update the 5S users.
The NSA doesn't really need to have backdoors written into the systems, they have a lot of exploits in their bag of tricks that they've bought or found. Unfortunately the NSA only needs to find one exploit, but truly secure systems we need to find and fix them all:/
The problem with all the links - those companies were all established well after the initial government financed exploration. Business is happy to boldly go where governments have gone before and absorbed all the risk.
Only a business professor would suggest something like this rather than the very obvious real answer: job growth is slow because companies offshore everything.
Agreed. If allergies are that bad then you already need to be on guard at all times as any surface in a public place could contain trace amounts of peanuts which could in turn be transferred to the counters at work.
Most people consider text messaging to be asynchronous communication to be responded to when the receiver is able. The only occasion I can think of where the sender ought to be liable is if they were the driver's employer and required the driver to respond quickly.
While I agree that the startup culture of silicon valley provides very little of value, the article is a rambling incoherent rant seemingly conflating a variety topics the author happens to dislike.
Not really. I believe the author's biggest beef is that the user should not be providing the app with their credentials to Tesla Motors.
And I'm not arguing against that, the problem is that the suggestion of OAuth is moronic. The very same article you're linking conveniently also explains what I stated - to write a desktop application with OAuth the user must enter the username and password in the application. This entirely negates not trusting a third party with authentication, also known as the entire point of OAuth. (Though the article's author argues that the point is moot as a user is inherently trusting an application they install on their machine which is largely true for the desktop, less true for mobile applications thanks to sandboxing).
The remainder of the article talks about potential workarounds for the fundamental desktop OAuth flaw, however none of these solutions are specific to OAuth nor do any benefit from OAuth at all. I'm not saying OAuth is entirely pointless, but it is entirely pointless when when the third party isn't a web application.
Sorry but I expect more from a supposed Senior Distinguished Engineer and Executive Director of Cloud Computing at a major corporation, particularly one who writes for O'Reilly.
The article is mostly FUD. To start, OAuth is not a User->System authentication system, its a three party authentication system. For OAuth to work as intended the three parties involved need secure communication channels between the pairs (e.g. user to api, 3rd party to api, and user to 3rd party). This leads to the fact that his first two complaints about the Tesla service, are also inherently present in OAuth when implemented in a non-web app:
* Entering login information into any application inherently provides it to the application's author
* SSL is required between the 3rd party and the API service, otherwise eavesdroppers are able to obtain the API token, secret and user token
The final two flaws are really the same issue and are not part of authentication; however it is important that users are able to revoke access that they've provided to third parties. Missing that ability is certainly a problem but it is not a flaw with authentication.
While there are better methods for authentication that ought to be used by Tesla for their API (e.g. a long one time token the user enters, a QR code scanned, etc.), OAuth is not a better form of authentication for desktop or mobile application.
Didn't MarkerBot switch to a closed model for both hardware and software last year? If so, let's stop giving them free PR, they're no different than any of the other systems at this point.
Exactly what was dumbed down here? If you're referring to the JS preference, its simply been moved into about:config to prevent Joe User from "Turning off the Java" and breaking the internet.
Strictly looking at the ratio of raised : goal doesn't tell the whole story for each of the past 3-days they've only earned 200k. If that trend continues (and imo it's more likely they will tail off further) they'll be ~12 million by the end of the campaign.
With the exception of sex tourism people aren't usually subject to the laws of their country abroad. (Barring contracts signed of course). e.g. If you were to go to Thailand and paint some graffiti you wouldn't get taken to the local magistrate once you got back home.
How can a UK judge exercise anything over something happening in the US? Not that the US court system doesn't frequently overreach into things occurring outside its borders as well.
Slashdot Mirror
This really depends on rarity. In the first expansion or two nearly everything in EverQuest was droppable, however items were actually rare, content wasn't instanced and had only a single location where they could drop. Thus for late game items a server might only see 0-2 of a particular item a day, for end game items a month or more could pass without one entering a server.
Later games fell into the trap of allowing everyone to do everything simultaneously and made drops significantly more common. Crafted items are an anathema to rarity, designers and players don't appear to have the stomach for the rarity required for the crafted drops and/or the failure rate to reduce their entrance into game economies.
By 2-years.... Virtually everyone quit last year when they realized Inferno was broken.
I agree, sounds like someone trying to make a name for themselves. Seems unlikely that the large scale investors would use the NASDAQ to monitor their portfolio so its unlikely someone would be spear phishing for stock tips.
Following your links I don't see anything that says its a 64-bit OS, its all ambigious. A binary that runs on 32-bit and 64-bit devices may simply mean its able to use new registers.
I haven't seen any references anywhere about a 64-bit iOS, this sounds much like the amd64 systems being used to run the 32-bit version of Windows. While they will have some advantages with registers for 64-bit arithmetic now, more likely this has been done so when Apple releases a 64-bit version of iOS in 2-3 years they can also update the 5S users.
I had something similar happen with Microsoft and Doctor Who a few years ago, support gave me credit to get the second half. /shrug
The NSA doesn't really need to have backdoors written into the systems, they have a lot of exploits in their bag of tricks that they've bought or found. Unfortunately the NSA only needs to find one exploit, but truly secure systems we need to find and fix them all :/
The problem with all the links - those companies were all established well after the initial government financed exploration. Business is happy to boldly go where governments have gone before and absorbed all the risk.
Only a business professor would suggest something like this rather than the very obvious real answer: job growth is slow because companies offshore everything.
The miss-issuance of H1B visas don't help either.
Agreed. If allergies are that bad then you already need to be on guard at all times as any surface in a public place could contain trace amounts of peanuts which could in turn be transferred to the counters at work.
Most people consider text messaging to be asynchronous communication to be responded to when the receiver is able. The only occasion I can think of where the sender ought to be liable is if they were the driver's employer and required the driver to respond quickly.
While I agree that the startup culture of silicon valley provides very little of value, the article is a rambling incoherent rant seemingly conflating a variety topics the author happens to dislike.
Not really. I believe the author's biggest beef is that the user should not be providing the app with their credentials to Tesla Motors.
And I'm not arguing against that, the problem is that the suggestion of OAuth is moronic. The very same article you're linking conveniently also explains what I stated - to write a desktop application with OAuth the user must enter the username and password in the application. This entirely negates not trusting a third party with authentication, also known as the entire point of OAuth. (Though the article's author argues that the point is moot as a user is inherently trusting an application they install on their machine which is largely true for the desktop, less true for mobile applications thanks to sandboxing).
The remainder of the article talks about potential workarounds for the fundamental desktop OAuth flaw, however none of these solutions are specific to OAuth nor do any benefit from OAuth at all. I'm not saying OAuth is entirely pointless, but it is entirely pointless when when the third party isn't a web application.
Sorry but I expect more from a supposed Senior Distinguished Engineer and Executive Director of Cloud Computing at a major corporation, particularly one who writes for O'Reilly.
The article is mostly FUD. To start, OAuth is not a User->System authentication system, its a three party authentication system. For OAuth to work as intended the three parties involved need secure communication channels between the pairs (e.g. user to api, 3rd party to api, and user to 3rd party). This leads to the fact that his first two complaints about the Tesla service, are also inherently present in OAuth when implemented in a non-web app:
* Entering login information into any application inherently provides it to the application's author
* SSL is required between the 3rd party and the API service, otherwise eavesdroppers are able to obtain the API token, secret and user token
The final two flaws are really the same issue and are not part of authentication; however it is important that users are able to revoke access that they've provided to third parties. Missing that ability is certainly a problem but it is not a flaw with authentication.
While there are better methods for authentication that ought to be used by Tesla for their API (e.g. a long one time token the user enters, a QR code scanned, etc.), OAuth is not a better form of authentication for desktop or mobile application.
Didn't MarkerBot switch to a closed model for both hardware and software last year? If so, let's stop giving them free PR, they're no different than any of the other systems at this point.
Hopefully it will be more available than the Geeksphone devices which have been "available" for 6-months but never have any stock.
You copied OSX.
Exactly what was dumbed down here? If you're referring to the JS preference, its simply been moved into about:config to prevent Joe User from "Turning off the Java" and breaking the internet.
Strictly looking at the ratio of raised : goal doesn't tell the whole story for each of the past 3-days they've only earned 200k. If that trend continues (and imo it's more likely they will tail off further) they'll be ~12 million by the end of the campaign.
While I don't entirely disagree, Canonical isn't able to leverage scale in the production of the device and it does include quite a bit of NAND Flash.
With the exception of sex tourism people aren't usually subject to the laws of their country abroad. (Barring contracts signed of course). e.g. If you were to go to Thailand and paint some graffiti you wouldn't get taken to the local magistrate once you got back home.
How can a UK judge exercise anything over something happening in the US? Not that the US court system doesn't frequently overreach into things occurring outside its borders as well.
The NSA knows who they surveyed and they will be addressing comments individually!
Are you sure? From the documentation you need their permissions to even distribute code which references the API.
There's a lot of irony here given Google's defense of Android's use of the Java API's in the Oracle suit.