Sadly we humans only seem to be able to handle 2 or 3 options. If 12 existed we'd hone in on 3 favorites and 9 would be outliers.
It's not that just "being open source" automatically means code is being validated by lots of eyes. It means that you can look at the code. All we need is more people interested in doing that, or paid to do so. They also need to have the knowledge/skill necessary to do that.
And as always, being closed source would not have made the issues easier to find. And then you'd be at their mercy waiting for a fix. These were all found and all fixed relatively quickly, so let's focus on that.
SSL certainly isn't a simple library. Increased complexity makes it easier to make a mistake and harder to find it.
Maybe I should be shamed for replying to myself, but I thought of another issue.
If I'm running some software to stress test a web server (such as jmeter) am I going to auto-blocked by the software? And if so, am I going to have a means to dispute the blockage?
Also, in reference to "when it does block" it could just block you leaving their network. That way they could point you toward antivirus software or other cleaning utilities hosted on their network.
I meant to add that one reason the ISP might not want to cut off DDoS senders is that they don't want to annoy their customers. Though you would think that they could call the customer at the same time alerting them to an infection, notifying that their internet will be down for 15 minutes (or whatever). Of course it's difficult for joe customer to try to remove the infection without an internet connection. Though it's possible that they're not even home at the time and wouldn't notice or care if it bumped off for a while.
What it sounds like you're saying is that ISP's could cut off individual customers who are sending DDoS traffic thereby killing the DDoS attack. If (I say that lightly) they are already monitoring our upstream traffic why couldn't they do that?
The answer lies in your earlier post, because they can make money selling mitigation to the attackee. When a place I worked was being attacked AT&T (their ISP) was completely disinterested in helping at all. It was even more sickening than them asking for money to help.
And you buy it to perform a certain function. If it didn't perform that function you wouldn't have bought it. 3 years later it will still perform that function just fine (unless you upgrade to iOS 8 - then it will be noticeably slower)
OK, that was a cheap dig - I have an ipad 3 and have refused to upgrade because of mixed reviews. But really, upgrading the OS may make a tablet/phone respond slower.
The same was true for the PC market. There was more of a driving force pushing to upgrade the OS on a PC (security, users at home using newer OSes, other software that depended on newer OSes, etc). But a tablet doesn't generally "need" to move to a newer OS. If it's used as a toy, a web browser, or a media consumption device there is little push to upgrade.
'So when you go to a physical business and use Apple Pay, Apple doesn't know what you bought, where you bought it, or how much you paid for it. The transaction is between you, the merchant, and your bank.'
Since nobody else said it I call bullshit on this.
Apple needs to know where you bought it (store, and probably IP or equivalent identifier for the device the transaction came through)
Apple needs to know how much you paid if it's collecting a percentage.
Apple doesn't need to know what you bought.
The first two need to be stored if you have any kind of audit / discrepancy dispute resolution. If there's a time span on when you can file a dispute then they don't need to store anything beyond that.
My TWC reception is sometimes sketchy even though I pay over $100 a month for TV and internet. When "Under the Dome" and "The 100" decide that their respective channels are going to not come in during the broadcast so the DVR chokes on it then I go to TPB the next day and pull it down.
When the USB drive that I ripped my CD collection to decided to kick the bucket I went to TPB and downloaded the ones I cared about rather than repeating a long drawn out process.
Rather than ripping my wife's Little Mermaid DVD I went to TPB and downloaded it.
Did anybody get financially butt-hurt by my use of TPB, NO!
Have I ever downloaded something that I didn't have rights to - yes, but not enough for anybody to care. The equivalent of a kid sneaking into a movie theater to watch a movie once or twice.
Have I ever later bought something that I downloaded, absolutely.
Raiding and shutting down a site because there are a few bad apples is equivalent to taking away the 1st amendment. You need to fight for people's right to say stupid things or you will lose your right to say what you want.
It takes all of ten seconds, and there's no fee involved.
Ahh. There's the reason it's not in the US.
Seriously though, our ability to screw up security is the other reason. It has led to distrust, which leads to low or slow adoption rates.
Not free as in "without ANY cost", you're being too idealistic.
The realist definition (if I can say that) is "free to download and use". That allows for ads.
In-app purchases are certainly not free, but are add-ons or unlock functionality not in the free version.
However I do sort of agree, when I hear or see that an app is free I always check to see if it has in-app purchases before I bother to download it. Because I don't have an unlimited data plan I also check screenshots for ads, because data isn't "free".
No, but it's pointless to suggest an eight topping pizza - a waste of my time. That's all I'm saying. Though I'd be willing to let it make a suggestion one time just for the novelty.
Yea, I was thinking I most often get the Pepperoni because I'm not willing to pay the extra for the multiple toppings I really want. So while it may give me a tasty pie I'm not willing to pay for it.
Definition of AD HOMINEM
1: appealing to feelings or prejudices rather than intellect
2: marked by or being an attack on an opponent's character rather than by an answer to the contentions made
Origin of AD HOMINEM
New Latin, literally, to the person
First Known Use: 1598
So while it wouldn't meet the original definition. I do believe the definition has evolved enough that it works.
"Attacking the character of 60 minutes (the entity) rather than the story" is what the post was saying, which fits #2 above.
I'm an East-coaster and I generally stick with a speed limit +5 rule. On interstates when other drivers are going faster I'm fine with a 10+ rule.
It certainly is a state-by-state thing though. Watch out for Georgia and their 20 miles stretches of construction zone (mostly because of the enhanced penalty). Slow down in Virginia (they like the ticket income). Other than that I haven't noticed any trouble with the i95 stretch.
If there's enough traffic at 15+ on the interstate and I'm familiar with the road then I might bump it up, but I'm not usually in that much of a hurry. I'm not willing to go it alone at 15+ and risk the ticket.
The rear view mirror has a small section that can display the rear view camera (it just acts as a mirror when an image isn't being displayed). They do it this way in cars that don't have an LCD display, for cars with a standard stereo face.
I do feel that the backup camera is just fine being on the infotainment network. If side camera go away I feel the same about them. Engine, steering, breaking - things where one might lose control of the vehicle if they don't function correctly belong on their own secure network.
At the very least:
Separate the networks. Have essential processes (engine, breaking, steering) on a secure network
Have infotainment, radio, bluetooth phone, gps, wipers, rain sensor, etc on a separate network
Have anything wifi (door unlock) heavily vetted before you allow it into one of your other networks.
Personally I feel that windows even belong on the infotainment network, as they aren't vital to the safety of the vehicle.
Keep chatter between networks to a minimum. I figure secure (engine) would need to talk to wifi (keyfob) when you hit the start button, although I'm not even sure if that qualifies as wifi - it's more like a proximity sensor.
That way maybe you can open the doors. Some fobs let you open the windows too. But once inside the car you'd still have to do some serious hacking to go anywhere. And nobody's messing with your essential functions while in motion. I know that some fobs do let you start the car, and I don't trust that functionality since it certainly could be exploited - if not now, in the future.
Yes. Every time I see 2 GB of RAM in what otherwise should be a capable system I feel that they are artificially limiting the usefulness and longevity of that device.
a) By starving it of memory for larger tasks or multitasking (as has been pointed out above)
b) By making it too weak to handle OS upgrades in the future
or do we at some point wonder if there isn't a concerted effort to keep everyone ignorant and fearful?
No need to wonder, there is. But don't try to tell that to anyone, they don't want to listen.
Those who do know/care are too few to matter. It is akin to the 2 party political system - no one can break in because the party members don't want to split the vote and let the "other" party win. Even if 10 new party people did break in, they're still drowned out by the rest of the fools in Congress.
So do I think it's kind of pointless, sure, but is it worth fighting and trying to do some good - you bet your ass! Even slow progress is some progress.
From reading the article...
I hate the Playstation buttons. Triangle, Circle, Square do not clearly translate to back, home, open windows/app list. If I were a rabbit a circle might be a decent representation of "home".
I like guest mode, I like fast and smooth, but I don't like "flat". A button should "look" like a button. I don't mean skeuomorphics, but a button UI element should not look like a label or a plain embedded image - it should look like something I can interact with, and that's what shading did.
At 6 inches you're in the phablet space. My phone is 4.7 inches, which was big when it came out, and I think that's just right for a phone.
As far as slipper, I have my phone is a gel sleeve (grabs the back and sides) that makes it grippy. Of course that adds $35 to the price tag, but you do get color options. If I did happen to drop it the sleeve would probably protect it, at least from the scuffs 2 other devices got from even touching the pavement.
On topic: As far as Andorid vs iOS many other posts here have already touched on It's a personal preference, and I'm happy to have the option. I personally prefer Android. My wife was fine with Android but has an iPhone right now. There are lots of things to like, and there are nuisances in both camps.
Slashdot Mirror
Sadly we humans only seem to be able to handle 2 or 3 options. If 12 existed we'd hone in on 3 favorites and 9 would be outliers.
It's not that just "being open source" automatically means code is being validated by lots of eyes. It means that you can look at the code. All we need is more people interested in doing that, or paid to do so. They also need to have the knowledge/skill necessary to do that.
And as always, being closed source would not have made the issues easier to find. And then you'd be at their mercy waiting for a fix. These were all found and all fixed relatively quickly, so let's focus on that.
SSL certainly isn't a simple library. Increased complexity makes it easier to make a mistake and harder to find it.
Maybe I should be shamed for replying to myself, but I thought of another issue.
If I'm running some software to stress test a web server (such as jmeter) am I going to auto-blocked by the software? And if so, am I going to have a means to dispute the blockage?
Also, in reference to "when it does block" it could just block you leaving their network. That way they could point you toward antivirus software or other cleaning utilities hosted on their network.
I meant to add that one reason the ISP might not want to cut off DDoS senders is that they don't want to annoy their customers. Though you would think that they could call the customer at the same time alerting them to an infection, notifying that their internet will be down for 15 minutes (or whatever). Of course it's difficult for joe customer to try to remove the infection without an internet connection. Though it's possible that they're not even home at the time and wouldn't notice or care if it bumped off for a while.
What it sounds like you're saying is that ISP's could cut off individual customers who are sending DDoS traffic thereby killing the DDoS attack. If (I say that lightly) they are already monitoring our upstream traffic why couldn't they do that?
The answer lies in your earlier post, because they can make money selling mitigation to the attackee. When a place I worked was being attacked AT&T (their ISP) was completely disinterested in helping at all. It was even more sickening than them asking for money to help.
And you buy it to perform a certain function. If it didn't perform that function you wouldn't have bought it. 3 years later it will still perform that function just fine (unless you upgrade to iOS 8 - then it will be noticeably slower)
OK, that was a cheap dig - I have an ipad 3 and have refused to upgrade because of mixed reviews. But really, upgrading the OS may make a tablet/phone respond slower.
The same was true for the PC market. There was more of a driving force pushing to upgrade the OS on a PC (security, users at home using newer OSes, other software that depended on newer OSes, etc). But a tablet doesn't generally "need" to move to a newer OS. If it's used as a toy, a web browser, or a media consumption device there is little push to upgrade.
'So when you go to a physical business and use Apple Pay, Apple doesn't know what you bought, where you bought it, or how much you paid for it. The transaction is between you, the merchant, and your bank.'
Since nobody else said it I call bullshit on this.
Apple needs to know where you bought it (store, and probably IP or equivalent identifier for the device the transaction came through)
Apple needs to know how much you paid if it's collecting a percentage.
Apple doesn't need to know what you bought.
The first two need to be stored if you have any kind of audit / discrepancy dispute resolution. If there's a time span on when you can file a dispute then they don't need to store anything beyond that.
The one with the bigger stick is right, of course.
Why was this posted as AC? I'm pretty impressed.
Other than the fact that Bilbo's sword did glow when the orcs arrived this is pretty spot-on.
My TWC reception is sometimes sketchy even though I pay over $100 a month for TV and internet. When "Under the Dome" and "The 100" decide that their respective channels are going to not come in during the broadcast so the DVR chokes on it then I go to TPB the next day and pull it down.
When the USB drive that I ripped my CD collection to decided to kick the bucket I went to TPB and downloaded the ones I cared about rather than repeating a long drawn out process.
Rather than ripping my wife's Little Mermaid DVD I went to TPB and downloaded it.
Did anybody get financially butt-hurt by my use of TPB, NO!
Have I ever downloaded something that I didn't have rights to - yes, but not enough for anybody to care. The equivalent of a kid sneaking into a movie theater to watch a movie once or twice.
Have I ever later bought something that I downloaded, absolutely.
Raiding and shutting down a site because there are a few bad apples is equivalent to taking away the 1st amendment. You need to fight for people's right to say stupid things or you will lose your right to say what you want.
It takes all of ten seconds, and there's no fee involved.
Ahh. There's the reason it's not in the US.
Seriously though, our ability to screw up security is the other reason. It has led to distrust, which leads to low or slow adoption rates.
What phone OS and what do you use to police which apps get to use cellular data?
Not free as in "without ANY cost", you're being too idealistic.
The realist definition (if I can say that) is "free to download and use". That allows for ads.
In-app purchases are certainly not free, but are add-ons or unlock functionality not in the free version.
However I do sort of agree, when I hear or see that an app is free I always check to see if it has in-app purchases before I bother to download it. Because I don't have an unlimited data plan I also check screenshots for ads, because data isn't "free".
No, but it's pointless to suggest an eight topping pizza - a waste of my time. That's all I'm saying. Though I'd be willing to let it make a suggestion one time just for the novelty.
At least you're free to downgrade back to a prior version of android. That's my biggest pet peeve with iOS.
Yea, I was thinking I most often get the Pepperoni because I'm not willing to pay the extra for the multiple toppings I really want. So while it may give me a tasty pie I'm not willing to pay for it.
Definition of AD HOMINEM
1: appealing to feelings or prejudices rather than intellect
2: marked by or being an attack on an opponent's character rather than by an answer to the contentions made
Origin of AD HOMINEM
New Latin, literally, to the person
First Known Use: 1598
So while it wouldn't meet the original definition. I do believe the definition has evolved enough that it works.
"Attacking the character of 60 minutes (the entity) rather than the story" is what the post was saying, which fits #2 above.
I'm an East-coaster and I generally stick with a speed limit +5 rule. On interstates when other drivers are going faster I'm fine with a 10+ rule.
It certainly is a state-by-state thing though. Watch out for Georgia and their 20 miles stretches of construction zone (mostly because of the enhanced penalty). Slow down in Virginia (they like the ticket income). Other than that I haven't noticed any trouble with the i95 stretch.
If there's enough traffic at 15+ on the interstate and I'm familiar with the road then I might bump it up, but I'm not usually in that much of a hurry. I'm not willing to go it alone at 15+ and risk the ticket.
The rear view mirror has a small section that can display the rear view camera (it just acts as a mirror when an image isn't being displayed). They do it this way in cars that don't have an LCD display, for cars with a standard stereo face.
I do feel that the backup camera is just fine being on the infotainment network. If side camera go away I feel the same about them. Engine, steering, breaking - things where one might lose control of the vehicle if they don't function correctly belong on their own secure network.
At the very least:
Separate the networks. Have essential processes (engine, breaking, steering) on a secure network
Have infotainment, radio, bluetooth phone, gps, wipers, rain sensor, etc on a separate network
Have anything wifi (door unlock) heavily vetted before you allow it into one of your other networks.
Personally I feel that windows even belong on the infotainment network, as they aren't vital to the safety of the vehicle.
Keep chatter between networks to a minimum. I figure secure (engine) would need to talk to wifi (keyfob) when you hit the start button, although I'm not even sure if that qualifies as wifi - it's more like a proximity sensor.
That way maybe you can open the doors. Some fobs let you open the windows too. But once inside the car you'd still have to do some serious hacking to go anywhere. And nobody's messing with your essential functions while in motion. I know that some fobs do let you start the car, and I don't trust that functionality since it certainly could be exploited - if not now, in the future.
Yet even that didn't work because our government isn't for the people anymore.
Yes. Every time I see 2 GB of RAM in what otherwise should be a capable system I feel that they are artificially limiting the usefulness and longevity of that device.
a) By starving it of memory for larger tasks or multitasking (as has been pointed out above)
b) By making it too weak to handle OS upgrades in the future
Looks like the Beetles were right. The elevator will be called "Lucy".
If the hot air wind-bags go first I'm all for hitting that reset button. You know who I'm talking about slashdot.
Alright, maybe reset is extreme, but...
or do we at some point wonder if there isn't a concerted effort to keep everyone ignorant and fearful?
No need to wonder, there is. But don't try to tell that to anyone, they don't want to listen.
Those who do know/care are too few to matter. It is akin to the 2 party political system - no one can break in because the party members don't want to split the vote and let the "other" party win. Even if 10 new party people did break in, they're still drowned out by the rest of the fools in Congress.
So do I think it's kind of pointless, sure, but is it worth fighting and trying to do some good - you bet your ass! Even slow progress is some progress.
From reading the article...
I hate the Playstation buttons. Triangle, Circle, Square do not clearly translate to back, home, open windows/app list. If I were a rabbit a circle might be a decent representation of "home".
I like guest mode, I like fast and smooth, but I don't like "flat". A button should "look" like a button. I don't mean skeuomorphics, but a button UI element should not look like a label or a plain embedded image - it should look like something I can interact with, and that's what shading did.
At 6 inches you're in the phablet space. My phone is 4.7 inches, which was big when it came out, and I think that's just right for a phone.
As far as slipper, I have my phone is a gel sleeve (grabs the back and sides) that makes it grippy. Of course that adds $35 to the price tag, but you do get color options. If I did happen to drop it the sleeve would probably protect it, at least from the scuffs 2 other devices got from even touching the pavement.
On topic: As far as Andorid vs iOS many other posts here have already touched on It's a personal preference, and I'm happy to have the option. I personally prefer Android. My wife was fine with Android but has an iPhone right now. There are lots of things to like, and there are nuisances in both camps.