This vulnerability only applies to Applets or Java Web Start- SANDBOXED environments. It doesn't matter for any real-world scenario- server apps or desktop apps or Android apps.
Thing is, sandboxed java is insecure, and by this point it's obvious it's pretty much impossible to secure. So applets or JWS will remain insecure, but they should not be used in the first place and they are barely used in real world anyway these days. Today java is used in BigData/backend/server-side/web-server apps, or in some desktop apps, or in Android. Anyone still using Applets or JWS should just stop...
Shame to Slashdot for clickbait tittle- by now they should know better than to post crap like this.
Some analysis says that it would cause less than 40k casualties, potentially as few as 1000. Still lots of human lives lost, but not as bad as NK wants to paint it.
There are more in-depth articles I'm unable to find at the moment. Gist of it is: Not much of their artillery has the range to would reach Seoul, it's probably in bad maintenance or would break down soon, and NK would not be able to supply it with enough munitions or spare parts for sustained barrage, they would not reach Seoul center but less densely populated northern suburbs, there are plenty of shelters and after initial shock people would take cover. Not to mention counterbattery and airstrikes to take it out which would start immediately.
--Coder
I have a small nettop with AMD E-350, and it works fine as:
* ADSL/Wifi Router. Does IPv6 like a champ as well.
* File server
* Media box- it's connected to the TV & speakers.
* Backup device
* 2nd machine for some software experiments.
* Whatever else I want it to be.
I tried looking into getting some ARM SOC or off-the-shelf router, but decided it's not worth the hassle. The only thing I would gain is lower power usage, for much weaker CPU/GPU/memory/storage, and much more problems dealing with exotic hardware.
Add to this potential to have a gas pipeline from Persian Gulf (Saudi Arabia) to Europe.
Such a pipeline was impossible because it would have had to go through Syria. Assad's Syrian government was and still is friendly with Russia, and would block such a pipeline. Such a pipeline would end Russia's monopoly on gas exports to Europe at large scale, and ruin their business. BTW, Russians are now in Syria bombing any forces that are opposed to Assad, mostly Western/Turkey backed ones.
Enter ISIS, which is opposed to Assad. They are also Sunni branch of Islam as are Saudi Arabia. If they win, the route is open for the gas pipeline.
This whole mess is simply energy business & the great game on large scale.
Ok, MS doesn't do patent abuse when it concerns.NET (yet).
But all Android vendors have to pay up to Microsoft for all the Linux/Android based phones they sell, because of patents. This is extortion pure and simple, and it's Microsoft abusing patent system for monetary gain.
Yes, due to latency reasons they are probably going to put your satelites in < 1000km altitude.
But if you can do point to point communication via same satelite network without needing to go via base station, or if you have several base stations across the globe, then this will have LOWER latency than going via cables especially for long distance stuff say USA <=> Europe.
I assume they plan to launch small satelites, maybe bigger than cubesats, but definitely smaller than 100cm^3 and 1000kg. I think one rocket should be able to launch a significant percentagle of constellation, otherwise this whole thing becomes unfeasible.
On top of that, you have to weigh the cost of launching a constellation against the cost of laying enough cable to cover the whole world. Satelites are cheaper if you have reusable rockets. And regarding decaying orbit- I think the satelites, no matter what they are now, will be obsolete and replaced in ~10 years anyway, so they just need to last that long.
I wonder how will they deal with scalability with the number of clients, and what kind of antennas will this need on the ground. I imagine they'll have to be somewhat directional, otherwise power usage will be too high? Will they have to be outdoors? How will an individual satelite deal with the load when it passes over a huge city with lots of clients, say NY?
Ok, I hear you. I KNOW vendor support is bad. Well, it's not as bad as it was in 1998, but it's still quite bad.
However the main problem with that is NOT the driver model. The main problem with that is Microsoft.
OEMs that cannot/do not get bullied by Microsoft DO provide open-source drivers. Intel, Atheros, Realtek, AMD, lots of others.
However Microsoft made sure Linux devices cannot be sold by usual popular vendors like Dell/Asus/Lenovo etc. Anyone who tries selling Linux laptops or desktops gets their windows licensing screwed up. This is bullying and monopolistic pratices at their worst, and they still continue. Similar with Intel/AMD- Intel effectively forces vendors to limit their AMD offerings.
Plese stop blaming this on Linus and his insistence on open-source drivers.
I just wanted to say- Linus is right regarding driver model.
I do NOT want binary blobs running in kernel mode on my machine. They screw up both stability and security of the system. And OEMs who cannot provide open source drivers can go fuck themselves.
If not for MS monopoly and bullying of OEMs, Linux would have had good driver support from OEMs ages ago. Don't blame Linus for problems caused by Microsoft. Any OEM who tries to sell both Microsoft and Linux systems gets visited by Microsoft and stops selling Linux systems very soon. Because of that quality drivers never get provided by OEMs.
I do agree with your doubt that SteamOS has a future. Valve should have shipped SteamBox after all the hipe. Now this looks like another piece of vaporvare.
It's insecure ON THE CLIENTSIDE. Nobody uses it on the client-side any more. Applets are dead and have been for years. Clientside features are still around only to support some crap legacy apps which should have died years ago.
And on server-side, it's as secure as anything. Probably more secure, as you get none of the memory issues or buffer overflow issues or other issues C/C++ has had for years.
War in South Ossetia/Georgia. War in Ukraine. Ongoing civil war/occupation of Chechnya, and he played quite a big part in that. You could argue that 2nd Chechen war was effectively started in order to make Putin popular and put him in power.
How has he been a better world citizen. He's been as bad as USA, probably more.
And I'm not saying this to praise USA. As someone else said, this is a choice between a thug and a crook.
Well, ok, unless you count the whole mass surveilance business. And then other shenanigans created by USA corporations. But I could argue Putin would have done the same and more, except his hands were too short- Russia is not as powerful as USA, and not as technologically advanced.
Ok, so you have several reasonably well maintained open-source (or close) things running with same JVM. Good for you. In your use-case, you only need one VM.
Now try running some legacy enterprise crap from 2003 which hasn't been touched for last 10 years on JDK8. And now imagine it uses JNI.
All this hydrogen crap is done for only one reason that I can see- to keep oil and related companies in business. You still need some company to manufacture hydrogen, you still need complex transportation, you still need complex filing stations, and none of that you can do yourself. It's exactly the same business model, very similar infrastructure and process as dealing with gasoline. I.E. business as usual.
Purely battery electrical vehicles give customers control of charging their cars. You only need a charging station if you are on a long range journey. This will make lots of existing businesss obsolete, and it will be fought tooth and nail by the established companies. They will "invent" useless crap like corn alcohol or hydrogent to confuse the market and to slow down proliferation of purely battery electrical vehicles.
Theoretical research behind this- fuel cells and direct chemicals to electricity transformation with water as a byproduct is a cute idea, but it's very inpractical. Total energy efficiency of the whole system is low, transportation of hydrogen is tricky, and fuel cells are expensive. And it doesn't give you home-charging flexibility...
I've lived under Soviet Union. It wasn't much fun. I'm definitely NOT a communist, even though Soviet union wasn't really communist.
I don't pretend to know the solution. But I'll be the first to say that the current system of corporate demoracy is broken and must be improved.
I also believe that the solution will probably depend heavily on individual freedoms, and keeping computing, communications and the internet free and private. The alternative is a totalitarian regime backed by modern technology and that is the scariest thing I can imagine- and we are rapidly moving in that direction.
I just love this way of thinking. Oh, they are being dicks and screwing people over to make money. Well that's ok then...
I know businesses and corporations, most of the big ones at least, are being dicks to make money. That is still NOT OK. I know it's the "usual" way to do business. But it's still NOT OK. I know that's the way things have been for a very long time. That still doesn't make it OK.
And I do know Linux has it's share of problems, especially on desktop for newbie users. That still doesn't make it OK for Microsoft or any other organization to be dicks.
Yes it does. And that's the problem with corporations and capitalism in general.
Corporation by design is supposed to do one thing and one thing only- earn money for shareholders. All other concerns basically do not exist. Corporations do not have morals, they cannot have morals, and yet they are legal persons. If you were to do a personality profile on corporate behaviour- you'll find they all act as maniac psychopats. Corporations will hapily pollute, externalize costs, screw up communities, bribe & corrupt as long as they can get away with it- and usually they can. If they cannot do it in the West, they'll find some poorer country and do it there.
While a corporation is small, you could argue that it follows moral standards of the founders. However, as soon as it gets bigger, it inevitably becomes evil. And that is because of the way we reward corporations and define their success. We don't consider a corporation successful because it cleaned something up or improved life, we say a corporation is successful because it earned record profits. Sometimes you can achieve both, but if people can be screwed over to improve profits, that will eventually happen.
Microsoft still has dominance (monopoly) of desktop OS and office software. They still have incompatible office formats. They still corrupt international standards organizations. They still have the mindset of "Microsoft way or the highway". They still bundle their OS with most computers and vendors that want to sell computers without Windows still get in trouble. They still screw up their mobile phone partners.
They are still as evil as they used to be. They missed the boat with search/internet services and mobile- so they have a weeker position now. And now we have other evil companies like Apple and Google, and other evil organizations like NSA and GCHQ that affect the internet and computing world. But given emergence of new evils and reduction of power of Microsoft does not make them less evil.
I prefer people who swear and yell at me to people who sit there doing nothing while bad things are happening. Or people who sit there and hate you silently and scheme behind your back. Or people who do the wrong thing just to avoid conflict and it ends up tanking the project. Or people who always quietly do what they are told instead of saying "this is wrong, this idea is stupid, we need to do things differently".
There are much worse things than swearing and being offensive, especially if soneone deserves it.
Getting results is what's critical. Being nice is a nice to have, but ultimately less important. In other words I'll take competent assholes who get things done over impotent nice guys. And competent assholes tend to stop acting like assholes when you earn their respect.
On the other hand, I would be reluctant to work with an asshole who's being an asshole without a good reason just because he likes hurting people. That is wrong. But this is now what we are talking about here- I never heard Linus being like that.
Slashdot Mirror
RIP RobLimo.
Thanks for a reminder of good old days...
--Coder
Hi,
This vulnerability only applies to Applets or Java Web Start- SANDBOXED environments. It doesn't matter for any real-world scenario- server apps or desktop apps or Android apps.
Thing is, sandboxed java is insecure, and by this point it's obvious it's pretty much impossible to secure. So applets or JWS will remain insecure, but they should not be used in the first place and they are barely used in real world anyway these days. Today java is used in BigData/backend/server-side/web-server apps, or in some desktop apps, or in Android. Anyone still using Applets or JWS should just stop...
Shame to Slashdot for clickbait tittle- by now they should know better than to post crap like this.
--Coder
Some analysis says that it would cause less than 40k casualties, potentially as few as 1000. Still lots of human lives lost, but not as bad as NK wants to paint it.
http://www.popularmechanics.co...
https://skeptoid.com/blog/2013...
There are more in-depth articles I'm unable to find at the moment. Gist of it is: Not much of their artillery has the range to would reach Seoul, it's probably in bad maintenance or would break down soon, and NK would not be able to supply it with enough munitions or spare parts for sustained barrage, they would not reach Seoul center but less densely populated northern suburbs, there are plenty of shelters and after initial shock people would take cover. Not to mention counterbattery and airstrikes to take it out which would start immediately. --Coder
I have a small nettop with AMD E-350, and it works fine as:
* ADSL/Wifi Router. Does IPv6 like a champ as well.
* File server
* Media box- it's connected to the TV & speakers.
* Backup device
* 2nd machine for some software experiments.
* Whatever else I want it to be.
I tried looking into getting some ARM SOC or off-the-shelf router, but decided it's not worth the hassle. The only thing I would gain is lower power usage, for much weaker CPU/GPU/memory/storage, and much more problems dealing with exotic hardware.
--Coder
Add to this potential to have a gas pipeline from Persian Gulf (Saudi Arabia) to Europe.
Such a pipeline was impossible because it would have had to go through Syria. Assad's Syrian government was and still is friendly with Russia, and would block such a pipeline. Such a pipeline would end Russia's monopoly on gas exports to Europe at large scale, and ruin their business. BTW, Russians are now in Syria bombing any forces that are opposed to Assad, mostly Western/Turkey backed ones.
Enter ISIS, which is opposed to Assad. They are also Sunni branch of Islam as are Saudi Arabia. If they win, the route is open for the gas pipeline.
This whole mess is simply energy business & the great game on large scale.
--Coder
Depends on what kind of replication you need.
It does pretty decent asynchronous master->slave replication.
You can also have a mirror with synchronous writes.
Multi-master replication- there are some 3rd party tools to do that, still pretty young and immature AFAIK.
Clustering- there are some 3rd party projects to do that, some commercial.
More info here: https://wiki.postgresql.org/wi...
--Coder
Eh? Sybase? I work with it now, and it's the biggest piece of slow unfinished half-assed buggy shit database I've ever had to deal with.
And we have like 3 expert DBAs maintaining it (who wrote books about Sybase), so it's not just me being useless at databases.
--Coder
Last time I had to deal with MSSQL, I found PostgreSQL to be faster on same queries/datasets. Sometimes significantly so.
YMMV
--Coder
Ok, MS doesn't do patent abuse when it concerns .NET (yet).
But all Android vendors have to pay up to Microsoft for all the Linux/Android based phones they sell, because of patents. This is extortion pure and simple, and it's Microsoft abusing patent system for monetary gain.
--Coder
Yes, due to latency reasons they are probably going to put your satelites in < 1000km altitude.
But if you can do point to point communication via same satelite network without needing to go via base station, or if you have several base stations across the globe, then this will have LOWER latency than going via cables especially for long distance stuff say USA <=> Europe.
I assume they plan to launch small satelites, maybe bigger than cubesats, but definitely smaller than 100cm^3 and 1000kg. I think one rocket should be able to launch a significant percentagle of constellation, otherwise this whole thing becomes unfeasible.
On top of that, you have to weigh the cost of launching a constellation against the cost of laying enough cable to cover the whole world. Satelites are cheaper if you have reusable rockets. And regarding decaying orbit- I think the satelites, no matter what they are now, will be obsolete and replaced in ~10 years anyway, so they just need to last that long.
I wonder how will they deal with scalability with the number of clients, and what kind of antennas will this need on the ground. I imagine they'll have to be somewhat directional, otherwise power usage will be too high? Will they have to be outdoors? How will an individual satelite deal with the load when it passes over a huge city with lots of clients, say NY?
--Coder
Ok, I hear you. I KNOW vendor support is bad. Well, it's not as bad as it was in 1998, but it's still quite bad.
However the main problem with that is NOT the driver model. The main problem with that is Microsoft.
OEMs that cannot/do not get bullied by Microsoft DO provide open-source drivers. Intel, Atheros, Realtek, AMD, lots of others.
However Microsoft made sure Linux devices cannot be sold by usual popular vendors like Dell/Asus/Lenovo etc. Anyone who tries selling Linux laptops or desktops gets their windows licensing screwed up. This is bullying and monopolistic pratices at their worst, and they still continue. Similar with Intel/AMD- Intel effectively forces vendors to limit their AMD offerings.
Plese stop blaming this on Linus and his insistence on open-source drivers.
--Coder
Not sure how long ago that was. But each LibreOffice release improves MS format support.
So you might want to give it another try.
On the other hand MS office format is so screwed up that there will always be bugs and warts...
--Coder
I just wanted to say- Linus is right regarding driver model.
I do NOT want binary blobs running in kernel mode on my machine. They screw up both stability and security of the system. And OEMs who cannot provide open source drivers can go fuck themselves.
If not for MS monopoly and bullying of OEMs, Linux would have had good driver support from OEMs ages ago. Don't blame Linus for problems caused by Microsoft. Any OEM who tries to sell both Microsoft and Linux systems gets visited by Microsoft and stops selling Linux systems very soon. Because of that quality drivers never get provided by OEMs.
I do agree with your doubt that SteamOS has a future. Valve should have shipped SteamBox after all the hipe. Now this looks like another piece of vaporvare.
--Coder
It's insecure ON THE CLIENTSIDE. Nobody uses it on the client-side any more. Applets are dead and have been for years. Clientside features are still around only to support some crap legacy apps which should have died years ago.
And on server-side, it's as secure as anything. Probably more secure, as you get none of the memory issues or buffer overflow issues or other issues C/C++ has had for years.
--Coder
War in South Ossetia/Georgia. War in Ukraine. Ongoing civil war/occupation of Chechnya, and he played quite a big part in that. You could argue that 2nd Chechen war was effectively started in order to make Putin popular and put him in power.
How has he been a better world citizen. He's been as bad as USA, probably more.
And I'm not saying this to praise USA. As someone else said, this is a choice between a thug and a crook.
Well, ok, unless you count the whole mass surveilance business. And then other shenanigans created by USA corporations. But I could argue Putin would have done the same and more, except his hands were too short- Russia is not as powerful as USA, and not as technologically advanced.
--Coder
Ok, so you have several reasonably well maintained open-source (or close) things running with same JVM. Good for you. In your use-case, you only need one VM.
Now try running some legacy enterprise crap from 2003 which hasn't been touched for last 10 years on JDK8. And now imagine it uses JNI.
--Coder
All this hydrogen crap is done for only one reason that I can see- to keep oil and related companies in business. You still need some company to manufacture hydrogen, you still need complex transportation, you still need complex filing stations, and none of that you can do yourself. It's exactly the same business model, very similar infrastructure and process as dealing with gasoline. I.E. business as usual.
Purely battery electrical vehicles give customers control of charging their cars. You only need a charging station if you are on a long range journey. This will make lots of existing businesss obsolete, and it will be fought tooth and nail by the established companies. They will "invent" useless crap like corn alcohol or hydrogent to confuse the market and to slow down proliferation of purely battery electrical vehicles.
Theoretical research behind this- fuel cells and direct chemicals to electricity transformation with water as a byproduct is a cute idea, but it's very inpractical. Total energy efficiency of the whole system is low, transportation of hydrogen is tricky, and fuel cells are expensive. And it doesn't give you home-charging flexibility...
--Coder
One big problem with Linux on Desktop is lack of proper hardware support out of the box.
Microsoft and its monopolistic practice of strong-arming hardware vendors is directly responsible for a lot of it.
--Coder
I've lived under Soviet Union. It wasn't much fun. I'm definitely NOT a communist, even though Soviet union wasn't really communist.
I don't pretend to know the solution. But I'll be the first to say that the current system of corporate demoracy is broken and must be improved.
I also believe that the solution will probably depend heavily on individual freedoms, and keeping computing, communications and the internet free and private. The alternative is a totalitarian regime backed by modern technology and that is the scariest thing I can imagine- and we are rapidly moving in that direction.
--Coder
I just love this way of thinking. Oh, they are being dicks and screwing people over to make money. Well that's ok then...
I know businesses and corporations, most of the big ones at least, are being dicks to make money. That is still NOT OK. I know it's the "usual" way to do business. But it's still NOT OK. I know that's the way things have been for a very long time. That still doesn't make it OK.
And I do know Linux has it's share of problems, especially on desktop for newbie users. That still doesn't make it OK for Microsoft or any other organization to be dicks.
--Coder
Yes it does. And that's the problem with corporations and capitalism in general.
Corporation by design is supposed to do one thing and one thing only- earn money for shareholders. All other concerns basically do not exist. Corporations do not have morals, they cannot have morals, and yet they are legal persons. If you were to do a personality profile on corporate behaviour- you'll find they all act as maniac psychopats. Corporations will hapily pollute, externalize costs, screw up communities, bribe & corrupt as long as they can get away with it- and usually they can. If they cannot do it in the West, they'll find some poorer country and do it there.
While a corporation is small, you could argue that it follows moral standards of the founders. However, as soon as it gets bigger, it inevitably becomes evil. And that is because of the way we reward corporations and define their success. We don't consider a corporation successful because it cleaned something up or improved life, we say a corporation is successful because it earned record profits. Sometimes you can achieve both, but if people can be screwed over to improve profits, that will eventually happen.
--Coder
Microsoft still has dominance (monopoly) of desktop OS and office software. They still have incompatible office formats. They still corrupt international standards organizations. They still have the mindset of "Microsoft way or the highway". They still bundle their OS with most computers and vendors that want to sell computers without Windows still get in trouble. They still screw up their mobile phone partners.
They are still as evil as they used to be. They missed the boat with search/internet services and mobile- so they have a weeker position now. And now we have other evil companies like Apple and Google, and other evil organizations like NSA and GCHQ that affect the internet and computing world. But given emergence of new evils and reduction of power of Microsoft does not make them less evil.
--Coder
http://en.wikipedia.org/wiki/R...
No other environment was as absurd to facilitate creation of jokes as Soviet Russia.
--Coder
I prefer people who swear and yell at me to people who sit there doing nothing while bad things are happening. Or people who sit there and hate you silently and scheme behind your back. Or people who do the wrong thing just to avoid conflict and it ends up tanking the project. Or people who always quietly do what they are told instead of saying "this is wrong, this idea is stupid, we need to do things differently".
There are much worse things than swearing and being offensive, especially if soneone deserves it.
Getting results is what's critical. Being nice is a nice to have, but ultimately less important. In other words I'll take competent assholes who get things done over impotent nice guys. And competent assholes tend to stop acting like assholes when you earn their respect.
On the other hand, I would be reluctant to work with an asshole who's being an asshole without a good reason just because he likes hurting people. That is wrong. But this is now what we are talking about here- I never heard Linus being like that.
--Coder
I think you can flash Nexus 4 with Jolla and play with it. Not sure how risky or hard it is. And it's half-broken on Nexus4 AFAIK.
http://www.jollausers.com/2014...
If you want a cheap phone with Linux, I wonder how much is a Nokia N900?
--Coder