Are you actually using xterm, or is it one of the libvte based terminals (gnome-terminal, xfce4-terminal, ect.)?
I'm using xterm. gnome-terminal is actually faster because it uses Xrender to draw the text, while xterm relies on Xft. Under fglrx gnome-terminal is awesomely fast, with no flicker at all. Unfortunately, vte-based terminals flash the gray background when you switch to them. They also have that ugly resize handle in the lower right corner that nothing can remove. Oh, and gnome-terminal captures F10 (which you need to quit Midnight Commander). So, no thanks. With fglrx xterm is fast enough.
People also pay a lot of money for an original Van Gogh painting, even though a good modern painter can make you a copy that only an expert would be able to distinguish from the original. If appearance were the only thing that mattered, the price difference wouldn't have been as great.
Intel graphics on Linux uses the open source Mesa/Gallium stack, which still has significantly lower performance than the proprietary drivers. Frankly, I'm wondering if the GPU is being used at all. I have a Radeon 6870, and with open source radeon driver I don't see any acceleration. For example, a full-screen xterm with Midnight Commander takes a full half-second to draw the frame with only 160x50 char cells. With fglrx 12.8, the drawing time is not noticeable at all. The Mesa radeon feature matrix says R600 should have full GPU acceleration for all X calls, but something is just not working right. I'm guessing something similar might have happened with the benchmarks.
Unfortunately, he fails to mention the often forgotten fifth horseman, who brings about a decline in innovation. From what I see in the news today, he may already be here. Doom is certainly upon us!
There is a lot of great content and features in homemade lunches, and they are a great way to stay in contact with friends and enjoy eating, but there is also a potentially dark side. Along with inappropriate content, there is a tendency to share more than should be shared, and not everyone follows proper nutritional and safety guidelines.
The solution is obvious: open a cafeteria on the premises and make it illegal to bring any outside food. This way total control over food quality and nutritional content can be achieved. Additionally, making the cafeteria highly visible uses public shame and humiliation to limit inappropriate activity, such as enjoying food.
T-mobile prepaid plans can cost as little as $10/year. Once you have bought $100 worth of minutes, the top-up period increases to 1 year with the smallest amount being $10. No, there is no data, but if you're on a budget you can always find free wi-fi somewhere.
We already "reinvented" the toilet. It's called the composting toilet. You can buy it on amazon, or find plans on google and make one yourself. Now, if more people would buy them, mass production could get the cost down. The SunMar one must be assembled by hand or something, with the price as high as it is.
2 factor authentication is unacceptable for anything that's frequently used. If you log in to your online banking account once a month, it's ok to jump through a few extra hoops for security. But for something you do every day, or several times a day like email, any extra barriers are unacceptable. I don't even want to enter my password more than once a day, why would I go through the incredible hassle of 2 factor authentication?
When you go to www.microsoft.com, the only reason you can expect to get Microsoft and not a phishing site is that certificate auto-checked by your browser.
The reason I expect Microsoft is that I know that it owns the domain and that unless my computer has already been hacked, the DNS record will accurately get me to that site. Most of the time this works.
The certificate, on the other hand, does not give me any such guarantee. Yes, the browser can verify the signature, which basically means that the certificate was signed by a CA. The browser can not verify that the site is owned by Microsoft because it doesn't know what Microsoft is. The site could be just as easily owned by "Microsoft ", and be a phishing site. The browser will happily report that the certificate is valid and that you're secure. Only you can verify it by actually reading the certificate (which you are probably not qualified to do; see possible gotchas in my original post), which is something nobody does.
But again, automatically under the covers, your browser has verified that this conent was signed by Microsoft. Same level of assurance as before, and same level of user-obliviousness to the whole process.
No, the browser can only verify that the content was signed by someone claiming to be Microsoft. A certificate only verifies that the content was not tampered with. You still need to somehow verify that Microsoft owns the certificate, which can not be done automatically. With DNS, the certificate issuer can at least check the company name against the website owner records. If you've only got content floating around, the origin can no longer be determined because the trust in the certificate must be established first. You can do this in some offline manner by physically going to Microsoft and asking for a key fingerprint. Unless you do this, you will not be able to distinguish between Microsoft's certificates and those from someone claiming to be Microsoft.
> How do you today validate the identity of any host? Certificates.
Only geeks read certificates. The reason being that verifying the certificate takes extra work. When I go to www.microsoft.com, I can be pretty sure that what I'm getting there is coming from Microsoft. If you only have a certificate to go on, you have to verify that the certificate was issued by a valid CA, that the name of the company matches. Can you be sure that there are no spaces at the end of that name? Are you sure the unicode encoding is standard? Is this the only company with that name? Microsoft is a big name; a smaller company name is easier to slip in. Would one CA check the name with all the other CA's before issuing a certificate? What user is going to go through all this extra work for every site he visits? Get real. CA verification just can not be automated and the amount of work it requires makes the task out of reach of the majority of users.
With DNS at least the domain is guaranteed to be unique. If you type it in correctly, you will get to the right place. www.companyname.com is usually owned by companyname. If your DNS is not compromised (which requires an existing security breach already), this is good enough security with minimum hassle.
Except that the location of the data is the primary way of verifying the identity of the author. How am I supposed to know that the game patch I have just downloaded came from CompanyX, rather than from some malware spammer? I go to www.companyx.com and get the patch from there. Sure, there's DNS spoofing, MITM attacks, etc., but in general going to the authorized location is a pretty reliable method of identity verification. With this content-centric network, there is no way to reliably get the keys to verify the integrity of the data. After all, anybody can claim to be CompanyX, provide the fake keys and fake malware-riddled patches. Accountability is required for security, and currently network location is the simplest way to implement accountability.
User: Nina, what is my credit card balance? Nina: Your credit card balance is $744.12 User: Nina, pay my credit card bill Nina: Transferring $74,412.00 from checking to credit card. Nina: Error. Insufficient funds in account. Nina: Searching for alternative funding methods Nina: Initiating Nigerian scam. Nina: Email sending complete. Awaiting results. User: Uh, abort! abort! abort! Nina: Abort what?
Job description: evaluates energy of subluminal particles. Makes time-critical decisions and pass/fail determinations on them. Operates retractable gate assembly. Supervises particle passage through the gate. Maintains the integrity of the gate assembly through preventive maintenance.
Job requirements: Ph.D. in Physics with 15 years of experience specializing in quantum mechanics and entanglement. At least 10 years of industry experience with retractable gates. Minimum 12 years of experience required with FPGA controller development and.NET programming. Must be able to make quick decisions under pressure (23 kPa or higher) and possess excellent interpersonal communication skills. Must be able to repeatedly lift up to 34 ng.
Maybe this app is not just to receive a text message. Maybe this app really is Mitt's VP, and he needs a few million smartphones to run the neural nets.
When people don't put any useful information in their messages, you don't need to find those messages 2 days later. In fact, you may as well skip reading them the first time, and just file under "Miscellaneous".
There is no cesspool of scum on the internet leaching off add revenue. A cesspool of idiocy is more like it. People who take your money are not the problem - you are the problem. Advertising does not work. In the age of the internet, if you want to sell something, all you need to do is make it easy to find. Advertising does not do that. Advertising clogs the pipes with crappy messages telling me to buy without telling me what you are selling. List the damn product on amazon. Sell it on eBay. Make it show up on a search. And tell me what the damn thing is and how much it costs. These two things are the only things I need to know to make a purchasing decision, and advertising goes to incredible amount of effort to hide them from me. Let me find it. Tell me what it does. Tell me what makes it different from the alternatives. Is it the cheap one? The best made one? The one with feature X? The one with feature Y? The locally made one? Give me the damn facts. Stop telling me what I should think about it. Stop buying goddamned ads!
It isn't the MBA that makes the boss a bad manager. It's the forgetting of where money comes from. An MBA is content to run the company quarter to quarter, taking action solely based on the profits generated, and forgetting that a company does not just print money like a factory. A company makes money by making something valuable that people want to trade their money for. In a small company, this is obvious, because you are making those valuable things yourself and observing the process firsthand. Once you have MBAs on board, you no longer do. You stop thinking about the company and what it makes. You start thinking of it as a money printing press. Good products can keep this going for a while, but the MBAs who care about profits rather than the value that generates them will destroy it as surely as they will sell the ship's engine to bolster this quarter's bottom line only to go bankrupt in the next one.
Ok, Theo, let's hear your solution then. I, for one, would really love the ability to secure boot a Linux system, knowing that every component is still exactly as it was when I last checked it and nobody has sneakily installed malware that secretly emails spam to all my friends and my financial details to carding sites. Trusted hardware root and signed executables are good things. So tell us then how we are supposed to get them? You obviously do not believe that we should be using Microsoft's key to sign the bootloader. What should we use? Keep in mind that while you have no difficulty installing your own keys in the BIOS, to a typical user (you know, those poor shmucks who get infected most often) that's deep voodoo. Also keep in mind that while Microsoft has the pull to get its key loaded by default into all the TPM chips manufactured, Ubuntu does not. Neither does BSD.
I always wondered why the wheels of large airplanes are unpowered. In the air, you need to push air to go, but surely on the ground it ought to be more efficient to use an electric engine from a Prius or something to taxi around. Anybody know why this is not done?
By these criteria, I'm the greatest poker player alive. I have no "tells" of any kind. When I look at my cards, I haven't the faintest idea whether the hand is good or bad, so I couldn't tell you even if I tried. With my 10 luck stat and a silver dollar, I am unbeatable.
Slashdot Mirror
I'm using xterm. gnome-terminal is actually faster because it uses Xrender to draw the text, while xterm relies on Xft. Under fglrx gnome-terminal is awesomely fast, with no flicker at all. Unfortunately, vte-based terminals flash the gray background when you switch to them. They also have that ugly resize handle in the lower right corner that nothing can remove. Oh, and gnome-terminal captures F10 (which you need to quit Midnight Commander). So, no thanks. With fglrx xterm is fast enough.
People also pay a lot of money for an original Van Gogh painting, even though a good modern painter can make you a copy that only an expert would be able to distinguish from the original. If appearance were the only thing that mattered, the price difference wouldn't have been as great.
Intel graphics on Linux uses the open source Mesa/Gallium stack, which still has significantly lower performance than the proprietary drivers. Frankly, I'm wondering if the GPU is being used at all. I have a Radeon 6870, and with open source radeon driver I don't see any acceleration. For example, a full-screen xterm with Midnight Commander takes a full half-second to draw the frame with only 160x50 char cells. With fglrx 12.8, the drawing time is not noticeable at all. The Mesa radeon feature matrix says R600 should have full GPU acceleration for all X calls, but something is just not working right. I'm guessing something similar might have happened with the benchmarks.
Let's not confuse what a company is worth with what a company costs.
Unfortunately, he fails to mention the often forgotten fifth horseman, who brings about a decline in innovation. From what I see in the news today, he may already be here. Doom is certainly upon us!
There is a lot of great content and features in homemade lunches, and they are a great way to stay in contact with friends and enjoy eating, but there is also a potentially dark side. Along with inappropriate content, there is a tendency to share more than should be shared, and not everyone follows proper nutritional and safety guidelines.
The solution is obvious: open a cafeteria on the premises and make it illegal to bring any outside food. This way total control over food quality and nutritional content can be achieved. Additionally, making the cafeteria highly visible uses public shame and humiliation to limit inappropriate activity, such as enjoying food.
T-mobile prepaid plans can cost as little as $10/year. Once you have bought $100 worth of minutes, the top-up period increases to 1 year with the smallest amount being $10. No, there is no data, but if you're on a budget you can always find free wi-fi somewhere.
We already "reinvented" the toilet. It's called the composting toilet. You can buy it on amazon, or find plans on google and make one yourself. Now, if more people would buy them, mass production could get the cost down. The SunMar one must be assembled by hand or something, with the price as high as it is.
2 factor authentication is unacceptable for anything that's frequently used. If you log in to your online banking account once a month, it's ok to jump through a few extra hoops for security. But for something you do every day, or several times a day like email, any extra barriers are unacceptable. I don't even want to enter my password more than once a day, why would I go through the incredible hassle of 2 factor authentication?
The study fails to mention which celebrity they were asking about. Look at the picture and it will be obvious why the study got the results it did.
The reason I expect Microsoft is that I know that it owns the domain and that unless my computer has already been hacked, the DNS record will accurately get me to that site. Most of the time this works.
The certificate, on the other hand, does not give me any such guarantee. Yes, the browser can verify the signature, which basically means that the certificate was signed by a CA. The browser can not verify that the site is owned by Microsoft because it doesn't know what Microsoft is. The site could be just as easily owned by "Microsoft ", and be a phishing site. The browser will happily report that the certificate is valid and that you're secure. Only you can verify it by actually reading the certificate (which you are probably not qualified to do; see possible gotchas in my original post), which is something nobody does.
No, the browser can only verify that the content was signed by someone claiming to be Microsoft. A certificate only verifies that the content was not tampered with. You still need to somehow verify that Microsoft owns the certificate, which can not be done automatically. With DNS, the certificate issuer can at least check the company name against the website owner records. If you've only got content floating around, the origin can no longer be determined because the trust in the certificate must be established first. You can do this in some offline manner by physically going to Microsoft and asking for a key fingerprint. Unless you do this, you will not be able to distinguish between Microsoft's certificates and those from someone claiming to be Microsoft.
> How do you today validate the identity of any host? Certificates.
Only geeks read certificates. The reason being that verifying the certificate takes extra work. When I go to www.microsoft.com, I can be pretty sure that what I'm getting there is coming from Microsoft. If you only have a certificate to go on, you have to verify that the certificate was issued by a valid CA, that the name of the company matches. Can you be sure that there are no spaces at the end of that name? Are you sure the unicode encoding is standard? Is this the only company with that name? Microsoft is a big name; a smaller company name is easier to slip in. Would one CA check the name with all the other CA's before issuing a certificate? What user is going to go through all this extra work for every site he visits? Get real. CA verification just can not be automated and the amount of work it requires makes the task out of reach of the majority of users.
With DNS at least the domain is guaranteed to be unique. If you type it in correctly, you will get to the right place. www.companyname.com is usually owned by companyname. If your DNS is not compromised (which requires an existing security breach already), this is good enough security with minimum hassle.
Except that the location of the data is the primary way of verifying the identity of the author. How am I supposed to know that the game patch I have just downloaded came from CompanyX, rather than from some malware spammer? I go to www.companyx.com and get the patch from there. Sure, there's DNS spoofing, MITM attacks, etc., but in general going to the authorized location is a pretty reliable method of identity verification. With this content-centric network, there is no way to reliably get the keys to verify the integrity of the data. After all, anybody can claim to be CompanyX, provide the fake keys and fake malware-riddled patches. Accountability is required for security, and currently network location is the simplest way to implement accountability.
User: Nina, what is my credit card balance?
Nina: Your credit card balance is $744.12
User: Nina, pay my credit card bill
Nina: Transferring $74,412.00 from checking to credit card.
Nina: Error. Insufficient funds in account.
Nina: Searching for alternative funding methods
Nina: Initiating Nigerian scam.
Nina: Email sending complete. Awaiting results.
User: Uh, abort! abort! abort!
Nina: Abort what?
> monster.com
Job title: Maxwell's demon
Job description: evaluates energy of subluminal particles. Makes time-critical decisions and pass/fail determinations on them. Operates retractable gate assembly. Supervises particle passage through the gate. Maintains the integrity of the gate assembly through preventive maintenance.
Job requirements: Ph.D. in Physics with 15 years of experience specializing in quantum mechanics and entanglement. At least 10 years of industry experience with retractable gates. Minimum 12 years of experience required with FPGA controller development and .NET programming. Must be able to make quick decisions under pressure (23 kPa or higher) and possess excellent interpersonal communication skills. Must be able to repeatedly lift up to 34 ng.
Compensation: 42 kJ/hour
When it asks you for the name, just enter "Chuck Norris". It won't dare ask anything else.
Maybe this app is not just to receive a text message. Maybe this app really is Mitt's VP, and he needs a few million smartphones to run the neural nets.
When people don't put any useful information in their messages, you don't need to find those messages 2 days later. In fact, you may as well skip reading them the first time, and just file under "Miscellaneous".
So, when can we see some awesome footage of these mass produced robotic overlords trashing Tokyo? It's traditional.
There is no cesspool of scum on the internet leaching off add revenue. A cesspool of idiocy is more like it. People who take your money are not the problem - you are the problem. Advertising does not work. In the age of the internet, if you want to sell something, all you need to do is make it easy to find. Advertising does not do that. Advertising clogs the pipes with crappy messages telling me to buy without telling me what you are selling. List the damn product on amazon. Sell it on eBay. Make it show up on a search. And tell me what the damn thing is and how much it costs. These two things are the only things I need to know to make a purchasing decision, and advertising goes to incredible amount of effort to hide them from me. Let me find it. Tell me what it does. Tell me what makes it different from the alternatives. Is it the cheap one? The best made one? The one with feature X? The one with feature Y? The locally made one? Give me the damn facts. Stop telling me what I should think about it. Stop buying goddamned ads!
It isn't the MBA that makes the boss a bad manager. It's the forgetting of where money comes from. An MBA is content to run the company quarter to quarter, taking action solely based on the profits generated, and forgetting that a company does not just print money like a factory. A company makes money by making something valuable that people want to trade their money for. In a small company, this is obvious, because you are making those valuable things yourself and observing the process firsthand. Once you have MBAs on board, you no longer do. You stop thinking about the company and what it makes. You start thinking of it as a money printing press. Good products can keep this going for a while, but the MBAs who care about profits rather than the value that generates them will destroy it as surely as they will sell the ship's engine to bolster this quarter's bottom line only to go bankrupt in the next one.
Be sure to also avoid going to a movie theater to see Batman.
Ok, Theo, let's hear your solution then. I, for one, would really love the ability to secure boot a Linux system, knowing that every component is still exactly as it was when I last checked it and nobody has sneakily installed malware that secretly emails spam to all my friends and my financial details to carding sites. Trusted hardware root and signed executables are good things. So tell us then how we are supposed to get them? You obviously do not believe that we should be using Microsoft's key to sign the bootloader. What should we use? Keep in mind that while you have no difficulty installing your own keys in the BIOS, to a typical user (you know, those poor shmucks who get infected most often) that's deep voodoo. Also keep in mind that while Microsoft has the pull to get its key loaded by default into all the TPM chips manufactured, Ubuntu does not. Neither does BSD.
I always wondered why the wheels of large airplanes are unpowered. In the air, you need to push air to go, but surely on the ground it ought to be more efficient to use an electric engine from a Prius or something to taxi around. Anybody know why this is not done?
By these criteria, I'm the greatest poker player alive. I have no "tells" of any kind. When I look at my cards, I haven't the faintest idea whether the hand is good or bad, so I couldn't tell you even if I tried. With my 10 luck stat and a silver dollar, I am unbeatable.