It's another attack vector, on top of all the existing attack vectors.

The attack vector these electronics close is hotwiring under the dash. This kind of attack doesn't happen as much as you think. More likely, people go for the GPS unit or something other item that's left out in the open, or your wheels and other easily-accessible parts. Stealing whole cars is rarer, unless you've got some collector's piece, and stealing whole cars via hotwiring is very rare. For stealing whole cars, there's a lot of low-hanging fruit, namely people who forget to lock their doors, people who more than crack their windows, or people who habitually keep the keys inside their car. And people who do steal whole cars for a living (usually for getting to less-accessible but more expensive parts) will have the equipment to be able to gain entry anyway, so it hardly matters.

The additional electronic security may close one or two attack vectors, but it doesn't close all of them, and certainly not the most important ones. So now the question becomes, is closing the one or two attack vectors worth the additional (literally) thousands of dollars worth of electronics as well as introducing an additional unknown quantity of electronic attack vectors?

From hacker's news, it seems this exploit is in PDF.js. If you're not running PDF.js, there's no security hole.

Their sun dials told them their time zone was off by half an hour.

And you know what, if government red tape and paranoia against the people it was meant to serve has caused the government's systems to be more vulnurable to hackers from abroad, they got what was coming for them.

I feel bad for the government employees who had their personal information compromised. I don't feel bad for having official correspondences and documents that otherwise would be encrypted exposed due to security holes.

If the government wants their systems secure, they're going to have to work to make sure everybody's systems are secure.

Of course, for those who don't know what I'm talking about, it's with regards to the NSA sabotaging standards and causing software bloat that results in unintended security holes (e.g. heartbleed).

For a Windows machine, that's not a very high bar, especially in 1997 and all the way until... well, it's a little harder today, but not that much harder...

The problem is persistence. If you get root, you can get firmware and nothing short of throwing the motherboard away would fix it. That's scary.

At the end of the day, the only way to update an airgapped machine is via sneakernet. USB, DVD, 3.5 floppy, it doesn't really matter. If you can beam an update into a machine via say, IR, it wouldn't be air-gapped.

If you have an entire air-gapped network, then any normal package manager would work. Just have to update the server via sneakernet and push the patch out from there.

Cue hack to create slow-motion tentacle porn in 5, 4, 3, ...

You don't even need to modify the hardware to make it serviceable.

Better question:

If the film was released as a movie, who would serve a longer prison sentence, the killer or the guy who leaked it on TPB?

That's because MS Word and L/OO Writer are not word processors anymore. They're WYSIWYG document creation tools, i.e. they attempt to combine text input, text management, and document layout into one tool.

Besides which, word processors aren't feature complete yet. Even advanced text-only word processors like Textpad and Notepad++ are constantly adding new features, and has a leg up on Word/Writer on things like search and cursor movement.

And with persistent connectivity, there's a whole new layer of features for everyone to add.

Kill either the percentage or the time part of the spec and it won't be nearly as specific.

And why the fuck is this shit in a markup language specification in the first place?

Personally, I find them a bit too gamy.

I'm afraid you're equating change with good.

Change is not the equivalent to good. Change is change. The only thing you know about change is that it's not "no change".

Trump is change. It's a big change. You get the possible benefits you've listed out. And you'll also get a raving lunatic on an ego trip. That's a marked change from the past 24-28 years.

But is it a good change? Because a big change can mean really good. And it can mean really bad. And since we're a little bad right now, really good would net us good, but really bad nets really, really bad.

Are the benefits of Trump's "big changes" worth the risk? That's for you to decide I guess.

My DNT: Noscript, and Ghostery.

If I really, really want to avoid being tracked, I'd switch to TOR. But that's for medical and other very private stuff.

FTFY

Initially, it was a success. People used it. There weren't a lot of people on it because of their invite-only policy, but its feature set sounded much more promising than Facebook.

The forced-integration with every other service, combined with the real name policy soured practically everybody. The nail in the coffin was when they started killing their services, irrespective of popularity *ahem* Reader *ahem*. A lot of people stopped using a good chunk of Google's services at that point.