Comment Re:Politcal Games (Score 1) 172
Were you around for most of this curve? Did you find that time pleasant?
Were you around for most of this curve? Did you find that time pleasant?
That's reassuring. I'll have to look at the issue in more depth.
The primacy of apps over web is something to consider. That is, apps are more prominent and more capable.
Okay, granted, it depends on context.
Within the realm of Apple systems that run only apps we have "favoring complete obedience or subjection to authority as opposed to individual freedom" and "the act or practice of supervising the manners or morality of others".
Part of the problem is that opt-in commercial systems become de facto social requirements. Internet Explorer, Office, Facebook, LinkedIn, smartphones... It's hard to navigate society without opting in. I use none of these things, and having opted out puts pressure on me. People around me think I'm weird (because I am strange, I am unusual and hard to understand) and they feel judged by my refusing to do what they do (this is similar to how just being a vegetarian is threatening to others) and that puts strain on my relations.
So I'm a component of a larger organism, society. What society chooses, whether enforced intentionally, using written rules and men with guns, or enforced incidentally, by the fact of social pressure, is what I am subject to. If society ignorantly opts to relinquish freedom by adopting some corporation's politically- and morally-constrained walled garden, they apply that authoritarianism and censorship to me as well.
I'm still pissed off about Internet Explorer.
You reject the quality and/or political message of the app, but miss the issue that Apple alone gets to say what's appropriate. Apple's authoritarian censorship is a "political game".
A belittled as we may want to think of it ("silly little platform"), it's actually big. You can reach a lot of people through Apple apps.
It's hard for most to understand the harm of having a corporation, a single entity decide what's acceptable.
And it's especially hard for an overwhelming majority to grasp the concept of distributed, incremental contribution to problems and how one's individual actions play in.
100 bandits descend on a village and rob the 100 villagers of their lunches, each bandit taking the 100 bean lunch from a single villager. The villagers lament in hunger. Later, the bandits experience qualms over harming the villagers so. Luckily, a clever bandit devises a solution: take only one bean from each villager. With 100 villagers between whom to spread the theft, each bandit gains a full meal without harming anyone noticeably.
Couple the difficulty of grasping this concept with the difficulty of knowing that there's harm being done in the first place and who can you expect to take the right actions except only the smartest?
It seemed like over the top, effusive behavior, but that didn't make sense to me in the context of what seemed to me Linus's history of being an effective leader. I had to investigate more closely. It looked at first like it was the same as the vitriolic feeling-blatting that de Raadt does. And that was disappointing.
But given the context you provide it makes more sense. Flogging with an edge of contempt might in fact be an effective tool for efficient management with such a large and public team. So long as it's done right.
Looking at the chain of emails I see that the contempt is for the thinking and the behavior. Failing to uphold the sanctity of the interface, blaming userspace, continuing to fail to own the error. Mistakes and mistaken thinking that threaten the method and operation of Linux kernel development. But it's the behavior and thinking that are contemned, never the person. (This is what I mean by an "edge" of contempt.) And this is an important distinction to make, and one that de Raadt frequently fails at. de Raadt conflates misbehavior or stupid thinking with the person's being valueless and so lashes out at the person. It's the thinking or behavior that needs stomping on, not the person. If you confuse the two, you end up attacking people instead of mistakes, which brings too much collateral damage. Distinguishing behavior you want eliminated from the actors themselves makes the difference between building a culture of hate and domination as you have with OpenBSD and a culture of tough-as-nails get-it-done as you have with Linux.
There may be an excess of references meaningful only to small ingroups. And that is certainly worthy of fighting against. (And I mean small ingroups inside the already small audience of geeks interested in cutting-edge stuff.)
This particular situation may not be the best to rail against, however. The Duke Nukem 3D references turn out to be valuable within the target audience. (Target audience being all of us computer nerds.)
Duke Nukem 3D is
But, yes, otherwise I agree that references should be kept as meaningful and inclusive of the overall target audience, rather than degenerating into having ingroup-only usefulness, serving just the aging population or any such group (conceivably specific tech, younger age, specific game, etc.).
Point taken about shame.
He seems unwell to me, too. But he must be sufficiently well functioning to continue to afford a computer and a net connection. I'm curious as to how the story pans out.
What happens if you run a legitimate DNS server and a botnet spoofs source IPs in DNS requests to launder and amplify their attack by reflection off you (and countless other DNS servers)?
I've been seeing this come through my system and I don't yet have the sophistication to filter out the attacks. Not that I'm asking to be blacklisted, but
Edge filtering sounds like an important thing to implement.
What about general egress filtering? How feasible is that?
Speak of the devil.
And he comes and shames himself.
This is not exactly what the OP had in mind.
Fast removal may be a requirement that email anti-spam systems don't have, but that doesn't invalidate DNS as a delivery mechanism. You can update your listing at whatever frequency you see fit and you can set low TTLs on the DNS entries. As it turns out, XBL sets a 35 minute TTL. SpamCop's SBL sets 15 minutes.
Moreover, hosts that send any legitimate email are very few compared to hosts that send Web requests...
I think you're making a case against using a DNSBL, but I'm not sure how this point supports that.
I'm imagining something like how the XBL is run. Spamhaus is the aggregating, trusted third party. CBL and its multiple hosts, and NJABL and its multiple hosts, and possibly other providers collectively submit attack reports. Spamhaus publishes the result.
In any case, the exact delivery mechanism isn't as much the point as your more general idea is the point. The idea of facilitating individual systems in reporting DDoS attackers, aggregating the results, and publishing the aggregation is a good idea. I saw it as a mirror in essence of XBL etc.
The aggregated list should be data you can analyze and include as you see fit, not a judgement by the publisher, as if the publisher were the authority on whether reports are accurate. The list should state n systems have reported i address as attacking them within t time frame. The list subscribers should be able to score addresses by their own criteria.
Malicious reports by individual systems would be easy to ignore when compared to the many reports of systems actually being attacked. However, the list aggregator would do well to have some kind of trust relationship with the reporters, that is, having some additional verification of the reporters' trusthworthiness. I imagine a scenario where open reporting is subverted by a botnet directed to falsely report attacks.
"Backchannel" availability does seem like it would be a concern, but I don't know enough to speak to it.
That's simplistic.
Autonomous systems should have the ability to publish opinion and the ability to filter.
"Censoring is never right" as a response to reasonable filtering is like saying, "Every user should receive and read through all their spam."
Excellent idea.
You have described the XBL.
The Spamhaus XBL, or "Exploits Block List", is a DNSBL (DNS-served blacklist) that lists IP addresses of systems known to be infected or otherwise being used by malicious parties. ("The XBL is an automatic system whose detectors need to receive email (spam, worms, etc.) directly from the IP address so the connection data can be analysed to determine if it's a proxy or virus-spewer.") The blacklist is developed in a way primarily to be useful in reporting systems exploited to send spam, but the idea is exactly what you're referring to.
...you are nothing more than the sum total of your useful skills...
Are you saying that surgeons do more to benefit others than mechanics? Maybe at least you're saying mechanics do more to benefit others than the unemployed? Bothering to say these things means you are ultimately concerned with the what these occupations or people are achieving: benefit to humanity. Which means the thing really being valued is humanity itself. Distilled, it's actually sentience, minds perceiving reality, experiencing happiness or suffering. You care about the welfare of minds.
Even dogs, for example, have minds, though, it's not just humans. You care about whether a dog is suffering or happy. If a dog were trapped in a burning house and you could safely let it loose, you would. What useful skill does that dog have? Do they benefit humanity more than unemployed hipsters?
Maybe you're inclined to make an argument that dogs benefit humanity so you can try to defend the idea further. What if you had a dog that was dangerous to all other people and animals, but it was happy being kept in a small cage by itself? It more or less lacks value at that point, but would you really feel good about killing it?
"Pay no attention to the man behind the curtain." -- Karl, as he stepped behind the computer to reboot it, during a FAT
