Comment Re:Is X security really a problem? (Score 1) 179
Even if we do, whan on earth makes you think Wayland is even a bit better?
Even if we do, whan on earth makes you think Wayland is even a bit better?
I do not believe that (things are getting better).
I would be really surprised if the real number of holes is going down significantly, the developers are making holes at the same time as these guys are finding them. Perhaps this temporarily gets the hole count down, but after five years the situation will be the same.
The OSS "mind" has been, for 20 years, "a fixed hole is a good thing". Why on earth would it suddenly change to "do not make new holes"?
One problem here is that the "multiple parties" are looking for holes to take advantage of, not to fix.
Another problem is that for example Linux is generating more holes per week than it is fixing, and the attitude sucks (https://lwn.net/Articles/538600/, https://lwn.net/Articles/313621/, etc).
If OSS were serious about security they would immediately use grsecurity and managed runtimes (JVM and like). I don't expect either happening anytime soon.
I would be surprised if every single american made router can NOT be attacked by NSA to gain management console. Which means thay can inspect and re-route your data at will. And they can get the access inside your intranet. Same with british made (is there any?), probably israeli and maybe some chinese. IMHO best bet would be german or perhaps scandinavian ones. Same with VPN, german VPN is very likely without intentional holes.
When someone "bit rich" dumps bitcoins he has, the others lose money. When this happens several times, people should learn this is not sane money. Should, but probably will not.
My moral prohibits me from taking advantage of the buyer, no matter whether I "misrepresent" the goods or not.
If I have the knowledge that something is not as valuable as the price is, due to reasons the buyer does not understand, I just skip it. I will not sell a lemon car even if the buyer does not have the mechanical knowledge to find out it is lemon. I will not sell lemon eletronic coins because I know they are lemon.
I do not expect you to hold these values.
It's not unethical to sell people stuff that they want at a price they deem fair.
On this we just have to agree to disagree. Most frauds are done with this principle in mind.
Note that I am not saying you should not do it, just that I will not myself do it.
This is exactly why I think Bitcoin will collapse. Or perhaps, "should". There are quite a few with high percentage of all the money, one with at least 20%.
Sooner or later some of them are going to dump. Getting $1'000'000 for "nothing" is very tempting.
Later, much later, the gullible are going to understand they were ripped of, several times. Then, again it might be so that they never understand as they see Bitcoin as "mathematically proven" money missing the problems entirely.
I hope you have luck. I just cannot do the same for ethical & moral reasons. Damn, parents!
Or considerably faster, as each process can be given own CPU.
If there is such a need to use libraries that the separation cannot be done cleanly, you might be using the languages or libraries wrong and probably get screwed.
For example I recall Java got faster unzipping after C zlib was replaced with native Java. This although it is likely that the C lib was "faster". YMMV, of course.
Personally I would always try to partition the problem into separate processes. Even if it is somewhat slower. For several reasons (architecturally better, more maintainable, easier to test, easier to understand and fix, network transparency, protection from other parts,
Use sockets. In majority of cases the performance is more than good enough, especially if designed properly, and you get network transparency "for free".
Sure there are cases where sockets are not appropriate, but IMHO they are far too seldom used.
True, but stupid. Usually the training would take less time than the hiring process.
Besides, this is sure way to get rid of smart people.
In Finland the law says that after layoffs company must hire the laid off people if they are suitable (during 9 months after the layoffs).
This is one way to make sure the laid off are not "suitable". Or that only a specific (laid off) person is suitable.
Utter bullshit.
The fertility rate in Norway is below two, has been since 1970s and is likely to stay for the foreseeable future.
How do you make secure authentication in banks?
You do know people in UK refuse to have ID cards of any kind, therefore in bank a gas bill is considered "identification".
In Finland a (very old) driving licence suffice - the picture usually is so bad as to pass if you look even a bit like.
Banks are not always the culprit.
I once tried DLNA as my blueray player claimed it could do it. What a piece of shit DLNA is, for example two clients won't play same content unless you are lucky (same format content with same settins in the DLNA server). Besides, the implementation was horribly broken.
Now I use Rikomagic as my media player, and have Logitach remote keyboard. The Ricomagic is powered by USB from my amplifier. It also can do whatever Android can, e.g. I have installed some free net-tv applications into it.
The optimum committee has no members. -- Norman Augustine