It isn't as bad as it used to be. There are far fewer security issues found these days, and they don't tend to botch major releases the way they used to. However it's succumbing to bloat, each release bigger than the last.

It only applies security updates automatically if the user the PHP scripts run as has write access to the WordPress directory. I never allow that. I'd rather have the security of knowing a WordPress exploit can't modify the WordPress installation than the convenience of updates through the web UI.

This latest exploit also depends on a logged in administrator viewing the malicious comments to do the really nasty stuff. This is another very good reason to only ever log in as an administrator when you absolutely must. Use a non-admin user for writing content and moderating comments.

Compile time is important - you can be more productive if your edit/compile/test cycle is faster. This is especially true with test-driven development.

I know I should've expected it given it's on medium, and it's been submitted to /. by its own author, but that's a really bad article. It's full of irrelevant details, stupid comparisons and misleading crap. I understand the concept of "science evangelism" but could you please do it without acting like a total buffoon?

This is where the world is going with per-application library installations on Windows, things like Docker on Linux and application bundles containing libraries/frameworks on OSX. It guarantees that you don't get unexpected application breakage on a library update, but in means a library update requires work for every application using it.

Yeah, my ISP gives me a static /56 and a dynamic /64, so that's a lot of space to scan. My Windows boxes randomise addresses for outgoing connections, so you can't trivially get addresses to scan by sniffing egress traffic. And on top of that my router acts as a firewall and only allows incoming connections on whitelisted address/port combinations.

You know, I liked the GNAA back when they had press releases relating to recent event, and up-to-the-minute trolling for news stories. But now it's all stale copy-pasta. You aren't the GNAA, you're just lame imitators.

Nope. It's 'crony capitalism'

Call me cynical, but I don't think I've ever seen any other kind of capitalism.

Is Bennet still allowed to post? I haven't seen any of his ramblings for a while.

US is 115V 60Hz. Europe/Aus/China is 230V 50Hz. Japan is 100V 50Hz or 60Hz depending on the area.

No, you're describing the "do not track" header, and that's not what this is about. This is about circumventing the "accept 3rd-party cookies" setting. Google used a nasty piece of JavaScript to simulate a user form submission so they could store a cookie that would otherwise be rejected.

Thanks. I've registered three domains with gandi, including a .com, a .cn and a Chinese script domain name. Seems good so far, I like being able to edit zone file fragments in BIND9 format in addition to the "friendly" editor.

Haha very funny. Just one problem: none of my spam actually has anything to do with that. Most of it has something to do with HARP, energy independence, diabetes, saving on mortgages and losing weight. I assume these are things Americans worry about.

Seriously though, I will be doing business in China and need Chinese domain names. I honestly don't know who a reputable .cn registrar is. Hosting isn't a problem.

I'd be happy to recommend NameCheap for .com and .com.au domains as well. But I have a question about domain name registration myself: I'll soon have to register some .cn domains, does anyone know a good registrar for .cn domain names with IDNA support?

It makes you vulnerable to MITM attacks, since when you connect to your camera, you can't be sure it's actually yours and not just another device with the same well-known certificate/key.

It means that if you use a key exchange mechanism that encrypts the session keys with the server key then someone who's extracted the private key from one of these can decrypt communications with any of the cameras using the same certificate/key.

If you use a key exchange mechanism with forward secrecy, extracting the private key wouldn't allow Eve to decrypt all your communications.