If i go eat at a restaurant, I don't get to examine their entire cooking process, and i only have their word on what ingredient goes in. Sometimes shit happens, and sometimes there's lye in the iced tea http://kitchenette.jezebel.com... .

Now, if I get sick because a restaurant employee that's paid minimum wadge (if I'm lucky...it could just be an illegal who's getting screwed and thus doesn't care too much), well, there was a risk and I knew there was a risk. Nobody should expect to go to restaurants their entire life, especially small foodcourt places, and never get sick.

Now, if I DO get sick, and can pinpoint where it came from, I'm STILL GOING TO SUE THE FUCKING RESTAURANT TO OBLIVION (or at least, to the extent the law allows).

This is the same thing, except that the laws didn't evolve yet (because until recently, this wasn't a situation that deserved special cases).

Now even if you change the laws, you very well may never find the hacker. In the same way, a whole lot of rapists are never caught. But if you DO find the damn hacker, you sure as hell should have a case to toss the motherfucker in jail. And if you don't, you should be able to get the photos taken down, assuming you are in the jurisdiction of the hosting company (ie: don't sue Google, please...) In a lot of places, that last thing is NOT true. Even if you find the hacker, or can reach the hosts, its very possible no law applies to them. (at least no sex related ones).

One day society will evolve and sex won't be something that can make it harder to be employed, that won't get people embarrassed, etc, but right now, in many societies, it is the case. Until that change, the laws should be able to appropriately deal with it (ie: the recent issues in Mass where it was legal to take upskirt shots).

Thats the only problem here.

You can have something like Keypass on a dropbox account (or on your own server, ownCloud or whatever), then sync it on your mobile device and access it from there. If you lose the phone or dropbox gets hacked, someone can get your file...then they can start having fun brute forcing your ONE strong password you actually remember for the next 15 years, at which point you probably reset all the passwords anyway.

The main issue there is the input method. If you have it on your phone, you need to look the password and enter it. Entering a randomly generated 20 character password with your TV remote is something directly from hell. Even doing it with a keyboard is NOT fun.

correct horse battery staple may not be all that memorable...
but let say: "I've been married since 1995!!!" or "Man, I fucking love lamb curry~" are pretty easy to remember, and assuming everyone cares about different things, will be pretty darn hard to snatch. Go ahead and dictionary attack it all you want.

The problem with the hundreds of site is the big one. No matter what, even if my password is just 1 dictionary word, I'll never be able to remember it for each site. The closest thing you can do is have an algorithm that defers the password from the site's name or url or something, but thats not practical for the average Joe, and the variety of password rules for each site means it won't really work for all of them, then you have to remember the exceptions...

The password manager only needs 1 password, and the file could be anywhere (ie: different people will keep them in different places), making mass harvesting tricky. And you have to get to the file in the first place (ok, if everyone puts in on iCloud we're back to square 1...)

Getting people to create 1 strong password, and use the manager for the others is one thing.

Getting people to do it 50-100(!!!) times and remember all of them, for all the accounts and services people have to manage in 2014, is insane and won't happen.

I agree its definately an half solution, but its better than the alternative. The password could be biometric too, solving part of the issue.

IMO the biggest problem left is input of long, complex password. Typing out an extremely long password on systems where I can't copy paste (ie: my TV or on home appliances) is crazy.

I use keypass for my passwords. The thing is, as is well known, a huge attack vector is to compromise a service provider (let say Sony or Adobe), get a password database, then go and find all users who used the same password everywhere. I can have the strongest password EVAR!~, if I use it more than once, and someone who stored it improperly gets hacked, its over (thus why the moment a new MMO comes out, a bazillion people get hacked, because their account infos are in every password database available as torrents).

So that means, obviously, you need 1 password per service. Now, looking at my keypass file right now, and including "family" passwords (ie: accounts both myself and my wife need access to), I have _123_ distinct accounts. Some of them include stuff like my router's password, so let say I have 100~ passwords for 3rd party services.

100. A hundred fucking different passwords. These are just the ones I have needed in the last 1-2 months, from services like Hulu and Slashdot, to my town's website to pay taxes, going by banks for every one of my credit cards, and everything in between. It adds up.

No normal human being will be able to efficiently manage this amount of accounts and keep them all secure, keep up with which one recently got hacked to replace passwords, etc. The password managers are too complex for the average joe.

Want to make it worse? When I want to enter a password on my Nest thermostat, it takes fucking forever. Include a mistake or two and i just spent 15 minutes entering a semi-secure password. The Funimation channel makes me do the same thing on my TV. Its just insane.

So what does the average Joe without patience do? Of course, their password is now ABCD123. DONE.

Passwords are a flawed security mechanism, its just easy to implement. We need a new one.

It really depends in what industry or subset of an industry you're in... I had to work on implementing something like that once for legal at an extremely large (and famous, or rather, infamous) company. Lawyers needed to run full searches against all our documents very very quickly to go through the bazillion lawsuit threats we were getting on a daily basis to figure out if they had some weight or not. That very much required full text search.

There's a lot of popular things I've never heard about. The indexing/search space is actually pretty big, because its one of those things everyone thinks is trivial, until you need to actually do it in meaningful ways or scale. Almost everyone hits a big fat roadblock, and start looking for tools to do it (since its more or less a solved problem). For the longest time, Lucene was a defacto standard, but its fairly low level as far as indexing and searching goes, and everyone reinvented the wheel over it.

So then you got stuff like Solr and other commercial product. For a while, the only meaningful ones were Solr, Fast, Autonomy, Endeca, etc... Still, the field is large enough to have a big mix of both open source AND commercial solutions (the last 2 I mentioned above were often part of multi-million dollar contracts, and not because the VP of IT was a moron...), and even more recently it exploded with more solutions than one would expect.

Its pretty much a field on its own, so if you've never had that kind of problem or worked for a company who did (and was close enough to see it), you wouldn't have heard of it. Everyone else did though. Its a bit like content management systems (there's more than Wordpress...), ERPs, etc.

Yup. If this had to be done (I disagree, but let say it has to...), then you need a judge or something to make the call, not some random underpaid bozo making the call. The time it would take would also ensure a lot less requests go through...

People talked about how spam would make email useless and that we'd need a replacement. But spam filters have become pretty good, and my Gmail account is treating me quite well.

My phone however? I use a service to flag known spam callers and have them never reach my phone, but that only use numbers, not the content of the message. So I pretty much just whitelist, and everyone else has to leave a message, and I'll call them back. Since I get a lot of crap spam calls, it takes a while before I go through messages, and can take several days before I call someone back.

So I just tell my friends and families: if you're going to call me without valid caller id, just poke me on Skype or shoot me an email. Its faster.

Phone communication is worthless now unless its plan in advance.

You're in a world where people are so manipulated (by the media, peers, etc), that its very easy to have 3 million people all be wrong. Especially when that 3 million is 1% of the population, and its only the vocal majority (people who like to voice their opinion a lot), you can end up with a non-representative sample pretty easily.

Now in this case, those 3 million people are most likely right (or at least, their idea match my own...so I'd like for them to be right), but it definitely doesn't always happen that way.

You have a standardize application process for college where you'll take standard tests to prepare you for a job industry where you'll be judged on standard interviews.

We could change things from the bottom up (change how you get into college, and then maybe change the tests..and then people that come out of there may interview differently), but the transition period would be awkward at best.

Alternatively you could change things the other way around. Start being smarter about how job interviews are done, then college could change, then their application could change.

Though "creative" people generally go in "creative" fields where things like portfolios and whatsnot are the norm... not just standardized tests, so while there's problems, its not nearly as bad as its made out to be.

Thats done all the time. You just need to give enough incentives (ie: equity with long term conditions) for people to stay.

I don't know how many people work on CyanogenMod, but hiring a douzen or so top notch engineers with knowledge of android's internal could take years. Thats a lot of lost opportunities, projects that have to be canned from lack of resources.

Congratulation, you've just described any kind of software development where you actually make stuff happen (as opposed to just making a stupid command line app that does nothing).

Doing anything meaningful in Java on *nix? Expect to hit quite a few annoying JVM bugs no one ever saw before, because they didnt do quite what you were doing.

Doing anything meaningful on Linux? Make sure to only target a very stable version of a specific distro...otherwise you'll find that libA that depends on libB that depends on libC has a bug that is non-deterministic because of libD.

Doing any kind of browser development? You heard as long as you didnt have to deal with IE you were ok? HAHAHA, jokes on you. Prepare to fight with non-standard mozilla behavior and subtle edge cases between different versions of Webkit/Blink.

Mobile development? /wrist

Need we go on?

Its the same thing as with the whole Document and settings vs C:\users. There's always been a good way to get it, but most developers suck balls and won't spend the 20 seconds it takes to figure it out.

Yeah, poor software developer and computer scientist in the US...Out of college if they're decent they're ONLY in the top 6%* of income in the country (all experience put together). And after a few years they're "only" in the top 3%* without having to sell their soul to a major bank (and they can go much higher if they decide to sell their soul anyway, but they can keep that as an option instead of it being mandatory).

Poor poor things.

*references not posted because the precise numbers vary depending on where you look...but the general idea stays the same.