http://www.openssl.org/about/r...

Nothing structural has changed.

Heartbleed didn't arise from confusing seas of preprocessor macros or broken allocators we've been hearing so much about. It was allowed to happen because there were no structures in place mandating early data validation up front.

Unacceptable if LibreSSL is to be a viable alternative to OpenSSL. Last thing we want to do is take responsibility for maintaining an SSL stack.

Real world runs Windows. If we don't support Windows we go out of business.

All support was completely and unconditionally yanked from LibreSSL.

UDP is connectionless. No session is required to be setup and managed prior to normal operation.

When making existing UDP protocols work over DTLS there is now a session and associated need for session management Including heartbeat to reason about continued health of the session.

Without heartbeats the only alternative is custom modification of each protocol.

I'll take Android ASOP/custom rom over carrier shitware infested Android + Google play services or the iPhone any day.

Amazing how much longer battery lasts when your phone is not constantly violating your privacy and wracking up data usage for stupid reasons.

Here is my problem with Apple, Google and Microsoft.

Each vendor is using crowd sourced location / WiFi sniffing / map building excuses to collect location data from everyone. At least one vendor offers no ability to disable crowd sourcing without also preventing GPS from being used.

GPS ASIC's have advanced to the point where standard excuses (uses too much power, takes too long to get a fix, some indoor use) are no longer applicable. This appears to in no way be discouraging vendors from selecting shitty GPS components while propagating excuses which unnecessarily eat into data plans and upload all of your data.

Think of this from the Chinese perspective. Instead of everyone's location data being uploaded to Google or Apple ... what if it was all going to Huawei? Would US officials be comfortable with data about everyone's location constantly uploaded "anonymously" to Huawei?

I think we are all better off if vendors used more capable GPS chips in their handsets and location data is not constantly being uploaded to any single vendor for any reason by default.

Bottom line LibreSSL is useless here as long as it won't run Windows. Need DTLS heartbeat support so they are going to have to find a way to get over that too.

This time only the bad guy died, but even him did not deserve capital punishment for a car jack ...

Nature -- specifically evolution -- disagrees. You don't get a vote.

So Tesla's anti-theft system is 100% lethal?

No, but evolution's anti-massive-stupidity system is pretty lethal. Less so nowadays, but... still.

"Hey, think I'll drive triple digits in a randomly active urban environment in a vehicle I'm not familiar with, while (justifiably) paranoid!"

LOL

http://en.wikipedia.org/wiki/P...

Seem to remember quite recently Russians and Kurds grabbing land that doesn't exactly belong to them. They appear to be getting away with it while the whole world sits watches the theft take place.

There are two distinct legal worlds. Confuse them at your peril.

1. Intra-country world where rules are enforced by state having obtained more or less a monopoly on projection of violence within state borders to those who elect to disobey laws of said country.

2. Rouge lawless world of inter-country relationships where no such monopoly exists. International systems like the UN wield no real power. In this world your ability to project violence or develop a coalition of states willing to project violence very much dictates what you can or can not get away with.

To put it in even simpler terms when Ban Ki-moon pleads for the bloodshed in Gaza/Israel to stop he is asking ..nicely...... he is not ordering.

When a judge orders you to pay Palimony the judge is not asking he is ordering you to pay under threat of violence.

Also, in case you hadn't noticed, congress does pretty much whatever it wants of late. Interstate commerce? nah... Intrastate commerce is so much more fun to regulate. Warrants to search? nah... so much more fun to just search as is convenient. Property rights? nah... they'll take your land for commercial reuse, it's potentially much more profitable. Ex post facto law? nah... sometimes, that's just the thing. Shall make no law? Oh HELL no. Rights that shall not be infringed? Oh, ho ho ho, isn't that quaint.

"Jurisdiction" ... what a funny old word. :)

...but it should also be pointed out that when you bring said mined assets back into the USA, congress does have jurisdiction, and that's what this law primarily addresses, although it may also have direct implications for how US government crewed spacecraft will treat US citizen or corporation owned spacecraft carrying cargo.

So, you believe if I can take it from you by force, it's mine?

You should really read more carefully. Overzeetop said "get it and defend it."

"All things come to those who wait" -- however, they're the set of all things left around by those who got there first.

The only space law we really need: If you see a lawyer, SHOOT TO KILL.

There is no enforcement mechanism in the event of a dispute with another country, however.

Sure there is. Radar-guided missiles. Etc.