just how would you balance the attempt to limit damage by stupid endusers who will click on anything remotely interesting?

Provide a sane, one-click way to say "Run this app, but don't let it overwrite any of my stuff or access any of my files except those I explicitly drag onto it from the Finder". Technically not hard to do using a bit of sandboxing. The difficulties are in making a straightforward user interface to permit access to individual files (though if anyone can do it, Apple can) and dealing with legacy apps that expect unreasonable write permissions to all sorts of crufty places on the filesystem.

There's a missing step: nobody has reimplemented classic 16-bit WinDOS like Windows 3.0 which ran on top of MS-DOS. Going from FreeDOS to ReactOS you would have to jump straight from DOS to Windows NT without going through flaky 16/32 bit mixtures in the middle.

Check the article. Current GMC customers will be able to use GMC for the duration of their contract As with anything, you can expect to get what you pay for. Sign up for a five year contract, and you will get the service for five years.

"Customers"? WTF? Who pays money for Chrome?

I studied computing at Imperial College London and there was such a setup for lab exams. It would lock down the Linux machine so you couldn't communicate with the Internet or with other computers in the lab, but it would communicate with a central server so you could submit your work. You could contact the Department of Computing to ask if they still have this system and if they would share it.

As I understand it, you might not want to send the whole log activity across the network (imagine a mobile device, say) but you still want to get the security against tampering that this provides. So instead you just send a cryptographic hash of the whole journal once a day - or even print it out to a dot matrix printer as someone else suggested. You can then use that hash to check the whole journal hasn't been tampered with since the hash was generated. Second, of course this does not provide security against someone nuking the whole log. But if you see the whole of /var/log is gone, that's already a pretty strong indication that something is wrong with your machine. The attack guarded against is someone breaking in and sneakily modifying past log entries to hide their traces. Third, yes it would be harder to grep than a plain text file. Luckily, Unix also has the concept of pipes, so I guess it won't be any harder than 'journalcat | grep pattern' where journalcat is the tool that spools out the whole journal as text. That should be good enough. Fourth, if your system is potentially compromised then of course you cannot trust that system to give you an honest answer about what the logs contain. That is equally true with plaintext syslog or any logging system restricted to the local machine. You can, however, take a copy of the whole log entry, put it on a clean machine and analyse it there. The advantage over syslog is that you can use the cryptographic hash (which you were taking a copy of every 24 hours, as above) to check that the journal is uncorrupted. If somebody has tried to mess with the log, they won't be able to do so without you noticing. "The Journal" has other advantages over syslog, including some measure of checking who is logging what (so you can't start a random process and claim to be apache on port 80 for the purpose of log messages).

Was anyone *paying* Google to use Google Wave? If you had signed up to a five-year support contract you could be pretty sure they would keep it running. The moral of the story is not "you cannot trust anything online" but "you get what you pay for".

I imagined every RDRAM memory stick having a little antenna from which it would receive coded instructions from Rambus HQ to block Intel processors or any software Rambus didn't like.

So... how do these compare to the new Sandy Bridge chips Intel announced on the same day? There must be some overlap of the target market - whether to buy a quad-socket Intel server or dual-socket AMD one, for example.

That doesn't really explain why other panel makers aren't producing 1920x1200 panels. It's not as if there is a monopoly of one company a laptop maker can get screens from, or some special patent Apple holds that prevents others from making 1920x1200 but not smaller sizes. Regrettably, it appears panel and laptop makers have standardized on 16:9 or wider aspect ratios rather than 16:10, and they have done so by reducing the screen height. A laptop that let you rotate the screen to view it horizontally would be awesome, but I don't see how that could be achieved mechanically.