Slashdot stories can be listened to in audio form via an RSS feed, as read by our own robotic overlord.


Forgot your password?

Comment: Re:Now using TOR after WH threats to invade homes (Score 1) 275

by causality (#48929977) Attached to: EFF Unveils Plan For Ending Mass Surveillance

And how does one find those targets in the first place if they have no connection with known targets? How does one find the group to infiltrate? The point is that there are many new cells that are popping up that have no connection what so ever with known terrorists. How do you find those new cells?

The idea is that limiting police powers in order to safeguard freedoms (and with them, the balance of power between the individual and the government) is acknowledged as making the job of police harder. The polices' job being harder does, in fact, mean that some number of criminals will go free some of the time, criminals who otherwise would have been caught and prosecuted. This is why absolute security is the antithesis of absolute freedom, so the question then is how to balance the two. When you safeguard liberty as your first priority and assign a lower priority to the effectiveness of law enforcement, you understand that you are taking a higher risk that you yourself will be harmed by a criminal that law enforcement could have stopped.

That's why freedom is not for cowards. The problems you worry about are well known to people who understand and value freedom. They choose freedom anyway. They also realize that the danger with which you're so concerned has been overstated. You're much more likely to be killed by a cop than a terrorist, and any factual inquiry into that based on facts would lead you to the same conclusion. Incidentally, you're also more likely to be injured by lightning. In the last 100 years, many, many more people were killed by their own governments than by any foreign enemy, so the credibility of this danger has been well established. Limited, transparent government is a time-tested manner of managing this danger.

As an aside, if terrorism is truly such a great problem and we want to reduce it in a real and effective manner, we should also stop giving excuses to the people who hate us. It's much easier for an enemy to justify their position, raise their troops' morale, and recruit new members into their brand of exteremism when they can point to concrete acts of ruthless domination the USA has actually committed. Law enforcement would certainly be more effective if its list of potential suspects could be reduced, facilitating a more focused approach on those that remain.

Anyway, the real spirit of freedom, the more value-based, individual, and courageous part that you and so many others keep failing to even recognize, let alone try to understand, is that those who understand freedom realize that a few more guilty men may go free. They consider that a small price to pay, an exchange of a finite quantity that numbers can describe in order go gain something priceless and worthwhile. It's yet another instance of failing to comprehend a viewpoint because you do not personally share it, therefore you get sidetracked by related but irrelevant issues because you have no idea how to articulate a meaningful response to it.

Comment: Re:Now using TOR after WH threats to invade homes (Score 1) 275

by causality (#48929619) Attached to: EFF Unveils Plan For Ending Mass Surveillance

Berating me is doing nothing to change my mind. I do not respond well to bullies.

Actually, the social shunning/shaming of those who advocate positions that are detrimental to society does serve a useful and positive function. Consider the way most people would respond to someone who openly advocates racism, for example. The response such a person receives would not be a pleasant one and really would discourage them. This is a good thing and it's a service to everyone else.

The only difference between racist views and pro-authoritarian views is the method by which they damage society for everyone else. Honestly the idea that your safety is in terrible danger from terrorism, and that giving up freedom and privacy is an acceptable solution, is a form of cowardice. It enables tyranny and those who advocate it are enablers. It's also inconsistent with reality: you're more likely to be injured by lightning than by terrorists, and you're very much more likely to be harmed by police or other members of your own government than any terrorist. If you were truly interested in your safety you would religiously monitor weather reports and you would advocate that the federal government be reduced in size and power.

Meanwhile, it's a fact of life that not all opinions are equally valid. Some, like yours, are rooted in ignorance and cowardice and have proven extremely dangerous each time they are put into practice, as an honest reading of history would reveal to you. Yes, the USA is not the first nation to use the idea of a foreign threat as an excuse to curtail civil liberties. The delusional among us seem to believe that it does happen to be the very first nation that will do this without causing a complete disaster (which has always taken the form of a totalitarian government under which human life is without value). Neither an understanding of history nor of human nature could possibly support this delusion.

I'd like to leave you with two quotations that this conversation reminds me of. You see, we (collectively) keep rehashing these same old debates not realizing that great effort has already been poured into thinking about what are not new issues. The first is from C. S. Lewis:

Of all tyrannies, a tyranny sincerely exercised for the good of its victims may be the most oppressive. It would be better to live under robber barons than under omnipotent moral busybodies. The robber baron's cruelty may sometimes sleep, his cupidity may at some point be satiated; but those who torment us for our own good will torment us without end for they do so with the approval of their own conscience.

The other is a dialog between Hermann Goring, a leading member of the Nazi Party, and a man named Gilbert, during an interview conduced in Goering's prison cell during the Nuremburg trials, on April 18, 1946:


Goring: Why, of course, the people don't want war. Why would some poor slob on a farm want to risk his life in a war when the best that he can get out of it is to come back to his farm in one piece? Naturally, the common people don't want war; neither in Russia nor in England nor in America, nor for that matter in Germany. That is understood. But, after all, it is the leaders of the country who determine the policy and it is always a simple matter to drag the people along, whether it is a democracy or a fascist dictatorship or a Parliament or a Communist dictatorship.

Gilbert: There is one difference. In a democracy, the people have some say in the matter through their elected representatives, and in the United States only Congress can declare wars.

Göring: Oh, that is all well and good, but, voice or no voice, the people can always be brought to the bidding of the leaders. That is easy. All you have to do is tell them they are being attacked and denounce the pacifists for lack of patriotism and exposing the country to danger. It works the same way in any country.


Something I hope you will consider.

Comment: Re:Heartbleed (Score 1) 205

by dissy (#48918877) Attached to: Serious Network Function Vulnerability Found In Glibc

How many years was Heartbleed around before anyone noticed? Apparently "many eyes" were not reading that bit of code.

Even you admit heartbleed *WAS* around (not *IS* around) and thus was found and fixed.
Clearly at least two eyes reviewed the code, found the bug, and it is now fixed as a result.

That is two more eyes than is searching through closed source code.
Two is still greater than zero so it is still a net positive.

Comment: Re:Consumers? No just whiny fanboys (Score 1) 113

by dissy (#48908997) Attached to: NVIDIA GTX 970 Specifications Corrected, Memory Pools Explained

As an owner of a GTX 970 card, all I can say is I can run Shadow of Mordor at full 1920x1080 res with the "ultra" texture setting and it never dips below 30fps, usually getting 45-60.

The additional fact I got the card as an open-box return at the local computer store for $220 makes things a no-brainer for me even if the allegations of 3.5gb vram were true.

There is no game in existence that a 980 or titan card can play that my 970 couldn't, even if I had to bump the settings down to just "very high".

If I bought a thousand of the things for super computer style multi-GPU number crunching, then I would probably be more upset and yelling a bit louder at Nvidia.
As a gamer I just can't see myself getting any worked up over this.

Comment: Re:Once more (Score 1) 100

by dissy (#48889009) Attached to: U.S. Gas Stations Vulnerable To Internet Attacks

>We have to ask why everything NEEDS to be internet connected. A local connection to the sensors will allow the station to determine when they need to refill said tanks. Not much point in putting it out there on the big scary internet. :D

It isn't a "need", it is only a "want"

Just imagine the cost difference between a fleet of IT people posistioned in every city the gas station chain does business in, paying their US pay rates - compared to a poor lone indian guy on the other side of the planet being paid a tiny fraction of US pay rates, not multiplied by the number of employees (or multiplied by one technically) able to manage all 100000 pumps owned by the chain.

The psychopaths at the top of the gas station chain companies get to keep that unspent money for themselves, so the less they pay out the better it is in their mind.

Of course you both get what you pay for, and must suffer the consequences of your own choices and actions once made, but it's pretty rare either of those factors even pops into their minds - and when it does the only reaction is to beef up the golden parachute package for when the inevitable happens.

The point is the whole intention here is not to do things right but to save money and raise profits without concern for the future or security of the company as a whole.

Going by those terms, not only do the pumps need to be on the Internet, but does make them more short term profits, so clearly is the correct solution to their incorrect and needless problem.

Comment: Re:End of support, not "end of life". (Score 2) 156

by dissy (#48864953) Attached to: Windows Server 2003 Reaches End of Life In July

I agree with IBM to a point but Google doesn't have the best track record of supporting their products after they decide the product has reached the end of its life. In fact, they probably have one of the worst.

Sadly that is true.

In my previous post I was more thinking along the lines of trusting IBM/Google/etc to release updates that actually fix vulnerabilities instead of intentionally injecting new ones - more as in comparison to those shady sites out there hosting windows update msis for people using pirated windows without full access to legit update channels.

While I personally would trust Google in that sense, I do have to agree I can't say the same about them "sticking with it" for the long run.

Of course I don't really see them even starting this to worry about them closing down the beta a few months later ;P
But your point remains.

Comment: Re:End of support, not "end of life". (Score 1) 156

by dissy (#48864895) Attached to: Windows Server 2003 Reaches End of Life In July

Just because something is "inside" doesn't mean you can ignore its security.

I'm curious, which one of "low risk", "risk limited to lan", or "not zero risk for sure" did you interpret as me saying there was no risk and thus security is being ignored?

Or was it just the statement that it actually is being upgraded that sounded like " being ignored"?

I of course was light on details, since they don't really matter here, but I feel I spelled out most of the points in my risk analysis process such that "ignore" is a pretty unfitting adjective for what I actually said.

Comment: Re:The very first thing out of his mouth (Score 1) 551

by hitmark (#48864511) Attached to: Systemd's Lennart Poettering: 'We Do Listen To Users'

Apple would perhaps grok it, if they where at all interested in corporate IT. But they are a fashion boutique sidelining in IT.

Google and MS are software houses, as such they need the version churn to stay afloat.

Frankly the pure software house it a pox on the IT world.

Comment: Re:End of support, not "end of life". (Score 4, Informative) 156

by dissy (#48863995) Attached to: Windows Server 2003 Reaches End of Life In July

My understanding is that fixing newly discovered vulnerabilities in Windows XP or Windows Server 2003 would be fairly inexpensive.

One more downside to being closed source - if Microsoft won't fix vulnerabilities, no one else can for any sane price.

At work I'm still migrating our last two 2003 servers, one migration nearing completion the end of this month, and the next not even started yet but expecting to take 9-12 months.

Exchange server was our primary risk because by its nature it has to handle SMTP, and while you can't poke that server directly from the Internet (a postfix relay server is the only one with direct internet exposed ports) but those emails still flow through it, and it sends outgoing mail directly so has to connect to other MTAs and everything involved with that like DNS queries... A pretty big risk footprint on that one, so no argument from me that it needs upgraded.

The last 2003 server however doesn't technically require being replaced, the risk is very small and mostly controlled for even then. It would likely run fine until enough hardware failures make keeping the server up cost prohibitive, which is really the biggest reason (though a fairly justified one) to upgrade.

The vulnerability risk footprint is limited to the LAN, and then only really to windows file sharing (that and SQL server are the only exposed services)
Not zero for sure, but taken alone not enough of a reason to justify the cost of an upgrade. Only everything taken together combined with a string of purchase approvals to upgrade everything else that demands it, is why it ultimately will be.

If only another big player could release continued security updates, or ideally more than one to help both competition on price and a choice of whom to trust for such a thing.
There is definitely a market for very long term support, which you have to look no further than IBM to see.

In fact many would trust IBM to fill such a role if they were to do so. Others may trust Google. I'm sure there are plenty of other examples as well.
But I don't see "long term windows support" being in many of those companies interests, nor see microsoft going along with such a plan even if they were.
Microsoft wants you to buy their latest shiney instead, Google would prefer you didn't use Windows at all, and IBM doesn't seem to be as big on the support thing these days even for their own products let alone microsofts.

All of those facts factor in to the cost of providing security updates, and does raise the bar quite a bit higher than it would appear at first glance.

Comment: Re:"Half Baked"? (Score 1) 241

by hitmark (#48859495) Attached to: Could Tizen Be the Next Android?

One reason i was told for them getting Moblin going originally was that Microsoft was unwilling to provide Windows support for a x86 chip without PCI device enumeration. Intel had removed that from their more mobile oriented Atom to save on overall battery drain.

I am not quite sure why Intel and Nokia partnered up, but Moblin1 had a fair bit of overlap with Maemo at the time (Both Debian based etc). By the time Meego had been formed Intel had moved to a RPM base for Moblin2 however. And things seems to have gone wonky from that point on.

Comment: ugh... (Score 1) 241

by hitmark (#48855523) Attached to: Could Tizen Be the Next Android?

Really hope not, as the last thing the world needs is another locked up portable media player with a mobile network connection.

I had high hopes for Around 3.x/4.0, but since then Google has bent over backwards to placate big media while trying to pass the changes off as security improvements.

The superior man understands what is right; the inferior man understands what will sell. -- Confucius