Please create an account to participate in the Slashdot moderation system

 



Forgot your password?
typodupeerror

Comment Wrong age (Score 1) 32 32

Relatively little of what teens do is going to cause them problems in later life. It's what people do between about 18 and 25 that tends to screw them. Mainly because they're old enough to drink (without having to hide it) but not yet old enough to think (well).

Comment Re:Anti tracking plugin for Chrome?? (Score 1) 58 58

Whatever you do you are still being tracked by default, that is the point of Chrome.

Do you have any evidence to back that claim up?

There are a number of features in Chrome that optionally talk to Google. But you can change them all if you prefer. Do you have any proof that it "phones home" in any hidden way? It should be quite easy to prove; Wireshark is all you need.

FWIW, I know some of the guys who started the Chrome project. Actually, they didn't start Chrome, they started V8. The point was to prove that Javascript engines could be orders of magnitude faster than they were, and to push the rest of the industry to get better, so Google's apps would be able to do more, faster. The rest of Chrome was just to show off V8. Then it became successful, both at pushing Javascript engines to get better, and as a popular browser, and Google started to use it as a test bed for other ideas about how to make the web "platform" better. Security improvements like certificate pinning. Performance (and security) improvements like SPDY and QUIC. UI simplifications like the omnibox (which geeks like to hate, but non-geeks love). Better development tools (though Firebug was and is quite good). And so on.

I don't think "better tracking of users" has ever been a goal, stated or unstated, of the Chrome project. And, seriously, why would it? It's not like the normal web standards don't offer everything that's required for whatever tracking anyone would like to do.

Comment Re:No Compromises (Score 1) 136 136

I've had more than 90GB of music for over a decade. Then there are pictures, and books, and if this thing is supposed to be a bit of my own personal entertainment while I'm away from a proper desktop computer or my own entertainment system, movies, TV shows, and all sorts of other things that I don't want to have to stream in order to use.

Comment Re:OpenID Connect scales at O(n^2) (Score 1) 361 361

Trial and error, I expect. Look at what other sites do. I realize that this isn't a very good answer. There isn't a good answer, just bad answers that are still better than passwords. Classic OpenID isn't the answer because users don't know how to use it and many RPs don't trust random providers. But as a practical matter providing login with, say, Google, Facebook, Yahoo and AOL will give better than 95% of your users the ability to log on with better security than the password-based model you'd build, and do it just by clicking a couple of buttons.

If you find that your user base tends to have an account with some other provider (no, I can't tell you how to find out who your users are or what they use), then add that.

Comment Re:Seriously! (Score 1) 143 143

You're assuming that the end owner of the safe even has access to the Windows Shell in a meaningful way. I expect they've replaced the shell with something of their own devising.

I also expect that they spent as little as possible on making the computer-side of the device and didn't even consider the digital security aspects of their choices. Pretty stupid for a security company, but it wouldn't be the first time that such decisions have been made.

Comment Blame the users: here's why (Score 2) 120 120

As usual, I prefer to blame the victims (us).

On a desktop personal computer, it would never occur to you to think "Oh, I just assume I'll get software maintenance from my ISP," and if anyone ever actually said that then you would point your finger at them and laugh and their over-the-top stupidity.

But change the form factor of the personal computer to handheld and suddenly we don't do the pointing and laughing. On the very face of it, it's JUST AS STUPID. So WTF?

Users are not exercising their common sense. They simply aren't. You can make excuses for not using common sense and explain why we did this very obviously stupid thing, but don't pretend it's not happening. Every morning you're getting up and putting a "kick me" sign on your back. You know that you're doing it and you know what consequences will invariably flow from it.

"I don't have any other signs to put on my back! All the signs on the market say 'kick me!'"

"Just because I wear a 'kick me' sign that doesn't mean anyone really has license to kick me! They shouldn't be doing that to me!"

Ok, go on and say those things. You even have some valid points, and the things you're saying might even be technically correct. But that doesn't mean you don't sound stupid, because you don't have not getting kicked in your requirements! WTF, people?!

Stop thinking of handhelds as some weird special case where ALL your experiences with software maintenance magically don't apply! THAT'S STUPID! So yeah, I'm a victim-blamer. You know when you buy your PC from your ISP or from a manufacturer who has a history of preventing maintenance, what's going to happen. And when people pretend they don't know the invariable consequences of buying PCs from ISPs, the stupidity takes on a flavor of dishonesty. Mmmm, yum!

Comment Re:No Compromises (Score 2) 136 136

I think that's part of the point, lots of people want different things in their phones, but very few manufacturers are respecting those wants.

I want storage expansion and dual-SIM. I wouldn't mind front-mounted speakers. I actually want a real, physical keyboard but I know that's simply not in the cards. I want about double the battery capacity compared to most phones, with a removable battery. I want the LTE bands for my carrier in my area to all be supported. I want a camera capable of about 5MP pictures as I have a real camera that I use when I want ultra high quality photos.

It's really the removal of the memory expansion that upsets me. They're doing it to force consumers to buy new phones in a couple of years instead of simply adding more torage capacity to their existing phones.

Comment Re:Wait, you have to TYPE the password??? (Score 1) 361 361

When the services go down, you can't log in to the relying sites. Luckily, core infrastructure like the account systems is a very high priority for the engineers, and the big providers have plenty of resources to keep them up -- and they do. My bank's site is down far, far more often than Google's auth servers, for example. How much more often? I don't know... I've never seen Google's auth servers down.

Comment Re:OpenID Connect scales at O(n^2) (Score 1) 361 361

Pick the top several and you'll cover nearly everyone. For the tiny percentage of users that remains, you have to either offer password auth (which means all of the work and risks of maintaining a password system, but at least when you screw it up only a tiny percentage of your users will be affected) or push them to get an account with one of the providers you support.

Luck, that's when preparation and opportunity meet. -- P.E. Trudeau

Working...