Forgot your password?

Comment: Re:Photo Editing (Score 1) 326

by firewrought (#48441553) Attached to: Eizo Debuts Monitor With 1:1 Aspect Ratio

Radius made for the Macintosh in the long, long ago.

They're not in the biz anymore, but you can find plenty of pivoting monitors sold by the major brands. Some of my coworkers really like having one monitor in landscape (for spreadsheets, coding, etc.) and one in portrait (for documentation, web pages, etc). If you want one, do your research: portrait mode may not support wide viewing angles well, and font rendering may be screwy (because sub-pixel rendering assumes horizontal sub-pixels, not vertical ones). Also, unlike your smartphone, pivoting monitors don't necessarily contain a sensor to automatically detect changes in orientation: you have to tell the OS to display output for you, then physically rotate the display.

Comment: Re:Can someone expolain what's so great about HTML (Score 1) 133

by firewrought (#48412093) Attached to: HTML5: It's Already Everywhere, Even In Mobile
Parent's exactly right.... HTML5 is significant because it's an application development platform that runs almost everywhere. Yes, there are a lot of problems with standardization, security, semantics, etc., as others in this thread have pointed out, but none of this answers the question posed by OP... you can publish an HTML5 application today and it's instantly available to be run on hundreds of millions of phones, tablets, and PC's worldwide. That's a killer feature that no other development platform provides. (No, JWS doesn't count.)

Comment: Re:Or just practicing for an actual job (Score 1) 320

by firewrought (#48370599) Attached to: Duke: No Mercy For CS 201 Cheaters Who Don't Turn Selves In By Wednesday

Just out of curiosity are there any professional programmers out there who don't regularly copy functions from the Internet?

The whole point of the course is to try & figure out how data structures and algorithms are implemented. It's as much about problem solving as it is coding. Sure, you could always just use std::vector in your C++ programs for vectors, but do you really understand how they work? What about binary trees and linked lists? That's the type of stuff they're teaching in these classes. Copying code & modifying it for your own purposes is fine for production, but if these students don't understand how the underlying code works, then their chances of successfully using it greatly diminishes.

And to extend what you're saying, ultimately professional programmers *do* have to design novel data structures and the algorithms to manage them. How are you going to build a thread-safe incrementally updating cross-reference table when you don't even know to implement a linked list?

Comment: Re:Dumb idea ... Lots of assumptions .... (Score 2) 694

by firewrought (#48370451) Attached to: US School Installs 'Shooter Detection' System

To obtain a firearm certificate, the police must be satisfied that a person has "good reason" to own each firearm, and that they can be trusted with it "without danger to the public safety or to the peace". Under Home Office guidelines, firearms certificates are only issued if a person has legitimate sporting, collecting, or work-related reasons for ownership. Since 1968, self-defence has not been considered a valid reason to own a firearm.

Not even remotely similar to anything proposed in the US as common sense.

In the US, protection from the state itself is a valid reason to own a firearm. The founders believed that the government must always be afraid of the people, not the other way around, and the second amendment was seen (rightly or wrongly) as a means of securing this.

Comment: Re:Sounds like what Sun did (Score 1) 525

The codebase has been sitting behind a proprietary wall for so long that it's been completely insulated from the real world of code quality

The wall's not that high: Reflector and ILSpy have been around for a long time, and non-obfuscated .NET code decompiles pretty cleanly.

The real world expects quality code on par with the BSD kernel.

(1) Most all production code is crappy, especially application code. (2) Systems/kernel code is generally high-quality because it has to be. (3) From what I've seen, the .NET API's are pretty decent... both on the outside (with excellent usablity*) and on the inside (with mostly straightforward code**). (4) I haven't seen the .NET run-time code, but Microsoft undoubtedly invested some of their best systems developers in designing the CLR. I'd be surprised if it stank bad enough to drive folks to Java.

* Excepting the huge learning curve with some API's, like WCF and WPF. ** An exception would be the configuration system, which is painful in many ways.

Comment: Re:Why feed the lawyers? (Score 2) 268

by firewrought (#48360573) Attached to: GNOME Project Seeks Donations For Trademark Battle With Groupon

Huh? What does that have to do with anything? Was GNOME marketing Lowes POS system under the name GNOME? No. Someone just happened to use the GNOME desktop manager to make a POS system (not called GNOME).

For all we know, Lowe's (or a software vendor contracted by Lowes) may have marketed (or may choose in the future to market) their POS to other parties as a GNOME-based product. It wouldn't be the product name, but it could be trumpeted in the feature listing. For that matter, the GNOME project may reasonably identify an opportunity to produce a POS-specific version of their product and want to call it "GNOME-POS" or something.

The Lowe's example definitely shows the overlapping and competing uses of the name: your average moron in a hurry isn't going to know the difference between a POS named "Gnome" and a Desktop Environment called "GNOME" that can be used to construct POS systems.

Boss: "Should we buy Gnome for our POS?"

Employee: "No, we should use GNOME for our POS."

Boss: "WTF??"

Comment: Re:Guns aren't needed for a revolution (Score 1) 184

by firewrought (#48335727) Attached to: British Spies Are Free To Target Lawyers and Journalists

Guns aren't required for a revolution to occur.

See also 198 Methods of Nonviolent Action (from the book From Dictatorship to Democracy, available here).

Certainly you can have a revolution with guns but the notion that your little peashooter is what is keeping the most powerful military on the planet in check is pretty much laughable.

Don't underestimate the value of possessing threat capability, even if you're not going to use it. Would Gandhi, King, and Mandela have been equally successful in a society without the simmering potential for all-out race war?

Comment: Re:Why so high? (Score 2) 223

by firewrought (#48226055) Attached to: Passwords: Too Much and Not Enough

Why would it ever be even close to that high. Every decent system I have ever encountered raised some serious flags after 3-5 wrong guesses. If you flag an account after 10 wrong guesses, start requiring a CAPTCHA after the first one, and ban ip addresses when you detect massive multiple account attempts, you can offer security fool proof security, with, lets say, around 100 guesses.

If it only takes 100 guesses, then an attacker can slowly try passwords stretched out over time, depending on his victim's routine behavior of logging in a couple times per day to reset the fail count. Or maybe he can try 1 guess (with 1/100th odds) on each account in the target system. If there are hundreds of accounts... well, you get the idea.

IP-based banning can make this harder (forcing the attacker to find/use multiple victim PC's), but it's not widespread yet (for instance, I don't think Active Directory or slapd support it).

Comment: Re:I can't stand coupons (Score 1) 163

by firewrought (#48225875) Attached to: How To Beat Online Price Discrimination

[Coupons are] there to get people to make decisions that they otherwise wouldn't make, usually bad ones.

In addition, they serve as a form of price discrimination: you can save a nice chunk of change on groceries by taking an hour each week to clip your way thru the Sunday paper, but once you have enough disposable income (and perhaps less leisure time) it's no longer worth it.

Comment: Re:Since these people still don't get it.... (Score 1) 79

by firewrought (#48214447) Attached to: DHS Investigates 24 Potentially Lethal IoT Medical Devices

Don't get me wrong: safer programming languages and runtimes definitely help, especially with buffer overflows (thanks C++!), but it's one aspect of many that impact security.

it won't prevent devs from concatenating SQL with user input

You can't do this in, say Haskell, unless you write your own SQL interface library that builds solely on strings.

Granted, I lost interest in Haskell somewhere around hitting the Functor/Monad point, but if devs can send raw SQL to the database, they will do so.

misusing threading primitives

You can't do this in concurrent safe languages, like Concurrent ML, Rust and Haskell.

Yes, you can.

So basically, safety properties have importance on par with domain requirements, and must be subject to the same rigour that domain features get, ie. testing, verification, etc.

Good luck spreading that attitude. Makers of device drivers, SCADA, etc., dearly need it.

Basically, the safer the language, in the sense that the more properties can be assured at compile-time, the more features and safety properties you can verify, and the fewer security vulnerabilities.

That helps get us closer, certainty. The language and runtime can help catch/eliminate common, elementary mistakes. It's not the silver bullet though: wherever creative work is being done, therein lies the potential for new vulnerabilities.

Comment: Re:Since these people still don't get it.... (Score 1) 79

by firewrought (#48203845) Attached to: DHS Investigates 24 Potentially Lethal IoT Medical Devices

Anything computerized with a network connection can (and most likely WILL) be hacked...

Not if you take appropriate precautions, like using a safe programming language.

Don't be naive... security is a deep and subtle problem, full of nasty surprises. There is no magic bullet solution... your "safe programming language" has thousands of bugs in its standard API and run-time; it won't prevent devs from concatenating SQL with user input, misusing threading primitives, or bungling up an authentication protocol; it certainly won't patch up the numerous ways of subverting https or the modern web browser. To be secure (or have a reasonably good chance at being secure), you must at minimum use an approach where (1) security is a primary design concern thru the entire product lifecycle, (2) security solutions are deployed in a structured/layered approach using (3) actual expertise, and (4) security is an ongoing program with both proactive and reactive elements.

(Convincing your government to help software/hardware/network companies fix their security problems instead of purposely introducing them would be a good idea too, but it looks like society is determined to learn this the hard way.)

Comment: Sigh... (Score 1) 795

by firewrought (#47965947) Attached to: How Our Botched Understanding of "Science" Ruins Everything

Countless academic disciplines have been wrecked by professors' urges to look 'more scientific' by, like a cargo cult, adopting the externals of Baconian science (math, impenetrable jargon, peer-reviewed journals)...

How dare those academics use math, specialized jargon, and peer-review! Witchcraft, I tell thee, witchcraft!! (Quick hint for whatever PR firm submitted this: science is extremely complex and extremely specialized these days. Sorry if your marketing degree didn't prepare you for anything better than spreading FUD.)

This is how you get people asserting that 'science' commands this or that public policy decision, even though with very few exceptions, almost none of the policy options we as a polity have have been tested through experiment (or can be).

Yah, we only have one earth at the moment, so it's sort of hard to directly test the effects of (1) implementing or (2) NOT implementing a carbon excise tax on the next 100 years of climate change. Science can't do that. Of course, neither can lobbyists or SIG's or true believers or anyone else.

What science can do (for a sincere policymaker) is provide the firmest foundation of knowledge to work with. And science quite confidently tells us a lot of things we don't want to hear (like "all this carbon is going to make the environment go wack, do something about it" or "your ass is getting fat on all that sugar and processed foods", or "life arose thru such-and-such set of processes and not ex post nihlo, sorry if that challenges your theology LOL").

Comment: Re:Bad media coverage (Score 0) 1330

by firewrought (#47357519) Attached to: U.S. Supreme Court Upholds Religious Objections To Contraception

What happened was that the president of Chik-Fil-A, Dan Cathy, expressed an opinion on same-sex marriage

You forgot to mention the part where Chik-Fil-A's charitable organization was donating millions of dollars to anti-LGBT political organizations. The protests were largely effective at halting those donations.

But, he doesn't claim to be a "Democrat", which is an allegiance which absolves one from all responsibility and repercussions from their opinions.

Obama--for all of his many problems--has done more than any other president to support equal protection under law for people who are LGBT.

Comment: Re:Praise the Courts (Score 2) 532

by firewrought (#47330661) Attached to: NYC Loses Appeal To Ban Large Sugary Drinks

Maybe we could just work together on that and then most of these abortions need never happen.

Good idea, but you need to get conservatives on board with embracing contraceptives. For many of them, it isn't just about eliminating abortion, it's also about eliminating non-martial sex and boosting the pregnancy rate after marriage. To get there, they are willing to (1) withhold medically pertinent information, (2) cultivate sexual fears and stigmas, (3) encourage premature marriage, and (4) prescribe rigid/misogynistic gender roles. (Source: grew up in a christian school.) A lot of this just naturally flows from the fundamentalist/authoritarian worldview... other christian subcultures may be different.

The number of unplanned pregnancies in the US every year is Insane.

Actually, the rate of teen pregnancies has hit an historic low.

Comment: Re:Holy crap! (Score 4, Insightful) 88

by firewrought (#47208911) Attached to: Docker 1.0 Released

Download .deb Double click it Insert password, hit ok Seriously it is a hell of a lot easier than Windows

Oh, I'm sorry. You need libglib2.0-0 (>= 2.35.9), but I'm on libglib2.0-0 (2.34.8) and upgrading it will cause a conflict with libwtf5.0 (1:5.0.99) and also require installing libancientrelic0.8 (, which I can't seem to find anywhere. Let me suggest removing a bunch of packages (leaving some things broken). Accept this solution? (y/N) Alternately, I could suggest you blow your weekend learning to build a dummy package just to shut me up... there so many wonderful commands that start with deb and dpkg, you'll love digging thru layers and layers of accumulated shell scripts!

There is no opinion so absurd that some philosopher will not express it. -- Marcus Tullius Cicero, "Ad familiares"