Forgot your password?

Comment: Re: Packages can't be removed? (Score 1) 60

by pavon (#48227661) Attached to: OwnCloud Dev Requests Removal From Ubuntu Repos Over Security Holes

[quote]It's just irresponsible for the package maintainers to come back and say "we can't pull it, we're leaving it as is, and we're not patching it either".[/quote]
The package maintainers didn't say that. This package is in the universe repository. The entire purpose of this repository is that volunteers can upload packages that Canonical has decided they aren't going to support. So Canonical isn't the package maintainer and you can't really blame them for not supporting packages that they said they aren't going to support.

Furthermore, it sounds like the ownCloud developers want Ubuntu to either use the latest & greatest release, or remove the package entirely. If that is correct, then I think it is irresponsible on the developer's part. Version 7 only came out 3 months ago, so they really ought to be providing security patches for version 6.

Comment: Re:How secure is that connection string? (Score 1) 123

Even if BTSync were to process one connection string per CPU clock cycle, it would still take 1e20 years to try all the possible 20-character Base64 strings that BTSync uses by default. If you choose a longer string, then it will take even more time. In otherwords, the standard strings have 120 bits of entropy, and you can increase that to up to 240 bits. This is less than is typically used for encryption these days, but btsync doesn't have to deal with offline attacks.

Rather than key size, I would be more concerned about whether the client potentially leaks data through timing attacks, or any MITM/sniffing attacks that speed up the cracking faster than brute force.

Comment: That isn't open source (Score 1) 123

That isn't an open source implementation of btsync. It is just an unofficial debian package that installs the official proprietary btsync binary. It makes it easier to install and update btsync on debian based systems, but it is the exact same software that you download from the official site.

Comment: No notification of concurrent modification (Score 2) 123

I have been using bittorrent sync for about the same amount of time, and the thing that is killing me is that it makes no effort to detect and warn when a file has been modified on multiple computer since the last sync. It just chooses the one that was modified most recently, and silently overwrites the other one. It does create a temporary archive backup of the modified file that was overwritten, but by the time you noticed you have lost data, it can be very difficult to wade through all the archive files on different computers and figure out which ones need to be merged. The resolution to conflicts will always have to be a manual process, but the sooner you know that a conflict occured the easier it is to resolve.

I've lost track of how many password resets I have had to do because I lost a newly randomly generated password saved to my keypass database, synced across computers.

Comment: Re:Only usefull for wine? (Score 1) 54

by pavon (#48176993) Attached to: Direct3D 9.0 Support On Track For Linux's Gallium3D Drivers

Think of it this way. If you are a company that has a D3D application that you need to port to linux, does it make more sense to spend a small amount of time making wine-lib based port that works with any video card driver. Or to spend a larger amount of time to create a native port that only works with specific drivers, causing all sorts of complications for your potential user base. It's a no brainer; you take the path that is less work for you, and more compatible for your customers.

Comment: Re:Only usefull for wine? (Score 1) 54

by pavon (#48175915) Attached to: Direct3D 9.0 Support On Track For Linux's Gallium3D Drivers

This native D3D9 support only works for drivers based on Gallium3D, which includes Noveau and the newer cards supported by the Radeon driver. If you are using the proprietary NVidia or AMD drivers, then this won't work. I can't imagine that any company would want to support a Linux port that required you to have specific graphics card drivers installed. Especially a company that didn't care enough about cross-platform support to use OpenGL from the start, and especially when many of the people who care about gaming on linux will be running the proprietary drivers, since that is what works best for most other games.


The One App You Need On Your Resume If You Want a Job At Google 205

Posted by timothy
from the surprisingly-it's-not-I-am-Rich dept. writes Jim Edwards writes at Business Insider that Google is so large and has such a massive need for talent that if you have the right skills, Google is really enthusiastic to hear from you — especially if you know how to use MatLab, a fourth-generation programming language that allows matrix manipulations, plotting of functions and data, implementation of algorithms, creation of user interfaces, and interfacing with programs written in other languages, including C, C++, Java, Fortran and Python. The key is that data is produced visually or graphically, rather than in a spreadsheet. According to Jonathan Rosenberg , Google's former senior vice president for product management, being a master of statistics is probably your best way into Google right now and if you want to work at Google, make sure you can use MatLab. Big data — how to create it, manipulate it, and put it to good use — is one of those areas in which Google is really enthusiastic about. The sexy job in the next ten years will be statisticians. When every business has free and ubiquitous data, the ability to understand it and extract value from it becomes the complimentary scarce factor. It leads to intelligence, and the intelligent business is the successful business, regardless of its size. Rosenberg says that "my quote about statistics that I didn't use but often do is, 'Data is the sword of the 21st century, those who wield it the samurai.'"

Comment: Other side of the story. (Score 3, Insightful) 118

by pavon (#47892839) Attached to: Software Patents Are Crumbling, Thanks To the Supreme Court

When Arstechnica ran that WP story about corruption in the USPTO, several current and past patent examiners posted comments that are worth reading. Two key ones in particular are this and this.

Short story is that USPTO has stupid counterproductive performance metrics, so everyone games the system to look good by the metrics (we've all seen that before). Some managers recognize this and don't want to be assholes about time charging rules because of it, as long as employees are doing good work. Others get upset that the rules are being broken and assume it is blatant time card fraud, and blew the whistle to the news outlets.

Comment: Re:difference between driver and passenger? (Score 1) 364

by pavon (#47871113) Attached to: Text While Driving In Long Island and Have Your Phone Disabled

They are evaluating different technologiess, some of which are implemented on and affect a single phone, others implemented with hardware in the car and affect all phones in the car. But even if it disables all phones in the entire car, I am completely fine with this. Yes it is inconvient, but it's not like it is being required as standard equipment on all cars all the time. It is only being applied to cars of people who broke the law and put others around them at risk. You want to keep using your phone when you are riding with a friend/spouse; then give them shit about texting while they are driving.

Comment: Reading comprehension. Do you have it? (Score 1) 221

by pavon (#47780815) Attached to: Canada Tops List of Most Science-Literate Countries

A recent survey of scientific education and attitudes showed the Canadian population to have the highest level of scientific literacy in the world, as well as the fewest reservations about the direction of scientific progress

They measured multiple things! The statement "We depend too much on science and not enough on faith" was measuring attitudes about science, and neither the article nor the report present it as an example of scientific literacy. Here is what the article stated as proof of scientific literacy from the article:

Among the most striking results from the survey is that Canada ranks first in science literacy, with 42 per cent of Canadians able to read and understand newspaper stories detailing scientific findings.

The executive summary of the report goes on to list some tests as an additional assessment:

Average score on OECD PISA 2012 science test: 525 (10th out of 65 countries)
Average score on OECD PISA 2012 math test: 518 (13th out of 65 countries)

Comment: Re:TFA bad at math? (Score 1) 146

by pavon (#47778399) Attached to: The American Workday, By Profession

Commenting to undo accidental moderation. But since I have to say something anyways...
It makes since that they would draw 9-5 on the graph, for easy comparison and that they would label it the standard workday, since that is what is traditionally been considered as such. But I have no clue how they could look at that graph and come to the conclusion that most people still work from 9-5, as the article text claims.

Comment: Re:Not surprising (Score 1) 506

by pavon (#47759255) Attached to: California DMV Told Google Cars Still Need Steering Wheels

Sure, I assume that all cars will have something like that. Heck, since the car will be doing navigation it will likely have found a gas/charging station and pulled over long before it even got to that. But regardless they will never be perfect. What if it sprung a leak and couldn't pull over in time because it judged that there was no suitable shoulder (mountain road, narrow bridge), and this info wasn't in it's database to enable it to plan ahead?

We have been mass producing cars for over 100 years, and by all reasonable measures they have never been as reliable as they are today. Yet they still break down on occasion. Self driving cars will have all the same mechanical and electrical problems that we have today, with software problem on top of that. You can mitigate some of these hardware problems with additional sensors, and fault-tolerant design of the driving computer, but only to the point where the sensors and software are significantly more reliable than the hardware they are monitoring, and only for the situations that are programed for.

There always will be situations where things break down in unexpected ways that the car isn't capable of handling on it's own. And based on the historical rate of reliability improvement, those situations won't be uncommon for quite some time.

Comment: Re:Not surprising (Score 4, Insightful) 506

by pavon (#47758513) Attached to: California DMV Told Google Cars Still Need Steering Wheels

They may never be removed. Everyone is focused on the split-second decision scenario when talking about this issue, and on that I agree that humans will cause more problems than they solve. But there are many more situations where manual override is needed and beneficial. What happens when the car runs out of gas/charge and you need to push it to the side of the road out of traffic. Or the computer is malfunctioning somehow (software bug, squirrel chewed halfway through a wire, dead battery/alternator). Or when I need to move the car somewhere off-road that the AI refuses to recognize as a valid driving path. There are plenty of not so time critical scenarios where some sort of manual override is needed and those aren't going to go away even when we trust the software to do all the driving. Once we admit that they don't have to be intuitive for split-second reactions, then they don't have to retain the traditional layout, nor be designed for comfortable everyday use, but some sort of steering, brake control, and neutral gear select will always be needed.

There is no distinction between any AI program and some existent game.