Forgot your password?
typodupeerror

Comment: Re:"no indication ... site has been compromised" (Score 1) 78

by tlambert (#46803397) Attached to: Preventative Treatment For Heartbleed On Healthcare.gov

The site doesn't have any medical information at all. That's one of the advantages of outlawing the "pre-existing condition" scam - you no longer have to tell insurers your medical history to buy insurance.

No, you still have to tell them; that provision of ACA doesn't occur until the end of this year, after you are already enrolled (by which time, it's too late). Until then, they have to let you enroll, they don't, however, have to charge you a reasonable monthly rate if you have a pre-existing condition. They said they had to let you buy it, not that it wouldn't be expensive. That one of the reasons the first 'A' in 'ACA' is a bit misleading.

Comment: Re:"no indication ... site has been compromised" (Score 2) 78

by tlambert (#46797835) Attached to: Preventative Treatment For Heartbleed On Healthcare.gov

If only it could have been prevented via a cheap, preventive program, instead of costing so much later! I know! We should lobby them to create a new agency, one tasked with the security of the nation, and when they knew about risks like this, why, they could step in and ensure that no one would unwittingly deploy vulnerable systems in the first place!

Perhaps we could call them the Responsible Agency for Intelligently Securing the Interests of the Nation... R.A.I.S.I.N., for short... or National Organization Securing You... N.O.S.Y. for short... I'm still working on the name.

We could even nominate someone to put in charge of making sure they are doing the job they are supposed to be doing, a kind of Special National Operations Watch Director Executive Nominee... Haven't decided what to call that one yet, either...

Comment: "no indication ... site has been compromised" (Score 4, Funny) 78

by tlambert (#46797719) Attached to: Preventative Treatment For Heartbleed On Healthcare.gov

"no indication ... site has been compromised"

I believe them.

What possible motive would a hacker have for targeting a site containing social security, tax, medical, personal, and financial information?

I'm sure it's all perfectly secure.

Just in case, though, you should probably change your one-factor authentication token so that the next time your "keep me logged in" cookie expires, it's hard to remember.

Comment: Re:"...who exactly is the H1-B police..." (Score 1) 214

by tlambert (#46797677) Attached to: California Utility May Replace IT Workers with H-1B Workers

Well there's an authority to base your response upon! I especially like the links to payday loans and making sure your H1B sponsor treats you properly. I missed the part where it actually backs up a single thing you assert since the press release it references is not linked.

http://www.uscis.gov/archive/a...

Government press release you could have googled yourself. Feel free to continue whining that nothing is ever enforced in this area of law.

Comment: "...who exactly is the H1-B police..." (Score 2) 214

by tlambert (#46793523) Attached to: California Utility May Replace IT Workers with H-1B Workers

And who exactly is the H1-B police who come arrest the violators?

That would be:

= U.S. Immigration and Customs Enforcement (ICE)
= U.S. Citizenship and Immigration Services - Fraud Detection and National Security Division (FDNS)
= U.S. Department of Labor - Office of Inspector General
= U.S. Postal Inspection Service (USPIS)
= U.S. Department of State
= U.S. Attorney’s Office for the Southern District of Iowa

At least that's who it was for this case: http://exbay.blogspot.com/2009...

So perhaps you are an idiot for implying that these laws are unenforced and unpoliced, and it's a scaremongering tactic which actually has very little to do with the offshoring indicated by the original article, which in turn has very little to do with H1-B's at all, since off shore workers are in other countries, and don't require H1-B visas to be employed by a U.S. company, if they never leave their home country.

Comment: Re:Profits (Score 1) 333

by tlambert (#46790797) Attached to: Detroit: America's Next Tech Boomtown

Given that Ford earned $7.2 Billion in net income in 2013 and GM made a $3.8 billion profit over the same period I think GM and Ford will be very surprised to hear that they cannot make cars in the US profitably since most of their profit comes from US operations.

They'd only be surprised if you told them they'd be doing it in Detroit, instead of non-union plants in other U.S. states:
http://www.nytimes.com/ref/us/...

You don't need to expand factories to make the efficient.

Correct. You just need to reduce the number of employees to increase the profit per employee, which is something you can do with automation, and.or lower wages, which is not something you can do in Michigan.

Comment: Re:FLYOVER (Score 1) 333

by tlambert (#46790703) Attached to: Detroit: America's Next Tech Boomtown

If you're interested in high tech manufacturing with a skilled workforce, it would be hard to find a better place than the automation alley counties. What you'll spend in wages will be more than made up in productivity. And you won't be spending a fortune in recruiting costs. If you build a factory your staffing problem won't be finding qualified workers, engineers or tradesmen, but getting a big enough HR department to hire them.

The reason all but one automotive assembly line has pulled out of Detroit is that the unions wouldn't allow that much automation, or you were "allowed" to have it, but you had to still hire the same number and type of workers to satisfy the contracts, so it didn't do crap to change your value to unit labor cost ratio.

You are an absolute idiot if you locate a manufacturing facility in a state where the unions are in charge of whether or not you get labor, and you can't push costs down by automation.

Most blue collar jobs have migrated outside the U.S. due to inflated labor costs relative to value produced. It has dick all to do with what a living wage is or isn't, and *absolutely everything* to do with value produced per unit labor cost. Most U.S. auto manufacturing that still exists in the U.S. at all is in non-union states, in non-union shops.

As Steve Jobs said, "Those jobs are gone, and they're not coming back". Near the end, before they sold it to Canon, the NeXT factory producing laser printers required exactly two (2) full time workers to operate the entire factory.

Comment: Re:Almost all router bandwidth management is shit. (Score 2) 99

by tlambert (#46786077) Attached to: Ask Slashdot: Which Router Firmware For Bandwidth Management?

OK, as someone who has been trying different methods of QoS over the past years, with varying levels of success, mainly to have my VoIP phone rock solid over DSL, I'm very interested in what you're saying.

Is there a reason this approach hasn't been implemented yet? Does it break something? If my router is lying to one my upstream router about its TCP window size, wouldn't that impact both the FTP and video stream?

You lie about the window size on a per connection basis, so no, since it's not a global policy, it's a resource policy by application, and potentially by port/IP tuple, so it's not a problem. The point is to keep the upstream router packet buffers relatively empty so that the packets you want don't have to be RED-queued. Nothing breaks because of it.

It generally won't work, unless everyone "plays fair", and the port overcommit ratio for upstream vs. downstream bandwidth is relatively low. As the downstream data rate increases to approach the upstream data rate, the technique loses value, unless you get rid of overcommit, or do it on a per-customer "flow" basis (as opposed to a per virtual circuit "flow" basis) within the upstream router itself, or move to a "resource container" or similar approach for buffer ratio allocation in the upstream router.

So in theory, Comcast (as an example) could do it if they made everyone use the router they supplied, and their routers all participates in limiting upstream buffer impact.

Maybe the next time they replace everyone's cable modems, they'll bother to do it?

Without the deployed infrastructure, it's easier to RED-queue and just intentionally drop packets, forcing a client to request a retransmit as a means of source-quenching traffic. This wastes a lot of buffers, but they probabilistically get through, and for streaming video, that's good enough if there's a lot of client overbuffering going on before playback starts (JWZPlayer, for example, is a common player used for pirated content that will habitually under-buffer so intentional drops tend to make it choppy).

For VOIP, unfortunately, forced retransmit causes things to just typically suck, unless you use a sideband protocol instead, where the router at the one hop upstream peer agrees to reserve buffers for specifically that traffic. This is why Skype is terrible, but your phone calls over your wall jacks which are actually wired to the same packet interface instead of a POTS line are practically as good as a land line or cell phone.

Google hangouts tend to get away with it because they are predominantly broadcast, and are either "gossip"-based CSMA/CD (ALOHA style) networks between participants (i.e. people talk over each other, or wait until the other end is done before talking themselves). It means they tolerate large latencies in which 1:1 VOIP/Skype connections won't. They can be a bit of a PITA for conference calls because of that (Google uses it internally, and gets away with it, but mostly because Google has its own, parallel Internet, including transoceanic fibers), but if Google employees never see the problem, they never fix the problem. Same way any company that assumes local-equivalent bandwidth works as well for their customers as it does for them (free hint to Microsoft inre: Office 386 there).

Comment: Almost all router bandwidth management is shit. (Score 5, Interesting) 99

by tlambert (#46784685) Attached to: Ask Slashdot: Which Router Firmware For Bandwidth Management?

Almost all router bandwidth management is shit.

Bandwidth management schemes currently used by everything you mention are all base on rate limiting packet delivery based on some mythical QoS value, and they ignore the actual problem that the people who are using these things are attempting (and failing) to address.

The problem is that the point of a border routers is to hook a slower border uplink to a faster interior connection; on the other end of the slower uplink, you have a faster ISP data rate. In other words, you have a gigabit network in your house, and the ISP has a gigabit network at their DSLAM, but your DSL line sure as hell is *NOT* a gigabit link.

What that means is that software that attempts to "shape" packets ignores an upstream-downloads or a downstream-uploads ability to overwhelm the available packet buffers on the high speed side of the link when communicating to the low speed side of the link.

So you can start streaming a video down, and then start an FTP transfer, and your upstream router at the ISP is going to have its buffers full of untransmitted FTP download packets worth of data, instead of your streaming video data, and it doesn't matter how bitchy you are about letting those upstream FTP packets through your router on your downstream side of the link, it's not going to matter to the video stream, since all of the upstream router buffers that you want used for your video are already full of FTP data that you don't want to receive yet.

The correct thing to do is to have your border router lie about available TCP window size to the router on the other end, so that all intermediate routers between that router and the system transmitting the FTP packets in the first place also lie about how full the window is, and the intermediate routers don't end up with full input packet buffers with nowhere to send them in the first place.

Does your border router do this? No? Then your QoS software and AltQ and other "packet shaping" software is shit. Your upstream routers high speed input buffers are going to end up packed full of packets you want less, and you will be receiver live-locked and the packets that you *do* want won't get through to you because of that.

You can either believe this, or you can get a shitty router and not get the performance you expect as the QoS software fails to work.

Then you can read the Jeffrey Mogul paper from DEC Western Research Labs from 1997 here: http://citeseerx.ist.psu.edu/v... ...after which, you should probably ask yourselves why CS students don't read research papers, and are still trying to solve problems which were understood 27 years ago, and more or less solved 17 years ago, but still have yet to make their way into a commercial operating system.

BTW: I also highly recommend the Peter Druschel/Guarav Banga paper from Rice University in 1996 on Lazy Receiver Processing, since most servers are still screwed by data buss bandwidth when it comes to getting more packets than they can deal with, either as a DOS technique against the server, or because they are simply overloaded. Most ethernet firmware is also shit unless it's been written to not transfer data unless you tell it it's OK, separately from the actual interrupt acknowledgement. If you're interested, that paper's here: http://citeseerx.ist.psu.edu/v... and I expect that we will be discussing that problem in 2024 when someone decides it's actually a problem for them.

Comment: Re:Over 18 (Score 1) 630

by tlambert (#46777399) Attached to: IRS Can Now Seize Your Tax Refund To Pay a Relative's Debt

Nothing you say says that Mr Saverin has gotten away from his US tax liability. Only by renouncing citizenship can one end the tax liability, and even that continues for some years (10 I think) after the renouncement.

He did renounce it. And he renounced it before the IPO. So his liability is for what he owed before he renounced it, which is ... not the $1.1B.

Comment: I think there's a more important question... (Score 1) 320

How many homeless volunteers took off with the camera and sold it to buy booze?

I think there's a more important question... how many mountain lions, gazelles, and other animals took off with the Harmless Radio Collars(tm) that Marlon Perkins had Jim Fowler attach to them while filming Mutual of Omaha's "Wild Kingdom"?

Comment: Re:City within a Building (Score 4, Interesting) 98

by tlambert (#46765347) Attached to: Google Looked Into Space Elevator, Hoverboards, and Teleportation

Once thing they should look at is a city within a single mega-structure.

Why should they build an Arcology, when there are already two in progress:

Masdar City in Abu Dhabi: http://en.wikipedia.org/wiki/M...

Arcosanti North of Phoenix Arizona: http://en.wikipedia.org/wiki/A...

Machines certainly can solve problems, store information, correlate, and play games -- but not with pleasure. -- Leo Rosten

Working...