Forgot your password?

Comment: Given the relative percentages... (Score 1) 328

by tlambert (#47947675) Attached to: Science Has a Sexual Assault Problem

Given the relative percentages... it's likely that the "harassment escalating to assault" numbers for the men is underreported by a factor of 2.5, which would be about on a par with the underreporting of men being raped in the general population. There's a real cultural stigma to reporting by men, who are, by stereotype and therefore societal norms, "supposed to be" on the other end of the power equation.

Comment: They've already screwed the pooch. (Score 3, Informative) 178

by tlambert (#47947609) Attached to: TrueCrypt Gets a New Life, New Name

They've already screwed the pooch.

They've published the source archive under the original TrueCrypt license. As a result, unless there's a legal entity (person or company) to which all contributors make an assignment of rights, or they keep the commit rights down to a "select group" that has agreed already to relicense the code, they will not be able to later release the code under an alternate license, since all contributions will be derivative works and subject to the TrueCrypt license (as the TrueCrypt license still in the source tree makes clear).

The way you do these things is: sanitize, relicense, THEN announce. Anyone who wants to contribute as a result of the announcement can't, without addressing the relicensing issue without having already picked a new license.

Comment: Re:This. (Score 1) 219

by tlambert (#47942943) Attached to: Ask Slashdot: How To Pick Up Astronomy and Physics As an Adult?

Now add to this that most major contributions in any scientific field occur before someone hits their mid 20's...

Tell me, does this account for the fact that the majority of people working in a scientific field graduate with a PhD in their mid 20s, or is it simply a reflection of that?

I expect that it's a little bit of both. Look however at Kepler and Tycho Brahe. Brahe's observational contributions aided Kepler, but he started well before he was 30. Kepler had his theories before 30, and was aided by Brahe into his 30's proving them out. Counter examples include Newton, and so on. Most Large contributions that aren't ideas themselves are contributions based on the wealth of the contributor, e.g. The Allen Telescope Array.

Like the GP, I'm in my late 30s and have found that my current field is less than optimal. It is a) unfulfilling, b) extremely underpaid (if I do more than 13 hours a week, the CEO running the studio is just as likely to steal my hours from me as not), and c) unlikely to go anywhere.

Reason (a) is motivation to do something that could be big, if the new reason is passion.
Reason (b) is a piss poor reason to do something big; there's no passion involved.
Reason (c) is ennui.

If you get into something solely to satisfy (a), you have a chance at greatness; if you do it for the other two reasons, even in part, you are unlikely to have the fire to spark the necessary effort. For example, the OP's willingness to dedicate 10 hours a week from a 24x7 = 168 total hours in a week really speaks to the idea of someone acting out a dilettante reason, rather than a reason of passion. Excluding sleeping, you could probably argue for 86 hours a week for a passion, and that's less than 11% of the "every moment of every day" you'd expect with a passion.

Comment: This. (Score 1) 219

by tlambert (#47940771) Attached to: Ask Slashdot: How To Pick Up Astronomy and Physics As an Adult?

I can only spend maybe 10 hours a week on this

Since you already have a full life, something would have to give. The amount of time you estimate to be available would get to hobby level: the same as the other thousands of amateur astronomers in the country. But it's not enough to do any serious studying, get qualified or do research to a publishable quality.


I read through the comments to find this comment so that I didn't just post a duplicate if someone else had covered the ground.

Let me be really blunt about the amount of time you are intending to invest in this project. If you were taking a college course, you should expect to spend 2 hours out of class for each hour you spend in class, and given that you only have 10 hours to dedicate to the idea, that's effectively 3 credit hours for every interval. So if you picked a community college, and they offered all the classes you needed, you should expect to have your Bachelor's of Science in any given degree field in about 23 years. That gets you to the necessary 210 credit hours for an Astronomy degree.

Let's say, though that you are a super genius, and can do 1:1 instead of 1:2 for in/out of class. That only cuts your time by 1/3, which means that you get that degree in 15 years instead.

Now add to this that most major contributions in any scientific field occur before someone hits their mid 20's; there are exceptions, but let's say again that you are exceptional. What contributions do you expect to be able to make after age 61 / 53, with your shiny new Bachelor's, since you're unlikely to find someone to hire you at that age, and you're unlikely to be able to afford instrument time on the necessary equipment on your own?

Comment: I would say you have it right. (Score 1) 318

by tlambert (#47935385) Attached to: Apple Locks iPhone 6/6+ NFC To Apple Pay Only

I would say you have it right.

Apple initially didn't open up the iPhone to Apps at all because Steve was deathly afraid of building another Newton.

Then they wanted to open them up, but there was not rational set of APIs, there was just an internal morass, because it had never been designed with the idea of hardening one app on the iPhone from interference by another app on the phone, or hardening the phones functions against a malicious app.

This is a single App on a single use, incomplete, API, one which was built only to host this App and nothing else. Could that API be exposed, and used for other applications? Yeah. Would that enable all possible NFC applications which you might want to implement in the future? Not a chance in hell.

This is just Apple wanting some bake time so that they can rationally support an API that they happily demonstrated opening hotel doors and other things which they are not prepared to open up at this point in time.

Comment: Re:TDD FDD (Score 1) 231

by tlambert (#47929413) Attached to: Ask Slashdot: Have You Experienced Fear Driven Development?

Tests need to be fast and repeatable (among other characteristics). Tests must be of high quality as your production code. If you would fix "timing related" issues in your production code, there is no reason your tests suffer from the "timing related" issues either.

There's no reason they *should*, but they do unless you correct the test. The problem is in the test code, or in the wrapper that runs the test code. But consider an automated login test on an isolated network with a credentials server that races to come up with the browser that's attempting the login in the test case. If the login happens to start before the login server gets up and stable, then your login fails, and so does your test case, even though it's not a problem with the browser you are nominally testing.

This is/was a pretty common failure case with the ChomeOS build waterfall because Chrome was considered an "upstream" product, and therefore changes in Chrome, when they occurred, could throw off the timing. There wasn't a specific, separate effort to ensure that the test environment was free from timing issues. And since you can't let any test run forever, if you intend to get a result that you can act upon it in an automated way, you get transient failures.

Transient test failures can (sort of) be addressed by repeating failed tests; by the time you attempt to reproduce, the cache is likely warmed up anyway, and the transient failure goes away. Problem solved. Sort of. But what if everyone starts taking that tack? Then you end up with 5 or 6 transient failures, and any one of them is enough to shoot you in the foot on any given retry.

Now add that these are reactive tests: they're intended to avoid the recurrence of a bug which has occurred previously, but is probabilistically unlikely to occur again; when do you retire one of these tests? Do you retire one of these tests?

Consider that you remove a feature, a login methodology, a special URL, or some other facility that used to be there; what do you do with the tests which used to test that code? If you remove them, then your data values are no longer directly comparable with historical data; if you don't remove them, then your test fails. What about the opposite case: what are the historical values, necessarily synthetic, for a new feature? What about for a new feature where the test is not quite correct, or where the test is correct, but the feature is not yet fully stable, or not yet implemented, but instead merely stubbed out?

You see, I think, the problem.

And while in theory your build sheriff or other person, who's under fire to reopen the tree, rather than actually root-causing the problem, doesn't have time to actually determine a root cause. At that point, you're back to fear driven development, because for every half hour you keep the tree closed, you have 120 engineers unable to commit new code that's nor related to fixing the build failure. Conservatively estimate their salary at $120K/year, then their TCO for computers and everything else is probably $240K/year, and for every half hour you don't open the tree back up, that's ~$14K of lost productivity, and then once you open it up, there's another half hour for the next build to be ready, so even if you react immediately, you're costing the company at least $25K one of those bugs pops on you and you don't just say "screw it" and open the tree back up. Have that happen 3X a day on average, and that's $75K lost money per day, so let's call it $19.5M a year in lost productivity.

This very quickly leads to a "We Fear Change" mentality for anyone making commits. At the very least, it leads to a "We Fear Large Change" mentality which won't stop forward progress, but will insure that all forward progress is incremental and evolutionary. The problem then becomes that you never make anything revolutionary because sometimes there's no drunkard's walk from where you are to the new, innovative place you want to get to (eventually). So you don't go there.

The whole "We Fear Large Change" mentality - the anti-innovation mentality - tends to creep in any place you have the Agile/SCRUM coding pattern, where you're trying to do large things in small steps, and it's just not possible to, for example, change an API out from everyone, without committing changes to everyone else at the same time.

You can avoid the problem (somewhat) by adding the new API before taking the old API away. So you end up with things like "stat64" that returns a different structure from "stat", and then when you go and try to kill "stat" after you've changed everywhere to call "stat64" instead, with the new structure, you have to change the "stat" API to be the same as the "stat64" API, and then convert all the call sites back, one by one, until you can then get rid of the "stat64".

That leads to things like Solaris, where the way you endure binary compatibility is "give the hell up; you're never going to kill off the old stat, just live with carrying around two APIs, and pray people use the new one and you can kill off the old one in a decade or so". So you're back to another drunkard's walk of very slow progress, but at least you have the new API out of it.

And maybe someday the formal process around the "We Fear Change" mentality, otherwise known as "The Architectural Board" or "The Change Control Committee" or "Senior VP Bob" will let you finally kill off the old API, but you know, at that point, frankly you don't care, and the threat to get rid of it is just a bug in a bug database somewhere that someone has helpfully marked "NTBF" because you can close "Not To Be Fixed" bugs immediately, and hey, it gets the total number of P2 or P3 bugs down, and that looks good on the team stats.

Comment: Re:TDD FDD (Score 0) 231

by tlambert (#47925269) Attached to: Ask Slashdot: Have You Experienced Fear Driven Development?

Having some experience with both FDD and TDD, I can attest that test driven culture where automated testing is fully integrated into the dev process pretty much addresses all three of your conditions.

The wrong kind of TDD leads to FDD of the type where you're afraid to break the build.

The problem with TDD that leads to this is that TDD is almost totally reactive; that is, you find a bug, you write a test for the bug so you can tell when it's gone; you get rid of the bug, and now you have this test which is going to be run on each build, as if you are not already hyperaware, having both experienced and fixed the bug, of the conditions leading up to the bug. The annoying part, of course, is when you start taking longer and longer amounts of time to get through the build to an acceptance of the build, for each test you add. Then to make things even worse, add to that the occasional false failure because the test is flakey, but it's someone's baby and it "usually works" and the failure is "timing related", and now you're testing the test, and rejecting a perfectly good build because you're unwilling to either rip out the test completely, or make it non-fatal and assign the bug on it back to the person who wrote the original test.

TDD with test cases written up front, and not added to without an associated specification change: Good.

TDD with test cases written to cover historical bugs identified through ad hoc testing: Project Cancer.

The second worst thing you can possibly do is write tests for no good reason because you're able to write tests, but unable to contribute to the core code, and you still want to contribute somehow. The worst thing is being the code reviewer and letting that type of mess into your source tree because you want the person submitting the tests to not feel bad about them not getting accepted.

Comment: Re:well (Score 2) 198

by tlambert (#47918183) Attached to: WSJ Reports Boeing To Beat SpaceX For Manned Taxi To ISS

Or just the better alternative. It is hard to seriously argue that Boeing is so much behind Elon Musk, that anything space related should be given to the latter.

Given that Boeing will already be 3 years late to the party, when SpaceX has manned capability up and running this coming January? We're supposed to wait another couple of years for manned launch capability, when the Russians have already said they wouldn't be hailing our asses into orbit any more? I don't think "Time To Market" is a difficult argument.

Comment: One thing Swift will address... (Score 3, Informative) 180

by tlambert (#47916599) Attached to: Why Apple Should Open-Source Swift -- But Won't

One thing Swift will address... There are currently 3 memory management models in use in Objective-C, and for some of those models, you don't get a retain count automatically (for example, this is the case for a number of collection objects when doing an insertion).

Swift has the opportunity to rationalize this, which is not something you could do with the Objective-C libraries themselves, since doing so would change historical APIs and thus break old code.

It wasn't really until Metrowerks basically became incompatible with the Intel switchover and the 64 bit support had to drop certain types of support from Finder due to 64 bit inode numbers, and while I happily would have made them new header files so that they would have continued to work with the UNIX Conformance work, where Ed Moy and I basically broke their local private copies of their header files, since Motorola sold off the Intel version of the Metrowerks C the week because Apple announced Intel, it was pretty much DOA at that point.

So it basically took an Act Of God to get some people to get the hell off some of the old APIs we had been dooming and glooming about for half a decade.

Swift is another opportunity for that type of intentional non-exposure obsolescence to clean up the crappy parts of the APIs and language bindings that haven't been cleaned up previously due to people hanging onto them with their cold, dead hands. Hopefully, they will advantage themselves of this opportunity.

Comment: Re:Google should win this if they went to court... (Score 1) 290

by tlambert (#47892481) Attached to: German Court: Google Must Stop Ignoring Customer E-mails


2. information for quick access

Paragraph 5 para 1 no 2 TMG says literally:

"Information to enable a fast electronic contact and direct communication with them, including electronic mail address."

You can hardly more clear than that. And if Google answers:

Google will not respond to or even read your message

it definitely breaks the law, since this is not even a one sided communication.

The problem here is that the law *requires* an email address. It was never really thought out for large companies with billions of customers, and the law is effectively a bad law as a result, but it is still in fact the law.

I can imagine that the response is going to be something like an IVR system, where you are emailed back something which requires you provide more context ("or you can click here"), and repeats the process narrowing down the context, each time ("or you can go here"), until it drills down to the automated system where it can bucket it into the appropriate web form you should have used in the first place instead of sending them an email, or your problem is answered, or you give up and go away.

Unless there's also a law against IVR in Germany?

Guaranteed that most of these emails to that address are SPAM and/or people bitching about seeing things in the search results they don't want to, or not seeing things in the search results that they expected to, and a human would be telling them, very politely, that nothing will be done about their complaint and/or they are not interested in pretending to be the heir to the fortune on deposit in the Bank of Lagos by the wife of the late oil minister ("now deceased, God Bless").

Comment: The fiction of net metering... (Score 5, Insightful) 444

by tlambert (#47887215) Attached to: If Tesla Can Run Its Gigafactory On 100% Renewables, Why Can't Others?

The fiction of net metering is that you will not be paid the same amount for the electricity you generate as for the electricity you consume.

On of the purposes of "Smart Meters" is to permit differential pricing on electricity produced vs. consumed; it's not just to provide a temporal demand market. There are already tariffs in place in California where PG&E only has to buy as much electricity as you consume for a net 0 energy usage, rather than being required to purchase everything you generate over what you consume.

The idea of a large grid only works if someone pays to maintain that grid, and that pricing comes in as a differential.

Everyone can't do what Tesla is doing because not everyone is going to have the storage capacity to make it economical; Tesla can just rota the batteries it manufactures in service to the manufacturing plant itself, as part of "burn in testing", so that it'll get local off-grid storage as a side effect of the manufacturing process itself.

I suppose that "every rechargeable battery manufacturer can do what Tesla does" would be a fair statement, but that's a tiny subset of "everyone"

Comment: Re:Great, they've invented "MedBook"... (Score 1) 198

Almost everything everyone complains about regarding Facebook is related to its choice of NoSQL as an underlying implementation technology:

- You don't get to see all of your friends posts
- Everyone who follows you isn't guaranteed to see all of your posts
- The computational overhead of making ACID guarantees is available ... if you pay for the extra work (i.e. step back to ACID)
- Posts show up out of order
- A comment on an old post by someone brings the whole thing back as if it's a new post

It follows that the other things that people complain about Facebook over are sure to follow into the NHS implementation, if they are taking that lead to its logical conclusion - meaning advertising replacing desirable content in the medical record.

Comment: Great, they've invented "MedBook"... (Score 1) 198

by tlambert (#47869175) Attached to: UK's National Health Service Moves To NoSQL Running On an Open-Source Stack

Great, they've invented "MedBook"... what you see when you look at it is a fraction of the available data at any one time because it has "arrived" at the node where you are viewing it from yet.

What do I have to do so that my drug allergies and blood type are "sponsored postings" so that when my doctor looks at them, he doesn't kill me due to all of the auto-play video advertisements for Cialis being there instead of the information I want to be there?

Some people have a great ambition: to build something that will last, at least until they've finished building it.