Forgot your password?

Comment: Re:Interesting, but... (Score 1) 104

by trawg (#48155965) Attached to: Microsoft Partners With Docker

What you might want is a Windows VM (or more than one) inside your Windows that you use for Internet downloads.

At the moment I just run separate VMs, but it's a bit heavyweight.

Remember Docker isn't secure. Process that want to escape can escape.

Hmm, that seems counter to the Docker security model - the processes are not supposed to be able to get out of their container ... or so it claims. How do Docker processes escape?

Comment: Interesting, but... (Score 3, Interesting) 104

by trawg (#48154777) Attached to: Microsoft Partners With Docker

... I'd actually rather see Docker in the user space for Windows. There are zillions of Windows applications that would benefit from Docker-isation - being able to download things off the Internet and more safely run them is something I've wanted for ages.

There are various application sandbox things for Windows (e.g., Sandboxie) but I haven't seen anything open source that is as reliable and commonly used as Docker seems to be.

I think it'd be OK on the server side as well, but I'd love to be able to download nice jailed Docker versions of most Windows apps so I can run them without having to worry too much about what they're doing in my userspace.

Comment: "...if it's in the news, don't worry about it." (Score 3, Insightful) 265

by trawg (#48143729) Attached to: Confidence Shaken In Open Source Security Idealism

I think some of Schneier's words apply here:

"I tell people that if it's in the news, don't worry about it. The very definition of "news" is "something that hardly ever happens." It's when something isn't in the news, when it's so common that it's no longer news -- car crashes, domestic violence -- that you should start worrying."

If this had been a story about a Windows exploit it's unlikely it would have been reported in the mainstream in a similar manner. Even if it had it's unlikely anyone would have paid attention; even the non-technical public is massively desensitised to stories about Windows security issues.

If anything, I'm now /more/ confident about open source security. This demonstrates that when people find problems, they fix them quickly and efficiently. Who knows what is happening in closed source software?

Comment: Re:Just upgraded, lost cookies (Score 4, Insightful) 114

by trawg (#48143517) Attached to: Firefox 33 Arrives With OpenH264 Support

Just curious, what has been breaking for you? What UI features have changed in some significant way since Australis?

SINCE Australis? Nothing major. In a recent version they changed the right click context menu to include icons for reload/back/forward, which irritated me - change for the sake of change. (Also the keyboard shortcut for Private Browsing no longer works - might be a plugin? Not sure.)

Things like that seem little but when you've been using Firefox for years - which I have, every day, for work - little changes like that mean the platform loses a lot of stability, which is one of the things that is most important when you're trying to get things done.

I'm not at all opposed to new features. I don't even care about feature bloat that much. But they should be opt-in. And at the very least, you should be able to opt-out without having to install some third party plugin. Having a new UI/UX forced on me just feels ... rude.

Australis prompted me to install Classic Theme Restorer so I could restore the browser to the way I'd been using it for /years/. (Here's my +5 post about why I disliked Australis.) Enough has been written about Australis so I won't whine about that any more.

Comment: Just upgraded, lost cookies (Score 4, Interesting) 114

by trawg (#48142709) Attached to: Firefox 33 Arrives With OpenH264 Support

Just upgraded then with that grim sense of foreboding that I now get with Firefox upgrades ("what's going to stop working this time? how is the UI I've been using for many years changed now?")

I lost all my cookies - upon reload after the upgrade, I noticed I was logged out of a bunch of websites (including anything using Google Accounts and Slashdot). YMMV.

Comment: Turn off Facebook video autoplay (Score 3, Informative) 108

by trawg (#47848737) Attached to: Facebook's Auto-Play Videos Chew Up Expensive Data Plans

If you're logged into Facebook, this link should take you straight to the settings page where you can disable the auto-playing of videos:

This should work for most people - although my brother (on Mac OS X) was not able to see the 'Videos' sub-menu (which for me appears in the list on the left at the very bottom).

I only use the FB website on my mobile (the constant addition of new permissions turned me off the app), and am not sure if you can disable it within the app.

Comment: Re:The real crime here (Score 1) 465

by trawg (#47732237) Attached to: 33 Months In Prison For Recording a Movie In a Theater

I don't think anyone here disagrees that what he did was wrong and he should be punished - certainly most of the comments I've seen agree with that.

I think most people just disagree with the severity of the sentence - jail time for a single instance of copyright infringement just seems completely disproportionate. Putting him in jail costs a fortune - thanks, privatised prisons - and doesn't seem to do much for rehabilitation (in many cases, doing the exact opposite).

Extensive fines, community service, etc - there are other options.

Comment: Re:Gas station (Score 1) 190

by trawg (#47728505) Attached to: How Does Tesla Build a Supercharger Charging Site?

And for comparison, just how long does it take to build a gas station?

A great question; I suspect it's a while.

Certainly to get rid of a gas station - at least in Australia - is a big deal. There have been a few removed from my area in the last couple of years; I was amazed that the sites sat empty for so long (premium real estate!) but then discovered that there are regulations from our EPA about how they need to be cleaned.

I think it's a minimum of one year before they can be "reclaimed" for other use. I suspect an electric charging station doesn't require that kind of overhead!

Comment: Vision and attention (Score 1) 142

by trawg (#47623875) Attached to: New Car Heads-Up Display To Be Controlled By Hand Gestures, Voice Commands

My partner is a vision and attention researcher, so I've absorbed some fascinating information about how vision and attention are related.

You can be looking at something but not actually paying any attention to it. Further, your attention works differently at different depth planes - so while you might be focused on the HUD thinking that you're still aware of what's happening on the road, you almost certainly are not.

This sounds like an interesting device but - based on my partner's research and what she's said about it - it doesn't seem like it deals gracefully with issues of attention. I think there's definitely the potential for regulatory restrictions on devices like these if greater risk is demonstrated.

Comment: Re:We should add our own encryption??? (Score 2) 176

by trawg (#47522973) Attached to: Dropbox Head Responds To Snowden Claims About Privacy

You realise dropbox is free, right? Why should they do something expensive like offer encryption on a service that is (a) free, and (b) for sharing files. Sharing's hard if your stuff is encrypted, and sharing is the source of most of Dropbox's value.

I'm a paying Dropbox customer.

I would love a feature that lets me client-side encrypt my files before they go to their server; one where the keys never left my machine - being aware that if I lose them, I lose all my data.

I would want the client software to be open source though and suspect that might not be in their interests.

Ultimately though I think they've made a conscious choice to not offer a feature like this not because they don't want to or because NSA, but because they see it as a support nightmare.

I tried a few of the alternatives that do client side encryption - Wuala and SpiderOak. I found them completely painful compared to the simplicity and elegance of Dropbox.

Comment: Re:And what about Economic Terrorism? (Score 1) 242

by trawg (#47520013) Attached to: The Secret Government Rulebook For Labeling You a Terrorist

The 1% are just playing the game that US politicians were happy to sell to them. I can't fault them for their scummy behaviour. I can't hate them for taking advantage of a system that is broken.

Your elected officials are supposed to be standing up for the citizens, not selling out their office - and their country - to the lobbyists that basically seem to control the fate.

The really sad part is everyone feels stuck in this two party system, this horrible false dichotomy that has been carefully manoeuvred by interest groups to accomplish basically nothing - except preserving the status quo. Well, and sending it on this downward spiral into a scary police state.

I wish I could contribute to Lessig's Mayday campaign, because it is one of the few genuine attempts at reform, but I'm not a citizen or permanent resident (though I currently live in the US). I volunteered some time to help their technical team and wish I could do more.

[Crash programs] fail because they are based on the theory that, with nine women pregnant, you can get a baby a month. -- Wernher von Braun