Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!


Forgot your password?
DEAL: For $25 - Add A Second Phone Number To Your Smartphone for life! Use promo code SLASHDOT25. Also, Slashdot's Facebook page has a chat bot now. Message it for stories and more. Check out the new SourceForge HTML5 Internet speed test! ×

Comment Re:Caching by you vs. by your ISP (Score 1) 250

I suspect there are too many folk working on these things that have never experienced such a situation and cannot comprehend that it still exists (and will do for a long time to come). "But I have unlimited gigabit fiber for $0.35 a month in my SF apartment, so everyone everywhere must be the same".

Comment Re:but you arent a traditional CA (Score 1) 250

I believe the current "head-up-ass" view of this is that you should just throw another few bucks to a CA every year, or get off the web. Maybe just give all your content to Farcebook, Gargle, Nanosoft etc, because why should us peons be allowed to put things on the web without what amounts to the modern version of royal assent? (It's usually couched in terms like "Well, how do you know your content wasn't altered by the time it got to the client" and "Your ISP is secretly recording everywhere you go and everything you do"). These concerns are not incorrect, but they can be ... overemphasized.

To be fair, there are cheap places to buy certificates - I was looking recently and found I could get one for about $30 for a normal site. But wildcards etc are still hundreds if you need more than one domain. Killing a free CA (who is delivering exactly what they say they will) isn't going to help.

Comment Re: Phishing is good (Score 1) 250

To be fair this is because browsers like Chrome (swiftly followed by Edge and Firefox) have all decided that the search bar SHOULD act exactly like search. They removed the dedicated search box in favour of a "smart" unified typing place that in my experience, fails to select the correct thing to do about 50% of the time.

It's almost impossible to just type a hostname into the Complete Unified New Technology bar and consistently have the browser load the site (unless you hack Firefox options; I don't use Chrome so I don't know if it's possible at all and I can't see a way to make Edge be sane). No - a simple word MUST mean you're searching for something even if it's locally resolvable and not a word in any language. Thanks Google et al, making the world a worse place, one step at a time.

Comment Re:Never saw that coming (Score 2) 250

OK but then you have to have cross-checks that let people register/get certs for paypal-sucks.com without also permitting paypall.com, unless paypall.com is a legitimate business (PayPall being some payment processor in, I dunno, South Uzbekhistan). You also have to prevent getting wildcard certificates for anyone, because then they could set up paypal.com.golbalisecure.com (just by getting a wildcard for com.golbalisecure.com) - which would also let them get close to microsoft.com(.golbalisecure.com), google.com(.golbalisecure.com) etc.

This is not a problem easily solved with simple rules. And even THEN you get to the point of having hundreds or thousands of people employed to push yes/no buttons, which would surely not lead to underpaid, bored staff with bad KPIs/goals just repeatedly clicking Yes with no thought.

How did that help, again?

Comment Re:I believe it (Score 1) 522

So let me see. Was it:

  • * correct horse battery staple
  • * correct horse staple battery
  • * correct donkey battery staple
  • * wrong horse battery staple
  • * maybe dolphin pen balloon
  • * cable muppet carriage piggy
  • * ...

All the people pushing hard passwords and catchphrases should probably read this again. They're the top 5%-8% of the population. WE are the top 5%-8% of the population in this regard and we can't even get it right. What chance does your average tradie have - they may be experts and legends in their fields but in ICT they're ... well, normal. Have you watched most people type a password or email?

I can't wait for Windows Hello or something similar on phones (Samsung have something I think, windows phones did/do?) to get better and better so that people can have stupidly complex passwords in a safe and use their faces to unlock on a daily basis (it's one thing to sign you into a game console, it probably should be another level entirely to unlock the nucular (sic) launch codes).

Comment Re:This is bullcrap (Score 1) 522

Then let them do the same thing here - that's what they DO with locks, and locked safes, and safe-rooms, and vaults, and anything else "physically secured" in that way. Oh - you're saying this is a Lonsdaleite lined safe and you only have cream cheese with which to cut it open? Sorry, not my problem. I'm with others above - either you don't have evidence (and you're fishing) or you do have the evidence, in which case I think the phrase is "crap or get off the pot".

Comment Re:The part they got right is, no discussion (Score 1) 477

The biggest problem with SO seems to be moderators stuffing around with the questions. "This is a bad question" (so I'm deleting it). "This belongs elsewhere" (so I'm deleting it). "I don't like the way you asked this question" (so I'm rewriting your 'how to do X' question to ask 'why is Y bad').

Thing is, people ask those questions in that way because it reflects how they think about the problem. Other people who think about it the same way won't be able to find an answer because the self-absorbed twits haven't figured out that if you asked a specific question, that's the one you need answered - not something random! As for deleting questions - FFS. Link to an existing one sure. But deleting questions doesn't help anyone.

Somewhat related: Curation sucks (SO, Yahoo Answers). Search is the answer.

As for the original question: Something is rotten somewhere. Ask a silly simple question you get slammed. Ask a detailed question with lots of information, no-one answers because it's too long or too hard.

Comment Re:Subject (Score 1) 290

So I can't buy something while on holiday in the US, and install on my PC at home in Australia? What if I buy something and move countries? What version do I buy if I live in Australia, travel to the US (and need to use the software there) and take a contract in the Ukraine? Region locks suck, may not be legally enforceable in some countries such as Australia - ACCC Copyright fact sheet used to say this about DVDs, emphasis mine:

An access control TPM specifically excludes TPMs which control geographic market segmentation. This means that consumers will be able to circumvent the region coding TPMs on legitimate DVDs purchased overseas. It also allows for the continued availability of region-free DVD players.

They also suck for users.

But then I guess that's the holy triumvirate, isn't it? Trying to force people to re-buy the same thing multiple times?

Comment Re:IETF BCP: no public smearing servers (Score 1) 179

It's Google doing this. You just have do it Google's way because someone at Google arbitrarily decided it was the best thing to do for Google, regardless of existing standards, other environments or systems, or indeed the rest of the world breaking as a result.

Look at Gmail's implementation of addressing. Dots in the user portion of the address were significant in 1982 (RFC 822 / STD 11), but not for Google, who cannot differentiate Bob.Dole@ from BobDole@. Still. In twenty-freaking-sixteen.

Comment Re:Never mind storage upgrades (Score 2) 478

Look. To Apple (and it seems most of the ICT industry, yay Cloud etc etc) everyone has dual-path failure-resilient 1Gbps wireless Internet with unlimited quotas. They literally fail to comprehend that there could be people who only have 1.2Mbps/200Kbps DSL, only have 10GB of quota a month, or who work disconnected (e.g. away from 3G and 4G networks too). "Ubiquitous wireless" means no RJ45 (without dongles). "Ubiquitous high speed uploads/downloads" means the cloud performs OK (ignore the arguments about ownership, my files on someone else's computer and how much they do or don't care), so everyone backs up to the cloud always. There are no software bugs ("You're doing it wrong") and even if there are, meh, "not my problem, tough luck, your 5TB of backup is gone but our liability is 1 month's service at $5, you won't be billed next month if you argue enough".

Yeah yeah the future is coming and we'll all have 20Gbps mobile broadband. It'll cover every inch of the earth with no need to make allowances for remote areas, and we will achieve near zero latency everywhere (ask a SF or Redmond developer about latency to their clouds from the other side of the planet on a satellite connection and see how many guess less than 200ms (Hah! Closer to the 800+ms mark)). Maybe in this Utopian future it will make sense to assume what Apple and others assume today.

It's my GOMS* talking I am certain, but the current generation of go-getter developers hasn't lived through enough history to understand the times when they push the envelope too far. Just like my generation didn't 20 years ago, and the previous one 20 years before that. We're going to have to deal with this crap for another ten years or so till it levels off; then we should hopefully have ten years of sanity. Don't hold your breath.

*: Grumpy Old Man Syndrome, I'm over 40 now

Slashdot Top Deals

"The following is not for the weak of heart or Fundamentalists." -- Dave Barry