So... it's compiled... like literally every other program every made?

What exactly makes compiled code special? EXEs are compiled code. The term "run-only" is stupid. You have to be able to read the thing to run it, and the computer can read bytes just fine, so... where's the problem?

"Tragedy of the commons".

Building a walled garden can be bad, but allowing free and unfettered access to an open field for everybody's use can too.

Hey now, don't be raging on the white hat for doing white hat things. Not all of us have the meme darkness in our souls.

Had to Google to find out that they actually meant a trolley system at street level.

For everybody in the US: "tram" = trolleys on rails in the street. Just so you know.

Why are you touching all those paper towels? Grab one, throw in the cart, get on with your damn day.

Most people do not take that kind of time to comparison shop. If they can just deliver me the damn towels, then that's fine, I do not have brand loyalty toward most household products, nor do I need to molest my items in order to determine that it's a paper towel.

As in, have they figured out how to make their burger taste like a burger? Or the fish taste like a fish?

Because the burger is straight garbage. I don't understand the hype here, those things do not taste like real meat in the slightest. Texture isn't bad, but the flavor is just wrong.

Actually, as soon as we were notified of the issue, the plugin was closed and hidden on a temporary basis until we had time to evaluate the problem. Once we had done so, I personally created a new version of the plugin, without the malicious code, and pushed it to the repository in order to get the update out to the affected users. The existing committers were all removed, leaving the plugin entirely in the hands of the plugin team. The latest version is now safe and will not be otherwise until we determine the full details of what happened here.

Full disclosure is great, but some advance notice longer than a day or so helps a lot. We will always protect our users to the best of our ability, but sometimes, we get blind sided. It happens. Nobody posts about the dozens of other times we fix things before they get exploited. Not judging, just saying.

Least amount of back-and-forth between the developer and the admin ("sorry, your key has to be at least 2048 bits", "you forgot to sign your mail", "sorry, I sent you guys the wrong key"), plus it helps assure it's a dedicated SSH key and isn't shared between many other projects and therefore copied across workstations. Mostly, though, it reduces hassle.

There is no mistake here -- the ssh private keys are generated on the kernel.org provisioning system, encrypted to the developer's PGP key (which is verified using the PGP web of trust) and then emailed out. The developer then decrypts the ssh private key on their workstation using their own PGP private key. Our copy of the ssh private key is destroyed in the process, so we only keep the ssh public key. PGP web of trust is king in the kernel.org world.

Yubikeys also support the HOTP standard, which produces 6-digit codes. This is what kernel.org actually uses, not yubikey's own implementation.

Battle.net authenticator uses TOTP, so yes, you can. :)

Two things. First: It's taxes. Call them taxes. Not revenues. TAXES.

Second: "Pay their fair share" isn't "a phrase meant to evoke a gut response"? Come on. As if anyone's share is somehow more fair if it's drastically out of proportion with what the majority of people pay. Soaking the rich isn't fair. Fair is, Everyone pays the same rate. That's not what the Democrats typically want, and anyone being intellectually honest knows that.

Buffett may give as much of his excess earnings to the government as he likes. Nothing is stopping him, or anyone, from writing a check for as large an amount as possible and sending it to the treasury department. I'm sure they'd be happy to have it, since $4 billion or so would keep the government running for most of a day.

Warren Buffett may write a check any time he likes to make up the difference. A check to the U.S. government for $4 billion, say, would keep the government running for almost a day. If all the billionaires in the U.S. did that of their own accord, we might be able to keep the government running within its means for, oh, a month or two. Good times!

What the hell business is it of yours or the government's what anyone needs or doesn't need to survive?