Comment Who cares about Google "experiments" anymore? (Score 3) 18
The death clock for it is already probably ticking. Gone in a year or few. Investing any time on it would be a waste.
Comment Next step: deprecate API(s) (Score 3, Interesting) 131
The pessimist in me thinks that if anything is to be learned of past history of Firefox development, the next step after removing a feature from core and into extensions is to deprecate / remove the API(s) this extension relies on to function. Or at least the APIs that enable it to work in a comfortable manner vs. UI experience.
Personally I use RSS feeds of 7 different blogs (wow, blogs still exist?) in order to easily follow when new posts are made. It's not much, but at least I don't have to manually check them out, quick browse through live bookmark menu is enough.
Tencent Joins the Linux Foundation as a Platinum Member (thenextweb.com) 25
Chinese tech giant Tencent has joined the Linux Foundation as a platinum member. From a report: Tencent is one of a few companies to offer the highest level of support to the Linux Foundation. Other tech companies in this stable include IBM, Microsoft, and Intel, as well as fellow Chinese titan Huawei. As part of the deal, Tencent will take a chair on the Foundation's board of directors. It has also promised to offer "further support and resources" to the Foundation's efforts. So far, this has taken the form of Tencent donating several pieces of its software. Already, it's bequeathed TSeer, its service discovery tool, as well as TARS, which is the company's microservices platform. Valued at nearly $500 billion, Tencent is a behemoth of a company. It holds a massive sway over the Chinese tech market, and is spreading its cash (and influence) overseas with strategic investments in companies like Epic Games and Riot Games.
Comment Re:It's in the SouthBridge not CPU dammit (Score 1) 181
Actually some sources say that it has been in the "North Bridge", e.g. what has been known as "Platform Controller Hub" ( https://en.wikipedia.org/wiki/... ) for some time. For example, see ME references in https://www.intel.com/content/...
However, it is stated in the above Wikipedia article: "Beginning with ultra-low-power Broadwells and continuing with mobile Skylake processors, Intel incorporated the clock, PCI controller, and southbridge IO controllers into the CPU package, eliminating the PCH for a system on a chip (SOC) design." This makes it unclear whether also the ME component has been integrated into the CPU package in SoC style in these newer CPUs (assuming that it has been there in the first place.)
Mirai and Bashlight Join Forces Against DNS Provider Dyn (arstechnica.com) 56
A second wave of attacks has hit dynamic domain name service provider Dyn, affecting a larger number of providers. As researchers and government officials race to figure out what is causing the outages, new details are emerging. Dan Drew, chief security officer at Level 3 Communications, says the attack is at least in part being mounted from a "botnet" of Internet-of-Things (IoT) devices. "We're seeing attacks coming from a number of different locations," Drew said. "An Internet of Things botnet called Mirai that we identified is also involved in the attack." Ars Technica reports: The botnet, made up of devices like home WiFi routers and internet protocol video cameras, is sending massive numbers of requests to Dyn's DNS service. Those requests look legitimate, so it's difficult for Dyn's systems to screen them out from normal domain name lookup requests. Earlier this month, the code for the Mirai botnet was released publicly. It may have been used in the massive DDoS attack against security reporter Brian Krebs. Mirai and another IoT botnet called Bashlight exploit a common vulnerability in BusyBox, a pared-down version of the Linux operating system used in embedded devices. Mirai and Bashlight have recently been responsible for attacks of massive scale, including the attacks on Krebs, which at one point reached a traffic volume of 620 gigabits per second. Matthew Prince, co-founder and CEO of the content delivery and DDoS protection service provider CloudFlare, said that the attack being used against Dyn is an increasingly common one. The attacks append random strings of text to the front of domain names, making them appear like new, legitimate requests for the addresses of systems with a domain. Caching the results to speed up responses is impossible. Prince told Ars: "They're tough attacks to stop because they often get channeled through recursive providers. They're not cacheable because of the random prefix. We started seeing random prefix attacks like these three years ago, and they remain a very common attack. If IoT devices are being used, that would explain the size and scale [and how the attack] would affect: someone the size of Dyn."
Comment Will it finally have .. (Score 1) 295
.. case sensitive filenames by default?
Just wondering. I know HFS+ can have case-sensitivity, but not sure if it is on by default. And some people seem to be discouraging that, based on quick googling.
Comment Re:Dear Browser Manufaturers. (Score 1) 95
I see that you don't realize that randomizing, etc. just makes your "signature" more unique. And if you give less information, it makes you more unique too.
The best way to be less unique would be to be very average, or at least look like the majority - e.g. probably the average Windows installation with basic fonts, etc. and most common version of Firefox/Chrome (which varies as time goes by).
Comment Re:Two simple suggestions. (Score 1) 1839
Personally I read at -1, Raw and Uncut because I'm a masochist and often find some funny stuff down in the gutter.
I usually read at +3 or +4, but I give extra +5 score to flamebaits. I started doing it years ago after reading about the idea from somebody else. Those posts are funny/interesting often enough that I haven't reverted it.
Comment Re:Malware (Score 1) 181
Maybe then we'll get proper application whitelisting / sandboxing by default in a desktop OS. And, hell, why do applications get the run of every file I use under my account? Should they not have to request such things first? Even on Unix-likes, if you get on as my user, you can trash all my data - why?
The answer is functionality. Let's consider the example of Android, an OS with a fairly recent security model, built on top of Linux which provides for chroot. Why not put apps into their own chroot jail by default? Seems like a good idea, right? How do you explain to Grandma why she can't upload photos from her camera's image gallery to Facebook? Oh, you'll solve that problem by putting the photos in a public directory? Okay, that eliminates the functionality concern, but now you're right back where you started with exposure to ransomware....
Not necessarily. This can be solved by having a standard privileged file open/save dialog that grants the access automatically to apps based on user input. Of course that limits the UI designs in some ways.. I wrote some ideas 11 years ago how something like this could be done. Partially obsolete nowadays though but still could be doable (except for the web browser parts - web security seems to be a lost cause already). Perhaps once these kind of worse malwares start happening people would finally implement a more secure desktop. There's no reason why I shouldn't be able to easily run whatever program I want without it breaking my computer.
Comment Two clouds with replication! (Score 1) 150
Sorry for advertising my own product, but pretty much on topic here.
(Then you'll only need to hope that there are no software bugs bringing down everything.)
Comment Re:Collateralized vs Non-Collateralized Loans (Score 1) 461
Dunno how it works in Germany, but I think the people should be able to decide for themselves what kind of education they want, whenever they want (+- a few years). And maybe more importantly: If you decide wrong at some point, you should be able to switch if you're good enough. I think the way it works in Finland is good enough. I dropped out of high school (wanted to code all nights), finished it 7 years later when I had more motivation, had no problem getting into university trying out something new interesting I re-learned at high school (biotech!), then deciding it wasn't really worth the trouble and switching back to computer science and getting a BSc out of it. The high school and college stories I hear from the US are pretty depressing usually.
Comment Re:If you HAVE to have a Retina/Pixel display... (Score 1) 392
My laptop comparisons nowadays:
Apple laptop:
MagSafe
Non-Apple laptop:
Non-MagSafe
Until some laptop has MagSafe or similar I won't even consider it. I remember too well when I used to trip over the power cords and drag my laptop on the floor. Or break the power plug because it got twisted when moving the laptop in a bad direction. Or stepping on the power plug and breaking it. (Yeah, I don't treat my laptops all that well.)
Comment Re:Captain Zlog (Score 1) 618
I thought it was somehow referring to the "Captain's log" recordings.. Yeah, haven't watched that much star trek.
Comment Re:Classes/Templates are not a magic bullet ... (Score 1) 406
Any time you join an existing project you have to learn how to use its libraries, this is no different. Yeah, maybe you'll save a few hours of learning time if some of it is standardized by the base language. If that becomes a real issue with someone you probably shouldn't have hired him/her anyway.
Comment Re:Classes/Templates are not a magic bullet ... (Score 1) 406
I'm not sure what you mean. It's possible to have arrays of ints, floats and everything. Looks to me like your idea would assume that array works only on structs? Anyway here's the implementation: http://hg.dovecot.org/dovecot-2.1/file/tip/src/lib/array.h
Slashdot Top Deals
You will be successful in your work.
