Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!


Forgot your password?
Compare cell phone plans using Wirefly's innovative plan comparison tool ×

Comment Re:Ubuntu Is Dying A Slow Death (Score 1) 89

My problem with unity is the papercuts... Opening dash and sometimes I can't get a terminal by typing t + enter, other times it works... Small things like that.. Oh, and animations and stuff that flickers... Even with intel graphics and latest ubuntu it still felt sketchy and crash occasionally.

Gnome shell isn't much better, but a little... as long as get nautilus as patch by ubuntu, can't live without decent type-ahead... I tried, and I'll never be able to move away...

Comment Re: Dey tek er jebs! (Score 2) 332

There aren't many 30k/yr H1Bs see the distribution: https://www.graphiq.com/vlp/YQ...
And this is a strict lower bound, I make a lot more than what is reported in my LCA. Sure there is some abuse IMO 60-80k is problematic.
Most likely it seems like you just need the laws to be enforced... Like so many other broken things in America.

Comment Re:Turn over: yes. Decrypt: no (Score 1) 136

A smart provider however will have implemented its data management software in such a way that only his client has the key to decrypt the data it just turned over to the government. That way it cannot even be forced to decrypt it without violating the rules of mathematics and complexity theory.

The problem is that sometimes the key is temporarily present on the providers machines, either sent with API requests for server-side encryption, or present on a VM running client software in provider cloud.

And as of recent stories it seems US govt believes it can't force the cloud provider to record the key when temporarily present. To me that is the equivalent for forcing the provider to spy on your behalf because the provider isn't merely providing stuff it has on file. Curious what is your take on this?

Comment Yes and no (Score 3, Insightful) 19

If you need to share the key with the provider....

Yes, it's not the same a client side encryption. It's hardly an alternative, but it is most certainly a valuable addition.
It won't protect you from the NSA, etc.. But it can protect you from accidental leaks of credentials, compromised accounts, rouge under paid datacenter interns, discarded harddrives ending up who know where... Or software bugs at the provider.

It's an extra layer of attack mitigation that you should use in combination with client encryption, because client side encryption is easy to get wrong, so having an extra layer is good.

Also I'm sure this helps with compliance of regulations that might not always make sense...

Comment Re:Moore's Law ended years ago, for many (Score 1) 133

I guess for most people Moore's law is going to be reformulated to fit whatever narrative you're trying to sell..

On topic, it's all about performance, exactly how it improves is perhaps less important... I suspect that future performance improvements will have to come from software though. It's easy to make CPU faster, but that doesn't help much when software jumps of out the CPU cache :)

Comment Why not... (Score 1) 67

Public IT is definitely who should not be responsible for this kind of testing

Remember the debate after heart bleed... We were all asking ourselves how come nobody invested in security auditing for openssl.
We all took this infrastructure project for given. For the public sector to invest in some open source infrastructure projects is not a bad idea.

I'm not suggesting that the public sector review everything, but for the public sector to identify and invest in a few heavily re-used open source projects is not bad idea. It's like public sector investment in roads and other infrastructure.

Comment Re:Keep dreaming... Azure is super sketchy.. (Score 1) 75

there's 3 years of development time between now and 2019, and with Microsoft's deep pockets

Microsoft is stupid... Sad but true. They are not developing consistent services. Throw whatever money you want after it, if you have no single user manage, authentication and authorization system covering all APIs you loose. If you have different arbitrary restrictions on what ASCII chars is allowed when naming resources for different services (just in azure storage service, not counting everything else), it's going to fail...

AWS is not perfect, but it is fairly consistently designed... As in IAM users and policies for all access control (with exception of S3 which has some legacy options too)...

It's pretty clear that azure services are being developed by different teams who don't talk to each other.

Comment Re:Keep dreaming... Azure is super sketchy.. (Score 2) 75

I also have a few with Amazon too. No trouble there either. How is Azure sketchy?

An azure storage accounts have a single secret key shared between all users... If you have two servers/apps/persons using the same storage account they MUST share the same secret key. You can issue temporary keys, but you have to build an manage an authorization system that issues such keys. The user management in azure does not extend to cover storage accounts other than all or nothing, and all users share the same secret key. This is insane! Unthinkable in any non-trivial deployment.

Comment Keep dreaming... Azure is super sketchy.. (Score 4, Informative) 75

Having used both Azure and AWS, I can honestly say that AWS is light years ahead of Azure...

Azure storage services has got some awesome consistency guarantees.. But it won't scale like S3, not in terms of requests, throughput or features.
Microsoft has an abyssal story for authorization and access policies... There is nothing like IAM that crosses all services, some services have policies, other services you get shared secrets (to be shared between all users)..

Honestly, they can't even figure out to make a consistent naming policy between different storage services... Figuring out what characters is allowed in names of fields, resources, urls, etc. is a nightmare... Even with azure storage services (queue, table and blob) they have vastly different restrictions... It's a joke.

The only thing interesting with Azure is their table storage service, price and simplicity wise it's a joy. But given how bad everything else, I'm tempted to move my stuff to AWS and pay a bit more for dynamodb...

Slashdot Top Deals

"Don't tell me I'm burning the candle at both ends -- tell me where to get more wax!!"