Posts by Michael C

no rights???

China actually has some pretty tough laws on worker rights. They're technically stricter than ours. Pay rate is lower, but so is cost of living by a larger difference. The "sucky conditions" apply to a limited number of manufacturing floors, none of them apple, but overall considering 300,000 people LIVE inside the factory (literally in dorms), and that is looks nicer and better built than many of the malls and airports here in the USA, it really isn't that bad. Cultural differences taken into account, those people actually fight over each other to get a job there. It's a huge step up from the alternative.

India was worse than china 25 years ago. Once money flowed through their economy, cost of living and access to things went up, and then did wages, and then services, and then wages, and now they live on par with some 1st and 2nd world major cities and have internet at home, and more, and can thus no longer compete, and companies are moving out in droves coming back to the US and the economy there is tumbling. China is trying hard to avoid that rapid inflation, as it killed tens of thousands of Indian citizens who could not move with the times and starved.

The pay scale is low, as is the quality of home living, but the pay they get pays the bills and food and then some. A person in china can actually live on $150 per month. Keep in mind, culturally, whole families live together, with some households having 5, 6, or more workers. That's their culture.

Apple and others place greater than required restrictions on employees working in their areas of the factory. Some companies only hold Foxconn to state required laws. Most don't audit to ensure that's happening. Apple does, and published that information openly. In a population of 300,000 people, and another 150,000 or so employees in addition to that, yes, if you look for abuse you will find it. Same is true here in the USA (where our own worker suicide rate is near TRIPLE that of Foxconn btw).

better link

http://www.apple.com/supplierresponsibility/

This has been in place for a long time... Since 2008 apple has been PUBLISHING, willfully their on-site inspection reports (they were private before that). Many times in history apple has fired a company (yes, an entire supplier), or refused payment or shipment of merchandise for a supplier failing to meet not only local laws, but their own standards. Of all the companies FoxConn manufactures for, Apple is the SOLE company who conducts regular on-site inspections as well as "surprise" inspections. Until the suicide reports, it had been over 3 years since any other firm had an on-site labor condition inspection at all.

60 hour weeks are permitted. 10 hour shifts are permitted. Guess what, they are here in the USA too, and in FoxConn, they're required to be paid their premium rate for ANY hours over 40 in a week. Not all companies enforce such restrictions, and Chinese law does not either, and yet even with these conditions, people willfully leave employment at one company for a chance to work at foxconn.

In a population of 400,000 people, YES, you will find abuse if you go looking. Fact: the suicide rate among workers there is lower than the general US population suicide rate, lower than the specific demographic of US population on par with foxconn workers, and lower than the Chinese suicide rate for the same demographic as well.

As for dawn to dusk, I leave my house before sunrise and arrive home after sunset more days of the year than I do not. This is NORMAL if you commute more than an hour to get to work, or if you work in some fields. 6 different jobs I've had in my career I have averaged over 50 hours per week, and I can't count the number of 70+ hour weeks I've worked. At several points I've lived in crappy, leaky, dysfunctional, insect infested, apartments, or on a friend's graces not being able to afford a place of my own, while working here in the US well above minimum wage and doing said 50+ hour weeks. Everything is relative.

if its ion their network, its under their control.

During the contract term, yea, they might be able to enfoce significant controls (its still technically their device) but even after that, you stil have a ToS contract in place to get onto their network at all. They know damned well if you can jailbreak, you can tether without paying for it, can make certain VoIP calls without paying for them, can SMS without paying for it, can steal their partner's apps without paying for them, and more. Yes, JBing has options other than theft, but in general, just like Torrenting, theft is the #1 use by vast margins. Your want to be on their network, you have to acceopt their terms, same as driving a car on a street. (you can't just mod out the headlights for red lasers and go galavanting around, you have to follow the rules). The airwaves do not belong to you. Remove the transmitter, and I'm sure they'll let you feel free to mod however you like...

a few points

first off, it;s not the device, it;s the network. mod your device and you can cheat the system, skip paying for tethering, abuse unlimited plans, bypass SMS and other fee based services, steal ringtones, and more. These are ToS violations. Refusing to let you jailbreak makes this easy to police.

next, you can decorate your phone all you like, as you can your house. Wallpaper, tones, skins, cases. However, making structural modification to your house not only requires local permits, it requires permission from the lien holder as well. Want to take out a few walls while 90% financed and don;t think the mortgage company will question it, or stop you? think again. unless the investment you make is 100% cash and the value of the house will go up far more than the investment, and that can be backed up with lots of documentation, they WILL refuse it. Heck, i know people who've gotten nasty letters from a mortgage company just because they let the landscaping work slide a bit and it started to effect the home value.

Its your device, but its their network. One that's not only used for important calls between you and other people, but also emergency services. Its also based on a pricing model that assumes a minimum income per terabyte of data in the netowkr. They gave you unlimited data because a phone alone really can't use that much of it. Conenct a PC without paying extra and you screp up their math and cheat the system. Enough people do it (and on android it's proven rampant), and they start having backhaul issues and cost overruns, not to mention big bills from "partner" carriers when you;re on a shared tower.

subsidy

You didn;t read your contract. The phone is THEIRS until you meet the terms of the contract. Its subsidized. They CAN demand its return at any time, or demand you pay a termination fee plus additional prorated contract fees. Though the bulk of the handset belongs to you, parts of it (the chipset) are in fact property of the phone company, and must be surrendered on demand (functional or not). 99% of the time, they just charge you money as the termination fees are valued at more than the device. (and most people will just as well smash it then send it back broken in a box anyway).

Now, you are right however about their being 2 contracts. There's the contract for service, including the subsidy and your obligation to pay (and the penalties for not), BUT there's also a Terms of Use contract which is agreed to separately. Even if you bring youtr own phone (lets say a trac phone or other pay-as-you-go), they STILL have rights to tell you how and when you can use it, what software can and cannot be on it, and more, in order for you to be allowed on the network at all.

I'll take that bet

especially since apple has denounced such a practice in the past, and openly supports the jailbreak movements. Apple has routinely left a jailbreak unpatched through several iOS releases, only closing it when an actual security threat is presented associated with that hole. Yes, your warranty is void if you jailbreak, big deal. The warranty on the engine on my car is void, as is the warranty on the electronics, if i modify it in any way (including changing the car's CPU, installing a new radio, and more). That is not unusual.

Apple breaks jailbreaks in most releases because the jailbreakers use published security vulnerabilties that could be used for other attacks. NOT closing those would be an issue. Also, NOTHING forces you to upgrade the OS on iOS (unless you want the new features it released or to use software that uses a newly available API). On Android, OTA patching can litterally force you to upgrade, not only breaking jailbroken phones, but potentially also rendering purchased software useless or incompatible. At least with iPhones i can voluntarily roll back. On many android phones, if you do, they'll just push the update again. (some can be overridden, some can't, ad if they feel its necessary, they'll push a patch you can not stop. iPhones have no OTA patch system, they considder the existing of one a security issue that could be exploited, as they should).

just as i do with iOS

I can jailbreak iOS any time I want. I know full well that the next release will likely (but not allways) break that, but I can update to tyhat new release (for free) at my option, when it;s also been jailbrokebn. I have no want, nor do I care to bother.

Now, with android, they're taking away that choice. Without the "Draconian" controls of Apple, the ISPs and providers (who are pretty much openly evil, as opposed to apple which is only psycho-pathologically controlling), are doing business as usual. Their "open" platform is only open to the providers, NOT to you... Technically, Palm OS and Windows Mobile are "open" too, as anyone anywhere could release a compatible app, Palm and Microsoft only controlled who could and could not sell phones. Do you see any new phone vendors cropping up? nope, me either. So essentially, Android is just "free to those who can make phones" but is in fact, NOT open. (you can't get the source code yourself and build a phone). So, now their protecting what they didn;t pay for. aka, locking the devices down in order to increase revenue streams from partners and fee based data services and making it so you can't bypass those fees. Remember Verizon's BuyItNow? You got a camera phone but the only way to get pictures off of it was to pay Verizon $0.40 to "mail" it to yourself, and the big joke was the phone has e-mail support but could not access images from the e-mail app (by design). Same with loading ring tomes. It was firmware specifically designed to make you pay for things you used to be able to do free. I predicted this movement would hit android as soon as i heard about it.

Apple has the might to ensure that doesn't happen to their OS. Remember, the data plan was the first ever unlimited plan, visual voicemail (which required extensive new provider owned server infrastructure) and even included 200 SMS, ad push e-mail services, and a way to make your own ringtones for $99 each. Apple pushed HARD to get Cingular to agree to all that. The release presentation even said: "why MMS when you can e-mail for free." and Steve noted it took a lot of strong-arming to get cingular to even let that be the case. To GET the iPhone (and make sure Verizon didn't), Cingular bent over and sacrificed all their core revenue streams. (call minutes were their 4rd most profitable venture behind ringtones, mms, and sms). Google does not have the power to force providers (or manufacturers) to do this, so it was inevitable.

Go one step further

let people complete a PC competency test (say, something simple from CompTIA a few steps even lower in level that A+ focussing on basic internet safety) Have this test cost a few bucks and be valid for say 5 years, though an independent authority not the ISP itself (so its portable).

b) If you have not passed the test, your home computer connection (and all computers used from that IP) are monitored by a NAC system, and each PC can't get online (except to a quarantined list of IPs like OS and Virus app vendors) without passing a simple security screening as any business PC does (is it patched, does it have AV, are the definitions current, has a scan been run within the last 14 days, is there a logon password set). This requires a NAC application to be installed on your OS. If you don't meed NAC policies, you'll be quarantined into a network segment that can only reach sites that can help you meet those restrictions (OS vendor, AV vendor, etc) until you do.

c) If you have passed the test, and proven yourself security aware, a setting in the NAC app lets your local machine MAC address bypass the screenings, (and you can add more MAC addresses online personally through your account admin page), and no software is required and your machine is not managed by NAC (but you'll still be notified if they detect an infection, and if critical you may be temporarily quarantined).

d) If you are quarantined, but absolutely have to get online anyway, you'll have to pay a fee to get 24 hour access if you are not in NAC compliance. If we detect a virus, that is repairable through current AV definitions, you may be put into this quarantine even if you are not subject to the NAC scanning rules (but only if it is a critical self propagating virus or one active in an active attack against other systems. Low threat viruses will only get you warned, not quarantined).

essentially, if you don;t know better, we "assist" you in making sure you;re secure. If you don't want the assistance, get certified to bypass it. You may be quarantined if you have a serious infection (but you can pay to temporarily bypass it, or provide a scan log showing you're clean and we'll call it a false alarm and credit you something.

don't block

quarantine.

If they attempt to go to any web site other than an AV vendor, OS vendor, or pre-approved list of sites with cleaning and security tools, they get a simple DNS redirect instructing them to contact the help desk (without providing any direct links or phone numbers). Inform them they should seek help from Microsoft, Apple, Symantec, McAffee, or a list of other vendors, but provide only information, and not links. Tell them they should never see such a page containing links or apps to install directly. If they believe this page is in error call the help desk. If they believe they are being scammed, type comcast.com into their browser and log in to see the infection confirmation.

If all the ISPs did the same, and users were sent a copy of this screen in their next (and every) bill so they know it when they see it, we might get some people educated.

Why leave a known infected machine running online? Get it off so it can only get to IPs of known safe security vendors. If they feel the need to get online anyway without first cleaning their PC, make them pay a hefty fee for each 24 hours they wish to until clean. Let them get past "errors" and false positives by screen shotting a completed scan with an approved scanner.

agreed

Sandbox. Give them access to critical systems only. Give them a way past by calling the helpdesk and getting a lecture and paying a hefty fee if they can't simply run a scan and prove they're clean.

simple

They monitor to see if you are attempting to connect to known bot net IP addresses from your PC, or exhibiting bot-like behavior (DDOS, spamming, etc). There's not software in the PC, and they're not monitoring where you go or logging your connection, only detecting when you try to go to certain places know to be bot houses, or trigger certain thresholds over certain protocols (like SMTP).

yep

If we KNOW you have a bot, clearly identified by connectivity to a know bot server, or pattern of system behavior, then instead of an e-mail and banner, how about QUARANTINING THE USER CONNECTION!?!?! Make it accessible STRICTLY to pre-approved IPs of virus vendors and the OS vendor. Lock them offline from everything else until their PC is detected cleaned, or they provide a screen shot of the scan results of an approved and up-to-date scanning engine proving they're not infected in the first place, or until they call the helpdesk and (after paying a fee), demand open access even with an infected PC for 24 hours if they claim its business critical they not be blocked in the interim.

We can't do this for business class connections (other than notify them which they still should), but for residential accounts, I'd even go so far as to implement NAC systems for home users, only allowing a machine onto the open internet if all critical patches are installed and an approved (by 3rd party agency, not the ISP itself to avoid competition issues or vendor favoring) AV client is installed with the latest defs, and give them only a quarantined internet access otherwise. The vast majority of people on the internet are either too ignorant or too cheap or too lazy to secure their systems. these people should be quarantined unless they either comply or pay higher fees to not have to.

privacy from WHO?

The only people who can track your location are the cell companies and distributors of GPS apps. Apple VERY tightly controls app vendors who connect to the GPS API (as well as other restricted APIs) and further all these companies have to be US based and are subject to US PII data collection and storage laws.

Can the government get your GPS locations? sure, with due process alone, not even a warrant. Know what? that's a pretty big hurdle. Getting your location data from a cell company is easy, sure, for a cop at a dedicated system with the right software, an open case number, and permission from his budget office (because its expensive). Cops don;t jsut look someone up willy nilly, that data is audited by external agencies and privacy groups alive, not to mention IA and their own boss. Touching that data without cause for an active case can get a cop put in jail for years (and it has happened). They're VERY cautious about accessing such data. They don't look up their coworkers wives locations to see if they're cheating like you see on TV... Besides, if a cop wants to find you, they already have your home and work address, that of your kids schools, immediate family, your bank, PO box, and more. If they could not get a GPS or tower lock on you, they'de just wait for you somewhere they know you'll be. Thats why tracking data requires no warrant today (it still requires due process, and if that process if not follwoed, its still completely inadmissible, and illegal to have collected).

There's so fucking much protection against authority abusing your data in this country its absurd. Police departments get hit for million dollar fines for simply accessing what they should not. Its not a slap on the wrist, it;s cops being ripped from their families, thrown in prison, careers ruined, bad shit, on top of county or city budgets taking massive hits. They do NOT permit unauthorized access to your cell phone, GPS, or other data without a damned good and well documented reason on an open case.

That said, without that tower location service, and with your insistence on using old phones that don't support it, good luck getting quick help from 911 when your car is in a ditch... those same cops who you make it mor difficult (but far from impossible) to trace won;t be able to find you when you;re dying either.

Oh, and as for all the nut jobs who think they're tracking all your GPS movements, purchases, and mroe, and catalogging that in some giant data mining system to cross reference the activity of every american: HaHaHaHa. Do some math assholes. Currently (last I checked) State Farm had the largest privately owned data center in the world. Tens of Billions per year spent of data systems and server, to store nothing more than your policy elections, property information, payment history, and claims filed. That's it... Less than 1MB of data typically per policy holder, and that's the largest single datacenter in the world not owned by a government. The IRS dwarfs that, and they only contain your tax records. They had a grand idea a few years ago to centralize all the public school records in a national database; guess what, just your kids grades and other school documentation was more data than any system conceived could be built to support. Do you really think a database of every call, transaction, and just your within 5 mile accurate location on a 15 minute interval could possibly be stored, let alone find a CPU big enough to MINE it??? Then there's the nodes to actually collect the data, and the software costs on integrating into literally thousands of distinct and custom systems? IT IS NOT POSSIBLE WITH ANY KNOWN TECHNIOLOGY.

I know the government isn't monitoring you for 2 very real reasons: 1, it;s not possible, not at any price that could be hidden (orders of magnitude of our total military anual spending) and 2 I work in many, many governemnt datacenters and ISPs as a security contractor and systems analyst and no such connections exist, other than do do a single data lookup (and get charged per transaction), with maximum numbers of look ups per period of time possible over that connection.

You may have heard numbers like the LA county police performed some 80,000 cell location lookups just with one phone company in a year. Wow, that sounds bad, until you find out that those 80,000 lookups were for about 250 individuals... since each individual snapshot-in-time lookup is a) charged for and b) only valid for that split time, and c) not real-time, it just displays it on the screen. They got billed more than $500 per click too. ...and that data was audited and made public.

YOU ARE NOT BEING WATCHED (unless there's a reason for it, in which case, trust me, it's MUCH better to be found easily and go willingly, and explain things, and be found to be innocent, than hunted and fight the system. If they have evidence they believe points at you, and you believe it doesn't, get a lawyer and ride the system.

Really, think about it, all the KNOWN criminals still on the street we don't have the money and manpower to hunt down and they would give a shit about you WHY exactly?

paranoid?

1st, they have to code against the API to get data such as your call history, and they better have a damned good explanation for apple as yo why they're using it, and more so why they're transmitting it.

Next, if they're collecting PII, they're covered under SAS and other federal regulation (and likely state laws as well). They're a BUSINESS. They collect that data for business purposes. Their personal information is on file with apple (including bank account information), and they're very easy to track down by authorities if they abuse PII laws.

finally, the vast majority of UUID use in iDevices is simply to allow access to an online service for identified purchasers of the app. They don't need your personal data to know you bought it, just your UUID. However, they could jsut as easily use the SIM code, MAC address, phone number, serial number, or any other code they simply MAKE UP. Even if you create your own username and password, guess what, that's a code to store PII by!!! If they have to authenticate, they have a code to use for you.

The government restricts using national or state identifiers, and credit account information, as account IDs with 3rd parties. You can't use my DL number, SSN, license plate, or a bunch of other restricted codes because that also might give access to an alternate data system. However, a mundane unique ID like an address, e-mail, phone number, serial number, etc is not in use by a bank or agency and is thus acceptable to use for ID purposes.

Yes, this information can be used to locate you. They can do the same simply by looking up your property tax records (which are PUBLIC RECORD MATERIAL!) You can ditch a device if you've had an identity theft issue, changing the UUID, change your accounts, cancel your accounts, and more. Your GPS data is only shared if you LET it be shared (you;re prompted by each app, but more over, Apple VERY strictly monitors who uses the GPS APIs and even more tightly if those apps also send data as well as receive it from the internet. All these companies are back checked, and trust me, as an IT analyst, the government is all up in their shit with system and security audits. Call history data is not accessible on the iPhone by 3rd party apps (except VoiP apps that maintain their own call history, but they already not only have that in their servers, they're required by LAW to keep that data).

... and WHO CARES if a company knows where I am? and has my address and a few phone numbers. They can't share that data without my permission. Do you really think some company that developed an apple app, went through a background check as a dev, gave apple their contact information and bank routing data, is really doing to steal your PII just to do what, contact you?

If you;re putting your GPS data on a social site, that's your problem. If a 3rd party company who has a GPS app tracks that data, apple would have confirmed they had a damned good reason to do so. If apple finds out they're keeping data needlessly (as they have in the past) they drop the dev, stop payment on due funds, and report them to authorities (as they have done). Since all US distributed apps are US based companies with US based servers, we're so rediculously protected by outr own laws this is really a non-issue. It;s not credit card data, it;s not SSNs, its generic data that in many cases is already of public record or not restricted by the US Office of Budget Management.

misinformed

First, iWork on the iPad can export to Word and Excel just fine, and vice versa, including through the cloud and iDisk.

next, more iPads have been sold to PC owners than Mac owners. The vast majority may already own an iPhone or iPod Touch, but there's no correlation between Mac owner and iPod buying in any demographic i can find.

I'll agree, a mac user may certainly have a more positive experience using an ipad given some added perks, but keep in mind iOS syncs just as well with Exchange or gMail as it does mobileme and the mac OS X suite.

The majority of the reason the iPad is so popularly accepted by its buyers? Even given some restrictions, its simply a slickly enough implemented UI and series of features, not to mention familiar if coming from an iPhone, and it has the multimedia power to do what most people want it to. (people who need a notebook already had one... they didn;t even consider an iPad)

much more use for touch

My wife has a MBP. iPhoto and iMovie are a practical joy to use with the giant multi-touch pad. Manipulation of images is so frigging simple. In fact, I've gotten so used to the track pad on the mac, I now really hate using the touch pad on my own notebook (I'm constantly trying to use mac gestures on a simple track pad and its infuriating why it can't do the same). Simple things like a simple gesture to rotate the photo, a quick squeeze to zoom and crop, tap tap tap to set color filtering or effects, tap to confirm identified faces, swipe to the next photo, all without touching a mouse or keyboard. Doing that onscreen would be even simpler and faster. If I could touch the photos directly (as I see done on iPads), this would even more drive home the experience.

I could equally see the same for web site manipulation, doing research, working with complex documents and presentations, managing your in-box, and more. Yea, a keyboard still very much required for text input (I'm not willing to sacrifice pixels, nor the feel), but having a keyboard close and being able to touch manipulate physical objects goes a long way in the every day tasks I do. The majority of file management is moving something from one place to another, even managing the OS itself.

Detail work still requires the accuracy of a mouse and text input isn't a simply gesture system you still need a keyboard (a quick keyboard for a quick e-mail is handy, but I'd not type post this on a virtual keyboard). I'd still prefer keystrokes for working in excel and databases as well. But, lets face it, how much of what you do daily, unless you're an artist, designer, inputting large volumes of text, would not be quicker and easier in a touch UI (especially if apple's other patent regarding having the OS change the UI based on screen orientation from a full blown OS to a streamlines touch focused system is becomes a reality).

likely not

compared to the keyboard and mouse you have to use instead, the screen should be significantly less prone to spreading infection.

Touch screens, by nature of getting grimy with fingerprints, are frequently cleaned. Keyboards, mouse? it's been a loooong time...

That siad, i do believe very few people in an office require (or would benefit from efficiency improvements) of a touch UI. Touch makes management of massive amounts of things easier, but has little or no impact on direct generic job efficincy (think call center, secretary, generic office supervisor). Touch is really fantastic for working with images, complex document creation, anything that can be tabled and worked on with hands and real materials translates well to touch, data entry not so much... Maybe 5-10% of office personal would see a real benefit from a touch UI. (granted, that's the 5-10% who might also benefit from using a Mac, not to say almost every desktop especially in call centers could be replaced by one, but there's no appreciable gain doing so).

rumor?

It was a patent! Actually, it wasn't dual iOS/OS X btw, but OS X took on "aspects" of iOS (and could emulate iOS applications), but it did not in fact run to separate OS. More importantly, when switching from OS X to iOS, applications (like pages or keynote as examples) could detect this and themselves seamlessly orient to their more touch friendly versions removing options and buttons that make little sense in a touch UI and semalessly shift back to their full version, without impact to the file or relaunching apps, simply by changing the orientation of the device.

very smart patent idea. Very much looking forward to seeing OS 10.7 or 10.8 and the new iLife and iWork apps do this.

how many devices?

If you have a phone, tablet, and netbook, you then also have a notebook? I see the iPad as a real nice fit between my PC and my phone, I do not require BOTH a tablet and a netbook. There is VERY little a netbook is capable of that an iPad or other tablet can not accomodate, especially if you include VNC back to a main PC... There's so little i would do on a netbook that could not wait until I got back to a notebook 'd hesitate to carry around. a 10" ipad screen vs a 10 or 11" netbook screen (at almost certainly lower resolution on the netbook btw), cramped has little to do with inches, but pixels.

Personally, I find the 15"MBP actually very easy to tote about anyway. 6+ hours (reliably) on a charge, and it's only 4lbs. A netbook might save me 1 lb, and 2", but its sub par performance eliminates any need to want to do anything on it the iPad can't do all on its own. The very rare cases when I'm out and about without a notebook and absolutely have to run a PC app there's no iPad equv for, VNC back to my desktop and its covered....