Posts by Pascal Monett

Re: It's not all bad.

Well that wasn't clear in your original post. Obviously, she's better off at home in those conditions.

Well, objectively speaking, I think this whole issue was inevitable.

Come on, if you had such a past, would you lay it on the table in front of the press as soon as you got nominated CEO ? In our unforgiving societal climate ? I don't think so.

Whether he is or not a better person now, he did the only thing he could ; try to keep it hidden as long as possible, because the issue was a foregone conclusion if it became known, as it now has.

If he had been in charge of practically any other type of company, he might have succeeded in keeping his past hidden long enough to demonstrate that he had indeed become a "good person" by managing the company well and making good deals. Unfortunately for him, he was CEO of a company doing facial recognition and security surveillance, and these days, such companies come under special attention, as well they should.

So basically he was doomed.

I am willing to believe that he became a better person. You cannot get rid of hate if you cannot forgive those that try to evolve. I hope that his career will survive this debacle somehow.

Well, with the upcoming lawsuit that is undoubtedly on the way, I'm sure something is going to rub off on this bunch.

Re: I see more talking about apps than tests

In the political sphere, perhaps, but in the medical sphere, all the doctors want tests. And they're all saying that contact tracing is a requirement, but it needs to be followed up with tests. And they say that the only way we'll deal properly with this pandemic is by testing.

They have their mouths full of the word, in every way they can say it. For some reason though, the politicians are not hearing the message very well. Well, not many of them. Some countries got their shit together quite quickly, and they're on top of the problem. It's just Europe and the USA who are not putting their money where they should. One group because God knows why, and the USA because their government is a pile of shit right now.

Less and less, but I'm still making a living out of it.

Re: if I did get one I would probably just delete it sight-unseen

I think you missed the part where it says "no user interaction is required".

You don't need to open it for it to wreak havoc on your phone, it just needs to get to it. That's a bit of a problem. And that was an understatement.

Uncalled for ? Really ?

With the amount of people who just include a library on GitHub and never worry about what it actually does until said library falls over, it's not really uncalled for.

Personally, where I to include someone else's library, I would import it into my code stack, review the code to ensure that it does what it says on the tin and nothing else, and - after testing the thing to hell and beyond - include it in my production code stack.

Of course, it is then up to me to set a watch over that library to check when it is updated and what the update is, but that's my problem.

The rub is, developers hate problems, so they just link to library and let history run its course.

It's not because, in this particular case, developers had no way to avoid the issue that the argument does not stand.

I had a similar issue in one of my consulting gigs. I had created the application that the user had specced, and testing had gone swimmingly until one day the user called and complained that his notifications in said application were not going out to the right people.

I checked the code and the logs, and could find nothing wrong. I racked my brain trying to find out what the issue could actually be. After two days of searching, I finally hit upon an idea : he was using a local group that was named the same as the group defined on the server.

Not bothering with asking him the question because I was sure he'd deny any fault on his part, I simply changed the log to record the actual names of the people that were supposed to be notified. Sure enough, the next time he called to complain that it was _still_ not sending to the proper people, I checked the log and compared it to the server group : not equal.

I printed out the log and went to his desk and confronted him with the proof.

Never heard of him again.

Re: Surely one answer would be...

Maybe, maybe not.

But I have one sure-fire solution : mute the speakers.

At home, of course, my speakers can be active, especially now that I have somewhat more time for YouTube. But I use uBlock Origin with NoScript on Firefox, so I don't see ads, therefor they cannot spout any ultrasonic anything.

With my laptop, I also use the same browsing configuration but, on top of that, I have my speakers muted. Good luck spouting any noise whatsoever.

So, whether or not an app is listening, I am the deep sea nuclear submarine that passes unnoticed.

Officials need to re-read the Cloud Act.

Basically put, nobody's data is safe from US scrutiny if it is stored on a server that is controlled by a company that has a presence in the USA. And no judge is going to go against that.

Excerpt from the article :

"First, the Act amended U.S. law to authorize U.S. law enforcement to unilaterally demand access to data stored outside the U.S."

It's a demand, not a request.

Yeah, mainly all the craters that pockmark its surface.

So, basically, you're defending a keyboard that you don't use.

Right, so basically PwC created a sub-domain, decided not to keep it alive, and someone else took control. That's not hacking in any way, shape or form.

Re: I reuse the same password on loads of sites

I will admit that I have a throwaway password for sites that I do not consider important, yet still ask me for a login, or sites that I have no intention to return to after the reason for which I went there in the first place.

But for anything important, I have a system that gives me at least 13 characters, and I have a database to store them in along with the URL that is concerned.

Re: your location is known static constant in this, you're at home

Well yes, unless you work in the food industry, in the transport industry, in the medical field, in a gas station, or in any other "essential" business.

So there's a few people who are _not_ at home.

Re: OK, I'll bite.

Well, the article does state that "Support for other imaging editing programs in the works, wee're told".

How long that will take, if it ever happens, is anyone's guess.