Posts by Pascal Monett

Re: "Ironically, it's not very good at video - but it is quite good at DRM."

Not ironic at all, that was part of the specs from the start.

It is not a planet and we have analyzed it. The Moon is biologically dead, due to the total absence of atmosphere protecting its surface from the deadly radiation of space.

Any bacteria on the lunar surface has long since been x-rayed out of existence.

Sealed envelopes are impressive and all that, to be sure, but I doubt they'll be of any use against a rogue BOFH that went and changed the passwords without creating a new envelope.

Said envelopes are only an insurance if the passwords are regularly checked and validated.

And even that doesn't guard against an additional shadow account created with the same credentials and abilities, but using a different password that only the BOFH knows.

Not unless there is a log of some sort that the sysadmin cannot touch that records all instances of password change.

I'll believe in it when you show me an example of something that runs under sysadmin supervision that the sysadmin cannot touch or prevent its functioning.

Prison cells ?

Even with the near-legendary attitude of US judges considering that the entire world is under US dominion, they'll have a spot of trouble putting Russian or Chinese hackers in prison for real.

Sounds like the skiddies won't be hacking on qbit computers.

Good.

Be happy they don't

That way you can still enjoy it.

You're good.

And I agree with your assessment. Cheap is ALWAYS considered crap by the buyer.

@Ian Johnston

Universities. That is your justification.

So tell me, what corporate data do Universities deal with on a daily basis ? How much consumer data do they process ? And how does my banking data get into their hands ?

Oh, none of any of the above. So you might as well have mentioned schools in Africa as far the relevance of your example is concerned.

That's how it starts

I'll be interested in seeing how Office365 holds up to usage. I will also have the ability to see the practical consequences almost first-hand, since one of my customers is migrating to that mess platform.

I will be sure to post any juicy tidbits as I happen on them.

Re: "There's nothing wrong with thottling the customer if they go over a limit"

Of course not, if you tell the customer that they are signing up for limited contract and that such is the limit.

If you advertising an unlimited contract, then there is no limit to apply and any limit whatsoever makes the contract a lie.

This nonsense has been going on for long enough. Fines are not the answer, so kneecapping it should be.

The problem with so-called "diet" foods is that the people who eat them are at risk of considering that they can eat more because it's diet food. In addition, in an effect similar to the 5-second rule, if you add a diet element to your meal, then people tend to consider that it makes the whole meal "diet".

Which is why we can all laugh at the bloated mouth asking for a super-sized meal but with a Diet Coke.

Yeah, that'll make all the difference.

Re: "The risks are secondary"

They are secondary now. In twenty years you'll have CNN running documentaries on dying of radiation-induced cancer and how the evil Earth Corporations abused the innocence of the First Pioneers to send them to their deaths while benefiting from their work.

Then the Red Revolution will come, the Humartians will rise and shake off the overbearing yolk of Earth domination to declare their independence during the Chocolate Day, when a shipment of chocolate is overturned in protest.

Then you'll have the First Interstellar Conflict, when Earth ups the game and sends a Battleship to pound those unruly resistants into the Martian dust reason. The Resistance will go underground while the Battleship will launch a few salvos endlessly replayed by CNN for months on end, and the War will Be Declared Wun by George Bush IV, but a few years later the Humartian Government will have its own Constitution, Bill of Rights, Parliament and Trading Agreement with Earth Corp.

It's inevitable, because Martian Weed, man. You have to try it to believe it.

Re: "but is being 'abused' by a small number"

Yeah, they're called the Fortune 1000.

Re: "It is certainly OK if the fridge informs me my yogurt is running low"

It is certainly not, because that would mean widespread modifications of how what we buy is packaged and tagged, meaning most probably that some unknown third party could be aware of my buying habits without my knowledge or consent.

In addition, it would mean sensors and item check-in/check-out when I just want to grab a can. This is not going to be easily automated, so it will most likely be just another nuisance infringing on my private life.

And please do not go the automatic order route, it is not worth the convenience. That path is just littered with Impending Expletive Devices.

Ah, but malware is a purely civilian issue. There are no numbers on how much time is wasted by civilians recovering from malware, reinstalling their machines and wiping their private data in the process. Figures concerning losses due to identity theft are, in practice, a secret, veiled as they are by police proceedings and awaiting judgement limbo.

Oh, and it's illegal to go and put software on a civilian PC to prevent him from getting malware or to remove it - without the owner's consent.

Of course, when covered by the activity of "looking for paedorrists", then it's no-holes-barred we'll-do-whatever-it-takes. And if that means hijacking a malware package, well it's for The Greater Good (tm), so that's that.

When was the last time a billionaire declared that he had enough billions ?

Agreed on all points.

Oh, and as far as I'm concerned, "appropriate technological protection measures" include encryption AND not handing out the keys to government-level spook agencies.

My data is mine. If a government wants it, it can ask for it.

Nicely.

Or with a warrant, that works too.

a minimum of 10 ?

I'd be happy if many websites didn't make 10 the maximum possible.

But yes, we need a Password Storage certification that tells us that a site has been controlled and certified for level A, B or C of protection, with A being the latest updated security technology, B would indicate somewhat average hashing and salting but with outdated encryption levels (like 56-bit today) and C being the equivalent of a text file with passwords stored in the clear.

Of course, the certification must be done by a trusted authority, and the level must be evaluated and updated regularly. Websites could only post the relevant certification after authorization by the certification authority.

That would help clear the waters somewhat, I think.

Actually, his problem is amply outlined in the second sentence.

Apple has no "love and affection" for the people who buy its products. To believe otherwise is to be deluded, and when deluded, one is just a disappointment waiting to happen.

Re: "their ability to fight crime is going to diminish"

I'm sorry, how exactly is not being able to freely and easily snoop on MY phone data connections going to lessen the police's ability to arrest the thug who is pushing old ladies around to get their handbag ?

Unless . . is there an app for that ?