Posts by Henry Wertz 1

Good luck sir

Good luck on your lawsuit sir.

I have to admit, in HR's defense (not much of a defense but still), it is rather unbelievable that a) There's still an alive and well caste system and b) That people would leave the country but bring the caste system with them. I mean, *I* believe it but would not be surprised if some simply didn't believe it.

Second issue in the US -- discriminating based on race, gender... well let me google it... "race, color, religion, sex, national origin, disability, or age" is illegal. Caste is none of these, so if the HR department views their goal as merely avoiding illegal behaviors, they did. I've seen both, some HR departments are all about "compliance", if they are compliant with the relevant laws that is it, job done; other companies do have HR truly try to help work out interpersonal disputes and so on to help have a more harmonious workplace.

charging standard

Of course, there already is a charging standard that EVERYONE but Apple uses. If the goal was ACTUALLY to get rid of numerous incompatible chargers, Apple could just include a USB-C charger (that everything but Apple products use) and the USB-C to lightning adapter cable they already include in the box.

What a ridiculous cash grab. I can get an Android phone for like $75 and it includes a charger! (Doesn't include headphones, but has a standard headphone jack so I can get like $5 headphones if I want.)

Not racially biased, color-blind

Honestly, AIs are not racially biased, they can be "color-blind" (ESPECIALLY when photos are taken in varying lighting conditions). They focus on feature recognition, since they decide on their own what features to look for they can ENTIRELY miss the point sometimes. So, you look at these photos and obviously it's not the same person. You look at FEATURES, and they are surprisingly similar. The eyes in the photos are not brown and blue, to me they both appear black due to lack of resolution. The ears are very similar, the pose is identical, they have the same hair line (including this triangular bit hanging over the forehead), and the lighting they both have a shadow in the top-right corner, the right side of the forehead.

Don't get me wrong, it definitely shows a big problem with facial recognition systems; I'm not a fan of them for privacy reasons either.

One tale of woe regarding AIs.. 10 or 15 years back, the military (don't know if it was US or UK?) was going to test a neural network-based "friend or foe" system. They brought out various airplanes onto the tarmac, took photos to feed in. They train this thing, test it in the wild and it DOES NOT WORK AT ALL. It turns out, most of the friendlys were photographed in the morning, and the rest in the evening, so ALL the AI was basing it's "friend or foe" on was if the plan was lit up from the left side or the right side, it was not looking at what kind of plane it was, the plane markings, etc. at all.

Qualified

"It is unclear, however, how many unemployed Americans will be willing (H-2B covers temporary, seasonal labor) and/or qualified (H1-B is earmarked for specialized skilled roles."

No problem on finding qualified people. H1-Bs are almost 100% a scam these days, they have been abused for decades by tech companies in the US. The intent originally was so, for example, if Siemens was building a reactor somewhere in the US, they could bring some Germans along to help set it up without too much red tape, or some particularly finicky factory equipment where it might make sense to have someone from the company that made it stay in the US.

But in the tech industry, you have systematic abuse of the H1B Visa system, simply to replace US employees with lower-paid overseas workers with H1B Visas. The galling part of it is, reportedly these H1B employees will cost, say, $65,000 instead of $90,000 a year, but as far as I know these companies do not try offering positions at $65,000 a year, they just assume there'd be no takers and go directly to H1B employee outsourcing companies like Infosys. With the weak economy the last several years, I really do think they could just list their jobs at the lower wage and would have takers. These outsourcing companies specialize in following the letter of the law while making sure they don't actually hire anyone but H1B employees, whether there's locals qualified for the position or not.

Conflicted

I'm real conflicted on this one. On the one hand, I really feel for this team; Facebook has never given a crap about privacy so who would expect a clause like this? And, furthermore, the NVidia data set they used is obviously for neural network training (NVidia is not going to collect a data set like this just for the hell of it) so one would assume it was OK.

On the other hand -- I do agree with the goal of explicit consent. I would not mind being involved with a system used for detecting deep fakes, but facial recognition neural networks are a tool of the modern police state and I would NEVER consent to my face being used for that! (That said, I don't throw my photos on Flickr or Youtube, and DEFINITELY not on Facebook!)

"The *architecture* of the network is left - e.g. if an artificial neural network, the number of layers, the number of nodes in those layers and the sequencing of them, how the training converges, how the nodes are linked, the thresholding function, and so on."

But even then, in some cases the neural network is trained, then one with somewhat different number of nodes, layer, connectivity, etc., is trained, the another with different parameters; in other words, besides being TRAINED off the image data, the size and shape of the network is actually determined off the data set. This is a relatively recent technique, it would have taken way the hell too long in the past but you know, Moore's law and all that (plus NVidia shipping out these cards with like 5000 CUDA cores on them) has helped with that. Sometimes this technique works great, sometimes effectively it's overfitting the data, the neural network works great trained with THAT data set but not another one.

I'm fine with it

When someone (I think it was California) some years back wanted to replace the terms "master" and "slave" for IDE hard drives, I thought that was dumb, IDE drives were nearly off the market, SATA does not have this concept anyway, plus they were not changing the terminology, just changing their IT manual to use made-up terminology that nobody else on the planet used. (Plus, many drives had "MA" and "SL" jumpers on them, along with "CS" for "cable select", so really...)

Now? This stuff's being currently used, and really "master" is not even an accurate or descriptive term for the current version of a version-controlled piece of software, I don't know if "main" is either but it's not a bad term to use. I don't feel any racial connotations from it but also have no attachment to the current term, if anyone is at all uncomfortable from it by all means change it!

The people complaining about changing "blacklist" to "blocklist", they are 100% right, the term blocklist is already used. I've used software already that had an allowlist and a denylist, these are perfectly serviceable terms to change to if you want. People are right that point out blacklist is not a racial term; but, denylist is clearer in indicating what the list is for anyway. I'm all for it.

Funny

"Well now, this may push administrators to alternate operating systems such as Linux. Not every IT department can afford new server hardware every year. Many IT departments are cash strapped as it is. Now to mandate new hardware when upgrading an operating system is a joke."

I'm not a Windows fan, but no; usually by the time someone considers slapping a new Windows Server version onto an old server, they find out what Windows Server actually costs and decide blowing a license for that kind of money to stick onto a 10-15 year old computer is silly. Also, similar to going from like XP to Vista or 7, let alone 10, usually they find enough increase in system requirements that the old server would also need a hardware upgrade just to do what it's already doing, let alone anything new.

That said, my two cents on this... Cent one... linux does not run into all these problems despite typically not using secure boot OR TPM. Cent two... I think this is snake oil for systems that just download updates whenever they'd like. That said, I do think this is useful for things like slot machines (I've seen one boot up.. it booted a bootloader, which checksum'ed the BIOS, itself, and a second-layer bootloader... the second-layer bootloader looked suspiciously like grub, but first ran a script to verify the first-level bootloader, the kernel, and the ramdisk it was loading; the ramdisk AGAIN checksum'd the kernel, ramdisk, the bootloader, and whatever code it ran after that. The code than ran after that booted into a slot machine software loader, which ran further checks; FINALLY, the slot machine software loaded and began executing.)

A real problem

Whether you like unions or not, your company has a real problem if there's SO MANY unionization messages on your company feed or whatever that it's like "so many messages, I need to filter these out." Of course, I'd just use the China technique. (They avoid their national filter's filtering by picking words that phoenitically sound similar, or have Chinese symbols that look similar, to banned words and phrases.) "Union" is blocked? OK, suddenly people might be really into "onions" instead.

AT&T

Just to call them out, since they deserve it, AT&T was sued 2 years ago for poor security allowing a SIM swap to occur, AFTER the customer TOLD AT&T someone was trying to take over their account and AT&T claimed they increased security on his account. SIM swap occured anyway, and whoever stole $651,000 of his cryptocurrency. It's awful to WARN your phone company and they STILL can't put your account on some kind of proper lockdown. T-Mo was also sued, 2 people lost $650,000 in currency total, although no mention of those people warning T-Mo ahead of time. These were JUST in 2018.

In the US, Sprint still won't let one just freely swap SIMs between devices (T-Mobile just bought them, but up to that point they were still not fully upgraded to 4G, so it was a weird mix of 4G LTE SIM-based authentication and IMEI from the still-in-use CDMA network.) Verizon Wireless went from CDMA to 4G LTE, so they now fully use SIMs, but they are more or less competent compared to AT&T so there have not been these kinds of complaints with them.

1st ammendment

"categories where repairs that require breaking digital locks are still not allowed, like boats, medical equipment, and game consoles."

Except, due to that pesky 1st ammendment, I can tell you how to crack boats, medical equipment, and game consoles as much as I want, and they can't do jack shit about it.

And if some judge decides to ignore the bill of rights and US Constitution, one can then fall back to the prohibition-era policy (this is when the nutjobs in the US tried to prohibit alcohol...), a few of the brewers published guides to make sure you DIDN'T produce unauthorized alcohol like "Make sure you don't put in 2 spoons full of barley; after that, I implore you, whatever you do, DO NOT store the bottles for 30 days or they may go through fermentation and produce unauthorized alcohol." 8-)

Remove high accuracy timers?

Is it possible to just remove nanosecond-accuracy timing sources from Linux?

When they found (much to everyone's surprise and alarm) that both Firefox and Chrome had fast enough Javascript (JIT compiler compiling the Javascript into native code) to allow these timing effects INSIDE THE BROWSER, Firefox and Chrome simply removed access to nanosecond-accurate timers; they Javascript high-accuracy timer calls are now simply rounded off so they have like 1ms (1/000th of a second) accuracy. Could the same be applied to the Linux user-space itself? Maybe 1/10,000th of a second accuracy (since things like ping show 0.1ms timings)... there's a lot of wiggle room between that and the nanosecond (billionths of a second!) accuracy timers that exist now.

Is there a technical problem with this, like instruction counter or something that's hard to trap? Otherwise, this'd let most mitigations be left off with no ill side effects.

Odd

Odd. IBM made a big big deal about POWER servers with GPU running Linux. From what I've heard, POWER is pretty good performance-per-watt-wise; ARM went at it from one direction, taking low-powered chips and bumping up per-core speed (hopefully without increasing power too much..) and large number of cores (recently 80 cores). POWER chips have always been fairly quick but last several years put on a serious power diet (also 80 cores or so).

Time for the lawsuits

I'd say it's time for the victims to sue Fujitsu BIG TIME, sue the Post, and sue whoever falsely imprisoned these people rather than doing their jobs and realizing a brand new, buggy as hell, computer system is brand new and buggy as hell. The people faslely imprisoned should get LARGE settlements, the others (who reimbursed, or were slandered against) should get a healthy check as well.

Timing?

I wonder about a different approach... a vast majority of these attacks rely on access to a high accuracy timer to measure time between cache misses and hits. I wonder if it would cause any major issues to simply limit user space access to timers (and I guess Linux jiffy counter?) to like 1/10,000 of a second accuracy or so, instead of the nanosecond accuracy it is now. That's what the web browsers did recently; Javascript on chrome and firefox would actually be JIT (Just In Time) compiled and run fast enough for some of these attacks to work; they simply made the Javascript time functions round off their results a bit.

2G only paperweight

2G only? How long before this thing's a paperweight? Here in US, Verizon quit allowing non-4G (with VoLTE) phone registrations a almost 2 years ago, AT&T has shut down their 2G network. T-Mo says they're dumping it around 2022. Sprint had no plans (hadn't even finished rolling VoLTE yet...) but got bought by T-Mo, who is rapidly dismantling their antiquated network to roll out additional 4G channels.

Don't get me wrong, the cell cos sell a handful of "dumb phones" models here (the unofficial term since they are the opposite of smart phones.) But they support 4G and VoLTE, since everything earlier is getting shut off ASAP here. My dad has a LG Exalt LTE and it's odd.. the ONLY hint that it's not a 10 or 20 year old flip phone is the "4G" symbol at the top, better call quality (since it's HD voice), and waaaaay down in the settings (which do use the menu buttons -- no touch screen) there's a "wifi" and "hotspot" menu. Hook it up to a Linux box and be shocked to find that it's actually running Android 7 (properly locked down so nothing can be sideloaded onto the phone.)

I'd suggest Nokia do that, do a 5310 LTE. It's not for me but it'd expand the potential market a lot.

Standard Microsoft

Greybearded old scrote beat me to it saying this, but this is 100% standard behavior of the Microsoft of old. The antitrust trial against them was not because they were at near-100% market share in OS sales, this is legal; it was because of the anticompetitive behaviors they had through the 1980s, 1990s, and 2000s. One standard thing they did was imply they would merge or buy out some company due to a specific product, go take a look around, then "change their mind"; a bad clone of that companies product would be out within 6 months.

Just one example of so many.. seriously, M$ of the 1990s was doing this a few times a year at least... Stac electronics, for one, made Stacker which would compress your disk storage on-the-fly, roughly doubling your storage space. (And most hard drives back then were so slow it was usually speeding up your disk access too). Microsoft got into talks, had someone go around their office and all that, then put out DoubleSpace which was a total infringement on Stack's patents. After they lost a lawsuit to Stacker, they made trivial file format changes to claim they weren't violating their patents (whether they were or not is an open question); this was DriveSpace. This made it clear they'd just keep making enough changes to make sure Stac never got business again, then they bought Stack electronics out for a large amount of money, but less than what they owed them when the lost the patent infringement lawsuit big time (they'd already lost by then, so effectively they had to pay themselves.)

Thank goodness I'm not in a Frontier market

Thank goodness I'm not in a Frontier market.

I'm not saying Frontier is incompetent or something. But, as NECAmerica says, Verizon determined which markets were unprofitable and sold them off.. i.e. areas with long copper runs, old copper, and rural enough so there were not all these clusters of houses to put DSLAMs closer to.

So, Frontier inherited this, but without Verizon's Internet backhaul to the existing DSL equipment or Internet backbone, so when they first took over they had inadequate internet backbone and backhaul -- users who already had 1-3mbps DSL (or less) saw speeds decline further due to lack of backhaul initially. Then, Frontier drastically raised prices (like doubling them, over $100 in some cases) and imposed ridiculous data caps (like 150 GB a month or less hard cap with cash overage.) This was in a misguided effort to rake in more money for less internet usage, but backfired big time since it made them more expensive that just getting satellite internet or 4G wireless broadband, both of which were also faster.

More recently, I've heard they are fine -- no more backhaul problems, reduced prices from that $100 to like $20-30 a month, they did put in some DSLAMs in those relatively few areas urban enough for one to make sense (100mbps if you're close enough to one), but honestly it's probably too little too late, they bled too many customers due to the past problems above, and the ones coming back are paying much less than in the past ($20 or $30 for service that Verizon would have charged $50 for, and at a loss at that or they wouldn't have sold off the market.)

Taxes and fees

Yup, I cancelled my Mediacom cable when the "broadcast basic" here went from $13.91 to $25.00 all at once. They even tacked on the "sports surcharge" when the package I was on included ZERO sports channels!!! "Broadcast Basic" is literally just the channels you can get over the air if you have good TV reception... my area gets poor reception (70 miles from most of the stations that supposedly cover the area!), but ended up installing a very large (about 4 foot) Grey Hoverman antenna and amplifier to pick up my channels.

This package was only $13.91 to begin with due to a special arrangement with the city of Iowa City, otherwise it was already costing $35 in surrounding areas. Again, for nothing but what you can get over the air for free. The next package up is over $75 a month. I don't know what the $75 service REALLY costs though, they do tend to stick on like $20 or more of "taxes and fees", and that's not counting the box rental and such. (And they wonder why they are losing customers to Dish, which starts at closer to $40.) Or, you can get "triple play" some kind of TV, some kind of internet, and landline phone (yeah..) for like $99 a month (probably $130 with fees). It just goes up in price from there.

One positive with Mediacom, the over the air channels, and the SD versions (non high def in other words) of cable channels, are unencrypted and viewable on any digital TV, no cable box required (and more important to me and my MythTV system, also receivable with a digital TV tuner hooked to a computer). Several cable companies in the US encrypt EVERYTHING, even the over the air channels that they are legally prohibited from encrypting (someone a few years back went to the FCC to report this, and asked the FCC to enforce their own rules, the FCC declined.)

Probably fine

First off, from a practical standpoint, I have no problem with EBay trying to detect fraudulent software running on people's machines. This will prevent both the user and EBay from fraud caused by people running greasy greasy unpatched infected-all-to-hell Windows; some people seem to think they can run as infected a system as they want and it should be (EBay, bank, etc.) responsibility when their account is "mysteriously" abused.

That said... GDPR? That's tricky, GDPR honestly makes a lot of normal computer activities a legal grey area. The computer fraud and abuse part.. can't speak about Britain but in US it's very clear, trying usernames and passwords, or buffer overflow, etc., if it succeeds it's gaining access to areas you are not already authorized to access and is a legal problem. Running a port scan is not exceeding anything; the system is willingly answering or refusing connections on each port, and the port scan is not trying to bypass anything on ports that are answered, it's merely closing the connection. This is clearly legal here.

Overpriced joke

"Obviously iOS is not Windows; but you can do a hell of a lot with an iPad Pro, and for the money "iPad onna stick" compares pretty well to MS' "Windows onna stick" offerings."

Yeah, they are both an overpriced joke.

Anyway, I'm a fan of tablets, but a tablet is in no way a replacement for a PC. I mean, it literally is a direct replacement for people whose use of a PC is web surfing, social media type use, and causal gaming -- and that is the use for many people. But the form factor is not there (those little rubber bluetooth keyboards suck, and typing on the screen sucks even worse) and, despite a newer tablet having enough RAM and CPU power, the apps are simply not there for certain uses. I find it impossible to take anyone seriously that advocates buying a tablet for 4-8x the amount I've paid for any PC.

Not a package manager

They are 100% right, an app that runs installers is in not a package manager.

That said, it's one of those "release as early as possible so people can see what we are working on" types of situations, so I do assume eventually this will become at least closer to a package manager. I'm not a Microsoft fan but I won't rag on stuff that is in preview or prerelease (as long as they don't start abusing it by keeping apps in permanent "preview" status, which so far they haven't.)

Don't sign?

If you are being laid off involuntarily and given the shaft, WHY SIGN ANYTHING? I know a few places used to claim (PROBABLY illegally) that they would interferere with pensions if you didn't nicely sign everything. Do you think HP is NOT going to screw you out of whatever pension they said you had either way? I signed some non-compete at one place because I knew darn well I was not going into the same industry, and left on good terms. But if laid off, I'd consider carefully everything and anything I sign.

"And, worse yet, after the Preferential Rehire Period is over, per HP policy that age protected employee can never be rehired by HP again."

I bet some time in the past HP was caught laying people off then rehiring on day 61 so they could wipe out their benefits and seniority, they would then be a new hire again. Unfortunately, companies like this will agree to some rules to specifically address past abuses, then figure out how to actually use those rules for further abuses.

"How do.you know? Have you asked every single Linux user? No you have not.

You have PRESUMED because YOU don't want this no one else on the entire planet won't either."

But, they're right, no Linux user will want this. If they are providing OpenGL and CUDA (and preferably OpenCL and Vulkan) via a "guest addition" video driver that's converting everything into DX12, fair enough, with no physical video card in a VM the driver has to be doing something and that's a reasonable thing to do when the goal is to use a GPU in Windows. But, it's truly WSL2's job to provide OpenGL and CUDA interfaces in Linux if they are claiming Linux GPU acceleration; it's in no way the programmers job to rewrite their fully functional code just to support a single VM system.

That said.. I don't even think Microsoft is expecting Linux users to use DX12 (I sure hope not!), i think this is likely a proof of concept (getting tensorflow up under it is not a bad start...) and they'd ultimately have normal OpenGL and CUDA support in WSL2.

"The rep claimed that a patch is in the final stages of testing and should be deployed to customers by the end of the week at the very latest."

Why bother testing? Obviously they didn't test the initial update... OK just kidding.

"No it didn't. Processor throttling reduced performance to avoid a shutdown due to declining battery output, but it never came close to the 'point of unusability' unless your battery was completely fscked"

Inaccurate. Look online, and people complained of devices that were normally 1.4-1.8ghz being reduces to like 600-800mhz. This is a very large reduction in speed (I'm surprised, I thought it was like 10-20%...) and could easily make people decide their previously usable phone was unusable. This was a ridiculous design flaw, every other vendor realizes old used batteries sag a few 10ths of a volt under load. My BlackBerry KeyOne has a battery rated for 3.85 volts, so most likely it uses 3.3 volt hardware. No problem with sag there!

Agreed

"The sooner that the rest of the world wakes up and recognises that and even passes laws specifically denying the applicability of each and every US Law in their jurisdiction the better the world will be."

As a USA'ian, I fully agree. Nutjob Trump doesn't help things any, but even before that for at least several decades US courts and gov't officials seem to be unable to recognize that foreign countries are foreign, not some kind of US protectorates.

How much did they pay though?

How much did they pay though? I mean, obviously, servers don't run themselves for free. But, I've seen online subscriptions where they obviously don't have common sense, it's like $10 for a lifetime membership or whatever for something that heavily uses their servers. If it's like that, suck it up. I've seen other things (TiVo in past years for example) where the fee is like $300. If I paid $300, then told I'd have to pay a monthly fee, I'd be pretty pissed.

Word processors are not for page layout

"It's 2020 for Pete's sake, and there is still no guarantee that a word processed file will display and print properly across different machines. "

Yup, word processors are for word processing and not page layout. Even if you have slightly different margins on your printer, Office systems can and will re-wrap all your text to accomodate it, not cut off stuff that's past the margins (as a page layout system would.)

""there is still no guarantee that a word processed file will display and print properly across different machines" Yes, and it's exactly that reason why companies "trust Office" and therefore buy it - and nothing else. It's not an accident."

No it's not! Have you tried opening a file from Office for Windows on Office for Mac? one from "Office versus x" with "Office versus x+1?" These absolutely do cause little formatting and font changes. Printer margins (as I mention above)? Change layout. If you read the article, even going from office to online office changed things a bit. People buy office because they're used to buying office, so they continue to buy office (or not -- several of the small businesses I saw just used whatever version was force-bundled with their business PC, even having non-matching office versions on their systems.) A lot of these people ARE NOT interested in paying monthly and would put libreoffice on in a second if they weren't using a "pay once" version of Office still.

Fair enough

Fair enough. First off, I'd just use MySQL or the like anyway, screw SQL Server.

But, for the practical purposes of "lets run a bunch of seperate junk on one system" use of running containers or VMs, they are functionally the same for that purpose other than the containers having less overhead. I bet if I wanted to run 5 copies of SQL Server on one machine I'd be expected to pay for 5 copies of SQL Server... so, this way, I'm paying for 5 but at least only have to pay for the subset of CPUs (or threads or whatever) actually assigned to that container. The containerized SQL Server (I assume) will have less overhead and so run a bit better than the SQL Server in a VM under yet another copy of Windows (you're saving on paying for a VM copy of Windows at least!)

edit: Nope, you can pay for all cores on a system and run as many SQL Servers as you want. But still, this provides the offer of giving it like 1 core to save money on some monster 128-core or whatever box.

Ticket closed.

"The Register contacted Zoom for comment, but while the company acknowledged our query, we have yet to receive an official response."

Response: Your ticket is closed.

Hah but seriously, I don't blame Zoom for this. I've seen way to many people with a barely functional virus-ridden piece of shit of a computer, and they suddenly decided it's that companies tech support's job to clean up their computer; or even worse, the viruses finally win and the computer dies, they blame the last piece of software they installed and not the piles of viruses and spyware they installed just before that. (Thank goodness for Linux, I don't have to deal with all that!)

Not that early

These weren't THAT early of viruses... UNIX systems after all had already been getting viruses 10 years earlier, and in fact DOS systems had been getting viruses throughout the 1980s too.

And Window (circa late 1990s) lack of security can't be blamed on a 1960's-style lax culture... UNIX (especially BSD UNIX) definitely has a countercultural background to it, and in fact was quite insecure in the 1980s*. Morris worm came out in late 1988, and woke up the UNIX vendors that security is important. The Microsoft and UNIX cultures were just so seperate that, despite the clear warning on what can happen to insecure networked systems, Microsoft decided to totally ignore security until things seperately came to a head on Windows systems.

*flaws in 1980s UNIXes.... just to name 3 off the top of my head... UUCP -- UNIX-to-UNIX CoPY -- typically set up so actually any file off the system, including the password file, could be requested for download; unpassworded guest accounts; some vendors kept a root-level "field service" account on their systems, username: field and password: service.

Wasn't a problem where I worked..

"However, what about "right to work" (i.e., "right to get fired for any reason, or no reason at all") states?"

I worked at a place that did these bag checks on the way out, any sort of bag that got brought out "on the floor", and in a right to work state. They were pretty stingy in every other respect, but did realize that was on company time and paid for that time.

Honestly I'm surprised Amazon would even try it in California!

Good reason not to use it

Good reason not to use it. Would I use a COVID-19 app? Yes, iff (if and only if) it a) Uses bluetooth beacons not the privacy-ignoring tracking the persons GPS all over the place. AND if and only if b) There's a definite statement that the data will be used ONLY for this purpose, then deleted. I will not have my private contact data analyzed and reanalyzed by whoever until the end of time.

Fair enough

I'd say fair enough... Mr. Hax (not real name) found exploitable holes, submitted and was snubbed. Well, at that point, he did the "responsible" thing and Valve claim they are not interested in these exploits since they failed to pay the bounties per their participation in the bounty program. No problem, Mr. Hax is free to disclose them however he wants at that point since Valve have already (by failing to pay) claimed they don't view these exploits as exploits.

Will generators help?

Would more generators help? I have Verizon Wireless here in the US, which does brag about having generators on their sites, and the few times power went out here it worked.

But, I can't help but think of what I read about a carrier in NW Iowa here (probably bought up and absorbed by AT&T or someone by now), they bought and installed generators on every site, awesome. The first test of this? Ice storm. Knocked out power to almost every site simultaneously (100+ sites), plus iced up the roads -- when gravel road properly ices over, you can get up to about 10MPH before there's significant risk of sliding off the road into the ditch. Since these are all rural sites, they had 2 or 3 people planned to refuel sites, apparently got someone to ONE site to refuel it before the power ran out on their 100+ sites. So they had some few hours of use, then no service anyway. Apparently after THAT, they went ahead and removed the generators and sold them to another cell co.

I see this situation in Australia as analogous -- having service stay up is awesome. But service would have stayed up for some few extra hours, then been down for days or weeks (no access to refuel the sites) anyway.

Class action suit?

Class action suit? These greasy f*cks just admitted, in court, that they sent mal-formatted WhatsApp messages to numerous devices, at which point they DID gain unauthorized access to those devices, violating CFAA each and every time.

Political correctness gone mad

"If you’re thinking about getting in touch saying this is political correctness gone mad, don’t bother."

Well, this is political correctness gone mad. And, no, replacing industry-standard terms on your web site with your own terminology you just made up is not improving your site in any way.

I do recall when certain space cadets decided to replace the industry-standard terms "master" and "slave" with the non-standard and ambiguous "primary" and "secondary" (these are ambiguous because on systems with two IDE channels, the first CHANNEL was the primary, so you'd have "primary master" and "primary slave", and secondary channel had secondary master and secondary slave). People have quit using the terms master and slave because they don't use IDE any more.

Don't need GPS

Well, you don't need GPS *or* network location tracking, if your real goal is simply contact tracing. They plan to do the non-privacy-preserving tracking every phone in the country type of thing. I suppose they would set up a text number to text if someone DOES have Covid 19? Anyway, I don't see network-based tracking being accurate enough to determine if phones have been in close contact with each other (as opposed to bluetooth, where the devices really do have to be within like 100 feet or less).

Makes sense

Makes sense. I'm seeing new systems for sale with actually lower specs than a few years back; systems with a low-speed (like 1.2ghz or so) dual core and like 2GB of RAM are showing back up on the market. That's what happens when a vendor tries compete pricewise with something like a Chromebook while also paying the Microsoft tax! These will probably have the slowest GPU they could get Intel or AMD to put in there.

So, absolutely I could see it being useful to have everything spec'ed out but keep the minimum requirements low.

Sounds unnecessary to me

Sounds unnecessary to me.

I mean, I don't care if these use commas or spaces -- I agree with the commenters that say the comma version is more readable, but don't really care. But, WHAT ACTUAL REASON is there to require the space-based syntax and not just accept both? I haven't seen any reason given other than "this guy prefers you use spaces".

I also haven't seen any reason for having a high-gamut display either, but *shrug* OK that's fine.

Fraud detection

"Wow. Okay, let me just, for a second, imagine that this argument is actually honest. So present, in a no less than five pages, an explanation of how recording my mouse movements on any of your web pages can lead you to define my activity as fraudulent."

I could answer that.. a machine learning system would be set up to classify transactions "fraudulent" or "not fraudulent". Initially the system would be trained, it's fed in initial data and told which transactions ended up being legit and which fraudulent. After initial training, a well-trained ML system really is quite good at pattern matching especially for a categorization problem like this. I imagine in some cases fraudsters are either using scripts and this would be easy to detect (jdownloader has a captcha-box-checking script in it and the mouse movement to click the box does not look at all like a natural mouse click or tap), otherwise (even if it's a human) they probably do in fact navigate the site differently if the goal is to order some items on stolen cards versus anyone naturally using the site.

"Next, outline what it is you do with that data when you have defined that my activity is not fraudulent, and oppose it to what you do when you define that it is."

That is an excellent question, to me this is the $1000 question. I actually believe stripe about the fraud detection, but I'd definitely prefer data was not retained indefinitely. If chargebacks can be done for 14 days, it'd then take up to 14 days to know a "non-fraudulent" transaction was really fraudulent (false negative), or for someone to complain their legitimate transaction was denied (false positive), so maybe they'd need it for 14.1-30 days or so, but not indefinitely.

"Finally, explain how you expect to escape GDPR fines when it is proven that you are doing all of that without consent, without warning, and in total violation of privacy rules."

Yup, that's a major problem for them for sure.

Python breaking changes

I worked on a project a while back that had some python3-incompatible code. The changes to make it python3-compatible were trivial, in the case of the code I was working on it was changing some print 'foo' with print('foo') . There's even a "compat" module to smooth over the few incompatibilities with the standard libraries; there's a handful of modules that were moved* between python2 and python3, or incompatible changes to the parameters passed in.

CFAA?

I'm familiar with the Computer Fraud and Abuse Act of 1986. The intent of it's clear; it's mean to prosecute for logging into a system you don't have credentials for (i.e. either stolen username/password, dictionary attack or the like, or a hack'n'crack that's bypassing the username/password entirely.) Or for having access but exceeding access (i.e. privilege escalation, you have a user account and get root on there, or another user and start snaffling through their otherwise-inaccessible files.) But, I suppose the court will decide to interpret it how they will.

I don't think CFAA should even apply in this case; he was an authorized user of the plate system.

99.3% reduction in power?

99.3% reduction in power? Per Google, they've reduced the power they are looking for from like 1585 watts to 10 watts. 1585 watts seems like a lot of power, and 10 watts seems rather low for anything with more range than a microcell.

Win7

"although the end of a PC buying cycle caused by the end of support for Windows 7 also dragged demand down. "

This could be a big factor. I'm an Ubuntu user*, but I've used Win10 in a VM and real systems and it's not that bad. Full kudos to Microsoft in particular for debloating it.

But, my friends, if you ask them about Win10, they think it's as bad as Windows 8 and Vista put together, and that it'll immediately send Microsoft all their confidential data (... but at the same time gleefully give away their private info on Facebook...). Win10's default privacy settings are bad but not that bad 8-). This isn't based on ACTUALLY using Win10 or probably even seeing it on a live system, it's like "Oh yeah, I heard Windows 10 insults yo momma when you use it". "Oh good think I'm sticking with Windows 7". One of my friends switched to Ubuntu (with "flashback" desktop instead of the default) and is very happy; even his games run on it (much to my surprise, Wine will run nearly 100% of WIndows software within the past year or two). A few of them have ALEADY put off PC purchases because they won't buy anything with Windows 10; they fully intend to keep their old Win7 systems until they disintegrate, then try to find another used Win7 system that's in better shape than theirs.

I'm sure now the current situation will be used to conflate the drop from that and the drop from "no Windows 10 for me" people, but I would not be surprised if a large drop is from Win7 going out of support.

*No Microsoft tax for me; I got the maximum $300 refund check from Microsoft under the antitrust trial years back, and have bought used PCs since other than 1 Dell with Linux preloaded, and a Chromebook.