Posts by toughluck

Re: I'm waiting for...

No. It's possible not to crash assuming it's a reasonably straight road if you don't overdo your reactions. An autonomous vehicle might run into a problem if one or two wheels lose grip before the other do, since it will start correcting and can go into a runaway feedback cycle.

A reasonably experienced driver will recognize the situation.

It's also equally important to note that an experienced driver will drive defensively. Autonomous vehicles will either go too fast or too slow. It's easy to imagine them being so defensive that autopilot decides it's not possible to drive faster than 10 mph or ignoring tell-tale cues and going 70 mph because it doesn't see any risks.

Re: @Charles 9 Chinese Cannon

If it's inline, it would also need to point at the same domain and I would need to be able to download it using exactly the same route, so the MitM attack would need to intercept all traffic, not just inject the link to malware.

In such a case, the attacker would need to control the edge router of either you or the site you're trying to access, in which case it doesn't make much of a difference whether the attacker is using HTTP or HTTPS.

Of course, your friendly oppressive dictatorship which controls every router might pull it off much easier, but for them, it's just enough to censor the content they don't want you to see, what's the point in spreading malware, and through a MitM attack of all things?

It's a theoretical attack in the same sense as saying it would be terrible if a hacker was able to put a USB stick loaded with malware in a computer at a nuclear power plant control room. Given that it requires physical access to the room, if somebody can access it, you've got much bigger security issues than that USB stick.

@Charles 9 Re: Chinese Cannon

Oh? What if it gets MitM'd by something like the Chinese Cannon?

My local pizza parlor will no longer list pepperoni because somebody doesn't like it and doesn't want anyone to order it, of course.

The content is irrelevant: only that it's in the clear and therefore can be injected with malware on the fly.

I won't accept cross-site side loading, so the malware doesn't get displayed or executed. And if the site is hacked and malware is added at the point of origin, it doesn't matter whether it's HTTP or HTTPS and blindly trusting HTTPS to be safe and secure is even more dangerous.

Re: This is proper and important step and I hope other browsers will do the same

Yeah, right. Instead of having three security states (secure/not secure/don't care) for the average user, they will now have two (secure/not secure).

The users were trained to see the green padlock as a security mechanism and to only expect it on sites where they do shopping, banking, e-mail, etc., and that they should only follow bookmarked sites and check the certificate.

This is going to train users to ignore the certificates completely and if they end up on their "banking" site, they will see a green padlock because the phishing operation used a free SSL certificate from Let's Encrypt.

Really a brilliant idea.

HTTP simply wasn't built for this -- it was devised to be one-way only. Two-way communication was strictly e-mail, Usenet, IRC, FTP or telnet, followed by transport layer security for them.

Re: Disable the UEFI!!

I actually tried disabling UEFI and secure boot. The OS still failed to boot. I fiddled with other settings, and it finally booted. The Windows 10 corporate image installer told me it needs secure boot to be enabled for the installation to proceed.

I tried to get the laptop to boot that stick (on the USB 3 port) with the same settings again later (I thought I could maybe trick the installer or that there may be some advanced options), but it failed, and I couldn't get it to boot again until switching to the USB 2.0 port.

I had a problem when trying to reinstall Windows on a laptop that only had USB 3.0 ports. None of them were accepted (the USB stick failed to boot on any of them). It seemed like UEFI limitation.

Luckily, I had USB 2.0 ports on the docking station and it booted without a hitch from them.

What I haven't tried is disabling USB 3.0 in UEFI setup. I suppose this has to be a potential solution, but it only occurred to me after I have already installed the OS, and I also haven't tried a USB 3.0 stick in a USB 3.0 port.

It failed to boot live Linux USB sticks as well, though, not just Windows.

@Marty McFly: I disagree with that notion.

Android, Chrome, Google, OSX, iOS, et al, is all about selling YOU to someone else, too, and people will happily line up and spend a lot of money on these. Microsoft just joined the fray, and let me add, they joined it really late in the game.

Honestly, all other products sold you several times over by now.

Re: Can you spell lawsuit?

People seem wed to the idea that Microsoft alternates good and bad releases, starting with Windows 95 (bad), followed by OSR2 (good), 98, 98 OSR2, Me, XP (conveniently forgetting that 2000 was better, even if it didn't have all that eye candy), Vista, 7 and it becomes a blur afterwards.

It was easy to hate 8, and 8.1 didn't help out much. I guess Windows 10 was overhyped, people were expecting it to be the new XP. It kind of is (it runs faster than 7 or 8), but overblown reports of failures (frequently at users' own fault) allowed haters to pile hate on it.

Now, a year ago I thought Windows 10 was shit based on all the articles I read. I was using Linux wherever I could, including on my work PC, until I was told in no uncertain terms that I have to switch to officially supported Windows. While I wasn't happy about it and I wanted to make life at corporate IT support as hard as I could and maybe try to claw back to Linux, I also came to Windows with an open mind and decided to give it a chance.

Re: Slow, carefully planned suicide?

Really, he wasn't singling them out? This paragraph comes across as crass, then:

Seeing that Win 10 seems to screw up everything it comes into contact with, and that every "Windows" release (update) from now on will be essentially a beta at best - faults to be identified first by users?

Seems to be the case with Linux, OSX, Android and iOS as well. If this is standard industry practice, why point at Microsoft?

FWIW, I didn't have problems with upgrading to 10. Not on my phone, not on my wife's archaic netbook, not on my desktop, and not on the corporate laptop. I can understand user frustration, but other than some specialized corner cases, most of them should have no problems with Windows 10. And overblowing specialized uses to cover the entire market is silly.

Re: Slow, carefully planned suicide?

I upgraded my wife's netbook (an Acer with AMD C-50 APU) to Windows 10. It was previously running Windows 7 starter and I upgraded RAM to 4 GB and replaced the drive with an SSD, but 7 felt sluggish, but I couldn't do anything about it, it just took a long time, but according to Task Manager, nothing took up too much resources.

I upgraded it to Windows 10, it still felt sluggish.

I could bash Microsoft, but I decided to check what caused it and found that Windows Defender defaulted to scan the drive on certain activities, such as connecting to a network. A couple of clicks later, I rescheduled Defender scan to once nightly, and performance went up, way up.

Non-functioning optical drive? In what sense? Didn't it work at all (doubtful), or didn't it play DVDs? In the latter case, install VLC, Microsoft decided to remove DVD support from Windows 10 (it was only ever present in 7 and 8, as other releases, including XP, didn't support DVD playback without 3rd party tools), since most new laptops are sold without optical drives and since free solutions are frequently better than proprietary. If it didn't work at all, it's probably a hardware fault, since SATA drives are totally generic. Either way, maybe a few clicks away from installing a driver from Toshiba.

To be honest, I don't sympathize with these girls. They imported their laptop from abroad and they seriously can't expect locals who don't know the language to be able to support them if they run into any issues.

And frankly, there are at least a few solutions for them if they were using a laptop with a UK or US keyboard layout (from the most lazy to the least):

1. Buy a set of keycaps for Japanese, and switch Windows language to Japanese (Windows 10 doesn't limit this to Ultimate editions).

2. Switch Windows to Japanese, but make your own keycaps. You'll need a printer, a sheet of printable stickers, scissors, invisible/magic/whatever tape (not ordinary scotch) and a free afternoon.

3. Switch Windows to Japanese and learn to touch type.

Optionally, you can leave Windows in English and install just the Japanese IME. Buying or making own keycaps is optional. For the more ambitious, download MS KLC and use it to make your own keyboard layout to have multiple language support without switching to Japanese.

Re: Slow, carefully planned suicide?

Isn't that a bit harsh? Linux, OSX, Android and iOS are hardly bug-free, aren't they? You're singling out Microsoft as though they were the only ones to do this.

It's not just Apple. I would bet Ireland provides this tax break to other companies. If it were just Apple, Ireland would happily welcome the extra money. Once the dam breaks, however, EU is free to pursue all other companies operating there, and Ireland might not be able to take it if those companies move out.

Nevertheless, it would have been epic if Samsung (or any other competitor of Apple) was not operating this way and could publicly argue they don't get this sort of tax breaks, thus putting Apple in a very uncomfortable position.

Re: Interesting

Can't go back. It appears in a dialog: "Windows cannot find 'file://witch.valdikss.org.ru/a'. Check the spelling and try again."

Looking at this, I can't help but think it's just a default configuration issue that should have been disabled for all ordinary users and made available for corporate types that would/should simply block smb protocol on the firewall going out, but hey, nothing like a good rap at Microsoft to brighten the day, wouldn't you agree?

Re: Honest guv!

Yeah, exactly what I wanted to post, I went through the posts to see if anyone spotted it before I did.

And yeah. What?

A splendid idea for a business

Set up a company like "PetNet". Pay off RSCPCA/PETA/whatever. Get lawyers.

Sell your automatic feeder to thousands of gullible morons.

Turn off your servers.

Alert the RSPCA/PETA/whatever to owners that might potentially be cruel to their animals and disclose the customer list.

Wait for lawsuits to start.

Reap profits from lawyer services to whoever pays more (PETA/RSPCA/whatever or your own customers). Provide telemetry data favors the correct party.

Re: Would you trust TSA (and other counterparts) while you're asleep?

I flew to the US (FRA-EWR, EWR-DEN and DEN-FRA) last November and out just before Thanksgiving. It was during the elevated terrorism alert just after the attacks in Paris.

It was my first flight to the USA.

Either people working for TSA are meticulous and pedantic to a fault and managed to pack my bag exactly as I did, or they have not opened my bag. And I haven't even locked the bag in any way -- just tied a shoelace between the two zippers so that they don't accidentally open, but nothing else.

Am I missing something?