Posts by stubert

@Stoneshop

Thanks, that cleared it up for me! So to make this practical and totally secure the key is the protocol whereby you send the key to the recipient, if you can do that securely in a way that guarantees the pad has not been modified or duplicated in transit, then the one time pad (given as someone stated that the entropy is large enough) is inpenetrable and can allow the sending time-critical messages securely over insecure channels.

Mmm cookies nom nom nom

You can't really track time taken on a page, bounce rate etc. without session detection as in order to pull those stats together you need to be able to associate one page request with another as part of a single user journey. You can detect general page flow using the http referrer and the current url to build general stats as to the direction of travel and from where it came.

With a session cookie (the sort you use to remember that a user is logged in by associating the browser with a server side data structure), you can do everything you can do normally but behind the scenes using a server as a relay between an analytics service and the end user. You could do so without cookies using the session id through the url method as metioned by Steven Roper above.

Cookies are not the problem it is the usage of the data gathered and that isn't remedied by this law simply because there are other ways to do it. If you wanted to store something on a user's machine there is localStorage and many other new data mechanisms. If you want to track a user and sell their data you can use other mechanisms that do not require anything to be stored on the users machine.

Cookies seem to me to be the fall guy for a deeper problems and that is being cavalier with data collected about your users. If you wanted to provide targeted ad space you can do so without providing ad companies any data about your users you simply tell the ad company what type of ads to serve and keep the to whom bit private. It is undeniably easier to just insert a couple of lines of third party code into your page though...

And yet no action taken...

On the valet service that parked the car and left it unlocked... Ok this could go on and on. If the hacker has distributed the list of information to anyone other than AT&T or the authorities then yes I agree he should be sentenced for putting that list of people in potential future risk. If he has used the data for his own ills he should be sentenced also. If however he has done none of these then on what grounds is he being charged?

Hackers are needed, you may not understand them and you may paint them all with the criminal brush but that isn't necessarily the case. Hackers highlight security holes in systems that would not get picked up otherwise. There are legitimate companies out there that do this kind of testing, however, they cost money and not all businesses are equally motivated to enlist these services.

Individual hackers often find what is overlooked, in their spare time because they can. Determining whether this is a criminal case or not boils down to what they do after the hack and not the hack itself.

Feet size 10? Prepare for a sudden lay off from work...

And it has been proven that you are 35% more likely to get hit in a road accident if you get up on the right hand side of your bed.

So for 22 years these 47,911 people (presumably clones to rule out genetic bias towards prostate cancer) did exactly the same thing, ate exactly the same foods, exercised the same but one group had tea to drink, one group coffee, one group decaf coffee, one group water? Or did we just get a show of hands "Who drinks coffee?... Who died of prostate cancer?"

RE: Don't do the crime, etc

However, if someone stood at the bottom of your drive with a big box, then called you up asking you to put all you belongings in said box, and you did, whose fault was that?

Wrong market?

I think Microsoft may be gunning for the wrong personal computing market here, wing it on a prayer that these customers don't find out about iPads...

Windows is better for those who know a bit more about what their computer is made up of and want more choice and control over it: Gaming computers, servers, high performance machines, specific mirroring/backup configurations on their storage, crazy system setups, but want a fairly decent GUI which also allows them to control and configure this stuff.

Not tech heads and not home users but the inbetweeny tech enthusiasts/PC gamers. That seems to me to be the Windows market. Am I wrong?

It makes sense to remember

That there is no one tool that can do every job, the same with OSes.

Personally I run servers on Linux as its easier to lock down (less moving parts) and Windows for dev & design. I would possibly use Mac for design work due to better font rendering etc. but I am allergic to bowing down to the Jobsian overlord. Trying to do design with Linux would be like trying to draw using a power drill.

My point is that it is important to not fall into the trap or habit of forcing everyone on Win to prevent net admin headaches because Win isn't always the right tool for everyone and net admins seem to have headaches all the time anyway.

Stop whining...

Google are holding back their bleeding edge work, so what? They do not state Android would be a community project they merely say they will open source the code so no one company can restrict the market by having absolute control.

If you want to like Nuno stated you can fork 2.3, when 3 comes out and Google releases the source code you will be able to fork that too. You can install any OS you like onto your smartphone. You can use work Google has done for 2.3 and create your own OS if you want. You can set up a community open source project from 2.3. The same will be true when 3 comes out. What more do you want? Your own personal Google performing your bidding?

I'm still waiting for the source code for, well, any version of Windows... Oh and Apple OS... Well forget it.

Whine, whine, whine... Get a grip.

Illuminates Cloud Concerns...?

Support operators with detached brains illuminate cloud concerns do they? I think it just illuminates shoddy support. There are ligitimate concerns with Cloud computing, I don't think this is one of those concerns. Plus it seems that everything nowadays is coined cloud computing are web applications now cloud as well?

Anyone who keeps data that valuable to them solely in the hands of another person or entity (even with SLAs) is misguided at best. If it is regarding the cumulative meta-data collected, perhaps that would highlight a different concern. An adequate export facility in Flickr perhaps?

Sorry but... Surplus to requirements perhaps...

£300,000 may not be a huge amount when it comes to development costs for such a project, but it's our money!

The government seem to see themselves as this business entity that needs branding, marketing and fancy websites that allow people to have pleasant experience in getting data from their databases. All the while costing the general public money we don't have and would rather it was spent on turning this country around.

How about just opening up the data for people who want to make nice usable interfaces for free, us general hobbyists that get bored as of an evening and decide to set up an open source project or two???

People could even get the idea of setting up businesses providing services that combine various datasets in useful and interesting ways and perhaps generate some money which they could pay to the government in taxes???

Wait a second... make money from this project... rather than spending money on it... Surely not!