Posts by JLV

@Baldy50

which is also why, much as it is horrible, the risk from current Islamic fundamentalism needs to be kept in context - it is nowhere near the threat level of the USSR <=> US/Western confrontation. Or indeed the number of deaths that came out of it.

Not to be complacent, but we've outfoxed the USSR, surely we can outfox a bunch of moronic backward zealots whose idea of PR includes killing lots of people of their own religion and starving the economies of their host countries in the Middle East. It'll take time, many innocents will die and it will often seem like the world is getting ever worse along the way. But they will lose and the world will move on.

Re: I dunno if this would work...

That's a good idea. But I think it's what the hash signatures you see on some downloads are used for. Of course that supposes you can ensure that your good hashes are stored elsewhere and secured against manipulation.

Sobering incident. Both for someone wanting to distribute software and someone installing it.

I always think that the less sites you trust as download sources, the better. App Stores are OK by me, so are the open source repos for Linux and Port/Homebrew (Mac). Past that... I need to really need that software.

PyPi, the Python script repo is another worrying example. Not sure how much vetting, if any, is taking place on uploads. Yes, you can read what you download, but install scripts have already, as sudo, run by then. And it doesn't take many lines of Python to make a mess.

Re: Semi-Obsolete concept: FTTH as an "Urban privilege"

> I think that makes you a fucking monster.

Fuck you too, Trevor. That's not what I said, if you'd bother reading it correctly. What I was referring to is research that shows that bureaucracies, corporations and groups of people in general tend to dodge moral constraints because it is "no one individual's fault". I didn't say it was right, or desirable, I just said that applying sociopath to a group isn't helpful. And is, in fact, rather stupid, like a good deal of your statements here, except for our common frustration with Telcos and their ability to get their way at everyone else's expense.

But, eh, go ahead if you want to put words in my mouth.

p.s. your lack of politeness here certainly shows I've "struck a nerve" too ;-)

Re: @JLV "democracies benefit from alternating parties being in power"

Interesting analysis. Dunno about splits, and I rather doubt that the religious right will go away.

If faced with yet another loss (gotta remember no one thought Brexit was gonna pass though) could the Republican Party instead amend its primaries' rules to reduce the capacity of outliers (i.e. unusually religious folk) to push forward candidates that will be unacceptable to the larger American electorate? And indeed to members of their own party. Cruz being just one of several examples. Too much religion in politics makes many people worried. And it certainly made the founding fathers uneasy, hence the 1st amendment.

It would be extremely difficult to clip the zealots' wings without being seen as unjustly disenfranchising people who, while I don't agree with them, or even like them, should still be allowed their democratic opinion. But their right to their opinion should not necessarily grant them the right to hijack their party's nomination process. If only to avoid that party predictably ending up in opposition.

Have any other countries successfully changed their nomination procedures to avoid these effects? I realize openly voting for candidates is not the norm so examples are few. More mainstream Reps voters voting in primaries would do it but is unlikely to happen.

Re: Denial: It's not just a river in Egypt

Oh, I see. Let's do an MVP, mostly without the V part of it, see if people are interested, and if they are we'll actually make it work.

But it's not some random e-commerce or social network idea, or a 90s RAM-doubling utility scam, it impacts people's health directly.

You're right, if, as is likely, some of those many tests resulted in some really bad patient outcomes (death, for example), then whoever participated in this fraud should be held criminally accountable. Not to mention, I suppose, investor lawsuits.

I suppose it could have been taken as a bad omen that Theranos is pretty darn close to Thanatos.

Yeah, but there are legitimate reasons to accept run-this-even-though-it-was-downloaded apps at least on demand, as you yourself just explained how to do. Since the article specifically said the infection entry context wasn't known, Gatekeeper need not have been blanket disabled. What about, for example, a compromised but previously benign 3rd party app that needs an install exception? I install little - every new proggie is a risk - but not much of what I need is on the Apple app store.

Let's be careful and not just smugly trust that Apple's security is foolproof.

Dumb question, but I confess I dunno UK specifics.

Cameron has announced his future resignation, which in many countries would result in general elections, after a new party leader was chosen. But, if I understand correctly, you vote in a local MP from a party and the PM is the leader of the party with the most MPs.

In the case of the UK, once the Conservative successor to Cameron is chosen, are there new general elections where the public get to vote for PM again (because well, not the same lot)? Or is it all internal to the Conservative party and the winner of its leadership contest automatically becomes PM? I assume it's #2.

MS takes foot behind shed. Shots heard.

Re: puzzled

Up voted you, good point. But, IIRC, maybe another state, someone took tobacco company (ies?) to small claims. Company fought back tooth & claw, with lawyers, hoping to avoid a precedent. And won. 5-10 years back, also USA.

Re: What a shambles already ..

"Discovered"??? By whom? It's been a well known fact of supermarket distribution for decades.

Hope there won't be too many "unexpected discoveries" after Brexit, but right now I find it odd how gloomy y'all are. Surely a lot of this was common knowledge before, wasn't it? I mean, it'll either work out or not (I suspect the latter but not overwhelmingly so - the sky won't fall down) but none of these possible impacts should come as "news".

News is when the actual outcomes and terms of EU affiliation start rolling in. And that's months away.

>I wonder what the Internet smells like

Ask Jen.

Re: gummint shouldn't pay for anything

Color me confused.

>I'm sick to death of the government taking my hard earned money and giving it away to lazy fucks

Then, this is you again:

>Has to get government cheese - really!

>ask for help and then claw your way out through hard work

Please decide. Do you think the government should never help? That would kinda meant you not getting any cheese, wouldn't it?

IMHO, even if one takes a fairly dim view of welfare, some things should be considered:

- For better (IMHO), or for worse (in your opinion?), people are not intentionally allowed to starve or die of curable illnesses in advanced countries. So, government is going to pick up the bill some ways down the road. Is it going to intervene at catastrophe time, at great cost, or is it going to do some cheaper prevention?

- Sometimes people just get down on their luck temporarily. Helping them may transform them back into tax payers at some point. That seems to have been your case and consider that not everyone has a family to help them out.

- One should be very careful not to transform the children of one generation of poor people into a another generation of poor. Promoting upward mobility is to the benefit of the general tax payer.

Having said all that, unbridled welfare spending sometimes creates massive problems - witness the banlieues around Paris (I lived there once). Or the projects in the US. So you do have a partial point - Canada's welfare spending is low by French standards, but I would be uncomfortable increasing it to French levels unless we were achieving Nordic, rather than French, social outcomes.

The question is not whether the government should help, but how it can do so without promoting too much dependence. I don't think a basic cellphone subsidy is a bad idea - think of how hard it is to look for a job without a way to be contacted. Subsidized broadband is waaaay more debatable - I am thinking more YouTube watching is going to happen than creative usage.

As many others have stated, this is microscopic peanuts in the US budget. Many other things should be considered first to save money, including pension reform & means testing, trimming down some of the military industrial complex's more egregious white elephants. Cutting subsidies to farmers and gold plated public servant retirement plans would be on my list as well. Not this.

Basically, you don't lose votes by cutting off service to the poor. They don't vote enough and won't lobby your ass out of office either. However, you will lose votes on Medicare reform or anything that upsets the unions. Trying to ditch that pig of a F35 will have lobbyists funding your opponents no matter what.

To paraphrase Bruce Schneier, as a politician, your safest bet is therefore budgetary restraint theater of this sort.

Re: Anybody daft enough to install this...

No need to be all cynical and snippy. There have been pretty useful dev-led solutions in things like refugee re-unification and disaster relief. A lot of open source stuff is not primarily about money though it may have self-promotion as an incentive.

If you insist on dismissing all open source as junk, which is your prerogative, that primarily leaves you with one consumer operating system these days that is not open source based in any form ;-) Hint: it is not universally loved by its users.

Not sure how well this app would have worked out in practice, but there was nothing wrong per se with wanting to help. Something similar was attempted with Steve Fossett, IIRC.

What was wrong was a) the team misrepresenting (rather pointlessly) the current state of the app, instead of stating it was a prototype. And b) whatever the team's error of judgment, all sorts of journalists in prestigious publications not doing their job correctly.

Re: ¡Ay, caramba!

interestingly, I have a similar issue on my printer, a Brother with wifi capability. Configuring the wifi access password requires you to plug in a USB cable and then run their config utility which is ... Java based. Once the wifi login info is entered, you can delete the whole thing.

I avoid Java whenever possible and Java on Mac does not uninstall at all. And it actually also chokes on just turning off the Java applet capability, insisting that you need to be an admin to do it on other users' accounts. Never mind that I am the admin, using sudo. Instead of installing Java, I was thinking of launching the java configuration from a Ubuntu vm but there is no Brother config app for Linux.

However, I saw a Linux-oriented posting where someone saw that the printer actually runs an http server and you can you just enter the wifi info using a browser (if you are connected by wired at the time), bypassing the need for their config app. It's complicated, but it works. Need to try it on my printer.

Lesson learned? - sometimes what the config client talks to is still http/html-based, under the covers.

Re: Case..

True, but still less of a mess than going from case-sensitive to insensitive, I would guess ;-)

Slightly offtopic, but anyone have a clue what the upcoming more anal Gatekeeper settings mean in terms of Homebrew/Macport? We can still get our lovely OSS goodies, right?

Isn't there a plugin available - for at least some email systems - that would require a manual confirmation if a CC list is bigger than an arbitrary threshold, say 100?

To err is human, and it is rather silly that it is so easy to get caught out by this type of error.

Ah, my bad. Last I was looking at it, fairly casually, I saw mostly Ubuntus, AMIs and even some Windows stuff. Missed the BSDs :(

I stand corrected, but still think BSDs have a massive visibility gap in cloud & vm stuff. Vagrant/Chef seems to be mostly about Ubuntu for example. You are right in that it exists, but if you don't know to look for it, it is easy to miss. Azure usage is bound to improve that.

Take any combination of Googling <tech> ubuntu vs <tech> freebsd. Where tech in chef/vagrant/aws. You'll see 2x-3x the hits, easy, on the ubuntu searches. I assume it would be even worse on a specific Stackoverflow search.

Anyway, learned something, thx.

>I'd use a much more colorful adjective than "careless"

You are preaching to the converted. However, you misunderstood what I was saying.

Far as I understand, TC can be set up to allow remote connections over the internet. Those connections do not a) require TC to be manually started on the user's computer and b) do not require confirmation by the user that she accepts a connection.

Ease of use.

But, given that folks have repeatedly shown that they love 1234 as passwords, then, by default at least, another layer of protection on the user's computer should have been the need for manual user intervention to allow the TV connection to take place, at the time of the session being initialized. I think this is precisely what another poster mentioned wrt this hack - TV can be set up quite securely, it's just not its default mode.

(when I installed something similar on my work machine, the first thing I did was to set it up as launch-on-demand, not as a background service)

I assume (hope) TV had other safeguards in addition to a password, but were they 120% guaranteed never to fail? Apparently not.

Basically, don't trust your users to have good password habits - you know some won't. And you know that they will reuse their passwords. That's just the way it is. Run an attack tree scenario with more than 100 users and see if you don't get a fail on some of them.

Now, of course, that may come across as unfair to us poor IT folks. But what is now the risk to TV, the company, business because they assumed users would know better? This is not a Sony PSN account that they were protecting and trust is was TV's main business asset.