Posts by Doctor Syntax

Re: Unprofessional

There's a difference between stumbling across stuff inadvertently and going looking for whatever you can find.

That may be the answer to the Gary Glitter conundrum. If the techs simply stumbled across the material they did the right thing. But I'm sure a lot of potential commercial business left PC World after that, just in case they went looking.

Re: Unprofessional

" I'll reference the Gary Glitter case as an example where had it not been for PC World sniffing about he wouldn't have been caught when he was which probably led to saving children from abuse."

OTOH if your PC was full of your business's financial data would you, post GG, have taken it to PC World for service?

Re: If code is free speech then Apple can't tell developer what to write...

"Basically you're saying free speech can be contracted and compelled by money and layoffs menaces"

Free speech can be contracted. How do you think films & plays get produced?

Re: The mat and potatoes

" if a court orders them to do it (after the argument has gone to the highest possible)"

Indeed. But this is a long way from the highest court possible, in fact AFAIU it's still at the lowest court possible. And before the highest court possible rules it will hear argument and evidence from both sides. From what I've read not only was this writ issued by the lowest court possible but it was issued without hearing any argument from Apple. So the there's quite a way to go before it's worth even trying to double-guess what the eventual decision will be let again arguing what Apple might then do and what a court should then do about what Apple should do.

Re: Wait....

"I am tempted to call you a shmuck you shmuck but that would be name calling. So I will resist the urge."

And an insult to real shmucks.

Re: Single case Today --- ?? tomorrow...

"Just wait for one of your dears to be killed, and to know the name of the killer is only in a phone nobody can access..."

And if nobody can access it how would one know?

Even if you're going to create straw men as the basis for emotional arguments you still need to retain some traces of logic in there.

Re: No marks to the following:

"At that time the Teletype couldn't be programmed to not echo selectively."

IME they were set up to type only what came down the line so what you saw on the paper was what was echoed back to you. So it was up to the login program to send clear text, asterisks or whatever.

Re: Clear Desk Policy

"So, like this?"

It reminds me of a quote from Len Deighton which goes something like "Bret's desk was like his women with shiny legs and see-through drawers".

Re: Clear desk policy

"This was the opportunity for said PHB to loudly deliver a security lecture to the whole office*, before grudgingly giving me my laptop back."

This was the point at which you should have said "So that explains it. It was running the remote server for the client demo...."

Re: When I was your age...

No, real dinosaurs carved out the message on monoliths in runes with the phone handset beside them. The computer worked out what was being written from the sound of the tapping.

Re: so long Debian, it has been nice knowing you

What? Debian code is all available under a licence that permits Microsoft to use it just as readily as you do. All they (Microsoft) have to ensure is that they distribute the source as demanded. Debian are selling nothing, just being a normal open source organisation.

Re: So he has an ASR33??

"Programming on an ASR33 will humble you very quickly. Everyone should do it once!"

Especially on the end of an acoustically coupled modem.

Re: Yeah ...

"That's not a knock on Redmond, that's a serious question."

The two are not mutually exclusive.

Re: No, just no.

"Councils make money flogging their (compulsory) electoral register"

Do you mean you didn't opt out?

Re: This finding has implications for thinking about whether an opt-out should be available

Forget about opt-outs. They should be thinking in terms of opt-ins.

Re: Flat vs 3D vs skeumorphic

"Skeumorphic is distracting and bling... 3D only need left and top light grey line with right and bottom dark grey line to give the cue that it's something you drag or click. We don't need almost photos of real objects."

3D might only need that. Working out what to drag or click needs a bit more. It needs something to give a bit of a clue. The vast majority of users now might never have seen a real floppy disk so to them they're no longer skeumorphic but the use of icons based on them will be sufficiently ubiquitous that they're instantly recognisable as the place to click to save work. An unfamiliar application will present a steep learning curve but the presence of familiar icons and menus with familiar functions will ease that.

Whether those icons are still skeumorphic or not they're far from being a distraction, they're valuable signposts.

Re: "One thing that's less clear, is who Solus is really for."

"the old Unix everything-commingled-in-five-places dir structure"

The really old Unix structure was pretty rational although it was designed, in part, to deal with the likelihood that it would have really small disks so everything needed to boot or run single user was in a special set of directories on account of /bin might be on a separate disk and you had to get to the point where the system could mount disks. OTOH root's home directory really shouldn't have been / so adding /root was a distinct improvement.

/usr was for user's home directories. Why on Earth did somebody put bin and lib directories there? The home directories eventually moved to /u and then to /home leaving /usr sadly misnamed. /usr/spool eventually became implemented by a mess of symlinks so you'd cd into it, cd .. and come up somewhere completely different. No wonder that got replaced by /var.

Another thing that got changed was separation of roles. Consider the system binaries and libraries; they used to be owned by a user ID bin. bin could install software without needing the root password. lpadmin could manage printers without needing the root password. Then to appease the great God Convenience everything was handled by root followed eventually by the notion that this wasn't a good idea and so we had sudo to repartition the agglomerated root functions and get in the way of every admin task unless you negate it and sudo /bin/sh. And then, to re-appease the great God Convenience we have the arrangement whereby sudoers can sudo by using their own password instead of having to know a second password. In effect Unix-like systems are typically being run by local administrators just like so many Windows boxes.

So, yes, a lot of Unix has become a tangle but don't go calling it "old". To us oldies it's all newfangled tinkering.

Re: Solus stands on a few less shoulders than others

Arguably less is correct. It stands on the shoulders of the very many who put together the individual libraries and programs but not on the mighty shoulders of one of the great Debian/Red Hat/SuSE triumvirate. OK, it's getting late...

Re: No NatWest Branches But Don't Use The Post Office @Richard Jones

" *Always* write your sort code and account number on the back of the cheque"

You mean so they can match it up with the one on the front?

Re: communicating with them using ALL of their registered methods

"Who reads emails that purportedly come from the bank?"

There's another side to that - by sending out spam the banks are training their customers to respond to phishing emails.

Much as I'd like to suggest firing the guilty in the marketing departments (that's probably entire departments) there are ways in which things could be improved.

My own solution to the bank email problem is to have my own domain and use that to give the banks etc their own email aliases to address any emails to me. Unless some bank employee has my email address on his BYOD - which he shouldn't - and loses it then I can reasonably rely on any email that claims to come from my bank actually having done so*.

I appreciate that not everyone wants to run their own domain. A simpler solution would be that email hosters provide each customer with a subdomain within which the customer can set up their own aliases so instead of NatWest sending emails to fred.bloggs@example.com they send to nw.2016@fredbloggs.example.com or even better 55de6ff8-e541-11e5-b6b8-78acc0c6193c@fredbloggs.example.com.**

The other technical improvement would be to make PGP a core part of an extended SMTP so that if I get an email which purports to come from my bank it would be signed and my email provider's server would verify the signature with the bank's public key before accepting it.*** For good measure I might have a copy of the bank's expected key on my email client, just in case the email were to come from someone@my-bannk.com.

Today's email standards and practices are rapidly becoming inadequate and need to be improved.

*In fact, this may not be correct. I have had words with more than one financial institution about their having employed digital marketing companies spammers to send out valuable marketing communications spam. If that were to happen under my current system I'd then have to change the alias and complain bitterly about the hassle. The alias might well be changed by changing bank. Maybe fire the marketing departments just to be on the safe side.

**This does, of course, rely on email providers not having their database popped by teenage skiddies using exploits older than themselves. Come to that, so does my existing arrangement but I think that, unlike other internet companies I've left behind, they're prepared to keep their security up-to-date.

***The keys would either be served from the bank's email server or the bank's DNS records would include an alternative address. And, yes, I do know that PGP can be enabled on my email client today; do you know it's not a rhism of use without most other correspondents also using it? It needs to become universal to be of use and the only way for that to happen is for it to become adopted into the standard so that non-use can be deprecated.