Posts by Claptrap314

First, never underestimate the impact of u$ using their customers as their QA. If you think "Azure" when you say cloud, then--just don't.

Second, while it is correct that the primary benefits of scale accrue to the providers, if there is any meaningful competition at all, a significant amount of that savings will roll down to the customer. If competition is fierce (and it is not), almost all will.

Third, AWS & GCP are set up to provide something that you simply cannot do on your own until you are nearly a household name--reliability. Even four nines is EXPENSIVE. AWS & GCP can give you all the tools for it in a few minutes.

If you don't mind having your website down all day on Black Friday, then you are likely not to need their services at a much lower scale than if you do.

We're moving off Heroku this year. It's going to be interesting to see just how much it is going to cost us to do all of the things that they are doing for us. My prediction is that our costs are going up. It will be worth it, though, because of the added control. That is, we will have a gain in functionality.

Re: Event Horizon?

Except--not so much. Retpoline, for instance, has pretty much been built into the entire stack. It doesn't matter if your system is entirely in a single security domain or not--you are going to pay the price for these workarounds unless and until you rebuild your entire system without them. (And that is EXACTLY what you do once your operation is big enough.)

There are SOME kernel workarounds that can be turned off with switches. But I would be shocked if this resulted in differently-compiled code being brought in and not just some branches around the more egregious workarounds.

Remember the original recommendation from the Feds? "Turn speculative execution off". That lasted about twelve hours. It's not that they were wrong--that IS the only way to prevent these attacks in that generation of hardware. It's that the cost was too high. Nothing else.

I have not researched this bit, but the thing is that speculative execution in the presence of caches is going to be fiendishly difficult to accomplish without leaks. And by "fiendish", I mean "there may be some analogue of the CAP theorem or the Heisenberg Uncertainty Principal limiting what can be done".

Re: Autistic People too

Yes, I'm autistic. But you know what? EVERY job description I've seen in the last 20+ years (and I've seen way, WAY too many of them) includes "clear communication" as a requirement. Guess what? When I'm looking at your job description, I am screening you. If you say "requires 5 years in X", then either you mean what you say--or you're "clear communication" is a rule for me but not for thee.

Hard pass.

I'm a mathematician. For money, I program computers. If you give me a requirement that x >= 5, that's what goes in the code. If you cannot manage for that? Hard pass.

Re: They're wrong, even if not lying

I recall from a recent article in these pages that "AI" fares much better at detecting GAI content than humans--something about spotting statistical artifact. If true, then your supposition would be deeply challenged.

But I DO agree with the conclusion. The net result is not going to be any sort of improvement when it comes to general usage.

Ever take out a bank loan?

Certainly, in the clear light of day, it's usually easy to spot these ********. But that's the game. They DON'T operate in the light. NO ONE is immune. If you think you are, YOU are the idiot. Pray you don't get targeted.

It's not paranoia--they really are out to get you. And unlike you, they are professionals. Think about that. But try not to think about it too much before bed.

Re: This should be mandatory

If you have a battery reserved with the power for the operation powering a circuit with a MOSFET where the control voltage is your sensor, I don't see this being very power intensive.

You don't power against the springs.

Re: Wierd

Nah, this is just commentary on/mockery of Xi. Don't read too much into it.

It's not "a bit" like sanctioning sports teams, it's quit a bit like it.

Governments, even totalitarian ones, only continue to exist through the acquiescence of their population. While we generally try to aim sanctions directly at the power centers of the offending government, we also look to ways to sour the broader body public on their policies.

In this case, we have a company specifically sanctioned, presumably because we believe that it is in some way important to the offending government, and an employee of that company is whining about it, dragging out some of the exact same arguments being used by said government.

Moreover, he can do the same thing that outed Holly communists did when faced with boycotts--change his working name and carry on like nothing happened. Sure, it's a pain, but no, he's attacking the sanctions regime instead. If anything, his arguments demonstrate that the sanctions are not baseless.

Re: some shareholders are agitating for change, and want Alphabet to go even further

I was at IBM 20 years ago. If you think that "sack the workers to boost the share price" was what has caused their downfall, you have no idea just how toxic the situation there was for many of us.

The place was a hot mess of hot messes.

Re: The Rogue Programmer

Among his many valued traits are....

Re: make a hasty move to another region

I learned SRE at G in 2015-6 supporting (primarily) hangouts. This overlapped the rollout of GCP, I was not involved with that effort at all.

We had a number of rules that were involatile. Rule #1 on that list: the minimum number is three. Three DCs (with non-overlapping maintenance schedules), and on at least three servers in each, we would not talk to you (you being an internal G team).

If you want resilience, you MUST be able to handle simultaneous scheduled & unscheduled outages, both at the DC level & at the level of the individual servers.

This is NOT cheap. SRE can tell you how to do it without exploding your cost, however.

Set up this way, and you can simulate scenarios like this one as training. (We preferred Tuesdays.)

Re: God forbid, if something happens then the world will take notice.

You mean that Iranian plane that was broadcasting on military frequencies, descending towards a US ship and refusing to respond to hails?

I would shoot that down without hesitation. The duty of the commander is to the lives on board his ship, not to the dead bodies put on a plane so they would make for good TV.

"When I use, I dunno, a typical .NET library, usually if something goes wrong I can point the finger at the library vendor, or at Microsoft, and that's it."--yeah, and that's the problem. You can point your finger, and that's it. Nothing more happens.

NPM is a steaming pile. Everyone can see that. m$ stuff is a bigger steaming pile, but they don't let you see the details.

Re: Welcome, new overlord

I upvoted you, but you've mangled the dialogue. It's only been a couple of years since I last played...

Re: Complex problem

Quis custodiet ipsos custodes?

We see this constantly: decent, honorable, well-intending human beings get into a position where they have power and an incentive to abuse it, they will do so.

Opening up the model will empower a lot of people to do bad things, true, to some degree. But it will also strongly disempower a much smaller set of people who otherwise are going to wield a lot more power than others.

It's the democratic solution--terrible, just better than all of the others.

Re: Well that was unfortunate.

Most states are "at will"--no cause needed.

Re: And just when I thought replacing all my Adobe Flash controls with Telerik

I'm assuming op missed the troll icon...

Re: Am I reading this right?

And this is why, as a Google employee (in 2014), I had quit using Chrome in order to do my job.

I have no doubt all of these network traversals & all this processing is directly impacting those using Chrome (or its derivatives).

Re: The Pentagon has the capability of deploying pancreatic cancer?

"Could deploy"--as in "have stockpiles of deliverables, ready-to-position delivery systems, and trained personnel"? Pull the other one. "Have the technical know-how?" Certainly. But for the reason that appears to have missed you--defensive research. We KNOW these weapons are being used out there. It would be completely irresponsible not to develop defensive measures.

I'm pretty sure they learned they could get by with it...

This is step #0. If this is not the first item on the checklist, then I really don't care what you have to say. These facilities cost billions to build. The costs of disconnecting? Employee's whining about not being able to get on TikTok.

Although, in this case, it is best to skip that second part. Please.