Posts by vir

Re: Internet of S%!£

And even if you get something with what seems to be a legitimate setup behind it, most of the time it's a rebadged piece of crap from some fly-by-night outfit. You can count yourself lucky if it doesn't shock you or burn your house down - nevermind any security concerns.

Re: I still think a bifold device will be a market failure

Maybe they'll be a holdout though; they sacrifice a lot for a thinner form factor. You'll say that the phone could indeed be thinner when unfolded, but you can't fold one of these up and shove it in a pair of tight jeans like it was nothing.

Re: "Facebook doesn't listen to, view, or keep the contents of your Portal video calls,"

Yet.

The FAQ "Does Portal Have Ads?" contains the ominous response:

Portal does not have Facebook ads at this time [emphasis added, but not entirely necessary].

Conveniently, the Portal TOS are not readily accessible - just the improbably "Frequently Asked Questions" for a product that hasn't been released yet - a great example of Pynchon's maxim: "if they can get you asking the wrong questions, they don't have to worry about answers".

Re: "Credible Threat"

Even easier... streamers!

Having a good chuckle at the thought of Secret Service agents wheeling out a huge party popper on the roof of the White House.

Re: I hope they don't let manufacturers "spice up" the names

Oh, they'll do it. A new naming convention that has essentially no relation to a technical standard? Brace for "Wi-Fi 6+", "Wi-Fi 6 MAX", and the inevitable "Wi-Fi 8-ready", "Wi-Fi 8-compatible", etc.

Reminds me of the time an over-zealous marketing writer decided to "bump up" the spec on one of our products from IP66 to IP67 and I had to explain that no, that doesn't mean that it's 1.5% more weather resistant.

Re: That is a moon

Endor's forest moon, I believe you mean.

Re: Tools

I think you mean an Ono-Sendai Cyberspace 7 with coronal dermatrodes, 4 megabytes of hot RAM, and extended capacity battery pack.

Maybe use it as punishment for leaving your computer unlocked or password on a sticky note?

Re: "That's quite a pile of cash....the mound of Silence?"

I liked Baron Harkonnen's Cone of Silence better.

Re: "The drone travels slowly at 7.5 metres per second"

There's someone in my neighborhood who pops up a drone from time to time. A DJI Phantom in all likelihood but it's too high for me to really get a good ID and I don't care enough to find out for sure. It is fairly loud - about the same sound and intensity as a gas-powered weed whacker - and really stands out because you're not expecting to hear that kind of sound coming from above you.

Re: SHOULD they be allowed to ?

Shocker: the IP address is...someone's smart light bulb.

That would be a great case name through: Draft Kings vs. A Philips Hue Light Bulb.

I'll say it again: these guys have been watching too much Silicon Valley. They're convinced that eventually a group of nerds is going to be talking about who would win in a fight between Superman and a black hole and one of them is going to say "wait...but what if we just..." and create a NEW MATH that will allow only good people to decrypt message intercepts.

With the login still set to admin/admin?

I still think that capital letters and special characters are more trouble then they're worth. I haven't trawled through any big password dump files, but I'd be willing to bet that the majority of number/special character requirements are fulfilled by adding a 1 and/or ! to the end of a "normal" or easily guessable password and that capital letter requirements are fulfilled by capitalizing the first letter of same.

But consider: an 8 character password with all four character types in play - lower case letter, upper case letter, number, special character - has 72^8 possible passwords (give or take, ignoring any disallowed special characters); somewhere in the region of 7.2E14. If we remove the requirement for upper case and special characters, the number of symbols drops to 36 but we can maintain the same keyspace size within an order of magnitude by adding one additional character and even quintuple it by adding two (1E14 for nine characters and 3.7E15 for 10). If we allow lower case letters alone, the keyspace is still 1.4E14 with 10 characters. What's more challenging for the user: remembering what special character/capital letter/random numeral they jammed into their password, or remembering one or two more characters?

Re: Count Me Out

You Only Launder Once

Re: I've said this before

I just got a 2850mAh battery case for my 6 and haven't looked back (or forward, for that matter). I can't go on about this battery case enough; my phone's internal battery hasn't dropped below 90% - even when I forget my charger on overnight trips. And when the case battery finally dies, I'll just...buy a new case for $40.

I believe that many people on here are similar - once performance hits a certain level, there's really no need to upgrade for the sake of upgrading. Decently bright and crisp screen? Acceptable camera? A fair amount of storage space? Checks email and opens websites? Great, let me know when they release a phone that interfaces directly with my visual cortex.

Re: Microsoft's response

"Better understand their requirements"??? Here ya go:

They want to be able to have a system they can rely on without worrying about being held hostage to price hikes or "updates" that they can't refuse and that break things or change functionality to the point that they lose time and work trying to figure out how you "made things better". They're confused because "updates to your software" are things that up until now have been included in the purchase price instead of being a perpetual money sink.

The vulnerability here isn't that a modified Echo could be used to spy on you if it could somehow be infiltrated into your home; it's that a modified Echo could be used to eavesdrop on other completely stock devices in your home as long as it could get on the same network. Given the security state and broadcast area of most home networks, I'd say that it was a more significant vulnerability than the article let on.

Reason #344 not to get an Echo.

Re: Hmmm

I had a Pre as my very first smartphone. I really liked the physical slide-out keyboard and the integrated wireless charging - while cool - helped me realize that it's not a feature I'm going to chase in the future.

Ajit Pai: A Portrait of Leadership

Chapter 1: Pass the Buck

Chapter 2: Throw Your Own People Under The Bus

Chapter 3: Step in The Dung of 10,000 Dogs

Re: so installing critical security patches

Anyone have any data on what the economic impact of patching systems vs not patching them is? E.g. lost work/downtime/cost to "recover" from patches that break tools or destroy workflow vs malware that does the same?

Re: Most of us knew that this was going on

It's the very recent concept of needing to have security implemented into consumer products. Most people's idea of security is the $30 deadbolt on their front door, their home security system, or shredding credit card statements before putting them in the trash. All of those are well and good, but they're defenses against an adversary who has physical access and who has specifically targeted you for the purposes of stealing tangible items or discrete pieces of high-value information (e.g. SSN, credit card info, etc). There's just no concept of defense against an adversary who can take what they want from half a world away and wants to know the intimate details of your life to sell over and over again.

The consumerate (new word) needs to adjust to the paradigm of approaching the selection of consumer products as doing business with an active adversary who is giving you functionality or a price break or both in exchange for insight into your personal life with the intent of monetizing it. That the information you give up somehow enhances the functionality of the product or makes your life better in some way is merely sugar on the pill. Everyone who gives up a little bit of their privacy whenever they purchase something will soon learn that they no longer have any secrets. And those who claim that they "have nothing to hide" will come to find that the most innocuous-seeming information can come back to haunt you in ways you didn't think possible.

Even a glass house is better than one filled with monitoring devices; at least you can see who is watching you.

Re: "It could be used in the bedroom!"

That's what the electric model is for.

Re: How will it be used?

Exactly: plenty of good use cases out there as mentioned in the article. Security camera that doesn't fill up GBs of space on nothing? Sounds good. Interfaces that can detect when you're interacting with them and respond back? Cool. But there's absolutely no way that these won't be used as the shiny bait to get you to agree to put more and more surveillance devices in your home at your own expense. I want to be the paranoid one on this but time and again it's been borne out. The extra ironic part is that this hardware, which ostensibly removes the need to communicate with the cloud by putting capabilities on board, will just be used to reduce the amount of heavy lifting Google, Samsung, et. al. will have to do on their end and you're the one paying for the upgrade. Every one of these devices will ship with clauses buried in their EULAs/ToS that make you give permission for the device to phone home for "troubleshooting" or "diagnostic" purposes, to "enhance user experience", or even - just putting it on the table - "to provide relevant advertising". No way to disable the "feature", obviously.

Re: The Seller's Consumer Law?

No, but they can't be forced to immediately pull all of the advertising in question while the lawsuit proceeds since no one's in danger of dying from a pair of broken headphones

Re: Does not include ...

Ah but if the hardware is situated in a room that now requires additional cooling, that power should be added as well.

Re: Thank the heavens

"You guys weren't doing it right." = "Hire my company to consult for 6 months at $50,000 a week."

Re: Hiding gun parts on/in person?

In the end, perhaps, but more likely through the side.

Re: Loopy.

Even loopier:

The university I went to would contract students to go and troubleshoot problems with other students' computers in the dorms. Mostly stuff like setting up to print to the school printers. I once pulled a ticket for a network connectivity issue and walked over to check it out. At that time, all the dorm rooms only had one ethernet drop even if there were multiple students living there, so the school would provide a 4-port switch. I go through my checks, computer on, yep no connectivity, look under the desk for the switch, lights are on, follow the ethernet cable out of the switch...and back into the switch. Reinserted it into the wall jack and everything went back to normal. Easiest ticket I ever had.

Your source must be different from mine. Garner's Modern English Usage:

Comprise.

A. And compose.

Correct use of these words is simple, but increasingly rare. The parts compose the whole; the whole comprises the parts. The whole is composed of the parts, the parts are comprised in the whole. Comprise, the more troublesome word in this pair, means "to contain; to consist of"...

C. Comprise for make up or constitute. If the whole comprises the parts, the reverse can't be true - e.g.:

"Of the 50 stocks that comprise [read make up] the index, 40 had gains....

D. Comprise for are. This is an odd error based on a misunderstanding of the meaning of comprise. E.g.: "They comprise [read are] three of the top four names in the batting order of...

Maybe a BrE vs AmE issue, but its the Recording Ass. of America, so I'll take Garner's advice on this one.

Re: Can someone please

Physical access was easy if not entirely legal; the antenna was, as I understand, usually mounted on top of a house or garage with the coax snaking out of a window. As far as DF, they had a directional antenna mounted on top of a van and would take bearings from several locations as they drove around. Turns out the General Post Office and MI8 did something very similar (without the pin-in-the-coax trick) back in the '20s and '30s with MI5 taking over to help find German spies operating within the UK, pretty cool!

https://en.wikipedia.org/wiki/Direction_finding

For certain skill sets, you can do pretty well. In the Navy, at least, surgeons, chaplains, etc go through Officer Development School, aka "Knife and Fork" school where they learn basics like "what the ranks are" and "how to put on a uniform". It's 8 weeks long and while there's a minimum level of fitness expected, they also realize that a 50 year-old isn't going to be doing pushups in the surf. Pay isn't anything to write home about but I've run into doctors who come in as captains making $100k a year. Factor in bonuses and they might be closer to $150k.

Re: A lot of you are *very* keen on protecting your access to smut

A friend of mine who used to work in a video store told me that there were two types of people who rented porn movies:

The guy who slips the porn in with a stack of five or six nature documentaries, action movies, etc.

The guy who proudly slaps "Anal Bum Blasters III: Blast From The Past" down on the counter and asks: "you got anything new back there?"