Posts by whitepines

Re: "And then start living your life in a cave."

And if they answer, "Not very well given the shorter life expectancies"?

We need to start defining life in terms of "independent years" or some such other word. If you're senile with dementia doped up in a care facility or imprisoned for something you said to offend a Glorious Leader, those years shouldn't count as "longer life". Suddenly things get interesting in terms of effective life spans increasing for centuries (handling disease, etc. better), peaking, then declining, if one uses this metric...

Re: Mozilla

That strongly depends on what kind of device is attached, e.g. would a Google device even allow a non-Google DoH resolver to be configured?

For a long time a DNS based blocker was at least a deterrent for the majority of access -- anything with hardcoded access as you say would trip other protections. Now that DoH is making that impossible, the overall risk posture has changed from "misconfigured device likely to be blocked at firewall" to "misconfigured device leaking sensitive information over HTTPS". Without DPI and MITM on all HTTPS traffic it's not even possible to determine who is accidentally violating policy without random search of the attached devices, which goes into GDPR territory for BYOD and basically means no BYOD on the corporate net period.

Allowing employee Internet access, especially with relatively relaxed policies on what software could be used, was always a balance between risk and productivity. Now that the risk for both sudden legal action (employee browsing blacklisted material without detection at our firewall) and internal data leakage to known hostile entities is that much higher, it outweighs the impact to productivity. Simple as that.

Re: Overlaps

Diskless workstations (thin clients) were a thing back then

In UNIX/Linux-land they never stopped being a thing. My employer has racks full of high end diskless servers, all running off central SAN systems. I sincerely pity anyone having to manage things at scale with storage in each individual server, all degrading with time and use. Might partially explain why Windows hosting providers tend to have horrible uptime and when malware hits why recovery seems to take an age and a half if it's possible at all...

Re: What? No reference to "think of the kids"?

Maybe use this weapon against them:

"Think of the kids! A pervert with the master key can passively pick and choose his victims without leaving a trace, and can frame anyone for having abused the kiddies, therefore evading capture and continuing to commit despicable acts with impunity!"

I know in the real world, at least for now, there'd be enough physical evidence to still catch the creep. But after law enforcement turns into "spy on everyone and remove dissidents, physical evidence is so last century"?

Scary.

Reason #5098374 backdoored encryption is a really bad idea...

Re: What happens to the authors?

Good question. Consider that if you had sold a DRM-free copy of that book (after e.g. making the user agree not to copy it and watermarking it) you would have that money in your pocket regardless of what Microsoft does here.

DRM-free media works in the interests of authors too. DRM-free media mainly works against the interests of the large publishing houses that hoard content.

Re: Mature Product

Myself, I got sick and tired of the "digital rental" crap, dumbed-down, unoriginal games, constant Internet connection requirements, games shifting / morphing into un-fun mere shadows of the original (now unavailable) game, etc., and simply stopped PC gaming outside of some of the (not really very good) open titles (to be fair Xonotic is decent, if dated). I then bought a console that was cheaper, has actual resale value, along with various games on physical disk that actually work offline (!), and also have resale value versus some nebulous individual-locked download. Why would I want to spend double the console price on a gaming rig, then pay for Windows, pay for antivirus for Windows, then pay for digital rentals of the games AND microtransactions on top of all that?

I may not be typical, but I was a PC gamer back in the day. Bought lots of GPUs and cutting edge hardware for the games I bought (and still have) on CD and DVD. I can honestly say the console does everything I want at this point, including displaying graphics that are pretty darn close to (if not at) top of the line PC graphics. YMMV of course.

Where this ties into the article is that I haven't bought a top of the line GPU since, and the only high end "PC"s I've purchased are workstations to run Linux. My phone and console are more than enough games for me, and if I'm going to be tracked on the phone anyway, might as well have some fun.

Re: The best I've managed...

This. 1000x this. Saved my butt on more than one occasion on production systems against fumble-fingered commands.

Re: So, not great, not terrible

Windows 10 goes down for upgrades, crashes, etc. so often there'd be almost no difference in actual service provided...

Oh, I don't know. As long as it's a store and Google has the keys then Google can be held liable.

I wish. What happens in reality is Google makes you agree to waive all damages etc. to get access to the store, with the threat of being banned from Google services permanently if you do dare to sue.

The house Google wins in the end, guaranteed.

Re: Run for it!

I'm partial to taking them out behind the shed and applying gunpowder and projectiles.

...which will leave the data-containing silicon bits largely recoverable in their plastic packages, and scattered to the wind to compound the problem. Not really a good way of doing anything other than getting visceral revenge on "that dang compootah!".

Now a hammer to the chips in question, that's cheap, effective, and 100% guaranteed...

Re: "control all access to a century of at least leftpondian cultural heritage"

What a narrow view you have. What part of Disney taking written works and effectively destroying them don't you understand?

I don't want movies for free. I don't care about Star Wars. I want to purchase a work ONCE and view it however, whenever, and wherever I want in complete privacy. Like these things called "printed books" that IP law was fundamentally designed around and for. Disney wants their "vault", timed conditional access, streaming only, etc. -- those were NEVER part of the deliberations leading to copyright or other IP law. Read a history book sometime, but be sure you don't go to a library -- in your view that would be "stealing".

I know you are a copyright maximalist. Again, why do you give Disney a hall pass for not paying my ancestors for the works they took from the public domain, making billions from those aggregate works they stole (using your maximalist view) from my ancestors without permission? Where are my royalty payments as a great grandchild of some of those authors? Why weren't my ancestors allowed to say that their works shouldn't have been used in a Disney movie at all under any conditions? Many would have said " absolutely NOT, you will not use my music or story in a cartoon under any conditions!". In fact many authors did exactly that -- why do you think early Disney raided the public domain instead of using more current / culturally relevant, but still copyrighted, stories and music?

Door swings both ways you know...maybe you would be fine with film as an art form never coming into being, but that would also have been a tremendous loss for society. You do know that the earliest film works either took from the public domain or were porno flicks, right? And that the latter almost got the entire technology banned?

I get you want to charge rent on your lucky photos and have your greedy great grandchildren able to dictate terns and conditions for access. You want to be the next Disney, the next copyright lottery winner. Well, here's reality -- everyone has a cell phone camera, or even maybe a DSLR, these days. There's almost always a second source photo available under much better terms, and even if technically inferior guess which one people will remember after it's widely spread under those better terms?

Kinda scary knowing your life work is a complete waste, eh?

Re: Mystified; how will they force it?

Well, technically the phone is always listening for its wake word. I've personally seen the Android (Samsung) phone of a relative trigger repeatedly during normal conversation that sounded nothing like "OK Google", then quietly send all kinds of private conversation to Google, only being found out after the text message was transcribed or the maps lookup (for nonsense) was completed. At that point it's far too late, the conversation and transcript are permanently stored by Google's own admission. There's some spirited (and healthy as far as I'm concerned) debate about whether Google or its partners actually is listening randomly if not 24/7. Unfortunately since Silicon Valley tech companies lie routinely, and Google's already been caught out on Nest* it's really kind of hard to dismiss the phone listening in at least to "interesting" conversations.

On the TVs, well, sorry, but yeah they do listen in: https://money.cnn.com/2015/02/09/technology/security/samsung-smart-tv-privacy/index.html

And some have cameras now too, so your example is at best a few years away, not some far fetched tin foil hat conspiracy.

So the backup's only on your laptop. That's about the only thing in your favor here, though if you say the wrong thing about one of our illustrious leaders in today's climate you can bet the physical access barrier suddenly fails...

* https://www.washingtonpost.com/business/2019/02/20/google-forgot-notify-customers-it-put-microphones-nest-security-systems

Re: Well this is stupid

Security could well be very important too.

And with the Orwellian double-speak branded "Platform Security Processor", completely out of AMD's reach...

I for one don't need a digital nanny in my computers that I can't control, replace, or remove*. It's the Intel Management Engine all over again, it just hasn't been targeted as much for CVE hunting and zero day disclosure technical analysis yet. I'd take anything else other than Intel and AMD at this point, they're two sides of the same privacy-invading, DRM-shoving coin.

* From Wikipedia (https://en.wikipedia.org/wiki/AMD_Platform_Security_Processor):

"its functions include managing the boot process ... and monitoring the system for any suspicious activity or events and implementing an appropriate response". Given that this is firmware, not hardware, and could be regionalized by fiat, try the following substitutions:

"Managing the boot process" -- "Only allowing (regionally backdoored?) Windows 10 or (regionally backdoored?) specially approved, prebuilt Linux kernels to boot"

"Monitoring the system for any suspicious activity or events" -- "Detecting unauthorized open-source encryption routines and sending the keys to a central server, temporarily storing said keys in the BIOS Flash chip if needed."

Scared yet? No wonder China was so keen on using AMD's technology at one point, though at some time they also seem to have realized what a bad idea this is for state computers and are now pushing for wholly domestic chips not using any Intel or AMD technology...

Re: Good news for AMD

Someone else pirated them on non-AMD gear though. And the PSP is not static, sometime in the future you might have the choice of ignoring a blatant security hole in it or enabling some kind of watermark detection at playback.

Play with fire, get burnt.

Re: They'll never get it.

just to take a few big scalps so that most of the population are using at least one affected app.

...and that's why I only use open source applications if the data is any more valuable than the latest game save on a Nintendo. No open source application available, or TiVoised mobile? Maybe I really didn't need whatever it was in the first place even though Silicon Valley thinks I did.

Not that I've done anything intentionally wrong or criminal mind you, but let's stop pretending anyone that thinks they haven't done anything wrong isn't actually a technical criminal due to our dizzying array of laws and regulations. In the immortal words of Cardinal Richelieu, "If one would give me six lines written by the hand of the most honest man, I would find something in them to have him hanged." Even the politicians calling for this have probably committed some offense or other in the past, it's just that the more connected you are and the more resources you have the easier it is to hide the indiscretions (more to the point, people tend look the other way on purpose around such individuals, drawn like moths to a flame to the perceived power of the person).

Yes, I'm aware that this may mean not using mobiles. Or only carrying a candy bar phone for safety when going out, and treating it as the electronic bug, spy, leash, and tracker it is. And yes I'm also aware we may end up like China where you are legally forced to carry one. At that point Blighty is, quite candidly, fucked and some other country will be taking over in a few generations -- not to govern its people, mind you, but to thoroughly subjugate them and take whatever resources are left from the remaining subsistence farmers.

Ah, Karma. Sometimes it operates on scales of centuries. No less sweet.