Posts by doublelayer

Re: Laptop electrical noise

Yes, because that's one of your buses operating at its typical speed. Other parts change their frequency a lot so their signal moves around and is less noticeable to humans or is at too low a frequency to be detected by the common equipment. An active transfer usually means that at least one and more often two buses are communicating as fast as data becomes available, and if your disk is fast enough, that would be almost all the time. That's a simpler wave. Your connection to the TV may also be leaky. I remember this being a problem with 2.4 GHz WiFi on unshielded devices using HDMI because one of the HDMI standards was using a frequency that interfered with it unless either the cable or device was protected from it.

Re: Freemium game model

Really? Ask yourself these questions, because they have answers.

"Who created the marketing and distribution infrastructure,"

Epic. They have marketing for their game, which Apple doesn't provide, and they do all the heavy lifting for distributing accounts except for downloading binaries. Their part is significantly bigger, and they would be happy to take over that binary bit as well except Apple won't allow them.

"including the store itself?"

Which doesn't market for developers, so you're mischaracterizing what it's for.

"Who maintains and curates it?"

Apple, but the developers don't particularly care that Apple pays someone to redesign the front page all the time. If Apple didn't do that, the developers could still write their software and the user could still run it.

"Who pays for and maintains the cloud storage backend?."

Apple, although just for the app download. Epic would probably be quite happy to do that and stop paying Apple a price significantly higher than servers and CDNs cost.

Re: Users need to know that

You will note a few things in my post and the article. One thing you will notice is that I mentioned Microsoft first, and started by talking about their and Google's drive services. I referred to both of them for a specific reason: the article compared those and found problems in both. Google was faster at removal but stored more malware in aggregate, or didn't you read it? As for the translate links, I believe an attacker could use Microsoft's translation service to the same effect, but I have not seen it used yet. I have seen Google's used in that way, and it is a similar method to cloak the real source of content online.

Whataboutism is a method of distracting from a point. I did not distract from the problem of malware in Microsoft's cloud, and in fact the only other place I mentioned was the one the article used as a comparison.

You can if you can convince Apple that you're not the only one who likes that strip. I haven't bought a Mac with that on it, but having played around a bit, it seems inconvenient and distracting, and I have not heard anyone who finds it better (observed opinions range from don't use it to sort of dislike it, but that's basically all). That will probably also compress the trackpad a little because they'd have to move the keyboard down to accommodate the extra row.

Re: A fundamental problem

Try using ffmpeg on them. Usually, if there's something unusual about the file or the player, ffmpeg can turn the file into something the player can understand. Unless it just got corrupted. It doesn't work on everything, so if it used a very proprietary codec somewhere it might fail, but most ones were identified and implemented there at some point.

Re: "doesn't make piracy much easier."

"It's far more difficult to shutdown domain names when they can be created automatically using fake credentials and being unable to identify who's behind"

If you're in law enforcement, it's not that difficult to shut down the accounts and go after their payment method, which is a lot harder to fake. Most of the time when they're not shut down, it's because nobody investigated them, not because they were just too good.

"Did you give a look to the spam your receive? Phishing websites? Botnet and ransomware delivery and C&C?"

Let's consider those then. Phishing is mostly coming from spoofed addresses, meaning they don't need to buy a domain name. Botnets almost never have domain names. Nodes in them may not even have dedicated IP addresses. C&C: domain names are more common here, but they're not either. If the malware writers put in an IP address, they can still route their C&C traffic there.

"It's not possible to allow online what is not allowed in the physical world."

It's very possible and often desirable.

"Can you open a shop wtihout being registered in many different "books"?"

Legally? Not exactly, but sort of. You could have an unofficial shop which doesn't operate as a business, doesn't have financial accounts, and doesn't own or rent property. So long as you tell the tax authorities about the money you make, that's fine. It gets more complex if you want to be bigger, but that small approach is entirely possible.

"Can you publish something physically without registering your publication and identifying who's responsible for it?"

Yes, without difficulty. 1) Buy a printer, 2) print a document several times, 3) distribute the paper however you like. Entirely legal. You are not required to register any publication, and you can still copyright it without having done so. The only places which require registration are authoritarian nightmares, and the method still works there too.

"copyright violation is the smallest issue. There are far worse ones. Just, most people are OK with the worse ones as long as they can get their pirated contents for free... a very myopic and selfish attitude."

Which I have stated that I don't support, and yet you seem to have such a low opinion of me. Your examples of worse ones were above, and they didn't use domain names, so you're not convincing me yet.

"Sure, it won't solve completely the issue, but why let crooks be able to hide very easily when there's little reason to allow that?"

Because anonymity is useful, and because despite what you've claimed, there is little reason to expect that removing it will prevent any crime. Meanwhile, I think domain names are so core to the functioning of the internet that people shouldn't have to be publicly identifiable to host one.

"A whistleblower or activists in danger registers their own domain to publish what they need? C'mon...."

They do, you know. If you're afraid that something will be removed if you publish it on a service, whether because it's illegal or just unpopular, then hosting it yourself works pretty well. If it is really illegal, law enforcement can have the domain name and hosting cut.

Usually when I've seen these, they make you say something that they've just come up with so you can't use a recording. That would require them to have a pretty good model for sounding like you because they could have left out an accent trick which the bank's model has remembered. However, it's hard to test and easy for an attacker to play with, so I would recommend that nobody enable that if they have a choice to use a less convenient but more secure method.

Re: "The chipset famine has truly arrived"

They're unlikely to admit that, but it's not compatible with the current situation anyway. The problem now is that people are trying to buy more tech than the manufacturers can produce and ship, so demand isn't that low. It would help if people didn't want to buy more phones, because then the related items would be manufactured and shipped more quickly. Well it would help me at any rate. The phone manufacturers have a different view.

Re: Apple has its own agenda

I agree, and yet think you're wrong about the others. I would rather have Google and Facebook comb through my data on their servers than Apple comb through my data on their devices, because I go to lengths not to put any data on Facebook or Google's servers. For that matter, I also put very little data on Apple's servers. That's where I can exert my control, by not allowing things on other people's servers. If they run it on things I own and use, they have much more access to the place where my data really is, and I have less ability to know what is available to be analyzed and what will happen to it. It's not like they were going to offer a "Do you want all your stuff scanned" switch.

Re: knowledge and the law

Many crimes do in fact require that the person doing them must know that they are committing a crime. It doesn't always apply, for instance the author who committed the plagiarism doesn't have to know that it's illegal, but someone who binds the book does not know of its contents and would not be charged because they didn't commit a crime. Usually, it's the accessory or aiding charges that require knowledge, and that's the charge that would be leveled against most of the people on the "might" list.

Re: Dare I admit to the govenor ...

Sadly, there are some people who would see those as worrying criminal tools. I know if I'm ever investigated for some crime, I'm going to get a lot of blame for having a tool called Wireshark installed on my computer. It's even got that scary name and talks about packet capture, so I must be evil. Wget doesn't have the same cool name credential, but by not being a full word, they'll give it extra points for ubertechnical hacking tool so we're probably even. Unless they have a forensic investigator review my hard drive and find that I've got wget too. Then we will be assumed to be acting in concert, which will be very fun if we're in different countries so we can be called "an international cybercrime organization".

Re: I thought LAN cables were shielded

If by "one of those plastic tags" you mean a label on the cable, then they've managed some very compact designs. A listener needs not only an antenna of sufficient length to receive the signal, but also a processor to decode the signals, a mechanism to send that data to the attacker, likely wireless if this mechanism is useful, and a power source to run all of those. That's going to make for a very thick tag.

Re: The hubris of Apple (oops I meant Google)

Windows has lots of problems. I would never deny that. Your demonization of it, however, is hyperbolic and therefore inaccurate. Your comparative idolization of alternatives is likewise flawed. Windows is attacked very often for one very important reason: that's where the users and data are found. Getting a user to execute a binary is a great insertion mechanism. Despite your assertions, you can block them from doing so and you can restrict what that binary can do, but many administrators do not. Since most users are on Windows, the attackers go against Windows. The problem with comparing them is that you can also mail a Linux user a binary. They can also run it unless the administrators have restricted their actions. It can do similar things if you do run it. Bugs allowing privilege escalation have been found in both systems, for example. Exactly how the various things are done will differ between platforms, but both can be attacked in similar ways.

Re: Right Hand/Left Hand

You are correct about signing in general. This is an Apple policy with IOS, where they cycle through certs and block apps that have outdated ones from newer versions of the operating system. That's why they update. It has no effect on the security of the users' data. I can think of a few reasons they might do this, which range from acceptable to sneaky, but in no case does it help other security situations.

If it's related to inflation, it wouldn't be round. There are a few different calculations for inflation, but 1.76% in 2019 and 1.18% in 2020 sounds kind of right. The CPI rate was 1.371% in 2020 and 1.711% in 2019, which isn't the same but close. If so, this year's increase should be quite a bit larger.

Re: Category mistake

They seem to have redefined collectivist as the level of people protesting or disobeying public health recommendations. That has a lot to do with the person leading the country and the politicians supporting them, as well as the trust in government. The combination of those factors is really what made the difference in how badly the pandemic was, also factoring in local problems which made adherence to the public health recommendations harder. While calling concern for others "collectivism" sounds alright, it's not what it really means, so the author has ended up with an incorrect phrase.

Re: Am I missing something?

It depends. Maybe you're using something I don't know about, as I try not to write to NTFS very often, but if you're using the traditional methods, you'll either get something which works but slowly or something which balks when presented with unusual drives. Another restriction on both is that they often can't deal with a NTFS disk that wasn't cleanly written and unmounted, which used to be normal when Windows shut down, but now doesn't happen by default unless the user either restarts or changes a relatively hidden setting. Supposedly, this version should run fast and support that, so while I don't need it now, I'll welcome it.

They wanted it fixed. Because not having it fixed meant potential problems for the people whose data was in there.

Don't get me wrong, if the company decided to reward them for their warning, I'm certain they would have taken that gladly. They still wanted the issue fixed though.

"You post something on your website and idjits uses the comments to make a malicious remark... not your fault. Your ENTIRE BUSINESS is premised on people posting remarks, then I'm sorry but you ARE responsible for what people post. IT'S LITERALLY YOUR BUSINESS."

First, that's incorrect; the laws generally say that it's not even if your business relies on people posting. But more importantly, most suggested changes to the law, and in fact almost all of the possible ways of implementing it, would not get you to that state. It is quite hard to define whether a company's business is related to users posting content, and people could make arguments either way. You could argue, for example, that this site has such a business model; although they look like a newspaper, they also have a community of commentors, topics unconnected to the news articles, and make advertising attracting people with those things. Even more so for a site where you post things for free and allow comments. Usually, the suggested changes to laws end up saying that everybody is responsible for something their server sends, with no distinction attempting to target things like Facebook. You can try to make a third law which draws a line down the middle, but know that you aren't joining many others who favor a much more black and white approach to either side.

Re: Lowest Common Denominator

I certainly don't envy their support requests. When billions of nontechnical people use something, the support traffic must be nearly endless and mostly useless information. Open source operating systems get around this by not having billions of users and not offering general support, but if Microsoft decided not to support Windows anymore and everybody moved to a Linux of some sort, there would be a related wave of requests from new Linux users that I for one would want to run away from very fast.

That doesn't mean Microsoft's level of support is acceptable, as they have plenty of money to spend on improving it. I just don't want to be anywhere near that attempt. I support only close friends and family, and that's hard enough to do over the phone to a nontechnical user.

Re: Without Facebook...

Your argument is suffering from this second post.

"Ok, you try being separated from your family for four years."

I'm sure that was terrible. I don't wish that on my enemies. But it's not a cogent response to there being alternatives to WhatsApp.

"Telegram and Signal weren't a thing when we needed WA."

Possible, as WhatsApp started in 2009, Telegram in 2013, and Signal in 2014. So perhaps you do mean the period between 2009 and 2013. However, there were many things like it at that time. Here's one: email. Email is low on data usage, has clients for everything, works internationally, etc. You could easily have used that instead. It's not the only thing out there. Sending text over the internet wasn't invented by WhatsApp.

"Ideological purity is all very well, but matters not a shit when real life intervenes in all its many nasty ways."

I don't begrudge you your WhatsApp use. In fact, if the time period is as discussed, it wasn't even Facebook's at the time so I would have been using it too. In the very limited discussion of whether it does something otherwise unavailable, the answer was no then and remains no nowadays.

Re: This will be an unpopular opinion

I am not happy to give it up. I am quite happy to keep it alive and to feed it with my data. I only ask that my data and those of others be treated with respect, which isn't happening. Respect includes telling the people what is happening to their data and what it is. Given the risks the loss of the data can have, people have several good reasons to want to keep it sufficiently anonymous, and some people may have sufficient reasons to deny its inclusion.

Those last sentences may sound a lot like opt out, and I think most people should be happy including their data in a system which respects those aspects. However, the systems as they exist do not, and I have never seen an opt out mechanism that nonetheless maintains rigorous methods of informing the subjects what's happening and allowing them the control needed to opt out. If they can create one and prove its effectiveness, maybe it can be considered, but until that point, opt in is the only way to ensure sufficient information is provided. Opt out incentivizes people to hide the information and opt out path from the subjects because if they don't find out, they don't stop you. Opt in incentivizes information and control, because the more people who agree to what you're doing, the more valuable data you get.