Posts by doublelayer

Re: I hate having to defend cryptocurrency, but this guy is going to make me do it

The difficulty implementing regulations does not justify his proposals. It's true that "[y]ou can't just develop a regulated market in financial services overnight", but just because it's hard doesn't mean you can do whatever you want in the meantime. We don't have a perfect regulatory framework for data security or privacy, but it wouldn't be acceptable to ban all computers until we get one. In addition, he didn't say to ban cryptocurrency until they get a regulatory framework. He's advocating a permanent ban, and he didn't say anything about even starting to work on a framework. That's the wrong way round at least.

"It's also about having consumers who have some idea of what they're doing and know to look to see if the companies they're using a registered with the regulators. [...] [E]ven with all this freely available information I know people who've signed financial contracts with companies that weren't even registered with a regulating body (but fortunately they were solvent so the threat of court action got that money back)."

You cannot put the economy on hold until everyone knows how to avoid scams with perfection. People fall for them all the time, and most often, it's not using cryptocurrency either in fact or as a buzzword. Regulate it to prevent it, certainly, but you appear to expect that you can make consumers know what they're doing automatically, and you can't as proven by your own anecdote. As I said in my original post, there are scams surrounding lots of other activities, for example the stock market. He's not calling for that to shut down.

Re: Why the hell isn't the existing code prior art?

It depends what the patent does differently. Since it's an extension, it probably has most of the original algorithm in it, just as you can patent an invention that contains within it someone else's invention as a component. The definitional question will be whether whatever Microsoft added to it is a new invention. The original author doesn't see much that's new in it, and I'm inclined to think they would recognize a change, but they too might be biased. Of course, the decision about whether there is something new is not left up to the original creator or even the people at Microsoft who think they made something new, it's left up to a patent examiner who probably doesn't understand either, which is why we have so many crap patents out there. I have rarely seen a software patent that seemed at all plausible, but occasionally something will near that bar. I would favor a significantly more stringent process for obtaining a patent, but don't expect that to happen any time soon.

Re: Meaninglessness

No, that's not the best approach. It works if you have one set of releases and everyone uses one of those and ideally the latest one. It works less well if you have different styles of releases. Here are a few examples.

You have a program that gets updated from time to time. Sometimes, you make a big change that breaks the workflow. Maybe you charge users for that big update. Maybe you just want to let them postpone making the shift until they're more comfortable that early adopters didn't find it broken. You might release updates for both versions. If the version numbers look like 2.2.391 and 3.0.5, it's clear which one they'll use. If they look like 2022.02.16.15.30.1 and 2022.02.16.17.38.1, how do you know which you want?

You can also run into string problems. How much precision do you need in the date version numbers? Leading zeros or not? Do you separate the date components or keep them together like in the ISO format? What do you do for beta versions? The major.minor.patch format is usually shorter and clearer, even if one of the numbers gets large.

Re: Wot no London?

These are small centers for areas they don't already have big centers. They have already created big centers in London and one in Ireland which probably has low latency to the UK as well.

Re: Hot Garbage

Not all of your points are correct.

"This is by far the biggest and most widely-used Linux OS in the world;": No, that's Android. If we're letting something be declared Linux by having a Linux kernel under it. If we're requiring the ecosystem that the Linux label usually entails, neither count (virtualization that's only sort of supported and requires a technical user to take many steps doesn't count).

"Like macOS, up to now, it only officially ran on the maker's own hardware. Now that has changed and it is supported on multiple vendors' hardware. That is significant.": No, it ran on lots of vendors' hardware. Take any company that makes Windows laptops, and the chances are quite high they also make Chromebooks. When the OS started, Google didn't make any. They do now, but it's not only those that support it. In addition, it was possible to run it on general hardware before. A little trickier, since you would either run Chromium OS or a patched version, but I've done it when it was new to see how weird it was. It was far easier than hackintoshes.

As for home users, they're not going to use this if they wouldn't use Linux. Either way, they're going to have to remove one OS and install another, which most won't do by themselves. If they have a technical friend do it for them, then it doesn't matter how niche the replacement is as long as it works.

Again, I have no complaints about your coverage. I just don't think it's as significant as you say.

Re: Tricky

I was speaking in general. Cambodia has been in the dictatorship bucket for decades, but even if you gave similar powers to a democratic country, they could quickly corrupt it into another dictatorship. I assume the person who started this thread is aware of Cambodia's status, but they seemed a little too eager for the powers a system like Cambodia's could provide. I wanted to indicate that it could make other countries a lot worse.

"Are you saying that if someone were to add their work email to their computer, their employer (or someone using their credentials) could wipe up the user's computer at any time???"

It's an option, so probably. Not everyone will turn it on. It's a safety measure since it is assumed that someone who reads work emails on a machine might also store work files, even if just downloaded attachments, on the same device which also need to be cleaned up. I don't really have a problem with the paranoia, but my response to it is to only use the devices that they provide. I don't particularly need my work email on my phone at all, and if you want all that, then I just won't. Either live with me just accessing it from a laptop or give me a company phone.

Re: Ah Richard

Neither of those things are inventions, nor are they things to be proud of. When Apple removed the headphone socket, they didn't say this was done to make an impressive new innovation. They said they could produce a slightly thinner device and they thought users wouldn't mind (whether you mind isn't the point here). So whether they were the first to do it (obviously not), it doesn't matter.

Re: It's a well-trodden path

I don't think that's the case. Free works just as well as unlimited. If you offer free 100GB storage, a lot of users will take it and use it completely within the bounds you set. That will end the same way.

Take a more obvious example. I had a free Dropbox account a while ago. It gave me 2 GB of free storage. Not a lot. Certainly not very expensive to provide. Yet still, Dropbox eventually decided that it wasn't worth providing that level of service to someone who wasn't going to upgrade for more storage. That's not technically true; I still could access that account, but they limited the number of devices that can sync it in order to encourage me to upgrade to a paid plan. Companies don't like providing people free stuff, but for some reason, they continually offer free things until they figure that out again. As a customer, I expect that they're going to think better of it eventually, and I'll use the free stuff only if I have a plan for what I'll do if I lose it.

Re: On Error Resume Next

Which is why every language has some method of detecting a specific error and ignoring it. You can check the error code you want to ignore and do nothing with it. You can catch an exception and drop it. If there is a possible error condition for which you really do nothing, you have lots of ways to deal with that. The key word here is "specific". If you don't want an error to trip up your program because it's not relevant, then look for that one. Don't just assume that any error that comes along will be that one.

Error handling is boring, but critical. I can't count the number of poorly written programs or scripts that can't handle the most basic of unusual cases. Scripts that don't get as many command line arguments as they wanted, but instead of printing an error and exiting, they try to run hundreds of lines printing no such variable errors while trashing the environment they're in. Or libraries that throw exceptions because they frequently mess up and programs that catch and ignore all of them because they don't want to clean up but can't be bothered to find a library that works properly.

Re: Funny

They didn't say it would work tomorrow when they turn it on. However, would you know if there was infrastructure for it? Most likely, it will be a bunch of networking equipment provided by a company that has contracted the dictatorship as a service (DaS) business. That equipment would go into the ISPs' networking facilities and/or on the international communication lines inside Cambodia. Neither location keeps a public log of everything done inside and why. They could take many required steps without it becoming obvious that they have.

Re: I'm still trying to understand how Apple failed even to consider this use case

"I fought quite a major battle to stop their app from running without my permission - as I stated elsewhere, they really use every trick in the book to restart their app if you quit it such as notifications and permanent location access)."

Which, although unpleasant, makes a lot of sense for their users. They want the app running so you can use the features of the product, like the send a signal to find your phone feature. You have said this before, and it doesn't make sense any of the times, as if you don't want the app to have the access necessary to use the product, you should probably uninstall the app. AirTags are exactly the same except the tricks to keep it running are baked into IOS. That doesn't make Apple worse, just also doing it. At least Tile can argue that their customers opted into the app as it only does any of that after you install the app, log in, and accept the permission requests. Apple's system has all of the permissions and requires you to opt out in the settings.

Re: Damned useful!

I don't think any typical OS did a 32-bit to 64-bit switch with an OTA update. Usually, that kind of thing was done with a new edition that you installed manually. The chances of messing something up with your config would be quite high otherwise. Since they are compatible, you can load in the package repositories for the 64-bit version, update the bootloader and kernel from the packages or by extracting them from the image, and perform a no-reimage upgrade. If you break something, that's why they didn't do it that way when it's already pretty easy to write a fresh OS image to a card and transfer your config over instead.

Re: Return code ignored

Or, perhaps, a programmer and developer are the same, and they do the quality they're used to providing. I'm too tired of the people who argue about "software engineer" to start a programmer vs developer fight as well.

Re: What is there to say?

You assume that he knows all the things a university wants their applicants to know. Tremendous skill at computers doesn't necessarily also come with, for example, ability to write a document well. I'm sure he's good at that at his level, and he might already be good at doing it, but that's one of the skills that is taught in secondary education, expected by universities, and important in the rest of life. Many other subjects fall into that. Before you decide that the right approach is to yank away all the things a typical education is intended to provide, it might be worth considering why they're there and which ones are actually important.

Re: "our people are core to our success"

"Why not get rid of HR, Sales, Maintenance, Purchasing, Testing, Security, Payroll and every other hanger on'er then ?"

You will find that people suggest getting rid of many of those frequently in these forums. Here's a short list of the stereotypical complaints that are used to justify their removal. These are sometimes simplistic, but not always incorrect.

HR: Fails to understand job requirements, thus consuming resources while weakening the quality of hires.

Sales: Adds unreasonable promises to the product resulting in disappointment for the customers when it doesn't do everything.

Purchasing: Restricts what can be purchased, either adding friction to obtaining what is needed or even forcing people to buy more expensive versions of things because it's the only thing that falls into the purchasing policy.

Nobody said that IT should just be chopped as unnecessary. However, as with the other areas, you have to balance the benefits it provides with the costs to replace it. IT is very important to a business, but it doesn't make the employees in the department perfect or irreplaceable. Every department in a business thinks of itself as irreplaceable, and most of the time, it's not true. Just look at what management thinks of itself.

They can sell a subscription product. It's unethical, annoying, and worthless, but if they tell you that's what you're buying when you buy it, it is legal.

I agree about the typical pattern, and in that pattern, I do not object to the CEO being held accountable. In most cases, I encourage it. Where I'm less comfortable doing it is the situation described in the article. In your situation, they likely didn't give you an unrestricted massive budget for the expressed purpose of improving security. If they did, they've already taken the step most other companies have neglected. It still depends on the specific situation, but unless the security team has identified something necessary that management refused, they seem less responsible.

Re: re. the EU wouldn't be able to agree on how or even whether to use it

"well, what about it ? Why would I – or you – care ?"

I care because I don't like to see people forced to live under a dictator by military violence or to have a power that will probably use military violence on someone else after a successful go which might be someone closer to me. You clearly don't care.

"The Russians did already conquer part of Ukraine (Crimea) and the world didn't go under. Actually, nothing happened, and I'm pretty sure the Crimeans are quite happy that Russia did annex them."

Oh, yes. The people who didn't have any choice about it are all celebrating. Some of them are, and we can debate whether those who are have good reasons or simply bought lies told to them, but there are many who do not like it at all. Democracy has this aspect where we can at least find out whether people want something to happen, but that didn't happen there.

Re: How do you ensure it stays viable

This assumes that we will all operate as we did before electronic payments become common, but we probably won't. Some of your reasoning no longer applies.

"If the power goes out & you can't use an ATM, you can still go manually visit the bank, walk up to a teller, and pull your money."

You can, but only if the bank knows how much money you have. Nowadays, they use computers for that, because if they kept it on paper, you could go to each branch you can get to, withdraw all your money, then leg it with a multiple of your savings before they exchange ledgers. You could change things so that you only have one bank with your money in it and you must go there to get it, but people like the convenience of not being restricted to one place. If there's a blackout, banks continue to use backup power for their communications and computing. If you manage to black them out for long enough that they can't, they'll likely delay teller service until they have something they can rely on.

"Your credit card is normally used in a purely electronic form (EG: swiping at a terminal to pay for stuff) but can also be run through a manual card imprinter, a physical receipt made, & copies kept by both customer & merchant to later prove of the transaction."

Not necessarily, as they have been changing the design of the cards to make it harder. It also lacks many of the security features that physical card use tends to have. I'll concede it's an option, but as I say below, it's an option with cryptocurrency as well.

"But how can you do any of that if your funds only exist in an electronic form that can't be used/generated/maintained without power to the infrastructure?"

You can't, as I said. I'm not a cryptocurrency supporter here. I'm just pointing out that the level of damage you would need to make it stop working is severe, and that similarly severe damage to other systems would have similarly destructive effects on most payment methods other than cash.

"But crypto currencies can't be used at all if both the customer & merchant don't have power to the various devices (SmartPhone, cash register, etc) & infrastructure (cell network, ISP, online digital wallet, etc) through which such a transaction requires to become official."

This is not the case, really. It would work like a credit card would. If you copy the card for use in the transaction, you keep the details until the power comes back and then transmit them to the card provider. The customer could similarly sign their payment and you could copy that. The only device that needs to be powered during the transaction is the customer's wallet device (possibly a phone). If you use a dedicated device, it's likely to last quite a long time on a battery as it won't have radios draining the battery. You can recharge it in a number of ways. In both cases, however, it's possible that what you copied at the time either was fake then or has become invalid by the time you send it off, which is why most places don't accept card payments when the machine is down.

Re: Why CSAM?

Some may sell to criminals, but that's not surprising. The question is how they react when they know the users are committing crimes. Usually, that's a very different situation. Selling a general-purpose cloud VM means you're going to get someone using it for malicious purposes, probably in the first hour of the product being out there. That's really not the same. There are some bulletproof hosting outfits who do make the products with criminals in mind, but it's a much smaller section of the market and they can also be prosecuted if they do it egregiously.

"They will peer with openly criminal networks too - no problem."

What is an openly criminal network, may I ask? Do they have something like the evil bit, maybe somewhere in the routing table, BGP announcements, or maintained by the ASN databases? A company who doesn't act fast enough to take down reported malicious users isn't openly criminal. Even things like North Korea's public IP block aren't openly criminal.

"I accidentally activated iCloud which has now filled up. But I have no idea how to pull data off iCloud onto the HDD so I can shut off the noise."

You could use the magic tech support system (XKCD), but this time, I'll tell you the answer.

1. Settings -> Photos -> iCloud Photo Library, switch to on (probably already on). This syncs your photos down to your phone.

2. Still in there, turn it off. Now it stops syncing.

3. Settings -> iCloud -> Photo library -> Delete. This clears the photos from the iCloud storage.

"the iOS is built on a Ransomware foundation."

Because you turned on a feature that you have to pay for? It wasn't on before you did that. You have your data, you have the choice not to pay, you have the choice not to hear about the service. Hyperbole doesn't help arguments.

Re: At least Sony didn't

You could try it, but most likely, the people doing the arbitrage would move to a country where it remains legal, as it's pervasive in most markets. If you made it illegal in the EU, arbitragers could still sell from China. If you somehow managed to have China make it illegal, they could all decamp to India and start buying from there. You could theoretically ban buying from one of these people, but it would be a tricky law to write, let alone pass.

Re: 512MB ram minimum memory requirement

I'm guessing you have more than 4 GB in your machine. Run on a device that only has 4 GB and it won't cache so much. Run memory-heavy stuff on a machine with 4 and it will quickly evict down to make room. It really can run in 4 GB. It can even run in 2 GB without becoming unusable, though it will get slower.

Re: Let's start with the obvious

As we don't read in binary data, no we don't. But if we're encoding the brain's state to binary data on storage mediums, then the storage medium is going to have to. If we accept the neuroscientist's numbers, the data read from the brain will consist of 10^15 bits at least for each moment, which can probably be compressed later. Even if it can, the system that compresses it will need to load that data for compression, which requires memory that can load a petabyte per instant and store it until it's been compressed. We don't have that yet and it requires more advancement than simply getting storage efficiency up.

I can't say from experience, however, I can make two points. First, if they were so good, there wouldn't be so much demand for 11th-series I5 and sometimes I7 processors, usually with 8/16GB of RAM in Chromebooks, and yet every manufacturer has several of those. I would understand the more expensive ones with a better screen, but when they share all the same details with other laptops from the same manufacturers, it makes less sense.

Second, I have used Atom/4GB laptops before, running Linux and Windows, and they're fine. They're fine as long as you are aware of the limitations and don't try to run too many things simultaneously. I wouldn't recommend people buy them, but they can run browsers, mail clients, office programs, and plenty of other stuff on them without having problems provided they don't do what a lot of people like to do and have many of them open simultaneously. I'm expecting therefore that your similarly-spec Chromebook is also fine as long as you don't open too many tabs. Or in other words, it's just as fine as the other systems that could run on the hardware while doing less. The initial claim was that Chrome OS would, in return for not doing anything when offline, enable a world of more efficient machines. They would cost less and run for a lot longer on battery. Because they lied, we just have a different operating system with efficiency similar to the ones we already had, but some new limitations.

Patents aren't perpetual. You apply for a patent, and you can use it to confirm your ownership until that provision expires, which is at least twenty years though may be longer in some countries. Then it expires. You still have the patent for the record that you invented something, but you can't use it to prevent others from developing your thing anymore. The protection rights entailed in a patent are time limited.