Posts by doublelayer

Re: I'd rather like that function on my phone

I don't think it does that. An infrared sensor usually needs to measure the temperature of a specific object in my very limited experience. If you measure the temperature of something with sunlight on it or with an air vent near it, it won't reflect room temperature. Maybe it would work for items outside the paths of those things, but I'm not sure.

I wonder how tricky software support for that will be. I once had a phone with a temperature/humidity sensor in it (Samsung Galaxy Note 3 FYI), which was meant for room temperature. I didn't have much of a use for it and that was quite a good thing because I don't know how to use it. There wasn't any app I could find supporting the sensor because, as far as I can tell, only Samsung ever put them into phones and not that many. I did find an API in AOSP that was supposed to be used but I got bored before writing a basic reader app with it. I hope the manufacturer includes the app for this because there's probably nothing else that can read from the sensor.

Re: Forensic analysis of Google Chrome's Incognito Mode

If network traffic was out of your remit, then you're completely unable to make a claim about the case being flawed. The case concerns data going to Google. You only know about data going to the hard disk. Those are not the same, and you've now admitted you have little information about what Google did or didn't collect at the time. Given that they are known to use Chrome to report back to Google with extra identifiers and you have admitted that you don't know whether they're still doing that, your comments seem entirely without merit.

In addition, I wonder about several of the things you talked about. You mentioned data storage. How about data retrieval? Did you check if data from the profile was read off the disk, potentially leading to transmission? Did you check methods of exfiltrating data that should not be visible from an incognito browser? Did you check whether any fingerprinting methods were successfully prevented; if the mode works as even Google claims, there are some that should have been blocked. From the sound of it, you only used a clean profile, so by definition you could not check that latter point, but I only saw the summary so you might have. If your only concern was data left on the disk after use, I'm afraid I think you focused on the simplest and least concerning aspect.

Re: Year Of Linux on the Desktop

Because Linux on a desktop offers a lot more benefits to the user and to the community than Linux on a locked-down system. Linux on a desktop means a great deal of user choice and hardware openness. Linux on a desktop likely means you can also get BSD on that desktop, or Windows, or many other OS options because drivers are available for OS developers of most types. It also means people develop more for the Linux desktop, meaning more applications for us and more convincing arguments that it is worth the time of commercial enterprises that don't yet have good Linux functionality.

Linux on a smart oven gives us little. We almost certainly can't log in or install software or reimage it. Linux under Android is pretty much the same--it doesn't prevent locked-down phones and it doesn't give us any compatibility with desktop/server Linux. Neither encourages others to adopt the culture of open software, and neither helps the current users.

I don't support Linux out of a desire to see kernel installation numbers increase. I support Linux because it means benefits for me, people like me, and the community of computer users as a whole. Sadly, there are many places where the Linux kernel doesn't automatically mean those benefits exist, and its use there does not factor into my calculations of success.

Re: Democracy in action!

It is about both retention and collection. But primarily, it is about collection. People who intend this as a data stream for research purposes will want to collect and retain more. Neither are needed for contact tracing, and thus neither are justified. Even collecting the unneeded information (contact information for people who have not tested positive, for example) without retaining it for long periods would not be acceptable. Don't fight about retention just yet--fight about collection first and then we can decide about retention of the much smaller set of allowable data.

Re: OT - Did I miss something? 301 moved permanently??

I noticed that too. It just seems wrong. Incidentally, a recent email from their tech panels was sent from marketing at theregister.co.uk, so they haven't switched over completely. Said message was delivered about 12:00 UTC today (Tuesday).

Re: “which functions are meant as internal or external. Function names get exhausted..."

That is only of minor help. It does mean you can reuse names, and it means you don't have a risk of calling a function that isn't meant for external use. It doesn't make the code more readable or traceable. A function that declares three functions inside it and then implements all the functionality by calling them means you can take many routes through it. One that is a single function means a reader can determine easily what flow the function takes without having to skip around to the different internal functions. There is often a good reason to dislike a large function, but splitting it into multiple dependent parts so you can argue that it's separate doesn't change what it really is; it's still a large function.

Re: The cardinal sin of programming

It looks like most RGB images will work because they will translate successfully. Only ones that go out of bounds during an RGB-SRGB conversion will cause the crash. I don't know what the conversion process looks like, but you can probably find the algorithm out there. Any RGB picture that pushes one of the components over 256 should do it.

If you do find that algorithm, please replace any mathematical formulas with min(255,[original_formula]) and send that in to Google. I think that might earn you a nice job as best programmer on the core system UI team. If you want to go for the ultimate job security, you might prove to them that you can think ahead by doing a max(0,...) check as well.

Re: Brave

It's rarely a good start when the major feature of a software product is something I want to switch off. Adding things is different--a normal browser with an adblocker originally just shows everything, and I'm adding the functionality to remove some of those things. A browser that inserts other things is probably made by people who are willing to do that in other areas too, and thus it falls down in trust. How do I know there won't be other dodgy features that I would like to switch off but either I can't or I don't get informed about their existence. At least with a basic browser, I know what features it has.

Re: Wireless FM radio

That hasn't been an issue for most of the lifetime of FM. Even the earliest portable radios could receive it with antennas much less than the wavelength. Consider a simple radio with a telescoping antenna. While it may need to be extended to receive weak signals, it still receives plenty with the antenna retracted. That size for many sets would fit just fine along the length of this phone. Whether they did it is another story, but if they did, it would work.

Re: 200 quid?

Those are two cheap computers. In my experience, you can get computers for that price but they're not very good for most tasks. I tend not to spend that much, and I can survive on much less resource than some people I know, but I would be hard pressed to find a computer with sufficient specs for that price. When you say that, are you referring only to the processing and memory or does the price include case, storage, and connectivity as well?

Re: Question (not a Merkin)

Short summary:

U.S. Citizens: Covered.

Noncitizens inside the U.S.: Covered. The Fourteenth amendment extends the rights to all "persons", which has been interpreted to mean everybody, including illegal immigrants. Illegal immigrants can say everything they like as they're deported.

U.S. Citizens outside the U.S.: They are covered by those protections as far as the U.S. is concerned, but they have to follow the laws of whatever country they're in. For example, if the U.S. decides to search their stuff, they still need a warrant.

Noncitizens outside the U.S.: Basically, the U.S. doesn't give them any rights whatsoever. This applies to visa applicants and basically everybody. Whatever they want to do to you, they feel they have a right to do to you.

Note: Certain areas in control of the U.S. are not considered parts of the U.S., including Guantanamo Naval Base, Diego Garcia shared base, and other bases operated in whole or in part by the American government located outside the boundaries of the U.S. If you end up on one of those, you have no rights and they'll probably show you exactly how fun that can be.

Re: Ah, customers.

I'm not exactly sure who you replied to, but if it's the person immediately above you, I seriously hope their attitude is used during the development of flight control systems. If you respond to malformed data by throwing an error and skipping it, then you can handle the loss or damage of some of your equipment. You know it failed, you know it's not available, so you fall back to something else or alert the pilot. If you handle it in some way, you don't know what it necessarily means. This is similar but not identical to what took down the 737-max--their data was wrong, the computer didn't control for it, and it crashed the aircraft. It wasn't a format error as much as an unreliable piece of tech, but by failing to identify when it was going wrong and take appropriate action, including crashing the autopilot and making the pilots control manually, they smashed up two airplanes, a few hundred people, and their company. You cannot be liberal* with possibly damaged data if it means people die.

*Liberal: In the sense of accepting it. Liberal reading with frequent rejection is fine.

Re: @El Reg, teach your authors some basic journalism

Do you really fail to see the link between the death count and the tweets concerned? The proposal and fight over mail-in ballots is a result of a risky situation. The death count helps to indicate why the situation is risky. Without the high death count, there would not be a situation leading to the call for mailing ballots. Without that call, there wouldn't be this argument among political figures about the legitimacy of doing that. Without that argument, the tweets that are the subject of the article would not exist.

Re: @WolfFan - China really shouldn’t have

I am not saying they have. If they decide they want to increase the pressure, it's well within their abilities to start the charge process, with real information gathered from these people or with completely invented evidence. I have little doubt that they would do so; China has not proven itself capable of justice under its current government. My earlier point was that, even if they had some type of valid charge, the trial wouldn't be valid because they aren't being tried for those crimes, but held for use as political game pieces.

This can be used in two ways. First, it pretty much invalidates any complaint China may have about Canadian operations, as Canada has adhered to the rule of law while China has thrown it out the window. Second, it can be used as a comparison to allege that statements of a similar nature by the American president mean that a fair trial there will likewise not be forthcoming. In my opinion, I think a trial there would likely be fair, but there may be attempts at interference after it completes. Still, if the American government wanted the trial to be clear of qualms about its integrity, the president shouldn't have made those statements. He did, nobody stopped him, and now they're going to have to lie in that bed they made.

Re: Never used PSH... question

Not at all is the better answer. While the commands have aliases, the parameters very much do not.

Consider this command that I've used with some frequency. If I know a file is somewhere in a crowded directory and part of the filename, but I can't find it, I can do this to give me the full path:

dir /s /b | findstr [name]

Not a clear command. Neither /s nor /b are clear; you just have to memorize them. What happens in PowerShell? Neither parameter is recognized, and they're treated as paths. There are certainly replacement parameters. However, I would need to look them up. Instead, I'll just move over to git bash and use the real ls and grep to do it properly--the dir way is faster only because I have memorized it.

Re: What happened to the Pi Zero W?

They're quite popular, and there never seem to be enough manufacturing runs. They've been one per order basically everywhere since release. I guess the manufacturing capacity has been focused on the 4 instead and supply for the others has suffered. I'd check smallish resellers as they probably ordered in bulk and may have a few in stock. Amazon and similar general selling sites will never sell such a thing at list price.

Re: All big guys have similar attitudes

That's bad, but it's often hard to combat. Unless a patent or copyright was violated, nothing blocks someone from looking at what you did and trying to copy it. We probably wouldn't want that anyway because the big companies would be able to accuse anything that is at all similar to something they did of having seen their thing, which they're already distressingly happy to do.

This situation strikes me as similar to recent complaints by developers of open source software that cloud providers have been running their software and making money from doing so without paying them. The issue is clear and it's undesirable, but it's also unsurprising because the license terms of much of that software state quite clearly that people are allowed to do this. If I had looked at AppGet's operation and created a competitor on my own, I would not have violated anything and the author probably wouldn't be very upset with me. If MS had done the same without talking to him, he would have been more annoyed but couldn't prove much. The issue seems like a recruitment and PR fiasco given their talks with him, but it doesn't change the justification of any other actions.

Re: Nope

Um...not really. The centralized model argument is the only good one you've made. The security of the protocol itself has been verified repeatedly, and the data available to a potentially malicious Signal server is known. We have access to the code and we can take chunks of it, including their protocol, if it suits us.

The centralization argument is a good one--we shouldn't rely on Signal's servers because they could be compromised or removed. That's a valid concern. However, the comparison here has been between Signal and RCS. RCS is also centralized. Now I can hear the arguments already--Signal runs the only servers, whereas RCS is run by multiple mobile companies. The problem being that you need your mobile company's servers to send or receive RCS messages, and you also need your recipient's provider's servers to be operational. That's two single points of failure or interference. In addition, it restricts you to using one communication mechanism to send RCS messages--no sending one over WiFi unless your mobile provider supports it, and even if they do, it takes exactly the same path after leaving your local network. Neither are decentralized.

A decentralized communication system with end-to-end encryption would be nice. The one I've used before is encrypted email, which does offer that but has some usability problems. We can use a few other options or design a new one. RCS is not it.

In addition, RCS places a lot more requirements on hardware and mobile provider support. If I have any network connection, I can send an email with encrypted contents. If I have any verifiable mobile connection at setup time and any connection later, I can send a Signal message. If I have any mobile connection on any provider worldwide, I can send an insecure SMS message. If I have a specific set of phones running on one of two providers in the U.S., I can send an RCS message. That means that, if I go to a different country and get a local number, I can still send email, SMS, and Signal, but RCS is not an option no matter what I like--I just have to wait for someone there to implement it and hope they do so with the encryption enabled, because I can neither verify what their code looks like nor bypass them.

Re: I would pay full ticket price...

The weird versions are trying to explain what it means. Many don't seem to realize the "Congress shall make no law" part; they think that there should be no limits whatsoever. For example, all the people who get very annoyed when someone tells them to leave a private place where they have been lecturing without permission. The explanations are attempting to state this in clearer language because those people either never read the text or don't understand what it means.

Re: Why the uproar ?

What's different here? Well, let's check out a few things. If I'm in an oppressive country and I want to do something about it, money is quite handy. Here's what can happen now:

My friend: I'd like to start printing a lot of information that I have found and distributing that.

Me: Sounds good.

Friend: But I'm afraid that they'll figure me out when they realize my bank account has been drained right when the publications start.

Me: I'll chip in, and I have other friends who are also interested. We'll all help.

Friend: Thank you.

Me: Hands cash to friend.

Other friends: Hand cash to friend.

Friend: Goes to office supply store, buys paper and ink cartridges with cash.

Government of oppressive country: Doesn't know who bought those supplies.

With digital-only transactions, they would know. And they'd know who sent cash to my friend in the first place, meaning that we couldn't support the attempt financially without also being on the radar.

So yes, it's worse because it's China, a dictatorship. It wouldn't be good here either. We don't have to worry about our governments imprisoning us for buying paper and printing a lot, but we do have reasonable concerns about who has access to information. Information about where you spend money gives a potential criminal plenty to use to steal your money or identity, track you physically, and the like. At the moment, if you are concerned about this, perhaps because you have already become a victim of identity theft, you can stop using credit cards for much and switch to cash. With digital-only currency, you don't have that option and you will rely on the integrity of that system. In addition, if that system works like cash, there's a possibility that people will be stealing it with stolen access credentials without recourse, as it has been done previously with cryptocurrencies and stolen keys. With physical cash, criminals can only steal the amount they find--if my wallet is stolen, the criminals don't get any cash I store elsewhere.

Re: Verizon sold wire line knowing this outcome

"This article should really blame Verizon and the like for abandoning the services where they cannot make large profit."

Really? So it goes like this:

Verizon: We have some businesses that won't make a bunch of money. We want a bunch of money. Also, we probably shouldn't just turn them off because that will disconnect all our customers. Any ideas?

Employee: Sell it. Someone will want it. They'll pay us money for it, and the customers get service from that place.

Verizon: Will anyone want it?

Employee: Sure. You could make money. Someone will want to try.

Verizon: Anyone want this infrastructure?

Frontier: Yes please.

How is that blameworthy for Verizon? They didn't want something, and they found someone who did want it. While they didn't think it would be profitable, it wasn't inherently harmful--just not worth very much. If Frontier bought Verizon's infrastructure then decided to take sheers to all the cables, would that be Verizon's fault too?

Re: AMD Dreams

But that's not an intrinsic limit either of the instruction set or of memory. Should we need to remove that limitation, it can be done. It would require some OS code changes, but they get updated all the time so we can manage that. Current processors can't connect to that much memory anyway so any limitations would be removed by the time they can. The next limit would be 16 exabytes, which would be much harder to work around, but I figure that one is a long time off.

Re: @Wade Burchette - Define freedom!

So Jefferson was a hypocrite about slavery, being happy to make others do it while not wanting to do it himself. What else is new? I think the inherent injustice and hypocrisy of basically all of history has been realized before. The question that now concerns us is the present, and whether we like the person who said it, the point still may have validity to the present. Similarly, we should keep in mind the failings of people in the past so we don't repeat them. In this situation, for example, we would be keeping in mind that freedom for some didn't mean freedom for all, so we should be very careful to ensure that everyone gets the benefits we create or maintain now.

Re: NUCs & Similar

Monitors, definitely. Minidesktops, I doubt it. I think laptops connected to monitors is the way they will go and probably the right one too. The reasons are many.

First, a laptop is likely more useful for the user. Work is most effective at a specific place with full-sized peripherals, but a laptop allows that person to move to a different place if they need to. If their previous office is unavailable or noisy, they can relocate to a different part of their house (assuming they have one available). This also makes it easy for them to bring their machine elsewhere for those occasional in-person events or meetings. Not to mention the benefits of the built-in UPS.

It also benefits the employer. By providing a laptop, they can push several potential costs back onto their employee. They don't have to buy the monitor if they're feeling miserly, nor do they have to spend IT support time on getting peripherals to connect. Laptops are more likely to use a generic power adapter which can be sourced quickly if damaged, which could be useful if the WFH trend leads to WFH from further distances.