Posts by doublelayer

Re: All big guys have similar attitudes

That's bad, but it's often hard to combat. Unless a patent or copyright was violated, nothing blocks someone from looking at what you did and trying to copy it. We probably wouldn't want that anyway because the big companies would be able to accuse anything that is at all similar to something they did of having seen their thing, which they're already distressingly happy to do.

This situation strikes me as similar to recent complaints by developers of open source software that cloud providers have been running their software and making money from doing so without paying them. The issue is clear and it's undesirable, but it's also unsurprising because the license terms of much of that software state quite clearly that people are allowed to do this. If I had looked at AppGet's operation and created a competitor on my own, I would not have violated anything and the author probably wouldn't be very upset with me. If MS had done the same without talking to him, he would have been more annoyed but couldn't prove much. The issue seems like a recruitment and PR fiasco given their talks with him, but it doesn't change the justification of any other actions.

Re: Nope

Um...not really. The centralized model argument is the only good one you've made. The security of the protocol itself has been verified repeatedly, and the data available to a potentially malicious Signal server is known. We have access to the code and we can take chunks of it, including their protocol, if it suits us.

The centralization argument is a good one--we shouldn't rely on Signal's servers because they could be compromised or removed. That's a valid concern. However, the comparison here has been between Signal and RCS. RCS is also centralized. Now I can hear the arguments already--Signal runs the only servers, whereas RCS is run by multiple mobile companies. The problem being that you need your mobile company's servers to send or receive RCS messages, and you also need your recipient's provider's servers to be operational. That's two single points of failure or interference. In addition, it restricts you to using one communication mechanism to send RCS messages--no sending one over WiFi unless your mobile provider supports it, and even if they do, it takes exactly the same path after leaving your local network. Neither are decentralized.

A decentralized communication system with end-to-end encryption would be nice. The one I've used before is encrypted email, which does offer that but has some usability problems. We can use a few other options or design a new one. RCS is not it.

In addition, RCS places a lot more requirements on hardware and mobile provider support. If I have any network connection, I can send an email with encrypted contents. If I have any verifiable mobile connection at setup time and any connection later, I can send a Signal message. If I have any mobile connection on any provider worldwide, I can send an insecure SMS message. If I have a specific set of phones running on one of two providers in the U.S., I can send an RCS message. That means that, if I go to a different country and get a local number, I can still send email, SMS, and Signal, but RCS is not an option no matter what I like--I just have to wait for someone there to implement it and hope they do so with the encryption enabled, because I can neither verify what their code looks like nor bypass them.

Re: I would pay full ticket price...

The weird versions are trying to explain what it means. Many don't seem to realize the "Congress shall make no law" part; they think that there should be no limits whatsoever. For example, all the people who get very annoyed when someone tells them to leave a private place where they have been lecturing without permission. The explanations are attempting to state this in clearer language because those people either never read the text or don't understand what it means.

Re: Microsoft only have themselves to blame

"The verbosity, though, means you can actually usually take a correct guess at the command you're after, and its parameters, without having to Google what you're attempting to achieve."

I'm glad that works for you. It doesn't work for me. I usually have no clue what a command is called, and I am often very baffled about how I'm supposed to extract parts of the results. I have to wonder if part of the reason you know these things is not that it's so clear and standard, but that you've used it enough that most things you want to do frequently you've already seen--while you may not have memorized them, you can take guesses based on having seen them before.

The problem with PowerShell is that it's intended both as a CLI system and a programming language. Not a scripting language, but a programming one. Meaning lots of things like exceptions and type confusion which can be harmful. Consider how a user interacting with it as a CLI sees certain elements. An easy example is error messages. Let's compare some error messages printed by unix tools and PowerShell commands:

Listing a nonexistent directory:

me@machine:~$ ls /doesnotexist

ls: /doesnotexist: No such file or directory

PS C:\>ls c:\doesnotexist

ls : cannot find path 'C:\doesnotexist' because it does not exist.

At line:1 char:1

+ ls c:\doesnotexist

+

+ CategoryInfo : ObjectNotFound: (C:\doesnotexist:String) [Get-ChildItem], ItemNotFoundException

+ FullyQualifiedErrorId : PathNotFound,Microsoft.PowerShell.Commands.GetChildItemCommand

Copy a file onto itself:

me@machine:~$ cp file1 file1

cp: file1 and file1 are identical (not copied).

PS C:\>copy file1 file1

Copy : Cannot overwrite the item C:\file1 with itself.

At line:1 char:1

+ copy file1 file1

+

+ CategoryInfo: WriteError: (C:\file1:String) [Copy-Item], IOException

+ FullyQualifiedErrorId : CopyError,Microsoft.PowerShell.Commands.CopyItemCommand

Yes, the information is there. The error messages are possibly a little better, in fact. But the rest of the data is useless and it gums up the output stream. It's all there because people are expected to run these commands in scripts and catch these things. Well, let's say I'm writing a script to copy things and I want to catch the copy-onto-itself bug for some reason. What do I catch? Look at that error printout from earlier. Is it WriteError? IOException? CopyError? Which of these can I even catch? What else might cause that but not be this particular error? Is there a CopyFileOntoItselfException?

None of that is obvious. An easy method to find out is to go online. What if I don't want to? Well, on a unixy OS, I can do "man cp" for a full log or just run cp with no arguments to get a summary. What about PowerShell? Maybe just "copy" will do the trick:

PS C:\>copy

cmdlet Copy-Item at command pipeline position 1

Supply values for the following parameters:

Nope, that's not it. Might they have made a man command for me? Yes, they have. While we're on the subject, I'm noting here that the only way I can find commands is by entering their unix versions and seeing if someone at PowerShell HQ has linked them to me. While get-help is not that hard to guess, I could see several other options such as get-documentation, describe-command, show-manual, and various other things.

Let's try "man copy". It pulls up a typical man page, except the basic one doesn't really say anything. It talks quite a bit about the command being able to copy and rename a file in one command because well, duh, but it spends only a couple terse lines talking about parameters and doesn't mention errors or exceptions. There are two other views, detailed and full, and maybe one of those contains that information. Detailed doesn't. Full doesn't. Finding out that neither does takes reading long man pages with very long examples sections.

So if I want to use it as a method of launching things, I end up having to see plenty of pointless details that only matter if I'm writing programs. If I'm writing programs, I have to hunt the internet for information about what a command can do. They should start with a good CLI and build the scripting onto that, but they didn't. It shows.

Re: Why the uproar ?

What's different here? Well, let's check out a few things. If I'm in an oppressive country and I want to do something about it, money is quite handy. Here's what can happen now:

My friend: I'd like to start printing a lot of information that I have found and distributing that.

Me: Sounds good.

Friend: But I'm afraid that they'll figure me out when they realize my bank account has been drained right when the publications start.

Me: I'll chip in, and I have other friends who are also interested. We'll all help.

Friend: Thank you.

Me: Hands cash to friend.

Other friends: Hand cash to friend.

Friend: Goes to office supply store, buys paper and ink cartridges with cash.

Government of oppressive country: Doesn't know who bought those supplies.

With digital-only transactions, they would know. And they'd know who sent cash to my friend in the first place, meaning that we couldn't support the attempt financially without also being on the radar.

So yes, it's worse because it's China, a dictatorship. It wouldn't be good here either. We don't have to worry about our governments imprisoning us for buying paper and printing a lot, but we do have reasonable concerns about who has access to information. Information about where you spend money gives a potential criminal plenty to use to steal your money or identity, track you physically, and the like. At the moment, if you are concerned about this, perhaps because you have already become a victim of identity theft, you can stop using credit cards for much and switch to cash. With digital-only currency, you don't have that option and you will rely on the integrity of that system. In addition, if that system works like cash, there's a possibility that people will be stealing it with stolen access credentials without recourse, as it has been done previously with cryptocurrencies and stolen keys. With physical cash, criminals can only steal the amount they find--if my wallet is stolen, the criminals don't get any cash I store elsewhere.

Re: Verizon sold wire line knowing this outcome

"This article should really blame Verizon and the like for abandoning the services where they cannot make large profit."

Really? So it goes like this:

Verizon: We have some businesses that won't make a bunch of money. We want a bunch of money. Also, we probably shouldn't just turn them off because that will disconnect all our customers. Any ideas?

Employee: Sell it. Someone will want it. They'll pay us money for it, and the customers get service from that place.

Verizon: Will anyone want it?

Employee: Sure. You could make money. Someone will want to try.

Verizon: Anyone want this infrastructure?

Frontier: Yes please.

How is that blameworthy for Verizon? They didn't want something, and they found someone who did want it. While they didn't think it would be profitable, it wasn't inherently harmful--just not worth very much. If Frontier bought Verizon's infrastructure then decided to take sheers to all the cables, would that be Verizon's fault too?

Re: AMD Dreams

But that's not an intrinsic limit either of the instruction set or of memory. Should we need to remove that limitation, it can be done. It would require some OS code changes, but they get updated all the time so we can manage that. Current processors can't connect to that much memory anyway so any limitations would be removed by the time they can. The next limit would be 16 exabytes, which would be much harder to work around, but I figure that one is a long time off.

Re: @Wade Burchette - Define freedom!

So Jefferson was a hypocrite about slavery, being happy to make others do it while not wanting to do it himself. What else is new? I think the inherent injustice and hypocrisy of basically all of history has been realized before. The question that now concerns us is the present, and whether we like the person who said it, the point still may have validity to the present. Similarly, we should keep in mind the failings of people in the past so we don't repeat them. In this situation, for example, we would be keeping in mind that freedom for some didn't mean freedom for all, so we should be very careful to ensure that everyone gets the benefits we create or maintain now.

Re: NUCs & Similar

Monitors, definitely. Minidesktops, I doubt it. I think laptops connected to monitors is the way they will go and probably the right one too. The reasons are many.

First, a laptop is likely more useful for the user. Work is most effective at a specific place with full-sized peripherals, but a laptop allows that person to move to a different place if they need to. If their previous office is unavailable or noisy, they can relocate to a different part of their house (assuming they have one available). This also makes it easy for them to bring their machine elsewhere for those occasional in-person events or meetings. Not to mention the benefits of the built-in UPS.

It also benefits the employer. By providing a laptop, they can push several potential costs back onto their employee. They don't have to buy the monitor if they're feeling miserly, nor do they have to spend IT support time on getting peripherals to connect. Laptops are more likely to use a generic power adapter which can be sourced quickly if damaged, which could be useful if the WFH trend leads to WFH from further distances.

Re: Yes, Daily, or even hourly!

I think I know why companies stopped writing manuals. At some point, they must have realized that, with their manuals online, I could download them before a purchase to do research on what their product could do and how complicated the process was. No, they want me to figure out those things only after the purchase, which led to the new idea of refusing to publish the manuals and only including a paper copy with their product. But then, people started scanning those and uploading them, so what more could they do? They just had to stop making the manuals. I'll still figure out how the feature works, won't I? Surely I'll keep buying things without any idea what they do or how.

Very much this. It's really important for us and basically everyone else to realize that, while a lot of phishing emails that have come in and will continue to come in are terrible and obvious, there can and will be more sophisticated ones. It takes longer to get the logos into the right place, make the login page work the same, get text checked for spelling, grammar, and naturalness, and do the work behind other links in the message that a user might check for authentication, but that work can be done. I've seen several not bad attempts. None of us is immune to a message crafted well enough.

Re: Words will be said

Well, 2% of India's massive phone market can be quite a few devices. Not quite 55 million, but still a large chunk. Several countries whose languages are supported aren't that big. I don't see Danish (population of Denmark 5.81 million), Czech (population of Czechia 10.7 million), or Greek (population of Greece plus population of Cyprus 12.04 million) being removed from the supported lists, even though by most potential arguments those make more sense. Not all of those people use Outlook on IOS either, and in all four of those countries, a large section of the population is likely to speak another language, primarily German or English, which would remain supported.

Speakers of the removed languages may also speak English, Hindi, Spanish, or Russian but not necessarily. Certain other languages, such as Tagalog, are not associated with multilingualism with a supported language; while English and Spanish are spoken in the Philippines, the lingua franca in many areas is Tagalog, with people being bilingual in that and their native tongue.

Re: Because ... it’ll just work : Nope

I don't think that was agreement. What I heard there was that yes, Apple devices last quite a while, but so do other machines, so there's not much difference, so the higher prices aren't justified on that alone. The point of disagreement is that you claim that Apple devices will likely last longer, whereas the reply claims they will both last quite a long time, and probably a similarly long time.

Not that I necessarily agree, as there are many Apple devices that seem to get support for longer over some of the most well-known competitors, but I too have seen very functional devices from all sorts of manufacturers that continue to function for long after they were purchased. If hardware is treated well, including good management or at least replacement of its software from time to time, they usually keep working for longer than the average user expects. I do give Apple some credit for some of their devices, the easiest example being IOS devices getting several OS updates whereas Android is just getting to having some likelihood of security updates, but in other cases Apple has proven themselves to not be so interested in device longevity, including their battery fiasco and making everything less repairable as the years go on.

Re: Telekom

Their salespeople are often happy to talk to you if you're a possible customer, but the conversation often goes like this:

Me: I'm considering your internet service for my house.

Them: Great.

Me: Can I get a static IP?

Them: We don't normally include that unless you want a business plan. I can transfer you to that team if you like.

Me: I've already got an IPV6 block. Can you route that traffic to me?

Them: What?

Me: Never mind. Do you have any statistics about latency?

Them: No.

Me: I'm not asking for a guarantee or SLA. I'm just looking for a basic estimate.

Them: Sorry. I don't know what that means and I don't think we have that.

Me: Can I bring my own network equipment?

Them: Sure. Just plug anything into the router.

Me: I already have my own router. Do I need to go through yours?

Them: Er ... not sure.

Me: Well, I would like to sign up now. [Previous research has shown me that few of these questions are answered online either]

Them: Great. Would you also like home phone service? It's not much more per month...

This applies to any provider. After a couple of these, you just give up on asking others.

That wouldn't surprise me. Unfortunately, it's not just Apple doing this. Amazon and Google were both caught keeping databases of this stuff and they're almost certainly still doing it. Microsoft probably doesn't have a database because who uses Cortana, but it's probably worth checking anyway. Only Apple, to my knowledge, has any level of disclosure about capturing and sending out the data with an opt out switch that, well I don't know whether it does anything, but it's there. People are going to have to learn that data is stored and analyzed and monetized and published and leaked and they should probably care. So far, they don't seem to have figured that out.

Re: No real danger

You're absolutely right. No, I don't want that. Unfortunately, they've already started to do that. It is, for example, the FCC's responsibility to identify the companies selling location information from mobile providers, which is illegal. It is their responsibility to investigate those places and fine them, and it is their responsibility to collect those fines. They have instead chosen to ... do nothing. If they are already placing themselves above that law, I don't see a reason they'd balk at placing themselves above another law.

Re: Scammers are an infamia

I have had plans where, while you didn't pay for calls directly, you had a time limit after which you would have to start paying. Incoming calls would not count against that limit until you had been on them for at least a minute, but then the clock would start to count down. I think you can still get such a plan here, but I haven't had one like that in a decade. I think it's mostly still available for those who prefer lower bills, because mine is higher than it has a right to be.

It's a classic trust balancing act. When we are worried about someone else, we value intelligence actions against them, and politicians who disrupt it are doing harm. When we aren't afraid of someone else, we become alert that the intelligence actions are being aimed at us and people we like, so we now want politicians to disrupt them. There is a perfect solution to this: only have politicians who are trustworthy and understand the point--if the actions are warranted, they don't say anything, whereas if the actions are harmful or unjust, the whistle is blown thoroughly. As with every other perfect solution to anything, this one too is completely impossible. Instead, we have politicians doing their best to ensure that we are afraid of someone in order to support intelligence requests which don't actually serve to benefit those politicians. Meanwhile, intelligence collection systems blatantly lie about obvious things even though they have a robust political bulwark, meaning that nobody trusts them. Why they go to such efforts is anyone's guess.

Re: I suspect not

I agree that sentence is unclear. I looked at the source. The cameras seem to come out just fine. See approximately 51% through the video to see it. Not that that part is particularly important, but the sentence break should have been after the "along with the cameras" chunk. Probably the clearest phrasing would be "The Micro SDXC socket and cameras can be removed easily, but the other components cannot."

Re: reviewer uses Google extensively

Unless they changed their mind yesterday, the bootloader is locked and I haven't seen anyone successfully break it. So if you get this, you have to accept the Huawei flavor of non-Googled AOSP. That's why I'm not that excited about this--I dislike Google too, but I don't see much benefit in running equally unwanted Huawei code.

Re: A solution occurs to me

Yes, for the record if anyone is unsure, my preceding comment was intended as humor. But if some piece of equipment has to be destroyed by idiots, I have a preference as to which type they go after.

Re: How about no execution whatsoever?

No autoplaying videos, but if they want to embed a clip into the ad so I can choose to view it after reading their text, that's fine. I won't be doing it, but it's fine if they choose to. HTML5 has support for it already, so I have no problem killing their JS rights.

Re: I'm curious

The updates released by carriers are just placed on the carrier's servers, with the phone locked in some way to only get updates from those servers. You can contact those servers however you want, though. If you have a carrier-locked device that you didn't connect to their network, it still gets updates*.

*It actually doesn't get any updates, but that's because the carrier never releases any. If they ever did release one, your phone could download it and install whatever bugs it contains with no difficulty.

Corruption is a good consideration, but you don't fix corruption at high government levels with detailed data collection on the average citizen. In fact, that gives you extra methods to maintain corruption, because people might only get privacy if they have sufficient connections, and they now have a massive database which can be sold to lots of people with cash to spend.

You attribute totalitarianism to revolution, and you're often correct. However, it doesn't always work that way. There have been many countries where someone came to power in an election that was somewhat democratic (sometimes with a lot of voter intimidation, but not always), but then turned the country into a totalitarian nightmare. The European example that is most well-known is Italy. Examples can be found elsewhere though, from early 1900s Japan to modern-day Venezuela. The dictators who eventually became beyond democratic removal were able to do that by leveraging powers of previous governments. That's one reason we want lots of limits on governments, but it's not enough to relocate those powers to a business or military area, because then you've just moved the problem around. Tracking citizens would be very useful to a dictatorship, as you've pointed out and as countries like China prove every day.

In my opinion, what leads to totalitarianism is access to power. If a revolution creates a power vacuum, then it is now easier to take over, so people will try. If you destroy a country, there will be a lot of displeasure, meaning that power is easier to get with popular support, so people will try. And if you make the government or anything else all-powerful, then you have increased the potential rewards of controlling that thing, so people will try.