Posts by Sebastian.Q.Ostragoth

that movie with Tom Hanks

Amusingly the DVD of the movie has a second audio track featuring a commentary by Jim Lovell and his wife, of which there is no mention on the DVD box. A mistaken omission I'm sure, but well worth a listen.

5g will connect emergency workers to hospitals?

Ok here's one for us old farts... Hands up if you remember watching "Emergency" I think it was on the toob? Which as I recall featured medical staff at a hospital feeding advice to the (apparently woefully untrained) ambos over a radio. Go 5G! Can't wait for you to plug that non-hole.

It's the price stoopid...

I'd like a phone that costs less than a desktop computer please... and as noted making it unsupported in less than 5 years is a tick against you too. No other industry thinks abandoning their product after 2 years is an acceptable practice.

the Kiwis have been at it too...

From last year.

https://www.theguardian.com/world/2018/oct/02/no-downside-new-zealand-firm-adopts-four-day-week-after-successful-trial

This is hardly a US speciality...

Whilst the comments about the US politicians being unable to find common ground have a small amusement value (schadenfreude from afar?) the sad fact is this is this century's reality. US pollies can't compromise to make decisions of value, UK pollies cant compromise to prevent a Brexit outcome (no deal) which everyone on both sides of the English Channel agrees would be disastrous, Australian pollies can't even agree on who should be leader from one week to the next, let alone anything of real importance.

signing fixes nothing... we already know this

So what prevents a bad actor from getting a $99 signing cert and signing their shiny new malware? Didn't M$ go through a long period of "signed drivers mean no bad code can get into your kernel" until a researcher, tired of the BS, built a proof of concept piece of code that powered down your PC (from hazy memory) to show that signing doesn't fix the malware problem. M$ had to quickly add cert revocation lists to their codebase to 'fix' the problem... which of course still doesn't fix anything, just stops "that last exploit we noticed".

The testing/notarisation suffers all the same issues of course. All I need to do is write malware that doesn't use recognised bad libraries and where the payload doesn't activate until after the testing is long complete. I get notarised, and it's game on.

I'm all for security. But these aren't the answers you're looking for. (Waves hand at Apple stormtrooper.)