Posts by Bronek Kozicki

Re: My personal OS is ...

oh, but they do have little Linuxes and command line. I thought that's obvious :)

Re: Maybe this will backfire.

On put options: the current price is $11.35 , so put option at $11.50 is "in the money". However, the price has been climbing up, from the lowest point today $11.28, so those who bought these options when the shares were cheap will not make profit, unless the price falls again. It might, or it might not - if it does then it would be not on the "strength" of the security "discovery" discussed here.

Re: It's a pity

Actually, having multiple distros use the same desktop (MATE, in your example) means that those who maintain desktop code receive more help and input from distributions maintainers.

Do not forget these are different people with different interests. Someone with expertise writing good UX code might not feel at home maintaining a distribution but will welcome input (and vice-versa - good maintainer might not necessarily write good UX code).

Similarly, having too many people working on any single piece of code directly (rather than via trickle of contributions from distributions) brings to mind saying "too many cooks spoil the broth". You do not achieve more progress by cramming more developers on a project, so having all of these distributions work on desktop code directly (rather than making it better for their distribution) would not help make it better. More likely it would be the opposite.

Re: Lack of reading skills

Not LiPO batteries. LiFEPO4 - which is a different beast. You make many good points which are probably applicable, but c'mon, confusing these two?

Re: Don't like/trust Intel SSDs

Here is an interesting discussion on power caps in SSD. They are the reason I only buy "enterprise grade" SSD, and only after having double-checked the specs for capacitors and their function. Both Intel and Crucial make some good, enterprise-grade SSDs, but you have to make your choices wisely. I would definitely not trust OCZ, though.

Obligatory XKCD reference

https://xkcd.com/1782/

Re: I'm still none the wiser

At the end of that wiki page is a good example.

Imagine you have generated a keypair (private key "a" and public "A"). Your public key "A" is a not memorable at all, but you want memorable one. Another person takes your public key "A" and generates a keypair (private "b" and public "B") such that operation "A + B" yields a "vanity" public key "C", i.e. one which is easier to remember (where "+" may not necessarily denote addition; it is just some mathematical operation). You buy from them the keypair "b" and "B" and then apply the same mathematical operation on private keys "a + b" which gives you a private key "c", matching the public key "C" (which, to remind, is a result of "A + B"). This is of course assuming that the homomorphic encryption was applied here - otherwise, this won't work.

or simply HTTP error 451

Re: Some encryption, good; ...

Seems like a good idea, anyone to prepare new revision of RFC3514 ?

/s

I think spooks would be happy to endorse such proposal

Re: @Martin Gregorie

Also, flying model aircraft (planes or helicopters) is always subject to line-of-sight rules. You are not allowed to fly a model which you cannot clearly see, or which cannot be seen by the assisting ground crew.

Re: re: it was deemed over-engineering to cater for anything other than the specification required

There is also this little thing called "non-functional requirements". Things like scalability, logging and monitoring subsystems, deployment and test tools, etc. Things which are rarely, if ever, mentioned by the project stakeholders, but if ignored during design and development then the final product is guaranteed to fail.

Re: Yes... But does it actually work?

AMD CPUs are not affected by Meltdown, only by Spectre. The workaround to the former is really expensive in terms of CPU overhead on Intel (and exactly 0 cost on AMD), especially if your workloads involve lots of IO, which is why I plan my next upgrade to AMD Epyc (from Xeon Ivy Bridge). The workarounds to Spectre are still appearing, but so far all are pretty cheap.

Re: Roll on 2020

Yes, well, assuming it is actually removed from users' computers ... especially those whose owners never bother with patches anyway.

I think Russians are used to seeing worse, with all these oligarchs ...

(sadly, not a joke)

Re: Any good replacement that would be simple for elder users to install?

I am using BBM for family too, it works great and is simple to both install and use. However it is not available on Windows nor Linux, so was looking at alternatives - Signal received serious consideration.

Re: State actors = malware developers

vCPU pinning is well know, but it makes load balancing difficult. Regular load balancing would be based on assumption that you can always pin more than one vCPU to a single core, and you pin vCPU from multiple VMs to cores on one physical CPU. These assumptions need to go out of the window now.

I expect Amazon, AWS, Azure etc. will start offering a new tier of services where they indeed guarantee that only your VMs run on any single physical CPU, but this is going to be expensive (you pay for more vCPUs than stricly needed), or slow (poor load balancing), or both.

Re: Yay for ArchLinux

I am not living under the impression that my computer is not vulnerable to spectre v1. But there is very little I can do about it. I am simply happy that living on the bleeding edge of both kernel and compiler development has, at least once, given me some real benefits. Few distributions make this easy and most are lagging behind, sometimes quite significantly.

Re: And how is the other way looking

Well, let's see ... processors from the competition are catching up, on some benchmarks are better and worse on others, but clearly getting there. Then comes the news about Meltdown bug (lets put Spectre aside - all are vulnerable to this) which only affects Intel processors, and the mitigation to this one comes at a cost at least 5% of the performance, sometimes more than 20%. Surely that is going to impact the benchmarks, and hence sales figures. The problem is systematic, and it will take Intel a long time to fix it in hardware - the time which the competition can use to improve their designs, not impacted by Meltdown bug

Judging by the moves of INTC and AMD share price right after El Reg article, shareholders think similar.

Re: Oh, shit...

This, but what should we expect when everyone - including headhunters, regulators and journalists - think that CODERS are synonym with ENGINEERS.

Sometimes it feels as if these two were seriously considered to be engineers, and the whole of the profession held responsible for the inevitable mayhem.

Re: Speculative but maybe workable fix

@David Roberts - it is a perfectly good analogy, for a non-technical person like Lee has proven himself to be.

Re: Intel "shouldn't be selling CPUs?"

@ST you are right and I am right - I was referring to Meltdown (not to Specre) so we agree on this. The speculative execution on its own can also cause Spectre "class" of bugs which are cheaper (performance wise) to work around, as compared to Meltdown one. The numbers I keep seeing on lwn.net for Specre are consistently under 5% (usually around 1%), but numbers for Meltdown easily exceed 10% if your system is doing little more IO or other kernel-related activities. This is why I believe that AMD (not being affected by Meltdown) have now huge performance win against Intel, which is not reflected by old benchmarks, at all. On related note - I wonder if GPU intensive application (i.e. games) need context switch to communicate with the GPU. If so, then gaming benchmarks are going to be affected a lot, too.

You are also right on explaining that speculative execution issue is not just "implementation", it is more of a design issue. Just let me have that simplification, ok?

Re: Now what would be interesting...

(typo, should be 4.14.14 - that's what I'm running, today). Always follow kernel.org , that's where upstream is.

Honestly, I am very annoyed at distributions refusing to use something closer to LTS upstream and insisting at applying hand-picked patches on old kernels instead. I can understand the reasoning for RedHat doing that, but everyone else?