* Posts by mattaw2001

32 posts • joined 8 Aug 2021

Photonic processor can classify millions of images faster than you can blink


Re: Sounds Like Just What I Need!

For your specific problem I would consider the opensource (Linux/Windows) DigiKam: https://www.digikam.org/

It can fingerprint files and look for matching ones for you to eliminate so you can add the images to your existing library (backup first!), fingerprint them all and show you the matches sorted by 100%% -> 0% and eliminate the duplicates.

This is the only thing that works for me as I used google photos and they mess with the metadata so you can't use file hashes to find duplicate images anymore, sadly.

Azure Active Directory logs are lagging, alerts may be wrong or missing


I liked Basecamp's approach, with major versions of its cloud service...

We have used Basecamp as a project management/teaming solution for a while, and while I don't approve of all their features I have really appreciated their approach of running major versions in parallel and offering an upgrade path "on-demand" to the customer. This *includes* the API for integrations.

While they do add some minor features to their running versions, and bugfix, but they have not ever taken anything away from an existing version. They do not always provide equivalent features in the new version, but it is the customer's choice to upgrade or not.

MIPS discloses first RISC-V chips coming in Q4 2022


RISC-V headline chasing?

I have implemented SOCs around arm mips and recently risc-v.

ARM has the best documentation and support and defines the most aspects of the architecture, such as cache coherency, interrupt handlers, etc.

Both Arm and MIPS have incredibly large software libraries and tooling pre-available, mature, known and trusted.

Apart from grabbing headlines I really don't see the value of risc-V for this company.

RISC-V is still an instruction set and requires tons of other technologies to enable actual designs.

Mozilla browser Firefox hits the big 100


Its very compatible these days - everything I use works now

Over the last few years, as Chrome has replaced its non-standard WebRTC for the standard one I no longer have sites I regularly use (GMail etc., office.com, Discord.com, etc.) just work TM.

It doesn't routinely send strong identifies back to "home base" - Edge, I'm looking at you for hardware IDs, Chrome, I can't remember your latest strategy but I am dead sure Google has you, and that is 90% of the internet.

I for one am also very glad they flat out refused to implement some insane "Browser is an operating system" standards e.g. the WebUSB standard, which allowed javascript-in-browser drivers to be written, and others (File System Access, which, get this, can enable cross site access to local filesystems, Generic Sensor API, Idle Detection API, Low-level (Raw) Sockets API - this is another hilarious one where javascript in browser could just create and read UDP/TCP packets on adaptors etc., Web Serial, Web Bluetooth, Web NFC, WebHID API, etc. ).

Then you get the amazing plugins (for example one with local versions of CDN resources such as Icons, Fonts and libraries for speed and to avoid the tracking that comes with Google fonts, etc.) and that

LocalCDN is the lesser known plugin: https://www.localcdn.org/

John Deere tractors 'bricked' after Russia steals machinery from Ukraine


They can be completely bricked, sadly

I'm afraid that these industrial behemoths are definitely of the "computer fly by wire" design style - they literally have computer controlled or push button variable gearboxes, controlled from the column that looks like it belongs in a jet fighter with all its displays, buttons and LEDs. I don't think they even have direct linkages to the steering anymore either, with computer driven hydraulics.

That, coupled with always on cellular comms, deliberate obfuscation, encryption, and anti-repair design a-la-Apple, I completely believe they can be semi-permanently bricked with firmware updates. Last time I remember working with them the system crypto pairs its controller with each module and does a scan and key exchange to verify them all when its powered on. Anything missing, or anything new, and bam - maintenance mode for you! A dealer callout for a tech with a laptop to "re-validate" everything before you are going anywhere.

However, I have heard the way this normally goes is that they bribe someone in a dealership in Europe to activate them "on the nod", or fudge the serials, while the parent company looks the other way. Not sure with the war how easy it is to find someone willing to do that anymore, folks are pretty damn angry and scared now.

Cooler heads needed in heated E2EE debate, says think tank


Re: Shooting themselves in the foot

If I may disagree, E2EE at a system level is very hard to implement. For example, it seems likely that most mobile phones have screen capture and OCR available to governments so the Signal app may prevent in-flight reading but probably is vulnerable at both endpoints.

I suspect most 4G multi-cpu modems in phones are back-doored to be able to read and write to system memory. Its the most logical place to put the surveillance, as like the intel management engines and the AMD equivalent, they are all closed source, and present on all hardware, and can't be disabled without limiting functionality so people won't or can't. We have historical examples of it already from the Samsung S3 for example.

I do wonder if this E2EE debate is a pure distraction play, and that the governments don't need it, but want the debate to focus on this irrelevancy, where if they do get access it might make it easier or cheaper, but ultimately doesn't interfere too much with their operations.

UK spy boss warns China hopes Russia will help it take over tech standards


Most world democracies have gone authoritarian in the face of existential threats

Most world democracies have gone authoritarian in the face of existential threats. For example. the UK planned to use poison gas on the invasion beaches when the enemy landed in WWII. For the Ukraine this war is consuming their whole world.

https://en.wikipedia.org/wiki/Chemical_weapons_and_the_United_Kingdom -> Proposed use in World War II

Goldman Sachs reportedly set to head up $60bn Arm IPO


Re: Yikes

Personally I believe the big players are big enough to not need them, or have architecture licenses (as you said), and that there are just not that many SME players anymore to license to as the chip design market has become increasingly small.

AMD reminds everyone it's still doing Threadrippers


Alright, I'm outta here

"The new Threadripper Pro has metaverse virtually written all over it." - ooh sick burn!, NO WAIT IT GOES ON: "The specs are suitable for high-end virtual-reality applications – think engineering and design work – in a virtual space Facebook thinks will be our future environment for fun, commerce, and employment." Alright, I have to go now, forgive me backing away slowly while looking for the exit.

If you got paid for this comment, I certainly hope it was a lot, however I am more concerned that you are not being paid (as it would have been Meta I suppose), and actually think what Facebook is talking about should be brought to my attention, which just makes it worse.

(Otherwise the article was pretty nice!)

Raspberry Pis gain power to flash their own OSes with new network install function


I hope this works better than their last buggy network bootable ROM code

I love raspberry pi foundation to bits, they have achieved so much, but we could have had viable and customizable network booting (even diskless sdcardless operation) two generations ago if they just used industry standard opensource u-boot instead of their own homebrew proprietary broadcom ROM boot.

And as they are a big charity now they should get their designs reviewed by some hardware engineers/consultants or purchase some proper hardware testers for e.g. USB so it doesn't take a couple of revisions of every Pi generation to eliminate obvious hardware bugs.

Yes a bit salty, mainly because trying to actually make Pi's work in production (and education is production, students need things to work) - they are big now, not like in the Rpi 1 days.

Chip supply problems might mean Wi-Fi 6E is skipped over for Wi-Fi 7, says analyst


I'm not sure LAG/LACP is the answer here as the load balancing to and from a single client cannot use more than one physical link, which would max at 1gps.

Although there are some new(er) balancing algorithms that work on a port & ip basis for different UDP and TCP ports if there are two in use.

European Space Agency: Come on, hack our satellite if you think you're hard enough


I approve of real world testing - Sims only get you so far

I approve of actually testing this on real hardware as simulations well good only get you so far. It's important to actually see what really happens in real life, it's so easy to only simulate what you already know and for penetration testing you need to know what you don't know!

It's your Loki day: The Reg takes Elementary OS Jólnir for a quick test drive


Gnome breaking customizations on update deserves a higher billing

"On the other hand, it feels much more coherent than GNOME, and if you do customise GNOME, it will inevitably break when you upgrade your distro."

I feel that the fact that Gnome normally breaks customizations on update deserves a slightly higher billing. The current trend of software seems to be: provide an "experience" and if you want to customize a part of it, to tell you to get lost and make sure you know you don't own the computer. The GNOME project seems to be one of the poster children of this movement by actively removing all customization and not even giving a tiny nod to customization compatibility, even for legit gnome shell extensions.

I know it is their own effort, project, etc. and they can do what they want, but I wish they gave a big warning sticker on login stating this. I have wasted a lot of time getting GNOME3 to work the way I wanted, only to lose most of it.

Test this new Linux kernel – but don’t forget Christmas or that you have a family, says Linus Torvalds


Re: Does this version successfully run within the systemd container?


Intel's mystery Linux muckabout is a dangerous ploy at a dangerous time


Re: @nematoad - Open source in general is there to be subverted

If I may the nouveau lot have designed and implemented very powerful PCIe snooping/logging tools in Linux which are used to dump what the Nvidia driver is saying to the card.

That enabled them to reverse engineer a lot of functionality by constantly replaying simple examples with minor variations to the card to see what the command sets were.

I don't believe Nvidia has been prepared to admit more that they may in fact make zero or more graphics cards when it comes to 3d acceleration for the Linux graphics stack :)

A third of you slackers out there still aren't using HTTPS by default


Re: Phorm Scandal

I am with you - I can't believe that folks forget multiple home router companies and/or ISPs and/or cell companies have deployed on a large scale:

1. Injecting ads into normal HTTP web sessions, either over the top of other ads or just straight up "click-thru" pages

2. overriding DNS "not found" requests to redirect you to their ad spam sites (not quite HTTPS' territory but modern HTTPS will kill some kinds of this evil with CERT pinning). This broke multiple things as you got a valid webpage back, instead of a DNS not-found for every request!

I'm sorry, but allowing your transport layer to know what is happening, beyond traffic class for QoS is just a bad move - think of it as "forced separation of concerns"? - I now like this phrase...

Playing jigsaw on my roof: They can ID you from your hygiene habits


Was on the edges of a prototype to do data transfer down normal water pipes with modulated pressure waves for water smartmeters. Worked quite well for about 1kb-5kb or so, surprisingly. So modulating a smart tap would absolutely work without the ir sense, assuming a receiver quite a ways away.

Flash? Nu-uh. Windows 11 users complain of slow NVMe SSD performance


For those interested here is no less than Mark Russinovich's blog post on his investigation of it:


Seems VISTA shipped with a hardcoded network limiter to deal with vista's inability to schedule threads to avoid audio glitching, which was applied no matter how powerful your computer was.


Its the ghost of Christmas Past - VISTA all over again.

I wonder if its the DRM again, same as the IRQ storm from networking when playing back audio on VISTA (the problem gimped a 1gb link to <100mb only when playing music)..

But why that VPN? How WireGuard made it into Linux


Re: ZeroTier One for the VPN

Wait until marketing insists you have to stare at their logo for 30s before the application loads for "branding reasons".

Warning: China planning to swipe a bunch of data soon so quantum computers can decrypt it later


Not only does encryption de-structure it, nearly all encryption systems start by compressing information to reduce/eliminate repeated information, and save compute time on the expensive encryption/de-cryption. Compression maximizes the amount of information per bit (in a documented, reversible way) and then it gets encrypted.

PHP Foundation formed to fund core developers, vows to pay 'market salaries'


PHP - a language without any theoretical basis, accretiating over the years

PHP - a language where the creator cheerfully tells people they had no formal training or systematic approach, that has double- trebled- quadrupled- multiple times over the years. And it seems every time they could have improved it or made it more systematic, the developers have not.

That only two people fully understand the internals of the JIT etc. - I buy that. And I doubt you could easily or practically create another interpreter for it (Hip Hop Virtual Machine, HHVM, while awesome, is not fully compatible with PHP, but is a great product/tool, vs. say Python, IPython, Jython, etc.).

Remember SoftRAM 95? Compression app claimed to double memory in Windows but actually did nothing at all


Re: RE: How would an incoming call kill an outgoing connection?

In case it's useful to anyone who reads this, if you have ADSL filters and are still losing connection when someone phones you it's likely you have a high resistance in the crimps or lines somewhere. If after you replace the filters and narrow everything to just your wall box, a phone and the modem, it persists you have this problem.

The only fix for this is to get a line test done for high impedance and a phone tech to actually fix it. It should be free for most anyone if it really was a high impedance error.

America, when you're done hitting us with the ban hammer, see these on-prem Zoom vulns, says Positive


Re: These bugs will be fixed!

(Not very serious) I have always bristled at that quote - the pyramids are actually pretty well made, with air shafts, secret rooms, etc., in this example a 6' long 20cm x 20cm shaft at a steep rising angle in solid rock: https://www.techexplorist.com/robot-reveals-inside-great-pyramid/30245/

They certainly can't have piled the rocks on top of each other willy-nilly, and then cut that afterwards.

However, the core idea of software being basically sedimentary rock - fish poop, detritus and other stuff layered on top of each other, again and again until it hardens into something very hard to change - totally agree.

First RISC-V computer chip lands at the European Processor Initiative


Re: Strong-arming the competition?

Its rather interesting that. ARM has long evolved beyond the CPU in an effort to ensure this didn't happen and offer more value. They do all the IP nowadays, except radios, even the cell libraries of gates and on-die memory generators/macros for many foundries.

So if I was a smaller company that had skills in analog/power or video decoding, or radios, I might buy the CPU, bus, memory, debugger and IO from ARM, and the digital cell library to focus on my strengths.

Another product that ARM offers is risk free, high-performance CPU+cache clusters prevalidated and laid out on many foundries. Just because you have licensed the IP doesn't mean you can read the 10,000 pages of docs, configure it, place it, and verify it without risk - with ARM just hand over $$$ and you know what you are getting.

Time will tell if this evolution will be enough to enable it to compete with RISC-V (which doesn't even have fixed interrupt controller specifications, debugger systems, etc. but they are getting there fast).

A developer built an AI chatbot using GPT-3 that helped a man speak again to his late fiancée. OpenAI shut it down


Re: We'll miss you Samantha.

[Upvoted so hard I nearly broke my mouse button]

Why we abandoned open source: LiveCode CEO on retreat despite successful kickstarter


Re: Need to strip out GPL contributions

It seems likely that external contributors had to sign a license to allow them to sell it closed source as well as providing it as an opensource before they were allowed to contribute. Considering the company owned the starting codebase this seems a likely hedge and enabled them to do this legally.

My university takes the same approach for code written on the university time/equipment/contracts, assuming other funding compatibility, yadda, yadda, yadda, so they can use anything I write on their dime in other internal /external projects without open sourcing those.

Alternatively an analysis of external contributions may have revealed a very small amount that needed closed-room re-implementation to clear the licensing hurdle.

Spring tears down math geek t-shirt listing because it dared to mention the trademarked word 'zeta'


Re: "The Greek alphabet is currently protected legally"

That is surprisingly fair! I approve, its pretty clearly written, seems accurate, and it would seem that Spring is the one at fault here for using a very broad automated scanning technology.

Chinese auto-maker accused of altering data after fatal autonomous car accident


Re: Conspiracy

To back you up the UK forced the cancellation of a conversion kit to convert a Kia 2014+ into a self-driving car, all of the steering and acceleration etc were electronically controlled on the same net ,- you just plugged in.

Brakes required a hardware module, but I'm sure you could crash with throttle and steering alone

Git 2.33 released with new optional merge process likely to become the default: It's 'over 9,000' times faster


Speak not evil in these four walls!

Brrr, speak not evil in these four walls, for those creations of the Terrible Trivium, Visual Source Safe, Mercurial and Rational are still at large in the world, wasting time, leeching productivity and blighting lives.

["If you only do the easy and useless jobs, you'll never have to worry about the important ones which are so difficult. You simply won't have the time, for there is always something to do to keep you from what you should really be doing." ~The Terrible Trivium]

Amazon Game Studios to its own devs: All your codebase doesn't belong to us


Fun video-Dave Plummer (formerly MS) made zipfolders pre-hiring which MS decided to buy post

Fun video about this - Dave Plummer (formerly Microsoft) made zipfolders before he got a job at Microsoft, and MS decided to call up the creator to license it without realizing he was an employee. It was a sticky situation, and in fact a competitor tried to get him fired, etc., etc.. Cool, insightful story IMHO.


Personal story, a friend of mine got a job offer and in his contract was a page stating all his existing IP/patents had to be offered to his new company on very favorable terms and he would not be able to license sell them. He questioned that page in his contract, and they instantly swapped it out for a better one that they *already had*. So if you see terms in your contract you don't like, ask about them - don't ask, don't get and your new corp. overlords will ask for all they can get in a heartbeat.

Lesson for everyone - get something in writing covering your existing IP/side hustle before getting into the job.

Does the world need another cross-platform framework? Tough, here's JetBrains with Compose Multiplatform


Re: Hmm

Looks like a lot of dependencies over which you have no control and Google could drop the whole framework* on a whim.


[actually I agree 100% with your post but another framework that does not offer compelling advantages using a coding style that is 20+ years old is probably not going to survive for too long. Do we really need another framework that draws its own widgets again? Wasn't this Java/Hypercard/...? *Le sigh*]


Biting the hand that feeds IT © 1998–2022