Posts by sten2012 84 publicly visible posts • joined 13 Oct 2021
Having used backtrack chroot on android and then Nethunter when it was first released it was completely ad free (except IIRC it did recommend a specific non-free APK upgrade for enhanced functionality, but I wouldn't even call that advertising, twas completely honest and upfront), I had no idea what OP was on about, thanks for clarifying.
Was playstore just squatting on the name then?
Certainly not only interested in commercial use or even "mostly" commercial use, but also not interested in investing much time in something that I now know I couldn't use in any potential employer and would be better off committing to getting comfortable in a more suitable language instead.
When older releases are reaching GPL stage I might well revisit.
I'm a pentester not a developer so my commercial code is not ever shipped code per se, the stuff I do is pretty much all one off hacky scripts to help me out (data manipulation for example) that never see the light of day again and I'd be ashamed to have any real developer or data engineer catch a glimpse of.
I don't usually need this performance, but every now and again my junk code thrown together in a few hours can take a few hours to run and getting that down (and speeding up the many debugging runs) without spending hours/days optimising would be nice.
Nothing I do along them lines would ever take 3/4 years without me being fired, let's put it that way.
Also some network stuff of course but doubt that will see many gains here so not much point there.
Those slow runs are not a deal-breaker - usually runs in the background while I get on with other things.
GPU feature is nice. Had a few instances where password crackers for proprietary software have come up, and I've never used python for those nor have I ever committed to GPU for them, but then again I normally just use whatever the language the reverse engineered code is and flip it around to knock those up too. Assessment windows are short and so spending more than a couple hours on these things is just impossible.
But ultimately nobody would commit to licensing for this kind of software for "that one python guy" when teammates all have different language preferences, and I'd probably only benefit from these performance improvements a couple times a year.
While that might not even count as "production code" under that license I'll prefer to just find a "free as in freedom" alternative.
Thank you.
I've been forced into offices for nearly a couple decades now. Never once have there been massive company wide calls or support on how to emotionally deal with being forced to interact like this even though nothing in my nature supports it.
Within weeks of working from home the support groups and meetings sprung up on coping and basically ran continuously.
I'm not even that sure I'm in the minority, certainly not as disproportionately the minority as the available support indicated.
Think it really highlights how workplaces in general (not just office life) are set up exclusively for extroverts. I found it very, very hard to sympathise after noticing that.
Not sure why the downvotes to this. I love WFH and would hate/refuse to ever move to a job that demands it again.
But I get this. Not least the fact that work won't, and shouldn't, pay for this conversion.
So what is there to disagree with of the opinion someone that doesn't want to put their land aside for their employer, and spend 5-20k in the process?!
It's not my own opinion that a work area encroaches on my personal life. But it's sure as hell a perfectly valid and logical one.
Random looking subdomains is what I've seen before. Iodine and cobalt strike. Cant vouch for everything out there. But almost certainly for the reasons you say.
And if you don't need the recursion (so don't have to worry about intermediate caches) you just pump whatever data straight out of 53 instead and don't mess around with all this anyway.
How are you using it? On end user devices or say on virtualisation servers?
To be totally honest since oracle has taken over it feels to me like vbox development has slowed to an absolute crawl. I used to be a huge advocate for it but my experience has only been going downhill.
It used to be that or vmware. Now there are loads of what were newcomers that are just as capable for 80-100% of use cases. KVM or Qemu on Linux. Hyperv (if you don't need h/w passthrough) on Windows (80%).
And I don't really see local user virtualisation going cloudy for vmware (a la workstation), just it becoming tighter integrated with, say, hyper-v on Windows and less focus on their own virt while vsphere stuff is looking less certain.
But I'm honestly clueless though so don't listen to me!
I'm sure I'm missing loads (xen still a thing?)
Between that and the uptick in containers taking on some workloads.. It wouldn't take much convincing for me these days, once their biggest fan, let's put it that way.
I've still got 4 light switches in the house we moved into nearly 5 years ago now that I still have no idea what they are supposed to do!
All on banks with 1/2 other switches with easy to easyish to work out purpose with some trial and error. But not these.
In that sense they really are a pretty terrible interface!
Interesting, thanks! I saw some things promising to fix it in teamwork circa 2018 but none made a bit of (beneficial) difference at that time. Haven't looked back since.
Have now given up on winforms much as I love the simplicity as a result of that terrible experience of high dpi screens becoming suddenly a thing that exists (initially macs with retina running windows vm's, then suddenly boom.. Everyone)
WPF was (is!) great but didn't have the nerve when starting a new project in a new language to adopt a new framework. Feel shame to this day about some poor decisions there.
And if neither were cross platform I landed on simple, thinking if it needed to go cross platform I create a second simple UI in QT or something.
I'm sorry, I was more referring to US, (and partly UK), but the context of the post I was replying to US and definitely should have been clearer.
You are right these get abused, or root certs added by govts or root certs added by software.
But what I haven't seen before is, say, evidence American TLA's doing that because there are softer and more deniable targets.
I think if root certs were being abused there would be more evidence of this wouldn't there?
The way prism was set up seems to indicate that this isn't true.
Unless I've missed something.
Not that they couldn't abuse it, I'm sure, but I've seen nothing to indicate they do, and they'd probably prefer less visible attacks than swapping out certs on MITMd traffic
First try in most cases! But they were trivial. Its enough to convince me that actually this will help people like me who maybe code quite a bit, but basically just hacky single use scripts often in languages I'm not familiar - so often it's the syntax and api specifics and standard libraries I waste most time on, but if there's a bug in the logic, that's fine and easily found and dealt with.
If I was a proper developer, working in languages I'm familiar and comfortable with it would be far, far less useful.
I did get two different contradictory answers neither of which worked for messing with a couple specific windows APIs in python ctypes in a trivial example, one looked close but I haven't picked up to see what was up. One was obviously wrong, the other didn't work but a quick glance at msdn showed it must have been bloody close!
I was giving it straightforward tasks, and what I asked it to do were generally small parts, like a function that does _simple task x_ in lang _y_ that easily could have matched a near exact question on SO or github verbatim (except if you then ask it to switch to another language it seems to actually covert the syntax rather than scrape a native example, which I thought was cool).
But I found it quicker (albeit I imagine hugely wasteful in energy) than finding the same on SO or github.
And of course I'm glossing over the licensing of where this code came from being completely left out. Because that's truly unforgivable.
But I guess I'm wrong looking at the votes.
Again I see a time and a place for this.
Some companies cannot access developers at all, and if no-code does reach that effective point, then that doesn't completely hang them out to dry.
Similarly working proof of concepts can be knocked out really easily, and having that can mean a better project specification, because the DB schema and basic application has already stood the test of time as a workable PoC.
But that time and place probably isn't "major projects"!
Having used it, it's very impressive, and generated working code for me several times, broken code that needed fixing but was very close several times.
Even in technical circles is getting glowing reviews for some applications, with the recognition it is far from perfect.
Not saying it should be allowed on stack overflow, but either generated responses appearing in a warning window or edited by humans to form answers I genuinely could imagine working and getting faster answers if the processes appropriately allowed for it.
Yep. Much as I don't mind not paying for what I'm not using. I'm obviously paying for it if you're shipping it to my door regardless and then making me pay again to use it.
It taking all the worst parts of cloud, all the worst parts of on prem, and mashing them into one hideous middle finger to the customer.
AMD has a wide open door to walk through here at least. Made massive inroads in desktops and consumer. Intel is just letting them take servers now.
Possible social responsible business plan: An insurance style pool of support contracts for educational premises. Where the premiums are the consideration
They get the consideration, and pay centrally for support contracts from the open source vendors themselves and have some on the road techs ideally in local hubs
Keeps cost down for schools, keeps money rolling to the open source houses that offer support contracts, and a pool of knowledge of wider open source rather than piecemeal solutions.
Hell they could even put courseware available for the kids to learn infrastructure, networking and coding skills.
Could it work?
Keyphrase seems to be "that I could identify".
Also "memory leaks" rather than "memory corruption".
If we could identify them all then we wouldn't have this issue and need memory safe languages, but alas, we do.
No necessarily for every context but they should be the default and deviating from that default justified.
Use of unsafe languages should be a code smell by default, not necessarily forbidden, but called out for the risk it is.
(you are not anon I'm afraid to say!)
But been there mate. Internally "things take up to three days!" , so when outsourcing the the SLA has to be 3 days. Suddenly outsourced EVERYTHING takes 3 days, so they manage expectations, meanwhile after 3 days tickets are closed for absolutely no reason so stats meet expectations.
It's so transparent - I don't get it.
Also something about this article triggered me, clearly!
OK, this makes sense.
Using more realistic figures (£12-15 a year opex vs 30 over 3 years capex) this sounds like the messed up thinking that maybe true.
I assumed having that £20 at the end of the year 1 didn't count against you, because it was spent on something with value. So you have an additional asset in your + column
And then after 3 years, even though you've written off against tax the whole upfront cost, unlike Opex, you aren't really left with nothing, you're left with servers that can continue to run your product for another 5-10 years. Blows my mind.
Feels backwards, like production lines getting rid of robots to replace them with people.
Yep. Calling out your own shortcomings is admirable I think.
This is a person I'd want to work for. Not someone I want to criticise!
My way or the highway managers are those I steer well clear of, those that have nothing to learn from or about how you best work, because they know best.
It really does.
Lottery, trust fund babies, being born in wealthy countries, premium bonds, good local schools, natural intelligence, having good parents
It's not what reality should be but anyone who tells you they got rich off hard work, and hard work alone is either a liar or delusional. Its all down to luck of the draw.
It's a good take and you're right, but there is absolutely a consideration that you could pretty much drag and drop any vmware experienced engineer into to the team if they leave, but a specific in house solution, KVM or not, will mean fewer people to fill the role and more time to get up to speed for newcomers.
Even if all went to gamers and they ran their computers 24/7 and ran them alongside existing rather than upgrading the energy consumption wouldn't be anywhere near as high, they don't run at the same load even in heavy use for gaming, let alone when idle. Not a 99% saving maybe short term, but still very significant.
And the demand for new GPUs drops so while the true saving may lag, it still exists.
The waste is unfortunate yeah, but doesn't seem a good reason to burn the carbon for the sake of it.
Is it even really a bus? I often wonder this.
I think of busses as something that can be passively expanded and devices will negotiate, like SPI for example. The requirement of active hubs to do that makes it feel to me that its not.
It's probably a misunderstanding on my end though...
On the other hand though we're talking about HTTP redirect upgrades, so a MitM attacker can still just return what they want in place of said redirect, unless the libraries also support HSTS and its implemented correctly. Which considering the hassle getting them to support redirects and HTTPS at all seems unlikely in my cynical mind.
If consumers are willing to change all the external references to HTTPS they can presumably already do that.
Without one of those, this change causes issues without actually solving anything from what I can tell? Apologies if I'm missing something obvious.
Illegal seems overkill. Its preferable to single factor considering you mention mfa.
In these apps cases it's usually SMS being a single factor rather than a part of mfa is a big problem, but even then still better than Password1 for most users.
Perfect is the enemy of good and all that.
I thought I'd future proofed for a generation this time for my home desktop. Ah well. I'm not touching the limits yet anyway so would sit out this gen anyway. Glad to see AMD keeping it up, nice to see some genuine competition between the big players.
Despite the crazy price rises and shortages, it really does seem actual performance progress has been made in the consumer space for the first time in years last generation.
Central MDM functions out of the box I imagine and also user management/permissions through a central portal - nothing that can't be done in Linux, but requires much more forethought and hoops to jump through.
I've only seen the education one, but imagine enterprise is similar - it really is very good and pretty simple
The Register 
Biting the hand that feeds IT
Copyright. All rights reserved © 1998–2023
