Posts by JassMan 926 publicly visible posts • joined 26 Mar 2008
Not all of these leaks exposed sensitive data but some did. Out of 103 websites with login functionality tested, the researchers found 13 that leaked sensitive info, including the user's full name, location, email address, and authentication cookie.
Implies that it is possible for trackers (much as think all tracking should be illegal) to write non-leaking scripts. Since users could never have consented to have private info leaked even they had agreed to the site using the data themselves, any script which leaks should be an instant fine of 10% ofglobal turnover. No ifs, no buts because the can be no defense.
...with the world's need to "repair, reuse, recycle" in order to combat climate change?
The Boeing-led core stage, which aims to perform the feat of transforming reusable Space Shuttle Main Engines into one-shot wonders to be dumped into the ocean during launch, remains firmly in place in its test stand at the agency's Stennis Space Center after a premature end to its test fire.
They take a perfectly working reusable engine, play around with it, break it, and have a plan to dump it in the sea once it has performed a one off flight. WTF?
Yeah, I know that rockets are the most inefficient means of burning thousands of tons of fuel and oxydiser just to lift the fuel you are about to burn, but to waste everything else as well is total idiocy.
When are they going to get SABRE working?
I think you have forgotten the infinite number of monkeys. Any deliberate attempt to create life 'thousands of times' has nothing on billions of years of nature having billions of attempts in billions of combinations of environment. Life and evolution is definitely a numbers game.
I don't quite understand why you lumped Linux in with Windows/macOS. There are 2 major differences between Linux software and that written for Android/Windows/macOS.
The first is that nearly all Linux software is not only open source, but that it is peer reviewed before being packaged and included on the distribution servers for any particular flavor.
The second is the ethos of the authors. In general, authors of FOSS are interested in users privacy, not selling their details to anyone prepared to pay for nefariously obtained data. FOSS authors also tend to write software for the good of mankind and if users like to make a donation for good software, then all well and good but the authors are generally not in the business of extracting money by evil means.
I was going to suggest that maybe they had outsourced the app to Dido queen of chaos, but the fact that they have apologised made me realise that could never be the case.
It looks like a few lessons could be learnt by the UK gov from how to handle actions which don't live up to expectations. People soon get disillusioned by too much hype.
This is the fitst time I have seen a bill with an acronym in the title, which hasn't made me cringe with the tortuous way they had to mangle language in order to make the title pronounceable. Usually the title contains extraneous words with little or no relationship to the subject of the bill, or they randomly capitalise letters which you woulvd dream of using for an abbreviation.
In the same way that all TVs now have VESA mountimg points on the back, it would not be hard for the EU and the US lawmakers to agree on a standard distance (say 1cm) to be set between a pair of gold plated studs to be set at a standard position on the lower back of all phones. It could even be extended to all devices needing 5V charging. Although it might be a bit more difficult to position a watch/fitbit without some sort of adaptor.
Model aeroplanes and I suspect some proper aerobatic ones are fitted with a small tank containing a weighted (clunk) flexible pipe which alwsys gets fuel from the deepest bit on the tank regardless of orientation. Maybe the SNxes suffer from the fuel taking too long to settle at the notional bottom of the tank and the motor is trying to burn gas rather than liquid fuel. Presumably it would need the same arrangement for the oxidant.
I don't suppose Elon will ever read thisthough.
All the aeguments here and on other nedia all seem to centre around section 5.x, however AZ are completely let off the hook by section 6.2 which says AZ only have to achieve best endeavours if they already have prior contracts they have to fulfil. I think we all know they are trying to fulfil a prior contract with UK. Maybe this is the real reason they have finally backed down.
Did you read the article? He had an undeclared Chinese bank account. If he was trying to get US funding for his project, it sounds like he was trying to get paid twice for the same work.
What surprises me is that they haven't charged him with being a spy. The story makes it look like he was an almost perfect 'sleeper' but got caught out by border control. Maybe they figure they can mitigate the damage by keeping him in prison rather than let the Chinese gov demand his return to China so they can debrief him for all the other knowledge he has accrued over the years.
@G.Y. Plug and socket may have been a reliability issue back in the middle of the last century but technology has moved on a bit since old Ma Bell could only get tin plated plugs.
These days you really do get what you pay for. Even car (some) manufacturers have learnt to install silicon grease filled, gold plated pin, lever operated, o-ring sealed sockets on junctions not within the interior of the car. There is no reason not to design a ZIF socket for memory cards to allow consumer versions to become mission critical.
In fact some microSD card holders are so cheap that they rely on flex in the card to provide contact pressure and the housing doesn't even cover the contact area. It would be simple to install a bridge over the contacts containing a lever operated cam to maintain vibration free contact.
Not to mentiion that any form of rewritable memory with a limited number of cycles should be user swappable. I'll bet they wish they had built a microSD card slot into the bezel of the infotainment system. Most people wouldn't even bother complaining about popping in a new 8GB card after 6 or so years of use.If it needs to also have firmware on it they could just mail them as cheaply as a recall letter.
for which I will probably be shot down in flames.
But rather than run a test then spend half a billion dollars trying to verify it. Why not run run a complex but not too time consuming task on a supercomputer. Then, since the quantum computer is 10^14 times quicker, run the test 10^14 times and see if it gets the same answer as the supercomputer 99.999999% of the time. Unless they have some way of discriminating a "correct" answer from the almost infinite answers produced by the quantum computer, they don't have an announcement to make.
In the UK, if you repeatedly litigate without merit you get put on a list maintained by the Justice Department (https://www.gov.uk/guidance/vexatious-litigants). Once you are on that list, you need permission from the court to take any further legal action. I suspect a large number of people would like to see both parties in this case on that list.
The government should give one of these to every school kid for tele-learning during Covid lockdown. Not only would the less well off be able for the kids to learn while mum/dad are working from home, but the kids might be enticed to learn some computing skillz in stead of wasting their lives on facebook etc.
Totally agree with the need for an M.2 SSD inside. It would be even better (all Pis would be) if there was a physical write protect switch on the microSD card. Put the boot partition (and maybe /etc) on the card and everything else on the SSD and you would have a reasonably secure computer. The write protect switch needs to be interfaced to the write line not like that stupid switch on SD cards that tells the OS you would like for the card to RO but still allows the card to be written by software which ignores the switch.
Another improvement would be to recess the pi board slightly an have a lift off panel hiding the cables away and allowing all the cables to have anchors thus reducing strain on the connectors. -- On my Pi4 I have used a 15cm microHDMI(m) to HDMI(f) adaptor cable and tywrapped it to the case having ruined 2 cables by ripping off the metal bit of the microHDMI. This allows you to use a standard fullsize HDMI cable. I was worried that the 3rd failure would be the Pi and not the cable.
This 'scholarship' is being offered in a cointry that locks up white-hats. OK I know Malwaretech wasn't actually sentenced to prison after his court case but it was only that he had good lawyers that got him out of prison and tagged instead until his hearing. He still ended up with a criminal record.
Cynics may think this is all an NSA/FBI scam to get all the personal details of younsters who want to follow in Hutchins footsteps.
No its to protect the house from the flex to the plugged in device. The socket is 13A but the ringmain is fused at 30A or MCBed at 32A. If your low powered device with say 1mm2 flex develops a fault and it isn't protected by a 3A plugtop fuse, then the flex gets hot enough to burn. Likewise all other flex sizes should have the correct size fuse up to 13A. Since the ringmain itself has 2 paths back to the distribution point the house wiring doesn't even get warm unless you are doing something (hopefully) unintentended like simultaneously drawing 3KW from 2 other sockets on the same ring at the same time as your device has a fault. Even then it should only get warm not hot enough to start a fire.
The biggest problem to solve will be the pressure vessel. I hope they will do a lot more research into hydrogen embrittlement before any passengers are flown. The actual process is currently poorly understood and seems to affect alloys more than purer metals. I have never seen any studies into hydrogen embrittlement as a result of thermal and pressure cycling.
I hope you haven't tried that trick with any company with even a half-arsed lawyer in the last 30 years. A contractor tried that with some software specially written for a well know broadcaster I worked for. Once it ran for a few months without the need for any more bug fixes, they stopped paying "maintenance" bills. The software stopped working about 35 days later. Changing the date wouldn't make it work and reference to a backup tape showed that some important DLLs had disappeared. They sued under the recently introduced (at the time) "Computer Misuse Act 1990". Needless to say the contractor ended up having to sell his house and provide a court supervised build of the software without the date checking code embedded.
To be fair, reading though Azure pricing structue, their FAQs and 'learn more' documents don't make it clear that you need to pay extra for redundancy. Cloud services have always been sold on the idea that they are distributed and that the provider handles all the maintenance, load balancing etc.
This all makes it sound like Borkzilla are selling 'off site data center' services as if they are full cloud services. But then, when have they not overhyped everything they sell.
Because India didn't used to be (and maybe still aren't) very hot on regulation of electrical systems most installations ran earth free even if the sockets had 3 pins. Why spend money on a 3rd wire(*) which never did anything, and if anyone died as a result of either leg connecting to chassis in a piece of equipment, then it was just the will of your preferred deity. Only when the cost of replacing expensive equipment is a factor, does earth get connected. Human life is cheap in many developing countries.
*Anecdote from my father after a business trip to India. He visited a mine where not only did they not have canaries in cages (nor the electronic equivalent) they did all the lighting at 240V using uninsulated wires hung from plastic hooks hammered into the tunnel roofs, with branch cabling just twisted round the main feed. If you needed extra light at a work face you just dropped a light socket fitted with stiff wire across the 2 cables. No RCDs, no Isolators, no gas proof fittings. All in an effort to avoid capital outlay. If a few miners died when their picks and shovels touched a wire while they were standing in the omnipresent water, the others soon learned not to carry them on their shoulders.
Getting Windows to stay up that long without a reboot (let alone logged in) was pretty much impossible...
Of course it was impossible, there was the same bit of code, that ran a 16 bit centi-second timer, in all versions of windows. It rolled over at 37.9259259 days and BlueScreened all desktops and servers. It took over 3 years of emails to Microsoft from various engineers at the BBC, who explained the problem before Microsoft even acknowledged that this was a serious bug. I'm sure hundreds of other corporate users with more than 50 copies of windows would have noticed the same problem and reported it. BorkZillas's response was always make "sure you have regular downtime planned". The trouble is that many users have 24/7 operations and can't afford to keep rebooting servers just for the fun of it, especially since most servers couldn't even make it to 31 days of use because of lack of garbage cleaning in other areas of the OS.
I haven't used Windows for more than 1 session every 4 months to update my Garmin, in over 20 years. Do you still have to run defrag every few months of continuous use?
Not just industrial. The sale of Cadburys should never have neen allowed either. I know it didn't actually taste of real chocolate but at least it had enough cocoa solids that you could imagime it was worthy of the name. The real damage was that most of the production was offshored in spite of management statements to the contrary. Pretty much like most statements from our current PM.
Not much of a choice. With FOSS you know that someone is working on the vulnerability and they have a head start on any black hat wanting to exploit it. With Closed source you may never get a fix at all because some middle manager, who knows nothing about how dangerous an exploit might be, decides not to allocate time on a fix because new features are what tempt the userbase to upgrade.
Mandatory Brexit comment
With it looking increasingly likely that the UK have always intended to have a "No deal Brexit" since they don't even bother to turn up for negotiations any longer, it looks like IBM's behaviour will become the norm after December 31st. It would appear that the government have always intended to scrap all the EU directives which are holding back our famous world beating British industry.
OK bring on the downvotes, but guess what - I am so depressed by Boris's chums even being able to organise a piss-up in a brewery, that I just don't care anymore. All they seem to be able to do is to break the law with impunity by giving £5 billion of tax payers money to their mates without putting any contracts out to tender.
I think that Javascript has a big following because it is so well integrated with markup languages such as qml and html. This makes it easy to quickly produce a working app which looks reasonably aesthetic without having to spend low level effort on controls and animations. Producing a graphics heavy app with Python + Glade is serious effort compared to getting the same result in Qml+Javascript. The balance only tips the other way when you need to interface to hardware other than timers and basic mobilephone sensors such as accellerometers.
Separately, Vodafone also plans to merge its Greek tower business with that of local telco Wind Hellas. This combined tower infrastructure company would be called Vantage Towers Greece, with ownership split between Vodafone and Wind Hellas parent Crystal Almond 62/38 respectively.
Maybe I should put in for crowd funding for "Sapphire Sh!te" and "Diamond D!ck Cheese" and bid for a slice of the action.
Depends on whether they intended it as a noun or a participle.
Noun
vīctus m (genitive vīctūs); fourth declension
1. living, way of life, lifestyle
2. nourishment, provision, diet, that which sustains life
3. (Late Latin, law) necessaries of life
Participle
victus (feminine victa, neuter victum); first/second-declension participle
conquered, subdued, having been conquered.
Are you sure you haven't had one too many drinks already? Or do you have a strange keyboard with the V and Z swapped. Most phones with edge protection for the screen have a bezel, which may or may not have a bevel (flat chamfer).
Sorry, just couldn't resist being a grammar nazi having just downed a few glasses of "Saint Thaur" Picpoul de Pinet to celebrate living to see another Friday. Just as good as the Ormarine Black label but only half the price.
I feel guilty about the schadenfreude but I really enjoyed this one. I think that reading the Reg should be part of the employment contract for everyone who works in the industry, so that there would be less of these clangers. No wait, I want more because more laughter makes you live longer. Oh, I don't know or care as long as all the good stories appear here.
Must admit, I also read the entire article thinking it was clever of the authorities to use the fact the Chinese had been card skimming to find evidence of their other nefarious activities. It was only when I got to the end that I realised the students hadn't been so stupid after all and had just been unlucky in getting caught at not ticking all the boxes on a visa application. I guess if you do tick the box, your visa is automatically refused, but at least you don't end up in a prison cell.
Totally agree. Until they get the install process sorted they aren't ever going to get a user base. I wasted severaldays trying to get it it to even boot the installer on my 2 remaining BIOS PCs having discovered that UEFI was no go. I don't understand why they haven't used GRUB2 instead of rewriting their own
If they didn't test it on more than 1 pc to check that it actually ran at all, how do they know the 123 fixes have actually worked?
If yhey did actualy manage to get it running on more than 1 pc why don't they publish a recommended configuration for users to try before rolling back. As the article says, a number of the fixes are security critical and you don't really want to open up your system to crackers by reverting to a version with known attack vectors.
I think that in a discussion about precision of language being diluted, when that discussion is about binary naming, introducing an ambiguous analogy is unhelpful.
Pilot-controller wrt drones can mean either controller of pilots (ATC/ drone control room comander), or controller of the drone. The drones themselves maybe directly controlled or semi-autonymous, so drone controll may be a chain of command thing not just a binary choice.
In case you are wondering I didn't vote either way, but I am surprised you garnered any upvotes.
Pilot-controller, pilot, drone-controller, drone. This analogy could be even worse because sometimes drones have co-pilots who standin while the pilot is otherwise engaged.
Replying to myself here since it appears that some readers didn't realise that I was being facaetios in not stating explicitly that ARM holdings should havebeen treated as strategically important to national security. I also didn't realise that so many would have forgotten that ARM China is semi-independant of ARM as owned by Softbank who we all know are Japanese.
For those who seem to have forgotten, ARM Chima is only 49% owned by Softbank. The rest is owned by China Investment Corporation, the State owned sovereign wealth fund.
The Register 
Biting the hand that feeds IT
Copyright. All rights reserved © 1998–2024
