Blockchain & DMV, like FIFA & Quatar
Perhaps not as funny, but the conclusion is the same, "At this point, one HAS to hope that bribery was involved--because that's the ONLY way any of this makes sense."
Posts by Claptrap314
2995 publicly visible posts • joined 23 Jan 2015
Page:
California toys with digital vehicle titles on private DMV blockchain
Three seconds of audio could end up costing Fox $500,000
Disaster recovery blunder broke New York Stock Exchange this week
Friday 27th January 2023 22:00 GMT 
Cluelessness as a culture?
This is merely the latest in a rather long list of major WTFs by this institution. It took the melt-up to get them to admit that timestamping orders with the time that they were processed, as opposed to when they were received was a mistake. And they STILL haven't addressed the issue of orders being valid for less than a second.
User was told three times 'Do Not Reboot This PC' – then unplugged it anyway
Memory safety is the new black, fashionable and fit for any occasion
Go to security school, GoTo – theft of encryption keys shows you need it
FBI catches up with infosec and crypto communities, blames Lazarus Group for $100 million heist
Wednesday 25th January 2023 20:00 GMT
Or maybe...
just MAYBE. The FBI is doing actual forensic analysis and not just "someone acting like they are NK did this". The FBI has much less pressure to rush an investigation than someone selling security services looking for a feather. Furthermore, as a finding by the FBI may well have political implications, they are under significantly more pressure to get it right.
Ukraine slides closer to NATO with buckets of experience fending off Moscow's cyberattacks
Wednesday 25th January 2023 18:06 GMT
Nice job, if you can get it. Let some other country provide your nuclear sunscreen--why pay for it yourself?
Simple: there is absolutely NO WAY to ensure that the nuclear response is guaranteed. Sure, before the first nuke flies, the plan works great. But once it does, what is the actual incentive in the next moment for some third power to respond?
Arm yourself or be a slave. It really is that simple. Always has been.
Tuesday 24th January 2023 20:24 GMT
Re: Spinning like the oozlum bird?
The ENTIRE point of these drones is that they are supposed to be relatively disposable & low-cost. A mission success rate of 1/3 is TERRIFIC if you typically have 3-4 missions active in the same area at a time.
I don't believe for a second that we expected these drones to survive a significant EW attack--based on what I learned about EW while I was in SatCom in the USAF 1987-91. The physics doesn't change.
Space dust reveals Earth-killer asteroids tough to destroy
Wednesday 25th January 2023 17:58 GMT
Semi-destructive option
A slightly-embedded nuke will vaporize a significant bit of the meteor, which will in turn a more significant bit into ejecta. Newton will then cause the creation of said ejecta to have an equal and opposite effect of providing a significant kick to the asteroid.
Perhaps not as satisfying as going full Bruce Willis, but quite effective.
The challenge being to get the proper penetration before detonation. With a rock pile, this will always be a crap shoot, and you REALLY don't want to roll snake eyes.
The "nice" thing is that it should not be overly difficult to send a series of nukes timed an hour or so apart. Of course, adjusting the aim will be tricky, but fortunately, it will be the most tricky precisely when the later nukes are not actually needed.
Also, if we can control the direction of the push, the actual amount of the diversion that we will need will likely be much less than 8,000 miles--although again, this is not the sort of operation that befits tight design margins.
India uses emergency powers to order takedown of BBC documentary
We're just shouting into the void, says US watchdog offering cybersecurity advice
Tuesday 24th January 2023 18:54 GMT 
Step 1: UNPLUG
Seriously. How in the 4377 is the Fed government using the likes of Solar Winds for systems with sensitive information in the first place?
Doubtlessly, as our government is suppose to be "for the people", there is a need for a LOT of information to be made public. But NONE of that should have any ability to feed back into the actual backend systems that store & process the data. AND--those back end systems have no need to be on the public internet at all.
But when Hillary Clinton is your model for handling secure data (looking at YOU, Trump...Biden...Pence...???), I guess it's unreasonable to expect even the most basic rule to be taken seriously, let alone be implemented.
Changes afoot at Salesforce after activist investor Elliott takes a decisive slice
Tuesday 24th January 2023 18:39 GMT
Re: "improve operating margins"
This is the unfortunate nature of our quarterly-report-driven stock market. I don't claim to even have a good idea for structural reform. I certainly think that no-vote shares (like Alphabet and others) are a good step in that direction, but that structure can only be effective for at most a handful of decades before the founders age out.
FTX audit finds $415m in crypto mysteriously vanished
Thursday 19th January 2023 22:46 GMT
Re: So someone steals something that doesnt exactly exist
I think you've skipped a couple of points.
The first is inherent value. In the old days, the inherent value of gold was that it made good jewelry. Today, of course, it is important or critical component of a lot of manufacturing processes. The inherent value of fiat is that it pays taxes. There is no inherent value in coin. The fact that there is a cost to their manufacture, and that, absent a change accepted by 50% of the miner power, the supply is limited, is designed as an aid to stability, but with no underlying inherent value, holding coin needs be a purely speculative play. And a long-term bad play should the boys with the guns feel threatened.
The second is transferability. Gold is a physical thing, and the limits on its transfer are precisely what has driven the move to paper. As pointed out by another, the blockchain of BTC is equivalent to a database, which means that the CAP theorem applies. In order to function, the blockchain is CP, which means that A is "whatever". Historically, I guess that transactions have taken an hour to settle.
So if by "digital gold" you mean "a philosophic token which has proven unworkable for general economic use", I can go with that.
Mailchimp 'fesses up to second digital burglary in five months
Oh dear, AWS. Cloud growth slowing as customers get a dose of cost reality
Intel, AMD just created a headache for datacenters
Thursday 19th January 2023 20:54 GMT
This is analysis?
AMD has been banging the drum about price/performance and performance/watt at least since I was there in the 90's. This article makes 0 sense unless the performance/watt price of these new processors is worse that what is currently there, and for some inane reason, the compute barns are forced to use them.
I'm pretty certain that neither is the case.
More likely, the performance/watt is better than the previous generation. Which means that instead of running your rack 90% full of hardware, you run it 85% to get the same amount of processing done. Where is the problem with that?
Certainly, you might want to change your spacing, but in the end, there is less power being consumed to produce the same results.
Crypto exchanges freeze accounts tied to North Korea’s notorious Lazarus Group
Wednesday 18th January 2023 19:14 GMT
Re: Growing Up?
I've not bothered keeping up with everything, but BTC and ETH in particular never attempted to fulfill the coin spec as put forward on the cypherpunks list in the late 90's. Fully anonymous coin is technically possible--the spec has been out for more than twenty years. But it has limitations which apparently have made it undesirable.
For password protection, dump LastPass for open source Bitwarden
Basecamp details 'obscene' $3.2 million bill that caused it to quit the cloud
Wednesday 18th January 2023 18:47 GMT
How does your "blended internet connection" do when the electrical substation feeding it dies? You don't get 4 nines (let alone 5) if you don't have automatic failover when a facility goes down.
Look, if you don't need 5 nines (and most don't), then fine. If you've got a good enough team, and a large enough operation, you can save money by not doing the things that AWS & GCP are doing to deliver. And if you DO need 5 nines, then yes, you need someone who knows what it takes (even on AWS or GCP) to make it happen.
Hint: there is NO WAY to confidently deliver 5 nines unless you are in three geographically dispersed data centers. Each data center being capable of carrying 130%-150% of a black swan event with 10-second failover. The magic of SRE means knowing how to deliver that WITHOUT tripling all of your costs.
For any operation, there is a crossover point where the size of the operation justifies bringing the whole thing in house. But you must properly account for staff and resilience to judge that. You cannot just eyeball hardware costs and say "that's too high".
Wednesday 18th January 2023 18:36 GMT
Re: More numbers
2 location is NOT resilient.
Source: I learned SRE at Google.
This was for our OWN products, not for GCP. Cloud haters SEVERELY underestimate the cost of actually delivering 4 nines. (Note: Azure does not appear to be capable of delivering 4 nines.)
Of course, Google's systems were engineered for 5+, not just 4. But few businesses actually need 5.
If your business does not need 4 nines, then yes, you might be able to save money by dropping down to only having your data and systems in two places.
US think tank says China would probably lose if it tries to invade Taiwan
Friday 13th January 2023 20:56 GMT
Taiwan is not Ukraine
Yes, there are important parallels. But also critical differences.
To me, there are several major choices the Chinese face in an invasion scenario. The first, and most critical, is if they assume full & immediate US involvement, or if they try to minimize it. All this talk about the US being involved elsewhere only really matters if they try to minimize the US involvement.
There are two ways to minimize involvement. The first is to avoid damaging US assets. The other is to hit us early & hard enough that we cannot respond until the ground war has been "won". I don't believe for a minute that our carriers are safe. Not just against nukes (which at sea are a MUCH lower issue than a nuke against a mainland), but also against hypersonic torpedoes. Suppose they open by sinking all carriers not in port or in the Atlantic, and wiping out all non-geostationary satellites + all g-s sats on that side of the globe? Couple with a massive invasion.
Yes, the US would be outraged in such a scenario. But what responses would we have? Non-nuke long range bombing is of extremely limited value except as a prelude to ground invasion. (And our refueling capability is 40 years old or so.) And I don't think we can protect our ships for an invasion. Again, I have a hard time seeing any president after Reagan nuking China. I really expect the response to be little more than sanctions.
Of course, there is that "massive invasion" to implement. And we have subs too. But do they attack in international waters before war is declared?
We need to have as much in Taiwan today as we had in Germany in 1980. Make it certain that if they invade Taiwan, we go nuclear.
BOFH: It's 4ft tall, heavyset, has optional fax. No they didn't take the toner!
Native Americans urge Apache Software Foundation to ditch name
Friday 13th January 2023 19:25 GMT
Re: Bit ridiculous
Which is wrong because why? The "spaghetti" in "Spaghetti Western" is a reference to the fact that the director (and I think the production company) were Italian, and the movies were filmed in Italian.
You ALWAYS hire people living nearby when filming. Should they be required to fly folks in from Mexico?
Russian meddling in 2016 US presidential election was weak sauce
Wednesday 11th January 2023 00:00 GMT 
Do I need to quote myself?
From however many years a back? The FSB that ran the troll farms was the SAME FSB that produced that nonsense dossier. Putin wants to undermine trust in our system, and to that end, conducted easily observed "influence campaigns" which he hoped (expected?) would be picked up after the election to undermine the credibility of the winner, no matter who one.
To analyze the troll farms while ignoring the dossier is to help that effort.
Sourcehut to shun Google's Go Module Mirror over greed
FTC floats rule to ban imposed non-compete agreements in US
JP Morgan must face suit from Ray-Ban maker after crooks drained $272m from accounts
Python Package Index found stuffed with AWS keys and malware
Man wrongly jailed by facial recognition, lawyer claims
Literally, look who's back: A comet that last swung by Earth 50,000 years ago
PyTorch dependency poisoned with malicious code
Wednesday 4th January 2023 23:03 GMT
Plenty of blame to go around
First, for something like PyPl, it DOES make sense to have a "preferred" repository override stable--that's what nightly builds are for, after all. What does NOT make sense is making said repository open. "Dependency confusion" is NOT something new as of 2021. It's been around for decades. Those claiming otherwise need to buy a badge that says "security" on it.
And yeah, the dev. Utterly irresponsible behavior. If you're going to write POC exploit code, you either put in guards to make **** sure that you are only grabbing data that you in fact have legitimate access to, or expect a knock on the door with an offer you cannot refuse to have your room and board provided by the taxpayer for an extended stay. Do not pass Go. Do not collect $200.
Techies try to bypass damaged UPS, send 380V into air traffic system
Should open source sniff the geopolitical wind and ban itself in China and Russia?
Tuesday 3rd January 2023 20:56 GMT
Re: Russia's illegal invasion of Ukraine
The ICJ was explicitly formed to be hostile to the US and Israel. I've not bothered digging far enough to figure out who else was on the original hit list.
But a court which does operate according to the classical Western concepts of the law is one I'm not interested in submitting to. And yes, this means that my list of countries that I would be interested in touring is relatively limited.
Tuesday 3rd January 2023 20:47 GMT
Re: Restrictions != F(L)OSS
"It has a rather large population that traditionally values society and education more than we do. They've invested massively in STEM education and research, we haven't. Basic population distribution suggests that if you've got 1bn people, they're going to produce more intelligent people than a country with a population of <100m."
I have an interesting datapoint to the contrary, and a major theoretic problem as well.
This is a story of two Indians I worked with at IBM. One, raised in the US, was one of the best programmers that I have worked with. He was certainly much better than I was at the time. The other held a very senior position at IBM, and had a responsibilities including managing a team of twenty Indian programmers. Over the course of a program (almost three years), that team identified 0 unique bugs. As opposed to the team of four (including the first mentioned Indian) who identified dozens.
It's not the size of the population. It's not the level of education in the formal sense. It is the culture.
American culture has historically been much more encouraging of risk-taking and challenging authority than other places. THAT is where you get the new ideas that revolutionize things. A population of a billion people fearing for their lives if they offend the wrong member of the Party is NOT going to invent at the rate of a much smaller group that encourages hackery.
Tuesday 3rd January 2023 20:30 GMT
Re: Keep politics out of open source
Inasmuch as OS is an umbrella term involving licenses, which are matters for courts, which interpret and apply laws, which are passed by politicians, you are correct. But breathing increases the CO2 in the atmosphere, which...
You have to draw the line somewhere or you lose the ability to clearly communicate.
This effort is clearly part of a broader effort to politicize more or less everything, to the advantage of the hard left.
Too big to live, too loved to die: Big Tech's billion dollar curse of the free
Thursday 29th December 2022 08:54 GMT
Re: Serves Google right
Where do I start? I guess the first paragraph...
If you have the misfortune to work for a company using Gmail with guessable addresses, and you make the mistake of advertising your current employer on LinkedIn, guess what? I average at least two blind recruiter emails per day that I cannot block. Clearly, they have paid G off to deliver these emails. That, by itself, makes the experience substantially less than acceptable.
Email is neither dated nor a hodgepodge of protocols. Certainly, it shows its age, but if idiots did not INSIST on displaying inline HTTP, no only would I LOVE YOU have remained an urban legend, but the space in our mail boxes would be substantially reduced as well.
Of course, email is not a reliable transport, and anyone who doesn't understand that is an idiot. It was never designed as such, however. So what?
Intel settles to escape $4b patent suit with VLSI
Thursday 29th December 2022 09:04 GMT
Re: "investigate the validity of the company's patents"
This changed, in 1993 or 1994 under Vice President Al Gore's "Reinventing Government" garbage. I cannot be bothered to look up the name. One of the more ballyhooed changes was to "update" the charter of the USPTO from "Issue valid patents" to "Help our customers get patents". At the time, some of us referred to it as "The Lawyer's Full Employment Act", because it was blatantly going to move patent examination into the courts. Because jurors make the very best patent examiners.
Biting the hand that feeds IT
