Beta
×

Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

Comments

top

Google To Encrypt All Keyword Searches

You're All Wrong Re:Dumb question ... (224 comments)

> NSA would need a CA under their control

What makes you think they don't have a dozen already?

1 year,25 days
top

Linus Responds To RdRand Petition With Scorn

You're All Wrong Re:you have the source (566 comments)

MOV with an immediate value is even worse! Outlaw them all!

Having said that - sometimes the kernel does have a right to prevent user space applications shooting themselves in the foot (e.g. trapping out-of-bounds memory accesses), it is possible to make an argument that - if the intel generator were to proved to be compromised - that the kernel should intervene and prevent it.

Do you think a kernel that can intercept and correct FDIV calls on broken chips should let userspace blindly just receive unwanted results from said instruction?

In the rdrand case, the userspace program wants a random number. If rdrand is buggy, and does not return that, then how is that different from the FDIV case?

about a year ago
top

Linus Responds To RdRand Petition With Scorn

You're All Wrong Re:you have the source (566 comments)

And if you want to prevent the kernel from ever being started that way just compile it out by disabling this Kconfig option with make-menuconfig, or similar:

config ARCH_RANDOM
                def_bool y
                prompt "x86 architectural random number generator" if EXPERT
                ---help---
                    Enable the x86 architectural RDRAND instruction
                    (Intel Bull Mountain technology) to generate random numbers.
                    If supported, this is a high bandwidth, cryptographically
                    secure hardware random number generator.

No need to delve into C at all.

about a year ago
top

Ferrari's New Car Tech Idea: Make Car Go Really Fast

You're All Wrong Re:202 mph (226 comments)

Any *street legal* Ferrari, definitely.

about a year ago
top

Cells Reprogrammed In Living Mice

You're All Wrong Re:Now we can create (29 comments)

And after he dies, several thousand people make a claim to his estate...

about a year ago
top

Ferrari's New Car Tech Idea: Make Car Go Really Fast

You're All Wrong Re:202 mph (226 comments)

Then buy a ZR1 that costs 1/20th of a Veyron, and can still go faster than this Ferrari.

about a year ago
top

Ask Slashdot: Are 'Rock Star' Developers a Necessity?

You're All Wrong Re:They're worth it in a startup (or company start (356 comments)

Agree. I have a similar perspective. I was once hired to do the work of half a dozen people. I had to once explain to my boss's boss's boss that my negative productivity (as measured by "metrics") was because I was *undoing* the work of half a dozen people. The negative productivity programmer does exist, and can be lethal in quantity.

about a year ago
top

Ask Slashdot: Are 'Rock Star' Developers a Necessity?

You're All Wrong Re:Yes (356 comments)

So very wrong.

One guy *can* be worth 10 numbnuts, but GPP explicitly said "average" not "bottom of the heap". The source you link to even supports the fact that the top of the heap are only about two and a bit times as productive as the average. Add to that the fact that prima donnas can be positively damaging to anything apart from their own personal pet projects, and the "Rockstar" really isn't that great a deal at all. The only thing one 150k a year guy is good for is one-man projects.

I'm lucky to work with a bunch of right-hand-side-of-the-bell-curve engineers who all like cooperating and sharing information, and are never afraid to ask for additional input - nobody thinks of themself as, or wants to be, a rockstar, and that's about the best scenario you can hope for.

about a year ago
top

SSD Failure Temporarily Halts Linux 3.12 Kernel Work

You're All Wrong Re:Eggs, Basket (552 comments)

His laptop breaking brought about 0.0001% of the actual work on linux to a halt, if that. Every linux developer continued developing as normal. Every code reviewer continued reviewing code as normal. Every subsystem maintainer kept maintaining their subsystem as normal. Every automatic test built robot kept automatically doing build tests as normal. People who desperately needed the patches that Linus was going to push put, if they really were that desperate, would have just pulled them from linux-next, or the relevant subsystem maintainer's tree, or, *most likely*, would already have them!

about a year ago
top

SSD Failure Temporarily Halts Linux 3.12 Kernel Work

You're All Wrong Re:Really? (552 comments)

Are you attempting to claim the prize for the person with the least understanding of the Distributed Source Code Control System in use?

There was absolutely no code on his system that wasn't on between dozens and thousands of other systems depending on its age.

Just read TFA: "I had pushed out _most_ of my pulls today". His "pulls" are code that is *elsewhere*. He's just a conduit (and gatekeeper) between a few dozen elsewheres and a server with a fat pipe. And by the construction of the system, it really shouldn't matter how those pulls ordered. (If there'll be a merge conflict one way round, there'll be a merge conflict in other permutations too.)

about a year ago
top

GNU MediaGoblin 0.5.0 "Goblin Force" Released

You're All Wrong ftpd (42 comments)

heck, get all modern and fancy, and serve that directory of files using httpd instead.

Yet another "yet another..." ...

about a year ago
top

Samsung's Smart Watch Coming September 4th, Without Flexible OLED Screen

You're All Wrong Re:Dick Tracy? (89 comments)

Sure, and it's got an 85" 4K screen too, I bet you didn't expect that!

about a year ago
top

Silicon Valley's Loony Cheerleading Culture Is Out of Control

You're All Wrong Re:someone's gotta start the show (175 comments)

However, if you look at even successful IT companies, well established ones, you'll find that 90% of their individual projects fail (many fail to even make it to mark it, some flop once they're there). If the startup is focussed on one single thing, then its failure rate is just the same as any other company's, it's just that the whole company fails when that single product/service fails.

I guess I should be happy that I'm at about 2/15 success rate, it's just a shame that the technically better products weren't the ones that were a hit in the market.

about a year ago
top

Researchers Reverse-Engineer Dropbox, Cracking Heavily Obfuscated Python App

You're All Wrong Re:Python? Really? (242 comments)

Fuck, that woooosh just blew my wig off!

about a year ago
top

Researchers Reverse-Engineer Dropbox, Cracking Heavily Obfuscated Python App

You're All Wrong Re:Python? Really? (242 comments)

I hope your sarcasm is understood, it's a dangerous technique to use on the internet.

However, there's an interesting twist to the pcode vs. native code dichotomy, from reverse engineering standpoint, as anyone who's well versed in the brain-mangling line noise that calls itself the IOCCC will know. One of the best obfuscations is to embed an interpreter into your code, and then do all the hard work in the bytecode.

about a year ago
top

Researchers Reverse-Engineer Dropbox, Cracking Heavily Obfuscated Python App

You're All Wrong Re:Obfuscated python code? (242 comments)

Reading the paper, googling for the debug hash, lead to this from 2012 which covers a lot of the same ground:

http://archive.hack.lu/2012/Dropbox%20security.pptx
"A critical analysis of Dropbox software security", Florian LEDOUX

about a year ago
top

Researchers Reverse-Engineer Dropbox, Cracking Heavily Obfuscated Python App

You're All Wrong Obfuscated python code? (242 comments)

Sounds remarkably like security through obscurity to me. With the predictable outcome.

You have no right to feel secure if you only think you're secure assuming noone else examines your source code.
http://en.wikipedia.org/wiki/Kerckhoffs%27s_principle

about a year ago
top

Lord Blair Calls for Laws To Stop 'Principled' Leaking of State Secrets

You're All Wrong Re:facilitating (395 comments)

I can't find a reference to it now, but I'm pretty sure that possession of a London map has been considered as evidence that you might be a terrorist.

about a year ago
top

Lord Blair Calls for Laws To Stop 'Principled' Leaking of State Secrets

You're All Wrong Re: Government vs terrorists (395 comments)

False. Things which were true in the past, but not now, are false. He is not a top ranking policeman any more than George Bush is the US president.

For reference, he's the cunt who tried to prevent an investigation into the shooting of an innocent Brazillian electrician in cold blood by his poorly-trained (but apparently the best you've got) underlings who thought he was a middle-eastern terrorist bomber.

Everything this man says about secrets is tainted. He's Captain Coverup.

about a year ago

Submissions

You're All Wrong hasn't submitted any stories.

Journals

You're All Wrong has no journal entries.

Slashdot Login

Need an Account?

Forgot your password?