>This is what everyone misunderstands. The Developer ID code signing program is not analogous to web certs. The usage of these certs is entirely different.
If a web cert gets revoked a browser won't accept it when making a connection to a domain/server anymore even if they previously did (unless you make it). If an app signing cert gets revoked the OS won't run a binary signed with it anymore even if it previously did (unless you make it). Sounds similar enough to me, minus expiry handling.
Revocation is indeed extremely destructive and should only used by Apple on their own accord against malware but I don't see why a dev themselves shouldn't be able to revoke their own cert without having to go back and forth with the Apple security/support team to have to try to convince them that the issue is severe enough.
The main and basically almost only reason where I see developer side revocation be used is if their keys or account have been (possibly) compromised and therefore there's a chance of it being used for malware. Time can be of big importance in a situation like that too. As a user I absolutely want Apple to revoke certs when requested by the dev themselves without triple verifying if they are really totally actually absolutely sure. I consider the upsides of that to outway the downsides.
While a binary from a dev that has been installed for a long time will be less likely to be malware but not enough to be exempt from that.
Users that dislike OSCP can disable it fully on their side if they want or locally sign anything specific they do trust. Devs didn't ask for it but having developer IDs and application singing seems like a pretty sensible thing to me in an end user OS used by the average consumer.
I don't think so, even if it was only stored that way the government will still have (name, dob, hospital) info for most citizens saved in some db/list making it easy to recreate the link back to the real person with pretty high accuracy I would assume.
"Due to a bug, passwords were written to an internal log before completing the hashing process. We found this error ourselves, removed the passwords, and are implementing plans to prevent this bug from happening again."
The article that started most of the discussion listed the first publicly seen patches at middle of november from Microsoft, and one would assume that a bug that could cause major performance impacts like this makes its way upstairs pretty quickly to Intel.
Why? They are already running their own unsigned DLL injected code that can do anything they want. Even if the OS wouldn't allow it to launch an unsigned .exe, any malware can just be shipped in that DLL as easily.
It's really easy nowadays (if you have the right hardware), you can directly install the official combo update and then it usually only requires one extra reboot to update the graphics driver and possibly repatch sound driver for me, but that whole thing is automated and takes 2 mins extra for every point update every 2 months.
I've been running a 4790k + 980Ti since 10.9 came out, always kept it at the newest release and it's given me much less trouble than Windows in that timeframe.
As long as you have the typical well supported desktop hardware it works really well (intel + nvidia or select amd cards), only if you want it on a laptop or officially unsupported hardware then it quickly becomes a giant pain.
Yeah amazon cloud drive is pretty popular on /r/DataHoarder/, quite a few people have 10TB+ on it, some even a lot more.
Personally I have close to 7TB of backups and personal video footage stored, everything encrypted, never had any issues.
However there's always the danger of them pulling a onedrive at some point in the future and reverting from unlimited back to something like 1TB if people actually use it.
I love BetterTouchTool, especially since it allows setting everything on a per application basis. I use it to have the same keyboard shortcuts for navigating tabs in everything, like browsers, iterm, finder, IDEs and more, it's so nice to have consistent shortcuts.
It's also really practical for programs that don't even support custom keybinds or when running multiple instances at the same time like multiple firefox profiles. No need to set the new shortcuts in every profile, they just always work on every running firefox instance.
It also has nice features for window snapping and resizing, I have two of my side mouse buttons mapped to window move and window resize respectively, whenever I hold one of them down the window under the mouse pointer will just move/resize accordingly until I release the mouse button, including snapping to edges and all that nice stuff.
BTT is one of apps I miss most whenever I use windows, makes customizing the user experience so much easier.
For laptops I agree, lots of pain, but for desktops I've never had any major issues with the last 3 Intel+Nvidia PCs I've had over the years, always worked really well.
For me the only downside really is the extra reboot after an OS update every 2 months to update nvidia driver and repatch sound kext.
Should be possible with DLL injection or function hooking since I would guess they just check the USB id and then use the normal mic access functions so you would only have to intercept 1 or 2 calls.
Onedrive also has a ton of other issues like not allowing various characters in filenames: # % * : < > ? / \ | "
As well as a maximum file size of 10GB and maximum total path length of 256 characters.
I was using onedrive for a while simply because it used to be by far the cheapest with 5x10TB for 60 Euro/year with the family pack which is now being reduced to 5x1TB for the same price.
But at roughly the same price as the competition and the windows integration seemingly not being very good either I can't see any reason to use onedrive apart from just getting it with Office365.
I guess it might help with security of certain thins like full disk encryption. I think there are already devices used by law enforcement or hackers that that can steal disk encyption keys or information just by plugging them into any port with DMA access like firewire or express card. I would assume this could prevent that.
I think it's ment in the sense that power users are by far the most likely people to disable telemetry or "Send usage data to help improve this software" functions, if such a setting is offered.
Especially if the option is buried somewhere deep in the settings menu. Also the most likely users to have adblockers, though that's getting more and more common.
There are a lot of i3's with ECC support, even some Pentiums, Celerons and Atoms have ECC support. I see them used often in cheap NAS builds, seems just that specific one in your link didn't have it, not i3's in general.
I'm really curious about building a virtual memory palace for VR. Seems there would be many possibilities to make memorizing more effective.
Some common techniques like following a predetermined path through a palace and imagining diffrent unique objects and scenes at fixed locations along that path could be really nicely visualized.
I would think you could benefit a lot from actually beeing able to explore and fully take in a memory palace while feeling like you're actually present with VR.
Usenet is perfect for that since binary newsgroups for piracy have gotten really popular over the last few years. You can basically use it as a reasonably reliable key-value store that lets you store 300kb to 1mb blobs. Add some encryption and parity and you've got yourself nearly unlimited storage, even for free if you use trial accounts from certain providers.
To get reliable and free storage, photo hosting is usually the easiest way. Flickr offers 1TB, picasa/g+ offers unlimited storage with some hidden quoats. Everything that allows lossless photos lets you store arbitrary data. Depending on how careful you wanna be you can store hundreds of GBs per account.
Email attachments used to be a great way a while ago but nowadays using multiple gdrive/dropbox/onedrive accounts is much easier.
They are easy to create in large numbers (especially if your ISP has dynamic IPS) and as long as you're even a little bit careful, nearly impossible to ban. Add some redundancy across different services to that and a $2 VPS that gives you tons of upload bandwidth and you've got yourself as many TBs of free,fast and reliable online storage as you want.
I spent so much time as a teenager with no money and some python skills coding storage solutions like that. I'd say it was to store movies and tv shows for myself but in retrospect I mostly did it because it was so much fun to develop.
If a web cert gets revoked a browser won't accept it when making a connection to a domain/server anymore even if they previously did (unless you make it). If an app signing cert gets revoked the OS won't run a binary signed with it anymore even if it previously did (unless you make it). Sounds similar enough to me, minus expiry handling.
Revocation is indeed extremely destructive and should only used by Apple on their own accord against malware but I don't see why a dev themselves shouldn't be able to revoke their own cert without having to go back and forth with the Apple security/support team to have to try to convince them that the issue is severe enough.
The main and basically almost only reason where I see developer side revocation be used is if their keys or account have been (possibly) compromised and therefore there's a chance of it being used for malware. Time can be of big importance in a situation like that too. As a user I absolutely want Apple to revoke certs when requested by the dev themselves without triple verifying if they are really totally actually absolutely sure. I consider the upsides of that to outway the downsides.
While a binary from a dev that has been installed for a long time will be less likely to be malware but not enough to be exempt from that.
Users that dislike OSCP can disable it fully on their side if they want or locally sign anything specific they do trust. Devs didn't ask for it but having developer IDs and application singing seems like a pretty sensible thing to me in an end user OS used by the average consumer.