|
While there is plenty of blame to attach to the IOT manufacturers, it maybe unrealistic to expect them to have the resources of a computing giant to address security and make their devices receive regular updates.
We should probably also consider how to mitigate against such attacks by looking at the Internet infrastructure - essentially blocking the traffic of such attacks before it gets to the service being attacked - and distributing this work within the various routers and servers that form the backbone of the Internet.
I cannot see how this can be realistically addressed any other way.
"If you don't fail at least 90 percent of the time, you're not aiming high enough."
Alan Kay.
|
|
|
|
|
When they're churning out crapware which can be remote accessed using methods almost trivial as telnet root/[no password] over the internet (and I wouldn't be surprised if there's at least one IoPT device that does have that login method enabled) we can to demand that their keyboards be slammed into their fingers until both are shattered into a bazillion pieces.
These aren't primarily sophisticated attacks, they're gross negligence and there should be very real consequences.
Did you ever see history portrayed as an old man with a wise brow and pulseless heart, waging all things in the balance of reason?
Is not rather the genius of history like an eternal, imploring maiden, full of fire, with a burning heart and flaming soul, humanly warm and humanly beautiful?
--Zachris Topelius
Training a telescope on one’s own belly button will only reveal lint. You like that? You go right on staring at it. I prefer looking at galaxies.
-- Sarah Hoyt
|
|
|
|
|
With software houses going for cheap developers with fancy titles from unknown facilities, aided by Google advertising courses "Learn a new skill in a day!" what would you expect?
Actually I hope there will be massive attacks to IoT stuff, possibly with victims and high profile damages. That would, hopefully, restore our industry to one of skill and will to work instead of one of fancy new age marketing.
GCS d--- s-/++ a- C++++ U+++ P- L- E-- W++ N++ o+ K- w+++ O? M-- V? PS+ PE- Y+ PGP t++ 5? X R++ tv-- b+ DI+++ D++ G e++>+++ h--- ++>+++ y+++* Weapons extension: ma- k++ F+2 X
If you think 'goto' is evil, try writing an Assembly program without JMP. -- TNCaver
When I was six, there were no ones and zeroes - only zeroes. And not all of them worked. -- Ravi Bhavnani
|
|
|
|
|
While I agree with you, the sad fact is that they come from countries which have no rules, no morals, and absolutely not a care in the world except for making a profit.
There will be no consequences. It's completely up to us to defend against them.
|
|
|
|
|
Rob Grainger wrote: While there is plenty of blame to attach to the IOT manufacturers, it maybe unrealistic to expect them to have the resources of a computing giant to address security and make their devices receive regular updates. Then they should keep their fingers away from something that...
1) They don't really understand
2) They don't really master
3) They can't keep up-to-date
I mean... If you can't do it well... don't do it.
Rob Grainger wrote: We should probably also consider how to mitigate against such attacks by looking at the Internet infrastructure - essentially blocking the traffic of such attacks before it gets to the service being attacked - and distributing this work within the various routers and servers that form the backbone of the Internet.
Agree... but one thing doesn't justify the other.
M.D.V.
If something has a solution... Why do we have to worry about?. If it has no solution... For what reason do we have to worry about?
Help me to understand what I'm saying, and I'll explain it better to you
Rating helpful answers is nice, but saying thanks can be even nicer.
|
|
|
|
|
The CIA claims to be able to predict social unrest days before it happens thanks to powerful super computers dubbed Siren Servers by the father of Virtual Reality, Jaron Lanier. Next step, Minority Report-style arrests. "You weren't protesting yet, but you were gonna."
|
|
|
|
|
I have run several super-simulations on my super-computers, and I still cannot predict who I believe less: the CIA; or, Jaron Lanier.
«There is a spectrum, from "clearly desirable behaviour," to "possibly dodgy behavior that still makes some sense," to "clearly undesirable behavior." We try to make the latter into warnings or, better, errors. But stuff that is in the middle category you don’t want to restrict unless there is a clear way to work around it.» Eric Lippert, May 14, 2008
|
|
|
|
|
Instead of predicting such days, they should work on avoid them by not provoking them.
M.D.V.
If something has a solution... Why do we have to worry about?. If it has no solution... For what reason do we have to worry about?
Help me to understand what I'm saying, and I'll explain it better to you
Rating helpful answers is nice, but saying thanks can be even nicer.
|
|
|
|
|
Tovalds was full of surprises at last week’s Linaro Connect conference, when he was asked about his favorite chip architecture. He didn’t blink before saying it was x86, not ARM. Torvalds has an affinity for x86 because of the infrastructure and ecosystem
|
|
|
|
|
RISC CPUs are a bit of PITA to develop for, while CISC has a lot more room for automatic processor-dependant optimization.
Of course the elegance of RISC machine code is absolutely unparalleled, but sometimes the assebler codes are exercises in mental contorsionism (not that SSE isn't contorted, just think of the strange oniric sequences of punpckh**, punpckl**, pshuf*,...).
GCS d--- s-/++ a- C++++ U+++ P- L- E-- W++ N++ o+ K- w+++ O? M-- V? PS+ PE- Y+ PGP t++ 5? X R++ tv-- b+ DI+++ D++ G e++>+++ h--- ++>+++ y+++* Weapons extension: ma- k++ F+2 X
If you think 'goto' is evil, try writing an Assembly program without JMP. -- TNCaver
When I was six, there were no ones and zeroes - only zeroes. And not all of them worked. -- Ravi Bhavnani
|
|
|
|
|
Javascript is a weird and wonderful language that lets us write some crazy code that's still valid. It tries to help us out by converting things to particular types based on how we treat them. Interesting. Possibly funny.
|
|
|
|
|
([]+[][(![]+[])[+[]]+([![]]+[][[]])[+!![]+[+[]]]+(![]+[])[!![]+!![]]+(![]+[])[!![]+!![]]])[!![]+!![]+!![]]+(!![]+[][(![]+[])[+[]]+([![]]+[][[]])[+!![]+[+[]]]+(![]+[])[!![]+!![]]+(![]+[])[!![]+!![]]])[+!![]+[+[]]]+(!![]+[][(![]+[])[+[]]+([![]]+[][[]])[+!![]+[+[]]]+(![]+[])[!![]+!![]]+(![]+[])[!![]+!![]]])[+!![]+[+[]]]+(![]+[])[!![]+!![]]
|
|
|
|
|
Yup[^]
Oh, and...[^]
What do you get when you cross a joke with a rhetorical question?
The metaphorical solid rear-end expulsions have impacted the metaphorical motorized bladed rotating air movement mechanism.
Do questions with multiple question marks annoy you???
|
|
|
|
|
Charlie Rose has interviewed the most important people in the world, from Vladimir Putin and Larry David. But last week, he did something unprecedented: he interviewed a robot. Yup, riiiight in the uncanny valley.
|
|
|
|
|
The robot called itself and "artificial intelligence" - so what that makes us humans?
Skipper: We'll fix it.
Alex: Fix it? How you gonna fix this?
Skipper: Grit, spit and a whole lotta duct tape.
|
|
|
|
|
Yahoo Inc disabled automatic email forwarding at the beginning of the month, the Associated Press reported, citing several users. "Don't leave, we're going to be best friends forever." *locks door*
|
|
|
|
|
I'd expected more reactions to this news; without the security-breaches at Yahoo it would not have needed to create a vendor-lock in.
Bastard Programmer from Hell
If you can't read my code, try converting it here[^]
|
|
|
|
|
A large-scale survey of the freelance economy shows that the number of freelance workers is growing quickly, with the number of U.S. freelancers hitting 55 million this year, up from 53 million in 2014 and 53.7 million last year. Most employers encourage me to work from home because of how I dress. I tell them no.
|
|
|
|
|
There is an emerging movement to bring the web back to this vision and it even involves some of the key figures from the birth of the web. It’s called the Decentralised Web or Web 3.0, and it describes an emerging trend to build services on the internet which do not depend on any single “central” organisation to function. Whatever, man. Just gimme my cat pics and we're good.
|
|
|
|
|
Decentralization sounds all good and everything, but it's impossible to keep it that way. Some people want to be in control, and others want to give up control. Just look at democracy. How long does it take for certain...parties, let's call them, to become the dominant force? Just throw some revolutions in there every now and then to swap out those in power.
|
|
|
|
|
Sean Ewington wrote: and it describes an emerging trend to build services on the internet which do not depend on any single “central” organisation to function. Which is only sensible since a single point of failure is always a dragon lying in wait, especially in the Internet world where a company can rise to the sky and fall to the slime in mere years.
Most managers are incompetent and rely on cunslutants (not a refuse). Being incompetent the managers recognize as "good consultants" the one with high marketing skills despite possible incompetence. Those "good consultants" then try to hammer "solutions" from what's available trying to do the smallest work possible for they don't kow how to do it (or don't even understand what kind of work is needed), so they usually end up strictly bound to the one technology and seller they know. And a big name always looks good in front of the other managers, you can always speak of "partnership with Google" while actually you're just a customer, and a small one at that.
DURA LEX, SED LEX
GCS d--- s-/++ a- C++++ U+++ P- L- E-- W++ N++ o+ K- w+++ O? M-- V? PS+ PE- Y+ PGP t++ 5? X R++ tv-- b+ DI+++ D++ G e++>+++ h--- ++>+++ y+++* Weapons extension: ma- k++ F+2 X
If you think 'goto' is evil, try writing an Assembly program without JMP. -- TNCaver
When I was six, there were no ones and zeroes - only zeroes. And not all of them worked. -- Ravi Bhavnani
|
|
|
|
|
den2k88 wrote: especially in the Internet world where a company can rise to the sky and fall to the slime in mere years.
Years? I would say even faster
M.D.V.
If something has a solution... Why do we have to worry about?. If it has no solution... For what reason do we have to worry about?
Help me to understand what I'm saying, and I'll explain it better to you
Rating helpful answers is nice, but saying thanks can be even nicer.
|
|
|
|
|
I was being conservative, takingi nto account giants like Amazon, Yahoo (which is slowly fading away) and Facebook (which doesn't seem to be fading away, alas).
DURA LEX, SED LEX
GCS d--- s-/++ a- C++++ U+++ P- L- E-- W++ N++ o+ K- w+++ O? M-- V? PS+ PE- Y+ PGP t++ 5? X R++ tv-- b+ DI+++ D++ G e++>+++ h--- ++>+++ y+++* Weapons extension: ma- k++ F+2 X
If you think 'goto' is evil, try writing an Assembly program without JMP. -- TNCaver
When I was six, there were no ones and zeroes - only zeroes. And not all of them worked. -- Ravi Bhavnani
|
|
|
|
|
Hiring managers share their sincere reasons to insist you work in the office—and a few tips for how you might convince them otherwise. (And four ways to get hired anyway)
|
|
|
|
|
I work a lot with specialized hardware and often have to go in the workshop to test on the complete machines so I couldn't but I really wish I could. It would save me 130€ / month and 3 hours/day.
GCS d--- s-/++ a- C++++ U+++ P- L- E-- W++ N++ o+ K- w+++ O? M-- V? PS+ PE- Y+ PGP t++ 5? X R++ tv-- b+ DI+++ D++ G e++>+++ h--- ++>+++ y+++* Weapons extension: ma- k++ F+2 X
If you think 'goto' is evil, try writing an Assembly program without JMP. -- TNCaver
When I was six, there were no ones and zeroes - only zeroes. And not all of them worked. -- Ravi Bhavnani
|
|
|
|