tag:blogger.com,1999:blog-60217973379974662342024-02-01T20:59:52.734-08:00ThoughtsSoopahManhttp://www.blogger.com/profile/16419039735989904700noreply@blogger.comBlogger31125tag:blogger.com,1999:blog-6021797337997466234.post-86405597514695786282015-03-05T11:12:00.001-08:002015-03-05T11:12:29.051-08:00Limitless LEDs - Not So LimitlessI recently leapt into the wifi LED trend/fad with the cheapest wifi-controller LED replacement bulbs I could find, from <a href="http://limitlessled.com/">limitlessled.com</a>. The most important take away is that they are not, in fact, limitless, but at their price they may still be exactly what you're looking for.<br />
<br />
The Pros are shorter than the Cons, but not because these are bad lights - pros are just uncomplicated and don't require any workarounds. That said they clearly need work - this seems to be version 2 or 3 for them. They need a v3 or 4 before I'd recommend them without any "buts," and before I'll buy more.<br />
<br />
Pros:<br />
<ul>
<li>You can fade them from ~10% to 100% brightness with either your phone or a remote that comes with the lights. Judging by documentation it sounds like this is 1w-9w of power usage.</li>
<li>They can be a short list of colors, though they're dimmer than white mode; those colors are also dimmable.</li>
<li>They offer both cool white and warm white models - cool is flat white and warm is incandescent-style white.</li>
<li>They're programmable via a Web API.</li>
<li>If you really know what you're doing you can manipulate them across the internet, by punching a hole in your router's firewall.</li>
<li>The lights don't get very hot.</li>
<li>They fit a standard 40-150w US bulb fitting.</li>
<li>They're about the same size as normal bulbs so fit isn't an issue.</li>
<li>Their support staff (maybe the owner/inventor?) is very responsive via email.</li>
<li>They don't break easily - all 4 of the ones shipped to me have worked without issue.</li>
<li>The dimming is fairly precise, so you can dim to the exact lighting conditions you need - for example low ambient light while watching a projector.</li>
<li>You can turn them off from bed, via your phone, when you realize you forgot to turn the lights off.</li>
</ul>
<div>
Cons:</div>
<div>
<ul>
<li>All of the light is projected forward, in a 180 degree hemisphere pointing out of the top of the bulb.</li>
<li>The color options are very limited:</li>
<ul>
<li>The color options are all fully-saturated - you basically can have gaudy red, orange, yellow, etc, and no less-saturated colors like a warm white.</li>
<li>Internally there are red, green, blue, and white LEDs, but you can't turn them on at the same time except in the predefined patterns the designer came up with. The whites can't turn on when any of the color LEDs are on.</li>
<li>This path around the saturated color wheel is pretty bumpy, with cyan (blue-green) being near-white, and yellow being fairly close as well, while red is quite dim, as is pure blue.</li>
<li>Internally there are 3 of each color (R, G, B) and 8 white LEDs. This means White Mode is much, much brighter than most colors. To get a well-lit room you need 2-3x the bulbs in color modes that you would in white mode, which further strands the RGB function as a gimmick.</li>
</ul>
<li>If you want to use these from the wider internet, rather than connected to your wifi router, you need to punch a hole in your firewall and discard security. Anyone with a basic understanding of the product can then manipulate your lights from anywhere on the internet. <a href="http://www.limitlessled.com/#qa-faq24">The FAQ on their site</a> is disingenuous about this: "with 128bit encryption access is very secure." Yes... but that's the encryption on your home wifi signal. Once you punch a hole in your firewall that encryption's irrelevant.</li>
<li>You can't control more than 4 bulb "groups" at a time, and the groups are defined by tapping a Group button on the remote within 3 seconds of turning on a bulb via a light switch. If you have more than 4 rooms to light, this puts you in an awkward spot.</li>
<ul>
<li>You can apparently resolve this by buying a second or third Wifi Bridge, although I'm skeptical of the resulting wifi noise levels in such a scenario.</li>
<li>Because of the on-then-press pattern, it would be difficult to mix and match groups to make up for the RGB limitations.</li>
</ul>
<li>The Bulb Groups are Per-Controller, so the Remote (a Controller) seems to have one idea of what a group is, and each Wifi Bridge another. To use both the remote and your phone you need to go through the Group assignment process twice.</li>
<li>You can't use bulbs individually/outside a Group so the Group Assignment process is mandatory, and probably confusing for new users.</li>
<li>The wifi setup process is poorly documented and quite difficult. It's unlikely most customers would be able to figure it out. The manual isn't really for the hardware that arrives, nor is it for the app you'll find online (it appears to be for a much older version), and leaves out a lot of critical details. The app and hardware have some issues that if documented wouldn't be so bad:</li>
<ul>
<li>To access the lights from your phone you setup a Wifi Bridge. The Bridge is very confusing.</li>
<li>The app does a terrible job of stepping you through the necessary steps, which are:</li>
<ul>
<li>Connecting to the Bridge as a Router</li>
<li>Rebooting it into a different mode where it's only accessible via the app talking through your Router, and no longer offering itself up directly as a router.</li>
<li>Accessing it via the app once your phone's wifi is talking to your router, and the Bridge has finished booting, and the app... gets around to noticing this.</li>
</ul>
<li>When the Bridge switches on, it does something really strange. It registers with the DHCP provider on your router ~100 times, consuming all the dynamic IPs on it, before finally settling on one. This can take several minutes, during which it's unavailable. If you're a new user with no documentation trying to figure out what you're even supposed to be doing here, this period of unavailability will lead you to believe it's simply not working.</li>
<li>Any mistake with the setup process requires Reset to Hardware Defaults on the Bridge, which is a very hard to access recessed button needing a paperclip - I don't know about you but I don't own paper clips. I had to press this button ~10 times to sort out exactly what ways the Bridge was failing. The button should be a simple button.<br /> </li>
</ul>
<li>The API is a bit of a false lure. Things like Disco Modes and color control give the impression the lights hold a lot of potential waiting to be unlocked by usage of the API, but it turns out those limited colors and modes are in the actual bulbs, and can't be modified without the manufacturer coming out with better lights that have solved these problems and thought this through.</li>
</ul>
<div>
All in all I am still glad I bought these. I have wirelessly dimmable lights in my bedroom and living room. That means I can get just the right light level for watching TV or work. I can increasingly dim the lights when it's getting time to pass out, which surprisingly works better at getting me to sleep on time than it seems it should. And I can tap a button on my phone to turn all the lights off when I'm about to fall asleep, or, if I wake up and realize I didn't turn them off, I don't need to get up to resolve that. Finally, my power usage is down from 60w to at most 9w on each bulb - less when dimmed.</div>
<div>
<br /></div>
<div>
I likely won't be buying more Limitless LEDs until the following issues are fixed:<br />
<ul>
<li>Lights whose individual LEDs (both white and color) can be manipulated by the API, instead of fixed patterns.</li>
<li>A wireless bridge that can handle infinite, or practically-infinite, lights, individually, Groups should be a layer on top of that handled in outside software, not something I'm locked into when setting up the lights. If I want to group the Living Room and Kitchen for now and later the Kitchen and Garage, I should be able to, even if those rooms each have 4 bulbs.</li>
<li>The Bridge setup process should be at least documented and ideally, greatly improved.</li>
</ul>
<div>
Some nice to haves:</div>
</div>
</div>
<div>
<ul>
<li>It would be nice if there were more models. In particular if the bulb can do 9w 800 lumens, why not offer one that can do 27w 2400 lumens? They're dimmable so it's not like that brightness level would be mandatory for buying the bulb.</li>
<li>It'd be nice if there were LED strips, omni bulbs (not just the current 180), and spotlights that spoke the same protocol as the rest of the bulbs.</li>
</ul>
</div>
SoopahManhttp://www.blogger.com/profile/16419039735989904700noreply@blogger.com6tag:blogger.com,1999:blog-6021797337997466234.post-33354324805285833002015-02-17T09:28:00.002-08:002015-02-17T09:29:00.472-08:00The American Mafia<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhWW0CN90rgwAH5RAIM9CxZU4fq4_1k-1C7AewzO1Y8YqFTqL7Hp3TQzFljo9EAiNJ6kvNVTYxucfpPDC72-AVG50nOXV5sLazSWYgzTuM6v1O5wHkBTAXcdUoc5oZWMgjzYFiRlp-CGbJr/s1600/628x-1.jpg" imageanchor="1" style="clear: right; float: right; margin-bottom: 1em; margin-left: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhWW0CN90rgwAH5RAIM9CxZU4fq4_1k-1C7AewzO1Y8YqFTqL7Hp3TQzFljo9EAiNJ6kvNVTYxucfpPDC72-AVG50nOXV5sLazSWYgzTuM6v1O5wHkBTAXcdUoc5oZWMgjzYFiRlp-CGbJr/s1600/628x-1.jpg" height="213" width="320" /></a></div>
When people think "Mafia" they think men in suits firing machine guns, but the real mafia is about making millions by establishing a pseudo-government which collects taxes in the form of bribes, corruption, over-priced rent and protection payments. Italy's mafia, Afghanistan's Taliban, and Pakistan's ISI all operate this way, and by this definition, the US has a mafia of its own, that occupies a portion of Wall Street.<br />
<br />
The good news is some portion of US mafia went to prison. The bad news is they got right back out, seemingly due to mistakes made by the government prosecution, maybe due to bribes. More bad news: The case shows clear evidence of the convicts bribing government officials, including former New Mexico Governor Bill Richardson for $100,000, in that case in exchange for $1.5million of New Mexico's money.<br />
<br />
There are too many schemes employed by those in the trial to cover here - see the article - but generally, someone would hire them to invest money, and they'd take a large chunk of it for themselves. To keep states hiring them, they'd bribe politicians - and by bribe I mean fund their SuperPACs, which the US defines as legal and not a bribe.<br />
<br />
The list of things we need to change to stop this secondary government to operate is pretty long. That politicians require campaign funding (bribes) to operate is a major factor. Another is the way US states continue to award contracts worth more than $1 million to a single vendor, in a confused belief it will allow them to bid it out and get the best deal. Inevitably any large contract from a single provider leads to incredible corruption, because even a .1% kickback on that sort of contract is worth 10s of thousands of dollars, enough to get a lot of iffy people paid off.<br />
<br />
Maybe the worst part is that everyone involved in all the schemes uncovered continue to operate banks and other parts of Wall Street - they didn't lose their jobs and once they escape prison they're often promoted or given a bonus. The author of this article is clearly frustrated when he proposes we have them all killed. But we should at least ban them from the Finance industry, politics, and lobbying.<br />
<br />
<a href="http://www.rollingstone.com/politics/news/the-scam-wall-street-learned-from-the-mafia-20120620?page=2">Rolling Stone: The Scam Wall Street Learned from the Mafia</a><br />
<br />
<a href="http://www.bloomberg.com/news/articles/2013-12-02/ex-ge-bankers-win-reversal-of-convictions-for-bid-rigging">Bloomberg: Bankers Win Reversal of Convictions for Bid Rigging</a>SoopahManhttp://www.blogger.com/profile/16419039735989904700noreply@blogger.com3tag:blogger.com,1999:blog-6021797337997466234.post-58740862339064858192015-01-11T10:48:00.002-08:002015-01-11T10:48:33.519-08:00Adventures in E-Voting Precede State ExperimentsAlthough voting for Congress remains behind the times, the Academy Awards began experimenting with e-voting in 2013. Unfortunately, it didn't go very well. They set the security on it so high that many members couldn't figure out how to prove who they were and login. Then again, the median age of its 5765 members is 62.<br />
<br />
<table align="center" cellpadding="0" cellspacing="0" class="tr-caption-container" style="margin-left: auto; margin-right: auto; text-align: center;"><tbody>
<tr><td style="text-align: center;"><a href="http://blog.theassociation.tv/wp-content/uploads/old-fart-at-computer-sized-down.jpg" imageanchor="1" style="margin-left: auto; margin-right: auto;"><img border="0" src="http://blog.theassociation.tv/wp-content/uploads/old-fart-at-computer-sized-down.jpg" height="320" width="267" /></a></td></tr>
<tr><td class="tr-caption" style="text-align: center;">Your average Oscars E-Voter doing the deed</td></tr>
</tbody></table>
<br />
Despite some older members predicting most people would give up and not vote, it actually turned out to be their highest voter turnout on record. The 2014 e-voting process went by without complaint, so they appear to have fixed the below issues.<br />
<br />
The e-voting process involved a 6 step process:<br />
<br />
1) Pay your dues, which ties your credit card and that verification system to you.<br />
<br />
2) Receive a Voter ID number in the mail, which adds your address to the level of verification.<br />
<br />
3) User your Voter ID to go online and setup a Voter Password, with numerous annoying requirements like caps, special characters, etc You also enter your cellphone number.<br />
<br />
4) When the voting period opens, login with your Member Password, then your Voter Password.<br />
<br />
5) Once you enter the second password, you receive a text with a security code. You then type that in, and finally, can vote. This would be the final step, but it seems most members with trouble forgot their second password.<br />
<br />
6) The reset password process was very badly designed. To get a reset you had to wait about 24hrs.<br />
<br />
On step 3, it's long been shown complexity requirements tend not to make passwords more secure. Only long-length requirements like 12+ chars with no max length have been shown to significantly improve security of a password; complexity requirements usually encourage more patterned passwords, which make them easier to hack, and more passwords forgotten.<br />
<br />
In step 3, they also complained that the password box is a standard password box, with asterisks hiding what you're typing. I have to say I agree. The idea that most people are passwording into things in someplace where someone could be looking over their shoulder, stealing their password is a poor assumption. Hiding passwords should be opt-in, not assumed, and if you want a long, complex password - you've gotta make it easy to see that long, complex gobbledygood you're typing in.<br />
<br />
Step 2, where the voter is notified by paper mail of an electronic voting system seems to be an unnecessary inconvenience; if they were texted or emailed a link, they could skip this and potentially the second password, at least if you could reasonably believe/verify the person you were texting/emailing was the right person.<br />
<br />
But, by involving their physical address, the Oscars' system provides some insight into what would be involved in e-voting in local and federal elections, since legally all that's required to prove you're you in US elections is your address. A ballot is sent to your home, or you provide your address at a polling place, good enough - we believe you. Given the low legal burden, this e-voting system - with some simplifications - could plausibly be used in US elections. Worth watching to see if they cope with any fraud or hacks.<br />
<br />
<a href="http://www.npr.org/2013/01/03/168560518/e-vote-hiccups-delay-oscar-balloting">http://www.npr.org/2013/01/03/168560518/e-vote-hiccups-delay-oscar-balloting</a><br />
<br />
<a href="http://www.hollywoodreporter.com/race/oscars-e-voting-problems-worse-406417">http://www.hollywoodreporter.com/race/oscars-e-voting-problems-worse-406417</a><br />
<br />
<a href="http://www.huffingtonpost.com/2013/01/10/oscar-voting-concerns_n_2451160.html">http://www.huffingtonpost.com/2013/01/10/oscar-voting-concerns_n_2451160.html</a><br />
<br />
<a href="http://www.hollywoodreporter.com/race/audience-heckling-disneys-legacy-a-669305">http://www.hollywoodreporter.com/race/audience-heckling-disneys-legacy-a-669305</a>SoopahManhttp://www.blogger.com/profile/16419039735989904700noreply@blogger.com1tag:blogger.com,1999:blog-6021797337997466234.post-50689736606296956762014-11-23T07:55:00.000-08:002014-11-23T08:13:41.367-08:00Why Conservatives often see Liberals and Scientists as HereticsA little food for thought, on why Conservatives often see Liberals and scientists as heretics.<br />
<br />
Two years ago, arsenic was not in the news. Today, almost every day there's a new article about dangerous arsenic levels making something poisonous and unsafe:<br />
<br />
http://www.9news.com/story/money/personal-finance/consumer/2014/11/19/rice-arsenic/19286469/<br />
<br />
You can hear conservatives reading this and going, "Really, liberals/scientists? You're saying rice is bad too? Why not just ban everything?" And why now, and why so suddenly - how was rice fine a year ago but TODAY it's dangerous?<br />
<br />
So now let's walk back from the bristling irritation of reading a headline, to what happened.<br />
<br />
The FDA and USDA have been avoiding action on arsenic for decades because the agricultural industry has been lobbying to delay it.<br />
<br />
http://www.publicintegrity.org/2014/06/28/15000/how-politics-derailed-epa-science-arsenic-endangering-public-health<br />
<br />
It's not that arsenic suddenly became poisonous, or suddenly appeared in people's drinking water and food - it's that it's always been in fertilizer, we've been using way too much of it, and arsenic levels have been steadily rising. Worse, the agricultural lobby has been bribing politicians and suing to delay telling the basic truth: That too much arsenic is poisonous, and it's in a lot of agricultural water because of these excessive uses of fertilizer.<br />
<div class="separator" style="clear: both; text-align: center;">
<br /></div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiqsvNPdCm6n9eX4B6HjrfTPBZttOwa3sNOkelDVn71wEpf0BGdpueBdIjC6xAJz6lEVRbDPJ3E6M3hPHBs4OtX_7xc0rAjZ8O4xuccsfIbeg7AoeZO_pgZzSQaYDEY8btDd2p063Lzp3Lc/s1600/ss.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiqsvNPdCm6n9eX4B6HjrfTPBZttOwa3sNOkelDVn71wEpf0BGdpueBdIjC6xAJz6lEVRbDPJ3E6M3hPHBs4OtX_7xc0rAjZ8O4xuccsfIbeg7AoeZO_pgZzSQaYDEY8btDd2p063Lzp3Lc/s1600/ss.png" height="320" width="640" /></a></div>
<br />
<br />
OK, but aren't you, liberals and scientists, once again, anti-business? Aren't you accusing businesses of being evil? This sure sounds like some anti-corporation conspiracy theory. We're tired of that, say conservatives. Well - sort of.<br />
<br />
Rice is cheap, so it's made cheaply: with way, way too much fertilizer, and in many cases, with waste water which contains even more arsenic from fertilizer or fracking and drilling. You'd never grow food for yourself that way, but these growers know you aren't checking on them when you buy a bag of rice, and they know you will buy that other bag of rice if they don't have the lowest price. So, they can do this to you, or go out of business.<br />
<br />
So it's not that these businesses are evil. It's that they're slaves to our poor market forces. The Invisible Hand of Capitalism works best with a consumer that considers EVERY quality of the product before buying. But most consumers are very poorly informed about what they're purchasing, other than price - and a blind consumer hurts the market. Arsenic in drinking water, foods, and rice, is a classic case of blind buyers shaking all the goodly growers out because their prices are too high, and leaving only the ones who over-fertilize behind to dominate the market.<br />
<br />
Of course there is SOME evil here you can't avoid: When agriculture lobbies the government to keep them from saying they're poisoning you and your children, it's hard to paint that in a good light. It's just plain evil.<br />
<br />
http://www.scpr.org/programs/reveal/2014/07/04/38205/politics-profits-delay-action-on-arsenic-in-drinki/<br />
<br />
So, from someone who leans left and prefers science over popular politics, if you happen to lean right, consider the case of arsenic next time you hear liberals upset over the latest thing in the news. Sometimes they really are being idiots. Sometimes they're just forcing society to finally be honest.SoopahManhttp://www.blogger.com/profile/16419039735989904700noreply@blogger.com0tag:blogger.com,1999:blog-6021797337997466234.post-87455015040532966302014-10-26T10:37:00.001-07:002014-11-23T08:14:05.395-08:00Why Trader Joe's Decision to Cut Part-Time Worker's Healthcare is the Right Thing to Do<div class="separator" style="clear: both; text-align: center;">
<a href="http://i2.cdn.turner.com/cnn/dam/assets/131010161128-trader-joes-workers-story-top.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="http://i2.cdn.turner.com/cnn/dam/assets/131010161128-trader-joes-workers-story-top.jpg" /></a></div>
<br />
Trader Joe's is generally considered one of the best national grocers in terms of how they treat their workers. Historically if you worked just 18 hours a week there, you'd get full benefits. Under Obamacare, covering these workers is not required, and <a href="http://politicalticker.blogs.cnn.com/2013/10/10/fact-check-part-time-workers-at-home-depot-and-trader-joes-harmed-by-obamacare/">Trader Joe's has cut the health benefits of part-time workers</a>. Normally this would be a political football for the right-wing political sphere, saying Obamacare has caused a reduction in care. But there's more to the story.<br />
<br />
Trader Joe's is providing these workers a $500 healthcare stipend instead, and asking workers to go and get care on their own. This means not only do workers get healthcare - even if they only work a few hours, nevermind 18 - they also get it decoupled from Trader Joe's, meaning they can leave for another company, start their own business - whatever they elect to do, all with no interruption in healthcare, and more importantly, all without the scary prospect of losing their care altogether for leaving.<br />
<br />
Depending on your income the subsidies built-in to Obamacare may get a TJs part-time worker healthcare for as low as $27/month, certainly within the $500 stipend. Obamacare has unquestionably been pivotal in this new policy.<br />
<br />
Trader Joe's has taken an unusually generous benefits plan and made it even more generous - by making it easier for their workers to leave for that next stepping-stone.SoopahManhttp://www.blogger.com/profile/16419039735989904700noreply@blogger.com0tag:blogger.com,1999:blog-6021797337997466234.post-21877843130843776802014-10-05T15:10:00.002-07:002014-11-23T08:14:05.386-08:00When Poverty Kills Children<blockquote class="tr_bq">
<span style="font-size: large;"><span style="font-family: Georgia, Times New Roman, serif;">“I just shot my daughter and shot all my grandkids. And I’ll be sitting on my steps, and when you get here, I’m going to shoot myself.”</span> </span>-<a href="http://www.myfoxatlanta.com/story/26572200/multiple-shooting-deaths-reported-in-gilchrist-county">Multiple Shooting Deaths in Gilchrist County</a></blockquote>
<br />
A grandfather calls the police, and they arrive to his killing his daughter, his grandchildren, and himself. All with <a href="http://www.cnn.com/2014/09/19/justice/florida-deadly-shooting/">a gun purchased on the black market</a>, after he and his family tumbled for years at financial rock bottom.<br />
<br />
So much of what's wrong in the US at play here.<br />
<br />
<b>The Community is Enough</b><br />
The community says <a href="http://www.nytimes.com/2014/09/20/us/in-death-florida-family-reveals-a-sad-spiral-of-domestic-violence.html">they all saw the suffering but no one could have seen this coming</a>; and yet, upon further reading, they're so predictable any reasonable person would feel disgraced. The Miami Herald documented <a href="http://pubsys.miamiherald.com/projects/2014/innocents-lost/">500 children dying prematurely in the state of Florida alone in a single year</a> under similar, desperate family circumstances.<br />
<br />
<b>Pull Yourself Up</b><br />
There's a belief today that the poor lack work ethic, and if their life is garbage, that's deserved - it's their motivation to pull themselves up. But there's a difference between motivating people, and desperation. Leaving people to struggle desperately and bitterly turns them against the system, others, and themselves - sometimes, as terrible as it plays itself out here. Other times, as petty crimes, theft, and emergency room visits after it's too late. We do need better motivation in the system, but risk is a motivator; despair is not. We need opportunity. And we need to stop dismissing government assistance out of hand, especially <a href="http://www.charlotteobserver.com/2014/03/23/4787934/study-concludes-charlotte-homeless.html#.VDHApPldV8F">when studies show programs' overall monetary cost is cheaper than proceeding without them</a>.<br />
<br />
<b>Tough on Crime</b><br />
Americans favor exactly one intervention for the poor, and that's prison. Multiple members of this family spent time in prison, and it lead to even more hardship, in part due to a lack of job opportunity. More significant interventions were made available by child services, like therapy and counseling, but all of them were optional. The police were called repeatedly, but cops are meant to intervene in situations of imminent harm - they aren't trained counselors. We send the wrong people to domestic violence situations, and they lack any appropriate remedies at their disposal.<br />
<br />
<b>Don't Let the Government Have a List of Gun Owners</b><br />
There's a subculture in America that believes any gun registration will allow the government to track down every gun owner in some hellish coming act of tyranny; this leads to private, undocumented sales, and laws pushing for legalization of those sales, all wrapped in a seriously misled idea of patriotism. Today, because of this broken belief system, every state in the union has at least one way to legally buy a gun without review or documentation. One of the strangest roots of this belief system is, "Criminals will get guns anyway," a strangely self-fulfilling prophecy. It's used to dismiss the obvious harm of acting on this broken belief. This is a cultural problem first, and a legal problem second.<br />
<br />
<b>Sneering is No Way to Build a Stronger America</b><br />
We need to end this American love for desperation and suffering, justified by a hatred for "entitlements." Hatred of the other is a great campaign slogan but there is no public benefit. We need a system that really motivates and provides people with the opportunity to work and share their talents with the world, and that means first identifying those motivators, and mitigating desperation with a helping hand. And we need to reform our punishment-only prison/rehabilitation system, with real interventions.<br />
<br />
<br />
Multiple articles and reporters collected different portions of the facts of this story - I've linked several above to their most pertinent reports, and below are 2 more which document a bit more.<br />
<br />
<a href="http://www.miamiherald.com/news/state/florida/article2203558.html">http://www.miamiherald.com/news/state/florida/article2203558.html</a><br />
<br />
<a href="http://www.nbcnews.com/news/us-news/911-call-florida-murder-suicide-reveals-shooters-final-moments-n209581">http://www.nbcnews.com/news/us-news/911-call-florida-murder-suicide-reveals-shooters-final-moments-n209581</a>SoopahManhttp://www.blogger.com/profile/16419039735989904700noreply@blogger.com0tag:blogger.com,1999:blog-6021797337997466234.post-78792410090309536242014-09-17T08:35:00.003-07:002014-11-23T08:14:05.393-08:00Your Couch Is Giving You Cancer - Our Stupid WorldIn 1953, a company that makes flame-retardant scored a win when the US passed a law requiring it in children's pajamas. That turned out to be a bad idea when that chemical was associated with inhibited brain development and cancer, so in 1978 it was banned from children's pajamas.<br />
<br />
Desperate to keep their business going, the company that made it then bribed their way into a California state law to require it in furniture. Unfortunately, most US furniture manufacturers responded by including it in all furniture, to avoid the fussy complication of making special California-only furniture.<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="http://jwa.org/sites/jwa.org/files/mediaobjects/arlene_blum.jpg" imageanchor="1" style="clear: right; float: right; margin-bottom: 1em; margin-left: 1em;"><img border="0" src="http://jwa.org/sites/jwa.org/files/mediaobjects/arlene_blum.jpg" height="150" width="200" /></a></div>
A well-meaning chemist, Arlene Blum, began to fight this chemical manufacturer in the 1970s, and has been fighting for FORTY YEARS to get this stupid chemical out of the seat you're sitting on right now. At every turn the company has lobbied and bribed their way into keeping the law on the books, and the chemical has remained.<br />
<br />
Finally, in California, a win for Arlene Blum. The chemical is no longer required. Strangely though, it is still not banned, in a partial-win for the lobbyists.<br />
<br />
<a href="http://www.scpr.org/blogs/economy/2013/12/26/15473/fire-retardants-in-furniture-manufacturers-adjust/">Fire-Retardants in Furniture: Manufacturers Adjust - KPCC</a><br />
<br />
And they're suing to stop the law from going into effect - thankfully so far, losing:<br />
<br />
<a href="http://www.chicagotribune.com/news/ct-flame-retardants-update-met-20140829-story.html">Judge Tosses Challenge to Flame Retardant Rules - Chicago Tribune</a><br />
<br />
Unfortunately that means all your furniture is probably still cancerous, including what you're sitting on right now:<br />
<br />
<a href="http://www.scientificamerican.com/article/cancer-linked-flame/">Cancer-Linked Flame Retardants Eased Out of Furniture in 2014 - Scientific American</a><br />
<br />
<a href="http://en.wikipedia.org/wiki/Tris(1,3-dichloro-2-propyl)phosphate">TDCPP Flame Retardant - Wiki</a><br />
<br />
In the meantime you can look (hard) for furniture that explicitly contains no flame retardants. Buying such a piece of furniture was actually illegal in California until Jan 2014, but is finally legal here as well.<br />
<br />
You can see Arlene Blum here fighting paid lobbyist dirtbags:<br />
<br />
<a href="http://www.pbs.org/newshour/bb/nation-jan-june14-flame_01-01/">California Flame Retardant Law Sparks Debate - PBS</a><br />
<br />
We all owe Arlene Blum a tremendous thank you. Instead of posters of athletes on their walls, kids should have posters of Arlene Blum.<br />
<br />
<a href="http://en.wikipedia.org/wiki/Arlene_Blum#Current_science_policy_work">Arlene Blum: Current Work - Wiki</a><br />
<br />SoopahManhttp://www.blogger.com/profile/16419039735989904700noreply@blogger.com0tag:blogger.com,1999:blog-6021797337997466234.post-16455838821430805542014-08-31T08:50:00.001-07:002014-11-23T08:14:05.383-08:00A Drug Given to Pigs Probably Causes Heart Attacks - Our Stupid World<table cellpadding="0" cellspacing="0" class="tr-caption-container" style="float: right; margin-left: 1em; text-align: right;"><tbody>
<tr><td style="text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhARcTR50pNDU00PjEqGul6Gk6oM1fHaaWGz1AhGOTeOmb70APnqAAGqhlH-Rri6oPMhF65ymCeamLtAPCfJimzzq2hgqshboAyL4TxS9vNrCt4y_ZIfDTkbJi_UcQ73GzPbaAqF3f8_oin/s1600/downer_pigs2.jpg" imageanchor="1" style="clear: right; margin-bottom: 1em; margin-left: auto; margin-right: auto;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhARcTR50pNDU00PjEqGul6Gk6oM1fHaaWGz1AhGOTeOmb70APnqAAGqhlH-Rri6oPMhF65ymCeamLtAPCfJimzzq2hgqshboAyL4TxS9vNrCt4y_ZIfDTkbJi_UcQ73GzPbaAqF3f8_oin/s1600/downer_pigs2.jpg" /></a></td></tr>
<tr><td class="tr-caption" style="text-align: center;">Credit: farmsanctuary.org</td></tr>
</tbody></table>
A drug in US pork is probably damaging your heart, but rather than checking on that, US pork producers want to force other countries to accept pork drugged with it.<br />
<br />
Ractopamine is a steroid originally designed to treat human asthma, but it's been found to increase the growth rate of some pigs. Unfortunately it also causes heart failure in many of them, though slaughterhouses just chop those pigs into pork early and off it goes to you.<br />
<br />
<a href="http://m.livescience.com/47032-time-for-us-to-ban-ractopamine.html">Banned in 160 Nations, Why is Ractopamine in U.S. Pork?</a><br />
<br />
This has become more awkward for the pork industry given that 160 countries have banned pork treated with the drug, and so, banned US pork. The pork industry is trying to force Europe to accept its drugged pork, and Europeans are protesting.<br />
<br />
<a href="http://www.newsobserver.com/2014/07/21/4020204/producers-of-pigs-picking-fight.html">US pork producers' use of drug may derail European trade deal</a><br />
<br />
The pork industry, for its part, says that Europeans aren't listening to the science - except the only human safety test of Ractopamine involved 6 men, one of whom had to drop out because his heart began racing erratically. There's no evidence to show it's safe in any dose for humans, and given how similar pigs are to us and their pattern of heart failure with the drug, it's probably not wise for us to be eating it.<br />
<div>
<br /></div>
SoopahManhttp://www.blogger.com/profile/16419039735989904700noreply@blogger.com0tag:blogger.com,1999:blog-6021797337997466234.post-75958869658227829592014-07-10T12:36:00.000-07:002014-11-23T08:14:05.390-08:00Rise of the Warrior Cop<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgIbst8YrD86fGy6dwJ6Se4n-p2B8l7vpU3OVFS5fyMsMIVsEWN5yWRE4IHApcYPzQbFUF2QxqwOR90zDciYy729mRTXZG_O0JGSFm-BNLNYFelrYYu443ECgyil4DlMlfUbdXol5DCsxzy/s1600/ss.jpg" imageanchor="1" style="clear: right; float: right; margin-bottom: 1em; margin-left: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgIbst8YrD86fGy6dwJ6Se4n-p2B8l7vpU3OVFS5fyMsMIVsEWN5yWRE4IHApcYPzQbFUF2QxqwOR90zDciYy729mRTXZG_O0JGSFm-BNLNYFelrYYu443ECgyil4DlMlfUbdXol5DCsxzy/s1600/ss.jpg" height="320" width="255" /></a></div>
A journalist tracks the increasing role of US police as bullies, rather than protectors. He points to some of the historical and modern causes, and to an odd stat to identify the worst departments: The number of dogs killed by cops. As cops are increasingly deployed into other people's neighborhoods, sitting isolated from people in cars built like tanks, instead of walking a beat, wearing body armor and given access to a literal armory, they're increasingly disinterested in the well-being of the community they serve.<br />
<br />
He also notes the rise of the drug war, as federal funds are awarded for number of drug busts, and dubious-necessity military-grade weapons provided to even small-town police departments.<br />
<br />
Cops killing dogs is an odd stat to track, but it's easy to find and calculate - and trends closely with areas where people perceive a department as failed.<br />
<br />
<a href="http://www.salon.com/2013/07/13/radley_balko_once_a_town_gets_a_swat_team_you_want_to_use_it/">Once a Town Gets a SWAT Team, You Want To Use It</a> (salon.com)<br />
<br />
Dogs (warning: sad):<br />
<a href="http://losangeles.cbslocal.com/2013/08/13/felony-charges-filed-against-man-whose-dog-was-fatally-shot-by-hawthorne-police/">Los Angeles, CA</a><br />
<a href="http://www.krem.com/news/Pit-bull-fatally-shot-by-Coeur-dAlene-officer--266483721.html">Idaho</a><br />
<a href="http://www.hlntv.com/video/2014/06/20/dog-shot-cops-owners-yard">Salt Lake City, Utah</a><br />
<a href="http://www.wvgazette.com/article/20140702/GZ01/140709943/1419">West Virginia</a><br />
<br />
<a href="http://reason.com/blog/2014/04/18/cop-shoots-dog-no-wait-he-shoots-himself">Self-solver - Cop literally shoots himself in the foot trying to kill someone's dog</a>.<br />
<br />
<a href="http://www.masslive.com/news/index.ssf/2014/07/aclu_calls_into_question_why_w.html">Small Town Police Department Questioned as to Why It Needs Two Grenade Launchers</a><br />
<br />
There are a lot of good police out there, but with cops like these in some departments it's hard to trust them knowing you might just be inviting armed thugs.SoopahManhttp://www.blogger.com/profile/16419039735989904700noreply@blogger.com0tag:blogger.com,1999:blog-6021797337997466234.post-32067429167134351482014-06-29T14:47:00.002-07:002014-06-29T14:47:52.937-07:00Nasa's EagleWorks project is trying to validate their warp drive conceptNasa's EagleWorks project is trying to validate their warp drive concept. How's that going?<br />
<br />
Well, slowly. They were completely shutdown during the government furlough, which slowed things considerably. Now that they're funded again, they need to prove the idea is even viable, and to do that they need to prove they can trigger <a href="http://en.wikipedia.org/wiki/Casimir_effect">the Casimir Effect</a> that the concept is based on. The Casimir Effect involves pumping a bunch of electricity into a metal donut, and in theory that should expand space time. The way the donut is shaped means that expansion of space time forms a warp bubble. So, does it?<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="http://i.imgur.com/TQ5dfAE.png"><img border="0" src="http://i.imgur.com/TQ5dfAE.png" height="229" width="320" /></a></div>
<br />
<br />
The amount of energy required is massive, so they're trying to create as small an effect as possible - so they can run it over and over without say, taking out the entire electrical grid or building their own neighboring nuclear reactor. The current experiment uses a 1cm-wide donut with enough power to produce a space-time expansion of just 6nm, which is not measurable with today's instruments.<br />
<br />
So, they've spent a lot of time and money developing higher-resolution measurement devices. In the meantime they've seen effects that could be noise or could be nothing - the effect is either too small to see, or non-existent. Why don't they just increase the amount of energy to increase the size of the effect instead of wasting all this time developing better measurement devices? They do plan to, but only after they've exhausted the better measuring option, with no timeline on when they'll make the switch. They haven't stated how much electricity they're having to blast into the donut in current tests, but I'm guessing it's incredible.<br />
<br />
<a href="https://www.youtube.com/watch?v=9M8yht_ofHc">A talk in which NASA's Harold White discusses the above</a> (1 hr)<br />
<br />
A quick glossary of terms discussed in the video:<br />
<br />
<b>Exotic Matter/Exotic Mass</b>: A somewhat confusing term meaning the expansion of space-time. We know that a large mass, like the Earth, creates a field of Gravity around it. Gravity warps space-time by shrinking it - bunching it up, pulling it towards the center of the mass. Expanding space-time then would require Negative Gravity, often abbreviated NEG, and the general term for stuff that would create Negative Gravity is Exotic Matter, which has an Exotic Mass. So, Exotic Matter is a confusing term that means Expansion of Space-Time, or negative gravity. You don't gather up exotic matter.<br />
<br />
The method of expanding space-time in the proposed warp drive involves creating no mass or matter of any sort. It involves applying crazy amounts of electricity to a metal donut, which creates a large amount of potential energy, triggering the Casimir Effect and expanding Space-Time in a bubble around it. Some call this "creating exotic matter," which seems like a misleading phrase but perhaps a physicist can explain otherwise.<br />
<br />
<b>"Fee" (Phi) or York Time</b>: The Greek character Phi is used to represent how much you've expanded Space-Time. This measurement of expansion is also called York Time. You'll hear him say phi (pronounced "fee") a lot in the video.SoopahManhttp://www.blogger.com/profile/16419039735989904700noreply@blogger.com1tag:blogger.com,1999:blog-6021797337997466234.post-76602819514503778362013-08-29T02:57:00.004-07:002013-08-31T01:26:41.040-07:00Restore Public Oversight of Secret WarrantsThis is an attempt at forcing the US back into reasonable public oversight without having to build ironic technology solutions outside the US to enable basic Constitutional rights for its citizens. Since I'm not a lawyer, there's probably a lot wrong with it - I'd love to hear ideas for improving it. I wouldn't be terribly interested in diatribes about why it wouldn't work. The internet has hit its quota for those.<br />
<br />
This is a follow-up to <a href="http://soopahman.blogspot.com/2013/08/privacy-whats-possible-with-nsa-watching.html">Privacy - What's Possible With the NSA Watching</a>.<br />
<br />
<div>
I'll try to stick to the technology side of things and openly punt on the legal ins and outs.</div>
<div>
<br /></div>
<div>
A brave coder could create a data service that just moves things securely in and out, that other convenient, secure services could be built on top of. Secure email, text messaging, phone calls (voice service), whatever you like. With Congress and members of the NSA etc apparently unwilling to admit that what they're doing is violating basic US rights, it may be possible to force public oversight on this process with technology despite laws and programs to the contrary.</div>
<h4>
Basic Security</h4>
<div>
First, the service itself could be secured with <a href="http://soopahman.blogspot.com/2013/08/privacy-whats-possible-with-nsa-watching.html">HTTPS PFS, described in the previous article</a>. That takes care of connections. On the servers themselves you've got a regularly rotating key for encrypting user data you share with no one, including the government.</div>
<div>
<br /></div>
<div>
But there's still the sticky problem of whatever poor jerk runs this site being served a secret warrant, and no legitimate legal challenge being available because the actual person whose rights are being violated isn't allowed to know. To untangle this gross catch 22 the government's assembled, what you really need to enable here is 3 basic principles: separation, anonymity, and civil disobedience.</div>
<h4>
Separation</h4>
<div>
If the author of the code doesn't actually control the service, they just maintain the code the service uses to operate, they can provide some insulation between themselves and the service. The service could be designed to generate its own keys, keep them completely private, and expose them to no one - even the author of the service. If we assume the author of the service can't avoid being identified, the trick is to ensure they can never be compelled to expose user data. Suppose the NSA says to the author, someone on your network is a person of interest, tell no one, go get their data for us. If the author doesn't have any access to the keys that data is being stored with - if the software itself is the only entity with actual access to the keys - there's not much the author can be asked to do here. Except - they could be compelled to write code that modifies the software so it exposes those keys, or exposes what a specific person has said.</div>
<h4>
Civil Disobedience and Anonymity</h4>
<div>
So, if the service was setup so the only way it could be modified is via a public channel, like a public code repository, you would force any malicious code like the above to be exposed to the public. You could further force any modification to the code through a public review process - ideally by anonymous coders so they can't be compelled to approve malicious code - you would place a pretty strong lock and key on the code. To do this you have the software update itself periodically, by pulling the latest approved code from the public repository. You could design the software in a way that it destroys all the keys (making the data leftover garbage) if it's modified in any other way. This creates a remaining risk of the repository itself being attacked, so whoever hosts the repository would also be at risk of being compelled. Worst case you could host the repo with the rest of the service, and have the software respond to an attack by destroying the keys.<br />
<br />
The coders that do these code reviews would have to accept a serious legal risk by participating - whatever is ensuring their anonymity could always be pulled back, so they could potentially be compelled to approve malicious code - it could get pretty ugly. That's civil disobedience. There may be other ways to protect the coders besides anonymity - for example if only a small, random subset of the coders was allowed to perform a given code review/approval, all coders gain plausible deniability as to who actually said no to a malicious code submission, and no one coder is the ideal target for threats to get them to approve malicious code.</div>
<h4>
An Olive Branch</h4>
<div>
As I said earlier, the goal is not to build the one place actual terrorists can have a nice secure chat about blowing up a building. You do still want it to be possible for warrants to be served on real, actual criminals - you just don't want it to be outside the realm of public oversight with nothing but a <a href="http://www.youtube.com/watch?v=V3_pmuJRs84">"Just Trust Us" PR campaign</a> as guarantee it's not <a href="http://www.democracynow.org/2013/7/9/edward_snowden_on_why_he_stood">being abused</a>.</div>
<div>
<br /></div>
<div>
So, the goal is to make it possible to serve warrants into this system - basically to the software - and a group of people - a jury of your peers in a sense - get to decide whether that warrant is valid and reasonable.</div>
<div>
<ol>
<li>Make the <b>only</b> way to get access to private data in this system via an electronic warrant filing system. From a technical perspective, you could just have the system email some government email address a key periodically that they can use to validate themselves as government actors, and they can make up their own minds about how they want to gate use of the system. They've shown themselves to be plenty resourceful in screwing us so far, I'm sure they can do smart things with this as well.</li>
<li>Every user of the system is a member of the jury of peers. When a secret warrant is issued, a small pool of members is selected, and sent the warrant. Since it's a secret warrant, their receipt of it is illegal - another piece of civil disobedience. But if you manage to keep step 1 air tight, you may be able to force the government into step 2. A lawyer would know better than I what would be necessary in the electronic warrant system for it to feel comfortable for NSA etc to use, and legally cover members as well as possible.</li>
<li>The random pool of users decides whether the warrant should be honored. If they decide it should, the selected communications are turned over, simple as that. If they decide it should, but there's no reasonable justification for this warrant being secret, they can turn it over, but have the software publish the warrant publicly. If the warrant is completely unreasonable, they can turn nothing over and have the software publish it to remind the government of its duties. You can ensure the pool is always an odd number and a simple majority wins on both the "turn records over" and "make public" votes.</li>
</ol>
<div>
That's it - a way to put a jury of your peers and public scrutiny back into the US legal process. It's possible there are parts of this that just aren't viable inside the US - in fact, the author of the software could probably have some really terrible things happen to them regardless of where they lived, so they'd probably need to be as anonymous as possible. Go America.</div>
</div>
SoopahManhttp://www.blogger.com/profile/16419039735989904700noreply@blogger.com0tag:blogger.com,1999:blog-6021797337997466234.post-66045644103250348732013-08-29T02:57:00.002-07:002013-09-04T17:08:39.676-07:00Privacy - What's Possible With the NSA Watching<div class="" name="e5fe" style="margin-bottom: 24px;">
A number of people have reached out to me to tap my technical expertise, asking essentially — is it possible to have a private conversation anymore? Well, it is — in a few ways. The first answer will surprise you least.<br />
<br />
If you travel to where there is no cellphone network, and no recording devices, and you’re not visible by any satellites, you should be able to have a conversation no one can hear. That’s not as impossible as it sounds given how much of the planet isn’t covered by a cell network, but for at least my lazy tech-loving life, it’s probably never going to happen. I also have to acknowledge that the warrantless wiretapping program itself is something out of the paranoid conspiracy theories of a crazy person, and yet by all accounts it’s very real — I just don’t want to propose a response any crazier than the evidence demands. So now let’s work back through all the ways the government can capture a conversation.</div>
<h2>
<span style="font-size: x-large;">
Who’s Actually Listening</span></h2>
Although most articles refer to the NSA, there’s evidence that it’s actually a wide range of organizations either listening in or getting access through others. The <a href="http://www.pbs.org/wgbh/pages/frontline/government-elections-politics/cheneys-law/how-obamas-fbi-pick-tried-to-stop-warrantless-wiretapping/">FBI</a>, NSA and <a href="https://www.eff.org/deeplinks/2013/08/dea-and-nsa-team-intelligence-laundering">DEA</a> have all been shown to have their own monitoring programs. Some of them have been shown to have more than one. And the <a href="http://www.reuters.com/article/2013/08/08/us-dea-irs-idUSBRE9761AZ20130808">IRS and local police departments have been shown to have access</a> to one or more of these monitoring programs. So while I’ll also be using “the NSA” as a convenience, brave reporters, journalists and whistleblowers have taken great risk to show us it’s a lot more than one program at one department of the government.<br />
<h2>
Tinfoil Hat Stuff</h2>
First let’s get past the tinfoil hat stuff that sounds insane.<br />
<div>
<h4>
Satellites</h4>
Technically speaking, a satellite recording you with no cloud cover should be able to get a clear enough video of you speaking, that a lip reader (or lip reading software) could capture what you’re saying. <br />
<br />
There’s also technology out there that reads the small vibrations in a large flat surface, like a pane of glass in a window, and translates that back into a crappy version of the original audio. To make it sound even more ridiculous, this technology is actually called a <a href="http://lifehacker.com/5961503/build-a-laser-microphone-to-eavesdrop-on-conversations-across-the-street">Laser Microphone</a>. Yeah that’s right — go ahead and click that amazing word combination. And then go build one.<br />
<br />
Both of these mean that if you’re in view of a satellite — basically if you’re outdoors or near a window, you could not assume your conversation is private. That said, satellites are big expensive things that must be launched up into space, and replaced by launching another one, because they fail over time — not cheap. There aren’t many, so they can’t be recording everyone at once. Even if they could, they wouldn’t have the bandwidth to send all that video or audio back to Earth where anyone could make use of it. Basically, if someone at NSA, CIA, FBI etc is watching you with a satellite, either they’re violating your privacy for fun (and <a href="http://www.businessinsider.com/most-nsa-abuses-are-self-reported-2013-8">with no public oversight, it’s not unfair to assume</a>) or you did something really, really suspect worth an incredible expense. So let’s assuage the satellite fears with, “I’m not a top ten criminal, I just want my right to privacy, and I’ll avoid being outside naked.”<br />
<h4>
High Altitude Drones</h4>
Perhaps the only thing that sounds more insane than satellite monitoring is drone monitoring. Drones unfortunately are a lot cheaper than satellites, can get a much better view of you, and have a lot more opportunity for even just plain getting an actual audio recording of what you're saying - or even recording the wifi signal your cellphone is putting out. The only solace here is it appears the government doesn't have many of these. In <a href="http://www.homelandsecuritynewswire.com/dr20111228-cbp-receives-its-ninth-uav">2011 US Customs and Border Patrol received their 9th drone</a> - meaning they have fewer operating over the first 100 miles from the Mexican border than we have satellites orbiting earth. But, there's still obvious opportunity for abuse here, and again, no public oversight. But, they're still few enough that we'll assuage this the same way we did the satellites.</div>
<div>
<h4>
Cellphones Recording While Off</h4>
Still acting like paranoid maniacs, it has been <a href="http://news.cnet.com/2100-1029-6140191.html">documented</a> <a href="http://www.slate.com/blogs/future_tense/2013/07/22/nsa_can_reportedly_track_cellphones_even_when_they_re_turned_off.html">numerous times</a> that various agencies have found ways to switch someone’s cellphone mic on in secret, to record audio and send it back to the FBI or NSA, while that person wasn’t making a call and thought they were in the clear. However, what has been documented suggests a couple of important things: First, you have to specifically be targeted. It may be that some of these phones have a bug in them that lets any wise hacker in to do this, but descriptions of what’s been uncovered suggest it was more about a really vicious virus getting installed on a phone, often through direct physical access.<br />
<br />
So we’ll set this one aside the same way we did with the satellites — seems like the top cops have to really want you imprisoned or dead to have this happen to you. There is one exception though, and that is a dragnet approach to infecting phones in this way.</div>
<div>
<br /></div>
<div>
For example, if the NSA etc worked out a deal with Samsung, HTC, etc to have this backdoor built in to every phone they made (as may have happened in the RIM/Blackberry case), it would be possible for everyday citizens to get surveilled with little way to detect it and no way to prevent it (short of leaving the modern technological world). But, even if this were so, the way cellphone networks are designed is unlikely to enable that much bandwidth usage. Basically to transmit that much information back to where it could be recorded and analyzed, every cellphone would need to be continuously transmitting data over the network — when the design of cell networks is based on the assumption that most phones spend their time idling, and in this mode they have almost zero interaction with the very limited resources at their local cell tower.<br />
<br />
The remaining possibility is a dragnet hack into many phones, or all phones or desktops by a given manufacturer or with <a href="http://www.pcworld.com/article/2047332/is-windows-8-a-trojan-horse-for-the-nsa-the-german-government-thinks-so.html">a given OS</a>, and they only phone home periodically to avoid saturating networks. The only way to really catch this would be to monitor traffic - on wifi you could watch your router's traffic, and on the cell network unfortunately you'd have to do something more elaborate, like reading how much signal it's putting out when, and whether all of those times it emits a signal are expected. This is a real weakness - as usual, if your device is compromised, so are you.<br />
<h4>
Your Location</h4>
Sadly the nature of cellphones is that they have to constantly check in with the cell network by their nature. They need to tell the cell network, "Hey, in case anybody calls - I'm here." Unless you pull the battery, you are constantly broadcasting your location. That location information is available to the NSA etc. The alternatives here are pretty slim: Leave the phone on and be tracked as you wander the globe, pull the battery when not in use and only be tracked sometimes, or set it to Airport Mode and hope that there isn't some passive way to still be tracked anyway (debatable), and simultaneously wonder why it is you bought a smartphone that never connects to anything.</div>
<h2>
Corporations That Caved</h2>
<div>
So now let's finally get away from the paranoia stuff and on to one people like to harp on: big evil corporations. Companies like Google talk a big game about privacy, but it's now been shown they and a whole bunch of other companies did not fight the good fight when it came to secret warrants allowing dragnet data gathering on their networks, of your data. Cue <a href="http://www.youtube.com/watch?v=EqWRaAF6_WY">There Goes My Hero</a> by Foo Fighters. So even if you could trust the way you transmitted your data, while it's stored at Google etc unencrypted, the NSA gets to casually peruse it - or really, record every last character so they can casually peruse it later, even if you delete it. So you can't trust any company known to have caved to this dragnet, and you can't trust anything you've ever said, even the deleted stuff, over any of those companies' servers. If we're going to be really honest with ourselves, it's probably not safe to assume any company has fought back against these secret warrants issued by secret courts, unless you've seen them make a very public stink about it. So, any normal, unencrypted data on these services is out.</div>
<div>
<h2>
Secret Warrants</h2>
</div>
<div>
This may be the biggest barrier in the way of privacy. Since the various government agencies doing this do so with zero public oversight, never declassify what they've done, and use courts that are themselves secret, it's not possible to exercise your right to privacy - because the warrant your service provider is served specifically instructs them not to tell you about it. Since the person whose rights are being violated never knows, they can never challenge it in court and never enact the mechanism that calls this program what it is: Unconstitutional. Apparently the Constitution failed to include the "If a right falls in the forest and no one's there to hear it" clause.<br />
<br />
Strictly speaking, it may not be legally possible to solve this for any service in reach of the United States - that is, either in the US itself, or in a country that either actively collaborates with the US dragnet, or caves to US pressure. Fortunately the US has plenty of enemies, but often they have warrantless wiretapping programs or worse of their own - so it's a tricky legal conundrum, and my area of expertise is technical, not legal. I'll make some technical proposals here below, but I welcome legal considerations by those who know more about that side of it.</div>
<h2>
<span style="font-size: x-large;">
What's Possible</span></h2>
<div>
With what's in the way discussed, finally what I promised: What's actually possible. First let's get non-goals out of the way.<br />
<h4>
Non-Goals</h4>
Our goal isn't to completely shut the government out. We already acknowledged the tinfoil hat stuff as being legitimately possible, so if you're dangerous enough, they may use those extreme tools, and we won't even try to interfere there. Our goal also isn't to be able to have a private conversation that's absolutely impossible to ever get into - because if we can use it, so can some big bad guy, and the Constitution provides for reasonable things like publicly inspectable warrants where justified with good reason; technology that shuts out even this legal option is likely an unwise tool to give to the world.</div>
<h4>
Don't Have Any Viruses</h4>
<div>
This probably goes without saying but if you have a virus on your machine of any sort you're probably hosed. Even if the NSA didn't put it there, any virus that made it on is probably transmitting something private off the machine - maybe everything. If your machine is infected all bets are off. Not trivial advice to follow through on but that's how it is.</div>
<h2>
Pre-Shared Key</h2>
<div>
If we go back to the initial proposal where you have a conversation outside of any listening devices, there's one more option you have here: Instead of having the one private conversation, you could share a secret (encryption keys), keep it private (for example by passing it on a thumb drive - never emailing it), and have as many encrypted conversations as you like over the open internet with your friend without anyone, including the NSA, able to read what you're saying. As long as the key size was large enough, you could even be so brazen as to post your encrypted messages anywhere - public forums, Amazon product reviews, wherever - and the only person able to read them would be your friend(s). However, this doesn't facilitate much communication. You're unlikely to meet privately offline with everyone you'll ever want to communicate with, share private keys, bank that neither of you will ever get a virus, and communicate solely via these keys.</div>
<div>
<br /></div>
<div>
From an actual technological perspective it works like this: You could use what's called a Symmetric Key, where a single gigantic primary number is all you need to read anything written in this secret format. This approach would be easy to use with <a href="http://www.truecrypt.org/">TrueCrypt</a>, free encryption software for any computer out there. It would be a bit annoying, but each time you wanted to say something, you'd encrypt for example a text file into a .tc file, attach it to an email to as many friends as you wanted to send it to (that you've shared this key with), and they'd all open the .tc attachment to find your one text file and read it. Not super convenient for text, but about the same time as you'd spend attaching other files. For just text you can automate this kind of pre-shared key encryption with PGP or GPG (the distinction isn't super important, they do the same thing). <a href="http://howto.cnet.com/8301-11310_39-10434684-285/want-really-secure-gmail-try-gpg-encryption/">You can tie this into Gmail, but it only works on desktops</a> - though you could probably pair it with <a href="https://play.google.com/store/apps/details?id=org.thialfihar.android.apg&hl=en">APG on Android and get it working on mobile</a> as well. For IM on desktops that leverages this approach you can use <a href="https://securityinabox.org/en/pidgin_main">Pidgin with OTR</a>.<br />
<br />
The vulnerability here is that for every friend you share the key with, that's one more person you have to worry will someday get a virus on their phone or computer and get that key stolen. When they do, now everyone's vulnerable, including everything they ever said with it.<sup>1</sup> It's also pretty inconvenient as-is, although again you could write software to improve that a little.<br />
<br />
On the flip side, this also has the no-legal-avenues problem: Two terrorists could actually use this approach to communicate securely, and thwart even a warrant (public or secret) to read what they said - because no one has the key to read it but them. If they can avoid legal avenues that would force them to divulge the key and technical avenues that would steal the key, they can communicate with total privacy - not what you want to hand to bad guys. That said, it's likely those bad guys could get that key stolen in one of the tinfoil hat scenarios, or stuff I've never heard of. Or the Bush/Obama/next administration <a href="http://www.bloomberg.com/news/2013-08-09/al-qaeda-militants-die-in-yemen-drone-strike-sahwa-says.html">could</a> <a href="http://www.thebureauinvestigates.com/2013/07/22/exclusive-leaked-pakistani-report-confirms-high-civilian-death-toll-in-cia-drone-strikes/">just</a> <a href="http://dawn.com/news/1038672/400-civilians-died-in-339-drone-attacks-na-told">kill</a> <a href="http://drones.pitchinteractive.com/">them</a>. That happens a lot.<br />
<h4>
Mesh Communication</h4>
<div>
The best way to keep something from being read on the internet is to not talk about it on the internet. There are now free pieces of software, like <a href="http://www.servalproject.org/">Serval for Android</a>, to have a conversation entirely outside of the internet, but still use those cool smartphones we like using. Of course any cloud-based anything, like google maps, fast GPS positioning, documents you don't lose when the phone is destroyed - that stuff - that's all gone without an internet connection. If the way you're talking on Serval was active enough that a large group of people were using it, there's probably also the risk that one of their devices is hacked, or some jerk is listening to everything and broadcasting it all, or whatever. But the point is, you can text, email, have phone calls, etc with anyone you can get a wifi signal to if you both have Android phones, or more broadly you could do this with anyone with the right software in place. The range on this has to fundamentally be pretty limited, since you're probably not encrypting what you're saying, so as soon as anybody listens in, you're hosed. You could add in the Pre-Shared Key stuff above via software, with all its ups and downs.</div>
<h4>
HTTPS</h4>
</div>
<div>
One of the best pieces of news is there is no published viable attack on HTTPS, the technology that secures web connections when you've got that little lock icon in your browser's Address Bar. The technology is a bit amazing given it begins with a public conversation, and someone attempting to listen in could record every single interaction back and forth - and still be unable to understand (decrypt) anything you ultimately say over the secure connection HTTPS sets up. That said, there is one attack-like strategy a bad guy could use, and the NSA has even been documented as using it: Record all those interactions, store them for years while working on breaking the original HTTPS certificate the server you were talking to, then use that to decrypt all of the recorded HTTPS traffic you left behind.</div>
<div>
<br /></div>
<div>
The solution to this is slightly more obscure, but still easily accessible: <a href="https://www.eff.org/deeplinks/2013/08/pushing-perfect-forward-secrecy-important-web-privacy-protection">Perfect Forward Secrecy</a>. Basically the service you're trusting needs to enable it, and you need to use a browser that supports it (like Chrome). HTTPS is a relatively long handshake process, and PFS adds several more back and forths to secure the connection even from this relatively exotic attack. So, any service you wanted to use privately would need to use HTTPS with PFS.</div>
<h4>
Securing the Service</h4>
<div>
So if HTTPS gets you data in and out of a service no problem, and your machine is virus free, the only remaining concern is the service itself - its servers, basically.<br />
<br />
As mentioned in the Secret Warrants area above, one answer is to just put the service outside the reach of the United States. Lavabit, a company that attempted to provide secure email inside the US, <a href="http://lavabit.com/">shut down and left behind a message</a>:<br />
<blockquote class="tr_bq">
I have been forced to make a difficult decision: to become complicit in crimes against the American people or walk away from nearly ten years of hard work by shutting down Lavabit. After significant soul searching, I have decided to suspend operations. I wish that I could legally share with you the events that led to my decision. I cannot. I feel you deserve to know what’s going on--the first amendment is supposed to guarantee me the freedom to speak out in situations like this. Unfortunately, Congress has passed laws that say otherwise. As things currently stand, I cannot share my experiences over the last six weeks, even though I have twice made the appropriate requests. </blockquote>
<blockquote class="tr_bq">
What’s going to happen now? We’ve already started preparing the paperwork needed to continue to fight for the Constitution in the Fourth Circuit Court of Appeals. A favorable decision would allow me resurrect Lavabit as an American company.</blockquote>
<blockquote class="tr_bq">
This experience has taught me one very important lesson: without congressional action or a strong judicial precedent, I would _strongly_ recommend against anyone trusting their private data to a company with physical ties to the United States.</blockquote>
<a href="http://kolab.org/">Kolab uses this approach by putting their servers in Switzerland</a>, which apparently has very few warrants served on its data (not clear if any are secret...).<br />
<br />
So that's a fairly sad, if you're at all patriotic, solution.<br />
<h2>
Force All Warrants Into The Open</h2>
</div>
<div>
So the final, scraping the barrel possibility I want to propose requires more legal knowledge than I possess. I've broken it out into its own post:</div>
<div>
<h4>
<a href="http://soopahman.blogspot.com/2013/08/restore-public-oversight-of-secret.html">Restore Public Oversight of Secret Warrants</a></h4>
</div>
<h2>
Footnotes</h2>
1. PGP/GPG differ slightly from other methods described here, by being asymmetric rather than symmetric. In symmetric encryption, everyone shares a single key, which is used to both read and write whatever's being said, by all parties. In asymmetric encryption, each person has their own read ("public") and write ("private") key. As you connect with more people, you gather their individual public keys. Technically, this does change what kind of risk you're taking by using a given service, but in the end the risk is about the same: If anyone in the group gets hacked, all of the keys they have on their machine are taken as well, opening up everything you ever told them. If people quote each other in emails, what they said is largely opened up as well. The difference ends up being pretty irrelevant to an end user looking for privacy.SoopahManhttp://www.blogger.com/profile/16419039735989904700noreply@blogger.com0tag:blogger.com,1999:blog-6021797337997466234.post-1150344316088412442012-09-16T11:12:00.002-07:002012-09-16T11:13:05.996-07:00To the Nth Degree<br />
I got someone really angry the other day.<br />
<br />
It reminded me of when I once got my mom so angry she said, "And everyone around here is leaving stuff around to the Nth degree!" She used to say "to the Nth degree" a lot, mostly when she was angry. For a long time I wondered what the heck to the Nth degree meant - I was too young to understand exponents and when you're being yelled at you're not likely to come to higher maths on your own. When I was a teenager I realized that crimes often are in the 1st, 2nd, and 3rd degree, so she was probably referencing those. People were criminally leaving their stuff out. I think she went with "Nth" because when you're angry, the last thing you want is for someone to correct you on "Well in this case it would really be the 2nd degree, because... ." So she hedged with "Nth." But to me it always just sounded very weird, and had the opposite of the intended effect. I would stop to consider what it might mean each time - does she mean it's hot out? Is this a college related problem? Then I'd realize she was still yelling at me, and I had probably missed several important points.<br />
<br />
Later on in life I gave it more thought and came to the conclusions I've just told you here, and realized that one crime that can be to the Nth degree is murder. Perhaps this was her way of signaling she was considering murder. I took her more seriously after that.<br />
<br />
I had this thought while the person I mentioned at the beginning of this story was yelling at me. I probably missed several important points.SoopahManhttp://www.blogger.com/profile/16419039735989904700noreply@blogger.com0tag:blogger.com,1999:blog-6021797337997466234.post-91760283588125374722012-05-24T16:44:00.002-07:002012-05-24T16:45:28.720-07:00Schwab Paperlessme: I'd like to signup for paperless statements<br />Schwab: We actually can't yet, we're working on it<br />me: Can I just opt-out of statements?<br />Schwab: No<br />me: Can I send statements to a PO Box?<br />Schwab: Yes<br />me: So if I can find someone who runs a PO Box/shredder service<br />I can finally be done with your statements?<br />Schwab: Hm. I guess so.SoopahManhttp://www.blogger.com/profile/16419039735989904700noreply@blogger.com0tag:blogger.com,1999:blog-6021797337997466234.post-55246482646113786732012-05-09T12:52:00.000-07:002012-05-09T12:55:41.286-07:00Android AppsNew phone - moving the apps I care about over to it. Here's my list - what's yours?
<br />
<br />
<span style="font-size: large;">Installed</span><br />
Pocket (Read It Later) - lets you add any webpage or link to a queue to be read later, even if you aren't connected. Great for a subway or plane ride, and the equivalent of letting you open infinite tabs in the browser.<br />
<br />
NewsRob - offline RSS reader tied to Google Reader. I'm open to recommendations for something better, the management features for this are so-so and the reading is meh.<br />
<br />
Yelp<br />
<br />
Draw Some - I love Pictionary.<br />
<br />
Dropbox - free 2gb of synced files.<br />
<br />
Google Drive - Google Docs, Office documents, and free 5gb of synced files.<br />
<br />
My Tracks - I track my biking with it.<br />
<br />
Play Music - streams music you've uploaded to Google Music for free over the web. Good for really long podcasts that would eat up too much SD Card space. Useless in bad connectivity areas.<br />
<br />
Pandora - try creating a station with the Gladiator Soundtrack as the seed.<br />
<br />
Weather Underground - better weather app<br />
<br />
Wifi Analyzer - lets you see all the wifi points in your building, what channels they're on. I once used this to find a friend's apartment when I was lost in their building, using their wifi name like a homing beacon.<br />
<br />
<br />
<br />
<span style="font-size: large;">Not Installed</span>
<br />
I specifically don't install several apps:<br />
<br />
Google+ - no one uses this, and it's over 30mb.<br />
<br />
Facebook - the official Android Facebook app is terrible. It's slow, it has very few features, it breaks all the time, it doesn't support basic things like tagging friends - why would I use it? I know why it's terrible and the short version is the developers at Facebook are very proud of it, but no one should endure it.<br />
<br />
QuickOffice/other Office apps - Google Docs (renamed Google Drive) can now edit Office style files, so there's no need for another app for this<br />
<br />
Skype - this app sounds useful but in my experience it's just the thing I wish I hadn't accidentally opened.SoopahManhttp://www.blogger.com/profile/16419039735989904700noreply@blogger.com0tag:blogger.com,1999:blog-6021797337997466234.post-41175549210477067042012-04-14T12:54:00.002-07:002012-04-14T12:56:01.533-07:00A Productive MorningSince arriving home 2 hours ago my dad and I have discussed:<br /><ul>
<li>The speed at which Earth is moving relative to various objects in the universe</li>
<li>The merits of dark matter</li>
<li>The Marjoran Fermion</li>
<li>Mitt Romney</li>
<li>Eyelash mites</li>
</ul>
A productive morning.SoopahManhttp://www.blogger.com/profile/16419039735989904700noreply@blogger.com0tag:blogger.com,1999:blog-6021797337997466234.post-49960941014964434252011-12-27T19:18:00.000-08:002011-12-27T19:19:20.900-08:00Killing GoatsOne of the funnier Aussies I've met out here walks in. We're not talking so he starts a new conversation:<br /><br />"I killed a lot of goats once."<br /><br />He then looks at us all with a worried look wondering what we'll think of him now.<br /><br />"I was working for this company in Oman, filing papers to make a little money, and they kept saying hey you seem to know what you're doing and having me do things I didn't know how to do. That was how it was back then - no resume, just you seem to know what you're doing - why don't you do this task. So one day they tell me I'm going to manage the water purification system for this town nearby. I don't know any chemistry or crazy things, but they think I can do that, and there's this giant water pump, and these 2 giant tanks of chlorine they use on the water. They fill the tanks with these giant trucks all the time.<br /><br />One day the tank starts leaking, and as it turns out chlorine will kill you. So I write a letter asking what to do about it. A week later someone writes back saying build a swimming pool, fill that pool with water, and then submerge the tank in it. The chlorine will safely leak into the pool for about a month and that will be that.<br /><br />So I do that, and it really chlorinated the pool."<br /><br />So we ask him what that has to do with goats.<br /><br />"Oh, the goats were downwind from the pool."SoopahManhttp://www.blogger.com/profile/16419039735989904700noreply@blogger.com0tag:blogger.com,1999:blog-6021797337997466234.post-61225652426083859862011-12-20T17:35:00.000-08:002011-12-20T17:41:44.903-08:00Australian TV AdsSo the ads here are a bit funny, because they use a lot of colloquialisms like, "Sure we all buy mince..." - yes, we ALL buy mince, what kind of 2-bit bogan wouldn't buy mince? C'mon. But by far the strangest ad is one for an underwear maker here named Bonds. They'll run 12 short commercials over the span of just one half hour show, so it starts to get really strange if the TV's on in the background. A guy kinda singing like Robert Goulet half asleep just sings a part of "Twelve Days of Christmas" with a couple guitar plucks and fades out.<br />
<br />
Imagine this coming on repeatedly:<br />
<a href="http://www.youtube.com/watch?v=x5sgx0Yjnlw">http://www.youtube.com/watch?v=x5sgx0Yjnlw</a>
<br />
<a href="http://www.youtube.com/watch?v=79visS2GafE">http://www.youtube.com/watch?v=79visS2GafE</a>
<br />
<a href="http://www.youtube.com/watch?v=cqXG28ffG48">http://www.youtube.com/watch?v=cqXG28ffG48</a>
<br />
<a href="http://www.youtube.com/watch?v=RQt1zrDPDKk">http://www.youtube.com/watch?v=RQt1zrDPDKk</a>
<br />
<a href="http://www.youtube.com/watch?v=rumgnCjAhrI">http://www.youtube.com/watch?v=rumgnCjAhrI</a>
<br />
<a href="http://www.youtube.com/watch?v=JUdNfmebeMg">http://www.youtube.com/watch?v=JUdNfmebeMg</a>
<br />
<br />
So weird.SoopahManhttp://www.blogger.com/profile/16419039735989904700noreply@blogger.com0tag:blogger.com,1999:blog-6021797337997466234.post-8264357605900299822011-12-11T16:29:00.001-08:002011-12-11T17:17:35.096-08:00High-Level Media That Can't Be Bothered To Fact CheckDuty calls. <a href="http://xkcd.com/386/">http://xkcd.com/386/</a><br />
<br />
Having worked at Google, people frequently ask me about some of Google's shadier dealings. There's a recurring one that comes up frequently, and here are 2 articles of many that have come up over the past 4 years:<br />
<br />
<a href="http://techcrunch.com/2011/12/11/googles-3-top-executives-have-8-private-jets/">http://techcrunch.com/2011/12/11/googles-3-top-executives-have-8-private-jets/</a><br />
<a href="http://bits.blogs.nytimes.com/2008/10/23/a-new-fighter-jet-for-googles-founders/">http://bits.blogs.nytimes.com/2008/10/23/a-new-fighter-jet-for-googles-founders/</a><br />
<br />
It's important to notice that the first was written very recently (2011) and the second in 2008.<br />
<br />
First of all, I'm not Google's biggest fan. They do stupid and evil things sometimes. But this is not one of them - in fact it's the opposite.<br />
<br />
NASA and Google have a close relationship. First, they literally are close:<br />
<a href="http://maps.google.com/maps?q=google+headquarters+to+moffett+field">http://maps.google.com/maps?q=google+headquarters+to+moffett+field</a><br />
<br />
I recall driving over Moffett Field - where NASA launches many experiments from, and even houses a dorm for budding scientists - on my commute to Google each day.<br />
<br />
Second, they are intellectually close - they both run buildings worldwide filled with nerds dreaming of crazy things they can do with technology, that may or may not be useful or a good idea, but from time to time may turn out to be very important to humanity.<br />
<br />
They differ in two important ways: NASA is allowed to do crazy things almost no one else can, like launch satellites, fly fighter jets, and drop astronauts out of the sky. Google has a gigantic pile of cash - <a href="http://online.wsj.com/article/SB10001424052970203914304576629381407871182.html">$42.6 billion</a>. NASA is short on funding as people find it and the space race less and less relevant. And this is where the insane articles people keep asking me about begin.<br />
<br />
With NASA's lacking funds, Google loaned a private 747 - with a giant Google logo on the side - to NASA. Knee-jerk reporters took a photo and reported Google was using federal airbases to fly in style. Since then Google lent several more planes to NASA, and even helped them pay for a fighter jet that NASA used to help monitor their European equivalent's mission.<br />
<br />
So, Google is making up for the US's lack of funding to NASA by handing some of their giant pile of cash to NASA, with no business win on Google's end unless you believe mankind's gradual progress into space is somehow in Google's business interest. To really hammer this home, these reporters for the New York Times and TechCrunch are slamming Google for doing something philanthropic.<br />
<br />
And here's the part that makes me go XKCD on these guys: These aren't some 2-bit bloggers trying to make their name. These are established arms of the media, supposedly the 4th branch of government, meant to monitor government and industry and warn the population when they get out of line. The New York Times article was written in 2008, and updated after the fact with the same knee-jerk headline and a brief, uninvestigated note about NASA maybe owning the fighter jet.<br />
<br />
The TechCrunch article had 3 years to figure out the facts, and regurgitated them all over again. They then go on to say that 8 jets are divided amongst 3 Google Execs: Larry Page and Sergey Brin, the founders, and Eric Schmidt, the CEO. Except <a href="http://www.theregister.co.uk/2011/03/19/eric_schmidt_said_to_join_obama_cabinet/">Eric Schmidt stepped down as CEO</a>, replaced by Larry Page, so he could go work for the Obama Administration. So even in their attempt to exaggerate with a "2.6 jets per executive," they failed to do basic research to maximize their claims to 4 jets per "executive" (Google has hundreds of executives that may at any time have need for a flight to a national or international office or business partner, so it's a weak number anyway).<br />
<br />
The point being that if a company, individual, or politician can't even do something nice and get away with it - let alone be applauded for it - how is the US supposed to ever pull itself out of the hole it's in? The fourth branch is broken, and the idiots writing the linked articles are part of the problem. Shame on you, douchebags.SoopahManhttp://www.blogger.com/profile/16419039735989904700noreply@blogger.com0tag:blogger.com,1999:blog-6021797337997466234.post-44616752267030979892011-12-08T15:49:00.001-08:002011-12-08T15:50:48.448-08:00How To Convert All Text To Lowercase In Google Spreadsheets<br />
<ol>
<li>Select the column, right-click, and click Insert Column Right.</li>
<li>In the first cell of the new column enter formula =LOWER(A1) (or whatever the first cell is of the original column).</li>
<li>Copy the cell with the formula in it.</li>
<li>Select the column and paste - Google Spreadsheets is smart enough to adjust the row number for each pasted entry. You now have a column with lowercase in it - but it requires that column to the left to still be there.</li>
<li>Select the new column again and copy.</li>
<li>Right-click and click Paste Special > Values only.</li>
</ol>
<div>
This wipes out the formulas. You can now delete the original column. Yay hacks. Obviously this applies to anything you could do with a formula in spreadsheets.</div>
<div>
<br /></div>
<br />SoopahManhttp://www.blogger.com/profile/16419039735989904700noreply@blogger.com6tag:blogger.com,1999:blog-6021797337997466234.post-16662062807419334952011-12-05T02:43:00.001-08:002011-12-05T18:15:42.732-08:00Utopia Down UnderA point of perspective: Back home, in the US, we're considering rolling back the healthcare reform bill. It doesn't even get us universal healthcare - it just gets us slightly better chances (not 100%) that we might receive healthcare if we've paid the insurance for it.<br />
<br />
<span class="Apple-style-span" style="font-size: large;">The Australian Deal</span><br />
<br />
Australia and US dollars trade at about 1:1 with minor variation. When I transferred $200 Australian here I paid? $197 US.<br />
<br />
In Australia, here's what every citizen gets - not just their government - everyone:<br />
<ul>
<li>Healthcare. It's largely free. You get sick the government pays for the care.</li>
<li>$14.73/hr minimum wage - nearly double the highest state minimum wage in the US, almost triple the lowest (if you're paid hourly rather than full-time, <a href="http://www.fairwork.gov.au/pay/national-minimum-wage/pages/default.aspx">you make more - $15.51/hr</a>).</li>
<li>Minimum 4 weeks vacation/year.</li>
<li>A retirement pension, even if you never saved any money. <a href="http://www.centrelink.gov.au/internet/internet.nsf/payments/age_rates.htm">Retirement/"Age Pension"</a></li>
<li>If you're unemployed you make $15761.20/year or about $7.58/hr, forever. If you never find another job, you still receive a living wage - enough to cover rent in a suburb (but almost certainly not in a city, where a studio runs $1800/mo). <a href="http://www.centrelink.gov.au/internet/internet.nsf/payments/newstart_rates.htm">Unemployment/"Newstart"</a> <a href="http://www.centrelink.gov.au/internet/internet.nsf/payments/rent_rates.htm">Rent Assistance</a> </li>
</ul>
<div>
There are details to these where you might get paid more or less based on whether you need more (kids, single parent, renting) or less (live with your parents, ~$5/hr), but the numbers don't vary that much.</div>
<div>
<br /></div>
<div>
So just to be clear, if you lose your job in Australia, you'll be fine. If you come down with cancer at 21 before you ever wondered "What healthcare provider should I have?" you're covered. And if you never really make it big - enough to really save up - in retirement... you'll be fine.</div>
<div>
<br /></div>
<div>
<span class="Apple-style-span" style="font-size: large;">Well Then It's a Disaster</span></div>
<div>
<br /></div>
<div>
So the assumption by the kind of person that votes for the kind of person that prevents the US from having any of this is, "Then the entire economy must be in tatters." Well let's check.</div>
<div>
<br /></div>
<div>
<b>Unemployment. </b>Economists say the ideal unemployment rate is 5%, meaning 95% of those wanting to work have jobs and the other 5% are available to employers needing workers. <a href="http://www.abs.gov.au/ausstats/abs@.nsf/mf/6202.0">In Australia it's 5.3%</a>. In the US it's 9%; in some parts of the US it's 15% and in some counties it's over 30%.</div>
<div>
<br /></div>
<div>
<b>Non-Employment.</b> Economists abuse the word "unemployment" to only mean people looking for work, when intuitively it means "does not have a job." They use other names for that, so what's that number? In Australia <a href="http://www.abs.gov.au/ausstats/abs@.nsf/mf/6202.0">49%</a> of the <a href="http://www.google.com/publicdata/explore?ds=dmc7ighkj1lnl_&ctype=l&strail=false&bcs=d&nselm=h&met_y=population">population</a> does not work. Those lazy bastards, much lazier than the <a href="http://www.google.com/publicdata/explore?ds=z1ebjpgk2654c1_&ctype=l&strail=false&bcs=d&nselm=h&met_y=employed#ctype=l&strail=false&bcs=d&nselm=h&met_y=employed&fdim_y=seasonality:U&scale_y=lin&ind_y=false&rdim=state&ifdim=state&tdim=true&hl=en&dl=en">54% who don't work</a> <a href="http://www.google.com/publicdata/explore?ds=kf7tgg1uo9ude_&ctype=l&strail=false&bcs=d&nselm=h&met_y=population">in the US</a>.</div>
<div>
<br /></div>
<div>
<b>Taxes.</b> Well then taxes would have to be insane, right? <a href="http://www.ato.gov.au/individuals/content.aspx?doc=/content/12333.htm">Australia tax brackets</a> - as a point of summary, an Australian making $80,000/year pays <a href="http://www.ato.gov.au/individuals/content.aspx?doc=/content/12333.htm">22% of their total income, or $17550</a>, in taxes. A Californian making the same pays Payroll tax (Social Security and Medicare), Income Tax, Unemployment Insurance, and State Income Tax, totaling 49% - a calculation so complicated it merits <a href="https://docs.google.com/spreadsheet/ccc?key=0AlGXt-ELbjTQdDdKQ0xqalJ5SzN2QURrYXpKbFRFTGc">its own spreadsheet</a>. Note that the Californian still has to pay for their healthcare after all that.</div>
<div>
<br /></div>
<div>
I'll update this with a bit more info and some conclusions later on. But seriously America... get your sh** together.<br />
<br />
<span class="Apple-style-span" style="font-size: large;">Updates</span><br />
<br />
To compare with <a href="https://docs.google.com/spreadsheet/ccc?key=0AlGXt-ELbjTQdDdKQ0xqalJ5SzN2QURrYXpKbFRFTGc">the US spreadsheet for $80k</a>, I've created another that shows <a href="https://docs.google.com/spreadsheet/ccc?key=0AlGXt-ELbjTQdFVZdTlxMnM0c08teF9UZ2ZnNGF6X3c&hl=en_US#gid=0">several income levels under the Australia tax regime</a>. Both spreadsheets assume you rent an apartment, live alone, and have no kids, because I'm self-centered. The resources to build out a version for married with a mortgage and 3 kids are linked from this post and the spreadsheets, so if you build one, please share.<br />
<br />
Australians point out to me that healthcare in Australia has 2 major caveats:<br />
<ul>
<li>There is essentially a $500 annual deductible. That is, the first $1000 worth of care in a year you pay 50%; the remainder is on the government. However, there is a debate in which they are considering eliminating this deductible.</li>
<li>Many Australians fret at the long waits for doctor's appointments and go to pricier doctors instead. When they do, they exceed the limits the government will reimburse. When that occurs, the government kicks in the maximum and you pay the rest. Often these private doctors charge about double. So there is an inconvenience to free care, and occasionally an undue lack of urgency. On the other hand, these private visits are often so expensive in part because they're lavish - they involve spa treatments etc.</li>
</ul>
<div>
I need to include a comparison to MY healthcare's caveats. I called my healthcare plan and this is literally what they told me - I'm not exaggerating what they said or misreading my plan. This is the plan I pay for with Anthem Blue Cross:</div>
<div>
<ul>
<li>If I have a heart attack, it's my job (yes, struggling in the hospital) to gather up the relevant paperwork and submit it to them as a claim.</li>
<li>If it occurs overseas, not only is it my job to do that, but also to cover the full costs of coverage myself in the meantime, and they will optionally reimburse me for what they deem as covered.</li>
</ul>
<div>
Australians have to worry about a $500 deductible that may be legislated away. I have to worry about owing $500,000, how to gather what paperwork to send to who, what lawyer to sue my healthcare company with to recoup my costs, and whether I'll live long enough to see the court case through.</div>
</div>
</div>SoopahManhttp://www.blogger.com/profile/16419039735989904700noreply@blogger.com1tag:blogger.com,1999:blog-6021797337997466234.post-42409437426647068702011-11-14T09:31:00.001-08:002011-11-14T09:34:47.486-08:00Crazy NeighborsThere's some crazies across the street that amuse me with some amazing shouted quotes periodically.<br />
<blockquote class="tr_bq">
You listen to <i>me</i>. I'm a <i>woman.</i> I don't care if my parents still treat me like I'm a child. You shut up! I'm a woman. I'm one of the most beautiful women in the universe!</blockquote>
-Ugly woman who lives across the street, to a man driving awaySoopahManhttp://www.blogger.com/profile/16419039735989904700noreply@blogger.com0tag:blogger.com,1999:blog-6021797337997466234.post-38522391266901729872011-09-06T16:20:00.000-07:002011-09-06T17:56:43.626-07:00Challenge: Get Jobs Numbers in Real TimeE. J. Dionne of the Washington Post can be a bit <a href="http://en.wikipedia.org/wiki/Keith_Olbermann">Keith Olbermann</a> in his rants, so read with a step back:<br />
<a href="http://host.madison.com/news/opinion/column/ej_dionne/article_ad3f639e-ee03-5a49-a6e9-9f6a38a51559.html">The Last Labor Day?</a><br />
<br />
But he makes a great point: People too often view the stock market as the real measure of the economy. He notices that the President addresses it, that many news shows hold him and Congress accountable to it, and that many news stories treat a major turn in the stock market as though it were indicative of the entire economy.<br />
<br />
He goes on to make the obvious point that this is not the case - the fact that less than 10% of the US population capable of seriously investing in the stock market are doing better or worse on average isn't very relevant to the economy as a whole. And if you take bubbles into account, the stock market can jump up and down with no relevance to the economy - it can even say things are going well when they're really falling apart.<br />
<br />
What matters is employment as a whole - are people working, and what are they doing?<br />
<br />
He points out that the stock market is used instead because it's available in real-time.<br />
<br />
It seems ridiculous but I think he may have found a simple truth. Why DO we use the stock market, and not jobs numbers, as indicators of how the economy is doing? When we get stock numbers we can all check them in real-time, whether you're a citizen, reporter or the president: <a href="http://finance.google.com/">finance.google.com</a>. But getting jobs numbers is a lot murkier, never real-time, and your access to those numbers varies based on where you work.<br />
<br />
So it's time to pose a challenge to the American public. Who among us can build a real-time indicator for employment in the US?<br />
<br />
Giving it some thought, the first step is reporting. The most obvious approach is to ask people to report they took or lost a job, but it's not likely to succeed. On the other hand, employers already do report in with several governmental agencies when they hire a worker. There's a significant amount of paperwork that generally has to be filed within a tight timeline of when the worker is hired. So there's your source of data.<br />
<br />
The remaining steps are accessing it in aggregate, and offering it in real-time. What's the best way? Do we ask the Obama Administration to offer their existing numbers up over an API? Is there an existing database we can ask for read access to? What's the best way to do this?<br />
<br />
<b>Update:</b><br />
Monthly isn't real-time, but Google has monthly <a href="http://www.google.com/publicdata/explore?ds=z1ebjpgk2654c1_&ctype=l&strail=false&nselm=h&met_y=employed#ctype=l&strail=false&nselm=h&met_y=employed&fdim_y=seasonality:U&scale_y=lin&ind_y=false&rdim=state&ifdim=state&tdim=true&tstart=878803200000&tend=1454745600000&hl=en&dl=en">US Employment in millions</a>, and with a lag time of 2 years, the <a href="http://www.google.com/publicdata/explore?ds=kf7tgg1uo9ude_&ctype=l&strail=false&nselm=h&met_y=population&scale_y=lin&ind_y=false&rdim=state&ifdim=state&tdim=true&tstart=868172400000&tend=1246863600000&icfg&uniSize=0.035&iconSize=0.5">US population</a>.<br />
<br />
If you assume the US population is now 314 million, some math for August:<br />
140 million employed / 314 million = 44.6% employed, or put another way, 55.4% of the population of the US does not work.<br />
<br />
There's a pointless number provided by the US Dept of Labor on the size of the Labor Force, but they don't count those not actively looking for work/those who have given up, which is ridiculous. Not a useful statistic. If you did use that number you'd get what you occasionally hear on the news: 9% unemployment, or put another way, of the <50% of the US that seeks work, 9% of those aren't finding jobs.<br />
<br />SoopahManhttp://www.blogger.com/profile/16419039735989904700noreply@blogger.com0tag:blogger.com,1999:blog-6021797337997466234.post-63591522172348776812011-08-30T00:03:00.001-07:002011-08-30T00:05:43.592-07:00Overlearning the GameA good article on politics and corruption:<div><a href="http://andrewoneverything.com/the-overlearning-the-game-problem">http://andrewoneverything.com/the-overlearning-the-game-problem</a></div><div>
<br /></div><div>Short on proposed solutions. Here are two:</div><div>
<br /></div><div><div>1. The Severe/Ben Franklin approach: The founding fathers were in a time of revolution, and many were quoted as expecting more revolutions to occur that would throw out our Constitution in favor of an even better one in 50 years or so. With this you also throw out all the corruption of those who have not only "overlearned the game," but also those who have invested massive amounts of wealth to change society's rules so its wealth is diverted back to them. This seemed likely to those in the midst of a revolution, but not very likely to us, and, well... what would happen to all my stuff?</div><div>
<br /></div><div>2. The Gradual/Videogame Cheater approach: Game authors attempting to fight cheating fight on a naive technical front first, and later a complex behavioral front second. The technical front is like many of the basics of campaign finance laws, like "You can't pay people to vote for you." The obvious hacks. But you eventually realize you're not really trying to stop obvious hacks, you're trying to stop creative, insidious ones too. So you model good behavior, and basically treat everything outside of it as cheating. The challenge is to include modeling very strong performance in that model so you don't risk punishing it if it arises legitimately.</div><div>
<br /></div><div>Google is arguably working against SEO entities who "overlearn the game" and either google bomb or push their company's result to the top. The big difference between Google/Videogame companies and law is how nimble they are. The companies acknowledge there will be cheaters and have teams to quickly respond to new workarounds for the system. The law sits idle and a big messy Congress that can be corrupted by cheaters themselves is in charge of fixing it, in a really ugly process. Arguably Congress should continue to set the broad strokes like "Prevent campaign finance abuse," but a nimble more company-like organization within the government ought to be responsible for implementing that and quickly responding to new abuses.</div><div>
<br /></div><div>Wall Street actually has a limited version of this model - the SEC is not an elected body - but it's somewhat limited in scope, and impotent when for example its powers are delegated to the OMB when it comes to Collateral Debt Obligations, and down comes the world economy.</div></div><div>
<br /></div><div>I think Congress might be suited to setting the powers more broadly and the metrics for success on these nimble organizations, but they definitely aren't suited to creating the laws that actually trap the cheaters. They're just too slow, by design.</div>SoopahManhttp://www.blogger.com/profile/16419039735989904700noreply@blogger.com0tag:blogger.com,1999:blog-6021797337997466234.post-50459509491779016102011-08-11T19:02:00.000-07:002011-09-06T16:20:59.281-07:00No Student Loans for Low-Pay Degrees<div>In 2015, if a private college can't show that at least 35% of graduates with a given degree can pay back their loans, students entering that major won't be eligible for student loans. Pretty smart program.</div><div><a href="http://www.npr.org/2011/06/02/136897408/for-profit-colleges-face-new-rules">http://www.npr.org/2011/06/02/136897408/for-profit-colleges-face-new-rules</a></div><div>
<br /></div><div>Not surprisingly, private colleges are upset about it - they want that free money to keep people entering majors they know don't lead many kids to successful careers.</div><div>
<br /></div><div>It would be nice if a law went farther, and required students entering a major or considering majors to be informed of:
<br /><ul><li>Average employment rate</li><li>Average employment rate within the chosen field</li><li>Average salary in 1 year and 5 years</li><li>Average time to repay</li><li>Average delinquency rate</li></ul>of past graduates as a whole. It's fine if people want to say they went to college for intangible hard-to-measure reasons, but when it's putting you in a tangible $100,000+ in debt, it's time to be serious.</div>SoopahManhttp://www.blogger.com/profile/16419039735989904700noreply@blogger.com0