A Sceptical Mind

When I originally decided to write this post I was a bit hesitant about attacking Linus too vigorously. I do have a huge amount of respect for what this man has achieved, however I’m not going to censor myself in any way and need to say what has been irritating me for some time.

About a month ago I saw a news feed related to Mr. Torvalds’ comments here: http://article.gmane.org/gmane.linux.kernel/706950. His comments has since then been on my mind quite a lot and have actual decreased my regard for this man’s opinion, as he seems completely ignorant to the state of things.

To be fair, I should state that I do work with computer security and I use FreeBSD on my Laptop and several of my servers, so I might be a bit bias. However I do also have a couple of Linux machines, a couple of Linux servers and two Microsoft Windows systems - no Mac however, but that’s another discussion. But even though his comments were somewhat directed at people like me, I still don’t fit his stereotype completely (and don’t get mad easily) and therefore believe I am objective enough to comment in an adult way.

So - let’s get started. Let’s just put in his quote in it’s complete form and I’ll begin explaining why he’s wrong:

Btw, and you may not like this, since you are so focused on security, one
reason I refuse to bother with the whole security circus is that I think
it glorifies - and thus encourages - the wrong behavior.

It makes "heroes" out of security people, as if the people who don't just
fix normal bugs aren't as important.

In fact, all the boring normal bugs are _way_ more important, just because
there's a lot more of them. I don't think some spectacular security hole
should be glorified or cared about as being any more "special" than a
random spectacular crash due to bad locking.

Security people are often the black-and-white kind of people that I can't
stand. I think the OpenBSD crowd is a bunch of masturbating monkeys, in
that they make such a big deal about concentrating on security to the
point where they pretty much admit that nothing else matters to them.

To me, security is important. But it's no less important than everything
*else* that is also important!

			Linus

So why is he wrong? Well, it’s really not that complicated - he neglects to recognize what’s important for the biggest users of Linux systems in the world - the businesses and universities! The most important issues for these users are and have always been: Stability, Security and Reliability. All these humongous users have systems that need to stay up and running 24-7 all year long - without incident! So to claim that security issues aren’t more important than “normal” bugs is just plain naive! Functionality isn’t important for anyone but the end users, as the companies and institutions have already made the functions they want available - they don’t want their users to be able to do a bunch of stuff they didn’t expect or plan, so for them it doesn’t matter at all. Stability is another issue however and I do agree there isn’t much difference between a stability issue and a security issue.

Also the stuff about OpenBSD users being black-and-white - he’s got to be kidding right? By simply stating this without proof, he makes himself seem untrustworthy to me, because in my experience, I’ve seen the exact opposite! Linux users are the people whom are black-and-white, the people whom hate Microsoft for no other reason than they’re not Linux, the people whom claim all software should be free and whom believe that enterprises are killing innovation. Even though I’ve seen these things, I still wouldn’t conclude “Linux people are often the black-and-white kind of people…”, as I had no way of knowing this unless I actually knew enough of the world population of Linux users to claim that the majority believe certain things.

Also “Masturbating monkeys” - Stop being a fucking child! I can respect using profanities to emphasize your points and it would be easier to respect you if you weren’t the fucking creator of a struggling OS - but seriously… self-pleasuring primates? - Grow up and show some respect! The OpenBSD project has come out with a lot of good stable software and talking about them in this way is basically just like spitting in their fucking faces! It’s no different than if I said Linux users were donkey-fucking scat-lovers - an equally retarded statement!

And concerning Mr. Torvalds’ last point:

To me, security is important. But it's no less important than everything
*else* that is also important!

Most will probably agree with this - as I also do - however we apparently have very different views of what is important and what isn’t important!

LEARN BIATCH!

So as some of you may have read, I flunked Linear Algebra a few months ago due to picking a subject I hadn’t read or prepared in any way. So this time it was up for a re-match and I kicked Linear Algebra’s ass! Picking the subject of Orthogonality and Unitary Matrices - Schurs Theorem, Spectral Theorem etc. A very nice subject actually.

The score as of right now:

Lin Alg: 1

Michael: 10

Linear Algebra got pwn3d!

For those who might be interested, my course materials, notes and dispositions can be found here:

http://www.daimi.au.dk/~illio/courses/LinAlg/

Be aware however, the notes are in Danish.

I was watching tv the other day and suddenly this add came up:

Mikrolån: Du kan vælge at låne 1.000 kr. eller 2.000 kr. (til Danmarks laveste afgift). Lånet skal tilbagebetales inden 30 dage.

Now.. this is obviously Danish. Roughly translated it means:

Micro loans: You can choose to loan 1000 Danish Kroners or 2000 Danish Kroners (at the lowest rate in Denmark). The loan has to be repaid within 30 days.

So let’s see, how does this work? Well basically, you loan 1000 DKK or 2000 DKK and then repay the money + a fee of either 300 DKK or 450 DKK respectively.. oh yeah, and you have to do all this within 30 days. So basically you loan 2000 DKK and suddenly you’re 2450 DKK in debt and you have to pay it back within 30 days.. so you go out, have a night on the town, maybe buy a new mobile phone and then you’re pretty much broke again. So this took maybe 1-2 days and now you have under 30 days to earn 2450 DKK (after taxes of course) and repay those fuckers with that money.

To sum up here: You begin your month thinking: “I need money”. You go to folkia.dk and apply for a loan of 2000 DKK. You get your money (which actually assumes a bunch of stuff about your current job situation, e.g. a monthly income of over 10000 DKK) and then you immediately start using the money. A few days later you’ve used the money and now you need to find a way to earn 2450 DKK within 30 days, which in Denmark means around 4600 DKK before taxes for most people. So in all this time, why the hell didn’t it occur to you to just earn the fucking 2450 DKK in the first place and use the money at the end of the month you fucking retarded piece of shit!

Companies like this one seriously makes me sick! They exploit the stupidity of people who are already in financial trouble and generally lead to a more unstable population of people stressed by debt.

I hope people in Denmark will be smart enough to see through all of this and not make stupid mistakes.

Let me first state: I did this review not because many have heard about Me.dium’s search engine - but because one of the people behind it wrote a comment on my blog earlier today and requested I took a look at it - and so I did!

After having just reviewed Cuil, the alleged competitor to Google, it’s quite an uplifting feeling to go to http://me.dium.com/search. At the very least, here is a search engine that can actually claim originality. Not that we haven’t seen popularity search engines before, but never in this way.

When you go to me.dium, you are met with your typical search bar and two buttons: Search and I’m feeling social. Also on the page is a list of search strings just typed in by other users. Now for a security guy like myself I’m a bit reluctant to call the “suggestion list” a good idea. Theoretically it’s a good idea because it can give people interesting things to read. I myself found out Bernie Mac apparently almost died recently. On the other hand the list could potentially be a bit damaging if users start typing in personal information like their e-mail address, name, address and so on. It’s a well-known fact that many try to “google” themselves to see how much information is publicly available on them - doing the same thing here might actually lead you into more trouble than you were before you did the search. However it largely depends on the algorithms set into place to control that list and if it’s handled properly it shouldn’t be a problem.

When it comes to the actual standard searching, me.dium does a fairly good job actually. There’s nothing really revolutionary about it, but it does what it’s supposed to and I got way more results than I did on Cuil (however not anywhere near what I get on Google.. but me.dium is still only released as an alpha version so what can you expect really?). The I’m feeling social feature is also quite interesting as it displays what other users like - thereby sorting out a lot more spam- and/or irrelevant sites so that you get a more precise and relevant search. I must say I really like that feature!

Now for the layout. Well, I like the colors and I like the graphics. But what I don’t like is the blatant Google rip-off. I’m feeling social is a very cool feature, but as for the name anyone can see it’s a complete rip-off of Google’s I’m feeling lucky. I would have liked a bit more originality here! The same goes for the search results, which also look way to much like Google’s - actually so much that I would fear a lawsuit had I been from me.dium.com.

So all in all I like Me.dium Social Search soo much better than Cuil and I really think it has some new and cool features. I don’t believe it’s a realistic competitor to Google, as it doesn’t support many of the cool features Google does (define, site, image searching, calculator, currency converter etc.) and I’m a bit afraid Me.dium Social Search can’t handle the pressure of 60.000.000 unique users pr. hour or whatever Google actually handles (probably a lot more) and of course - Me.dium needs to index more sites. That being said, it’s not unrealistic that Me.dium Social Search, given time, could potentially be a competitor to Google - So my advice to the dium.com people: Be original, stay original, increase power and ease of use and just expand with servers and new indexed pages - maybe in 5-10 years people will be using your search engine!

I recently tried out the “new” search engine Cuil which supposedly was the new up and coming competitor to Google. Now, I really went into this with an open mind and thought: “Hey, if they claim to be better than Google, they probably have even better features that make my searching and related tasks easier” — well, I was wrong!

Cuil is in many ways a semi-finished project. It doesn’t have superior searching in any way. It actually didn’t even have any relevant results half the time I searched for things.. Things that Google did have relevant results for.

One of the other things that make Google special is their many functions. As in you can use commands like define: and site: , and even use Google as a calculator with support for trigonometric functions and currency converter. Cuil has none of these features!

Also, when it comes to Cuil’s layout, they’ve said that the picture-paragraph thing is there because users should visit websites based on pictures and not “meaningless” text.  While I can partly agree with this, they do a terrible job of actually making this work. The pictures shown are seldom relevant and you have a tendency to choose the results with the pictures - yet the real information could easily be on a website without a relevant picture. Text is still the single most relevant thing we search for - it’s why we use the Internet.. so that we can share information.. and text is information.. images are seldom necessary..

All in all I’m very disappointed in Cuil and at the moment I don’t believe for a second that it will even remotely be a competitor to Google…

I’m definitely sticking to Google for the time being.