guessWhy's comments

No, the desktop is needed to run Microsoft Office.

I better idea might be to use convergent encryption only for really large files. Practically this would mean deduplication of software, movies, etc.

They don't seem to do that, though. Note that they claim that it's a random key and that deduplication is "much more likely" to happen when files are copied. If they would derive the key from the data in a deterministic way, they could always dedup and the previous statement (deduplication of copied files is more likely) could not be true.

edit: Clarify.

Yes, but the first part makes no sense. If the 128-bit key is indeed chosen at random for each file (as it should be), the probability that the same key will be chosen again for a second upload of the same file is effectively zero (1/2^128).

"Agree". http://www.installmonetizer.com/AT_images/process.gif

I used the following heuristics (some parts added afterwards):

1. Helvetica has level edges, Arial is angled (as ef4 said). Particularly important were "t", "e" and "a", "S", "G", C".

2a. For capital letters, if there is an "R", the Helvetica one is curved in the bottom right part while Arial uses a straight line.

2b. For a capital "Y", the Arial one has the same length in all directions while the Helvetica one is shorter at the bottom. (Alexx indicated a difference).

2c. The jags/gaps in the capital "M" extend further to the top for Arial. This can be used to figure out MATTEL.

3. Otherwise, the one that looks fatter is Helvetica.

It looks fine to me ?! Flash is not used at all and the design shows some taste.

Seems to be related to the straw man:

The question is "Should whiskey be prohibited or not?" but he takes it to be "Is there anything good or bad about whiskey?" or "Do I think whiskey is good or bad?".

I don't really understand the quote. What does it mean/imply?

Wow. It's also worth reading the comments below the original article.

"You’re scaring me here. Please sick around and talk to us. You can always die later. There’s no rush."

"Jeez, Aaron - get some help. Now. Suicides talk about it before they do it."

etc.

The comment you replied to was certainly not a reference to Nazi Germany at all. Germans understand that a privacy-related reference to german history is usually a reference to the former state of East Germany which was famous for massive surveillance.

Yes, they do (The protocol is called ActiveSync). I don't know if it's on a per-account basis, though.

I think changing the user agent to only report the major version would already go a long way.

Yes, but it takes more than removing most of the identifying information.

First, the precise browser version and OS can probably always be identified by checking for supported features, bugs etc. even if the extreme measure would be taken to remove the user agent string.

Add the screen resolution, IP, timing and request patterns (+) and we are all screwed.

(+) e.g. rule out users that are using other sites at the same time. Note that it would be possible to determine if a page is in the currently focused and visible browser tab and forward that information to the tracker.

You said it yourself: everytime your Firefox build is updated, you change identity.

The expectation that customers should act in a way to basically create the conditions for a perfectly free market is misguided. Not invoking legislation just makes things painful for everyone. Sure, I can switch to Android - but the cost of buying everything again is rather high. Tomorrow I might have to switch back for similar political reasons.

Invalid generalization. If you want money to be part of the index, they should be able to remove you.

Sure, but this was the case before CDNs as well. Unless you are a Tier 1 network you usually pay a fee to your upstream carrier.

However, the ITU would like to charge across many networks and discriminate based on the type of service provided.

So if data from your network A reaches the customer through networks B, C and finally D, then D would like to charge you to deliver it and not slow down things artificially.

Why?

Verisign merely signs your certificate. It does not even know your private key and hence also can't pass it to governments.

Correct.

Furthermore, at least Chrome restricts most Google domains to a known CA. So MITM is not possible for Gmail either.