December 5, 2016 brianradio2016


Say goodbye to my little friend.

I wanted to tell you how gorgeous the 15-inch display was. I wanted to tell you how astonishingly fast the PCIe-based SSD storage was. I wanted to tell you how I’d grudgingly come to accept the shallower keyboard, the Touch Bar, and the four USB-C connectors.

For months now, I’ve been looking forward to getting a new fully-equipped, top-of-the-line 15-inch MacBook Pro. For weeks, ever since I placed my order, I’ve been looking forward to telling you about it once it arrived.


2016 Holiday Buyer's Guide

2016 Holiday Buyer’s Guide

Check out CNET’s 2016 holiday gift guide for expert advice, reviews, and recommendations for you and your family.

Now, that won’t happen.

I just cancelled my order. First, I’ll explain the technical reasons for my decision. Then I’ll discuss some factors you may wish to consider for any professional purchases you might want to make.

The tech

There is a fundamental architectural difference between the new 13-inch MacBook Pro and the new 15-inch MacBook Pro. The 15-inch model comes with a dual GPU (graphics processing unit) configuration. The 13-inch model only comes with one graphics processor, built into the CPU.

CNET: New MacBook Pro: Should you upgrade?

It’s pretty interesting how the dual GPU architecture is supposed to work. Part of the time, the lower power, but also lower-performing, on-chip Intel HD 530 graphics processor is used. When crunch time comes, the Radeon Pro 460 with 4 GB of video RAM kicks in and pounds pixels onto the screen.

I’ve used this dual GPU architecture before. About four years ago, I bought the most powerful Windows laptop I could find, a beast of a Sager. It had a dGPU configuration.

When it worked, it was breathtakingly fast. When it worked.

Over the 18 months or so that machine was my main machine, I had constant driver problems. The GeForce GTX 670M didn’t always run properly. The on-chip Intel video driver wouldn’t properly change settings. System hangs and freezes attributable to driver conflicts were a regular occurrence. It was maddening.

When I moved off that laptop as my daily work system, I swore I would never buy another dual GPU machine.

Apple’s Mac future resides in the cloud | MacBook Pro Touch Bar review in one word: Meh | Five reasons why Apple’s new MacBook Pro makes me want to switch back to Windows | The MacBook Pro is not the root of all evil | Is that a PC on your desk? Windows hybrids, Macs and iPads struggle for share

The MacBook Pro is actually not a replacement for that Sager. I replaced that with the super-powered iMac I use as my daily work machine. This new MacBook Pro is destined for work in the studio for webcasts and interviews.

I’m getting a Mac because that job requires some Mac only software. Yes, there are wonderful Windows machines out there. But in my case, for the studio, I need a MacOS machine.

I had been holding off on purchasing a new Mac for about half a year, biding my time, knowing that the beefiest possible mobile Mac would soon be within my grasp. When the new MacBook Pros were announced in October, my waiting was rewarded with a slightly queasy feeling, because the most obviously powerful one was a 15-inch machine with dual GPU.

That nauseous feeling I had when placing that order wasn’t just because of the $3,000(!) price tag. The dGPU architecture gave me pause because of my previous experience. But, hey, this is Apple, right? They have to have figured this out. After all, this is far from their first dual GPU MacBook Pro.

I went against the promise I had made to myself, and placed my order.

The problem

Apparently, some new 15-inch MacBook Pros are experiencing failure conditions. I first became aware of the problem in a MacRumors article a few days ago. Users are reporting glitches and crashes, along with weird screen artifacts. This behavior is apparently most prevalent on the higher-end machines, with the Radeon Pro 460 GPU, which is the model I ordered.

I spent a few hours reading through forum posts, which made it clear to me that this wasn’t an isolated incident. Quite a few people were reporting serious problems – problems that necessitated returns back to Apple for system repair or replacement.

So what exactly is the problem? That’s not clear. It seems to be centered around the dual GPU, but whether it’s a software glitch fixable in an OS update, or a hardware issue that requires mobo replacement, isn’t yet clear.

Since many of the reports described the problem occurring while doing high-intensity activities, it could be a heat related problem. That’s not known yet, and there’s been no official statement from Apple.

I cancelled my order

This is not a decision I would advise everyone to make. In fact, it goes to a theme we discuss often: you need to make your tech decisions based on your own usage needs.

Let me tell you about my usage needs. The 15-inch MacBook Pro I ordered was slated to replace the Mac mini in my studio. It was to allow me to do live recording and broadcast in the studio, and then pick it up, dock it at my desk in my study, and work on post production there.

All that seems fine, except for one detail. This machine absolutely cannot be allowed to fail. I do real-time webcasts, with hundreds to thousands of live participants, often across multiple continents. Large teams from huge organizations spend months putting these special events together.

The success of these events is very much due to a team effort. However, if my computer fails in the middle of a webcast, failure could be directly and solely attributable to me. I must not allow that to happen.

I also do video interviews. Sometimes, I’m the guest on a major network during a live feed. Sometimes, I’m interviewing someone who is a major “get” and this is our one chance to talk. Once again, failure is not an option.

I need something rock-solid reliable. My aging Mac mini has not failed me. Not once. Not a single crash. Not a single live broadcast failure even remotely attributable to it. It can be counted on. The only reason I’m moving off my very trusty old Mac mini is that it’s old, and it just doesn’t have the performance I need to run modern versions of the production software.

Based on the reports of 15-inch MacBook Pro failures, I can’t take the chance. It might, in fact, be a wonderful machine. It might be fine. Then again, it might not. How can I ever trust that it won’t break at the worst possible time?

I’m not saying you should not buy this machine. For me, though, it’s a non-starter. Your mileage may vary. If you have a work environment that has built in tolerance for downtime and crashes, and you don’t mind dealing with growing pains, or gambling with the possibility of having your machine spend time in the shop for repairs, this may turn out to be a great purchase for you.

By the way, I have to give Apple credit for making it easy to get out of the deal. Cancelling was a simple, one-button press affair. Compare that to the four-day grief fest our cable company put us through when we decided to drop cable TV service after the election. Points to Apple for making the cancellation process hassle-free.

What will I do instead?

Well, my original plan was to take back my sweet little 2015 i5-based MacBook Pro from my wife, and replace it with a spare Mac mini. It would be a bit underpowered, but I figured I could make do.

However, she quickly disabused me from that approach. Verbally, she said, “I guess that’s okay, although I actually finally have it working now,” but her eyes said “Take it and I’ll kill you where you stand.”

Instead, I’m ordering another new MacBook Pro, but I’m going for a 13-inch model that doesn’t have the second GPU. Yes, I’ll definitely be sacrificing graphics performance, but it’s a good trade-off given the mission-critical nature of the work this machine will be doing.

I don’t mind the smaller form factor, because there’s very limited surface space in the studio. The drop in screen size shouldn’t be too great a loss. While the 13-inch’s i7 processor only has two cores, it does have hyper threading, which can be helpful. It’s not quite the beast I’d like, but at least it won’t turn into a monster at the worst possible time. I’ll max out the very fast storage. It should make a fine little workhorse.

Sadly, these machines aren’t available now, so it will be sometime in January before I’ll get to set my thumb on the new Touch ID sensor.

You can follow my day-to-day project updates on social media. Be sure to follow me on Twitter at @DavidGewirtz, on Facebook at, on Instagram at, and on YouTube at

December 2, 2016 brianradio2016

I like the Start app, not only because it’s an easy-to-use alarm, timer, and stopwatch app, but also because it can be used to trigger certain apps (which include Facebook, Fantastical, Instagram, Music, Pandora, Path, Reeder, Rdio, Safari, Sparrow, Spotify, and Tweetbot) when the timer reaches zero.

December 1, 2016 brianradio2016

Like a man eager to show off his new watch, Google is encouraging anyone running IT operations to ask it for the time.

The company will let anyone use its NTP (Network Time Protocol) servers, a move to help IT shops cope with the next “leap second,” which will be tacked onto 2016 just after midnight on Dec. 31.

Leap seconds help to keep clocks aligned with Earth’s rotation, which can vary due to geologic and even weather conditions. But an extra second can wreak havoc with applications and services that depend on systems being tightly synchronized.

Most Internet-connected devices get their time through NTP, an open-source technology that’s used all over the world. NTP has its own problems, mainly around funding, but it’s long been the standard. Google runs its own NTP servers and uses them to ease its systems through leap seconds, according to Michael Shields, technical lead on the company’s Time Team, in a blog post on Wednesday.

December 1, 2016 brianradio2016

It’s no secret that devops and IT security, like oil and water, are hard to mix. After all, devops is all about going fast, while security is all about proceeding carefully. However, both devops and security serve a higher authority—the business—and the business will be served only if devops and security learn to get along.

Security can (and should) be baked into the devops process, resulting in what is often referred to as devsecops. IT security teams are obliged to understand how applications and data move from development and testing to staging and production, and to address weaknesses along the way. At the same time, devops teams must understand that security is at least partly their responsibility, not merely slapped onto the application at the very end. Done right, security and devops go hand in hand.

Because half of this equation is about making devops more security-aware, I’ve put together a primer on some basic security principles and described their applicability in devops environments. Of course, this list is only a start. Feel free to comment and suggest other terms and examples.

Vulnerabilities vs. exploits

A vulnerability is a weakness that may allow an attacker to compromise a system. Vulnerabilities usually happen due to bad code, design errors, or programming errors. They are basically bugs, albeit bugs that may not interfere with normal operations of the application, except to open a door to a would-be intruder. For a recent example, look at Dirty Cow.

November 29, 2016 brianradio2016

games-newsroomcover.pngSource: Facebook

Get ready to either fall more in love with Facebook Messenger, or start to dislike Facebook game invites on the social platform even more than you already do. Games are now built into Messenger.

Facebook on Tuesday announced an update to its Messenger platform, adding a new service called Instant Games.

What’s Hot on ZDNet

Instead of hiding games — such as basketball or soccer — behind secret emojis as the company has done in the past, Facebook is making games a central part of Messenger. Meaning with just a few taps you can invite a friend in a private conversation, or several friends in a group chat to compete at Pac-Man or Space Invaders.

According to the announcement, Instant Games are available in 30 countries on Android and iOS devices starting today. However, I have yet to see the game controller icon that’s needed to start a gaming session, and don’t seem to have any available updates to the Messenger app.

Facebook posted a video showing users how to invite friends to a game here.

Currently there are 17 titles available:

  • Pac-Man
  • Galaga
  • Arkanoid
  • Space Invaders
  • Track & Field 100M
  • Shuffle Cats Mini
  • Words with Friends: Frenzy
  • Hex
  • Everwing
  • Endless Lake
  • Templar 2048
  • The Tribez: Puzzle Rush
  • 2020 Connect
  • Puzzle Bubble
  • Zookeeper
  • Brick Pop
  • Wordalot Express
November 29, 2016 brianradio2016

Apple’s iPhones and iPads remain the best mobile devices available, and iOS remains the best mobile operating system. All are sophisticated, with many layers of technologies that provide the most cohesive ecosystem of functionality on the market today. Macs remain stylish and high-quality, and they make for great complements to Apple’s mobile gear.

So why are so many people glum or at least unenthusiastic about Apple? Every Apple fan I meet expresses frustration, concern, and puzzlement on the new Apple products—I now rarely hear the wonder and excitement we have long associated with Apple fans. People fret about ports and dongles, and they wonder why anyone invented haptic buttons and the Touch Bar. They start looking at yesteryear’s models when the new ones come out. And they don’t crow about what cool things they can now do.

For several years, Apple has slowed down its pace of mobile innovation, making each new iPhone or iPad model less compelling an upgrade. The iPhone 6s’s 3D Touch is hardly anything to get excited about, for example. There’s also been no meaningful Mac innovation for several years, though 2014’s OS X Yosemite introduced interesting developments in MacOS.

Worse, this year’s iPhone 7 became controversial for removing its audio port, requiring people buy adapters and eliminating their ability to charge their iPhone while listening to music, watching videos, and in some cases making calls. To add insult to injury, the wireless earbuds promised to make the end of the audio jack OK have been delayed indefinitely—suggesting something is very wrong in their design or manufacture.

November 22, 2016 brianradio2016

When I go to practitioner conferences outside Silicon Valley, I’m reminded of the separation between the tech industry’s notions and what IT organizations deal with every day. It’s like they’re living in separate worlds.

But I’ve noticed a few recent Silicon Valley concepts now taking root in the mainstream of IT, after years of being the next big thing within the Valley itself. Both their migration into the real world and the fact that mainstream IT doesn’t jump onto the latest technology bandwagons are good because mainstream IT does need to evolve, but it also needs to be careful about what Silicon Valley notions it adopts.

What cool concepts are making their way into mainstream IT from the current fads in Silicon Valley?

One is devops, the more flexible approach to development testing and deployment that breaks down barriers between developers and IT operations staff. In my admittedly unscientific sample of practitioner conferences, I’m seeing the on-the-ground IT pros begin to try the concept, dealing with the political issues that arise when you break down ownership boundaries while trying to get the pace advantages that devops promises — a pace they need to get to in the modern world where IT projects simply can’t take years any longer.

November 17, 2016 brianradio2016

With the rise of ransomware against hospitals, attacks against the Democratic National Committee (DNC), and even major tech CEOs getting hacked, no one is immune to having their information stolen. Today’s attackers are sophisticated, state sponsored, and armed with advanced techniques to hit specific targets. Despite an estimated $75 billion per year spent on security, adversaries dwell undetected in networks for an average of 146 days—exposing organizations to massive theft and business disruption. Organizations must work to close this gap and thwart advanced threats before damage and loss occur.

Endgame helps organizations close the protection gap with a unified platform for preventing, detecting, hunting, and responding to known and unknown threats at the earliest stages of a cyberattack. Endgame enables Security Operations Center (SOC) and Incident Response (IR) teams to automate the threat hunting process, from asset discovery to response, dramatically reducing the time to detection and remediation. Time ordinarily spent on forensic analysis and compromise assessment can be shifted to attack detection and response, pre-empting advanced attacks, and discovering and eliminating intruders before they cause damage and loss.

The Endgame platform does not depend on signatures or indicators of compromise (IOCs). Rather it draws on machine learning and other advanced analytics to detect not only malware, but patterns and signals of maliciousness. The Endgame platform is built to discover attackers even when they are dormant, as in the case of the DNC attacks, or missed by traditional signature-based tools, reducing the time and cost associated with incident response and compromise assessment.

The hunt for APTs

The DNC attack was attributed to two different groups: APT28, or Fancy Bear, and APT29, or Cozy Bear. APT28 is a Russian-based threat actor that has been active since the mid-2000s. APT29 is the adversary group that last year successfully infiltrated the unclassified networks of the White House, State Department, and U.S. Joint Chiefs of Staff. Both APT28 and APT29 have been responsible for targeted intrusion campaigns against the aerospace, defense, energy, government, and media sectors, among many others.

November 16, 2016 brianradio2016


A simple “G” on the back of the Pixel lets you know it’s made by Google.

Jason Cipriani/ZDNet

Having spent the better part of the past month using Google’s Pixel XL smartphone, I still think Google made one of the best phones of the year.

I have zero hesitation recommending either Pixel phone to a friend, family member, or a complete stranger when asked. In fact, my recommendations as of right now are the iPhone 7 Plus or Pixel XL. You can’t go wrong with either one.

The Pixel’s camera takes crisp photos and is incredibly fast. The phone itself is a workhorse, with long battery life and practically no slowdown even as it’s pushed to its limits.

However, what I find most appealing about the Pixel isn’t something you’ll find on the spec sheet. It’s that, for the first time, there’s an Android phone that’s also the best Google phone money can buy.

That may sound absurd, but hear me out.

Apple hardware, Google software

As someone who is deeply rooted in Apple’s hardware and Google’s software, I’ve long said the best Google phone money can buy is the iPhone.

Google doesn’t shy away from making its software products available on iOS. Look at the list of Google apps in the App Store, and then name one of its major software products that isn’t available for the iPhone. Google Drive, Docs, Sheets, Slides… They’re all there. Chrome, Gmail, Google Maps… They’re all there, too.

Granted, the apps often lack some key functionality, and it feels as if Google has given up on keeping pace with Apple’s latest software features and design guidelines. For example, last week’s update to the Gmail app was the first major update in nearly four years. At the end of the day, however, the apps are available and usable.

With so many variables and inconsistent experiences across Android devices (Samsung pushing its services alongside Google’s; LG still trying to make heavily customized Android skins work; the Nexus line struggling to find a purpose), a true Google phone has never really existed. Android devices up until now have primarily been a mishmash of two different approaches butting heads, hoping to make two companies some money along the way.

Apple’s hardware design and reliable camera combined with Googles’ apps running on iOS made the case all on its own.

Pixelation of Google services

Everything about the Pixel is unapologetically Google.

Starting with the G logo on the back to the startup animation centering around Google and not the familiar green Android robot, Android has taken a backseat to Google when it comes to the Pixel.

Adding to the value of Google’s phone is the fact that Google Assistant is — for the time being — exclusive to the Pixel. Furthermore, Google Photos now offers unlimited video and photo backup for Pixel owners.

Assistant and unlimited Photos storage are two services those who are entrenched in Google services won’t find on the iPhone or another Android device.

More Google

Google somehow persuaded Verizon to treat its phone as an equal to the iPhone by pushing out OS updates at the same time Google does. Monthly security updates are a vast improvement over the past Android experience of hoping you’ll one day, eventually, maybe, if you’re lucky enough, get a software update on a competing Android device. The benefit of regular, timely software updates is something iOS users have long used as a battle cry to denounce Android (and rightfully so).

Google regularly updates the Android version of its core apps — those same apps you can find on iOS — with new features and design tweaks. Instead of waiting four years for meaningful update to Gmail, as iOS users just did, Pixel users will have constant access to the best implementation of Google’s apps and services.

With Apple’s ecosystem, the iPhone is arguably the centerpiece (as well as a gateway product) that ties together the entire Apple experience across the Mac, iPad, and Apple Watch.

As Google continues to push forward its newfound hardware initiative with products like Chromecast, Google Home, and Daydream View, the Pixel’s importance as the centerpiece of the experience will continue to grow.

More Google than Android

Naturally, the operating system that powers the Pixel is Android. It’s not vanilla Android, the version of Android Google had long pushed as a selling point for its Nexus devices, in turn causing device makers such as Motorola to follow suit and start using a basic version of Android as a selling point.

The OS version may say Android 7.1 Nougat, but this is very much Google’s minimalist approach to a proprietary Android skin.

The Pixel launcher breaks away from the traditional app drawer, in favor of adding an extra app icon to the dock. A new search button sits next to a weather widget and the current date on the main home screen. The home button animates slightly at each touch, and the fingerprint sensor doubles as a trackpad to easily reveal notifications.

There are small tweaks and changes throughout the entire Pixel experience, all of which enhance the experience instead of distract from what the phone is capable of.

Nothing to lose

There’s zero doubt in my mind that Google has a clear vision for what Android will become over the next few years; leading that transition is the Pixel.

With the Pixel, Google has matched the iPhone in hardware and software, and surpassed it as the best phone for Google services. For someone who wants the best Google experience possible on a smartphone, you aren’t giving anything up by getting a Pixel over an iPhone. Actually, you have a lot to gain.

November 15, 2016 brianradio2016


Google on Tuesday announced a new PhotoScan app for iOS and Android that will turn old print photos into digital photos at no cost.

PhotoScan detects edges, straightens the image, rotates it to the correct orientation, and removes glare, claims Google. Users can simply launch the PhotoScan app and are guided to snap the print photo with four white dots acting as a guide.

Scanned photos can be saved to your phones internal storage, or Google Photos to be organized, searchable, and shared. Google Photos currently offers unlimited photo storage. PhotoScan doesn’t automatically upload to Google Photos.

“We all have those old albums and boxes of photos, but we don’t take the time to digitize them because it’s just too hard to get it right,” said Jingyu Cui, software engineer at Google Photos. “We don’t want to mail away our original copy, buying a scanner is costly and time consuming, and if you try to take a photo of a photo, you end up with crooked edges and glare.”

The iOS, Android, and web app began rolling out Tuesday.

The Google Photos team also announced improvements to its app, adding a new and improved auto enhance, 12 new filters, and advanced editing tools.