These pictures remind me of YouTube thumbnails with fhe style of over emphasized visuals and it makes me wonder if people got accustomed to that style and that makes it easier to pass the BS test.

Just think of all the countries and companies that grab this data, group by email address, then start to identify preferences of people around the world. Its not just for identity theft. The possibilities are endless! And horrifying.

I’m not an HVAC technician so I wouldn’t know exactly, but I think there’s two things to consider: static pressure and duty cycle. Static pressure is the fan working hard to spin which causes wear on bearings. Duty cycle is how long the machine runs. If your duty cycle is too low then the machine is turning on and off quickly which is bad.

You could look at the size of the unit and there’s some rules of thumb that translate size, climate, and square footage of just the areas you leave the vent open and there are online calculators you can use.

I think the only way to know for sure is to measure the pressure drop across the intake and outflow and see what the fan motor is rated for.

Depends on the unit and whether it was over sized or under sized for the space, but restricting 60℅ air flow is a lot.

Another thing to consider is that if you later want to heat up the entire house, the unit has to work harder. Sometimes it can be more efficient to just keep the house close to your target temp.

They’re forging the GPS to look like it’s in the EU. Do we turn off all the EU terminals too?

I’m a little surprised they can’t identify spoofing by comparing the incoming signal to the proposed location. They already have antennas that can be steered using the phased array.

It’s possible, but it costs money to design the hardware so it’s accessible, it has to use a connector which has to be robust against vibrations (is m.2 robust?), then there needs to be a standardized protocol to communicate with the card. Does the car computer need to know how to authenticate against the cell network or does the card? Is it industry standardized or specific to the manufacturer? All kinds of things need to be designed and car manufacturers have no reason to invest in they.

The problem is the cell modem in the car, which is hard to replace. Cars last a lot longer than phones do. When whatever network that the car uses shuts down, then you can’t remote start your car. That’s a marginal cost that the car company has to pay for.

CDs have an advantage over USB drives in that they can’t actually secretly be USB HID devices like a fake keyboard or mouse that runs a bunch of commands when it plugs in. It’s only a storage device.

A super secure environment might then lock down all USB devices to ones known by them and then epoxy all ports and devices.

ICANN specifically set aside all two character TLDs to be for country specific codes. There’s only a few cases where they kept ex countries TLDs around and phased them out over several years. It would be an entirely new precedent if they did keep it. So I wouldn’t depend on it

They could and clearly they should have done that but hindsight is 20/20. Software is complex and there’s a lot of places that invalid data could come in.

For those who aren’t aware. This is talking about when cell phones roam into other networks, they now encrypt the traffic back to the home provider which means law enforcement struggle to tap it (legally or illegally).

PET is privacy enhancing technologies

That would be illegal. I worked on the software deployment of these devices in a store. If we increased the price, we’d automatically give the customer the lowest price in the last several hours.

The other problem was they were extremely low powered and low bandwidth and it would have killed the battery to update more than a few times a day.

https://github.com/hakluke/how-to-exit-vim/blob/master/README.md

Fears raised over ‘Chinese spy cranes’ in US ports

There are concerns that the machines are effectively Trojan Horses for Beijing and could be used to sabotage sensitive logistics

Unexplained communications equipment has been found in Chinese-made cranes in US ports that could be used for spying and potentially “devastate” the American economy, according to a new congressional investigation.

The finding, first reported by The Wall Street Journal (WSJ), will stoke American concerns that the cranes are effectively Trojan Horses for Beijing to gain access to, or even sabotage, sensitive logistics.

The probe by the House Committee on Homeland Security and the House select committee on China found over a dozen pre-installed cellular modems, that can be remotely accessed, in just one port.

Many of the devices did not seem to have a clear function or were not documented in any contract between US ports and crane maker ZPMC, a Chinese state-owned company that accounts for nearly 80 per cent of ship-to-shore cranes in use in America, according to the WSJ.

The modems were found “on more than one occasion” on the ZPMC cranes, a congressional aide said.

“Our committees’ investigation found vulnerabilities in cranes at US ports that could allow the CCP [Chinese Communist Party] to not only undercut trade competitors through espionage, but disrupt supply chains and the movement of cargo, devastating our nation’s economy,” Mark Green, the Republican chair of the House Homeland Security Committee, told CNN.

The Chinese government is “looking for every opportunity to collect valuable intelligence and position themselves to exploit vulnerabilities by systematically burrowing into America’s critical infrastructure,” he told the WSJ, adding that the US had overlooked the threat for too long.

The Telegraph has contacted ZPMC for comment.

‘The new Huawei’

A spokesman for the Chinese embassy in Washington DC said claims that Chinese-made cranes pose a security risk are “entirely paranoia.”

The US investigation began last year amid Pentagon fears that sophisticated sensors on large ship-to-shore cranes could register and track containers, offering valuable information to Beijing about the movement of cargo supporting US military operations around the world.

At the time, Bill Evanina, a former top US counterintelligence official, said: “Cranes can be the new Huawei.”

“It’s the perfect combination of legitimate business that can also masquerade as clandestine intelligence collection,” he told the WSJ.

In recent years, a handful of Chinese crane companies have grown into major players in the global automated ports industry, working with Microsoft and other companies to connect equipment and analyse data in real-time.

Doubtful. TicketMaster is there to take the bad PR but was designed to get as many fees and funnel part of those fees to the artist. Yes TM has deals with Live Nation that basically force big artists to use them because they have the big stadiums, but Taylor Swift is a massive artist she has tons of lawyers and can negotiate fees.

As much as I love Taylor Swift, I have no doubt that she is massively benefiting from the high ticket prices.

It’s true that Mozilla does collect telemetry and that Mozilla Corp is for profit, however Mozilla Corp is owned by Mozilla Foundation. That ownership structure is either a way to get around limitations on non profits, or its an opportunity for the Foundation to directly influence the Corp to be better.

However, I’ll still use Firefox/Thunderbird because: Usage stats such as number of accounts or filters is in no way comparable to my username and password. One is basic metadata and stats, the other is a massive risk. You can opt out of the telemetry, the only way to opt out of sharing your password is to not use the new Outlook.

I take a more pragmatic approach to privacy based on my trust. I understand the value of telemetry, but change it depending on the company. Big Tech I have less trust in, Mozilla, while they have issues, are on average far better for privacy vs big tech.

As a developer, I understand the value of telemetry and the risks that come with collecting any data. I pick Firefox because it challenges the homogeney of Google’s influence and it looks like I’m going to pick Thunderbird because I’ haven’t seen a better option.

That’s not because you have a wildcard. That’s because you need to implement DKIM, DMARC, and SPF records to prevent others from using your domain name to send mail.

MTAs use those standards to verify if somebody is permitted to send email for your domain. If you don’t have those set then you can get what that ISP described.

Amazon corporate employees get RSUs which are stocks, not options. After the new hire RSUs go away, you end up with two vest dates a year and new comp offerings start the following year (so in 2024 you’ll see new money in 2025 plus a small base salary bump that goes in effect that month).

Tech salaries are frequently stock based, but Amazon’s is unusual in that it’s only twice a year, and bumps start the following year, and they recently made the change to do 2 year offers instead of 3 years.

Attestation depends on a few things:

1. The website has to choose to trust a given attestation provider. If Open Source Browser Attestation Provider X is known for freely handing out attestations then websites will just ignore them
2. The browser’s self-attestation. This is tricky part to implement. I haven’t looked at the WEI spec to see how this works, but ultimately it depends on code running on your machine identifying when it’s been modified. In theory, you can modify the browser however you want, but it’s likely that this code will be thoroughly obfuscated and regularly changing to make it hard to reverse engineer. In addition, there are CPU level systems like Intel SGX that provide secure enclaves to run code and a remote entity can verify that the code that ran in SGX was the same code that the remote entity intended to run.

If you’re on iOS or Android, there’s already strong OS level protections that a browser attestation can plugin to (like SafetyNet.)