Info Sec - Software Engineer - Game Designer - Mod Dev - Digital Artist
a nation so hardworking…
Or hardly working given how backwards and out of date the work culture is, but sure let’s make this out to be the fault of employees who are likely overworking due to low pay. An extra day off isn’t going to fix the systemic cultural issues, class discrimination, xenophobia… the list could go on and on.
Calling this innovative when Japan has yet to modernize its business practices, or admitting it’s an issue, is disingenuous at best.
This naively assumes there aren’t malicious or extremists instances hell bent on brigading others in the fediverse. Without defederation, they can keep spinning up accounts to bypass individual bans until mods are overwhelmed.
Every instance retains their respective right to block who they deem a risk whether that’s an individual or instance. As an individual, you are more than welcome to create a separate account on another instances if you disagree with your current instance rules or bans, as is the nature of the fediverse.
Sums up every Node project I’ve had the displeasure of looking at. The lock file being the only thing holding the twisted web of versions keeping that franken-app running between a minefield of incompatibilities and buggy hacks.
Either this article is poorly researched, the study is scuffed, or both. It isn’t the uniform but the type of which that the school enforces. There are plenty of schools with gender neutral uniform policies, heck the one I went to in Aus had 3 options, one of which is sports specific for all genders.
Ah yes, just Australian wildlife things. We don’t have currawongs up here in QLD but we still have butcher birds earning their namesake.
Same with Express/Nord VPN sponsorships. Many people debunked the adverising BS they were spinning about blocking tracking when really it only masked a tiny subset.
As someone who studied infosec, those ads were infuriating. Now I just sponsor block it all because I’m beyond tired of it.
Hahaha, I wish.
You would be amazed at how ancient and poorly maintained many web servers are on the modern internet. SQL injection still consistently make the top 3 web app vulnerabilities as of 2021. If that isn’t being sanitized properly I don’t expect emojis would be handled much better.
Through a low tech social engineering attack referred to as SIM Jacking, an attacker can have your number moved to their SIM card, redirecting all SMS 2FA codes effectively making the whole thing useless as a security measure. Despite this, companies still implement it out of both laziness and to collect phone numbers (which is often why SMS MFA is forced)
I’m inclined to agree, otherwise it would be like calling a FPV kamakazi drone a missile.
Naming aside, kinda terrifying that these could theoretically be travelling autonomously far deeper than any sub thanks to the lack of a pressure vessel.
You assume that the state ever took responsibility for their role in Chernobyl. To them that was all someone else’s fault just as it will be Ukraine/NATO’s fault for setting off the mines and not bending a knee to Russia’s demands. Real-world logic doesn’t make sense to them, never has.
I’d like to think Typescript does a lot of heavy lifting where JS fails when it comes to web development. On the otherhand there is no fixing fundamental flaws in PHP.
Sure bad programmers write bad code, but if a language tolerates something so obviously janky via implicit unseen magic, it’s just encouraging bad practices. PHP makes this worse by tweaking core behaviours in weird and wacky ways that can easily lead to security vulnerabilities.
I’ve been working with PHP for two years now (not by choice) but I still sometimes forget the weird behaviours these not-arrays cause. Recently I was pushing/popping entries in a queue and it fucked the indexing. I had programmed it like I would any other sane language and it wasn’t until I was stepping through the bug I realised I had forgotten about this.
I hate PHP for so many more reasons. It baffles me why anyone would think it was a good idea to design it this way. Thankfully my current job involves actively burning it down and preparing for its replacement.
As a software engineer who has dealt with so many incidents resulting from the garbage coming out of salesforce. SO. MUCH. THIS.
I swear it’s always in a perpetual state of duct tape no matter where I see it used.
I’m not surprised in the slightest. The politicians and managers in charge of said gov systems are usually of an age that have no idea the basics of how technology works, let alone infosec importance. It’s then contracted out to the lowest bidder on deadlines that wouldn’t permit proper hardening anyways. It’s not even a US specific issue, Australians deal with this dumb fuckery regularly.
Then you get some piss poor public apology, someone gets thrown under a bus, and the cycle repeats ad infinatum.
As someone else who uses Tailscale behind a CGNAT, this indeed works. I use it for accessing my home server from the office for a year now. You can’t quite self host anything public facing but anything on your tailnet can talk to it just fine.
Theoretically a VPS proxy into the server over the VPN could work for devices not capable of running tailscale but your mileage may vary.
They support CCS as the protocol
CCS is is only supported through a PLC translation chip on the vehicle side or a rare Magic Dock adaptor, and only when one side is non-Tesla. Outside of that, CCS is not a factor and the proprietary 11bit CAN bus protocol is used natively. Hence, Tesla controls every side of the equation on their protocol and payment processing without having to communicate with 3rd parties.
Name a charging provider that operates in a country tesla does not?
ABB chargers in India
Tesla you get quick wireless security updates, no waiting for a recall notice and trip back to the dealer.
This isn’t new or innovative. OTA updates for cars have been around years before EVs. But usually those don’t stop the car from starting then still be towed to said dealer because the update wasn’t properly tested or have fallbacks in case of failure.
Point is, shit is going to happen across the board for everyone and Tesla is NOT some golden child. It’ll just be another Apple case where dumb security claims get touted until hackers bring them down a peg or two.
Expecting all network operators to do that is not feasible or reliable. Tesla controls the car, protocol, charger, and payment processing. Everyone else outside the walled garden is openly handling a much bigger market with many more variables in more countries. Forcing customers to use an app for each brand of charger is also an accessibility nightmare. Fear mongering about skimmers is a dumb reason to remove traditional payment methods.
This is all before we get to the lack of screen or keypad means fuck all to security (it’s also an accessibility issue to remove them). If I can break into a Tesla charger wirelessly and fuck with your car, I’m going to do it, walled garden or not. Just look at the state of IoT.
EDIT: This comment aged well https://thedriven.io/2023/07/18/tesla-supercharger-spotted-with-credit-card-reader/
Just pull another Cambridge Analytica with it and watch the world burn. The shady siphoning of data for years until the secret leaks would skyrocket everyone’s anxiety about who had what and questioning everything around them all while conspiracies spiral out of control. If it were searchable at least you’d know, but this way the unknown would be so much worse.
Have fun with that mental image.
I swear if they really wanted to, they could do that and build a database on par with federal government departments.
The problem isn’t so much blocking the ads on a page, that’s a solved problem, it’s doing so without incurring side effects. The main problem usually comes in two ways.
Ads are now being pre-baked into the content delivery itself in which there is no easy way to rip it out without destroying the content in some way. Twitch is notorious for this on streams where the ad portion completely replaces the video feed before your browser ever sees what was originally there. You may never recover what was there, but if you try to block the ad playing you trigger problem 2.
There are departments dedicated to developing ever changing anti-adblock scripts and detectors that enforce ad placements and detect tampering. In some cases this results in punishing the user by refusing to deliver content until the ads load, blocking or kicking the user off the page, throttling connections or access, or in Twitch’s egregious case, more invasive ad interruptions. This has become a never ending arms race with ad blockers to keep up with minefield of invasive scrips monitoring what you do with their website.
TLDR: Ad blockers like UBlock Origin are already filtering how you’re asking for bur advertisers are attacking the plugins themselves and have their own arms race of scripts to punish those who interfere.