• 0 Posts
  • 43 Comments
Joined 2 years ago
cake
Cake day: June 10th, 2023

help-circle
  • If you’re just interested in connections (and don’t care about packet inspection) you can use Little Snitch (paid) or LuLu (FOSS).

    Actually, all the Objective-See Foundation security tools are great and target specific classes of vulnerabilities, like LuLu for outgoing network connections, RansomWhere for detecting ransomwear by looking for encryption events, Oversight that monitors you cameras and microphones and a bunch of other really small, but really useful security utilities. Better than running a shady antivirus that’s going to suck up loads of resources and rely on signatures.











  • The biggest red flag is when they try and stop you from pasting your password (or anything else for that matter) breaking password managers.

    There are years-long arguments on social media with companies who do this with actual security experts telling them they’re hurting security (including referencing organisations like the UK’s National Cyber Security Centre) and their only response is “we don’t allow pasting for security reasons” but they can never explain how it helps security - because it doesn’t. It drives me mad.



  • That’s what’s great about all these companies. They take credit for, and try to derive value from, things they didn’t actually create. Reddit keeps on talking about “their” data that was created by users, for free, and moderated by other users, also for free. Yet it’s somehow theirs and they can sell it?

    Twitter didn’t invent hashtags. They were user created annd eventually incorporated in to the service.

    These services add very little value, but they believe they add it all.





  • I particularly enjoy the “if you need immediate assistance” note for a telephone line that’s open even fewer hours than the website. it’s positioned as an alternative to the site, but absolutely isn’t. Also, if that message is only displayed when the site is closed, there are no hours when the phone line is open but the site is closed, so who’s it helping? You couldwrite it down and call it when it’s open, but the site is also going to be open then, several hours earlier in fact, so is less “immediate” than the site that’s closed.


  • sijt@lemmy.worldtoMemes@lemmy.mlHotel > AirBNB
    link
    fedilink
    arrow-up
    9
    arrow-down
    2
    ·
    1 year ago

    Enforcing is unfortunately really difficult because the incentives are too strong. We have rules here which are meant to prevent AirBnB and similar by limiting the number of nights any domestic property can be let in a year. So all the hosts just jump from site to site and change the descriptions slightly to get around it. And it’s so brazen. They use the same photos and everything. The really organised ones have whole buildings and when you book they’re non-specific about the unit you get, so it’s very difficult to actually track which ones are rented at any point, particularly when the enforcement teams are so underfunded.


  • It’s really hard. And really expensive. I used to work in five nine environments, life or death type use cases, and my rule of thumb was that you double your cost for every extra nine you add.

    When we got to five nines it was multiple hot standbys with a custom control and orchestration plane - literally custom hardware we had to build. This was for local installations, so not modern cloud environments (it was over a decade ago), but many of the challenges are similar, like session handling, transmission replay and caching, locking, clashing, routing, jitter, latency etc.