I was expecting some mention of the Dutch Reach (internal handles that are sort of backwards to force car users to look in the direction of possible approaching pedestrians or bicycles behind them while opening their door), but I guess the article's focus wasn't quite on that type of detail.
Readit Newsjacobgkau commented on Evolution of car door handles over the decades newatlas.com/automotive/e... · Posted by u/andsoitis
jacobgkau commented on Notepad++ supply chain attack breakdown securelist.com/notepad-su... · Posted by u/natebc
Notoriously not actually secure, at least in the case of Flatpak. (Can't speak to Snap)
Not sure how something can be called a sandbox without the actual box part. As Siri is to AI, Flatpak is to sandboxes.
The XDG portal standards being developed to provide permissions to apps (and allow users to manage them), including those installed via Flatpak, will continue to be useful if and when the sandboxing security of Flatpaks are improved. (In fact, having the frontend management part in place is kind of a prerequisite to really enforcing a lot of restrictions on apps, lest they just stop working suddenly.)
jacobgkau commented on Notepad++ supply chain attack breakdown securelist.com/notepad-su... · Posted by u/natebc
MacOS has been getting a lot of flak recently for (correct) UI reasons, but I honestly feel like they're the closest to the money with granular app permissions.
Linux people are very resistant to this, but the future is going to be sandboxed iOS style apps. Not because OS vendors want to control what apps do, but because users do. If the FOSS community continues to ignore proper security sandboxing and distribution of end user applications, then it will just end up entirely centralised in one of the big tech companies, as it already is on iOS and macOS by Apple.
> getting a lot of slack recently
I think you mean a lot of flak? Slack would kind of be the opposite.
jacobgkau commented on The TSA's New $45 Fee to Fly Without ID Is Illegal frommers.com/tips/airfare... · Posted by u/donohoe
A lot of people are making general statements, and I'm not sure how valid they are. For example, in my neck of the woods (Canada), I have flown without ID and without passing through security. I would be surprised if the same wasn't true in the US. What I left out: the flights weren't through an international airport and didn't connect to an international airport. Same airport, different flight (one that did connect to an international airport) and passing through security was a requirement. In that case, as well as domestic flights through international airports, ID checks were the domain of the airline.
We do have smaller regional airports in the US, but those smaller airports do still have TSA-staffed security if they serve commercial flights. The TSA considered eliminating security at those smaller domestic-only airports back in 2018, but after it hit the media, they reversed course on it.
The only exception would be airports solely for things other than commercial flights, like hobbyist pilots/flight schools where people are flying their own planes, or airports serving only government/medical/whatever "essential" traffic. Airports that don't have TSA-staffed security are still under TSA jurisdiction, and have to pass regular inspections by TSA to ensure their own security's at a sufficient level.
jacobgkau commented on The TSA's New $45 Fee to Fly Without ID Is Illegal frommers.com/tips/airfare... · Posted by u/donohoe
RealID is unrelated to citizenship.
It's a proof of an address, akin to soviet-style "propiska", which was very important and hard to get without (it also affected ownership/inheritance).
What's more fun is that even though they accept different types of residence, they mostly trust utility bills -- but to set up utilities on your name even for your personal home utility company will ask a lot of documents, including credit score checks.
I personally felt that it's utility companies who do the heavy proof checking, not DMVs.
It's hardly proof of address. At best, I'd say it's proof of state residency.
I've moved several times since getting my Colorado driver's license (a REAL ID). Technically, you are supposed to submit a change-of-address form to the DMV online within 30 days of moving. They don't send you a new card when you do that; the official procedure is to stick a piece of paper with your new address written on it to your existing ID yourself, and then just wait until your next renewal to actually get a card with the new address on it. The change of address form does not require utility bills or any other proof of the new address-- that's only required when you initially get the driver's license.
jacobgkau commented on The TSA's New $45 Fee to Fly Without ID Is Illegal frommers.com/tips/airfare... · Posted by u/donohoe
The roughly 7.6 million CLEAR members paying $209/yr grosses them north of $1 billion/year. It's not hard to see why TSA wants to get in on it.
CLEAR members are going out of their way to register their info in a biometric identification system. I don't think the people avoiding REAL IDs are the same demographic.
> We find no detectable platform-level increase in likes for high-reputational-risk content (Study 1). This finding is robust for both between-group comparison of high- versus low-reputational-risk accounts and within-group comparison across engagement types (i.e., likes vs. reposts). Additionally, while participants in the survey experiment report modest increases in willingness to like high-reputational-risk content under private versus public visibility, these increases do not lead to significant changes in the group-level average likelihood of liking posts (Study 2).
That conclusion's a surprise to me. I used to basically never like anything (even innocuous stuff) unless I specifically wanted to endorse it (essentially treating it as a less direct retweet). I like stuff all the time now.
They do note their methodology could be affected by inorganic engagement that wouldn't be affected by like visibility, though. I wonder what other factors could've led to that conclusion.
jacobgkau commented on LWN is currently under the heaviest scraper attack seen yet social.kernel.org/notice/... · Posted by u/luu
Yes I agree it's more likely incompetence than malice. That's another reason I don't think it's a lab. Even if you don't like the big labs you can probably admit they are reasonably smart/competent.
Residential IP providers definitely don't remove reputational risk. There are many ways people can find out what you are doing. The main one being that your employees might decide to tell on you.
The IP providers are a great way of getting around cloud flare etc. They are also reasonably expensive! I find it very plausible that these IP providers are involved but I still don't understand who is paying them.
This is just an anecdote, but having been dealing with similar problems on one of my websites for the past year or so, I was experiencing a huge number of hits from different residential IP addresses (mostly Latin American) at the same time once every 5-10 minutes (which started crashing my site regularly). Digging through my server's logs and watching them in real-time, I noticed one or two Huawei IP's making requests at the same time as the dozens or hundreds of residential IP's. Blocking the Huawei IP's seemed to mysteriously cut back the residential IP requests, at least for a short amount of time (i.e. a couple of hours).
This isn't to say every attack that looks similar is being done by Huawei (which I can't say for certain, anyway). But to me, it does look an awful lot like even large organizations you'd think would be competent can stoop to these levels. I don't have an answer for you as to why.
jacobgkau commented on Ask HN: How can we solve the loneliness epidemic? · Posted by u/publicdebates
Only if it's a rare novelty. If having a cafe near by is just the norm, it isn't any more expensive.
I didn't say "near by," I said "built into an apartment complex," which is one of the things the person I replied to threw out casually as an option.
jacobgkau commented on Ask HN: How can we solve the loneliness epidemic? · Posted by u/publicdebates
I’m literally surrounded by these shops, as is anyone in any town that doesn’t depend on suburbia. It’s *wonderful* and the prices are good.
I’m eating a whole dinner for about $10 tonight, out. Easily like 1300 calories of very delicious food.
In the PNW.
You're "literally surrounded" by cafes built into the first floor of your apartment complex? Because that's what I was very clearly talking about. Not shops within walking distance.
(I didn't ask and don't care if you think your cheap meal's "very delicious," by the way. That's not the main indicator of quality. Many Americans would call a Big Mac "very delicious.")