Readit NewsWestern sources have reported over and over that Ukrainian air defense is severally degraded and their airforce is basically non-existent since early on. And that Russia has lobbed many Kh-22's and other ballistics from their Tu-22s and Mig-21s.
There's a reason Ukrainian leadership is asking for F-16s and Patriot missiles defense system now. I know its fun to imagine otherwise, but this is a time for maturity and realism about the threat and how to counter if effectively; this is not call of duty - real people are dying.
Only amateurs and fools underestimate their enemy. Arrogance and incompetency gets people killed in war. The Russians might "suck" according to social media, but they're somehow still inflicting major damage and taking territory.
F-16's make sense, they are combat effective.
Patriot missiles make less sense. They are crap. The only redeeming value to provide Patriots is to deplete inventory.
I remember first watching back when he was on cable via hacked DirecTV cards. Fascinating back in the day. When it went to the podcast/vid, I started losing interest when it became a smart phone centric, then came the two inadvertent D pics live on air. Never watched a segment since. Great run though, congrats.
justhere4beer commented on The last three years of my work will be permanently abandoned ericlippert.com/2022/11/3... · Posted by u/chubot
I spent 15 years helping to build something great, only to be subjected to abusive gaslighting the last 3-5 years. When I quit, I was called irrational and emotional. Same year, 15 people followed my exodus.
I should have left years earlier, but money was good, and change was hard to think about. Fluffy handcuffs.
2 years later, Org still survives. Best guess is they are in rebuilding stage. No love lost.
Take your time to recharge the batteries.
I think history proved fairly convincingly that people would still get scammed with the old system. Given that, I'll take encrypted traffic almost universally across the internet and scams still being a thing over mostly unencrypted traffic any day.
I wish this statement to be true "... scams still being a thing over mostly unencrypted traffic any day." Sadly this falls in a similar category of domain validation.
I guess, take comfort where you can?
I applaud the Let's Encrypt founders, past and current team for solving the automation problem that's plagued the SSL/TLS industry.
The yang to that ying is a lack trust. I have zero trust in a site owner using LE certs. Domain vetting only means control of the domain ... everything inside that beautifully encrypted traffic can be insightful, helpful or script kiddies scamming the vulnerable. If one finds the scam, LE shrugs, "not our problem bruh. We just issue certs to those who control the domain."
They single handedly reduced the price of entry for douchebag asshats ability to pretend someone they are not and harm a non-technical populace.
Two steps forward, one step backward.
Original quote:
>That is not a big deal, considering that Levels 1 and 2 of the FIPS140-2 certification are just a marketing gimmick for most electronic devices.
They have a point here: technically, the iPhone is FIPS140-1/2 compliant. By itself, that doesn't mean that the device is secure. It does show two important requirements for security.
A little education goes a long way: http://csrc.nist.gov/groups/STM/cmvp/
Original quote:
>That is not a big deal, considering that Levels 1 and 2 of the FIPS140-2 certification are just a marketing gimmick for most electronic devices.
They have a point here: technically, the iPhone is FIPS140-1/2 compliant. By itself, that doesn't mean that the device is secure. It does show two important requirements for security.
FIPS isn't trivial. There is a lot of shit crypto on the market, establishing FIPS is not banal. Regardless of FIPS, if not utilized properly, it protects nothing. If utilized correctly, it protects what it needs to. Discounting it show lack of understanding.
Hard to take your article seriously with statements such as "...Levels 1 and 2 of the FIPS140-2 certification are just a marketing gimmick".
Even harder to believe Jakob took the time to respond.
Google drastically underestimates the harm this will cause and grossly overestimates the state of automation.