Readit News logoReadit News
sneak commented on How well does the money laundering control system work?   journals.uchicago.edu/doi... · Posted by u/PaulHoule
nine_k · 3 days ago
What's the point of surveilling the movements of average citizens' money? They usually don't hide anyway. I suppose tax evaders were the target all along, with a smattering of criminal operators, e.g. drug dealers. Terrorists were but a pretext to produce moral panic.
sneak · 3 days ago
If you can make private and uncensorable payments, you can pay an army.

The “only one army” concept is how governments remain governments.

If you could raise and pay a competing army, the state’s monopoly on “legitimate” violence becomes threatened.

This is why most states also heavily restrict private access to arms. Interestingly enough, it is also why the United States explicitly protected it: to specifically prepare for (and protect the right to) violent revolution.

Deleted Comment

sneak commented on Why are anime catgirls blocking my access to the Linux kernel?   lock.cmpxchg8b.com/anubis... · Posted by u/taviso
johnklos · 3 days ago
This is a usually technical crowd, so I can't help but wonder if many people genuinely don't get it, or if they are just feigning a lack of understanding to be dismissive of Anubis.

Sure, the people who make the AI scraper bots are going to figure out how to actually do the work. The point is that they hadn't, and this worked for quite a while.

As the botmakers circumvent, new methods of proof-of-notbot will be made available.

It's really as simple as that. If a new method comes out and your site is safe for a month or two, great! That's better than dealing with fifty requests a second, wondering if you can block whole netblocks, and if so, which.

This is like those simple things on submission forms that ask you what 7 + 2 is. Of course everyone knows that a crawler can calculate that! But it takes a human some time and work to tell the crawler HOW.

sneak · 3 days ago
The fundamental failure of this is that you can’t publish data to the web and not publish data to the web. If you make things public, the public will use it.

It’s ineffective. (And furry sex-subculture propaganda pushed by its author, which is out of place in such software.)

sneak commented on 'Ad Blocking Is Not Piracy' Decision Overturned by Top German Court   torrentfreak.com/ad-block... · Posted by u/gslin
igleria · 5 days ago
I know that technically you can configure your torrent client to disconnect if by some reason the vpn connection dropped, but I was so paranoid about f*ing it up that I just accepted defeat. I think living there for 4 and a half years really changed me (still waiting on red lights while on foot even if the street is dead at 3 AM, for example).
sneak · 4 days ago
Get a cheap travel router from gl.inet and set it up as a VPN client with its own wifi ssid. Turn on its leak protection (drop connection when VPN is inactive). Connect your devices to that, and delete your main wifi credentials from them so they don’t accidentally hop back on.

Torrent to your heart’s content.

I actually browse full time like this; all traffic leaving my house via my ISP is VPN (or some limited exclusions that all use TLS).

sneak commented on UK drops demand for backdoor into Apple encryption   theverge.com/news/761240/... · Posted by u/iamdamian
intrasight · 5 days ago
My read is that it does not apply to ADP.

Also, what regular criminal, let alone terrorist, would leave iCloud backup turned on after all the hacks and leaks over the years. I assume that most in the HN community, like myself, have iCloud backup turned off.

sneak · 4 days ago
Criminals (that get caught, or get put under surveillance) are generally criminals because they are stupid.

I would venture a guess that almost all criminals have iCloud Backup enabled, because that is the default setting.

sneak commented on UK drops demand for backdoor into Apple encryption   theverge.com/news/761240/... · Posted by u/iamdamian
amelius · 5 days ago
Meanwhile, who believes that the US has no backdoors in these devices?
sneak · 5 days ago
It’s not really a secret; it’s by design and it’s public. iCloud is not end to end encrypted by default. Apple and the state can read the on-by-default iCloud Backup which contains your iMessage sync keys and all your historical iMessages and attachments. iCloud Photos, Contacts, and Mail are all similarly not e2ee and trivially readable by Apple, DHS/FBI, and anyone else under FAA702 (aka PRISM, aka the #1 most used US intel source) without a warrant.

https://www.reuters.com/article/world/exclusive-apple-droppe...

Apple processes FAA702 orders on upwards of 80,000 Apple IDs per year per their own annual transparency report.

Snowden himself said that they see so many nudes that they got desensitized to it.

This clever setup allows them to claim iMessage is e2ee while still escrowing keys in effective plaintext to Apple in the iCloud Backup, rendering the e2ee totally ineffective.

I think “backdoor” is probably an appropriate term for it, but they have made no secret whatsoever of it.

It’s terrifying to think that the US federal government can read every iMessage in the entire world across a billion devices (except China, where the CCP can do the same) in effectively realtime. The power that that enables (if only in blackmail ability) is staggering.

sneak commented on EloqKV, a distributed database with Redis compatible API (GPLv2 and AGPLv3)   github.com/eloqdata/eloqk... · Posted by u/cloudsql
gpm · 5 days ago
The same way you accept any contribution, because it isn't technically relicensing. You already granted them an AGPLv3 license when you uploaded your change to github without modifying the license file - that's what the "or" in the file means [1] - which entitles them (and anyone else) to create and distribute derivative works under only the AGPLv3 without any GPLv2 grant...

[1] Quoting the license file:

This software is provided under a dual license. You may choose to use it under the terms of either:

1. GNU General Public License, Version 2 (GPLv2), or

2. GNU Affero General Public License, Version 3 (AGPLv3).

sneak · 5 days ago
As a contributor, couldn’t I use it under the terms of the GPL and make GPL-licensed derivative works and ignore their AGPL nonsense? If it is GPL then I understand that I am under no obligation to license my contributions under AGPL.

I am not a lawyer; this is not legal advice.

sneak commented on 'Ad Blocking Is Not Piracy' Decision Overturned by Top German Court   torrentfreak.com/ad-block... · Posted by u/gslin
igleria · 5 days ago
A little bit tangential but: I hated while living in Germany that some movies were legally available ONLY with german dubs. While making the only alternative, piracy... risky.
sneak · 5 days ago
Germany still hasn’t banned VPNs yet, so there are still non-risky options here for torrenting.
sneak commented on PyPI Preventing Domain Resurrection Attacks   blog.pypi.org/posts/2025-... · Posted by u/pabs3
sneak · 5 days ago
All of this because we still haven’t solved durable long-term strong cryptographic identity on the internet.

(Actually we have, but nobody wants to make people install Metamask or similar to log into websites.)

sneak commented on PyPI Preventing Domain Resurrection Attacks   blog.pypi.org/posts/2025-... · Posted by u/pabs3
ocdtrekkie · 5 days ago
One of the places this worried me the most was Golang, where domains for repositories are used as a package source. Credit where credit's due, when I contacted Google about a developer who had passed before their domain expired, and they were able to lock out the domain from pulling anything new into their cache.
sneak · 5 days ago
go’s lockfiles include cryptographic hashes which prevent even Google from maliciously replacing packages in the cache.
s

u/sneak

KarmaCake day24657October 15, 2010
About

    Jeffrey Paul <sneak@sneak.berlin>
      pub   4096R/DF2A55C2 2010-10-21
      5539 AD00 DE4C 42F3 AFE1  1575 0524 43F4 DF2A 55C2
Signal: +1-312-361-0355

https://sneak.berlin/

PUT YOUR EMAIL ADDRESS IN YOUR HN PROFILE!

I run a BBS which anyone reading this is invited to join:

https://bbs.sneak.berlin

I am available for hire. Inquire at jp@eeqj.com.

View Original