zadokshi (u/zadokshi)

zadokshi commented on Proton threatens to quit Switzerland over new surveillance law techradar.com/vpn/vpn-pri... · Posted by u/taubek

LexiMax · 3 months ago

To me the value prospect of Proton falls down even before that - how can e-mail ever be a secure medium of communication if only one side of the conversation is secure, given how ubiquitous Google and Outlook are in the space?

zadokshi · 3 months ago

proton account to proton account.

> how can e-mail ever be a secure medium

Email can be secure, it’s just that the big US players can’t or won’t agree to proton like privacy.

I am curious to know what is behind these big US companies being so anti privacy.

zadokshi commented on Xcode constantly phones home lapcatsoftware.com/articl... · Posted by u/MaysonL

xandrius · 6 months ago

We put up with that because it could be better but it's not too bad.

The IDE itself is pretty good and personally I prefer it over Android Studio.

zadokshi · 6 months ago

People who complain about Xcode have never had to use android studio ;)

zadokshi commented on Analyzing North Korean Malware medium.com/@henrique4win/... · Posted by u/supitto

zadokshi · 8 months ago

Developers should be required to add flags to allow reading/writing to disk. i.e. choose —-insecure-disk—access or —-allow-read=/myapp

I hate the idea of making things a tiny bit more difficult for beginner developers, but what is the alternative?

zadokshi commented on Google Ads announces 11-year data retention policy searchengineland.com/goog... · Posted by u/vednig

OneLeggedCat · a year ago

So that means lifetime, really. Pointless.

zadokshi · a year ago

No it just means they now keep the data only as long as they are required to by law.

zadokshi commented on Google Ads announces 11-year data retention policy searchengineland.com/goog... · Posted by u/vednig

al_borland · a year ago

That's significantly longer than I would have expected. That's longer than the retention policy on my work emails, and this is data for ads...?

zadokshi · a year ago

Different countries have different laws around financial transaction data retention. US laws allow for audit up to 10 years, so they made it 11 to be safe yes?

zadokshi commented on Another police raid in Germany forum.torproject.org/t/to... · Posted by u/costco

shadowgovt · a year ago

> Seriously, all they had to do was plug my IP into a browser or do a simple scan of it but I suppose that's asking too much from LE lol.

I mean, yes, I'm pretty sure "just take my word for it" is asking too much of LE.

We can always say "Come back with a warrant" but then sometimes they'll come back with a warrant.

> They should know what Tor is and know that any Tor server contains ZERO info

Unless, of course, one has misconfigured it... Which could be the case. Definitely the kind of thing LEO can figure out on the other side of a seize-and-strip of the hardware. Unfortunately, I think the only way to not be a part of the story here is to not be a part of the story here... Don't proxy anonymous traffic if you don't want law enforcement asking after the anonymous traffic you proxied. Otherwise, expect the responsibility imposed upon a service provider (since you're providing a service).

Other ISPs avoid this scrutiny by going out of their way to be helpful to law enforcement.

zadokshi · a year ago

There is no way for police to know if the traffic came through tor, or was initiated by the owner of computer/server. It seems reasonable that the police have the right to investigate. If not, anyone could run a tor node to cover up their own criminal activities. Even if you did have logs suggesting it was tor activity, should we trust someone’s claim that the logs are proof that it was someone else?

It would in fact be negligent if the police did not properly investigate the server/computer/house of the device.

zadokshi commented on City of Columbus sues expert who exposed extent of cyberattack 10tv.com/article/news/loc... · Posted by u/hendler

josefritzishere · a year ago

This is a very clear case of a restraining order being used punatively. The body of first amendment case law is very clear. The city has no reasonabel expectation that they will win. Their intent is to restrain, and intimidate legitimate criticism.

zadokshi · a year ago

Well they do win by intimidating people who want to whistleblow.

zadokshi commented on City of Columbus sues expert who exposed extent of cyberattack 10tv.com/article/news/loc... · Posted by u/hendler

sillysaurusx · a year ago

Retrieving publicly accessible data and then giving it to anyone else is the problem when the data contains the identities of witnesses for ongoing criminal investigations.

I’m really far on the side of hackers here, but I’m having trouble justifying sending any data whatsoever to journalists related to criminal investigations. Even one witness’s name, sent merely to prove that the breach happened, could be enough to cause direct harm to that case if the reporter decided to reveal it. You don’t need to do that to show a reporter that the breach happened. And it’s up to the reporter themselves to prove the breach is real.

zadokshi · a year ago

Reputable news organisations are only reputable because of the effort made to verify all the claims before publishing. They would need to see examples of the range of types of documents claimed to be in there.

zadokshi commented on I sped up serde_json strings by 20% purplesyringa.moe/blog/i-... · Posted by u/purplesyringa

zadokshi · a year ago

Serde json has 3gb of dependencies once you do a build for debug and a build for release. Use serde on a few active projects and you run out of disk space. I don’t know why json parsing needs 3gb of dependencies.

I’m all for code reuse but Serde for json is a bit of a dogs breakfast when it comes to dependencies. all you need is an exploit in on of those dependencies and half of the rust ecosystem is vulnerable.

Rust should have Jason built in.

zadokshi commented on The world is relying on a flawed psychological test to fight racism (2017) qz.com/1144504/the-world-... · Posted by u/Tomte

Y_Y · a year ago

Yes. I thought the article wrote it off as being a hater spouting nonsense, whereas in my estimation it was a mix of good points and nonsense by a mostly well-meaning but jaded human.

zadokshi · a year ago

An honest assessment would get less clicks and thus less revenue for whoever is publishing on the topic.

You need to lean all in on either the “he’s a toxic male” narrative or the “woke leftists are ruining everything” narrative for your website to make money.