irotsoma

irotsoma , 1 day ago

Because computers have come even close to needing more than 16 exabytes of memory for anything. And how many applications need to do basic mathematical operations on numbers greater than 2^64. Most applications haven’t even exceeded the need for 32 bit operations, so really the push to 64bit was primarily to appease more than 4GB of memory without slow workarounds.

irotsoma , 1 day ago

Or eliminate the cap on the tax so they actually pay their fair share. That would fix all the problems that Social Security and Medicare have in an instant.

irotsoma , 17 hours ago

I’ve never seen any math that disproved that. Now if you’re looking at actual federal income tax paid, maybe, but social security tax is based on income, it doesn’t get reduced by often fraudulent deductions and credits. So a lot more income is taxable under social security tax than federal income tax which is laden with loopholes and complexities. So when Jeff Bezos in 2007 paid $0 in income tax, he likely would have paid tens or hundreds of millions in Social Security tax if there wasn’t a cap, because he did have income. Of course, we aren’t legally able to get the actual numbers because of privacy laws, but there have been some leaks recently if you want to see some of the numbers.

irotsoma , 1 day ago

Automate as much as possible. I rsync to both an online and home NAS for all of my hosted stuff, both at home and in the cloud. Updates for the OS and low level libraries are automated. The other updates are generally manual, that allows me to set aside time for fixing problems that updates might cause while still getting most of the critical security updates. And my update schedules are generally during the day, so that if something doesn’t restart properly, I can fix it.

Also, whenever possible I assume a fair amount of time for updates, far beyond what it should actually take. That way I won’t be rushed to fix the problem and end up having to revert to a backup and find time later to redo it. Then most of the time I have extra time for analyzing stats to see if I can improve performance or save money with optimizations.

I’ve never had a remote provider just suddenly vanish though I use fairly well known hosts. And as for local hardware, I just have to do without until I can buy a replacement. Or if it’s going to be some time, I do have old hardware that I could set up as a makeshift, temporary replacement like old desktop computers and some hardware that I use for experimenting like my Le Potato that isn’t powerful enough for much, but ok for the short term.

And finally I’ve been moving to more container-based setups that are easier to get up and running again. I’ve been experimenting with Nomad, Docker Swarm, K3s, etc., along with Traefik and some other reverse proxies so o can keep the workers air-gapped for security.

irotsoma , 7 days ago

Yes, this is exactly what it’s for, as well as Winnie the Pooh in China, LGBTQ+ materials in Florida, or any other ridiculous laws. As fascism is taking over many countries, including the US, UK, and other Western countries, they are pressuring content storing companies to add backdoors to allow hunting down dissidents.

Oh, and also this is a way to allow selling the content to train AI since it’s less obvious that it is allowed with this kind of vague wording.

irotsoma , 8 days ago

But it’s not just Detroit that matters in this case since the presidential election hinges on total for the state, not individual voting districts. So sure, he’s not going to win the district but that doesn’t affect the race. So since Detroit is the largest city, it’s still the place to convert more people at once. And he doesn’t need to convert them to vote for him. He just needs to convince them not to cast a desperation vote against him.

irotsoma , 8 days ago

Problem is that insurance companies follow requirements, not recommendations. So once the requirements and funding are gone the coverage is removed. Recommendations then take time to be considered for implementation based on if they are going to save the company money. But that needs to be proven to executives with data. And since many states no longer track COVID cases due to political biases and there’s no longer funding to pay for the expensive vaccines or the research to provide that data, and with most large corporation executives being right leaning and the current political right being against vaccines, many are choosing not to cover it, except for people over 65 which is the at risk group. Just like it was always recommended that everyone get the HPV vaccine, but it wasn’t until recently that it was covered for adults. It’s all about cost vs risk since our healthcare system uses an insurance model instead of a public service model.

So, if your insurance will cover it, definitely get it. If not, it’s pretty expensive and the government is no longer picking up the bill. I just had COVID from traveling and that was my first time. Likely mostly because I didn’t have the booster this time.

irotsoma , 8 days ago

Good to know. Wish I knew about that month ago. I was told at the time that it wasn’t covered and that’s it. Guess everyone should get it before August.

irotsoma , 8 days ago

Sounds like she had some kind of violent allergic reaction to the drink or had taken some sedatives or other medications that might have caused a bad reaction. Or maybe just before the flight she drank a whole bunch and it just hadn’t hit her yet. I can’t see a single drink doing that, even for someone with a phobia or trauma. Hope that if it was something she had no control over, they’ll at least take that into account. But if it was a mix of sedatives or she really was that drunk, then yeah, totally throw the book at her.

irotsoma , 9 days ago

Yeah, I’ve been having a lot of issues with Electron which is basically a browser emulator. It has gotten huge, so applications using it have gotten out of control in size. I get that it’s a quick way to build a cross platform application, but there really needs to either be a better way to distribute it that is more modular, or people need to start building on better cross platform front-end systems.

irotsoma , 9 days ago

Yeah, I had to move away from Arch Linux because lots of apps you have to build and Electron was one of the biggest culprits for using tons of disk space and time because it builds Chromium in its entirety from source. Electron is a great way to shift the cost of cross platform development from you to your customers.

irotsoma , 11 days ago

I’m not sure that applies here. Generally, when measuring something, you use less. Like I wouldn’t say , I just drank from my glass and it now has fewer waters in it. In this case, “natural ingredients” is a set of things that are being measured as a single “ingredient”. Like let’s say the natural ingredients are soot and berry juice. Would you say the paint has fewer or less soot and berry juice?

But then again language is all made up, the rules don’t matter, and you’re only truly wrong if the meaning is lost.

irotsoma , 12 days ago

“A New Stereophonic Sound Spectacular”

irotsoma , 15 days ago

If all he does is leave, that will be fantastic. More likely he’ll just cripple the company in his rage. That’s the real reason a lot will vote to pay him.

irotsoma , 23 days ago

So break the bubble, show us the people hurt by the “poison”. And not just one or two who happened to be allergic. That can happen with peanuts, like my little sister the first time she had them as a child. I had chicken pocks before the vaccine existed. I saw tons of kids suffering because of it. Now I see none except the ones who didn’t get the vaccine and the few unfortunate enough to be near too many of the unvaccinated people.

irotsoma , 23 days ago

Yeah, very limited, but it’s very good for more than half of the population that don’t have enough deductions to exceed the standard and don’t own property (if you properly count houseless “households” that earn income as not owning property and not just renters like most statistics). It’s dumb that they have to file a return anyway just to acres money that never should have been collected. Most just don’t know how to properly file their W-4 to not have taxes withheld in the first place. Mostly because they follow the directions and/or are afraid of paying a fine plus interest.

Anyway, it’s a step in the right direction. And if we can unbury all of the staff out of the pile of paper returns, we can devote some to go after the rich and their frivolous, often fraudulent deductions and have them pay the tax they owe.

irotsoma , 23 days ago

But it hasn’t always been free to file electronically. The government made it required for them to offer free versions for simple returns, but that was recent.

Also, access to the Internet isn’t universal. You’d be surprised how much of the US doesn’t have affordable Internet and a fair number don’t have Internet available at all, or limited to just dialup which is not very useful. And a lot of apps don’t work right on phone browsers, especially older phones, so then you need a desktop or laptop which a lot of people don’t have. Some have access in libraries, but a lot don’t or traveling to a library is a burden. And lots of other reasons that internet isn’t a given for a large portion of households. So paper is still not just necessary, but the easiest way.

irotsoma , 23 days ago

I self host a lot, but I host a lot on cheap VPS’s, mostly, in addition to the few services on local hardware.

However, these also don’t take into account the amount of time and money to maintain these networks and equipment. Residential electricity isn’t cheap; internet access isn’t cheap, especially if you have to get business class Internet to get upload speeds over 10 or 15 mbps or to avoid TOS breaches of running what they consider commercial services even if it’s just for you, mostly because of of cable company monopolies; cooling the hardware, especially if you live in a hotter climate, isn’t cheap; and maintaining the hardware and OS, upgrades, offsite backups for disaster recovery, and all of the other costs. For me, VPS’s work, but for others maintaining the OS and software is too much time to put in. And just figuring out what software to host and then how to set it up and properly secure it takes a ton of time.

irotsoma , 1 month ago

Been there, done that. Salaried workers have no limit on how much they can be required to work without additional pay.

irotsoma , 1 month ago

It seems it’s not so much they stole the domain, it’s that they are using the same name with a different top-level domain. This is a common shady practice in malware. Most people can’t afford to purchase every TLD or their domain and so just pick one or two. Problem is that search engines will find the bad TLDs and suggest them over the real TLD if the malware providers do proper SEO manipulation. A FOSS author is unlikely to be able to or afford the time and effort it takes to manipulate search results and most popular search engines are not doing much to fix the problem, and instead relying on “AI” to reduce the costs of maintaining their search results, which does a pretty bad job, IMHO.

irotsoma , 1 month ago

Ah, thanks for clarifying. I didn’t see that mentioned anywhere and the git repo is showing .io

irotsoma , 1 month ago

Food and gasoline prices have skyrocketed. Infrastructure is a mess in most of the country so it takes longer and longer to get anywhere at peak times. Companies have cut costs in offices so they’re just crowded and full of distraction and germs. So yeah, lots of time and money is saved by working from home.

irotsoma , 1 month ago

Unfortunately, the cost of healthier foods has gone up at the same pace. Instead people end up eating less or giving up other necessities like downsizing their housing or moving in with parents.

irotsoma , 1 month ago

Not really. An ever shrinking head of iceberg lettuce is about $2.50. A pound of the lowest grade ground beef is about $8. Bag of store brand buns is $2. A beefsteak tomato is $1.50. Pack of store brand American Cheeses is $4.50. Add in the other condiments that are harder to break down the price of, electricity/gas cost for cooking, water for cleaning, etc., and the cost for the cheapest, crappiest version of 4 quarter lb burgers is not much different than the $8 times 4 that McDonald’s is charging and I guarantee the quality is lower (lower ratio of meat:fat in the burger, buns with more sugar and preservatives and less fresh, etc.) And this is just the consumables, not the having a kitchen to do this in, the pans, utensils, etc. Unhoused people don’t have those things.

It used to be that because McDonald’s, etc., got their stuff in bulk and used lower quality ingredients and low paid employees, they offered these products for very low profit because of high volume. Now the cost including labor, supplies, etc., is less than half of what they charge. So their profit margins are huge if they have the same number of customers. But their customer base is going to dwindle, and so the profit margins will shrink, but that’s not a concern to corporations that only focus on today’s stock prices and don’t care about tomorrow.

irotsoma , 1 month ago

I was just giving an example. Sure if you avoid fresh produce, eggs, milk, or meats you might be able to make some cheap meals. But those things right now are very expensive. Beans are still pretty affordable for the nutrition.

irotsoma , 1 month ago

Eggs are around $6/dozen for the cheapest right now but have been as high as $14/dozen in the last year due to the shortages from processing company consolidation. And milk right now is $6/gallon. Plus with borderline cholesterol I avoid cow’s milk. If a dozen eggs costs an hour’s labor, that’s not very affordable. Especially when rent costs more than most people make in a month. My partner lives with 3 roommates and only makes around $20/hr. Food has to be quite cheap.

irotsoma , 1 month ago

Yeah, I doubt the median income is higher here, especially if you have socialized medicine. I make ok money, but the minimum wage here is still only $7.25/hr across the majority of the country, and the median income is around $18/hr. If you figure in the cost of health insurance average around $600/month. Though employers often cover a portion of the premium. And the median rent is $2000, much higher in cities of course. And gasoline in my city is over $5/gallon even with all of my tax money that subsidizes it. And of course, lower middle class pays the highest effective tax rates generally. So having a budget of $200-300/month for food is relatively normal for a single person with a median income.

irotsoma , 1 month ago

That electric bill, though. 🤣

irotsoma , 2 months ago

They’ll just call it something different and hide the size in small print. Or they’ll increase the price so that the large is still $.40 per oz since people don’t usually do the math these days and just assume larger things are a better deal. A lot of times they aren’t anymore because companies don’t care as much about selling a lot as they do about profit on the sale due to there not being much competition with all the consolidation.

irotsoma , 2 months ago

Depends. Ideological movements can push past distributed money using targeted money aimed at those it puts in power that don’t care about the effects of their actions, even if usually only briefly. Like what led to prohibition of alcohol. If Trump gets into office and is given enough money by the ideologs, he’ll be perfectly happy to destroy the whole system for personal profit. And he doesn’t care if a whole section of the oligarchy falls apart, he just wants to be dictator for the rest of his life. And that’s not all that many years anymore.

irotsoma , 2 months ago

Not related to the article itself, but I’m curious why use of archive.is has become so popular around here considering that they refuse to provide DNS replies without edns personal information attached? I’m not familiar with the politics involved, but a lot of DNS providers are getting blocked by archive.is for not providing that info, including my own home DNS server and cloud flare 1.1.1.1 and many others, so I’m surprised to see it gaining popularity on Lemmy.

irotsoma , 2 months ago

Firefox won’t for much longer. Or at least not without significant spyware installed. I’m hoping it gets forked before the new CEO can do too much damage. Sucks that it will split the community with such a small user base already. But I guess that’s the point.

irotsoma , 2 months ago

Librewolf on desktop/laptop for now. Blocking Mozilla telemetry for now and sticking with Firefox for Android until a better option comes around.

irotsoma , 2 months ago

I don’t like passkeys yet because they’re implemented poorly on most platforms, IMHO, because they replace two factors with one. Some don’t let you also turn on two factor auth at all which is dumb, but the ones that do then often only have options that use your device as a factor either through text or email. So if the passkey is your phone and you add text messages as the 2 factor option, that’s still your phone. Or if your passkey is your laptop and you’re logged into your email on the laptop, it’s just one.

irotsoma , 2 months ago

Problem is that if the factor is not authenticated by the server, it doesn’t count. Not saying it’s not helpful, but it’s not part of the consideration when designing the security of the system.

The device can be attacked for an indefinite time and the server knows nothing about that. Or the device can disable that additional security either knowingly or maliciously and the server has no knowledge of that breach. So it’s still a single factor, “something you have” to the perspective of the server when considered security.

I’ve worked with healthcare data for decades and am currently a software architect, so while it’s not my specialty directly, it is something I’ve had to deal with a lot.

irotsoma , 2 months ago

But authentication to access the passkey is on a remote device. So the server doesn’t have any information about if or how authentication was performed for the person to access the key. If they use a 4 digit pin or, worse, the 4 point pattern unlock, it’s easy enough to brute force on most devices.

This is also why using a password manager is not two factor authentication. It is one factor on your device and one factor on the server. But no one monitors the security logs on the device to detect brute force attacks and invalidate keys. Most don’t even wipe the device if the pin is being brute forced.

irotsoma , 2 months ago

I’m not saying it doesn’t count as authentication, it just doesn’t count as authentication to the security of the server directly. That’s the device’s security and configured by the user, not the server. And user devices are very prone to exploits to the point that many law enforcement agencies don’t even bother asking for a password anymore to access a device.

So, let’s move to a physical model as an example. Let’s say you have a door. It has a very simple door handle lock. You keep your key inside a hotel safe. Sure it might be difficult to get the key if they had to enter the hotel room, cut open the safe in place, and get the key while they’re standing in front of the secure door, exposed. But that’s dumb. They could just as easily grab the safe out of the room and open it later where there’s room for proper equipment, use a known exploit for the particular safe, or use other exploits all out of view of the door/server and at any time until the user realizes you know how to open their safe, because the door/server will never find out. Once that safe is open, you have not just the key to the door, but the key to all locks the user uses since now we only have “something you have” factors and the user uses only one device. Just like when we only had “something you know” factors and the user uses the same password everywhere.

So what does the passkey help with? It makes the lock and thus the key itself more complex. This makes it so that brute force attacks against the server are more difficult. But it doesn’t solve anything that existing TOTP over text messages didn’t solve, other than some complexity, and it eliminated the password (something you know) factor at the server. Something a lot of companies are already doing and we already know from experience is a bad practice. It has changed the hacking target to the device rather than the person. But still just one target, you don’t need both. Sure it’s better than a really bad password that’s reused everywhere. But it’s not better than a really good password unique to a site that’s only stored in a password manager on the user’s device that requires a separate master password to access (outside of MitM attacks that TOTP mitigates).

Now, what if we have a door with two locks, one that requires a code, and one that requires you to have access to a device. Now in order to attack the door, you need two factors right at the time you’re standing at the door. Also, there’s probably a camera at the door and someone paid to check it periodically when someone tries too many times, which isn’t the case in the user’s safe/device. So even if you get the key from the user, you still need to brute force the second lock efficiently or you need to implement a second exploit to get the second factor ahead of time. This is the idea of two factors at the server and the current state of things before passkeys.

irotsoma , 2 months ago

Laptops have large screens and windows software isn’t designed to be data efficient. Unlimited data doesn’t mean at full speed infinitely. They sell way more than they can support otherwise it would be impossible to support more than a few users at one time on a cell tower.

irotsoma , 2 months ago

Problem is that shared infrastructure shouldn’t be operated for profit. But American conservatives seem to think that’s the way to go. If infrastructure is shared, then there’s every incentive for a business to sell even if the infrastructure can’t handle it.

That being said, it’s a required thing. This is why we have society in the first place. If every customer had to have their own cell infrastructure, it would be a mess and a waste. I mean you are sold unlimited bandwidth at let’s say 1Gbps on 5G. There are about 1 cell tower node for every 1000 people in the US across the country. If we build enough infrastructure for everyone to use it at full speed each tower node would then need to be able to handle 1,000Gbps. That’s just not possible with current technology. So should we build one tower node per person plus all of the cabling and routers to handle that much traffic? Does everyone really need to be able to download a gigabit of data every second of every day? What would you do with that data?

What internet infrastructure is designed for is peaks of up to that speed for short bursts. Not sustained speeds. And then sharing that infrastructure. Just like if everyone were to turn on their water at the same time, no one would get more than a drip, but does that ever actually happen in real usage?

The difference is that water infrastructure is owned collectively, so it is more equitably developed to make it available to all as equally as possible, rather than just to those who pay more for it.

irotsoma , 2 months ago

It doesn’t work, for point 1 very well though. The tech is fine, but the way it’s presented to users is that it’s way more accurate than it actually is. That’s marketing rather than a technical problem. Second, the tech is not as good at recognizing non-white people. It’s just a fact that there are more pictures of white people to train the tech on since white people have historically had more access to photography among other reasons. And the models used to create most of the tech was built to favor facial traits that are more likely to differ in white people.

So, the likelihood of high probability matches is much lower so the likelihood that the highest probability match that is made is actually much lower probability of it being an actual match means the bad matches bubble to the top and get accepted as real. And these kinds of uses are more interested in a “better safe than sorry” stance and they aren’t sorry about killing the wrong person, only about not killing the right one. So they’re perfectly as happy killing many people that are possible matches as they are one person that’s the correct match.

irotsoma , 3 months ago

I think they were fine before, because they were offering the best experience for the people who want someone else to configure things for them and make decisions on privacy, security, etc., for them. Problem now is that they no longer offer much in the way of brand new user experiences that no one else offers, and additionally they don’t prioritize the user’s privacy and convenience and prioritize how much money they can make with the centralized user information they control and don’t allow the user to make decisions on their own privacy and security.

irotsoma , 3 months ago

Perhaps, but it’s a low impact, high reward thing. The amount of CO2 it conserves per person affected by the change is low and the people who are affected can easily afford alternative transportation. People who drive gas vehicles often have no alternative transportation available because they can’t afford new cars, don’t have access to charging, and/or don’t have access to public transportation and so need that transportation in order to survive. People with private planes can fly on public planes, use slower transportation methods, or invest in lower emissions planes and not have any impact to their ability to survive.

irotsoma , 3 months ago

Which one? There are several. I personally like Cinnamon for a Windows-like experience since I have to switch back and forth to windows for work. And Plasma quite attractive if looks matter more.

irotsoma , 3 months ago

You don’t need Windows to use a computer. There are tons of flavors of Linux among other options. There are plenty of manufacturers who sell Linux boxes and you can always build your own. Microsoft just pays a lot of manufacturers to bundle Windows in the cost, but not all.

irotsoma , 3 months ago

That will never work either. They’ll just transfer it to a subsidiary towards the end and then shut down the company. Then there’s no one to enforce the law on.

irotsoma , 3 months ago

It’s common to block an IP if the majority of traffic from that IP is not the kind of traffic you want.

Why do you need a VPN to access it? If you’re protecting privacy, VPNs don’t block browser-based tracking, only obfuscate where you’re connecting from or preventing man in the middle type attacks from your ISP, but usually that can be better avoided simply by using secure DNS technology. Only other thing is hiding what sites you’re connecting to from your ISP. If you can’t change ISPs, that can be worked around by setting up a trusted, cheap VPS or something as your VPN exit point so you have your own IP address.

irotsoma , 3 months ago

He’ll just claim that Chubb can’t collect because he’s president (regardless of whether he wins or not, he’ll claim he did just like last time). No way they’ll get anything from him. He obviously has connections in the company to get that through.

irotsoma , 3 months ago

Nah, lots of places try to make interviews as unbearable as possible. It’s “how they judge your ability to work under pressure”. Like my previous employer would fly you in seemingly with as many layovers as possible so you’re exhausted by that night. Put you up in a crappy hotel and make you come in super early. Put you in a tiny room and make you stay there for about 9-10 hours of intensive back-to-back interviews with a 30 min box lunch break. Pretty similar tactics as the military. And it’s not uncommon in tech.