Self signed is better and more trustworthy. LE’s short cert expiration makes it an enormous pain in the ass. Just put your cert on your site and sign it.
Maybe we could design a protocol for securing the socket layer, maybe even automate the key exchange so that it's basically transparent to the user, and then why not do the same thing for the people that need certs, let them ask for it whenever they want and provide them a nice tool to automatically renew it. /s
Not really. But with tools like CertBot and ACME Terraform Providers, (or just a periodic cronjob), it's not too difficult to keep your certs up to date. (just don't spam their prod provisioning servers).
It's Android-based. Of course there was always spyware, and you just learned that the ads can be shoved into your face at a whim. Unless you're tech-incompetent this isn't a big surprise.
Just imagine for one second that you bought a product with a Google OS thinking there won’t be ads and spyware on the thing. It’s frickin’ 2021, just imagine being completely ignorant of Google’s function in this, our current year.
Everybody has the right to buy an ad and spyware laden black box and install it in their home. But is it smart?
They're a company which spends billions of dollars hiring the people who play the game of manipulating others at the highest level. They're doing their absolute best to make sure people are ignorant. The average person is completely outmatched.
Just do what smart people have been doing for years - stop using big tech. Stop using Google, Facebook, Apple, IBM, Microsoft. Buy a used computer and install a Free OS and just check out of the entire big tech ecosystem.
Otherwise you get what you deserve. And let’s all disabuse ourselves of the incorrect notion that it’s big tech alone which is ordering censorship. It’s our own governments, who use the many secret laws and intelligence agency relationships (all of big tech is basically In-Q-Tel) to get what they want.
Make it difficult for them. Don’t play nice. Dissent. Stop using PRISM platforms.
I use Linux, discuss political ideas on private, members-only forums, and share memes over Signal. This is an excellent setup... if you want to have conversations with your fellow computer janitors.
This is no way to connect to other people. And these people might also have interesting ideas, ideas I might want to hear before some bot at Facebooks deems them against "community standards" or whatever they call their censorship that is totally not censorship.
> This is no way to connect to other people. And these people might also have interesting ideas, ideas I might want to hear before some bot at Facebooks deems them against "community standards" or whatever they call their censorship that is totally not censorship.
Well, people connected with each other before 2007, so presumably you could be exposed to different, interesting ideas by joining local clubs, churches, or other community gatherings where you have interactions with non "computer janitors"
It's an honorable call but most people can't follow it -- like my dad. They're too entrenched.
It's not reasonable, in a connected world-system like today's, to put all the burden on individual people to instantly switch away from bad providers, no matter the level of entrenchment.
Isn't one important role of government to protect constituents from corporate encroachment? Have we given up on electing governments that work for us?
This right here is it, for the most part. I see a lot of people who lament how terrible the takeover of "big tech" is, but they still use Facebook on a regular basis and don't go out of their way to seek alternatives. It's like complaining that Kraft has taken over your local supermarket aisle while you're buying 10 boxes of name-brand mac and cheese.
Not really. There's a gradient of entrenchment. Your example doesn't work at all if we're talking about deeply-entrenched/natural-monopoly products like electricity or internet access instead of a trivially-switchable product like a brand of mac & cheese or ranch dressing.
The question is where does Facebook fall on that gradient? It's certainly not on the "product on the supermarket shelf" end. It's closer to the middle somewhere.
I gave up Facebook in 2013 and more or less lost any semblance of an ongoing connection to a dozen childhood friends from my home country. Many people aren't willing to give up that type of thing. This isn't whatsoever like swappable supermarket products.
Audio latency is only measured in the air once it leaves a transducer. You're comparing apples to oranges here and deliberately misunderstanding the issue.
No. More infections = more noise. If you want to target specific people for a long time, you want to make as little noise as possible. This includes unexpected traffic, file artefacts, background energy use, etc.
Although now that the cat is out of the bag, I'm sure some groups are working to reproduce it for mass-infection. Especially since this looks wormable.
The NSA was unable to protect its offensive crown jewels from the Shadow Brokers, and when they could not auction them off and decided to just release them in the public domain, that led to things like Wannacry or Petya that almost sank (pun intended) the world's No.1 shipping line, Maersk.
And yet those buffoons want us to trust them with master decryption keys for all encryption protocols.
With extremely valuable zero-days like this targeting is the way to go b/c you don't want the zero-day discovered by putting it out extensively in the wild. Obviously it's always a question of time anyways.
Passively collecting data on the wire is different from actively exploiting a device to execute malware. Any entity trying to work with intelligence agencies is definitely going to be careful and somewhat sparing with their use of an "S-tier" zero-day like this. (Unless they have reason to believe it's already likely been burned, in which case they might decide to hastily machine gun it while it's still viable.)
This is a different context, different targeted group, different use case, than what we've seen with global NSA monitoring. You're comparing apples to oranges.
