How do you sell what you did as “it just worked”? Rightaway? You lied to them. You have your coworkers on an unmanaged machine with a foreign OS on the guest WiFi with custom networking. Don’t oversell a workaround as a solution.

Simplifying the problem to “Windows” seems unfair, given how many problems you found. All of them still require a long-term solution for regular operation.

You don’t realize a 500km route you take once is shit. It’s when the software sends you on a shit route across town every single day when you measure quality.

Especially because TypeScript compiles down to JavaScript JS

SmegmaScript is just too close

Fake Amazon reviews is a service you can buy to boost your product. Using genAI is an obvious move for these providers. Makes it harder for Amazon to find the fakes, because they can generate more content variety.

When you run a botnet for such a service, you can’t only put 5 star reviews on your client’s products. You want a variety of usage pattern modifiers to stay below the radar. Putting reviews on semi-random products is one technique.

Makes sense. But what about couples and families?

I’m just waiting for someone to lecture me how the speed record in wheelchair sprint beats feet’s ass…

They do. Reality is not going to change though. You can enable a handicapped developer to code with LLMs, but you can’t win a foot race by using a wheelchair.

In short, untreated mental illness

Right. And then they locate it and search the rooms nearby. Exactly what their disclaimer is about

Just FYI, you need very little skill to clone the WiFi access gateway of a hotel WiFi, and then blast their SSID from your router, to lure close guests into your honeypot. Once people are on your malicious gateway, the fun starts.

In a hotel with hundreds of hackers on alcohol, it’s not unlikely for people to fuck around.

There is also no requirement to be a “good guy” to attend the conference.

Explaining my job is trivial compared to the insanity I cook up in my spare time.

Oh, so you like gaming? No, I’m actually not playing the game. I’m building a mod for it. Erm, okay, so this is for other players then? No, I’m mostly building it for myself. Ah, so you haven’t put a lot of time into it yet? Roughly 12 years. What? So what does the mod do then? It plays the game for me, and publishes in-game metrics to a monitoring application, so that I can see the progress of the game in an abstract form while I’m on the couch, thinking about how to optimize the automation further.

Regular fun stuff.

Telegram is not just IM. Open the search and search for channels. Get creative, they have keyword filters. City name is always a good start. Check the channels with ❄️ and 🍄 emojis. This is where people are scammed for drugs. Maybe sometimes not scams.

A lot happens on Telegram, and it’s right behind that little search icon.

In boomer times, phone calls were expensive and were transferred over landlines. It had an impact on the quality of the conversation.

Today people call you with 1% battery while at the register of the supermarket and instantly launch into a monologue about how they know it’s not a good time to call, and they might even cut off any moment, and they know you’re usually busy at 10am on a work day, but they really need to know if they can call you “later” to discuss something really important. And before you can tell them anything, they cut off. At least it’s over!

10 minutes later they call you from their car and it takes them a couple of minutes to get the audio working so they can repeat everything they said earlier. It’s what you have to do if a call was cut off! Then they drive into a tunnel.

Dealing with this shit is a dark art fr

I actually agree. For the majority of sites and/or use cases, it probably is sufficient.

Explaining properly why LE is generally problematic, takes considerable depth of information, that I’m just not able to relay easily right now. But consider this:

LE is mostly a convenience. They save an operator $1 per month per certificate. For everyone with hosting costs beyond $1000, this is laughable savings. People who take TLS seriously often have more demands than “padlock in the browser UI”. If a free service decides they no longer want to use OCSP, that’s an annoying disruption that was entirely not worth the $1 https://www.abetterinternet.org/post/replacing-ocsp-with-crls/

LE has no SLA. You have no guarantee to be able to ever renew your certificate again. A risk not anyone should take.

Who is paying for LE? If you’re not paying, how can you rely on the service to exist tomorrow?

It’s not too long ago that people said “only some sites need HTTPS, HTTP is fine for most”. It never was, and people should not build anything relevant on “free” security today either.

People who have actually relevant use cases with the need for a reliable partner would never use LE. It’s a gimmick for hobbyists and people who suck at their job.

If you have never revoked a certificate, you don’t really know what you’re doing. If you have never run into rate-limiting issues with LE that block a rollout, you don’t know what you’re doing.

LE works until it doesn’t, and then it’s like every other free service on the internet: no guarantees If your setup relies on the goodwill of a single entity handing out shit for free, it’s not a robust setup. If you rely on that entity to keep an OCSP responder alive for free so all your consumers can verify the validity of your certificate, that’s not great. And people do this to save their company $1 a month for the real thing? Even running the shitty certbot in compute has a larger cost. People are so blindly in love with this “free” garbage. The fanboys will never die off

the claims in some media that Telegram is some sort of anarchic paradise are absolutely untrue. We take down millions of harmful posts and channels every day,

Gotcha. Millions of harmful posts every day. That really does sound like a great place.

wtf…

Following along with the style of your own post: YAML doesn’t suck, because I feel so.

Thanks for asking.

ARKit is what allows you to use augmented reality features in certain apps. It’s niche, but it’s rare not to be available.

I thought for the longest time that the fingerprint sensor is right when it complains that I should clean it. Have you ever tried to clean it by rubbing it? Causing it to lock down because it interpreted the input as a quick series of invalid fingerprints? Because that’s what kept happening to me. After several times of this happening, the next time I just rebooted the device. After reboot, it unlocked on the first try, without me having to clean or dry anything.

When you just wanted to pay a bill, and suddenly you can’t unlock your banking app because of this, it’s quite annoying. Now you need the app password. Okay, let’s pull it out of the password manager. Oh right, you can’t unlock that either now. So let’s enter the 100 characters master key again.

I’m truly happy for every other owner who never went through this 😄

The camera is not terrible, but the missing stabilization frequently leads to blurry images. In low light it’s almost pointless to even try. I was used to better image quality from phones when FP4 was released. They could have done better for the price.

I’m actually glad to hear that you were able to exercise the ability to replace a part. I’m sure others have too. I should put that more into consideration next time I come the subject.

I appreciate you took the time to give a different perspective. So I wanted to provide a bit more context from my experience.