Skip Navigation

InitialsDiceBearhttps://github.com/dicebear/dicebearhttps://creativecommons.org/publicdomain/zero/1.0/„Initials” (https://github.com/dicebear/dicebear) by „DiceBear”, licensed under „CC0 1.0” (https://creativecommons.org/publicdomain/zero/1.0/)C

chaospatterns

@ chaospatterns @lemmy.world

Posts
28
Comments
188
Joined
2 yr. ago

  • OpenAI’s Sam Altman warns of AI voice fraud crisis in banking

    Jump

  • How about some Yubikeys or smart cards instead of something that requires me to scan my retina and share it with Sam Altman

  • I'm setting up a Windows 11 laptop for my uncle. Is there a sneaky way to make it block right-wing bullshit websites?

    Jump

  • If you alter it to 0.0.0.0 then it shouldn't pop an SSL error, it would be a connection failed error.

  • Just created my own zero trust network!

    Jump

  • Right. Zero trust means at the very least you need to add AuthN and AuthZ to every endpoint with no exceptions for internal IP addresses.

  • is there any way to invest ethically as a sole individual?

    Jump

  • Executives have compensation tied to stock price. If the stock price goes down because nobody wants to invest in a bad company, those executives have incentive to become change their ways.

    That compensation incentive is also why executives are so short term thinking nowadays.

    The stock market is part popularity contest but it's a lot more complicated than simple statements.

  • is there any way to invest ethically as a sole individual?

    Jump

  • There's different ways to be ethical in finances.

    One option is to just not be anxious about investing in "bad" companies and make money, but then turn around and donate to charities, vote for aligned politicians, and vote in shareholder elections.

    Or you could try to invest in "better" companies. ESG (Environmental, Social, Governance) based investing has been politicized and isn't perfect because the scoring can be and is manipulated. But at least it's trying. For example, normally ETFs management companies take the shares that you effectively own and vote along with the board recommendations which often aligns with making the most money over environmental and social concerns, but funds like $VOTE so those voting rights to vote in ways they think are more ethical. Vanguard has $ESGV. Black Rock, a huge investing company, offers voting choice which allows you to pick alignment strategy. For example, you could pick to vote for environmental reasons and they'll influence the company that way. Support for that depends on your brokerage and the fund you own.

    You could also pick individual stocks and never buy companies that don't align with your ethics, but that has its own complexities because now you're actively investing and probably not matching market returns.

    Ultimately, ethics aren't black and white. I don't try to be perfectly ethical in my investing because it just causes too much anxiety asking is this company bad or good? I invest in broad market funds, I vote in all elections (both shareholder and government elections), I don't invest in individual companies I don't agree with, I invest in some climate friendly ETFs, and I donate to charities that I like.

    This situation reminds me of a plot in The Good Place, a TV show, about how >!everybody went to the "bad place" because modern society had so many decisions that had small negative consequences.!<

  • Photo management - storing friends' photos

    Jump

  • Encryption at rest just means the data itself is encrypted when stored on disk and the key is somewhere. It doesn't dictate that the key is not visible to the server.

    Encryption in transit refers to an encrypted channel from client to server.

    E2E encryption usually refers to encryption from one entity to another where any intermediary servers do not have the ability to decrypt

    Source: too many years doing application security at my job

  • Colombia identifies new threat in drug war: the autonomous narco drone sub

    Jump

  • Autonomous vehicles often have network connectivity to allow the owner to track, monitor, and send commands.

  • At Amazon's Biggest Data Center, Everything Is Supersized for A.I

    Jump

  • Three Years of Nix and NixOS: The Good, the Bad, and the Ugly

    Jump

  • I really want to like Nix. The idea of declaratively defining my entire system sounds great. I can manage it with Git and even have multiple machines all look the same. I can define my partititioning once and magically get a btrfs disk working. Wow!

    But I find the language confusing no matter how many times people say it's easy. I have a lot of experience with other programming languages so maybe it just doesn't mesh. It also gives terrible error messages that are hard for me to understand. And Nixpkgs is unpredictable for what version I'm going to get. One of the services I installed ended up being a release candidate version which was a surprise. What if I don't want the latest version of Docker? How do I pin it? Do I have to duplicate part of Nixpkgs? It just feels like a monorepo where everybody has to be on the same versions. Why on earth do the Nix language docs start by introducing math expressions instead of here is a simple self contained thing that installs one program. Here's how you configure it. Here's how you expand. Why does the dependency graph seem to pull in so many unnecessary dependencies? For example, I tried to build a minimal Docker image (which Nix looks to be a very good fit for), but I couldn't figure out how to strip out dependencies that likely were only used during build for a dependency.

    I still like the idea and have managed to get my server defined entirely with NixOS which is very cool, but I can't recommend this to my tech friends because if I'm confused they will be more so.

  • Why shouldn't you use YAML to store eye tracking data? /s

    Jump

  • Yeah this isn't even human readable even when it's in YAML. What am I going to do? Read the floats and understand that the person looked left?

  • Automatic Transfer Switch PDU in The Homelab - Does it make sense?

    Jump

  • The point seems to be able to handle a UPS failure

  • Senate GOP budget bill has little-noticed provision that could hurt your Wi-Fi

    Jump

  • WiFi is on all three bands. It's not so much what's newer vs older. Newer devices tend to support 2.4, 5, and 6 and switch between them based on quality of signal and support by the WiFi network. Higher frequencies like 5 and 6GHz are generally better because there's less interference.

    Cheaper devices tend to only support 2.4GHz

  • Temperatures reach 46C in Spain as Europe heatwave continues

    Jump

  • Yes, but from a societal perspective, theres value in making cuts in a lot of different places.

    Maybe you can do a meatless Monday, and somebody else will go vegan. Tell the people in private jets to stop flying private, but the family that's going to another culture and learning and maybe becoming better has benefits.

  • Deleted

    Permanently Deleted

    Jump

  • Fascinating. Just based on your comment and nothing else, sounds like it could be something like a CPU Enclave like Intel SGX. Basically a remote client can validate that an application runs in a secure part of a remote cloud computer. The stated goal of SGX is that you only have to trust Intel and if you trust Intel and say run program X in the enclave, then only that part of the CPU can access the data, not the applications running in the non-secure enclave.

    Now that brushes over some things like you still need to trust the client and IIRC in a WhatsApp situation, you don't really know what enclave does, but the communications between the enclave and the host OS are heavily restricted. LLMs also require lots of CPU and are usually run on GPUs, so not sure how that works yet.

  • The "standard" car charger is usually overkill—but your electrician might not know that [32:26]

    Jump

  • I think #1 is suggesting to move the neutral over to another hot phase and change the outlet to a 240v nema 6/three prong (I think) with two hots and a ground instead of the 4 prong.

    The 240v at the same amps gives you higher watts so faster charging without an expensive new conductor. I'm

  • What are the modern design trends you hate most?

    Jump

  • Maybe that's intentional to keep you from wanting to stay there a long time and negotiate.

  • Deleted

    Permanently Deleted

    Jump

  • Sounds a lot like getting used to time zones. Just get used to it being 3pm there when it's 6pm here

  • Beyond overt bans how resilient is the Fediverse (and Lemmy specifically) to the new forms of digital control and censorship?

    Jump

  • It makes some things hard and some things easier. For example, you can more easily defend against DoS attacks because there's just more targets.

    But decentralized makes it easier for bot manipulation because you can hide your actions across multiple users on different instances and those instances can't easily identify bot signatures like IP addresses to ban many accounts.

  • Google Play’s latest security change may break many Android apps for some power users. The Play Integrity API uses hardware-backed signals that are trickier for rooted devices and custom ROMs to pass.

    Jump

  • Google is doing this because they have incentives to do so. They want to block malicious actors like attack their platforms.

    Other companies want to lock down their own apps because they don't think users should be permitted to do anything other than use their apps exactly as they want.

    I don't like it as a user, but I also see the reason why companies want this by being on the security side of software.