If you don't like or trust CloudFlare but the WHOIS privacy protection is important to you, the registrar Porkbun also offers free WHOIS privacy, and their rates are reasonable. I've been slowly migrating my domains there for these reasons, plus their easy DNSSEC support.
These aren't all show-stoppers, but they define how I use Firefox. I spend at least 8 hours a day at a computer, much of it in a browser. Over the years I've tailored my environment to best suit my needs, my productivity, my usage patterns. The ability to heavily customize the browser's interface and behavior was the whole point of Firefox. Unfortunately, much of that capability died with the move to WebExtensions.
I have a sneaking suspicion Intel shares will fall through the floor
Intel's CEO agrees; a couple weeks ago he sold all the Intel stock he can. If he'd dumped any more shares, he would have had to forfeit his job. That isn't a man who's confident about the future of his company...
I haven't yet looked at whatever bits of patch are public, but since this problem only applies to a subset of chips, there will almost certainly be an ifdef in kernel/cpu/intel.c to toggle the fix. At the very least, that means it'll be optional if you compile your own kernel.
And what CA that my browser trusts are you going to use to sign a domain you don't own?
To quote Brianna Keilar: "Most of them?" A lot of CAs offer instantly-issued DV certificates now. All you have to do is place a verification file on the target domain, or create a special A record in the DNS, in order to prove to the CA that you control the domain. If I can manipulate the DNS such that wikileaks.org points at my server (even temporarily), I can get the CA to issue me a valid certificate for wikileaks.org. They're likely to revoke it once the tampering is discovered, but that could be many hours later and your browser will trust it in the meantime.
One possible mitigation is Key Pinning. This can potentially alert users to a certificate mismatch, but only if they've visited that site in the past 30-60 days and their browser knows what the keys for the valid certificate are supposed to look like.
Maybe, just maybe, so much of the media coverage of Trump is negative because the things his administration is doing (or not doing) are perceived negatively by a large part of the population. Maybe it's because numerous things Trump promised to accomplish "on day one," or in the first month of his term, or in the first 100 days of his term haven't been done. Maybe it's because Americans figured out they prefer having imperfect health care as opposed to none at all, and they kinda like having clean water that isn't full of coal fly ash. Maybe it's because day after day, more shady connections between Russia and the Trump camp are revealed, and the administration bungles more cover-up attempts. Maybe it's because the president looks outright incompetent having his appointees and White House staff continually infighting, resigning, getting fired, recusing themselves, and finding themselves under investigation by the FBI. Maybe it's because the public doesn't quite approve of Trump's nepotistic despotism, or the very troubling appearance that he's christened his son-in-law to do an end run around various posts that are supposed to require Congressional approval. Maybe most of America doesn't like having an increasingly angry, childish, petulant, petty, racist buffoon being the person who represents them in front of the world.
Nahhh, can't be any of that; it's the (((librul media globalist elites))) who are the problem, right?
I take some umbrage at Cloudflare's rationale. Their position regarding this site, as well as various other sites, seems to be "we're just a proxy." The issue with that defense is that by proxying for a site, the Cloudflare service hides and obfuscates whatever provider is actually hosting the content. This is a) by design, and b) necessary in order to make the DDoS protection effective. That doesn't make it any less problematic.
Cloudflare wants to pass the buck somewhere else in the "infrastructure stack," as they call it, and I don't necessarily disagree that what amounts to a glorified transit provider is the wrong place to be implementing blocks. But given the very nature of Cloudflare's service, how does one figure out where else to complain? When a site is using Cloudflare, all roads dead end in Cloudflare's network. The site's name servers are in the cloudflare.com domain. The site's A records are inside Cloudflare IP space. Cloudflare is the primary visible service provider in these scenarios, whether they host any content or not.
Case in point, I've watched this story play out with some interest over the past couple of days. I still have no idea where Daily Stormer's content was actually being hosted. It almost certainly would have violated the AUP/TOS of that hosting provider, and they probably would have terminated the site directly. But with Cloudflare in the way, no one knows who to complain to.
When your business model is being a black-box opaque front for all comers, don't be surprised when the world directs its anger at you.
Why were the NSA spying on someone who was possibly involved in copyright infringement?
Economic espionage. NSA has been doing it for decades, despite it not being part of their charter. The most well-known example, and one of few that have become public, is from the 90s. NSA gathered SIGINT for (American) McDonnell-Douglas that allowed them to snatch a $6B Saudi aircraft order away from (European) Airbus. You can bet this sort of thing happens all the time when those sorts of dollar amounts are in play. MPAA claims piracy costs them billions, ergo, call in the NSA and let the laws be damned.
By the by, most terrorists are already known to law enforcement by the time they do whatever it is they're going to do. How many times have we heard "the FBI had previously investigated the suspect" or "British counter-terror officials had been monitoring the attacker for several years?" Anonymity isn't really the issue, and even if it were, I'm not going to live my life afraid of terrorists.
What exactly does pause, fast forward and rewind have to do with EME? You can freely do all those things with EME.
You could "freely do" all those things with a DVD, too. Then the FBI warning started being un-skippable. Then the preview ads started being un-skippable, which is really great when you pop in an old movie and have to sit through trailers for "upcoming" features that bombed at the box office 5 years ago. What the technology itself allows, and how the media cartels will allow the technology to be used by consumers, are two entirely different things. And they wonder why people pirate.
Go ask each of your neighbors if they've ever heard of it. Ask you coworkers. Ask your family members. "Publicly readable" does not translate to "well-known."
It isn't just the old days, either. Look no further than Jefferson Beauregard Sessions, who's doubling down on marijuana offenses to fill his buddies' privately-owned prisons. Meanwhile, he and the president are removing enforcement funding and focus from the opioid epidemic, which is (broadly speaking) a "whiter" drug habit. Let's be honest, they aren't going to lock up Aiden and Emma for popping roxys, they're going to lock up DeMarcus and Alonzo for having some weed.
Burning books isn't censorship unless the government is doing it. You're welcome to have a bonfire anytime. As JK Rowling would say, by the time you're burning books, the author already got your money.
What's wrong with pizza, does the NSA put micro chips in the box or something?
I believe the current position of the USG is that transmitters are reserved for microwave pizza...
With regards to delivery, pizza parlor customer lists were one of the first sources of corporate data to be bought, raided, mined, and abused by everyone from ambulance chasers to the CIA. Want to find someone inside the United States, even if they chucked their cellphone into the Potomac and haven't touched their credit cards in 6 months? There's a good chance they've had a pizza delivered recently. If Jeff Sessions knew how many former fugitives are sitting in prison because they ordered a pizza to their hideout using their real name, he'd appoint Papa John as head of the Marshals Service.
How can someone work for the NSA and NOT be aware that they track everything?
One, she was a linguist, not a spook. Highly specialized individuals are often obtuse in matters outside their areas of expertise. If I needed brain surgery, I'd eagerly seek out the brilliant neurosurgeon Dr. Ben Carson. Likewise, I'd probably trust Ms. Winner to accurately translate a five-party Farsi dialogue in real time. I wouldn't want either of them advising me on matters of, say, agricultural food storage or information security.
Two, she was a contractor. The curriculum and rigor of the on-boarding process at Pluribus are unknown quantities to us. Contracting is a big fucking problem, and it's not going to get any better as long as there are politicians determined to privatize and profiteer from essential government functions.
Finally, her age is of some relevance. She's young enough to have grown up in a world where "everything is tracked" has been normal for most of her life. The ubiquitous and commonplace are far easier to gloss over and forget: when was the last time you really noticed a cell tower? Training is required to overcome complacency. This, too, is a problem that will only get worse. People give me funny looks when I tell them I've never had a pizza delivered, yet think nothing of giving away their most personal of data in exchange for a few more gems on the latest iPhone game.
For one part of the school to demand they produce something like this, then another to use it to eject them as unsuitable for enrollment in the school, certainly looks like a sucker punch.
I think you might be misunderstanding what happened here.
1. Harvard created an official, public Facebook group for the incoming freshmen. The students involved were all a part of that group.
2. Several of these students got together and created their own, private Facebook group for circulating offensive jokes and memes.
3. In order to be invited into the private, student-run group, you had to "prove you were worthy" by posting something offensive into the official, public, Harvard-run group.
At no time did Harvard demand or induce anyone to post anything offensive.
Some airlines have moved to iPad-based electronic checklists, navigation charts, logbooks, and crew timekeeping (I don't know if Egypt Air is among them). This saves hundreds of pounds worth of physical paper books from being hauled around on every flight, which adds up to millions of dollars per year in fuel. As well, there are some very widely-used aviation apps like ForeFlight that are only available on iOS.
For better or for worse, iPhones and iPads have taken over the cockpit. It doesn't mean the pilot was fucking off.
The question is. If surveillance sells who's buying?
Your insurance company, who'll discover that your wife searched for "breast lump" and then jack up your monthly premiums accordingly, even though it turned out to be nothing.
Your employer, who wants to clean house of any employees who practice a certain religion, but can't exactly go around asking everyone about it.
Your employer, who might be interested to know that you subscribe to both Netflix and Hulu; you obviously have too much disposable income, and can be passed over for a raise.
Your father-in-law, who's never liked you and can't wait to use your porn surfing habits to embarrass you at Thanksgiving dinner this year.
Your company's competition, who would love to brag about how you visit their website dozens of times a day.
We haven't even started with the government yet. Get creative. Your enemies are.
Slashdot Mirror
If you don't like or trust CloudFlare but the WHOIS privacy protection is important to you, the registrar Porkbun also offers free WHOIS privacy, and their rates are reasonable. I've been slowly migrating my domains there for these reasons, plus their easy DNSSEC support.
Well, here's my mileage:
These aren't all show-stoppers, but they define how I use Firefox. I spend at least 8 hours a day at a computer, much of it in a browser. Over the years I've tailored my environment to best suit my needs, my productivity, my usage patterns. The ability to heavily customize the browser's interface and behavior was the whole point of Firefox. Unfortunately, much of that capability died with the move to WebExtensions.
I have a sneaking suspicion Intel shares will fall through the floor
Intel's CEO agrees; a couple weeks ago he sold all the Intel stock he can. If he'd dumped any more shares, he would have had to forfeit his job. That isn't a man who's confident about the future of his company...
I haven't yet looked at whatever bits of patch are public, but since this problem only applies to a subset of chips, there will almost certainly be an ifdef in kernel/cpu/intel.c to toggle the fix. At the very least, that means it'll be optional if you compile your own kernel.
And what CA that my browser trusts are you going to use to sign a domain you don't own?
To quote Brianna Keilar: "Most of them?" A lot of CAs offer instantly-issued DV certificates now. All you have to do is place a verification file on the target domain, or create a special A record in the DNS, in order to prove to the CA that you control the domain. If I can manipulate the DNS such that wikileaks.org points at my server (even temporarily), I can get the CA to issue me a valid certificate for wikileaks.org. They're likely to revoke it once the tampering is discovered, but that could be many hours later and your browser will trust it in the meantime.
One possible mitigation is Key Pinning. This can potentially alert users to a certificate mismatch, but only if they've visited that site in the past 30-60 days and their browser knows what the keys for the valid certificate are supposed to look like.
Maybe, just maybe, so much of the media coverage of Trump is negative because the things his administration is doing (or not doing) are perceived negatively by a large part of the population. Maybe it's because numerous things Trump promised to accomplish "on day one," or in the first month of his term, or in the first 100 days of his term haven't been done. Maybe it's because Americans figured out they prefer having imperfect health care as opposed to none at all, and they kinda like having clean water that isn't full of coal fly ash. Maybe it's because day after day, more shady connections between Russia and the Trump camp are revealed, and the administration bungles more cover-up attempts. Maybe it's because the president looks outright incompetent having his appointees and White House staff continually infighting, resigning, getting fired, recusing themselves, and finding themselves under investigation by the FBI. Maybe it's because the public doesn't quite approve of Trump's nepotistic despotism, or the very troubling appearance that he's christened his son-in-law to do an end run around various posts that are supposed to require Congressional approval. Maybe most of America doesn't like having an increasingly angry, childish, petulant, petty, racist buffoon being the person who represents them in front of the world.
Nahhh, can't be any of that; it's the (((librul media globalist elites))) who are the problem, right?
They put up a blog post explaining their decision a little while ago.
I take some umbrage at Cloudflare's rationale. Their position regarding this site, as well as various other sites, seems to be "we're just a proxy." The issue with that defense is that by proxying for a site, the Cloudflare service hides and obfuscates whatever provider is actually hosting the content. This is a) by design, and b) necessary in order to make the DDoS protection effective. That doesn't make it any less problematic.
Cloudflare wants to pass the buck somewhere else in the "infrastructure stack," as they call it, and I don't necessarily disagree that what amounts to a glorified transit provider is the wrong place to be implementing blocks. But given the very nature of Cloudflare's service, how does one figure out where else to complain? When a site is using Cloudflare, all roads dead end in Cloudflare's network. The site's name servers are in the cloudflare.com domain. The site's A records are inside Cloudflare IP space. Cloudflare is the primary visible service provider in these scenarios, whether they host any content or not.
Case in point, I've watched this story play out with some interest over the past couple of days. I still have no idea where Daily Stormer's content was actually being hosted. It almost certainly would have violated the AUP/TOS of that hosting provider, and they probably would have terminated the site directly. But with Cloudflare in the way, no one knows who to complain to.
When your business model is being a black-box opaque front for all comers, don't be surprised when the world directs its anger at you.
Why were the NSA spying on someone who was possibly involved in copyright infringement?
Economic espionage. NSA has been doing it for decades, despite it not being part of their charter. The most well-known example, and one of few that have become public, is from the 90s. NSA gathered SIGINT for (American) McDonnell-Douglas that allowed them to snatch a $6B Saudi aircraft order away from (European) Airbus. You can bet this sort of thing happens all the time when those sorts of dollar amounts are in play. MPAA claims piracy costs them billions, ergo, call in the NSA and let the laws be damned.
Yes.
By the by, most terrorists are already known to law enforcement by the time they do whatever it is they're going to do. How many times have we heard "the FBI had previously investigated the suspect" or "British counter-terror officials had been monitoring the attacker for several years?" Anonymity isn't really the issue, and even if it were, I'm not going to live my life afraid of terrorists.
The one time I actually want to upvote an APK post, and I don't have mod points! All I can do is say thanks for your contribution.
What exactly does pause, fast forward and rewind have to do with EME? You can freely do all those things with EME.
You could "freely do" all those things with a DVD, too. Then the FBI warning started being un-skippable. Then the preview ads started being un-skippable, which is really great when you pop in an old movie and have to sit through trailers for "upcoming" features that bombed at the box office 5 years ago. What the technology itself allows, and how the media cartels will allow the technology to be used by consumers, are two entirely different things. And they wonder why people pirate.
The secret police should not have a role in fixing domestic political disputes.
Neither should Vladimir Putin, the Russian troll factory, an Australian living in exile in an Ecuadorian embassy, or "Guccifer 2.0."
Yet here we are.
Go ask each of your neighbors if they've ever heard of it. Ask you coworkers. Ask your family members. "Publicly readable" does not translate to "well-known."
It isn't just the old days, either. Look no further than Jefferson Beauregard Sessions, who's doubling down on marijuana offenses to fill his buddies' privately-owned prisons. Meanwhile, he and the president are removing enforcement funding and focus from the opioid epidemic, which is (broadly speaking) a "whiter" drug habit. Let's be honest, they aren't going to lock up Aiden and Emma for popping roxys, they're going to lock up DeMarcus and Alonzo for having some weed.
Burning books isn't censorship unless the government is doing it. You're welcome to have a bonfire anytime. As JK Rowling would say, by the time you're burning books, the author already got your money.
Nah, that's what Dmitry Sklyarov was for.
What's wrong with pizza, does the NSA put micro chips in the box or something?
I believe the current position of the USG is that transmitters are reserved for microwave pizza...
With regards to delivery, pizza parlor customer lists were one of the first sources of corporate data to be bought, raided, mined, and abused by everyone from ambulance chasers to the CIA. Want to find someone inside the United States, even if they chucked their cellphone into the Potomac and haven't touched their credit cards in 6 months? There's a good chance they've had a pizza delivered recently. If Jeff Sessions knew how many former fugitives are sitting in prison because they ordered a pizza to their hideout using their real name, he'd appoint Papa John as head of the Marshals Service.
How can someone work for the NSA and NOT be aware that they track everything?
One, she was a linguist, not a spook. Highly specialized individuals are often obtuse in matters outside their areas of expertise. If I needed brain surgery, I'd eagerly seek out the brilliant neurosurgeon Dr. Ben Carson. Likewise, I'd probably trust Ms. Winner to accurately translate a five-party Farsi dialogue in real time. I wouldn't want either of them advising me on matters of, say, agricultural food storage or information security.
Two, she was a contractor. The curriculum and rigor of the on-boarding process at Pluribus are unknown quantities to us. Contracting is a big fucking problem, and it's not going to get any better as long as there are politicians determined to privatize and profiteer from essential government functions.
Finally, her age is of some relevance. She's young enough to have grown up in a world where "everything is tracked" has been normal for most of her life. The ubiquitous and commonplace are far easier to gloss over and forget: when was the last time you really noticed a cell tower? Training is required to overcome complacency. This, too, is a problem that will only get worse. People give me funny looks when I tell them I've never had a pizza delivered, yet think nothing of giving away their most personal of data in exchange for a few more gems on the latest iPhone game.
Or that the London Bridge attackers came from Morocco, Pakistan, and Italy, none of which Trump proposes to ban.
For one part of the school to demand they produce something like this, then another to use it to eject them as unsuitable for enrollment in the school, certainly looks like a sucker punch.
I think you might be misunderstanding what happened here.
1. Harvard created an official, public Facebook group for the incoming freshmen. The students involved were all a part of that group.
2. Several of these students got together and created their own, private Facebook group for circulating offensive jokes and memes.
3. In order to be invited into the private, student-run group, you had to "prove you were worthy" by posting something offensive into the official, public, Harvard-run group.
At no time did Harvard demand or induce anyone to post anything offensive.
Some airlines have moved to iPad-based electronic checklists, navigation charts, logbooks, and crew timekeeping (I don't know if Egypt Air is among them). This saves hundreds of pounds worth of physical paper books from being hauled around on every flight, which adds up to millions of dollars per year in fuel. As well, there are some very widely-used aviation apps like ForeFlight that are only available on iOS.
For better or for worse, iPhones and iPads have taken over the cockpit. It doesn't mean the pilot was fucking off.
The Comcastroturfers.
The question is. If surveillance sells who's buying?
Your insurance company, who'll discover that your wife searched for "breast lump" and then jack up your monthly premiums accordingly, even though it turned out to be nothing.
Your employer, who wants to clean house of any employees who practice a certain religion, but can't exactly go around asking everyone about it.
Your employer, who might be interested to know that you subscribe to both Netflix and Hulu; you obviously have too much disposable income, and can be passed over for a raise.
Your father-in-law, who's never liked you and can't wait to use your porn surfing habits to embarrass you at Thanksgiving dinner this year.
Your company's competition, who would love to brag about how you visit their website dozens of times a day.
We haven't even started with the government yet. Get creative. Your enemies are.
It's the explicit profanity, and Colbert knows better.
It was bleeped, and it was within the Safe Harbor period (10 PM to 6 AM). The FCC knows better.
Well, tough it out, snowflake. Just because you've been triggered is no reason to squelch free speech.
I presume you're addressing Donald Trump here, considering he's again been pushing the idea of suing the press.