> Disabling the 'backdoor' seems to just involve disabling SSH.
Maybe. My guess these are essentially Linux systems, so if attackers know that their exploits are widely known then they will likely try to figure out ways to install kernel mod rootkits.
It'll then end up in a situation with Windows XP/Vista days were IT desktop support staff would run malware removal tools to get rid of porn pop-ups on desktops only to have "reinfections" pop up a day or week or two later.
They'd blame users for this, but really they just never actually removed the command and control botnet features. They just addressed their payloads. The machines were never actually fixed in the first place.
My point was that if the attackers cared enough to put (not much) effort into keeping control of these routers then neither of those approaches is likely to be sufficient.
This sort of thing is why there is such a emphasis on TPM and trusted boot on modern PCs.
Yeah I feel the same, even if you want to use Bitcoin as a currency it's prohibitive as the fees are worse than most fiat services. I think it was something like $0.70 in fees to transfer $3 a few days ago, and it took a full 30 minutes to confirm which is insane.
In the communities that use bitcoin for day-to-day transactions they send bitcoin over lightning network and so the fees are much smaller and transactions happen in seconds.
The issue is that not many people know about it and also not many people want to spend.
And when there is some info, it's often trying to trick you into buying some "get rich quick altcoins" that fizzle out and go to 0 in 2-3 years. It's annoying that that's the case.
Because by spending bitcoin you are actually fueling the bitcoin economy, you are showing interest to the sellers and so the price of bitcoin will go even higher (companies see the interest -> start supporting it -> start buying it -> start marketing it -> more people using it -> price goes up).
Further, if you believe that bitcoin is going to be used as a currency at some point, you may as well start using it already.
And finally, since bitcoin is so liquid (you can literally buy or sell in seconds with custodial wallets/accounts like Strike, or in minutes with self-custodial/private solutions), it doesn't really make sense to "sell the worse currencty (fiat) first" you can just buy whatever is your target amount of bitcoin today. You don't need to wait. This is not physical gold that takes hours up to days to buy or sell (you have to go to a special place, etc...).
Some people do "spend-and-replace", where they spend bitcoin for products/services and immediately buy the same amount of bitcoin for fiat. That's a nice way to start, but it's sort of unnecessary.
Ahh I see it on the footer of the website, a bit hidden!
I'm not sure I really need it for personal use, more just a cool thing to see, so I'm a bit undecided on paying for the domain feature. I can see it being useful for a business though where each email is a different employee dealing with accounts everywhere.
You can pay for just one month at a time. I pay now and then and check in on my personal domain – like you, I use dozens of email addresses with a catchall.
The first tier ($4/month) only works for up to 25 aliases. Depending on how many of your aliases have leaked, you may have to pay a lot to perform that check.
I wish HIBP had a solution for those of us who are individuals but use domain catchall forwarding as our method for separating accounts.
Agree completely. I got ownership of my domain before he started charging, but looking now there's only a summary and it lists 45 email addresses in breaches, which means I need to pay a substantial amount to get a report, and I'm the only user of the domain for email.
I wish there was a "I'm just one person, or a small family" tier for this.
TBH that sounds like a better reason to get something other than Apple systems instead of changing all your apps to work around Apples bizarre limitations.
To clarify, by “on iOS your only non-paid choice is iCloud” I meant for the Obsidian app specifically. Other apps do provide the option to sync with non-Apple cloud storage, without payment.
There are multitudes of pros and cons regarding choosing an iPhone. The restrictions of the Obsidian app is only a single one of those. Choosing an Android phone has drawbacks of its own.
The iOS version asks you whether you want to store your vault in iCloud or not only.
However, if you don't store your vault in iCloud, it creates an Obsidian folder inside the area which can be accessed by Files app (as I just checked), which means, any application having files integration can access and sync that folder.
Even if you store your vault in iCloud, it's still accessible by any app which offer files integration [0].
reply