I've submitted this for discussion and asked the mods to give you the credit you deserve for putting in so much effort!

https://news.ycombinator.com/item?id=16238937

This PDF might be news to many; click 'past' to see previous submissions -- last month's got traction:

[dupe] https://news.ycombinator.com/item?id=16015539 (543 points, 107 comments)

HN user saulrh mentioned that the list of requirements "does not seem incredibly unusual" for enterprise setups with AMT on.

Pre-Meltdown/Spectre this was 2017's "big deal" re:Intel; nearly all of the varying degrees of paranoia in the previous discusson seem a lot more reasonable with the benefit of hindsight. (If any more AMT info has become available thanks to Meltdown/Spectre-enhanced reverse engineering I would appreciate a heads-up; example vs SGX: https://github.com/lsds/spectre-attack-sgx)

I thought it's not possible to paste the same link twice in HN, yet this appears for the 3rd time, as far as my memory permits.

Of all the previous tmux discussions, the most practical help was given when this article was discussed 2 months ago:

[dupe] https://news.ycombinator.com/item?id=15776995 (267 points, 96 comments)

Surprised to see it again so soon -- darn you Medium flexible URLs!

PS. Anyone willing to earn $400 implementing mosh ssh port forwarding https://www.bountysource.com/issues/4471419-ssh-port-forward..., or should I move on to the mentioned alternative https://mistertea.github.io/EternalTCP?

PPS. Bountysource feels sketch: https://hn.algolia.com/?query=bountysource

ET might be insecure. It has recently been easy to segfault with network traffic.

https://github.com/MisterTea/EternalTCP/issues/79

s/Postgres/Postfix/ ??

In any case you should ask the author, as they are currently active on another discussion where they linked their article in a comment: https://news.ycombinator.com/item?id=16238501#16238845

>perlgod: I've spent years tweaking my mail server setup (Postfix, Dovecot, RSPAMD, LDAP...) and did a full writeup a few months ago. I've used other guides online but found most of the rest lacking on details

Oh ha, i figured it must be you i just saw the comment before.

And yes, damn it. Fixed

For anyone willing to take the risk, another 3rd party service currently free was promoted on HN 6 months ago:

https://news.ycombinator.com/item?id=14856277#14858784

>opie34: A friend and I put together a free dynamic DNS service [1] offering cool custom domains aimed at the Raspberry Pi community (and similar hardware hackers.) It's not strictly a hardware project, but it's a crucial building block for any network-enabled Raspberry Pi project, and we'd love your feedback.

[1]: https://www.legitdns.com

https://amzn.com/B011HVUEME $26.95

http://www.pe0sat.vgnet.nl/decoding/unix-tlm-decoding (2015)

Yikes https://www.xkcd.com/1053

Unfortunately downvote to disagree has been officially endorsed as inevitable. https://news.ycombinator.com/item?id=12330029#12330373

I wish there was even the tiniest bit of public accountability! Even user profile totals of upvotes, downvotes, comments, and flags would be a usable signal. Maybe one of the perks of being a YC company is seeing which accounts downvoted yours... ;)

My perspective grows stronger every time someone close to me dies: the true value in photos is the faces. As a tech person, that is where I try to maximize my pixel budget.

I actually prefer candid home video infinitely more -- most pictures on social networks are as authentic as pornography stills.

Is there any phone app that purposely records video in the background without turning on the screen? I wouldn't care as much if people holding up their phones weren't shining back at me. I assume this is possible with audio, though concert audio is usually way too loud to record on a phone without additional equipment.

I believe this may not even be possible due to privacy issues, hidden cameras / recording without consent is enough of a problem already!