A good lesson. If you as an employer look at this history, and handle it in the interview appropriately (what did you learn / do better now for example) you can figure out if they did.
I'm sure lots won't, but if that is you as an employer you're worth nothing.
Curious what kind of deployments you are running with them? I only have personal stuff with Hetzner; but never had issues so far (bare metal in my case coz cheap for what I get and need).
Lets host it all with 2 companies instead and see how it goes.
Anyway random things you will encounter:
Azure doesn't work because frontdoor has issues (again, and again)
A webapp in Azure just randomly stops working, its not live migrated by any means, restarts don't work. Okay lets change SKU, change it back, oop its on a different baremetal cluster and now it works again. Sure there'll be some setup (read, upsell) that'll prevent such failures from reaching customers, but there is just simply no magic to any of this.
Really wish people would stop dreaming up reasons that hyperscalars are somehow magical places where issues don't happen and everything is perfect if you justtt increase the complexity a little bit more the next time around.
AMD GPU here, but I had issues connecting my Xbox controller to it and using it with Steam. On Bazzite this all works out of the box. Would love to know what the issue was but could've been my bluetooth chipset or something of the sort -- Don't know what Bazzite does differently from Linux Mint sadly.
Overall barely ever in Windows anymore and a happy Linux gamer.
Here's a significantly more credible (stacksmashing) video that demonstrates how ineffective some TPM implementations are. If the TPM was integrated into the CPU die, this attack would likely not be possible. https://www.youtube.com/watch?v=wTl4vEednkQ
Despite the TPM being a pretty good and useful idea as a secure enclave for storing secrets, I'm concerned that giving companies the ability to perform attestation of your system's "integrity" will make the PC platform less open. We may be headed towards the same hellscape that we are currently experiencing with mobile devices.
Average folks aren't typically trying to run Linux or anything, so most people wouldn't even notice if secure boot became mandatory over night and you could only run Microsoft-signed kernels w/ remote attestation. Nobody noticed/intervened when the same thing happened to Android, and now you can't root your device or run custom firmware without crippling it and preventing the use of software that people expect to be able to use (i.e. banking apps, streaming services, gov apps, etc.).
Regardless, this is more of a social issue than a technical issue. Regulatory changes (lol) or mass revolt (also somewhat lol) would be effective in putting an end to this. The most realistic way would be average people boycotting companies that do this, but I highly doubt anyone normal will do that, so this may just be the hell we are doomed for unless smaller manufacturers step up to the plate to continue making open devices.
Sure let’s just centralize hardware attestation to Microsoft’s cloud tied to a Microsoft account with keys you can’t change what could possibly go wrong?
This is all publicly documented by Microsoft you just need to translate their doublespeak.
Google is doing does the exact same thing and people were sounding the alarms when they did it but Microsoft gets a pass?
Use ChaGPT to outsource your critical thinking for you because I’m not gonna do it.
Yeah for me it has been degrading ever since the Settings app became an upsell app. I'm sorry I came here to change a setting not dismiss a notification on your latest failed service thing that requires 20,- a month.
> It’s the product ladder with artificial limitations like low fps screens
This one really pisses me off as someone who just had to upgrade their 2018 iPad Pro. The air would've been great, if it had a 120hz screen. I really don't need any other "pro" feature but I refused to tolerate 60hz in 2025 when every other device I own including my big desktop monitor is 120hz or more. But no, I have to spend an extra $500 for a higher refresh rate. I didn't even want the pro, I want a 120hz air so I can get the colors I want.
Nonetheless, because my screen was broken and I needed a new iPad, I forked over the money for the pro. Conveniently, they use two different magic keyboards so now that I'm "locked in" to the pro ecosystem, I'm forever stuck buying iPad pros unless I also want to have to buy a new magic keyboard that works with the Air line if they ever release a 120hz air.
Apple can easily differentiate the air from the pro in numerous other ways besides refresh rate, and yet they still continue to ship 60hz screens.
Yep. I have two un-dismissable notifications in the Settings app for two different AppleCare products. Can't dismiss them - you just have to have a red notification icon until they expire. Just turn off badges for the Settings app right? Sorry, the Settings app is mysteriously missing from the Notifications options.
>> Yeah for me it has been degrading ever since the Settings app became an upsell app.
I didn't really notice this until I setup an iPhone from scratch for someone. I normally just move from one to the other. The nagging from Settings is outrageous. It will never stop telling you to setup Apple Pay and Siri and offering Apple Care. It was like the experience of buying a PC in the 2000's.
Don’t have links, but it’s true. iTunes for Windows also includes chunks of AppKit.
The Windows ports of AppKit in both likely trace their lineages back to Yellow Box, which was the Windows port of AppKit that Apple briefly made available prior to the release of OS X 10.0.
Despite the cool shit the guy has done, keep in mind that "venerate" is not the word to use here. djb is very much not a shorthand used in any positive messaging pretty much ever by any cryptographer. He did it to himself, sadly.
... if he thinks some WG is making a mistake and he's not welcome there (everyone else seems to be okay with what's happening based on the quoted email on the first link), then - CoC or not - he should then leave, and publicly post distance himself from the outcome.
(Obviously he was never the one to back down from a just fight, but it's important to find the right hill to die on. And allies! And him not following RFC 2026 [from 1996, hardly the peak of Internet bureaucracy] is not a CoC thing anyway.)
The IETF is a global standards-setting organization, intentionally created without a membership structure so that anyone with the technical competency can participate in an individual capacity. This lack of membership ensures its position as the primary neutral standards body because participants cannot exert influence as they could in a pay-to-play organization where members, companies, or governments pay fees to set the direction. IETF standards are reached by rough consensus, allowing the ideas with the strongest technical merit to rise to the surface.
Further, these standards that advance technology, increase security, and further connect individuals on a global scale are freely available, ensuring small-to-midsize companies and entrepreneurs anywhere in the world are on equal footing with the large technology companies.
With a community from around the world, and an increased focus on diversity in all its forms, IETF seeks to ensure that the global Internet has input from the global community, and represents the realities of all who use it.
There is only one IETF, and telling dissenters to leave is like telling a dissenting citizen to go to another country. I don't think that people (apart from real spammers) were banned in 1996. The CoC discussion and power grab has reached the IETF around 2020 and it continues.
"Posting too many messages" has been deemed a CoC violation by for example the PSF and its henchmen, and functionally the IETF is using the same selective enforcement no matter what the official rationale is. They won't go after the "director" Wouters, even though his message was threatening and rude.
If not then let the WG work. If no one except djb feels this strongly about hybrid vs. pure post-quantum stuff then it's okay.
(And I haven't read the threads but this is a clear security trade-off. Involving complexity, processing power and bandwidth and RAM and so on, right? And the best and brightest cryptographers checked the PQ algorithms, and the closer we get to them getting anywhere near standardized in a pure form the more scrutiny they'll receive.
And someone being an NSA lackey is not a technical merit argument. Especially if it's true, because in this case the obvious thing is to start coalition building to have some more independent org up and running, because arguing with a bad faith actor is not going to end well.)
If this existed in my childhood I would've been a very happy child. The big problem I always had was being interested in computers but not being able to access one easily.
