IphtashuFitz

@IphtashuFitz@lemmy.world

This is a remote user, information on this page may be incomplete. View at Source ↗

⁨Comment⁩ on ⁨Elon's Death Machine (aka Tesla) Mows Down Deer at Full Speed , Keeps Going on "Autopilot"⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
Exactly. I know somebody who died when a deer came through the windshield…
⁨Comment⁩ on ⁨The Death of the Junior Developer⁩ ⁨⁨4⁩ ⁨weeks⁩ ago⁩:
When I was a junior dev back in the 90’s one of my primary tasks was to tackle customer bug reports. Basically grunt work. I doubt AI tools could do that kind of task very well, unless the bug was something like a buffer overflow. I would think it would be terrible when it involves business logic flow.
⁨Comment⁩ on ⁨Tesla issues 5th recall for the new Cybertruck within a year, the latest due to rearview camera⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
I recall when I bought my first hybrid that the dealer said there were something like 15 different computers controlling things, from the ICE engine to the transmission to the charging of the battery, etc. They weren’t networked together.

I also once ran afoul of a software bug in the ECU of a Honda CR/V. That’s the embedded system that manages the whole operation of the engine - from fuel injection to timing to emissions etc. As they progress through model years they use different ECUs that require different software. Even though I work in IT, I wouldn’t feel comfortable trying to update it myself, given the different models, firmware revisions, etc. I was more than happy to take that car to a dealer to have them confirm my car had buggy software and to upgrade it to the right new version.
⁨Comment⁩ on ⁨Tesla issues 5th recall for the new Cybertruck within a year, the latest due to rearview camera⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
NHTSA are the ones who investigate safety issues and issue recall notices. Once they have done that then the manufacturer has very specific legal requirements to follow. Hiding data from them would eventually come to light, and that would be very bad. Look at the diesel emissions scandal for one example. Volkswagen payed billions in fines for that, and a dozen or so employees including the CEO have been indicted. A few have pled guilty and been sentenced to jail.
⁨Comment⁩ on ⁨Tesla issues 5th recall for the new Cybertruck within a year, the latest due to rearview camera⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
I’ve had software recalls for Toyotas and Hondas, both of which involved physical recall paperwork and required me to visit a dealer to install the new software.

Just because a software recall can be remedied over the air it doesn’t make it any less of a recall. As others have said, there’s a legal definition to a recall. They are issued by the NHTSA and require specific legal responses from the manufacturer.
⁨Comment⁩ on ⁨Men Harassed A Woman In A Driverless Waymo, Trapping Her In Traffic⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
And then when you have an emergency the response is along the lines of:

“Thank you for requesting to speak with a rider support agent. All agents are currently busy assisting other Waymo customers, but the next available agent will assist you as soon as possible. There are currently 32 other customers in front of you. Thank you for your patience.”
⁨Comment⁩ on ⁨YSK: You don't own your Kindle e-books.⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
I use Calibre to remove the DRM from all ebooks I buy. Not that I buy a lot of them, but hell if I’ll let Amazon be the keeper of the keys.
⁨Comment⁩ on ⁨How can I keep my forwarded port secure?⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
If you have ssh open to the world then it’s better to disable root logins entirely and also disable passwords, relying on ssh keys instead.
⁨Comment⁩ on ⁨How can I keep my forwarded port secure?⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
Port 22 is the default SSH port and it receives a TON of malicious traffic any time it’s open to the whole internet. 20 years ago I saw a newly installed server with a weak root password get infected by an IP address in China less than an hour after being connected to the open internet.

With all the bots out there these days it would probably take a lot less time if we ran the same experiment again.
⁨Comment⁩ on ⁨[deleted]⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
My employer goes so far as to lock down what devices can connect to our network & VPN, and also locks down laptops so that removable media like USB thumb drives won’t work.

No way in hell I’d let them do things like that to my personal laptop.
⁨Comment⁩ on ⁨Research shows more than 80% of AI projects fail, wasting billions of dollars in capital and resources: Report⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
I’m willing to bet the vast majority of that money is changing hands among tech companies like Intel, AMD, nVidia, AWS, etc. Only a small percentage would go to salaries, etc. and I doubt those rates have changed much…
⁨Comment⁩ on ⁨In Leaked Audio, Amazon Cloud CEO Says AI Will Soon Make Human Programmers a Thing of the Past⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
Not until a self driving car can safely handle all manner of edge cases thrown at it, and I don’t see that happening any time soon. The cars would need to be able to recognize situations that may not be explicitly programmed into it, and figure out a safe way to deal with it.
⁨Comment⁩ on ⁨Commentary, behind-the-scenes features, bloopers: What did we lose when we said goodbye to DVDs?⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
My wife and I just streamed a movie a few days ago. It had a ton of bloopers intermixed with the end credits.
⁨Comment⁩ on ⁨Elon Musk's Twitter takeover has ended up as the worst buyout deal for banks since the financial crisis⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
How could you forget publicly telling advertisers to “go fuck yourself”?
⁨Comment⁩ on ⁨Why is DNS often joked about in the I.T. Industry?⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
Our web servers are locked down in such a way that you can’t copy data off of them using standard protocols like scp, ftp, and even http, etc. Our firewall blocks all such outbound traffic.

This hacker found a bug in a framework used on our web servers that let him execute commands remotely. When commands to copy data off the server failed using those more typical methods he switched to a more novel (and difficult) method of leveraging DNS instead. He discovered we weren’t locking DNS down the same way we were locking other protocols down and used that as a way to extract data from our server.
⁨Comment⁩ on ⁨Why is DNS often joked about in the I.T. Industry?⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
I never would have thought of it but I recently saw a novel use of DNS to exfiltrate data from a compromised server.

My employer takes security very seriously. Our public facing web servers are very thoroughly locked down, or so we thought. We contract with companies like HackerOne to perform penetration testing etc. One of their white hat hackers managed a remote command attack, and copied data off of the server via a string of DNS queries.

Suppose the hacker owned the domain example.com, and he had his own authoritative nameserver for it. He just ran a series of commands that took, for example, a password file, and ran DNS queries for line1.example.com, line2.example.com, line3.example.com and so on for each line in the file. As a result the log file on his DNS server collected each line of the password file as it responded to each query.
⁨Comment⁩ on ⁨am i an idiot: selfhosting a Signal Proxy and/or a Tor Relay⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
100x this. 10+ years ago while working in IT at a university I experimented with running a Tor exit node briefly. It only took about a day for the IT security team to ask me about it and requested it be shut down due to all the malicious traffic.
⁨Comment⁩ on ⁨[deleted]⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
It’s ~~126 miles to Chicago~~ 13.6 kilometers to Alpha Centauri, we’ve got a full tank of gas, half a pack off cigarettes, it’s dark, and we’re wearing sunglasses.
⁨Comment⁩ on ⁨Sharks⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
What’s that shark got against New England?
⁨Comment⁩ on ⁨USA | Police Are Increasingly Encrypting Their Radios to Block Scrutiny by Journalists⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
Back in the 90’s when I was involved with the USCG in the Boston area they had an encrypted radio system that could be used when talking about sensitive subjects that you didn’t want every boat in a 10 mile radius to listen in on. The problem with that system was the range was very limited & the audio quality wasn’t the greatest.

Over time as cellphone coverage along the coast improved we switched to just using them to call into the comm center at the station when we wanted privacy. I’m a bit surprised the cops don’t just do that as well, although I guess if they need to communicate with a bunch of cops all at once then phones wouldn’t work very well.
⁨Comment⁩ on ⁨PSA: Libraries⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
Libraries around here also have free passes to museums among other things.
⁨Comment⁩ on ⁨How does a car cigarette lighter work?⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
Bought my first one probably 20 years ago at this point.

Bought my second one probably 10 years ago when traveling abroad and it was more reliable and cheaper to have offline maps of the countries I was going to.

We like to travel to places that often have spotty cellular coverage, if at all.
⁨Comment⁩ on ⁨How does a car cigarette lighter work?⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
My first GPS came with a cigarette lighter plug.

My next one came with a USB cable along with a cigarette lighter to USB adapter.

I think most these days now come with a USB cable but no adapter.

I’m now starting to see some devices come with USB-C cables.
⁨Comment⁩ on ⁨Reddit changes have blocked all search engines except Google amid AI 'misuse' [U]⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
Asking for a friend…

What would it take to create a domain that just acts as a proxy to Reddit but serves up its own robots.txt that allows all bots?
⁨Comment⁩ on ⁨Alexa Is in Millions of Households—and Amazon Is Losing Billions⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
I got a free Echo Dot a number of years ago when I attended an AWS conference. I played briefly with it but never found it all that useful. I certainly never would have trusted using it to order things from Amazon, which is one of the things they hoped people would do. It sat in a pile of junk for a year or so before I finally got rid of it.
⁨Comment⁩ on ⁨Could President Biden fully legalize cannabis before he leaves office?⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
Just as long as he declares it “an official act”. I think he just has to say that. It doesn’t have to be written down or anything. And it doesn’t matter if anybody actually hears him say it, as long as he does.
⁨Comment⁩ on ⁨The great it outage of 2024⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
Do you not recall when Amazon lost their S3 service in us-east1-1 region back in 2017? That caused cascading failure across the Internet for a good part of the day…
⁨Comment⁩ on ⁨An angry admin shares the CrowdStrike outage experience⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
We have a cron job that once a quarter files a ticket with whoever is on-call that week to test all our documented emergency access procedures to ensure they’re all working, accessible, up-to-date etc.
⁨Comment⁩ on ⁨⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
I know some sites have experimented with feeding bots bogus data rather than blocking them outright.

My employer spotted a bot a year or so ago that was performing a slow speed credential stuffing attack to try to avoid detection. We set up our systems to always return a login failure no matter what credentials it supplied. The only trick was to make sure the canned failure response was 100% identical to the real one so that they wouldn’t spot any change. Something as small as an extra space could have given it away.
⁨Comment⁩ on ⁨The NSA Has a Long-Lost Lecture by Adm. Grace Hopper⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:
Redaction means it’s still classified for some reason. Makes me wonder what they think might still be sensitive on a 40+ year old lecture like this, when DOJ guidelines call for automatic declassification of “records having permanent historical value” after only 25 years unless they fall into a handful of very specific categories, like divulging the identity of an active agent.