Executives have compensation tied to stock price. If the stock price goes down because nobody wants to invest in a bad company, those executives have incentive to become change their ways.
That compensation incentive is also why executives are so short term thinking nowadays.
The stock market is part popularity contest but it’s a lot more complicated than simple statements.
There’s different ways to be ethical in finances.
One option is to just not be anxious about investing in “bad” companies and make money, but then turn around and donate to charities, vote for aligned politicians, and vote in shareholder elections.
Or you could try to invest in “better” companies. ESG (Environmental, Social, Governance) based investing has been politicized and isn’t perfect because the scoring can be and is manipulated. But at least it’s trying. For example, normally ETFs management companies take the shares that you effectively own and vote along with the board recommendations which often aligns with making the most money over environmental and social concerns, but funds like $VOTE so those voting rights to vote in ways they think are more ethical. Vanguard has $ESGV. Black Rock, a huge investing company, offers voting choice which allows you to pick alignment strategy. For example, you could pick to vote for environmental reasons and they’ll influence the company that way. Support for that depends on your brokerage and the fund you own.
You could also pick individual stocks and never buy companies that don’t align with your ethics, but that has its own complexities because now you’re actively investing and probably not matching market returns.
Ultimately, ethics aren’t black and white. I don’t try to be perfectly ethical in my investing because it just causes too much anxiety asking is this company bad or good? I invest in broad market funds, I vote in all elections (both shareholder and government elections), I don’t invest in individual companies I don’t agree with, I invest in some climate friendly ETFs, and I donate to charities that I like.
This situation reminds me of a plot in The Good Place, a TV show, about how >!everybody went to the “bad place” because modern society had so many decisions that had small negative consequences.!<
Encryption at rest just means the data itself is encrypted when stored on disk and the key is somewhere. It doesn’t dictate that the key is not visible to the server.
Encryption in transit refers to an encrypted channel from client to server.
E2E encryption usually refers to encryption from one entity to another where any intermediary servers do not have the ability to decrypt
Source: too many years doing application security at my job
I switched to an Intel card and solved so many issues where coming out of standby would break my WiFi.
After I read this, I thought it would be really cool to try to make this myself. But then I realized I’m barely able to get a simple circuit working much less one that involves complex RF signalling.
I really want to like Nix. The idea of declaratively defining my entire system sounds great. I can manage it with Git and even have multiple machines all look the same. I can define my partititioning once and magically get a btrfs disk working. Wow!
But I find the language confusing no matter how many times people say it’s easy. I have a lot of experience with other programming languages so maybe it just doesn’t mesh. It also gives terrible error messages that are hard for me to understand. And Nixpkgs is unpredictable for what version I’m going to get. One of the services I installed ended up being a release candidate version which was a surprise. What if I don’t want the latest version of Docker? How do I pin it? Do I have to duplicate part of Nixpkgs? It just feels like a monorepo where everybody has to be on the same versions. Why on earth do the Nix language docs start by introducing math expressions instead of here is a simple self contained thing that installs one program. Here’s how you configure it. Here’s how you expand. Why does the dependency graph seem to pull in so many unnecessary dependencies? For example, I tried to build a minimal Docker image (which Nix looks to be a very good fit for), but I couldn’t figure out how to strip out dependencies that likely were only used during build for a dependency.
I still like the idea and have managed to get my server defined entirely with NixOS which is very cool, but I can’t recommend this to my tech friends because if I’m confused they will be more so.
Yeah this isn’t even human readable even when it’s in YAML. What am I going to do? Read the floats and understand that the person looked left?
The point seems to be able to handle a UPS failure
WiFi is on all three bands. It’s not so much what’s newer vs older. Newer devices tend to support 2.4, 5, and 6 and switch between them based on quality of signal and support by the WiFi network. Higher frequencies like 5 and 6GHz are generally better because there’s less interference.
Cheaper devices tend to only support 2.4GHz
Fascinating. Just based on your comment and nothing else, sounds like it could be something like a CPU Enclave like Intel SGX. Basically a remote client can validate that an application runs in a secure part of a remote cloud computer. The stated goal of SGX is that you only have to trust Intel and if you trust Intel and say run program X in the enclave, then only that part of the CPU can access the data, not the applications running in the non-secure enclave.
Now that brushes over some things like you still need to trust the client and IIRC in a WhatsApp situation, you don’t really know what enclave does, but the communications between the enclave and the host OS are heavily restricted. LLMs also require lots of CPU and are usually run on GPUs, so not sure how that works yet.
I think #1 is suggesting to move the neutral over to another hot phase and change the outlet to a 240v nema 6/three prong (I think) with two hots and a ground instead of the 4 prong.
The 240v at the same amps gives you higher watts so faster charging without an expensive new conductor. I’m
Most users don’t care, as long as they’re getting free stuff
Sad, but very true in my experience. I find even my friends who work in software engineering and have exposure to the bad sides of what technology can do, just don’t take any efforts to change. They addicted to Instagram, to Amazon, and everything else.
YT ads can be relevant to you based on data collected about you
They certainly can be but if there are 2 advertisers and one is the most relevant and the other pays them more money, which one do you think Google is going to show you?
The one that pays more because it’s an auction, but an advertiser that pays more for a less relevant ad to a user won’t be making as much money so there is an incentive to be more relevant.
Google is doing this because they have incentives to do so. They want to block malicious actors like attack their platforms.
Other companies want to lock down their own apps because they don’t think users should be permitted to do anything other than use their apps exactly as they want.
I don’t like it as a user, but I also see the reason why companies want this by being on the security side of software.
This is the future of the Big Tech Internet if we’re not careful. Attestation to be able to use communications and other websites.
I used to work in Amazon (left after 10 years because it wore me down), but it wasn’t that compartmentalized.
I’m sure there were some teams that were like that but I could easily find another team, open a ticket, get a response and see their on calls investigate the issue. It was often times possible to look at their service metrics and source code to see if I could find the problem myself.
Support just can’t share that info because they don’t know what is considered a trade secret or internal detail vs what is public.
I’ve used Brultech in a house before. It’s not very user friendly to setup having to download some different firmware flashing tools and configure everything in a brittle web UI that only allows one browser tab at once. But it does have Ethernet, comes with a variety of different CT clamps. The donut style CT clamps are very compact making it easy to fit them into a electrical box. Don’t use the built-in one, use the HACS integration. The different sizes make me think that the Brultech is probably more accurate than the Emporia with only a single size.
I ended up going with Emporia Vue2 for my own house given the complexity and my house layout not really permitting the Brultech’s install.
Containers can provide SBoMs too and in comparison to HA OS, which is what the comment was referring to, container and core give you better control over the application allowing for more security mechanisms. Comparing container vs core for security is interesting cause container gives you some security features for free like seccomp, cap drops, namespacing, etc. which you don’t get for free with core.
I find the claim that core is more secure than a container because it has an SBoM as dubious, but maybe you’re talking generally about containers vs distro package managers, which is a different point, but SBoM isn’t the only thing that makes some secure/stable.
Nope. Docker and Home Assistant OS will be the only supported installation strategies
Right. Zero trust means at the very least you need to add AuthN and AuthZ to every endpoint with no exceptions for internal IP addresses.