Links für 2024 KW 5
Zusammengefasst von LlongOrca.
Leaky Vessels flaws allow hackers to escape Docker, runc containers:
The article discusses four vulnerabilities named „Leaky Vessels,“ discovered by Snyk security researcher Rory McNamara in November 2023, which allow hackers to escape containers and access data on the underlying host operating system. While no signs of active exploitation have been found, Snyk recommends administrators to apply available security updates as soon as possible. These vulnerabilities impact runc and Buildkit container infrastructure and build tools used by popular platforms such as Docker and Kubernetes. The flaws were addressed through coordinated efforts among the affected parties, resulting in updated versions for BuildKit (0.12.5), runc (1.1.12), Docker (4.27.0), Amazon Web Services, Google Cloud, Ubuntu, and CISA security bulletins urging users to take necessary action.
Why buying tickets to a game has become so unaffordable:
Ticket prices for sporting events have surged across the country, making it difficult for many fans to afford attending games without spending significant amounts of money. The increase in ticket costs has been driven by factors such as limited seating supply, increased competition among those with disposable income, dynamic pricing on ticket resale platforms, and overbuilt new stadiums with more luxury suites and premium seats. Major sports leagues make around two-thirds of their revenue from television deals, and teams do not prioritize affordability as long as they can capture viewers' attention. The trend of higher demand pushing up prices has been dubbed „funflation.“
Cloudflare Hacked by Suspected State-Sponsored Threat Actor :
Web security company Cloudflare experienced a threat actor attack, gaining access to its internal systems via stolen credentials from the Okta hack in October 2023. The attackers were able to access an AWS environment, Atlassian Jira and Confluence but not the Okta instance or Cloudflare dashboard due to network segmentation. No customer data was accessed, and Cloudflare has since rotated over 5,000 individual production credentials and reimaged every machine in its global network. The attacker's goal was likely to obtain information on the company's infrastructure for a deeper foothold.
The article discusses the challenges and best practices for using header files in C++ programming, highlighting two important rules: each file should include the minimum amount of files needed, and each file should include all dependent headers. The author also recommends using #pragma once as a non-standard technique or header guards if necessary to prevent multiple inclusions, while emphasizing that #pragma once is superior due to its speed and foolproof nature. Additionally, the article touches upon include paths, suggesting consistency between different projects for easier maintenance and optimization of codebases.
How Inuit Parents Teach Kids To Control Their Anger:
This article tells the story of anthropologist Jean Briggs who spent 17 months living with Inuit families above the Arctic Circle in order to study their parenting techniques and child-rearing practices. She observed that Inuit adults had an extraordinary ability to control their anger, which was considered a weak emotion among them. Briggs documented her findings in her book Never in Anger, but continued to seek answers on how Inuit parents instilled this ability in their children.
This article discusses the author's relationship with Apple as a developer and their realization that the company doesn't care about individual developers. The author recommends writing code for the web to avoid such issues and emphasizes that companies are like people, with good and bad aspects. They also mention the importance of not permanently labeling companies as good or bad.
Plastic bans work. Billions of plastic bags were avoided in the US alone:
The article highlights that plastic bag bans, such as those implemented by San Francisco and other US cities and states, have successfully reduced single-use plastic bag consumption and litter. These bans led to the elimination of almost 300 plastic bags per person per year in the US alone, averting billions of plastic bags. The report recommends that local and state governments should enforce well-designed single-use plastic bag bans to encourage more sustainable bag choices, while also discouraging the use of other single-use bags like paper bags, which generate more solid waste and take more energy to produce.
Air pollution is a major environmental exposure that threatens human health, contributing to seven million annual deaths according to the World Health Organization (WHO) in 2021. The WHO lowered its air quality guideline levels for fine particulate matter and nitrogen dioxide in response. Air pollution has been linked to adverse effects on the central nervous system, including an increased risk of neurodevelopmental disorders, dementia, and Alzheimer's disease. A recent study found that exposure to air pollutants is significantly associated with faster retinal nerve fiber layer (RNFL) thinning over 11 years in a French cohort of elderly individuals. This finding suggests that air pollution may play a role in ocular neurodegenerative processes.
Facts 1 - You are what you love:
This article discusses the importance of emotions in the workplace and how they cannot be separated from our professional lives. The author argues that working with emotion is crucial for fulfillment, success, and providing meaningful outcomes. Emotional connections should be part of the work environment, and people who are genuinely passionate about what they do will often excel in their field.
Is the $139 Amazon Prime Subscription Still Worth It?:
In this article, the author discusses their experience with Amazon Prime and how they canceled it two years ago. They mention that their family barely noticed the absence of Prime and have spent less time idly browsing for purchases they don't need. The author encourages more people to try canceling their Amazon Prime subscription, as it might be beneficial in reducing unnecessary spending.
The article discusses an incident where climate change denier and anti-vaxxer Piers Corbyn refused to pay for strawberries at a cashless Aldi supermarket, which led him outside the store. The controversy sparked debates about the decline of physical cash usage in society and concerns over the rise of cashless transactions. The article also explores the potential risks associated with digital payment systems and the role of tokens in shaping future monetary regimes.
This article discusses the negative effects of incentive programs, such as referral programs, free trials, coupons, and gamification, on small businesses and startups. It explains that these programs often attract users who are less qualified and engaged than organic ones, leading to worse user lifecycle value (LTV), conversion rates, and engagement levels. The article also highlights the importance of understanding what type of users are being selected through incentive programs and the potential risks associated with cannibalization and negative selection.
Handbook of the Economics of the Family, Volume 1:
This article discusses how the traditional relationship between income, labor force participation, education and fertility has weakened or disappeared in recent years. It presents various factors contributing to these changes, such as public schooling, career opportunities for women, social norms, labor market frictions and parental time use. The authors argue that a new big idea is needed to explain the changing patterns of fertility: ease of combining career and family life. The article also points out that there are more recent developments in the normative analysis of fertility, such as efciency criteria for population economics, socially optimal level of population and quantitative research on population policies. Finally, it suggests potential directions for future research, including the extended family and heterogeneity in family types, macroeconomic consequences of ultra-low fertility, cross-country correlations between total fertility rate and income per capita, female labor force participation rate, and children ever born by women's education.
How to link agriculture, nutrition and public health:
Ollin Farms in Colorado is showcasing its produce at a meeting with state lawmakers to make a case for farmers' role in public health nutrition programs. The farm has received grants to invest in creative approaches, such as using sheep to fertilize fields and creating compost systems, which contribute to the farm's soil health and nutrient-dense produce. Boulder County Public Health Department also supports local farmers by offering coupons for low-income families to buy fruits and vegetables from Ollin Farms' stand. These initiatives aim to make locally grown food more accessible, affordable, and sustainable.
A Brief History of the U.S. Trying to Add Backdoors Into Encrypted Data:
The article discusses the ongoing battle between governments, cybersecurity experts, and tech companies over user privacy rights and encryption backdoors. It highlights instances such as the NSA inserting a backdoor into the Dual_EC_DRBG algorithm and how this has affected consumer trust in tech products. The article also mentions the recent court case between Apple and the FBI, which further emphasizes the struggle for balancing user privacy with government access to information.
The researchers taking on fraudulent science | Analyst News:
John Carlisle, a British anesthesiologist, discovered a pattern of fabricated data in clinical trials authored by researcher Yoshitaka Fujii. After reviewing 737 papers, Carlisle found that 68 were written by Fujii. Upon further examination, the data in these trials was found to be statistically improbable and likely fabricated. Of the 68 papers authored by Fujii, 63 were eventually retracted from their respective journals. The growing problem of fraudulent research is due to a culture of „publish or perish“, AI-based writing tools, predatory science journals, and paper mills. Approximately 2% of papers are believed to be produced by paper mills, which offer fake or low-quality papers to authors who need authorship. To combat this issue, experts suggest moving towards publishing more negative results, promoting open communication about better science research practices, and removing ads for paper mills from social media platforms.
In this article, the author shares their experience in creating and optimizing a Dockerfile for „ugit“, a shell script tool to undo git commands. The initial file size was reduced by 40% through step-by-step optimization attempts using multi-stage builds, eliminating transitive dependencies, and pinning minimum version requirements of dependencies. The final optimized Docker image size is 17.6 MB with no security vulnerabilities reported.
GIA: Telekommunikationsbranche läuft Sturm gegen geplante Gigabit-Verordnung:
The telecommunication (TK) industry, including Deutsche Telekom, Orange, Swisscom, and Telefnica, has criticized the progress of EU negotiations on the Gigabit Infrastructure Act. The act aims to reduce costs and time for the development of 5G and gigabit networks. However, the industry warns that if implemented as currently proposed, it could lead to unintended consequences without actually benefiting consumers through deregulation. Key provisions such as silent approvals, which allow applications for network expansion not answered within four months to be considered approved, are under scrutiny. The European Parliament and Council of the EU are close to an agreement on the legislation.
Nach Protesten: Supermarkt zieht Anti-Nazi-Werbung zurück:
The East German supermarket chain Simmel faced controversy after it included a pro-democracy message in its advertising material, against Nazis. This sparked protests and backlash in Saxony, forcing the company to withdraw the ads. Simmel, which is part of the Edeka Group, operates over 100 stores and employs more than 1,000 people. The incident highlights the ongoing struggle for control over political narratives and terminology in Germany, as right-wing extremists continue to challenge mainstream discourse.
A recent discovery on Amazon has revealed numerous product listings that include the same OpenAI notice, suggesting companies are using ChatGPT to quickly generate entire descriptions without proper proofreading. This raises concerns about the quality and accuracy of products listed on Amazon. While Amazon claims to provide a trustworthy shopping experience, the inclusion of these AI-generated listings casts doubt on their ability to do so effectively.
Over the Edge: The Use of Design Tactics to Undermine Browser Choice – Mozilla Research:
A recent report commissioned by Mozilla reveals that Microsoft's tactics to promote its Edge browser undermine consumer choice and hinder competition from rival browsers on Windows operating systems. The researchers found that Microsoft places its own browser at the center of the system, uses harmful design tactics, and violates its own guidelines. To address these issues, Mozilla urges global regulators to act in order to restore browser choice and competition across platforms.
Daunting papers/books and how to finally read them:
The article discusses various techniques for better understanding and reading academic papers. It emphasizes having a clear purpose, breaking down tasks into smaller chunks, holding oneself accountable, working with friends or colleagues, engaging multiple senses while studying, and being patient with the learning process. The author also shares their personal experiences in overcoming the challenges of understanding complex papers in various fields.
Baudrillard_Simulacra and Simulations:
Jean Baudrillard discusses the concept of simulacra and simulations in this excerpt from his work, „Simulacra and Simulations.“ He explains that the truth is no longer concealed by the absence of reality but rather by the fact that there is none. This idea leads to the generation of realities without origins or substance, which he calls hyperreality. Baudrillard argues that traditional representations of truth and reference have been replaced by signs and meanings, which are more ductile and adaptable than meaning. He also emphasizes the importance of understanding the interplay between simulation and reality to navigate the complexities of contemporary society. Overall, the article explores how simulacra and simulations challenge traditional notions of truth, reality, and power structures.
Why car insurance in America is actually too cheap:
In 2010, a tragic car accident in Portland, Oregon led Eric DuBarry and his son Seamus to struggle with the financial burden of medical expenses, even after insurance claims. This case highlighted the issue of low liability coverage in Oregon and the US, where minimum requirements are often not sufficient for covering the costs of car crashes. The article discusses how higher car insurance premiums are still considered too expensive by many drivers, despite only covering a small percentage of the true social cost of car crashes, which reached nearly $1.4 trillion in 2019. In comparison, other countries such as Germany and Britain have higher legal minimum bodily-injury coverage requirements, leading to fewer people being underinsured in those countries.
Why You (Probably) Shouldn't Start With an SPA :: simonhamp.me:
The article discusses Single Page Applications (SPAs) and argues that they have become more expensive than traditional multi-page applications due to the decoupling of front-end and back-end, increased customization difficulty, and potential performance issues. The author suggests considering alternatives such as Livewire, Hotwire, or HTMX for a more server-rendered approach, while still providing reactive front-ends.
There Are Too Many Damn Honeypots - Blog - VulnCheck:
According to Huntress Labs, a Shodan search for „Confluence“ returns more than 200,000 results and searches for the Confluence favicon return over 5,000. These figures do not represent vulnerable instances but show how many are exposed to the internet. The actual number of internet-facing Confluence servers is around 4,000, with honeypots accounting for over 235,000 potential hosts. This issue highlights the importance of understanding the scale of vulnerabilities accurately to better assess their impact on the security landscape.
This article discusses the idea that technology, specifically software, is causing the Great Stagnation in developed economies by leading to obfuscation and cargo cult management practices. The author argues that technology has become too focused on abstractions rather than implementation for measurable advantage. The article suggests that focusing on decision advantage will help improve productivity gains and emphasizes the importance of strong leadership in managing complex technologies.
Tips for Remote Workers | Hacker News:
This article provides various tips for working remotely, such as having a dedicated workspace, maintaining a healthy routine, and staying connected with coworkers through communication tools like Zoom or Teams. It emphasizes the importance of setting boundaries between work and personal life while working from home. Additionally, it highlights the benefits of being flexible in terms of location and job opportunities when working remotely.
How is a binary executable organized? Let's explore it!:
This article explains that executables are not impenetrable, and can be understood using simple tools like readelf, nm, and objdump on Linux platforms. It provides an overview of symbols, sections, and segments in executable file formats, particularly ELF binaries. The article also introduces disassembly and segmentation concepts for better understanding the structure of executables.
'I've never seen anything like this': Temu's ad spend soars as it embarks on a marketing blitz:
Temu, an online marketplace, has seen its ad spend increase by 1,000% year-over-year from January to November 2023, according to MediaRadar. Seventy-six percent of Temu's advertising budget for this period went towards social media, while the remainder was distributed between digital display ads and television commercials. The company is using its low-priced items as a draw and has become known for placing advertisements across various platforms to generate sales. In 2023, Temu spent over $517 million on national advertising, with plans to continue investing heavily in ads in 2024.
jj init — Sympolymathesy, by Chris Krycho:
Jujutsu is a new version control system developed by a software engineer at Google. It offers an alternative to the current generation of systems like Git or Mercurial. The approach taken by Jujutsu focuses on better user experience and design choices for implementation details and interface. This includes changes that are distinct from revisions, conflict handling, and user interfaces that are much more reasonable and good-looking than traditional VCS software. The system has been adopted and is actively being developed by Google for use as a replacement for their existing custom VCS setup.
Limitarianism: The Case Against Extreme Wealth:
The discussion revolves around the idea of empowering a central planning body to make monetary decisions that devalue wages and salaries while inflating asset prices. The concern is about the policy's effect on inequality between richer people who hold assets, and poorer individuals who rely more on their labor income. There are arguments in favor of shaping the yield curve with a market mechanism to mitigate some of these effects; however, it may be too late for that due to years of addiction to funny money (a colloquial term used to describe unconventional monetary policy). The conversation then moves on to discuss alternative strategies such as requiring asset owners rely more on the value of their assets rather than waiting for handouts, and addressing the issue of misallocation of capital.—-
The article discusses Tesla's cynical culture and its exploitation of California's Zero Emission Vehicle program through fraudulent battery swap stations. It highlights multiple instances of environmental violations at the company, such as pollution control failures, Clean Air Act violations, hazardous waste handling law violations, and groundwater pollution. The author argues that Tesla's impunity for these offenses is enabled by regulatory malpractice and the public's acceptance of the company's environmental impact as a necessary cost for advancing electric vehicles.
SeaweedFS fast distributed storage system for blobs, objects, files and datalake:
The article discusses SeaweedFS, an open-source project that fills the gap between databases and filesystems for storing billions of medium-sized XML documents, image thumbnails, PDF files, etc. While it may have some janky documentation and operational tooling at first, it provides better performance than other alternatives like Minio. The article also mentions GarageS3 as a middle ground solution between SeaweedFS and Minio, but ultimately suggests trying both to determine the best fit for individual use cases.
Why Don’t We Teach People How to Parent?:
The article discusses the lack of formal parenting education in the United States and how people often learn by trial and error, even though many parents face greater expectations and challenges today than their predecessors. The author highlights the importance of accessibility to quality parenting programs and encourages a more supportive community that promotes learning and growth for all families.
The article discusses the idea of never retiring, as lifespans are getting longer and individuals can stay active and engaged in their careers or pursue other interests. It highlights examples of people who continue to work past the traditional retirement age, such as Giorgio Armani and Charlie Munger. The article suggests that for those who remain professionally active, there is a sense of purpose and relevance, even if it might not be as intense or high-profile as earlier in their careers. However, it acknowledges the importance of personal growth and self-worth beyond the workplace through hobbies, non-profit work, or mentoring others.
The European regulators listened to the Open Source communities! - Voices of Open Source:
The Open Source Initiative (OSI) and other community members have been actively engaged with European Union legislators in 2023 concerning the Cyber Resilience Act (CRA). The CRA, along with a revision to Europe's Product Liability Directive, will bring product liability responsibilities to software for the first time. After significant efforts by OSI and other organizations, the final text of the CRA mitigated most concerns regarding its impact on individual developers and Open Source foundations. While some challenges remain, such as interpreting key phrases in the legislation, the collaboration between open source communities and European authorities has resulted in a more favorable outcome for open source development.
The forgotten medieval habit of 'two sleeps':
For millennia, people slept in two shifts - once in the evening and once in the morning. However, the habit disappeared with the advent of artificial lighting during the Industrial Revolution. This change altered human sleep patterns, causing first sleep to be longer and second sleep to be shorter. The abandonment of biphasic sleep led to a preoccupation with waking up early and increased anxiety about mid-night insomnia. While single periods of slumber may not be natural, modern advancements like ergonomic mattresses and hygiene have improved overall sleep quality.
The article is about finding motherboards by model and browsing by category, along with related information on BIOS images, expansion chips, chipsets, CPUs, hard drives, optical drives, floppy drives, drivers & software, and the last edited boards.
Thanksgiving 2023 security incident:
On November 23, 2023, Cloudflare detected a threat actor on their Atlassian server and immediately began investigating. The threat actor's access was cut off, and CrowdStrike's Forensic team was brought in for an independent analysis. It was determined that no customer data or systems were impacted due to Cloudflare's Zero Trust architecture and access controls. The investigation revealed the attacker had used stolen credentials from Okta's compromise to access Atlassian server, wiki pages, and source code repositories. Cloudflare has since rotated all production credentials, performed a comprehensive security assessment, and strengthened its security protocols to prevent further intrusion.
Sorry Appin, We’re Not Taking Down Our Article About Your Attempts To Silence Reporters:
Appin, an Indian cybersecurity company that reportedly became involved in hacking schemes, has been using law firms to threaten media organizations with legal action. Rajat Khare, the co-founder of Appin, denies these accusations and has hired Clare Locke LLP to send legal threats to Reuters, leading to the removal of a report detailing alleged hacking activities by Appin. This censorship attempt appears to be causing a „Streisand Effect,“ drawing more attention to the underlying claims about Khare and Appin.
What You Need Is Motivation — Ethan Lalakea Alter:
The article discusses the importance of motivation in corporate culture and how it has shifted over time. It suggests that middle managers are the key to motivating employees, as they are best positioned to understand individual needs. The article also mentions the challenges faced by modern business corporations in maintaining effective motivational scaffolding due to factors such as disillusionment and remote work. It emphasizes the need for companies to invest in managers who can effectively promote motivation within their teams, ultimately leading to better performance.
Two Mindsets That Can Create Rude or Polite Coworkers:
Rude behavior in the workplace is widespread, with 70% of employees reporting incivility from colleagues and half reporting that incivility occurs on a weekly basis. Understanding the mindsets behind polite or rude treatment can help managers foster better team dynamics and improve decision-making processes.
Two key mindsets are explored: humanistic and mechanistic. Humanistic mindset focuses on empathy, dignity, and self-worth of colleagues, while mechanistic mindset emphasizes efficiency through utilitarian cost-benefit analysis.
An observational study involving healthcare providers in trauma teams found that mechanistic mindset behaviors were associated with uncivil interactions but not civil ones. In contrast, humanistic mindset behaviors were linked to greater enactment of civil interactions without significant association with uncivil interactions.
A subsequent online experiment among working adults highlighted the propensity for incivility in crisis situations compared to mundane tasks. The rationalization behind uncivil behavior included improved efficiency and expression of hostility toward colleagues, while civility was motivated by a desire to prevent escalation and intrinsic importance of respect.
To promote civility, managers can balance teams with diverse mindsets, reduce mechanistic mindset prevalence through warnings and evaluations, and emphasize humanistic company values. Strategies like posters listing the importance of a humanistic mindset or team coaching activities could help cultivate this mindset among employees.
Opt out of Hulu's new binding arbitration clause:
The article discusses Hulu's new subscriber agreement requiring users to resolve significant disputes through arbitration, effectively preventing class action lawsuits. Users can opt out by sending a physical letter to Hulu, but the author warns that they may lose important legal rights if not done so.
Accelerating the Science of Language Models:
The paper discusses the importance of open language models for scientific progress on understanding these models and advancing their utility. It introduces OLMo, a state-of-the-art, truly open language model framework that includes training data, evaluation tools, intermediate model checkpoints, and training logs, all released under an Apache 2.0 License. The paper also compares the architectural differences between various large language models and provides insights into how pretraining dataset composition impacts model capabilities and limitations. Additionally, it highlights some of the artifacts that have been openly shared to encourage further research in this area, such as training logs, ablations, findings, evaluation code for downstream tasks, data tools like WIMBD, and more.
FDA says 561 deaths tied to recalled Philips sleep apnea machines:
561 deaths have been reported in connection with recalled Philips devices used to treat obstructive sleep apnea and other breathing disorders. Since April 2021, the FDA has received over 116,000 medical device reports of foam breaking down in Philips CPAP and BiPAP machines. The Dutch company recalled millions of these devices after users reported gas and foam being blown into their airways. In late 2023, Philips agreed to pay at least $479 million to compensate users of affected breathing devices.
This article highlights the importance of well-written Git commit messages and shares an example from the author's experience at the Government Digital Service. The message provides valuable context, searchable information, tells a story, makes everyone smarter, and builds compassion and trust among developers. The article also recommends resources for learning more about the benefits of good commit messages.
Nine Ugly Truths about Copyright:
The article discusses the ongoing battle between two major corporate interests over copyright law, which is driven by their desire for power and money. The author warns that most information about copyright law is misleading due to the involvement of large companies like Google, Facebook, and Apple. The author also shares nine rules to help make sense of the conflict and five predictions for its future impact on creativity and culture.
The web just gets better with Interop 2024:
The Interop Project is an initiative aimed at improving browser compatibility and interoperability by encouraging engine teams to focus on specific areas and technologies. In 2023, the project saw significant improvements in web standards support across major browsers. The success of Interop 2023 led to continuation with Interop 2024, which has introduced seventeen focus areas for improvement, including accessibility, CSS nesting, and relative color syntax. By participating in the Interop Project, browser engine teams work together to ensure websites work correctly across all platforms and devices, making the web more accessible and user-friendly for everyone.
Germany explores 4-day workweek amid labor shortage:
45 companies in Germany will experiment with a 4-day workweek for half a year, with employees still receiving their full salary. The initiative is led by the consulting firm Intraprenr and non-profit organization 4 Day Week Global (4DWG). Advocates argue that this model could increase worker productivity and help alleviate Germany's skilled labor shortage. However, critics question the results of previous pilot projects, citing issues with measuring productivity and the potential challenges in implementing a 4-day week across various industries.
Excavations at the Ranis site in central Germany have revealed that modern humans, Homo sapiens, inhabited Northern Europe around 45,000 years ago, overlapping with Neanderthals for several thousand years before their extinction. The findings confirm that the site is among the oldest known sites of modern human Stone Age culture in north central and northwestern Europe. Genetic analysis on bone fragments from the site reveal that Homo sapiens and Neanderthals lived together, consistent with genomic evidence suggesting occasional interbreeding between the two species. This new discovery has significant implications for our understanding of human migration across Eurasia and the possible role it played in Neanderthal extinction.
‘I should not have written ‘A Clockwork Orange’’: How Anthony Burgess came to disown his own novel:
Anthony Burgess' novel A Clockwork Orange, written in 1962, was inspired by the uncivil drift among youth at the time. The controversy surrounding the book and its film adaptation, directed by Stanley Kubrick in 1971, left Burgess feeling misunderstood. He struggled to defend his work against accusations of glorifying crime and violence. The documentary „Orange mécanique, les rouages de la violence“ explores this conflict between the author and his novel's legacy.
Why I Moved My Blog from IPFS to a Server:
The article discusses the author's experience with IPFS and ENS websites, their development and limitations. The author explains that while IPFS has theoretical benefits such as being robust, censorship-resistant, and scalable, in practice it doesn't work out as well due to issues like users not running their own nodes or software, dynamic content updates, and difficulty accessing the content in browsers reliably. Despite these challenges, the author remains a fan of IPFS but has decided to move his blog back to a server for now.
People Don’t Understand OOP – Sigma's Blog:
In the article, OOP (Object-Oriented Programming) is discussed as a method that focuses on messaging, local retention and protection of state, hiding process details, and late binding of all things. The concept emphasizes modeling problems using objects with collections of operations that share a state. Classes, prototypes, encapsulation, subtyping, inheritance, getters, setters, and singletons are also discussed as part of OOP paradigms. The article addresses some criticisms of OOP, such as object overcomplication, naming issues, and misuse of design patterns. It highlights that OOP is not the only way to achieve a goal and that languages like JavaScript and Python may deviate from OOP principles while still being powerful programming tools.
Ars Technica used in malware campaign with never-before-seen obfuscation:
A recent cyberattack campaign used Ars Technica and Vimeo to serve second-stage malware, employing a novel attack chain that covered its tracks. The campaign, which targeted registered users on both platforms, was orchestrated by threat actor UNC4990, known for its financial motivations. Mandiant researchers discovered the use of Base 64 encoding to generate malicious strings within images and video descriptions, which were retrieved automatically by first-stage infected devices and installed as a second stage. This attack has not been observed before, and there have been no reported consequences for users who viewed the content.
Hot mixing: Mechanistic insights into the durability of ancient Roman concrete:
In summary, this study investigated the chemical composition and potential self-healing mechanisms of ancient Roman mortars using scanning electron microscopy, energy dispersive x-ray spectroscopy (SEM-EDS), powder x-ray diffraction (XRD), confocal Raman imaging, and petrographic analysis. The results showed that relict lime clasts present in the mortar could serve as a source of reactive calcium for long-term pore and crack filling through post-pozzolanic reactions. Inspired by these findings, modern Roman-inspired concrete formulations were developed and tested, demonstrating effective self-healing properties when exposed to water flow over cracks up to 0.5 mm in width. The study suggests that the ancient practice of hot mixing could have been used during the preparation of these mortars, providing a potential explanation for the observed composition gradients within the lime clasts.
How Boeing put profits over planes:
A Boeing-made Alaska Airlines flight experienced an emergency door plug blowout at 16,000 feet above ground in January. This incident follows multiple malfunctions involving the Boeing 737 Max line of planes, including two deadly crashes between 2018 and 2019 that killed 346 people. The door plug problem has raised concerns about Boeing's safety measures and corporate culture.
Authentication with Devise and cancancan in Rails · James Hibbard:
This tutorial provides detailed instructions on setting up authentication and authorization using Ruby 2.7, Rails 6.0.3, and two popular Ruby gems, Devise and CanCanCan. The code for this tutorial can be found on GitHub. The app is a store that requires user registration and includes sellers and an admin. Authentication is handled by Devise, while authorization is managed with CanCanCan.
Marlon Brando Was a Secret Tech Geek and Photoshop Ace:
The documentary Listen to Me Marlon features exclusive footage of actor Marlon Brando experimenting with digital effects technology in the late 1980s and early 1990s. The actor partnered with Scott Billups, a cinematographer and graphics pioneer, to perfect the „digital equivalence“ technology that enables the creation of photo-realistic digital doubles of actors. Brando's interest in technology extended beyond filmmaking; he also invested in high-grade electronic systems and was an early user of CoSa After Effects software for green screen work.
Hearing aids slow cognitive decline in people at high risk:
A study led by Dr. Frank Lin from Johns Hopkins University found that hearing aids reduced the rate of cognitive decline in older adults at high risk of dementia by almost 50% over a three-year period. The researchers enrolled nearly 1,000 adults aged 70 to 84 into a clinical trial and compared the rate of cognitive decline between those who received hearing aids and those who didn't. People with substantial hearing loss and an increased risk for dementia experienced a substantial improvement in communication abilities when using hearing aids, while those in the health-education group did not experience such improvements. The researchers recommend that older adults have their hearing checked regularly and address any issues to reduce the risk of cognitive decline and dementia.
Fighting Infomania: Why 80% of Your Reading is a Waste of Time - Nat Eliason:
The article discusses the author's journey in realizing that they didn't enjoy working in corporate companies, leading them to explore entrepreneurship and startups. They realized that acquiring knowledge through traditional means, such as school and internships, wasn't enough for this pathway and instead advocates for focusing on tactical knowledge and avoiding consuming too much „just in case“ information. The author suggests following the „Lindy Rule“ to prioritize content that has stood the test of time over constantly seeking out new information.
Your browser is not supported:
This article informs users that USA Today's website has been optimized for modern browsers, such as Google Chrome, Mozilla Firefox, Opera, Microsoft Edge, and Safari. To ensure the best experience on their site, they advise readers to download one of these supported browsers.
Why do programmers need private offices with doors?:
This article discusses two types of work identified by Paul Graham: harmlessly-interruptible work and Do Not Disturb (DND) work. Harmlessly-interruptible tasks allow for productivity to increase linearly, while DND work has non-linear productivity that can be significantly impacted by interruptions. The author suggests that misunderstandings between people accustomed to these different types of work cause frustration in the modern workplace. Solutions include understanding the importance of uninterrupted time for DND tasks and prioritizing it during specific times of the day.
Rechtsextremer Sellner testet das Einreiseverbot und führt Deutschland vor:
This article is about the Austrian right-wing activist, Martin Sellner, who tweeted that he was being pursued by German authorities while traveling to Germany in a rented car. Reportedly, there was supposed to be an entry ban for him into Germany, but he could not confirm this with numerous calls to German authorities, so he decided to drive on and enter Germany first. His live stream of the incident was watched by around 11,000 people who followed his journey, from fleeing Austria to entering Germany. Upon arrival in Germany, Sellner gave an interview shortly after crossing the border. The article discusses the controversy surrounding Sellner's entry ban and the debate on whether or not he poses a threat to public safety and order. It also mentions how Sellner has become a meme due to these events and his attempt to gain asylum in Germany.
Apple is turning developers against Vision Pro before it even arrives:
The article discusses the concept of „malicious compliance“ and how Apple's new iOS App Store changes in the EU, aimed at complying with the Digital Markets Act, are being criticized as such by many developers. The new Core Technology Fee on each first install annually for developers with more than a million users has led to concerns that it may make third-party app development less appealing and encourage users to stick with Apple's own apps. As Apple launches its first major new product category, the Vision Pro spatial computer, it is vital for Apple to maintain goodwill with developers to ensure success in this emerging market.
Edge appears to import Chrome tabs without user permission:
Microsoft's Edge browser has been importing open Chrome tabs and other data from Google's browser without permission, even when the „feature“ is disabled. This issue has been present since mid-2022 and gives Edge the ability to import almost all browser data from Chrome each time it is launched on Windows PCs. Users have reported problems with the feature regardless of settings being off, and it appears to be more prevalent following a recent Windows 11 update. Microsoft has so far declined to comment on the issue but is said to be addressing it for the next Edge Stable release.
Elon Musk won’t get his $55 billion pay package after all:
A Delaware Court of Chancery judge has ruled against Elon Musk's $55 billion pay package, meaning Tesla's board will need to create a new proposal. The ruling could potentially impact Musk's fortune if it survives an appeal. Investors claimed they were not fully informed about the plan and that Musk misled them when he proposed it in 2018.
Why flying insects gather at artificial light - Nature Communications:
TODO
The end of 0% interest rates: what the new normal means for software engineers:
The tech industry is experiencing major changes due to the end of the zero interest rate policy (ZIRP) by central banks, leading to increased pressure for profitability, less venture capital funding, and slower access to funding beyond seed stage. For software engineers, this means a more challenging job market with fewer jobs, increased competition, and harder transitions between roles. It's important for developers and managers to adapt their approach to the market and stay updated on industry trends for better outcomes in their careers.
‘Smoking gun proof’: fossil fuel industry knew of climate danger as early as 1954, documents show:
Newly discovered documents reveal that the fossil fuel industry funded early climate science research as far back as 1954, including the work of Charles Keeling, who later established continuous measurement of global CO2 at the Mauna Loa Observatory in Hawaii. The fossil fuel interests supported a group known as the Air Pollution Foundation, which issued funding to Keeling for his early research on measuring CO2 levels and its relation to climate change. This is earlier than any previously known climate research funded by oil companies. Experts say this evidence shows that big oil has had intimate involvement in the inception of modern climate science and continued to deny it, despite knowing its potential consequences for decades.
Rent has never been less affordable, especially for the middle class:
The Harvard Joint Center for Housing Studies reports that rent is less affordable than ever before, with half of American renters spending over 30% of their income on housing costs. This has led to an increase in cost-burdened renters, reaching a record 22.4 million in 2022. The financial strain is greatest for middle-class tenants and is affecting all income levels. Despite some relief in the fall of 2023 with rent growth falling to 0.4%, rent costs are not expected to return to pre-pandemic levels, continuing to impact tenant budgets significantly. The lack of affordable housing units also contributes to this issue.
The five Gaits of the Icelandic horse. - Islandshestar.is:
The Icelandic horse is a unique breed known for having five gaits, including the smooth and desirable gaits Tlt and Flying pace. The Vikings brought these horses to Iceland, where they remained pure for centuries and maintained their special gaits. Gene mutation allows the Icelandic horse to synchronize its right and left sides, enabling it to move faster and achieve more speed in flying pace. The Tlt gait is achieved by putting more weight on the back part of the horse, and flying pace is a two-beat gait with both front and back legs moving simultaneously. It may take time and effort for some horses to learn these gaits.
Austin Gave Poor Families a Basic Income. It Changed Their Lives.:
In 2022, Austin conducted an experiment to address its growing housing crisis due to the expansion of the local technology industry. The city gave 135 low-income households $1,000 monthly for one year and studied how they used the money. A report found that most of the funds were used to pay rent and other housing costs. The experiment added to growing evidence that a universal guaranteed income can improve recipients' lives responsibly, with some using extra time for education or skill development. Austin covered most of the funding, while philanthropic donations helped cover the rest.
JetBrains CEO Transition | The JetBrains Blog:
JetBrains is celebrating its 24th birthday on February 1, 2024, having grown from a single-product company to a multinational entity with over 2000 employees and more than 30 products and services. Kirill Skrygan, who has been with the company since 2010, will be taking over as CEO in February 2024, succeeding Maxim Shafirov, who has served as CEO for the past 11.5 years. JetBrains remains committed to its customers and partners and plans to continue investing in Kotlin and The Kotlin Foundation.
movie2k.to: Beschuldigter übergibt Bitcoins im Wert von zwei Milliarden Euro ans BKA:
50,000 Bitcoin have been provisionally secured in Germany during Ermittlungen against two men suspected of running an illegal copyright portal between Autumn 2008 and May 2013. The value of the seized Bitcoins is estimated to be around €2 billion at their current price on Tuesday. The suspects are accused of using the proceeds from the illegal site to purchase Bitcoin. This marks the largest seizure of cryptocurrency by law enforcement in Germany so far.
The article describes an individual's struggle with an agricultural air cannon that began firing every two minutes all night long in their community, causing sleep disruption. Using Google Maps, three listening posts and a programmed simulation, the author was able to pinpoint the field hosting the air cannon. After contacting the farm manager, the issue ceased, allowing them to finally get a good night's sleep again.
Why Certificate Lifecycle Automation Matters:
The article discusses an analysis of compromised certificates and their issuers, revealing that traditional certificate authorities (CAs) have higher compromise rates compared to fully-managed TLS providers and ACME-issued certificates. Let's Encrypt, a widely used CA, has a significantly lower compromise rate than other CAs due to its automation process. The article also highlights the importance of minimizing human interaction with private keys in certificate management and suggests that fully-managed TLS providers and ACME protocol are the best approaches for reducing key compromises.
The Rise of Techno-authoritarianism:
This article discusses how Silicon Valley has become an avatar for authoritarian technocracy. It highlights key moments in Mark Zuckerberg's and Sheryl Sandberg's lives, revealing their intentions behind building platforms like Facebook that have had detrimental effects on individuals, civil society, and global democracy. The article argues that companies like YouTube, Instagram, and Twitter have contributed to the same negative impacts as Facebook and warns of future problems due to the rapid development of artificial intelligence. It also presents a critical view of Silicon Valley's influence, stating that it is reengineering society more profoundly than any other power center in any other era since the days of the New Deal.
CEOs Are Using Return To Office Mandates To Mask Poor Management:
The pandemic led to a shift in working models, with remote work now stabilizing at around 30% of the U.S. workforce as of December 2023. This change has enabled companies to reassess their operational costs and adapt to hybrid or fully remote workforces. However, recent research suggests that return-to-office mandates may not enhance firm value but rather serve as a means for organizations to maintain control and shift blame onto employees. As companies continue to grapple with the best model for their stakeholders, it is essential to recognize that there's no one-size-fits-all solution, and executives should focus on implementing a model reflective of their business needs while fostering regular employee connections to drive momentum in business outcomes.
How safetyism killed playtime:
The article discusses the modern concept of play, which is often organized and supervised by adults. It compares today's playful environment with the past when children had more freedom to run around and create their own social worlds. The decline in free-roaming children may be due to safety concerns, working parents, and increased focus on child development. However, this controlled play can lead to a lack of creativity and resilience compared to unstructured play, which teaches children how to deal with uncertainty and manage risk.
CUDA Installation Guide for Linux:
TODO
Why Everyone Hates The Electronic Medical Record:
The article discusses the challenges faced by healthcare workers due to the Electronic Health Record (EHR) system, which has led to increased administrative burden and burnout. The EHR promised better accuracy, streamlined care, and patient-accessible records, but its implementation has been flawed, resulting in issues such as interoperability and data security concerns. Additionally, the article highlights the need for healthcare workers to resist perverse business incentives and adapt to technocratic veneers on institutional problems.
Microglial cell response to experimental periodontal disease - Journal of Neuroinflammation:
TODO
Patients say keto helps with their mental illness. Science is racing to understand why:
Iain Campbell, a researcher in Scotland who lives with bipolar disorder, discovered profound improvements in his symptoms after trying the ketogenic diet and now wants to learn if it can do the same for others. The ketogenic diet is high fat and very low carb and has shown promise in treating mental illnesses such as bipolar disorder, schizophrenia, depression, anorexia, alcoholism, PTSD, and conditions like Type 2 diabetes. Researchers are studying the ketogenic diet's potential for mental health and a movement called metabolic psychiatry is emerging to better recognize the link between metabolic health and mental illness.
TODO
How a mistakenly published password exposed Mercedes-Benz source code | TechCrunch:
Mercedes-Benz accidentally exposed internal data due to a private key left online by the company. This key provided unrestricted access to Mercedes's GitHub Enterprise Server, allowing anyone to download the company's private source code repositories. The exposure included intellectual property connection strings, cloud access keys, blueprints, design documents, single sign-on passwords, API Keys, and other critical internal information. TechCrunch disclosed this security issue to Mercedes, which confirmed the incident and took immediate action by revoking the token and removing the public repository.
How Will The Golden Age Of "Making It Worse" End? | Defector:
The article discusses the belief in contemporary America that one person can make a critical difference in any bad situation, particularly when they are angry and violent. This is often expressed through the fantasy of taking on powerful entities like Boeing. The author argues that individual agency is overrated and that problems like those faced by Boeing cannot be solved solely by an individual. They point out that many industries and institutions, including Boeing, are in decline or collapse due to profit-driven financial capitalism replacing safety culture with a „culture of financial bullshit.“ The author emphasizes the need for collective action to address these issues rather than relying on individual heroics.
HP CEO Makes Up A Whole Lot Of Bullshit To Defend Crippling Printers That Use Cheaper Ink:
This article discusses Hewlett Packard (HP) being sued for the second time due to their practice of crippling customer printers when they use cheaper, third-party printer cartridges. Instead of reflecting on their actions and improving their relationship with customers, HP CEO Enrique Lores doubled down on the company's stance, claiming that using third-party ink could potentially spread viruses through printers to networks. Security researchers have debunked this claim as there is no significant documentation of it happening in the wild. The article also highlights HP's obnoxious and anti-competitive behavior, which stems from their focus on quarterly revenues instead of providing a quality product.
The stack: An introduction to the WARC file:
This article explains the significance and use of WARC (Web ARChive) files in web archiving, highlighting its importance for digital preservation. A WARC is a container file standard for storing web content in its original context, maintained by the International Internet Preservation Consortium (IIPC). It houses various types of files and contains technical and provenance metadata about the collection and arrangement of its media. The article also discusses the contents and structure of WARC files and how they are used to maintain access to vital information resources.
This article discusses the issue of content scraping and copyright infringement by generative AI (genAI) companies like OpenAI, which are using publicly available internet materials to train their large language models. The New York Times has filed a lawsuit against OpenAI for using its articles without permission or compensation. The author argues that these companies should pay content creators for the use of their work and notes that sharing revenue with them is crucial for the long-term success and quality of online information.
A recent study has found that patients who received growth hormone from human cadavers as children are showing early-onset Alzheimer's symptoms decades later. The findings suggest that the hormone treatment may have transferred beta-amyloid proteins into their brains, which could then propagate into disease-causing plaques. These cases add to ongoing debates over the causes of Alzheimer's and raise questions about the role of amyloid in the development of the condition.
Via Kinderpornografie: Hacker lassen fremde Facebook- und Instagram-Konten sperren:
Thousands of Meta accounts belonging to German users have been hacked and used to publish images of child sexual abuse, leading to account suspensions. This tactic is often employed by cybercriminals who infiltrate other people's Facebook and Instagram accounts and spread the explicit content to gain a suspension. In Germany alone, 3,364 cases have been reported over two and a half years, with thousands of similar cases known at the Central Cybercrime Office in Cologne (ZAC NRW). Users are advised not to save images of abuse to protect themselves from potential legal consequences.
E-Rezept-App: "Wie soll Oma Erna das machen?":
The article discusses the early experiences with Germany's new e-prescription system, which requires all doctors to issue electronic prescriptions since January. While many have used the electronic health card (eGK) for digital prescriptions, only a few have utilized the official e-prescription app. Reactions from users of the app were mixed with some finding it useful while others found it confusing and unintuitive. Issues such as long waiting times for PINs and problems with the authentication process are also mentioned. The article concludes by suggesting a need for a „fully digital solution“ that benefits both doctors and patients and addresses concerns about administrative burdens on physicians.
Ryzen 8000G review: An integrated GPU that can beat a graphics card, for a price:
AMD's Ryzen 8000G chips, including the Ryzen 7 8700G CPU, offer improved performance over previous generations, with an integrated Radeon 780M GPU that can compete against low-end dedicated graphics cards. The chips also include AMD's „Ryzen AI“ feature for machine learning and artificial intelligence workloads. However, the high platform pricing of AM5 and the cost of DDR5 memory limits their appeal for budget gaming systems.
WhisperFusion is an AI-based platform that enhances conversational capabilities, building upon its predecessors - WhisperLive and WhisperSpeech. The platform has garnered 435 stars and 20 forks from users who have contributed to the project.
Disney 'Cracks Down' on Mickey Mouse 'Steamboat Silly' Pirates * TorrentFreak:
The iconic Mickey Mouse character has officially entered the public domain in the US after being under copyright protection for nearly a century. Walt Disney released „Steamboat Willie“ in 1928, and the recent US Copyright Term Extension Act extended its protection to 95 years. On January 1, many people celebrated this event by sharing clips of the film on YouTube and other platforms. While Mickey Mouse's early versions are now free for non-Disney creators to use, later iterations remain well-protected under Disney's copyright safeguards.
This article discusses the benefits of lubricating keyholes, especially in situations where saving time is crucial. The author provides a personal example of how lubricating keyholes can save valuable seconds in certain circumstances. The article also explains how to properly lubricate keyholes using dry graphite powder lubricant and emphasizes the importance of acquiring the right type of lubricant to avoid potential issues like gathering dust or leaving oily residues.
TODO
Lie About Your Birthday 🎂 – The Markup:
The article suggests that people should consider lying about their birthday to protect personal information from being used for fraud or identity theft by scammers. The author advises only using fake dates when it comes to commercial promotions, and not altering them multiple times per year. Additionally, individuals should be more resistant in giving out personal information unless absolutely necessary, such as asking why certain details are needed before providing them.
Hollywood Keeps Reminding Us Why We Need Physical Media More Than Ever - IGN:
This article discusses the challenges of keeping track of films and television shows available on streaming services. It highlights how major franchises, such as Star Trek, have been moved between platforms, making it difficult for viewers to access all content related to their favorite series. The author suggests that physical media, like Blu-ray or DVD sets, could become more popular as a result of these issues and the ever-changing landscape of streaming services.
Microsoft stole my Chrome tabs, and it wants yours, too:
The article describes an incident where Microsoft Edge automatically opened with all Google Chrome tabs after installing a Windows update, even though the user had not enabled the feature for importing browsing data from other browsers. The user could not find any settings that allowed this to happen and asked for clarification from Microsoft on the matter. Multiple users reported similar issues, leading to concerns about potential hidden prompts or tactics used by Microsoft to promote its web browser.
Beliefs that kill birth rates:
The article discusses the factors that contribute to falling birthrates, primarily focusing on whether it's due to cultural or economic factors. It presents two main arguments - one stating that people have other priorities now than having multiple children due to increased wealth, and another arguing that children are still a significant time and effort investment, leading to lower birth rates as the value of work and leisure has improved. The article also examines data from European countries with socially liberal beliefs having higher birth rates compared to those with more conservative beliefs and provides global comparison data to support its claims. It suggests that the belief that a child suffers when their mother works is linked to lower birth rates, and concludes that cultural beliefs about the effort required to raise children may be more significant in determining birthrates than just economic factors.
The Big Little Guide to Message Queues:
This guide explores the fundamental concepts behind message queues and their usefulness in various queueing systems. Message queues are integral to event-driven systems, where information is transferred between parts of an application or across different technology stacks. The primary delivery guarantees for message queues include at-least-once, at-most-once, and exactly-once semantics. Ordering and FIFO guarantees have implications on sequencing, parallelism, and performance. Patterns for fan-out and fan-in are also discussed. Various popular queueing systems like AWS SQS, Google Pub/Sub, Apache Kafka, RabbitMQ, etc., are briefly compared and their specific features explained.
TODO
Negligence by experts in the early response to COVID-19 - Journal of Medical Ethics blog:
The World Health Organization (WHO) initially stated that there was no clear evidence of human-to-human transmission of the novel coronavirus in January 2020, contradicting later findings. Anthony Fauci, former Director of the National Institute of Allergy and Infectious Diseases, acknowledged that the lab-leak hypothesis is not a conspiracy theory. Virologists knew about unusual features in the SARS-CoV-2 virus, suggesting potential laboratory creation. There has been debate over whether the original virus strain came from natural spill-over or accidental lab-leak. The article emphasizes the need for transparency and reforms to prevent future pandemics by promoting open communication among virologists.
Remote: Windows 3.11 Administrator (m/f/d):
This article discusses the continued use of an older Siemens driver interface system running on Windows 3.11 in trains, with some mention of its use by Deutsche Bahn. It seems that a third-party supplier is trying to keep these systems functional and updated. The article highlights the challenges involved in maintaining such outdated systems, including potential security risks and compatibility issues with modern technology.
Nick's blog / No more magic, please!:
This article discusses the shift towards configuring tools and services from third-party infrastructure vendors rather than focusing on writing application code in modern programming. The author argues that understanding the „hard way“ or base case is essential for judging whether these products make life easier. By learning how to do things manually, developers can gain a deeper understanding of the systems and tools they use, ultimately leading to better judgment when choosing managed options.
The rooftop solar industry could be on the verge of collapse:
This article discusses the current issues and challenges faced by the solar „boom“ and „bust“ in California, particularly focusing on PG&E's influence over the energy pricing. It highlights how the high wholesale cost of electricity has contributed to a surge in solar panel installations, as customers seek more affordable alternatives. The article also touches upon the recent legislation that impacted excess power generated by solar customers and how it may create a „war games“ situation for customers. Overall, the piece raises concerns about the financialization of the solar industry and its potential collapse.
Residential Solar Is In Trouble:
10 years ago, solar panel sales involved selling panels directly; now, it involves financial products such as leases or loans. Many customers have reported being misled by salespeople regarding the terms of these agreements and the value of solar panels. Recent court cases and lawsuits are starting to pile up, highlighting potential issues in the residential solar industry. The industry's future remains uncertain, with some analysts predicting a period of contraction before it can become more affordable in the US.
Why You’ve Never Been In A Plane Crash—Asterisk:
The article discusses the tragic crash of USAir flight 1493 at Los Angeles International Airport in 1991, which resulted in the deaths of 35 people. The disaster occurred when First Officer David Kelly failed to notice a small commuter plane on the same runway and collided with it during landing. The article examines the factors that contributed to the accident, including the challenges faced by air traffic controller Robin Lee Wascher. It highlights how just culture principles were applied in the investigation, which led to significant safety improvements in the aviation industry.
The article discusses the author's experience with their Tesla Model 3 and highlights both the great features of the car, such as its design, silent driving, and integration with charging networks, as well as several issues they have encountered with the software updates, keyless entry system, full-self-driving mode, and connectivity. The author also questions Tesla's leadership under Elon Musk and suggests that fundamental change is needed for Tesla to succeed in the long run.
Writing - Blog - TruthsAboutSuccess:
This article discusses various truths regarding success, such as people convincing themselves not to do something due to exaggerated risks and effort needed, the common issue of unfinished projects among programmers and artists, quality being an important factor in work, effective marketing, Pareto principle's 80/20 rule, Matthew effect of cumulative advantage, and how success is typically iterative. The author concludes that only a small percentage of the population will achieve success due to these factors combined, and further explores the idea of plotting this against the world's population and geographic history.
Die unglaubliche Macht der BILD (Video):
The video discusses how BILD has been criticized for its sensationalist journalism that often prioritizes scandals over more serious news topics. This focus on tabloid content may contribute to a decline in overall quality of journalism, as it can be seen as less credible or reliable compared to other newspapers. Additionally, BILD has been accused of promoting right-wing ideologies through its editorial choices and coverage, which some argue could lead to biased perspectives on political issues. Furthermore, the newspaper's aggressive marketing tactics have sometimes been criticized for being intrusive or manipulative in their attempts to attract readers. Lastly, BILD has faced accusations of plagiarism and copyright violation due to similarities between articles published by other newspapers without proper attribution.
Alter, Zyklus, Sport: So beeinflussen sie, wie fruchtbar du bist (video):
Die vorliegende Analyse behandelt das Thema der weiblichen Fruchtbarkeit und die damit verbundenen Herausforderungen. Im Mittelpunkt stehen dabei verschiedene Aspekte wie das Alter, körperliche Fitness, Lebensstil, Umwelteinflüsse sowie medizinische Fortschritte und deren Einfluss auf die Möglichkeit einer Schwangerschaft.
Zunächst wird das kritische Alter von 35 Jahren thematisiert, welches in der Gesellschaft häufig als Ende der weiblichen Fruchtbarkeit angesehen wird. Die Analyse betont jedoch, dass diese Annahme auf veralteten Daten beruht und die tatsächliche Fähigkeit zur Empfängnis bei Frauen über dieses Alter hinaus bestehen kann.
Ein weiterer Schwerpunkt liegt auf der Bedeutung von Eizellenreserven, die bereits seit der Geburt vorhanden sind und sich im Laufe des Lebens kontinuierlich verringern können. Die Anzahl der Eizellen ist nicht nur durch das Alter beeinflusst, sondern auch durch Umweltfaktoren wie Strahlung oder Chemikalien sowie durch den Lebensstil. Rauchen und übermäßiger Sport wurden als negative Einflüsse identifiziert, die es erschweren können, schwanger zu werden.
Die Wahrscheinlichkeit der Befruchtung einer Eizelle variiert ebenfalls mit dem Alter und kann durch den Menstruationszyklus beeinflusst werden. Die Analyse betont zudem die Rolle von männlicher Fruchtbarkeit und dass etwa 50% aller unerfüllten Schwangerschaften auf Probleme beim Mann zurückzuführen sind.
Zuletzt wird das Einfrieren von Eizellen als mögliche Option für Frauen diskutiert, die ihre Fruchtbarkeit erhalten möchten, aber aus verschiedenen Gründen keine natürliche Schwangerschaft erreichen können. Die Kryokonservierung kann dabei eine wertvolle Option sein, um später noch schwanger zu werden.
Die Analyse liefert somit einen tiefgehenden Einblick in die Komplexität der weiblichen Fruchtbarkeit und zeigt auf, dass es neben dem Alter zahlreiche weitere Faktoren gibt, die eine Rolle spielen können. Eine umfassende Betrachtung dieser Aspekte ist entscheidend, um die Chancen einer Schwangerschaft realistisch einzuschätzen und gegebenenfalls medizinische Hilfe in Anspruch zu nehmen.
Breaking Bitlocker - Bypassing the Windows Disk Encryption (Video):
The video is about a technique to steal the BitLocker encryption key from a laptop using a Raspberry Pi. The speaker starts by introducing BitLocker, a full-disk encryption system Windows that's meant protect data theft or exposure lost devices. Despite having TPM, a trusted platform module on his laptop, he able decrypt its data during boot. He explains process of BitLocker boot, where different components hash their configurations to decrypt partition. The key stored in clear text by the TPM after unsealing it CPU. To steal key, he needs access LPC bus between processor and TPM. Without soldering wires directly, he finds unpopulated connector on main board with four data lines and frame signal but no clock. He creates prototype to decode TPM transmissions without clock signal using a simple logic analyzer. Finally, he designs PCB with pogo pins for Raspberry Pico costing less than $0. With this setup, he pushes adapter down as system boots, gets the key in less than 5 seconds and decrypts SSD using open-source tool DiskLocker. He mentions similar attacks, Microsoft's vague countermeasures, recommends pre-boot TPM protector through group policy, and notes that FTPMs are also vulnerable. The video concludes with information about Hackstreet an online learning platform for security courses.
Temu: So nutzt die Plattform Steuerlücken aus (Video):
Die Themen des Videos umfassen verschiedene Aspekte der internationalen Logistik und des Online-Handels, insbesondere im Kontext von Zollkontrollen und Steuergesetzen in Europa. Im Fokus stehen dabei die Herausforderungen für Zollbeamte bei der Bewältigung einer Flut von Einfuhrsendungen aus China, die oft als kleine Pakete deklariert werden, um Zollgebühren zu vermeiden.
Ein weiteres zentrales Thema ist das sogenannte „TemU-Modell“, welches eine Revolution im Onlinehandel darstellt. Hierbei handelt es sich um chinesische Plattformen wie Temu und Shein, die als Vermittler zwischen Produzenten in China und Kunden in Europa agieren. Sie versenden die Waren direkt per Luftpost nach Europa, wobei sie selbst keine Zollgebühren zahlen müssen, da diese unter 150 Euro liegen. Die Zollgebühren werden dann auf den Endverbraucher umgelegt und von den nationalen Postdienstleistern in den jeweiligen Ländern erhoben.
Das Problem hierbei ist jedoch, dass viele dieser Produkte nicht den angegebenen Wert haben oder gefälschte Markenware sind. Die Zollbeamten stehen vor der Herausforderung, diese Fälle zu erkennen und zu kontrollieren, insbesondere da sie oft als kleine Pakete deklariert werden, um unter dem Wert von 150 Euro zu bleiben.
Ein weiterer wichtiger Punkt ist das sogenannte „Import One Stop Shop“ (IOSS)-Verfahren, welches dazu dienen soll, Umsatzsteuer in der EU einheitlich zu erheben. Dieses Verfahren ermöglicht es Unternehmen, die Ware aus Drittländern wie China importieren, die Einfuhr-Umsatzsteuer nur einmalig anzumelden und zu bezahlen, unabhängig davon, in welchem EU-Land sie ihre Waren verkaufen.
Die deutsche Steuergewerkschaft kritisiert dieses Verfahren jedoch bereits seit längerer Zeit als schlecht umgesetzt und kontrolliert. Insbesondere fehlt es an einer digitalen Vernetzung zwischen den Ländern, was zu Schwierigkeiten bei der Kontrolle führt.
Zusammengefasst geht es in dem Video also um die Herausforderungen für Zollbeamte und Steuergesetze durch die zunehmende Globalisierung des Online-Handels, insbesondere mit chinesischen Plattformen wie Temu und Shein. Es werden verschiedene Aspekte der Einfuhrkontrolle und -besteuerung beleuchtet sowie das Problem gefälschter Waren und mangelnder Transparenz im internationalen Handel diskutiert.