AtHeartEngineer

This definitely needs an alias overriding man lol

That’s a browser extension worth building

I’d argue that’s just a ripple effect of being a bad dev, not necessarily the tools fault, but I do get where you are coming from. But also vulnerabilities in some package in a container would be isolated to that container without a further exploit chain

Being for profit as a legal entity doesn’t necessarily mean they will exploit every angle they can to make a profit. When a company has to answer to shareholders, like when they go public or sell private share to raise capital, that’s when it becomes a real issue. It really depends on their bylaws and who’s running the organization otherwise.

“Where are they getting money to pay for sponsorships and what are their motivations”

Just some background on the cryptography going on:

Its a hash of a fingerprint of your iris that isn’t used for access, it’s used for Sybil resistance, which is a bit different. You wouldn’t use this to prove you are eligible to vote, only that you haven’t voted already for a specific election.

Under the hood, the iris scanning ball thing is just adding you to a membership registry. When you actually go to use your membership, you are generating a semaphore proof, which is a zero knowledge proof that you are in the registry with some nullification output so you can only participate in certain events some number of times (like voting once). You wouldn’t use this by itself to prove that you are eligible to vote.

Generating secret keys from public data (iris)

These aren’t exactly secret keys, but, yes, I agree. Also the Minority Report vibes weird me out.

They use a grounded faraday cage around it. Video on it where he touched on that https://youtu.be/fyai_kUYhLs

This is misleading, tech linked did an explanation about this the other day https://youtu.be/Jio-Wq11K80

That just would allow a malicious attacker to fake being the server, it doesn’t actually compromise the TLS session. So you are talking about a much more sophisticated multi stage attack that needs to be actively executed. This wouldn’t at all allow them to record traffic and decrypt later.

The certs authenticate that you are talking to the real server, the symmetric session keys that are usually derived from a diffie helman key exchange have nothing to do with certs. That’s two separate (but connected) parts of the transaction to build a TLS session.

I work in cryptography, and I guarantee if that’s true “some person you know who worked in government security” would not tell you if they did know, or they are pulling shit out of their ass. There have been so many people that have looked at or worked on SSL/TLS implementations (including some of my coworkers), any vulnerabilities would have to be pretty subtle or clever, and that would be kept highly classified. Quit making shit up or repeating bullshit you heard.

I have, if you are nice it goes fine

I think it’s pretty reasonable for a company as big as delta to wait a little bit to see how a patch rolls out before upgrading.

We need consumer privacy laws

Agreed, do endeavour, plain arch (maybe with something like arch install), or hard pivot and try nixos. Manjaro has never really been a good option.

That X is twice as much vram, which funny enough, is great for running ai models

This is much much harder though, and would risk exposing the vulnerabilities they are using, so they likely won’t use these methods unless it’s higher profile and involves some higher up govt entities. Your normal street crime cop shop won’t be able to do this.

Buying property. You can close in 30 days, and if you are buying a bunch of property, you can hire people out to handle things and speed up the process, and if you put offers on a ton of property, you could probably close on a lot of them in 30 days. If you are waiving around $100m you could make a lot happen.

That’s easy, buy all the real estate in an area that’s for sale, scarcity will drive up the value of the properties you have bought. Economics 101.

– This is sarcasm and is poking fun of wall street buying up all the property to be landlords, the world and economy are much more complicated than this… But, it is a quick way to spend $100m in 30 days

Good for him, I hope he is ok

ARM is not paltry, it’s in small/portable devices because it’s efficient, not weak.