What an unhinged rant. Even 30 seconds after posting I can barely understand my point. I’ll leave it there unedited though.

The root cause of this issue that they identify, is 100% the kind of AI that they’ll build for this situation.

Old mate wants to use it to keep people on their best behaviour. The kind of subjective wording that whatever he doesn’t like, is the exact reason people lie in court.

Power to that thought process through systemising it, legitimising it, is exactly part of the problem.

What’s that American who said lies about the eating cats then justifying it by saying “I’d lie if it got the American public to wake up”. Let me get the quote…

https://www.mediaite.com/news/remarkable-confession-jd-vance-absolutely-floors-observers-with-comment-that-hes-been-creating-stories-about-migrant-pet-eating/

If I have to create stories so that the American media actually pays attention to the suffering of the American people, then that’s what I’m going to do.

Yep. It’s not infallible, it’s intentional. Intent goes into the creation of systems and implementations. These are the kind of people that want these systems. They’re justified in their own minds.

So to close the loop you linked that article and it’s point was:

More than half of wrongful convictions can be traced to witnesses who lied

Don’t give them reason for more ways to do so. Don’t give them legitimacy. That’s deterministic. It’s intent. It’s not failed if it worked. Your opinion on a system which is failed or fallible is not the same as the Oracle hocho who wants to be God.

They’re not sharing your values, morals, ethics or compassion.

I saw a sign on each street light on a bike path in my town that said “these street lights use aluminium cabling because the copper was stolen”.

Your plan will work.

I spent like 20 minutes self hosting and running over tailscale so traffic is always private… Never had an issue. I’ve got over 20 devices accessible on it.

Easy to remote register over ssh just by sending the installer plus running with server name plus key, then setting a static password.

I still think gaming wide moonlight is great though. You won’t really regret that.

Other then legacy and uefi does it have a CSM compatibility support mode? An option to enable usb initialisation before bios? Eg wait for usb initialisation?

Some “boot faster” options kind of reorder boot initialisation to a point where it’s not holding the system back.

Though I’m really running out of suggestions… I can imagine you’re pretty frustrated. I know my Dell laptop was a pain to get the right settings to get usb to boot and the stupid 100db beep to silent on boot interruption.

And you probably confirmed that live boot worked too I assume.

In the actual bios, can you see a boot order and see uefi for Windows/whatever is on your internal disk? But not any other entries?

I suggest a few more things:

Try a different brand usb. Different motherboards sometimes don’t support some usb brands. In fact, a Lenovo server I rebuilt refused to boot off certain usbs.

Some motherboards don’t initialise boot off some usb ports. Sometimes the additional ports are on another controller and initialise too slow.

Just try a straight working Ubuntu live boot usb to remove any ventoy from equation. Ubuntu has real signed uefi (and no shim) granted by Microsoft. I think that’s how it works, uefi is a mess.

Try to start isolating all the different factors, and there could be more. It doesn’t necessarily mean anything definitive if it works on another machine.

The application yes, but the programmer? That requires network, api and a sent packet or more.

Just because you run a binary doesn’t mean a server across the Internet knows you.

Users though, disregard my advice. Assume what you run is running foreign remote code that could encrypt and ransom you.

I bet to Japanese people it’ll age weirdly with the references it kept making to politicians and actors of the time.

I really enjoyed it when it wasn’t trying to be a shonen jump anime. My favourite episodes like the Nabe Shogun bottle episode, or the several lazy animator episodes either with the drawing quality rock bottom or the paralysis with no animation at all.

I used to watch it on a service called something like animeftw or something that’s no longer around on an xbox xbmc setup. So much nostalgia when I see screen caps.

Hmm, so, policy in our office is a clean desk. Before you jump to conclusions, it’s because our secured area and office occasionally has people come through that should absolutely not see what information we have on our desks. This requirement is a compliance issue for our continued contracts and certifications.

Our work from home policy hasn’t addressed this issue, but it sounds like it’s a clear gap. Your neighbour coming around for a cup of tea absolutely should not be able to see any work related information.

My assumption is that someone has considered this kind of aspect and had a check to confirm that they’ve done diligence by asking you to reveal your working space. A space the companies sensitive information would be visible. Actually you too should maybe not be looking at your wife’s screen nor materials on her work desk. Depending on the situation.

Either way, policy comes first so perhaps her employment agreement or employee handbook would reveal more.

Consent is important

It’s PKI, public key infrastructure. It’s secure so it’s used in many applications. Including ssh using keys.

Ah yep that makes sense though I’m following now

Oh okay, I see… Or rather, I see I don’t understand lol

Wait so, if your kettle fails, your fridge loses power for example?

For me I want to know how much frame latency there is since I’m suspicious and I want to try things to see the effect and I just don’t know how to get that information in an OSD like I can with msi afterburner.

If someone knows what can do this in Linux, please reply!

Instead I just stopped all competitive and cooperative gaming. Which is a bit of a shame. Sometimes I’ll load up windows to join friends but usually by the time I’ve updated whatever game I’ve gotten over it.

Don’t get me wrong, hiccups aside I’m very happy which is why I’m in Linux most of the time. But it’s not always a wonderful world.

That would surely only power a single circuit (due to isolation) and if you have to be selective, a critical circuit like your fridge isn’t really likely to have a wall port on the same circuit near where you’d happily have your fume emitting generator…

I’m no electrician but I’ve generally installed automatic transfer switches (ATS) for mine site server cabinets that then power UPS racks and the transfer switch automatically or manually can switch from mains to generator if mains power goes out (which at a mine is all the time). I feel like a similar and safe system must exist for homes. Or something no different to switching solar to grid and back.

But again, not an electrician.

This will be able to do cross site (apps) information collection within other sites (apps) in this profile. The way this works is one of many, and complicated so: https://blog.mozilla.org/en/products/firefox/cross-site-tracking-lets-unpack-that/

The idea of profiles is to stop this behaviour and other behaviours through isolation. Along with other practices makes up a privacy-in-depth (layered) approach. It doesn’t solve everything.

For example if you are in the same house sharing an internet connection, it is possible to say “at least one outstation in this house (IP) are interested in ‘x’ and therefore I should target everyone in that house because people who live together are interested in similar things”. Even if you isolate, you could still teach a data hoarding company like meta you like something simply by them by necessity needing your IP to communicate.

Some people try to say ‘I’ve got a VPS with a VPN to communicate all traffic through’ but that doesn’t add any privacy, your exposed VPS with its IP is an IP only for you and still all collected information about you would be able to be thumbprinted to that IP across many services (eg instagram whatsapp and Facebook). A public VPN provider in this case adds a layer of obfuscation since you can change your IP rapidly and it’s an IP that’s shared with other unrelated users. Which is exactly why many services like reddit are banning access from them under the guise of “oh training data leaks from VPN, and we want to sell it” bs.

Anyway it’s a tough world out there to be private. I’m at an age where after 10 years without Facebook and I never had instagram, everyone knows I’m contactable via sms. It’s not secure, it’s barely private, but I don’t really “chat” except at the pub. So that’s where they ask me to visit. Lol.

I keep asking the pets for their owners secrets but they don’t tell me? I’ve tried pats, compliments and treats? Am I doing it wrong? How are you getting them to tell you about their owners?

A software shouldn’t use passwords for tls, just like before you use submit your bank password your network connection to the site has been validated and encrypted by the public key your client is using to talk to the bank server, and the bank private key to decrypt it.

The rest of the hygiene is still up for grabs for sure, IT security is built on layers. Even if one is broken it shouldn’t lead to a failure overall. If it does, go add more layers.

To answer about something like a WiFi pineapple: those man in the middle attacks are thwarted by TLS. The moment an invalid certificate is offered, since the man in the middle should and can not know the private key (something that isn’t used as whimsically as a password, and is validated by a trusted root authority).

If an attacker has a private key, your systems already have failed. You should immediately revoke it. You publish your revokation. Invalidating it. But even that would be egregious. You’ve already let someone into the vault, they already have the crown jewels. The POS system doesn’t even need to be accessed.

So no matter what, the WiFi is irrelevant in a setup.

Being suspicious because of it though, I could understand. It’s not a smoking gun, but you’d maybe look deeper out if suspicion.

Note I’m not security operations, I’m solutions and systems administrations. A Sec Ops would probably agree more with you than I do.

I consider things from a Swiss cheese model, and rely on 4+ layers of protection against most understood threat vendors. A failure of any one is minor non-compliance in my mind, a deep priority 3. Into the queue, but there’s no rush. And given a public WiFi is basically the same as a compromised WiFi, or a 5g carrier network, a POS solution should be built with strengths to handle that by default. And then security layered on top (mfa, conditional access policies, PKI/TLS, Mdm, endpoint health policies, TPM and validation++++)