Welcome to Incremental Social! Learn more about this project here!
Check out lemmyverse to find more communities to join from here!

Car

@Car@lemmy.dbzer0.com

wiki-user: car

This profile is from a federated server and may be incomplete. Browse more on the original instance.

Car ,

The proportions on the person to the left

Car ,

Given they had access to plaintext passwords, I’d hope not

Car ,

This shit can destroy companies and tank its value

Leaving hundreds of contacts in limbo with no resolution has the potential to cost more than $17 million in legal fees and termination clauses.

Where the fuck is the board of directors and why are none of the shareholders revolting?

Car ,

Exactly. It’s not rocket appliances

Car ,

I've lived in both. The average people don't seem to care.

Older Texans might namedrop California at times when they're airing political grievances, but older people everywhere seem to have some casual "product of the times" prejudices against something.

Car ,

The bottom 20% of earners aren't likely to make the same amount in CA vs TX.

California's minimum wage is $16. Working 40 hours (hard on a minimum wage job for reasons) brings $640 a week. 10.5% of that is $67

Texas's is $7.25. 40 hours of that job is $290. 13% of that is $38.

In this bad example, a minimum wage earner in California pays almost double the tax than a minimum wage worker in Texas. It's a bad example for many reasons, including us not taking into account the extra spending power the California worker has after taxes.

Car ,

We have plenty of things to be old grumpy grouches about.

“Those banks ruined the American dream and we bailed them out!”

“Fossil fuel companies successfully lobbied the government to allow them to poison our planet in the name of profit!”

“Those Disney crooks consolidated all media and destroyed independent creative ventures!”

“Back in my day we could afford a house if we saved 10 years of earnings for a down payment and then took out a loan eventually totaling twice the value of the purchase price. You kids have it easy with your rental sleeping pods and low-monthly rate outdoors park subscriptions. You don’t even contribute to furniture or clothing industries because you don’t own a place to put any!”

Car ,

"Vote to participate in democracy! Here's some local voting resources"

vs

"Vote to protect our interests! Tell your representative that they are killing free speech if they don't listen to me"

Car ,

I’m not an economist but that makes sense to me.

What about a modified scenario:

A small island has three cupcake makers operating out of their homes: Meta, Alphabet, and Bytedance. Each has captured a section of the island’s market with cupcakes and at this point, there’s no real opportunity for growth. Meta can’t convince Bytedance’s customers to switch because they prefer other flavors. Meta would need to purchase one of the other cupcake companies in order to expand.

None of the cupcake makers are interested in selling their companies. They consider themselves elite and their successes feed into the CEO and shareholder perceptions of value and success.

Now, we consider that one of the cupcake companies is funded by a rich uncle from a different country. The island’s elders decide that the uncle’s influence is too great and orders Bytedance to sell its cupcake company or leave the island.

We’ve established earlier that people who like Bytedance cupcakes don’t necessarily want to eat Meta or Alphabet cupcakes, so if they leave the market, those customers may be gone for good. They may have a change of heart and decide that cupcakes of any flavor are fine, but they may also be angry that the government forced their favorite place out of business. In any case, Meta and Alphabet cannot rely capturing this segment of the market to grow.

Faced with the dilemma of possibly gaining customers organically or definitely gaining customers by purchasing their preferred product brand, I’d argue that the remaining companies may jump on the opportunity to purchase Bytedance before they are forced out. None of the cupcake companies were up for sale in a traditional sense before, so this was never a realistic path to achieve growth.

Car ,

I imagine the lack of voice support presents some compliance issues with emergency calls.

Car ,

More referring to selling a device classified as a mobile phone that might not be able to connect to emergency services without any tinkering. My google-fu is failing me now, but I'm trying to see what the actual requirements are, if they exist at all, to sell a mobile phone. All I'm seeing is that the radio shall connect to any available base stations during an emergency call regardless of subscriber status.

I don't know how the linux phone OS's are handling these kind of interactions with their baseband processing, if at all.

Car ,

The electric motors can be pretty tiny. The batteries are generally the packaging problem. They're heavy and lumping them all where the engine would have been in a vehicle will have severe impacts on weight balance and handling. Distributing them is best, but requires space that vehicles need to be designed around. You can put some batteries in the engine compartment and some in the trunk to keep things neutral, but that still requires giving up storage space and requires running a high voltage line throughout the vehicle to connect the battery banks.

Car ,

I feel like it isn't congress's job to do that. They don't have to share or repeat information that they are not experts on to the public. They can share their thought process and rationale for supporting legislation, but we shouldn't expect them to be perceived as technical experts. I bet that fewer than 10 congressional representatives can look at a portion of code and make an educated statement on what's going on and how authors may be performing abnormal operations or obfuscating other actions.

It's the job of the organization(s) that prepare the security briefing, and we've already been hearing this kind of thing in the cybersecurity field for years. Those in the know, know. Those not, tend to not believe it. Warnings about the potential for data harvesting and information operations via platforms like (and specifically) Tik Tok aren't new.

This is like public health information during COVID. Medical professionals have the training and experience to share their professional assessments, but large portions of the population were instead solely relying on politicians to deliver medical information.

Car ,

Exclusively available on Meta Quest 3

Car ,

Data harvesting is half of the problem. I have a feeling that congress could give two shits about the data harvesting as it’s almost literally everywhere in modern society and not in the interests of donors or the nationality security apparatus to remove.

The other half is the platform and its potential (hypothetical and actual) for use in information operations. TikTok has direct access to something like 160 million American devices. That rivals other social media giants like Meta who have some government liaisons and relationships embedded in their security teams. ByteDance to my knowledge does not have these relationships. This problem could just as easily apply to any other foreign platform if any were large enough to pose threats of this scale.

Car ,

Propaganda is effective. It’s at times silly, blatant, jingoistic, and offensive, but it has historically worked to influence public opinions.

I think you’re right, but saying the quiet part out loud. People don’t like to think they’re susceptible to scams and propaganda because they’re not that dumb or gullible. People still click on phishing emails…

Car ,

Only way you’re voting yourself out of the US is with your feet. There are no mechanisms to relinquish citizenship (and your vote, barring convictions) while remaining in the country permanently.

Car ,

The US isn’t a straight simple democracy, so you win I guess.

Car ,

That hasn't been the case for 50 years. Your rights are inalienable as long as there's some enforcement mechanism. All three branches have walked back certain rights in various forms in modern times.

Be the change you want to see; work in Federal service, get yourself elected for any local or Federal positions, or draft policy for lawmakers

Car , (edited )

They can talk about it if they want to, but we shouldn’t be using them as our only source of information. Curious on why politicians voted X instead of Y? Look it up! See what experts in the field are saying.

You shouldn’t rely on them to tell you why TikTok is a threat the same way we shouldn’t rely on them to inform us on why weakening EPA standards is good for the environment, why taxing foreign trucks is good for the economy, or why drawing voting maps to concentrate demographics is good for democracy.

These politicians probably know enough to make an informed decision if they care to seek out information. They don’t always have the time or desire to do this. If you believe this to be true even one in a hundred times, that covers a handful of politicians for every single piece of legislation that comes out, every single time.

The same way you may care about many things but only know a lot about a few subjects, they legislate everything and people act like they are the experts. Why assume they know what they’re talking about for every single topic?

Car ,

They largely don’t write the legislation. Lobby groups draft the materials and if we’re lucky, the congressional aides make a pass and clean things up.

You can search for why TikTok is dangerous. There are plenty of examples of how the application and platform are not being forthright with how they collect your identifiers and weaponize them for information operations campaigns.

As I mentioned earlier, the powers that be aren’t as worried about Facebook and the like because they’re US-based and have working relationships with law enforcement. Facebook has been used for the very campaigns that TikTok is being used for now, but a large difference is that another nation has near complete control over the platform.

Car ,

I'm not arguing against them explaining their rationale. I originally argued that they shouldn't be taken as experts.

Zuckerberg and Musk "get" to do these things because they are in the US, with majority US-based workers, running off US-based infrastructure. If any of these platforms are being used to facilitate attacks against the US, the government can choose any number of methods to step in and enforce compliance to mitigate the threat. That's it. This is about free speech in that not all speech is protected. If somebody uses TikTok to perform the digital equivalent of yelling fire in a crowded theater, the government sees a need to control it.

If Facebook was run and operated out of Tunisia, I'd expect these same conversations to be happening with them as well.

Car ,

The US government has been caught doing the same thing... poorly. You probably aren't going to find a lot of sources showing that the US is fighting these fights on Facebook and twitter, but you can read between the lines with interviews. In general, these kinds of things aren't performed out in the open.

Agree with you though. National security has trumped privacy. 9/11 changed a lot of things in a bad way.

Car ,

Imagine if there were actual, tangible concessions for this. I bet if the administration moved to disestablish TSA citing how effective surveillance is, we'd have a lot of very confused celebration and "mission accomplished" banners

Car ,

The government is defining this to be reasonable search. Crisis averted! Please scan your iris on the way out of this thread.

Car ,

I always thought it wasn’t included by default to mitigate malware damage to a system. Malware needs to be just a little bit more advanced if it can’t hijack Powertools to do what it wants

Car ,

I would not say

any self-respecting malware writer will download [powertools] and…

I’m not as familiar with mass-market malware, but APT-level gear generally doesn’t try to make use of such easily observed events. The more network traffic malware appropriates, the greater the probability that it’s caught.

Simply put, Powertools puts several functions within arms reach for malware looking to stay under the radar. Without it, malware needs to bring more of its own code which increases footprint. Living off the land exploits in particular love the presence of these kinds of programs

Car ,

Discord‘s TOS only really applies when they feel like it.

Car ,

Those certainly are words, but how does this jump cut detection algorithm work?

Embedding an ad doesn't need to change any of the video stream information in a serious way. It's not like they're going to do something obvious like change the colorspace and encoding scheme several times just for ads, because that would provide artifacts for these types of mitigation techniques. And even if they did, how is that any different from changing the quality of the stream to continue serving video despite degraded or improved network connections? Google could decide to implement random quality changes and break this particular workaround.

Plus, if they're embedding ads into the data stream, how exactly is the metadata going to change? It's the same connection, served from the same location, over the same socket. It's not like sections of video need to have "AD" in the middle of their encoded data streams.

Car ,

I don’t know about that. Billion dollar company vs trillion dollar company isn’t as bad as 100k dollar developer vs billion dollar company.

Giants fighting giants don’t have the same ability to attrite each other.

Car ,

Piezo master race checking in

Car ,

I found for most CS-ish tasks 8GB is okay. I also bought an early M1 and haven't had too many problems outside of running VMs, which I expected. I purchased one of the stocked configurations at an Apple store, so there were slim pickings with 16GB of memory that weren't like double the price of the machine.

Car ,

We just got the 2019 cyber truck, so we’re only a decade or so away from the roadster.

Car ,

Taking jobs away from stalkers

Car ,

Even cheap cars now have hundreds of processors. Modules can throw errors, send the car into limp, or deactivate the vehicle entirely.

Plus, emissions.

It’s a different game now.

Car ,

Don’t take my word for it. Tear into any one of the dozens of black boxes in your car and take it apart. Analyze the chips soldered on the boards. You might get lucky and find all standard chips with information available from suppliers.

Try looking at the data going across any one of the several buses transiting your vehicle. OBD is easy. The others are usually encrypted and much higher speed.

Cars are legitimately complex. Don’t just listen to the manufacturers and scoff. Look up some research into breaking the communication protocols that MB or BMW use. Compare that with GM’s newest standard. Go ahead and practice your reverse engineering skills, because these things aren’t published.

Car ,

Yeah, Lemmy is usually pretty tech savvy, so this is kind of surprising.

It’s “some basic evidence and appeals to do some research to change your view” versus “I don’t think so and car manufacturers are just bad” with no real counter argument

Car ,

I’m not getting the feeling that you actually know what you’re talking about.

This isn’t a discussion about encryption, it’s about pairing modules. Encryption is absolutely necessary and is already used widely across the industry. It might not be transparent (open, published standards), but it’s there.

Illegitimate and low quality parts have always been a concern. You don’t seem like you are a car enthusiast, so go on any car forum or facebook group and ask about some fake wheels or eBay special turbos. You’ll get roasted and start a real stupid discussion on if knockoffs are great for the money or if you’ll die in a fiery wreck. These are simple physical objects which you can fake by casting a mould and pouring something vaguely metallic inside. Fake car electronics can be cheaply remade in a similar fashion. How do you know if a replacement ECU is actually taking in one of the hundreds of datapoints in order to calculate the exact fuel trim to safely use in the millisecond you’re polling? How do you know if your rebuilt or replacement transmission is equipped with the proper logic modules to not cause you to drop into first on the highway, causing you to destroy your engine and probably cause a serious accident?

Car ,

Idk person, encryption on cars has a valid place.

If nothing else, it increases the time to attack and own the system. Networked modules are more efficient and higher performing than old systems. This is the price of progress.

Just one example is the ECU. Old analog engines were crude and inflexible. Simple environmental changes would cause engines to run out of their efficient zones and dump more or less fuel than is appropriate for the conditions they’re experiencing. Modern engines take pressures and temperatures (from several locations) into account, along with throttle desired by the user and calculated load to change the engine parameters on the fly. This is why a modern Mustang can hit 30 mpg on the highway with 500hp and the 80’s model struggles with 20mpg and less power than a current Civic.

These ECUs can be the difference between safely driving and unsafe unintended acceleration into a truck in front of you. We haven’t seen any attacks which turn ordinary occupied vehicles into missiles… yet. I have absolutely no doubt that we will experience one in the next 10 years. Encryption and security may be the difference between this being a rare occurrence conducted by powerful nation state actors and something script kiddies can perform with a laptop and a weekend.

Car ,

I think the joke didn't take with a lot of people

Car ,

I would like to subscribe to more corporate monetization facts

Car ,

Improved by 28%, not at 28%.

That would be some awful idiocracy type of future and we’re not there… yet.

Car ,

Pretty much. This is one particular form of damage control for an attacker who has the keys to your system. I think there were more urgent security concerns that occur in the untrusted zone.

Car ,

This is a great example of good intention and awful execution.

Getting that label on a child’s toy should provide a parent with useful information. What’s the harmful chemical and where on the product is it located? Is it acid in the battery? Is it the grease between some moving parts that can end up in a kids mouth? Is it the paint on a high-wear surface?

Instead, we have labels that are on half of everything sold in stores with no easy way to find out what exactly manufacturers are referring to. It’s worthless.

Car ,

Reverse engineering of hardware is quickly becoming too complex for non-machine-assisted workflows. I’d imagine this type of destructive chip really only makes sense cryptology modules, but unless a designer can also manufacture the chip in-house or otherwise guarantee against supply chain attacks, this is a half measure.

Car ,

Imagine the feeling the straw begin to vibrate and get cold as liquid passes through your nose :(

Car ,

While more money has been thrown at the problem, the US still lacks the people. Quantity has a benefit over quality here if you have 1 blue force for every 15 red forces. Cyber attackers only need to get an exploit running once for success. Defenders need to stop exploits every single time.

Add on to that very strict requirements for US persons to be able to legally conduct offensive cyber actions (clearances) and relatively low pay compared to security research or information security careers, you quickly get to a point where you take what you can get, especially when you're down to 76% of your ideal manpower

https://breakingdefense.com/2023/08/how-dod-is-thinking-outside-the-box-to-solve-its-cyber-workforce-challenges/

Car ,

Why should the interviewee assume that?

This could very well be a test to see if the applicant has an idea of how a project scales or how they need to interact with other departments or track down compliance information. It could also test the applicant's ability to provide a sanity check to a boss's idea before they pitch something that the team can't actually do

  • All
  • Subscribed
  • Moderated
  • Favorites
  • incremental_games
  • meta
  • All magazines
    •