What an unhinged rant. Even 30 seconds after posting I can barely understand my point. I’ll leave it there unedited though.

The root cause of this issue that they identify, is 100% the kind of AI that they’ll build for this situation.

Old mate wants to use it to keep people on their best behaviour. The kind of subjective wording that whatever he doesn’t like, is the exact reason people lie in court.

Power to that thought process through systemising it, legitimising it, is exactly part of the problem.

What’s that American who said lies about the eating cats then justifying it by saying “I’d lie if it got the American public to wake up”. Let me get the quote…

https://www.mediaite.com/news/remarkable-confession-jd-vance-absolutely-floors-observers-with-comment-that-hes-been-creating-stories-about-migrant-pet-eating/

If I have to create stories so that the American media actually pays attention to the suffering of the American people, then that’s what I’m going to do.

Yep. It’s not infallible, it’s intentional. Intent goes into the creation of systems and implementations. These are the kind of people that want these systems. They’re justified in their own minds.

So to close the loop you linked that article and it’s point was:

More than half of wrongful convictions can be traced to witnesses who lied

Don’t give them reason for more ways to do so. Don’t give them legitimacy. That’s deterministic. It’s intent. It’s not failed if it worked. Your opinion on a system which is failed or fallible is not the same as the Oracle hocho who wants to be God.

They’re not sharing your values, morals, ethics or compassion.

I saw a sign on each street light on a bike path in my town that said “these street lights use aluminium cabling because the copper was stolen”.

Your plan will work.

Without a call to action, this is just an insult.

Bleeping computer was blocking my vpn but that also sounds common. Not only is there heaps of controls through conditional access policies where you can use device compliance policies and mass download defender for office 365 rules to detect these things, Microsoft also allow a bunch of ways to circumvent that through publishing enterprise apps and leave it to you not to lose your keys. I use one such app a lot called pnp powershell so my powershell can access basically everything and do anything so I can script largely migrations and audits of those migrations into sharepoint. While I do remove that app at the end of my projects, most people just move on.

Of course pure speculation. It’s just not even hard to either footgun yourself, and fortinet have been known to be shooting themselves in the foot, even assuming they tried to put controls in, in the first place.

I’ll read the actual article when I get home to see how impacted I will be though. As a customer, seller and with certifications. Not to mention, maybe there’s something for me to learn about the whole thing anyway.

I deploy so many of these things. I don’t even know what to say.

Fortinet as a security company is like asking a sieve to hold water.

The amount of cvss 10 scores show they’ve got the high score.

If they protect their own network with Fortigate devices no matter the utp atp whatever, they’ve probably been breached for a while.

Hard not to be cynical.

Yep, between two very easy to ride bikeways and is almost a trap with a lure of “if you survive at least you can be safe after” meanwhile both drivers and cyclists struggle down that compressed corridor.

I occasionally watch random Brisbane bicycle YouTube despite not owning a bike like this guy https://youtu.be/DIFfss90y6U?si=ZtOClyDzPrAVJuWr

I appreciate his ranking system. I can’t help but wonder if it’s the same Chris.

This is no different to me having a email dedicated to searching for a house to give to real estate agents and someone saying “I don’t think it’s legal that a house has an email”. It was frustrating reading up until your comment that people just didn’t get it.

https://www.theverge.com/2022/8/21/23315513/google-photos-csam-scanning-account-deletion-investigation

Google looks. Google reports. Even if you did nothing wrong you’re guilty until you prove innocent and even then you’ll never get your account back.

Well luckily the article addresses this point in the very third sentence!

“The CCA [Cost Cap Administration] confirms that although Alpine Racing SAS and HRC [Honda Racing Corporation] have both been found to be in procedural breach, neither have exceeded the cost cap level,” the FIA said in a statement.

They didn’t breach the cost cap.

Yeah as a sysadmin I’d also like to ensure casual readers note that windows 11 22h2 is EOL in Ends in 4 weeks (08 Oct 2024).

https://endoflife.date/windows

Please don’t run windows without security patches. Every month there’s about 4 active exploited zero day security vulnerabilities finally getting their patch. https://www.bleepingcomputer.com/news/microsoft/microsoft-september-2024-patch-tuesday-fixes-4-zero-days-79-flaws/

Each month past end of security patch releases just grows your exposure. On Windows and Linux alike.

Coming in Windows 11 24h2 is live patch, Microsoft’s catch up to Linux (a decade late).

They seem like fully conflicting ideals. Sometimes technology is not the answer. Sometimes non technical controls are.

Besides, by the time the control for instagram is in, nobody will be using it under 30. My partner just told me “instagram really is our parents platform” while showing my mum’s friend started following her. My mum and her friend are both 70.

Applying it further gives all kinds of bad vibes where platforms need to check your ID like a Brisbane night club, except these aren’t Australian businesses. Tiktok forced to comply, if they did, validating that you’re 18 via a digital license that the governnent authenticates Tiktok requested your details and now knows you went via link ‘clickforabortioncontrol.track.tiktok.com’ since they’ll need to reply back to that url ‘yeah they are 14+ bro’ before you get in.

What a distopia.

BTW I’ve got a link for you for how ID got complicated that I configure: https://stack-auth.com/blog/oauth-from-first-principles this explains how to securely without leaking or impersonation, authenticate a user from a central federated identity management (like an online ID would need).

There are smart people, sure. But I’ll tell you it won’t be the first try, or the second that’s correct.

Security is so complex that the smartest people often fail. Odds are stacked, privacy needs security. Failure in security results in privacy being lost.

Anyway I’m in agreement that it’s a horrible world out there with real harm. But mandating less privacy is unlikely to result in a better place, in fact it’s almost guaranteed to be worse and create more harm.

Today’s justification for digital identity and state tracking of your browser history: “Think of the children!”.

https://johnmjennings.com/an-important-lesson-from-bullet-holes-in-planes/

The responses needs to be contain representation at least equally to non Firefox people who no longer care to answer a poll about a product that they don’t use. Why? Only current users are going to answer the poll, not the people with the cuts and pain that forced them back to Chrome or safari. Asking survivors how to reinforce survival actually doesn’t solve for why do many people off board Firefox.

Frankly you should ask people like my 60-70yo parents why chrome not Firefox. You’ll learn more from that than the corrected responses of people who loudly have preferences but at the end of the day would stay either way. My parents tried Firefox, but then left it. Although they only tried from insistence from their son.

PS: I agree with the poll. I don’t want a chat bot either. If I did, I’d install a plugin that integrates once of my own choosing. Given the availability, privacy, and ease of lmstudio I’d rather leave it in its own place outside the browser and network. I don’t know how those like my parents feel about a bot that can probably answer their questions. I also doubt they care. Maybe it would help them ask questions they’re too embarrassed to ask friends and family for. Usually how to questions they’ve asked dozens of times. But that’s super dangerous.

I spent like 20 minutes self hosting and running over tailscale so traffic is always private… Never had an issue. I’ve got over 20 devices accessible on it.

Easy to remote register over ssh just by sending the installer plus running with server name plus key, then setting a static password.

I still think gaming wide moonlight is great though. You won’t really regret that.

Great link.

The hand-etched apology will not appear on the company’s actual devices come global launch

Luckily the article addresses this.

Other then legacy and uefi does it have a CSM compatibility support mode? An option to enable usb initialisation before bios? Eg wait for usb initialisation?

Some “boot faster” options kind of reorder boot initialisation to a point where it’s not holding the system back.

Though I’m really running out of suggestions… I can imagine you’re pretty frustrated. I know my Dell laptop was a pain to get the right settings to get usb to boot and the stupid 100db beep to silent on boot interruption.

And you probably confirmed that live boot worked too I assume.

In the actual bios, can you see a boot order and see uefi for Windows/whatever is on your internal disk? But not any other entries?

I suggest a few more things:

Try a different brand usb. Different motherboards sometimes don’t support some usb brands. In fact, a Lenovo server I rebuilt refused to boot off certain usbs.

Some motherboards don’t initialise boot off some usb ports. Sometimes the additional ports are on another controller and initialise too slow.

Just try a straight working Ubuntu live boot usb to remove any ventoy from equation. Ubuntu has real signed uefi (and no shim) granted by Microsoft. I think that’s how it works, uefi is a mess.

Try to start isolating all the different factors, and there could be more. It doesn’t necessarily mean anything definitive if it works on another machine.