People are hating on Powershell way too much. I don’t like its syntax really but it has a messy better approach to handling data in the terminal. We have nu and elvish nowadays but MS was really early with the concept and I think they learned from the shortcomings of POSIX compatible shells.

Fortunately, it was the imaginary half, dislocated from the real one

Every other doctor agreed

The 4k you find on streaming services can’t really be compared to the 4k you find on Blu-ray. It’s a different league. Turns out bitrate actually matters

Maybe if we curve the TV?

The difference is that tourists are not a somehow disadvantaged group. My livelihood isn’t endangered because I can’t go to a tourist spot in Spain somewhere without being heckled (though, when I actually was in Spain, everyone was nice, but Madrid isn’t that much of a tourist spot compared to others).

Also, in some cases, it isn’t “the rich” – I too love to point out the issues they cause – but sometimes, it’s just ordinary people hoping to make a quick buck buying up property to rent it out on AirBNB. Yes, it’s also rich foreigners getting property everywhere for themselves, which is a problem. But “the rich” don’t bother with AirBNB, they just build hotels, and these normally don’t compete with normal housing.

Raceism, specifically centering around skin colour and related features, is actually pretty recent and pretty Western.

If I may take a guess, it’s also because up until historically recently, larger groups of ethnicities didn’t know that other such groups existed. To be racist, you need to be aware of people you’d clarify as another race

It’s not like homophobia (or, say, racism) is unique to western civilizations.

It’s funny how the bigots insist that only what your birth certificates states is relevant for anything except for when they don’t like what it says.

Client data absolutely is encrypted in TLS. You might be thinking of a few fields sent in the clear, like SNI, but generally, it’s all encrypted.

I never said it isn’t, but it’s done using symmetric crypto, not public key (asymmetric) crypto.

Asymmetric crypto is used to encrypt a symmetric key, which is used for encrypting everything else (for the performance reasons you mentioned).

Not anymore, this was only true for RSA key exchange, which was deprecated in TLS 1.2 (“Clients MUST NOT offer and servers MUST NOT select RSA cipher suites”). All current suites use ephemeral Diffie-Hellman over elliptic curves for key agreement (also called key exchange, but I find the term somewhat misleading).

As long as that key was transferred securely and uses a good mode like CBC, an attacker ain’t messing with what’s in there.

First, CBC isn’t a good mode for multiple reasons, one being performance on the encrypting side, but the other one being the exact reason you’re taking about: it is in fact malleable and as such insecure without authentication (though you can use a CMAC, as long as you use a different key). See https://pdf-insecurity.org/encryption/cbc-malleability.html for one example where this exact property is exploited (“Any document format using CBC for encryption is potentially vulnerable to CBC gadgets if a known plaintext is a given, and no integrity protection is applied to the ciphertext.”)

As I wrote in my comment, I was a bit pedantic, because what was stated was that encryption protects the authenticity, and I explained that, while TLS protects all aspects of data security, it’s encryption doesn’t cover the authenticity.

Anyhow, the point is rather moot because I’m pretty sure they won’t get a certificate for the IP anyways.

Public key crypto, properly implemented, does prevent MITM attacks.

It does, but modern public key crypto doesn’t encrypt any client data (RSA key exchange was the only one to my knowledge). It also only verifies the certificates, and the topic was about payload data (i.e. the site you want to view), which asymmetric crypto doesn’t deal with for performance reasons.

My post was not about “does TLS prevent undetected data manipulation” (it does), but rather if it’s the encryption that is responsible for it (it’s not unless you put AES-GCM into that umbrella term).

Right, and for the challenge, you need to have access to a privileged port (which usually implies ownership), which you won’t get assigned.

Let’s Encrypt are rolling out IP-based certs, you may wanna follow its development. I’m not sure if it could be used for your forwarded VPN port, but it’d be nice anyhow

It shouldn’t be because you’re not actually the owner of the IP address. If any user could get a cert, they could impersonate any other.

I believe encryption helps prevent tampering the data between the server and user too. It should prevent for example, someone MITM the connection and injecting malicious content that tells the user to download malware

No, encryption only protects the confidentiality of data. You need message authentication codes or authenticated encryption to make sure the message hasn’t been transported tampered with. Especially stream ciphers like ChaCha (but also AES in counter mode) are susceptible to malleability attacks, which are super simple yet very dangerous.

Edit: this post is a bit pedantic because any scheme that is relevant for LE certificates covers authenticity protection. But it’s not the encryption part of those schemes that is responsible.

I don’t think they’re sensationalist, they just don’t sugarcoat the industry bullshit. And believe it or not, they need to make money from this, it doesn’t pay itself. It’s like saying newspapers should be free, or else informing the people isn’t their primary concern.

“A farmer wants the money. Giving the good away for free would be great if they just wanted to feed people, but that’s not their primary concern.” Can even play that game for nurses etc

It’s kind of an interesting phenomenon here. There was the news of the flight attendant this week who want allowed on the flight she was planned on because she was too drunk, so much in fact that she crashed her car on the way to the airport, and quite some people were basically “I think being drunk at work is fine”

It’s very much engrained in society still, I mean go out, drink, IDGAF, but don’t hit me with that “it’s actually good for you / this is culture / this world can’t be enjoyed sober” stuff. Quit lying and take some responsibility

The relationship between alcohol and stress is very complex, and if I’m not mistaken research shows that it can reduce resilience to stress. I didn’t find dedicated studies on the issue quickly though. The ones I did find stayed that alcohol consumption for stress relief is associated with a higher risk for alcohol use disorder.

Personally, when I was still drinking, I avoided this scenario and never drank when stressed because of that issue.

https://www.youtube.com/watch?v=4xU5yIH_P9I talks about the issue, I guess there are more out there and it’s not a scientific source. But maybe it’s a start

Also DXVK, though the period of time where DXVK existed and Proton didn’t is rather short (a little bit more than half a year).

Duh

I really don’t care about people not being sober as long as they can function correctly.

Regardless of the rest you wrote that I disagree with, she crashed her car on the way to the flight that she was removed from, blaming the steering. Not sure how that would qualify as “function correctly”

If they acted differently, they’d probably be liable for illegal activity that they proxy for (this is for example relevant for the DMCA safe harbor).

Anyhow, when on their abuse page, I have an option for “Registrar”, which is used for “DNS abuse”, among others.