I run playit.gg. Abuse is a big problem on our free tier. I’d get https://github.com/projectdiscovery/nuclei setup to scan your online endpoints and autoban detections of c2 servers.
Thanks for sharing this. I run packetriot.com, another tunneling service and I ended up writing my own scanner for endpoints using keyword lists I gathered from various infosec resources.
I had done some account filtering for origins coming out of Tor, VPN networks, data centers, etc. but I recently dropped those and added an portal page for free accounts, similar to what ngrok does.
It was very effective at preventing abuse. I also added mechanism for reporting abuse on the safety page that's presented.
Our services were used for C2 as well. I investigated it a bit but eventually decided to just drop TCP forwarding from our free-tier and that reduced our abuse/malware reports for C2 over TCP to zero essentially.
One path I looked at was to use the VirusTotal API to help identify C2's that other security organizations were identifying and leverage that to automatically take down malicious TCP endpoints. I wrote some POCs but did not deploy them. It's something I plan on taking up again at some point next year.
Want to chat on discord? Maybe we could combine efforts to try and stop people abusing our services :). We have a few vendors sending us automated reports, maybe I could open it up for multiple projects.
Fortunately or unfortunately, the New York Times is now a gaming/recipes company with a newspaper attached to it.
Probably mostly a good thing now that I think about it - it moves the paper closer to the model of 20th century journalism (a local quasi-monopoly on news gathering and distribution funded by advertising) that was, for all its faults, pretty fucking good in retrospect.
Sure, I'd love for quality journalism to be sustainable, but that's no reason to keep ourselves ignorant while it isn't sustainable, a situation which may or may not end in our lifetimes.
Also, this is the NYT we're talking about here, the outfit that promoted the fiction about "weapons of mass destruction" in Iraq and doxxed Scott Alexander while insinuating he was a Nazi. It's not a good choice for a poster child for "quality journalism".
So he received the checks and mailed them to his bank but they were intercepted in the second leg and cashed out. Sounds like the fault is with the banks that cashed out the checks without adequate verification.
Highly recommend clickhouse. You can set the partition key to be based on date and delete old data in chunks. Makes life really easy. Also found it much more performant than timescaledb out of the box. Not sure about hosted options but can imagine that translates to better performance for the dollar.
I think this is about preventing sanctioned countries or individuals using US technology we don't want them to have access too (like China not having modern GPUs). That goal seems reasonable though there's always a fear that the law is way broader than the high level intent. Why would it be "an absolute nightmare" if it's so easy to migrate?
That's the stated goal. The actual goal is more likely complete knowledge of any person using IaaS service whether domestic or foreign and what they're up to.
I meant an absolute nightmare of a bill in general and for the IaaS providers. The US is winning the AI race because of their open ecosystem and capability to execute and these types of things hurt that bad.
I read the document a bit, it seems like this is essentially saying that services like AWS need to know the identity of their customer if they suspect they are a foreign entity.
I don't think this would cover VPNs or internet access, mainly just people spending lots of $$ on compute. Is that correct? If so it seems reasonable. If a non US group is spending lots of money using US technology to develop an AI model I do think that falls under foreign trade and should be documented.
Sounds like a smart way to build a high quality dataset of captioned ASL videos while also providing a great service. Guessing in 2 years they’ll have a decent ML model.
I’m not saying they won’t do that but Apple has been committed to accessibility in a way that no other company comes close to for decades. It’s in their core DNA and something their CEOs have said they will do even though the return on investment doesn’t really exist. Though I think overtime, it will.
I wish “accessibility” wasn’t such a dirty word for most people (thinking it’s only for “disabled” people, or people with a problem). Accessibility is for everyone and I encourage people to dig into that section of their phone settings. Most people will be surprised at what is there and that there are probably 1-2 things at a minimum that they might be interested in turning on for themselves.
I've seen more people using iPhone accessibility features without "needing" them than I have with people they're supposedly designed for. Having the rear light flash for notifications was a huge one a couple of years back, which I mostly saw out in nightclubs. (perfect application, if a bit annoying to get flashed in the face a few times a night.)
People using that floating assistivetouch button when they have a damaged screen/home button was huge too.
I think most non-technical people either don't know they're there or view them as hidden extra features. (which they kinda are, for things like mouse support)
I'm surprised to hear that "Apple has committed to accessibility in a way that no other company comes close to for decades" because Microsoft has already been doing that for over a decade, and is by far the most used OS for accessibility reasons.
Apple is actually pretty behind in accessibility on desktop from what I've seen. Their apple designed peripherals (kbb/mouse/etc) are extremely anti-accessible and seem to be designed for the youngest and coolest crowd with zero thought for anyone with any disability. Unlike Microsoft, they do not sell any accessibility or disability focused peripherals. And their OS doesn't make accessibility a first class experience.
Third party support for hardware and software is massive for accessibility, and OSX is notoriously bad for third party support. Major third party peripherals from the biggest companies often have pretty bad support, and so the accessibility minority gets the short end of a short stick on OSX.
> I'm surprised to hear that "Apple has committed to accessibility in a way that no other company comes close to
Blind users who want to use Windows most often end up needing to pay over a thousand dollars for a JAWS license, since the built in accessibility software isn't very good. Remote support from them costs an additional $200.
1: my understanding is that blind folks DRAMATICALLY prefer JAWS to the built-in OSX tools by an overwhelming margin, something like 9 to 10. That suggests that the OSX tools are extremely inferior if nearly everyone feels obligated to spend.
2: You can literally get a windows computer AND add $1000 license to it and still pay as much or less than a OSX computer. My M1 MBP cost well over $2000! You could put JAWS on a windows computer for $1500 or less. Just pointing out the extreme, extreme cost difference for accessibility users with OSX vs Windows! You can't even get into OSX for under $1k these days, and even then, it's rough and you should spend more.
Your claim was that Microsoft is as committed to accessibility as Apple is.
> I'm surprised to hear that "Apple has committed to accessibility in a way that no other company comes close to for decades" because Microsoft has already been doing that for over a decade"
The accessibility features built into Windows are just terrible, so your premise doesn't track.
Also, Amazon was selling an M1 Macbook Air for $750 this week, so you can get the hardware and the software cheaper than just buying the additional software you would need to make Windows at all viable for a blind user.
>The accessibility features built into Windows are just terrible, so your premise doesn't track.
Low effort quoting empowering false arguments. I'm disappointed in you.
I also said:
>Third party support for hardware and software is massive for accessibility, and OSX is notoriously bad for third party support. Major third party peripherals from the biggest companies often have pretty bad support, and so the accessibility minority gets the short end of a short stick on OSX.
And arguably "third-party support" was the biggest plank in my entire argument and the core problem with accessibility in OSX: worst-in-class support for third party hardware and mediocre support for third-party software.
To ignore the largest part of my argument to target an intentionally misunderstood snippet is intellectual malice, completely unserious, and undeserving of a serious reply.
Please re-read my comment which extensively discusses hardware, peripherals, price, and software (both first-party AND third-party support) if you want to have a serious discussion with me.
Say what you want about Apple, but as someone with unilateral hearing loss I can tell you this is absolutely not true. Literally out of the box Apple products for at least the last decade have specific features such as a basic sound channel balance (missing from Xbox, unsure about Windows) and best in class hearing aid support (a third party peripheral). Reliability and ease is important for these features and I don’t think buying add ons from Microsoft is remotely in the ballpark.
iPhones are essentially the only smartphones with enough accessibility features to be used by the blind, I suggest you watch a video on it because it’s quite fascinating. What do you find anti accessible about the apple peripherals? I’ve also had some experience using VoiceOver and found it acceptable.
ASL does not have a 1:1 correspondence with spoken language and it uses a large amount of "short hand" and "place holders" for various situations. Throw in fingerspelling, which many signers can do at a very fast rate, and I strongly doubt the ability of a fixed location camera to accurately read an ASL conversation at any useful level.
Why would a profit seeking engine not automate this? When was the last time any company at thr FAANG level did something "nice" just to be nice? There's always a hockey stick graph somewhere.
