IphtashuFitz @ IphtashuFitz @lemmy.world

Posts

3

Comments

885

Joined

2 yr. ago

I wonder how effective AC would be in many cases… I regularly see delivery vans from Amazon, UPS, USPS, etc. driving around with their doors open. In some cases it seems to be all about speeding up deliveries even by a few seconds, especially for Amazon drivers.

I suppose if they took breaks they could close up the truck and cool down, but that assumes they would have time for it…

Worked in a small Unix team under a broader IT department at a university. The manager of our team was awesome in part because his attitude was “I deal with all the university politics so you can focus on your work”. Anybody who has worked at a large university knows what the politics can be like.

The VP of IT retired and the replacement was hired from an IT department at another university. The new VP’s overall policy was “We will do things this way because that’s how we did it at my old university”. Within about 6 weeks we had a round of “layoffs” that targeted our manager and one other manager that was also known to push back against the university politics. They were the only two people let go out of a department of roughly 100.

Within about a year of that happening every last member of our tight knit Unix team left for greener pastures.

This was definitely a hit and not a water spout.

If that’s true then some evil supervillain or governmental three-letter-agency has a working severe weather machine. The yacht was visible on a nearby security camera, and it disappears as fierce rain & waves obscure it.

In cases like this also contact the US Postal Inspection Service. They won’t take kindly to stolen mail, especially if it’s stolen right out of a US Post Office.

If it’s US Mail then contact the US Postal Inspection Service. They’re federal law enforcement specifically for the USPS, and they don’t fuck around.

I doubt it. The liability would be far too great. Ambulance chasing lawyers would salivate at the chance to represent the families of pedestrians struck and killed by buggy self driving cars. Those capitalists don't want endless years of class action cases tying up their profits.

Not until a self driving car can safely handle all manner of edge cases thrown at it, and I don’t see that happening any time soon. The cars would need to be able to recognize situations that may not be explicitly programmed into it, and figure out a safe way to deal with it.

My wife and I just streamed a movie a few days ago. It had a ton of bloopers intermixed with the end credits.

Well there’s extreme weather and there’s extreme weather. There have been reports that the yacht was struck by a waterspout, which is basically a tornado but over the water. I’m not sure if the strength of it has been reported or not, but given tornadoes have been known to throw trucks and train cars it doesn’t surprise me that it was likely powerful enough to capsize the yacht.

Unlike trucks & trains, a sailboat is designed to roll side-to-side. One current theory I’ve read is that the waterspout damaged the mast, causing it to unbalance the yacht (and possibly damaging the hull). The combination of being unbalanced and being slammed by the waterspout likely rolled the hull enough to flood it within seconds. Even if the mast wasn’t damaged, a tornado striking the yacht broadside would have likely been catastrophic depending on the strength of the storm. And waterspouts that powerful are still rather rare so I wouldn’t blame the captain for not anticipating it.

There are now some reports as well that the yacht sank in roughly one minute. If that’s the case then it means the yacht indeed rolled very quickly and took on a huge volume of water in very little time, so much that it was unable to right itself or that its bilge pumps could contend with it. Again, not something that could have really been anticipated.

He’s also being walloped by a woman.

A helpful note to consider: Some of the longer range drones Ukraine has deployed are in fact civilian aircraft that have been modified to fly remotely. These are fairly slow and not highly maneuverable. Certainly not enough to dodge bullets or missiles.

I just had a flashback to the bunny/cop in the movie Free Guy.

My wife used to drive an electric Smart Car for her work. It had a range of 60 miles (less in the winter), and she called it a glorified golf cart. But it was perfect for the 20 or so miles she’d drive each day.

Back in the late 90’s I worked for an internet search company, long before Google was a thing. We would regularly physically drive a dozen SCSI drives from a RAID array between two datacenters about 20 miles apart.

My grandparents had a house on Cape Cod that was right on the water. When I was maybe 8 to 10 years old I could stand on the beach and rest my elbows on the top of the seawall that separated the beach from the yard in front of the house.

20 years later when the house was sold so much sand had eroded from the beach that, as an adult, I couldn’t reach the top of the seawall while standing in the same place. So over the span of a couple decades roughly 5 vertical feet of beach had eroded away.

Next you’ll be telling me it’s a chemtrail generator.

Why the hell doesn’t New York just start seizing his properties if he owes them that much?

Oh there are definitely ways to circumvent many bot protections if you really want to work at it. Like a lot of web protection tools/systems, it’s largely about frustrating the attacker to the point that they give up and move on.

Having said that, I know Akamai can detect at least some instances where browsers are controlled as you suggested. My employer (which is an Akamai customer and why I know a bit about all this) uses tools from a company called Saucelabs for some automated testing. My understanding is that our QA teams can create tests that launch Chrome (or other browsers) and script their behavior to log into our website, navigate around, test different functionality, etc. I know that Akamai can recognize this traffic as potentially malicious because we have to configure the Akamai WAF to explicitly allow this traffic to our sites. I believe Akamai classifies this traffic as a “headless” Chrome impersonator bot.

When any browser, app, etc. makes an HTTP request, the request consists of a series of lines (headers) that define the details of the request, and what is expected in the response. For example:

    

GET /home.html HTTP/1.1
Host: developer.mozilla.org
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.9; rv:50.0) Gecko/20100101 Firefox/50.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://developer.mozilla.org/testpage.html
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Cache-Control: max-age=0


  

The thing is, many of these headers are optional, and there’s no requirement regarding their order. As a result, virtually every web browser, every programming framework, etc. sends different headers and/or orders them differently. So by looking at what headers are included in a request, the order of the headers, and in some cases the values of some headers, it’s possible to tell if a person is using Firefox or Chrome, even if you use a plug-in to spoof your User-Agent to look like you’re using Safari.

Then there’s what is known as TLS fingerprinting, which can also be used to help identify a browser/app/programming language. Since so many sites use/require HTTPS these days it provides another way to collect details of an end user. Before the HTTP request is sent, the client & server have to negotiate the encryption to use. Similar to the HTTP headers, there are a number of optional encryption protocols & ciphers that can be used. Once again, different browsers, etc. will offer different ciphers & in different orders. The TLS fingerprint for Googlebot is likely very different than the one for Firefox, or for the Java HTTP library or the Python requests package, etc.

On top of all this Akamai uses other knowledge & tricks to determine bots vs. humans, not all of which is public knowledge. One thing they know, for example, is the set of IP addresses that Google’s bots operate out of. (Google likely publishes it somewhere) So if they see a User-Agent identifying itself as Googlebot they know it’s fake if it didn’t come from one of Google’s IP’s. Akamai also occasionally injects JavaScript, cookies, etc. into a request to see how the client responds. Lots of bots don’t process JavaScript, or only support a subset of it. Some bots also ignore cookies, and others even modify cookies to try to trick servers.

It’s through a combination of all the above plus other sorts of analysis that Akamai doesn’t publicize that they can identify bot vs human traffic pretty reliably.