Kazumara @ Kazumara @discuss.tchncs.de

Posts

0

Comments

802

Joined

1 yr. ago

It's time that congress strangles the executive with the purse strings

Yeah that does seem a bit weird, my four year old RX 6800 has 16 GB VRAM already

I played it again last year. Still fun!

I usually play the GOG version on Windows 10 with dxwnd and these settings:

I've been running my Minecraft client on Azul Zulu builds of the OpenJDK for years, just because I trust anyone else more than Oracle.

Of course my Minecraft server is running on Linux anyway, with the openjdk build from my distro.

Honestly I don't know what differences there still are that would motivate companies to use Oracle JDK. I thought Oracle JDK and OpenJDK converged strongly a few years ago.

Ah as an intermediary for TypeScript? Fair point.

The Chinese tanks stopped for the man in the photo!

What a line dude.

The military shot at the crowd and ran over people in the square the day before. Hundreds died. Stopping for this guy doesn't mean much.

being a registered business they purchase for prices without VAT

That's not true, sorry. A business pays stuff with VAT included too, but they can later claim back the VAT they paid against the VAT they raised from selling stuff, so they don't have to hand all of that over.

You probably mean the sales taxes, those look similar from a consumer point of view, but they work differently.

In a VAT system the taxes are collected all along the value addition chain. Each sale of intermediary products has the VAT cost on it, but companies can claim the VAT that they pay for their inputs against the one they collected on their outputs. In effect each company hands over the part of VAT that is raised on their part of the value addition. In the end it all comes from the consumer who buys the final product but doesn't sell anything onward so they can't claim their paid VAT against anything. This system determines the end consumer automatically.

In a sales tax system, only the sale to the final end customer is taxed, and intermediary products are not taxed. Intermediary companies must prove to their suppliers that they are not end customers, that they intend to sell things onward, and that they are therefore exempted from sales tax and the supplier does not have to collect sales tax. If that fails, then that means mistakenly a company has to pay sales tax, and then their customer has to pay it again.

Other than that I don't know enough to compare:

• What is more or less administrative overhead.
• What is more or less open to fraud.
• To what degree this is linked to the existence of a single national or many regional tax rates

Just to make sure you know: Basically everyone has a VAT, except the US. It's not some special EU thing.

We have it in Switzerland, Canada has it, Japan has it, China has it, India has it, Russia has it, Brazil has it, Indonesia has it, Australia has it, Ukraine has it, Mexico has it, South Africa has it... I'm stopping here, but every country I googled had it so far.

It starts using an entire core for UI work when I move my mouse (Roccat Cone Pure 2017), and becomes unresponsive. Had to get a different mouse just for this shit. At least I got my workplace to pay for it.

Support did not even try to replicate the issue, instead they wanted me to upgrade to the "New" Teams when I explicitly told them that I didn't have that option in my org.

Left to right: Shimakaze, Miyuki, Suzutsuki, Shigure, Asashio and Hamakaze from Kantai Collection

Hm even with DeepSeek being more efficient, wouldn't that just mean the rich corps throw the same amount of hardware at it to achieve a better result?

In the end I'm not convinced this would even reduce hardware demand. It's funny that this of all things deflates part of the bubble.

Hmm it's difficult to quantify. On workday I spend an average of probably 6-8 hours on a computer with job related tasks. Not really coding most of the time, since we're maintaining and building a network, so it's more configuration, planning, coordination, and documentation work. Some days we're out to actually deploy hardware, or run around and debug stuff, so it's hard to estimate the average screentime.

My free time involves a lot of computer time too, but it is split up into more smaller categories, either on the desktop computer or the smartphone computer. Manga, Games, Youtube, Movies, Anime Series, Lemmy, Pornography, News, Banking and Investments.

In the end I think my job is the biggest unified chunk of time, but that's kind of arbitrary, if I started subdividing it into different tasks maybe gaming would become the biggest chunk.

Oh that's a flower originally? To me that was only the codename of the Redmi Note 8 Pro Smartphone until now, lol.

PS: It kind of sounds like something the kids could come up if their favourite app blocks "kys", so good nomination for worst possible

I respect the dev, hiyohiyo, so much for this. He gave us something so useful, and he likes these characters, and he's not ashamed to make the skinned versions and put them up for download.

Yeah, this kinda bothers me with computer security in general. So, the above is really poor design, right? But that emerges from the following:

• Writing secure code is hard. Writing bug-free code in general is hard, haven’t even solved that one yet, but specifically for security bugs you have someone down the line potentially actively trying to exploit the code.

• It’s often not very immediately visible to anyone how actually secure code code is. Not to customers, not to people at the company using the code, and sometimes not even to the code’s author. It’s not even very easy to quantify security – I mean, there are attempts to do things like security certification of products, but…they’re all kind of limited.

• Cost – and thus limitations on time expended and the knowledge base of whoever you have working on the thing – is always going to be present. That’s very much going to be visible to the company. Insecure code is cheaper to write than secure code.

There is nothing wrong with your three points, in general. But I think there are some things in this given case that are very visible weak points before getting into the source code:

• You should not have connections from the cars to the customer support domain at all. There should be a clear delineation between functions, and a single (redundant if necessary) connection gateway for the cars. This is to keep the attack surface small.
• Authentication is always server side, passwords and reset-question-answers are the same in that regard. Even writing that code on the client was the wrong place from the start.
• Resetting a password should involve verifying continued access to the associated email account.

So it seems to me that here the fundamental design was not done securely, far before we get into the hard part of avoiding writing bugs or finding written bugs.

This could have something to do with the existing structures. E.g. the CS platform was an external product and someone bolted on the password reset later in a bad way. The CS department needed to access details on cars during support calls and instead of going though the service that communicates with the cars usually, it was simpler to implement a separate connection to the cars directly. (I'm just guessing of course)

Maybe besides cost, there is also an issue that nobody in the organization has an overall responsibility or the power to enforce a sensible design on the interactions between various systems.

Intent is essential for genocide. Dolus specialis, look it up.

Well yes, it was in the part I copied in the top comment, I didn't overlook it.

If you read the next sentence after your quote I gave the reasoning why I think we don't have to get into it for the analysis of these hypothetical circumstances: Article 2 already doesn't apply for other reasons.

Maybe you could use them to store gas

I just looked up the voice actor of the character Lest from Aracane yesterday. She chose Eve, kinda like the opposite of Lilith.

That is obviously fake. I don't even detect any real attempt to make it believable.

Bold claims, no detail, perfectly aligned with the biggest fears of what Musk could have done. Even the stupid mention of AI agents and the link to an example in documentation, as if that random stuff was evidence that was congruent with the earlier claims.

Plus they fucked up the internal consistency, despite how short the text is: In the intro our fake protagonist is a former X employee, in the third paragraph from the bottom they are saying "We're currently doing the same thing in Germany".