Lots of good ones in there. Thanks!
B1M is great, Mega Projects and others of Simon’s channels are good (some better then others). Wendover is amazing, I just wish he out more out, but the production quality is probably to high to increase the rate.
I’ll have to check the rest out. :)
He is indeed a great find. His Dubai lights was one I was just thinking about due to another post.
I read this on the 14th or so and did a face palm. Floridaland is for the alligators apparently.
Additionally, the federal government has failed to provide sufficient data to support the safety and efficacy of COVID-19 boosters, or acknowledge previously demonstrated safety concerns associated with COVID-19 vaccines and boosters, including:
- prolonged circulation of mRNA and spike protein in some vaccine recipients,
- increased risk of lower respiratory tract infections, and
- increased risk of autoimmune disease after vaccination.
And my favorite:
- Potential DNA integration from the mRNA COVID-19 vaccines pose unique and elevated risk to human health and to the integrity of the human genome, including the risk that DNA integrated into sperm or egg gametes could be passed onto offspring of mRNA COVID-19 vaccine recipients.
Apparently we are at risk of covid immune babies!
Agreed, now the fun part of coming up with a legal basis to do so and convincing regulators.
I don’t think this requires an act of congress. I think you might see more consumer advocation on the part of FTC (although it doesn’t currently regulate online broadcast), or potentially the CFPB.
Admittedly it’s more likely to see the EU do some regulations, but it all depends on the election.
While I agree, I have a hard time seeing how people will stop using it until the field changes. Maybe in 10 years it will the the MySpace of the sitcom era, but right now it’s still growing. That growth is giving it carte blanche to manipulate the users as it sees fit. Regulation might impact it, but it’s still a bit of a Goliath.
- Compared to 2023, YouTube’s user base has grown by 20 million this year, representing a 0.74% increase. From Global media insights
Also the active user base is 2.7 billion people in 2024 from the same source above.
The alternatives are out there, but just not in the same league.
Yt-DLP and it’s variation (Seal, YTDLnis, etc.), newpipe and it’s variation (Tubular, Newpipe Sponsorblock, etc) already allow you to do this without having to get manual.
True, but worth reading their about page and privacy page. Not saying it’ll stay this way, but the way they are running is something that makes more sense then being sold as a product to Google. And you aren’t getting much of an incognito these days with all the fingerprinting they are doing.
I will admit kagi search isn’t the highest performer, but it’s viable. DDG, Start page, etc. Might give you more privacy, or not (hard to tell with DDG these days), but it might be worth trying a different model for a while.
I miss the days when the internet was truly free, but in lieu of that we have to have something better. Kagi is a start.
That’s an interesting example, I’ll have to look it out and see if the context bears it out. I say that as although yes he might have only gotten 43%, the question is how many registered voters didn’t vote and how many eligible but unregistered voters there were.
Vermont has a fairly high voter turnout, but looking at Vermont’s Secretary of State 2016 had a voter turnout of 63% of Voting Age Population from census population. So that 185k of 505k thousands people who didn’t vote.
Also if I have the right numbers from Vermont’ SOS, that’s 43% of the state total 63% who voted.
I’ve read other demographic breakdowns on those who don’t vote which is worth looking into, but it’s hard for me to see someone say that there isn’t a mass when we have this huge population of American citizen who don’t vote. Something between 35-45% of the US just doesn’t. That’s a huge swath of disenfranchised people.
[# Systematic Destruction (Hacking the Scammers pt. 2)
Taking on the “Smishing Triad”](https://blog.smithsecurity.biz/systematic-destruction-hacking-the-scammers-pt.-2) g
His blog on the topic if you don’t want the wired summary.
Take Simon with a grain of salt, but this Warographics on What a war might look like along side the context of RealLifeLore background on US, Iran relations might give some further understanding if you are after some short intros.
Feasible if you found one at a junk yard, but copper tubing is $20-30 and some fittings makes a tubing idea sub-$100 probably. An AC is about $300, a new radiator without fittings starts at $70 and are built for cars not box fans so it might be more challenging to get to work.
With that being said, environmental, energy, and other contextual concerns might out weigh the cost. A mini-split heat pump is probably the most sane thing to actually install, but that’s a big ask.
As a kid I used tubes, a box fan, a cooler, and bucket with a siphon to cool me down.
You could easily set that up with just the water from a sink and some hardware store parts.
Search for ‘diy fan cooling tub copper coils’ as a start.
As an example: Homemade AC - The “Copper Coil” Air Cooler! - (Simple "Box Fan …
Copper coils have the best thermal efficiency, but plastic tubing would also work.
https://archive.ph/w58Yk Alternative link unpaywalled
Alternative link non paywalled
If this request worked, it meant that I could use an “encryptedValue” parameter in the API that didn’t have to have a matching account ID.
I sent the request and saw the exact same HTTP response as above! This confirmed that we didn’t need any extra parameters, we could just query any hardware device arbitrarily by just knowing the MAC address (something that we could retrieve by querying a customer by name, fetching their account UUID, then fetching all of their connected devices via their UUID). We now had essentially a full kill chain.
I formed the following HTTP request to update my own device MAC addresses SSID as a proof of concept to update my own hardware:
…
Did it work? It had only given me a blank 200 OK response. I tried re-sending the HTTP request, but the request timed out. My network was offline. The update request must’ve reset my device.
About 5 minutes later, my network rebooted. The SSID name had been updated to “Curry”. I could write and read from anyone’s device using this exploit.
This demonstrated that the API calls to update the device configuration worked. This meant that an attacker could’ve accessed this API to overwrite configuration settings, access the router, and execute commands on the device. At this point, we had a similar set of permissions as the ISP tech support and could’ve used this access to exploit any of the millions of Cox devices that were accessible through these APIs.
Blows me a away that an unauthenticated API with sensitive controls and data was publicly facing. Corporations these days want all your data but wonder why some customers are worry about how it is protected, it let alone if it’s being sold. Why should I allow you to control my hardware when you can’t protect yourself.
For Lemmy.world a donation would help keep it alive without all the crap. Servers are cheaper then they were, but still not cheap.
What are a few? Any good lists?
Another great list.
Practical Engineering is beloved. I used to like Smarter Everyday about the same, but Grady is just so much more consistent and interesting on the infrastructure world.
And Jenny is a geek I can get along with. The Starwars hotel failure was fascinating. Wish there was a bit more economic context, but she’s great.
Looking forward to some binges here.