Going a little fast there guys. Almost like you're trying not to drown in this current market.

for sure they will open their own consult agency xD

You are actually a bit wrong, I actually worked in this space on the technical side, google has a system called rich results, you basically provide Google with a schema that they use to show a summary on the search result. A rich result is for example adding the image of news article directly on the search page but other types of data like faq (some of those drop down questions you see in results are provided by websites) . This mostly benefits the news website as they get free clicks since google promotes this content an places it at the top for free.

[removed]

No, iCloud backups up until a couple months ago were not end to end encrypted and it was explicitly used by governments as a backdoor to get around iMessage encryption. There’s a leaked law enforcement slide about it somewhere.

https://support.apple.com/en-us/HT202303

See under “data categories and encryption”, under “standard data protection” (which was the only option up until a couple months ago, and still the default option to this day), note how iCloud backups (including both the full contents of the device, and iMessages) are not end to end encrypted.

Telegram’s encryption is a homebuilt algorithm rather than a tried and true standard (never roll your own crypto…) and as you pointed out not on by default. So it was always inferior to Signal.

Signal by default doesn’t keep its data in device backups. You’d need to build a custom client to get it to do that. There’s no way to get Signal to not end-to-end encrypt it’s chats, it’s on by default and can’t be turned off.

Edit: some more links to back this up:

https://www.howtogeek.com/710509/apples-imessage-is-secure...-unless-you-have-icloud-enabled/

And the leaked slide as I mentioned earlier:

https://www.pcmag.com/news/fbi-document-shows-how-popular-secure-messaging-apps-stack-up

honestly, i never had a customer complaining about win11. it usually goes like "oh the windows button is now in the middle? right mouse button menu is now weird" but after that the just work with it. its not a perfect os, but compared to the usual crying customers do when they have to learn a new os, win11 is very mild.

Agreed, security through obscurity is always a bad idea. Zero trust is the only way and less third parties helps you minimize the attack vectors.

My comment here addresses some of these points

While OSS is has code to review openly, that is a good company level trust, but that also is a potential weak area where people will overly trust and let in a bad dependency that not even the company knows got compromised. It can also let you target dependencies that the code uses without even needing to steal the code. You can trust that the company that open sources will make sure their code looks good and has less holes possibly, but not always.

It has happened in OSS for decades now to the largest toolkits with the most eyes and broadest use, because that is the best way to get into systems now, via the devs who are the weak link sadly. As a dev I am blown away at the lack of awareness of devs and these issues.

[removed]

What rubbish. The work is done on laptops which ssh to a secure desktop which is housed inside the office. So what’s the difference between working from a conference room and working from home, when you’re on a laptop and sshing into a desktop to work either way? I don’t know much about networking but if this was an issue then they would have forced all of us to come back to office a long long time ago and not given us a laptop to bring home ever.

I am more zero trust but if you are going to trust, trust fewer third parties. Even if trustable. Third parties get sold. Third parties need to make money from that not other ways only (Apple/Google for instance don't need you using messaging to survive).

If you are already on a browser, a password store/generator is safer without a third party involved. The OS, browser and company already have you, why involve a third party?

Same with messaging... Trusting WhatsApp/Signal/Telegram is not only another level third party, it is your most private content... why trust a funded/private equity/questionable source system if you don't have to.

Signal does appear to be the best of them, however being open is not safer always.

The new trick is dependency/build attacks, so good sometimes the main company doesn't even know it is happening (see SolarWinds that was hacked via TeamCity CI, the bad bits were being put into the dependencies at build, code was fully independently verified). The problem is blanket trust. It is what led to the OpenSSL Heartbleed hole, the Log4j/Log4Shell hole and pretty much any bit hole in the last year was part of open source.

When a company gets their source code stolen (LastPass for instance) the point is to find dependencies they can manipulate, not even the code itself. Almost all closed code uses dependencies that are open or known, and have known holes, the key there is utilizing that when you know the code flow. Open source actually makes that part easier, no need to steal source code.

I am a big OSS fan, but I hate how devs are the weak link today. Devs today are so willing to trust a third party because they heard about it or it saves a day. Those are the MOST targeted dependencies...

Respect to Signal, hold your ground!

Though the iMessage/iCloud backups are linked to a user and everything it keyed on that. Now they can additionally encrypt but it was always encrypted under the user.

I see this same complaint with browser password managers in the browser (not extension), they do encrypt now but they used to just by the user. You'd have to login as the user to be able to decrypt everything or access it. Things like Signal, Telegram, LastPass, Bitwarden and other third party style systems that do not encrypt by user, it is encrypted but you can break it outside the context of the user, not possible with backups, iMessage, Chrome/Safari/Edge passwords etc.

> Importantly, as a sender, you have no idea if your recipient is taking the proper precautions, and no way to enforce it.

By default Signal/Telegram both use your number and if one participant of the chat (even a 'ghost' user) isn't, or even if they are, all that data is wide open. Telegram by default has encryption off. If one of your recipients is that way, well you are wide open.

I was mostly referring to it being mostly government propaganda "The canadian journalists? ALL of them, or just the ones the Canadian government approves of?"

and he's saying it's NOT going anywhere because it's a propaganda tool funded by the government. So again, you're agreeing with him without recognizing it. It's not "going somewhere" (as in going broke/closing doors/going bankrupt) because it is a valuable tool for the government.

They allow you to compile your own executable kf the app from the code visible on GitHub (for Systems that allow sideloading, sorry Apple fans).

Will be very interesting to see if the development will be to run the models locally (on mobile, PC etc) or the need for the cloud.

Will vary by use-case. Image generation is for example fitted in to much smaller models them languages. The rout it will take will effect the tech ecosystem in many ways with someone like Apple benefitting much more on local models, and AWS, Azure etc benefiting from larger models.

It changes 2 variable names, somehow fixes it despite there being NO good reason that should fix it...

You skipped 8.1 but I gonna use the same argument you did for ME and call 8.1 "weird mid-cycle"

Software engineer's Sucks......!

[deleted]

And workers will bend the knee bc they don’t want to be fired lol

Okie dokie.... Since you seek context....

The CBC has NEVER really been super-profitable. That was never the point. It was started to create and promote CANADIAN content and content creators. HOWEVER, as time has gone on, more and more canadian citizens have clued into the concept that CBC is an incredibly biased organisation who plays favorites with the type of content it produces. "Well, so what? They are a business and can create whatever content they choose." EXCEPT, no they cannot. The CBC is a crown corporation. If it is NOT okay for any crown corporation to display a centre-right or conservative bias, then it is likewise not okay for any crown corporation to have a centre-left or Liberal bias either.

Further to this, despite it being a crown corporation, since 2016, they have been marketing content under the Tandem brand, which allows them to create ads that look and present like a CBC newscast, AND which allows their corporate clients to "leverage the trust of our customer base".

Now, specifically regarding my comment about the money that Turdeau has funneled into it, the Liberal government, as a part of its budget in 2020/2021 included an addition 34 million dollars to account for "revenue lost due to the pandemic". Now, IF they were unbiased and had not become a publicly funded commercial corporation, I personally wouldn't have had an issue with the additional funds. I happen to believe strongly in the idea that if a business is so poorly managed that it SHOULD go bankrupt, then one of two things MUST happen. Either bail it out, fire everyone from department heads up, and only rehire people who can demonstrate the ability to run their department efficiently; OR let it fail and let another company pick up the pieces. In the case of the CBC, let it fail and let another Canadian producer buy the pieces. Either way, you stop rewarding the stupid people who are bad at math, and start rewarding the people who can run a business successfully, of which Canada has LOTS.

I assume you mean a /s

But it's got big potential in systemizing social engineering attacks.

Encryption in transit is HTTPS, that's not end to end.

What the bill is saying is we can't read your letters in the middle so we will read them over your shoulder instead. How comforting...

They understand it

They're attempting to scare the people who don't understand it