I believe that Jellyfin, Immish, and NextCloud login pages are automatically flagged as dangerous by Google. What's more, I suspect that Google is somehow collecting data from its browser - Chrome.
Google flagged my domain as dangerous once. I do host Jellyfin, Immish, and NextCloud. I run an IP whitelist on the router. All packets from IPs that are not whitelisted are dropped. There are no links to my domain on the internet. At any time, there are 2-3 IPs belonging to me and my family that can load the website. I never whitelisted Google IPs.
How on earth did Google manage to determine that my domain is dangerous?
No joke, I only plug my printer into the outlet when I want to print and immediately turn it off after. Never was connected to the internet.
But I do have Zigbee sensors and switches, all of which connect to my home server and Home Assistant. None of them see the internet. But Home Assistant is accessible from the internet through a reverse proxy from whitelisted IPs.
GrapheneOS user here. Every single banking and financial app I use works. Both European ones and non-European. Some require changing per-app settings, but nothing crazy. There's a good chance that your banking app will work.
How do these articles keep getting to the front of HN...
> The certificates provide no security: The way you verify your identity to Let's Encrypt... you place a file somewhere on your website, and they access
> Automatic renewal is insecure: certbot ... downloads a bunch of untrusted data from the web, and then feeds that data into your web server, all as root...
False, this is NOT the only way. You can do it by setting a TXT DNS record. No files involved. Your server communicates with the registrar through API over an encrypted connection.
> Manual renewal isn't free...
You're not supposed to manually review Let's Encrypt in the first place. The whole point is that you set up cron job once and forget about it.
> HTTPS is a trap: Once you've moved your websites to HTTPS, there's no going back to plain HTTP...
Not true. You can run HTTP version of your website in parallel if you so desire.
> Let's Encrypt is founded on the benevolence of scoundrels: Let's Encrypt isn't free to run, either. Their 2019 operating budget is 3.6 million U.S. dollars. Most of that is donated by… guess who? _Your competitors_[1].
EFF and Mozilla foundation are not my competitors LOL.
You can, but there is no way to force a method. A MitM attacker will choose the file method to get itself a cert for your site - the main argument in the article.
> The whole point is that you set up cron job once and forget about it.
Exactly. (Italics by me.)
>> HTTPS is a trap: Once you've moved your websites to HTTPS, there's no going back to plain HTTP...
> Not true. You can run HTTP version of your website in parallel if you so desire.
But never again HTTP-only. No visitors will load HTTP. Did you actually read the article and the arguments??
> [1]
I'd like to see some numbers before I belive your argument.
So that absolutely no human ever checks the transparency log. I can't even find that log for LetsEncrypt, let alone how to search it for my website's certs.
Germany desperately needs a wake-up call in the form of recession.
German car industry has been non-competitive for multiple years now. Instead of letting it fail, the government kept on flushing money down the toilet and prolonging the inevitable.
For a business, there's no incentive anymore to choose Germany over other EU countries. Cheap energy is gone. Germany is literally collapsing under its own weight: endless bureaucratic structures that just keep on growing.
> Germany desperately needs a wake-up call in the form of recession. German car industry has been non-competitive for multiple years now. Instead of letting it fail, the government kept on flushing money down the toilet and prolonging the inevitable.
Just let it fail? I'm reminded of this, which I read recently about rare earths:
> Rare earth refineries and magnet factories all over the world have been buying Chinese equipment for the past 20 years. Many equipment vendors in North America and Europe closed when most of the world’s rare earth mining shifted to China in the late 1990s.
I'm sure that, at the time, people were saying that North American and European rare earth equipment manufacturers were "non-competitive for multiple years now."
Don't get me wrong, I agree there is such a thing as "forget the comparative advantage of trade, this is national security", and I even think steel and cement need to be in that category right after farm subsidies, but also you do have to be strategic, and you don't want private corporations "too important to fail" which turn subsidies into shareholder returns without adding real value.
And even more, if someone does buy into today's expanded definition of national security, keeping industries safe from Japanese or Chinese style zombies is a desirable thing.
Sure but we are talking about german industrial output, and one of the main reasons for problems here is the absence of the cheap energy that was available until the russian invasion of ukraine.
Energy prices? Unit labour costs? Pisa Scores? VC Investments as percentage of GDP? Number of IPOs? Taxation of Income? Punctuality of public transport?
Very US-centric article. Written by insecure people who are clinging to power and money desperately.
I don't see how some kind of big breakthrough is going to happen with the current model designs. The superintelligence, if it will ever be created, will require a new breakthrough in model architecture. We've pretty much hit the limit of what is possible with current LLMs. The improvements are marginal at this point.
Secondly, hypothetically, the US achieves superintelligence, what is stopping China from doing the same in a month or two, for example?
Even if China achieves a big breakthrough first, it may benefit the rest of the world.
It's a US/China centered article, because that's the game, Europe is not a meaningful player and everyone else is going to get sucked into orbit of one of the superpowers.
If you read the article carefully, I work hard to keep my priors and the priors of the people in question separate, as their actions may be rational under their priors, but irrational under other priors, and I feel it's worth understanding that nuance.
I'm curious where you got the writer "clinging to power and money desperately."
Also, to be fair, I envy Europe right now, but we can't take that path.
My cynical take is that this is the US committing economic suicide, based on a misguided belief in something that'll never happen.
The new superpowers will be the EU, which was smart enough not to make the same gamble, and China, which will structurally survive it.
I also disagree with your conclusion of a moral imperative to make sure that AI succeeds. I believe it's the opposite. AI failing would finally create the long-needed revolutionary moment to throw off the shackles of the oligarchy that got us into this mess in the first place.
Not with how much pulling teeth is required to get them to invest in defense. I don't see how you can unironically make the claim that a written down investment would sink the ship that is the US economy.
I assure you, this is not a game where “the only winning move is not to play”, in spite of whatever your domestic politicians are feeding the population.
Are you sure? Based on what? All I see is people desperately throwing money they don't have at AI like a gambling addict who just converted their child's college fund into chips.
Call me a buzzkill here, but my bet is you aren't gonna hit it big. While you can win at the casino, that requires a careful plan with contingency solutions, which AI simply does not have. Realistically speaking, it is indeed best to just not play this game; you are just digging a deeper hole.
I think you missed the point. The EU is "winning by doing nothing" whereas the US is liable for the huge failing investment it made. US economical growth is now entirely reliant on AI, so an AI crash guarantees immediate recession and out-of-control stagflation. The EU with its "less advanced" economy will keep growing just fine with or without AI, surviving the front-line bloodbath by staying behind.
As for defense, they are spending exactly as much as necessary at each point in time: just enough to keep credible US backing until 2025, and as much as they can without destroying their economy since. There is no good argument for an irresponsible spending spree, as the only powers that can realistically challenge the EU without triggering nuclear holocaust are the US and China anyways (Russia don't stand a chance).
I don't see odds on a good outcome from a revolution. Keep in mind which faction in the united states is generally militant. The best possible scenario there is broad civilian unrest that the administration tries to forcefully quell, triggering a military coup, but it's unlikely that the coup would be unified, and right wing militias and hardcore trump supports would go down fighting.
We need political Aikido to hold this country together.
So often, I see comments that seem to make sense only in a vacuum. If the US disappeared from the scene tomorrow, how do you think the geopolitical landscape might change?
The competition between the US and China is pertinent to everyone.
What do you mean? I don't see how the commenter was saying anything about the irrelevance of US-China competition, in fact some of their points hinge on the existence of that competition, which is why they described the asticle as very US-centric.
> This case shows how, even when Apple tightly controls its repair infrastructure, it cannot prevent disastrous cases like this
Customers should be able to choose where to repair their device, or even be able to repair it themselves. Just because it's an "official" repair shop doesn't mean its the best and the safest. Louis Rossmann has been saying this for years.
I personally know a woman from Iran. She has a PhD in Data Science. She works and lives in the EU. Her mindset is that of an educated European person.
She does not support the current Iranian government, and neither do most of the people in Iran, according to her. But publicly expressing disagreement in Iran could have you disappear. That's why people are afraid to protest and speak out.
Regarding sanctions, it's not that hard to find and buy products from Iran. At least in the EU. What happens is neighboring countries import raw material from Iran, then put a label "Made in Pakistan", for example, and sell it. But those who know, can easily find and buy things like Iranian rice and spices.
Sure, solar panels get wicked hot and are more efficient when cold, so attaching something to scavenge heat from them, bonus hot water and a little electricity are all wins until you factor in the cost of doing so and realize you would get 10x the return on adding a few more panels.
We have passive thermal heat tubes on our roof to heat our pool. It works amazingly well. I want to put PV on our roof, but that’d mean having to pull up those tubes first and replacing our pool heater with something electric.
Turns out there’s companies that do hybrid systems! Water is used to cool the PV, increasing the efficiency of the panels in the process, and then the heated water is used wherever you need it.
Unfortunately it seems there’s only a couple of providers, it’s rare to find installers that do it, and it’s ssuuuppppeeerrr expensive relative to the normal options. Such a shame. I wish there were more options here. It seems like a great approach.
We just did the opposite and ripped up our solar hot water system. We have a metal roof and a salt water pool. Problem is that these systems can and do leak. Salt water on a metal roof makes creates rust.
With photovoltaic panels being dirt cheap, we decided to rather heat our pool with a heat pump that is powered by our own electricity.
> until you factor in the cost of doing so and realize you would get 10x the return on adding a few more panels.
You're looking what the cost would be now and I don't think they were suggesting that, but rather as a direction of development for panels.
Luckily this is exactly how things work and why we have continues progress in the area, including with the batteries. Because 10 years ago you wouldn't even bother with super expensive Lithium batteries for home energy storage and go with NiCd, right?
> ... that these "reasoning" models can often produce incoherent, logically unsound answers when questions include irrelevant clauses or deviate even slightly from common templates found in their training data.
I have encountered this problem numerous times, now. It really makes me believe that the models do not really understand the topic, even the basics but just try to predict the text.
One recent example was me asking the model to fix my docker-compose file. In it, there's the `network: host` for the `build` part. The model kept assuming that the container would be running with the host network and kept asking me to remove it as a way to fix my issue, even though it wouldn't do anything for the container that is running. Because container runs on `custom_net` network only. The model was obsessed with it and kept telling me to remove it until I explicitly told that it is not, and cannot be the issue.
> It really makes me believe that the models do not really understand the topic, even the basics but just try to predict the text.
This is correct. There is no understanding, there aren't even concepts. It's just math, it's what we've been doing with words in computers for decades, just faster and faster. They're super useful in some areas, but they're not smart, they don't think.
I’ve never seen so much misinformation trotted out by the laity as I have with LLMs. It’s like I’m in a 19th century forum with people earnestly arguing that cameras can steal your soul. These people haven’t a clue of the mechanism.
And it's really hard to dislodge those mistaken ideas. I had a conversation with a member of the board of my last company and he was going on about AI agents and how awesome they were because it could book a plane ticket from SF to LA. I tried to explain WHY it can do that, and that it's important to test edge cases and not just the few things the demos show as working, I asked him to ask it to book a flight from SF to Tampa on a morning flight in comfort+ on Delta. He did, and we both watched it load up delta.com, it started to search then completely lost the plot and clicked random things for another 30 seconds. He then brushed it off and said "well, they'll get it working soon, these are just details." Yeah, because details famously are irrelevant.
Google flagged my domain as dangerous once. I do host Jellyfin, Immish, and NextCloud. I run an IP whitelist on the router. All packets from IPs that are not whitelisted are dropped. There are no links to my domain on the internet. At any time, there are 2-3 IPs belonging to me and my family that can load the website. I never whitelisted Google IPs.
How on earth did Google manage to determine that my domain is dangerous?
reply