>The voices that are silent are the ones that are shouting from the rooftops when Israel does this to Palestinians.
Depends on the protester and what they are protesting but many of Israel protests have been against US continuing to support/fund Israel and want US government to do something different.
Iran on other hand is US sanctioned and US actively works against it, very different relationship then with Israel.
A lot of anti censorship organizations have trouble getting more IPv4 /24 for cost reasons or moving it around to different AS since they would go offline.
With IPv6, you can get IPv6 /40 from ARIN/RIPE no problem. You slice that up into /48 and just start bouncing it all over the place. When one /48 goes down, you move everything to another /48, switch providers if required and continue.
EDIT: They also tend to get multiple blocks as well for when ISP figures out to root /40.
No it isn't. Nobody is blocking ranges as they roll in, they're blocking whole ASNs at once. That's just as trivial with v6 as v4, actually v6 can be simpler because ISPs tend to have fewer large blocks in v6land.
There are plenty of providers that when you BYOIP, they will broadcast out of their ASN, I know Azure does, Google appears to, no clue on AWS. Plenty of colo providers including $LastCompanyProvider will fold your IP block under their ASN as well. That's how it worked at last job.
Sure, Iran government may just decide to block that specific ASN but if it's they want to remain somewhat on the internet, they are stuck with "Smack entire broad ASNs and lose large chucks of internet" or "Block specific IP spaces."
You can get a large block, split it up and announce it from different places but that doesn't stop someone blocking your larger allocation.
Getting multiple blocks is harder - the RIRs will want justification for this, and would rather give you a single large block than lots of fragmented ones.
>I am not even sure what would be an appropriate remedy at this point.
It will have to be political and it's got to be fines/damages that are business impacting enough for companies to pause and be like A) Is it worth collecting this data and storing it forever? and B) If I don't treat InfoSec as important business function, it could cost me my business.
It also clear that certification systems do not work and any law/policy around it should not offer any upside for acquiring them.
EDIT: I also realize in United States, this won't happen.
I agree but I think the problem will be if the consequences are that dire then entire classes of business will cease to exist OR the cost of doing things properly will be passed on to the consumer.
I struggle to see how data brokers, social media, etc are a net benefit to society so would be happy to see those sorts of businesses cease to exist, but I suspect I'm in the minority.
The entire targeted advertising industry is basically a progressive tax.
The "social contract" is that many services are fully or partially financed by advertising. Rich people produce more ad revenue (because they spend more), but they get the same quality of service, effectively subsidizing access for the poorer part of the population, who couldn't afford it otherwise.
If we break this social contract down, companies will still try to extract as much revenue as possible, but the only way to do that will be through feature gating, price discrimination, and generally making your life a misery unless you make a lot of money.
The State of Illinois is going to lose its "business" already for other reasons. Do you think there is a reasonable privacy regime that prevents health systems from knowing where their patients live or using that information to site clinics?
Why is my data freely and instantly available within a centralized "health system" to begin with? Why can't we implement a digital equivalent of clunky paper records? Everything E2EE. Local storage requiring in person human intervention to access. When a new provider wants my records from an old one there should be a cryptographic dance involving all three parties. Signed request, signed patient authorization, and then reencryption for the receiving party using the request key.
What the health system should impose is a standard for interoperability. Not an internal network that presents a juicy target.
As Ops person who has to tell people "This is terrible idea, we are not doing it.", I've always struggled with how to tell someone nicely "No" without them seeing it as "Well, I guess my idea delivery is off, my idea is fine though."
When dealing with those personalities, seems only way to get them to completely reconsider them approach is hard "F off". Which I why I understand old Linus T. Emails. They were clearly in response to someone acting like "I just need to convince them"
There are bad questions (and ideas, like you said). Stackoverflow tried to incentivize asking good, novel questions. You grow up often being told "there are no stupid questions" but that is absolutely not the case.
A good question isn't just "how do I do x in y language?" But something more like "I'm trying to do x in y language. Here's what I've tried: <code> and here is the issue I have <output or description of issue>. <More details as relevant>"
This does two things: 1. It demonstrates that the question ask-er actually cares about whatever it is they are doing, and it's just trying to get free homework answers. 2. Ideally it forces the ask-er to provide enough information that an answer-er can do so without asking follow ups.
Biggest thing as someone who has been in Discords that are geared towards support, you can either gear towards new people or professionals but walking the line between both is almost impossible.
I believe in gearing towards teachers. Q&A sites are often at their best when the Q and A come from the same source. But it needs to be someone who understands that the Q is common and can speak the language of those who don't know the A. Unfortunately, not a common skillset (typically doesn't pay the bills).
The key part of your post is "has to tell people". Absolutely nobody on SO was obligated to respond to anything. The toxicity was a choice, and those doing it enjoyed it.
I doubt it's that much but with the same logic you could also ban HN, SSH and basically any protocol thats not https "with no one noticing" because 99.9+% doesnt use it.
No, I think CEO mandate goes "Build parental controls" and PMs all shake their heads and go "No problem". It hits the developers, they go Too long to do it properly and PM goes "Nah, we just prefer MVP only so we can say we have it and move on". it's also never really touched again so as features get added on, Parental Controls is poorly thought about last minute implementation.
To fix this, it's going to have to be legislation so financial incentives are present.
As someone who was not popular and got bullied some in school, I think cyberbullying would have been worse since it comes home with you. I was in school when SMS was finally becoming widespread and something of the bullying happened through it, it sucked since I'm at home and getting reminded of shit at school.
I can't imagine today with 24/7 social media apps on the phone.
One just did it with code where all the processes had holiday.json which would be checked at each launch, if it was holiday, it would do no work and exit.
Other one is operator that would monitor if it was supposed to be a holiday and either change systemd or Kubernetes to suspend the jobs.
I'd recommend code over messing with the system, much more flexible.
I think it exists to power this easter egg?: https://github.com/alphagov/calendars/issues/678 The value I guess depends on whether its appropriate to put up decorations ie a 'celebratory' holiday. It looks like the only non-bunting holidays on there right now are Good Friday (which is more solemn) and Orangemens' Day (which is pretty sectarian), but apparently in the past the Queen's funeral was another non-bunting holiday: https://news.ycombinator.com/item?id=37789437
Depends on the protester and what they are protesting but many of Israel protests have been against US continuing to support/fund Israel and want US government to do something different.
Iran on other hand is US sanctioned and US actively works against it, very different relationship then with Israel.
reply