All modern browsers require certificates to be published in the certificate transparency logs in order to be considered valid.
These are monitored, things do get noticed[0], and things like this can and have lead to CAs being distrusted.
It's not foolproof, and it's reactive rather than proactive... but in general, this is unlikely to be happening on major sites or at any significant scale.
I'd wholeheartedly recommend people taking some time and reading through the CA Compliance issues on Bugzilla. The entire CA program there, in my opinion, does a fantastic and largely thankless job of keeping this whole thing on the rails. It's one of the few things I can say I had _more_ trust in the more I looked into it.
> Why would you think Canada is fine when the government can freeze your accounts at will?
Can we stop with this nonsense at any point?
The government can declare an emergency. Certain actions can be taken during an emergency which are outside what is typically allowed or bypass normal processes. The actions are subject to a mandatory judicial review within 60 days. The judicial review happened. The government was found to have acted out of line. It's current working its way through appeal courts.
The way you phrase this is, imo, intentionally implying "the government is ALLOWED to freeze your accounts at will". The reality is more in line with "I can murder someone at will.". Yes, yes I can. Because we don't have precogs and a pre-crime division. That doesn't mean it's allowed or accepted.
Direct your energy at this law. This is _actually_ a huge fucking problem.
I tried to find any of the original text so I could try in my editor, but couldn't so I can't say for sure but... At least copying and pasting a bunch of unicode private use characters and stuff, they're not only rendered (box with an X through it) but highlighted in bright red.
Presumably opening this file I'd see some suspicious looking code and a giant bright red block in the middle of it.
I have the benefit that I'm only working in English so "flag anything that's not basic ASCII" is workable. I could see how this could get a bit messy when you _are_ working with other languages and need to differentiate the compound characters and invisible characters and things that _are_ part of your normal use versus these that aren't.
> SSDs booted faster and launched programs faster and were a very nice change, but they weren't that same sort of night-and-day 80s/90s era change.
For me they were.
I still remember the first PC I put together for someone with a SSD.
I had a quite beefy machine at the time and it would take 30 seconds or more to boot Windows, and around 45s to fully load Photoshop.
Built this machine someone with entirely low-end (think like "i3" not "Celeron") components, but it was more than enough for what they wanted it for. It would hit the desktop in around 10 seconds, and photoshop was ready to go in about 2 seconds.
(Or thereabouts--I did time it, but I'm remembering numbers from like a decade and a half ago.)
For a _lot_ of operations, the SSD made an order of magnitude difference. Blew my mind at the time.
SSDs came out after CPUs started to slow down on doubling (single threaded) performance every 12-18mo or so.
So it was the only way to get that visceral improvement in user experience like CPU and platform upgrades were in the mid 90's to very early 00's.
The experience of just slapping a new SSD in a 3 year old machine was similar to a different generation of computer nerds.
Nothing could really match the night and day difference of an entire machine being double to triple the performance in a single upgrade though. Not even the upgrade from spinning disks to SSD. You'd go from a game being unplayable on your old PC to it being smooth as butter overnight. Not these 20% incremental improvements. Sure, load times didn't get too much better - but those started to matter more when the CPU upgrades were no longer a defining experience.
Sure, but what about once Photoshop was open? Aka where you spend most of your day after you start up your stuff?
Would you take the SSD and a 500Mhz processor or a 2Ghz dual-core with a 7200k or 10000k HD? "Some operations are faster" vs "every single thing is wildly faster" of the every-few-years quadrupling+ of CPU perf, memory amounts, disk space, etc.
(45sec to load Photoshop also isn't tracking with my memory, though 30s-1min boot certainly is, but I'm not invested enough to go try to dig up my G4 PowerBook and test it out... :) )
> That said, you need to ask your account manager about (1) discounts in exchange for spend commitments, and (2) technical assistance.
Depending what precisely you mean by the second one, you may not even need an AM/support for that.
They won't help me use the platform, but they will still address issues with the platform. If you run into bugs, things not behaving how they're documented, or something that simply isn't exposed/available to customers they seem to be pretty good about getting it resolved regardless of your spend or support level.
(On my personal account with minimal spend, no AM, and no support... I've had engineers from the relevant teams email me directly after submitting a ticket for issues.)
So yeah, "if you know what you're doing" you probably don't even need the paid-for support.
> Not to mention the incoherence that one day its a tool to bring jobs back, the next day its just a negotiation tactic so they get reduced/dropped on a country by country basis over and over.
I thought it was retaliation for Canada not doing enough to stop their 20-odd kilogram contribution to the 4 tons of fentanyl smuggled in every year? [0]
(Which is to say I agree with you. Just trying to support your point that the reasoning has been so completely all over the map that anybody trying to assign any real meaning seems delusional. At this point I think most people have entirely forgotten half the reasons that have been made up along the way.)
The "smart MAGA" guys always crack me up because by the time they craft an intellectual justification for his previous moves, he has pivoted/reversed and pantsed them once again.
Frequently we get the "he's been poor advised" fallback as well.. Good Czar, Bad Boyars.
I... Well, I had started explaining point by point how wrong this is but frankly the answer is just "all of it, very".
I've driven summer tires, all season tires, winter tires, and studded winter tires in every season in Canada. (Yes, I live in Canada and own borderline-usless summer-only tires. Yes, I've tried driving them in snow.)
None of what you're saying lines up with my own experience, various YouTube videos on braking distances, or literally anything else I've ever seen anywhere.
Edit: And, well, to be clear... I've lived on the West coast of Canada where it's a bit more mild but you're in the mountains, in the middle where it hits -50, and in the East where it only hits -30 but snows like hell.
Yes, there are. And they show that it's a trade-off well worth investigating. Do you really want 10% better performance on snow at the cost of 10% worse performance on tarmac?
How much do you drive on snow anyway? Probably nowhere near as long as you do on tarmac, even in a tough winter.
I just fired up a container on my laptop... running on kubernetes... running in a linux VM. It's lightly dynamic (no database or filesystem I/O).
While I've also got enough other stuff running that my 15 min load average is at 4 and I've got 83% RAM used ignoring buffers/caches/otherwise.
I went and grabbed a random benchmarking tool and pointed it at it with 125 concurrent connections.
Sustained an average of 13914 reqs/s. Highest latency was 53.21ms.
If there are 10,000 people online at any given time hitting the API on average once every 3 seconds (which I believe are generous numbers), you'd only be around 3.3k reqs/s, or about 24% of what my laptop could serve even before any sort of caching, CDN, or anything else.
So... if a laptop can't serve that sort of request load, it sounds more like an indictment of the site's software than anything.
These are monitored, things do get noticed[0], and things like this can and have lead to CAs being distrusted.
It's not foolproof, and it's reactive rather than proactive... but in general, this is unlikely to be happening on major sites or at any significant scale.
I'd wholeheartedly recommend people taking some time and reading through the CA Compliance issues on Bugzilla. The entire CA program there, in my opinion, does a fantastic and largely thankless job of keeping this whole thing on the rails. It's one of the few things I can say I had _more_ trust in the more I looked into it.
[0]: https://bugzilla.mozilla.org/show_bug.cgi?id=1934361
reply