🚀 Seen my posts and want more? Dive deep into the issues with Big Tech at Escape Big Tech!

💡 Need FOSS-focused software solutions? Reach out on Matrix at @dannym:balooga.xyz!

  • 14 Posts
  • 193 Comments
Joined 1 year ago
cake
Cake day: June 14th, 2023

help-circle



  • The medical industry has very bad security practices in general from what I hear. You can basically expect that your medical history is accessible to lots of companies that should have nothing to do with it, not just Microsoft. Pretty much all of your health data is probably in the hands of at the very least Google and Amazon and the sad reality is that people don’t care about security and privacy until it’s too late. The number one server provider for anything healthcare related is AWS and the legal requirements they have to follow for data protection, HIPAA, are the sort of requirements that only a politician would think are actually beneficial to keeping data secure.

    EDIT: to be clear, I hate it, and I think you made the right choice, but sadly expecting privacy of our medical information is gonna keep being a battle, until the medical industry starts taking it more seriously





  • Those tests are worth more than four years of college?

    Yes a test to figure out if you can perform your job is significantly more valuable than a collage degree, this doesn’t mean that college has no value, mind you, it just means that knowing how to do the job and knowing that you fit in with the company culture is vastly more important.

    Go get a bunch of I.T. certifications. Get your CompTIA A+, Network+, Security+ Get a Microsoft MCP or MCSA

    Those certifications are useless, they look good on your resume because managers love showcasing their staff’s “certifications”, as many companies that don’t understand IT put value on the certifications more than anything else, but they don’t actually provide you any value in of themselves. Sure it might be interesting how many network switches you can daisy chain according to the standards, but it has no real value most of the time, if that’s information you need in your job it’s something you can just look up, HOWEVER, asking you random questions that pertain to the job during the interview IS a good way to understand if you’re a good candidate, and, often, the actual response doesn’t matter as much as your reasoning for getting to that response.

    When an interviewer at google asks you how many pennys it would take to make a structure as tall as the empire state building, it doesn’t matter what the answer is, truly, even if you got the exact number of pennys, just saying the number would mean you don’t pass the interview, your answer would be worth less than an answer that gets it wrong by 75% but is well reasoned, what they care about is how you come up to the conclusion that you come up with, the solution is useless.





  • That’s not the issue. You can attempt as many passwords as you want in actually secure password managers as well. KeepassXC for instance IS secure, you can still brute force the password, but because of the hashing algorithm they use it’s extremely hard. With PKZIP if you know some of the words in the file, you can easily guess the password in just a few hours because the encryption algorithm it uses isn’t secure









  • Pretty clear you either haven’t read the bill or grossly misunderstood it. What you describe is not proposed legislation - it’s the current reality that individuals and independent repair shops already live with.

    The 2024 variant of the bill isn’t actually publicly available online, but here’s last year’s WIP text:

    https://olis.oregonlegislature.gov/liz/2023R1/Downloads/MeasureDocument/SB542

    Absolutely, the bill you mentioned is the one I was referring to. It does state that manufacturers must provide documentation, tools, and parts to both independent repairers and owners under fair terms. However, the real issue lies in how “fair and reasonable terms” are interpreted and applied in practice.

    Here’s a quote from Google’s actual response:

    User safety should be a top priority. Improper repair can be dangerous—especially if individuals use faulty parts or are unfamiliar with safety critical components, such as lithium ion batteries.** Legislation should acknowledge the risks borne by unskilled repairers and allow original equipment manufacturers (OEM) to provide parts assemblies rather than individual components to reduce the risk of injury.**

    Doesn’t scream right to repair to me, let’s continue.

    Right to Repair regulation should focus on: Devices that are repaired by an OEM’s existing repair offerings3 Right to Repair legislation in the United States is focused on leveling the playing field between OEM repair and independent repair offerings and putting consumers first, which we fully support

    So, if they don’t repair their devices and only replace assemblies, they’re not required to do anything for RTR, how convenient!

    Right to Repair regulation should focus on: Parts that are provided by an OEM’s existing repair operations

    Hmm… So the easiest way to comply with the law is to not do anything

    Policies should encourage repairers and recycling centers to recycle or to dispose of e-waste responsibly. We believe repair can be an important mechanism to reduce the large and growing problem of e-waste

    Classic corporate green washing, this doesn’t mean recycling, it means break products, into as many parts as possible and dispose of them.

    This is what recycling means to big tech:

    Those are icloud locked iphone mainboards that have had their chips drilled through (this is "recycling). Some extremely smart people have figured out how to scrap them for parts, but that’s the ingenuity of actual repair people, not Big tech’s recycling.