I can't find an official source, but I suspect the blast radius isn't limited to the AZ.
I have systems running in us-east-1, and over the course of the incident, I noticed unexplainable intermittent connectivity issues that I've never seen before, even outside of az4.
A good lot of them seem to be from Matt Lakeman, whose writing I highly recommend. He goes into detail about history, politics, and tries to understand why things are the way they are in the places he travels.
Read his take on Spain. If all his guides are the same... Better don't read them.
As libertarian (he is the one mentioning it I did not have to look for it), he spends too much text -wrongly- analyzing the politics. His comment about socialized healthcare is an example of someone having "only one appointment per month" as a big failure of the system, that's rich coming from someone from the Country in which people die because they have to ration their insulin.
And apparently Spain is more radical because communists get a few seats every election, but somehow America is less radical despite 30% of the population consistely supporting the fascists. He notes the far-right party without realizing that their platform is almost 1 to 1 to American Republicans... And I am going to stop there, but his takes in general are awful.
They can, they will be available on the black market along with every other widely used illicit recreational drug.
Banning tobacco won't make the problem disappear, people want their poison, including sensible rational people who accept the risks and use in moderation.
Banning tobacco will push it underground, giving criminals a new revenue stream which can fund more harmful activities.
Not only will the govt lose out on tobacco tax, they may have to ramp up law enforcement expense to crack down on the now illicit tobacco trade and ever more empowered criminals.
Users of the black market products will have no guarantee of quality assurance, products may contain additional harmful additives.
There's an optimal level of tax and regulation to keep distribution out of criminal control, educate the general public, and offer support to the serious victims, all the while collecting tax to fund these activities.
This is precisely what many countries are already doing to varying degrees.
And the same argument can be made for many vices, including gambling and alcohol.
> As a consequence there is a quiet crisis in young people, 18-30, deeply in debt, working second and third jobs so that they have a bit more money to gamble.
> We installed mitmproxy on a Mac, configured an iPhone to route traffic through it, and installed the mitmproxy CA certificate on the device.
> All HTTPS traffic was decrypted and logged. No modifications were made to the traffic. The app was used as any normal user would use it.
Is it really that simple to inspect network traffic on an iPhone, namely to get it to trust the user-installed cert? I do quite a bit of network inspection on Android and I find it to be painful, even if the apps don't use certificate pinning.
Regardless, it highlights the importance of having control of our own devices, including the ability to easily inspect network traffic. We have the right to know where our data is being sent, and what data is being sent.
I recall during COVID it was discovered that Zoom was sending traffic to China. There was also the recent case of Facebook tracking private mobile browsing activity and sending it to their servers via the FB app. Imagine how much questionable traffic goes unnoticed due to the difficulty in configuring network inspection for apps.
> Is it really that simple to inspect network traffic on an iPhone, namely to get it to trust the user-installed cert?
iOS still trusts user-installed certs by default, unlike Android's opt-in model.
However, this only applies to apps using the OS TLS stack. Apps packaging their open openssl may use their own set of certificate authorities. Also, most big apps use certificate pinning for most of their domains.
Apps from Twitter or Facebook probably won't work due to pinning. Quick and dirty could-have-been-a-single-web-page apps, such as this one, usually won't bother with any of that, and neither do many tracking libraries.
Of course, malicious apps can detect when someone is using an altered certificate and choose not to send traffic until the MitM is over.
Yes, it is _a lot_ easier to set up mitmproxy on iOS vs Android. But once you encounter an app with certificate pinning, being on a more open platform that lets you install your own apps can help get around that.
Installing the CA requires jumping through some hoops, but yes, intercepting traffic for apps that don’t use cert pinning isn’t that difficult on iOS.
Apps that do use cert pinning is a whole other matter, I’ve tried unsuccessfully a few times to inspect things like banking apps. Needs a rooted device at the minimum.
Regardless, it highlights the importance of having control of our own devices, including the ability to easily inspect network traffic. We have the right to know where our data is being sent, and what data is being sent.
Meanwhile I've always found it amusing that there's a loud, probably corporate-owned/Big-Tech-brainwashed subset of the "security" crowd who complains about MITM proxies.
> I recall during COVID it was discovered that Zoom was sending traffic to China.
Yes it was. Imagine, all those (lower) governments holding crisis meetings and sending the video and audio to China. What are the chances that all that stuff was recorded. Nice training data for some deepfakes.
There are a huge number of factors to consider depending on your company's goals and your personal goals. Things like access to investors, access to talent/staff, your desire to relocate, your profit/reinvestment intentions and tax treatment.
Maybe describe why you're interested in Netherlands & Estonia.
These alternative domains are quite popular with the fediverse and other hobbyist-run groups. Affordable domains with somewhat recognisable names still available.
Scam websites will use any TLD in my experience. Based on the ones that made it to my Google search results, .it and .info are the TLDs I should be blocking. When I search for "free roblox cash", most websites are .com. "Free robux" also brings forth a few .ca websites. "Free steam gift card" leads to .org and .com.
Despite blocking 66 TLDs and all IDN ccTLDs on my home dns I didn’t have these blocked. Guess I’ll consider it. Once you have the hagezi rpz files including threat information feed though you really have blocked most silliness.
I'll append the current list below. My primary issue is protecting my son. His educational difficulties present a problem when it comes to determining when a link is good or bad. It is easier to cast a very wide net and whitelist good sites. There are other reasons for some of the TLDs but I can't go into that here.
ad ads adult af alibaba alipay analytics anquan asia baidu
bar bcn bible blockbuster by cf cfd cg chintai christmas
citic click cloud cn coop country creditunion cyou data
dish diy dm dot dtv dvr et feedback food forum fun gift
hiphop hiv hk hkt host icbc il in iq ir kfh kp ky latino
lb lifestyle link living locker lol love ly ml mm mo
mobile moscow mov music my nhk ni nz observer ollo online
ott ph phone pid porn press property pw quest realty
redstone ren rest ru sbs sex sexy shouji site sling
so sohu space st store su sy tech to top trust ua unicom
uno vana ve wang website xihuan xxx yandex ye yun zip
I have systems running in us-east-1, and over the course of the incident, I noticed unexplainable intermittent connectivity issues that I've never seen before, even outside of az4.
reply