A password protected key depends on trusting a host that has already been compromised in this situation.

You can set up ssh to require BOTH a key and a system password. That is the most secure way of dealing with ssh keys. You can even add in another 2 factor thing if you need that too. Just remember that most common 2 factor systems are just another password with some math thrown in.

I buy from wholesalers and importers. Here in Melbourne Australia, US$.27 / watt is the going rate for lower quality panels, mounting frames and all roof top wiring and roof installation. The better quality ones I specify are $.40 / watt. You have to buy a pallet load of panels for that (8 or more and the ability to get a pallet off a truck). Typical panels are 330 to 450 watts. An non-battery inverter is going to cost about $300 per kw installed and getting the solar sign-off is going to cost a few thousand premium on a days work hooking things up depending on timing.

2 screens, 2 users for "fast user switching", a couple of virtual desktops and the memory is all gone without running any programs at all. A small 1920x1080 display now needs 8 meg of backing ram but each program will have its own double buffering so based on its window size, that is 16 m. You burn through 1/256th of the ram just running two full screen versions of text edit just for video backing. Throw in a reasonable number of apps and their windows and lots of that 16 gig ends up being swapped out video images. I'll often have 10 apps and some like safari will often have 10 windows. That makes the system so busy that it sometimes swaps out the main video backing memory resulting in 10 seconds of rearranging windows while disconnecting and reconnecting screens.

I sent the 16g m1 back because it simply wasn't useable. An 8 gig intel isn't useable with two screens without a massive ram update.

We are running out of addresses because of stupid routing rules that have been around ever since the Cisco AGS+ first ran out of memory for BGP.

My proposal at that time was to only allocate /24 address and not have them contiguous to encourage the router companies to make routers that could deal with 16 million routes with the goal of going to 2^28 routes in 10 years.

I have dual homed internet at home but I'm wasting most of a /24 because no one will route a /28 which is all I need. IPv6 doesn't fix that problem and has no solution to do so.

I would like to be able to route a portable /28 (and at least a v6 /66) to my home fixed line, starlink, mobile phone and fixed wireless networks. Right now I can only get two of the 4 to work because I have a /24 and two very friendly ISPs.

The old music industry wasn't about making lots of music, it was about limiting what was sold to a manageable amount and pushing that.

There was a local radio station that had a contest where bands had to send in a CD album and could nominate a song for the contest but the album had to have been made in the last year. A city of 3 million people had 3,000 entries. That would imply that there could be 8 million bands globally that could produce an album in the last year.

The sales issues of trying to sell 8 million new albums every year is simply incompatible with the existing music business.

I find safari with ad blocking on the new machine much slower than safari on the older one. Chrome and firefox are both much faster. A vast majority industry specific software is single threaded integer and much of the multi threaded only runs a small number of threads occasionally.

As far as benchmarking, I prefer throwing real software at it like openssl's speed test. It has the advantage of being on everything and easy to run even and can test multi-core performance.

Back when we got an Intel hypercube upgraded to a 386 model, one of the Intel benchmarking people pointed out that a benchmark isn't so much how fast the machine will run but rather a guaranteed speed that will never been exceeded by normal programs.

This is like saying you can fit a Vax into a PC desktop case.

The new m1 mac mini could only run my test software at double the speed of the decade old Intel 2011 mac mini. Considering the new one costs twice as much, it has been a decade and constant raving reviews, I would have expected much better performance. My old slow Ryzen is much faster. The code I was running was compiled for 64bit arm as well so it isn't an emulation problem. An easy test to run is use 'openssl speed' of something like MD4 which can't make use of dedicated encryption hardware and gives a reasonable integer speed test without building test programs.

This depends on the frequencies that are used to detect radar lock and how good that equipment is in detecting the changes in that signal. 64-QAM would look like noise on the carrier to older systems or coordination data and anti-jamming for a multistatioc radar for newer systems.

The old signal lock systems just had a wide band radar receiver that was tuned to enemy frequencies to alert the pilot. Newer ones would use doppler shift to figure the transmitter is getting closer. Modern systems have to deal with a passive receiver on the missile and a distant transmitter so the power levels hitting the target plane are much lower than older systems.

Can the Russian systems detect that? I don't know. I wouldn't advise putting a Starlink on the roof of a kindergarten in a war zone just in case some old equipment makes a mistake.

I bought a Pine Phone. It runs Android on its modem chipset and that thing likes to phone home. The Pine Phone is basically a tablet that talks to a Android based modem. The core Android thing has some nice AT+ commands to get it to do some interesting things. The odd thing is that it appears to be able to get some info via the local cell towers without any sim so the thing seems to be able phone home without a sim. At least there are settings so I can tell it to use a different AGPS server and things like that. The internal android thing isn't locked down so someone might be able to shim in a firewall or at least tcpdump on to it.

My BB Q10 is now EOL and I bought a Pine Phone to see if that held hope of breaking the Apple/Google duopoly and their ever tightening control.

The problem with the Pine Phone is that it is an Arm based tablet talking to a Android computer in the chipset hiding behind the ATDT commands.

And the Pine's GPS antenna design is broken bad...

I expect it is more like one lawyer's personal opinion about licenses. If Apple says don't use it, then any app store thing will not require it in time.

I use zsh on Freebsd. My only real issue with it is some of the default settings seem backwards to me. An example is wildcards must match something or zsh indicates and error while other shells tend to pass unexpanded wildcards along. That can be a pain with rsync remote:*.foo . which has to be quoted until that option is turned off.

At some point a hacker that is feed up with the energy waste or electronic waste or the general stupidity is going to crack one of these digital piggy banks and after pulling all of its loot will break all the keys.

I'm surprised it isn't already happing every day.

I think the kiosks should have a mode where it goes to the standard point of sale interface that the orderer taker sees. Some millions of people already know how to use that interface and it allows for adjustments to orders quickly.

ESC ends commands, not starts them.
In wq! the ! binds to the q, not the w so if the file can't be written, it will exit anyway. You want w!q or better x! which has been around for at least 4 decades. If you are using reference stuff that uses wq, find newer stuff.

People can't link to things on my abnormal.com web site on Facebook because of "community standards". It has been blocked for a few years and I have no idea why it is blocked.