Comment Re:Economics is highly successful (Score 1) 302
Average lot size for houses sold in 2019 was 8,177 sqft, so 6,295 probably is probably too small for current lot size.
Average lot size for houses sold in 2019 was 8,177 sqft, so 6,295 probably is probably too small for current lot size.
As others have pointed out, the average house size in 2023 is not 6,295 sqft. Maybe that is lot size?
The average house size in 2022 is 2,014 sqft (source: The 2022 American Home Size Index). In 2022, the average size of a new home was 2522 sqft. So it is more like double what it was in 1950. Your original premise that it should be factored into the equation is valid, but it doesn't account for the majority of the change in "Years Salary to Buy house."
You are drastically understating the risk.
China was responsible for the OMB hack, so they have a list of US government employees and what agencies they applied for (along with very detailed information about them including their friends and family as well).
According to the FBI, "China is engaged in a highly sophisticated malign foreign influence campaign, and its methods include bribery, blackmail, and covert deals. Chinese diplomats also use both open, naked economic pressure and seemingly independent middlemen to push China’s preferences on American officials."
https://www.fbi.gov/news/speec...
As mentioned in the OP, users caught with child pornography information is sent back to China. Why do you think that is? They can't enforce US laws. US tech companies report child pornography they find to US law enforcement (how it should be IMO as I think most of us can agree child pornography and pedophiles are bad). Chinese companies don't use that information for law enforcement, they use it for blackmail. Don't you think they correlate that information with their OMB data to find high priority blackmail targets? This is a threat to national security; congress would be completely valid in banning Ticktock for all government employees and government contractors. I would not be surprised if China also targets employees of businesses where they want inside information.
Ticktalk is a threat to national security IMO. Pretty much any software you install on your phone or computer that is owned by a company run by a hostile foreign government is. I agree that it is unfair that congress is singling out Ticktalk; we should be targeting all Chinese and Russian software. I don't think there is much software coming out of Iran or North Korea although there are open source libraries and contributions from Iran.
I don't know how careful we are about not using open source libraries from Iran in US government software in practice. NIST 800-53 Rev 5 has added a whole supply chain category including control SR-6 which includes considering "foreign ownership, control or influence (FOCI)", but SR-6 isn't part of the old NIST 800-53 rev4 based FISMA or FedRAMP low/moderate/high control lists. The old FISMA/FedRAMP high includes SA-12 Supply chain protection, but SA-12 doesn't specifically call out FOCI. The new FISMA/FedRAMP based on NIST 800-53 Rev 5 that was just approved in May added SR-6 for moderate and high and the transition to rev 5 looks like it will be by some time next year depending on assessment date. So hopefully this is a risk we will be taking more seriously.
You are correct it is 100 rooms, not 200. I think they told us there were around 200 people there, so I think I mixed that up with the number of rooms. Most of the people there for our stay were adults, not kids, although there were probably 20 or so kids. Everyone in my party really enjoyed it. It's not something we will likely do again anytime soon because of the cost, but as a one time thing it was definitely an awesome experience.
Check-in was at 1:00pm, not 4:00pm for us, but your 45 hours is correct. They had activities starting at 2:00pm I believe. If you are up for a late night, you can do stuff from about 4:00pm-midnight on the first day. The second day you can do 7:00am-midnight if you have the energy, but there isn't much on day 3, just breakfast.
Out of the 45 hours, there is about 30 hours of entertainment and meals and 15 hours dedicated to sleep and downtime. The food there is amazing.
How long you spend at Galaxy's edge on the second day is entirely up to you. The Galaxy's edge experience is different as part of Galactic Starcruiser then it is if you just buy a park pass. You have quests you can do, there are some Disney staff interactions that only apply if you are on Starcruiser quests (e.g., you ask for something from an Oga Cantina hostess), and you can interact with parts of park that isn't available normally. For example, there are quests to interact with the droids outside of droid depot which to a normal guest are just decoration, but they activate for someone on the Galactic Starcruiser quest. One of the quests has you de-activate a machine that is normally running and your quest turns it off (for about a minute and then it reactivates). There are activities and quests available on the Halcyon for the second day; some of the quests send you to one or the other, but the app monitors your location between the Halcyon (hotel ) and Batuu (Galaxy's Edge) and adjusts your quests based on where you are.
You get a coupon for a free quick serve meal at Galaxy's edge if you want to eat there on your Batuu's day as part of your Galactic Starcruiser, but a lot of people head back to the Halcyon for food, because the food is better or on par with the best park restaurants and the Halcyon food is an experience.
As someone who has done both, Galaxy's Edge is not the same thing as Galactic Starcruiser and you won't get the Galactic Starcruiser experience just doing Galaxy's Edge. That said, Galactic Starcruiser is expensive, and I would recommend it more for people who enjoy RPG style quests, except doing them in person (It's probably considered larping, but way better than any larping I've tried). It's probably more fun for someone who enjoys interacting with staff in character, than someone who is shy. That said, what you do during Galactic Starcruiser is up to you; there are other activities to choose from if you don't want to larp. My son spent a lot of time just playing Sabaac at the table in the cantina, doing the Sabaac tournaments, and some of the kid activities like droid racing. There are some really cool part of Galactic Starcruiser like the lightsaber training, bridge training, and the "Taste around the Galaxy" dinner entertainment. Interacting with Star Wars characters as if you are in one of the movies was a lot of fun.
Most of the activities are in the hotel (the Halcyon ship). At the price you are paying, it wouldn't make sense to leave the hotel and miss out on the activities you are paying for.
For the second day, there is a "shuttle" ride to Batuu (Galaxy's Edge at Hollywood Studios) and you can go back and forth between the hotel and Galaxy's edge as much as you want during shuttle hours (was something like 8am to 4pm). The "shuttle" felt like a tram-type ride that took a little under 10 minutes each direction, but the windows show you riding between the planet and the Halcyon space ship (the windows are very small and up above you, so I wouldn't say the ride is anything special). On one of our rides, we got an impromptu quest to help smuggle a box back to the Halcyon.
Obviously you can leave for an emergency. When we booked our trip, we only got a slot at Savi's Workshop slot for our son out of the slots reserved for Galactic Starcruiser, but my wife, myself, and one other person in our party wanted to do it also and were on the wait list. We actually got the wait list call back around 5pm which was after the shuttle stopped and we asked the staff and they gave us a behind the scenes ride and tour over to Savi's Workshop (we weren't allowed to take any pictures behind stage) and rescheduled our dinner from the earlier to the later time slot. They warned us that it would break the immersion experience, but we found it really fun. Galactic Starcruiser was expensive, but we felt we got a VIP experience.
The story that takes place on board the Halcyon for Star Wars: Galactic Starcruiser seems to take place between The Last Jedi and The Rise of Skywalker. I believe it is basically set at the same time period as the Galaxy's Edge area at Hollywood Studios. Part of the Galactic Starcruiser stay is at Galaxy's Edge and it would be weird for the quests if they took place at different time periods.
The smartphone usage isn't just to record the experience, Galactic Starcruiser has a data pad app that you run on your smart phone (or they loan you one) that gives you all the quests, has messages from the characters you are interacting with, coordinates the onboard activities, translates signs, scans QR codes on items, etc. It has tabs for Events, Comms, Tools, Map, and Profile.
You choose what you do during your stay, but if you enjoy RPG style quests, then you can spend a bit of the stay doing quests on your phone. There are usually at least a couple different activities going on at any given time; kind of like a Disney cruise, but there are only 200 cabins I believe so it's on a much smaller scale than a Disney cruise ship. There are gaps where there are no quests to do, or at least there was for me which gives some downtime to do other stuff. The quests seemed to stop progress around midnight also, so you wouldn't stay up too late working on them.
There is the FOX News Channel on cable TV, but there is also FOX News on FOX broadcast TV stations that covers a lot of the same news and bias. FOX News Network, LLC provides content for both from my understanding. You are correct that the FCC does not regulate the FOX News Channel on cable TV, but it does regulate FOX News on broadcast TV stations, which is why I specified broadcast news. The FOX local news channels have a much higher audience than the FOX News Channel (71% of adults watched local news in 2013 with FOX as the most watched, compared to about 1% of Americans who watch FOX News Channel on cable TV).
I don't actually know whether Sohn mean FOX News Channel specifically or FOX News Network which includes both cable and broadcast TV, but I would assume she meant FOX News Network.
She has attacked Fox News. She tweeted "So do you still want me to believe that social media is more dangerous to our democracy than Fox News?" and she shared a tweet "Your raggedy white supremacist president and his cowardly enablers would rather kill everybody than stop killing black people."
https://twitter.com/gigibsohn/...
https://www.msn.com/en-us/news...
Gigi Sohn's negative comments about Fox News have led some to believe she could attack them if appointed to a seat on the FCC which is not popular with even some moderate democrats.
I'm not a fan of Faux News myself, but someone who is responsible for regulating broadcast news needs to be seen as a bit more unbiased.
Someone who has spoken out against Fox news and Trump is not going to get any republican senators to nominate them.
Cloture on executive nominations only need majority since 2013 (2017 for supreme court). Democrats don't need any republican support as long as they have all but one of the democrat and independent caucus.
"Over the past year, Sens. Joe Manchin (D-WV), Mark Kelly (D-AZ), and Catherine Cortez Masto (D-NV) have remained hesitant to offer Sohn their support."
Source: https://prospect.org/politics/...
To be fair, Gigi Sohn has said some controversial stuff. She tweeted "So do you still want me to believe that social media is more dangerous to our democracy than Fox News?" and she shared a tweet "Your raggedy white supremacist president and his cowardly enablers would rather kill everybody than stop killing black people."
https://twitter.com/gigibsohn/...
https://www.msn.com/en-us/news...
Gigi Sohn's negative tweets about Fox News have led some to believe she could attack them if appointed to a seat on the FCC which is not popular with even some moderate democrats. I definitely want to see net neutrality restored. Personally I wouldn't mind someone involved with the EFF appointed to the FCC, but Biden may need to pick someone less controversial.
This is cirrus news for nerds!
Apologies if this joke mist.
Per the article, the initial SMS was used to direct the user to the fake phishing web site. According to the article, 47% of Okta customers use SMS or voice-based MFA. The attack also worked on companies using TOTP MFA.
TOTP doesn't solve phishing attacks. The attacker just tricks the victim into give them the TOPT (by entering it into a fake website). SMS is less secure because it's vulnerable to hijacking attacks like sim swapping in addition to these phishing attacks.
Even push-notification based apps are open to these attacks to some extent. When the victim logs into their fake web site, they then initiate the real connection, and then when the user gets the notification to approve the activity they can think it's them and approve it. Some of these apps will provide the location of the request or the IP address (not many non-technical people would recognize the wrong IP address). If the victim is asked to approve a login from Russia or China some might notice, but how many users will approve the request without reading the location?
The best way to prevent these kinds of attacks is to have multiple layers of security. Require a physical security token like a smart card or FIDO token. Use device-based or zero-trust based authentication: Require the authentication to come from a corporate owned device. Require the user to be in the office or on the corporate VPN to log in (the VPN should have protections, if it's just a web-based VPN that the attacker can phish that wouldn't help). Any of these additional security layers would prevent this type of attack. The article mentions that Twitter was protected from this attack because they had moved to security keys after a previous 2020 phishing attack.
A lot of people misunderstand what HIPAA protects against. HIPAA only applies to covered entities such as health care providers and health insurance companies.
If a company, employer, school, etc. asks you health questions and you answer them, then HIPAA does not apply (other laws may apply). Your smart watch or health app on your phone is not covered by HIPAA, even though a medical device provided by a health care provider that gathered the same data would be. Apple, Fitbit, etc. can do whatever they want with the data as long as their privacy policy says they can (otherwise they could get in trouble with the FTC, although that's pretty toothless compared to HIPAA). Most privacy policies include vague language that lets companies do whatever they want (and a lot do). The US is in desperate need of better privacy laws.
The key elements in human thinking are not numbers but labels of fuzzy sets. -- L. Zadeh
