It's not a question of a default admin password anymore. Many people never update their router firmware to patch security holes or run old out-of-support routers that don't receive updates anymore. The risk is more often that someone is running a router that has remote exploitable exploits.

Fortunately those people are increasingly on ISP-managed equipment now, and more tech savvy folks throw their ISP router in the trash and run OpenWRT or PF/OPNSense or similar.

Also, the Chinese government has no real interest in me, and far less ability to lay hands on me than my own government. I don't want to be spied on by anyone, but if my choices are TPLink/CCP vs Cisco/NSA, I'll take China, thanks. Anything sensitive is end-to-end encrypted anyway, so sure they can do some traffic analysis, but I'm not too worried about my financial data or anything. They already got my life's story when they broke into OPM back in '15 and stole my SF86 anyways.

Same - it's a lovely little device. I use TPLink Omada (similar prosumer/SOHO stuff as UNIFI) for my managed switch, APs, and AP controller, but I wanted to keep my router open source and out of any one company's control.

The actual vault is just a mini PC in a nice machined aluminum case. Those aren't banned AFAIK, and OPNSense is just one of many OS options you can choose when you purchase it. It doesn't become a router until you install router software on it, which I assume is done by Protectli in CA.

I've pretty routinely seen claude break out of the sandbox in not super transparent ways. For example, it tries to run git commit, fails because the sandbox won't let git talk to my gpg agent to sign the commit, then it retries outside the sandbox and tells me what it's done after the fact. I think going forward the best practice is going to run it in a container with only project files mounted read-write and to have a pretty restrictive firewall around it.

Those are all features that could be implemented into Android auto. Google and the auto manufacturers just need to agree on an API for the phone to be able to send commands to the head unit, which can then broadcast them on the CAN bus.

Do you know if running a 3rd party OS like Graphene or Lineage precludes you from running apps that use DRM, like Hulu or Netflix? I've been toying with the idea of converting my NVidia shield, but I don't want to hobble its usefullness as a settop box in the family room.

A good portion of the defense budget that goes toward maintaining up America's military dominance in order to prop up the petrodollar.

How about throw them in jail for a while, let's say.... about 6 months. Ah fuck it, lets double it for the criminal negligence displayed.

You verify a signature with the public key that pairs with the private key used to sign. There is no need to keep a public key secret so no need to keep it offline on a fragile flash drive. You can and should keep the verification public keys available on the elections website available to all. Even if the private keys in the voting machine used to create the signature on the e-ballots are lost, you can still verify the signature with the widely available and corresponding replicated public keys.

Assuming the author is somewhat competent, it is much harder to spot a mistake in someone else's code than it is to just write it correctly yourself. AI can spew out reasonable-looking, almost-correct code at a much higher rate than any human reviewer can hope to keep up with.

What's maybe even worse, is that in working with claude code, I've noticed even if the code is correct, the comments it generates are often off. There will be false assumptions or mis-statements about the API being accessed. Those are time bombs for a junior engineer or a future AI session that comes in and takes them at face value.

For the adverts, they still depict trademarked products. Even if the content is not copyrighted, you still don't have free reign to use that trademark in an unauthorized manner.

The gas station gets its gas delivered by a tanker truck. You can have a gas station in areas with very little infrastructure. You can't deliver the electricity for the DC fast charger by truck.

Drawing 50kw to run lights and gas pumps is very different than drawing 500kw+ to run a bank of DC fast chargers. If you are in a remote area with marginal infrastructure, the line running to the proposed fast charger site might not be rated for that power. Or maybe the substation upstream of you can't absorb an extra MW of draw.

I'm an EV proponent. An EV is my primary vehicle, but waving away the real issues and downsides that come with owning one doesn't do anyone any favors. I regularly drive to an area in rural Maine that is a CCS desert. My destination is 40 miles from the nearest CCS charger, and 90 miles to one that is actually on my way home. This means in the winter, when my range drops by 20%, I need to either top myself off to near 100% before proceeding to my destination, so I have enough to get back to the charger on my way home, which takes a long time, or charge to 80% and resign myself to driving the 40 miles in the wrong direction to reach the closer fast charger on my return trip.

We will get there. Someday fast chargers will be as convenient and ubiquitous as gas stations, but we are not there yet. And don't get me started on how poorly some of these chargers are maintained or the idiocy of having to use a vendor-specific app for payment. Fortunately, 90% of my charging happens at home.

To the market, atmospheric pollution is just an externality that imposes no cost on consumption. The market will happily promote ICE vehicles as long as they are cheaper to produce than EVs and oil is abundant enough that consumers are comfortable enough with the price of gas that they will chose ICE over EVs. The market is is a machine for turning resources into value that will happily incinerate the planet if left unchecked.

Time isn't infinite either, particularly class time.

A typical high school period is around 45 minutes. If an AP calculus teacher would typically assigned 30m of homework/night, are you saying it is a good use of teacher and student time to have the teacher spend 2/3 of the class just silently proctoring homework, leaving only 15m for instruction?

Let's say it takes a student 15 hours to read a novel. That's about a month's worth of English classes. Instead of assigning the reading as homework, should the teacher just twiddle his thumbs in class for a month while he watches his students read? No in-class discussions on themes, no education about the historical context of the novel or discussing the intent of the author. No grammar or vocabulary lessons, just silent reading for for a month.