Original use case: Your site allows an anonymous visitor to register an account. They enter a USERNAME and an EMAIL ADDRESS. Your site sends them a verification code using the text: "USERNAME, thank you for registering, your verification code is XXXXXX". Your site's emails pass SPF and DKIM verification.

Guess what, now you are an accomplice in spamming, phishing, and fraud.

How so?

The attacker pretends to register with the EMAIL ADDRESS of victim@example.com and a USERNAME of "Congratulations, you are eligible for a gift, please claim it at malicious.site.example.net/UNIQUE_STRING". The site name is crafted to be a typosquatting attack on some site well known to the victim.

Your site dutifully sends that verification code. After template substitution, the text becomes: "Congratulations, you are eligible for a gift, please claim it at malicious.site.example.net/UNIQUE_STRING, thank you for registering, your verification code is XXXXXX". Which happens to be a grammatically correct sentence in English.

If the victim is gullible enough to click through, the unique string allows the attacker to deduce that the victim's address is in fact active, being read, and being clicked through. Then the malicious site can ask for the user's credentials for the original site, or for credit card number + exp date + pin, or other interesting stuff.

Taking things literally: GFDL allows the User to use the Original Work for free for any Purpose. Substitute User=Anthropic, Purpose=Training.

The training set, possibly the model weights blob, and maybe even the server that takes API requests and streams the responses back to the clients would be Derived Works. So any User2 who receives them may ask for Corresponding Source.

Problem is, that set of User2 is a singleton, namely, { Anthropic }. Actual users do not receive the weights or the server.

Self-hosting Miniflux (Go + PostgreSQL + Docker Compose), with a custom-built reader page.

A single last mile fiber owned by the town is a single point of failure. When a stray excavator damages that, you'll have to wait until it is repaired; and the priorities of people responsible for dispatching the repair crew may not align with yours. (Case in point: In a pinch, I could go without hot water for a week, but an hour of Internet downtime drives me up the wall.)

When each ISP owns their fiber, they have the incentive to fix; and if one provider doesn't do that quick enough, you can have a fallback over a different fiber which has the chance to be undamaged.

Very sad to see US following Russian state's rhetoric. "Avoid foreign software and services and if you're not conscious enough to do it on your own then we'll ban and/or cripple your means of accessing them".

Tampering with DNS is one of the easiest to attempt but definitely not the only means of web site blocking that governments will try.

Step 0: Some $ACTIVITIES are considered illegal by law of $COUNTRY.
Step 1a: A law is passed in $COUNTRY that requires $SERVICE providers to take some measures to prevent or hamper $ACTIVITIES or face penalties. -- you are here
Step 1b: providers of $COUNTRY comply.
Step 1c: citizens of $COUNTRY start or continue using international providers of $SERVICE.
Step 2a: International providers of the same $SERVICE are asked to comply or face penalties.
Step 2b: they don't.
Step 3: A government organization is founded that maintains a list of sites engaging in $ACTIVITIES, and of providers which did not choose to comply.
Step 4a: Internet service providers in $COUNTRY are asked to block known sites in the list. And providers in the list.
Step 4b: they do.
Step 4c: some citizens applaud because think of the children. Others start using VPNs.
Step 5a: VPN providers are asked to (see step 2a).
Step 5b: see step 2b.
Step 6: VPN providers end up in the list. See step 4a. ...

First they came for the suiciders, and I did not speak out, because I was not a suicider. Then they came for the pedophiles, and I did not speak out, because I was not a pedophile. Then they came for those giving information on narcotic drugs, and I did not speak out, because...

Minimize and Maximize in the upper right side weren't new in Windows 95 though; they were there in Windows 3.0/3.1/3.11, too. They just got new icons. Close was the new one; previously, the canonical gesture for closing a window was a double click on the system menu on the left.

In the Navy, isn't piracy punishable by fish feeding though?

Siri zaps you for use of octal in 2022. The proper syntax is "backslash U 0053 backslash U 0069 backslash U 0072 backslash U 0069", and yes, that first letter is capital.

They should make it ignore the keyword when it is preceded by the word "backslash", or make a scare-quote gesture with your fingers when pronouncing it.

> Also, is it worthwhile to make the pages available in a zip file? Then a reader could download a snapshot of the book, and read it off-line.

A zip file containing web pages, with a few additional formalities, intended for offline reading, is called an EPUB book.

> Do not use PDFs to present digital content that could and should otherwise be a web page

You mean, all of it?

You do not just get rid of Caps Lock.

You redesign the whole board layout. Get rid of row stagger. Introduce column stagger. Make it symmetrical. Move arrow keys closer to where hands are most of the time. Move modifier keys from pinkies to thumbs. Make it split and tentable and/or build keywells while you are at it.

Oh yes, automated patching for 4 years and beyond is going to keep all the rest of the checks valid.