first time law enforcement are sharing actual csam with a technology company

It’s very much not: PhotoDNA, which is/was the gold standard for content identification, is a collaboration between a whole bunch of LEOs and Microsoft. The end user is only going to get a ‘yes/no idea’ result on a matched hash, but that database was built on real content working with Microsoft.

Disclaimer: below is my experience dealing with this shit from ~2015-2020, so ymmv, take it with some salt, etc.

Law enforcement is also rarely the first-responder to these issues, either: in the US, at least, reports will come to the hosting/service provider first for validation and THEN to NCMEC and LEOs, if the hosting provider confirms what the content is. Even reports that are sent from NCMEC to the provider aren’t being handled by law enforcement as the first step, usually.

And as for validating reports, that’s done by looking at it without all the ‘access controls and safeguards’ you think there are, other than a very thin layer of CYA on the part of the company involved. You get a report, and once PhotoDNA says ‘no fucking clue, you figure it out’ (which, IME, was basically 90% of the time) a human is going to look at it and make a determination, and then file a report with NCMEC or whatever, if it turns out to be CSAM.

Frankly, after having done that for far too fucking long, if this AI tool can reduce the amount of horrible shit someone doing the reviews has to look at, I’m 100% for it.

CSAM is (grossly) a big business, and the ‘new content’ funnel is fucking enormous and is why an extremely delayed and reactive thing like PhotoDNA isn’t all that effective is that, well, there’s a fuckload of children being abused and a fuckload of abusers escaping being caught simply because there’s too much shit to look at and handle effectively and thus any response to anything is super super slow.

This looks like a solution to make it so less people have to be involved in validation, and could be damn near instant in responding to suspected material that does need validation, which will do a good job of at least pushing the shit out of easy (ier?) availability and out of more public spaces, which honestly, is probably the best thing that is going to be managed unless the countries producing this shit start caring and going after the producers which I’m not holding my breath on.

Btw.

First: you’d probably be shocked how many pedos have zero opsec and just post shit/upload shit in the plain.

By which I mean most of them, because those pieces of crap don’t know shit about shit and don’t encrypt anything and just assume crap is private.

And second, yeah, I’ll catch kids generating CSAM, but it’ll catch everyone else too, so that’s probably a fair trade.

That’s a wee revisionist: Zen/Zen+/Zen2 were not especially performant and Intel still ran circles around them with Coffee Lake chips, though in fairness that was probably because Zen forced them to stuff more cores on them.

Zen3 and newer, though, yeah, Intel has been firmly in 2nd place or 1st place with asterisks.

But the last 18 months has them fucking up in such a way that if you told me that they were doing it on purpose, I wouldn’t really doubt it.

It’s not so much failing to execute well-conceived plans as it was shipping meltingly hot, sub-par performing chips that turned out to self-immolate, combined with also giving up on being their own fab, and THEN torching the relationship with TSMC before you launched your first products they’re fabbing.

You could write the story as a malicious evil CEO wanting to destroy the company and it’d read much the same as what’s actually happening (not that I think Patty G is doing that, mind you) right now.

Yeah but it’s priced the same as a cheap laptop and/or desktop, which of course doesn’t then require you to pay monthly to actually use the stupid thing.

It feels like another ‘Microsoft asked Microsoft what Microsoft management would buy, and came up with this’ product, and less one that actually has a substantial market, especially when you’re trying to sell a $350 box that costs you $x a month to actually use as a ‘business solution’.

This would probably be a cool product at $0 with-a-required-contract-with-Azure, but at $350… meh, I suspect it’s a hard sale given the VDI stuff on Azure isn’t cheap.

Amazing what happens when your primary competitor spends 18 months stepping on every rake they can find.

And, then, having run out of rakes, they then deeply invest in a rake factory so they can keep right on stepping on them.

This’ll probably be a lot more interesting a year from now, given that the product lines for the next ~9 months or so are out and uh, well…

Yeah but all Google needs to do is back up a dump truck of cash to Mar A Lago, and he’ll forget all about whatever it was he didn’t like about Google and immediately start tweeting how he’s the bigliest fan of all the very good things Google is doing, so I’m going to skip the breath holding bit.

really effects performance that much

Depending on the exact flags, some workloads will be faster, some will be identical, and some will be slower. Compilier optimization is some dark magic that relies on a ton of factors, but you can’t just assume that going from like -O2 to -O3 will provide better performance, since the optimizations also rely on the underlying code as to what they’ll actually make happen… and is why, for the most part, everyone suggests you stop at -O2 since you can start getting unexpected behavior the further up the curve you go.

And we’re talking low single digit performance improvements at best, not anything that anyone who is doing anything that’s not running benchmarks 24/7 would ever even notice in real world performance.

Disclaimer: there are workloads that are going to show different performance uplifts, but we’re talking Firefox and KDE and games here, per the OP’s comments.

Also they do default to a different scheduler, which is almost certainly why anyone using it will notice it feels “faster”, but it’s mainlined in the kernel so it’s not like you can’t use that anywhere else.

The master-omnibus image bundles all that into a single container is MUCH simpler to deploy.

Literally just used their compose file they provide at https://github.com/AnalogJ/scrutiny/blob/master/docker/example.omnibus.docker-compose.yml and added in the device names and was done.

I mean even if you could remove them, the problem is that beige is not always the same beige: same problem you had 30 years ago.

The colors would never, at any point, remotely match the rest of the beige, and it’d be nice if a premium product that exists only for the aesthetics, would have just you know, done that last itty bitty little thing so it’d look right (from at least a distance) and be color matched.

It’s really too bad they couldn’t have made the bay covers either plain or actually look like a floppy drive.

So close, and yet, so far.

Are uptimekuma and whatever you’re trying to monitor on the same physical hardware, or is it all different kit?

My first feeling is that you’ve got some DNS/routing configuration that’s causing issues if you’re leaving your local network and then going through two layers before coming back in, especially if you have split horizon DNS.

They made awesome portable TVs like uh, 30 years ago.

For sure, just wanted to mention that it’s not just the China side of the trip you need to be vigilant about.

I’m literally using 15.1 right now, and set up 86box las tonight which is unsigned.

You hit a button in the control panel, say ‘fine’, enter your password and it runs.

So no, that’s not how it works and he’s just plain wrong, but it’s Lunduke who is usually wrong when he’s not being a chud, so that’s the usual for him.

I’m going to roll my eyes: if you read the change it’s literally ‘Instead of cmd-clicking, you need to hit ‘okay cool’ in the control panel’, not YOU CANT RUN UNSIGNED SOFTWAER!!@11!!111

The reason for this change was, shockingly, because malicious asshats were putting up malware pages telling people ‘oh you have to cmd-click to install totally legit thing here!’ and this puts a nice warning up in front of less-educated people in the hopes of preventing the spread of malware.

I’m 100% for this change since it literally adds 3 seconds of clicking a single time for an app, and makes it where my family members are less likely to get totally screwed over.

If your device is out of your sight, then yeah, you should probably assume it’s compromised.

Of course, that’s hardly JUST China doing funky shit with your devices, but depending where you’re calling home, odds are customs/immigration when you head home will try to do the exact same thing, too.

And the answer to everything is yes, always use a VPN if you don’t trust the network and you should never trust the network.

Judging from the last time I looked at their comment platform, it had the feeling that the only users of it were ones that were banned from Youtube because of the toxic shit they’re wanting to post so I mean, I guess, but it’s not the experience you’re wanting, probably.

The really gross part is this is firmly not just Americans being stupid this time, and has somehow become The Thing To Say Online for the whole damn planet full of incel types.

Does !12345:p do what you want?

Edit: that also makes hitting the up arrow result in whatever command that was, so if you wanted to edit the line or whatever, you could !12345:p, up, then edit and execute.