They’re focused entirely on the shitty practices those other manufacturers engaged in. In that regard, Valve didn’t do much (and that’s a good thing).

Which system(s) are you playing on?

Good to know! I saw that mentioned on some (apparently outdated) Comodo marketing copy as a benefit over LE

EV certs give you an extra green bar or something along those lines. If your customers care about it, then you have to. If they don’t - and they probably don’t - it’s a waste.

What exactly are you trusting a cert provider with and what are the security implications?

End users trust the cert provider. The cert provider has a process that they use to determine if they can trust you.

What attack vectors do you open yourself up to when trusting a certificate authority with your websites’ certificates?

You’re not really trusting them with your certificates. You don’t give them your private key or anything like that, and the certs are visible to anyone navigating to your website.

Your new vulnerabilities are basically limited to what you do for them - any changes you make to your domain’s DNS config, or anything you host, etc. - and depend on that introducing a vulnerability of its own. You also open a new phishing attack vector, where someone might contact you, posing as the certificate authority, and ask you to make a change that would introduce a vulnerability.

In what way could it benefit security and/or privacy to utilize a paid service?

For most use cases, as far as I know, it doesn’t.

LetsEncrypt doesn’t offer EV or OV certificates, which you may need for your use case. However, these are mostly relevant at the enterprise level. Maybe you have a storefront and want an EV cert?

LetsEncrypt also only offers community support, and if you set something up wrong you could be less secure.

Other CAs may offer services that enhance privacy and security, as well, like scanning your site to confirm your config is sound… but the core offering isn’t really going to be different (aside from LE having intentionally short renewal periods), and theoretically you could get those same services from a different vendor.

You can get wildcard certs with LetsEncrypt (since 2018): https://community.letsencrypt.org/t/acme-v2-production-environment-wildcards/55578

The article explains the infographic and adds a lot more context.

The amount of arsenic depends on location - if you’re in a region that has standards on arsenic levels, like the EU, UK, or the US, then you’re probably fine, but the levels may be higher than what’s considered safe for children. This method would allow you to reduce the levels by around 50%, and since the levels for children are a bit under half of what’s acceptable for adults, that’s likely to make it safe for them.

The time savings are relative to other methods for reducing arsenic content, like cooking it with excess water (like a 12:1 ratio) and then discarding the excess, as this method allows you to use a rice cooker for the remaining time and to cook with a much smaller water:rice ratio, even accounting for the discarded water.

They have no recourse

They can do all of the following:

1. Report the seller to the platform for selling stolen goods.
2. Return the stolen goods to the rightful owner, if they’re able to get their information, or if not, to Valve or even just the police department.
3. File a suit in small claims court against the seller for damages (the amount they paid + any other expenses they’ve incurred, like the cost to mail it to the rightful owner, including legal fees) or, if the platform won’t provide the seller’s information, against the platform itself.

Each credit reporting agency offers this option, at no charge …

It is highly recommended to lock your credit. Frankly, it should be locked by default. In September of 2017, Equifax announced a data breach that exposed the personal information of 147 million people.

Note that, before this incident, it wasn’t consistently free. I remember it being free to lock, but costing $20 or so to unlock. A law passed in 2018 required credit bureaus to offer freezes and unfreezes (and to fulfill them within certain time frames) for free.

Also note that you might need to look for a “freeze” instead of a lock. Experian charges $25/month for their “CreditLock” service, for example, but they offer a free security freeze.

Wow, what a terrible set of moves by whoever at AMD made that call. Lack of CUDA support is the only thing keeping me from buying AMD GPUs, and I’m pretty sure I’m not alone.

I use --format-sort +res:1080, which, if my understanding of the documentation is correct, will make it prefer 1080p, the smallest video larger than 1080p if 1080p isn’t available, or the largest video if nothing 1080p or larger is available.

res is the smallest dimension of the video (so for a 1080x1920 portrait video, it would be 1080).

Default sort is descending order. The + makes it sort in ascending order instead.

Ah, you’re right - Trilium doesn’t use file-backed notes at all - it saves them in a database (I think Sqlite but I’m not positive).

Trilium supports writing notes in multiple formats, including Markdown.

Does your script handle bi-directional sync or one-way only?

https://github.com/TriliumNext/Notes is a fork that appears to be actively developed. Found it near the end of the issue linked from the maintenance notice.

Thanks for that! I recommend anyone who wants to minimize risk to follow their instructions for self-hosting:

Is the source code available and can I run my own copy locally?

Yes! The source code is available on Github. Its a simple static HTML application and you can clone and run it by opening the index.html file in your browser. When run locally it should work when your computer is completely offline. The latest commits in the git repository are signed with my public code signing key.

Generally people don’t memorize private keys, but this is applicable when generating pass phrases to protect private keys that are stored locally.

Leaving this here in case anyone wants to use this method: https://www.eff.org/dice

Traction control and other related features is a bigger deal than AWD in my opinion. In the past five years I’ve had AWD engage maybe twice.

Also, you can replace two tires at once as opposed to all four, depending on the specific vehicle and how much the difference will be between the tires you’re keeping and getting rid of. You only need to replace all four if the difference is enough to cause issues.

There are a ton of crossover SUVs with FWD, though. Here are a few:

• Honda CR-V
• Toyota RAV4
• Lexus RX 350
• Toyota Highlander
• Hyundai Tucson
• Hyundai Palisade
• Kia Telluride
• Nissan Kicks
• Nissan Rogue
• Nissan Murano

Doesn’t their API also require you to allow-list IPs, making it basically useless for dynamic DNS?

From https://www.namecheap.com/support/api/intro/ under “Whitelisting IP.”

Ah, good point. Apparently it shows 4 different things: https://twitter.com/foone/status/1301718864573554689