It looks like the person you replied to deleted their comment, but I assume it was about GL-iNet being a Chinese company.
They have a tiny Hong Kong office that handles marketing as well as a US office for technical support, but the entirety of engineering and manufacturing is in Shenzhen and Chengdu.
Because they provide a hosted site-to-site VPN service they are obligated to hold a B13 license. One of the conditions of which is the ability for the Chinese government to request access to devices worldwide.
Because a modern wifi router requires a minimum of 6 antennas. 9 is even better.
This lends itself to a spider like design with just a ton of antennas sticking out of a box, or a trash can with the antennas hidden inside around the outside edge.
> It would only be a backdoor if it's implemented as a backdoor.
You don't seem to know how backdoors work.
Oppressive regimes mandate that tech companies pre-install apps to protect people from spam calls, or install specific root certificates so they can intercept your traffic and insert a helpful banner into your browsing session to remind you when to pray.
The EU isn't going to ask Apple to add DataCollectionBackdoor(). They are going to demand that in the spirit of freedom and happiness EU companies must have access to Apple users private data.
Your example completely ignores the temporal dimension.
The best practice was to rotate your passwords, but we discovered that this led users to picking less secure and easier to remember passwords and patterns.
Once technology offered up solutions to problems like password managers and breach notifications, that recommendation changed.
PCI used to mandate password changes for in-scope accounts (meaning they have access to credit card flows). Now that MFA is widely deployed that requirement only remains for accounts that do not have a second factor for authentication.
If you were ahead of the curve and implemented strong password policies that did not conform the the PCI baseline, all you had to do was explain to the auditor why. Assuming what you were doing genuinely increased your security posture it would be approved.
Apple is one of the few tech companies that puts user privacy first, and any claims otherwise are deeply misguided. They pioneered things like iCloud Private Relay and privacy protecting cloud backups for devices.
Ironically the gaps you point to are things they have had to do to appease the European Union.
From a security perspective this is a non-starter. If you leave your MongoDB instance open and I steal the telemetry you are collecting, I can reverse engineer the data into meaningful insights into cluster workloads. So all your potential national security customers or IP sensitive customers (finance, biotech, etc) are immediately out.
Any competent enterprise risk team is going to give a hard no to a SaaS application being in the critical path for on-prem business critical workloads. So there goes Fortune 100 too.
If you are successful and better schedule workloads you are just deferring upgrades and expansions. The customers Dell/HPE/etc. sales rep is going to freak out, some vice presidents are going to go golfing together, and all the remaining high value customers don't renew.
What you are really left with is the "small and medium business" clusters that are purpose specific. They are running 100% on a handful of tasks that can probably be hand tuned.
This sounds like really cool technology, I just don't see the business. Hopefully you'll consider open sourcing it soon.
You must have missed the part where he did poach all the top talent from Google and OpenAI, and then they all quit because they couldn't stand working for him.
The message to every Cloudflare employee is clear: you'll be there for the company when times are hard. But the company will not be there for you when times are hard.
It does not matter if the way we work has changed, or AI adoption has increased, or aliens show up. This is a demonstrated lack of loyalty that would result in immediate termination of the situation were reversed.
The important take away for everyone else is do you trust Matthew Prince to always take the high road and do what is right, combined with the fact that they man-in-the-middle all of your websites encrypted traffic? What happens when revenues are down and the shareholders demand blood again?
Remember that Cloudflare does a MITM on every connection to every website they front.
CF not only protects them... they have real time intelligence on who is getting attacked, who is paying for it, and all the parameters of the attack (type, volume, duration, etc).
What would your sales team give for leads this hot?
Don't think of it as a materials simulation engineer being recruited and trained on how to write complex malware.
Rather this was developed by a team of 6-8 people. Maybe two or three of them working on the implant, another engineer handling the exploits and propagation, and yet another building the LP and communications channels. They are supported by a scientist with deep knowledge of the process they are messing around with (say developing nuclear weapons), and a mathematician that knows how to introduce subtle and undetectable errors.
Personally (not our official position), I would never try to bring a trademark into this type of dispute. Once you make a trademark claim the domain gets locked to prevent any further changes and you get directed to file a UDRP. We will then act based on the ruling, which could take months.
Same for trying to send "intimidating lawyer letters" (or having your attorney contact us at all). Outside of a few narrow cases, nothing obligates us to spend money on legal resources to respond. But once you demand specific treatment under the law, we have to direct you to a court holding jurisdiction over us to rule in your favor.
Assuming this isn't just trolling what is the value? Atlassian's codebase is full of security and performance bugs, and I don't think anyone could make the argument with a straight face that JIRA is a source of high quality training data.
The only thing I could think of is getting a sales foothold into Fortune 500 companies. "We see you have 1,744 man-years of outstanding bugs, want us to just boil a small lake and replace your dev team?"
The "Take Action" section is missing the most obvious solution. Everyone just goes and takes down a camera. We as a society do not consent to this use of public space and simply have a national "Take out the trash day."
There is no way Flock could practically ramp up production or manpower to replace the entire fleet before failing to meet contractual requirements with their customers that keep money flowing in.
Just FYI you might want to reconsider your branding. Using the term "Coast Guard" in pretty much any capacity without written authorization is a felony.
[ my public key: https://keybase.io/miked; my proof: https://keybase.io/miked/sigs/NDka9SDMYHUI-gYuU6qG7FGLznGEAAZU0I15VdBAjAc ]