• 0 Posts
  • 19 Comments
Joined 10 months ago
cake
Cake day: February 25th, 2024

help-circle
  • Why have you never been able to do it? I set up a full mail system years ago on a Xen/Linux VPS with stuff like Postfix, maildrop, Courier IMAP, a custom set of MySQL tables for aliases and such, and at one point migrated my TLS from CACert to LetsEncrypt. I enjoyed some aspects of the huge pain in the ass that all of that was, and having it work nicely was great. Spinning up a new email alias was easy and free, so I created a new one for damn near every site I interacted with, which later turned into a form of lock in having to continue running my server.

    The continual server maintenance was a pain in the ass, requiring me to remember in substantial detail how it all worked so that I could appropriately integrate new things I had to learn like SPF and DMARC. I’m glad to have had some detailed sysadmin experience, but I was so glad in the end to finally migrate away from all that and just pay Fastmail instead.

    I still have nearly the same flexibility with Fastmail and my custom domains, but they’re the ones that need to do all the maintenance. I can’t scale across unlimited domains for the same zero marginal cost, but I can make it work for a reasonable price with a few domains and scale arbitrarily within that. I’m sure there are other hosts out there that do a similarly good job, and Fastmail hasn’t been without its own troubles, but it’s been a net win for me.

    I don’t recommend running your own server. I won’t do it again. I do recommend building an army of custom aliases all at your own custom domain(s).






  • The article is very misleading. It says

    The research paper…notes that the human body is particularly efficient at generating 40 MHz RF energy. Tapping into that through a ‘worn receiver’ provides power without using any invasive means.

    But I read much of the pdf linked at the bottom of that link, and there’s nothing about the human body generating energy at 40MHz. The trick is that skin is pretty effective (sort of) at conducting energy at that frequency, so the authors hooked up a power transmitter worn on the forearm, 5 or 15cm away from a receiver on the hand.

    This isn’t about powering anything by body energy, it’s about strapping a battery-powered transmitter somewhere on your body and then having another device pick it up when strapped somewhere else on your body. No thanks.

    Oh and it’s actually pretty inefficient and won’t provide much usable energy.





  • They don’t store anything about your association with other numbers; that stays on your devices. Your phone number is used as your identifier for account creation and originally for finding other people to talk with, but the only data Signal keeps associated with your number are registration timestamp and last connection timestamp. You can see that by reading the redacted subpoenas and responses that they publish.

    They have recently introduced usernames so that you can avoid having to share your number to communicate with someone else.

    I don’t have a good citation for this, but I believe the phone number registration requirement will remain indefinitely, likely to cut down on spam and bots. But there’s a difference between privacy and anonymity - I’m looking for privacy in my communications, not anonymity from my friends. State actors can know that you use it but not what you’re saying or to whom (unless, say, the NSA is specifically targeting you, but that compromise will be of your device as a whole rather than breaking Signal or getting data from them).


  • I just finished Where the Water Goes, by David Owen. He gets a little rambly at times, but overall it’s a great look at the history of water use and development in the western US as seen through the lens of the Colorado River. The author chronicles several road trips he takes to follow the entire length of the river and several tributaries, and he weaves in a great amount of history along the way.

    I particularly enjoyed the part about Arizona’s governor sending out the National Guard to prevent construction workers from accessing the East bank while trying to start building Hoover Dam. He also appointed someone to be the admiral of the Arizona Navy so that she could harass them in boats.

    Ultimately it’s a story about just how fucked we all are, but I really enjoyed it and the specificity of why.


  • A free app with no advertising doesn’t make that kind of money, it gets progressively deeper into debt to a good Silicon Valley rich guy who got it off the ground, Brian Acton.

    His biography on the Signal Foundation website:

    Brian Acton is an entrepreneur and computer programmer who co-founded the messaging app WhatsApp in 2009. After the app was sold to Facebook in 2014, Acton decided to leave the company due to differences surrounding the use of customer data and targeted advertising to focus his efforts on non-profit ventures. In February of 2018, Acton invested $50 million of his own money to start the Signal Foundation alongside Moxie Marlinspike. Signal Foundation is a nonprofit organization dedicated to doing the foundational work around making private communication accessible, secure and ubiquitous.

    Prior to founding WhatsApp and Signal Foundation, Acton worked as a software builder for more than 25 years at companies like Apple, Yahoo, and Adobe.

    The Wikipedia article on the Foundation says the loan balance was up to $105M later in 2018. Meanwhile, Acton is still worth $2.5B according to Wikipedia, so things are probably fine for now, even 6 years later.

    But you’re right that Signal eventually needs revenue to keep even a small team of high caliber software engineers and devsecops folks around. You very much want excellent engineers to continue to be involved with critical encrypted communications software on an ongoing basis, so it will cost money indefinitely. Presumably Acton does not wish to bankroll it indefinitely.

    Again back to the interview:

    I wouldn’t imagine that most nonprofits pay engineers as much as you do.

    Yeah, but most tech is not a nonprofit. Name another nonprofit tech organization shipping critical infrastructure that provides real-time communications across the globe reliably. There isn’t one.

    This is not a hypothesis project. We’re not in a room dreaming of a perfect future. We have to do it now. It has to work. If the servers go down, I need a guy with a pager to get up in the middle of the fucking night and be on that screen, diagnosing whatever the problem is, until that is fixed.

    So we have to look like a tech company in some ways to be able to do what we do.

    I’m really glad they pay those engineers that much, so that Zuckerberg and his ilk can’t entice them away with oodles of money. One presumes they also believe in the cause, but I think this currently looks like Acton fighting surveillance capitalism with what capitalism got for him earlier in his career.

    Cofounder Moxie Marlinspike is clearly a brilliant hacker and coder who was crucial to Signal’s creation, but I think it makes sense that he hasn’t stuck around to try to solve the long term business problem of keeping it aloft infinitely.

    So what to do about it? The OP interview is with Meredith Whittaker, who’s entire job is figuring that out:

    Since she took on the presidency at the Signal Foundation, she has come to see her central task as working to find a long-term taproot of funding to keep Signal alive for decades to come—with zero compromises or corporate entanglements—so it can serve as a model for an entirely new kind of tech ecosystem.

    I’m a recurring donor because I want Signal to succeed and I want to vote now with my wallet, but fundamentally it’s on Whittaker to figure out how to make the long term work. Here’s what she says:

    I see Signal in 10 years being nearly ubiquitous. I see it being supported by a novel sustainability infrastructure—and I’m being vague about that just because I think we actually need to create the kinds of endowments and support mechanisms that can sustain capital-intensive tech without the surveillance business model. And that’s what I’m actually engaged in thinking through.




  • That article describes exactly what I would not want to do - subject my expensive vehicle to additional discharge/recharge cycles thereby shortening its battery’s useful life prematurely.

    Lithium batteries are pretty great (except for when they catch fire and are nearly impossible to extinguish), but their performance degrades slightly with every charging cycle. You may have noticed that after a year or two your phone no longer makes it through the day without extra charging, because its total capacity is reduced.

    The same thing happens with EV batteries (translating into shorter driving range) but they’re much larger and more expensive to replace. Moreover, when replaced, the old batteries are still capable of useful work with lower capacity, so it’s excessively wasteful to dump them into the hazardous e-waste stream for whatever passes as recycling.

    There are companies that are collecting those used EV batteries and using them for electric grid storage, which sounds like a great way to extend their lifecycle and to acquire useful equipment at bargain basement prices. That’s what I meant about only ever seeing it at grid-scale. It would be nice if somebody sold a controller for those to be repurposed for use as energy storage for a single home, at much lower equipment cost than a brand new home battery.

    There will be many more used EV batteries available in the next several years as the first wave of widely adopted electric vehicles ages out, and the oversupply should drive down their costs further.

    That said, being able to use a vehicle battery as an emergency backup during a storm event is a wonderful side benefit. It’s just no substitute for a full time home battery (that’s actually connected during the day when the panels are producing, instead of being parked at work away from your house).






  • They seem to only be watching the questions right now. You’re automatically prevented from deleting an accepted answer, but if you answered your own question (maybe because SO was useless for certain niche questions a decade ago so you kept digging and found your own solution), you can unaccept your answer first and then delete it.

    I got a 30 day ban for “defacing” a few of my 10+ year old questions after moderators promptly reverted the edits. But they seem to have missed where I unaccepted and deleted my answers, even as they hang out in an undeletable state (showing up red for me and hidden for others).

    And comments, which are a key part to properly understanding a lot of almost-correct answers, don’t seem to be afforded revision history or to have deletes noticed by moderators.

    So it seems like you can still delete a bunch of your content, just not the questions. Do with that what you will.