• 0 Posts
  • 511 Comments
Joined 3 years ago
Cake day: June 18th, 2023
  • NaibofTabr@infosec.pubtoTechnology@lemmy.worldiPhone and iPad approved to handle classified NATO informationEnglish
    13·
    9 hours ago

    Sort of.

    In 2017 China passed a law requiring Chinese user data to be held within the country: https://www.nytimes.com/2021/05/17/technology/apple-china-privacy-censorship.html

    Following that, Apple paid for a local data center which is managed by a Chinese company. Functionally this means that the PRC has access to all of the data stored there, because the government exerts direct control over Chinese companies, especially anything related to data collection and storage. Most likely, the PRC is able to access Apple users’ iCloud data if it resides in the China-based data center.

    In response to a 2017 Chinese law, Apple agreed to move its Chinese customers’ data to China and onto computers owned and run by a Chinese state-owned company.

    Chinese government workers physically control and operate the data center. Apple agreed to store the digital keys that unlock its Chinese customers’ information in those data centers. And Apple abandoned the encryption technology it uses in other data centers after China wouldn’t allow it.

    Independent security experts and Apple engineers said Apple’s concessions would make it nearly impossible for the company to stop Chinese authorities from gaining access to the emails, photos, contacts, calendars and location data of Apple’s Chinese customers.

    This is not really different from what’s been happening with other countries requiring their citizens’ data to be held within their borders, and the UK has similarly forced Apple to withdraw the Advanced Data Protection for iCloud users: https://www.theverge.com/news/608145/apple-uk-icloud-encrypted-backups-spying-snoopers-charter

    […] British security services would have access to the backups of any user worldwide, not just Brits, and Apple would not be permitted to alert users that their encryption was compromised.

  • NaibofTabr@infosec.pubtoSelfhosted@lemmy.worldHow bad of an idea is it to use computing HDDs in a DIY NAS?English
    60·
    3 days ago

    First and most important:

    In the context of long-term data storage
    ALL DRIVES ARE CONSUMABLES

    I can’t emphasize this enough. If you only skim the rest of my post, re-read the above line and accept it as fundamental truth. “Long-term” means 1+ years, by the way.

    It does not matter what type of drive you buy, how much you spend on it, who manufactured it, etc. The drive will fail at some point, probably when you’re least prepared for it. You need to plan around that. You need to plan for the drive being completely useless and the data on it unrecoverable post-failure. Wasting time and money to acquire the fanciest most bulletproof drives on the market is a pointless resource pit, and has more to do with dick-measuring contests between data-hoarders.

    Knife geeks buy $500+ patterned steel chef’s knives with ebony handles and finely ground edges and bla bla bla. Professional kitchens buy the basic Victorinox with the plastic handle. Why? Because they actually use it, not mount it on a wall to look pretty.

    The knife is a consumable, not an heirloom. So are your storage drives. We call them “spinning rust” for a reason.

    The solution to drive failure is redundancy. Period.

    Unfortunately, this reality runs counter to the desire to maximize available storage. Do not follow the path of desire, that way lies data loss and outer darkness. Fault-tolerant is your watchword. Component failure is unpredictable, no matter how much money you spend. A random manufacturing defect will ruin your day when you least expect it.

    A minimum safe layout is to have 2 live copies of data (one active, one mirror), hot standby for 1 copy (immediate swap-in when the active or mirror fails), and cold standby on the shelf to replace the hot standby when it enters service.

    Note that this does not describe a specific number of disks, but copies of data. The minimum to implement this is 4 disks of identical storage capacity (2 live, 1 hot standby, 1 on the shelf) and a server with slots for 3 disks. If your storage needs expand beyond the capacity of 1 disk, then you need to scale up by the same ratio. A disk is indivisible - having two copies of the same data on a disk does not give you any redundancy value. (I won’t get into striping and mucking about with weird RAID choices in this post because it’s too long already, but basically it’s not worth it - the KISS principle applies, especially in small configurations)

    This means you only get to use 25% of the storage capacity that you buy. Them’s the breaks. Anything less and you’re not taking your data longevity seriously, you might as well just get a consumer-grade external drive and call it a day.

    Buy 4 disks, it doesn’t matter what they are or how much they cost (though if you’re buying used make sure you get a SMART report from the seller and you understand what it means) but keep in mind that your storage capacity is just 1 of the disks. And buy a server that can keep 3 of them online and automatically swap in the standby when one of the disks fails. Spend more money on the server than the disks, it will last longer.

    Remember, long-term is a question of when, not if.

  • NaibofTabr@infosec.pubtoAsk Lemmy@lemmy.worldWhat do you think is a realistic peaceful solution to the China-Taiwan issue?English
    11·
    5 days ago

    Forty-Six

    When the Tao is present in the universe, The horses haul manure.
    When the Tao is absent from the universe,
    War horses are bred outside the city.

    There is no greater sin than desire,
    No greater curse than discontent,
    No greater misfortune than wanting something for oneself.
    Therefore he who knows that enough is enough will always have enough.

    Sixty-One
    […]
    Therefore if a great country gives way to a smaller country,
    It will conquer the smaller country.
    And if a small country submits to a great country,
    It can conquer the great country.
    Therefore those who would conquer must yield,
    And those who conquer do so because they yield.

    A great nation needs more people,
    A small country needs to serve.
    Each gets what it wants.
    It is fitting for a great nation to yield.

    Thirty
    […]
    Force is followed by loss of strength.
    This is not the way of Tao.
    That which goes against the Tao comes to an early end.

    from the Tao The Ching (by Lao Tsu), as translated by Gia-Fu Feng and Jane English

    Book 14 #3

    The Master said: ‘When the way prevails in the state, be enterprising in speech and enterprising in action; but when the Way does not prevail in the state, be enterprising in action but prudent in speech.’

    from The Analects (of Confucius), as translated by Raymond Dawson

  • NaibofTabr@infosec.pubtoRisa@startrek.websiteHuman rights? The very name is racist.English
    3·
    8 days ago

    Tertiary question: we know that Vulcans/Romulans were descendents of the Progenitors, but are Talaxians?

    If not, it might not be technically possible for them to interbreed at all, meaning that a Vulcan/Talaxian hybrid could never occur naturally, and also that Tuvix would probably be genetically incompatible with everything and everyone. Therefore, no species - only an anomaly produced by a freak transporter accident.