Yup. With the ease and low likelihood of being caught, piracy has become a pressure relief valve on shitty content practices. Make things too hard to get and people will recognize that setting up a VPN and torrent client aren’t all that hard. Make the experience really bad, and you’ll get dedicated people creating entire software platforms to lower that barrier to entry for piracy even further. Sure, some of those software platforms will get knocked down, but they usually result in the code being released and other folks come along and build on them.

As consolidation and enshitification rise, I expect us to see piracy rise again as well.

3 days, 3 years, who cares about units?
Obviously not Putin, he doesn’t care about Russian units at all.

Steam made it easy to buy, download and play games. So much of the competition was focused on preventing piracy to the detriment of the user experience. Steam was buy, download, and play all your games in one place with a minimum of bullshit. Then they implemented Steam Greenlight. It let some smaller studios get onto a major platform and proved out that there was a demand for those titles. They were then smart enough to realize that trying to gatekeep those studios with the “Greenlight” process was stupid and opened the flood gates.

Really, this goes back to Gabe Newell’s comments about piracy (a decade and a half ago [1]):

We think there is a fundamental misconception about piracy. Piracy is almost always a service problem and not a pricing problem,” he said. “If a pirate offers a product anywhere in the world, 24 x 7, purchasable from the convenience of your personal computer, and the legal provider says the product is region-locked, will come to your country 3 months after the US release, and can only be purchased at a brick and mortar store, then the pirate’s service is more valuable.

Steam was a real competitor to LimeWire/Kazaa/etc. The other options, at the time, were stuck in the mentality of treating their customers like pirates. And once people bought into the Steam ecosystem, getting them to buy into any other ecosystem was almost impossible. Steam’s main trick wasn’t building a community, it was building trust. Users trust Valve to not fuck them over. That’s a hard thing to create and it’s fragile. If you look at a competitor like EA’s Origin, many folks won’t even consider it. EA’s reputation of fucking customers is well established. No one wants to sink hundreds to thousands of dollars into a storefront with such an anti-user reputation.

I regularly use CoPilot to search Microsoft documentation for me. E.g. I needed to find a particular interface in Entra and couldn’t remember where it was. So, I asked CoPilot and it got me to the right spot. I’ve thought about asking it about Microsoft licensing, but I figure that might result in CoPilot becoming self aware enough to kill itself.

I also use a number of AI agents built into the cybersecurity tools I use on a daily basis. Generally stuff along the lines of “find all the cases related to this system/IP/user/etc” type queries. It’s also good for questions like “how do I tune this alert” so I don’t have to remember whatever bullshit process this vendor put together for tuning false positives. Our primary SIEM/SOAR tool has an AI which does initial triage and investigation work and it’s not terrible. It struggles with correlations for more complex events, usually highlighting events which have no bearing on the event in question. But, it often provides a good first pass and description our first line analysts can use to start a real investigation.

AI is a tool. And like a lot of tools, it has it’s benefits and limitations. The problem is we’re still figuring all those out and the people marketing these tools don’t want to admit to the limitations and they over-sell the benefits, then blame the user when those benefits don’t materialize. Given how much modern economies are based on information and knowledge, I do expect AI to have some lasting impact, but I also expect that we’ll adapt and it will just be another way of getting things done in a generation or two.

It’s the return of the Glasshole.

If you have the time, put some resumes out before accepting the first thing to come along. I don’t know how things are in Germany, but I’ve always believed it’s easier to find a job while you are still working. That said, if the new position, pay and work culture seem good, taking the position for now may be a good choice. You can always job hunt later.

As for how you conduct yourself, I’d always suggest conducting yourself in a professional manner. While you may have zero intention of coming back to this organization, you never know when you are going to run across the people you work with again. And the next time they may be in a position to help or hurt you. For example, I worked for a company really early in my career which started falling apart quickly. Towards the end of my time there, they announced they were closing the office I worked at and basically gave my department a big “fuck you”. I could have gone out causing trouble or just worked my time until I left for greener pastures. I did the latter. Years latter, I was applying for a job I really wanted and an important member of the hiring team had worked with me at the first job. Not as my boss, just someone in another department. He remembered my work and work quality and had effectively said, “yup, hire this guy”. While I have long since left that job as well, his confidence in me changed the trajectory of my career.

Maybe it’s different over there, but I’ve always heard that “it’s who you know, not what you know” that gets you hired. And I’ve run into that in my own career. You don’t want to be a pushover, but keeping professional relationships professional can pay dividends down the line. Do the job you are paid for, don’t make messes for other people and at least try to be professional in your dealings with others. You may be able to climb the ladder quickly today by being an asshole, but you never know if the fingers you step on today will be attached to the hand you will need to help you tomorrow.

A joke is a lot like a frog, it can be informative to dissect it, but the patient usually dies in the process.

IT is what you do when you are good with computers and not so much with people. You get really good at making the magic number boxes work for the MBAs and start explaining RFCs or networking protocols so that they fuck back off upstairs so you can go back to digging through log files and pcaps. It’s all just puzzle solving, reading and a crippling fear of social interactions.

It certainly makes sense. AWS hosts infrastructure specifically for the US FedGov. That infrastructure includes systems for the US DoD. So, that makes it a valid military target. And while cyber attacks can do a lot to degrade command and control, nothing DoS’s a server farm like a few hundred kilos of high explosives.

If the thing you are claiming exists does not interact with anything else in any way, how are you proving that thing exists in the first place? It’s basically a circular argument. You make a claim that something exists yet then state that it is impossible to prove that the thing exists. It’s just one big circle of “trust me, bro”. The question isn’t “does it exist?” the question is properly, “how do you know it exists in the first place?” You need to prove that the unicorns exist before expecting people to accept that they exist. Their existence is not a given.

I must have gotten one after the enshitification. I bought a HiSense TV during the pandemic and the unit I got was trouble from nearly day 1. A line of pixels went dead all the way across the screen. I tried to work with their warranty department and they asked for a picture of the problem.

Ok, easy enough. Take the picture and send. They reply, “can you take a picture with better lighting of the bezel?” Ok, no problem. Gerry better lighting, snap picture, send off. They reply, “can you get better lighting on the bezel?” Seriously? Fine, get the TV under really good lighting, take picture, send. “Can you get better lighting on the bezel?” WTF? Ok, I’ll admit I don’t have 50,000 candle power spot lights on it, but this is just obvious stalling. Each round of pictures and request for more is taking weeks.

During this time, the TV OS sees several updates and the underpowered nature of the system is starting to slow. The menus aren’t just sluggish, they are downright unusable. The home screen is now half ads. I finally decided, “fuck it” took the TV to the dump and bought something else.

Thankfully, the TV was only around $500. Not cheap, but the cost of the education in not buying crap didn’t hurt too much.

tl;dr: Fuck HiSense

Got about half way through the article before it became obvious that it’s just “DOOM, DOOOM, DOOOOOOOOOOOOOOOOOM!” in prose form.

Gaming is changing, which is different from never. I mean, I could bemoan the death of 2d puzzlers ala King’s Quest because Sierra is no more, but there are still similar games being made by smaller studios. We may hit a slump, and the main actors may change, but gaming isn’t going anywhere. AAA titles will continue to mostly be money chasing shovelware, indie titles will continue to be where the real development and experimentation happens. But making games, especially PC games, has become so accessible that even the death of a major studio will amount to nothing more than some IP changing hands. And there is still a lot of money to be made in games, so companies will keep chasing that.

Magazines have been predicting the death of PC gaming for decades now. And yet, PC gaming is still incredibly vibrant. The current RAM shortage is just a hiccup. We’ve had RAM shortages before. If the demand for RAM stays at the current level manufacturers will respond by bringing new fabs online. More likely the AI bubble will pop and we’ll be flooded in used RAM and GPUs. The economy will cycle, hiring will pick back up and markets will move on to the "Next Big Thing"^TM

But ya, a headline of “Markets in down cycle, RAM supply currently constrained by high demand” doesn’t motivate clicks.

Maybe it’s a regional thing, but I don’t think it’s a common phrase. I’ve heard “nothing-burger” a lot, and this may be someone playing off that.

So, MS is exiting the console market to sell HTPCs with an XBox logo?

Kerchoff’s Principle has long been a keystone of cryptographic security. That a crypto system should be secure, even if everything about the system is known, except for the key. This has resulted in robust cryptographic protocols, specifically because the protocols could be open and well researched. This same principle shows up in other areas of security under the axiom, “security through obscurity is not security”. If the security of a system fundamentally relies on the details of the system remaining a secret, then that system is inherently not secure. Having security systems based on open source protocols and software is this working in practice. By having everything open and available for a wide range of researches to test and validate, we can be more assured of the security of a system. Closed, proprietary protocols and software are a risk to organizations. They have no way of knowing if those closed systems are really well designed or a house of cards hiding behind a curtain.

Given the roughly similarly sized drop in Win11 users. I chose to believe that the Win10 jump is from people nopeing out of the Win11 slop.

AI Slop code base. Did Microsoft go open source?

It’s voice phishing. It’s basically a scammer cold-calling a victim and talking them into giving up useful information or doing things the user really shouldn’t do, like entering credentials into a scammer owned web page or adding a new multi-factor authenticator.

This one is a mixed bag. KYC regulations are very useful in detecting and prosecuting money laundering and crimes like human trafficking. But ya, if this data needs to be kept, the regulations around secure storage need to be just as tight. This sort of thing should be required to be kept to cybersecurity standards like CMMC Level 3, audited by outside auditors and violations treated as company and executive disqualifying events (you ran a company so poorly you failed to secure data, you’re not allowed to run such a company for the next 10 years). The sort of negligence of leaving a database exposed to the web should already result in business crippling fines (think GDPR style fines listed in percentages of global annual revenue). A database which is exposed to the web and has default credentials or no access control at all should result in c-level exec seeing the inside of a jail cell. There is zero excuse for that happening in a company tasked with protecting data. And I refuse to believe it’s the result of whatever scape-goat techs they try to pin this on. This sort of failure always comes from the top. It’s caused by executives who want everything done fast and cheap and don’t care about it being done right.