What are /r/hackernews' favorite Products & Services?

From 3.5 billion Reddit comments

Read the book "Bad Blood" if you want more information. It is an absolutely gripping book, covering the machinations of Theranos and how they were uncovered.

You clearly didn’t, because it mentions they do not store social graphs, they depend on the phone’s local contact list.

They are investigating a way to securely store it on the server by storing it encrypted with the decryption keys held only in the RAM of a secure enclave: https://signal.org/blog/secure-value-recovery/

You burn your Ventoy USB image once, then all you need to do is drag bootable iso files onto the disk and when you boot it, you're presented with a boot menu with all of your isos.

As good as Rufus is, it doesn't always work the first time, ventoy has been 100% foolproof in my experience, and I can have a relatively large 64GB USB stick that has a ton of different isos on it instead of having to dedicate a large stick to a single image and re-burn images over and over again.

Also, no affiliation to ventoy, but here's a link to their site: https://www.ventoy.net/en/index.html

So ProtonMail and ProtonVPN are based in Switzerland, which is good but not great, as Switzerland is a bit too friendly with the EU.

FastMail is based in Australia, which is not good, as it's a five eyes country.

Why aren't there some services based in the Seychelles?

If you are cloning whole repo that is already a major misdesign.

Just fetch and pull changes to another repo if you need a copy, then checkout what you need from it.

https://git-scm.com/book/en/v2/Git-Basics-Working-with-Remotes

Cloning again each time is a major waste of resources.

Hi there,

This isn't an issue with Adblock Plus and its default or recommended Filters as we vet all of them thoroughly.
The issue potentially applies to any non-trusted and unverified Filter lists.

However we are already working on eliminating any risk for our users - find our full statement here: https://adblockplus.org/blog/potential-vulnerability-through-the-url-rewrite-filter-option
An update for this specific issue will follow soon.

Cheers,
-Jessy

BraveBrowser

https://brave.com

Literally doing the exact opposite of Google, ADs blocked natively, and super easy to set DuckDuckGo as your default search engine.

And it’s still built on top of Chromium

Tell your friends. Death to Google.

Indeed, the Russian government has ordered a partial block of ProtonMail, preventing some Russian mail servers from reaching us. We have managed to restore services at this time. More information about the block and our recommendations can be found here: https://protonmail.com/blog/russia-block/

They can't retroactively, Whatsapp uses Signal's encryption (Facebook Secret Conversations also use Signal), what they're discussing is adding a backdoor, which even Signal could do with an update, but that wouldn't effect any messages you've sent already

If anyone else finds themselves checking the price of cryptocurrencies 100 times/day, I built a chatbot for myself to keep me updated. Hopefully it can help others, too! https://assistant.google.com/services/a/id/5b4cd66d9957311b?source=web

You also need to comb through task scheduler and group policy settings to make sure it stays put.

I eventually ran out of patience and installed TinyWall and shutdownBlocker.

Good article! Nice recommendation to switch to private search Startpage.com. I'd add that the new Anonymous View feature makes this option even better because it fixes the biggest problem with ANY private search engine: What happens after you click on a link.

Once you click a regular link at a private search engine, you're once again exposed to marketers and hackers. The Startpage.com Anonymous View features changes this by fetching the pages and hiding you.

Anonymous View is not like a normal proxy. Many more pages load faster and in full because of the new technology.

> A final option, which I will go ahead and discuss but flat-out tell you we do not recommend is to sacrifice security for performance almost entirely. Weakening the encryption protocol and dropping the authentication protocol entirely—AES-128-CBC/None—resulted in 51.25 Mbps throughput on my R8000.

First, unless you work with anything related to government, AES128 is perfectly fine if performance is an issue. Just use any digest ("--auth" in OpenVPN) stronger than SHA1, e.g. RSA-256 etc.

I can understand his motivation for not recommended anything other than the reasonably optimum security available case as default, so that there's no possibility newbies can screw up with that specific setting. But the rest of his technical essay is not really for anyone new to software configuration.

Second, as we were all recently disquieted to learn, despite their great open source support, Netgear is now adding support for "analytics data collection" in their consumer routers.

So, if you do recommend Netgear routers for VPNs, you really should absolutely recommend taking full advantage of that open source support ... while it lasts ... or their corporate routers.

Here is a great alternative. Jitsi Meet is a fully encrypted, 100% open source video conferencing solution that you can use all day, every day, for free — with no account needed.

https://jitsi.org/jitsi-meet/

from mirimir on HN: >For several years, I've been recommending AirVPN, Insorg, IVPN, Mullvad and PIA. So at this point, I can say that they've all been around for several years, and I've heard nothing bad about them.

I've read this article today about TunnelBear I am deeply saddened by the news, will most probably switch to another provider :(