I appreciate the downvotes without any reasoning. It's a fact that newer Intel CPUs have Intel ME which was not in older CPUs and significantly increases attack surface if you are not living in a five eyes state.
In a server, you have to worry about the ME only if you also have an Intel Ethernet interface, which is connected to a potentially hostile network.
If that is not true, the ME cannot be controlled remotely.
The existence of the ME is much more worrisome in laptops, where the ME can be accessed remotely through WiFi. There, to be certain that there is no way for the ME to be accessed remotely you would have to disconnect or cut the internal antennas and use a USB dongle for WiFi.
As five eyes citizen you have at least some rights on paper and you can appeal to your government, but if you are foreigner these guys can go gloves off without any fear of retribution.
Try analyzing Epstein files and posting about it, they'll give you a proper penetration test of all your devices to see what you found out about their ex employee.
Nowadays even EU citizens migrating away from US cloud providers are a "national security issue".
Nah once they know you can be fleeced for $50 per month, they also know there is much more money to extract from you. Their advertisers would be mad if they remove this juicy cohort of moneybags from their audience.
It's about explicitly deciding to allow certain capabilities on a per-website basis. No major browser allows defense-in-depth via fine-grained website permissions.
Even simply changing the user agent was sabotaged at Firefox, and choosing one user agent per domain is wishful thinking.
All of those advanced features should be enabled on a per-website basis but unfortunately even browsers whose marketing focuses on privacy don't allow you to do that. Same with TLS root CA certificates, there is no way to configure that a certain CA can only create certificates for certain domains.
Firefox has so much built-in tracking it seems they want to push me to build my own browser. For example every time you open the settings there are several ways they are sending out pings to certain extensions.
Also by default addons.mozilla.org is a privileged site so of course they include google tracking in it and they get the proper fingerprint no matter what you have configured.
If you are this motivated (I am!), how about joining forces on Konform Browser? Radio silence and remote third-party integrations disabled by default and generally sane and conservative defaults respecting old-fashioned notions like individual consent and data-protection regulations.
Aside from general dev, could use a hand in bringing it to more platforms (mobile and flatpak are frequently asked) and taking a closer look at fingerprinting protections and what's currently tripping up the turnstile.
It happened many times to me, especially on H1 but also from senior FAANG engineers on their mailing lists. If your job is to pretend all is fine it is easy to discard valid reports.
I take a very large grain of salt if a researcher is literally based in California and they produce "findings" in support of a California-based megacorp such as Facebook. And then the headline is "lacks evidence" and "pose risks".
No shit sherlock, it lacks evidence because Facebook gatekeeps all the scientifically interesting data and they also don't share their findings from internal studies and human trials where they psychologically manipulatated minors.
There is a reason social media apps spam you with notification popups if you have not been active for the last 23 hours. They employ every trick in the book to keep you hooked and monetize your attention.
It is clear scientific misconduct by people working for Facebook who do numerous human trials on minors in order to increase their metrics and monetization. The fact they have crossed this red line should stop the discussion for every credible researcher in that field, because human trials on minors without consent are not ethical and there is no excuse for such behavior.
Cashless society is amazing until the foreign shareholders of your core suppliers of digital infrastructure develop their own political agenda.
But Norway is a monarchy well connected with the global Epstein class so I doubt their political system can actually reach an shareholder-hostile edge case. And meanwhile the surveillance helps keeping internal peace because one can reliably deplatform dissenters and conspiracy theorists.
It's a win-win until the n-th generation of nepo children is trying to steal too much and everybody notices they have been robbed.
Enjoy your Ferrari though
reply