The Fine Business Operators of 7.200 MHz: Labor Day Weekend 2024

WARNING: These recordings contain profanity, racism, sexism, fascism, and noise machines. I don’t agree with or condone anything done or said in these recordings and I do not particpate in or operate on 7.200 MHz LSB. Do not listen if you find the contents I have listed triggering.

I like to listen to 7.200 MHz LSB on the weekends while drinking a glass of wine. These files are presented as recorded directly to SD card on my Icom ic-7100. No further processing or compression occurse after the fact.

Please note that I am limited to verticals and dipoles presently at my location (EL29) so some FBO’s may be quieter than the noise floor. I am working on improving the reception with creative ways to install better antennas.

Part 1. Recorded 2024-08-31 @ 03:38:10 UTC.

Part 2. Recorded 2024-09-01 @ 02:55:13 UTC.

Ars Technica: Reddit considers search ads, paywalled content for the future

The enshitification continues…

Reddit executives discussed plans on Tuesday for making more money from the platform, including showing ads in more places and possibly putting some content behind a paywall. On Tuesday, Reddit shared its Q2 2024 earnings report ( PDF ). The company lost $10.1 million during the period, down from Q2 2023’s $41.1 million loss. Reddit has never been profitable, and during its earnings call yesterda

Source: Reddit considers search ads, paywalled content for the future

 

 

Computers, Ham Radio, and Trusted Computing

I recently acquired my Technicians license and discovered an opportunity I had not known about, but now that I know about it I look forward to exploiting it. .

The FCC stipulates as part of the rules around being a licensed amateur, I am unable to encrypt or obscure the the content of any message. I may encode (not encrypt) as long as the ability to decode is part of the public record. The only exception to this is remote control of things like space stations (AMSAT) where the control point needs to be authorized.

This got me to thinking about how such regulations would apply to trusted computing. And now I want to take that to the next level. As an academic exercise, just how far can I take an “air gapped” (as in unplugged from the internet) computer network and still ensure that there is trust. What does trust look like in this scenario? What needs to be trusted?

I intend to find out!

TTFN!

Daily Commentary for 2/16/2024

In Formula 1 news, I’m taking the news that Lewis Hamilton signed a contract to drive for Ferrari in 2025 in stride. It means I have to switch allegiences from the Silver Arrows (Mercedes Petronas) to the prancing horse. At least last year their cars no longer catch fire on a regular basis. 🤣

Don’t get me started on VCARB…. I’m not even going to link that one.

Microsoft’s Dangerous Addiction To Security Revenue – SentinelOne

I want to point out this one paragraph and say, bravo!

They need to throw away this poisonous idea of security as a separate profit center and rededicate themselves to shipping products that are secure-by-default while providing all security features to all customers. I understand the need to charge for log storage or human services, but we should no longer accept the idea that Microsoft’s basic enterprise offerings (including those paid for by the US taxpayer) should lack the basic features necessary to protect against likely attacks.

Alex Stamos

If you use Microsoft products on a regular basis in a professional capacity, you see this tendency of Microsoft to upsell what could be basic security features that any organization should employ to protect themselves. Microsoft’s sales people have a tendency to get excited about, and spend a great deal of time praising, a new Microsoft365 or Azure feature and then when pressed on license requirements, will state after the entire presentation, that it requires either an E5 license or is a separate SKU entirely. “Just upgrade to an E5 license and you’re all set! What’s wrong with you!?” I think they know that if they start by saying “new E5 level feature” people will lose interest.

Many organizations choose E3 because it’s “good enough” but I think the real reason is that its cheaper. I don’t blame them. When you start doing the math the E5 license costs can become intolerable real fast. But what do you lose?

In the good old days of on-prem you had all the logging you could want and the only real cost was disk space, or speed if you chose verbose logging options. You could easily clear that up by rotating the logs. And you want to keep logs. Logs are bread and butter in the security world. Threat hunting and incident response would be a shot in the dark without logs.

Enter Microsoft365 and the Azure cloud, and Microsoft’s premium price tag for logging access. Microsoft Azure logging facilities are terrible and you are subject to changes in the “user experience” that can and will break your workflows. If you want better access to those logs, be prepared to pay a premium. The same goes for simply accessing certain logs for security purposes that you would otherwise easily retrieve on-prem at no additional monthly cost.

Microsoft Defender for Endpoint, the EDR incarnation of their Defender antivirus product, has a threat hunting/incident response feature. If you get the EDR license for Defender you don’t get the log query functionality unless you have an even more pricey license per user.

This is not to mention all the other premium security protections that you have to subscribe to in order to fully secure your cloud tenant. This is the “nickel meet dime meet existential danger” problem of the cloud, where it’s not merely costly and inconvenient, it can have real world consequences as we all wait for Microsoft to admit the next breach that “hit a small percentage of our customers” when said customers could have had faster warning had they only subscribed to Microsoft’s coveted E5 license and paid a small fortune for all the other logging access, a dozen or so SKUs that require a monthly fortune.

Cloud security takes a team of security people, and not just Microsoft’s Security Resource Center.

In the Shadow of Silicon Valley – ZNetwork

I was struck by two things in this Article. The first is how much we’ve been mislead on what’s really going down in San Francisco. The second is just how much San Francisco’s fate is tied to the whims and machinations of the tech-bro elite.

Fast Radio Bursts – XKCD

Finally, a great XKCD strip about noise in the data. We’ve all been there, even the blue team.

XKCD – https://xkcd.com/2886/

Elon Musk denies selling Starlink to Russia after Ukraine claims use in war

Moscow says SpaceX’s internet service ‘cannot be officially used here in any way’.

Source: Elon Musk denies selling Starlink to Russia after Ukraine claims use in war

I supposed I shouldn’t be surprised Starlink made its way over to Russia. I’m hoping to be surprised if Elon does something about it. I’m not holding my breath. Effective altruists don’t really care about the present day and it doesn’t take the chosen one any closer to mars, so….

Robert Hollingshead's Blog