So my wife has gone through all this extra stress to MAYBE catch a cancerous tumor (28%). That’s assuming it grows large enough to impact her before she dies naturally. And I see that the survival rate of some brain tumors, even if found very early, is very poor (5-10% for some tumors, like glioblastoma).
Lots of “what if’s” here. And for what? All i’m arguing is, knowledge is not always actionable, and what’s not actionable can keep you up at night.
The point i’m making is, we should not be trying to pursue a life of 0 risk and perfect decisions. Life is filled with risk (and good and bad luck). That’s just life.
It depends on your personality or worldview. Some people would be much more comfortable lowering their chances of “what ifs” than leaving it all to fate.
i agree with you. If a patient expresses that sentiment to their doctor, they should act accordingly and order the extra screening. At the end of the day it should be a conversation with your provider.
There should definitely be an honest discussion about pros and cons. And not just the physical, but the mental aspect as well.
Just like the opinion would be different if the size didn't change but she embarked in a risky treatment that left her permenantly disabled or dead.
Hindsight is twenty-twenty. If you take the wrong course of action of course you are going to be upset. But that goes for both possible choices. Its not like the choice is ignore vs take some safe but possibly unnessary action. Both choices could kill you.
The simplest approach to whitelisting libraries won't work, since the malicious color parser can just call the whitelisted library.
A different idea: Special stack frames such that while that frame is on the stack, certain syscalls are prohibited. These "sandbox frames" could be enabled by default for most library calls, or even used by developers to handle untrusted user input.
Definitely don’t dismiss it. While there are limitations, it’s already very capable for a number of tasks. Tweaking it to be more effective is skill itself.
really depends on the company. my company cares a lot about security because it's a huge fortune 50 company with sensitive data and a lot of reputation could be lost with a security scandal
It gets worse. ICP-Brasil, the AC mentioned in the bug reports, the the government run agency responsible for all things related to digital signatures. Digitally signing a contract, a deed, accessing tax returns…
The problem here isn't really that one mis-issued certificate, but rather the general problematic behavior of that CA reported in TFA.
If a CA can be convinced to issue a server certificate for google.com, would you feel very comfortable trusting their contract/deed/... signing certificates?
Except it is literal “pcap” as they capture all packets at layer 3. I don’t know the exact specifications of Pico appliances, but it would not surprise me they’re running Linux + libpcap + some sort of timeseries DB
Well, probably, but I meant more like it's not typically someone running tcpdump everywhere and someone analyzing with Wireshark, rather than a systems configured to do this at scale across the desktop.
I don't think that's what anyone was assuming. A "pcap" is a file format for serialized network packets, not a particular application that generates them.
I mean that's the sales pitch but it's really not vendor independent in practice. We have a mountain of EKS specific code. It would be easier for me to migrate our apps that use ASGs than to migrate our charts. AWS's API isn't actually all that special, they're just modeling the datacenter in code. Anywhere you migrate to will have all the same primitives because the underlying infrastructure is basically the same.
EKS isn't any cheaper either from experience and in hindsight of course it isn't, it's backed by the same things you would deploy without EKS just with another layer. The dream of gains from "OS overhead" and efficient tight-packed pod scheduling doesn't match the reality that our VMs are right-sized for our workloads already and aren't sitting idle. You can't squeeze that much water from the stone even in theory and in practice k8s comes with its own overhead.
