Natanael

They too have an understanding of object permanence for things outside their field of vision. They want to understand what’s near them and what’s touching them.

If they realize the thing touching them is unknown and it can’t make sense of what it might be then it might be something dangerous (and this instinct will still be there in a safe space in your home).

Lockdown mode takes very expensive equipment to bypass

When you reboot, the user data encryption key is flushed from memory, and your unlock code is necessary to decrypt the KEK (key encryption key) held by the TPM / SE chip (which also applies rate limiting). All common attacks on unpowered devices are bruteforce with rate limit bypass.

In lockdown mode the KEK stays in memory so app state and user data is there, but the CPU is in a state which prevents access to it until unlocked with your code. There’s a few more attacks possible, but most are completely blocked by the fact that USB data connectivity is also disabled in this state. You practically have to open up the device to pull data out.

Tldr no ordinary thief will even try.

The bigger risk is having it stolen while unlocked. Make sure you have revocation options ready for keys held on the device

There’s already attempts to create synthetic data to train on

Deletion commands are unfortunately not very reliable on many SSDs

If it’s completely random then 50%, that’s how stream ciphers works.

Not all of iCloud is end to end encrypted unless you manually activate their extra secure mode (which disables a few features too)

Yes, there’s already some 3rd party reimplementations of both clients and PDS servers and feed generators (but haven’t heard of custom appviews yet). I don’t know anybody running an open PDS yet though, it’s mostly individuals running them

Bluesky is open source and have a site for documentation

Splitting off identity means you can bail and take your friends and post history with you when a server either goes down, gets hacked, or if the admin goes insane, or if it gets freenoded (hostile takeover and impersonation)

On bluesky the closeness comes more from the personal connections plus the choice of feeds

I think short form video specifically is pretty bad (in high volume)

https://www.frontiersin.org/journals/psychology/articles/10.3389/fpsyg.2023.1298361/full

The biggest individual difference is that bluesky makes identity independent of the hosting server (via cryptographic keys) and makes content location independent of the hosting server (via content addressing).

And these features together also enable more efficient caching and propagation in the network as well as enabling features like custom feeds and 3rd party moderation tooling which works the same independently of which server you’re on. So Bluesky can give you a better global view of the network and more efficient communication between users on many different servers in the same thread.

Ironically enough, Jack’s other favorite place Nostr (which is built as P2P with repeater nodes) is also adding moderation tooling similar to that in Bluesky (labelers making use of the content addressing and account key ID) to flag stuff

You can also spin up your own Bluesky PDS (the account server) since federation is live now, or your own appview (basically the feed display server that has most of the smarts) and point your app to it, or set up your own relay (CDN like server) and point your appview and even point feed generators to it (3rd party custom feeds are supported in Bluesky)

So if you don’t like the decision made by anybody else you can just replace them. And yeah, just like on Mastodon nobody’s going to use unmoderated appviews, subscribe to scrappy feeds, or federate with a PDS hosting only shitty people.

Plaintext connections inside corporate networks can still be MITM’ed if the adversary knows what they’re targeting, while they can’t connect to the corporate network they can still steal credentials