It's a tracking tool. You have a bunch of sites embed an image, and requests to those sites also make requests to said image, which you can use to start tracking a client. A single pixel is merely the cheapest image.
I recall Facebook doing it years ago, I imagine they still do.
It was some time ago that I read about it, and I'm struggling to find a source now, but there are instances in India of people being declared dead to allow their next of kin to steal their land. In doing so, the 'dead' unsurprisingly lose access to various public resources, health care, etc.
It is reasonably safe to say that people find it funny because of the absurdity of the situation, while realizing that it is not funny for the person who has been declared as dead.
There's more info about the outcome in [1]. Long story short, the US government passed a law (whilst this case was being litigated) that let AT&T off the hook.
While I was upset to hear how that ended, it's also unfair to expect a company to refuse when the government shows up with guns, takes over a part of your offices, and tells you to stay out of their way and never tell anyone what they are doing or else you'll be killed or sent to a secret torture prison for the rest of your life.
That's not a situation that's supposed to happen in a free country, but here we are. If you're handed a gag order by the federal government and can't even tell your lawyers about what happened what options does a company have? How many CEOs and low level employees should we expect to volunteer to have their lives destroyed by refusing to cooperate with the government's illegal surveillance schemes?
At&t may not have been coerced quite that aggressively, but these kinds of problems need to be addressed by people other than the private companies who are themselves victims of government oppression. Having said that, not every company is a totally unwilling participant either. There are companies who are happy to make a lot of money by selling our private data to the government. ISPs and phone companies even bill police departments for things like wiretaps and access to online portals where they can collect customer's data. State surveillance (legal or otherwise) shouldn't be allowed to become a revenue stream for private corporations. In fact it should be costly.
Considering the massively disproportionate amount of influence corporations have over our government (mostly as a result of their own bribes) it's tempting to want to make compliance so costly to companies that they're compelled to try to use some of that influence to stop or limit domestic surveillance by the state, but honestly I doubt that even they have enough power to stop it. Snowden showed us that even congress doesn't have the power to regulate these agencies. The head of the NSA, under oath, lied right to their faces by denying that their illegal wiretapping scheme even existed. You can't regulate something you aren't allowed to know exists. He also faced zero consequences for those lies which tells us that he's basically untouchable.
Obama was elected on campaign promises that he would end the NSA's domestic surveillance programs. Obama was an expert on constitutional law and taught courses on it at the University of Chicago. He spoke out passionately about how unconstitutional and dangerous such programs were. After he was elected his stance quickly changed. He not only started publicly praising the NSA, he actually expanded their surveillance powers. Maybe the NSA showed him a bunch of top secret evidence that scared him enough to make him willing to accept the dangers of their surveillance despite knowing the risks and unconstitutionality. Maybe the NSA strong-armed him. Either way, not even the US president had the power to stop the NSA. It's pretty unreasonable to expect that AT&T would.
There's a reason J. Edgar Hoover held power for 48 years.
Kennedy wanted to "break the CIA into a thousand pieces"[1] and had a trusted brother as Attorney General to help with the task. And we learn 70 years later that Oswald was a CIA asset[2]. It's enough for even a President to sit up and take notice.
I actually wound up geoblocking the UK based on Ofcom's February 2025 presentation for small services providers--they said that they intended to target "one-man bands" who (e.g.) failed to perform a child risk assessment or age verification, but that a geoblock would be considered compliant. I don't like doing this, but as someone who visits the UK regularly (and has been regularly pushing Ofcom on this matter) I figure better safe than sorry.
I'm glad you have done this and I wish more would follow the same course. The more content that becomes unavailable in the UK, the more people might start to pay attention to the stupidity of the law.
I doubt it, but even from an irrational anger perspective, I hate that these idiots can do idiotic (and worse, counter productive) stuff, and get no comeback on themselves.
>I'm glad you have done this and I wish more would follow the same course. The more content that becomes unavailable in the UK, the more people might start to pay attention to the stupidity of the law.
The law isn't going to be repealed because a bunch of nerds geoblocked their personal blog.
I read that line and thought "so, the solution is code review?". What has to happen to your processes that code review is not only missing, but unironically claimed to be the solution?
I know there are some companies that never did code review, but this is Amazon. They should know better.
Assuming I've found the right process-compose [1], it struck me as having much overlap with the features of systemd. Or at least, I would tend to reach for systemd if I wanted something to run arbitrary processes. Is there something additional/better that process-compose does for you?
What process-compose gives me is a single parent with all of that project's processes as children, and a nice TUI/CLI for scrolling through them to see who is happy/unhappy and interrogating their logs, and when I shut it down all of that project's dependencies shut down. Pretty much the same flow as docker-compose.
It's all self-contained so I can run it on MacOS and it'll behave just the same as on Linux (I don't think systemd does this, could be wrong), and without requiring me to solve the docker/podman/rancher/orbstack problem (these are dependencies that are hard to bundle in nix, so while everything else comes for free, they come at the cost of complicating my readme with a bunch of requests that the user set things up beforehand).
As a bonus, since it's a single parent process, if I decide to invoke it through libfaketime, the time inherited by subprocess so it's consistently faked in the database and the services and in observability tools...
My feeling for systemd is that it's more for system-level stuff and less for project-level dependencies. Like, if I have separate projects which need different versions of postgres, systemd commands aren't going to give me a natural way to keep track of which project's postgres I'm talking about. process-compose, however, will show me logs for the correct postgres (or whatever service) in these cases:
~/src/projA$ process-compose process logs postgres
~/src/projB$ process-compose process logs postgres
This is especially helpful because AI agents tend to be scoped to working directory. So if I have one instance of claude code on each monitor and in each directory, which ever one tries to look at postgres logs will end up looking at the correct postgres's logs without having to even know that there are separate ones running.
Basically, I'm alergic to configuring my system at all. All dependencies besides nix, my text editor, and my shell are project level dependencies. This makes it easy to hop between machines and not really care about how they're set up. Even on production systems, I'd rather just clone the repo `nix run` in that dir (it then launches process compose which makes everything just like it was in my dev environment). I am however not in charge of any production systems, so perhaps I'm a bit out of touch there.
I recall Facebook doing it years ago, I imagine they still do.
reply