Did not hear about booster. Its README claims "Clevis style data binding. The encrypted filesystem can be bound to TPM2 chip or to a network service.". Does it mean that it tries to deliver various bindings independently from clevis pins, even when duplicating their functions?
Reminds me of yesterday trying to collect a hire car in central Stockholm from a Hertz "intelligent locker":
1. Texted PIN to get into garage didn't work. After 5 minutes just tailed someone else through the door.
2. Locker rejected non-Euro drivers license. Call to contact centre overcame it.
3. "Prefilled" customer details were all wrong and didn't match confirmation email. So 10 minutes to retype them.
4. Exit boom gate wouldn't open. Garage said to call hire company. Hire company said they cannot open it. 3-way call resulted in garage employee begrudgingly pressing a button to remotely open it.
Not to single out Hertz, last week we returned an Avis car to the reservation specified location at the correct time (10 pm), but a sign there stated the key drop was "permanently closed" and to deliver it 5 km away. We had an overnight train to catch so were forced to urgently do so and incur the return taxi fare.
I'm unsure how far society can keep shoving incompetent automation down peoples' throats. I understand that people generally want to save money, but I think many want high-impact experiences (like 3 kids + 2 adults + transport mode changes) to go smoothly enough they will happily a little pay more to derisk it.
I've flown a lot of long-haul business and first class over the years (Qatar, Thai, Austrian, Scandinavian, Delta, United, Qantas) and Qatar is the only airline I've ever blacklisted for business class.
While the QSuites and the cabin crew are nice, you rarely get QSuites in reality. But you always get a stopover in Doha, and those stopovers generally include business lounges so busy you can rarely get a shower with a < 3 hour stopover, rarely get use of an airway for boarding (even at destination airports with numerous available, eg Stockholm), and you sit in the premium bus for 30+ minutes after "boarding" commenced waiting for other passengers (with dusty, fuel fume filled, unairconditioned Doha airport air).
Interesting how your experience is different from mine. I've traveled to Stockholm via Doha several times, and never had to take a bus.
The business class lounge at Doha is the best I've ever been to. You do need to go to the premium lounge though. They have a separate lounge for people with gold cards, and that one was a huge disappointment.
I'm in Australia so have fewer options than many others here.
We use a mutual bank for most of our transactional banking. We have several companies, trusts and superannuation (think IRA) accounts there.
My wife and I also have a joint account at a commercial bank. This is solely used for personal purchases on a debit card. The account has no international fees, which is unusual for Australia.
We use Ledger CLI to automatically ingest all transactions each day. I wrote a scraper for the mutual bank and commercial bank (needed to OCR the PIN pads they like to jumble around). This gives us great visibility into all expenditure and origins of funds. My wife and I get a daily email with PDF attachments for our various entities.
We use Interactive Brokers for most investments, along with IG Markets to mitigate some counterparty risk. We've mostly retired (thanks to a startup) so most of our wealth is held in there. I use IB's FTP delivery service to receive detailed daily account statements (with GPG encryption). I also use IB API to do some algo trading.
We also have some crypto with 5 different exchanges given we don't trust any of them so it's straight-forward counterparty risk management. These are also algo traded.
We avoid cash use because it doesn't auto-categorise into Ledger CLI. I wish we had more privacy but by spreading things around between the banks, brokers and exchanges no single institution has any real clue about us. Sure the government does, but they get that all the important info freely anyway via tax returns or simply asking nicely.
It's all reasonably automated, but I have to shuffle money around each quarter or so.
It does look simple, but I spent many years in the bulk materials handling industry and there are also rail receival stations, electromagnets to remove contaminants, belt weighing equipment (real time volume calculation), samplers, surge bins (with vibratory hoppers under them), stackers, reclaimers, yard machine anti-collision systems, stockpile impact detection systems and a vast array of PLCs, front end processors, and application-level logic to manage it all.
> When it breaks down the pressure to get it going is intense.
Yeah. When you get calls at 2 am as lightning struck a microwave which stopped a network connect which stopped a database replication which stopped a stockpile calculation which caused a yard machine boom collision you really know how much fun it is.
On the bright side this industry is safety obsessed and quality engineering focused, so cutting corners is neither expected nor tolerated.
> It also gives some insight into why as bushfires rage across the country fuelled by the highest ever recorded temperatures, it's somehow controversial to discuss climate change.
Agreed. Although there are plenty of other factors which can improve bushfire outcomes as illustrated by the national Bushfire Cooperative Research Centre (of which most national fire agencies are members) research: https://www.bnhcrc.com.au/utilisation/overview.
- Is it a reasonable time expenditure relative to other priorities (an indie dev doing an MVP is quite different than a 20 person team at a bank)?
- Are the dependencies "large" (framework level) or "small" (tiny, focused library)?
- Can you rely on semantic versioning to give a clue as to upgrade cost?
- How long since you last upgraded (further behind means much more breakage)?
- Does the language / platform you use make it easy (ie do you need to synchronize native libraries as well)?
- Can you depend on your build system to reliably test the upgrade and report stability?
- Do you have higher-than-usual dependency requirements (security, compliance, risk reviews, license review, approvals)?
Having said all that, I upgrade our dependencies every month. It only takes a couple of hours and very rarely causes issues (maybe 1 in 6 monthly upgrades requires an extra hour to identify a regression in a newer version and adding a comment with an issue tracker link to pause upgrades of that dependency until it's fixed).
You start with SPF, DKIM, DMARC and IP reputation.
But then I'd use the moat GMail enjoys as a primary mail destination by statistically looking at the frequency an incoming email's metadata and content similarity has recently arrived at GMail as a whole, then moving suspicious arrivals into a progressive exposure pathway that tentatively delivers a small percent to known currently-active users (eg mobile GMail app open on screen and unlocked) and see what percentage are flagged as spam, archived or deleted. Then use that real time feedback to vary the delivery flow of remaining messages to inbox vs spam.
It's also about reflecting your own values, such as remembering when you lived in less abundant times, not consuming more environmental or financial resources than you really need to, and demonstrating those values to other family members in the hope they are remembered.
Personally I stopped working 10 years ago and have plenty of financial resources, but I still take the train or bus as much as possible, or if I must drive, walk a block to avoid paying for parking. It has nothing to do with money and everything to do with living the values that I care about and trying to communicate those to our kids.
