User's banner
Avatar

aard

aard@kyu.de
Joined
6 posts • 246 comments
Direct message

Pretty much same here - I kept an x230 alive until I had to accept earlier this year that it just is bad for overall productivity, and ended up getting a macbook. None of the newer thinkpads are good - and they’re still one of the less bad manufacturers.

There’s also enough stuff I don’t like about the mac - but the current keyboard is one of the better notebook keyboards available right now, and if you want long battery life, lots of RAM and a lot of CPU power available in a compact device they’re the only manufacturer currently offering that.

permalink
report
parent
reply

Im Homeoffice mach ich neben dem Fruehstuecken die ganzen Nervtasks die keine volle Aufmerksamkeit brauchen - Mails checken, Monitoringzeug durchgehen, …

Dafuer sitz ich dann auch gerne mal ne Stunde am Fruehstuecken bevor ich an den “richtigen” Rechner gehe - ist ein entspanntes Fruehstueck, und ein entspannter Start in den Tag.

Oder ich beeil mich halt dass ich ins Buero komme, und bin dann halt genervt dass ich jetzt den ganzen Aufwand hatte nur um die erste Stunde im Buero nix nuetzliches zu machen.

permalink
report
parent
reply

I’m not super familiar with MacOS, but do you know if Gatekeeper or XProtect run at ring 0?

Gatekeeper does mainly signature checking. XProtect does signature checking on an applications first launch. Both of those things would be pretty stupid to implement in ring 0, so I’m pretty sure they are not.

If they do run at ring 0, would you consider that anticompetitive?

No, as they’re not doing any active monitoring. They’re pretty much the “you downloaded this file from the internet, do you really want to run it?” of MacOS.

I’m almost certain Apple will move or did move to depreciate kernel extensions. Which means it would be the same situation Microsoft wanted to force as you described.

That is indeed the case, but I’m not aware of any Apple products relying on being a kernel extension. Apple is facing action from the EU for locking down devices from device owners, though - mainly applying to phones/tablets. On Macs you can turn pretty much everything off and do whatever you want.

The other argument with Defender is you could at least have a choice to use it or not.

Without providing a proper API Defender (both the free one, and the paid one offering more features) would be able to provide more features than 3rd parties. Microsoft also wouldn’t have an incentive to fix the APIs, as bugs don’t impact them.

The correct way forward here is introducing an API, and moving Defender to it as well - and recent comments from Microsoft point in that direction. If they don’t they’ll probably be forced by the EU in the long run - back then it was just a decision on fair competition, without looking at the technical details: Typically those rulings are just “look, you need to give everybody the same access you have, but we’ll leave it up to you how to do it”. Now we have a lot of damage, so now another department will get active and say “you’ve proven that you can’t make the correct technical decision, so we’ll make it for you”.

A recent precedent for that would be the USB-C charger cable mandate - originally this was “guys, agree on something, we don’t care what”, which mostly worked - we first had pretty much everything micro USB, and then everything USB-C. But as Apple refused the EU went “look, you had a decade to sort it out, so now we’re just telling you that you have to use USB-C”

permalink
report
parent
reply

That’s bullshit. Microsoft wanted to force others to use an API, while keep using kernel level access for Defender (which for enterprise use is a paid product). That’s text book anti competitive. Nobody ever had a problem of Microsoft rolling out and enforcing an API for that if they restrict their own security products to that API as well.

permalink
report
parent
reply

It helps not having a computer with specs from a decade ago.

permalink
report
parent
reply

It should work - possible that it won’t let you create a one disk raid 0, but creating a one disk raid 1 and then converting it to a two disk raid 0 should word. It’s been years since I played with a pure raid 0 (don’t see much sense in them), but managed conversion back then.

permalink
report
parent
reply

If your install is using LVM (which anything installed over a bit more than a decade should be) you can set up the new second drive as a RAID with a missing device, add it as additional PV, use pvmove to move all PEs to the RAID, remove the old PV, and now add that disk to the RAID.

permalink
report
parent
reply

I did not sign with them after I had some issues with the contract provided, and the resulting interactions with my future manager. I’d say at least for someone from Europe the company culture is less than ideal from that encounter.

permalink
report
parent
reply

AMD keeps some older generations in production as their budget options - and as they had excellent CPUs for multiple generations now you also get pretty good computers out of that. Even better - with some planning you’ll be able to upgrade to another CPU later when checking chipset lifecycle.

AMD has established by now that they deliver what they promise - and intel couldn’t compete with them for a few generations over pretty much the complete product line - so they can afford now to have the bleeding edge hardware at higher prices. It’s still far away from what intel was charging when they were dominant 10 years ago - and if you need that performance for work well worth the money. For most private systems I’d always recommend getting last gen, though.

permalink
report
parent
reply

Zumindest fuer Deutschland absolut korrekt - hier in Finnland wuerde ich das vermutlich anders sehen. Deutschlandurlaub ohne Bargeld geht auch 2024 immer noch nicht.

Auch an Orten, wo Kartenzahlung nicht akzeptiert wird, beispielsweise bei der Zahlung von Kopiergeld an der Schule

Hier ist nicht das Problem dass Kartenzahlung nicht geht, sondern dass es sowas wie Kopiergeld gibt

permalink
report
reply