Suramya's Blog : Welcome to my crazy life…

May 26, 2024

Reasonable to get angry if your kid was over at a friend’s and their parents invited other adults over without checking with you?

Filed under: My Thoughts — Suramya @ 10:07 AM

Someone shared the image below and ever since I saw it I have been trying to figure out what the problem is. I think this is a very entitled take or someone who is suffering from the Main character syndrome (a term used to describe someone who often sees themselves as the main character in the story, and that everyone should cater to their whims)

Would you get angry if your kid was over at a friend’s house and their parents invited other adults over without checking with you? ‘Cause this happened to me yesterday and I still feel murderous. I picked 13 up as soon as she told me and didn’t make a scene, but I'm livid.
Would you get angry if your kid was over at a friend’s house and their parents invited other adults over without checking with you?

This is a very common thing that happens all the time. When we were kids we would go over to a friends place and hang out. If the parents had folks over we would be asked to keep it down or go play outside. I see the same thing with my friend’s kids, the kids play separately and the adults hang out separately. If your kid is at my place and I am taking them over to someone else’s house without telling you then you have full right to get upset. However, if we are at home then you don’t have any right to restrict / control who I have over at *my* place. Who are you to require that I should get your permission to have friends over at my place? If there was a specific person who you don’t want interacting with your kid, you can request that I don’t call them over when your kid is there. However, end of the day it is still my decision to agree or disagree with your request.

‘Feeling Murderous’ because you didn’t get to control someone else’s life and friends is just silly. If you feel so strongly about this then you should get some help to figure out why this is the case because it is not healthy (in my opinion).

Or it could just be that they are worried that their kid will interact with other ‘normal’ adults and realize that what their parent is putting them through is not normal behavior. Another possibility is that the kid is getting abused and they don’t want them telling an adult about it.

Whatever the reason behind the ranting, I feel bad for this person’s kids. Hope they stay safe and are able to get away from such a control-freak.

What do you think? Am I misreading the situation and do you think this kind of demand makes sense?

– Suramya

May 25, 2024

ICQ messenger shutting down after almost 28 years of service

Filed under: Computer Software,My Thoughts,Tech Related — Suramya @ 6:12 AM

I used ICQ for the first time around 1997/98 and it was an amazing experience to be chatting with someone on the other side of the planet for free. I had been using BBS’s to connect with people but for obvious reasons they were all local folks. ICQ was the first system that allowed me to connect to the international world for free. I think it was also the first system where I encountered the infamous A/S/L(Age/Sex/Location) question. It was quite popular over on AOL IM as well, but I first encountered it on ICQ. I think it was probably because there was no concept of a profile picture at that time and ICQ used a number instead of a custom screen name for user identification.

Unfortunately the system is going to be shutdown on June 26th with no explanation given on why it is being shutdown. That being said It is impressive that the system managed to stay up and running for so long. I think the last time I logged into ICQ was sometime in the late 2000’s. I wonder if I still remember the password to be able to log in one last time before it is gone for good.

What would be really cool is if VK makes the source code behind the server opensource so that others can setup an alternate ICQ server for folks to use. But I doubt that would happen.

Source: ICQ messenger shuts down after almost 28 years

– Suramya

May 24, 2024

OpenSSF launches Siren to provide real-time security warning for Open Source Software

Securing OpenSource software (OSS) can be a bit of a challenge at times and a lot of the Infosec feeds that give information on Security issues in software are commercial paid entities. There are software that scan for OSS vulnerabilities but we can always use more threat intelligence networks.

Open Source Security Foundation (OpenSSF) has launched a new threat intelligence sharing group called ‘OpenSSF Siren‘ that aims to provide real-time security warning bulletins and deliver a community-driven knowledge base to fill the gap between the open-source and enterprise communities.

The OpenSSF Siren is a collaborative effort to aggregate and disseminate threat intelligence specific to open source projects. Hosted by the OpenSSF, this platform provides a secure and transparent environment for sharing Tactics, Techniques, and Procedures (TTPs) and Indicators of Compromise (IOCs) associated with recent cyber attacks. Siren is intended to be a post-disclosure means of keeping the community informed of threats and activities after the initial sharing and coordination.

The Key features of the OpenSSF Siren include:

  • Open Source Threat Intelligence: shared with the community about actively exploited public vulnerabilities and threats.
  • Real-Time Updates: List members receive notifications via email about emerging threats which may be relevant to their projects, enabling swift action to mitigate risks.
  • TLP:CLEAR: To facilitate effective unrestricted transparent communication, the list follows the Traffic Light Protocol (TLP), Clear guidelines for the sharing and handling of intelligence.
  • Community-driven: Contributors from diverse backgrounds collaborate to enrich the intelligence database, fostering a culture of shared responsibility and collective defense.

You can sign up for it here: Siren Sign-Up
Source: OpenSSF sings a Siren song to steer developers away from buggy FOSS

– Suramya

May 23, 2024

Windows 11 will feature builtin Spyware in the near future or Recall AI as Microsoft Calls it

Till recently if you wanted to spy on someone and see what they have been doing on the computer, you had to infect their computer by making them visit a dodgy site or get physical access and download a RAT (Remote Access Trojan) & install it on the target’s computer, configure the Antivirus to ignore it and put in a backdoor so that you can access the data remotely. Obviously this was a lot of work so looks like some cyber criminals reached out to Microsoft (MS) and asked for help. MS being a super helpful company, has added a functionality called ‘Windows Recall’ to it’s windows 11 Preview build to solve this. Recall takes a snapshot (literally) of the screen every few seconds and stores it in a searchable database ‘stored locally’. Basically it does exactly what spyware does without having to install anything new on your system. As per the company below is how the Recall works:

Recall uses Copilot+ PC advanced processing capabilities to take images of your active screen every few seconds. The snapshots are encrypted and saved on your PC’s hard drive. You can use Recall to locate the content you have viewed on your PC using search or on a timeline bar that allows you to scroll through your snapshots. Once you find the snapshot that you were looking for in Recall, it will be analysed and offer you options to interact with the content. What actions you can take depend on the content and the chat provider capabilities in Copilot in Windows. For example, you may highlight a block of text and decide to summarise it, translate it, or open it with a text editor like Word or Notepad. If you highlight an image, you will be able to edit it or use your chat provider in Copilot in Windows to find or create a similar image.

Recall will also enable you to open the snapshot in the original application in which it was created, and, as Recall is refined over time, it will open the actual source document, website or email in a screenshot. This functionality will be improved during Recall’s preview phase.

The best part is that according to their own announcement the snapshots will not hide passwords/account numbers etc. However, it does block you from recording DRM’d video you might be watching because protecting that is important not simple things like personal information etc.

Note that Recall does not perform content moderation. It will not hide information such as passwords or financial account numbers. That data may be in snapshots that are stored on your device, especially when sites do not follow standard internet protocols like cloaking password entry.

This is a gold mine for data thieves, abusers, industrial espionage, identity thieves and other cyber criminals. Once they have access to a PC they don’t need to do anything else except copy the data from the Recall DB to their own system and happily browse through the users personal data at their leisure.

I don’t think MS has thought about folks who use public computers such as the ones in an Internet Cafe or Hotels or Libraries. With this feature enabled all someone has to do is wait a few days then come back and copy incredibly private information that they can then sell/use. Privacy and Domestic Abuse experts are raising questions about this as well because sure as night follows day, abusers will use this to track what their victims are doing on a computer and that can go bad very quickly.

Even if the data is supposedly only on the local machine we don’t know when MS is going to force it to be uploaded to their servers using OneDrive or other similar setups. All the coverage I have seen for this functionality 99% of them have raised similar concerns about the security, privacy and quite frankly the need for this kind of surveillance.

Imagine what would a regieme like Taliban, China or other conservative/restrictive governments do with information they get from this system. You are dreaming if you think that they will not force MS to make this information available to them at the risk of losing access to that market if they don’t. Once you have the capability to do this, feature creep will happen for sure and we will end up in a Surveillance state.

The only Windows 11 system at my place is my wife’s laptop and you can be sure that I am going to disable this ‘feature’ as soon as it launches.

Source: Bleepingcomputer: Windows 11 Recall AI feature will record everything you do on your PC

– Suramya

May 22, 2024

Can’t tell if this guy is serious or just a troll

Filed under: Humor — Suramya @ 11:53 PM

It used to be quite easy to figure out when people were being serious or just posting nonsense because they are trolling. Unfortunately that is no longer the case. We have folks who actually believe that there are no such things are birds, others still insist that the earth is flat, still others think that Reptilian overlords have replaced humans in power to control humanity and so many more conspiracy theories.

But this one is just… wow! I honestly can’t tell if the guy is serious or not. I looked at their twitter feed and still couldn’t tell.

Christians against Satellites

If this is not a troll posting then they need serious help…

– Suramya

May 21, 2024

Your worth is not linked to your score on an online platform like LeetCode

Filed under: My Thoughts — Suramya @ 9:23 AM

It is human nature to compare yourself to others even though it might not be the best idea, especially if you are in a relationship. People compare themselves to their partner’s ex’s and the time and I personally don’t understand why you would do that but that is just me. I mean there is a reason their ex is the ex rather than the current boyfriend/girlfriend. If your partner really liked their ex better they wouldn’t have broken up with them in the first place.

The following came up in my Mastodon feed and I am honestly flabbergasted. I don’t know what so say to someone whose entire sense of self worth is based on their Leetcode score of all things?? Seriously? This guy needs to go to therapy to understand why their worth is not linked to their score on an online platform.

I am jealous of my girlfriend's ex because he is better at Leetcode than me. 

When I was working on the daily challenge the other day, my girlfriend saw my screen and asked me if I was Leetcoding. I was surprised because she is an archeology major and doesn't know anything about programming. She explained that her ex-boyfriend was into competitive programming and talked about it all the time. Apparently he is a Guardian on Leetcode and he even used to prepare contest problems for extra money. I feel extremely insecure now because I struggle with mediums most of the time and my rating is at 1500. My gf keeps assuring me that my low rating doesn't bother her, but everytime I am stuck in a problem I keep thinking how her ex would solve it in minutes. I just can't get the image of him easily solving LC Hards out of my head. Every time he submits a solution and gets that green AC on his screen he must smile and think how much of a loser his airlfriend's new
“I am jealous of my girlfriend’s ex because he is better at Leetcode than me”

This might sound silly and something we can laugh about & ignore but there are larger implications of this kind of thinking. This person’s entire self-worth is based on their score, so what do you think they will do at work if someone is hired who is a better programmer than they are? They will gate-keep and block that person from performing their work efficiently. If they are in a position where they can impact hiring decisions it is quite possible they would attempt to prevent people who are better than them from getting hired in the first place. In open source communities these kind of folks will prevent new people from joining the project because the new joiner might be better than them at coding. Instead of learning from the new person they would create walls and gates to prevent folks better than them from joining.

Unfortunately for them and the projects they are part of, most people would be better than them in coding because a person with this kind of mentality is not someone open to learning new things and better ways of doing stuff. They would be stuck in their ‘idea’ world’ where they are the best and that is not a recipe to improve. As the famous quote goes “If you’re the smartest person in the room, you’re in the wrong room“.

Long story short, you need to stop comparing yourself to others. Of course it is good to have healthy competition but feeling like a looser because your Leetcode score is lower is just plain silly.

What do you think?

– Suramya

May 20, 2024

Winamp announces it will open its source code to the public on 24th Sep 2024

Filed under: Computer Software,My Thoughts,Tech Related — Suramya @ 11:59 PM

Winamp is one of my all time favorite music players but unfortunately it is only available on windows. But in an announcement from winamp team made recently, they state that they are planning to make the full source code for Winamp available to everyone on 24 September 2024. This will open up the possibility of the code being ported over to Linux and other operating systems, which would be awesome.

Winamp has announced that on 24 September 2024, the application’s source code will be open to developers worldwide.

Winamp will open up its code for the player used on Windows, enabling the entire community to participate in its development. This is an invitation to global collaboration, where developers worldwide can contribute their expertise, ideas, and passion to help this iconic software evolve.

Winamp has become much more than just a music player. It embodies a unique digital culture, aesthetic, and user experience. With this initiative to open the source code, Winamp is taking the next step in its history, allowing its users to contribute directly to improving the product.

“This is a decision that will delight millions of users around the world. Our focus will be on new mobile players and other platforms. We will be releasing a new mobile player at the beginning of July. Still, we don’t want to forget the tens of millions of users who use the software on Windows and will benefit from thousands of developers’ experience and creativity. Winamp will remain the owner of the software and will decide on the innovations made in the official version,” explains Alexandre Saboundjian, CEO of Winamp.

At this time we don’t know what license the source code is going to be released under so we will have to wait and see on that front. Depending on the license used there might be restrictions on the code use so… The announcement asks users to register their interest by entering their details at their Free-Llama site. I have done so and will share any details I receive from them as we get nearer to the release date.

Unfortunately, there is a good possibility that the code will not be released under a public open source licence like GPL/MIT etc as in that case they would have just dumped the code on Github and made the announcement. Unless… this is a way to drum up interest for the release.

In either case, we will have to wait and see. But I am very excited by this 🙂

– Suramya

May 17, 2024

Yeah, AI replacing us is not happening anytime soon

Filed under: Artificial Intelligence,My Thoughts — Suramya @ 10:49 AM

We are nowhere near having an actual AI, the current implementations we have are not even as intelligent as a cat or a dog forget humans. We do have amazing work being done on Machine Learning and Predictive software but nothing is even close to being intelligent. What we have right now is a scholastic parrot pretending to generate amazing information. To top it all, all the grifters are out in force scamming people by claiming AI is the cure for everything, the same way NFT’s and Blockchain were going to cure all the ills of the world.

I have been hearing claims that AI is ready to replace developers/low paid jobs etc for over 25 years now with similar results at the end of the day. Some of the examples I found over the past few weeks showcasing the amazing power of AI:

‘sun’ & ‘den’ are 4 character words as per AI

Would you like a Bananum?

The Entire Devin AI demo was faked. The developers lied about the entire thing and made a ton of money

Yup, we can totally say that an irrational number with never ending decimal places after 3 has the last 5 digits as ‘65359’

There are so many more of these examples I can share… Please don’t buy into the hype, look at the facts and make a decision.

– Suramya

May 16, 2024

Google claims to have created AI to detect scams in realtime by listening to all your calls

Scams are getting more and more common nowadays, with folks loosing a lot of money due to this. We absolutely need more ways to detect and warn people about scams but I don’t think this is the right approach. By ‘this’, I am talking about Google’s recent announcement at Google I/O to use Gemini Nano to alert users to potential scams during a phone call.

The feature, which will be built into a future version of Android, uses Gemini Nano, the smallest version of Google’s generative AI offering, which can be run entirely on-device. The system effectively listens for “conversation patterns commonly associated with scams” in real time. Google gives the example of someone pretending to be a “bank representative.” Common scammer tactics like password requests and gift cards will also trigger the system. These are all pretty well understood to be ways of extracting your money from you, but plenty of people in the world are still vulnerable to these sorts of scams. Once set off, it will pop up a notification that the user may be falling prey to unsavory characters.

In order for the functionality to work we would have to give Google full and complete access to all our phonecalls & audio during the call. I don’t know about you but I don’t want to give this kind of personal data over to a company that has already lied about the data they collect (referring to the recent lawsuit on their tracking the web-browsing habits of users in incognito mode that they settled last month).

– Suramya

Source: Slashdot: Google Will Use Gemini To Detect Scams During Calls

May 15, 2024

Leftover Yeast from Beer Brewing can be used to Recycle Metals from E-waste

Filed under: Emerging Tech,My Thoughts,Tech Related — Suramya @ 6:42 PM

Lots of People like beer and now they can pretend that the only reason that they are drinking beer is to help in recycling metals from e-waste. Basically in a new study published in Frontiers in Bioengineering and Biotechnology, researchers found that re­­­sidual yeast sludge generated after beer is brewed is very good at isolating and taking up specific metals from a solution of mixed metals.

This would mean that it can be used to extract metals from e-waste, which is currently a very inefficient process that requires a lot of energy and manual effort, plus it generates a lot of toxic gases which kind of negates the whole point of recycling.

The researchers rinsed, froze, dried and ground up 20 liters of residue with inactive yeast from a brewery. Next they added some of the yeast to solutions containing a laboratory-made mix of aluminum, copper, nickel and zinc, then added some to solutions with those same metals leached directly from scrapped printed circuit boards. The researchers adjusted the mixtures’ acidity and temperature to alter the charge of sugar molecules on the yeast organisms’ surfaces; particular metals are drawn to specific charges on the sugars, so this process controlled which metals the yeast attracted and bound. After each attempt, the scientists extracted the yeast and soaked it in an acid bath to remove the metals from it, leaving the yeast ready for another round.

The four tested metals are relatively inexpensive, and most e-waste recyclers currently prioritize recovering more valuable ones such as gold, silver and platinum. But the study’s metals are still beneficial and widely used—which “justifies the recycling process,” says Treavor Boyer, an environmental engineer at Arizona State University. Kerry Bloom, a biologist at the University of North Carolina at Chapel Hill, adds that the yeast’s low price and sheer abundance could make the technique relatively feasible at a large scale

Setting up a recycling plant near a brewery would make this a cost efficient way to recycle metals. In fact in the traditional recycling methods we focus on metals like gold, silver and platinum because it is not cost effective to recycle metals like zinc, aluminum etc. So the new method can increase the amount of metal recycled at a lower cost. However, the paper doesn’t say if they tested it on the more expensive metals or not. I doubt they did, because if they had it would have been a great advantage to move to the new process.

Obviously, the process is still experiemental and needs a lot more refining and work before it can be used in an industrial scale. But it is a great step forward.

Source: After Brewing Beer, Yeast Can Help Recycle Metals from E-waste

– Suramya

Older Posts »

Powered by WordPress