To me, this is at the heart of why Trump won this election. I honestly do not believe your grocery bill has tripled. That's 200% inflation, which is an insane number. The statistics we have are that groceries have gone up ~25%. I have such a hard time imagining any combination of products that would add up to 8x the national inflation average of groceries.
But, I also don't think you're lying. I think you honestly believe your grocery bill tripled, and I think a lot of people have a similar internal impression about how bad inflation got. It's not useful for me (or, for politicians) to try and argue it logically. No one can check your receipts from 2019 and 2024 and say, look, things aren't actually that bad. Dems needed to kind of take it at face value and come up with a solution to something that people feel is real, and they just did not do that.
I'm in Canada, but anecdotally, in 2019 I wouldn't buy tomatoes if they were over 0.99/lb . Meanwhile today, I bought some at 2.49/lb, and only see them below 1.99/lb maybe once every 4 mo.
Similarly cucumbers I'd buy at 0.99; now I get them at 1.99 . Those are the ones I personally remember best.
Over that time period in Canada, I've also seen a 2 to 3 times increase in the unit price of many other basic grocery items, including dried pasta, rice, bread, canned goods, bags of frozen vegetables (peas, corn), meat, and so on.
The government-reported inflation numbers are well below what I've experienced and what many people in Canada I've talked to have told me they're experiencing.
What is the 25% figure coming from? Not disputing it, just curious.
Unable to give US equivalents but I think the price increases were pretty significant on the lower end and less so the higher you go up.
Until a few years ago it was possible to get instant ramen noodles for ~15p, you could get 6 eggs for like 80p, baked beans for 20p, etc. All of these things and similar spiked massively very very quickly. There was also a kind of double inflation where a lot of the value offerings seemed to disappear from shelves for an extended period (e.g. I remember a patch of several months where those instant ramen noodles weren't stocked in any supermarket near me at all while the 90p branded version was).
They've actually gone back down somewhat since but what you're looking at is people barely scraping by seeing drastic increases in their grocery bills.
Similar issues occurred with energy costs in the last few years; along with the rates going up the companies drastically bumped up the standing charge so even if you almost cut out all usage entirely you still could wind up seeing an increase.
As someone with the same name as a somewhat well-known former Bitcoin developer, this is sort of a latent fear I have. I would expect that someone dumb enough to think a home invasion is a good idea is also dumb enough to not double-check whether they've got the right guy.
Many years ago, I went to school with someone who shared their name with someone who got in a very public spat with George Steinbrenner who was the owner of the New York Yankees at the time. They got literal death threats on their phone.
ADDED: Since then I've often thought the worst case scenario is to share a somewhat unusual name with someone who is hated/notorious in some manner given it invites crazies to do crazy things.
It's extremely weird to see this site on HN! I built this site in 2014 -- and haven't touched it since. I wasn't a developer then, I was a product manager, and this was a "look, hiring managers, I can build things" side project (it worked, I've been a dev since 2016).
Despite being about 40% broken I keep the site up because it's still reasonably functional and there are a surprising amount of sites that now depend on having hotlinked the patterns directly from this domain. If it ever degrades to the point of being actively dangerous (and the attribution link rot is pretty close), I'll shut it down. Until then, it's a fun relic from the internet of a decade ago.
Just to answer a question upthread (and I 100% agree this should be on the website), the patterns are all CC-BY-3.0, meaning it just requires attribution and any pattern can be used for free.
> If it ever degrades to the point of being actively dangerous (and the attribution link rot is pretty close), I'll shut it down.
If you do shut it down, and safety is a concern, I would keep the domain going for a while with an “it is all gone…” message, otherwise as soon as it expires it'll be replaced by something less safe. Usually this will be a standard “domain for sale” page with a pile of trackers, but as this domain has hit the front page of HN today I expect several bots have just scraped the content so if they get the domain they can shove it back up with ads & trackers.
Or if you want it to survive but don't have time to clean up the rot, maybe do as someone else suggested and put in on GitHub, so others can fork & fix it, and replace the site at the current domain with a link to that so anyone following a link to the current domain can find the remnants and any forks. And if a particularly well maintained fork does turn up, perhaps link directly to that too.
Could the whole thing be open sourced and moved to Github pages so it can be forked and maintained? This is an amazing resource on par with the defunct Webtreats.etc that was never properly archived as far as I know outside of Wayback(Kinda).
I could even see this whole thing just being packaged into finished projects, to allow user or admin-selectable themes, especially with the new CSS features.
Assuming the CC-BY requirements are met using just the data that's available, this still has a lot of potential.
> If it ever degrades to the point of being actively dangerous (and the attribution link rot is pretty close), I'll shut it down.
To avoid the problem of linked domains leading to malware or things like that, you might consider linking to archived snapshots on Wayback Machine of the links instead of the real pages, for those sites that are now no longer hosting what they used to.
Please don't ever treat archive.org as a free CDN, they are a public library in need of your support, not free hosting for your side-project. There are enough free resources (e.g. Github Pages, Netlify, Cloudflare...) that are better suited for this task.
I think I actually meant to reply to dreadlordbone's comment, where they implied image hotlinking - "it loads slower" because archive.org is not a CDN.
I just replied to another one of your comments. This one also feels like an LLM. Your comments are so different from eachother when I go to your profile; some are like “ya me too bud” and some are so extremely chatgpt like, such as this one…
"Every artist, performer and creator on Patreon is about to get screwed out of 30% of their gross revenue"
Does Apple have access to Patreon creators' gross revenue? I thought they only charged commissions on payments through IAP, which I assumed is only a minority of their overall gross.
I can be that guy. I use Rewind for Mac, which is almost identical to Recall in functionality. I love it, and I've used it frequently to find things that otherwise would have been lost forever.
Most recently I used it to refresh my memory on a particularly convoluted way to authenticate with a third-party oauth system (it involved using an online oauth debugger and curl commands). I had gone through the process once successfully weeks ago, but by the time I had to do it again I'd forgotten every detail. Rather than have to go through the process of figuring it out again, I went back to my successful attempt, watched it, and basically retraced my steps. Rewind probably saved me an hour or two.
My take on Recall is that, like with almost everything, it's a trade-off of security for convenience. I find it valuable enough that I'm willing to make the trade-off, but others might not.
The article is a little bit hand-wavy about how exactly the database comes to be decrypted and remotely exfiltrated. The headline says it takes "two lines of code" but unless I'm missing it, I don't see those lines discussed in the article.
The database is not encrypted while the system is running. Microsoft's claim that it's encrypted is due to the machine being encrypted at rest with Bitlocker.
The databases are plain-text sqlite files within the current user's %appdata% folder.
So, literally anything that can grab those files and put them somewhere else can qualify as exfiltration. Any backup product worth its salt would be covering these databases.
BitLocker encrypts the hard drive contents at rest, but while the system is booted, the drive is transparently decrypted. So what Microsoft says is technically true, but doesn't necessarily present any kind of barrier to the database being exfiltrated by malware. It only protects against somebody stealing your hard drive.
Well bitlocker (ie device encryption) is only protecting you from offline attacks, ie when someone pulls your hard drive to examine it. Code running on the machine itself wouldn't be affected by it.
Q. Have you exfiltrated your own Recall database?
A. Yes. I have automated exfiltration, and made a website where you can upload a database and instantly search it.
I am deliberately holding back technical details until Microsoft ship the feature as I want to give them time to do something. I actually have a whole bunch of things to show and think the wider cyber community will have so much fun with this when generally available.. but I also think that’s really sad, as real world harm will ensue.
1. It is encrypted at rest, once you login its decrypted with the rest of the stuff running+on your drive. All this stops is someone with physical access and that's it.
2. The article says that they are not releasing PoC (my words not theirs) because this feature isn't out, and they want to give M$ a chance to fix it:
> I am deliberately holding back technical details until Microsoft ship the feature as I want to give them time to do something.
InstantID uses a non-commercial licensed model (from insightface) as part of its pipeline so I think that makes it a no-go for being part of Stability's commercial service.
> A criminal who is otherwise not legally able to acquire or possess a firearm is not going to care about 3D printer laws. This only impacts the law abiding.
This is kind of a blanket argument against all laws, right?
A law against carrying a broadsword is enforceable before the broadsword is actually used in a crime, because it's highly visible. A law against a dagger isn't easily enforceable until it's actually taken out in some violent manner.
(Don't over-analyze the example it's just to show a difference in how laws work in practice as opposed to on paper.)
The original implementation also involved sending a "safety voucher" with each photo uploaded to iCloud, which contained a thumbnail of the photo as well as some other metadata.
The vouchers were encrypted, and could only be decrypted if there were, I believe, 30 independent matches against their CSAM hash table in the cloud. At that point the vouchers could be decrypted and reviewed by a human as a check against false-positives.
It sounds like with a raw byte hash they might be able to match a photo against a list of CSAM hashes, but they wouldn't be able to do the human review of the photo's contents because of E2E.
That would be interesting. Then all someone has to do is generate images that collide with the ones in the CSAM hash database and airdrop them to someone, then they’re suddenly the target of a federal investigation. I remember someone posting about a year ago a bunch of strange looking images that produced those collisions. If it’s all E2E then all Apple sees is a matching hash and can’t do any further review other than refer to law enforcement.
Someone mentioned here but I didn't confirm that Apple is stopping the CSAM scanning. It makes sense because there's nothing they could reasonably do even if they found matching hashes. It seems unlikely they'd report these findings to the police if there's no manual ability to review the contents first.
"A separate version for the Apple Watch would remain [in the App Store], but then Apple pulled that one as well, telling Eleftheriou that keyboards aren’t allowed on the Apple Watch."
Im not familiar with all the history nor what they mean there, but this is a better source and i think explains the story better. I havent seen the dev make that claim at least.
But, I also don't think you're lying. I think you honestly believe your grocery bill tripled, and I think a lot of people have a similar internal impression about how bad inflation got. It's not useful for me (or, for politicians) to try and argue it logically. No one can check your receipts from 2019 and 2024 and say, look, things aren't actually that bad. Dems needed to kind of take it at face value and come up with a solution to something that people feel is real, and they just did not do that.
Editing to add: I might as well add the lowest effort source to the ~25% number, which comes from using the search feature of ChatGPT (sorry). https://chatgpt.com/share/672b7e09-4b58-800e-a3df-58f38c33bc...
reply