I happened to get invited to friends of my in-laws who own a vacation property on the Oregon coast for the 2017 eclipse. Of course, the Pacific coast is dicey at best, so we were crossing our fingers. When the time came, the stars lined up and we had that magical moment, except right at that moment, the waste truck came through picking up the bins. If you have the opportunity, GO. The worst case is you don't see it. The best case is one of the most memorable experiences of your life.
PCI-DSS does not mandate the use of a WAF. It is one of two ways you can fulfill requirement 6.5 or 6.6. WAF + OWASP Top Ten ruleset is typically easier to get evidence for your auditor, but you can show that continuous scanning using a DAST scanning engine to meet requirements.
I would have a WAF installed with very few highly tuned rules against mostly SQLi. Why? Because the damage of letting that through and praying that the developer or web-app framework does it right are significant. The rules for SQLi are pretty easy to get right and dropping that traffic before it gets to your web server is a reasonable thing.
I would have a WAF installed with no rules too. It is nice to have something there where you can drop in a Log4J rule and get protection relatively quickly for attacks of that nature. There have been a number of these over the years and a small performance penalty seems worth the big picture safety net.
I am against the pricey models that the cloud vendors push. WAF can get expensive. They typically are bundled with other cloud services, but hey, if you've gotten that far, you are probably outsourcing most things to the cloud provider anyway.
I do not like WAF pragmatically because it lets the developer off the hook in many ways. There is something there doing their work for them and another reason for some developers to not understand or care about the security of their applications. Something else will do it for me whether I know this or not.
If there is some legitimate reason (say performance) to keep a tighter form (inline assembly, Python 1-liner, whatever), then making the unfurled equivalency as a comment nearby to allow the next developer to have a fighting chance would be really helpful. Also, error handling tends to be not included in the 1-liners.
Diablo Canyon is in an absolutely beautiful part of the central coast of California. Definitely visit the greater San Luis Obispo area. Californians want it all (green and plentiful), but lack the basics to make that happen (coalfire supplemented with wind and solar plus overloaded grids -- see what happens this weekend with FlexAlerts already called).
Nuclear should be considered. I don't know how to make them perfectly safe and their have been incidents where unfortunate accidents occur, but newer technology and designs might make our society able to have their cake and eat it too.
> I don't know how to make them perfectly safe and their have been incidents where unfortunate accidents occur
The issue I have with this argument is that if we don't dramatically reduce CO2 emissions far, far more people are going to die from climate change than nuclear might kill.
Plus, as another commenter already mentioned, the amount of deaths coal is responsible for is 470x higher than nuclear from air pollution alone. We accept these deaths for coal but somehow have a problem with a much smaller number of deaths from nuclear in the theoretical case of a massive incident. I'm not saying there's an acceptable number of deaths to just live with but pragmatically speaking I'll gladly take the proven option that kills orders of magnitudes fewer people than the status quo is already doing.
> Compared with nuclear power, coal is responsible for five times as many worker deaths from accidents, 470 times as many deaths due to air pollution among members of the public, and more than 1,000 times as many cases of serious illness, according to a study of the health effects of electricity generation in Europe.
In a vast country like ours I'd expect the government to be able to find cheap secluded places (in states such as NV?) where new reactors can be built. And then rich states such as CA buy the electricity from them. And probably invest into building them too.
The going to a ball game is an interesting example. I think there are financial disincentives at play, most notably, the price of beer. There are likely forces at play that will maximize the dollar intake while minimizing the amount consumed. This is not popcorn (still expensive) we are talking about. If beer were 1/2 as expensive, then people would drink 2x more and spend the same amount, but the effect on society would be much worse. We would have more fights in the stands, more drunk driving, and other negative effects. So by jacking up the price of a beer, fans can enjoy one or two, then realize they don't have the budget for a 3rd or 4th and cut it off there. They cut off sales in the 7th inning to prevent most of those effects I mentioned.
Not a huge deal in and of itself? Good key management processes would have you rotate every so often. However, we probably have a lot/most/all of us that use the same SSH key for many systems and loss of that private key would be compromise of your Github account.
Have a unique username / password combination for each website, right? Same is true for Github and all other SSH systems.
Also, Github provides Security Key support if you want to go that route. SSH keys are really not that different than passwords, but they seem more complicated, so maybe they are?
Get your colonoscopy. Period. Don't let people tell you fables about "the prep" or be afraid of something going up your butt.
"The prep" is a bit unpleasant for a couple of hours, but no big deal. The actual procedure is done under propofol. Consider that part the best nap you will ever get.
You will either get a clean bill of health, or the doctors will find something that is easily treated right then and there. The stigma (especially of men) about this procedure will lead to countless numbers of them to die from something that doesn't have to be.
Get the procedure when your doctor says. Just do it. Please.
I just had mine a couple days ago and opted for no sedation because I wanted to see what's going on. It was a bit unpleasant, at a couple spots the doc snakes the scope around some sharp bends and you can feel that inside of you. It totally paid off, though, I had a clear view of the monitor and could watch everything going on. I've done a fair amount of optical engineering so I was really curious about the whole thing and it's really fabulous.
Unfortunately, they found quite a few polyps and one was large enough that a) the doc marked the spot with some dye and b) they cauterized it. The puff of smoke inside my gut was definitely the highlight for me.
In my case, I didn't want to be administered a powerful substance (and experience any lasting effects) unless absolutely necessary. My understanding is that adverse reactions are very rare, but if the only upside is avoidance of minor discomfort for 30-60 minutes, I don't see the point.
I cannot imagine why you’d possibly want to be awake for it… especially to the point of calling it fabulous? I’m sure they could have given you a video afterwards without the discomfort.
My original goal was to avoid the extra time and having to organize a ride but also the aftereffects - the last time I felt weird a day or two later (could have been a red herring).
I just found it totally fascinating to see my own insides live in in high res and listen to the doctor and nurses talk about what was going on.
Well, I guess everyone has their own interests. I'm glad you got so much out of it. Personally I have no desire to see and feel myself be rotorootered and am very happy to knocked out, but it would be nice not to have the sedation after effects. The last two times I got one I ended up taking like a 4h nap afterwards. I'd imagine you also wouldn't have the same restrictions around drinking water cutoff times without sedation.
I should have also mentioned that my colonoscopy was done under a sedative, I wasn't knocked out - so I got to see the whole thing! The doctor provided a narrative as we went along. At one point they were having issues making a turn and I could feel it and let them know so the nurse squoze my guts in some way to allow them to get around it. They even showed me the polyp when they found it (I was laying on my left side with the monitors right in front of me - so I could watch the whole thing.) Except for that one turn I didn't feel a thing.
I've had my colonoscopy - I speak from experience when I say the PSA test is a heckuva lot less invasive! With that said, the colonoscopy wasn't bad at all - not nearly as bad as people make it out to be. They found a polyp, extracted it and did a biopsy, and found it to be benign. Now I have to have a colonoscopy every 5 years instead of every 10. Yay!!! :)
I Bonds are inflation protected bonds, so the context here is that the high yield on these bonds reinforces the reality that inflation (whether temporary or long-term) is here.
> the high yield on these bonds reinforces the reality that inflation (whether temporary or long-term) is here
Savings Bonds aren't traded. Their yield is calculated by the Treasury from the non-seasonally adjusted Consumer Price Index for all Urban Consumers (CPI-U) for all items, including food and energy. As such, it offers no more information into the future course of inflation than the CPI-U itself.
The data you're looking for are the 10-year breakeven inflation rates [1], which ares calculated from the premium the market places on the Treasury's tradable inflation-protecting bonds [2] and its tradable standard bonds.
My least favorite and most annoying Google nag is the not-so-helpful reminder of which google account I am logged-in as on every google doc I open through out the day. A dismiss click is needed for "You're currently signed in as xxxxx@whatever.com". No disable button. Just suffer.
This is because Google Docs operates similarly to YouTube in that your signed-in user is determined by a per-tab session. Especially for editing content, a workplace-owned Doc with misconfigured permissions might open on your personal on account when you probably want to sign in with your workspace email.
