• 1 Post
  • 500 Comments
Joined 1 year ago
cake
Cake day: July 14th, 2023

help-circle

  • White straight able bodied men age 25-64

    25-36 is still “young” by their definition.

    and a union doesn’t exist in their industry (as far as they know)

    It doesn’t matter what industry you’re working in if you’re interested in that industry having a union. Making unions more commonplace was part of the point. The second sentence in the Union Members and Families section reads “Democrats will make it easier for workers, public and private, to exercise their right to organize and join unions.”

    But sure, if you don’t believe unions have value, this wouldn’t include you.

    Fuck 'em lol. Wait are they religious, rural, a business owner, or a veteran? No? Ok yeah fuck 'em!

    You and I must have different definitions of “fuck ‘em,” because I clearly said:

    Economically, Democratic policies favor poor and middle class people, which statistically makes up the majority of all white men. And there aren’t any policies that oppress white people or men the way that Republican policies oppress women or reduce support for all of the groups that Democratic policies help support.

    So sure, if you’re a white man with wealth that puts you in the top 1%, the Republican’s economic policies will be better for you. For the other 99% of white men - no. And for the specific issues called out in the original post linked (on Reddit):

    1. Men account for 75% of suicides in the US
    2. 70% of opioid overdose deaths are men
    3. Men are 8 times more likely to be incarcerated than women
    4. Young men are struggling in schools and are increasingly the minority at universities, opting out of higher education
    • 1 is addressed under “Investing in Mental Health” in the Party Platform as well as indirectly by gun safety policies (since 50% of suicides are by gun, 60% of gun deaths are suicides, and 87% of gun suicides are committed by men)
    • 2 is explicitly addressed under “Faith Community (“respond to the opioid crisis”) and under “Beating the Opioid Epidemic” in the Party Platform.
    • 3 is addressed under “Criminal Justice” in the Party Platform
    • 4 is addressed in multiple ways, under “Good Jobs” (“you shouldn’t have to go to a four-year college to live a good, middle-class life.”) and under “Education” (investing in K-12 education, providing free, universal preschool, investing in other forms of secondary education - e.g., trade schools, community college, registered apprenticeships)

    Democrats need to work on their messaging, obviously (and the comments on the Reddit post touch on that), but the problem isn’t that their policies don’t help white men, because they obviously do.


    • Young white men are included under “Young People and Students.”
    • Old white men are included under “Seniors and Retirees.”
    • Many white men have disabilities and are covered under “Americans with Disabilities.”
    • Many white men are covered under “LGBTQ+” - trans men, gay and queer men. Heck, some even include allies under the umbrella.
    • Many white men who are neither young nor old (or members of their family) are members of unions, or would like to be, and thus covered under “Union Members and Families.”
    • Likewise, many white men are covered under:
      • Faith Community
      • Rural Americans
      • Small Business Community
      • Veterans and Military Families

    Economically, Democratic policies favor poor and middle class people, which statistically makes up the majority of all white men. And there aren’t any policies that oppress white people or men the way that Republican policies oppress women or reduce support for all of the groups that Democratic policies help support.

    In other words, unless you get off on the oppression of those groups, almost all white men are served by the Democratic party, even if they can’t find themselves on the list you shared.

    “Black Lives Matter” was a response to black men and women being murdered by police at higher rates, of the news stories of those deaths being under-reported by comparison, and of the victims being blamed more than people of other races, particularly white people.

    “All Lives Matter” as a response to “Black Lives Matter” missed the point. It’s “Black Lives Matter, too.” If all lives mattered, people wouldn’t have needed to protest the killings of black people in the first place.

    Imagine if you were at a restaurant and everyone around you got their order but you, so you said “Hey, I need my order.” If the server responded with “Yes, everyone needs their order” and walked off, that would be about the equivalent to saying “All Lives Matter.”

    So, is there a parallel between thinking that white men should be pandered to and saying “White Lives Matter?” Absolutely.



  • You can use yt-dlp to download Tiktok videos, and you can use it on both iOS (e.g., via aShell or Pythonista) and Android (e.g., via Termux).

    Once yt-dlp is installed, you can run this command in the terminal app. It’ll be downloaded into your current directory:

    yt-dlp https://www.tiktok.com/@r_o_b__b_a_r_b_e_r/video/7392630187063627040
    

    Just replace the URL with the one for your desired video. The video URL should like the one I have below, though you don’t need to remove the query parameters - if it doesn’t you may need to Share, Copy Link, and use the copied link instead of the URL bar. This is especially true if navigating among tabs on the web or something.

    You may need to wrap the url in double quotes. IME it varies by device.

    On iOS there are Shortcuts that integrate with yt-dlp, and on Android you can do the same with Tasker and the Tasker - Termux plugin. Make sure to install the F-Droid versions.

    You can also save many Tiktok videos through the app’s Share dialog, though creators can disallow that content wide.





  • Understandably frustrating, especially if you’re new to investing. But it’s expected that the market will have both ups and downs.

    The best advice I can give is to choose a good investment allocation and then stick to it. Contribute as much as you can each pay period or month and avoid looking at your balance as much as possible. You should figure out a rebalancing strategy, and you’ll probably need to look at your account to do that. Also, see The Best Order of Operations For Saving For Retirement.

    Right now you have unrealized losses, but you haven’t actually lost any money (i.e., you have no “realized losses”) until you withdraw it. As it’s a retirement account and you just started it, I assume you aren’t planning to retire in the next decade, much less the next three years.

    Is this your only retirement account? If so, why have you not been continuing to add money to it? If you wait to do that until the market recovers, you’ll lose out on all the gains between now and then.

    I know you haven’t said you’re considering selling, but I recommend you check out the “Maintain Discipline” section of the Bogleheads investment philosophy, just in case that’s on your mind. I also recommend that you read up on dollar cost averaging (if you’re investing in a retirement plan every pay period, you’re already doing this).

    You pointed out that the entire market has been impacted. I haven’t personally been paying attention in enough detail to confirm that (and my accounts that I just checked have gone up about 10% over the past three years, not down), but if so, that means you could change your asset allocation without selling low and buying high. I’m not saying you should change it, but if you take the time to learn about different investment strategies and decide a different one works for you, it’s nice to not have to sell your current investments while they’re underperforming relative to your new investments. (On the other hand, you can always change the allocation for your future investments without worrying about that.)



  • Are you thinking of something like Stack Overflow’s reputation system? See https://stackoverflow.com/help/whats-reputation for a basic overview. See https://stackoverflow.com/help/privileges for some examples of privileges unlocked by hitting a particular reputation level.

    That system is better optimized for reputation than the threaded discussions that we participate in here, but it has its own problems. However, we could at minimum learn from the things that it does right:

    • You need site (or community) staff, who are not constrained by reputation limits, to police the system
    • Upvoting is disabled until you have at least a little reputation
    • Downvoting is disabled until you have a decent amount of reputation and costs you reputation
    • Upvotes grant more reputation than downvotes take away
    • Voting fraud is a bannable offense and there are methods in place to detect it
    • The system is designed to discourage reuse of content
    • Not all activities can be upvoted or downvoted. For example, commenting on SO requires a minimum amount of reputation, but unless they’re reported as spam, offensive, fraudulent, etc. (which also requires a minimum reputation), they don’t impact your reputation, even if upvoted.

    If you wanted to have upvoted and downvoted discourse, you could also allow people to comment on a given piece of discourse without their comment itself being part of the discourse. For example, someone might just want to say “I’m lost, can someone explain this to me?” “Nice hat,” “Where did you get that?” or something entirely off topic that they thought about in response to a topic.

    You could also limit the total amount of reputation a person can bestow upon another person, and maybe increase that limit as their reputation increases. Alternatively or additionally, you could enable high rep users to grant more reputation with their upvotes (either every time or occasionally) or to transfer a portion of their rep to a user who made a comment they really liked. It makes sense that Joe Schmo endorsing me doesn’t mean much, but King Joe’s endorsement is a much bigger deal.

    Reputation also makes sense to be topic specific. I could be an expert on software development but be completely misinformed about hedgehogs, but think that I’m an expert. If I have a high reputation from software development discussions, it would be misleading when I start telling someone about hedgehogs diets.

    Yet another thing to consider, especially if you’re federating, is server-specific reputations with overlapping topics. Assuming you allow users to say “Don’t show this / any of my content to <other server> at all,” (e.g., if you know something is against the rules over there or is likely to be downvoted, but in your community it’s generally upvoted) there isn’t much reason to not allow a discussion to appear in two or more servers. Then users could accrue reputation on that topic from users of both servers. The staff, and later, high reputation users of one server could handle moderation of topics differently than the moderators of another, by design. This could solve disagreements about moderation style, voting etiquette, etc., by giving users alternatives to choose from.



  • Your Passkeys have to be stored in something, but you don’t have to store them all in the same thing.

    If you store them with Microsoft’s Windows Hello, Apple Keychain, or Google Password Manager, all of which are closed source, then you have to trust MS/Apple/Google. However, Keychain is end to end encrypted (according to Apple) and Windows Hello is currently not synced to the cloud, so if you trust those claims, you don’t need to trust that they won’t misuse your data. I don’t know if Google’s offering is end to end encrypted, but I wouldn’t trust it either way.

    You can also store Passkeys in a password manager. Bitwarden is open source (though they did recently introduce a proprietary, source available SDK), as is KeepassXC. 1Password isn’t open source but can store Passkeys as well.

    And finally, you can store Passkeys in a compatible security key, like the YubiKey 5 series keys, which can each store 100 Passkeys. This makes them basically immune to being stolen. Note that if your primary interest in Passkeys is in the phishing resistance (basically nearly perfect immunity to MitM attacks) then you can get that same benefit by using WebAuthn as a second factor. However, my experience has been that Passkey support is broader.

    Revoking keys involves logging into the particular service and revoking them, just like changing your password. There isn’t a centralized way to do it as far as I’m aware. Each Passkey is only used for a single service, after all. However, in the same way that some password managers will offer to automatically change your passwords, they might develop a similar for passkeys.





  • For starters, it was never “open source”…

    From your link:

    Instead, as Winamp CEO Alexandre Saboundjian said, “Winamp will remain the owner of the software and will decide on the innovations made in the official version.” The sort-of open-source version is going by the name FreeLLama.

    While Winamp hasn’t said yet what license it will use for this forthcoming version, it cannot be open source with that level of corporate control.

    If I upload the source code for my project on Github/Forgejo/Gitlab/Gitea and license it under and open source license, allowing you to fork it and do whatever you want (so long as you follow the terms of my copyleft license), and I diligently ensure that code is uploaded to my repository before being deployed, but I ignore all issues, feature requests, PRs, etc., is my project open source?

    Yes.

    Likewise, if Winamp had been licensed under an open source license, it would have been open source, regardless of how much control they kept over the official distribution.

    Winamp wasn’t open source because its license, the WCL, wasn’t open source.



  • Do you memorize all of your passwords? If so, I take that to mean that you don’t use a password manager. Password managers - really, any app with 2FA - have this problem, too. But if you use a password manager and store your 2FA methods in it, then you only need to be able to regain access to your password manager.

    If you use a cross-platform password manager with Passkey support, like Bitwarden, you can use it on any of your devices. In the event that you lose all of your devices, if you don’t have an Emergency Contact set up, you will need your password and one of the following to gain access to your account:

    • Access to your 2FA method
    • Access to your Recovery Code
    • If you’re in an enterprise using Duo 2FA, access to a Duo bypass code (contact your Duo admin to request this)

    If you use security keys for 2FA, then you should have at least two - one that you keep with you and a backup that you keep in a safe place, like at home in a lockbox.

    If you use a TOTP app to log in, or if you use security keys and want another backup, then making sure you’ll have access to the Recovery Code should be your priority. You can write it down and keep it in a few different places - at home, in your car, in your locker at work, etc… You can share it with someone you trust in person or over an encrypted channel (like Signal). You can store it on a flash drive, encrypted by a second password (which can be much easier than your primary password) or even unencrypted, if you generally keep the drive somewhere safe, disconnected from your computer. As long as you remember your password and can access your recovery code, you’ll also be able to regain access to your account, including all of your passkeys.

    Emergency Access requires someone else to have access to their Bitwarden account, but assuming you don’t both lose access, it’s a pretty solid solution. When they request access, Bitwarden will send you an email allowing you to accept or reject their request. If you accept or don’t respond within the allotted “Wait Time” (which you configure: 1 day minimum, 90 days maximum) then they’ll be granted access. You also get a choice (when setting this up) to let them takeover the account (resetting your master password) or to just get read-only access.

    Maybe you don’t like Bitwarden and want to use some other app, like 1Password, Dashlane, Roboforms, etc… Whatever your choice, familiarize yourself with how to restore access to your account in an emergency. Then you only need to worry about that and not about how to get access to your passkeys that are on your Windows laptop or only synced to your Apple devices.


  • But that is exactly what he recommends, using a password manager - with one time email authentication for the first login as an extra step, right?

    Nope.

    Using a cross-platform password manager with synced passkeys is different and much more secure than using a password manager with email TOTPs or sign-in links with emails that aren’t end-to-end encrypted.

    And password manager adoption is much higher than PGP keyserver adoption, and if you can’t discover someone’s public key you can’t use it to encrypt a message to them, so sending end-to-end encrypted emails with TOTPs/sign-on links isn’t a practical option.

    According to Statista, 34% of Americans used password managers in 2023 (a huge increase from 21% in 2022), so it’s not even like the best case scenario is rare.