Chris is an absolute legend in this space and I’m so glad he’s bringing this up. I feel like he might actually have pull here and start good discussions that might have actual solutions.

To be fair, modern SAP web apps are also terrible.

It turns out you can, in fact, run Python on Lambda. Neat.

Python is a specifically supported language, but you can run any language you want using a custom runtime.

Yup. Impressive in the world where raspberry pis and arduinos and 3D printing are crazy popular they abandoned their roots in favor of cordless telephones and TV. Horrible strategic decisions for a decade will do that…

They’ve taken the IBM model. Sit on patents and lawyers and die a slow death. Innovation be damned.

So this is a sort of wireless amplifier?

I think it's more like an active antennae/analog signal processing structure that can tightly control spatial radiation properties (direction, amplitude, phase). Think beamforming, but with a continuous micro-structured surface rather than discrete antennae. In this case, the "antennae" is not only a planar object with sub-wavelength microstructure, but may also include circuit elements that can dynamically alter the surface properties. At least that's what I got from skimming the first three paragraphs. Sounds very interesting.

I love this sort of thing, it reminds me of Neal Asher's polity enemies who often have devices being grown on their surface where powerful laser beams or other weapons emerge.

What’s the name of the podcast?

The Amish radar is accurate but struggles with prediction.

For Java? VSCode is killing it in interpreted languages like JS and Python

That’s fair. Can I have it backup sync to iCloud so I’d lose my phone I can get a new one? I think that’s a usability vs. security risk we’re gonna have to be okay with. People aren’t going to be able to have multiple devices.

> your accounts are only as secure as your iCloud account, which I wouldn't count on, and you've undermined the purpose of 2FA entirely

This is extreme. Uploading your 2FA to an encrypted cloud like iCloud widens your circle of trust. But it also increases convenience and utility.

I personally take the best of both worlds. A synced 2FA for most accounts. And a locked one for my critical ones, e.g. 1PW. If I couldn't sync any accounts I wouldn't bother turning on 2FA for most because the downside is low and, ultimately, probably someone else's problem to clean up.

> There's no way around this - 2FA needs to be bound to a single physical device if you want to benefit from it.

Depends what the benefit is.

From the PoV of my bank, the benefit is that people who use “Password123!” for all of their accounts don’t get their accounts trivially compromised.

From my PoV, the benefit of TOTP 2FA is that my password manager can fill it all in automatically rather than having to find my phone and type in SMS numbers manually. (As a non-iOS user - if you’re on iOS you can have your SMS 2FA codes put in automatically.)