You're absolutely right, at the enterprise level, managing an SSL fleet goes far beyond just issuance, and you can't assume the certificates you're issuing are the only ones that exist.
Shameless plug: if you need to cut through the noise of thousands of certs across thousands of hosts, there's https://sslboard.com
To be honest, it's rather difficult and costly to run, with a 1.5B rows database of indexed unexpired certificates and a scanning job that took weeks from dozens of IPs.
The CT Log scanning infrastructure is cloud based (rather bare metal actually), the application db, service, and Host scanning can be on-prem. An exceptional enterprise customer could convince me to offer a 100% on-prem solution
Because there are forces that are trying to kill the momentum.
Imagine that there was a serum that gives you superhuman strength only under specific conditions that you’re supposed to discover. Then there’s half room who screams that it should be banned, because it is cheating/fake/doesn’t work. And there’s another half room that swears by it, because they know how to utilize it properly.
You know it works and you don’t want to give up your secret sauce or make another half of the room stronger.
There are many billions of dollars at stake to try and gain momentum. That's just the direct investment from the AI companies. The entire tech sector wants it to succeed so they can save on salary from expensive engineers.
Those forces are up against tens of billions of dollars and very well connected CEOs. Which is why I take overly positive views on LLMs with a grain of salt.
Unlikely. Programming in highly collaborative and efficiency is hard to measure. That creates incentives for programmers in competition to typically prioritize advertising their skills by demonstration over maintaining their secret edge.
Be it at work or on the internet, if you help others by sharing your techniques you'll make them want to work with you and impress them with how smart you are.
If you are keeping it all secret to maintain your edge, people will think of you as unhelpful and they won't know how smart you are, because it's very difficult to judge how difficult the things our accomplished were.
The reason people don't stream themselves vibe coding is that's it's even less interesting to watch than regular coding.
I must disagree. Sharing your edge is the wisest possible thing you can do on a societal level. For a slightly silly idea would it be better to have say, everyone doing guesswork knots for how to tie their shoes vs a single reliable 'rabbit ears' technique? Then you can see the benefits to having edges widely shared as a norm. That is the foundation of how society can learn.
I see all the negative responses, but this seems true to me. I am old enough to remember the dot com days and could see the transformative effect of the Internet from miles away when I was a teenager. Yet many, many people refused to acknowledge that someday soon we would do things like credit card transactions online, or that people might buy shoes without trying them on first, etc.
You could say it is a lack of imagination or not connecting the dots, but I think there is a more human reason. A lot of people don't want the disruption and are happy with the status quo. I'm a software engineer so I know how problematic AI may be for my job, but I think anyone who looks at our current state and the recent improvements should be able to see the writing on the wall here.
I for one am more curious than afraid of AI, because I have always felt that writing code was the worst part of being a programmer. I am much happier building product or solving interesting problems than tracking down elusive bugs or refactoring old codebases.
I disagree with that. I was around when the web grew into the mainstream, and almost everybody was sure that it would have a huge impact on every industry and activity it touched. There wasn't even remotely a level of skepticism comparable to those around VR, blockchain, and now GenAI.
And it seems pretty obvious why. The benefits were clear and palpable. Communication was going to become a heck of a lot easier, faster, cheaper, barriers were being lowered.
There's no such qualitative advantage offered by GenAI, compared to the way we did things before. Web vs. pre-Web, the benefits were clear.
GenAI? Some execs claim it's making stuff cheaper, but it doesn't consider quality and long-term effects, plus it's spouted by those with no technological knowledge and with a reputation to long have cashed out and moved on by the time their actions crash a company. Plus, still nobody seems to have figured out how to make money (real money, not VC) off of this. Faster -- again, at what price to quality?
Then there's the predictions. We've been told for about three years now about the explosive rise in quality we'll see from GenAI output. I'm still waiting. The predictions of wider spread, higher speed and lower cost of the web sounded plausible, and they materialised. Comparatively, I see a lot of very well-reasoned arguments for the hypothesis that GenAI has peaked (for now) and this is pretty much as good as it's going to get, with source data sets exhausted and increasingly polluted by poor GenAI slop. So far, the trajectory makes me believe this scenario to be a lot more likely.
None of this seems remotely comparable to the Internet or web cases to me. The web certainly didn't feel like a hype to me in the 90s and I don't remember anyone having had that view.
People forget. There were big articles confidently declaring how "No one will ever trust a website with their credit card" etc. It was moving goalposts the entire way.
So, programmers once had an edge in having their source closed, then fell for the open source evangelism and started sharing their code, which enabled the training of AI models, and now the next iteration of what was called programmers before and is now known as vibe coders has this notion of having an edge in having their chatbot prompts closed again?
Let's all just muse some and imagine what the next cycle of this wheel will look like.
No, in French you can use both "une compagnie" or "une société", as well as "une entreprise", "une firm", "une corporation" and "un business" or even "le biz" are all pretty common.
But of course, none of them are fully interchangeable in all contexts. You will typically not expect to hear "salut la compagnie" in a formal meeting with "les gens de la bonne société."
If you like synonyms, CRISPO gives 77 for société and 33 for compagnie.
Étant français, je n’ignore pas les différents synonymes disponibles. Mais le mot société a les deux sens, et est TRÈS utilisé dans les deux sens. Au point que cette app montrait société comme étant la traduction de society et de company. Je voulais voir si d’autres langues européennes étaient similaires.
It's more likely that Europe will double down on its politics as they always do. If it doesn't work, try harder with more of it: more rules, more laws, more exceptions to rules, more special cases, more Switch and If/Then/Else.
Think technical debt with 0 refactoring ever, because you can't break the existing system, only grow it.
A refactoring, that's how I see what the government is currently doing in the USA.
The problem is, the refactoring being done is optimizing for 1) destroying the capability of any agency that was potentially impeding Musk's companies e.g., by investigating illegal activities, 2) implementing cultural war measures to distract the populace, and 3) decapitating and threatening institutions that are normally independent in democracies to serve the executive, as in fascism
Not exactly a healthy refactoring, and it'll take decades to undo the damage if ever possible.
I see where you stand, and I hear a lot of negative anticipation. What happens if things actually go well in the end?
1- I think the previous administration used various agencies to avoid justice quite a lot. Heard of a laptop maybe? If agencies were shields for the last admin’s messes, why assume they’re pure now?
2- I wouldn't say republicans started the cultural wars over progressive ideologies
3- The US still votes, judges rule, hardly a dictatorship. Fascists charm everyone, while Trump and Musk two just piss half off
Seriously? Please read just a little bit of history and civics, and stop making false equivalences.
These moves are straight out of the bog-standard authoritarian playbook.
Under well-functioning democracies, the branches of govt (legislative, executive, judicial), and the branches of society (press, industry, business, academy, religion, sport, social, etc.) are all independent with a relative balance of power
Under fascism, all of these institutions are coerced or corrupted to serve the will of the executive.
Every move already done (not anticipated) is a decapitation or coercion attack on the institutions to force them to serve the will of the executive.
Over seventy moves already done have been challenged in court, and the judiciary, even those appointed by appointed by the same President, in the preliminary rulings have been ruled illegal.
No other administration has ever sued or prosecuted a Press organization or journalist for coverage they didn't like. This one already has in the first few weeks in office. That is not anticipating, that is observing fascist moves in real time.
The administration has already challenged the legitimacy of judges' rulings ("who are they to tell the executive how to rule?") and threatened to not follow judges' rulings. Again, in the first few weeks, and utterly unprecedented.
Russia and Venezuela also "still vote". The Rs have already introduced a bill, the SAVE act, which will disenfranchise most married women (require them to register to vote with a birth cert matching their current driver's license name). And that is only one attempt to disenfranchise anyone not a white male.
>> I wouldn't say republicans started the cultural wars over progressive ideologies
I would say they did. What you call "progressive ideologies" is simply living up to the ideals of the country — equal treatment for everyone. It does not take rights away from anyone, only allows everyone to have the same rights in public spaces, employment, healthcare, etc. It is the right wing who turned it into a culture war. It sure as hell was no one but the right-wingers who politicized and turned simple scientific public health measures like N95 masks and vaccinations into a culture war.
>>Fascists charm everyone
Seriously, the fact that Trump and Musk are not charming is your argument they are not fascist? You seriously think Hitler, Mussolini, Stalin, Pol Pot, Chavez, Maduro, etc. etc., etc. charmed everyone? They managed to create chaos and barely get elected before corrupting their countries into their dictatorships.
Again, please get real, read some actual history, stop posting misleading nonsense and looking like a Useful Idiot (in the specific Vladimir Lenin sense).
Search Migrainous Infarction. I had one when I was 32 (53 now). It's very rare, but a migraine can cause a stroke (ie. permanent brain damage), because of impaired blood flow. It left me with a permanent scotoma ("black" hole in my fov, visible from both eyes and with both eyes open).
I was scanning the comments to see if anyone needed that information.
If the aura doesn't stop after an hour, better go to the hospital (aura means reduced blood flow). Also NEVER take triptans during an aura.
Let's remember, it's not just about privacy, it's privacy against government overreach. Those in power, whether government officials or public servants, often abuse it.
The public might want to defend their privacy vs. corporations, and/because the media will spin privacy to target companies, while government and public servants escape accountability for their actions.
Remember the multiple times tech companies have been fined for failing to "protect privacy"?
Do you remember of any agency having any kind of trouble after leaking private data? It's always the hackers that are to blame when there's a data leak in a government agency.
But when there's a hack at a company? the blame seems to go 100% on the company.
> Remember the multiple times tech companies have been fined for failing to "protect privacy"?
I can recall one or two exceptional cases,and the fines were relatively small,
amounting to a slap on the wrist.
For example for the 2017 Equifax breach, after 2 years, the total cost of the settlement included $300 million to a fund for victim compensation, $175 million to the states and territories in the agreement, and $100 million to the CFPB in fines. In the UK, the Financial Conduct Authority imposed a financial penalty of £11,164,400[1]
Equifax's revenue in 2017 was $3.362B.
In 2019, after Equifax agreed to the above settlement, revenue was up to $3.508B. Equifax revenue for the twelve months ending September 30, 2024 was $5.588B, a 8.79% increase year-over-year.[2]
Are you reading the same news the rest of us are? Companies are basically never found liable for a "hack" into their systems. And when the companies share user data intentionally, at worst they get a fine so low as to be meaningless. And in the US, usually not even that, because selling user data is mostly legal.
What usually happens in cases of government agencies getting hacked (in my non-US experience) is that an inspector investigates what went wrong, proposes improvements to security systems and processes, then monitors the agency to make sure they carry them out.
Cyphernetes seems capable of graph/relational logic.
The example on the homepage is literally "give me deployments with more than 2 replicas with pods that are not Running, and give me the IP address of the service they're serving"...
Any idea how to do that with kubectl | jq? Their solution seems elegant to me.
the thing is you'd need 3 k8s queries, one for pods, one for deployments, one for services, then link all of them, and filter... jq helps with the filtering, kubectl can query, but you still need to join the 3 resources to answer the query...
Meanwhile, some companies are building products with Prisma and are enjoying their choice. I love Prisma with Postgresql and Typescript, it's a very productive tool.
My first opinion wasn't very far from yours, but then I adopted it. It has served me well after a year and multiple projects.
Shameless plug: if you need to cut through the noise of thousands of certs across thousands of hosts, there's https://sslboard.com