"Stealing" isn't an apt term here. Stealing a thing permanently deprives the owner of the thing. What you're describing is copyright infringement, not stealing.
In this context, stealing is often used as a pejorative term to make piracy sound worse than it is. Except for mass distribution, piracy is often regarded as a civil wrong, and not a crime.
Then it is not possible to 'steal' an idea? Afaik 'to steal'is simply to take without permission. If the thing is abstract, then you might not have deprived the original owner of that thing. If the thing is a physical object, then the implication is tou now have physical possession (in which case your definition seemingly holds)
edit/addendum: considering this a bit more - the extent to which the original party is deprived of the stolen thing is pertinent for awarding damages. For example, imagine a small entity stealing from a large one, like a small creator steals dungeon and dragons rules. That doesn't deprive Hasbro of DnD, but it is still theft (we're assuming a verbatim copy here lifted directly from DnD books)
The example that I was pondering were shows in russia that were almost literally "the sampsons." Did that stop the Simpson's from airing in the US, its primary market? No, but it was still theft, something was taken without permission.
I think you make a good point, but there is some irony in pointing out the distinction between colloquial and legal use of the term “stealing” while also misusing the term “piracy” to describe legal matters.
It would be more clear if you stick to either legal or colloquial variants, instead of switching back and forth. (Tbf, the judge in this case also used the term “piracy” colloquially).
There are tests that determine if a work infringes on the copyright of another. That is well established law.
Just use that test and show that this work is infringing on that work.
If you cant it doesn't.
It might be legal in the US, but not in the rest of the world.
The trial is scheduled for December 2025. That’s when a jury will decide how much Anthropic owes for copying and storing over seven million pirated books
You make some good points, this really is going to take some careful judgment and chances are it's too complex for an actual courtroom to yield an ideal outcome.
Now places like Flea markets have been known to have a counterfeit DVD or two.
And there is more than one way to compare to non-digital content.
Regular books and periodicals can be sold out and/or out-of-print, but digital versions do not have these same exact limitations.
A great deal of the time though, just the opposite occurs, and a surplus is printed that no one will ever read, and which will eventually be disposed of.
Newspapers are mainly in the extreme category where almost always a significant number of surplus copies are intentionally printed.
It's all part of the same publication, a huge portion of which no one has ever rightfully expected for every copy to earn anything at all, much less a return on every single copy making it back to the original creator.
Which is one reason why so much material is supported by ads. Even if you didn't pay a high enough price to cover the cost of printing, it was all paid for well before it got into your hands.
Digital copies which are going unread are something like that kind of surplus. If you save it from the bin you should be able to do whatever you want with it either way, scan it how you see fit.
You just can't say you wrote it. That's what copyright is supposed to be for.
Like at the flea market, when two different vendors are selling the same items but one has legitimately purchased them wholesale and the other vendor obtained theirs as the spoils of a stolen 18-wheeler.
How do you know which ones are the pirated items?
You can tell because the original owners of the pirated cargo suffered a definite loss, and have none of it remaining any more.
OTOH, with things like fake Nikes at the flea market, you can be confident they are counterfeit whether they were stolen from anybody in any way or not.
>If you save it from the bin you should be able to do whatever you want with it either way, scan it how you see fit.
Don’t we already have laws covering this? For example, sometimes excess books can be thrown in the bin. Often, they have the covers removed. Some will say something to the effect that “if you’ve received this without a cover it is a copyright violation.” I think one of the points of the lawsuit is it gives copyright holders discretion as to how their works are used/sold etc. The idea that “if you saved it from the bin you can do with it whatever you want” strips them of that right.
Another good point, and it's a fine point as well.
You could split hairs over whether saving an item from the bin occurred after a procedure to remove covers and it was already dumped, or before any contemplation was made about if or when dumping would take place.
Saving either way would be preserving what would otherwise be lost, even if it was well premeditated in advance of any imminent risk.
What if it was the last remaining copy?
Or even the only copy ever in existence of an original manuscript?
It's just not a concept suitable for a black & white judgment.
That's a very good sign that probably an entire book of regulations needs to be thrown out instead, and a new law written to replace it with something more sensible.
Or even the only copy ever in existence of an original manuscript?
I think these still remove the copyright of the author. As it stands, I have the right to write the best novel about the human condition ever conceived and also the right (if copyrighted) to not allow anyone to read it. I can light it on fire if I wish. I am not obligated to sell it to anyone. In the context of the above, I can stipulate that nobody can distribute excess copies even if they would be otherwise destroyed. You may think that’s wasteful or irrational but we have all kinds of rights that protect our ability to do irrational things with our own property.
>That's a very good sign that probably an entire book of regulations needs to be thrown out instead, and a new law written to replace it with something more sensible.
This sentiment implies that you do not think the owner has those rights. That’s fine, but there are plenty of people (myself included) who think those are reasonable rights. Intellectual property clause is in the first article of the US Constitution for a good reason, although I do think it can be abused.
There seems to be an unwritten rule for VC-backed tech companies, that if a law is broken at massive scale and very quickly, it’s ok. It’s the fait accompli strategy many of the large tech companies used to get where they are.
Don’t have legal access to training data? Simply steal it, but move fast enough to keep ahead of the law. By the time lawsuits hit the company is worth billions and the product is embedded in everyday life.
This is great. But my concerns about Cloudflare's power remain. Today it's blocking AI crawlers, tomorrow will it be blocking all browsers that fail hardware-attestation checks?
It's entirely plausible that a long-term engineer at Microsoft wouldn't have have used git. I'm sure a considerable number of software engineers don't program as a hobby.
For anyone considering, here are the 3 opt-outions that appear after you email verify:
1. Just remove my email address from public search
No one using the public HIBP search feature will be able to see your email address in the results. You’ll still be able to search your own address through the notification service, which verifies that you control the email before showing any results. If your email is part of a domain monitored by someone else (e.g., your employer), the domain controller will still be able to see it in domain-level searches.
2. Remove my email address from public search and delete the list of breaches it appears in
Your email address is no longer searchable — neither through the public service nor by you, even if you verify ownership — because the associated breaches have been deleted from the database. However, your email address is still retained by HIBP to ensure it is excluded from any future breaches and not added to your record.
3. Delete my email address completely
The record containing your email address will be completely deleted, meaning it will no longer appear in search results — for you or the public — at the time of deletion. However, if your email address appears in future data breaches, it will become publicly searchable again, as the opt-out record itself has also been deleted.
I assume if that ever happens, someone will register https://haveibeenpwnedbyhaveibeenpwned.com. It'll be the top post of HN for a couple of says while everyone argues in the comments about how the state of online security is "fundamentally broken" while someone asks if they can sue. Then we'll all forget and move on.
I think there was an earlier blog post from Troy sometime ago describing that HIBP never stores unencrypted email addresses; i.e. they are all hashed and any lookups go against the hash, not the actual email address.
US government domains seem a little over the place. I'm surprised by the number of courts and counties that have random .org and .com domains. In Australia, it follows a pretty strict structure:
Federal: entity.gov.au
State: entity.wa.gov.au (example for State of Western Australia)
Local: entity.stirling.wa.gov.au (example for a local government in Western Australia),
So, for example, the Federal Court is fedcourt.gov.au as it's federal.
I work with US state governments a lot. Departments treasure their .com domains because they can actually get updates to the zone file without having to go through months (literally) of repeated requests to get something added to the .<state>.gov/us domain. If a department or agency has to reach outside to the state IT department for anything the timeline doubles or triples. It’s a real problem.
I used to do lots of consulting work for various departments and agencies in the state I was in at the time. The biggest issue was that the state IT department wanted everything centralized, running on only department servers, using a single platform chosen by them (Vignette StoryServer). Most agencies found that to be too restrictive, especially since at the time Vignette only used TCL.
Even worse was the IT department's insistence that agencies sign a 99 year contract for cost sharing, the amount of which would never be known in advance since it would only be calculated quarterly based on all expenses the state IT department incurred hosting state agencies.
Same for the enterprise (non-tech I assume) world. When I was on the business side, we treasured any compute we could get that was not tied to corporate IT. Going through them would turn a 1 day fix into a 2 week endeavor. Product development would go from 1 month to 6 or more.
I tried to access gettysburg.edu the other day and was greeted by a stupid redirect page (with a meta refresh tag) insisting on use of www rather than just issuing the redirect immediately.
The reality is they're stuck in 1995 and won't make rational changes.
Yes. I remember the delight of deploying my first server with a credit card. The previous one had taken 6 weeks and $100,000 out of our department budget. Such a godsend.
Do you mean that all .gov domains are handled by the same dns service provider? I can understand if the TLD registry is a pain to deal with when it comes to changing information at the top, but zones files? The whole design of dns have delegation as a central feature so that the registry do not need to do everything.
Just my $0.02 as a net/sysadmin for a small municipality in the US:
A big part of why we haven't been able/bothered to migrate to a proper .gov domain boils down to the amount of technical debt we'd need to pay back in the process of doing so. Everything that we do uses our non-.gov domain, namely our Office 365 connectors. On top of that, end users' day-to-day communications with the public make use of the existing domain. Modifying that in any capacity could prove disruptive to ongoing communications and potentially render them liable for dropping the ball somewhere. Not to mention that every single internet account ever created by staff using the current domain would need to be migrated or risk being lost forever.
Additionally, we're a small team. Only myself and one other individual would really have the technical knowledge to migrate our infrastructure. The opportunity cost involved would be massive. There are grants available to help us with this, but obtaining/using those can get complicated at times.
Ultimately, the pros just don't outweigh the cons enough to make a huge difference. From a purely academic angle, should we have a .gov TLD? Absolutely. In practice though, the residents and staff are familiar enough with the current one to render it a non-issue. The average non-technical user doesn't "see" "[municipality].[state].gov". They aren't familiar with the concept of a domain hierarchy at all. They just memorize "[municipality_website]" and move on with their day.
> They just memorize "[municipality_website]" and move on with their day.
I haven't even done that much, I couldn't tell you offhand the URL for my county government. I always just search in Google, which takes me right to the page I need (roads, solid waste, library, etc.)
> The average non-technical user doesn't "see" "[municipality].[state].gov". They aren't familiar with the concept of a domain hierarchy at all. They just memorize "[municipality_website]" and move on with their day.
That mean they can easily be redirected to a phishing website.
Absolutely, and that's a risk that we carry, especially in the public sector. That being said though, I don't know if adopting a better-regulated domain is itself enough to alleviate that.
The very unfortunate reality is that many (most?) users evaluate phishing attempts with the null hypothesis that "this is trustworthy". They are looking for evidence that something is wrong and assuming all is well if they don't find it. To that sort of user, the thinking goes something like:
* Some trustworthy sites use .com.
* My municipality is trustworthy.
* My municipality uses .com.
If you draw out the venn diagram, there's a clear gap in that line of thinking. That doesn't matter to someone's Great Aunt Linda though. She just knows that .com is what goes after Amazon and Google, so it must be good.
With that in mind, could using .gov help to protect those folks? To a certain extent. I can see the argument for keeping the more discerning few from getting scammed. For the broader group though, it won't change anything.
Offhand, the alternative solution that I'd offer would be providing clear communication standards to the public. Specifically, defining when, how, and from whom municipal notifications go out. Think of it like the IRS only sending physical letters; archaic as it seems, it makes it pretty obvious that an email "from them" is bogus. The clearer someone's understanding of where to find us is, the more optimistic I am that they'll get where they need to be.
Nah, even worse, they type “municipality” or some butchered typo of it into their browser, triggering a Google search, and click the very first link they see (sponsored or no) - so they can wildly easily be tricked into phishing websites.
Arguably we’re all victims of the decade or so when Google was so good at serving up the right site, so most people just got used to not knowing any URLs. People Google “YouTube” or “cnn” rather than type even the .com after those words.
IMO, poor website UX plays a big part in this too. People are far less likely to Google "[city] public works" if "public works" is a top-level menu item on the city website. When you first need to click a hamburger menu, hover over the "departments" entry, select "other departments", and then pick "public works" from the site header though, Joe Public is just going to do a search.
Yes, what really makes people like us cry is watching someone type in just the word Google into the ubiquitous search/URL bar, hit enter, click Google’s first result for Google which is google.com, then type “cnn.com” into the search field, hit enter, and then click an ad or result for CNN.
You say there are grants available, but given the current environment actually relying on those seems risky - even if you were actually to get the money up front it seems like it might get clawed back.
You are correct. This is a consideration at all levels of government currently, with faith in those grants' persistence varying based on an individual recipient's responsibilities.
> The average non-technical user doesn't "see" "[municipality].[state].gov". They aren't familiar with the concept of a domain hierarchy at all. They just memorize "[municipality_website]" and move on with their day.
You've just highlighted the problem. This is something every single human being in America should know, and arguably almost the entire world.
This falls directly under the rubric of Basic Computing Knowledge > Basic Internet Knowledge.
Every single time I see someone searching for "microsoft" or "apple" I immediately stop them and tell them, "You've already done most of the work. Microsoft and Apple are commercial entities. Add .com at the end, which is what .com means. Commercial. You're adding extra work for yourself."
Yes, a few people pop off at the mouth at which point I remind them ignorance is of a thing is easily remedied with a little give-a-damn, and saves everyone time and money.
Talk about a fucking miserable failure of education. I'm 44. I expected the generation 20 years younger than me to be impossibly skilled with computers to the point that I wouldn't hope to even match them, much less surpass them. Instead what we got was a world where we dumbed every goddamn thing down so even the most drooling moron can utilize it.
They should know the basic principles! For the same reason they should know what a noun and a verb is. For the same reason they should know that you can multiply something by 10 by adding a zero. When so much of our lives revolve around the Internet, basic literacy about its fundamental mechanics makes a lot of sense. The alternative is the world we live in now, where it’s trivially easy to scam people because they believe www.irs.gov.login.html.b3293.cn/login is functionally equivalent to www.irs.gov/login.html?b3293.cn
Imagine if people were this bad at counting, or at knowing the difference between US currency and monopoly money.
> so much of our lives revolve around the Internet
This was my core point, that this is true for you but is not actually true for everyone. To claim the entire world needs to know this when people get by just fine every day without being online or being on a device is absurd to me.
I wasn’t only talking about nerds. There are not a lot of people anymore who are not impacted by the Internet and who don’t usually use it.
And they don’t get by just fine every day.
People get phished and scammed constantly, in many ways that could be prevented if people had and remembered like a 2-week unit in high school on how the Internet works.
I’m not saying they need to understand even the fact that DNS converts names to IP numbers. Merely that it’s a hierarchy and how to trace responsibility (originating from the right side).
That’s no more difficult to grasp (if taught properly) than how to read the address on an envelope and understanding that “San Francisco, California” means a city in San Francisco located in the state of California.
Other lessons in the unit would include how email works including its lack of guarantees of authenticity. And finally, what encryption means and applying that knowledge to safe and unsafe ways of storing and transmitting information.
My county government started w/ a "co.Name.oh.us" domain name back in the late 90s. People in the government hated it. The complaint I heard most frequently was that the public couldn't get it right-- too many dots.
I was a fan of the ".co.name.oh.us" naming because it made logical sense. I could easily find any County website in the state. My intuition now is that anything logical (or, perhaps, just anything I like) will be hated by the public. >sigh<
The county moved to "NameCountyOhio.gov". It's 5 characters longer than the old domain name but isn't hated. The public still gets it wrong often, expecting it to be "NameCountyOH.gov".
Edit:
Okay, so I got this totally wrong. Chalk it up to poor memory for stuff 20+ years ago.
The old County domain was "co.name.oh.us". I completely forgot the hierarchy was flipped for localities, with the locality being the higher level domain and the designation for type of locality (city, county, etc) being second.
For K-12 school districts, libraries, colleges, and others, the hierarchy comes first (like "name.lib.oh.us").
There are separate hierarchies for cities (".ci.oh.us", school districts (".k12.oh.us"), public libraries (".lib.oh.us"), and probably others I'm not aware of. It seems like there could be name collisions between those different entities that would necessitate the additional layer.
Edit:
Per my parent comment I screwed this up and misremembered the hierarchies. The locality name comes first for localities, so you'd be looking at things like:
ci.medina.oh.us - City of Medina
co.medina.oh.us - County of Medina
medina.k12.oh.us - The Medina City School District
medina.lib.oh.us - The Medina County District Library
Oh, I agree. It's logically guessable and the right hierarchy. It'd also never fly. >smile<
> So far as I am aware, every US state is split into counties...
re: falsehoods - Alaska has no counties. Louisiana has "Parishes". Connecticut and Rhode Island have counties but no county governments. Also, see Townships.
Sometimes I think our country would be better understood as 50-something separate countries, kind of like the EU, except without the general goal the EU has of increasing amounts of cooperation and convergence. Since in America, everything that’s different from one place to another is generally different because somebody very influential wants it to be. As programmers I feel like all this inconsistency drives us crazy because it seems pointless, but as a citizen, I can see how it would be a tremendous waste of effort to try to force national standardization merely for standardization’s sake when we have so many real problems that need to be addressed.
Virginia is another edge case here, where cities aren't part of counties and are directly under the state. If you look at a map, you'll see holes in a bunch of counties where the cities are, e.g. https://en.m.wikipedia.org/wiki/List_of_cities_and_counties_...
All of these are tiny exceptions compared to the vast number of counties within US States. However, reality is made of exceptions! All things considered, it is interesting and important to have local exceptions in a nation IMHO.
And even where everything seems the same on paper, different states can handle things wildly differently.
Some the counties run almost everything except where a large city is, some the county does almost nothing, and everything is tied to whatever the biggest town is.
it turns out, cities are among the least well-defined geographical features in local government of the USA. There are many odd and unusual arrangements at the city level. The US Census maintains a collection of more clearly defined entities.
I can think of lots of exceptions to the part about substate public entities existing within counties; CA, for instance, has quite a number of JPAs and similar entities that involve multiple counties, or entities from multiple counties, for some purpose; e.g., The Metropolitan Water District of Southern California, the Bay Area Rapid Transit District, etc.
You can't get rid of the "co". It's needed for disambiguation.
For example, here in Texas, the City of Dallas is located in Dallas County, but they are separate things. If you want to pay a parking ticket that you got in the City of Dallas, you need to go to the city's web site. If you want to pay your property taxes, you need to go to the county's web site.
Also, the City of Austin is located in Travis County. There is an Austin County, but it's 100 miles (160 km) away. The only connection is that they are both named for Stephen F. Austin.
Interesting. Here in CA we have a few fused “City and County of X” governments. In those cases, the borders are one and the same, and there is only one governmental entity in charge of it. Mostly, this is convenient.
(I’m not OP but) Since there is only one entity, you would probably create a simple website redirect for the redundant lower level, and keep everything (web, email) at the domain (the one that would have been a “county” anywhere else). E.g. sf.ca.gov
That's the genius of having states, counties, cities, towns and villages that are almost entirely decentralized. When an evil force takes over the government and wants to rule the whole country, they can't, because nobody even knows how a single tiny village is organized. Complete disorganization and inefficiency as a defense against tyrrany. (or, well, at least, slowing it down)
> When an evil force takes over the government and wants to rule the whole country, they can't, because nobody even knows how a single tiny village is organized.
As we're seeing right now this isn't true. Everyone is afraid because the current federal executive doesn't give a flying f..k about norms, including telling people "comply with what DOGE wants or get fired" or drawing up lists of "Government Gangsters" [1]. And so, everyone is bending over in fear of getting in the crosshairs, getting government spending contracts cut, getting fired, getting death threats like Fauci, or getting extorted to buy ads on Twitter [2].
Side rant: where are all the "don't tread on me" gun nuts that have arsenals rivaling what would be a special forces unit in smaller countries?
> Quite a few are really into Libertarian values and hate Republican stances on a wide range of issues.
Mostly abortion and to a lesser extent the "war on drugs". The rest is seeing especially Musk's blatant self-dealings [1] and teardown of "big gubmint" as something laudable.
"So This is How Liberty Dies, With Thunderous Applause"
There’s far more fundamental disagreement between the parties than that.
Libertarians strongly oppose government intervention in the economy like farm subsidies or specific tax cuts for specific industries. The Reputation party says it believes in free markets, but it doesn’t act that way.
The gap between Republican stated goals and actual policies is really stark. I think it mostly works because so few people dig into the details, but some people get really disillusioned.
It's absolutely true. My county and state government has not changed. My kid goes to the public school, which has not changed. Indeed some of my state officials are suing the federal government.
State and local governments provide many services of enormous importance: schools, police, fire, roads. The President is not ruling all of that.
The problem isn't who provides it, it's where the funding comes from.
If the local school is 90% funded by local taxes, they can ignore the state and federal government for quite awhile.
But if it's only 10% funded directly by local taxes, and the rest (even if coming from the locality!) is funneled through the state and/or federal government, then they can be squeezed on the money side.
For the past few decades, though, it feels like we’ve been locked in a permanent war between two opposing factions that barely admit each other’s right to exist, let alone to disagree, with the goal of forcing federal government policy to agree with, alternatingly, the “left” or the “right” orthodoxy and for the feds to force those ideas on the whole country.
Wouldn’t it be more productive to just massively cut federal taxes and obligations, and let Republicans live in Republican controlled states and let Democrats live in Democrat controlled states? Then the state governments can raise taxes and be able to use their taxpayers’ money as they see fit.
This way, if you want any category of government goodies, from single-payer healthcare to fixing the roads, you only need to convince your fellow state residents to pay for and tolerate it, and the people you don’t trust from far away can’t block you.
The federal government has only shown any particular skill at operating the military (no one’s dared to invade us since 1812!). Maybe we just let them handle that, plus uncontroversial standards and maybe make trade agreements. Let states handle the rest.
That’s close to the original plan (even more so if you look at the articles of confederation) and is actually quite present in many things (look at the ACA for example).
But it should be more explicit in many cases. As we see routing everything through the federal government gives it more power than “expected” - like how it regulates drinking age via federal highway funds.
> State and local governments provide many services of enormous importance: schools, police, fire, roads. The President is not ruling all of that.
A lot of that hinges closely on cooperation with the feds, and the Trump admin has repeatedly said they will go and target "sanctuary cities" - so much for states rights.
In doubt, the federal government will pull off another drinking ban - the age for drinking is 21 because the federal government threatened to retract highway funding many decades ago, and that was explicitly ruled to be constitutional [1].
Do not think even for a single second that you are safe from the impact of the Trump admin even if you live in a deep blue city in a deep blue state.
In doubt, your daughter might not be able to access plan B any more (or your son stuck paying child support) because, of course, that one is on the target list as well, or your trans kid might not receive the care they need because the federal government plans to ban that as well, and if it's just by banning federally active insurances from covering the cost for such treatment. Or if you're Black and your kid needs to take ADHD meds? Say goodbye to your kid [2].
You all are anything but safe, but by the time you realize it because it starts finally affecting you and your loved ones, it will be too late. Take that warning from a German and heed it because we actually lived through that and learn about the time of 1933-45 and the years leading up to it in school!
…while uploading their ID’s to government mandated databases in order to watch the trans porn they want to completely outlaw, in the same of small government?
Nah, they just dropped the pretense. Small government was always code for “leave me alone and make those people suffer.”
Have you been following US politics lately? Right now there is an election denier in a cabinet position. It’s partially a good thing that elections are controlled by states as some protection.
That just proves my point. All that obsessing about preventing tyrants, and you still end up with one. Maybe if, as a culture, you spent less time poring over quotes from eighteenth-century political thinkers to divine the best possible theoretical form of government, and more time solving concrete problems faced by real-world people, this wouldn't have happened.
The Westminster system is looking very 'worse is better' at the moment.
Culture's a funny thing. Extremely hard to change, very hard to predict or control. Based on my understanding of history, almost all cultures fail.
The ones that have lasted the longest have been taken over by foreign empires and despots, but persisted nonetheless. Others were taken over and converted to some other culture, or died entirely.
Want a really long-lived culture? Look at Egypt, India, Persia, China. Want a culture that resists outside influence? Probably Egypt, maybe next India, and then Rome - but the former were conquered, and the latter died.
(I'm a shit lay-historian so please somebody correct me)
If you look at the evolution of life on this planet, it's never really clear what's a "superior" lifeform until you look at it for a few hundred million years. Crocodiles looked like the dominant lifeform for a pretty long time, but even that ended. Our cultures are absolutely infantile in the grand scheme. We can come up with ideas and try them out, but there's no telling what works long-term. Only future generations can judge.
The majority of the people in the US want the current situation. Between the fear of the country becoming minority-majority,losing “traditional American values”, and protecting pets from being eaten by Haitians, they see Trump/Musk as their last hope.
Admittedly, it didn’t help that the DNC re-enacted “Weekend at Bernie’s” with Biden for two years.
No, a plurality of people voted for the current situation. Not a majority of people, not a majority of voters (many of whom didn't vote, or weren't able to vote), and not even a majority of people who voted (49.8%, and no you can't round up).
Also, voting for slate of candidates on one day in the middle of a billion-dollar multi-year misinformation campaign, does not equal "want the current situation". I agree that an egregious number of people are actively cheering for the current chaos, but let's not give them more psychic power than the institutional power they are already wielding.
The DNC keeps itself alive on a steady diet of fantasy that the bloc of nonvoters agrees with them and hates the Republicans, which if true would make the Democrat orthodoxy a robust majority in opinion, even if not in actual elections. Yet everyone outside the DNC echo chamber knew Trump would likely sail to victory over their hilariously unpopular candidate, yet the nonvoters didn’t lift a finger to try to prevent it. I think most of them don’t think either party is serious about anything actually important to them. Of the people who have an opinion, a lot more wanted the current outcome than wanted whatever the Dems were selling last year.
A little chaos is probably healthy at this point — we can’t grow government forever, and now the ideas that actually have popular support will have to be enshrined in actual permanent law instead of operating solely by the old gentleman’s agreement that we never cut any government program ever, since that agreement has been torn up and thrown out now.
Why do people keep trying to use this as copium? This is exactly what the majority of the US wanted. If you lived in a deep blue state of deep red state, because of the way that the electoral college works, it doesn’t matter if you voted or not as far as the presidential election.
Unlike what Michelle Obama says, this is exactly who we are.
> Maybe if, as a culture, you spent less time poring over quotes from eighteenth-century political thinkers to divine the best possible theoretical form of government
The problem being the founders having been anti-tyranny extremists.
E.g. the founders' opinion on whether everyone should be able to own his private tanks and warships is crystal clear: Absolutely. It's literally why they didn't just write "The right to bear arms shall not be infringed" but also "A well regulatef militia, being necessary to the security of a free state".
And nowadays the left screetches about noone needing to carry a butter knife with a blade length above 3inches and the right is divided over whether Soros should be able to buy Minuteman missiles with USAID money.
The only reason the right is disagreeing with the founders at all, is because the founders thought if a few immoral entities, not under the control of the people, became obscenely powerful, the people would just make use of their militias to get rid of them (see declaration of independence).
And that's also why the selfdeclared elite keeps trying to restrict the 2nd amendment. Because it protects the first. And why they keep trying to restrict the 1st amendment (hate speech, micro-aggressions, control over all the media, online censorship, "fact checking", trillion dollar judgements against journalists for minor offenses, ...). Because it protects the 2nd and all others.
> Right now there is an electric denier in a cabinet position.
There's a whole lot more than one. Remember that when Republicans win, the results aren't "denied" but the Democrats sure do cast a whoooole lot of doubt on the proceedings (i.e., "well yes they won but voter suppression, I'm just saying...", "well yes they won but Russian Facebook propaganda, I'm just saying...", "well yes they won, but hanging chads, I'm just saying...").
Newt Gingrich outright chastised the Republican governor of GA for making voting more convenient in minority neighborhoods was going to increase the chance of Democrats winning. He said the quiet part out loud.
Not to mention that in Texas, student IDs issued by public colleges aren’t legal IDs to vote. But gun permits are.
Of course there is Russian interference on social media. Not that I think it makes a difference.
Complaining about any of those things though and saying that’s why Trump won is crazy looking at the numbers. He won fair and square. Both of those things can be true.
The ID presented when voting doesn’t have to itself prove citizenship if things are being operated in a sane fashion. Voters have to already be on the voter rolls to vote, and if they’re letting noncitizens register that’s the real bug. You should be able to vote with any ID that proves you look like a certain person named on the rolls. Someone who isn’t a partisan hack would probably want to just give poll workers pictures of all acceptable* “local” IDs issued by trustworthy institutions to be sure that people aren’t DIYing IDs. Banning school IDs is just trying to suppress the young vote, as people 18-22 are far less likely than older people to drive than they used to be, especially in urban areas.
And I say this as an independent who has walked away from the Democratic Party because I hate the DNC, not an “immigrants rights activist” or something.
*acceptable should mean they are real cards with at least a basic security feature, not a laminated thing you could print at home.
otoh, a blockchain is also immutable unless you take out the entire thing, you can't just alter previous transactions without invalidating subsequent ones
My state has a telecommunications network that was responsible for bringing the Internet to schools and libraries in the 90s. As a result many of these institutions were assigned domain names under ia.us, which the network controls on behalf of the state. The state government gets the state.ia.us subdomain, libraries got their own second-level subdomain under lib.ia.us, schools under k12.ia.us (private schools under another level pvt.k12.ia.us, although their website now lists that as pvtk12.ia.us; my elementary school domain of the first form still resolves), community colleges cc.ia.us and so on. I didn't know better at the time and assumed the whole US was organized that way. In any case no one liked having johnd@excelsior.pvt.k12.ia.us as their email address so most of the schools bought a second .net or .org domain.
I know my high school moved off the ICN T1 service in the early 2000s, but it looks like the domain records are still maintained, as the old address still resolves correctly.
Edit: see EvanAnderson below I didn't realize this was ~formalized as an RFC and actually was relatively standard across states, I assume for the same reasons very few public entities were using these hierarchal addresses as their primary by the time I really got online in the mid 2000s.
URLs are a part of the UX of websites. The domain often represents the first interaction between the user and the site. Domains that follow a strict hierarchical structure that aligns to some real-world hierarchy may not be the best first interaction with the user, or at least not in the opinion of those that are creating the site.
So, I think it’s natural for site owners to want this freedom. Then it comes down to whether there should be constraints forced on them or not by policy for some greater good. In the US, generally, central planning on this type of stuff isn’t really part of the culture.
Oh I thought you were going the exact opposite direction with that reasoning. A hierarchical url is good because it immediately establishes trust and provenance. Currently I never know whether I’m dealing with a for profit entity pretending to be governmental, or actual government.
To technical people, sure. I don’t think the average person knows about provenance rules of subdomains though and how it’s useful… it’s more just a bunch of symbols they don’t care about.
And we understand the threats here… a very real problem is someone forgetting to renew one of these .org or .com domains (maybe the person that maintains it retired) and a malicious actor grabs it after expiration, stands up a scraped copy, and uses it to collect parking ticket payments or whatever.
I was actually thinking a bit more about the diversity of domain names under .gov, though I realize now that the parent comment I replied to was about .org and .coms. I think you get a bit of those provenance assurances if they are under .gov, as a practical matter it’s harder for malicious actors to own one of those than one under other tlds. And then instead of forcing a strict taxonomy that is mostly for the benefit of the infrastructure maintainers (very enterprise software), there is freedom to use a name that makes the most sense for the target user.
No, people need to learn how the Internet is organized and named. It's the same as learning the Dewey Decimal system so you can navigate your local library.
It should be taught in school exactly the same way. It's more important in the year 2025 to know that, than it is the Dewey Decimal system, which is still taught in a majority of schools for some reason.
People should know what it means to be connected to a .gov, .com, .org, .edu, .net, .mil site, etc. I know we have a lot of new TLDs, but knowing the originals should be a bare minimum. This isn't rocket science, hell, most of these domains are almost self-explanatory even as three letter codes.
Nobody knows the Dewey Decimal system, they know subject/author/title hierarchy at best, and even then given the ambiguity in subjects they often resort to the computers or librarians to search the catalogue and get directions.
The .gov TLD was only for the Federal government in the past, it was opened up later to state/local governments. By then, some had already had <something>.<state>.us, or some other TLD. Most probably thought it was too troublesome to migrate over. That and the fees were more than any other gTLD (though not now).
Canadian domain names in the 90s also followed this newsgroup-like syntax: <website>.<city>.<province>.ca
At least one site (transit.toronto.on.ca) still has an active domain in that format, even though it’s not operationally-related by the City of Toronto.
It’s quaint that folks wanted to root their web presence in their physical world.
I can understand some local government official "I don't know how to validate things to get a gov ... but I do know how to register a domain" and it's .com.
Then they should use this amazing tool we have that contains damn near the entirety of accumulated knowledge of Humanity called The Internet.
You don't even have to search any longer. You can literally ask a conversational AI, like this...
How would a local government official obtain a domain name with .gov for their governmental office?
ChatGPT said:
A local government official can obtain a .gov domain for their governmental office by following these steps:
1. Verify Eligibility
.gov domains are restricted to U.S. government entities, including federal, state, local, tribal, and territorial governments.
Local government agencies, such as city or county offices, are eligible.
2. Choose a Domain Name
The domain name should clearly reflect the governmental entity (e.g., cityname.gov or countyname.gov).
Avoid abbreviations or acronyms unless commonly recognized.
3. Obtain Authorization
The request must be authorized by the highest-ranking official of the government entity (e.g., mayor, county administrator).
They will need to submit a letter verifying the legitimacy of the request.
4. Submit an Application
Visit domains.dotgov.gov to apply.
Create an account and complete the application form.
Upload the signed authorization letter.
5. Await Review and Approval
The Cybersecurity and Infrastructure Security Agency (CISA) reviews all applications.
If approved, the domain is registered, and the office will receive account credentials.
6. Configure DNS and Website
Once the domain is active, configure DNS settings.
Set up email services and website hosting as needed.
7. Maintain Compliance
Ensure the domain is actively used for government purposes.
Keep contact information updated to prevent domain suspension.
There is no cost for registering a .gov domain as of April 2021, since it is funded by the federal government.
There is literally no excuse for not knowing what to do in the year 2025.
There was a period right when lots of entities decided that they needed a web address where the US government was making an effort to get everyone who wasn't the federal government (including local and state governments, federal contractors, etc.) off of .gov and stop new non-federal registrants to .gov (I don't think it lasted long, but I distinctly remember it occurring), there was a defined hierarchy for local governments under .us, but most local governments weren't aware of it, and I'm not sure the registrars they went to dealt with .us domains, and people ended up just doing whatever...
We have so many subdivisions, and in many/most cases there's no accountability (by design) from one level to the next
Feds can't force states to use .gov addresses, and most states don't force counties or cities to use whatever the state's top level is. Some do, or try to encourage, but it's like herding cats and when there's 50 states and a couple thousand counties, and then tens of thousands of cities that all have varying levels of authority to enforce anything on the next level down it's never, ever going to be uniform for us
Looking at the list I wold assume that the majority of those are not the "primary" domain, and indeed if I click around randomly, most of them redirect to somewhere else.
The most amusing example is https://gooutsideandplay.org/ which doesn't look like an official government website at all. And yet it's the official website for county parks in Santa Clara county. Anywhere in the world one can go outside and play and yet this vanity domain is restricted to Santa Clara county parks.
That hierarchy exists for US states. It just is rarely employed because politicians and administrators don't know how the Internet works and insist on vanity domains that can't be easily discerned from scammers.
It’s not terribly difficult to get a gov domain, it’s just much easier to do an ordinary one. Smaller towns and cities outsource to cheap WYSIWYG type builders that also include a domain so it’s really simple to just go that route too.
It can get quite unprofessional at that level. There was a small suburb in our metro whose .com domain was an insult against the core city. I'm sure they thought it was funny but eventually it did get changed to the town and state name.
It’s awful, really. Some domain names are so awfully chosen, they sound like scams. Take the government program for financial support to students, called BAföG. Here’s a bunch of domains related to that:
Or, the worst one in my opinion: the German federal ID card has an integrated RFID chip that requires a PIN to unlock. You can use that chip to authenticate against a few government services online, which rely on the PIN as proof of identity. The PIN can be reset using a OTP sent via snail mail.
Q: where you you think can you order that letter?
a) Bundesdruckerei.de
b) personalausweisportal.de
c) pin-ruecksetzbrief-bestellen.de
d) bmi.bund.de?
Healthcare billing in the USA has gone this way. You're going to see emails from my-doctor-billing.com directing you to hospital-pay-site.biz and they're all totally legitimate.
An interesting service, and very competitively priced. But for me, my email is fairly mission-critical. It's not something I'm prepared to endow in a one-man shop. I don't mean to offend, but it looks like something that might be used as something of a novelty. Were I to use it, I'd be backing up my email locally.
I've been using purelymail for multiple domains (with low traffic granted) for about ten years. I've never experienced an outage so far. Support has never failed to respond in the under 5 times I needed it.
I don't agree with you. A key reason to host your email with a reliable cloud storage provider is to have backups handled for you. Fastmail is particularly good in that respect, since it takes periodic backups for you, allowing deleted items to be accessed.
To put things in perspective, I dare say that many large commercial organisations who rely on Office 365 are not backing up emails locally. They do likely have fancy retention holds preventing nefarious actors who compromise access to the account nuking things. I think Fastmail's backup is limited to 7 days. Outside that is a risk; it's one I'll take.
Maybe we have different perceptions of risk. But I think one can reasonably take the view it is unnecessary to have an independent copy in this scenario.
As miles pointed out, the risk is not that they lose your data. The risk is that you lose your account.
They don’t owe you a data download if they decide to terminate the business relationship which they can do at any time without notice or cause. You agree to this when you sign up.
Not having backups of important data in your own possession is just plain stupid. You’re paying them to be online 24/7 and speak IMAP/SMTP, not to archive your data in perpetuity.
This is such a remote possibility, at least with Fastmail, that I do not consider it reasonable to implement my own backup solution. If they are going to shut down, it isn't going to occur imminently and without any warning.
It's an easy statement to make: "just take a backup". But that requires me to dedicate time to implementing a secure and automated solution (and of course, routinely testing restoring it). I'm not doing that, because I pay the service to do that for me. If I'm going to that effort, I may as well self-host.
It's possible your definition of mission critical just doesn't match up to that of those responding to your comment.
If the loss of a set of data would threaten the existence of the company, that's mission critical. While having a sophisticated niche tech partner handle day to day operations of that data is one part of managing the risk of data loss, if one put all their eggs in only that one basket, that would possibly indicate one has a lack of experience with tech vendors and hasn't read anything about managing risk.
Every business should have at least one routinely tested, independent path for mission critical data recovery.
I think you're right. But I also do not think Purelymail falls in the same camp that Fastmail or Office 365 do, so far as expectations of reliability and business continuity are concerned.
The broader question of whether it is appropriate to independently back up your own data in large scale cloud services need not be answered. It is simply sufficient to recognise the risks are far greater when dealing with a one man operation.
Why would I lose access to my Fastmail account? That risk is a remote one. I have 2FA, they take backups and provide support, and they are a reliable company (at least, not a one-person operation).
In this context, stealing is often used as a pejorative term to make piracy sound worse than it is. Except for mass distribution, piracy is often regarded as a civil wrong, and not a crime.
reply