This doesn't stop apps using things like DNS over HTTPS etc. PiHole works pretty great today, but developers are getting sneakier and sneakier about how to obtain outbound DNS. It's not just unencrypted port 53 all the time anymore. Eventually devices will get the IP for the DNS record they want just fine, if they really want to.
PiHole arguably is getting less effective with each passing year as alternate DNS resolution methods like DNS over HTTPS etc gain traction, and defeating DNS over HTTPS is s a whack-a-mole game today, all you can really do is try to blacklist known DNS over HTTPS server IPs, which is a running battle.
My assumption is all ad driven applications who depend on resolving advert domains correctly to serve the ad content will one day all utilise methods like DNS over HTTPS to stop products like PiHole reducing revenue.
Apple has implemented a way for developers to do this already with DoT. If you are running a pihole I suggest you block. _dns[.]resolver[.]arpa. If not and your upstream DNS resolver supports DoT, this will tell clients who your upstream provider is and then they will send DoT requests out, bypassing your pihole. This is part of so called Discovery of Designated Resolvers (DDR).
> PiHole arguably is getting less effective with each passing year as alternate DNS resolution methods like DNS over HTTPS etc gain traction, and defeating DNS over HTTPS is s a whack-a-mole game today, all you can really do is try to blacklist known DNS over HTTPS server IPs, which is a running battle.
Aren't blocking ads another whack-a-mole? So it seems like more of the same.
Also, aren't there proxies that you can setup that can inspect HTTPS connections (so long as you install the proxy's cert on your machine). I suppose the whack-a-mole might be more practical if a few people used those regularly along with some kind of automated scanning for DNS over HTTPS.
For PiHole today, most everything comes over port 53, and thus easy to track, monitor and block as required.
Tomorrow, DNS requests can be on any port, to any server, on any protocol. This makes trying to use a single point of control like the PiHole so much harder than it was in the past. Who is to say next week its HTTPS as the encrypted transport for DNS? Use whatever bizarre encryption scheme you like. It's your app... The app can just ignore whatever DNS server you suggested via DHCP or whatever and go back to its homebrew domain name resolution system.
Eventually ads, tracking, etc are just going to be proxied by the app server, along with normal app server traffic, to one IP and you can't do much effective filtering in the end.
> Also, aren't there proxies that you can setup that can inspect HTTPS connections (so long as you install the proxy's cert on your machine).
It's common for apps to prevent this with certificate pinning. They'll ignore the certs you've installed manually and will only connect to servers with certs signed by their in-house certificate authority.
Yes, but the mole-whacker is whoever controls the software doing the rendering. So on a personal computer, the ads are the moles. But on a locked down "phone", the user is the mole.
And what happens when they start changing the port? It's a battle no one ultimately can win, in short term. The technical options available to get DNS by so many different means are so easy to implement, relatively speaking. Even a really junior engineer can likely invent their own DNS resolution protocol, its one of the simplest APIs to reinvent if all you care about is returning IP address for a given name.
80 and 443 are only used by convention for HTTP/HTTPS - you can use whatever the hell you like. There's also the option to not use HTTP(S) or DNS at all to obtain addresses, the list of ways you can avoid traditional methods is endless. Finally, you can just serve your DNS on same IP as back end of the app - block the IP and the app dies completely, meaning a simple IP block will not work etc etc. It's super easy to write some code that combines tens of methods, ensuring you get that DNS record no matter how hard the user tried to stop you.
I don't think you really appreciate the scale of the problem, when any protocol can be used. Port/IP blocks simply are too blunt now, and once again you are screwed if app provider uses the same IP for illegitimate DNS as legitimate services - you might not be able to block the IP at all and still access the services you need on that device or application. To give one example - imagine if netflix shared video on same IP as their private DNS service. They could even use the same port. Can't block the DNS without blocking the service.
Heaven forbid they use dynamic IP/port allocations too...
SSHing to another machine isn’t a solution, you’re just using a different machine.
The way to solve it and still continue to use iOS is to implement your VPN at the network layer. e.g. use one of those wifi routers with a VPN client built in.
> The way to solve it and still continue to use iOS is to implement your VPN at the network layer. e.g. use one of those wifi routers with a VPN client built in.
That's a little impractical for a phone. You'd have to lug around some kind of VPN-enabled mobile hotspot, plus batteries to power it.
5. methylated b vitamins (~50% of the population has a MTHFR variant that generally requires you to need methylated B vitamins, versus regular B vitamins)
6. high doses of gamma linolenic acid (I use evening primrose oil and Jarrow brand is trusted)
How do you take this? I've tried broccoli supplements and they don't work all that well. There's only one direct sulforaphane supplement that I've found, though I'm not sure whether to trust the brand
I take capsules, 2x/day. I take sulphoraphane 140 mg/day.
Jarrow and Thorne Research are reliable brands. But, Thorne Research tends to be way overpriced in my opinion. As you know, you never ever buy supplements off of Amazon or places that are not well heard of.
One of those disturbing things about nootropics is that people frequently stack a large number of them so the effects of any particular one is unclear.
There are also questions about what exactly a substance is.
Years ago I bought a tub of Piracetam that felt a little bit like that stuff in the movie Limitless. No Piracetam I bought afterwards felt that way so I wonder if I'd really gotten something more like amphetamine.
> Years ago I bought a tub of Piracetam that felt a little bit like that stuff in the movie Limitless. No Piracetam I bought afterwards felt that way so I wonder if I'd really gotten something more like amphetamine.
Years ago, I bought some Piracetam when I was traveling in Asia. One of my relatives, who's an MD, didn't want me to take it and did some research in actual medical databases. IIRC, he said pretty all the articles praising it traced back to a single study.
I experimented with nootropics in the past and currently I just stick to vitamin D3 + K2 + Omega 3 (DHA/EPA). In case I need to focus I just add 300/600mg of Alpha GPC (but I don't use it frequently, once I start to become irritable it means there's enough acetylcholine in my brain).
I have more than a few neurological issues. I have 3 medication induced movement disorders. I also have 2 rare immune mediated neurological diseases affecting my peripheral nervous system.
Anyways, the stuff I take is to ensure adequate nutrients for my brain. But the primary goal is for neuroregeneration over the long term.
I get the co-ultramicronized palmitoylethalinomide + Luteolin from http://epitech.it, but you have to use a package forwarding service to mail to US (they don’t ship to US, even though it is Italy based and 100% legal)
As I said, I am not interested at all in nootropics or peptides. It is basically all antioxidants/natural neuroregenerative compound/omega fatty acids.
Reddit r/peptides and r/nootropics like a lot of these substances. Also u/Misteryouaresodumb of NootropicsDepot is a wealth of knowledge. There’s a long tail of YouTube and other sources you’ll find from there.
Collecting potassium iodine is not going to save Americans, that’s for sure. The amount of preparation for the American people to survive would be next to extraordinary. Most people these days do not have what it takes, and certainly our government does not, either.
The thing is that even if the missile defense system works 100% successfully for a nuke approaching the United States, the electromagnetic pulse above is enough to disable all electronic devices in the US. Like the trajectory of the plume covers the vast majority of the US, no matter what direction the nuke comes from.
At the altitudes they would typically be intercepted at (for ICBMs amyways), it would likely be dispersed over most of a hemisphere and likely somewhat weak... until there are multiples.
I don't think there were any errors here, and I didn't get the impression this was only evaluating errors.
I don't think her doctors missed anything that ought to have been caught. She seemed completely fine five minutes before she was irrecoverably dead (i.e., her heart muscle hadn't just stopped, but part of it had died).
And that's what confuses me about this rating system for evaluating what was and wasn't preventable. My best guess is that there truly wasn't anything anyone should have done, that it was just a freak thing that happened.
And I guess that's emotionally simpler. The grief isn't any less deep, but it's not complicated by anger. "Sometimes bad things just happen with no warning" sucks, but it's not complicated.
I suppose I do have a bias toward continuing to assume that's true in her case, for my own sake.
The third leading cause of death in the United States is believed to be preventable medical errors.
Anyways, I have never been pregnant, but if you saw what happened to me medically this summer, you would be doing everything you could to be leaving the US. Anyways, I am a dual citizen. My other nationality is Croatian, but I don’t plan on living there.
Even Croatia, you know which went through a horrific war 30 years ago, has a better life expectancy than the US now. But even before the pandemic, they were very close to convergence with the US life expectancy. And Croatia only spends $1,100 on healthcare per citizen per year!!!
I imagine life expectancy in Croatia would be much worse than in US if Croatians were as overweight as Americans are, and used hard drugs or lived on the streets as often. Fortunately, Croatians tend to live much healthier lifestyles than Americans, which results in higher life expectancy, despite available medical care being of worse quality.
Thanks captain obvious, what you stated are public health issues. Also, money isn’t everything and unfortunately a lot of Americans use that as justification to keep playing a game that is going to kill them and/or their family member. Way too much is spent on administration of health care plans and nobody is getting good value for their money. We spend the most, and we get the worst outcomes overall of any developed country. Even things we used to excel at we are doing very poorly due to staffing, regulation, and other issues.
Honestly, the quality of care is not OK at all in the US. Just check out r/medicine and r/nursing. We are in for a whole lot of really terrible stuff.
Seriously, if someone in your immediate family gets sick and needs to be hospitalized, stay with them 24/7, even if it means sleeping on the floor. Nurses say they will do the same thing for their family members.
Anyways, I ended up spending 9 weeks in the hospital this summer. It started at a trauma hospital, where I stayed for 18 days. The first 90 hours (3.5 days) they did not even give me any long acting insulin, even though my body does not produce any insulin and I can not metabolize without long acting basal insulin. (I was never on an insulin drip either, and I was never on a high dependency unit where the insulin drip could occur.) My family had to beg and plead with them to give me basic diabetes care, including the long-acting insulin. (I was too, the whole entire time.)
The first week my blood sugars averaged overall around 400 mg/dL (22 mmol/L), and chief trauma resident and trauma fellow were explaining to trauma residents outside of my room when someone with type 1 diabetes is at risk of diabetic ketoacidosis. Such a basic matter.
Anyways the rest of the story is for another time.
I will only say that I come from one of those Eastern European countries with low per capita medical spend and pretty good health outcomes, and comparing the actual quality of received healthcare, and ignoring the cost differential, I’d pick American hospitals over those in the country I grew up in every single time, no exceptions.
Yeah, your writing sounds eastern European, if you know what I mean (no offense).
You’re right about the American hospital, generally and for now. They have better resources, equipment, and are cleaner, among many other things. You have more rights in an American hospital (no bribe expected).
But, a country like the United States could learn from a country like Croatia and make the best out of its resources. The US could spend the same on healthcare without taking away resources from the general American populace (minus oligarchs) and allow people to be so much more healthier.
I totally agree. Healthcare in US has a lot of problems, but the standards of care is not one of them. This means that comparing US healthcare based on outcomes does not always make sense. For example, mothers in postpartum overdosing on recreational drugs is simply not something that ever happens in Poland.
The fundamental problem is that a lot of Americans lead very unhealthy lifestyles, and this is reflected in the outcomes and the medical spend, despite world class medical care doing its best.
When reading anything about medical error, it's important to try and distinguish between ex-ante and post-hoc analysis of what is preventable. Everyone can be a great coach after the "game" has finished
The above poster is just suggesting that Bill Gates not be a hypocrite with respect to consuming less.
He consumes way way way more than the average citizen.
I don’t even know why people listen to him.
Shouldn’t we be listening to actual climate scientists in the US government? And not some software CEO who has conflicts of interest? Why are we even platforming this dude and giving him any legitimacy?
If I were Bill Gates it would probably be miserable to take normal flights, can't walk two steps before someone gawks. If anything just reinforces that being famous sucks.
Anyways, Gates is always preaching about “policy” (The Gates Foundation is about power and getting governments to fund their objectives, ultimately) but never actually sets a good individual example of how to live, like normal citizens.
I mean, it is not coincidental that he is preaching about global warming right after the Nord Stream pipeline was blown, which released an unprecedented amount of methane in to the atmosphere.
Perhaps Zuckerberg should be paid significantly less? Perhaps Facebook employees should fight back? Like protest or leak controversial information, especially since Facebook is in the data hoarding business?
But, stuff like this should make Facebook employees angry. Zuckerberg is not a person to envy.
> But, stuff like this should make Facebook employees angry. Zuckerberg is not a person to envy.
It's a wonder he hasn't been pushed out yet. I'm pretty sure he's holding enough stock to prevent it from happening, but you have to wonder what kind of internal pressure there is in the Facebook C suite right now
Linuxbrew is pretty convenient for installing dependencies, especially on "stable" distributions like Debian/Ubuntu. You can install specific versions of dependencies that you want, even keep them side-by-side.
It's also distro-agnostic, so it works almost everywhere.
Looks interesting. It both says that installing without sudo is a feature, which sounds neat, and that installing into ~/.linuxbrew is an unsupported feature.
# On Linux, it installs to /home/linuxbrew/.linuxbrew if you have sudo access
# and ~/.linuxbrew (which is unsupported) if run interactively.
HOMEBREW_PREFIX_DEFAULT="/home/linuxbrew/.linuxbrew"
HOMEBREW_CACHE="${HOME}/.cache/Homebrew"
