Both accounts are used to advertise their website.

Comments on issues use the format <[OrgName]/[RepoName]/issues/[IssueNumber]/[CommentID]@github.com>

A mitigation to this would be to take the combination of message ID and the sending domain and use that as the unique value, because message ID is not guaranteed to actually contain a domain label that's owned by the sender.

For example SendGrid's message IDs are <[RandomValue]@geopod-ismtpd-[Integer]>.

Of course every service will have outages, it's just funny to see it so soon after saying:

> We're nuts for studying failure at the company [...]

(albeit a different 'failure' context)

I don't think they're advising anyone create both a CNAME and TXT at the same label - but it certainly looks like that from the weird screenshot at step 5 (which doesn't match the text).

I think it's mistakenly a mish-mash of two different guides, one for 'how to use a CNAME to point to a third party DMARC service entirely' and one for 'how to host the DMARC record yourself' (irrespective of where the RUA goes).

It's quite ironic that they used an LLM to write or at least entirely re-format their post, when their topic is about the impact these systems have on the ongoing sustainability of the humans behind the work.

I personally don't use LLMs and generative models, I find their output way too untrustworthy and their practice of mining the data of others unsettling. Not that anything on the internet can be inherently trusted anyway.

0: https://support.google.com/mail/answer/1311182#zippy=%2Ci-ca...

The GPUs are generally rack-scale integrated units rather than PCIe. The bulk of the GPU RAM is HBM, so not very scavenge-able for consumer GPU mods. Power consumption of the blackwell GPUs in most solutions like the DGX B200 isn't really viable for home use even if you had the space and hookups for a fraction of the original 10ru system. The hard drives and SSDs will be likely be shredded on site and never re-sold as used. RAM will be registered ECC, only suitable for server-class motherboards.

That's using reddit's own site, of course there are other methods like Google dorks.

Their personal site is also linked in the video description https://www.benedelman.org/honey-detecting-testers/

https://www.kidswebservices.com/

Their 'smaller' market, SSDs - has an estimated 13% of global NAND revenue.

https://counterpointresearch.com/en/insights/global-dram-and... https://counterpointresearch.com/en/insights/global-nand-mem...

I don't know their breakdown for consumer vs enterprise, but the Crucial brand is consumer focussed. Obviously enterprise at this point is incredibly lucrative.

We're gonna need a bigger pin.

Note that GES works a bit different to traditional Cloudflare implementations, HTML requests are basically passed through to the WP Engine NGINX reverse proxy server that's in front of the WordPress site (as opposed to being heavily cached with Cloudflare). Static assets, like a PDF - would indeed be cached with GES.

The customer grants Cloudflare a TLS certificate for their site either by uploading a cert manually, or letting Cloudflare issue a cert via the ACME protocol. They use that to present the site to the world. Cloudflare connects back to the origin site, and the origin either uses HTTP (bad! but possible), HTTPS with a self signed cert, HTTPS with another publicly trusted cert, or a cert that Cloudflare issues with their own (not publicly trusted) CA called Origin CA.

As the visitor, you there's no big sign saying 'Cloudflare can read this content as well as the origin website'. They're trusted to not be malicious sure, but there's a massive risk with using any sort of service like this that you don't control.

One of those massive risks turned reality with Cloudbleed in 2016/2017: https://en.wikipedia.org/wiki/Cloudbleed

https://project-zero.issues.chromium.org/issues/42450151

https://blog.cloudflare.com/incident-report-on-memory-leak-c...

https://blog.cloudflare.com/quantifying-the-impact-of-cloudb...

https://developers.cloudflare.com/dns/zone-setups/partial-se...

Thankfully, in this case the issue at hand is entirely unrelated to TLS, rogue CAs etc. Or even DNS record manipulation (for now)...

Cloudflare put a 'You're blocked' page, on the web server that Cloudflare are already running for their customer. The customer being the website that Cloudflare is being ordered to block (for users in certain countries).