<rss version="2.0" xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:atom="http://www.w3.org/2005/Atom"><channel><title>Hacker News: tombrossman</title><link>https://news.ycombinator.com/user?id=tombrossman</link><description>Hacker News RSS</description><docs>https://hnrss.org/</docs><generator>hnrss v2.1.1</generator><lastBuildDate>Sun, 12 Jul 2026 04:46:57 +0000</lastBuildDate><atom:link href="https://hnrss.org/user?id=tombrossman" rel="self" type="application/rss+xml"></atom:link><item><title><![CDATA[New comment by tombrossman in "A case study in PDF forensics: The Epstein PDFs"]]></title><description><![CDATA[
<p>You know, now that you point it out that seems obvious. I think maybe I was experimenting with rotation and left that in, unused. I did this years ago. The loop works OK though. Thanks for the feedback (and now I have to finish editing that script ...)</p>
]]></description><pubDate>Wed, 04 Feb 2026 20:58:20 +0000</pubDate><link>https://news.ycombinator.com/item?id=46891672</link><dc:creator>tombrossman</dc:creator><comments>https://news.ycombinator.com/item?id=46891672</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=46891672</guid></item><item><title><![CDATA[New comment by tombrossman in "A case study in PDF forensics: The Epstein PDFs"]]></title><description><![CDATA[
<p>GNOME Desktop users can put this in a Bash script in ~/.local/share/nautilus/ for more convincing looking fake PDF scans, accessible from your right-click menu. I do not recall where I copied it from originally to give credit so thanks, random internet person (probably on Stack Exchange). It works perfectly.<p><pre><code>  ROTATION=$(shuf -n 1 -e '-' '')$(shuf -n 1 -e $(seq 0.05 .5))

  for pdf in "$@";
    do magick  -density 150 $pdf \
              -linear-stretch '1.5%x2%' \
              -rotate 0.4 \
              -attenuate '0.01' \
              +noise  Multiplicative \
              -colorspace 'gray' \
              "${pdf%.*}-fakescan.${pdf##*.}"
  done</code></pre></p>
]]></description><pubDate>Wed, 04 Feb 2026 19:32:03 +0000</pubDate><link>https://news.ycombinator.com/item?id=46890493</link><dc:creator>tombrossman</dc:creator><comments>https://news.ycombinator.com/item?id=46890493</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=46890493</guid></item><item><title><![CDATA[New comment by tombrossman in "It’s not mold, it’s calcium lactate (2018)"]]></title><description><![CDATA[
<p>I was taught to use a little cornstarch sprinkled over freshly grated cheese, and to me it is undetectable (served hot or cold) and works amazingly well. The shreds never clump together and are easy to scatter evenly.</p>
]]></description><pubDate>Mon, 31 Mar 2025 18:34:08 +0000</pubDate><link>https://news.ycombinator.com/item?id=43538176</link><dc:creator>tombrossman</dc:creator><comments>https://news.ycombinator.com/item?id=43538176</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=43538176</guid></item><item><title><![CDATA[New comment by tombrossman in "FTC: Vast Surveillance of Users by Social Media and Video Streaming Companies"]]></title><description><![CDATA[
<p>Strange that someone down-voted you, as this is a fair question.<p>> Curious how you found this number, have a source?<p>I don't have the source handy but have seen the estimated 10 million figure cited repeatedly. But maybe it is about a million too high, as the US Department of State estimates nine million in this 2020 publication: <a href="https://travel.state.gov/content/dam/travel/CA-By-the-Number-2020.pdf" rel="nofollow">https://travel.state.gov/content/dam/travel/CA-By-the-Number...</a><p>This Wikipedia page has a lot more info for those interested: <a href="https://en.wikipedia.org/wiki/Emigration_from_the_United_States" rel="nofollow">https://en.wikipedia.org/wiki/Emigration_from_the_United_Sta...</a><p>Using FVAP stats to me seems problematic, because just like the general population, many US citizens do not bother registering to vote (though they do acknowledge this on the page you linked to and try to control for it).<p>State likely have a more accurate estimate from knowing how many passport renewals originate from overseas addresses. I am sure some Americans renew or replace their passports while merely travelling overseas, but I cannot imagine this is a routine practice.</p>
]]></description><pubDate>Sat, 21 Sep 2024 13:39:21 +0000</pubDate><link>https://news.ycombinator.com/item?id=41609891</link><dc:creator>tombrossman</dc:creator><comments>https://news.ycombinator.com/item?id=41609891</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=41609891</guid></item><item><title><![CDATA[New comment by tombrossman in "FTC: Vast Surveillance of Users by Social Media and Video Streaming Companies"]]></title><description><![CDATA[
<p>YMMV indeed.<p>Since moving overseas 15 years ago, I tried numerous times and it simply is not possible. All the forms require a U.S. mailing address to register. Same for online access to your Social Security account.<p>There are an estimated 10 million Americans living overseas. Taken together, we are the equivalent of the 11th largest state. All of us completely blind to what is happening with our credit record and Social Security account.<p>At this point I think the only way this gets fixed is massive fraud/exploitation by organized crime, so these organizations finally address the problem.</p>
]]></description><pubDate>Fri, 20 Sep 2024 15:49:36 +0000</pubDate><link>https://news.ycombinator.com/item?id=41603152</link><dc:creator>tombrossman</dc:creator><comments>https://news.ycombinator.com/item?id=41603152</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=41603152</guid></item><item><title><![CDATA[New comment by tombrossman in "Pediatricians Created the Peanut Allergy Epidemic"]]></title><description><![CDATA[
<p>Searching article titles will often reveal the same content on aggregator websites. Here's this one on MSN: <a href="https://www.msn.com/en-us/health/medical/how-pediatricians-created-the-peanut-allergy-epidemic/ar-AA1qQt6m" rel="nofollow">https://www.msn.com/en-us/health/medical/how-pediatricians-c...</a></p>
]]></description><pubDate>Thu, 19 Sep 2024 16:33:46 +0000</pubDate><link>https://news.ycombinator.com/item?id=41593634</link><dc:creator>tombrossman</dc:creator><comments>https://news.ycombinator.com/item?id=41593634</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=41593634</guid></item><item><title><![CDATA[New comment by tombrossman in "What You Get After Running an SSH Honeypot for 30 Days"]]></title><description><![CDATA[
<p>Matomo (self-hosted analytics, used to be called Piwik) maintain a list of referrer spam domains. I use it as a filter list with GoAccess and haven't seen referrer spam for a long time. Worth a look. <a href="https://github.com/matomo-org/referrer-spam-list">https://github.com/matomo-org/referrer-spam-list</a></p>
]]></description><pubDate>Sun, 16 Jun 2024 17:16:50 +0000</pubDate><link>https://news.ycombinator.com/item?id=40698597</link><dc:creator>tombrossman</dc:creator><comments>https://news.ycombinator.com/item?id=40698597</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=40698597</guid></item><item><title><![CDATA[New comment by tombrossman in "Tell HN: Twitter Domain Redirecting to X"]]></title><description><![CDATA[
<p>You don't have to turn tracking protection off globally. You can leave it enabled in "strict" mode, and add the x.com domain as an exception (click the Manage Exceptions... button above the mode selection).<p>If you also use Privacy Badger, you'll have to center the slider for twitter.com when on the x.com login page.<p>You may not be happy with these compromises, but the above steps are tested and working for me. I have my primary Firefox profile set to delete all cookies on close but I do not log in to Twitter using that profile. I use Twitter in a second Firefox profile which keeps twitter.com/x.com cookies on close. If I want to open a third-party link someone tweeted, I just click and drag it from the Twitter profile window to my primary Firefox instance window. This is good enough privacy for me.<p>To make using multiple profiles at the same time easier, create custom desktop launchers for secondary profiles and give them a different theme. This is simple on GNOME and most likely possible on other desktop environments and OSs as well.</p>
]]></description><pubDate>Fri, 17 May 2024 07:08:57 +0000</pubDate><link>https://news.ycombinator.com/item?id=40387245</link><dc:creator>tombrossman</dc:creator><comments>https://news.ycombinator.com/item?id=40387245</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=40387245</guid></item><item><title><![CDATA[New comment by tombrossman in "The FBI now recommends using an ad blocker when searching the web"]]></title><description><![CDATA[
<p>In Firefox you can change the "network.IDN_show_punycode" value to true, and you will no longer see lookalike UDN domains. It's a good point about using a browser password manager though, since they won't function on a lookalike domain and that should force you to stop and reassess, at which time you (hopefully) notice the scam.</p>
]]></description><pubDate>Fri, 24 Feb 2023 06:02:25 +0000</pubDate><link>https://news.ycombinator.com/item?id=34921390</link><dc:creator>tombrossman</dc:creator><comments>https://news.ycombinator.com/item?id=34921390</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=34921390</guid></item><item><title><![CDATA[New comment by tombrossman in "Pdfgrep – a commandline utility to search text in PDF files"]]></title><description><![CDATA[
<p>Yes, +1 for Recoll. It can also OCR those PDFs that are just an image of a page of text, and not 'live' text. Read the install notes and install the helper applications.<p>When searching I'll first try the application or system's native search utility, but most of the time I end up opening Recoll to actually find the thing or snippet of text I want, and it has never failed me.<p><a href="https://www.lesbonscomptes.com/recoll/pages/features.html#doctypes" rel="nofollow">https://www.lesbonscomptes.com/recoll/pages/features.html#do...</a></p>
]]></description><pubDate>Sun, 25 Sep 2022 19:22:25 +0000</pubDate><link>https://news.ycombinator.com/item?id=32974995</link><dc:creator>tombrossman</dc:creator><comments>https://news.ycombinator.com/item?id=32974995</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=32974995</guid></item><item><title><![CDATA[New comment by tombrossman in "Help me identify possible tracking device found in my car"]]></title><description><![CDATA[
<p>Thanks and good point.</p>
]]></description><pubDate>Sun, 10 Jul 2022 17:33:01 +0000</pubDate><link>https://news.ycombinator.com/item?id=32046813</link><dc:creator>tombrossman</dc:creator><comments>https://news.ycombinator.com/item?id=32046813</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=32046813</guid></item><item><title><![CDATA[New comment by tombrossman in "Help me identify possible tracking device found in my car"]]></title><description><![CDATA[
<p>OP, check your camera settings and maybe replace the images with ones containing less metadata. No contact info in your bio or I would have privately notified you. Privacy is difficult, so good luck to you. (edited to make comment less specific)</p>
]]></description><pubDate>Sun, 10 Jul 2022 17:23:04 +0000</pubDate><link>https://news.ycombinator.com/item?id=32046689</link><dc:creator>tombrossman</dc:creator><comments>https://news.ycombinator.com/item?id=32046689</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=32046689</guid></item><item><title><![CDATA[New comment by tombrossman in "Senators Urge FTC to Probe ID.me over Selfie Data"]]></title><description><![CDATA[
<p>I believe this was called "FindFace" it became a mobile app and I remember reading this article about it at the time: <a href="https://www.theguardian.com/world/2016/apr/14/russian-photographer-yegor-tsvetkov-identifies-strangers-facial-recognition-app" rel="nofollow">https://www.theguardian.com/world/2016/apr/14/russian-photog...</a></p>
]]></description><pubDate>Wed, 18 May 2022 18:31:54 +0000</pubDate><link>https://news.ycombinator.com/item?id=31426093</link><dc:creator>tombrossman</dc:creator><comments>https://news.ycombinator.com/item?id=31426093</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=31426093</guid></item><item><title><![CDATA[New comment by tombrossman in "An almost perfect rsync over SSH backup script"]]></title><description><![CDATA[
<p>For years I had a custom script sync my ~/.ssh directory on my primary workstation to my laptop, to pick up new keys and config changes. It failed after I switched from Ubuntu to Fedora, and I was surprised to discover --xattrs fixed it.<p>tl;dr try this if rsync fails in unexpected ways:<p><pre><code>  echo "Syncing ~/.ssh directory"
  rsync --archive --delete --xattrs ~/.ssh/ laptop:.ssh/</code></pre></p>
]]></description><pubDate>Fri, 25 Feb 2022 21:06:34 +0000</pubDate><link>https://news.ycombinator.com/item?id=30472384</link><dc:creator>tombrossman</dc:creator><comments>https://news.ycombinator.com/item?id=30472384</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=30472384</guid></item><item><title><![CDATA[New comment by tombrossman in "Stupid Patterns"]]></title><description><![CDATA[
<p>Try switching to an email service that supports custom Sieve scripts, which you can use to permanently reject messages based on variables you configure.<p>These are handled differently than message user agent filtering. Incoming messages are immediately rejected and the sending server is notified.<p>It's much easier than trying to contact some company that doesn't bother validating email addresses. You already know they are technically deficient so just bounce everything. Problem's at their end, let them work it out.<p>Fastmail do this, as do a few other hosted email providers. Highly recommended. I also use Sieve filters to reject attachment types beyond the default set, such as Microsoft Office files (.docx, .doc, etc.).<p>Here's some documentation to get started. No affiliation, just a happy customer. <a href="https://www.fastmail.help/hc/en-us/articles/1500000280481-Sieve-scripts" rel="nofollow">https://www.fastmail.help/hc/en-us/articles/1500000280481-Si...</a></p>
]]></description><pubDate>Sat, 01 Jan 2022 17:12:55 +0000</pubDate><link>https://news.ycombinator.com/item?id=29760383</link><dc:creator>tombrossman</dc:creator><comments>https://news.ycombinator.com/item?id=29760383</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=29760383</guid></item><item><title><![CDATA[New comment by tombrossman in "There may be a steep privacy cost if you park here"]]></title><description><![CDATA[
<p>I don't know if this is still the case, but in California the DMV form has a box asking for "Apartment or box number". I had a PMB (private mail box, like a PO Box but at a third-party business) so used my PMB number & street address.<p>DMV mailed me a licence with street name and "Apartment <my-PMB-number>" even though it wasn't an apartment and I lived elsewhere. That address worked perfectly for years - banks, passport application, etc, everyone accepted it. Online ordering from sites that specifically said "we don't ship to PO Boxes" also worked no problem.<p>If I ever move back to California I'll definitely do that again. I was 100% truthful on the DMV license application, it's just that they chose to interpret my mailing address as a residential apartment.</p>
]]></description><pubDate>Mon, 15 Nov 2021 08:08:42 +0000</pubDate><link>https://news.ycombinator.com/item?id=29224965</link><dc:creator>tombrossman</dc:creator><comments>https://news.ycombinator.com/item?id=29224965</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=29224965</guid></item><item><title><![CDATA[New comment by tombrossman in "Browser Fingerprinting Without JavaScript"]]></title><description><![CDATA[
<p>Here's a link to a more complete explanation from the primary developer of GrapheneOS: <a href="https://teddit.net/r/GrapheneOS/comments/du23la/rooted_or_root/f7169bi#c" rel="nofollow">https://teddit.net/r/GrapheneOS/comments/du23la/rooted_or_ro...</a><p>Basically, you don't log in to your Linux box (or Windows, Mac, etc) as root for day to day use and same thing goes for your phone.</p>
]]></description><pubDate>Sat, 30 Oct 2021 05:24:50 +0000</pubDate><link>https://news.ycombinator.com/item?id=29046201</link><dc:creator>tombrossman</dc:creator><comments>https://news.ycombinator.com/item?id=29046201</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=29046201</guid></item><item><title><![CDATA[New comment by tombrossman in "Linux on the Desktop: Part Two"]]></title><description><![CDATA[
<p>Firefox users can set "network.IDN_show_punycode" to "true" in about:config (or your user.js preferences), which will help you identify phishing attacks using lookalike domain names.<p>I believe Chrome users can do this as well, however it requires an extension.</p>
]]></description><pubDate>Wed, 22 Sep 2021 08:10:34 +0000</pubDate><link>https://news.ycombinator.com/item?id=28614090</link><dc:creator>tombrossman</dc:creator><comments>https://news.ycombinator.com/item?id=28614090</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=28614090</guid></item><item><title><![CDATA[New comment by tombrossman in "Google Chrome to remove detailed cookie and site data controls"]]></title><description><![CDATA[
<p>You can bookmark about:profiles and click "Launch profile in new browser" under each profile to open it in a new Firefox window.<p>If you are using GNOME desktop you can also try this to integrate the profiles into the launcher. I wrote it when still using Ubuntu but I'm on Fedora now and it's the exact same steps: <a href="https://www.tombrossman.com/blog/2020/launch-firefox-profiles-directly-from-the-ubuntu-dash/" rel="nofollow">https://www.tombrossman.com/blog/2020/launch-firefox-profile...</a></p>
]]></description><pubDate>Sat, 04 Sep 2021 12:32:51 +0000</pubDate><link>https://news.ycombinator.com/item?id=28414493</link><dc:creator>tombrossman</dc:creator><comments>https://news.ycombinator.com/item?id=28414493</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=28414493</guid></item><item><title><![CDATA[New comment by tombrossman in "GoAccess – Visual Web Log Analyzer"]]></title><description><![CDATA[
<p>The HTML reports are my preferred way of looking at stats, but to make them more useful it's worth taking some additional steps to filter all the garbage traffic.<p>What works for me is:<p>- Use ipset to drop all traffic from certain countries (you pick which works best for you)<p>- Configure fail2ban to 'automagically' drop all IPs requesting .php and wp-admin URLs for a few days<p>- Integrate Piwik/Matomo's 'referrer spam' blocklist into your list of ignored referrers.<p>- Use per-site logging and only log .html hits with a static site to see page views.<p>This approach won't work for everyone and it takes extra sysadmin & Bash scripting skills to achieve, but it works really well with my Jekyll site.<p>I don't receive much traffic on my personal website but my stats page is public and updates hourly with a cronjob. <a href="https://www.tombrossman.com/stats/" rel="nofollow">https://www.tombrossman.com/stats/</a></p>
]]></description><pubDate>Sun, 01 Aug 2021 15:19:36 +0000</pubDate><link>https://news.ycombinator.com/item?id=28026888</link><dc:creator>tombrossman</dc:creator><comments>https://news.ycombinator.com/item?id=28026888</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=28026888</guid></item></channel></rss>