Posts by Donn Bly

Facilitating Access to NCII and CSAM

I don't use Grok or any of the other major AI platforms, but of all of the reasons to ban an app from the App Stores these are some of the weakest claims. If we start banning things because they "can" do something, we will end up banning web browsers (they are just as capable of being used to do the same thing) or even any computer that can access the Internet.

Grok can't do anything that a skilled artist can't already do in photoshop, it just makes it easier for people to do. Should we ban Photoshop as well?

Developers can put in guard rails, and the people actually doing the image creation need to be held accountable for their actions.

I'm waiting...

I'm waiting for the eventual press release that says "The third-party vendor we used for age verification was compromised. No account names or passwords were exposed, just front and back images of the visitor's driver's license and the IP address used to submit the state-required verification."

more VCF cores being put to work?

Let me fix that for you: "its well-worn strategy of catering strangling to its largest customers should result in those customers moving more less of their work into VMware’s remaining products, meaning more VCF cores being put to work out to pasture."

At this point in time, I cannot see any organization with any foresight putting MORE work into VMware infrastructure. Anybody with a brain who has not moved off of VMware has to be actively working on an exit plan. I was lucky to secure a 3 year support contract with perpetual licenses, right before Broadcom bought them out, but you can bet I'm working on migrating all loads off of VMware. There will NOT be a renewal.

Standard WiFi operates at 2.4 GHz, which is the harmonic of water. A leaf that has a high moisture content acts like a mirror at that frequency, reflecting the signal, and a leafy houseplant can cause significantly ***MORE*** attenuation than a plaster wall. I used to install a lot of outdoor point-to-point and point-to-multipoint bridges back when I operated an ISP, and we knew that tree leaves were seasonal chaff clouds that attenuated and dispersed any WiFi signal that you might try to shoot through them.

Removing BypassNRO is shortsighted

I support small businesses that are large enough or have software requirements that result in them having an on-premise file server, but for various reasons do NOT use Microsoft 365 or Entra.

Our process for these businesses is to take any hardware purchased or turned in during turnover and start with a fresh repartitioning, format, and operating system load of Win 11 Pro. These steps all take place offline. Then we disable automatic updates and put this known-clean system on a designated VLAN, load OEM drivers, an initial set of pre-downloaded Microsoft updates, and install our RMM application. Then we use the RMM to finish the updates, log system inventory, etc.

It then goes back on the shelf until needed, at which time I join it to the domain. All of the preceding steps take place at a location that is inaccessible to the domain controller, in fact, we often don't even know to which site or domain the machine will eventually be deployed. Of the machines that we DO know, we usually have no idea who the end user will be. It may be a new hire or be used to exchange existing equipment.

At no time during this process is a Microsoft account wanted or needed. If a user is using Microsoft 365, THEN a Microsoft account can be added.

Given these changes, what will be the "Microsoft recommended and supported" method of preparing these machines?

Prior Use?

As someone who writes WordPress plugins, hosts websites (including some developed in WordPress), and manages WordPress sites hosted elsewhere, I have used the phrases "managed WordPress", "hosted WordPress", and "self-hosted WordPress" many times over the last 10+ years in bother verbal and written communications with my clients when referring to some of the work that I do. I don't claim to be original with them, but just giving examples of how others used the phrases in commerce long before the WordPress Foundation (which neither manages nor hosts websites for others) have been used in commerce.

If Mullenweg was successful in obtaining these trademarks, can you imagine how this would affect the rest of the industry in terms of other products if companies could start just sticking "managed" or "hosting" in front of their product and exclude all others from using the terms?

"WP Engine can and always has been able to access the WordPress software and plugins available on WordPress.org, as can anyone."

That is a very interesting claim, considering that this started with Automattic BLOCKING access. Everyone who has been following this fiasco knows that they are lying through their teeth. Not that they had a lot of credibility left, but they certainly lowered it even more.

Forked?

When it comes to the ACF plugin, I don't think that "forked" is the right word to describe what they are doing. They made a copy, renamed it, and are apparently pushing the renamed version out to existing websites without the website owner's explicit consent under the guise of a "security fix" on an issue that has already been patched. To me it looks more like a Hijacking.

"The software should be freely available to anyone to use for any purpose, and without permission."

Those aren't my words, those are the words of the WordPress Foundation, one of their stated goals when Matt Mullenweg helped create it in 2009. The idea behind the foundation was that no one person or company should be able to control the direction or future of WordPress or any other project supported by the foundation. A year later he transferred the WordPress trademarks to the foundation. Now over a decade later and after receiving hundreds of thousands of hours of donated labor from community members that were integral to making the project a success, he apparently wants to walk that back.

There are a LOT of companies that have based their business model on producing products and services that run on top, under, or alongside WordPress. Good or bad, it is the most popular website framework with more than 40% of all websites on the Internet using it. Quite a few of those companies have "WP" in their company or product names, as it is not a trademarked term.

I'm wondering if "WP Beginner" is going to be the next company in Automattic's crosshairs -- or is he only going to go after the companies that compete with his hosting company?

It seems that Automattic is now offering WP Engine customers free migration services to migrate their websites to Mullenweg's hosting company. This entire dispute couldn't be about Automattic just trying to increase market share, could it? Sure is looking that way.

Full disclosure - I am a developer who has developed WordPress plugins and themes for my clients to extend functionality to their unique needs. I don't use WP Engine (or Wordpress.com) for hosting.

This isn't about WP Engine being a leach, this is about WP Engine being competition for Automatic's Wordpress.com hosting

WP Engine doesn't really make money directly from WordPress per se - they make their money from people who use WordPress and pay WP Engine to host and help them with their WordPress sites. They are a great ambassador for WordPress, and contribute to WordPress by driving customers to WordPress and theme and plugin developers who have built businesses around WordPress, but Matt Mullenweg doesn't see it that way and in his short-sightedness he is trying to weaponize the open source to which thousands of others have contributed.

What this really means is that every plugin developer will need to set up mirrors and create alternate means for distribution, because we can no longer trust WordPress to have the best interests of the community. It isn't a big deal for me since I already have that infrastructure in place for updates to the plugins that I developed, but it will be for others.

But it also creates a business opportunity from anybody who wants to write a plugin to independently monitor the versions of other plugins and then proxy the updates. If I wasn't already over-committed on other projects, I might do that myself.

Their statement that sales of the bundles have exceeded expectations can be seen as an admission that they didn't expect to actually sell any

Charging £450K for investigation

I get why they expelled him. Private organizations can expel members who they feel violate their codes of conduct. But to bill Hussain £450K for an investigation that he did not likely request smacks of the type of fraud (inflated numbers) of which he was accused and convicted. If anything, it makes me wonder if Hussain's actions were more of the norm than the exception, and his only crime in their eyes was being caught.

Loophole?

It looks like the data brokers are trying to establish a loophole, all they have to do is make sure that some of the information is inaccurate and they can't be held accountable. Being able to identify data as belonging to a single user, and being able to prove that you are that single user, are two different things. If the user is unemployed, and the uuid that they are requesting to have removed is marked as a student or being employed, then the mismatch would "prove" that they AREN'T that particular user and thus wouldn't have the right to have that data removed - even if everything else matched.

I really do miss the days of untargeted advertising. When a web ad was a just digital billboard and it didn't matter which eyeballs saw it, and no data was collected other than the number of impressions on the page.

But I do have to shake my head, because we have one side of governments that want to eliminate anonymity and track every action on the web back to a specific user (for the children, for course), while the other side of the same governments simultaneously want all traffic to be anonymous. Of course, these are the same government that want "secure" encryption with a back door. In the mean time, I will just do my part to continue to feed bogus information to the algorithms so that the data brokers really DON'T know who I am.