Say I’m from country X and I make widgets for $10 each. The US decides to put a 25% tariff on goods from country X. That means that each time I want to sell a widget in the US, I need to pay 25% of its value as a tax. If I was only making a 25% profit on each widget, that means I’m now breaking even on each widget and not making any money. That won’t work for me, so I raise my widget prices to, say, $14. Now I have to pay 25% of that, or $3.50, as a tariff, which leaves me pocketing $10.50, which is about what I was making before. Widget manufacturers in the US don’t have to do that, so their prices stay much lower than mine, so presumably they get more sales and the US economy is strengthened.

The problem is, the US is not a manufacturing superpower anymore, and even for the things that are manufactured here, most of the raw materials come from overseas. So the only thing these tariffs are going to do is drive up the price of everything. And once those prices are up, they’re not going to come back down, even if the tariffs are removed; in my scenario above, it’s likely that when I raised my widget prices to $14, all the US widget manufacturers would just raise their prices to $13 and make a bunch of extra money.

Long story short: more money getting siphoned out of the pockets of the working class.

Refreshingly, that includes multinational firms: https://www.cnn.com/2024/02/04/asia/deepfake-cfo-scam-hong-kong-intl-hnk/index.html

Sorry, looks like maybe the link on the post is broken. It should be to https://www.hhs.gov/blog/2025/01/10/ensuring-nondiscrimination-use-ai-good-medicine.html

Link could be broken? https://www.hhs.gov/blog/2025/01/10/ensuring-nondiscrimination-use-ai-good-medicine.html

It seems to me that Syncthing is the exact right thing to use here; what is “overkill” about it that makes you think you should use something else?

Trying to make the time to review all this SOC 2 evidence for our annual audit, while also getting pinged for tons of other issues all the time.

I mean, I use Discord pretty much every day, and that’s what I assumed.

It would basically let you see all the hidden characters that indicate formatting, which made it possible to see why your text would suddenly display in a weird way.

With laying off 100 employees?

Hahaha:

if you continue to try { thisBullshit(); } you are going to catch (theseHands)

Definitely; OP’s linked article doesn’t have any quotes that refer to copyright, while this one of yours adds a lot of context that was otherwise missing. There’s a world of difference between allowing retention of IP addresses and creating a cleaning house for IPs suspected of distributing works.

I don’t see a good way to put it on a keychain; the only hole looks tiny, and right on an edge where it’s likely to snap after a year or so of wear.

Just picked this up based on the up votes here, and I’m already a fan. Seems like it does what you want and nothing else, which is perfect.

Is the market actually bad at the moment, though? We’ve been trying to fill one of the vacant positions on my team, and the offers we’ve extended have been declined for other options. That makes it seem to me like candidates have plenty of options at the moment.

I think I’m good as far as job security goes, so that’s a plus. I should ramp up the job hunt I suppose. Already trying to study for the CISSP after work though and I am a big fan of having down time to unwind.

Hey all! I’m trying to figure out where I go next in this career. I’m working at a mid sized company that is owned by a company that is owned by another company. Started out as a software dev about right years ago and spent a lot of time as a security champion; finally moved to the InfoSec team about two years ago. It’s a small InfoSec team: three people total. So I do a lot of stuff: contact reviews, vendor security assessments, firewall log monitoring, code reviews, run security trainings, coordinate external pen tests, gather SOC 2 evidence, incident response… Lots of stuff.

I like most of the work well enough (though the GRC stuff is not my favorite), but recently my boss and my teammate quit, so our team of three is down to me. There’s some support available from the security team of the parent organization, and a very competent contractor, but it’s largely just me.

What I’m wondering mostly is: if I go elsewhere, what kind of role am I looking for? I feel like this Jack-of-all-security-trades thing I’ve got going on can’t be super normal, can it? And also, is my current situation something I should embrace, and take the opportunity to run the InfoSec team? Having someone with two years of security experience at the wheel seems suboptimal to me, but maybe it’s worth doing for the experience?

My ideal would be working with a team of five or six, with people I can learn a lot from; my concern is that right now, most of the learning I can do is from my own mistakes.

You can have non-markdown files in your vault, but I’m not sure how readily you can search them by default; there may be plugins that support that use case though.

I prefer ZZ if I want to quit and save

CherryTree is way clunkier, IMO, and has too many irrelevant options that get in the way, particularly around formatting. Obsidian is just markdown, so you don’t have the option of spending 15 minutes trying to figure out why code blocks are showing up as dark text on light background even though you’re in dark mode, which was my last experience in CherryTree. Looking and cross referencing documents is also super easy; I’m not sure if CherryTree even does that.

SyncThing is fantastic; I use it for Obsidian files and also for password manager databases.