Yeah, so it's just business as usual: If you have ungodly amounts of money, you can essentially do anything, and if you don't, you can't. It's always been this way, and it'll always be this way. I don't see this as a world-ending issue.

I don’t think anyone is using Windows for privacy, so I’d say nobody will care.

It's used at every bank, every government institution, even carriers and nuclear submarines.

But almost every business is using Windows and depending on its security.

Business side is different. I have a company provided Windows laptop and I could not care less about it's privacy or security - it's my employer problem, or at most my employer's IT/secops department.

But Windows for personal private use? No.

They just want everyone coming from archive.org to feel right at home

What if the root (.) certificate breaks?

Resolvers are free to cache each TLD's keys. There's a finite, well-known list of TLDs and their keys - you can download all the root zone data from IANA: https://www.iana.org/domains/root/files (it's a few megabytes in uncompressed text form)

The world might be a little bit better with more decentralization of the root zone.

DENIC apparently resolved all .de domains to NXDOMAIN in 2010: https://www.theregister.com/2010/05/12/germany_top_level_dom...

I'm blaming chromehearts anyways

I can live with that

maybe your upstream doesn't validate DNSSEC?

maybe? I'm using PiHole and 8.8.8.8/1.1.1.1 as upstream, and both options show "DNSSEC" next to their options in settings, so I assumed DNSSEC was enabled (unless I have to enable this somewhere else as well?)

That's weird cause 8.8.8.8/1.1.1.1 will already answer with SERVFAIL right now, unless the domain is still in the cache.

Everyone knows you have to flip the USB cable twice before it’s no longer upside down.

usb superposition. my favorite of the classic phenomena

Brave explicitly blocks this

Last time this was discussed the consensus was Brave does not block it. Brave's fingerprinting protection does not include extensions.

https://news.ycombinator.com/item?id=46904361

Well, just because LinkedIn still tries to send the requests on Brave doesn't mean the blocking doesn't work. The question is whether any request will give a valid response.

That said, I can't find conclusive info on whether this is blocked exactly. Brave does block "plugins" (which is why I assumed this includes this specific kind of fingerprinting), and the getExtension() call (which is probably unrelated), according to this page: https://brave.com/privacy-updates/4-fingerprinting-defenses-...

But since they don't explicitly mention the chrome-extension URL, you might be right.

Yes, that's what they're saying. LIDL doesn't have a cloud. The Schwarz Group does.

Too bad, a LIDL branded cloud would be something really well marketable. Cloudside services (a'la Parkside)... or something along these lines.

Imagine spinning up a Silvercrest instance for a database. Using W5 to distribute messages across the cloud. Using Parkside for object storage.