I'd consider another Keychron (my first mechanical since a couple of AT and PS/2 Model M and variant devices I had years and years ago) and I like some stuff about it and definitely like the price, but would look for a model with a few differences next time and probably skip Keychron if I couldn't get all of these fixed in one of their boards:
1 - Longer battery life (I have a bluetooth + plug-in model). The battery life is crazy-low, even when not in use and the lights are turned off. I keep it plugged in all the time, as a result. I don't really get why it can't last, idle, about as long as a game controller does (many weeks! And those don't have much space for batteries).
2 - No light pattern button. That thing exists only to accidentally hit and switch it away from "gently and evenly lit" which is one of the very-few non-insane patterns available. Brush it by accident, there goes a minute or so of your time getting it back to something that's not trying to look like a disco ball. And it's right on the corner, so you will hit it by accident when moving the keyboard around or reaching for something just past it. Easily my least-favorite thing about the board, despite how bad the next item is.
3 - Mine has a kind of tray-design around the edge, resulting in about a 1/8" lip, that looks very cheap to assemble (so that's nice, lower price) but means it collects EVERYTHING out of the air and is a pain in the ass to clean. It also makes it look kinda like someone's 3D printed hobby project. Like it's an ugly keyboard, both because of the design and because it's visibly collecting dust and hair just a few days after its last keys-removed full cleaning.
I disabled the lighting on my Keychron Q1 Max due to the battery drain. With it on (on the lowest glow possible), it would barely last a week. With it off? I go literal months without charging it back up, and it's used wirelessly 100% of the time, both via Bluetooth and 2.4 GHz.
Same on my K8. It’s holding down something and the light buttons.
It’s a godsend, all I want is dim-ish blue lights, but I’d keep coming back to it doing rainbow patterns and flashes that I’m sure some people love but I find really distracting.
I recently bought a Keychron, but I'm not wildly enthusiastic yet. It's very thick; much thicker than the 2002 Dell keyboard it's replacing. And the key press feels very spongy. I suspect I might prefer clacky keyboards after all.
Yeah I would certainly only recommend a hotswap model, even if someone isn't into keyswitches that much, they still probably have a preferred feel that they want to go for.
In reality most $Evilcorp have policies against AGPLv3, which is why projects can make moneh selling a less-restricted enterprise license for the same code.
I often hear this but I don’t really understand it. Not saying you need to explain it to me but what is the issue with AGPLv3 that turns those corporations away?
To my non-lawyer eyes it looks like MIT or Apache2 but modifications need to be made public as well.
If you don’t make any modifications then it should be fine?
Or do most $Evilcorp aim to make modifications?
Or is AGPLv3 something like garlic against vampires (doesn’t make sense but seems to work)?
AGPLv3 includes that “distribution” includes essentially communicating with the service over the network, as opposed to the GPL concept of like, sending a shrink wrapped binary that someone downloads and runs themselves.
So basically they are worried that they have no way of avoiding one or more of their tens of thousands of engineers “distributing” it to customers by including it in some sort of publicly accessible service.
AFAIK there’s no settled case regarding what level of network communication qualifies - like if I run a CRUD app on Postgres and Postgres was AGPL, am I distributing Postgres?
Now the second part is that you only have to give out your changes to the AGPL software to those that it was “distributed” to. Most people aren’t changing it! If anything they’re just running a control plane in front of it…
but it goes back to the corporate legal perspective of “better safe than sorry” - we can’t guarantee that one of our engineers, isn’t changing it in some way that would expose company internals, then triggering a condition where they have to distribute those private changes publicly.
As a general rule I install none of these web conferencing things on my machine. Either the browser version works fine, as Google Meet, Zoom, Teams and even WebEx all do, or this is not a meeting I need to be on.
Exactly the same. Moreover my main work machine, the one I call my "workstation", doesn't even have sound. No videos. No meetings from that one. And that's the machine to which the Yubikeys are hooked.
I've got plenty of machines, including that one shitty laptop I trust even less than the rest. Arguably the only way to operate securely is to consider that most devices in your house (and at work) are compromised and hostile, that most networks are trying to fuck you up (for example not HTTP at my home: simply none, it's not allowed) and that they're really out there to get you. And, yet, to have a setup that works.
Same things with my phones: I've got one real phone, with two apps I added to it. Country's mandatory EID app and brokerage's 2FA app. And that's it. Nothing else. Nada. Zilch. One phone, two apps. No email account. Nothing.
Then I've got another phone, with another subscription, where I've got Telegram, that app to see the targets at the shooting range (long distance shooting: there are webcams in front of targets so you can see where you hit), the home automation apps, etc. All those shitty phone apps developped by clueless devs: they go on that phone. The email? Some throwaway email account I don't care about. You can 0-day that phone: I wouldn't give a shit. And I tell people: "My name on Telegram ain't my real name" and they love it. Non-technical people: they begin to understand and they love it.
People are going to need to step up their security game big times now for I think we're in for quite a wild ride.
I know it's bad but I'm not going to say there's not some schadenfreude seeing what happens to those who were calling others "paranoid".
I mean: we're talking about people "quickly installing software (as admin/root)" on their main machine.
The road is going to be long for it's an entire shift of mindset that's now required.
Convenience vs security: you pick. Video call vs major project compromised: you pick.
The vindictive side of me hopes the cybersecurity "rug" is pulled out from underneath all these companies (new & old) who don't appreciate craftsmanship. I don't think we need regulations, but companies need to suffer when they drop the ball
Does not seem like they specified whether it was browser or desktop teams, but either way it asked him to install an actual system package which you should never do anyway.
The relevant part is:
* they scheduled a meeting with me to connect. the meeting was on ms teams. the meeting had what seemed to be a group of people that were involved.
* the meeting said something on my system was out of date. i installed the missing item as i presumed it was something to do with teams, and this was the RAT.
Twilio is the DataDog / Microsoft of telecom APIs. The only reason you buy them is because it's the biggest name, or you have already integrated them so deeply that you're unwilling to rip it out.
Their price structure also has a huge floor because they're not a carrier so they have to
buy everything from real carriers.
Telnyx is actually a registered carrier so other carriers are forced by law to peer with them at lower prices.
There are other low-cost SMS API providers but AFAIK none are actual carriers and they maintain the cost by only doing messaging and relying on enormous volume to make up for tiny margins - their profitability and therefore longevity are tenuous IMO.
> Telnyx is actually a registered carrier so other carriers are forced by law to peer with them at lower prices.
> There are other low-cost SMS API providers but AFAIK none are actual carriers and they maintain the cost by only doing messaging and relying on enormous volume to make up for tiny margins - their profitability and therefore longevity are tenuous IMO.
Depending on what you're doing, chances are you're better off ignoring everything an aggregator tells you. Measure delivery through actual user measures and cost keep active accounts with multiple providers and shift traffic where the cost/success is best for a given group of users (country/carrier/etc).
All the aggregators will tell you they have global coverage and that they use 100% direct routes, and they're all lieing.
While this is somewhat true, the point of being a registered carrier is that most countries regulate that registered carriers must peer with each other at much lower costs.
It is nearly-impossible to get "direct routes" everywhere, mostly because of the logistics of signing all those agreements.
But you will generally be much better off with an actual registered carrier because they have better access to direct agreements with regulated pricing.
Every major high-throughput database now runs as microservices, not sure why people still act like things just grind to a halt when the network is involved.
I really curious about what the world of archival formats is like - is there consensus? are the most-used formats actually any good and well-supported,and self documenting?
I have stuck with the System76 Launch keyboard but I basically always consider Keychron first when looking.
reply