#tlds
Explore tagged Tumblr posts
Photo
In which year did each country register for its top level domain (.us, .uk, .jp etc). Source: Wikipedia | Country code top-level domain
63 notes
·
View notes
Text
A link-clump demands a linkdump
Cometh the weekend, cometh the linkdump. My daily-ish newsletter includes a section called "Hey look at this," with three short links per day, but sometimes those links get backed up and I need to clean house. Here's the eight previous installments:
https://pluralistic.net/tag/linkdump/
The country code top level domain (ccTLD) for the Caribbean island nation of Anguilla is .ai, and that's turned into millions of dollars worth of royalties as "entrepreneurs" scramble to sprinkle some buzzword-compliant AI stuff on their businesses in the most superficial way possible:
https://arstechnica.com/information-technology/2023/08/ai-fever-turns-anguillas-ai-domain-into-a-digital-gold-mine/
All told, .ai domain royalties will account for about ten percent of the country's GDP.
It's actually kind of nice to see Anguilla finding some internet money at long last. Back in the 1990s, when I was a freelance web developer, I got hired to work on the investor website for a publicly traded internet casino based in Anguilla that was a scammy disaster in every conceivable way. The company had been conceived of by people who inherited a modestly successful chain of print-shops and decided to diversify by buying a dormant penny mining stock and relaunching it as an online casino.
But of course, online casinos were illegal nearly everywhere. Not in Anguilla – or at least, that's what the founders told us – which is why they located their servers there, despite the lack of broadband or, indeed, reliable electricity at their data-center. At a certain point, the whole thing started to whiff of a stock swindle, a pump-and-dump where they'd sell off shares in that ex-mining stock to people who knew even less about the internet than they did and skedaddle. I got out, and lost track of them, and a search for their names and business today turns up nothing so I assume that it flamed out before it could ruin any retail investors' lives.
Anguilla is a British Overseas Territory, one of those former British colonies that was drained and then given "independence" by paternalistic imperial administrators half a world away. The country's main industries are tourism and "finance" – which is to say, it's a pearl in the globe-spanning necklace of tax- and corporate-crime-havens the UK established around the world so its most vicious criminals – the hereditary aristocracy – can continue to use Britain's roads and exploit its educated workforce without paying any taxes.
This is the "finance curse," and there are tiny, struggling nations all around the world that live under it. Nick Shaxson dubbed them "Treasure Islands" in his outstanding book of the same name:
https://us.macmillan.com/books/9780230341722/treasureislands
I can't imagine that the AI bubble will last forever – anything that can't go on forever eventually stops – and when it does, those .ai domain royalties will dry up. But until then, I salute Anguilla, which has at last found the internet riches that I played a small part in bringing to it in the previous century.
The AI bubble is indeed overdue for a popping, but while the market remains gripped by irrational exuberance, there's lots of weird stuff happening around the edges. Take Inject My PDF, which embeds repeating blocks of invisible text into your resume:
https://kai-greshake.de/posts/inject-my-pdf/
The text is tuned to make resume-sorting Large Language Models identify you as the ideal candidate for the job. It'll even trick the summarizer function into spitting out text that does not appear in any human-readable form on your CV.
Embedding weird stuff into resumes is a hacker tradition. I first encountered it at the Chaos Communications Congress in 2012, when Ang Cui used it as an example in his stellar "Print Me If You Dare" talk:
https://www.youtube.com/watch?v=njVv7J2azY8
Cui figured out that one way to update the software of a printer was to embed an invisible Postscript instruction in a document that basically said, "everything after this is a firmware update." Then he came up with 100 lines of perl that he hid in documents with names like cv.pdf that would flash the printer when they ran, causing it to probe your LAN for vulnerable PCs and take them over, opening a reverse-shell to his command-and-control server in the cloud. Compromised printers would then refuse to apply future updates from their owners, but would pretend to install them and even update their version numbers to give verisimilitude to the ruse. The only way to exorcise these haunted printers was to send 'em to the landfill. Good times!
Printers are still a dumpster fire, and it's not solely about the intrinsic difficulty of computer security. After all, printer manufacturers have devoted enormous resources to hardening their products against their owners, making it progressively harder to use third-party ink. They're super perverse about it, too – they send "security updates" to your printer that update the printer's security against you – run these updates and your printer downgrades itself by refusing to use the ink you chose for it:
https://www.eff.org/deeplinks/2020/11/ink-stained-wretches-battle-soul-digital-freedom-taking-place-inside-your-printer
It's a reminder that what a monopolist thinks of as "security" isn't what you think of as security. Oftentimes, their security is antithetical to your security. That was the case with Web Environment Integrity, a plan by Google to make your phone rat you out to advertisers' servers, revealing any adblocking modifications you might have installed so that ad-serving companies could refuse to talk to you:
https://pluralistic.net/2023/08/02/self-incrimination/#wei-bai-bai
WEI is now dead, thanks to a lot of hueing and crying by people like us:
https://www.theregister.com/2023/11/02/google_abandons_web_environment_integrity/
But the dream of securing Google against its own users lives on. Youtube has embarked on an aggressive campaign of refusing to show videos to people running ad-blockers, triggering an arms-race of ad-blocker-blockers and ad-blocker-blocker-blockers:
https://www.scientificamerican.com/article/where-will-the-ad-versus-ad-blocker-arms-race-end/
The folks behind Ublock Origin are racing to keep up with Google's engineers' countermeasures, and there's a single-serving website called "Is uBlock Origin updated to the last Anti-Adblocker YouTube script?" that will give you a realtime, one-word status update:
https://drhyperion451.github.io/does-uBO-bypass-yt/
One in four web users has an ad-blocker, a stat that Doc Searls pithily summarizes as "the biggest boycott in world history":
https://doc.searls.com/2015/09/28/beyond-ad-blocking-the-biggest-boycott-in-human-history/
Zero app users have ad-blockers. That's not because ad-blocking an app is harder than ad-blocking the web – it's because reverse-engineering an app triggers liability under IP laws like Section 1201 of the Digital Millenium Copyright Act, which can put you away for 5 years for a first offense. That's what I mean when I say that "IP is anything that lets a company control its customers, critics or competitors:
https://locusmag.com/2020/09/cory-doctorow-ip/
I predicted that apps would open up all kinds of opportunities for abusive, monopolistic conduct back in 2010, and I'm experiencing a mix of sadness and smugness (I assume there's a German word for this emotion) at being so thoroughly vindicated by history:
https://memex.craphound.com/2010/04/01/why-i-wont-buy-an-ipad-and-think-you-shouldnt-either/
The more control a company can exert over its customers, the worse it will be tempted to treat them. These systems of control shift the balance of power within companies, making it harder for internal factions that defend product quality and customer interests to win against the enshittifiers:
https://pluralistic.net/2023/07/28/microincentives-and-enshittification/
The result has been a Great Enshittening, with platforms of all description shifting value from their customers and users to their shareholders, making everything palpably worse. The only bright side is that this has created the political will to do something about it, sparking a wave of bold, muscular antitrust action all over the world.
The Google antitrust case is certainly the most important corporate lawsuit of the century (so far), but Judge Amit Mehta's deference to Google's demands for secrecy has kept the case out of the headlines. I mean, Sam Bankman-Fried is a psychopathic thief, but even so, his trial does not deserve its vastly greater prominence, though, if you haven't heard yet, he's been convicted and will face decades in prison after he exhausts his appeals:
https://newsletter.mollywhite.net/p/sam-bankman-fried-guilty-on-all-charges
The secrecy around Google's trial has relaxed somewhat, and the trickle of revelations emerging from the cracks in the courthouse are fascinating. For the first time, we're able to get a concrete sense of which queries are the most lucrative for Google:
https://www.theverge.com/2023/11/1/23941766/google-antitrust-trial-search-queries-ad-money
The list comes from 2018, but it's still wild. As David Pierce writes in The Verge, the top twenty includes three iPhone-related terms, five insurance queries, and the rest are overshadowed by searches for customer service info for monopolistic services like Xfinity, Uber and Hulu.
All-in-all, we're living through a hell of a moment for piercing the corporate veil. Maybe it's the problem of maintaining secrecy within large companies, or maybe the the rampant mistreatment of even senior executives has led to more leaks and whistleblowing. Either way, we all owe a debt of gratitude to the anonymous leaker who revealed the unbelievable pettiness of former HBO president of programming Casey Bloys, who ordered his underlings to create an army of sock-puppet Twitter accounts to harass TV and movie critics who panned HBO's shows:
https://www.rollingstone.com/tv-movies/tv-movie-features/hbo-casey-bloys-secret-twitter-trolls-tv-critics-leaked-texts-lawsuit-the-idol-1234867722/
These trolling attempts were pathetic, even by the standards of thick-fingered corporate execs. Like, accusing critics who panned the shitty-ass Perry Mason reboot of disrespecting veterans because the fictional Mason's back-story had him storming the beach on D-Day.
The pushback against corporate bullying is everywhere, and of course, the vanguard is the labor movement. Did you hear that the UAW won their strike against the auto-makers, scoring raises for all workers based on the increases in the companies' CEO pay? The UAW isn't done, either! Their incredible new leader, Shawn Fain, has called for a general strike in 2028:
https://www.404media.co/uaw-calls-on-workers-to-line-up-massive-general-strike-for-2028-to-defeat-billionaire-class/
The massive victory for unionized auto-workers has thrown a spotlight on the terrible working conditions and pay for workers at Tesla, a criminal company that has no compunctions about violating labor law to prevent its workers from exercising their legal rights. Over in Sweden, union workers are teaching Tesla a lesson. After the company tried its illegal union-busting playbook on Tesla service centers, the unionized dock-workers issued an ultimatum: respect your workers or face a blockade at Sweden's ports that would block any Tesla from being unloaded into the EU's fifth largest Tesla market:
https://www.wired.com/story/tesla-sweden-strike/
Of course, the real solution to Teslas – and every other kind of car – is to redesign our cities for public transit, walking and cycling, making cars the exception for deliveries, accessibility and other necessities. Transitioning to EVs will make a big dent in the climate emergency, but it won't make our streets any safer – and they keep getting deadlier.
Last summer, my dear old pal Ted Kulczycky got in touch with me to tell me that Talking Heads were going to be all present in public for the first time since the band's breakup, as part of the debut of the newly remastered print of Stop Making Sense, the greatest concert movie of all time. Even better, the show would be in Toronto, my hometown, where Ted and I went to high-school together, at TIFF.
Ted is the only person I know who is more obsessed with Talking Heads than I am, and he started working on tickets for the show while I starting pricing plane tickets. And then, the unthinkable happened: Ted's wife, Serah, got in touch to say that Ted had been run over by a car while getting off of a streetcar, that he was severely injured, and would require multiple surgeries.
But this was Ted, so of course he was still planning to see the show. And he did, getting a day-pass from the hospital and showing up looking like someone from a Kids In The Hall sketch who'd been made up to look like someone who'd been run over by a car:
https://www.flickr.com/photos/doctorow/53182440282/
In his Globe and Mail article about Ted's experience, Brad Wheeler describes how the whole hospital rallied around Ted to make it possible for him to get to the movie:
https://www.theglobeandmail.com/arts/music/article-how-a-talking-heads-superfan-found-healing-with-the-concert-film-stop/
He also mentions that Ted is working on a book and podcast about Stop Making Sense. I visited Ted in the hospital the day after the gig and we talked about the book and it sounds amazing. Also? The movie was incredible. See it in Imax.
That heartwarming tale of healing through big suits is a pretty good place to wrap up this linkdump, but I want to call your attention to just one more thing before I go: Robin Sloan's Snarkmarket piece about blogging and "stock and flow":
https://snarkmarket.com/2010/4890/
Sloan makes the excellent case that for writers, having a "flow" of short, quick posts builds the audience for a "stock" of longer, more synthetic pieces like books. This has certainly been my experience, but I think it's only part of the story – there are good, non-mercenary reasons for writers to do a lot of "flow." As I wrote in my 2021 essay, "The Memex Method," turning your commonplace book into a database – AKA "blogging" – makes you write better notes to yourself because you know others will see them:
https://pluralistic.net/2021/05/09/the-memex-method/
This, in turn, creates a supersaturated, subconscious solution of fragments that are just waiting to nucleate and crystallize into full-blown novels and nonfiction books and other "stock." That's how I came out of lockdown with nine new books. The next one is The Lost Cause, a hopepunk science fiction novel about the climate whose early fans include Naomi Klein, Rebecca Solnit, Bill McKibben and Kim Stanley Robinson. It's out on November 14:
https://us.macmillan.com/books/9781250865939/the-lost-cause
If you'd like an essay-formatted version of this post to read or share, here's a link to it on pluralistic.net, my surveillance-free, ad-free, tracker-free blog:
https://pluralistic.net/2023/11/05/variegated/#nein
#pluralistic#hbo#astroturfing#sweden#labor#unions#tesla#adblock#ublock#youtube#prompt injection#publishing#robin sloan#linkdumps#linkdump#ai#tlds#anguilla#finance curse#ted Kulczycky#toronto#stop making sense#talking heads
137 notes
·
View notes
Text
Reblog since this is pretty important for internet users. What you need to be careful of are .zip and .mov files. Since these are now top level domains (like .com and .org), if you try to search for one of those files on a browser, it's going to try to resolve it as a web address instead. Bad actors are grabbing addresses for commonly desired files of those types to distribute malware to the careless.
So please get in the habit of adding extra words to your searches, like 'where to download files.zip' or 'where to get movie.mov'! And verify what address you are actually at when you download files. And double verify your address any time a login screen appears when you didn't expect one - like in those examples above that look like Microsoft login pages when the address is at microsoft-office.zip!
Stay safe out there, space cowboys!
New Things to Beware on the Internet
On May 3rd, Google released 8 new top-level domains (TLDs) -- these are new values like .com, .org, .biz, domain names. These new TLDs were made available for public registration via any domain registrar on May 10th.
Usually, this should be a cool info, move on with your life and largely ignore it moment.
Except a couple of these new domain names are common file type extensions: ".zip" and ".mov".
This means typing out a file name could resolve into a link that takes you to one of these new URLs, whether it's in an email, on your tumblr blog post, a tweet, or in file explorer on your desktop.
What was previously plain text could now resolve as link and go to a malicious website where people are expecting to go to a file and therefore download malware without realizing it.
Folk monitoring these new domain registrations are already seeing some clearly malicious actors registering and setting this up. Some are squatting the domain names trying to point out what a bad idea this was. Some already trying to steal your login in credentials and personal info.
This is what we're seeing only 12 days into the domains being available. Only 5 days being publicly available.
What can you do? For now, be very careful where you type in .zip or .mov, watch what website URLs you're on, don't enable automatic downloads, be very careful when visiting any site on these new domains, and do not type in file names without spaces or other interrupters.
I'm seeing security officers for companies talking about wholesale blocking .zip and .mov domains from within the company's internet, and that's probably wise.
Be cautious out there.
73K notes
·
View notes
Text
DomainsForChristains.com Offers a Growing Collection of TLDs http://www.domainsforchristians.com https://www.billkochman.com/Blog/index.php/domainsforchristains-com-offers-a-growing-collection-of-tlds/?feed_id=98493&_unique_id=653d6f6ec4c9d&DomainsForChristains.com%20Offers%20a%20Growing%20Collection%20of%20TLDs
0 notes
Text
Pointing out random things in this scene
-Venom is so much more expressive I love it
-The little "shh!" Lips 😭
-Venom leaving the tentacle over Eddie's mouth, Eddie trying to pull it away, and Venom immediately putting it back
-Venom keeps looking around like they're being watched. Ik the reason why, but I still think it looks goofy. I love him
-I DIDNT REALIZE IT WHEN I FIRST WATCHED THE PURRING AND CLICKING <3333333
2K notes
·
View notes
Text
deadclaws summer or symbrock autumn? a secret third option
#venom the last dance#deadpool and wolverine#symbrock#deadclaws#poolverine#wolverine#venom#wolverine fanart#venom fanart#symbrock fanart#logan#logan howlett#eddie x venom#eddie brock#venom tld#venom 3#venom symbiote#comic art#mcu#sonyverse#james logan howlett#fanart#crossover fanart#venom meets wolverine#hugh jackman#deadpool#tom hardy
2K notes
·
View notes
Text
This is that domain problem they @elfgrove were taking about weeks ago isn’t it?
Looks like fanfiction.net is gone. Probably should have backed up the fic I had there. Woops. Too late now.
#domain name#fanfiction.net#ff.net#google#google really sucks these days#url problems#TLD#tlds#domain#url
37K notes
·
View notes
Text
Meal's served .
🧎🫣💦
part II w/ Eddie kneeling down and V tugging his hair- in near future
#he wants that effin cookie so bad#id love to be the cookie#absolutely drooling#those sharp teeth must feel absolutely amazing pressing down#art#fanart#symbrock#venom#nex#tom hardy#veddie#eddie brock#marvel#nex art#venom the last dance#venom tld#pic redraw#showcasing several kinks (all of them) of mine in this one
655 notes
·
View notes
Text
// SPOILERS Venom 3
I can't get over the fact how evil it was to show us symbrock being a married couple, thinking about children and making holiday plans (AND showing a bride and a groom while talking about it) just to finish it with Eddie WATCHING VENOM FUCKING DIE IN FRONT OF HIS EYES?????
Bitch I was so mad why can't even queerbaited gays be happy on screen for once
(apparently in comics they end up happily or smth)
416 notes
·
View notes
Text
#venom#venom 3#venom 3 spoiler#venom the last dance#spoiler#spoilers#venom the last dance spoilers#venom 3 spoilers#marvel#venom: tld#venom: the last dance
499 notes
·
View notes
Text
hi let's talk about how john watson shields his face with his hand only when he’s crying.
now allow me to present:
#No.#he was LITERALLY crying you can see his eyes teary red wtf#martin freeman you did it again.#bbc sherlock#sherlock bbc#sherlock#sherlock holmes#john watson#johnlock#trf#tld#tfp#tjlc#sherlock screencap#my screencap#screencaps#my photo edit#photo edits#buckingham-ashtray
246 notes
·
View notes
Note
Have you heard abt this? Millions of US military emails intended for the US military's ".mil" domain have, for 10 years, been sent to Mali which ends with the ".ml" suffix. Some of the emails reportedly contained sensitive information such as passwords, medical records and the itineraries of top officers. 😁
Yeah I saw that lmao. Most expensive military in world history for ya
#id imagine lots of msgs just woulda been non delivered#unless theres lots of english military relevant site names under the ml tld#even then the users at the enail server would prob b differently named too - so a risk if someone already is targeting ur soldiers#or if the cache is like#kept for rly long#once someone knows you do that tho then u gotta like block that tld from sending except a whitelist
2K notes
·
View notes
Text
#sjonnies edits#venom#tom hardy#symbrock#veddie#eddie x Venom#venom 3#venom the last dance#venom tld
220 notes
·
View notes
Text
I do think it's criminal how the new symbiotes had such little screen time BUT I do love how they were like "Venom take your bf and protect your child" lmao
*Codex was Dylan Brock's alias in the comics - I see what they did there
#spoilers#venom spoilers#venom 3#venom the last dance#venom tld#vtld#symbrock#eddie brock#venom#eddie x venom#veddie#codex#dylan brock
173 notes
·
View notes
Text
we as a fandom don't talk about how funny a scandal in belgravia is because
'here to see the queen?' / 'apparently, yes!'
'laterz!'
'i really hope you don't have a baby in here'
'she'd applaud your choice of wording'
'sherlock was complaining...saying...'
'my god, really?'
'mrs. hudson has been attacked by an american, i am restoring balance to the universe'
'and exactly how many times did he fall out the window?' / 'it's all a bit of a blur detective inspector, i lost count'
#had planned on rewatching tst and tld tonight but asib just is the love of my life#some of the humor in this show is so overlooked like bbc sherlock really is a comedy#ofc there's lines that are funny & also blatantly suggestive but some of these other ones are funny for the sake of being funny & i adore i#asib the episode you are#bbc sherlock#a scandal in belgravia#my rambles
187 notes
·
View notes
Text
DomainsForChristains.com Offers a Growing Collection of TLDs http://www.domainsforchristians.com https://www.billkochman.com/Blog/index.php/domainsforchristains-com-offers-a-growing-collection-of-tlds/?feed_id=58448&_unique_id=64506ec9e36fd&DomainsForChristains.com%20Offers%20a%20Growing%20Collection%20of%20TLDs
0 notes