Commonplace

This commonplace is an archive of articles, notes and quotes from books, writing and other things.

Browse by section:

Subscribe via RSS

  • 9th Mar, 2023

    Screen Time Security

    Permalink

    Screen Time Security

    Joanna Stern’s recent WSJ report showed how thieves can change a user’s iCloud password with the phone and passcode only. In most cases, this permanently locks the user out of the account, meaning they lose access to years/decades of photos, notes and other irreplaceables.

    One of the tips to arise immediately is to use an alphanumeric passcode rather than a short numbers-only code. But if a thief shoulder surfs your alphanumeric passcode - or records it on a phone to playback later - that doesn’t help.

    It turns out the steps below don’t prevent account changes – thieves can still go through a password reset flow even if you follow step 5.

    I’m leaving these instructions because these steps may thwart thieves who don’t understand why the account is greyed out.

    It turns out you can use the Screen Time feature in iOS to prevent account changes make it seem that account changes aren’t possible. Here’s how:

    1. Settings > Screen Time > Content & Privacy Restrictions
    2. Enable the Content & Privacy Restrictions at the top of this page, and change the Account Changes option to Don’t Allow
    3. Go back to Screen Time and select Use Screen Time Passcode
    4. Enter a different code to your phone’s main passcode
    5. When you’re presented with the Screen Time Passcode Recovery screen, select Cancel then Skip
    6. When you return to the Settings page, your account section (with profile picture) should be greyed out and not selectable.

    To change these settings in future, enable Account Changes in Screen Time (same steps as above). Don’t forget to disallow Account Changes again when you’re finished.

    Following these steps should stop a thief changing your iCloud password. Even if they have your phone and passcode, they won’t be able to make account changes unless they also have your Screen Time Passcode (which they won’t).

  • 5th Feb, 2023

    The Dangerously Irresponsible IAB – Bob Hoffman

    Permalink

    Bob Hoffman (emphasis my own):

    The advertising industry was successful for many decades finding appropriate targets for advertisers without spying on the public. But the online ad industry claims that tracking is an essential part of their business model. This is the equivalent of saying that online advertising is such a weak force that the only way the industry can survive is if it is allowed to spy on the public.

    As I said at the beginning of this piece, advertising is necessary for the continued operation of the free web as we know it. But tracking is not. The problem is not advertising. The problem is tracking.

    The IAB and other trade groups have been complicit in opposing every serious attempt to reign in the excesses of the adtech industry. Instead they have put forward frivolous proposals like the laughable and cynically named “Privacy for America” program that protects the industry’s interests but undermines serious attempts to protect consumer privacy.

    Mr. Cohen’s remarks were ignorant and irresponsible. His assertion that people opposed to the dangerous practices of the online ad industry are “extremists” and want to “eliminate” the advertising industry are absurd. Sadly, this is not surprising coming from the IAB. The IAB has the disgraceful ceo it deserves.

  • 29th Jan, 2023

    Brands, fame and one-to-one targeting – Bob Hoffman

    Permalink

    This whole piece is worth reading, but particularly these two extracts:

    The most compelling advertising objective for any brand that aspires to be highly successful is to become famous. The most compelling advertising objective for any brand that is already famous is to remain famous. There is nothing else in advertising’s bag of tricks that can reliably provide fame’s contribution to business success.

    One of the current obsessions of the advertising industry is “precision one-to-one” targeting. If you agree that fame is advertising’s most powerful contribution, then it should be obvious that “precision one-to-one” targeting is antithetical to this.

    Advertising was invented for the very reason that trying to convince people one at a time was highly inefficient. But today, we are determined to go backward. If you want to sell one vacuum cleaner, sure, go door-to-door. But if you want to sell a million, you better find some way to make your vacuum cleaner famous.

    When Meta and adtech complain that privacy laws and tech pushes hurt small businesses, what they really mean are businesses that rely on paying them for their tracking ads. And when businesses rely on tracking ads they’re not building brand awareness, they may as well be selling door-to-door.

  • 12th Nov, 2022

    No, you’re not entitled to your opinion

    Permalink

    …philosophy teachers owe it to our students to teach them how to construct and defend an argument – and to recognize when a belief has become indefensible.

    The problem with “I’m entitled to my opinion” is that, all too often, it’s used to shelter beliefs that should have been abandoned. It becomes shorthand for “I can say or think whatever I like” – and by extension, continuing to argue is somehow disrespectful. And this attitude feeds, I suggest, into the false equivalence between experts and non-experts that is an increasingly pernicious feature of our public discourse.

  • 10th Nov, 2022

    Affinity 2.0

    Permalink

    I’ve been using Affinity software for a couple of years and they offer a genuinely competitive alternative to Adobe. This week, they’ve announced the 2.0 versions of their apps.

    Unlike Adobe, Affinity’s software is purchased as a one-time fee, with free updates until the next major release. Affinity 1.0 has been around since at least 2015 as far as I can tell – one reasonably-priced paid upgrade every seven years seems like a pretty good deal to me.

    The best endorsement I can give is that I have the Creative Cloud Suite, but default to using the Affinity equivalents (Photo = Photoshop, Design = Illustrator, Publisher = InDesign). They load faster and are generally much more stable.

    This launch comes with an offer for 40% off and the introduction of a Universal Licence – £90 for all their apps on all platforms (including the limited time offer). This is a steal but don’t fret if you can’t take advantage of this now – Affinity run semi-regular sales with decent discounts.

  • 28th Oct, 2022

    Stage Manager first impressions

    Permalink

    Stage Manager first impressions

    Ever since Stage Manager was demoed at WWDC 2022, I’ve been keen to give it a go. The idea of grouping windows by project, task or any other theme is really attractive to me and it looked like it did just that.

    In the months leading up to the release of macOS Ventura, Stage Manager has received a largely negative reaction in the coverage I’ve seen. I suspect that’s mostly because of the myriad Stage Manager issues in iPadOS.

    But I’ve been using it over the last few days and I’m pretty into it.

    Stage Manager vs Spaces

    Years ago, I tried Spaces. That kind of worked, but I didn’t like zapping between screens. That was particularly annoying if I opened an app forgetting it was in a different Space as I’d find myself whisked away from what I was doing.

    (This may have changed since I last used Spaces – apologies for any mischaracterisations here.)

    To me, Stage Manager feels like a more manageable and flexible version of Spaces. There’s no desktop-wide transition and, if you happen to open an app forgetting it’s in a different Stage, it’s easy to visually move the app or reorganise your Stages.

    Spaces are relatively flexible, but the setup always felt a bit more fixed, not least as apps could be set to specific Spaces. Stage Manager seems more ephemeral: set up a Stage that you need right now and close it when you’re done. Or don’t.

    Workflow options

    I particularly like that apps with multiple windows (i.e. browsers) can have windows in different Stages. That gives a real flexibility to how Stages are grouped: they can be hyper-focused to a specific task/project or more general (i.e. a productivity Stage).

    Now if the Notes app could open multiple windows, that would be very handy...

    I also just discovered that making a window full-width in Stage Manager causes the sidebar to move off-screen. It then reveals on-hover, like the Dock can, which makes for an interesting use case on smaller screens.

    All-in-all, I’m enjoying Stage Manager so far and would recommend giving it a go, particularly if you’ve tried Spaces previously and didn’t quite get on with it. Stage Manager definitely won’t be for everyone, but it’s good that Apple continue to over multiple workflows without forcing a specific technique on their users.

  • 27th Oct, 2022

    Subtle macOS Ventura features

    Permalink

    Two things of note from this video:

    1. macOS can now generate background noise to help you focus (under System Settings > Accessibility > Audio > Background Sounds)
    2. Continuity camera isn’t just for live calls, you can record with it, too
  • 21st Oct, 2022

    Copilot investigation

    Permalink

    The new hotness in tech seems to be training AI on datasets without the owner/subject’s knowledge or consent and using that to produce features or products to sell. See Clearview’s scraping of faces for facial recognition tech, AI art generators scraping artists’ works and more (not unrelated: Cambridge Analytica and the whole surveillance ads market).

    AI advocates say this content is public and therefore fair game – “artists use everything they’ve seen to inform their work”.

    However an artist’s limited, personal and somewhat curated experiences eventually produce a unique style after years of honing their craft. Companies training AI on every image that’s ever been digitised – without a single copyright owner’s consent – with the aim of selling access to their dataset (or getting a $bn exit) is another prospect altogether. The difference in scale is key.

    Another example of this is GitHub’s Copilot which is essentially an intelligent code autocomplete. The underlying dataset was trained on open source repositories without the owner’s permission.

    Now a group of lawyers are investigating to see if there’s potential for a lawsuit. One to watch.

  • 11th Oct, 2022

    From The New Climate War by Michael E Mann :

    Permalink

    The concept of a “personal carbon footprint” was something that the oil company BP promoted in the mid-2000s. Indeed, BP launched one of the first personal carbon footprint calculators, arguably as part of a larger public relations effort to establish the company as the environmentally conscious oil company.

    From The New Climate War by Michael E Mann :

    Permalink

    Though beef consumption is responsible for only 6 percent of total carbon emissions, it often seems to fill close to 100 percent of my Twitter feed. The meat melee was fed by a highly successful and influential 2014 documentary, Cowspiracy, which promoted the false notion that meat-eating is the primary contributor to human-caused climate change. Cowspiracy diverted–you might even say deflected–attention from the real conspiracy on the part of fossil fuel interests to confuse the public about the role of fossil fuel burning.

    From The New Climate War by Michael E Mann :

    Permalink

    The dividers have successfully generated a veritable “food fight”—in fact, a literal one, getting people to argue about their dietary preferences, as well as their preferred means of transportation, how many children they have, and other matters of lifestyle and personal choice. “If nobody is without carbon sin, who gets to cast the first lump of coal?” I asked in a commentary for Time magazine. “Who is truly walking the climate walk? The carnivore who doesn’t fly? The vegan who travels to see family abroad?” The opportunities for finger-pointing seem endless.

    From The New Climate War by Michael E Mann :

    Permalink

    Regenerative agriculture based on recycling farm waste and using composted materials from other sources, combined with land use practices that enhance soil carbon sequestration, could potentally bury somewhere in the range of 3.5 to 11 billion tons of carbon dioxide emissions per year. Let us once again take the very optimistic upper limit of 11 billion tons per year.

    Adding together these contributions gives us 22 billion tons of carbon dioxide per year. That sounds like quite a bit, but we are currently generating the equivalent of roughly 55 billion tons per year of carbon dioxide through fossil fuel burning and other human activities. That means that even if we accepted estimates from the very upper limits of the uncertainty range, the combined effect of reforestation and agriculture and land use practices would at most only slow the buildup of carbon dioxide in the atmosphere by a factor of 44 percent. In other words, atmospheric carbon dioxide levels would continue to rise, just at a rate that is roughly half as fast.

  • 27th Aug, 2022

    Backing up my Mac

    Permalink

    Backing up my Mac

    At the end of 2021, I had the misfortune of needing to reinstall everything on my main computer. Something had crashed and the only way to get my computer working was to do a fresh install.

    I was using Time Machine on a local HDD and a Popular Backup Service™ – let’s call it, I dunno, Blazing Backups – for remote backups. One of the attractions of Blazing Backups was that it also offered a service to send a physical drive in case of emergency.

    As it turned out, neither of these worked particularly well and restoring was an incredibly time-consuming process. It took over a week to get things back to normal.

    Restoration

    Firstly, Time Machine completely failed. I’m a little fuzzy on the details now: I seem to remember the drive could be seen by the new device but it either wasn’t possible to restore from it or it hadn’t been backing up useful things. Either way, it was unusable.

    And Blazing Backups was not a great experience. The online interface for manually accessing files was clunky and download speeds were incredibly slow. It took a few days of back-and-forth to get the files downloaded, on 200mbps internet, to download a little over 1TB of data.

    I considered asking them to zip up the files on a physical drive and send it, but I was told it could take 2–3 days for this to even be dispatched. The packing time, shipping time to the UK and poor-timing of needing the service around holidays meant that delivery alone could have taken two weeks!

    Of course, Blazing Backups can’t do anything about these things: it’s reasonable for there to be some time in preparation and shipping times are out of their control. But if you’re unlucky with holiday breaks when you need the back up, the physical disk option may not be as useful or quick as it sounds.

    In some senses, my backup strategy worked: my first backup failed, but I was still able to get my files back. There will always be some disruption when your system is wiped, but this whole experience was incredibly suboptimal. I knew there must be a better way.

    New strategy

    Everything, except project files is stored/managed through Sync (not an ashilliate link – if you would like an extra 1GB use this link instead). It’s end-to-end encrypted and basically as easy to use as Dropbox local.

    This entirely replaces my desktop. The beauty of this is that setting up a new computer is incredibly quick:

    1. Download the Sync app
    2. Choose the highest-priority folders to download
    3. Sync other folders later
    4. Download and install other apps as needed

    I also use Super Duper for the local backup. This has the added advantage of also backing up applications not just files, something that Blazing Backups didn’t offer.

    Project files are stored in git repositories, so those are synced very quickly.

    Concerns

    The only downside of Sync is that, unlike Dropbox, you can’t run multiple accounts on the same computer through the local app...yet. But I’m willing to trade that for the end-to-end encryption.

    I also wondered about the environmental impact of going all-in on a cloud setup. But this may actually have reduced my cloud use as I was previously using Dropbox in addition to the Blazing Backups service, so everything has been consolidated to a single place – no duplication.

    Check your backups

    The advice is always to test your backups. In particular, I’d suggest checking out your remote backup’s interface for restoring files: if it’s clunky and slow, moving to a cloud service might be a better option in case of emergency.

  • 26th Aug, 2022

    Mac Recommendations

    Permalink

    Mac Recommendations

    “Which Mac should I buy?” comes up fairly often in communities I’m in. There are a lot of options – especially as Apple haven’t completed their transition from Intel to the M-series chips yet – but here are some general recommendations.

    All the usual caveats apply to this: your mileage may very, question all advice (even this), etc...

    Don’t buy an Intel

    Only buy a MacBook with an M1 or M2 chip. Support for Intels will decrease significantly over the next year or two and the M1/M2’s wipe the floor with the previous chips from a performance POV – a different ballpark altogether.

    Avoid the 13” base model MacBook Pro

    If you buy an M1 or M2, don’t buy the 13” base model MacBook Pro – these are the worst machines in the M1 and M2 line-ups (a spec-matched MacBook Air is usually a better choice despite the ‘Pro’ name).

    Airs and Minis

    Related to the 13” MacBook Pro advice above, M1/2 MacBook Airs and Mac Minis are excellent computers for most people. With upgraded space and RAM they’ll suffice for most use cases.

    If you’re coming from an Intel, an M1/M1 Pro will likely be a huge upgrade from what you’re used to and it may not be worth spending more on a Max or Ultra. If you need that extra power, you’ll probably know.

    Upgrade the M2 disk space

    If you buy an M2 MacBook Air, be sure to upgrade the disk space to at least 512GB – there’s a bit of a performance dip on the base storage model (256GB).

    Processor upgrades are optional

    The old advice for Intels was “max out the processor”, but this is much less important than it used to be due to the way to M1/M2 series chips work. In lots of testing, the upgraded chips offer little-to-no real-world improvements.

    If you can afford it, do it – if it’s a choice between that and extra storage or something else, the processor is probably less important.

    RAM

    Similarly, your RAM needs on an M-series chip may be lower than previous Macs. I’d still recommend buying the maximum you can afford, probably a minimum of 16GB unless your laptop use is incredibly light and/or not business critical.

    Any 14”/16” M1 MacBook Pro should be good!

    The choice mostly comes down to screen size.

    Laptop or desktop?

    With Apple’s transition to M-series chips, there is no real performance difference between a desktop and laptop machine equipped with the same chip (i.e. an M1 Max Mac Studio vs an M1 Max MacBook Pro). So if you’ve previously had a desktop and laptop, you might be able to consolidate the machines.

    Apple Studio Display

    The main reason to buy an Apple Studio Display over other options is that it’s one of the only displays on the market that offer a 5K resolution at a native size. That means that the pixels aren’t scaled up like they are on 5K displays at bigger display sizes.

    The build quality is excellent and, despite the poor reviews, I regularly get comments on the quality of the camera – despite previously using a front-facing iPhone 7 camera.

    Last updated: 26th August, 2022

  • 24th Aug, 2022

    Fastmail creates aliases for mailing list recipients to protect their privacy

    Permalink

    I subscribed to Fastmail’s newsletter and was surprised to see they use Mailchimp to send them. But it turns out they create temporary email aliases for each subscriber every time they send an email.

    Each time we send a newsletter, we create new temporary aliases for everyone to ensure we respect any changes in your newsletter preferences and keep your personal addresses private from our external email marketing tool (Mailchimp).

    The temporary address will then expire, meaning you’ll disappear without a trace on Mailchimp and never receive any mail sent to that alias again.

    At the moment, newsletters are sent 2–10 times per year. Each time a new newsletter is sent, a new list of aliases will be imported, reflecting any new additions or subtractions to users on the list.

    It’s impressive – and cool – to see privacy-conscious companies walking the walk.

    Cooler still, they don’t even store generated aliases:

    It’s actually not too much effort! We generate time-limited aliases by hashing together your real address + expiration time + some randomness. When we get the mail, we reverse that process to look up your account and deliver it.

    (We don’t even store the generated aliases!)

The start!

1 / 9 pages

Next →