Justin's Linklog Posts

study of “Long COVID” symptoms in the Danish population

These numbers are frankly massive:

Six to twelve months after the test date, the risks of 18 out of 21 physical symptoms were elevated among test-positives and one third (29.6%) of the test-positives experienced at least one physical post-acute symptom. [jm: “test-positives” are “individuals aged 15-years or older, consisting of RT-PCR confirmed SARS-CoV-2 cases between September 2020 – April 2021”] The largest risk differences were observed for dysosmia (RD = 10.92%, 95%CI 10.68-11.21%), dysgeusia (RD=8.68%, 95%CI 8.43-8.93%), fatigue/exhaustion (RD=8.43%, 95%CI 8.14-8.74%), dyspnea (RD=4.87%, 95%CI 4.65-5.09%) and reduced strength in arms/legs (RD=4.68%, 95%CI 4.45-4.89%). More than half (53.1%) of test-positives reported at least one of the following conditions: concentration difficulties (RD=28.34%, 95%CI 27.34-28.78%), memory issues (RD=27.25%, 95%CI 26.80-27.71%), sleep problems (RD=17.27%, 95%CI 16.81-17.73%), mental (RD=32.58%, 95%CI 32.11-33.09%) or physical exhaustion (RD=40.45%, 95%CI 33.99-40.97%), compared to 11.5% of test-negatives. New diagnoses of anxiety (RD=1.15%, 95%CI 0.95-1.34%) or depression (RD=1.00%, 95%CI 0.81-1.19%) were also more common among test-positives. Interpretation: At the population-level, where the majority of test-positives (96.0%) were not hospitalized during acute infection, a considerable proportion experience post-acute symptoms and sequelae 6-12 months after infection.

(tags: long-covid denmark studies papers covid-19)

Telegram Harm Reduction for Users in Russia and Ukraine

The EFF’s position on “should you use Telegram in Ukraine”.

(tags: apps communication eff encryption ukraine russia war security)

What Exactly are AWS VPC Endpoints

VPC endpoints are AWS magic to allow private, secure access to S3, DynamoDB, and other AWS services without any traversal outside of your private VPC network. This blog post is a good description of how this is accomplished, and very useful if you need to debug AWS networking issues. (via Last Week In AWS)

(tags: aws networking vpc vpc-endpoints architecture ops s3 dynamodb security)

Additional Checksum Algorithms for Amazon S3

This is good stuff:

It is now very easy for you to calculate and store checksums for data stored in Amazon S3 and to use the checksums to check the integrity of your upload and download requests. You can use this new feature to implement the digital preservation best practices and controls that are specific to your industry. In particular, you can specify the use of any one of four widely used checksum algorithms (SHA-1, SHA-256, CRC-32, and CRC-32C).

(tags: checksums integrity uploads s3 sha crc md5)

Fixing retries with token buckets and circuit breakers

Very interesting writeup from Marc Brooker detailing a new (to me) retry strategy, the “retry token bucket”:

Adaptive Retries (aka the retry token bucket). When a client wants to make a call, it makes that call as normal. If it succeeds, it drops part of a token into a limited-size token bucket. If the call fails, retry up to N times as long as there are (whole) tokens in the bucket. For example, each success could deposit 0.1 tokens, and each retry could consume 1 token.

(tags: circuit-breakers distributed-systems distcomp retries retrying token-buckets algorithms reliability marc-brooker)

Crowdworking platforms used as a tool of war

File under “grim dystopian 21st century”: Bogdan Kulynych on Twitter: “New (to me) dimension of crowdwork platforms: Russian military [used] Premise microtasking platform to aim and calibrate fire during their invasion of Ukraine. Example tasks are to locate ports, medical facilities, bridges, explosion craters. Paying ¢0.25 to $3.25 a task.” This may explain why Google Maps coverage of the area wound up with many of those features tagged in the past week.

(tags: ethics security google crowdwork crowdsourcing warfare war ukraine grim-meathook-future)

Why you should develop a correction of error (COE) | AWS Cloud Operations & Migrations Blog

AWS are proselytising their post-outage retrospective analysis process, the COE. Generally good stuff but they are clearly _still_ married to jeffb’s local timezone:

When documenting times, be sure to include a time zone, and make sure that you’re using it correctly (e.g., PDT vs. PST). Better yet, either use UTC or omit the middle letter of the time zone (e.g., “PT”).

(tags: amazon aws timezones coe process postmortems dates pdt pst utc)

New – Customer Carbon Footprint Tool | AWS News Blog

‘Starting today customers can calculate the environmental impact of their AWS workloads with the new customer carbon footprint tool. This new tool uses easy-to-understand data visualizations to provide customers with their historical carbon emissions, evaluate emission trends as their use of AWS evolves, approximate the estimated carbon emissions they have avoided by using AWS instead of an on-premises data center, and review forecasted emissions based on current use. The forecasted emissions are based on current usage, and show how a customer’s carbon footprint will change as Amazon stays on path to powering its operations with 100% renewable energy by 2025, five years ahead of its original target of 2030, and drives toward net-zero carbon by 2040 as part of The Climate Pledge. The customer carbon footprint tool is visible today through the AWS Billing console and helps to support customers on their sustainability journey. When signed into the AWS Billing console, customers can view their carbon emissions data by geographical location and by AWS services, such as Amazon Elastic Compute Cloud (EC2) and Amazon Simple Storage Service (S3). They can also measure changes in their carbon footprint over time, as they deploy new resources in the cloud. The new tool uses data that meets the Greenhouse Gas Protocol, which is the international standard for greenhouse gas reporting.’ Covers Scope 1 and Scope 2 emissions.

(tags: aws carbon emissions climate-change sustainability climate infrastructure ops ec2 s3)

more nails in the coffin of the lab-leak theory

Michael Worobey on Twitter:

We have just released two preprints on the origin of SARS-CoV-2: 1. “The Huanan market was the epicenter of SARS-CoV-2 emergence” ( https://zenodo.org/record/6299116#.YhpLBi9h06w ) & 2. “SARS-CoV-2 emergence very likely resulted from at least two zoonotic events” ( https://zenodo.org/record/6291628 )

(tags: animals china epidemiology sars-cov-2 covid-19 lab-leak michael-worobey papers preprints zoonosis)

Good thread on UK COVID testing and random sampling

The UK has an ongoing, population-wide random-sampling study of COVID prevalence in the UK population, operated by the ONS. This is a solid write-up on how it can be used to estimate two parameters for modelling prevalence from the more up-to-date case numbers: the detectability window, and ascertainment level.

(tags: covid-19 testing sampling random measurement ascertainment detectability epidemiology sars-cov-2 uk ons modelling)

How to create a simple Twitter bot

super-simple guide from b3ta’s Rob Manuel

(tags: python twitter bots rob-manuel)

Excellent Twitter thread on the current COVID-19 situation in Denmark

Courtesy of Kristian Andersen:

So looking at this report – and only focusing on population-based acute effects – I see several trends that concern me. Are these acute consequences acceptable? For me, no, but politicians need to decide. Are we making decisions based on a realistic outlook? I’m not sure.

(tags: covid-19 endemicity pandemics denmark ireland omicron public-health)

GitHub now supports embedded graphs and diagrams using Mermaid

This is very handy!

Mermaid is a JavaScript based diagramming and charting tool that takes Markdown-inspired text definitions and creates diagrams dynamically in the browser. Maintained by Knut Sveidqvist, it supports a bunch of different common diagram types for software projects, including flowcharts, UML, Git graphs, user journey diagrams, and even the dreaded Gantt chart. Working with Knut and also the wider community at CommonMark, we’ve rolled out a change that will allow you to create graphs inline using Mermaid syntax.

(tags: diagrams github markdown mermaid charts graphs)

UKHSA review shows vaccinated less likely to have long COVID than unvaccinated – GOV.UK

Good data from UKHSA:

The data from some of the studies included in the review suggests that: people with COVID-19 who received 2 doses of the Pfizer, AstraZeneca, or Moderna vaccines or one dose of the Janssen vaccine, were about half as likely as people who received one dose or were unvaccinated to develop long COVID symptoms lasting more than 28 days; vaccine effectiveness against most post-COVID symptoms in adults was highest in people aged 60 years and over, and lowest for younger participants (19 to 35 years)

(tags: long-covid uk ukhsa vaccines sars-cov-2)

a short story about pandemic misinformation & biased reporting

Well-illustrated case study from 2021 in how misinformation evolves in the mainstream press. First, an Irish Times journalist concocted a thesis (“Given that only 1 in 1,000 cases of COVID-19 come from an outdoor setting, is the government too prohibitive on people meeting outdoors?”), and got a weakly confirmatory response from the HPSC (who should have known better). Through poor reporting by other newspapers around the world, this quickly became a “fact” reported by an Irish “study” — despite being nothing of the sort — and published in the New York Times and NPR. Eventually it became a research reference in several academic papers and the BMJ. Naturally, warnings from experts, and the Minister for Health, about its inaccuracy, were ignored. What a mess…

(tags: misinformation irish-times fail health covid-19 safety hpsc new-york-times npr bmj)

A decade of major cache incidents at Twitter

a massive list of cache-related outages from Dan Luu — I still have fear of large scale cache reliance, inherited from Amazon, and this terrifying list doesn’t help!

(tags: caching architecture twitter ops outages history)

COVID-19 takes serious toll on heart health—a full year after recovery | Science

In an analysis of more than 11 million U.S. veterans’ health records, researchers found the risk of 20 different heart and vessel maladies was substantially increased in veterans who had COVID-19 1 year earlier, compared with those who didn’t. The risk rose with severity of initial disease and extended to every outcome the team examined, including heart attacks, arrhythmias, strokes, cardiac arrest, and more. Even people who never went to the hospital had more cardiovascular disease than those who were never infected. The results are “stunning … worse than I expected, for sure,” says Eric Topol, a cardiologist at Scripps Research. “All of these are very serious disorders. … If anybody ever thought that COVID was like the flu this should be one of the most powerful data sets to point out it’s not.” He adds that the new study “may be the most impressive Long Covid paper we have seen to date.” […] “In the post-COVID era, COVID might become the highest risk factor for cardiovascular outcomes,” greater than well-documented risks such as smoking and obesity, says Larisa Tereshchenko.

(tags: covid-19 health medicine long-covid sars-cov-2 heart stroke)

Radio station snafu in Seattle bricks some Mazda infotainment systems

Bananas. Crappy code in Mazda Connectivity Master Units (CMUs), a component in the Mazda infotainment system in models built between 2014 and 2017, had a massive bug: they would crash and enter a crash/reboot cycle on receiving unexpected input via radio.

The problem, according to Mazda, was that the radio station sent out image files in its HD radio stream that did not have extensions, and it seems that Mazda’s infotainment system of that generation needs an extension (and not a header) to tell what a file is. No extension, no idea, and the system gets corrupted.

(tags: radio security mazdas infotainment cars embedded-systems fail bugs images)

We won! UK Home Office to stop using racist visa algorithm

Spectacular inbuilt algorithmic discrimination in the UK:

The visa algorithm discriminated on the basis of nationality – by design. Applications made by people holding ‘suspect’ nationalities received a higher risk score. Their applications received intensive scrutiny by Home Office officials, were approached with more scepticism, took longer to determine, and were much more likely to be refused. We argued this was racial discrimination and breached the Equality Act 2010. Entrenched bias and racism in the visa system breaks hearts and tears families apart, like the four siblings from Nigeria unable to travel to the UK for their sister’s wedding, or the countless skilled professionals refused unable to contribute to conferences and events in the UK just because they don’t come from a rich white country – including scores of African academics and artists denied entry for no good reason. The streaming tool was opaque. Aside from admitting the existence of a secret list of suspect nationalities, the Home Office refused to provide meaningful information about the algorithm. It remains unclear what other factors were used to grade applications. The algorithm suffered from a feedback loop — a vicious circle in which biased enforcement and visa statistics reinforce which countries stay on the list of suspect nationalities. In short, applicants from suspect nationalities were more likely to have their visa application rejected. These visa rejections then informed which nationalities appeared on the list of ‘suspect’ nations. This error, combined with the pre-existing bias in Home Office enforcement (in which some nationalities are targeted for enforcement because they are believed to be easier to remove), accelerated bias in the Home Office’s visa process. Such feedback loops are a well-documented problem with automated decision systems.

(tags: algorithms racism uk immigration automation home-office)

Environmental Reporting Dashboards for OpenStack

A neat integration of Scaphandre into an OpenStack cluster by BBC R&D:

While researching tools to monitor VM power usage, we evaluated Scaphandre – an open-source monitoring agent for energy consumption metrics created by Hubblo and Benoit Petit. Scaphandre can measure the CPU power consumption of the whole server and its processes using Intel RAPL alongside CPU utilisation statistics stored in proc/stat. Scaphandre estimates how many CPU watts each process is responsible for by looking at the CPU time spent on it, and the CPU power consumption for the whole server reported by Intel RAPL. Each running VM appears as a process running on the server – therefore, Scaphandre can report the CPU power consumption for each VM. We then used the Carbon Intensity API, created by the UK National Grid ESO, to calculate the carbon dioxide emissions corresponding to each VM’s CPU power consumption. This API provides the number of grams of carbon dioxide (gCO2) emitted to generate a kilowatt-hour (kWh) of electricity consumed at a UK regional level. This figure, referred to as the carbon intensity of electricity generation, varies over time according to the type of generation and electricity demand. Multiplying the carbon intensity figure by the CPU power consumption of a VM at a given point in time results in the carbon dioxide emissions the VM is responsible for.

(tags: scaphandre bbc openstack co2 climate emissions power)

Energy crisis: Is net zero and environmental policy responsible for rising energy bills?

If we’re serious about replacing fossil fuels with renewables we will have to build an awful lot of them, and while the eventual lifetime cost could be lower than fossil fuels, the short-term cost per MWh is way, way higher. So if we’re serious about net zero you’d expect our governments and companies to be spending extraordinary amounts on new primary power projects right now. But glance at the statistics and it turns out we’re not. On the contrary, investment in primary energy — those plans and solar panels and wind turbines we need to give us power — has flatlined since 2015.

(tags: energy future climate-change power fossil-fuels renewables research net-zero)

braided cables

prized by audiophiles, but TBH I think they just look pretty cool

(tags: cables braiding cool)

Missing Manuals – io_uring worker pool

‘Calling io_uring just an asynchronous I/O API doesn’t do it justice, though. Underneath the API calls, io_uring is a full-blown runtime for processing I/O requests. One that spawns threads, sets up work queues, and dispatches requests for processing. All this happens “in the background” so that the user space process doesn’t have to, but can, block while waiting for its I/O requests to complete. A runtime that spawns threads and manages the worker pool for the developer makes life easier, but using it in a project begs the questions: 1. How many threads will be created for my workload by default? 2. How can I monitor and control the thread pool size? […..] 3. What is an unbounded worker? 4. How does it differ from a bounded worker? Things seem a bit under-documented as is, hence this blog post. Hopefully, it will provide the clarity needed to put io_uring to work in your project when the time comes.’

(tags: linux io_uring apis runtime kernel system-calls coding performance)

Long-term cardiovascular outcomes of COVID-19 | Nature Medicine

Yikes:

beyond the first 30 days after infection, individuals with COVID-19 are at increased risk of incident cardiovascular disease spanning several categories, including cerebrovascular disorders, dysrhythmias, ischemic and non-ischemic heart disease, pericarditis, myocarditis, heart failure and thromboembolic disease. These risks and burdens were evident even among individuals who were not hospitalized during the acute phase of the infection and increased in a graded fashion according to the care setting during the acute phase (non-hospitalized, hospitalized and admitted to intensive care). Our results provide evidence that the risk and 1-year burden of cardiovascular disease in survivors of acute COVID-19 are substantial. Care pathways of those surviving the acute episode of COVID-19 should include attention to cardiovascular health and disease.

(tags: covid-19 papers nature disease health long-covid sars-cov-2)

Crypto, NFTs, and sports betting: Money is now a hobby – Vox

“The internet turned “money” into a hobby — Why (mostly) 20- and 30-something dudes made crypto and sports betting their personality”:

Jeff, like most skeptics for whom the system has actually worked pretty well, is eager to cash out once the price of ethereum goes back up. But talking to him, and to the rest of the (almost entirely) men who’ve turned money into a hobby, made me more than anything feel like I was too late to something that hadn’t even really happened yet. Because of course it isn’t “too late” to become an overnight crypto millionaire or to cash out on an incredibly lucky bet; it’s just highly unlikely that that person will be you. Nobody wants to be a cynical spoilsport, stewing in resentment of these men who have won and will probably keep winning, who look a lot like the ones who have always won: the men who have the time, the knowledge, the energy, and, most importantly, the money to turn “having money” into its own hobby.

(tags: crypto finance gambling internet nfts ethereum scams hobbies betting)

New lithium-air battery technology doubles current battery performance

‘Development of a lithium-air battery with an energy density over 500 wh/kg: One of the world’s highest energy densities achieved — ScienceDaily […] When operated at room temperature, the champion battery exhibited a weight energy density of 500 Wh/kg, which is about twice that of current lithium-ion batteries. The performance has been described as the highest in the world in terms of energy density and number of cycles.’ Great news for renewable electric flight.

(tags: climate-change flight travel power batteries lithium-air science tech)

“Prime and Spike” intranasal vaccine for COVID-19

This, IMO, is excellent progress — ‘Broad sarbecovirus protective mucosal immunity is generated by unadjuvanted intranasal spike boost in preclinical model.’ Because it’s mucosal immunity, it’ll have much better effectiveness in blocking transmission of COVID-19 — and it’s just a squirt up the nose. Great preprint via Akiko Iwasaki

(tags: akiko-iwasaki prime-and-spike intranasal vaccines mucosal-immunity covid-19 sars-cov-2)

Okuda Hiroko: The Casio Employee Behind the “Sleng Teng” Riddim that Revolutionized Reggae | Nippon.com

This is a great story:

What became the Sleng Teng riddim was originally intended as a “rock” rhythm. Why did this rock beat become so popular with Jamaican musicians? Okuda says: “In those days, my head was full of reggae. Even when I was trying to come up with a rock beat, I think it just naturally came out as something that would work in reggae as well.”

(tags: casio music technology sleng-teng reggae okuda-hiroko basslines)

Yanis Varoufakis: play-to-earn could be “the apotheosis of misanthropy”

“the idea that people must now play like robots to earn a living so as to be human in their spare time is, indeed, the apotheosis of misanthropy.” He’s not wrong! Great interview with Evgeny Morozov.

(tags: crypto marxism yanis-varoufakis socialism misanthropy play-to-earn nfts future gaming)

Resurrecting Nikolai Fedorov

The original “rapture of the nerds”:

[Fedorov’s] thought was powerfully shaped by both Orthodox Christianity and Hegelian philosophy. […] Rather than passively waiting for God to bring on the Millennium, being a good Christian meant participating in the building of heaven on Earth. It was the way in which he expected this to come about that really separated Fedorov from the others. In his thinking there is only one evil in the world that really counts, death. Moreover, rather than being accepted as a part of “the human condition,” part of the human mission is the technological conquest of death. This means not only achieving immortality, but restoring all the people who have ever walked the Earth to life so that they may share the gift as well, making the heaven of the afterlife a physical reality. […] To help bring the dead back to life, Fedorov believed that humanity would eventually launch expeditions across the cosmos to recover particles that once belonged to their ancestors in order to reconstitute their bodies. Additionally, since Earth would not be big enough to accommodate all of the people who had ever lived at once, room would be found for them on other planets.

(tags: via:cstross rapture nerds singularity futurism posthumanism space biotechnology death immortality life-extension future nikolai-fedorov philosophy religion)

Long Covid risk reduced by double vaccination

_Self-reported long COVID after two doses of a coronavirus (COVID-19) vaccine in the UK_ – report from the UK Office for National Statistics. Tl;dr: ‘reduced odds of Long Covid if SARS-CoV-2 infection occurs after double vaccination in adults. Almost half less likely (OR 41%) compared to unvaccinated when infected.’ See also this preprint https://www.medrxiv.org/content/10.1101/2022.01.05.22268800v2

(tags: long-covid covid-19 ons uk vaccines vaccination)

rMA 15 – 15 passages resulted in a very pathogenic variant of SARS-CoV

“A Mouse-Adapted SARS-Coronavirus Causes Disease and Mortality in BALB/c Mice”: “We adapted the SARS-CoV (Urbani strain) by serial passage in the respiratory tract of young BALB/c mice. Fifteen passages resulted in a virus (MA15) that is lethal for mice following intranasal inoculation.” This is the scary paper which Anthony J Leonardi refers to regularly — 15 passages through mice resulted in SARS-CoV (the first one) becoming much more pathogenic.

(tags: viruses rma-15 sars-cov)

Fantastic false positive from Google Drive’s copyright infringement scanning system

Dr. Emily Dolson on Twitter: “Uh, @googledrive, are you doing okay? This file literally contains a single line with the number “1”.”

(tags: google fail funny false-positives copyright bugs loneliest-number google-drive)

Beg Bounties

“It’s dead simple, you just use tools like Qualys’ SSL Labs, dmarcian or Scott Helme’s Security Headers, among others. Easy point and shoot magic and you don’t need to have any idea whatsoever what you’re doing!” — aka. “scaremongering for profit”

(tags: scams security bug-bounties beg-bounties scaremongering exploits spf dmarc funny via:cian)

SWAR indexOf byte search

SIMD-Within-A-Register implementation of ByteBuf.indexOf() in Java, used in Netty. nice performance optimization technique

(tags: simd swar indexof bytebuffer java optimization performance search netty hacks)

Roblox 73-hour outage write-up

The root cause was due to two issues. Enabling a relatively new streaming feature on Consul under unusually high read and write load led to excessive contention and poor performance. In addition, our particular load conditions triggered a pathological performance issue in BoltDB. The open source BoltDB system is used within Consul to manage write-ahead-logs for leader election and data replication.

(tags: postmortems outages roblox games ops consul boltdb replication uptime)

My custom solar monitoring system (PVS6)

Nelson’s telegraf/grafana setup for monitoring his domestic solar power setup. Very nice indeed, I’ll be taking some inspiration from this when I (finally) get around to getting panels on my roof

(tags: solar-power solar home graphs grafana dashboards monitoring telegraf via:nelson)

DeliverMe.ie

another UK / Northern Ireland delivery address parcel-forwarding service. Extremely expensive compared to the now-obsolete Parcel Motel, at 25 euros per parcel, but if there’s no other option for ordering from Brexitland, at least it’s there.

(tags: delivery brexit uk parcels shipping ireland)

zzh Multiprotocol RF Stick

Apparently the bees knees for Zigbee usage with an open platform like Home Assistant:

zzh is the original “USB stick” form-factor development board for TI’s new generation CC2652R chips. It features: TI CC2652R1 2.4 GHz multi-protocol wireless microcontroller targeting Thread, Zigbee, Bluetooth 5 Low Energy, IEEE 802.15.4g, IPv6-enabled smart objects (6LoWPAN) and proprietary systems; Communicates with the host computer via the common CH340 USB-UART bridge, no manual driver installation needed in most cases (Windows and Linux); Self-programming via the TI CC-series serial bootloader. As long as it is not explicitly disabled in code, no external programmer needed! Pushbutton on the default pin to trigger this mode; cJTAG debug header, in case you disable BSL by accident or want a proper debug interface; SMA antenna port for an external antenna of your choice

(tags: ha hardware toget gadgets zha home home-assistant zigbee bluetooth ble usb)

I’m leading a long Covid trial – it’s clear Britain has underestimated its impact | Amitava Banerjee | The Guardian

There’s long been a problem in the UK with treatment of diseases like ME/CFS, where doctors have seemed to be attempting to tell sufferers that it’s “all in their mind”. This article is good on causes, such as this:

An outdated classification distinguishes diseases as “organic” or “functional”. Organic conditions, such as heart attacks, rheumatoid arthritis and bowel cancer are those that cause changes detectable by investigations such as blood tests or scans. Functional conditions, such as irritable bowel syndrome and chronic fatigue syndrome, do not necessarily cause changes detectable by tests, or the right test may not yet be available. Stigma and misconceptions arising from this classification may lead to functional conditions being overlooked, which is surely familiar to many with long Covid.

(tags: long-covid disease medicine uk health me-cfs gaslighting)

Safely Backup Google Photos

pretty simple tools on Ubuntu, from the looks of it

(tags: backup linux photos archival ubuntu)

Association between vaccination status and reported incidence of long COVID-19

_Association between vaccination status and reported incidence of post-acute COVID-19 symptoms in Israel: a cross-sectional study of patients tested between March 2020 and November 2021_: ‘Conclusions: Vaccination with at least two doses of COVID-19 vaccine was associated with a substantial decrease in reporting the most common post-acute COVID-19 symptoms, bringing it back to baseline. Our results suggest that, in addition to reducing the risk of acute illness, COVID-19 vaccination may have a protective effect against long COVID. ‘ (via Rob)

(tags: via:rsynnott long-covid covid sars-cov-2 papers israel vaccines vaccination)

Hacking the Silvercrest (Lidl) Smart Home Gateway

The process of rooting this little IOT gadget, written up

(tags: reverse-engineering hacking gadgets iot lidl home home-assistant)

Prof. Akiko Iwasaki Twitter thread on a significant long COVID paper

‘Significant long-term neurologic damage can occur after a mild respiratory-only SARS-CoV-2 infection.’ […] ‘In a nutshell, this study illustrates that respiratory-only mild SARS-CoV-2 infection can lead to detrimental changes in the brain, likely mediated by inflammatory factors. Similar neuropathobiology may be shared in chemo-brain, post-ICU syndrome and ME/CFS.’

(tags: neurology long-covid papers medicine health me cfs inflammation cytokines)

Reverse Engineering Nike Run Club Android App Using Frida

walkthrough of using Frida to decompile, hook into and reverse an Android app

(tags: android scripting frida reverse-engineering security mobile)

Immunological dysfunction persists for 8 months following initial mild-to-moderate SARS-CoV-2 infection | Nature Immunology

Nature Immunology paper on Long COVID, suggesting a clear physiological syndrome, and a set of reliable biomarkers that may be usable to diagnose it:

In summary, our data indicate an ongoing, sustained inflammatory response following even mild-to-moderate acute COVID-19, which is not found following prevalent coronavirus infection. The drivers of this activation require further investigation, but possibilities include persistence of antigen, autoimmunity driven by antigenic cross-reactivity or a reflection of damage repair. These observations describe an abnormal immune profile in patients with COVID-19 at extended time points after infection and provide clear support for the existence of a syndrome of LC. Our observations provide an important foundation for understanding the pathophysiology of this syndrome and potential therapeutic avenues for intervention.

(tags: nature papers covid-19 sars-cov-2 long-covid t-cells immunology)

Fever is good for you

Fever — the feeling of having a high temperature, sweats, shivering etc. — is actually a *good* thing:

Fever is preserved evolutionarily, suggesting benefit; There is a metabolic cost to fever which may partly explain why we’re not just evolving to be hotter; The benefit relates to its direct anti-pathogen effects and its ability to augment innate and adaptive immunity; Antipyretics are overused.

(tags: fever temperature body health medicine rcts metabolism trials)

The State of Web Scraping 2022

Blog post from ScrapeOps.io (whoever they are). Interesting to see where web scraping has gone over the years — looks like an arms race has taken place:

Websites and anti-bot providers have continued to develop more sophisticated anti-bot measures. They are increasingly moving away from simple header and IP fingerprinting, to more complicated browser and TCP fingerprinting with webRTC, canvas fingerprinting and analysing mouse movements so that they can differentiate automated scrapers from real-users. But as of yet no anti-bot has found the magic bullet to completely prevent web scrapers. With the right combination of proxies, user agents and browsers, you can scrape every website. Even those that seem unscrapable. However, whilst scraping a website might be still possible, anti-bots can make it not worth the effort and cost if you have to resort to ever more expensive web scraping setups (using headless browsers with residential/mobile IP networks, etc).

(tags: scraping web bots arms-races web-scraping)

Tek Fog in Action

“Investigating claims behind the use of ‘Tek Fog’, a sophisticated app used by political operatives affiliated with the Bharatiya Janata Party to drive propaganda at scale in India.” This is grim stuff — a custom app to bulk-post harassment en masse on various social media platforms, targeting women and driving right-wing pro-BJP spam. Can’t imagine this methodology will stay in India in future, either.

(tags: india tek-fog grim-meathook-future spam abuse harassment bjp politics social-media)

Long COVID in a very large Norwegian cohort study

New preprint, “Excess risk and clusters of symptoms after COVID-19 in a large Norwegian cohort”: ‘Physical, psychological and cognitive symptoms have been reported as post-acute sequelae for COVID-19 patients but are also common in the general, uninfected population. We aimed to calculate the excess risk and identify patterns of 22 symptoms up to 12 months after COVID-19 infection. We followed more than 70,000 participants in an ongoing cohort study, the Norwegian Mother, Father and Child Cohort Study (MoBa) during the COVID-19 pandemic. Infected and noninfected cohort participants registered presence of 22 different symptoms in March 2021. One year after the initial infection, 13 of 22 symptoms were associated with SARS-CoV-2 infection, based on relative risks between infected and uninfected subjects. For instance, 17.4% of SARS-CoV-2 infected cohort participants reported fatigue that persist 12 months after infection, compared to new occurrence of fatigue that had lasted less than 12 months in 3.8% of non-infected subjects (excess risk 13.6%). The adjusted relative risk for fatigue was 4.8 (95 % CI 3.5 to 6.7). Two main underlying factors explained 50% of the variance in the 13 symptoms. Brain fog, poor memory, dizziness, heart palpitations, and fatigue had high loadings on the first factor, while shortness of breath and cough had high loadings on the second factor. Lack of taste and smell showed low to moderate correlation to other symptoms. Anxiety, depression and mood swings were not strongly related to COVID-19. Our results suggest that there are clusters of symptoms after COVID-19 due to different mechanisms and question whether it is meaningful to describe long COVID as one syndrome.’ The participants were all unvaccinated, so hopefully vaccination has a decent protective effect…

(tags: covid-19 long-covid papers medicine norway preprints)

sibbl/hass-lovelace-kindle-screensaver

‘generates a PNG from a Home Assistant Lovelace view, which can be displayed on a Kindle device which has the Online Screensaver plugin installed.’ There’s a lovely demo at https://www.reddit.com/r/homeassistant/comments/s0m4b9/kindle_eink_home_info_display/ — although I’d be pretty worried about Kindle updates bricking the jailbreak. In my experience Amazon devices are not very jailbreak-friendly.

(tags: jailbreaking kindle homeassistant devices gadgets home)

Mute Twitter’s built-in timeline spam

‘Here are some terms to mute on Twitter to clean your timeline up a bit.’ (via Philip Boyle)

(tags: timeline twitter muting killfile spam)

OpenEnergyMonitor

a possible home automation project, ideally after solar PV installation — lots of opportunity to measure and optimize the home energy setup

(tags: energy iot mqtt open-source solar power home home-automation)

Kiwix

An offline reader for […] Wikipedia, Project Gutenberg, or TED Talks. It makes knowledge available to people with no or limited internet access. The software as well as the content is free to use for anyone.

(tags: kiwix developing-world wikipedia project-gutenberg compression apps mobile tech)

Spotting a Fake Respirator

How to spot a fake N95/KN95/FFP2 face mask, based on markings on the masks themselves

(tags: fakes shopping n95 kn95 ffp2 face-masks respirators)

_SARS-CoV-2 on surfaces and HVAC filters in dormitory rooms_

Interesting new preprint on fomite transmission of SARS-CoV-2 from Linsey Marr et al. tl;dr: “SARS-CoV-2 RNA was found on more than half of surface samples and HVAC filters in dormitory rooms [housing students who were in quarantine or isolation]; the virus was not infectious.”

(tags: fomites transmission covid-19 sars-cov-2 surfaces university students dormitories linsey-marr)

Mass rapid tests in Liverpool cut hospital stays by a third

Rapid antigen tests, deployed carefully to include serial testing of presymptomatic and asymptomatic people, saved lives:

An analysis has shown that it was more successful than Liverpool’s scientists and public health teams had anticipated, after they compared Covid cases and outcomes in the region with other parts of England. Professor Iain Buchan, dean of the Institute of Population Health, who led the evaluation, said: “This time last year, as the Alpha variant was surging, we found that Liverpool city region’s early rollout of community rapid testing was associated with a 32% fall in Covid-19 hospital admissions after careful matching to other parts of the country in a similar position to Liverpool but without rapid testing. “We also found that daily lateral flow testing as an alternative to quarantine for people who had been in close contact with a known infected person enabled emergency services to keep key teams such as fire crews in work, underpinning public safety.”

(tags: rapid-tests antigen-tests testing covid-19 sars-cov-2 liverpool public-health lfts serial-testing)

What’s New in ClickHouse 21.12

HN thread on the latest release of ClickHouse is extremely positive about this Yandex-built open-source time series storage system. One to keep an eye on

(tags: clickhouse time-series yandex storage databases via:hn)

good explainer diagram on COVID-19 disease progression and testability

from Dr. Michael Mina:

RAPID TESTS DO WORK WITH OMICRON “But why are some people staying negative in the first days they have symptoms??” This is expected. Symptoms don’t mean contagious virus. This is literally a reflection of the fact that vaccines are doing their job!

(tags: disease covid-19 sars-cov-2 vaccines timeline michael-mina rapid-tests antigen-tests pcr)

Brian Eno on NFTs & Automatism

I’ve been approached several times to ‘make an NFT.’ So far nothing has convinced me that there is anything worth making in that arena. ‘Worth making’ for me implies bringing something into existence that adds value to the world, not just to a bank account. If I had primarily wanted to make money I would have had a different career as a different kind of person. I probably wouldn’t have chosen to be an artist. NFTs seem to me just a way for artists to get a little piece of the action from global capitalism, our own cute little version of financialisation. How sweet – now artists can become little capitalist assholes as well.

(tags: brian-eno eno nfts crypto capitalism music art)

The CFS quota container throttling problem

Well, this is quite a messy one:

Almost all services at Twitter run on Linux with the CFS scheduler, using CFS bandwidth control quota for isolation, with default parameters. The intention is to allow different services to be colocated on the same boxes without having one service’s runaway CPU usage impact other services and to prevent services on empty boxes from taking all of the CPU on the box, resulting in unpredictable performance, which service owners found difficult to reason about before we enabled quotas. The quota mechanism limits the amortized CPU usage of each container, but it doesn’t limit how many cores the job can use at any given moment. Instead, if a job “wants to” use more than that many cores over a quota timeslice, it will use more cores than its quota for a short period of time and then get throttled, i.e., basically get put to sleep, in order to keep its amortized core usage below the quota, which is disastrous for tail latency1. Since the vast majority of services at Twitter use thread pools that are much larger than their mesos core reservation, when jobs have heavy load, they end up requesting and then using more cores than their reservation and then throttling. This causes services that are provisioned based on load test numbers or observed latency under load to over provision CPU to avoid violating their SLOs. They either have to ask for more CPUs per shard than they actually need or they have to increase the number of shards they use.

(tags: cgroups kubernetes linux k8s cfs scheduling containers quotas)

The Web3 Fraud | USENIX

By now effectively all ;login:’s readers have heard the term “web3” and “dapps” bandied about as if they are some great revolution.  They are not.  The technical underpinnings are so terrible that it is clear they exist only to hype the underlying cryptocurrencies.  The actual utility of these “decentralized” systems is already available in modern distributed systems in ways that are several orders of magnitude more efficient and more capable.

(tags: bitcoin criticism cryptocurrency web3 crypto ethereum hype scams dapps)

Consumer warranties and statutory rights

wow, I didn’t realise we had statutory right to redress for faulty goods for 6 years:

Statutory rights are provided for by legislation (Irish law and EU law as transposed in Ireland). These act as a kind of “legal guarantee”, entitling consumers to seek redress where an item is faulty. Consumers may rely on their statutory rights regardless of whether an item has a warranty or not. Under Irish law, consumers have up to six years to seek redress for faulty or defective items (both new and second-hand). If the product is defective, the seller is generally responsible for providing redress. If a fault arises within six months of purchase, it is presumed to have existed at the time of purchase. For this reason, the consumer should not have to provide proof of the defect. If the fault arises more than six months after purchase, the seller may request that the consumer prove the fault did not arise as a result of misuse – for instance, by obtaining a report from an independent expert. Where an item is faulty, the seller may first offer a repair or replacement item. If this is not possible or fails to correct the problem, a refund may then be provided. Remedies for faulty goods must be provided free of charge.

(tags: rights repair support defective-goods guarantee warranty defects ireland eu)

Web3 is going just great

the ongoing shitfest that is crypto/NFTs

(tags: blockchain crypto cryptocurrency nfts shitfest web3)

rTMS RCT produces excellent results

This is pretty amazing:

A recent randomized control trial, published in The American Journal of Psychiatry, shows astounding results are possible in five days or less. Almost 80% of patients crossed into remission — meaning they were symptom-free within days. This is compared to about 13% of people who received the placebo treatment. Patients did not report any serious side effects. The most common complaint was a light headache. […] “This study not only showed some of the best remission rates we’ve ever seen in depression,” said Shan Siddiqi, a Harvard psychiatrist not connected to the study, “but also managed to do that in people who had already failed multiple other treatments.” Siddiqi also said the study’s small sample size, which is only 29 patients, is not cause for concern. “Often, a clinical trial will be terminated early [according to pre-specified criteria] because the treatment is so effective that it would be unethical to continue giving people placebo,” said Siddiqi. “That’s what happened here. They’d originally planned to recruit a much larger sample, but the interim analysis was definitive.”

(tags: depression fmri health neuroscience medicine rtms brain rcts)

Bug #1624320 “systemd-resolved appends 127.0.0.53 to resolv.conf…” : Bugs : systemd package : Ubuntu

Wow; recent Ubuntu versions force name resolution to operate via the systemd-resolved DNS resolver, which has some pretty major bugs and omissions:

This bug just compromised every ubuntu machine on my network. It falsely says that DNSSEC is not supported by the nameserver and resorts to non-DNSSEC resolution. So every machine on my network just accepted bogus DNS replies from a MITM. Thanks.

(tags: systemd fail dns dnssec mitm security resolvers ubuntu bugs linux)

Birds Aren’t Real, or Are They? Inside a Gen Z Conspiracy Theory

This is glorious. Well done, this chap… very reminiscent of the Subgenii

(tags: birds conspiracies qanon funny birds-arent-real us-politics)

The Stockdale Paradox

On the one hand, they stoically accepted the brutal facts of reality. On the other hand, they maintained an unwavering faith in the endgame, and a commitment to prevail as a great company despite the brutal facts. [..] “I never lost faith in the end of the story,” [Stockdale] said, when I asked him. “I never doubted not only that I would get out, but also that I would prevail in the end and turn the experience into the defining event of my life, which, in retrospect, I would not trade.” I didn’t say anything for many minutes, and we continued the slow walk toward the faculty club, Stockdale limping and arc-swinging his stiff leg that had never fully recovered from repeated torture. Finally, after about a hundred meters of silence, I asked, “Who didn’t make it out?” “Oh, that’s easy,” he said. “The optimists.” “The optimists? I don’t understand,” I said, now completely confused, given what he’d said a hundred meters earlier. “The optimists. Oh, they were the ones who said, ‘We’re going to be out by Christmas.’ And Christmas would come, and Christmas would go. Then they’d say, ‘We’re going to be out by Easter.’ And Easter would come, and Easter would go. And then Thanksgiving, and then it would be Christmas again. And they died of a broken heart.” Another long pause, and more walking. Then he turned to me and said, “This is a very important lesson. You must never confuse faith that you will prevail in the end—which you can never afford to lose—with the discipline to confront the most brutal facts of your current reality, whatever they might be.” To this day, I carry a mental image of Stockdale admonishing the optimists: “We’re not getting out by Christmas; deal with it!”

(tags: paradoxes jim-stockdale stoicism philosophy optimism pessimism)

The Irish family who added to the Australian vernacular

Great bit of Aussie/Irish etymology:

When the first World War broke out in 1914, Furphy water carts were used to bring water to Australian troops in Australia, Europe and the Middle East.. Soldiers would gather round the Furphy to get a drink and to have a chat, telling jokes and tall stories. That gave rise to the use of the word Furphy as a rumour or a false report which continues to the present day. The two companies, Furphy Foundry and J Furphy and Sons remain after five generations in family ownership and continue to produce many products including watercarts, all of which proudly bear the name “Furphy” in prominent lettering.

(tags: furphy ireland australia etymology words history)

Bros., Lecce: We Eat at The Worst Michelin Starred Restaurant, Ever

This is hilarious: ‘Recommendation: Do not eat here. I cannot express this enough. This was single-handedly one of the worse wastes of money in my entire food and travel writing career bwah ha ha ha ha ha ha oh my god’ Top comment: ‘I’ve eaten there! It was, hands down, the WORST dining experience I’ve ever had — and I’ve eaten at a place where the food was so disgusting, I ended up vomiting on the table. It was worse than that.’

(tags: dining food funny lecce sicily holidays michelin)

Discovering related sites by tracing shared ad accounts

Nice process using https://well-known.dev/ . Very handy for tracing undisclosed links between astroturf political pressure groups, in particular

(tags: web politics astroturf investigation ads google-ads advertising)

Life360 sells kids’ location data to “approximately a dozen data brokers”

This is shocking: Wolfie Christl says “Life360, a popular family safety app used by 33 million people worldwide, has been marketed as a great way for parents to track their children’s movements.” Also, it sells “data on kids’ and families’ whereabouts to approximately a dozen data brokers”. Former employees of data brokers “described Life360 as one of the largest sources of data for the industry” — “A former X-Mode engineer said the raw location data the company received from Life360 was among X-Mode’s most valuable offerings”. X-Mode sold data to the US military. An app that claims to be a family safety service selling exact location data to several other companies, this is a total disaster. It would be a problem if it’s any other app, and it’s even more a problem when it’s an app that claims to be a family safety service. Selling data on children to companies who sell to the military is probably the most extreme form of decontextualizing sensitive data for profit.” Life360 are now planning to buy Tile.

(tags: refractive-surveillance surveillance children privacy data-privacy location gps life360 tile data-brokers)

An upper bound on one-to-one exposure to infectious human respiratory particles | PNAS

Masks just work:

Our results show that face masks significantly reduce the risk of SARS-CoV-2 infection compared to social distancing. We find a very low risk of infection when everyone wears a face mask, even if it doesn’t fit perfectly on the face.

(tags: masks covid-19 papers face-masks infection)

Ikea Vindriktning Air Quality Sensor Review and Accuracy

‘Ikea recently came out with a range of air purifiers and also an air quality sensor. The Vindriktning does not have a display but shows the air quality data in the form of a traffic light with red, yellow and green LEDs. One of the most striking features is actually the price as it costs only around EUR 10 depending where you live. It looks very nice and the build quality is quite good but this article will look beyond the looks and see how good it is at actually measuring the air quality.’ The results are mixed: ‘I really want to like the Vindriktning! It has a great built quality and price and is very simple to use. The addition of a small fan to improve the air flow through the sensor is a good upgrade and shows that Ikea wants to provide accurate measurements — even with a cheap sensor. However, the defined cut off values for the air quality and its description as “Good”, “OK”, and “Not Good” are not based on science or international recommendations and create the false understanding that the air is good, when in fact it is not good at all. I do hope that in one of the next upgrades of the Vindriktning, Ikea will bring its traffic light indicators more in line with WHO recommendations on healthy air quality.’ Personally, this sounds useful — as long as one remembers that the “OK” air quality level is in fact well into the “unhealthy” zone. Bit mysterious as to why IKEA made this choice though…

(tags: ikea air-quality pm2.5 pm10 particulates home devices gadgets)

The Labyrinth Stone

In medieval times the labyrinth underwent a revival and became primarily a symbol of pilgrimage, and in particular pilgrimage to the holy shrine of Jerusalem (Coleman & Elsner 1995, 112). Shortly after the loss of Jerusalem to the Muslims in the twelfth century, large labyrinths of mosaic or paving stones were incorporated into the western nave bays of a number of European cathedrals in the twelfth and thirteenth centuries (Connolly 2005, 286). [….] By walking, or in some cases crawling on their knees, along the labyrinth, pilgrims could perform an imagined pilgrimage to Jerusalem (Westbury 2001, 51-52).

(tags: pilgrimage history labyrinths mazes via:neil-jackman)