sylver_dragon

And through inaction said public is consenting to be ruled by nasty Christian predators.
How (and/or what) should thoughtful people think about the public’s consent to be ruled by elite Epstein class pedophiles?

The world isn’t quite as black and white as you want to make it out. And the range of possible responses do not exist in isolation.
Let’s start with the absurd response of “Annie, grab your gun and let’s go overthrow the government”. This would stupid on so many levels. First and foremost is the simple unlikelihood of success. While the wars in Vietnam and Afghanistan have demonstrated that the overwhelming force of the US Military has problems dealing with a dedicated insurgency, such insurgencies require a fanatical level of dedication on the part of the insurgents. Do you really think you and a million of your closest friends area ready to get blown apart by an Apache Gunship to force Trump out of office? So this is just a dumb idea.

Moving on, you could always just go for targeted assassinations. You can be John Wilkes Booth all over again, though I don’t suspect Trump is as much a fan of live plays as Lincoln was. Maybe stalk him to a McDonalds? Ignoring all the logistical issues of actually getting to and assassinating a sitting President, it’s not like you would get much done. JD Vance isn’t all that much better (couches everywhere beware!), and the GOP has demonstrated that they are quite willing to keep coughing up horrible people for leadership positions. Really, the problem here is that we have a very divided country at the moment and a significant enough part of the electorate is just fine with a rapist, pedophile grifter as President.

So, let’s take political violence off the table. The best outcome it offers is a civil war with maybe your side winning and maybe the US under the direct control of Ya’ll Qaeda. Or worse, a balkanized US locked in a modern version of the Hundred Years War.

That leaves us with civil disobedience, general strikes and other protests. And I don’t want to downplay the impact these things can have; however, the US is a large, diverse place. A general strike in one State is unlikely to have a major impact in another. And coordinating a general strike across the entire US is very, very hard. Maybe that is the answer to your question, but the fact that it hasn’t been done yet lends some credence to the idea that it’s not really possible. If you think this is what is needed, then by all means, get out and start trying to organize one. Or work with existing groups to try and get one going, I wish you the best of luck, but I’m not going to be putting money down on your chances of success. Protests and civil disobedience can get attention, though that will only get you so far.

All that above leaves the quiver pretty empty. And I’m going to point out the answer you don’t want to hear and will complain about: organize, advocate and vote when the option becomes available. Yes, the GOP has been running full throttle trying to hijack elections. And working within the American Democracy is slow, marginally effective at best and endlessly frustrating. But, unless you think you have the gumption to win a civil war (you almost certainly don’t), this is the system of government for the United States for the foreseeable future. It’s a terrible system, but better than the other stuff humans have tried.

Of course, that means you are also stuck in the situation of “through inaction said public is consenting to be ruled by nasty Christian predators”. And that is partly true. One of the downsides of democracy and elections is that the people you disagree with will occasionally get into power and be able to push their ideas on society. That’s part of what it means to live in a functioning democracy. That the whole thing doesn’t devolve into civil war the minute one side or the other loses. We have boundaries written into law which define exactly how far any one party can go in implementing its agenda while in power. And we have some levers for the out of power party to push back on. But, the system is built on the idea that the peaceful transfer of power between parties who disagree is a far sight better than the non-peaceful transfer of power whenever one side of the other manages to out-violence the other.

So ya, I hate that it’s true, but since I value a stable democracy, I consent to the orange shit running the country. Because the alternative isn’t some left-wing utopia, it’s constant civil war. If we want our country to look more like a left-wing utopia, we need to win enough people over to our ideas and implement those ideas when we hold power. It’s not hopeless, and it all entirely possible. But, it’s easy to just complain, give up and scream into the void that “voting never fixes anything”. But cynicism doesn’t solve problems, hard work does. And hard work isn’t fun, it isn’t sexy and it doesn’t play well on social media.

This is a bit over-wrought. The important question this article doesn’t deal with is: what are those FTP servers hosting? If it’s anything which should be secured, that is a problem. But, if all it is, is a public file repository, then the extra complexity of SFTP or FTPS probably isn’t worth the trouble. My current company has an FTP server which is exactly this. It hosts product documentation and is meant to be public. While they probably should have moved on and just dumped all of it in an S3 bucket with public read, the FTP server is what our customers know and have used for decades. If it ain’t broke and the security isn’t a problem, it’s not really a priority.

That does seem like bad design. If it’s causing you and your team an inordinate amount of time to constantly re-login, you may want to go up your management chain and try to quantify it. e.g. in an 8 hour day, you would expect to re-login around 24 times in the day. If that takes an average of 2 minutes per login that 48 minutes per day. Across 260 days (assuming a standard work year), that’s 12,480 minutes per year or 208 hours. Multiply that by the rate it costs to keep you employed. This includes both your pay and all the costs of employment, the common rule of thumb is to multiply your hourly rate by 2. So, if you’re paid ~$50/hr then it costs ~$100/hr to keep you employed. So, 208 hours of your time is costing the company ~$20,800/yr of lost productivity. That’s a significant amount of lost productivity and that is only accounting for 2 minutes per login and not the lost time as you deal with mental context switching. It’s not a cheap cost and is not increasing security by all that much.

Is the expiration every 20 minutes, no matter what; or, is the expiration after 20 minutes of inactivity? The two have different answers. The former sounds like a misconfiguration and you may want to reach out to your IT team and ask them about it, sometimes mistakes are made and it could just be you having a strange problem. The latter is pretty common and does serve a purpose. Inactivity timers deal with the issue of people logging in, and then walking away from their system. This is common enough that solutions like inactivity timers are used. There are cases where this is a problem and they need to be disabled, but those will usually be policy exceptions and will need to be requested and documented.

If you’re getting logged out of your system every 20 minutes, that really sounds like a bug and not a security feature. Get in touch with your IT and/or security team about it.