This resonated hugely with me, with the grand addition that I moved to a different country a week before COVID lockdown. I’ve since reached a lot of pretty big life milestones (house, career, spouse, kid (soon)) and realised my life was still pretty empty because I’m not the introvert I once thought I was.
What I’m personally missing is the social capital. “Just invite people to stuff” doesn’t work, because my prior in-person social network is fragmented over 3 continents and many more countries and time zones. Minting new social capital is difficult - joining social events requires an invite to a social event to meet other people to start the process.
The problem is far more nuanced than the internet simply becoming too centralised.
I want to host my gas station network’s air machine infrastructure, and I only want people in the US to be able to access it. That simple task is literally impossible with what we have allowed the internet to become.
FWIW I love Cloudflare’s products and make use of a large amount of them, but I can’t advocate for using them in my professional job since we actually require distributed infrastructure that won’t fail globally in random ways we can’t control.
> and I only want people in the US to be able to access it. That simple task is literally impossible with what we have allowed the internet to become.
Is anyone else as confused as I am about how common anti-openness and anti-freedom comments are becoming on HN? I don’t even understand what this comment wants: Banning VPNs? Walling off the rest of the world from US internet? Strict government identity and citizenship verification of people allowed to use the internet?
It’s weird to see these comments get traction after growing up in an internet where tech comments were relentlessly pro freedom and openness on the web. Now it seems like every day I open HN and there are calls to lock things down, shut down websites, institute age (and therefore identify) verification requirements. It’s all so foreign and it feels like the vibe shift happened overnight.
> Is anyone else as confused as I am about how common anti-openness and anti-freedom comments are becoming on HN?
In this specific case I don't think it's about being anti-open? It's that a business with only physical presence in one country selling a service that is only accessible physically inside the country.... doesn't.... have any need for selling compressed air to someone who isn't like 15 minutes away from one of their gas stations?
If we're being charitable to GP, that's my read at least.
If it was a digital services company, sure. Meatspace in only one region though, is a different thing?
> In this specific case I don't think it's about being anti-open? It's that a business with only physical presence in one country selling a service that is only accessible physically inside the country.... doesn't.... have any need for selling compressed air to someone who isn't like 15 minutes away from one of their gas stations?
But that person might be physically further away at the time they want to order something or gather information etc. Maybe they are on holidays in Spain and want to access their account to pay a bill. Maybe they are in Mexico on a work trip and want to help their aunt back home to use some service for which they need to log in from abroad.
The other day I helped a neighbor (over here in Europe) prepare for a trip to Canada where he wanted to make adjustments to a car sharing account. The website always timed out. It was geofenced. I helped him set up a VPN. That illustrated how locked in this all has become, geofencing without thinking twice.
I guess GP didn't provide enough info, but to me it looked like it was the underlying infra that is networked
That is I'm assuming:
1. Customers are meatspace only, never use any computer interface
2. The network access is for administration only
3. That administration is exclusively in the US
That's the most obvious answer but if that's the case then restricting to "US" is way too wide in the general case and also too narrow if an employee takes a trip to another country and tries to check in. That simple task is fundamentally flawed to the point it's not worth worrying about.
> It’s all so foreign and it feels like the vibe shift happened overnight.
The cultural zeitgeist around the internet and technology has changed, unfortunately. But it definitely didn't happen overnight. I've been witnessing it happen slowly over the past 8-10 years, with it accelerating rapidly only in the last 5.
I think it's a combination of special interest groups & nation states running propaganda campaigns, both with bots and real people, and a result of the internet "growing up." Once it became a global, high-stakes platform for finance and commerce, businesses took over, and businesses are historically risk averse. Freedom and openness is no longer a virtue but a liability (for them).
> I want to host my gas station network’s air machine infrastructure, and I only want people in the US to be able to access it. That simple task is literally impossible with what we have allowed the internet to become.
That task was never simple and is unrelated to Cloudflare or AWS. The internet at a fundamental level only knows where the next hop is, not where the source or destination is. And even if it did, it would only know where the machine is, not where the person writing the code that runs on the machine is.
Genuine question - why are you spending time and effort on geofencing when you could spend it on improving your software/service?
It takes time and effort for no gain in any sensible business goal. People outside of US won't need it, bad actors will spoof their location, and it might inconvenience your real customers.
And if you want a secure communication just setup zero-trust network.
Isn't that exactly the point? Why are North Korean hackers even allowed to connect to the service, and why is spoofing location still so easy and unverifiable?
Nobody is expected to personally secure their physical location against hostile state actors. My office is not artillery proof, nor does it need to be: hostile actions against it would be an act of war and we have the military to handle those kind of things. But with cybersecurity suddenly everyone is expected to handle everyone from the script kiddie next door to the Mossad. I see the point in OPs post: perhaps it would be good if locking down were a little easier than "just setup zero-trust network".
> Why are North Korean hackers even allowed to connect to the service,
Asking why some group is “allowed” to use the internet is equivalent to demanding either strict verification or that we cut off some entire country where they reside from the entire internet.
Either that, or someone doesn’t understand basic fundamentals of networking and thinks there’s some magic solution to this problem.
A common variation of this comment is “why do we allow kids to access <insert topic here>” with demands that something be done about it. Then when something is done about it, there is shock and outrage upon realizing that you can’t filter out children without forcing identity verification upon everyone. Similar vibes here, just replace age with demographic.
North Korea in particular is weird because of sanctions, but pick any country in Europe instead: The user might be a past or future visitor to the gas station and need to access the system even if they're outside the US right now. Or maybe they're actually at the gas station but their phone's data is based in Europe.
Even accurate country tracking is flawed in most situations.
If the goal is specifically "is at the gas station right now" then maybe there's a gap in functionality here, but you could make them connect to the wifi.
Also country-sponsored hackers can easily get a real presence in the US. If country level geoblocking became perfect, they wouldn't be slowed down for more than a week.
Just because one group of attackers is (/might be) inside your network doesn't mean you also have to let all other groups in. There is zero reason to let (say) North Koreans interact with your gas pump API, other than that the internet is set up so that it is virtually impossible to prevent unfriendly parties from contacting your servers.
but you can be secure from all at the same time with similar effort, meanwhile most actual attacks that lead to damages come from the inside the network?
not a sysadmin here. why wouldn't this be behind a VPN or some kind of whitelist where only confirmed IPs from the offices / gas stations have access to the infrastructure?
In practice, many gas stations have VPNs to various services, typically via multiple VPN links for redundancy. There’s no reason why this couldn’t be yet another service going over a VPN.
Gas stations didn’t stop selling gas during this outage. They have planned for a high degree of network availability for their core services. My guess is this particular station is an independent or the air pumping solution not on anyone’s high risk list.
Literally impossible? On the contrary; Geofencing is easy. I block all kind of nefarious countries on my firewall, and I don't miss them (no loss not being able to connect to/from a mafia state like Russia). Now, if I were to block FAMAG... or Cloudflare...
Yes, literally impossible. The barrier to entry for anyone on the internet to create a proxy or VPN to bypass your geofencing is significantly lower than your cost to prevent them.
I don’t even understand where this line of reasoning is going. Did you want a separate network blocked off from the world? A ban on VPNs? What are we supposed to believe could have been disallowed to make this happen?
There are a lot of lists around for known VPN endpoints and datacenter IP address ranges, that people use to reduce error rates in ip address to location lookups. That cannot possibly itself be 100% effective, but it can probably drop the error rate of semi-technical users switching their VPN location to circumvent your geo blocking by an order of magnitude or two. It certainly won't stop a sufficiently motivated technical of malicious user.
Actually, the 140k Tor exit nodes, VPNs, and compromised proxy servers have been indexed.
It takes 24 minutes to compile these firewall rules, but the black-list along with tripwires have proven effective at banning game cheats. Example, dropping connections from TX with a hop-count and latency significantly different from their peers.
Preemptively banning all bad-reputation cloud IP ranges except whitelisted hosts has zero impact on clients. =3
I don't have a filter list for compromised proxy servers and VPNs. Do you have a link? I'd be interested in logging such. For Tor, I use [1] (formats in json, txt, md) on OPNsense, but I've also been able to indeed simply parse ASNs (which I currently use for "Twitter, Inc.").
> Preemptively banning all bad-reputation cloud IP ranges except whitelisted hosts has zero impact on clients. =3
This. There's outbound and inbound, and it is very unlikely your print server requires connections from Russia or China (to name an example). You're probably better off making a whitelist, jumphost, or using a VPN with proper authentication to access your services.
Outbound, now that is more difficult to assess. On a desktop, I like a personal firewall for that purpose. Little Snitch on macOS and Open Snitch on Linux have helped me a lot here, but ultimately your hardware firewall is probably lenient on outgoing connections, when you should ask yourself does my network require this, or are they better off with only a HTTP(S) proxy by default?
>I don't have a filter list for compromised proxy servers and VPNs.
Someone just joined the nuisance forums, and grabs the same Socks/Telegram proxy list they all use (mostly old infected/open servers.) When it comes to firewall rules it is a sensitive matter, and depends on the firewall setup (black-hole bans are generally considered rude, as even handshakes are lost.)
Sanitizing IP lists both before and after parsing is important, and checking for malformed or whitelisted blocks is wise.
>Outbound, now that is more difficult to assess
SELinux and firewall rules will handle that just fine for services, but is cumbersome for desktop users. In general, most just try "unshare -r -n /home/$USER/someApp" or a sandbox/VM to prevent some useful user-space program from connecting to the web.
Dumping local traffic with wireshark or iftop is also rather common practice.
I don't understand why you want to allow any random guy anywhere in the US but not people country hopping on VPNs. For your air machine infrastructure.
It's a bit weird that you can't do this simple thing, but what's the motivation for this simple thing?
It is definitely "literally impossible" if your acceptable false positive and false negative rates are zero.
Having said that, vanishingly few companies/projects require that. For probably 99+% of websites, just using publicly available GeoIP databases to block countries will work just fine, so long as you don't pretend to yourself that North Korean or Chinese or Russian (or wherever) web users (or attackers) cannot easily get around that. And you'll also need to accept that occasionally a "local/wanted" user will end up with an IP address that gets blocked due to errors in the database.
I worked on a project a decade or so back where we needed to identify which (Australian) state a website user was in, to correctly display total driveaway prices including all state taxes/charges (stamp duty, ctp insurance, and registration) for new cars. The MaxMind GeoIP database was not all that accurate at a state or city level, especially for mobile devices with CGNATed IP addresses. We ended up with "known errors and estimates of error rates", and a way for our Javascript to detect some of the known problems (like Vodafone's national CGNAT IP addresses) and popped up a "We detected you're in NSW, and are displaying NSW pricing. Click here to change state." message where we could, and got legal signoff that we could claim "best effort" at complying with the driveway price laws. 100% compliance with the laws as-written was "literally impossible" with zero error rates.
Client side SSL certificates with embedded user account identification are trivial, and work well for publicly exposed systems where IPsec or Dynamic frame sizes are problematic (corporate networks often mangle traffic.)
Accordingly, connections from unauthorized users is effectively restricted, but is also not necessarily pigeonholed to a single point of failure.
I was a bit shocked when my mother called me for IT help and sent me a screenshot of a Cloudflare error page with Cloudflare being the broken link and not the server. I assumed it's a bug in the error page and told her that the server is down.
I absolutely hate companies thinking they are being smart by blocking foreign IPs from using their websites.
Every single time I want to order a burger from the local place, I have to use a VPN to fake being in the country (even though I actually am already physically here) so that it will let me give them my money.
My phone's plan is not from here, so my IP address is actually not geographically in the same place as me.
I get your gripe, but the free protection that Cloudflare offers automatically often far exceeds the effort required to thwart some random script kiddie’s attacks on my client’s Wordpress site. Add easy caching, tunnels, automated certificate management, etc. to that and it’s obvious why a lot of sites use them.
I thought Google was _always_ like this. At least going back to 2015 when I left the ISP game, peering with them was notoriously difficult if you didn't have the traffic volumes required. Our network suffered from asynchronous routing to Google and Netflix for years because they refused to allow our routes despite checking all the boxes they require. Customers eventually left because other (larger) ISPs didn't have this issue.
I get why the enshittification of IXPs is occurring. Over the years many small and careless ISPs have caused issues for IXPs (and peers) based on what I've seen on mailing lists. It's hard work managing many hundreds or thousands of peers, let alone the equipment cost with multi-100Gbit ports becoming the norm for larger providers.
Google publishes a peering policy. It's reasonable to expect that they will peer with you if you hit all the requirements in the policy.
Afaik, their requirements have never been judgement based: just bandwidth minimums, port types and locations. I would expect that they prioritize new connections in some way, so if you barely hit the criteria and are somewhere well served by transit, you'll be low priority, and the requirements might change before your connection gets setup and if so, you might not get connected because you don't meet the new requirements, but otherwise, seems like if you meet the requirements, send in the application, and have some patience, the peering connection should turn up eventually.
It's not like they have a mostly balanced flows requirement like Tier 1 ISPs usually do. Also, even in their current peering policy, they don't require presence in multiple metros; just substantial traffic (10gbps), fast ports (100G), two pops in the same metro.
Certainly, it's their choice. But I expect them to mostly follow through and peer with those networks that apply and meet their published requirements.
My father (born in ZA) had to re-register his birth at 65 when emigrating to the UK on a visa. The ZA government had no record of his birth, despite him having a drivers license, passport, tax returns for 40+ years…
This is the least bit surprising coming from a country that is in steady decline.
Do you know why the British authorities wanted a birth certificate? Did his ZA passport show date and place of birth? Did the ZA birth certificate have some other information that the British authorities specifically wanted, like the names of the parents? Or were the authorities just following some standard procedure with no obvious purpose?
Load shedding hasn't been a problem for a while now. With proper maintenance of the coal stations and investments in solar, we haven't had it in Winter either. But you're right, it's always lurking. With increased renewable energy, and less reliance on coal, hopefully it stays in the past.
FWIW, I moved to a European country about 20 years ago. The first 10 years I thought everything was fine, but once I was applying for something, they said that it seemed like I never actually properly entered the system, but had just began. Most public services worked alright regardless. Cue some confusion for a while, and some filled forms later, and I finally got legally approved and finalized to actually stay, ten years after I initially arrived.
Bureaucracy can be crazy at times, and sometimes it seems like data just gets lost, for whatever reason.
Fascinating you say "a country that is in steady decline" when all the data of the past 29 years since the start of democracy seems to go against that statement. I hate the ANC for their corruption and other stances, but I don't let party political hate get in the way of the real basis of what is going on in the country. I'm guessing you haven't spent much time there? Whereas I have spent the past 25 years and travelled and lived extensively in South Africa.
What is your indication of decline? Some facts and figures:
- Less than 30% of the population having access to water has increased to near 100%.
- Electricity had less than 30% access and now sits around 90%
- Access to education (The matric pass rate more than doubled from 53.4 in 1995 to 82.9 in 2023) to taking that to near 100% in 29 years is pretty incredible.
- Taking 8 million people out of poverty and lower class into the middle class in that time is pretty great.
- Access to free healthcare for the entire country.
- The freedom of not being discriminated towards due to skin colour.
Yes the ANC has had an opportunity to do much greater good, but if you take in the bigger picture and understand that the white population still holds over 70% of the wealth while being 10% of the population - this is an enforced inequality that needs to be righted.
If you look at the freedoms of South Africa, it has possibly the best constitution in the world. Sure, the enforcement of the laws are not as good as the laws themselves - but the rate of improvement in my lifetime has been staggering. Even despite the setback of the Zuma years.
Even now, we have gone from an ANC dominated political landscape to a Government of National Unity, which forces different political factions to work together. Another huge milestone in the burgeoning democracy of a young country.
It is so far from perfect but if you really have spent any significant time in SA and still think it is a country in decline, then I am more inclined to think you're one of the types of expats who love to shit on something that you have no bond to, and not because your arguments are bound by facts. We must interrogate the long standing consequences of white monopoly capitals violent subjugation of South Africans in both the past and the present to paint a fair picture of the country.
Your quote " a country that is in steady decline." certainly does not paint a fair picture.
The country is in decline. I have spent a lot of time there, have family who live there and can easily counter this:
- Many communities still rely on water trucks instead of water pipe infrastructure. The government loots the funds for it, meanwhile the entire system is on the verge of collapse and there are regular water shortages.
- With the electric grid, the amount of load shedding in the past few years where people are regularly without electric to 6-8 hours a day is absolutely crazy. The country didn't used to experience that. Also, cable theft is common, which wasn't an issue 30 years ago.
- 1.6 million people out of 66 million pay 76% of all taxes.
- Public healthcare in ZA is bad and not recommended by anybody who values their life.
- South Africa has more race laws today than it did during apartheid.
- It has a violent crime rate that is one of the highest in the world.
- Unemployment is high.
- It has suffered from massive underinvestment in infrastructure over the past 30 years.
- Extremely high levels of government corruption.
One thing that really brought home how the situation is in South Africa is was when I was talking to someone I know who works for a furniture company there. They used to make all of their furniture in the country, but recently started importing it from China because that is cheaper than producing it locally. Keep in mind that is with an average daily wage of $30 for a factory worker. If a country with South Africa's nature resources and inexpensive labor cannot compete with China for manufacturing furniture for the local market, it is deep trouble.
That is probably why the CEO of a local Tile Manufacturer recently said that South Africa is one of the worlds least manufacturing-friendly economies due to onerous regulation, infrastructure deterioration, energy uncertainty and rising costs.
- Please share which communities rely on water trucks?
- Loadshedding is no more.
- The tax issue is precisely the problem that needs redressing and is primarily because of past injustices. You're almost there.
- I have been treated in public hospitals and while not perfect the access to healthcare is impressive.
- I agree with the race laws. Your basis that SA has more race laws is gaslighting due to the fact of the homeland act. But let's not let facts get in the way.
- Violent crime rate is because why? Apartheid spatial planning. Read up and learn all about why this has re-enforced violent crime.
- Unemployment is high, yes. Doesn't mean the country is in decline.
- Corruption has hit its peak and on the way down post-Zuma years.
I have a close friend who owns a huge furniture company, and builds everything in house and grows year on year very well. So your anecdote is countered by mine.
- Googling for water outages gives a lot of results in just the last few days. In the NorthWest for example there are a lot of failing municipalities which are relying on government assistance to just make it month to month. Water trucks are a common occurrence all over. The official numbers on connection to water, electricity etc. are pretty much a joke.
- Loadshedding is indeed no more: Up to about 10-15% of households are now living off-grid, while in the industrial sector I can link you any number of metal processing plants that have closed down, the same for mines, car manufacturing etc. In the last few years our electricity bills have about doubled, rates and taxes aren't far behind either. That's not a win in the least.
- Healthcare: A few of the more well funded public hospitals are ok, but just from Tembisa approximately 2 billion Rands have been siphoned as of recently. Impressive isn't the word to use. Google for images to see the conditions of the hospitals and what the people who go there are experiencing, while on the other hand you can see videos of tenderpreneurs riding their Lamborghini's with police escorts via dirt roads in the outlying areas.
- Violent crime has nothing to do with apartheid (apart from the occasional incitement by political parties etc). We have crime because somewhere between 33-43% of the population is now unemployed, along with having only a barely functional police force. The people stuck on the bottom have no hope of changing their circumstances, which in turn is fueling crime (and violence).
- What makes you think there's less corruption now? The fact that more and more of it is coming to light? As long as the governing party allows it to happen its going to cascade down into all facets of life/business etc. They've begun to realize that they are losing the vote (and with it the power), but we're still a long way off from having any change on the horizon.
- Single anecdotes are pointless, some businesses will naturally grow while other decline, a lot of it is just random luck based on the type, area, time etc. Foreign investment is down something like 29% in just the last two years while we've taken on more than R25 billion in loans just recently.
You say I'm not even close to the facts when I can substantiate everything I have said based off released data. Let's go through your points
- You make the claim that "official numbers on connection to water, electricity etc. are pretty much a joke" yet provide nothing to back that up? Why? I would say giving access to water and electricity to over 90% of the population in under 30 years is a win. And a case against the term "steady decline". No doubt drought ravaged regions like the North West, which if you'd been to, is understandable that consistent water cannot be provided. So does they fall into the 10% of non-connected water residents? I would assume so.
- You state that 10-15% of households are off-grid. I would make a claim that that show's progress in society and not decline. Despite the reasons, it means that there will actually end up in the long run being more electricity for the population overall. Let's also look at overall manufacturing and I will provide sources: PWC you may have heard of them forecast 5.7% growth in manufacturing over the next decade (despite short term decline of -0.4%) due to reforms in regulation and fixing of electricity supply. Here's the link: https://www.pwc.co.za/en/publications/manufacturing-analysis...
- Healthcare is impressive if you take in the fact of providing healthcare free of charge to 60 million people within less than 25 years, is not only a feat but something that is literally the definition of impressive. It's far far off where it should be, no one doubts that but you seem to have a blinkered view that everything must be of a first world standard within the shortest timeframe. We could have gotten closer if it weren't for years of corruption but the aim and the goal and ability to provide healthcare to the people is still impressive.
- If you don't think violent crime has anything to do with Apartheid's spatial planning, has nothing to do with the Apartheid government arming and supplying gangs with drugs, has nothing to do with purposefully underfunding education within townships, ensuring little public transport to working hubs, and the entire multi-faceted list of socio-economic destruction that took place. Then, my friend, you literally do not know what you are talking about, nor the socio-economic reasons for crime to occur. If you think Apartheid has nothing to do with the unemployment rate due to generational injustices, maybe you should take grade 10 history again.
- What makes me think there is less corruption now? Well yes the fact that more comes to light, the fact that we even had the Zondo commission and have the recommendations taken on board in part by parliament and the implementation of the Public Procurement Act of 2024 will have a positive long-standing affect.
- Let's talk foreign investment. I'll just paste links because foreign investment is up over 80% since 2013. "Down something like 29%" without providing any links, or facts is nebulous at best. Mostly due to the fact of the vast increase post-covid caused a huge spike in FDI which if you look at without that context you'd think it is down, which is statistically a misnomer due to the societal causes of a sudden huge increase in investment when economies opened up.
So yeah I fucking hate the ANC. I hate the corruption. But I can see the bigger picture of the 30 year positive change, you can take a microscopic view as you have done - but this conversation is around "steady decline" and you have proven nothing to indicate that it is.
Most places went off grid because of how unreliable the national grid is. The cost of that electricity is also significantly higher than it would have been with well run central grid using fossil fuel.
The lloyds numbers you shared show a steep decline in investment over the past three years.
The IDC is an arm of the South African government, so having it call itself a top investment destination is like having a marketer trying to sell you on their own product.
The UN report only shows the inflow by region, not country.
The PWC report shows everything being down with the exception of net operating cash flow which does not tell you a lot about the sector as a whole. Their predictions do not point to anything to substantiate their prediction of 5.7% per annum manufacturing GDP growth. Of course then again, if these numbers are not inflation adjusted and inflation is at or above 5.7% then that may be where that is coming from.
Given that the average GDP per person is 8k US a year, without a significant increase of the GDP it's not possible to increase the standard of living for the population has a whole. You can't get blood from a stone.
I largely agree with you otherwise (viz. South Africa is on the whole improving) but on this specific point I think you’re optimistic. When summer comes round I’m pretty confident Eskom will start loadshedding again, and their public statements more or less align with this.
Regardless: not a sign of decline! Loadshedding is evidence that demand > supply, but that doesn’t imply supply is decreasing or the system as a whole is failing. On the other hand, there’s plenty of evidence that supply has steadily increased since the 90s, new facilities opening and what not. Widespread solar will only improve the situation as the tech improves.
....and that's before we get into things like Transnet and SA Air. I'd love to see the country succeed, but putting your head in the sand and denying that there is a problem will not fix things.
Literally no one said there isn't a problem. No one said that. But disagreeing about a 'state of decline' when the facts of the quality of improvement of the lives of the entire population has increased over a 30 year period disputes the rhetoric of 'state of decline'. Decline from what? When Apartheid made the lives of 10% good and the lives of 90% shit?
GDP is down ~12% since 2010, even though the population has grown by 20% over the same period. Per capita is down ~40% since 2010. Why are you pretending that this isn't an issue?
It sounds like you prefer communism over capitalism. Sadly, South Africa is heading towards communism. The only consolation is that then at least everybody will be poor.
The government is privatising electricity generation and increasing private sector access to the rail network.
The business friendly Democratic Alliance party is in coalition with the ANC, rather than the far left of the EFF which is currently not in government.
You can believe South Africa will end up being communist. But the evidence falls against the statement that South Africa is heading to communism.
What is also hilarious is ad hominem trying to call me a communist (which I am not), and shouldn't matter either way. But what is funny is how you decry the state of things currently, which is happening under capitalism, yet the extent of your criticism of the society can't reach to the system within which it exists. However you create a nebulous hypothetical in trying to plaster me with an insult that another system would be so much worse, when according to you the state of how things is bad as it is.
Fun fact: when the Gupta brothers were starting to run into trouble for stealing South African public funds, they paid British PR firm Bell Pottinger £100,000 a month to distract the public.
That's when Bell Pottinger came up with a campaign to stoke racial tension by popularizing the phrase "white monopoly capital" to distract from the Guptas:
The stats you posted paint a good picture of improving lives in real ways but they're only part of the picture - and not the deciding ones.
We all saw it with electricity - handing out more access isn't the hard part. Backing that with funding and capacity to deliver is.
Inequality, unemployment and debt/gdp are all on very alarming trajectories. Without a very sharp course adjustment (and soon) there are dark clouds ahead that could undo all the victories you list. Not sure if that makes it a decline, but if it were a car ride I'd say it's time to buy crash insurance
I'm sure you know this, but the "steady decline" narrative tends to come from people who are comparing it to the apartheid-era standard of living for white people there, effectively supported by slave labor. (In hindsight, no wonder Reagan and the US Republicans were so supportive of it!)
I am white. I am surrounded by white people. The standard of living of just about every white person I know has increased in the past 25 years.
It's really simple, we as white people have been given - historically and now - just about every advantage a minority can have. If a white person or their parents couldn't make the most of that well then that's ok, because equality and equity are the goals. And just because a PoC are succeeding more now, does not mean white people are suffering in the least.
Looking at our roads these days the latest Chinese SUV's and I saw a BYD Shark pickup truck the other day - why on earth would they open dealerships if there is no money to be made ?.
The trick here, for the uninitiated, is that “race-based law” or “race law” means the law refers in some way to race. That is legally and logically distinct from “laws that discriminate on the basis of race,” which is how most foreigners read the term.
I am a South African. Not a tourist. I am white. I have created a very successful financial existence here, never having an issue with any of the laws. Your assumptions are hilarious.
The laws do not discriminate against me in the least. The laws as I stated in my original post have created some of the most incredible increases in equality and equity ever seen in history. Name me a country that has managed more. Name the laws which you say actively discriminate against me. Show me how the white population who owns the vast majority of the wealth are suffering from these laws.
Your whining is cute, but unless you can back it up with facts and figures, of which I have plenty of my own - then it is just conjecture and sounds like you're one of the whites that loves to complain that life has sucked for you just because you have been given every opportunity that just about any race in history has had, and yet you have still not managed to make a success of yourself.
You broke the site guidelines badly in this thread. Can you please not do that? We're trying for a different sort of internet forum here, not the kind where people bash each other for being wrong and/or bad.
If you would please review https://news.ycombinator.com/newsguidelines.html and make your substantive points thoughtfully, regardless of how wrong someone is or you feel they are, we'd appreciate it.
What does "historically disadvantaged communities and persons" mean in ZA? Any racial bias present in this phrase, which is apparently in multiple laws?
I just started looking and, for example, when issuing licences to extract water, the authorities must, in accordance with the law, "consider [...] the need to redress the results of past racial and gender discrimination". Why would a water licence need such a consideration, and is it discriminatory in ZA's context?
In your example, because many businesses (majority white owned) have riparian rights and those who live on the land need equal access despite being historically disadvantaged from gaining access to said water rights.
I understand the concept of "riparian rights", but I fail to see how gov't entities who issue water licences (or any government service, for that matter) would need to "consider [...] the need to redress the results of past racial and gender discrimination".
I'm trying to apply that logic to any of my gov't services, and it would be outrageous to have any random thing responsible with redressing past racial discrimination, water rights, maternity rights, access to public information, literally any government service. It couldn't possibly be in their purview to take such a thing into consideration.
True, but I meant in South Africa, SA is the most used. Less so with RSA or ZAR. ZA is somewhat used but SA (I would say) dominates in conversation and in written text.
> sanctioned efforts like this are almost always temporary. The majority of the illegible work that occurs in large organizations is still unsanctioned.
The title “DevOps Engineer” often fits a permanent role of sanctioned illegibility in large organisations. One cannot explain exactly what a “DevOps Engineer” does, because (a) you cannot _engineer_ a culture, and (b) largely these engineers do urgent and important work that cannot be planned, estimated, put into sprints, etc.
I’ve had this title through several of my roles at orgs over the years and I detest it, but nonetheless understand why it exists.
Having grown up in South Africa, having a physical document to prove who you are, along with an identity number is just so normalised. When I moved to the UK later in life, I found it absolutely bizarre that there’s no mechanism to uniquely identify yourself to the government, or any other entity that deals with your personal/financial/health identity. It’s just a combination of name and address, which anyone can access with ease.
Digital identity is on the slightly more controlling side of this, but the article focuses entirely on the cynical perspective without considering the positives.
"The government" is not an abstraction, it's bunch of people, fallible people, who may or may not have your best interests at heart, so really, why should they have much to do with the every day existence of the public?
I'm in South Africa and working for an Australian company. I still find it weird that they don't have ID numbers, instead we make use of a name + surname + DoB combination.
I didn't even know it was like that in the UK as well or anywhere else to be honest, I always just assumed everyone makes use of government issued ID's.
Slack just did the same to us for our company Slack. We have to have the HIPAA compliant Enterprise version, price going up 40% next year. Looks like we'll migrate, especially because compliance has a bunch of annoying caveats.
We're in the same boat; HIPAA compliant Enterprise license. Slack came to us with a 2 day notice; pay more now or pay a lot more later. We asked if we could reduce the number of users and they said no, if you change anything then you have to take the new pricing for double the current price.
The whole thing was super sleazy. We told them that we were moving to MS Teams (arrrgghhh!) and they said "Bye!".
Surprisingly not as much as I'd thought when they took it over. They just never adjusted pricing to remain competitive. The experience is still some of the best you can get for RoR apps. But nobody in their right mind deploying a new application today would look at their insane 10 year old dyno pricing and be like - yup - reasonable
in fact, if you actually look at the historical timeline, many of the things we think of as core to developer experience only were released after salesforce acquisition.
I think even multiple buildpacks at once only came a couple years after acquisition.
Possibly they were in the pipeline before acquisition, sure.
But I'd agree, heroku is still a better DX than almost any competitors, although it's features and pricing have really stagnated. So better DX as long as you don't need any features it doens't have. But it hasn't really been 'ruined' in any way, it just started appearing frozen in amber some years ago.
The new 'fir' platform is promissing, before that I didn't really know that any actual development was taking place in heroku, but it's a big move, modernizing things and setting the stage for more. Including slightly improved resource-to-pricing options. We'll see if it all works out...
We got rid of all Rails apps (that needed a backend). We've moved our Postgres databases to Neon, and run our docker containers on Google Cloud Run (these are containers that don't need to run 24/7, we're paying just a few cents each month, also cold starts are much faster and more reliable than on Heroku).
>> and what did you use to manage git push deployments, setting env vars to replicate the heroku features?
Yes Digital Ocean did all this, they were very feature-close to Heroku. We have over time migrated everything stable/prod to AWS just because AWS has more products and hence you have everything in one place inside a VPC (e.g. vector db)
For Replit, i'd use it for anything I can in early-stages. It helps to prototype ideas you are testing. You can iterate rapidly. For PROD we'd centralize onto AWS given the ecosystem.
> and last q :-) re AWS - once you moved there, did you use something like elasticbean or app runner? or did you roll your own CI/CD/logging/scaling...?
We started with Lambdas because you can split work across people and keep dependencies to a minimum. Once your team gels and your product stabilizes, it is helpful to Dockerize it and go ECS, that is what we did. Some teams in the past used EKS but IMHO it required too much knowledge for the team to maintain, hence we've stuck with ECS.
All CI/CD via Github --> ECS. This is a very standard pipeline and works well locally for development also. ECS does the scaling quite well, and provides a natural path to EKS when you need the scale bigtime.
For logging, if I could choose I'd go Datadog but often you go with whatever the budget solution is.
I’d also like to point out that those Kingston A400’s are notoriously terrible and had a firmware bug that caused the behaviour you describe if you don’t update it before it happens.
I purchased 10 genuine new from a verified vendor and 6 had to be RMA’d within the first year.
agreed, I don't think the drive is fake, they're just that bad. Only SSD I've ever had fail spontaneously on me (the one other SSD failiure was my fault for accidentally unplugging it during a firmware update).
What I’m personally missing is the social capital. “Just invite people to stuff” doesn’t work, because my prior in-person social network is fragmented over 3 continents and many more countries and time zones. Minting new social capital is difficult - joining social events requires an invite to a social event to meet other people to start the process.