Daniel Miessler's Blog, page 100

I spent lots of time on typography, so you should read this article in its original form at The Future of Content Destroys the Middleman

—

I think the content creation ecosystem—especially around blogging—will be ultimately disrupted by the rise of three interlocking componets:

Digital Assistants
APIs
Customized interfaces

Google Duplex just gave us a preview of how natural it’ll soon be to interact with assistants.

This is currently quite different. There is no Digital Assistant yet, and content and interface are currently merged into websites. Additionally, search is also split between search engines and the various search capabilities of the sites themselves.

This is great for companies like Google and Medium because they’re in the middle. They didn’t create the content, and they’re not consuming it. They’re just pulling it from the source, and handing it to whoever needs it.

This goes away when you break the process into its components.

Digital Assistants will understand what we want to see, and they’ll be able to process our requests—whether voice, typed, or gestured. They will then ask for the content from a myriad of sources. The content will be returned not as a primitive list of links to be read by a human, but as a massive set of computer-readable options.

In my book, The Real Internet of Things, I talked about this at length:

So instead of interacting with technology directly, we will interact with our DA, and our DA will work out the details with the necessary daemon. We speak, things happen. We gesture, things happen. We text, things happen.

From there the DA will show it to you in the best possible interface, which will be different for pure text content, video content, etc., and all that will depend on what you’re currently doing, where you are, who you’re with, etc.

The Digital Assistant will find the best content that matches with your request and then find the best interface within which to display it to you.

The key point here is that the search engine as a GUI is now gone, or at least abstracted behind another GUI that the DA uses to show you options. But in most cases the DA will simply be trusted to show you the best result in the best interface. Search becomes a DA function.

The Mediums and Facebooks of the world may exist as backend ecosystems (social graphs and authentication infrastructure), but the notion of a single website that people visit will fade. In its place will be different interfaces for viewing that same content, whether mixed in nature, or simply context-aware and tuned for the viewer’s preferences.

The necessary components here are:

The requestor and consumer
The digital assistant that makes requests on their behalf to the APIs of the world that store content
The creators that produce the raw content
The APIs that front the content
The various GUI vendors that provide customized interfaces for viewing arbitrary content

Those are the future of creating and viewing content.

If you’re a Google or a Medium looking at that world, it’s time to start asking where you fit.

—

I spend between 5 and 20 hours on this content every week, and if you're a generous type who can afford fancy coffee, please consider becoming a member for just $5/month…

Start Membership

Thank you,

Daniel

I spent lots of time on typography, so you should read this article in its original form at America is Rotting

—

We in the West are in the beginning—or perhaps the middle of—a catestrophic crisis of meaning.

Many of us sense it. We know it’s happening. But it’s hard to corner and identify. And it’s even more difficult when authors like Steven Pinker use all of their intellectual powers to convince us that things are in fact getting better.

I don’t see that. Not in Europe and the United States anyway, which are the only places that I feel like I understand in some measure.

What I see is virtually everyone I know being some combination of depressed, medicated, or suicidal. I see profound unhappiness. I see desperation. I see emptiness. I see anxiety. I see sadness.

I’ve not read Pinker’s last two works yet, but from the outside it seems he’s focused on all the wrong things. He talks about how famine is decreasing, how there’s less war, etc. In short, he’s focusing on how we’re reducing struggle in the world. But that’s precisely the problem.

What Pinker doesn’t seem to realize is that (overcoming) struggle is actually what makes humans happy, and removing it is a sure path to emptiness.

People are complex, and I’m not trying to be inclusively accurate here—only to identify trends I see.

Women with money but no family seem perhaps the worst off, as if everything they achieve and grasp turns to dust in their hands. Men with lots of money seem to be somewhat ok—kind of like a boy sitting in a mud puddle playing with a toy truck.

Women without money or a strong family seem desperate for some kind of meaning, whether that’s this “success” thing everyone keeps talking about, or something more biological and traditional in the form of motherhood and family. But they’re unhappy unless they’re about to achieve one of them, and most are unhappy once they have them as well.

Look up the term INCEL. It’s what they’re calling the recent attacker in Toronto who drove a truck into pedestrians.

Men without family or money need to either be great looking or deeply immersed in video games. Those appear to be the options, and even then the money or video games better yield success with women or else they’ll turn into the primary danger to society today: young men with no mating options.

To be unable to inspire sex love is a grave misfortune to any man or woman, since it deprives him or her of the greatest joys that life has to offer. ~ Bertrand Russell

This group—the men without financial success or other means of attracting women—are a perfect example of what we’re talking about here.

People are focused on the lack of education. We talk about parenting. We talk about guns. We talk about legalization of drugs. We talk about unisex bathrooms, and the legitimization of alternate types of sexuality. But those are just coincident. They’re just happening at the same time.

The man who acquires easily things for which he feels only a very moderate desire concludes that the attainment of desire does not bring happiness. If he is of a philosophic disposition, he concludes that human life is essentially wretched, since the man who has all he wants is still unhappy. He forgets that to be without some of the things you want is an indispensable part of happiness. ~ Bertrand Russell

What’s really happening is we’re losing the ability to acquire meaning in our lives.

I think comfort and safety are creators of a deep and corrosive depression, and unless people and society have a powerful answer they will descend into emptiness.

Everything is empty. Everything is hollow. Everything is meaningless.

We chase the money. Dust.
We chase the perfect mate. Dust.
We chase success at work. Dust.
We chase the education. Dust.
We chase the things. Dust.

So people are giving up. They’re not leaving home. Grandparents are raising their grown children, who then have their own children of sheer irresponsibility and boredom. And those children have no motivation or purpose and become expert victims and consumers of societal benefits.

Guess where we see real motivation?

In populations that have recently experienced suffering. Immigrants.

Newly-arrived Mexicans and Chinese don’t seem to have as many happiness problems because they’re still obsessed with The GameTM. They’re struggling everyday to escape where they came from. To escape from poverty, or anonymity, or normalcy. They’re chasing—or being chased—and it’s a glorious. Because if you survive, Evolution will reward you with a pat on your hormone receptors.

What are everyday Americans chasing? We’re stuck in a world where life is easy but there is no color or taste.

You could struggle, but why? You can just stay home and live with your parents. You could try harder at work, but someone taller and smarter will probably get the job. You could try to meet the girl you like, but she probably only dates rich guys, or people with better jobs.

Safest thing is to just stay home and play video games. Draw disability. Wait to die.

America is basically rotting from the inside.

There are some that are resistant, however. I mentioned the immigrants who have gone through trials recently. Another group is the conservatives. I think conservatism has an amazing feature built into it—the propagation of struggle as a virtue.

If conservatism can make people always struggle, e.g., to do better at work, to be a better father, to be a better follower of God, etc., then they never receive the DeathTouch of complacency.

But there’s a downside. Several, actually.

There are lots of exceptions, as always, and happily this racism doesn’t usually survive into the next generation.

With the newly rich Chinese immigrants the downside is elitism and racism. They can’t wait to be able to live in rich neighborhoods surrounded by other rich (non-brown) people. They see Mexicans as people who wait on them, and Blacks as sub-human criminals.

With newly arrived Mexicans, too few realize that the game is ascension, not just hard work. They work so hard just to get up the next day and do it again, because that’s what feeds their loved ones, and that’s what they were taught to do. But it’s not rewarded. It’s taken advantage of, and they fade into the setting of places where they work.

And with conservative belief systems, the tradeoff is usually believing 1) things that aren’t true, and 2) believing things that harm others.

Many Christians see this crisis I’m talking about and they blame the wrong things. They think we need more belief in God and the Bible. And that the cause is those damn homosexuals. Or the Blacks. Or the whatever. The Others are the problem.

So while they’re the most resistant to the depression because of their beliefs, they’re also most likely to actively blame those who increasingly live around them for the maladies we’re facing.

No jobs? Not enough Jesus. College too expensive? It’s those damn Asians. Healthcare costs too much? It was that damn Obama.

So on one hand we have this gelatinous malaise resulting in emptiness and sorrow. People live at home. They don’t even look for jobs. They use THC and other drugs. And they play video games to mask the depression.

Then on the other side we have the elite who think they have the answer, and they’re chasing the money and the cars and the dominance, and their primary focus is on themselves against The Others.

A happy person knows that “one’s ego is no very large part of the world. ~ Bertrand Russell

What we’re facing is a society where the rich and successful split from the rest, largely because the bottom 90% have lost the will and/or the ability to compete. They’ve just given up looking for real meaning, and now seek it only in drugs and video games.

And the rich look down at them, use them to clean their houses and to take them from appointment to appointment, including to see their therapists.

Why therapy?

Because they’re depressed.

Despite having all the things they’ve always wanted, they can’t seem to achieve happiness.

We’re building a dystopia where nobody is happy.

The top 10% are rich have everything and none of it fulfills them.
The 40% working poor are basically indentured servants going from abuse to abuse.
The other half of the country is doing their absolute best not to pay attention to any of it, because it’s too fucking depressing.

Stop looking for point issues that you can address to solve this. The problem isn’t the tech, or the guns, or the drugs.

The problem is we’ve lost the most important component of happiness—which is overcoming a meaningful struggle—and nobody knows what matters anymore.

Notes


I was going to explore possible solutions here as well, but I think I’ll leave this to stand alone and do the follow-up separately.
Much of my thought on this comes from my reading of Bertrand Russell’s The Conquest of Happiness many years ago. I highly recommend it.

—

I spend between 5 and 20 hours on this content every week, and if you're a generous type who can afford fancy coffee, please consider becoming a member for just $5/month…

Start Membership

Thank you,

Daniel

I spent lots of time on typography, so you should read this article in its original form at Thoughts on Podcast vs. Newsletter Content

—

I’m thinking of stopping my regular podcast and only doing my weekly update in Newsletter form. There are a number of reasons.

Far more people consume the newsletter.
The podcast is actually just the newsletter content (sometimes with some opinion added).
The newsletter is hard enough to get out, let alone having enough energy on Sunday to record with some enthusiasm.
There has been an explosion of podcasts, and it’s hard for people to listen to more than two or three.
I really don’t like missing podcast weeks, which inevitably happens sometimes.
I’d much rather be consistent with the newsletter than inconsistent with both.
I can still do the podcast, but I’ll reserve it for my Idea Series of Unsupervised Learning, where I perform my essays, explore ideas, and have conversations with interesting people.

In short, I’m thinking of keeping the weekly update content in the newsletter, and putting my analysis and ideas in the podcast, my Unsupervised Learning Idea Series that already exists there.

It’s the same podcast feed as the regular one, but they’re special episodes, e.g.:

The Biggest Advantage in Machine Learning Will Come via Coverage vs. Analysis
It’s Wrong to Fearmonger on Security
The Difference Between Violence and Terrorism

These are true opinion pieces that actually highlight what people seem to like most about most podcasts—the unique voice and perspective.

I actually plan on doing the regular podcast again as well once the voice copying AI is good enough that I can just have my own (fake) voice read my newsletter as the podcast episode. That’ll be insane.

So I guess my question is what you think about that?

I asked on Twitter and most people consume the newsletter because they can do it at work, it doesn’t require direct attention, you can open links for later, etc., but a few people like the podcast as well.

I wish I could do both, but I just can’t right now—at least until my AI helper can assist.

—

I spend between 5 and 20 hours on this content every week, and if you're a generous type who can afford fancy coffee, please consider becoming a member for just $5/month…

Start Membership

Thank you,

Daniel

I spent lots of time on typography, so you should read this article in its original form at If You’re Not Doing Continuous Asset Management You’re Not Doing Security

—

[image error]

The more a company can tell me about their assets the better their security is, and the more comprehensive and realtime the inventory is, the more mature they are. This has been true for me over 15 years of consulting across hundreds of organizations.

But just try—either as an internal employee or as a consultant—to get a dedicated resource hired to create an asset management system and keep it updated. Most companies will look at you like you asked for the walls to be repainted in invisible paint. The look on their faces will basically say:

Look, I don’t know where you came from, but around here we don’t have money to throw at silly administrative tasks.

That’s what that look means, and it’s ridiculous given what we do spend money on.

Companies pay hundreds of thousands a year to keep snacks in the break rooms. They pay to send people to training and conferences that usually have very few tangible benefits. And we dump millions into marketing campaigns that we can’t tie to sales results.

But pay 100K a year to have a list of what we’re actually defending? Nope. Too expensive. Wasteful, really.

Asset management is arguably the most important component of a security program, but I know of virtually zero companies that have a single person dedicated to it.

People keep asking the wrong questions about breaches. Stop asking if they were compliant with Alphabet123 regulation. Or BSIMM. Or whether their security team had CISSPs. It’s irrelevant.

Instead, let’s start asking which of these companies had a list of assets that was more than 60% comprehensive and had been updated within 30 days. My guess would be that over 99% of companies who’ve suffered a major incident or breach in the last five years did not have such a list of their systems, their data, and their vendors.

I’d love to hear from anyone in the industry who thinks otherwise.

For most companies, the single best thing they could do for their security program is to hire a dedicated person to maintain a near-realtime list of company assets.

And while we’re poking bears, let’s ask another question: what value is being compliant with an information security regulation if you can pass while having zero idea whatsoever where your data is and what systems you have? How is that even possible?

It’s like an auto manufacturer passing a crash safety test without providing a car.

Forget everything you know about information security. Dump it in the toilet. All the regulations. All the scanning tools. All the vulnerability management. All the auditing. Let’s call those the nice-to-haves.

The measure of a security team is what they say when you ask them:

What’s currently facing the internet?
How many total systems do you have?
Where is your data?
How many vendors do you have?
Which vendors have what kind of your data?

If they look at you like you just claimed to be a poached egg, they are not doing real security.

This doesn’t mean they don’t know security, or that they don’t have a solid security team—but if they don’t know what they’re defending they’re little more than an expensive and broken machine that burns the businesses money.

They’re the teacher who doesn’t have a student count on a dangerous field trip. They’re the deployed commander who lost his units. They’re the parent who has no idea what their kids are doing.

I’m not claiming that this is easy, or that I’ve always done it perfectly in the past. I’m as guilty as anyone of not taking this seriously enough.

They are—in a word—lost. And failure is imminent.

If we want to make a real difference in security, let’s get the entire industry to use a single metric: the accuracy and freshness of the Asset & Data Inventory. And perhaps we use something like this.

A: 90% accuracy, or 1 week old
B: 80% accuracy, or 1 month old
C: 70% accuracy, or 2 months old
D: 60% accuracy, or 3 months old
F: 50% (or less) accuracy, or 1 year old

Now put in every security leader’s deck that the goal is to get to 95% accuracy with daily/weekly updates within 6 months. And the cost is simply hiring 1-3 people who are dedicated to this task.

That would reduce breaches, and it would cost infinitely less than the dumpster fire of products we constantly purchase and deploy for millions of dollars a year.

If you’re not willing to pay one or more people to do asset management full-time, you’re not going to fail, you already are failing.

If you agree with this, and have been witness to this open wound for years as I have, please do your absolute best to spread this metric to as many people who will listen.

It is one of the few brightly illuminated paths to getting us out of this mess.

Notes


Of course I’m not really advocating the pausing of other important controls or efforts. But I am saying that this should become the priority for new efforts, and that you likely could pay for it with money being spent ineffectively elsewhere.
If anyone’s interested, I’m looking for data on companies that have been breached and whether or not they were doing asset management. Probably pretty hard to find, but I’m going to try.
I’m struck by the similarity between this challenge and something Jeremiah Grossman said to me recently. He wanted to know if most AppSec companies were fighting to find the one last bug, when everyone already agreed on the other 1,000 or whatever. I think it’s the same with Asset Management and Shadow IT; the latter is definitely a problem, and we wish it didn’t exist, but we’d be in amazing shape if we just handled risk for things that were easily knowable.

—

I spend between 5 and 20 hours on this content every week, and if you're a generous type who can afford fancy coffee, please consider becoming a member for just $5/month…

Start Membership

Thank you,

Daniel

I spent lots of time on typography, so you should read this article in its original form at Announcing the Launch of HELIOS

—

For a number of years I’ve been waiting to launch a company of mine called HELIOS.

HELIOS actively monitors a company’s external attack surface in near-realtime and notifies you when it finds anything dangerous.

I’m super excited about it, and I think it’s going to help a lot of companies.

Ping me with any questions!

[ HELIOS: Know Your Attack Surface ]

—

I spend between 5 and 20 hours on this content every week, and if you're a generous type who can afford fancy coffee, please consider becoming a member for just $5/month…

Start Membership

Thank you,

Daniel

I spent lots of time on typography, so you should read this article in its original form at Facebook’s Failure is a Reflection of American Ignorance

—

Facebook didn’t fail anyone. We failed ourselves.

Sure, they could have been a bit more careful with some settings, but it’s not like they accidentally shared data with a third party. The way Cambridge Analytica accessed the data was completely authorized—it was just what they did with the data that was bad.

Facebook’s entire business model is sharing your data with third parties. That’s how they make money.

But we can’t blame Facebook for any of this. Facebook is ultimately no different than books. It’s a medium that propagates ideas created by humans, so it’s up to us to keep those ideas high in quality. And right now they’re garbage because most people can name Kardashians but can’t name the three branches of government.

We did this to ourselves by becoming so goddamn stupid.

Many are inclined to hear that and say, “It’s never good to blame the victim”. Stop. You’re part of the problem. Victims are the young, the elderly, or any groups that cannot speak for and defend themselves. Everyday adults are responsible for their own education, and should know better.

Anyone too stupid to know that free products aren’t free deserves the damage that results from their collision with reality.

If you blindly share—and believe—information that is easy to disprove, then you cannot be saved by regulation. The stupid will seep through the pores of reality and find you, no matter who tries to protect you.

It was obvious that they were sharing data because that’s their entire business model. It was obvious that someone was trolling both sides (and especially the right) in order to get Trump elected. It was obvious that Trump would be a horrible president.

But all these things seemed to surprise us. Because Facebook is bad. Blame Facebook.

An educated population is the only inoculation against what’s happening with Facebook.

Grow up. Just as you can kill someone with a rifle, a knife, or a piece of string, you can also put stupid ideas into the minds of stupid people using a website, a book, or a flyer.

The problem is having a nation of people who don’t read, reject basic science, and get all their information from propaganda tabloids.

Until that changes, expect more of the same. And we deserve it.

—

I spend between 5 and 20 hours on this content every week, and if you're a generous type who can afford fancy coffee, please consider becoming a member for just $5/month…

Start Membership

Thank you,

Daniel

I spent lots of time on typography, so you should read this article in its original form at My Postmortem Summary of The Sam Harris & Ezra Klein Podcast

—

If you’re a fan of Sam Harris or Ezra Klein you know that they’ve been engaged in a year-long online skirmish that recently culminated in a direct face-off in the format of a podcast.

Listening to the podcast first would be helpful, but not necessary, to appreciate this analysis.

I’ve been waiting to hear this interaction finally play out, and listening to it yesterday was quite surreal for me because it largely followed the same contours as a 3-hour conversation I had with my own sister just two days before.

Here’s my analysis of the interaction. First the background.

Background


The history here is that Sam Harris had a conversation with Charles Murray, who is the radioactive author of The Bell Curve, which made the case for social policy change based on science that says blacks have lower IQs than whites and asians.
Sam basically brought him on to defend him—not because he agreed with his politics or policy opinions—but because he saw Murray as the victim of what he calls Moral Panic, where people are unable to speak freely about accepted facts without being blacklisted and attacked.
Ezra Klein heard that podcast and took issue with Harris defending Murray. Klein knows Murray, and although he says he’s a really nice guy, he says Murray’s spent a lifetime of work basically saying blacks cannot change their lower IQs (whether the issue is mostly genetic or environmental) and therefore we should change social policy to make it far less liberal. So, remove affirmative action, remove the safety nets, etc.
As a response, Klein wrote a couple of articles on Vox, where he essentially (but not explicitly) calls Murray and Harris racists, and most certainly creates that impression in a large numbers of his readers. This is true to such a degree that they are now listed as propagators of hate on the Southern Poverty Law Center website.
Sam is super upset about this because he feels maligned, and Ezra feels his actions are justified because he thinks Sam (and Murray) are wrong about the IQ science and Murray’s proposed policies given the history of racism in the United States.


My analysis of the conversation


It’s extremely clear to me that Sam is not a racist and that he’s operating as a liberal who’s trying to improve the world. As I have told him in a couple of email exchanges, I think he makes a major mistake by not repeatedly reminding liberal debate opponents that they are on the same side. Sam alluded to this a few times, but it needs to be far more explicit.

For example, “Ezra, you do understand that we’re both Jewish liberals, right? You do understand that I’ve spent my career trying to increase happiness on this planet, right? You do understand that there are real people trying to harm social equality, and who disagree with both of us on gender equality, abortion, and many other core issues, right?”

This needs to be repeatedly used to reset the conversation when they start treating each other as opponents rather than people on the same side who disagree.

They completely failed to address each others’ core points during the debate.
Sam’s tactical point was that as a supposedly good person wielding tremendous journalistic power as an editor of Vox, Ezra should never paint someone (who he should easily be able to tell is a fellow liberal) as a dangerous racist, which would obviously harm his reputation and his ability to do good in other areas.
Sam’s strategic point was that it’s extremely dangerous to blacklist ideas or people for talking about (or even mentioning) accepted science that makes people uncomfortable, and that we should instead be courageous in the face of such knowledge and relentlessly pursue policies that promote equality for everyone.
Ezra’s tactical point (although he never said this directly) was that, as a privileged white guy, you don’t invite and defend a man on your podcast who has spent a lifetime saying that—whether it’s mostly genetic or environmental—blacks can’t really change their ability to thrive, so we should stop trying to help them as much—and then complain when people think you’re a racist.
Ezra’s strategic point was that we can’t even really trust the science on this, and even if we could you have to think about the history of oppression at every level of society for blacks that continues to this day. In short, we’re nowhere near the point where we can say blacks can’t improve their lot because the system has been, and continues to be, stacked against them.

These were the four points that were being made throughout the conversation, yet neither really spent the time to listen and address them in a way that would defuse the other side.

My biggest takeaway from the engagement was the feeling of sadness that two liberals who agree on 95% of social issues could have such a negative and non-productive conversation despite their deep similarities and superb communication skills.

Sam remained defensive and upset that he was being unfairly maligned, which I absolutely agree with. And he failed to hear and concede any of Ezra’s points. And Ezra stuck to the point of Murray’s work being quite destructive in his view (which he think’s Sam is blind to), which made him characterize Sam’s entire conversation with Murray as blind at best and insensitive to alternative life experiences at worst.

In my conversation with my sister a couple of days before, she made the exact same point to me that Ezra was making to Sam. She asked me how many of the hundreds of books I’ve read in the last several years have been by black authors, etc. Like Ezra, she was hitting the isolation / blindspot / perspective point.

What I learned from the conversation


I think both Sam (and I) need to adjust our understanding of how we’re heard when speaking about this topic with people who are sensitive to the history of oppression. While we are also sensitive to that same history, we should not ever try to fully distance data from reality on the ground, or make these really clean distinctions between the science and the policies—because they really are quite intertwined. I personally see this conversation, and the one with my sister, as an indicator that I should try to do better to mix these two things a bit more, rather than separate them, and to expand my exposure to people who experience them as the same.
I continue to feel 100% confident in Sam Harris’s morality on the race issue, and on his good faith attempt to have a conversation with Ezra. For Ezra my analysis is not as positive because I still cannot square why he wouldn’t explicitly state that Sam is clearly not a racist, is trying to do the right thing, but is someone who Ezra thinks has a blindspot or has made a mistake by having Murray on the show. That would have been respectable and understandable. But instead he chose to basically label him a racist in front of the entire world while taking no responsibility for it whatsoever. He could have easily made the criticism while avoiding the charges of racism, but he didn’t, and it’s hard for me to attribute that behavior to a good faith actor.

I’m troubled that so little positive came from it all.

Overall I think the entire thing hurt Sam the most. More than Ezra, definitely, and even more than Murray. Ultimately, when you wipe poo off yourself with your bare hands, you just get more poo on you.

Murray was already tagged as a racist by most of the left, so he experienced no change there. Sam on the other hand is a liberal intellectual, and benefits from interactions with other liberal intellectuals. So he’ll suffer to the extent that his ability to do so has been diminished.

But I do think Sam can repair much of the damage, over time, via a clean summary and narrative that strips away the noise.

My advice to Sam is to make his own version of the following:

It really has to be a summary like this because people aren’t patient enough to listen to hours of content.

I, Sam Harris, am a liberal intellectual with the single career focus of maximizing happiness on planet Earth for as many people as possible, with special emphasis on helping those who need it the most.
Much of that work is focused on combating bad and dangerous ideas.
One of those dangerous ideas is the notion that we should attack knowledge and science that makes people uncomfortable, because I believe the truth is always better than lies in the long-term.
An example of this is idea of group differences across various races. It’s foolish to believe that East Africans and the Inuit people from Northern Alaska have the same ability to run marathons, and we shouldn’t tie anyone’s overall worth to such differences.
If good-hearted liberals blacklist the truth of group differences from public conversation, this truth (and many falsehoods that sound similar to it) will be used by bigots and racists to do great harm.
We must have the courage to look science and truth squarely in the face, accept what it offers us, and push ahead with liberal policies that enable equality for everyone, regardless of who they are or what they look like.
In the past people used science to justify discrimination, and it is our fear that if liberals don’t acknowledge the science of group differences whenever they inevitably surface, will will not be able to put them in their proper (and rather meaningless) context.
I.Q. and sprinting ability doesn’t make someone a great person, and many people with less of those than you or I have been far better people than you and I. Don’t confuse human metrics for human greatness.

I hope reading this summary helps someone process this as much as it’s helped me to write it.

—

I spend between 5 and 20 hours on this content every week, and if you're a generous type who can afford fancy coffee, please consider becoming a member for just $5/month…

Start Membership

Thank you,

Daniel

I spent lots of time on typography, so you should read this article in its original form at Unsupervised Learning: No. 120

—

This week’s episode of Unsupervised Learning is now available. Subscribe below and get this episode’s podcast and newsletter.

This week’s topics: It’s 2 billion users now, Liinux beep, Digital Shadows finds fail files, cloud misconfiguration, AlterEgo, AI applications, Alexa sending payments, Tech, Ideas, Recommendation, Aphorism, and more…

Listen to this week’s Podcast

Become a Member to Get This Week’s Newsletter

—

I spend between 5 and 20 hours on this content every week, and if you're a generous type who can afford fancy coffee, please consider becoming a member for just $5/month…

Start Membership

Thank you,

Daniel

I spent lots of time on typography, so you should read this article in its original form at Online Education May Be Poised to Replace Dying Universities

—

[image error]

Higher education is in the middle of an elaborate suicide ritual. It’s implements are:

skyrocketing costs to students
financial failure
outdated content (often by decades)
an academic infrastructure that seeks tenure rather than excellence
an extreme-left attack on freedom of speech

These are all combining to put traditional universities at risk.

It’s hard impossible to predict the future, but the way I see this going is like so:

Many public universities will get purchased by the Chinese and will get turned into what equate to trade schools for hard-working Asian students in high-demand fields, e.g., data science.
A number of them will go private, since the rich (see highly educated parents) are the only people who can afford to send their kids to school.
A massive percentage of the universities will just shut down.

What will replace universities for regular folks will be online education that focus on fresher content with far less administrative bloat. Once the old system topples over due to being top-heavy, it will free up a massive amount of resources that were trapped within the system. Most notably—professors.

Right now the universities still have most of the professors, but those jobs are largely peaked out and limited. In the online world educators will have the chance to become actual influencers, with a brand around their personal teaching style. They’ll have YouTube content, specific styles of teaching certain content, etc., and they’ll be sought after by these new educational institutions.

There will be some downsides. It’s hard to replace being in a specific location to learn. And the time spent in college is incomparable in many ways as a pure life experience. But the new institutions might emulate this by renting out or building other spaces. Perhaps even buying or renting the old universities.

University politics are supposedly only slightly less ugly than church politics, with both being so repulsive precisely because they shouldn’t exist at all.

The key element, however, will be the destruction of the old guard. Tenure, rank, bitter wars between professors regarding respect and status, the teaching of old content, the focus on theory vs. practice, etc. All these things will be rigorously attacked by a new mindset that focuses on the personality of the teacher, the freshness of the content, and most importantly—the measurable benefits that one receives by attending that course or set of courses.

I think groups will set up custom degrees that have a particular mixture of liberal arts, creativity, business, philosophy, combined with STEM skills. They’ll be like prix fixe menus at restaurants, and hiring organizations will have preferences for those with certificates from one program or another.

It’ll be more like a collection of badges from great sets of content, from great teachers, than a universal badge from an old university.

So instead of getting a degree from the University of Wyoming, you’ll have certificates from:

Modern History, by Christopher Hitchens
Dialectic Engagement, By Sam Harris
Economics and Philosophy, by Benedict Evans
Decisions in Randomness, by Nassim Taleb
Creative Voice, by Natasha Brandish
The Great Wars, by Dan Carlin

These will be the best courses out there, on the best topics, and employers will want people who understand this material.

The old system seems ready to fall. I can’t wait to see if something like this comes after it.

—

I spend between 5 and 20 hours on this content every week, and if you're a generous type who can afford fancy coffee, please consider becoming a member for just $5/month…

Start Membership

Thank you,

Daniel

I spent lots of time on typography, so you should read this article in its original form at The Definition of Security is “Without Worry”

—

A lot of people in Information Security think security means “stopping bad things from happening”. It’s understandable, given that we’ve been practicing it that way for decades now.

Basically, security has been synonymous with prevention for as long as most can remember, and that’s the way the entire industry is configured and oriented.

But there’s another, far deeper and more meaningful definition of the word that’s visible in the word itself.

Without. Worry.

The original Latin definition basically had security as a desired state of mind as opposed to a set of preventative measures, and we should get back to that.

I love the idea of pursuing the lack of worry for both business and society because it provides us options in a world where prevention isn’t always an option.

How do you prevent pipe bombs in malls when there are 350 million people in an open society?
How do you prevent code execution in a world where processors run anything by default and software companies are not punished for insecure code?
How do you prevent service disruption in an Internet of Things when there are billions of devices publicly accessible from anywhere?

Note the alluring application of alliteration.

You don’t. The only approach is to abandon the pure play of prevention, and move to a more mature model of resilience. Resilience is powerful precisely because it gets us to the true definition of security—being ok no matter what.

This is what we should be seeking for our businesses, and for society. So instead of saying:

Don’t worry everyone! I’m a security wizard! I know the techniques that are being used to attack our business, and I will use that knowledge to keep it from happening in the future! (alchemy and deceit)

…we instead say:

The internet is crazy, and we cannot possibly prevent everything. But what we have done is account for as many negative scenarios as possible, and we’re currently at a state where most scenarios that would destroy other businesses will not affect us. We have failovers, backups, restore procedures, alternate services, etc., and you can safely carry on. Do. Not. Worry. (transparency and truth)

That is the future of InfoSec, and the future of security in general.

Don’t tell me you’ve modeled and figured out how to stop every bad thing that can happen. Tell me instead that you’ve got us to a point that most things could fail and we’d still be ok.

Let’s start using this new definition as soon as possible, and encouraging others to use it as well.

Notes


Wikipedia’s etymology of Security. Link

—

I spend between 5 and 20 hours on this content every week, and if you're a generous type who can afford fancy coffee, please consider becoming a member for just $5/month…

Start Membership

Thank you,

Daniel