[-] soyagi@yiffit.net 17 points 1 year ago

UoPeople doesn’t charge for online college courses, course materials, or annual enrollment. Pay our minimal fees as you go, never upfront.

What are these minimal fees, and what are they for? I'm always skeptical of these online learning providers that imply they are free but don't quite say as much.

[-] soyagi@yiffit.net 20 points 1 year ago

Printers and printer ink

163
submitted 1 year ago by soyagi@yiffit.net to c/technology@beehaw.org

Archived version: https://archive.ph/9WPwx

The Sotheby's auction house has been named as a defendant in a lawsuit filed by investors who regret buying Bored Ape Yacht Club NFTs that sold for highly inflated prices during the NFT craze in 2021. A Sotheby's auction duped investors by giving the Bored Ape NFTs "an air of legitimacy... to generate investors' interest and hype around the Bored Ape brand," the class-action lawsuit claims.

The boost to Bored Ape NFT prices provided by the auction "was rooted in deception," said the lawsuit filed in US District Court for the Central District of California. It wasn't revealed at the time of the auction that the buyer was the now-disgraced FTX, the lawsuit said.

"Sotheby's representations that the undisclosed buyer was a 'traditional' collector had misleadingly created the impression that the market for BAYC NFTs had crossed over to a mainstream audience," the lawsuit claimed. Lawsuit plaintiffs say that harmed investors bought the NFTs "with a reasonable expectation of profit from owning them."

Sotheby's sold a lot of 101 Bored Ape NFTs for $24.4 million at its "Ape In!" auction in September 2021, well above the pre-auction estimates of $12 million to $18 million. That's an average price of over $241,000, but Bored Ape NFTs now sell for a floor price of about $50,000 worth of ether cryptocrurrency, according to CoinGecko data accessed today.

Investors previously sued Bored Ape creator Yuga Labs, four company executives, and various celebrity promoters including Paris Hilton, Gwyneth Paltrow, Kevin Hart, Snoop Dogg, Serena Williams, Madonna, Jimmy Fallon, Steph Curry, and Justin Bieber. The original class-action was filed in December 2022, and Sotheby's was added as a defendant in an amended complaint submitted on August 4.

Yuga describes its collection of 10,000 Bored Ape NFTs as "unique digital collectibles living on the Ethereum blockchain" that double as a "Yacht Club membership card." The website has some "members-only" areas. "When you buy a Bored Ape, you're not simply buying an avatar or a provably rare piece of art," the NFT collection's website says. "You are gaining membership access to a club whose benefits and offerings will increase over time. Your Bored Ape can serve as your digital identity, and open digital doors for you."

Lawsuit: Yuga “colluded” with Sotheby’s

The amended lawsuit alleges that "Yuga colluded with fine arts broker, Defendant Sotheby's, to run a deceptive auction." After the sale, a Sotheby's representative described the winning bidder during a Twitter Spaces event as a "traditional" collector, the lawsuit said.

The lawsuit said it turned out the auction buyer was now-bankrupt crypto exchange FTX, whose founder Sam Bankman-Fried is in jail awaiting trial on criminal charges. Ethereum blockchain transaction data shows that after the auction, "Sotheby's transferred the lot of BAYC NFTs to wallet address 0xf8e0C93Fd48B4C34A4194d3AF436b13032E641F3,77 which, upon information and belief, is owned/controlled by FTX," the complaint said. Speculation that FTX was the buyer had been percolating since at least January 2023.

The lawsuit alleges that Yuga Labs and Sotheby's violated the California Unfair Competition Law, the California Corporate Securities Law, the US Securities Exchange Act, and the California Corporations Code. The plaintiffs also claim that Sotheby's Metaverse, an NFT trading platform opened after the auction, "operated (or attempted to operate) as an unregistered broker of securities."

"FTX has several deep ties to Yuga such that it would be mutually beneficial for both Yuga and FTX (as well as Sotheby's) if the BAYC NFT collection were to rise in price and trading volume activity. Upon information and belief, given the extensive financial interests shared by Yuga, Sotheby's and FTX, each knew that FTX was the real buyer of the lot of BAYC NFTs at the Sotheby's auction at the time that Sotheby's representatives were publicly representing that a 'traditional' buyer had made the purchase," the lawsuit said. FTX is not named as a defendant.

Ape prices soared, then plummeted

After the auction, the price of Bored Ape digital assets hit a new high and kept rising for months. It peaked at over $420,000 in April 2022 but plummeted to about $90,000 six weeks later, according to CoinGecko.

The class action lawsuit's named plaintiffs are Johnny Johnson, Ezra Boekweg, Mario Palombini, and Adam Titcher. They are trying to get certification of a class consisting of "all investors who purchased Yuga's non-fungible tokens ('NFTs') or ApeCoin tokens ('ApeCoin') between April 23, 2021 and the present." There were over 103,000 account holders of Yuga securities as of December 1, 2022, the lawsuit said.

"While the Executive Defendants made hundreds of millions of dollars, investors were left with NFTs worth a fraction of their artificially inflated value," the original version of the complaint in December said.

Yuga and other defendants have a September 12 deadline to file motions to dismiss the complaint. Sotheby's told CNN this week that the "allegations in this suit are baseless, and Sotheby's is prepared to vigorously defend itself." Yuga Labs similarly called the allegations "completely without merit or factual basis."

325
submitted 1 year ago by soyagi@yiffit.net to c/technology@lemmy.ml

Archived version: https://archive.ph/9WPwx

The Sotheby's auction house has been named as a defendant in a lawsuit filed by investors who regret buying Bored Ape Yacht Club NFTs that sold for highly inflated prices during the NFT craze in 2021. A Sotheby's auction duped investors by giving the Bored Ape NFTs "an air of legitimacy... to generate investors' interest and hype around the Bored Ape brand," the class-action lawsuit claims.

The boost to Bored Ape NFT prices provided by the auction "was rooted in deception," said the lawsuit filed in US District Court for the Central District of California. It wasn't revealed at the time of the auction that the buyer was the now-disgraced FTX, the lawsuit said.

"Sotheby's representations that the undisclosed buyer was a 'traditional' collector had misleadingly created the impression that the market for BAYC NFTs had crossed over to a mainstream audience," the lawsuit claimed. Lawsuit plaintiffs say that harmed investors bought the NFTs "with a reasonable expectation of profit from owning them."

Sotheby's sold a lot of 101 Bored Ape NFTs for $24.4 million at its "Ape In!" auction in September 2021, well above the pre-auction estimates of $12 million to $18 million. That's an average price of over $241,000, but Bored Ape NFTs now sell for a floor price of about $50,000 worth of ether cryptocrurrency, according to CoinGecko data accessed today.

Investors previously sued Bored Ape creator Yuga Labs, four company executives, and various celebrity promoters including Paris Hilton, Gwyneth Paltrow, Kevin Hart, Snoop Dogg, Serena Williams, Madonna, Jimmy Fallon, Steph Curry, and Justin Bieber. The original class-action was filed in December 2022, and Sotheby's was added as a defendant in an amended complaint submitted on August 4.

Yuga describes its collection of 10,000 Bored Ape NFTs as "unique digital collectibles living on the Ethereum blockchain" that double as a "Yacht Club membership card." The website has some "members-only" areas. "When you buy a Bored Ape, you're not simply buying an avatar or a provably rare piece of art," the NFT collection's website says. "You are gaining membership access to a club whose benefits and offerings will increase over time. Your Bored Ape can serve as your digital identity, and open digital doors for you."

Lawsuit: Yuga “colluded” with Sotheby’s

The amended lawsuit alleges that "Yuga colluded with fine arts broker, Defendant Sotheby's, to run a deceptive auction." After the sale, a Sotheby's representative described the winning bidder during a Twitter Spaces event as a "traditional" collector, the lawsuit said.

The lawsuit said it turned out the auction buyer was now-bankrupt crypto exchange FTX, whose founder Sam Bankman-Fried is in jail awaiting trial on criminal charges. Ethereum blockchain transaction data shows that after the auction, "Sotheby's transferred the lot of BAYC NFTs to wallet address 0xf8e0C93Fd48B4C34A4194d3AF436b13032E641F3,77 which, upon information and belief, is owned/controlled by FTX," the complaint said. Speculation that FTX was the buyer had been percolating since at least January 2023.

The lawsuit alleges that Yuga Labs and Sotheby's violated the California Unfair Competition Law, the California Corporate Securities Law, the US Securities Exchange Act, and the California Corporations Code. The plaintiffs also claim that Sotheby's Metaverse, an NFT trading platform opened after the auction, "operated (or attempted to operate) as an unregistered broker of securities."

"FTX has several deep ties to Yuga such that it would be mutually beneficial for both Yuga and FTX (as well as Sotheby's) if the BAYC NFT collection were to rise in price and trading volume activity. Upon information and belief, given the extensive financial interests shared by Yuga, Sotheby's and FTX, each knew that FTX was the real buyer of the lot of BAYC NFTs at the Sotheby's auction at the time that Sotheby's representatives were publicly representing that a 'traditional' buyer had made the purchase," the lawsuit said. FTX is not named as a defendant.

Ape prices soared, then plummeted

After the auction, the price of Bored Ape digital assets hit a new high and kept rising for months. It peaked at over $420,000 in April 2022 but plummeted to about $90,000 six weeks later, according to CoinGecko.

The class action lawsuit's named plaintiffs are Johnny Johnson, Ezra Boekweg, Mario Palombini, and Adam Titcher. They are trying to get certification of a class consisting of "all investors who purchased Yuga's non-fungible tokens ('NFTs') or ApeCoin tokens ('ApeCoin') between April 23, 2021 and the present." There were over 103,000 account holders of Yuga securities as of December 1, 2022, the lawsuit said.

"While the Executive Defendants made hundreds of millions of dollars, investors were left with NFTs worth a fraction of their artificially inflated value," the original version of the complaint in December said.

Yuga and other defendants have a September 12 deadline to file motions to dismiss the complaint. Sotheby's told CNN this week that the "allegations in this suit are baseless, and Sotheby's is prepared to vigorously defend itself." Yuga Labs similarly called the allegations "completely without merit or factual basis."

3

Matthieu Ricard is an ordained Buddhist monk and an internationally best-selling author of books about altruism, animal rights, happiness and wisdom. His humanitarian efforts led to his homeland’s awarding him the French National Order of Merit. (Ricard’s primary residence is a Nepalese monastery.) He was the Dalai Lama’s French interpreter and holds a Ph.D in cellular genetics. In the early 2000s, researchers at the University of Wisconsin found that Ricard’s brain produced gamma waves — which have been linked to learning, attention and memory — at such pronounced levels that the media named him “the world’s happiest man.”

13

Archived version: https://archive.ph/rzWwd

The future for Wilko’s 12,500 staff hung in the balance on Thursday as they waited to hear whether a serious bidder for the budget retail chain had emerged.

Interested parties in the household goods retailer, which has 400 stores, had until Wednesday night to put forward their best offers for the company that called in administrators last week as it faced running out of cash.

It is expected that dozens, if not hundreds, of Wilko stores will have to close because a bid for the whole group as a going concern is unlikely to have been made, say industry insiders.

However, the full chain is expected to continue to trade into next week as talks on parcelling up the group’s assets are expected to drag on. Administrators are negotiating with potential suitors, including Poundland, B&M, Primark and Home Bargains, for groups of up to 50 stores each.

Bidders that could potentially rescue the Wilko brand include Hilco, which holds £40m of the chain’s debt, the Bensons for Beds owner, Alteri, and the Laura Ashley owner, Gordon Brothers, although it is not clear if any put forward a formal bid.

The GMB union, which represents thousands of workers at Wilko, said it still believed there was a chance of a rescue deal.

Andy Prendergast, the union’s national secretary, said: “GMB is in talks with administrators and there is still hope.”

The union has accused the firm’s management of allowing the retailer to lose its place in the market by failing to invest in technology for home shopping and other improvements while “much-needed cash was taken out of the business” by the owning Wilkinson family.

The GMB said: “We are seeking clarification regarding pensions, but have concerns. The Wilkinson family took tens of millions from the business in the decade up to the collapse. If they were serious about supporting working people, they should have invested in their staff.”

The family paid themselves £3m in dividends in the 12 months to the end of February 2022 despite a loss-making year for the Wilko group, as first revealed by the Guardian.

The last reported deficit for the group’s defined benefit pension fund was £16m, but the fund has a £20m security over Wilko property assets. John Ralfe, a pensions expert, believes the hole in the fund is likely to have closed because of the rise in interest rates.

Wilko customers expressed anger about difficulties in getting information on refunds and deliveries after the group’s helpline and chat service shut down last week.

The customer helpline reopened this week, but was overwhelmed with queries from shoppers seeking a refund or information about held-up deliveries.

5

Do you sometimes get frustrated at how slow your computer's operating system can be? Now is your chance to prove that you could do a better job!

Behold the nerdiest game ever, in which YOU are the operating system! As such, you have to manage the computer's processes, memory and input/output events, and try not to get rebooted by an impatient user. Good luck!

35

Do you sometimes get frustrated at how slow your computer's operating system can be? Now is your chance to prove that you could do a better job!

Behold the nerdiest game ever, in which YOU are the operating system! As such, you have to manage the computer's processes, memory and input/output events, and try not to get rebooted by an impatient user. Good luck!

2
submitted 1 year ago by soyagi@yiffit.net to c/freegames@lemmy.ml

Do you sometimes get frustrated at how slow your computer's operating system can be? Now is your chance to prove that you could do a better job!

Behold the nerdiest game ever, in which YOU are the operating system! As such, you have to manage the computer's processes, memory and input/output events, and try not to get rebooted by an impatient user. Good luck!

351
submitted 1 year ago by soyagi@yiffit.net to c/technology@lemmy.ml

Archived version: https://archive.ph/3vfmc

How much ink does an all-in-one printer need in order to fax a document? Or to scan one to your computer? The obvious answer is "none." But if you own certain printers from companies like HP and Canon, you won't be able to use core features unless the device has ink—even if those features have nothing to do with ink.

Unfortunately, all-in-one printers arbitrarily demanding ink to perform non-printing functions isn't a new frustration. And that's despite some companies having printers that can scan without ink. Clearly, scanning or faxing without requiring an ink cartridge would improve users' experience—and they've illustrated that through class-action lawsuits. But this hasn't stopped printer makers from fighting to keep the nettlesome practice.

No ink, no scan

Since mid-2022, HP has been fighting a class-action lawsuit alleging that certain all-in-one printer models won't scan or fax without ink and that HP doesn't properly disclose this to shoppers. On January 13, 2023, the complaint was dismissed but allowed to be amended (you can view the amended complaint here: [PDF]), and on August 10, a Northern District of California judge dismissed HP's motion to dismiss the amended complaint [PDF].

HP Envy 6455e and HP Deskjet 2655 purchasers Gary Freund and Wayne McMath filed the complaint, which states that HP printers are designed to enter an error state when low or out of ink, preventing usage until the installment of a new ink cartridge. The plaintiffs are also peeved that HP marketing and advertising doesn't clearly disclose this, the complaint says. The complaint also notes that an HP support agent has said that HP printers are "designed in such a way that with the empty cartridge or without the cartridge the printer will not function."

"HP’s All-in-One Printers do not work as advertised. Ink is not a necessary component to scan or to fax a document," the complaint reads.

It adds:

Tying the scan or fax capabilities of the All-In-One Printers to ink contained in the devices offers no benefit and only serves to disadvantage and harm consumers financially. However, tying the scan or fax capabilities of the All-In-One Printers to ink contained in the devices does, however [sic], serve to benefit HP.

Anyone who's owned an inkjet printer knows how expensive ink can be. That suggests a reason to push people to buy ink through tactics like blocking core features if no ink is present and reportedly selling printers below cost. Ink-buying programs have also become cash cows. HP in 2021, for example, said its Instant Ink subscription business was worth $500 million, per CRN. In its Q2 2023 financial report, HP named Instant Ink a key growth area.

The complaint against HP says:

Indeed, HP designs its All-in-One printer products so they will not work without ink. Yet, HP does not disclose this fact to consumers. … Even were it technically possible to scan a document without all ink cartridges present, HP does not disclose any 'workaround' to consumers in any of the product packaging nor in any of HP’s advertising and marketing materials regarding its multi-function devices.

The complaint seeks monetary damages as well as the end of HP's "misleading advertising and marketing campaign" and for HP to "engage in a corrective campaign to inform consumers of the misleading advertising."

Here are all the HP printer models listed in the complaint:

  • HP Deskjet 2755e
  • HP DeskJet 3755
  • HP DeskJet 4155e
  • HP ENVY 6055e
  • HP ENVY 6075
  • HP ENVY 6455
  • HP ENVY Pro 6475
  • HP OfficeJet 250 Mobile
  • HP OfficeJet Pro 7740 Wide Format
  • HP OfficeJet Pro 8025
  • HP DeskJet 2622
  • HP DeskJet 2655

HP declined to comment on this story.

Canon's doing it, too

HP isn't the only company demanding ink for scans and faxes. It's not even the only one that has faced litigation over it.

As noticed by The Verge, Canon back in March settled a class-action lawsuit [PDF] stating that Canon all-in-one printers can't scan or fax with low or empty ink cartridges and its "advertising claims are false, misleading, and reasonably likely to deceive the public."

The settlement terms weren't disclosed, and Canon didn't respond to Ars Technica's request for comment. But here are the models listed in that complaint:

  • MAXIFY GX7020
  • MAXIFY GX6020
  • PIXMA TS3520
  • PIXMA G3260
  • PIXMA G7020
  • PIXMA G2260
  • PIXMA MX330
  • PIXMA MX452
  • PIXMA TS9520
  • PIXMA TR8620
  • PIXMA TS6420
  • PIXMA TS6320
  • PIXMA TR4520
  • PIXMA MG3620
  • PIXMA MG2522
  • PIXMA TS3320
  • PIXMA TR7020
  • PIXMA TS9521C
  • PIXMA TS8320
  • PIXMA TR8520
  • PIXMA TR7520
  • "and any and all predecessor models"

Similarly to the HP situation, representatives on Canon's support forum allegedly confirmed that certain all-in-one printer models require "all ink tanks installed and they must all contain ink in order to use the functions of the printer" and that "there is no workaround for this."

However, the posts that are linked to in the complaint (here and here) as of November 22, 2022, have a comment from a moderator saying, "It's possible to scan with an empty ink tank or cartridge." The support page provides instructions for disabling the function that detects ink levels.

Canon didn't explain why its printers ever required ink to scan in the first place. But the company has at least agreed to instruct users on disabling the ink requirement, which is better than where HP is currently.

Semantics prioritized over customers

As of this writing, HP doesn't seem to be working toward enabling its printers to scan and fax without ink. When trying to get the complaint dismissed, HP claimed that support agents who said printers are designed to not scan without ink don't represent HP and were not referring to printer models owned by the complaint's plaintiffs.

The printer industry has long had an issue with customer trust. HP, for instance, has bricked third-party ink (and issued other problematic printer firmware updates), along with the company's controversial HP+ program and region-locked printers . HP has already paid settlements for abruptly bricking third-party ink via its Dynamic Security "feature."

The Verge noticed that HP at least changed its language for the Envy 6455e's Amazon product page to say that you can "print, scan, and copy from your phone—from whenever, wherever" to "print, scan, and copy from your phone—from anywhere."

Such semantic games feel more like HP seeking a loophole than trying to please customers.

Such corporation-first tactics may be why Epson thinks it's dunking on competitors with its own support page dedicated to this topic. It reads, "Since 2008, all Epson printers will scan even when there is little or no usable ink left in the cartridge."

But, as is often the case with printers, a sneaky little caveat could abruptly ruin your day. As the support page also states:

However, all of the genuine Epson cartridges must be installed in the printer, even if depleted of usable ink and the printer displays the replace cartridge message.

So you still need an Epson ink cartridge to scan. If you happened to have tossed your ink cartridge when it became useless, your all-in-one printer could be virtually useless, too. (Epson didn't respond to a request for comment.)

It's alarming that printer makers know customers feel swindled and confused—but won't eliminate the problematic design. Printer vendors have become too bold in expecting customers to accept wordplay, settlements, and confusing support responses. Class-action lawsuits may light a fire under these companies, but it shouldn't be up to disgruntled customers to complain to support agents, lawyers, and judges.

If printer companies can't deliver a reliable, easy experience, customers will have no choice but to consider alternatives.

395

Archived version: https://archive.ph/3vfmc

How much ink does an all-in-one printer need in order to fax a document? Or to scan one to your computer? The obvious answer is "none." But if you own certain printers from companies like HP and Canon, you won't be able to use core features unless the device has ink—even if those features have nothing to do with ink.

Unfortunately, all-in-one printers arbitrarily demanding ink to perform non-printing functions isn't a new frustration. And that's despite some companies having printers that can scan without ink. Clearly, scanning or faxing without requiring an ink cartridge would improve users' experience—and they've illustrated that through class-action lawsuits. But this hasn't stopped printer makers from fighting to keep the nettlesome practice.

No ink, no scan

Since mid-2022, HP has been fighting a class-action lawsuit alleging that certain all-in-one printer models won't scan or fax without ink and that HP doesn't properly disclose this to shoppers. On January 13, 2023, the complaint was dismissed but allowed to be amended (you can view the amended complaint here: [PDF]), and on August 10, a Northern District of California judge dismissed HP's motion to dismiss the amended complaint [PDF].

HP Envy 6455e and HP Deskjet 2655 purchasers Gary Freund and Wayne McMath filed the complaint, which states that HP printers are designed to enter an error state when low or out of ink, preventing usage until the installment of a new ink cartridge. The plaintiffs are also peeved that HP marketing and advertising doesn't clearly disclose this, the complaint says. The complaint also notes that an HP support agent has said that HP printers are "designed in such a way that with the empty cartridge or without the cartridge the printer will not function."

"HP’s All-in-One Printers do not work as advertised. Ink is not a necessary component to scan or to fax a document," the complaint reads.

It adds:

Tying the scan or fax capabilities of the All-In-One Printers to ink contained in the devices offers no benefit and only serves to disadvantage and harm consumers financially. However, tying the scan or fax capabilities of the All-In-One Printers to ink contained in the devices does, however [sic], serve to benefit HP.

Anyone who's owned an inkjet printer knows how expensive ink can be. That suggests a reason to push people to buy ink through tactics like blocking core features if no ink is present and reportedly selling printers below cost. Ink-buying programs have also become cash cows. HP in 2021, for example, said its Instant Ink subscription business was worth $500 million, per CRN. In its Q2 2023 financial report, HP named Instant Ink a key growth area.

The complaint against HP says:

Indeed, HP designs its All-in-One printer products so they will not work without ink. Yet, HP does not disclose this fact to consumers. … Even were it technically possible to scan a document without all ink cartridges present, HP does not disclose any 'workaround' to consumers in any of the product packaging nor in any of HP’s advertising and marketing materials regarding its multi-function devices.

The complaint seeks monetary damages as well as the end of HP's "misleading advertising and marketing campaign" and for HP to "engage in a corrective campaign to inform consumers of the misleading advertising."

Here are all the HP printer models listed in the complaint:

  • HP Deskjet 2755e
  • HP DeskJet 3755
  • HP DeskJet 4155e
  • HP ENVY 6055e
  • HP ENVY 6075
  • HP ENVY 6455
  • HP ENVY Pro 6475
  • HP OfficeJet 250 Mobile
  • HP OfficeJet Pro 7740 Wide Format
  • HP OfficeJet Pro 8025
  • HP DeskJet 2622
  • HP DeskJet 2655

HP declined to comment on this story.

Canon's doing it, too

HP isn't the only company demanding ink for scans and faxes. It's not even the only one that has faced litigation over it.

As noticed by The Verge, Canon back in March settled a class-action lawsuit [PDF] stating that Canon all-in-one printers can't scan or fax with low or empty ink cartridges and its "advertising claims are false, misleading, and reasonably likely to deceive the public."

The settlement terms weren't disclosed, and Canon didn't respond to Ars Technica's request for comment. But here are the models listed in that complaint:

  • MAXIFY GX7020
  • MAXIFY GX6020
  • PIXMA TS3520
  • PIXMA G3260
  • PIXMA G7020
  • PIXMA G2260
  • PIXMA MX330
  • PIXMA MX452
  • PIXMA TS9520
  • PIXMA TR8620
  • PIXMA TS6420
  • PIXMA TS6320
  • PIXMA TR4520
  • PIXMA MG3620
  • PIXMA MG2522
  • PIXMA TS3320
  • PIXMA TR7020
  • PIXMA TS9521C
  • PIXMA TS8320
  • PIXMA TR8520
  • PIXMA TR7520
  • "and any and all predecessor models"

Similarly to the HP situation, representatives on Canon's support forum allegedly confirmed that certain all-in-one printer models require "all ink tanks installed and they must all contain ink in order to use the functions of the printer" and that "there is no workaround for this."

However, the posts that are linked to in the complaint (here and here) as of November 22, 2022, have a comment from a moderator saying, "It's possible to scan with an empty ink tank or cartridge." The support page provides instructions for disabling the function that detects ink levels.

Canon didn't explain why its printers ever required ink to scan in the first place. But the company has at least agreed to instruct users on disabling the ink requirement, which is better than where HP is currently.

Semantics prioritized over customers

As of this writing, HP doesn't seem to be working toward enabling its printers to scan and fax without ink. When trying to get the complaint dismissed, HP claimed that support agents who said printers are designed to not scan without ink don't represent HP and were not referring to printer models owned by the complaint's plaintiffs.

The printer industry has long had an issue with customer trust. HP, for instance, has bricked third-party ink (and issued other problematic printer firmware updates), along with the company's controversial HP+ program and region-locked printers . HP has already paid settlements for abruptly bricking third-party ink via its Dynamic Security "feature."

The Verge noticed that HP at least changed its language for the Envy 6455e's Amazon product page to say that you can "print, scan, and copy from your phone—from whenever, wherever" to "print, scan, and copy from your phone—from anywhere."

Such semantic games feel more like HP seeking a loophole than trying to please customers.

Such corporation-first tactics may be why Epson thinks it's dunking on competitors with its own support page dedicated to this topic. It reads, "Since 2008, all Epson printers will scan even when there is little or no usable ink left in the cartridge."

But, as is often the case with printers, a sneaky little caveat could abruptly ruin your day. As the support page also states:

However, all of the genuine Epson cartridges must be installed in the printer, even if depleted of usable ink and the printer displays the replace cartridge message.

So you still need an Epson ink cartridge to scan. If you happened to have tossed your ink cartridge when it became useless, your all-in-one printer could be virtually useless, too. (Epson didn't respond to a request for comment.)

It's alarming that printer makers know customers feel swindled and confused—but won't eliminate the problematic design. Printer vendors have become too bold in expecting customers to accept wordplay, settlements, and confusing support responses. Class-action lawsuits may light a fire under these companies, but it shouldn't be up to disgruntled customers to complain to support agents, lawyers, and judges.

If printer companies can't deliver a reliable, easy experience, customers will have no choice but to consider alternatives.

164

Archived version: https://archive.ph/eSuy1

A few months ago, an engineer in a data center in Norway encountered some perplexing errors that caused a Windows server to suddenly reset its system clock to 55 days in the future. The engineer relied on the server to maintain a routing table that tracked cell phone numbers in real time as they moved from one carrier to the other. A jump of eight weeks had dire consequences because it caused numbers that had yet to be transferred to be listed as having already been moved and numbers that had already been transferred to be reported as pending.

“With these updated routing tables, a lot of people were unable to make calls, as we didn't have a correct state!” the engineer, who asked to be identified only by his first name, Simen, wrote in an email. “We would route incoming and outgoing calls to the wrong operators! This meant, e.g., children could not reach their parents and vice versa.”

A show-stopping issue

Simen had experienced a similar error last August when a machine running Windows Server 2019 reset its clock to January 2023 and then changed it back a short time later. Troubleshooting the cause of that mysterious reset was hampered because the engineers didn’t discover it until after event logs had been purged. The newer jump of 55 days, on a machine running Windows Server 2016, prompted him to once again search for a cause, and this time, he found it.

The culprit was a little-known feature in Windows known as Secure Time Seeding. Microsoft introduced the time-keeping feature in 2016 as a way to ensure that system clocks were accurate. Windows systems with clocks set to the wrong time can cause disastrous errors when they can’t properly parse timestamps in digital certificates or they execute jobs too early, too late, or out of the prescribed order. Secure Time Seeding, Microsoft said, was a hedge against failures in the battery-powered onboard devices designed to keep accurate time even when the machine is powered down.

“You may ask—why doesn’t the device ask the nearest time server for the current time over the network?” Microsoft engineers wrote. “Since the device is not in a state to communicate securely over the network, it cannot obtain time securely over the network as well, unless you choose to ignore network security or at least punch some holes into it by making exceptions.”

To avoid making security exceptions, Secure Time Seeding sets the time based on data inside an SSL handshake the machine makes with remote servers. These handshakes occur whenever two devices connect using the Secure Sockets Layer protocol, the mechanism that provides encrypted HTTPS sessions (it is also known as Transport Layer Security). Because Secure Time Seeding (abbreviated as STS for the rest of this article) used SSL certificates Windows already stored locally, it could ensure that the machine was securely connected to the remote server. The mechanism, Microsoft engineers wrote, “helped us to break the cyclical dependency between client system time and security keys, including SSL certificates.”

Simen wasn’t the only person encountering wild and spontaneous fluctuations in Windows system clocks used in mission-critical environments. Sometime last year, a separate engineer named Ken began seeing similar time drifts. They were limited to two or three servers and occurred every few months. Sometimes, the clock times jumped by a matter of weeks. Other times, the times changed to as late as the year 2159.

“It has exponentially grown to be more and more servers that are affected by this,” Ken wrote in an email. “In total, we have around 20 servers (VMs) that have experienced this, out of 5,000. So it's not a huge amount, but it is considerable, especially considering the damage this does. It usually happens to database servers. When a database server jumps in time, it wreaks havoc, and the backup won’t run, either, as long as the server has such a huge offset in time. For our customers, this is crucial.”

Simen and Ken, who both asked to be identified only by their first names because they weren’t authorized by their employers to speak on the record, soon found that engineers and administrators had been reporting the same time resets since 2016.

In 2017, for instance, a Reddit user in a sysadmin forum reported that some Windows 10 machines the user administered for a university were reporting inaccurate times, in some cases by as many as 31 hours in the past. The Reddit user eventually discovered that the time changes were correlated to a Windows registry key in HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\W32Time\SecureTimeLimits. Additional investigation showed that the time changes were also linked to errors that reported valid SSL certificates used by the university website were invalid when some people tried to access it. The admin reached the following conclusion:

TLDR: Windows 10 has a feature called Secure Time which is on by default. It correlates time stamp metadata from SSL packets and matches them against time from the DCs. It processes these various times by means of black magic and sets the system clock accordingly. This feature has the potential to flip out and set the system time to a random time in the past. The flip out MIGHT be caused by issues with SSL traffic.

Other examples of people reporting the same behavior—for example, here and here—date back to 2016, shortly after the rollout of STS. More recent reports of harmful STS-induced time changes are here, here, and here.

“We've run into a show-stopping issue where time on a bunch of production systems jumped forward 17 hours,” one Reddit user wrote. “If you've been in the game more than a week, you know the havoc this can cause.”

STS primer

To determine the current time, STS pulls a set of metadata contained in the SSL handshake. Specifically, the data is:

  • ServerUnixTime, a date and time representation showing the number of seconds that have elapsed since 00:00:00 UTC on January 1, 1970
  • Cryptographically signed data obtained from the remote server’s SSL certificate showing whether it has been revoked under a mechanism knowns as the Online Certificate Status Protocol.

Microsoft engineers said they used the ServerUnixTime data “assuming it is somewhat accurate” but went on to acknowledge in the same sentence that it “can also be incorrect.” To prevent STS from resetting system clocks based on data provided by a single out-of-sync remote server, STS makes randomly interspersed SSL connections to multiple servers to arrive at a reliable range for the current time. The mechanism then merges the ServerUnixTime with the OCSP validity period to produce the smallest possible time range and assigns it a confidence score. When the score reaches a sufficiently high threshold, Windows classifies the data as an STSHC, short for Secure Time Seed of High Confidence. The STSHC is then used to monitor system clocks for “gross errors” and correct them.

Despite the checks and balances built into STS to ensure it provides accurate time estimates, the time jumps indicate the feature sometimes makes wild guesses that are off by days, weeks, months, or even years.

“At this point, we are not completely sure why secure time seeding is doing this,” Ken wrote in an email. “Being so seemingly random, it’s difficult to [understand]. Microsoft hasn't really been helpful in trying to track this, either. I've sent over logs and information, but they haven't really followed this up. They seem more interested in closing the case.”

The logs Ken sent looked like the ones shown in the two screenshots below. They captured the system events that occurred immediately before and after the STS changed the times. The selected line in the first image shows the bounds of what STS calculates as the correct time based on data from SSL handshakes and the heuristics used to corroborate it.

The “Projected Secure Time” entry immediately above the selected line shows that Windows estimates the current date to be October 20, 2023, more than four months later than the time shown in the system clock. STS then changes the system clock to match the incorrectly projected secure time, as shown in the “Target system time.”

The second image shows a similar scenario in which STS changes the date from June 10, 2023, to July 5, 2023.

Simen, meanwhile, said he has also reported the time resets to multiple groups at Microsoft. When reporting the problems on Microsoft’s feedback hub in May, he said, he received no company response. He then reported it through the Microsoft Security Response Center in June. The submission was closed as a “non-MSRC case" with no elaboration.

The engineer then tapped a third party specializing in Microsoft cloud security to act as an intermediary. The intermediary relayed a response from Microsoft recommending STS be turned off when the server receives reliable timekeeping through the Network Time Protocol.

“Unfortunately, this recommendation isn't publicly available, and it is still far from enough to stop the wrongly designed feature to keep wreaking havoc around the world,” Simen wrote in an email.

Warning: STS will “bite you in the butt”

Simen said he believes the STS design is based on a fundamental misinterpretation of the TLS specification. Microsoft’s description of STS acknowledges that some SSL implementations don’t put the current system time of the server in the ServerUnixTime field at all. Instead, these implementations—most notably the widely used OpenSSL code library starting in 2014—populate the field with random values. Microsoft’s description goes on to say, “We have observed that most servers provide a fairly accurate value in this field and the rest provide random values.”

“The false assumption is that most SSL implementations return the server time,” Simen said. “This was probably true in a Microsoft-only ecosystem back when they implemented it, but at that time [when STS was introduced], OpenSSL was already sending random data instead.”

While official Microsoft talking points play down the unreliability of STS, Ryan Ries, whose LinkedIn profile indicates he is a senior Windows escalation engineer at Microsoft, wasn’t as reticent when discussing STS on social media last year.

“Hey people,” he wrote. “If you manage Active Directory domain controllers, I want to give you some UNOFFICIAL advice that is solely my personal opinion: Disable Secure Time Seeding for w32time on your DCs.” When someone asked him why, Ries responded, “Because it's just a matter of time—wink—before it bites you in the butt.”

A Microsoft representative emailed the following statement several hours after this post went live on Ars:

Secure Time Seeding feature is a heuristic-based method of time keeping that also helps correct system time in case of certain software/firmware/hardware timekeeping failures. The feature has been enabled by default in all default Windows configurations and has been shown to function as intended in default configurations.

Time distribution is unique to each deployment and customers often configure their machines to their particular needs. Given the heuristic nature of Secure Time Seeding and the variety of possible deployments used by our customers, we have provided the ability to disable this feature if it does not suit their needs. Our understanding is that there are likely unique, proprietary, complex factors in deployments where customers are experiencing Secure Time Seeding issues and these customers do not benefit from this feature as it is currently implemented. In these isolated cases, the only course of action we can recommend is to disable this feature in their deployments.

We agree that the overall direction of technology with the adaption of TLS v1.3 and other developments in this area could make Secure Time Seeding decreasingly effective over time, but we are not aware of any bugs arising from their use. This technology direction also makes heuristic calculation of time using SSL/TLS far less attractive when compared to deterministic, secure time synchronization.

We continue to investigate how to best secure time synchronization on the Internet and welcome customer input on how to best meet their future needs.

The mystery continues

As Simen noted earlier, it's not clear precisely what causes STS to make the errors sometimes but not always.

"This is what really strikes me as odd," Simen wrote. Microsoft "know the field they look at might contain random data, so my guess is that their implementation breaks down when this is skewed so that most/all implementations they communicate with contains random data rather than just some."

HD Moore, CTO and co-founder at runZero, speculated that the cause is some sort of logic bug in Microsoft code. On Signal, he wrote:

If OpenSSL has been setting random unix times in TLS responses for a long period of time, but this bug is showing up infrequently, then it's likely harder to trigger than just forcing a bunch of outbound TLS connections to a server with bogus timestamp replies—if it was that easy, it would happen far more frequently.

Either the STS logic requires different root certificates as the signer, or some variety in the hostnames/IPs, or only triggers on certain flavors of random timestamp (like values dividable by 1024 or something).

It smells like a logic bug that is triggered infrequently by fully random timestamps (32-bit) and likely just some subset of values and with some other conditions (like multiple requests in some period of time to multiple certs, etc.).

There are other means to ensure server clocks remain accurate, Moore said:

[Clock-setting] seems like something better handled through NTP, or at least through a trusted TLS connection to a known endpoint operated by the vendor (time.windows.com and friends). The super lazy (but arguably safer) way to get a trusted timestamp is something like: ❯ curl -s -vvv https://www.microsoft.com/4040 2>&1 | grep -i '< date:'< date: Wed, 16 Aug 2023 04:37:31 GMT.

Second-ish precision, and if you lock the HTTP client to a short list of trusted CA roots for the target domain, pretty hard to mess with. I used something similar forever ago on Linux systems where the clock would go wrong often—set the hwclock to the HTTP response timestamp of a known good server, then run NTP, which would succeed since the clock was close enough to be within the boundary check—otherwise NTP would fail since the clock was too far off.

As the creator and lead developer of the Metasploit exploit framework, a penetration tester, and a chief security officer, Moore has a deep background in security. He speculated that it might be possible for malicious actors to exploit STS to breach Windows systems that don't have STS turned off. One possible exploit would work with an attack technique known as Server Side Request Forgery.

Microsoft’s repeated refusal to engage with customers experiencing these problems means that for the foreseeable future, Windows will by default continue to automatically reset system clocks based on values that remote third parties include in SSL handshakes. Further, it means that it will be incumbent on individual admins to manually turn off STS when it causes problems.

That, in turn, is likely to keep fueling criticism that the feature as it has existed for the past seven years does more harm than good.

STS “is more like malware than an actual feature,” Simen wrote. “I’m amazed that the developers didn’t see it, that QA didn’t see it, and that they even wrote about it publicly without anyone raising a red flag. And that nobody at Microsoft has acted when being made aware of it.”

20

Archived version: https://archive.ph/TTSEJ

An MP has told a public meeting he will pursue a law granting better protection for heritage venues in the name of a pub which was demolished after a fire.

About 100 people attended the meeting after the 18th Century Crooked House, near Dudley, was destroyed less than two days after the fire.

Marco Longhi, Conservative MP for Dudley North, said he would love to see a Crooked House law protect other venues from the same fate.

The fire is being treated as arson.

South Staffordshire Council has said it was looking at possible enforcement action against those responsible.

Speaking at Himley Hall, Mr Longhi urged patience and asked residents to avoid speculating about the circumstances of the fire on social media.

He said the building, which sank due to subsidence caused by mining works in the area, would "rise from the ashes", but it would be a "marathon, not a sprint".

"I don't believe our current legislative framework is strong enough," he said. "I would love to see, in future, a Crooked House law.

"It is important we make a change in the law. Our historic pubs and buildings are not protected adequately."

The MP pledged to bring the matter to Michael Gove, Secretary of State for Levelling Up, Housing and Communities, as soon as parliament reconvened in September.

The pub, known for its sloping walls and floor, was bought from Marston's by ATE Farms Limited in July.

On Tuesday, the BBC revealed its owners had experienced a huge fire on other land they owned.

Members of the public voiced concerns about a smell from the stream that runs alongside the pub and rubbish being dumped at the site.

Speaking after the meeting, residents reiterated their support for the venue to be rebuilt.Dawn and Paul Craig said the landmark should be reconstructed in the same spot, but better lighting would be needed on the approach to avoid people using the driveway as a "tip".

John Hutchinson, who ran the pub as a relief manager in the 80s and 90s called for the new owners to explain what had happened. "Where are they, why haven't they come on camera and faced the public?" he asked.Others expressed disappointment South Staffordshire Council did not attend the meeting.

Fencing has now been erected around the ruins, after the Health and Safety executive ordered the owners to make the site safe.

Mr Longhi said the behaviour of people who had been removing bricks and other debris from the rubble was "disgusting" and said he was happy the fencing was up.

South Staffordshire Conservative MP Sir Gavin Williamson has also voiced his support for restoration of the site.

23

Archived version: https://archive.ph/hroNJ

Bradley Cooper is facing criticism for performing in “Jewface” after the release of the trailer for his biopic of Leonard Bernstein, which revealed the facial prosthetics he employed for the role.

Bernstein, the son of Jewish-Ukrainian immigrants to the US, was a hugely talented conductor and composer, best known for writing the music for West Side Story as well as composing three symphonies and becoming music director of the New York Philharmonic. Cooper, who directs, co-writes and stars in Maestro, is not Jewish, and can be seen in the trailer with a noticeably prominent fake nose opposite Carey Mulligan, who plays Bernstein’s wife Felicia Montealegre.

British actor and activist Tracy-Ann Obermann criticised Cooper on social media, writing: “If [Cooper] needs to wear a prosthetic nose then that is, to me and many others, the equivalent of Black-Face or Yellow-Face … if Bradley Cooper can’t [play the role] through the power or acting alone then don’t cast him – get a Jewish Actor.”

Obermann added, referencing Cooper’s performance on stage in 2014 as John Merrick in The Elephant Man: “Bradley Cooper managed to play the ELEPHANT MAN without a single prosthetic then he should be able to manage to play a Jewish man without one.”

The Hollywood Reporter’s chief TV critic Daniel Fienberg called the prosthetics “problematic” when photos from the set emerged in May, and subsequently described the film as “ethnic cosplay”.

In a statement posted on social media, Bernstein’s children Jamie, Alexander, and Nina defended Cooper, saying: “It breaks our hearts to see any misrepresentations or misunderstandings of [Cooper’s] efforts … Bradley chose to use makeup to amplify his resemblance, and we’re perfectly fine with that. We’re also certain that our dad would have been fine with it as well.”

The controversy follows objections to the casting of Cillian Murphy as nuclear physicist J Robert Oppenheimer – again, a non-Jewish actor playing a notable Jewish figure – in the biopic directed by Christopher Nolan, with David Baddiel describing such casting as “complacent” and “doubl[ing] down” on “Jewish erasure”. Baddiel also criticised the casting of Helen Mirren as Israeli prime minister Golda Meir, writing in the Guardian that “over a period of extreme intensification of the progressive conversation about representation and inclusion and microaggression and what is and isn’t offensive to minorities, one minority – Jews – has been routinely neglected”.

[-] soyagi@yiffit.net 21 points 1 year ago

Palworld is set to officially release at the start of next year. It's clearly very Pokémon inspired, but looks much more impressive than any existing Pokémon game. I wonder if Palworld will help shake the Pokémon Company into upping their game.

[-] soyagi@yiffit.net 17 points 1 year ago

This was originally published in 2021 so I wonder why it has a new article.

https://www.iflscience.com/fully-intact-dinosaur-embryo-found-inside-fossilized-egg-62004

[-] soyagi@yiffit.net 19 points 1 year ago

Just use the website; there are annoying pop-ups asking you to subscribe, but they don't limit how many articles you can read.

[-] soyagi@yiffit.net 19 points 1 year ago

Hmm, this gives me manufactured engagement vibes. Like those mobile game ads ("only 10% of players are smart enough to complete this puzzle!"

[-] soyagi@yiffit.net 19 points 1 year ago

I simply live without most things. I have a ten year old laptop and a discount Android phone from about four years ago, and that's it. No television, no console, no smart watch, no subscriptions to anything other than my internet connection which is also the slowest available.

I can stream YouTube, which I also use for music, I can do banking, I read the news. I don't feel like I am missing out.

[-] soyagi@yiffit.net 19 points 1 year ago

What a terrible headline. Tell me what the experts thought. I don't want to see this kind of clickbait here. Change the title yourself if necessary, just don't let this kind of shit slide.

[-] soyagi@yiffit.net 17 points 1 year ago

Photo (fo-toe) or picture (pik-chur).

[-] soyagi@yiffit.net 24 points 1 year ago

Although it features foxes rather than cats, Endling: Extinction is Forever ticks a lot of your boxes.

For something less survivally you could try Catlateral Damage: Remeowstered.

[-] soyagi@yiffit.net 23 points 1 year ago

For those interested, the case is Rogozinski v Reddit Inc, U.S. District Court, Northern District of California, No. 23-00686.

view more: ‹ prev next ›

soyagi

joined 1 year ago