Seems to only affect some users. Also, not claiming it was on purpose or with malicious intent. I’m sure it is an unintentional bug.
But, it also goes to show that Apple can tweak your settings at will, ignoring your prior preferences, which I think we can all agree should not happen.
Updating to the latest iOS, which included a critical security patch, once again enabled my Apple Intelligence. This happened with the last update, someone reported it on HN so I thought to check. Once again, there it was enabled.
I am assuming that you have objections to Apple Intelligence. Are there concerns with it I should be aware of? Apple Intelligence is limited, but I like some of the feature such as “remove distracting elements” in Safari.
Based on what I know about it, Apple Intelligence is not inherently bad. I just choose not to use it and purposefully disabled it, so to have it re-enabled automagically by an update feels bad.
Bitwarden is better, but Vaultwarden (the self-hosted version written in Rust) is the absolute best option. Host it yourself on a free tier VM in one of the clouds, configure a backup solution, and never worry about it again. And you don't need to trust anyone with your passwords.
Use tailscale if you want to get fancy and keep it off the public internet or go the easy route and install fail2ban and expose it via public IP.
> Host it yourself on a free tier VM in one of the clouds, configure a backup solution, and never worry about it again. And you don't need to trust anyone with your passwords.
> Use tailscale if you want to get fancy and keep it off the public internet or go the easy route and install fail2ban and expose it via public IP.
This isn't exactly a slam dunk, considering you now have to be knowledgeable about how to secure a machine that is on the internet and stay up to date with security patches which even tailscale itself isn't immune to: https://news.ycombinator.com/item?id=33695886
free for personal use, open source, cloud synced, no device limits. and as OP mentioned different server implementations if you want to host it yourself. No idea why people stick to any of the proprietary solutions.
How much should you worry about security with a setup like this? I have reasonable Linux skills, but I wouldn’t want my VM to get pwned because I forgot to update it.
Honestly I don't even bother with hosting it in a cloud instance. I host Bitwarden on my home network, and whenever one of my devices opens the Bitwarden browser plugin or mobile app (at home), it will automatically sync everything. From that point on you can continue using Bitwarden without it needing to connect to the server.
So on one hand, I lose the ability to sync when I'm not on my home network. On the other hand, I don't change anything in my Bitwarden server _that_ often, and if I do, I can just quickly do a sync on whatever devices and I'm good to go. With the added benefit of not opening myself up to the outside world.
and what if your TV or thermostat, with access to your private network, gets compromised? do you have that machine locked down good enough to protect against an inside-the-firewall attack?
Here's where I get a little more naive....do you....have one VLAN that's your "normie" network that your WIFI access points expose to all the devices, then the other VLAN is...only within the wired network, so if your phone wants to get to your bitwarden, it's always going out the wifi out the gateway first and back in, kind of thing?
right now all my "services", which are not bitwarden-level sensitive, are all on the same network as whatever crap I bought at home depot. I have an edgemax router and there is a third NIC I've never used, so I guess I'd finally plug a switch in there! ok. next project I guess
When it comes to hosted options, they are hands down the best. Worth pointing out that they also have integrated 2FA, if you're satisfied with first and second factor living in the same spot.
It is still 2 factor, breaching the password manager is a corner case that you can decide to cover or not. It seems like for critical accounts you should NOT. For derived accounts, it should be better than just a password.
For a "service based" password manager, sure. (It can prevent the service from ever handing over your encrypted database to an attacker.)
In a local password manager, it doesn't work like that. A challenge-response mechanism can help there, but the cost/benefit analysis looks pretty different there, IMO.
I’ll second the 1Password recommendations, it’s fantastic software that is becoming better and better. If you’re comfortable with cloud syncing, I can’t imagine a better option than 1Password.
A top 1Password tip is that the business plans include free family plans for every member, so if you can get your employer to use 1Password then you’ll be able to get your personal account for free (which would include your family, too). A very underrated deal!
I recently logged back into my old LastPass account after 5 years and it was fascinating just how bad it is compared to 1Password.
I've been pretty happy with cloud-hosted Bitwarden. I used 1Password at work on macOS and the form fill didn't seem to work quite as well (that was ~2020-2021 so maybe things have changed)
Not sure about 1Pass on Android, but Bitwarden works very well for me there (much better than Lastpass which afaik required a subscription to use the app)
It doesn't do cloud syncing itself, but it lets you pick from a number of different providers (DropBox, iCloud, OneDrive, plus a few others) which you probably already use.
I feel like my biggest peeve with this whole situation revolves around a lack of choice on the user’s end, with (presumably) the goal of hardening security. And, then not doing the research to ensure the choices made are actually the most secure.
The more cynical reason might revolve around getting access to your phone number, but we’ll give the benefit of the doubt and say that’s not the case.
In my opinion, websites offering 2FA should give users a choice to pick between:
- Security Key (with Backup Codes you can store offline or SMS)
- Authenticator App (with Backup Codes you can store offline or SMS)
- SMS
- No 2FA
If I want to choose a less secure method for 2FA or backup codes, that should be my choice but clearly communicated.
We’ve been using Dgraph in production for a few years now.
The project is fine for hobby projects but it is NOT production ready.
Don’t take my word for it, though… I invite you read through some of the issues reported in their discussion forums and to take a look at their Github contributions over the past year.
There was major turmoil in Dgraph Labs (the project’s maintainers) last year which resulted in the CEO and 95% of the engineers exiting the company. They are currently in a rebuilding phase, with limited staff and runway.
There are several critical bugs, which lead to either data loss, data corruption or cluster instability, which the current maintainers have failed to fix. Additionally, their customer support is often either unresponsive or unhelpful (even for paying customers).
Running a Dgraph cluster is expensive, with heavy memory utilization and favoring vertical scaling. If you need scale, then be prepared to spend big.
The documentation is not great and because very few people use this project in production, help is extremely limited.
Best of luck to you should you choose Dgraph and to anyone currently using it already.
Hello db,
I’m sorry you were put in this uncomfortable situation. Ideally, you would have received all the documentation, resources and training necessary to mitigate your feelings of stress. Unfortunately, the reality in our industry is that you’ll often find yourself in these uncomfortable situations. Good news is that you will grow from them.
The propensity to quickly learn and adapt to new situations is a critical skill in IT. Knowing when to apply your skills, however, is also critical. I advise you hone these skill.
Regarding your situation, you have a few options:
1. You can say “No”. It took me a really long time to realize that “No” is a valid (and often necessary) answer. If you don’t feel comfortable or able to take on this task, don’t. You wouldn’t pour gasoline on a forrest fire. Sometimes you are the gasoline and need to know when to say no.
2. As others have pointed out, candidly communicate your feelings around being uncomfortable but willing to take the time to learn. This will show that you are honest, can recognize your short-comings, but are also willing to grow.
3. You can smile, act confident and pray that nothing will go wrong. If things go well, either you’ll be a hero or no one will notice, but if things go wrong… people will notice. There’s a lot of comments here suggesting that being an intern is a get out jail free card… I don’t think it is. Yes, people more senior to you should know better; often they don’t, but you should (if you recognize it) know better and communicate.
Like others, I would recommend documenting your communications with your boss. If they happen over a call or in person, take notes during or promptly after the call.
Ultimately, I think there’s a difference between doing something you “think” you can do and it going wrong, and doing something you’re not comfortable doing and it going wrong.
Airbnb rebranded [1] and so can you. Ultimately, the important part is that you accomplished an MVP while juggling family, work and kids. Hats off to you mate. You should be proud.
Really cool idea! Style aside, I think you’ve developed an interesting product with lots of appeal, especially for those looking to be “less” connected.
For those complaining about the style, perhaps offering a DIY kit may be a viable alternative that allows anyone to add their own flair.
But, it also goes to show that Apple can tweak your settings at will, ignoring your prior preferences, which I think we can all agree should not happen.
It is also not the first time this happens:
- iOS 18.3 https://arstechnica.com/gadgets/2025/01/ios-18-3-macos-15-3-...
- iOS 17 https://www.bitdefender.com/en-us/blog/hotforsecurity/ios-17...