I’ve had pangolin running for a while, doing tunneling to some self hosted resources, and I’m confused by this announcement and update. It seems like they’re suggesting to use an Android/iOS client to connect to Pangolin protected resources, which seems like a shitload more work and overhead than just using wireguard to do the same thing. Am i missing something here?

Agreed. Wrong word choice. And its an important, major correction. Not a small one. :-)

I don’t know about intentionally designing that. It would violate contracts and have to be a hidden, but broadly conspiratorial activity. I have some professional experience in consumer electronics, and I remember when TPMs started becoming a required component for CE. It took several years to become commonplace; a slow transition from security by obscurity to sensible practices when devices started to be internet connected.

Nevertheless, from my experience, I’d say the TPMs aren’t there for user security, they are there to keep Hollywood movies safe.

+100. People forget, or chose not to pay attention to the fact that Google sensor vault data was key evidence in convicting the January 6 insurrectionists (who were exonerated to become ICE). Surveillance capitalism doesn’t care which side you are on.

Just to clarify… my question wasn’t “do sleepers exist” it was should we continue to call them sleepers when they have broad access to the administrative branch of the US government.

And then, unless you jumped through hoops to disable it, your PC sends the key to Microsoft so they can just keep it linked to your account.

You’d probably also have to jump through the hoops to disable windows recall too.

Are they really sleepers any more?

I’ve got a few domains. I use Porkbun as registrar. They’re awesome, and the domains were pretty cheap. Under $10 a year each.