Fair points, ty for the rebuttal
I think it would be completely crazy if apple did this without entering into a special contract with google. Theres no way some sales engineer just signed up for a google ads account one day
I agree, and I am usually the first to cast privacy stones at facebook. While I wouldnt wear these in most cases I wear sunglasses today, I could imagine plenty of social scenarios where I would not be the least bit…
Wow. Almost unbelievable. Any security engineer or literally any (authenticated or agent-based) enterprise scanner should have caught this. Wonder how this one slipped through - the 2019 runc bug was a HUGE deal if you…
I suspect because almost no one wants to be a “gardener” of microblog/message/talk/email, and most do not know how. They just want to follow and talk to people. FB solves all of these with one signup, as did myspace. I…
I’ll believe Mark when it happens. In 2017 he also said he’d ship a billion oculuses; I think they sell maybe 3M a year. My 2c; I did see their remote work demo and thought it was kind of cool, although (anecdotally)…
Unfortunately no - the curl commands will by default go out over http, which does not use TLS at all or provide any guarantee of remote server integrity, just like plain TCP.So an attacker with the right network posture…
Funny, the point of TLS is to prevent MITM attackers from reading traffic. The two install commands provided would give a LAN or MITM attacker root on your host.
To clarifymy stance, now that I have a bit more time this evening… unprivileged userns is the only way forward for linux sandboxing on a bare-metal host past the boundaries of POSIX isolation. so from a security…
actual bugs, qualys’s recent cve-2021-33909 is one example.
I had the same experience a couple months back trying to set up a gaming PC. This was after the initial screen set my speakers to max and then blasted Cortana screaming at me in different languages. This was at about…
Agreed that if you did a shitty job benchmarking you could get shitty results.
It's not entirely fair, because in the 60s basically all modern crypto primitives were missing. If I had those: 1. Encrypted onion routing on layers that betray source/dest IP. 2. eSNI on all TLS connections. 3.…
Yes this is the way. What reddit has done to its own mobile experience is incredibly disrespectful, I couldn’t agree with this article more. Just... let me see your fucking ads? Does anyone know a way on ios to forcibly…
Its pretty stupid with sports drinks, but I could see this being perhaps practical in a frozen food aisle. I often open the freezer, take out a product to read its nutritional facts, then put it back. I guess now I…
Good lord dude. Any site you browse to on the internet can trivially steal all the data in your phone...
This is a genius fix because in order to enforce your own privacy you must betray the privacy of n+ friends. Awesome.
Putting aside “real” art for a moment: for many mediums, I do. It’s the same difference that explains why an original acrylic painting costs a fortune while a print is $30 in the gift shop. In many mediums a digital…
Glad someone is pursuing this model. I am doing well enough that its absolutely worth it to me to pay my way out of the “proliferation of personal data” game. Thinking on it I had an amusing thought: I wonder if there…
Good point. Let’s throw out all our inherent biases. Would you expect your OS to have application-specific shortcuts for systemwide, cross-application functions like copy and paste? Of course not, that’s insane. I use a…
This isn’t true either. If market share is your goal, just write 3 native apps. No, devs choose electron to speed up development of apps that need to be cross-platform. They only write one app instead of three. Faster…
I dont think the OP’s original point was primarily that the defaults are terrible, in any case. Its that the management of keybindings is godawful. The configuration fix you linked makes this point precisely. In order…
Who actually wants two separate (app-specific!) key bindings for “copy”, which is meant to be a system-wide action? Thats terribly silly and immediately leads to you accidentally killing programs in your terminal. A…
A very useful thing that I automated recently is changing my router’s MAC address and subsequently rebooting the modem. For my ISP (xfinity) this has the amazing benefit of getting me a new IP. For a home connection,…
I’ve thought hard about the summary for this, I think this is a good one: Facebook: we don’t provide anything of tangible physical value. Other people do, and they make money off of it. Where’s our money?!?!
Fair points, ty for the rebuttal
I think it would be completely crazy if apple did this without entering into a special contract with google. Theres no way some sales engineer just signed up for a google ads account one day
I agree, and I am usually the first to cast privacy stones at facebook. While I wouldnt wear these in most cases I wear sunglasses today, I could imagine plenty of social scenarios where I would not be the least bit…
Wow. Almost unbelievable. Any security engineer or literally any (authenticated or agent-based) enterprise scanner should have caught this. Wonder how this one slipped through - the 2019 runc bug was a HUGE deal if you…
I suspect because almost no one wants to be a “gardener” of microblog/message/talk/email, and most do not know how. They just want to follow and talk to people. FB solves all of these with one signup, as did myspace. I…
I’ll believe Mark when it happens. In 2017 he also said he’d ship a billion oculuses; I think they sell maybe 3M a year. My 2c; I did see their remote work demo and thought it was kind of cool, although (anecdotally)…
Unfortunately no - the curl commands will by default go out over http, which does not use TLS at all or provide any guarantee of remote server integrity, just like plain TCP.So an attacker with the right network posture…
Funny, the point of TLS is to prevent MITM attackers from reading traffic. The two install commands provided would give a LAN or MITM attacker root on your host.
To clarifymy stance, now that I have a bit more time this evening… unprivileged userns is the only way forward for linux sandboxing on a bare-metal host past the boundaries of POSIX isolation. so from a security…
actual bugs, qualys’s recent cve-2021-33909 is one example.
I had the same experience a couple months back trying to set up a gaming PC. This was after the initial screen set my speakers to max and then blasted Cortana screaming at me in different languages. This was at about…
Agreed that if you did a shitty job benchmarking you could get shitty results.
It's not entirely fair, because in the 60s basically all modern crypto primitives were missing. If I had those: 1. Encrypted onion routing on layers that betray source/dest IP. 2. eSNI on all TLS connections. 3.…
Yes this is the way. What reddit has done to its own mobile experience is incredibly disrespectful, I couldn’t agree with this article more. Just... let me see your fucking ads? Does anyone know a way on ios to forcibly…
Its pretty stupid with sports drinks, but I could see this being perhaps practical in a frozen food aisle. I often open the freezer, take out a product to read its nutritional facts, then put it back. I guess now I…
Good lord dude. Any site you browse to on the internet can trivially steal all the data in your phone...
This is a genius fix because in order to enforce your own privacy you must betray the privacy of n+ friends. Awesome.
Putting aside “real” art for a moment: for many mediums, I do. It’s the same difference that explains why an original acrylic painting costs a fortune while a print is $30 in the gift shop. In many mediums a digital…
Glad someone is pursuing this model. I am doing well enough that its absolutely worth it to me to pay my way out of the “proliferation of personal data” game. Thinking on it I had an amusing thought: I wonder if there…
Good point. Let’s throw out all our inherent biases. Would you expect your OS to have application-specific shortcuts for systemwide, cross-application functions like copy and paste? Of course not, that’s insane. I use a…
This isn’t true either. If market share is your goal, just write 3 native apps. No, devs choose electron to speed up development of apps that need to be cross-platform. They only write one app instead of three. Faster…
I dont think the OP’s original point was primarily that the defaults are terrible, in any case. Its that the management of keybindings is godawful. The configuration fix you linked makes this point precisely. In order…
Who actually wants two separate (app-specific!) key bindings for “copy”, which is meant to be a system-wide action? Thats terribly silly and immediately leads to you accidentally killing programs in your terminal. A…
A very useful thing that I automated recently is changing my router’s MAC address and subsequently rebooting the modem. For my ISP (xfinity) this has the amazing benefit of getting me a new IP. For a home connection,…
I’ve thought hard about the summary for this, I think this is a good one: Facebook: we don’t provide anything of tangible physical value. Other people do, and they make money off of it. Where’s our money?!?!