The Dark side of expertise.
Or why we can't see the solution to the issues we create.
Let's Destroy C Β· GitHub https://gist.github.com/shakna-israel/4fd31ee469274aa49f8f9793c3e71163#lets-destroy-c
Actually, when I was young, I did something like that by mistake: an error page had a frame (can't recall why) but under some conditions it erroneously loaded itself as the frame target.
I have no idea if it would still be an issue 20 years later.
If I remember correctly, #Firefox has a maximum depth of 9 iframe.
@Wolf480pl@niu.moe @tuxcrafting @izaya
#JavaScript let any website you visit to tunnel into your network.
You can read more about this here:
https://rain-1.github.io/in-browser-localhostdiscovery
and here:
https://dev.to/shamar/the-meltdown-of-the-web-4p1m
The #Russian Government is still exploiting this technique, months (years?) after #Mozilla and #Chrome have been informed:
https://bugzilla.mozilla.org/show_bug.cgi?id=1487081#c16
(and it's just ONE of the possible exploits of this wide class of #security vulnerability)
But yes, without the design changes I described back then, #lua would not be better that #JS, if used in the same way.
That's why #WebAssembly is such a terrible idea.
Because I was able to understand what the Russian government was doing by reformatting and reading the code. Try to do the same with a binary optimized by #GCC.
terrible #instanceIdea :
a peertube instance that inserts fake youtube style ads that are just parodies of typical youtube ads
@Wolf480pl@niu.moe
Probably.
(never tried, actually)
But it cannot (by itself) let website owners tunnel into your networks as #JavaScript does.
At least, as far as I know.
____
NOTE: I agree that Turing completeness is wrong for a presentation language.
#XSLT is more general, though.
Dove?
Hunting UEFI Implants at https://blogs.gnome.org/hughsie/2020/01/27/hunting-uefi-implants/ - discuss at https://freepo.st/freepost.cgi/post/0cdmicq0gh #freepost
RT @WolfieChristl
So, Facebook tells me it received personal data on me from 620 apps and websites over the last 6 months.
But nope, I won't press the 'clear history' button now, because this won't fix it. We need legislation+enforcement that stops this from happening for >2bn people per default.
Winter is coming
Collapse OS aims to soften the blow. It is a z80 kernel and a collection of programs, tools and documentation that aims to preserve our ability to program microcontrollers through civilizational collapse.
Oh....
sorry @dredmorbius I should sleep more. π΄
... BUT #Google got your voice.
can we just stop putting people in uncomforable situations for the sake of #profit?