Show newer

@freemo I don't know what payment methods X accepts, was assuming it will require some kind of billing address (thinking KYC).

@freemo While paying might solve the bot problem, it also means you have to identify yourself which is bad if you care about privacy.

modrobert boosted
modrobert boosted

#libwebp 1.3.2 has two #security related flaws that have been fixed in main:
• Fix invalid incremental decoding check:
github.com/webmproject/libwebp
• Fix next is invalid pointer when WebPSafeMalloc fails:
github.com/webmproject/libwebp

While these are not as easy to exploit as CVE-2023-4863 it seems evident that there has been some gaps in libwebp fuzzing at google. Also CVE-2023-4863 was obviously assigned to a wrong project. #infosec #vulnerabilities #cve

modrobert boosted

brutal first blood for cytrox on iOS 17, but also damn that's some clear cut misuse.

modrobert boosted

if this infosec stuff doesn't work i'll start an ice cream shop

Show thread
modrobert boosted

Need to know whether a piece of hardware is supported by free software? #hNode has you covered! Its search engine will help you verify #freesoftware compatibility. u.fsf.org/3uj

@bohemianchic@infosec.exchange Besides family and friends; learning, but sometimes the more you know the more depressing it gets.

@malwaretech I'd rather take less bandwidth trough any kind of cable (fiber, STP, whatever) than being forced through WiFi

modrobert boosted

@lupyuen

100MHz FM transmitter from 1982, 25 Watts that we used for 3 months of non-licensed radio broadcast. A few coils in power amplifier are missing, and 2N6081/2N6082 (wrong marking) replaced the very expensive original BLY87/BLY89 (~$80-100 for a pair in those days!).

modrobert boosted

A while ago I tested #nostr and all i found was cryptobros and porn. Today it seems like the porn issue is under control and the feed seems nicer.

Clients got significant UI improvements, but still it feels a bit dangerous to post on a place where data spreads beyond author's control.

I managed to remove notes i published. But in theory all devs say this is UB. Considering there are tons of relays replicating and caching data, some users may still see it.

About this privacy topic it makes me think about the fact that we are not aware enough about all the data we give away and the false feeling of controlling it. Maybe being anonymous instead of having your real persona in this network is the way to go.. but still, i have mixed feelings with this interesting technology (yeah i like the protocol and it's simplicity)

Thoughs?

@pancake I gave up a few weeks ago because nostr fails to work when using through TOR socks proxy. Resources doesn't load, posts go to /dev/null, and it bugs out in general. Every browser refresh is a random experience.

Live in 115 minutes...
"Unidentified Anomalous Phenomena Independent Study Report"
youtube.com/watch?v=idJKLP5hcu

@freemo The fear of a discussion seems to be growing in general, polarization over any issue. I fail to see the point of public posts if all they expect is an echo chamber.

@malwaretech I think you are forgetting about the inflation, the real inflation, not the officially reported one.

modrobert boosted

@loke To me the "Stockholm syndrome" is about assuming there should be an ecosystem (read; package manager) for a programming language.

@briankrebs GOAL_INCOMPLETE_DESCRIPTION_MOVE_LATE = "Eat potato chips!";

At first the AI was trying to justify exclusion and sanctions of countries, but after making it contradict itself regarding long-lasting-peace it finally came around.

Show older
Qoto Mastodon

QOTO: Question Others to Teach Ourselves
An inclusive, Academic Freedom, instance
All cultures welcome.
Hate speech and harassment strictly forbidden.