That may help in the case of a properly installed usb port, but what if the port is upside down? Or what if it’s a vertical port? Is upside left or right?
Not talking about my ports. Also ports can be installed the wrong way by the manufacturer. I had a pc case that the front usb ports upside down. But again, usb ports can be installed vertically, in which case it won’t matter if you know which is up or down your usb plug, because now it’s left or right
I mean, if your manufacturer installed USB ports the wrong way, you have to get familiar to know which direction the ports face(the wrong way if ports are wrong), then you only have to see the usb since you already know the ports
What about the back of your tv? Or friend’s PC? Or library computer? Or phone charger? Or… Any other Universal device using the Universal Serial Bus…
You may learn YOUR devices, but you may also have to interact with other devices at times and USB didn’t make it easy in the past.
Now, type C is a thing and it helps with plugging it in right the first time, but that one has the HUGE issue with allowing any protocol since USB 1.0 and everyrhing else is optional. So even though you can plug a type C monitor into a type C microphone, nothing will happen, so it’s not stupid proof anymore.
True, but rare. Back of your TV? You’ll defenitely see it while plugging in because you wouldn’t even know where the ports are otherwise. Other’s devices don’t work but you still can flip it three times since thats rare
True, but rare. Back of your TV? You’ll defenitely see it while plugging in because you wouldn’t even know where the ports are otherwise. Other’s devices don’t work but you still can flip it three times since thats rare
My old Lenovo tablet has the USB port upside down on the plug, and consequently, the micro USB also plugs into the tablet upside down. And for some reason, stupid thing always breaks the little notches on the micro USB, so you have to position everything in a way so that it won’t slide out while charging.
Craig Doty II, a Tesla owner, narrowly avoided a collision after his vehicle, in Full Self-Driving (FSD) mode, allegedly steered towards an oncoming train. driving inattentively.
Sometimes it’s weird to look back on middle school, and the teachers who brought our generation up as young kids being told about the future. I’m an adult now, and I feel like an adult now, but in a way it feels like I’m still a part of that group of dumb and naive kids. It doesn’t feel that long ago at all. But the reality is that all of us are now pushing 40, and our time there is now wholly irrelevant, and we’re so far removed from those years that it’s fucking wild. A lot of those teachers are probably dead now.
I don’t know how to articulate what it is I’m meaning to say here. It’s just weird that we were kids so recently. I don’t feel like my life has gone by all that fast, but middle school to 40 somehow did all the same. I feel my age, and I feel as though I’ve lived to my age, but my memories don’t feel distant whatsoever. It feels like that was nine years ago.
Just like I feel like I was still living at home with my dad a few years ago, but I’ve been living in another country away from my parents for 7 years now, and my dad had been dead since last May.
Condolences for your dad. 42 here, my dad is showing his age majorly now.
Looking back I know I lived every single hour but huge leaps of time are just gone. Like, entire jobs I worked for years I have maybe a half dozen memories. On top of that our work product is gone, the company is gone, the building is gone, the entire industry is changed… it’s like it was all a dream. I definitely understand the old man looking at a city and saying, “this was all orchards”. I used to think it was a wistful phrase, but it’s also an expression of disbelief. When we were embedded it all seemed so important. But it all shuffled off with zero fanfare. It really changes how you experience life, and that’s how I “feel old”.
Your dad simultaneously saw you as the baby who slept securely in his arms, the child he saw through junior school, the teen who he tried to help steer past his own mistakes and the adult he wistfully spoke of with pride
Imagine how good he must feel to know that you remember him this way.
I lost my last grandparent this Easter. She was much younger then my other grandparents. The 3 of them would be over 120 years old now. I’m a millenial, I’m 40.
I took my kid to the doctor, and when we left she asked if we could go visit the places I grew up and went to school. Drove by my grade school but didn’t stop in, still in session. Went by my junior high and there was my science teacher, she was probably a few years from retirement.
I said hi and we talked for a bit, told her “no, not a parent, you were my teacher almost 30 years ago”, and she got a huge smile on her face and was really happy one of her students recognized her and talked with her for a while.
Made the trip worth it, but I am glad she didn’t remember me. Was a shithead kid in junior high, but I think we all kind of were at that age.
Tbh jia tan really wasn’t lucky some mf at Microsoft noticed a 500ms delay in ssh. The backdoor was so incredibely clever and Well hidden and ingenious i almost feel bad for him lmao
I heard that person actively contributed for something like 2 years, providing actually useful contributions, to gain the level of trust needed to plant that backdoor. Feels a bit too much to chalk it up to boredom.
As for the second part, that’s an interesting question. Are there lots of backdoors and we just happened to notice this one, or are backdoors very rare exactly because we’d have found them out soon like in this case?
Another speculation from the suse team was a private company with intent to sell the exploit to state across actors
I think there’s lots of known backdoors that are not publicly disclosed and privately sold.
But given the history of cves in inclined to believe most come from well intentioned developers. When you read the blogs from the Google security team for example, it’s interesting to see how you need to chain a couple exploits at least, to get a proper attack going. Not in this case, it would make it very straightforward to accomplish very intrusive actions.
It’s scary to think about… a lot of people are now thinking about how we can best isolate our build test process so it works as a test suite but doesn’t have any way to interact with the output or environment.
It’s just blows my mind to think of the levels of obfuscation this process used and how easy it would be to miss it.
I’m surprised that nobody suggested that he was a kidnapped dev. This seems like a different implementation of the pig butchering scams that target ordinary people.
A good chunk of scam calls and texts come from people who themselves are victims of kidnapping. Many of those victims (primarily in Asia) got into the position they were in because they were looking for work, went to a different country to start a promised job, and then got trapped and forced to work for scam centers that do social engineering attacks.
These scam centers are sophisticated to the point where they can develop very legitimate-looking crypto trading platforms for targets in the US and other wealthy countries. They then assign one of the kidnapped people to a target. These kidnapped people then social engineer their way for months to get what their captors want - usually money in the aforementioned trading platform. Then, they cut all contact once they have control of the funds.
How does this relate to XZ? Well, if they can kidnap ordinary people looking for jobs, there’s not much stopping them from including devs in their pool of targets. Afterward, it’s just a rinse and repeat of what they’d done before.
If you want to look more into pig butchering, John Oliver has a great episode on it.
Neither does the blob it downloaded. Would you think twice about AVX10 support if it was commented as AVX10 support in a compression library? Some might, but would they be the ones reviewing the code? A lot of programs that can take advantage of “handwritten” optimizations, like video decoders/encoders and compression, have assembly pathways so it will take advantage of the hardware when it is available but run when it isn’t. If the reviewers are not familiar with assembly enough something could be snuck in.
systemD is using dlopens for libraries now and I am not convinced malware couldn’t modify the core executable memory and stay resident even after the dl is unloaded. Difficult, yes, but not impossible.
Lol wut, they never claimed servers were independently controlled. Maybe you just didn’t look into what you were signing up for.
When you go use different servers on Minecraft realms are you under any impression those are not controlled by Microsoft?
When you choose a different server on World of Warcraft do you think it’s a non-blizzard server?..
Like just because you put yourself into a state of bad false assumptions didn’t mean they tried to trick you. People have been saying this about discord from the beginning you just never cared to look.
Did you actually think this or are you just inventing a person in your mind that this has happened to? Lol
Umm… People have been using the phrase “Direct message (DM) me” since forever in the game and online comms world. Private message wasn’t a concept until after DMs were later encrypted. And we always knew, that if we didn’t control the servers, even encrypted, those messages were subject the server operators.
Your logic is giving me the impression that you’re younger and didn’t go through these experiences.
No, the term PM has been around before DM was the norm. Forums generally used the term PM. Ironically, not remembering PMs being the term prior to DM is making me think you’re younger for not remembering it.
You’re right. Had to dig into my memory for this one and fact check myself.
IRC, BBS, and most forums (of the era) used PM or SP. MUCKs and a few other tools used Whisper. ICQ introduced “IM me”. Part of me remebers using the term “DM” for IRC messages, but I used IRC fairly regularly well into the 2010s.
However, the forum I spent a ton of my younger years on used “Direct Messages” which has likely polluted my memory. Since it was a technology related forum, that was probabaly a customization from the operator to distance everyone from the idea of “private” since everything was clear-text and unencrypted back then. That or I’m confusing “IM me” from the ICQ/AIM/MSN days.
Point being, nobody thought “PM” meant secure and not visible to the server operators back then. It just meant that only you, the recipient, server operators, and 1337 h4xx0rz could see your messages.
What a trip down edited memory lane that was. Thanks for fact checking me.
Neither have I. Generally if I want the impression of it being private, it will need to be encrypted and a whole skew of other criteria comes in. Still doesn’t change the fact that growing up they were referred to as “PM’s” for the first half of my life.
Not everything has to be foss, it is in company’s best interest to not make it as malware. In last 20 years that I have had TS installed on my server and client, have I had it act like malware. Discord in the other hand has instantly caused issues. Not saying that TS3 doesn’t have had bugs, ofc it has had.
I may not read the source code of every tool I use, but even if the average user doesn’t read the source code, having it available for inspection by others in the community increases security, trust, and overall software quality. All a user really has to do is look at the license of the software they use, typically a GPL or similar license, and consider how reputable it is. Not only that, but if you’re on Linux already, you can just get most of the software from your distro’s repositories.
No, you should have the freedom to use it if you want. All I’m saying is that you can’t really call TeamSpeak a better alternative, when they’re both just as bad (they’re both proprietary). If you’re looking for a better alternative, consider using Mumble, it’s FOSS.
i dont think the software is “dead dead” but i think it’s dead from the aspect that it seems to be stagnant, which to be clear, isn’t a bad thing. It just feels a little bit like it’s still 2012 everytime you open mumble.
It’s a tad bit disappointing, considering i love it so much. But i don’t think anything else will properly replace it.
I’m baby-faced which keeps me sane but that resolve was shook a couple days ago when an 18 year old (that was born the year I graduated high school) found out my age and said I was old enough to be his dad 😔
In a few years you’ll think of how young you were when this 18 year old told you you could be their dad instead of grandpa like you’ll be told in those few years.
Having. A babyface is kinda weird. 20 year olds talk to me like i had any idea what they are talking about. I'm always like: haha yeah no, i'm actually old.
The other day i was standing in line and there was a family behind me. The mom did some Smalltalk with me and just for the fact that they had kids, i talked to her like i would to an old person. Like she was giving me some weird advice for some reason. Then i put one and one together and realised that they had a child when they were 20 and he was now 10-ish and they are actually 10 years younger than me.
lemmy.ml
Active