Funwayguy @ Funwayguy @lemmy.world

Info Sec - Software Engineer - Game Designer - Mod Dev - Digital Artist

---

Read more

Posts

0

Comments

44

Joined

2 yr. ago

Is it just me or are these stories getting a little bit 'competitive' on the worst possible accusations with lessening citations. All I could find on this are 15+yr old articles and Instagram/Tiktok influencers.

I'm imagining that shaped as an Alolan Exeggutor.

With a couple of tweaks you got yourself the Zoomer app edition of Mortal Combat.

We have truly distilled humanity's confident stupidity into its most efficient form.

Hahaha, I wish.

You would be amazed at how ancient and poorly maintained many web servers are on the modern internet. SQL injection still consistently make the top 3 web app vulnerabilities as of 2021. If that isn't being sanitized properly I don't expect emojis would be handled much better.

Through a low tech social engineering attack referred to as SIM Jacking, an attacker can have your number moved to their SIM card, redirecting all SMS 2FA codes effectively making the whole thing useless as a security measure. Despite this, companies still implement it out of both laziness and to collect phone numbers (which is often why SMS MFA is forced)

Only if you call the deep-throating spez is giving him 'mentoring'. It's starting to make WSB loss porn look mild in comparison to the ongoing conga line of platform self-destruction.

Pretty sure there is a self hosted version already. Seen a couple of Twitch streamers use it so I see no reason an instance couldn't run one with lemmy logins.

I opted to switch to NewPipe and YMusic and haven't looked back since.

Oh it was so much worse than that. Google indirectly banned every 3rd party app on the Play Store from streaming videos in the background to push that feature. Seemingly overnight every app that could do it vanished or cut the feature. Sure you can sideload a fix but your average non-savvy users got screwed into paying up.

Oh absolutely. I just use it as an example because it's one of only a few heavily restricted subs that hasn't yet been purged by admins.

Lets also not forget the massive amount of OS versions, hardware variants, resolutions, and localisations apps like Discord need to auto-adjust themselves to work with. If it fails it will absolutely need that info in the report so devs can fix it.

This is why though I appreciate what DDG is doing, it's not informing users about the context of what these permissions are used for, leading to a lot of fear over the wrong things. The data may not even be leaving the device but the implication DDG makes is that it is.

As a side note, I prefer to use DNS66 to filter data and ads by domain, then manually set my Android app permissions as needed.

Yep. There is a metric fuckton of tampering across the board, some of which is sub specific.

It's the same kind of things they pulled with WatchRedditDie a long time ago but now it's site wide with little to no subtlety. The rules are imaginary and meaningless, more so than they already were.

I suspect it's not out of choice but because parts of the new UI is duct taped to the old. That said they'll still likely rip it out soon and break everything in the process, just as Spez's idol did to Twitter.

I'd like to think Typescript does a lot of heavy lifting where JS fails when it comes to web development. On the otherhand there is no fixing fundamental flaws in PHP.

Sure bad programmers write bad code, but if a language tolerates something so obviously janky via implicit unseen magic, it's just encouraging bad practices. PHP makes this worse by tweaking core behaviours in weird and wacky ways that can easily lead to security vulnerabilities.

I've been working with PHP for two years now (not by choice) but I still sometimes forget the weird behaviours these not-arrays cause. Recently I was pushing/popping entries in a queue and it fucked the indexing. I had programmed it like I would any other sane language and it wasn't until I was stepping through the bug I realised I had forgotten about this.

I hate PHP for so many more reasons. It baffles me why anyone would think it was a good idea to design it this way. Thankfully my current job involves actively burning it down and preparing for its replacement.

As a software engineer who has dealt with so many incidents resulting from the garbage coming out of salesforce. SO. MUCH. THIS.

I swear it's always in a perpetual state of duct tape no matter where I see it used.

Depends really. Nowadays publishers push out fake CGI marketing trailers and paid reviews to premptively muddy those information sources long before release. Same goes for social media (not that they were ever reliably accurate or objective anyway). There are even promises of DLC roadmaps that never materialise such as the OW2 story mode.

By the time actual independent reviewers have their embargoes lifted, the preorder sales window has closed and it wouldn't make much difference to those who already sunk money into the game. Those waiting in vain for DLC and patches are merely sacrificing their refund window.

I'm not surprised in the slightest. The politicians and managers in charge of said gov systems are usually of an age that have no idea the basics of how technology works, let alone infosec importance. It's then contracted out to the lowest bidder on deadlines that wouldn't permit proper hardening anyways. It's not even a US specific issue, Australians deal with this dumb fuckery regularly.

Then you get some piss poor public apology, someone gets thrown under a bus, and the cycle repeats ad infinatum.