HuntressHimbo @ HuntressHimbo @lemm.ee

Posts

4

Comments

301

Joined

2 yr. ago

You're 100% right. Not only can they steal data, but they could use kernel level access to make your hardware misbehave, perhaps even to the point of damage. They could probably trash a hard disk or GPU for instance. It also gives them a locally controlled device on whatever network you're on. From there they can weaponise their new access to attack other devices on the network, or cause the network itself to fail.

It just goes to show how dangerous this is, that even a programmer and security enthusiast like myself forgets to mention a huge chunk of the possible damages.

More like my aunt pointed a loaded gun at the back of her seatrest and it went off when she hit the brakes too hard

What do you think 'gaining access' entailed?

You're missing the point of what he is saying. The anti-cheat itself runs in a level with extreme access to anything on your computer. The anti-cheat is like almost all software almost certainly exploitable. You are trusting that no one will ever crack Vanguard in a way that exposes your user data, and that Riot will never change it to collect more than you think they are.

I think people believe it is a sign you are striving to excel or that you care about the work you are doing.

In my case I think I talk about how much overtime I work because I got insecurities about my productivity drilled into me as a child with undiagnosed ADHD. Constantly being told you don't work hard enough regardless of the effort you put in will give you some weird hangups. I think subconsciously its about needing external validation that the time you put in was adequate, or insecurity around 'work ethic'

The problem is you need a executive body that already agrees with you to select you from their choices of consultant. We're not rational creatures and are our personal biases make it so we're more likely to hire the consultant that reflects our preconceived ideas

beaucoup bucks

I've never seen this phrase in print before and the spelling is fucking me up a bit ngl

It's almost like our economics models with supply and demand barely work for physical products and are even worse at modelling easily reproducible digital goods

Its especially rough to ask Gen Z to vote for the guy who amped up our oil production to record levels. We cant afford to wait 4 more years on climate and Biden doesn't give enough of a shit about the climate. He was utterly inadequate to the moment 4 years ago, and he hasn't gotten better. I'll still vote for him but centrists you've fucked us, thanks.

Ah yes, the great city of New Jersey

One of the main draw of NixOs is the reproducibility of builds, meaning that redoing the build will provide the exact same output each time, so Nix encourages you to make configuration changes through the package manager. I've mostly overcome my theming woes with home-manager now, but this comment was speaking to a little wrinkle I had when I was trying to learn and take advantage of the OS's features as best I could.

NixOS ended up disappointing me a fair bit. I just tried it recently and the KDE support seems very rough so far, or at least I couldn't find good answers to how to configure it and theme it.

Malware sadly is a problem everywhere, but it is arguably less so on Linux. First, Linux is less popular so less malware is written for it to some degree. That doesn't mean no malware, but if you're trying to pwn people hitting a website you'll get more targetting windows, android, or iOS than Linux so it's a little less prevalent.

Second, it could be argued the security model of Linux is more secure than windows. This is a far more contentious point, but I think that simply from having more eyes on the code Linux has a more secure model. Windows relies on security through obscurity a great deal, and if you talk to cybersecurity experts they will often tell you this is no security at all.

Lastly, because software on Linux is typically installed through centralized repositories of binaries or sandboxed app images, you have to go more out of your way to get dodgy software on Linux. The tradeoff there is that a lot of proprietary apps and helper programs that come with some tech will never be available in the repos and that can send some new users to try finding them elsewhere with all the risks that entails. Some distros go for a middle ground with access to things like the Arch User Repositories, but Ubuntu's solution is using things like PPA's to add extra software repositories.

Because you chose to phrase it as an insult. "To keep people like you from doing X" has a very different connotation than "this is a security feature that helps protect inexperienced users from malware." One is helpful, one is demeaning.

Just as an addendum to your answer. In the command writing to mullvad.list the | sudo tee /etc/apt/sources.list.d/mullvad.list is using two helpful linux utilities to modify the command. The first is the | which is called a pipe and connects the text output of one program to the text input of another. The pipe is connecting the output of echo which simply prints a string, in this case composed of the outputs of several other commands to the program tee. Tee which is given admin privileges by the sudo takes an input stream and splits it between two files. In this case those are mullvad.list and since no other was provided stdout the output pipeline of the terminal running the command.

EDIT:

In the interest of further completeness. Another utility used in those commands is the command substitution operator of sh. So when the terminal is interpretting text $(some command) gets substituted out for the text output by the command in the parentheses. It is another common way of connecting commands on the shell to allow for more flexible and powerful commands.

And on top of that they know that outrage fuels views. They keep making inflammatory content that will outrage one side and get the other to spite-view it. Of course inflammatory content to left wingers tends to be bigotted and hateful, while inflammatory to right wingers tends to just be anything not overwhelmingly white, straight, and patriarchal.

This concept goes so well in a spelljammer like setting. Imagine the Laughing Beholder with large Luigi doing this. "Okay, what sphere are you from again? Okay, next I need your planet, then your species, then your age."

EDIT:

Noncombat or low combat adventure idea that just came to me based on this. A group of grifters has conned Large Luigi or your version of this bar owner by posing as an interplanetary or interplanes alcohol enforcement agency. They pulled a fake sting and made off with something precious of the innkeepers as a fine. The party either hears this from the barkeep when they order or from the other patrons who are fed-up with the arcane ID system and long waits on drinks. Only recovering the fine or capturing the grifters can the situation be set right.

God I love opportunities to WoT post

"The Wheel of Time turns and Ages come and pass, leaving memories that become legend. Legend fades to myth, and even myth is long forgotten when the age that gave it birth comes again"

The Aelfinn and Eelfinn are big data memory hoarders and this works way too well

I've done a little work on this professionally, and while I can't discuss our solution, here are some links that I turned up doing research that might be what you're looking for.

https://www.robots.ox.ac.uk/~vgg/publications/2016/Chung16a/chung16a.pdf

https://arxiv.org/abs/2008.10010

https://arxiv.org/pdf/1809.02108.pdf

http://ailab.kaist.ac.kr/papers/pdfs/ACCV2016Workshop.pdf

Good thing you do remember since he's still ripping apart immigrant families. Biden's border policy is only marginally better than Trumps, he just doesn't brag about it.