My main issue with CVEs nowadays is that it seems one gets generated even when 99% of the use cases for the software in question are not vulnerable as the vulnerability requires a very specific configuration/circumstances/etc. to be exploitable. In large projects with lots of dependencies this adds a lot of noice and there's a risk that actual important CVEs go unnoticed.
I was going to give the example of the Carnival cruise ship that sank in the 2010s (I think) largely due to the captain’s incompetence[...]
That's Costa Concordia. It received extra media attention and is mostly known due to the awful behavior of the captain who first directly caused the accident and then fled the ship before most of his passengers.
a single application that gets bundled with all necessary dependencies including versioning
Does that mean that if I were to install Application A and Application B that both have dependency to package C version 1.2.3 I then would have package C (and all of its possible sub dependencies) twice on my disk? I don't know how much external dependencies applications on Linux usually have but doesn't that have the potential to waste huge amounts of disk space?
Sorry to ask, I'm not really familiar with Linux desktop nowadays: I've seen Flatpak and Flathub talked about a lot lately and it seems to be kinda a controversial topic. Anyone wanna fill me in what's all the noice about? It's some kind of cross-distro "app store" thingy?
Hieman amatöörimäiseltä vaikuttaa toiminta kun palvelun julkaisupäivä on ollut tiedossa pitkään, mutta ilmeisesti ei ole saatu sovellusta Googlen tarkastusprosessista ajoissa läpi.
Good luck trying to "shut down" a open source software..
Still sucks tho, why Nintendo gotta make so good games but be so shitty of a company otherwise
It's still unclear if he's allowed to use the logo and such. The national broadcaster Yle (which itself has a strict policy against advertising) allowed it in the national show and argued that (quote) "Windows 95 is no longer a protected trademark today. The product is hardly used by anyone anymore. Thus the name and the costume are allowed"
I remember reading an article about how we're already able to simulate basic tastes, like sweetness and sourness, digitally. So just you wait, we might have lickable HTML elements in the future
Hieman yllätys kyllä. Kellään tän vuoden artisteista ei ole realistisia mahdollisuuksia menestyä viisuissa, joten meemiarvoltaan parhaan artistin lähettäminen saattaa olla jopa järkevin vaihtoehto.
Nokia E71 with the full QWERTY keyboard. Loved it, even though the keys were too small to comfortable use. I guess technically speaking that's still a smartphone so before that I had some Samsung flip phone, can't remember the exact model
My main issue with CVEs nowadays is that it seems one gets generated even when 99% of the use cases for the software in question are not vulnerable as the vulnerability requires a very specific configuration/circumstances/etc. to be exploitable. In large projects with lots of dependencies this adds a lot of noice and there's a risk that actual important CVEs go unnoticed.