Syn_Attck @ Syn_Attck @lemmy.today

Posts

1

Comments

317

Joined

1 yr. ago

My dog absolutely hates certain noises. Anything excessively high pitched especially.

Have you tried turning the sound off, or is it you being on the computer in general rather than playing Minecraft?

Do you play any other games? If not, it may be the higher load than normal causing the fans to spin, and maybe that's messing with his ears.

The only other thing I can think of, besides the dog simply seeking attention, are your actions while you play Minecraft. Whether you make noises or yell, fidget, gasp, move in your chair a lot (squeeky wheels?) etc.

the same half that reward. this is like fae tempting kids in the forest, when they need someone to suicide from boredom for some reason.

no

anyway

e: pasta https://knowyourmeme.com/memes/jonathan-galindo

what am I not getting here... you nor OP are on world, what's it matter?

Yeah... Unless Gen Z changed it, from 2008 to 2017 (when I got out of infosec) a 0day was an exploit that the vendor didn't know about, and that only a few people knew about (otherwise it would be quickly known about by the vendor.)

I don't know what @mrsemi@lemmy.world is on about, or who is upvoting them, but that would mean it's no longer a 0day once you've discovered and made your own exploit for the vulnerability.

From wikipedia (still current to our definition, so I assume Gen Z hasn't changed it):

A zero-day (also known as a 0-day) is a vulnerability or security hole in a computer system unknown to its owners, developers or anyone capable of mitigating it.[1] Until the vulnerability is remedied, threat actors can exploit it in a zero-day exploit, or zero-day attack.

That's it, thanks.

This is off-topic but it reminded me of something...

What was that disease (bad open sores or something?) that was almost exclusively found in gay people, until it was found on a kid and a dog? Whatever happened to that? I can't find it, searching mainly comes up with stuff about AIDS from the 70s and 80s. It was late 2022ish.

if yous illiterate yeh, ows you earin en? euh?

You'll want a provider with a ton of servers. For bypassing service level blocks, either a VPN like Express with thousands of servers or your own VPN is the way to go. there are docker images for setting up a VPN on a $5 VPS.

it depends on your risk tolerance. do you need to stay as anonymous as possible (with VPN as layer 1) or do you need to be able to watch shows in a different language? Mullvad and IVPN have a limited set of rented and owned servers that are setup for security and privacy. Express, Nord, and those less ethical VPNs don't care about that, they just want as many cheap servers as they can possibly get.

Sure here's the correction, and why I'd never trust them with anything sensitive.

They had a no-log policy, and all mail is PGP encrypted on their servers and proton to proton is encrypted in transit and at rest (it doesn't travel), decrypted only client-side in the browser or with proton bridge, with your account password acting as the PGP key password.

They could have designed the system so they couldn't be forced to add that backdoor, or at least automatically notified all users when an unauthorized change was detected, or they could have shutdown, or they could have revoked their warrant canary, but instead they were caught when the court case came to light and they were caught with their pants down, and revoked their no-log policy. https://arstechnica.com/information-technology/2021/09/privacy-focused-protonmail-provided-a-users-ip-address-to-authorities/

This weekend, news broke that security/privacy-focused anonymous email service ProtonMail turned over a French climate activist's IP address and browser fingerprint to Swiss authorities. This move seemingly ran counter to the well-known service's policies, which as recently as last week stated that "by default, we do not keep any IP logs which can be linked to your anonymous email account."

That's why I asked if the proton VPN is token-based and completely disconnected from the proton email account, or if they're the same login. If the latter, it's trivial to request the IP address of email account xxx@proton.me

See the last points in the article: run by activists, and would rather shut down than cooperate with law enforcement.

I don't know if proton is run by activists, but I do know they've cooperated with law enforcement by inserting code to log user requests when coming from a specific user. Plenty of articles about the court case, and it's also why they did away with their no-log policy.

Also, are their logins token based or username based and connected to the protonmail account?

Designed in Germany/Falkenberg and fairly manufactured in our own factory in China

That sounds like a red flag from a security perspective. If you own the factory and everything in it, then why even have it in China? And who is being hired in this warehouse for this security/privacy phone in this Chinese factory?

Granted: needs an implanted microchip connected via Bluetooth to a phone app to work properly.

Sometimes there was channel interference or something for sure. I know this because sometimes I would stay up late at night to try to see boobies. I don't remember the reason or channel or anything, maybe it was on an adult channel and it mostly wouldn't come through because it wasn't being paid for? Back when you othersise had to find boobies in the woods on paper, or had a friend with a single father who worked a lot.

The world was a lot more simple back then. I can't imagine the stress of being a kid today.

Each weighs 80,000lbs. Holy shit.

It came with an implicit agreement of trust. You had a company just wanting to make the world more connected and had the money to do it. Cue the Snowden leaks and we find out they'd been working with the NSA for some time, giving indirect access to all user data.

IVPN servers are all well-known and catalogued. ExpressVPN partly buys hacked machines to user as proxies for their paid tier user VPNs, so they are much less likely to be blocked. They have a lot more.. troubling history, that would make me never visit their download site.

https://www.zdnet.com/article/trust-but-verify-an-in-depth-analysis-of-expressvpns-terrible-horrible-no-good-very-bad-week/

Kape Technologies has announced plans to acquire ExpressVPN for $986 million. I do have concerns about this because Kape was once considered a malware provider.

Reuters indicating that ExpressVPN CIO Daniel Gericke is among three men fined $1.6 million by the US Department of Justice for hacking and spying on US citizens on behalf of the government of the UAE (United Arab Emirates).

Kape Technologies has had quite a convoluted history. According to a report in Forbes, a company called Crossrider was formed in 2011 by "billionaire Teddy Sagi, a serial entrepreneur and ex-con who was jailed for insider trading in the 1990s. His biggest money maker to date is gambling software developer Playtech," and Koby Menachemi.

Menachemi was a developer for Unit 8200, an Israeli signals intelligence unit responsible for hacking and collecting data (think of it as part CIA, part NSA, and part high school, because the unit hires and trains teenagers in hacking and coding skills).

the newly renamed Kape Technologies set out on an acquisition binge. The company started buying in 2017, acquiring CyberGhost VPN for about $9 million. Next, in 2018, came Mac antivirus company Intego for $16 million. A few months later, Kape gobbled up another VPN provider, ZenMate, for about $5 million. A year later, in 2019, Kape spent $95 million for Private Internet Access, one of the best known VPN providers at the time.

There's more to the story as well, but you can be sure that all your data is belong either being proxied by a botnet, or being used to spy on you. 'I have nothing to hide!' you may say, but I'm sure you have an app or two that still uses insecure HTTP update checks, which can be intercepted to trigger a malware installation.

I would put Mullvad and IVPN up there as the two VPNs I'd trust most to do things right, but I still agree with everything you've said.

I still remember being a young kid (11-12) and running a program to scan my local ISP in my small town (back then small ISPs could easily get government grants and become a monopoly) for insecure SMB servers or something. I suddenly got a flood of results like

• /private/passwords.txt
• /administrator/USD###-users.txt

All kinds of tasty things. Very excite. Then the results started pouring in by the thousands...

• YOU-ARE-VIOLATING-CFAA
• FBI-DOORBELL
• FIRSTNAME-LASTNAME.EXE
• PWN3D-LMAONOOB

Things like that. I immediately shut my computer down and that was probably the first time my dad saw me not eat for a day. Didn't ask why I wasn't sleeping much the week after that 😄

Also I Googled for the filenames and found nothing. So if you're the 50-70 year old who wrote that script and happen to see this, I'd love to get a message with the ISP name. They are in a number of small-medium size towns around my hometown now.

Protonmail is today (or was a few years ago) what everyone thought Gmail was when it came out. I can still remember how excited I was to get an email accepting me into the Gmail beta. A crazy amount of space, no one knew how they did it.