subtext @ subtext @lemmy.world

Posts

7

Comments

552

Joined

2 yr. ago

The problem with this philosophy is that it’s basically how ads started on the internet and now we’re here.

Oh it’s just a small, non-intrusive side bar ad, thats okay… oh it’s just ads on both sides… oh it’s just an additional ad on top and on the bottom… oh it’s just an easily dismissed pop up ad… oh it’s just a short video to watch before I’m allowed to see the site… repeat ad nauseam (no pun intended)

It also breaks your ability to do some actions with steam such as changing your email address because god forbid you enter the TOTP instead of pressing accept or something in the app

This is currently me, wanting to update my email but not wanting to go through the hassle of changing my authenticator back to my steam app then re exporting the key to put it back in Bitwarden.

So frustrating that they have to be ✨special✨ with their authenticator algorithm AND ALSO require the app for people who have reverse engineered it.

You could at least put the command in a spoiler or add a /s to make sure some random new user doesn’t follow the advice

Not regular Fedora, though, it was only in Fedora Rawhide and Fedora 41, so very very early, bleeding edge distributions. Nothing that a regular Fedora user would be using.

https://access.redhat.com/security/cve/cve-2024-3094

E: and Fedora 40 beta which some regular users could conceivably be using

https://www.redhat.com/en/blog/urgent-security-alert-fedora-41-and-rawhide-users

It’s the 46 upvotes that have me concerned that many people do not in fact see it as a joke

Thanks for this! Good to know that Zstd seems to be a pretty much drop in replacement.

I genuinely don’t understand if I missed something here, and would love more explanation.

As the other person said it’s likely that xz is already installed on your system, but almost certainly a much older version than the compromised one. It’s likely that no action is required on your part assuming you’ve not been downloading tarballs of bleeding edge software.

As the other person said, just keep doing updates as soon Mint recommends them (since it’s based on Ubuntu LTS, it’s a lot less likely to have these bleeding edge vulnerabilities).

Would another less complex answer simply be that many (most?) people and organizations use RSA because it was first and elliptic signing is not yet as prevalent?

Going with Occam’s Razor here…

Certainly not going back to that /s “state-actor weapon compression library” until it’s picked up by Red Hat or the like…

I guess gzip is good enough for me and my little home lab

Damn, I was just looking into and learning about the different main compression (gzip, bzip, xz) algorithms the other week. I guess this is why you stick to the ol’ reliable gzip even if it’s not the most space efficient.

Genuinely crazy to read that a library this big would be intentionally sabotaged. Curious if xz can ever win back trust…

Can anyone help me understand xz vs Zstd?

What if you have a backup of your partner’s / child’s / family member’s passkey?

Anything more than ash/dash is bloat

What else would you call it? It’s them trying to be the face of the internet, the only internet these people know.

Would this be E. B. White, author of Charlotte’s Web?

Then the barbarians can get immunity!

For reference, I definitely did mean my comment as a joke, and I hope folks know that I am not advocating for this DM vs player style of gameplay.

P.S. how do you make an instance agnostic comment link?

Fuck it, spells with CON saves only from now on

Oh good point, I didn’t think about that