Techrights logo

IRC: #techrights @ FreeNode: Thursday, July 09, 2020

Join us now at the IRC channel.

oiaohmDaemonFC[m]: I would think it someone replicating the old single pixel flash item for a forever cookie.Jul 09 00:00
*GNUmoon (~GNUmoon@gateway/tor-sasl/gnumoon) has joined #techrightsJul 09 00:10
*schestowitz works with 5 laptops at the moment (not the usual, took Rianne's)Jul 09 00:16
schestowitzoiaohm: takeaway makes senseJul 09 00:16
schestowitzwe were thinking just thatJul 09 00:16
schestowitzthe whole point is, they want to make use of dining areaJul 09 00:16
schestowitzbut people lack the desireJul 09 00:17
schestowitzI guess some things just aren't coming back soon, if ever...Jul 09 00:17
DaemonFC[m]Some restaurants in Waukegan appear to be giving up and putting up a tent outside.Jul 09 00:41
DaemonFC[m]That's certainly better than having an air conditioner recycling the virus all over the restaurant.Jul 09 00:42
DaemonFC[m]schestowitz: Looking like 60,000 today.Jul 09 00:42
DaemonFC[m]Another record.Jul 09 00:42
DaemonFC[m]Last month this was more than three entire days worth of new cases.Jul 09 00:43
DaemonFC[m]This is a complete disaster.Jul 09 00:43
DaemonFC[m] 09 00:47
-TechrightsBot-tr/ | - EasyList ForumJul 09 00:47
DaemonFC[m]Trying to get this in EasyPrivacy or Easylist so they roll out a block on the whole domain to everyone using those.Jul 09 00:48
schestowitzDaemonFC[m]: past 60k nowJul 09 00:55
schestowitzand leaving WHO at this time would be tactlessJul 09 00:55
schestowitzas it looks rather obvious a distractionJul 09 00:56
schestowitzor rejection of realityJul 09 00:56
schestowitzcalifornia now edging 10k a dayJul 09 00:56
schestowitzmost states worse off the the whole of the UKJul 09 00:56
schestowitzlooks like all states reportedJul 09 00:57
schestowitzbut they can still amend, there's an hour leftJul 09 00:57
schestowitzfor cutoff anywayJul 09 00:57
schestowitzAriadne: do tuxmachines and schestowitz not federate ok or does viera not manage to reach the network? I noticed that my updates go through, viera is on freenode, but no updates appear in IRCJul 09 01:06
schestowitzThis issue started some time between 8 hours ago and nowJul 09 01:07
schestowitzDaemonFC[m]: +61,475Jul 09 01:15
schestowitz 09 01:19
schestowitz"Jul 09 01:19
schestowitzSince 2016, following someone on Twitter has been an unexpectedly complicated affair. What was previously a reverse-chronological feed of every tweet, picture, gif, threat, misguided political opinion, or dad joke became algorithm-driven chaos designed to steer you toward tweets that would maximize engagement. Features like “Tweets you may have missed” and random tweets liked by another account you follow would show up in the Jul 09 01:19
schestowitzstream.Jul 09 01:19
-TechrightsBot-tr/ | Twitter will let you see your feed in chronological order again—here's how and why | Popular ScienceJul 09 01:19
schestowitzIt wasn’t an uncommon move at the time—Facebook and even Instagram shifted from their once-orderly ways. The algorithms had taken over social media, Skynet style.Jul 09 01:19
schestowitzNow, in 2018, Twitter is letting users get back to a purely chronological timeline without all of the extra stuff and reorganization injected into it.Jul 09 01:19
schestowitzTo go back to the pre-2016 era, open up your Twitter app or go to, then go to Settings and Privacy > Content Preferences > and turn off the toggle switch at the top.Jul 09 01:19
schestowitz"Jul 09 01:19
schestowitzNo fix for search resultsJul 09 01:19
schestowitzTwitter is now worthlessJul 09 01:19
schestowitzsuch a basic thing -- no longer possibleJul 09 01:19
CrystalMathi use nitter.netJul 09 01:28
CrystalMathto browse twitterJul 09 01:28
schestowitzUbuntu and RoboticsJul 09 01:29
schestowitz 09 01:29
-TechrightsBot-tr/ | Ubuntu and Robotics | Tux MachinesJul 09 01:29
schestowitzJul 09 01:29
schestowitzMozilla: Firefox Nightly, JS, Security and Rust 09 01:29
-TechrightsBot-tr/ | Mozilla: Firefox Nightly, JS, Security and Rust | Tux MachinesJul 09 01:29
schestowitzJul 09 01:29
schestowitzMarius Nestor on Getting Things GNOME 09 01:29
-TechrightsBot-tr/ | Getting Things GNOME To-Do App Is Back with a New Major Release, Here’s What’s New | Tux MachinesJul 09 01:29
schestowitzJul 09 01:29
schestowitzThe Linux Foundation's Response to Open Usage Commons 09 01:30
-TechrightsBot-tr/ | Open Usage Commons | Tux MachinesJul 09 01:30
schestowitzJul 09 01:30
schestowitzCutiePi Sidekick mode: Linux tablet is also a controller for external displays 09 01:30
-TechrightsBot-tr/ | CutiePi tablet based on Raspberry Pi CM3+ starts at $169 | Tux MachinesJul 09 01:30
schestowitzJul 09 01:30
schestowitz4 Useful Extensions to Make GNOME Desktop Easier to UseJul 09 01:30
schestowitz 09 01:30
-TechrightsBot-tr/ | 4 Useful Extensions to Make GNOME Desktop Easier to Use | Tux MachinesJul 09 01:30
schestowitzJul 09 01:30
schestowitztoday's howtosJul 09 01:30
schestowitz 09 01:30
-TechrightsBot-tr/ | today's howtos | Tux MachinesJul 09 01:30
schestowitzJul 09 01:30
schestowitz#Android Leftovers 09 01:30
-TechrightsBot-tr/ | Android Leftovers | Tux MachinesJul 09 01:30
schestowitzJul 09 01:30
schestowitzWhy IBM doesnât agree with Googleâs Open Usage Commons 09 01:30
-TechrightsBot-tr/ | Open Usage Commons | Tux MachinesJul 09 01:30
schestowitzJul 09 01:30
schestowitzOpen Usage CommonsJul 09 01:30
schestowitz 09 01:30
-TechrightsBot-tr/ | Open Usage Commons | Tux MachinesJul 09 01:30
schestowitzJul 09 01:30
schestowitzAriadne: maybe it's just a federation issue, as I see the accounts are both effected and the viera bot seems to be online anyway. I think we had a similar scenario in the past.Jul 09 01:30
CrystalMathbtw schestowitz you should link to instead of twitterJul 09 01:32 runs free softwareJul 09 01:32 could get people to execute non-free javascriptJul 09 01:33
DaemonFC[m]LOLJul 09 01:37
DaemonFC[m]schestowitz: Looks like that fingerprinter I found thanks to Firefox asking me to turn on DRM is going into the blocklist that Brave uses.Jul 09 01:37
DaemonFC[m]Also, EasyPrivacy shortly. Jul 09 01:38
DaemonFC[m]Splat.Jul 09 01:38
DaemonFC[m]It seems that Reddit is getting other domains that are just random letters and then calling out to them with a first party Javascript.Jul 09 01:40
*mmu_man has quit (Ping timeout: 246 seconds)Jul 09 01:40
DaemonFC[m]They're hiding behind a domain registration proxy in Panama. Jul 09 01:41
DaemonFC[m] 09 01:43
-TechrightsBot-tr/ | Reddit's website uses DRM for fingerprintingJul 09 01:43
MinceRthat's condé nastyJul 09 01:44
DaemonFC[m]"Back to the DRM issue, it appears that the script is checking what DRM solutions are available, but not actually using them. However, just checking is enough to trigger Firefox into displaying the DRM popup. Specfically, it looks for Widevine, PlayReady, Clearkey, and Adobe Primetime."Jul 09 01:47
DaemonFC[m] 09 01:51
-TechrightsBot-tr/ | Data WhiteOps collectsJul 09 01:51
DaemonFC[m]Okay, so now I've added all of this to my filters.Jul 09 01:55
DaemonFC[m]||^Jul 09 01:55
DaemonFC[m]||^Jul 09 01:55
DaemonFC[m]||^Jul 09 01:55
DaemonFC[m]Technically, blocking the first should block the script that calls the other domains. Since I know of all of these domains, why not add them all and have a higher chance of bricking their script if they load it some other way.Jul 09 01:56
DaemonFC[m]"Attempts to create an ActiveXObject (only exists in old IE versions), and checks if the created ActiveX object isSandboxed"Jul 09 01:57
DaemonFC[m]Holy shit the list just goes on and on.Jul 09 01:57
DaemonFC[m]Well, isSandboxed would indicate that you're on IE 7 or higher on at least Windows Vista.Jul 09 01:57
DaemonFC[m]Without sandboxing, you're definitely either on XP or the user has manually disabled Protected Mode IE.Jul 09 01:58
DaemonFC[m]Create an ActiveX Object and not having it in Protected Mode would mean IE 6, 7, or 8 on XP (theoretically up to IE 6 on earlier versions of Windows), or Window Vista with Protected Mode turned off by the user.Jul 09 01:59
DaemonFC[m]"Attempts to exploit an IE11 vuln!"Jul 09 02:02
DaemonFC[m]LOLJul 09 02:02
-viera/#techrights-Tux Machines: Open Usage Commons []Jul 09 02:02
DaemonFC[m]This is the nastiest thing I've ever seen.Jul 09 02:02
DaemonFC[m]"this evaluates to res://ieframe.dll/acr.js, but only on IE. This string has only one purpose, exploiting the fact that you can put arbitrary HTML in the hash part of the URL and have it get evaluated, I beleive in a privledged context of some sort. This file actually resolves in IE to a internal Windows system file, which is only accessible in JS due to a bug."Jul 09 02:03
DaemonFC[m]"tries to run VBScript:"Jul 09 02:04
DaemonFC[m]Uh, okay....Jul 09 02:04
-viera/#techrights-Tux Machines: Why IBM doesn’t agree with Google’s Open Usage Commons []Jul 09 02:05
DaemonFC[m]"attempts to detect Brave Browser with window.brave"Jul 09 02:06
*insmodppa (~insmod@unaffiliated/insmodppa) has joined #techrightsJul 09 02:06
DaemonFC[m]Uses Brave API to detect if users is on Brave, despite Brave's "anti-fingerprinting". :)Jul 09 02:06
kingoffrancelolJul 09 02:08
-viera/#techrights-Tux Machines: #Android Leftovers []Jul 09 02:09
DaemonFC[m]"attempts to get the width of the string mmmmmmmmmmlli in all of these fonts: "Ubuntu", "Utopia", "URW Gothic L", "Bitstream Charter", "FreeMono", "DejaVu Sans", "Droid Serif", "Liberation Sans", "Vrinda", "Kartika", "Sylfaen", "CordiaUPC", "Angsana New Bold Italic", "DFKai-SB", "Ebrima", "Lao UI", "Segoe UI Symbol", "Vijaya", "Roboto", "Apple Color Emoji", "Baskerville", "Marker Felt", "Apple Symbols", "Chalkboard",Jul 09 02:09
DaemonFC[m]"Herculanum", "Skia", "Bahnschrift", "Andalus", "Yu Gothic", "Aldhabi", "Calibri Light""Jul 09 02:09
DaemonFC[m]I'm flattered. They check for fonts that are usually on Linux.Jul 09 02:09
DaemonFC[m]MinceR: Someone worked pretty hard on this.Jul 09 02:10
MinceRscrewing visitors would be the sort of thing people are willing to work pretty hard onJul 09 02:10
DaemonFC[m]You can probably figure out what the user had for lunch with this script.Jul 09 02:11
DaemonFC[m]EFF Panopticlick be like: "Help us prevent tracking! Share on Facebook and Twitter!"Jul 09 02:13
MinceR:>Jul 09 02:13
-viera/#techrights-Tux Machines: today’s howtos []Jul 09 02:14
DaemonFC[m]MinceR: They got caught because they checked for DRM and it's not on by default in Firefox.Jul 09 02:19
DaemonFC[m]Maybe they'll remove that module so Firefox doesn't alert the user that something is wrong next time.Jul 09 02:19
MinceR:>Jul 09 02:20
MinceRor they'll donate enough to mozilla so they enable DRM by defaultJul 09 02:20
DaemonFC[m]Anyway, I told EasyPrivacy about it, so they just burned three domains.Jul 09 02:20
-viera/#techrights-Tux Machines: 4 Useful Extensions to Make GNOME Desktop Easier to Use []Jul 09 02:21
kingoffrancei thought the "big" js libraries and such have "standard addresses" if you want the "latest" version and not host locally...would seem to me such things are supposed to be leaning away from random domains of junk lettersJul 09 02:22
DaemonFC[m]"there is the string “haha jit go brrrrr”, as part of what appears to be some sort of either test for a JS engine bug or exploit"Jul 09 02:22
DaemonFC[m]:/Jul 09 02:22
kingoffrancei.e. where is the case for anything "legit" where you would have some random letter domain?Jul 09 02:22
DaemonFC[m]Oh the irony here is that LibreJS would actually block this fucking thing because it's non-trivial and obviously has no License field.Jul 09 02:23
DaemonFC[m] 09 02:39
DaemonFC[m]From my recent experiences on Reddit, I'd say Capitalism has run full circle and is reduced to the Chinese selling face masks and young people posing nudes and setting out a tip jar. Jul 09 02:40
DaemonFC[m]*postingJul 09 02:41
MinceRdoes the word "capitalism" even have a meaning anymore?Jul 09 02:41
DaemonFC[m]Yes, there are people working from home and paying for said nudes.Jul 09 02:44
DaemonFC[m]Occasionally, they leave home wearing a Chinese face mask to pick up food and toilet paper.Jul 09 02:44
kingoffrancelolJul 09 02:47
kingoffranceyeah i wonder it has been said the first world countries used to mock the others, wed never have some pandemic where everyone'd need masks, why dont those <insert low class job> just go to school and get a real job, etc.Jul 09 02:48
DaemonFC[m] 09 02:48
kingoffrancemakes me think the tables are turned in a wayJul 09 02:48
-TechrightsBot-tr/ | Gmail's fake loading indicatorJul 09 02:48
DaemonFC[m]Yeah.Jul 09 02:48
kingoffrancewell, you cant go to school and get a real job, cuz the diseaseJul 09 02:49
kingoffrancelolJul 09 02:49
kingoffranceand .. buy the damn maskJul 09 02:49
kingoffrancecuz capitalismJul 09 02:49
kingoffrancelolJul 09 02:49
DaemonFC[m]Oh, college for the most part is a scam.Jul 09 02:50
DaemonFC[m]Unless you're going to be a doctor or something, just go get a job.Jul 09 02:50
kingoffranceyeah i dont disagreeJul 09 02:50
kingoffrancejust the imagery i supposeJul 09 02:50
DaemonFC[m]Otherwise 4/5 end up with more student loans than they can ever pay back and the government hunting them down with the modernized Fugitive Slave Act.Jul 09 02:50
DaemonFC[m]These universities are like a siren calling you to crash on the rocks, and they go after people who are like 18 and know nothing about anything except that they're being lied to about how important college is, when in most cases, it isn't.Jul 09 02:52
kingoffrancewell i think its alsoJul 09 02:52
kingoffranceeducation pre-college is deliberately dumbed downJul 09 02:52
kingoffrancein the expectationJul 09 02:52
kingoffranceif you want a real educationJul 09 02:52
DaemonFC[m]When they get done with these people, they have $50,000 in student loans racking up 6% interest and they can't get rid of it, and they're flipping hamburgers.Jul 09 02:52
kingoffrancego to a real college, etc.Jul 09 02:52
kingoffrancei mean, i think it starts much earlierJul 09 02:52
kingoffrancelike with the expectation everyone needs a 4 year or whateverJul 09 02:53
DaemonFC[m]Yeah, but everyone goes and studies something entirely pointless.Jul 09 02:53
DaemonFC[m]Like, Walmart's Electronics department has a lot of psychologists and English majors.Jul 09 02:53
kingoffrancethe high schools etc. seem to try less hard...because you will get that stuff later theoreticallyJul 09 02:53
DaemonFC[m]When I need help getting a TV out to my car, I'll let them know.Jul 09 02:53
DaemonFC[m]There's just a lot of people around and nothing for them, and god forbid (literally if you're a Catholic) you put a helmet on that soldier.Jul 09 02:54
kingoffranceor put, another wayJul 09 02:55
DaemonFC[m]There's a lot of things wrong with sex. Not so much having it as women weaponizing it against men and men being so dumb they wonder how they're working two jobs to pay child support.Jul 09 02:55
kingoffrancethere are advanced hs get you college creditJul 09 02:55
kingoffrancei.e. that seems to be the only reason they existJul 09 02:56
kingoffranceto transfer to a real schoolJul 09 02:56
DaemonFC[m]I think that the way we disarm the "nasty womyn" is to go find it somewhere else or porn or sex robots or something.Jul 09 02:56
DaemonFC[m]Then when they lose that power they'll realize what they've done.Jul 09 02:56
DaemonFC[m]My favorite Rick & Morty is a trick question. They're all my favorite. Jul 09 02:57
DaemonFC[m]The one with the Gazorpozorp planet was a great commentary though.Jul 09 02:58
DaemonFC[m]They come across a planet where the men are constantly at war with each other while the women keep the species going by living in obscene luxury and spending all day complimenting on each other's clothing while they dump sex robots that can get pregnant down on top of the men.Jul 09 02:59
DaemonFC[m]Then if it's a boy, they toss it back and if it's a girl, they keep it.Jul 09 03:00
DaemonFC[m]The relationship my in laws have is kind of, well, beyond fucked up.Jul 09 03:00
DaemonFC[m]She's trapped her husband with her by forging his name on a bunch of credit cards and then maxing them all out.Jul 09 03:00
DaemonFC[m]She thought she was going to get another 18 years where he was stuck with her by not taking her pill, but she had a miscarriage. Jul 09 03:01
DaemonFC[m]So in a few years the kids will have both aged out and then I think her husband will be the one who files for divorce. Jul 09 03:02
DaemonFC[m]Never underestimate the power of people who should financially be very well off to sabotage themselves and have nothing but a pile of debt anyway.Jul 09 03:02
DaemonFC[m]They wouldn't know frugality if it bit them on the ass.Jul 09 03:03
DaemonFC[m]I spend $7 a month on coffee.Jul 09 03:03
DaemonFC[m]I've worn the same cheap clothes for several years. Even when they're starting to get holes in them.Jul 09 03:03
DaemonFC[m]I keep my phones and laptops until it won't boot up anymore and then I go see what's on sale.Jul 09 03:04
DaemonFC[m]Usually fixing them a time or two along the way.Jul 09 03:04
DaemonFC[m]I was already doing more to save money than the bankruptcy counseling ever mentioned.Jul 09 03:05
-viera/#techrights-Tux Machines: CutiePi Sidekick mode: Linux tablet is also a controller for external displays []Jul 09 03:06
DaemonFC[m]The reason I went under was because my ex had me slapped with criminal charges and then ran off with my car. So, forcing me to go into debt to defend myself until I couldn't anymore, and by that time I'll be goddamned if he's going to drive a car I'm responsible for.Jul 09 03:06
kingoffranceyes, easy come, easy goJul 09 03:07
kingoffrancethats nto a value judgement on pplJul 09 03:07
kingoffranceits ppl looking for fast cash seem to blow itJul 09 03:07
kingoffrancebecause they think its so easyJul 09 03:07
kingoffrancewho caresJul 09 03:07
kingoffranceill just do the same scam againJul 09 03:07
kingoffranceetc.Jul 09 03:07
kingoffranceand ppl looking to screw pplJul 09 03:08
kingoffranceit is perhaps never enough tooJul 09 03:08
kingoffranceso its not like "saving up for something"Jul 09 03:08
kingoffranceits like "hole that cant ever be filled"Jul 09 03:08
kingoffrancethats not to say i dont think the finance stuff is all fuckedJul 09 03:10
kingoffrancebut some ppl seem to not even try, at all, everJul 09 03:10
kingoffrancei guess, if you dont know what you want, you cant save for itJul 09 03:11
kingoffranceit does seem a weaponized thing for some ppl: how can i get this person i dont like in debtJul 09 03:13
kingoffranceyeah, its kind of bs, if you are thrifty, someone getting you in debt is annoying, but its just a chance to do what you normally do, doesnt screw them up as much as the other person thinksJul 09 03:16
kingoffrancei guess i consider it more a reflection of the person who thinks it will "destroy" you or whateverJul 09 03:17
-viera/#techrights-Tux Machines: The Linux Foundation’s Response to Open Usage Commons []Jul 09 03:17
kingoffrancei have a 20 year old car/laptop/etc.    if you "ruin" me...that sucks, ill just have to buy the same $50 pos laptop i would normally buy lolJul 09 03:22
DaemonFC[m]Pretty much. The Trustee gave up and went to lunch.Jul 09 03:28
kingoffranceyou cant "ruin" cheap pplJul 09 03:30
kingoffrancewe just adaptJul 09 03:30
DaemonFC[m]I told him it was a 4 year old laptop that came from Best Buy and he gave up on that part.Jul 09 03:30
DaemonFC[m]Still runs Linux fine.Jul 09 03:30
kingoffrancelolJul 09 03:30
DaemonFC[m]It has no "value" because it would be EOL with Windows 10.Jul 09 03:30
kingoffrancelolJul 09 03:30
DaemonFC[m]Told him I had a Galaxy S8 and that the fingerprint sensor was broken because I had to pry the battery out after a few years and put another one in.Jul 09 03:31
-viera/#techrights-Tux Machines: Marius Nestor on Getting Things GNOME []Jul 09 03:35
-viera/#techrights-Tux Machines: Mozilla: Firefox Nightly, JS, Security and Rust []Jul 09 04:26
-viera/#techrights-Tux Machines: Ubuntu and Robotics []Jul 09 04:28
schestowitzAriadne: seems like a massive, ~5 hour lag between the posts and them caught by viera, so it's definitely still working, just with a huge latencyJul 09 05:05
*obarun ( has left #techrightsJul 09 05:11
*obarun ( has joined #techrightsJul 09 05:14
Ariadnesounds like a problem with thenJul 09 05:16
-viera/#techrights-Tux Machines: Audiocasts/Shows: Destination Linux, TLLTS, FLOSS Weekly, Linux Headlines []Jul 09 05:38
-viera/#techrights-Tux Machines: today’s howtos []Jul 09 05:38
-viera/#techrights-Tux Machines: Linux Kernel Raising Compiler Build Requirement To GCC 4.9 []Jul 09 05:38
-viera/#techrights-Tux Machines: Games: Black Ice, BOMBFEST, Albion Online []Jul 09 05:38
schestowitzAriadne: now it has fully caught upJul 09 05:38
schestowitzless than a minute agoJul 09 05:38
schestowitzlike it finally flew like 4 hours in a couple of minutesJul 09 05:39
-viera/#techrights-Tux Machines: Python Programming []Jul 09 05:46
-viera/#techrights-Tux Machines: GNOME 3.36.4 released []Jul 09 05:51
-viera/#techrights-Tux Machines: Linux, Twitter look remove ‘blacklist/whitelist’ from code “and even ‘dummy value’.” []Jul 09 05:56
-viera/#techrights-Tux Machines: Devices: Arduino and Raspberry Pi, Synthesizer and More []Jul 09 06:02
-viera/#techrights-Tux Machines: Neptune 6.5 Release []Jul 09 06:06
-viera/#techrights-Tux Machines: A visual guide to Lens: A new way to see #Kubernetes #gnu #linux #freesw #containers []Jul 09 06:12
schestowitzDaemonFC[m]: Jul 09 06:21
-TechrightsBot-tr/ | Reddit's website uses DRM for fingerprintingJul 09 06:21
schestowitzjust caught up with thisJul 09 06:21
*CrystalMath has quit (Quit: Support Richard Stallman and other victims of cancel culture! | 09 07:14
DaemonFC[m]schestowitz: Innovative use for DRM.Jul 09 07:32
DaemonFC[m]This script is so complex that it could be written by government spooks or something.Jul 09 07:32
DaemonFC[m]It's bad.Jul 09 07:32
DaemonFC[m]The funniest part, by far, is that there was a sandbox escape in IE 11 that could escape into shell code and Microsoft never fixed it. It's there today. They still say "Protected Mode".Jul 09 07:44
DaemonFC[m]This isn't even a zero day, it's been there for years in the open, never fixed. Jul 09 07:45
kingoffrancewell someone ll say im just being snarky but   at some point you can have people or artifical persons : pick oneJul 09 07:52
-TechrightsBot-tr/ | About Us | White OpsJul 09 07:52
kingoffrancei guess, it just seems kinda surreal to see all the human t-shirtsJul 09 07:52
kingoffranceand in the same breathJul 09 07:52
kingoffrancewe protect the largets corpsJul 09 07:52
kingoffrancewith no sense of ironyJul 09 07:52
DaemonFC[m] 09 07:55
-TechrightsBot-tr/#techrights-M: (Reported) · easylist/easylist@c6a46d6 · GitHubJul 09 07:55
kingoffrancei know its just marketing but surrealJul 09 07:55
DaemonFC[m] 09 07:55
-TechrightsBot-tr/#techrights-A: (Further fingerprinting dom… · easylist/easylist@492f24a · GitHubJul 09 07:55
DaemonFC[m]schestowitz: That should be pushed out to users shortly and the Reddit fingerprinter will stop working for anyone who has EasyPrivacy.Jul 09 07:56
kingoffrancethe terminator bots are going to have an easy target all the people wearing "human" shirtsJul 09 07:56
DaemonFC[m]It breaks all three domains it's known to be using.Jul 09 07:56
kingoffrancethey can pattern match that Jul 09 07:56
DaemonFC[m]They claim it's to prevent fraud from bots.Jul 09 07:59
*GNUmoon has quit (Ping timeout: 240 seconds)Jul 09 08:00
kingoffrancei assume e.g. reddit you need an account anyways to post?Jul 09 08:01
kingoffrancei mean, e.g. gmail you need a phone or some other id to get a free email nowadaysJul 09 08:02
DaemonFC[m]Ad fraud. They're probably using it to verify that they're not running a bot farm to take click pennies from their advertising partners.Jul 09 08:07
kingoffranceok, that makes more sense than "not showing ads to bots"Jul 09 08:08
kingoffranceits all in the marketing...Jul 09 08:09
schestowitzDaemonFC[m]: 09 08:20
-TechrightsBot-tr/ | One Federal Agency Was Suing Him for Fraud. Another Paid His Company Millions for Masks. — ProPublicaJul 09 08:20
schestowitzand also new: 09 08:20
-TechrightsBot-tr/ | A Spike in People Dying at Home Suggests Coronavirus Deaths in Houston May Be Higher Than Reported — ProPublicaJul 09 08:20
schestowitzthe latter link may be of more use, it's from hours agoJul 09 08:21
schestowitzalso new: 09 08:21
-TechrightsBot-tr/ | Fauci Says Trump’s Focus on COVID Deaths is “False Narrative to Take Comfort In"Jul 09 08:21
schestowitzDaemonFC[m]: just boycott redditJul 09 08:22
schestowitzjob doneJul 09 08:23
schestowitzthey became proprietary some eyars agoJul 09 08:23
schestowitzthat's when I deleted all my reddit rss feed, that I had used to keep an eye on some thingsJul 09 08:23
-viera/#techrights-Tux Machines: Tor and Mozilla on Politics []Jul 09 08:52
-viera/#techrights-Tux Machines: today’s leftovers []Jul 09 08:59
-viera/#techrights-Tux Machines: Linux Kernel to Adopt an Inclusive Code Language, Blocks Terms like Blacklist-Whitelist and Master-Slave []Jul 09 09:04
DaemonFC[m]I have no idea why some sites still suggest Apache OpenOffice.Jul 09 09:08
DaemonFC[m]It hasn't had anything but bug fixes since 2014 and it left some of them open for years.Jul 09 09:09
DaemonFC[m]They made one release with known CVEs and then deleted the minuted from the Apache Board meeting after publishing them showing that they were aware of the CVEs and pressed on with the release, leaving them unfixed for another 9 months.Jul 09 09:10
-viera/#techrights-Tux Machines: Links 9/7/2020: Google’s Open Usage Commons, GNOME 3.36.4, Neptune 6.5 []Jul 09 09:10
DaemonFC[m]I love running rotting software where the board censors their minutes about what a disaster it is!Jul 09 09:11
schestowitzmaybe they reuse old article templates do their faux journalismJul 09 09:11
schestowitzand they find old lists with OOoJul 09 09:11
schestowitzor OOOo (Oracle)Jul 09 09:11
DaemonFC[m]OOops.Jul 09 09:12
schestowitzMSFT has just censored another project in #github and the #censorship itself is unlawful. #deletegithub before it deleted YOU!Jul 09 09:12
DaemonFC[m]Easylist is on github now.Jul 09 09:12
DaemonFC[m]That's smart. We already have people who are claiming ad blocking violates the DMCA.Jul 09 09:13
schestowitzgood luck with thatJul 09 09:31
schestowitzI saw no evidence of Microsoft challenging such dmca takedown demandsJul 09 09:31
schestowitzgoogle sometimes does, but not anymore afaik as it does not scale financially Jul 09 09:32
kingoffrancethats troubling...i would think oo would be a huge project and not be in same mad crazed feature rushJul 09 09:48
kingoffranceor does ms keep changing formats every month they have to try to keep upJul 09 09:49
kingoffranceit doesnt make any sense to me theyd be in a rushJul 09 09:51
kingoffrancemaybe they have some web/cloud integrationJul 09 09:53
-viera/#techrights-Tux Machines: Google Teams Up With Canonical To Announce Linux Alpha For Flutter []Jul 09 10:26
-viera/#techrights-Tux Machines: GNOME 3.36.4 Brings Better Support for Sandboxed Apps, Fingerprint Authentications []Jul 09 10:28
-viera/#techrights-Tux Machines: Debian-Based Neptune 6.5 Linux Distro Released with Improved Hardware Support, Latest Apps []Jul 09 10:30
-viera/#techrights-Tux Machines: Notorious – A New Keyboard-Driven Note Taking App for Linux []Jul 09 10:32
-viera/#techrights-Tux Machines: #Android Leftovers []Jul 09 10:33
*mmu_man ( has joined #techrightsJul 09 10:49
schestowitz 09 10:49
-TechrightsBot-tr/ | Wednesday Whimsies - The IPKatJul 09 10:49
schestowitz"Jul 09 10:49
schestowitzUniversity College Dublin has announced a Microsoft Newman Fellowship in Digital Policy in the School of Information and Communication Studies focusing on developing an approach to digital policy, which balances innovation and end-user protection. The application deadline is 30 July 2020.Jul 09 10:49
schestowitzA position at the University of Oslo as a Postdoctoral Research Fellowship in the ERC project "CREATIVE IPR - History of Intellectual Property Rights in the Creative Industries" is now open for applications by 1 September 2020.Jul 09 10:49
schestowitzApplications are open until 15 September 2020 for a researcher at the University of Antwerp to look at the application of privacy and non-discrimination principles to the use of artificial intelligence technologies by taxation authorities. Jul 09 10:49
schestowitz"Jul 09 10:49
schestowitzMicrosoftJul 09 10:49
schestowitzcorrupting academiaJul 09 10:49
schestowitzGoogle does the same, but...Jul 09 10:49
psydreadat my university they even have some lab ...Jul 09 11:59
psydread 09 11:59
-TechrightsBot-tr/#techrights- ( status 503 @ )Jul 09 11:59
psydreadthey want to port Windows to run on that?Jul 09 12:00
MinceRprobably notJul 09 12:02
MinceRthey have an excuseJul 09 12:03
MinceRso it's just a plain PR stuntJul 09 12:03
MinceRthey shovel some of their ill-gotten money into a random university and pose as the bleeding edge of technology on top of itJul 09 12:03
MinceRmaybe they also get to force some of their atrocious products on unsuspecting victims at the same university elsewhereJul 09 12:04
schestowitz 09 12:15
schestowitzpsydread: he did the same for EPOJul 09 12:15
schestowitzand its corrupt thugJul 09 12:15
schestowitzin 2018Jul 09 12:15
schestowitzenough of those 'royalty' pricksJul 09 12:16
schestowitzthey seem to exist to enable corporate powerJul 09 12:16
schestowitzsometimes more so than democratic govsJul 09 12:16
schestowitzquantum and hey hi are similarJul 09 12:16
schestowitzshallow pr stuntsJul 09 12:16
schestowitzibm does exploit them as wellJul 09 12:16
scientesschestowitz, 09 12:48
-TechrightsBot-tr/ | IBM asks Congress for police reform, leaves facial recognition business | Ars TechnicaJul 09 12:48
schestowitzface-savingJul 09 12:55
schestowitzAMazon said the sameJul 09 12:55
schestowitzthen Microsoft jumped in, but left loopholesJul 09 12:55
schestowitzthey say not policeJul 09 12:55
schestowitzbut that leaves the possibility of contractors, ICE, DoD etc.Jul 09 12:56
schestowitzjust some PR for them to point at when scrutinisedJul 09 12:56
scientesbut they are all lyingJul 09 12:56
schestowitzyesJul 09 12:56
schestowitzor semi-truthsJul 09 12:56
schestowitzhalf-liesJul 09 12:57
schestowitzlike non-denying denialsJul 09 12:57
schestowitz"did you kill him, sir?"Jul 09 12:57
schestowitz"no, I did not use a knife"Jul 09 12:57
*obarun has quit (Remote host closed the connection)Jul 09 13:03
-viera/#techrights-Tux Machines: Today in Techrights []Jul 09 13:40
kingoffrance 09 13:45
-TechrightsBot-tr/ | American Spies: Modern Surveillance, Why You Should Care, and What to Do ... - Jennifer Stisa Granick - Google BooksJul 09 13:45
kingoffrancei was trying to find "collect it all doesnt mean collect it all"Jul 09 13:45
kingoffrancebut you see there, gathering is not collectingJul 09 13:45
kingoffrancemetadata is not dataJul 09 13:45
kingoffrancemachines cant collect data, only peopleJul 09 13:46
kingoffranceyou see, it depends on your definition if "is"Jul 09 13:46
MinceRlolJul 09 13:47
kingoffranceso yeah, they arent doing facial recognitionJul 09 13:48
kingoffranceuntil a human sees itJul 09 13:48
MinceRthey could also put some corporations in the middleJul 09 13:49
kingoffrancesounds like white opsJul 09 13:49
MinceRwe're not doing facial recognition for the police. we're licensing our facial recognition technology to corporation A, which does facial recognition for corporation B, which was contracted by the policeJul 09 13:50
kingoffrance^^Jul 09 13:50
kingoffrancewe have left the businessJul 09 13:50
kingoffranceour subsidiaries and partners are totally separateJul 09 13:50
MinceRs/contracted/& (but also owned)/Jul 09 13:52
-viera/#techrights-Tux Machines: 20 Best Free Stacking Window Managers []Jul 09 13:57
kingoffranceif that sounds crazy: 09 13:57
-TechrightsBot-tr/ | A Guide to the Deceptions, Misinformation, and Word Games Officials Use to Mislead the Public About NSA Surveillance | Electronic Frontier FoundationJul 09 13:57
kingoffrancesee "not under this program"Jul 09 13:57
kingoffranceoabama "we have no domestic spying program" ...cuz metadata isnt dataJul 09 13:59
kingoffrancethey werent storing it...just temporarilyJul 09 13:59
kingoffranceit wasnt forever everJul 09 14:00
kingoffranceso it wasnt storingJul 09 14:00
MinceR(cat) (no audio) 09 14:00
-TechrightsBot-tr/ | ImgurJul 09 14:00
-viera/#techrights-Tux Machines: Expand your Raspberry Pi with Arduino ports []Jul 09 14:01
*CrystalMath (~coderain@reactos/developer/theflash) has joined #techrightsJul 09 14:21
XRevan86 09 14:21
-TechrightsBot-tr/ | Marketing plan draft: Discussion about options available, and timetable - The Document Foundation BlogJul 09 14:22
schestowitzMinceR: fracatalJul 09 14:23
schestowitz>cat<Jul 09 14:23
MinceR:>Jul 09 14:23
-viera/#techrights-Tux Machines: Games: Monster Logic, Counter-Strike: Global Offensive, Monster Logic and Northgard []Jul 09 14:25
-viera/#techrights-Tux Machines: today’s howtos []Jul 09 14:28
-viera/#techrights-Tux Machines: Fedora Linux Desktop To Switch From EXT4 To Btrfs Filesystem By Default []Jul 09 14:31
-viera/#techrights-Tux Machines: #Mobian Project Wants to Bring #Debian #GNU / #Linux to Mobile Devices []Jul 09 14:35
-viera/#techrights-Tux Machines: #Android Leftovers []Jul 09 14:36
*pav5088_ has quit (Ping timeout: 256 seconds)Jul 09 14:43
-viera/#techrights-Tux Machines: #libreoffice Michael Meeks’ Thoughts on Open Usage []Jul 09 14:44
-viera/#techrights-Tux Machines: Canonical enables Linux desktop app support with Flutter []Jul 09 14:48
MinceR 09 15:13
-TechrightsBot-tr/ | IRCZ makes your life worth living Post object (4386594)Jul 09 15:13
XRevan86MinceR: An improved Lada Priora?Jul 09 15:20
MinceRdunno, all i can tell that it's a ladaJul 09 15:21
MinceRwith wagon wheelsJul 09 15:21
XRevan86MinceR: It is PrioraJul 09 15:22
MinceRokJul 09 15:22
XRevan86folkswagon wheels?Jul 09 15:30
MinceRno, the kind that's pullsed by draught animalsJul 09 15:31
MinceRs/lls/ll/Jul 09 15:31
MinceRonly much bigger, of courseJul 09 15:31
*pav5088 (~pav5088@ has joined #techrightsJul 09 15:46
MinceR(cat) (audio:unimportant) 09 15:52
*MathAmphetamine (~coderain@reactos/developer/theflash) has joined #techrightsJul 09 15:56
*CrystalMath has quit (Ping timeout: 265 seconds)Jul 09 15:58
*MathAmphetamine is now known as CrystalMathJul 09 16:03
MinceR 09 16:23
-TechrightsBot-tr/ | IRCZ makes your life worth living Post object (4381065)Jul 09 16:23
*MathAmphetamine (~coderain@reactos/developer/theflash) has joined #techrightsJul 09 16:41
*CrystalMath has quit (Ping timeout: 240 seconds)Jul 09 16:43
*pav5088_ (~pav5088@ has joined #techrightsJul 09 17:01
*pav5088 has quit (Ping timeout: 258 seconds)Jul 09 17:02
MinceR 09 17:07
MathAmphetamineyes!Jul 09 17:08
*MathAmphetamine is now known as CrystalMathJul 09 17:08
*Blue_flame has quit (*.net *.split)Jul 09 17:55
*psydroid has quit (*.net *.split)Jul 09 17:55
*nergal[m] has quit (Read error: Connection reset by peer)Jul 09 17:56
*DaemonFC[m] has quit (Read error: Connection reset by peer)Jul 09 17:56
*paride15[m] has quit (Read error: Connection reset by peer)Jul 09 17:56
*I3^RELATIVISM has quit (Write error: Connection reset by peer)Jul 09 17:56
*nergal[m] (nergalmatr@gateway/shell/ has joined #techrightsJul 09 18:01
*Blue_flame (kopynewmat@gateway/shell/ has joined #techrightsJul 09 18:18
*I3^RELATIVISM (alexissamp@gateway/shell/ has joined #techrightsJul 09 18:18
*DaemonFC[m] (daemonfcma@gateway/shell/ has joined #techrightsJul 09 18:18
*paride15[m] (paride15ma@gateway/shell/ has joined #techrightsJul 09 18:18
*psydroid (psydroidma@gateway/shell/ has joined #techrightsJul 09 18:18
DaemonFC[m]More and more videos are using this damned HTTP Live Streaming to try to stop users from figuring out where the video file is and grabbing it.Jul 09 18:56
DaemonFC[m]Fedora is going to switch to systemd-resolved in 33. They comment that Ubuntu made the switch 3 years ago. Yes, yes, and that's why they were vulnerable to the CVEs where a DNS server could launch an attack with remote code execution on an Ubuntu system, and Fedora was not. Yeah, let's switch to that.Jul 09 19:01
DaemonFC[m]The really funny thing about letting Ubuntu grab resolved 3 years ago is that they let their own "enterprise" (and desktop) users go splat for a change with all the truly horrendous problems.I think that should probably be what happens with more components.Jul 09 19:11
DaemonFC[m]Possibly one of the better things about Firefox doing its own DNS lookups over HTTPS is that the DNS server can't reply "Oh here, systemd-resolved, run this would you?". :)Jul 09 19:12
MinceRlolJul 09 19:13
MinceRgotta have the newest, most "modern", "hip" and "cool" vulnerabilitiesJul 09 19:13
DaemonFC[m]Unfortunately, other programs will end up doing DNS queries themselves and getting such an issue, if another one pops up.Jul 09 19:13
*XRevan86 saw CVE reports the day after installing unbound.Jul 09 19:17
XRevan86(  )Jul 09 19:18
XRevan86 09 19:18
-TechrightsBot-tr/ | [FreeBSD-Announce] FreeBSD Security Advisory FreeBSD-SA-20:19.unboundJul 09 19:18
DaemonFC[m]Somewhere along the way, Network Manager  is letting whatever wifi setup the user happens to be on redirect to its own DNS servers. I would say that's a security hazard.  It would be nice if there was jsut a checkbox in there telling it to override the regular DNS setup and use DoH systemwide.Jul 09 19:22
DaemonFC[m]It could hardly be any worse than what's going on right now.Jul 09 19:22
XRevan86DaemonFC[m]: Um, change the connection settings?Jul 09 19:23
XRevan86From DHCP to "DHCP, only address"Jul 09 19:23
DaemonFC[m]Doesn't seem to actually stick.Jul 09 19:23
XRevan86DaemonFC[m]: Should stick. Unless you get new configuration every time.Jul 09 19:24
DaemonFC[m]Network Manager says /etc/resolv.conf is being managed by it and here' the DNS servers you told it to use.Jul 09 19:24
DaemonFC[m]Then you go to check DNS Leak Test or something and sure enough, here's your ISP's DNS serverJul 09 19:25
XRevan86DaemonFC[m]: Anyway, what is Fedora using right now in systemd-resolved's place? this?Jul 09 19:25
-TechrightsBot-tr/ | Google Online Security Blog: Behind the Masq: Yet more DNS, and DHCP, vulnerabilitiesJul 09 19:25
DaemonFC[m]glibc's built-in DNS resolver, according to the change proposal.Jul 09 19:26
scientesdnsmasq is a great piece of softwareJul 09 19:26
scientesI used it for quite a whileJul 09 19:27
scienteseasy to configure, lots of featuresJul 09 19:27
XRevan86DaemonFC[m]: I read about nscd yesterday, what I got out of it is that it's not intended for caching DNS.Jul 09 19:27
XRevan86scientes: Not going to say that it's not.Jul 09 19:28
XRevan86scientes: But since systemd-resolved is not perfect, I want to point out that DNS servers don't tend to have a perfect record.Jul 09 19:28
DaemonFC[m]Everything you were doing previously will break.Jul 09 19:29
DaemonFC[m]Your editing of these files will be ignored.Jul 09 19:29
DaemonFC[m]Thank you for using Red Hat, where system configures you.Jul 09 19:29
XRevan86And one is not supposed to manually edit /etc/resolv.conf. Especially when using something like dnsmasq.Jul 09 19:29
-viera/#techrights-Tux Machines: Mobian is a Linux-based smartphone OS based on Debian []Jul 09 19:30
XRevan86And my observation is that software tends not to as well, instead making a symlink.Jul 09 19:30
XRevan86or telling the user that they should make a symlinkJul 09 19:31
-viera/#techrights-Tux Machines: Google’s Flutter Apps are Coming to Desktop Linux Thanks to Ubuntu []Jul 09 19:31
DaemonFC[m]Red Hat is mostly to blame for the whole "It's Linux, so if that howto is more than 5 minutes old don't count on anything being the same now." effect.Jul 09 19:34
-viera/#techrights-Tux Machines: KDE’s July 2020 Apps Update Improves KTorrent, KMyMoney, KDiff3, and Others []Jul 09 19:34
DaemonFC[m]Debian is fucking with the shit because they ceased being independent of Red Hat anyway.Jul 09 19:37
*psydread think Red Hat/Systemd/Github/GNU/Linux is ready to be disruptedJul 09 19:38
DaemonFC[m]You can use whatever you want, but it's mostly Red Hat anyway, mostly.Jul 09 19:38
-viera/#techrights-Tux Machines: Debian 8 Long Term Support reaching end-of-life []Jul 09 19:38
-viera/#techrights-Tux Machines: Solus Stands on Its Own []Jul 09 19:40
-viera/#techrights-Tux Machines: The 10 Best Scanning Tools for Linux System in 2020 []Jul 09 19:41
-viera/#techrights-Tux Machines: #Android Leftovers []Jul 09 19:46
-viera/#techrights-Tux Machines: Nvidia 450.57 Linux Graphics Driver Improves Support for Vulkan Apps, Adds New Features []Jul 09 19:49
-viera/#techrights-Tux Machines: site now with more App Stores and Downloads []Jul 09 19:51
DaemonFC[m]Linux is just rotting from the inside out.Jul 09 19:51
DaemonFC[m]More features go in. Nobody is terribly worried about bugs.Jul 09 19:52
DaemonFC[m]If they get fixed, they might take patches, but that's about it.Jul 09 19:52
-viera/#techrights-Tux Machines: Rockchip PX30 based in-vehicle system supports OBD-II telematics and ADAS []Jul 09 19:53
-viera/#techrights-Tux Machines: Stable Kernels: 5.7.8, 5.4.51, 4.19.132, 4.14.188, 4.9.230, and 4.4.230 []Jul 09 19:54
*obarun ( has joined #techrightsJul 09 19:57
DaemonFC[m]A constant of fascism is that they never commit themselves to anything. They just say it could happen.Jul 09 20:03
DaemonFC[m]It seems kind of stupid to do immutable root filesystem and btrfs. Btrfs itself brings the ability to snaphot root and rollback.Jul 09 20:06
-viera/#techrights-Tux Machines: KDE Seeing Fresh Improvements For HiDPI Support []Jul 09 20:08
DaemonFC[m]Although I can see the advantages of rollback in a system like Fedora.Jul 09 20:09
DaemonFC[m]They're not particularly careful to test package updates.Jul 09 20:09
DaemonFC[m]John said don't go near that, failure is contagious sometimes.Jul 09 20:12
DaemonFC[m]In a traditional package manager in Linux, there's probably no better way of explaining that.Jul 09 20:12
-viera/#techrights-Tux Machines: LibreOffice Might Delay Its “Personal Edition” Branding []Jul 09 20:13
DaemonFC[m]One in. All in. If you get a bad update and everything is using that library, byeeeee.Jul 09 20:13
DaemonFC[m]Systemd Resolved: Soon you will see things more horrible than you can possibly imagine!Jul 09 20:21
DaemonFC[m]*zoom in on Ubuntu's previous dnsmasq setup*Jul 09 20:22
DaemonFC[m]Systemd Resolved: Okay, maybe not that horrible  but still pretty bad....Jul 09 20:22
-viera/#techrights-Tux Machines: today’s howtos []Jul 09 20:29
DaemonFC[m]I was starting to experience errrm issues with GNOME and that's one reason I finally went oh snap. I read something about KDE running on a freaking pinebook a while back and then here's GNOME leaking like a screen door on a submarine. :/Jul 09 20:37
psydreadI don't think KDE runs particularly well on a Pinebook, but Red Hat made GNOME run like a snail on this reasonably powerful hardware, which is quite a feat to pull offJul 09 20:39
XRevan86DaemonFC[m]: So, dnsmasq is bad, resolved is bad, does that mean you don't like caching servers in general?Jul 09 20:40
DaemonFC[m]I tried bringing up the GNOME Clocks thing waking up 10 times a day and pegging an entire core on an i7-6560U for 5 minutes at a time and causing a China Syndrome on my laptop, but I was told to shaddup, so I've never formatted a disk over a Clock before, but congratulations.Jul 09 20:40
psydreadwho told you to shut up? Red Hat developers?Jul 09 20:43
DaemonFC[m]Pretty much.Jul 09 20:44
DaemonFC[m]They're not interested in fixing GNOME. It's hopeless.Jul 09 20:45
psydreadwell, I'm not interested in them and their software eitherJul 09 20:46
DaemonFC[m]The fucking Clock wakes up and I go "Huh, that's strange. I don't remember setting parallel wavpack -hh -x6.......".Jul 09 20:46
-viera/#techrights-Tux Machines: Games: Proton, SUPERHOT, Vintage Story []Jul 09 20:46
-viera/#techrights-Tux Machines: Security Leftovers []Jul 09 20:53
DaemonFC[m]They're certainly adding more major problems to GNOME than they are fixing.Jul 09 21:01
-viera/#techrights-Tux Machines: Open Hardware: Arduino and Beyond []Jul 09 21:01
DaemonFC[m]So Canonical reports it as a blow by blow. They'll say "Daniel van Vugt just fixed this this and that." then there will be a bumper article going "Also, window reaping has been completely broken for a year and nobody noticed.".Jul 09 21:01
-viera/#techrights-Tux Machines: Service Router Linux/SR Linux From Server []Jul 09 21:04
-viera/#techrights-Tux Machines: What’s This New Ubuntu ‘Rolling Rhino’ And Do You Need It? []Jul 09 21:06
DaemonFC[m]I'm not really liking WebExtensions to be honest. Thanks to all of this HTTP Live Streaming bullshit duct taped together in Javascript instead of "Here's a video. Play it.", you compromise the security added by the Flatpak system to install a "native helper app" for Video Download Helper. Firefox might not be able to breach the Flatpak sandbox, but at that point anything that breaks into the WebExtensions process andJul 09 21:07
DaemonFC[m]hijacks Video Download Helper can call out to the Native App, and _that_ can.Jul 09 21:07
DaemonFC[m]It's still a higher bar and less useful to an attacker.Jul 09 21:08
DaemonFC[m]They'd have to string together a more complicated attack against the browser using an extension to an extension that you may not have.Jul 09 21:08
DaemonFC[m]But it's possible.Jul 09 21:09
-viera/#techrights-Tux Machines: Audiocasts/Shows: Ubuntu Podcast, BSD Now and Bad Voltage []Jul 09 21:13
DaemonFC[m]I removed the system copy of Firefox.Jul 09 21:15
DaemonFC[m]The Flatpak version it is then.Jul 09 21:15
-viera/#techrights-Tux Machines: #Android Leftovers []Jul 09 21:16
-viera/#techrights-Tux Machines: Here’s How to Upgrade from #LinuxMint 19.3 to Linux Mint 20 []Jul 09 21:19
DaemonFC[m]schestowitz: Are you going to mention the Reddit fingerprinting script?Jul 09 21:31
DaemonFC[m]I doubt that public shaming will get them to budge, but some combination of EasyPrivacy/DDG Tracker Radar/Disconnect going to war with it and some bad publicity might.Jul 09 21:32
DaemonFC[m]Mozilla really is overdoing the whole Firefox turning into nagware out of the box.Jul 09 21:49
psydreadthey're sealing the fate of the application and possibly the whole Mozilla Foundation, so hats off to themJul 09 21:51
scientes100000000000000000==100000000000000001Jul 09 21:55
scientestrueJul 09 21:55
scientesXRevan86, ^Jul 09 21:56
XRevan86scientes: Are you in float world?Jul 09 21:56
scientesjavascriptJul 09 21:56
XRevan86scientes: ah, I think I know whyJul 09 21:57
scientesOCJul 09 21:57
scientesbut stillJul 09 21:57
XRevan86scientes: OC?Jul 09 21:58
scientesof courseJul 09 21:58
DaemonFC[m]Someone broke into my Disney account.Jul 09 21:58
XRevan86I thought that maybe it's NaN or Infinity and javascript thinks those are equal being shit and allJul 09 21:58
scientesthat you can just write as many digits as you want is the funny thingJul 09 21:59
scientesshows how unpolished JS isJul 09 21:59
XRevan86but no, it just silently lowers overflowed numbers to the maxJul 09 21:59
scientesnot trueJul 09 21:59
XRevan86or not?Jul 09 22:00
scientes10000000000000000000000000000000000000000000000000000000000000000000000000==10000000000000000000000000000000000000000000000000000000000000000000000001Jul 09 22:00
scientestrueJul 09 22:00
scientes10000000000000000000000000000000000000000000000000000000000000000000000000==100000000000000000000000000000000000000000000000000000000000000000000000021Jul 09 22:00
scientesfalseJul 09 22:00
XRevan86scientes: Okay, spillJul 09 22:00
XRevan86what the heckJul 09 22:00
scientes(that isn't an extra number)Jul 09 22:00
scientesit just keeps multiplying by 10Jul 09 22:00
scientesor maybe it is the funny IEEE == operatorJul 09 22:00
scientes10000000000000000000000000000000000000000000000000000000000000000000000000==10000000000000001000000000000000000000000000000000000000000000000000000001Jul 09 22:01
scientesfalseJul 09 22:01
XRevan86scientes: 10000000000000000 + 1 = 10000000000000000Jul 09 22:01
scientesahhhhhJul 09 22:02
scientesthat is just IEEE howeverJul 09 22:02
scientesyou can something too small and it does nothingJul 09 22:02
DaemonFC[m]Someone broke into my Disney account to watch ESPN and they were using PIA. Interesting.Jul 09 22:03
XRevan86scientes: Right, so it is not an integer indeed.Jul 09 22:03
scientesthat I understandJul 09 22:03
scientesbut that it will just keep multiplying by 10Jul 09 22:03
scientesand let you enter as many digits as you want..Jul 09 22:04
XRevan86scientes: Why wouldn't itJul 09 22:04
scientescause it is sillyJul 09 22:04
XRevan86scientes: It's not hard for floats.Jul 09 22:04
scientesunless you have a .0Jul 09 22:04
XRevan86scientes: apparently it's implicitJul 09 22:04
*XRevan86 pukes from how shitty this is.Jul 09 22:05
scientesXRevan86, there is also decimal floating pointJul 09 22:05
scienteswon't solve this issue howeverJul 09 22:06
scientesnot very commonJul 09 22:06
DaemonFC[m]According to Microsoft, people all over the world have tried to sign into my Outlook mail account.Jul 09 22:08
DaemonFC[m]Unsuccessfully it says.Jul 09 22:08
DaemonFC[m]I used a Firefox generated password and changed that.Jul 09 22:08
DaemonFC[m]Yeah, it's definitely some kind of a botnet attacking my Outlook Mail.Jul 09 22:11
DaemonFC[m]Some of them were using an account alias, so I removed it from my profile.Jul 09 22:11
XRevan86scientes: Not even PHP and Perl5 are that bad.Jul 09 22:27
XRevan86scientes: JS really takes a strong lead.Jul 09 22:27
XRevan86oh wait, it's a pragma…Jul 09 22:27
XRevan86Is perl that bad?Jul 09 22:28
scientesexcept it isn't that WTF because it is clearJul 09 22:28
scientesthe reasonJul 09 22:28
XRevan86scientes: It's worse, because it means that JS is implicitly lossy.Jul 09 22:29
scientesno it isn'tJul 09 22:29
XRevan86it loses precisionJul 09 22:29
scientesyou just have to stay under 48 bitsJul 09 22:30
scientes51 IIRCJul 09 22:30
scientes52 bitsJul 09 22:30
scientesyou have 52 bits of precisionJul 09 22:30
scientesif you want more, you have to do Knuth stuffJul 09 22:31
DaemonFC[m]Codecs are just an ongoing mess in general. That's why I was pleased to see VLC in Flatpak form with bubblewrap."Spank spank spank* Stay in there! Jul 09 22:56
DaemonFC[m]schestowitz: At least this _should_ keep some VLC exploits from escaping into the rest of the system.Jul 09 22:57
DaemonFC[m]I think Flatpak is somewhat underrated. Jul 09 22:58
DaemonFC[m]QBittorrent is in Flatpak too.Jul 09 23:00
DaemonFC[m]That's potentially dangerous to run too. Jul 09 23:00
*GNUmoon (~GNUmoon@gateway/tor-sasl/gnumoon) has joined #techrightsJul 09 23:56

Generated by 2.6 by Marius Gedminas - find it at!