Bonum Certa Men Certa

Gemini Links 22/05/2023: Smolver Security Hole Fixed



  • Gemini* and Gopher

    • Personal

      • 🔤SpellBinding: EILXPSM Wordo: LOXES
      • Music Index!!!

        This isn't really warranting an announcement... But I decided to carve out some of my music related posts into their own page. I often cite these posts and its nice to have a quick place to find them. I want to do more music related writing (even though I am bad at it) so I figured if I carve out its own page then maybe this can incentivize me.

        Every post I make is going to show up in my gemlog regardless - so I'm keeping my RSS feed the same. It'll just act as basically a "Tag filter"

      • Duolingo, Long Weekend

        Two weeks into Duolingo and I'm now in the Gold League (there's like, five or six tiers). Do enough lessons/get enough points each week, and you move up. So I have. I won my Bronze League by the skin of my teeth, then Silver last week pretty easily. I assume it will just get progressively harder. But, I'm sort of impressed. So many achievements! Gems! Shiny things! Challenges, and practices! The product managers have absolutely mastered the gamification of language learning, holy hell. Incredibly slick, engaging, no rough edges. And even a wicked sense of humour. One of my old online friends, much more fluent in Irish than me, started up again after a few months away. The first sentence Duolingo gave her: "I don't have time for five minutes a day."

    • Technical

      • Games Showcase: Hogwarts Legacy

        Hogwards Legacy, released this year, brings to life a world that many of us already know well.

        I’m not, I should say up front, a devotee of the series. I read and enjoyed some of the books, I watched and enjoyed the movies; and I think I understand why it’s been hugely successful. The world of Harry Potter is a fun, colourful place to allow one’s imagination to spend time.

        Still, it took me by surprise just how much I enjoy playing Hogwarts Legacy.

      • Sleepy morning

        Ah, okay. I'm typically in Amfora, and some related documentation seems to get me in the right ballpark. Thanks!

      • Internet/Gemini

        • One Week on Bubble

          The first week has been very useful for testing and bug fixing. Developing a multi-user system locally is a bit challenging, so many issues will only pop up when things are running live. I got up to v1.4 during the first week with some days seeing two upgrades.

          [...]

          Using Bubble for issue tracking is promisingly fast and slick. All the cross-referencing and social feature (when they work...) are as useful as expected. Perhaps this will indeed be a viable choice from a developer's point of view, and maybe Gemini users will prefer this to going on GitHub or some other web interface? I can see myself preferring this.

          The search feature will need some improvement: it shows issues as regular posts...

          Issue trackers are hidden from All Posts so their activity is a bit hidden from view, but that is probably for the best. One can always follow the issue tracker subspace for more visibility.

      • Announcements

        • Public Service Announcement - smolver Security Hole!

          I have found a security defect in v1.1.0 or later in smolver: if you have client certificate authentication configured, client certificates (.pem files) could potentially be served if a URL request for the file is received. This is worsened by the fact that per-directory config files, .smol.json files, which may contain authentication configuration data, are also serveable in the same manner.


* Gemini (Primer) links can be opened using Gemini software. It's like the World Wide Web but a lot lighter.



Recent Techrights' Posts

'Confidential Computing'? More Like a Giant Back Door.
CacheWarp AMD CPU Attack Grants Root Access in Linux VMs
Cybercrimes and Online Abuse From Extremists and Militants on a VPN/Tor
A straitjacket or lobotomy won't solve this issue
Links 02/12/2023: Pfizer Sued for Lies About Efficacy, Censorship of Scientific Dissent, More Pfizer Layoffs
Links for the day
Selling Free Software
by Richard Stallman
 
IRC Proceedings: Saturday, December 02, 2023
IRC logs for Saturday, December 02, 2023
Links 03/12/2023: CRISPR as Patented Minefield, Lots of Greenwashing Abound
Links for the day
Over at Tux Machines...
GNU/Linux news
Professor Eben Moglen: In 1991 Richard Stallman Thought GNU/Linux Was Doomed Due to Software Patents
Back when Linus Torvalds was about to release Linux Prof. Moglen and Dr. Stallman had already spent years developing GNU and refining its licence, the GPL, which Linux would later adopt
Montana’s TikTok Ban Was to Protect Free Speech and the United States' First Amendment
TikTok does not embrace Free speech
GNU/Linux Surges to Almost 4% Worldwide on Desktops/Laptops, 2% in Latest Steam Survey (Ubuntu Not the Top Distro)
We've fortunately bet on a winning platform
Links 02/12/2023: ChatGPT Drowns in Bad Press, Censorship Worldwide Increases Some More
Links for the day
[Meme] Screenshots of Web Pages (Relevant to One's Article) Are Not Copyright Infringing Anywhere in the World
bullying and hate crimes
IRC Proceedings: Friday, December 01, 2023
IRC logs for Friday, December 01, 2023
A Year of Doing Techrights 'Full Time'
been a year!
Microsoft and Its Boosters Worsen Linux Security
The circus goes on and on
Links 01/12/2023: Facebook Infested With Malicious Campaigns by Imposters, ACLU Gives Advice on Doxxing and Online Harassment
Links for the day
Just Like Its Budget Allocation, the Linux Foundation Devotes About 3% Of Its Latest Newsletter to Linux, Devotes More to Linux's Rivals
It's just exploiting the brand
Links 01/12/2023: Google Invokes Antitrust Against Microsoft
Links for the day
Over at Tux Machines...
GNU/Linux news
UK Government Allowing Microsoft to Take Over Activision Blizzard Will Destroy Jobs
Over 30,000 fired this year? More?
It's Cheaper to Pay Bribes (and Produce Press Releases) Than to Pay Fines (After Lots of Negative Publicity)
Does the UK still have real sovereignty or do corporations from overseas purchase decisions and outcomes?
November 2023 Over With GNU/Linux at All-Time Highs According to statCounter
ChromeOS+GNU/Linux combined are about 7% of the "market"
New Report Provides Numerical Evidence That Google Hired Too Many People From Microsoft (and Became Malicious, Evil, Sociopathic)
"Some 12,018 former Microsoft employees currently work for the search and data giant"
Google: Keep Out, Don't Save Your Files, and Also Let Us Spy on Everything You Do
Do you still trust "clown" storage?
IRC Proceedings: Thursday, November 30, 2023
IRC logs for Thursday, November 30, 2023
Links 01/12/2023: Many Suppressions in Hong Kong and Attempts to Legitimise Illegal and Unconstitutional Fake Patent 'Court' in EU (UPC)
Links for the day