Readit News logoReadit News
JaRail commented on You can bypass YouTube ads by adding a dot after the domain   reddit.com/r/webdev/comme... · Posted by u/ashitlerferad
tomp · 5 years ago
Actually I just started getting ads again, with uBlock Origin, both in YouTube and in newly-redesigned Facebook. I wrote a simple script that removes FB ads, but I need to "productivize" it and make sure it auto-loads...
JaRail · 5 years ago
When that happens, I usually just do a manual update on my filters. More often than not, someone has already updated it.
JaRail commented on Wikipedia Lost 3B Organic Search Visits to Google in 2019   hackernoon.com/how-wikipe... · Posted by u/caution
doublesCs · 5 years ago
> Not sure why every time this topic comes up someone has to mention it as if it’s some sort of Firefox secret sauce

If you're not sure I can clarify that for you. I was responding to someone talknig about ddg, and I was showing a better way of doing it. I didn't know that it's possible with Chrome because I don't use it.

JaRail · 5 years ago
Worth pointing out then that DDG has a number of shortcuts built-in. If you don't care about passing a query through them, it already works.

https://duckduckgo.com/bang

The most-used is probably !g, which sends your query to google. For wikipedia, it's !w.

JaRail commented on Wikipedia Lost 3B Organic Search Visits to Google in 2019   hackernoon.com/how-wikipe... · Posted by u/caution
realusername · 5 years ago
That's exactly what I've been doing almost unconsciously, I'm adding "wiki" or "reddit" at the end of every query except for programming ones.

The only time I'm using the search as intended is for programming error queries where it's way too niche for Google to append low quality news farms / ecommerce websites. That's the only type of query I still get good results.

JaRail · 5 years ago
Even programming questions. If it's something considered popular, you get awful results. Take javascript, I always append "mdn" when I'm trying to look up a language/api detail. Otherwise I'd be sifting through the top ten garbage Q&A or tutorial sites. In the glory days, Page Rank would return reference material first since it was so heavily referenced. But clearly that no longer works in the real world of SEO optimization.
JaRail commented on German city wants to ditch Microsoft for Linux   androidrookies.com/this-g... · Posted by u/darshansavla
sq_ · 5 years ago
Definitely can't blame them for being distrustful. Seems like it would probably be easy enough for Microsoft to hide extra data in the telemetry that Windows 10 already sends home if the NSA or someone were to force them to, and history seems to inform us that US companies have little choice but to comply with such orders.
JaRail · 5 years ago
Large governments have access to Windows source code.

https://www.microsoft.com/en-us/securityengineering/gsp

It's more about long-term strategy. China wants full control over their OS. They want features Microsoft would never add. They want support for their own hardware, etc.

JaRail commented on FCC forced by court to ask the public again for feedback on net neutrality   theregister.co.uk/2020/02... · Posted by u/daegloe
Mountain_Skies · 6 years ago
Haven't mobile operators always been free to throttle speeds and create special data classes? I thought net neutrality was only for traditional fixed ISP connections.
JaRail · 6 years ago
Correct. The US only had net neutrality on the books for traditional ISPs. However, they were playing relatively nicely to avoid such regulation happening. The mobile arena was fought over data caps and exemptions rather than throttling.
JaRail commented on FCC forced by court to ask the public again for feedback on net neutrality   theregister.co.uk/2020/02... · Posted by u/daegloe
bashinator · 6 years ago
I'm not positive that this is an example, but it seems like it must be. Watching Netflix through Comcast's Xfinity box does not count against your data cap. Watching the same Netflix on the same TV over the same pipe using a computer instead, does.
JaRail · 6 years ago
Data exemptions are absolutely an example of a net neutrality violation. Similar things, like exempting partnered streaming music services from mobile data plans, have been shot down in Canada.
JaRail commented on Twitter says an attacker used its API to match usernames to phone numbers   zdnet.com/article/twitter... · Posted by u/spzx
jraph · 6 years ago
I read the article and thought, "well, yes, the option that needed to be enabled on the account for the attack to work describes what the API did, what is the bug?"

I found the original notice from twitter [1] easier to understand (maybe change the URL of this post?) and it does not speak about a bug. Twitter did implement a change so that the attack cannot be done anymore though.

I did not understand the fix itself, it seems the API cannot be used for its intended use anymore?

[1] https://privacy.twitter.com/en/blog/2020/an-incident-impacti...

JaRail · 6 years ago
The fix was to block the botnets that were scanning millions of numbers and ban the associated accounts. Likely that includes some ongoing threat detection as well. That'll at least prevent scammers from collecting one more account name/number to attempt exploiting.

It doesn't do anything against a targeted attack against someone who has chosen to be discoverable. That's just how search/discovery is intended to work.

JaRail commented on Twitter says an attacker used its API to match usernames to phone numbers   zdnet.com/article/twitter... · Posted by u/spzx
80386 · 6 years ago
> I agree that Twitter using this to get people to give them PII those don't want Twitter to have, especially when Twitter aren't a good custodian of that PII is terrible, but it's not as though Twitter's other option (anybody can mint a thousand bogus Twitter followers with no pushback from Twitter) looks great either.

Third option: don't display follower counts.

JaRail · 6 years ago
Hiding counts makes it hard to identify imposter accounts and bots. Users need to be able to see account age and counts at a minimum.
JaRail commented on Twitter says an attacker used its API to match usernames to phone numbers   zdnet.com/article/twitter... · Posted by u/spzx
dicytea · 6 years ago
Does this vulnerability affect people who added a phone number but then removed them? Last time I tried, this method was effective for getting around the "suspicious activity" lock.
JaRail · 6 years ago
No, it wouldn't work. It only works if people can discover you with the "find people you know from your address book" feature. A deleted number won't match. Or you can just turn it off in your discoverability settings.
JaRail commented on Twitter says an attacker used its API to match usernames to phone numbers   zdnet.com/article/twitter... · Posted by u/spzx
Polylactic_acid · 6 years ago
Same, looks like twitter just locks any account that isn't active enough for some reason.
JaRail · 6 years ago
So people don't generate thousands of accounts then sit on them until they want to spam with legit-looking seven year old accounts.
J

u/JaRail

KarmaCake day477January 17, 2015
About
bored ;/
View Original