Readit News logoReadit News
monai commented on Microsoft Copilot AI Comes to LG TVs, and Can't Be Deleted   techpowerup.com/344075/mi... · Posted by u/akyuu
gspr · 4 days ago
> My rule for modern TVs:

> 1. Never connect the TV panel itself to the internet. Keep it air-gapped. Treat it solely as a dumb monitor.

A sensible rule, indeed. Next level of dystopia: cellular modems becoming so cheap that every TV, fridge and washing machine comes with one that connects it to the Internet whether you like it or not. And then when we Faraday cage those, the device refuses to function.

Laws need to keep up and ban this shit outright. It sounds exactly like something that the EU could help with.

monai · 4 days ago
> Next level of dystopia: cellular modems becoming so cheap that every TV, fridge and washing machine comes with one that connects it to the Internet whether you like it or not.

That's already a reality with cars in Europe.

monai commented on Reading NFC Passport Chips in Linux   shkspr.mobi/blog/2025/06/... · Posted by u/robin_reala
frelp · 6 months ago
I wonder if you could create a chip that could break the passport reader system. That could really disrupt things, so hopefully that’s not possible.
monai · 6 months ago
You can transmit arbitrary data in certain steps of the passport reading process. The possibility of disruption depends on whether the reading system has bugs exploitable by the incoming data.

I've seen crashes in PKCS#11 drivers when reading cards with malformed data. So, the possibility, in theory, is always there.

monai commented on Trading with Claude, and writing your own MCP server   dangelov.com/blog/trading... · Posted by u/dangelov
shireboy · 7 months ago
I’m trying to wrap my head around mcp but auth and security is still the confusing thing to me. In this case, I get there is an oauth redirect happening, but where is the token being stored? How would that work in an enterprise or saas environment where you want to expose an mcp for users but ensure they can only get “their” data? How does the LLm reliably tell the mcp who the current user is?
monai · 7 months ago
these questions kill the vibe.
monai commented on Getting forked by Microsoft   philiplaine.com/posts/get... · Posted by u/phillebaba
monai · 8 months ago
Reading story after story about big corporations abusing single/small group opensource developers, I think we need a license that, otherwise permissive, explicitly denies the use of the code for companies that took VC money or are worth a billion or more.
monai commented on From Pegasus to Predator – The evolution of commercial spyware on iOS [video]   media.ccc.de/v/38c3-from-... · Posted by u/cookiengineer
amelius · a year ago
Question: my colleague has a Mac with a Timemachine and thinks he is safe for ransomware. Is that, in a practical sense, true?
monai · a year ago
Absolutely not. Time Machine is just a SAMBA share with a nice UI on the client side. If the backup directory gets encrypted, all the versions of your files will also be encrypted.
monai commented on Show HN: I made a tool that turns screenshots into dramatically angled photos   screenstab.com/editor/... · Posted by u/mikaelaast
monai · 3 years ago
The generated images look too flat and too sharp, giving an aged look. No one takes screenshots programmatically anymore. Consider revitalizing the output by adding RGB pixelation and a moire pattern filter to look like it was taken from a real monitor with a phone camera.
monai commented on Build Your Own Mobile Proxy for Web Scraping   scrapingfish.com/blog/byo... · Posted by u/mateuszbuda
getcrunk · 3 years ago
How would you decouple the sims from the modems? Would it just be about reading some info off the sim and then passing it to the modem?
monai · 3 years ago
One of the Osmocom projects[0] does precisely that.

[0] https://osmocom.org/projects/osmo-remsim/wiki

monai commented on Mitmproxy 7.0   mitmproxy.org/posts/relea... · Posted by u/mhils
mhils · 4 years ago
mitmproxy does lookup the upstream certificate by default, but at the moment we only transfer common name, subject alternative names and (new) organization name. The good news is that with version 7 it's very easy to add more here, I'd be more than happy to accept contributions. :)
monai · 4 years ago
Good news indeed! I tried to contribute 1–2 years ago and quickly realized that such a feature would require a substantial rewrite after a quick code inspection.
monai commented on Mitmproxy 7.0   mitmproxy.org/posts/relea... · Posted by u/mhils
mhils · 4 years ago
Mitmproxy dev here, happy to answer any questions! :)
monai · 4 years ago
mitmproxy is a great tool, but it lacks upstream certificate lookup and attributes transfer to a generated host certificate. For example, Charles does that. Some applications perform attribute inspection to detect MITM proxies, namely Spotify. Are you planning to implement this feature? Or maybe you already did it in version 7?
m

u/monai

KarmaCake day8July 16, 2021View Original