At home Pihole, on mobile Firefox + uBlock Origin
Readit Newsworg commented on Ask HN: What ist your AdBlock strategy? · Posted by u/laserstrahl
worg commented on SQLite: Defense Against the Dark Arts sqlite.org/draft/security... · Posted by u/todsacerdoti
> Applications that accept untrusted SQL inputs
Due to the extreme amount of testing involved with SQLite, I wonder if it could be argued that it is safer to allow it to directly validate and attempt untrusted commands than it is to run any verification in your application code.
I feel like you could wind up creating more attack surfaces than you solve by worrying about these things in the wrong way. The moment you reach for crap like regex you have probably lost the game.
Depending, the way I read the post, the SQLite protections just prevent crashes or malfunction, but don't prevent things like SQL injection and your app should handle that
worg commented on Show HN: CompressX, my FFmpeg wrapper for macOS compressx.app... · Posted by u/hieu_dinh
I'm going to miss adapter by macroplant the day it stops working
Live USB stick, boot, copy everything from the 'broken' install to a second USB stick, reinstall, restore.
Or, if you really want to get into the weeds, try to re-install systemd. As a learning exercise.
This is a great question on a job interview though. "What happens on a Debian machine if you 'apt remove systemd'?"
from a LiveUSB one can probably chroot into the borked system and re/install the deleted files without manually copying
worg commented on Amsterdam Switches to 30 Km/h on 80% of its Roads amsterdam.nl/en/news/spee... · Posted by u/jacquesm
worg commented on The Free Software Foundation is dying drewdevault.com/2023/04/1... · Posted by u/gmemstr
Let me google that for you
https://forums.linuxmint.com/viewtopic.php?t=377054
There was an article on a new lenovo model that you cannot install linux on, but to lazy to look for it.
Quote from a lonk:
>Lenovo says Microsoft requires they block Linux from booting on such PCs.
... ...
>This has nothing to do with better security. It is simply about restricting consumer choice by making it more difficult to install something other than Microsoft Windows
From the same forum post:
> To be able to boot Linux on such PCs you need to either disable secure boot in the BIOS or you need to enable the "Allow Microsoft 3rd Party UEFI CA" option in the Security section of the BIOS.
it's not like they're blocking completely the ability to install Linux, anyone installing Linux should be able to follow those steps. Don't get me wrong I'm no Lenovo/MS fan but spreading FUD is not the way
edit: formatting
worg commented on Web fingerprinting is worse than I thought bitestring.com/posts/2023... · Posted by u/Bright_Machine
Before you get all jubilant, note that they have fingerprinting techniques which don't use JS[0]. It was able to identity me. Contrary to popular opinion, disabling JS doesn't protect you from fingerprinting.
They describe their approach[1]. They use HTTP headers and conditional request triggered by CSS conditional media queries to gather data. Something like @media(...) {background: url(/tracking/$clientid)}. But in principle, they could also try and fingerprint the TCP/IP stack or the TLS implementation. I'm not sure it would get them more data than OS+Browser, though.
[0] https://noscriptfingerprint.com/
[1] https://fingerprint.com/blog/disabling-javascript-wont-stop-...
FF mobile gives be different IDs each time I run a new private session on both the JS an non-js demos (I run w/o JS usually AND have enabled the resistFingerprint setting)
worg commented on Microsoft Teams is getting big performance improvements next month theverge.com/2023/2/20/23... · Posted by u/Amorymeltzer
Multi-account-support keeps being the thing that web versions of apps just wont do. It's such a frustratingly petty & shallow limitation.
Firefox's Multi-Account-Containers could concievably be the reagent, the fix, but it lacks so much fit & finish. Getting things opening in the right container has been a struggle. There's been zero positive activity from Firefox in 5+ years.
The temporary containers Addon has helped me with this, you can assign/exclude patterns or subdomais
besides the unusual redirect dance when doing some SAML auth on a new app it works fine
worg commented on Show HN: Recycle your old Spotify playlists into new ones playlistrecycle.com/... · Posted by u/dr00bot
The MDN is a great resource, its examples are good and simple