Readit News logoReadit News
wzyboy commented on Httptap: View HTTP/HTTPS requests made by any Linux program   github.com/monasticacadem... · Posted by u/alexflint
wzyboy · 7 months ago
It's a genius idea to run the process in a isolated network namespace!

I'm more interested in the HTTPS part. I see that it sets some common environment variables [1] to instruct the program to use the CA bundle in the temporary directory. This seems to pose a similar issue like all the variants of `http_proxy`: the program may simply choose to ignore the variable.

I see it also mounts an overlay fs for `/etc/resolv.conf` [2]. Does it help if httptap mounts `/etc/ca-certificates` directory with the temporary CA bundle?

[1] https://github.com/monasticacademy/httptap/blob/cb92ee3acfb2...

[2] https://github.com/monasticacademy/httptap/blob/cb92ee3acfb2...

wzyboy commented on Company named "><SCRIPT SRC=HTTPS://MJT.XSS.HT> LTD" forced to change it (2020)   theguardian.com/uk-news/2... · Posted by u/jakey_bakey
breck · 10 months ago
Why not just write "pattern /a-z0-9/i" into law?
wzyboy · 10 months ago
Chinese law maker allow only Chinese characters if you want to register a company in China. So internal companies must transliterate their brand names into Chinese if they want to do business in China.

One funny example is 7-Eleven. Its legal name in China is "柒一拾壹". Note the dash is converted to the Chinese character "一" (meaning "one").

wzyboy commented on BorgBackup 2.0 supports Rclone – over 70 cloud providers in addition to SSH   borgbackup.readthedocs.io... · Posted by u/AdaX
wzyboy · a year ago
I've always been doing "two-pass" backups to achieve "3-2-1" goal: first pass is to run BorgBackup to backup devices to my home server. The second pass is to use rclone to transfer the repos on home server to an object storage service (B2).

With rclone support built-in, the setup would be much easier.

wzyboy commented on Flameshot – Open-source screenshot software   flameshot.org/... · Posted by u/nikolay
geoka9 · a year ago
I use the following script (activated by a system-level shortcut key) to take a screenshot, upload to S3 bucket (using the minio client[0]) and place the URL in the X selection buffer, ready to be pasted:

  #!/bin/bash
  set -e
  dbus-update-activation-environment DISPLAY XAUTHORITY
  FNAME=`cat /dev/urandom | tr -cd 'a-f0-9' | head -c 32`.png
  flameshot gui --raw > /tmp/$FNAME
  ~/go/bin/mc -q cp --attr x-amz-acl=public-read /tmp/$FNAME s3/your.s3.bucket/dir/$FNAME
  echo -n https://s3-us-west-2.amazonaws.com/your.s3.bucket/dir/$FNAME | xsel
[0] https://min.io/docs/minio/linux/reference/minio-mc.html

wzyboy · a year ago
I have a similar setup but with SHA256 hash of the file as the object key.
wzyboy commented on Daylight Computer – New 60fps e-paper tablet   daylightcomputer.com/prod... · Posted by u/asadm
sodality2 · a year ago
One common psychological trick addictive social media uses is high saturation color, as it causes our monkey brains to enjoy it slightly more. This is monotone and I’d assume that’s a relevant feature point
wzyboy · a year ago
On Pixel phone, there is a Digital Wellbeing setting that can turn your screen into Greyscale mode during bedtime. It is said to discourage the use of social networks and helps you sleep better.
wzyboy commented on The FCC needs to stop 5G fast lanes   cyberlaw.stanford.edu/blo... · Posted by u/rsingel
seanmcdirmid · a year ago
I lived in China for 9 years and always found the internet, even for going just to Chinese sites, to be really slow. Like sure you have 5G, but the overall internet trunks are just saturated and not built out enough. Maybe it has gotten better since I left Beijing in 2016?

It was definitely cheap and affordable. But I always felt a huge speed bump (along with easy access to foreign web sites) when I went to Thailand or Indonesia for vacation.

wzyboy · a year ago
> I lived in China for 9 years and always found the internet, even for going just to Chinese sites, to be really slow.

Did you have your VPN / proxy on? That might be one of the reason as Chinese internet is only fast for traffic within its borders. Traffic that crosses borders are super slow in terms of throughput AND latency (if not blocked altogether). If you have your VPN / proxy on, your request basically crosses the borders twice before it reaches the destination web server.

Another reason I can think of is the mobile ISP incompatibility. For some ridiculous reasons, most "foreign" phones' (iPhones exempt) do not have full radio coverage when connected to CMCC.

wzyboy commented on The FCC needs to stop 5G fast lanes   cyberlaw.stanford.edu/blo... · Posted by u/rsingel
KaiserPro · a year ago
The thing that is actually missing from this entire essay is competition.

The biggest single reason why the USA's (and to a lesser extent Canada's) internet is shite is because of the monopolies that exist.

In the EU there are similar offers for "enhanced" access, but its not speeding up/slowing down apps, but giving "free" access, as in not counting to your data cap.

Instead of making the FCC stop fast lanes, the FCC should either be breaking up infrastructure from retailers (ie allowing regulated priced access like openreach) or splitting up operators and fining ones that dont provide proper access.

wzyboy · a year ago
I immigrated from China to Canada and I'm not sure if monopoly is the root cause. In China, ISP is state-controlled and 100% monopoly, yet the plans are dirt cheap compared to those in Canada.

I just looked up the price in my hometown in China: 1000 Mbps fibre internet + 3 mobile phone lines (105 GB data) + IPTV = 249 CNY tax included (30 USD / 42 CAD / 28 EUR)

The 1000 Mbps fibre Internet plan alone (no phones no TVs) I have in Canada is $65 + tax. And it's a discounted plan. The price on the ISP website is $100.

Also in China phone plans have fast lanes as well. SNS and video streaming data are treated separately (cheap or even free).

wzyboy commented on Experts fear crooks are cracking keys stolen in LastPass breach   krebsonsecurity.com/2023/... · Posted by u/todsacerdoti
p1necone · 2 years ago
I'd trust a (trustworthy) password manager with most things, but I think wallet keys or similar are more of a post it note in a locked safe kind of thing (+ committing it to memory). Maybe a passworded encrypted flash drive in a hole in a tree stump somewhere as a second backup in case my house burns down.
wzyboy · 2 years ago
I agree. Crypto currency private keys are something that is better stored offline instead of online. I'm comfortable storing my online banking password in an online password manager as I know even if these credentials are leaked, there are still anti-fraud department and maybe insurance protecting my money in the bank. But with crypto currency private keys? If they are leaked, those crypto currency would just be gone without any way to do a "stop payment" or something.
wzyboy commented on China's national firewall hijacks JavaScript to DDoS GitHub   slashdot.org/submission/4... · Posted by u/wzyboy
wzyboy · 10 years ago
Some Chinese guy gets a weird pop-up with English text when visiting Chinese websites. A deeper investigation reveals that China's national firewall (GFW) is hijacking some popular JavaScripts to DDoS GitHub.
Posted by u/wzyboy 10 years ago
China's national firewall hijacks JavaScript to DDoS GitHubslashdot.org/submission/4...
w

u/wzyboy

KarmaCake day35March 27, 2015View Original