- 0 Posts
- 28 Comments
Preventing supply chain attacks for one.
0·4 days agoYou are so right. We should just leave it be and make no noise.
81·10 days agoMints outdated drivers can definitely cause issues for beginners.
0·27 days agoI fear moving away from GPL that moving to Rust seems to bring, but Rust does fix real memory issues.
Take the recent rsync vulnerabilities for example.
At least this one in a Rust implementation of rsync would have very likely been avoided:
CVE-2024-12085 – A flaw was found in the rsync daemon which could be triggered when rsync compares file checksums. This flaw allows an attacker to manipulate the checksum length (s2length) to cause a comparison between a checksum and uninitialized memory and leak one byte of uninitialized stack data at a time. Info Leak via uninitialized Stack contents defeats ASLR.
I would love this news if it didn’t move away from the GPL.
Mass move to MIT is just empowering enshittification by greedy companies.
10·27 days agoGrapheneOS reboots often for updates and security against cold boot storage attacks.
2·1 month agoSadly I found out yesterday:
Matrix is not a community-based software, it was born [00] in Amdocs [01], a multinational corporation founded in Israel.
https://hackea.org/notas/matrix.html
Many were claiming its impossible to get contributions merged as well.
I would be happy to find out this information is wrong or outdated.
2·2 months agoYou can self host firefox sync.
Lets just Thanos snap everyone to class consciousness.
0·2 months agoIf Mozilla wants to limit their use of my input, why the do I need to give them a full, non-exclusive license?
0·2 months agoYou can’t export your MFA? Aegis for example allows this.
51·2 months agoA response to apologists in your sphere:
If Mozilla wants to limit their use of my input, why the do I need to give them a full, non-exclusive license?
0·2 months agoIf Mozilla wants to limit their use of my input, why the do I need to give them a full, non-exclusive license?
Yeah, no. The people who thought Trump was a fluke the first time around are the problem and need to adjust accordingly.
Note this also builds oci compatible containers you can run with podman, kubernetes, etc.
It lets you develop on bare metal in an environment the same as the docker container and is reproducible rather than just repeatable.
0·9 months agoIts an alias, so no problem.
“this is not a paywall. Signing up is free”
No, its still a paywall… you just pay with your privacy.
I heard https://www.onlyoffice.com/ is good, but have no personal experience.