@Palaeojules Beautiful!
@MIfoodie Yikes. I'd just use cellular
@CM30 Your President Hudson is badly damaged
The fact that you can follow the president of the United States (@potus) from your Mastodon account instead of being forced to have an X or Threads account for it is a huge W in my book. Of course our team is fully available to help if they'd want to set up Mastodon on whitehouse.gov. I believe governments should not rely on 3rd party platforms to connect with their constituents.
My installation of #HaikuOS has the vulnerable version of #XZ. Thankfully, it isn't affected, as the #XZBackdoor requires Linux, and has some other requirements. Phew! I guess that's one of the advantages of using a rare OS (even rarer than #Linux).
P.S. found this after composing: https://masto.lema.org/@santiago/112196783402726958
@CM30 At least you have something to google! It is much better than the even more frustrating "Something went wrong."
damn this lzma/xz backdoor is wild
I was doing some micro-benchmarking at the time, needed to quiesce the system to reduce noise. Saw sshd processes were using a surprising amount of CPU, despite immediately failing because of wrong usernames etc. Profiled sshd, showing lots of cpu time in liblzma, with perf unable to attribute it to a symbol. Got suspicious. Recalled that I had seen an odd valgrind complaint in automated testing of postgres, a few weeks earlier, after package updates.
Really required a lot of coincidences.
This is the best timeline I've seen so far on what we know about the Xz backdoor. Some good info here for researchers: https://boehs.org/node/everything-i-know-about-the-xz-backdoor
@nixCraft sudo homework --quiet
@codrusofathens @bazkie @nixCraft @cafkafk Yeah, wishing people terminal cancer, in a lighthearted thread no less, is not what we're on Masto for. That junk's for Twitter.
@GreatBigTable @briankrebs It must be; surely 4m of Mastodon users aren't following him, not already anyway.
@fribbledom Reaching inbox zero through integer overflow.
And once again, people-finder sites come into play.
"“I pick up the phone and I’m super suspicious,” Patel recalled. “So I ask them if they can verify some information about me, and after hearing some aggressive typing on his end he gives me all this information about me and it’s totally accurate.”
All of it, that is, except his real name. Patel said when he asked the fake Apple support rep to validate the name they had on file for the Apple account, the caller gave a name that was not his but rather one that Patel has only seen in background reports about him that are for sale at a people-search website called PeopleDataLabs."
I like the thought I had going here. But it's funny that it was a reply to posts about my childhood Minecraft experience 🙂 bit of a context jump but eh there's a small connection.
Happy birthday, @exocomics!
@iispabs Cool. I think the Switch has proxy settings; IDK if it works with a VPN.
(BTW you can DM @golemwire (fosstodon.org) over the summer if you're looking for a game. I solo main Sheik and I'm not much better than a Lvl 9 CPU though lol)
I'm a Christian. The good times are up ahead, not behind.
To the eternal, good God, the problem of evil is "already" solved. Sin is on a timer.
Jesus made the way.
Hello there!
I boost a lot of posts, but I have a few things to say every now and then.
I am largely fine with boosting posts from people I disagree with even on significant, dividing issues. I usually don't, however, if they actively advocate for these ideas... so it goes :/
#Christian #coding #HaikuOS #Linux #privacy #FOSS #Fediverse #SmashBros #SSBU #LegendOfZelda
#fedi22
Note: social.librem.one doesn't support DMs