Isn’t Ubuntu Pro basically just an extended support for a set of universe packages for their LTS versions and free for private use?
How is making enterprises pay for extended LTS because of corporate no-update-just-insert-coin mentalities even remotely close to ransomware?
Like I get everyone who doesn’t like Ubuntu for various reasons, but this sounds completely dumb to me.
NPM allows for code to be executed while you install the package which is different from maven or nuget and allows for easy exploitation paths
This is the winner. Combine that with a vastly bigger group of inexperienced developers (and I’m willing to die on that hill), and you have a lot of people running node / npm as an admin / root user, who have close to zero idea what they are doing, hitting their project with third party dependencies left and right for no particular reason (left-pad, is-number, ansi console and similar useless crap), and then your dependency management allows for code execution. Also, from my personal feeling, it seems that npm simply cannot properly audit the packages due to the sheer mass. From a technical standpoint it’s close to trivial to put your malware onto npm, and then you just need to get someone to install your package, which is way simpler than in other package managers
The smallest footprint for an actual scripting probably will be posix sh - since you already have it ready.
A slightly bigger footprint would be Python or Lua.
If you can drop your requirement for actual scripting and are willing to add a compile step, Go and it’s ecosystem is pretty dang powerful and it’s really easy to learn for small automation tasks.
Personally, with the requirement of not adding too much space for runtimes, I’d write it in go. You don’t need a runtime, you can compile it to a really small zero dependency lib and you have clean and readable code that you can extend, test and maintain easily.
How in the fuck are people actually defending signal for this, and with stupid arguments such as windows is compromised out of the box?
You. Don’t. Store. Secrets. In. Plaintext.
There is no circumstance where an app should store its secrets in plaintext, and there is no secret which should be stored in plaintext. Especially since this is not some random dudes random project, but a messenger claiming to be secure.
Edit: “If you got malware then this is a problem anyway and not only for signal” - no, because if secure means to store secrets are used, than they are encrypted or not easily accessible to the malware, and require way more resources to obtain. In this case, someone would only need to start a process on your machine. No further exploits, no malicious signatures, no privilege escalations.
“you need device access to exploit this” - There is no exploiting, just reading a file.
So, the “license to kill” is fine, as long it’s non US citizens?
Your definition of democracy and basic human rights is fucking unhinged.
These were casual, mutual conversations that sometimes leaned too much in the direction of being inappropriate, but nothing more. Nothing illegal happened, no pictures were shared, no crimes were committed, I never even met the individual. […] That’s on me as an adult, a husband and a father.
Jesus fucking christ. If you, as a father, are “leaning too much in the direction of being inappropriate” with a minor, you’re a fucking pedophile. There is nothing to discuss that’s leaning into being inappropriate with a minor, except if you’re a pedophile. Trying to make it sound less of an issue just because there weren’t pictures sent, is a pathetic attempt of an excuse for being a pedophile.
For being so real and no filter, there’s a fucking lot of sugarcoating for admitting the fact that he sexted with a minor.
I specifically don’t get how you can do that as a father, and even being the complete asshole that he is, not even once thinking that the victim could be his own child. I really wonder what he would say about such a tweet in this case.
Absolutely fucking disgusting.
It might be, but to be fair, that’s what the glorified autocompletion is actually good for, if it’s actually used a supporting tool, and not to pump out quantity over quality.
Man, the disclaimer at the bottom that Business Insider is partnered with OpenAI to allow them to train on their articles is really the cherry on top.
Check your blocklist and keep in mind that YouTube is testing server side ads muxed into the media streams, which will not be blocked by traditional adblocking techniques.
If you can not install anything, your only choice is probably to set up a pihole or something similar on your network.
Edit: Some models seem to have advanced settings, where you can change the DNS - you could try to use adguard dns servers, or any DNS adblocker you want to use.
Einige Dinge stehen noch nicht fest, wie: […]
Disclaimer: Ich habe keine Ahnung wie eure Absprachen konkret aussehen, und wer konkret mit welchem Skillset beteiligt ist. Ich arbeite selbst seit ~10 Jahren in der IT, und habe auch diverse Erfahrungen mit Kubernetes. Seht folgendes daher bitte nicht als Angriff, “Akchually” oder Klugscheißerei, sondern nur als food for thought. Wenn ihr diese Dinge bedacht habt, ist alles super.
Die technische Betreuung solltet ihr auf jeden Fall klären, bevor ihr dort startet. Was ich so mitbekommen habe ist lemmy zu hosten nicht gerade trivial, mit der potentiellen Komplexität von Kubernetes könnt ihr euch schnell noch zusätzliche Probleme einhandeln - hier sollte auf jeden Fall jemand parat sein der zumindest den Cluster voll im Griff hat - gerade wenn man im Plural von mehreren Clustern und einem eigenen Rechenzentrum spricht.
Auch beim Thema Kosten und eure Erwartung dazu, würde ich stark zur Vorsicht raten. Ressource Management ist eine der Komplexitäten von Kubernetes, und ist schon sehr vielen anderen zur Kostenfalle geworden. Hier wurde ich auch vor allem hellhörig das man 1.2k für nicht ausgelastete Cluster bezahlt, da hier auch die Stärke davon liegt, und ein pay-as-you-go Modell gut möglich und oft genutzt wird. Klar, das das auf einem eigenen Rechenzentrum nicht geht - klingt für mich aber dennoch ziemlich wild.
Falls euch das bewusst ist, und ihr diese Risiken tragen könnt - coole Sache.
Ansonsten Glückwunsch das es hier zu einer Kooperation und scheinbar einer deutlichen “Professionalisierung” kommt, und ich ziehe meinen Hut vor den Beteiligten die das alles aufgebaut haben.
Or you can just use vscodium.
"We listened to our accounting, and the massive wave of refunds and unbought mtx is hurting our numbers. PR isn’t happy about the reviews either. We’ll keep you updated on future plans for fucking you over!
Do you really think that Sony will actually back down? They are calming down the shitstorm that is going over all media, socials and steam. They’ll reorganize and will move on with their plans. Arrowhead and Helldivers is just one of many assets.
Yeah, and yet I’m on PC using Steam. If I’d wanted PSN, I’d bought a Playstation. The same secondary account bullshit applies to Ubisoft, Origin, and all of their buddies. Honestly, Steam should simply refuse to list games that require that, since they could simply use your account, but yeah, money.
And so be mad at Sony specifically? But they are okay with Steam having their data and selling it? Do they also not use a smart phone? Do they drive a car made in the last 4 years? Do they use credit cards? Loyalty cards? The outrage over their data use by Sony specifically is ridiculous when everything else is also siphoning the same information for no benefit to them.
Damn, you only missed the chance for the if you got nothing to hide argument.
If I buy a smartphone, and choose to use Android and Google, I get the benefit of all the stuff Google provides me, by my choice. I can cancel my account, and buy an iPhone next. That’s fine for me, because I chose to do that to use the benefits. If I use a credit card for all my purchases comfortably in one place, then it’s my choice. I can swap to another payment method or bank anytime. That’s fine for me, because I chose to do that to use the benefits.
If I’m forced to create an account that does absolutely nothing for me, then I’d be pissed. Not to speak about people in countries without PSN. Where’s that written, and why did they happily sell the game to people they knew they’ll lock out? Where’s the announcement that a refund policy will be implemented for such cases?
There’s a HUGE fucking difference between your Sony bootlicking arguments you post in every thread about this, and the actual impact of Sonys actions.
The account link was optional, but somewhere they have written that the PSN account will be required at a later stage, seemingly due to issues at launch. Now, people who are living in a country where PSN is not available (which are quite a lot actually) will no longer be able to play, neither to refund, since the launch is months ago.
So it’s way more than just having yet another account, which is especially ridiculous in the case of PSN for Steam PC games.
If you use a dockerized environment, that will only work better on Linux. .NET8 is AFAIK natively supported on Linux, so there shouldn’t be too much of an issue apart from the usual clunkyness. Visual Studio will probably be more of a problem. The “easiest” way would probably be to switch to jet brains or vscode. If you are hardstuck on VS for whatever reasons, you probably should be able to do some voodoo with running it in docker and using the container as a remote desktop, but this will be PITA to setup and maintain.
Because lowering the amount they’re charging or increasing the amount of aid will cost more than measly 25 million and doesn’t make such good headlines.
The Hamas-led murderous rampage into southern Israel was the deadliest terror attack in Israel’s history, killing at least 1,200 people and abducting more than 250 others. Israeli attacks on Gaza have since killed at least 33,634 Palestinians and injured another 76,214 people, according to the Ministry of Health there.
Jesus fuck, Germany is paying symbolic money to roughly as many genocide survivors in Israel as people have been murdered and injured by Israel committing genocide.
The current German government is an absolute fucking joke, and they are doing everything to actually show it.
Bethesda brought HD texture packs for Skyrim and Fallout, yes. But they are free DLCs and came out several years after release. Bethesda did a paid modding shop.
But this is a feature that other games just have, that’s paid, on a preorder full price AAA game that’s already more expensive than other games.
Stop trying to compare, this is a whole new precedent of greed and mtx.