0xtero

@0xtero@beehaw.org

Glorified network janitor. Perpetual blueteam botherer. Friendly neighborhood cyberman. Constantly regressing toward the mean. Slowly regarding silent things.

This profile is from a federated server and may be incomplete. Browse more on the original instance.

0xtero,

Manor Lords all the way. There’s a big Cities Skylines II patch coming out this week (I hope). I might fire it up and check it out. It’s getting close to “release quality” after pretty crappy release.

Is it impossible to be private online? (yewtu.be)

In sharing this video here I’m preaching to the choir, but I do think it indirectly raised a valuable point which probably doesn’t get spoken about enough in privacy communities. That is, in choosing to use even a single product or service that is more privacy-respecting than the equivalent big tech alternative, you are...

0xtero, (edited )

Every time I talk about privacy online, the pessimists always come out. "It’s impossible to have any online privacy.

My experience is actually completely opposite. While mainstream “normies” don’t seem to care, most of them are using readily available privacy tools in their communication daily. Things like WhatsApp, Signal and iMessage. Most websites these days are HTTPS enabled. Governments are so concerned about this loss of monitoring capability, they’re trying to craft laws which allow them to backdoor devices before encryption happens. And they’re meeting resistance, despite all the lobbying (see Chat Control2.0). We’ve never had as widely adopted privacy tools as we have today.

Big tech and advertising are two problems that still create trouble. A lot of this stems from completely different, non-privacy related reasons (the lax US policies concerning anti-consumer and monopoly laws) but even here policies around the world are slowly catching up. GDPR gives Europeans quite a bit of control over our data and while this is still just one baby step - it’s much better than it used to be. There’s a lot of global inequality here though. Facebook/Meta is synonymous to Internet in the developing world, because they’ve used their monopoly money to exploit the situation. Digital imperialism is still strong.

I’m not going to harp too much on SMTP privacy, Proton has a bunch of nice services. If that’s where your MX happens to point at is, then great, but we do also need to slowly move away from these old protocols that offer no privacy choice (yeah I know, SMTP is here to stay).

What I’d like to see more, is talk about threat modeling in this space. Because that’s where it all starts and threat models are quite personal. There’s no “one size fits all” privacy, because our needs vary. Political dissident living in exile from hostile government has completely different needs for privacy compared to a person who doesn’t like YouTube ads. We should try to foster easily digestible discussion around personal threat modeling - right now we (the privacy crowd) come across as loonies since lot of the advice we give starts from the wrong end of the model.

I don’t see digital privacy as a pessimistic space. But what do I know, I’m not a content creator.

0xtero,

I notice you quoted the sentence from the description - did you watch the video itself?

No, I’m afraid I didn’t.

0xtero,

Ah, well. Maybe that saves a click and 10 minutes of someones life.

0xtero, (edited )

What else am I missing?

Large scale manufacturers pre-installing Linux? Readily available multi-language support for home users? Coherent UI regardless of computer and distro underneath. Billions on lobbying money spent on politicians for favorable policy crafting? Billions spent on marketing campaigns to actually sell the idea to the masses who simply don’t care any of your points (or any technical reasons, privacy or anything else that might be top of mind of the current Linux userbase).

I’d say Linux has a good chance of capturing 5-6% of the market in the coming years if lucky (I believe we’re somewhere around 4% at the moment), unless one of the big tech monopolies decides to start throwing money into it (Like Google did with Android)

0xtero,

This is the moment in Scooby-Doo where the gang unmasks the person they’ve just caught and underneath is just the Microsoft Bing logo

0xtero,

!environment used to be cool, but it’s heating up!

0xtero, (edited )

The only AI function I could see myself using is one that would summarize 15 minute youtube videos into coherent readable text in blog format. That would be nice. Especially when they’re posted like this, just links without much context.

Is Privacy Worth It? (blog.thenewoil.org)

When I announced I would be closing my communities earlier this year, a curious thing happened: a surprising number of regulars replied with some variation of “I think this is my exit.” While some were specifically talking about Matrix, claiming that mine was the only room they were really active in and therefore they saw no...

0xtero,

Well, that was extremely long winded way to say “depends on your threat model”. Which it does.

So nothing new under the sun.

0xtero,

In conclusion, Fuck EA. End of message.

maegul, (edited ) to stackoverflow
@maegul@hachyderm.io avatar

The fediverse won’t succeed at putting up a substitute and that’s a problem?

Just an impression: All the pieces seem to be there. But what’s required is a team, with devs, PMs and coordinators, dedicated to making a particular place in the .

That’s resources and decently sized financial and organisational demands, especially to get a critical mass of users.

Is the fediverse up to that challenge? If not, is it an issue worth addressing?

@fediverse

0xtero,

I think what we mainly lack is people asking questions, not a particular set up of tech.

0xtero,

Why?

0xtero, (edited )

So your requirement with cellular calling (eSIM) is already fairly restrictive and depends on which market we’re talking about. Where I live (.se) you get to choose between Apple and Samsung and since Apple was out of the question, you’re stuck with Samsung.

Not entirely sure if your second requirement with long battery life can be fulfilled. You’ll be charging the watch every day, probably more often if you take calls on it.

There’s some rumors that Garmin Forerunner/epix will get eSIM support, but that will be also carrier dependent.

These wearables are pretty complicated high end devices, I wouldn’t really give them to elderly parents who stuggle using a normal mobile.

I think it might be better to look into other tyoe of devices like pager systems from caregivers, if you’re worried about health issues.

0xtero, (edited )

Yeah, well just go ahead and see if it works for you now. I doubt much has changed, but some bits are probably more polished these days.
Most distros support some kind of LiveCD, so you can try it out without having to reinstall your machine, it’s painless and quick to evaluate before you take the plunge.

zenbook duo pro

A quick search reveals this. Might be helpful. davejansen.com/asus-zenbook-duo-and-fedora-linux/

0xtero,

I thought it was funny as well. Sometimes FOSS communities are so very uptight, we should relax a bit.

0xtero,

Looks like AI wrote the article

Novel attack against virtually all VPN apps neuters their entire purpose (arstechnica.com)

Pulling this off requires high privileges in the network, so if this is done by intruder you’re probably having a Really Bad Day anyway, but might be good to know if you’re connecting to untrusted networks (public wifi etc). For now, if you need to be sure, either tether to Android - since the Android stack doesn’t...

0xtero, (edited )

I also don’t get much value out of the statement that “every” OS except Android is vulnerable. Do they really mean all other OSes, or just what would come to mind for most people, i.e. Windows, macOS, Linux, iOS? What about the various BSDs for example?

It’s a DHCP manipulation attack, so every RFC 3442 compliant DHCP implementation implementing option 121 would be “vulnerable” (it’s not vulnerability though). Android apparently doesn’t implement it, so it’s technically impossible to pull off against Android device. There might be others, but I’d guess most serious server/desktop OS’es implement it.

The title isn’t misleading at all, even though the “neutering their entire purpose” is a bit of a click-bait. This doesn’t affect ingress VPN at all.

It’s an attack that uses DHCP features (according to RFC).

It’s a clever way to uncloak egress VPN users, therefore it does have privacy impact since most of us use VPN for purposes of hiding out traffic from the local network and provider and there’s no “easy” fix since it’s just a clever use of existing RFC.

Researcher says China's "onslaught of cyberattacks" poses significant risks to Taiwan’s national security and democratic processes, warns that "these tactics can be replicated elsewhere" (theconversation.com)

Taiwan is experiencing millions of cyberattacks every day, writes Lennon Y.C. Chang, Associate Professor of Cyber Risk and Policy in the Centre for Cyber Resilience and Trust at Deakin University, adding that “other countries worried about the impact of cyberattacks and disinformation campaigns on their elections and...

0xtero,

These attacks range from phishing attempts to sophisticated malware intrusions. Website defacement attacks and Distributed Denial of Service (DDoS) attacks are often seen during significant events

And these tactics can also be replicated elsewhere. Other countries worried about the impact of cyberattacks and disinformation campaigns on their elections and democratic institutions should be paying attention.

These tactics are already being replicated elsewhere. This has been the normal Internet background noise for years. This is not news.
However, just as in 2014 when Russia was preparing for Crimea annexation, the amount of targeted (cyber and kinetic) escalated. Same again before Ukraine invasion. That’s what we should be paying attention to - not everyday “millions of cyberattacks” or hybrid misinformation war - those are already happening. and should be handled as basic boring Internet hygiene.

We should be building resilience against targeted pre-invasion cyber. We should be building ways to take down drones, we should be building robust satellite communication networks so we don’t have to rely on kindness of tech billionaires. We should find more robust ways of navigating because GPS is too easy target.

In short, we should be learning from the Ukraine conflict, which is the first (and currently only) real live theater for cyberwarfare.

0xtero,

Knowing history, that’s a one tape I have no intention of listening. RIP the crew and all other early space flight pioneers who perished pushing the boundaries of our planet.

0xtero,

Lemmy instance with “radical” moderation. Sort of like old SA/goon forums, 4chan etc.

0xtero,

Those were not unmoderated. Just radically differently moderated.

Where do the rural homeless near you live?

This seems to be something people don’t always give second thought to. When people talk about the homeless, the first things thought about are images of people on busy city streets in rusty clothes waiting around near allies. In there, the answer is quite static, because it can be I guess. But if that’s the case, change the...

0xtero,

I was about to type this exact thing. We have some homeless of course, people always fall through the cracks - but for the most part, the local government provides for basic needs, shelter, food, money and (in due time) housing. Winter is harsh, you don’t really survive living “in the nature” in rural areas.

Summer months often see homeless in the form of “Roma traveling beggars” or the “Irish asphalt/garden workers” who live out of caravans, tents or just back of their cars, but they migrate to southern Europe when winter comes.

But yeah, we pay a fuckton of taxes to have a social security network that catches people who are down on their luck. It’s not perfect, but it’s something. People don’t have to live without food or roof over their heads.

0xtero,

I guess it’s time to update uBlock Origin lists.

maegul, (edited ) to mastodon
@maegul@hachyderm.io avatar

Reflecting on the firefish/calckey "moment"

which was about a year ago now, I can't help but suspect it was a small event with wider implications on the dominance of in the

I think it was the last chance to direct the twitter migration energy into discovering new/different fedi platforms.

And it was blown, with alt-social in a weird steady/waiting state that's smaller I suspect, than what many hoped for.

@fediverse

cntd: https://hachyderm.io/@maegul/112358202238795371

1/

0xtero,

There’s a good write-up from the Beehaw admins here: docs.beehaw.org/…/beehaw-lemmy-and-a-vision-of-th…

  • All
  • Subscribed
  • Moderated
  • Favorites
  • provamag3
  • cisconetworking
  • DreamBathrooms
  • mdbf
  • tacticalgear
  • ngwrru68w68
  • magazineikmin
  • thenastyranch
  • InstantRegret
  • Youngstown
  • slotface
  • everett
  • kavyap
  • cubers
  • JUstTest
  • Durango
  • ethstaker
  • GTA5RPClips
  • osvaldo12
  • khanakhh
  • rosin
  • normalnudes
  • tester
  • megavids
  • Leos
  • modclub
  • anitta
  • lostlight
  • All magazines
    •