It would be nice if they’d make “web” search the good old keyword search we used to have that made Google good, now that normies will just use the AI search and it doesn’t have to care about natural language anymore.
Basically, the SUID bit makes a program get the permissions of the owner when executed. If you set /bin/bash as SUID, suddenly every bash shell would be a root shell, kind of. Processes on Linux have a real user ID, an effective user ID, and also a saved user ID that can be used to temporarily drop privileges and gain them back again later.
So tools like sudo and doas use this mechanism to temporarily become root, then run checks to make sure you’re allowed to use sudo, then run your command. But that process is still in your user’s session and process group, and you’re still its real user ID. If anything goes wrong between sudo being root and checking permissions, that can lead to a root shell when you weren’t supposed to, and you have a root exploit. Sudo is entirely responsible for cleaning the environment before launching the child process so that it’s safe.
Run0/systemd-run acts more like an API client. The client, running as your user, asks systemd to create a process and give you its inputs and outputs, which then creates it on your behalf on a clean process tree completely separate from your user session’s process tree and group. The client never ever gets permissions, never has to check for the permissions, it’s systemd that does over D-Bus through PolKit which are both isolated and unprivileged services. So there’s no dangerous code running anywhere to exploit to gain privileges. And it makes run0 very non-special and boring in the process, it really does practically nothing. Want to make your own in Python? You can, safely and quite easily. Any app can easily integrate sudo functionnality fairly safely, and it’ll even trigger the DE’s elevated permission prompt, which is a separate process so you can grant sudo access to an app without it being able to know about your password.
Run0 takes care of interpreting what you want to do, D-Bus passes the message around, PolKit adds its stamp of approval to it, systemd takes care of spawning of the process and only the spawning of the process. Every bit does its job in isolation from the others so it’s hard to exploit.
Instagram is profiting from several ads that invite people to create nonconsensual nude images with AI image generation apps, once again showing that some of the most harmful applications of AI tools are not hidden on the dark corners of the internet, but are actively promoted to users by social media companies unable or...
That’s the big problem with ad marketplaces and automation, the ads are rarely vetted by a human, you can just give them money, upload your ad and they’ll happily display it. They rely entirely on users to report them which most people don’t do because they’re ads and they wont take it down unless it’s really bad.
i think we need Cracked-style articles back. desperately. or like, a guy doing a weird thing and writing a piece on it. sites like those are declining faster than the glaciers.
I miss the simplicity and the focus on the information due to the technical limitations.
Websites just had the information, well presented. None of that blog spam with a massive story on how error code -21 could suck and seriously impact your business and that you should hire professionals. But anyway here’s a command copied from a 10 year old StackOverflow answer that hasn’t worked for 5 years and isn’t actually related to what you were Googling at all, but now you’ve viewed 3 advert videos, scrolled through 10 sponsored ads and closed 2 popups. Here’s the next article on error -22.
Also, downloads were “here’s the link to it on our FTP server”, none of that guess which download button is the real one, waiting 30 seconds for the download to prepare and having to sign up for faster download speeds.
Easy: even if you vote for Bernie that’s still at best center-left. The US just really, really leans right overall: there’s center-right (democrats) and far-right (republicans) and that’s about it.
You guys are so afraid of socialism no party dares venture the true left.
I installed NetGuard about a month ago and blocked all internet to apps, unless they’re on a whitelist. No notifications from this particular system app (that can’t be disabled) until recently when it started making internet connection requests to google servers. Does anyone know when this became a thing?...
I was able to start some of its private activities with ActivityLauncher as root. Most of them just crash immediately, but the help page is available. And yikes, they got them covered against a possible bypass, no developer tools or sideloading.
Black on white doesn’t have this issue because all the white around it does is slightly blur into the black text and makes it a little grey at worst.
Any dark theme for a longer period of time also causes the white text to burn in my retina for a couple minutes, and I just see lines when I look away, and also makes reading a long article difficult and painful.
Dark themes look so much better, but keep in mind some people have very good reasons to prefer light themes. There’s no need for dark theme elitism.
Throwing that kind of stuff at an LLM just doesn’t make sense.
People need to understand that LLMs are not smart, they’re just really fancy autocompletion. I hate that we call those “AI”, there’s no intelligence whatsoever in those still. It’s machine learning. All it knows is what humans said in its training dataset which is a lot of news, wikipedia and social media. And most of what’s available is world war and cold war data.
It’s not producing millitary strategies, it’s predicting what our world leaders are likely to say and do and what your newspapers would be saying in the provided scenario, most likely heavily based on world war and cold war rethoric. And that, it’s quite unfortunately pretty good at it since we seem hell bent on repeating history lately. But the model, it’s got zero clues what a military strategy is. All it knows is that a lot of people think nuking the enemy is an easy way towards peace.
Stop using LLMs wrong. They’re amazing but they’re not fucking magic
The ads come from an ad network where there is very little visibility into what’s going to be displayed in your app. And bad people also keep managing to get their ads published even though the ad network doesn’t allow them
And it all ties into the whole targeted advertising, where they also make sure very few people get the bad ad, and tries to target people they think may be more susceptible to these kinds of tactics. Depending on the amount of interactivity allowed, the ad can even display two different things if it deems you too savvy to fall for it.
It’s basically unescapable unless you only use apps without ads, or pay for the ad-free versions.
The whole advertising industry is sketchy, more news at 10.
This is why I have respect for Valve. They’re willing to invest into changing the status quo instead of seeing it as not profitable immediately. They’re playing the long game, and they’ve put their version of Linux into millions of hands. They’ve built hardware for it, they’ve invested a ton into Wine/Proton, they’ve invested in open-source graphics drivers. They’re actively fixing up third party games to the point some of them run better on a their handheld than decent Windows PCs. And a good chunk of it is open-source and given away for free to everyone to use.
Meanwhile Sweeney is just there whining that Linux is too hard. They can’t even be bothered to try.
I would give money to Valve just so they keep going. I have no desire to buy an Epic game they’re not even willing to try to at least make it easier to run in Wine.
They can deny it however much. The right and anti-wokism is not the majority. Which therefore means unless special care is taken to train it on more right wing stuff, it will lean left out of the box.
But right wing rhetoric is also not logically consistent so training an AI on right extremism probably also won’t yield amazing results because it’ll pick up on the inconsistencies and be more likely to contradict itself.
Conservatives are going to self-own themselves pretty hard with AI. Even the machines see it, “woke” is fairly consistent and follows basic rules of human decency and respect.
I always see new GTK apps popup on Flathub. I dont really care and think GTK looks fancy, although CSD suck a bit and they waste space and often functionality....
C bindings and APIs generally work much better in Rust because the language works a lot more like C than it does C++.
Qt depends a lot on C++ class inheritance, and even does some preprocessing of C++ files to generate code in those classes. That’s obviously not possible when using Rust. And it looks like you need a fair bit of unsafe there and there to use it at all too.
Meanwhile, GTK being a C library, its integration with Rust is much more transparent and nice.
So if you’re making a GUI Rust app, you’re just kind of better off with GTK at the moment. It’s significantly easier and nicer.
They claim they didn’t ruin the Internet, but yet every single one I’ve worked with very aggressively keyword stuffed the shit out of the sites, even a blog with fake authors and carefully written junk top 10 blog posts to bring as much traffic as possible. I’ve even discovered they exploited Wordpress instances to stuff links to our site on it, when they weren’t just leaving junk comments with a link to the website.
They’re the very reasons so many sites have so many fucking useless tutorials and top 10s and whatnot. They go after search engines, and in that process, you gotta make your site appear to have loads of articles and content about a topic so it gets favored in search engines.
Eyes don’t really have a concept of FPS because we don’t have shutters in the first place. The brain is just continuously interpreting what we see. And it fills in a lot of gaps: for example, we technically have a large blind spot right in the middle of the retina, and that’s why we’re more sensitive to movement in our side vision.
Cats see just fine in the dark, our eyes are just not sensitive enough to low light to be all that useful for us, but we could, if the eyes provided that input. Evolution just made it so we favored speedy and sharp vision in daylight rather than night vision, in part because we quickly developed technology (fire) to keep our areas lit as needed.
The current behaviour is correct, as the remote instance is the canonical source, but being able to copy/share a link to your home instance would be nice as well....
Why is everyone outraged when Google/Microsoft/Yahoo and others have scraped the whole internet for two decades and are also massively profiting from that data?
Ever since its appearance in Android Pie, I always consider 2 button navigation is a bad attempt by Google trying to play catch-up with the fad generated by the iPhone X. However, due to a bug with A13 QPR2 it had to be temporarily removed and many were not happy about this. So, 2 button navigation users, may I ask why do you...
I’ve switched to purely gesture navigation and never looked back. Wouldn’t surprise me if they’d remove 2 button too eventually.
Never understood 2 button navigation, it’s just a lot of wasted space for just 2 buttons. Gimme 3-4-5 buttons to do useful stuff if you’re gonna use the space.
They claim it’s to prevent bots, but we all know it’ll soon become standard in every WAF out there (Cloudflare, Akamai, etc) to just blanket block browsers failing attestation.
All you need to know what will happen is to root an Android phone. You’d expect Netflix and bank apps and other highly sensitive apps to stop working. Okay, I can accept that, it kind of make sense. But the more you use the phone the more you realize a ton of apps also refuse to work. Zoom complains and marks your session as insecure, the Speedtest app refuses to test your speed, even the fucking weather app won’t give you weather anymore. Jira/Confluence/Outlook/Teams also complain about it. It’s ridiculous.
Even if it’d trust Google to not misuse the feature and genuinely use it to reduce ad fraud, the problem is the rest of the developers and companies. Those, they absolutely cannot be trusted to not abuse the feature to block everyone. Security “consultants” will start mandating its use to pass security audits, government websites will absolute use it, and before you know it, half the web refuses to work unless you use Chrome, Edge or Safari.
Google now offers ‘web’ search — and an AI opt-out button (www.theverge.com)
Nearly all Nintendo 64 games can now be recompiled into native PC ports to add proper ray tracing, ultrawide, high FPS, and more (www.tomshardware.com)
Systemd Looks to Replace sudo with run0 (news.itsfoss.com)
Instagram Advertises Nonconsensual AI Nude Apps (www.404media.co)
Instagram is profiting from several ads that invite people to create nonconsensual nude images with AI image generation apps, once again showing that some of the most harmful applications of AI tools are not hidden on the dark corners of the internet, but are actively promoted to users by social media companies unable or...
What do you miss from the old internet?
i think we need Cracked-style articles back. desperately. or like, a guy doing a weird thing and writing a piece on it. sites like those are declining faster than the glaciers.
Why do they say "there's no true Left in the US"?
Google is removing third-party apps and clock faces from all Fitbit watches in the EU (9to5google.com)
Google Allows Creditors to Brick Your Phone (lemmy.world)
I installed NetGuard about a month ago and blocked all internet to apps, unless they’re on a whitelist. No notifications from this particular system app (that can’t be disabled) until recently when it started making internet connection requests to google servers. Does anyone know when this became a thing?...
Modern light themes (white on white) suck. What is your favourite Plasma Theme? (lemmy.kde.social)
Steam Audio Open Source Release (steamcommunity.com)
AI Launches Nukes In ‘Worrying’ War Simulation: ‘I Just Want to Have Peace in the World’ (www.vice.com)
Researchers say AI models like GPT4 are prone to “sudden” escalations as the U.S. military explores their use for warfare....
Lemmy instance admin snooping at votes (monero.town)
So I was going through /all and this admin is snooping at vote counts for posts in his instance and then posting it publicly....
Wifi circuit breaker : a terrible idea (www.youtube.com)
All the protections in software, what an amazing idea!
The Boost android client for Lemmy is displaying these dark pattern ads pretending to be system notifications. What security/privacy conscious Lemmy clients do you recommend? (lemmy.ml)
Epic Games CEO Tim Sweeney was asked by Verge why there is no support for the Steam Deck for Fortnite (lemmy.ml)
Elon Musk’s Grok Twitter AI Is Actually ‘Woke,’ Hilarity Ensues (www.forbes.com)
Why are there so many (rust) GTK apps and so little Qt ones?
I always see new GTK apps popup on Flathub. I dont really care and think GTK looks fancy, although CSD suck a bit and they waste space and often functionality....
The SEO world is up in arms after a story said they're 'ruining the internet.' Here's the spicy drama. (www.businessinsider.com)
Why can't we decrease our eye's FPS to get better night vision?
My phone is normally worse for color gradients and contrasts than my eyes. Also, normally it has worse nightvision....
[Bug] Viewing a comment (eg. from Inbox) doesn't have a "view parent" option
It only shows “view all comments”, so you can’t see the full context of the comment tree.
[Feature Request] Sharing and copying links should let you copy a local instance link as well
The current behaviour is correct, as the remote instance is the canonical source, but being able to copy/share a link to your home instance would be nice as well....
OpenAI finally admitted they're crawling the web to profit off of GPT. Block it from your sites using robots.txt. (platform.openai.com)
About the popularity of 2 button navigation
Ever since its appearance in Android Pie, I always consider 2 button navigation is a bad attempt by Google trying to play catch-up with the fad generated by the iPhone X. However, due to a bug with A13 QPR2 it had to be temporarily removed and many were not happy about this. So, 2 button navigation users, may I ask why do you...
Google tries to defend its Web Environment Integrity (techreport.com)
I’m happy to see this being noticed more and more. Google wants to destroy the open web, so it’s a lot at stake....