@eb@social.coop
@eb@social.coop avatar

eb

@eb@social.coop
  1. Is a programmer, hacker, and maker, busy crafting intricate, exciting, and people focused experiences.
  2. Is interested in breaking barriers, building communities, and learning new things about the world.
  3. Is happiest doing what makes him feel free. Biking, skiing, travelling to name a few

This profile is from a federated server and may be incomplete. Browse more on the original instance.

eb, to security
@eb@social.coop avatar

Unfolding now: https://news.ycombinator.com/item?id=39865810

An incredibly technically complex in xz (potentially also in libarchive and elsewhere) was just discovered. This backdoor has been quietly implemented over years, with the assistance of a wide array of subtly interconnected accounts:

The timeline on this is going to take so long to unravel

eb,
@eb@social.coop avatar

https://boehs.org/node/everything-i-know-about-the-xz-backdoor

I have begun a post explaining this situation in a more detailed writeup. This is updating in realtime, and there is a lot still missing.

eb,
@eb@social.coop avatar

@joeyh this is a good question. I'll include this information, I briefly was looking for a change in the maintainer list but right now I'm focused on the exploit chain

eb,
@eb@social.coop avatar

@glyph my understanding of this is at this point they are the primary contributor. Notably, a website previously under the control of a different contributor was updated to point to the github of this org, which of course Jia has access to. I'm not positive that Jia owns the org, however.

eb, to random
@eb@social.coop avatar

Follow up to @kayserifserif’s https://sunny.garden/@kayserifserif/112175522341964198:

What is something you love about the website of someone else?

zachleat, to random
@zachleat@zachleat.com avatar

“Tecno Spark 8C, a low-spec phone that can hit 40 FPS in Battle Royale PUBG but lags below 1 FPS on social media”

https://www.tomshardware.com/tech-industry/modern-web-bloat-means-some-entry-level-phones-cant-run-simple-web-pages-and-load-times-are-high-for-pcs-some-sites-run-worse-than-pubg

eb,
@eb@social.coop avatar

@zachleat Ok Tom

video/mp4

eb, to random
@eb@social.coop avatar

Repost cuz it's pretty cool: Here are the 1000 most common words across roughly 1 million letters: https://boehs.org/node/1000-words

I kinda just downloaded them and idk what to do with them now so if you have any questions about how the internet has expressed love over the past 20 years, please don't hesitate to let me know <3

eb, to random
@eb@social.coop avatar

I know the dead internet theory is old and all but have you been on Reddit recently

eb, to RSS
@eb@social.coop avatar

@paulcuth established that there are still plenty of #RSS feeds on the internet. I want to know: are there still plenty of people reading them?

https://boehs.org/node/is-(my)-rss-dead

eb, to random
@eb@social.coop avatar

Remember, if you see someone wearing the red hats of the MAGA terrorist movement, report them to law enforcement. If you see something, say something. (If the cop is wearing a MAGA hat, report them too.)

@anildash, 2018

eb, to random
@eb@social.coop avatar

>M$ got dinged in the 90s for doing shit 1/10th of sketchy as what tech giants do today. It’s a sad state of affairs that so many bootlickers don’t see a problem with 5 companies gatekeeping the entire industry. In this model, trucks demand 10% of revenue of all goods indefinitely. Home ownership is a fleeting ambition, with most facing renting from equity conglomerates for their life. Why people cheer on the death of “ownership” in favor of being life-long sharecroppers is beyond comprehension.

eb, to random
@eb@social.coop avatar

This is worth rereading

https://www.wired.com/2000/11/microsoft-7/

eb, to meta
@eb@social.coop avatar

Can somebody explain why is a threat to the Fediverse? Like I get that they are evil corporate and probably up to no good but if you want all the fediverse data it's incredibly simple to get (just add .rss, .json, setup a ghost instance, or use the API with zero authentication), so no need for this. Plus, I doubt anybody is switching fedi → . Plus, a few might go threads → fedi. AP is lead by passionate people like @evan, so they can't control it. What's in it for evil ?

eb,
@eb@social.coop avatar

@CassandraZeroCovid @evan you must have glazed over the part where I said mastodon has next to no privacy. Every post you make is federated to thousands of other servers controlled by thousands of different people. From the web, anybody can get a machine readable feed of your posts without logging in by adding .json or .rss to the end of the url. Almost all data, if Facebook wanted, they could already get

eb,
@eb@social.coop avatar

@Jonathanglick @evan I’m also not entirely sold on this school of thought, though I appreciate your optimism. I agree they haven’t exactly had.. um.. the best track record

BasicAppleGuy, to random
@BasicAppleGuy@mastodon.social avatar

Hoping for some Apple Product News...

eb,
@eb@social.coop avatar

@BasicAppleGuy Don't let this distract you from the real news from today: https://arstechnica.com/security/2024/03/hackers-can-extract-secret-encryption-keys-from-apples-mac-chips/

eb, to apple
@eb@social.coop avatar

United States v.
Round 2: Electric Boogaloo
(It’s so over)
https://www.nytimes.com/2024/03/21/technology/apple-doj-lawsuit-antitrust.html?unlocked_article_code=1.eU0.HUDl.WnR167cmkZUS&smid=nytcore-ios-share&referringSource=articleShare&ugrp=m&sgrp=c-cb

eb,
@eb@social.coop avatar

Holy shit, Apple is having a worse day than me
https://arstechnica.com/security/2024/03/hackers-can-extract-secret-encryption-keys-from-apples-mac-chips/

eb, to random
@eb@social.coop avatar

"I propose that new projects choose a license from what I call the "Poison Pill" class. These are licenses that are so nonsensical that any entity with an actual legal department won't use them out of terror; however, normal, every day people have no such strict adherence to legalese and can enjoy them as the art they are in themselves."

https://funputer.biz/licenses.html

evan, (edited ) to random
@evan@cosocial.ca avatar

"Everyone is allowed to implement ActivityPub."

eb,
@eb@social.coop avatar

@evan it’s funny everybody is answering yes while simultaneously hating threads with all their guts

eb,
@eb@social.coop avatar

@evan perhaps, the argument is “anybody can implement it but we don’t need to federate with you”

aleen, to random
@aleen@wandering.shop avatar

J's shower products vs my shower products

Four kinds of shampoo, two bottles of soap, a wide-toothed comb, shaving cream, in-shower lotion, face wash, a face wash applicator thingy, two kinds of conditioner, sugar & shea body scrub, and a Leaf razor.

eb,
@eb@social.coop avatar

@passenger @aleen You joke but I have a story about this

eb, to random
@eb@social.coop avatar

Imagine you have a dam. Fish want to get through the floodgates, but the gates are locked. You want to open the gates when a fish wants to pass through.

If you are a tech bro, you might say “we can use AI to solve this problem”

If you are the municipality of Utrecht, you instead say “what if we put a livestream of the canal on the internet and instructed viewers to push a button when they see one”

https://visdeurbel.nl/

eb,
@eb@social.coop avatar

@gaufff regretfully, I am not dutch myself, but that is my understanding of the situation. I believe they used to hire staff to watch this camera.

eb,
@eb@social.coop avatar

@gaufff there is a page that translates roughly to

"Every spring, fish swim right through Utrecht, looking for a place to spawn and reproduce. Some swim all the way to Germany. There is a problem, however: they often have to wait a long time at the Weerdsluis lock on the west side of the inner city, as the lock rarely opens in spring. We have come up with a solution: the fish doorbell!"

if this is helpful

dabeaz, to random
@dabeaz@mastodon.social avatar

Thought: I'd bet a lot of projects would have fewer dependencies if pip was 100x slower. Maybe we should try to do that.

eb,
@eb@social.coop avatar

@colby @robpike @akkartik @rhempel @dabeaz what about performance?

  • All
  • Subscribed
  • Moderated
  • Favorites
  • JUstTest
  • mdbf
  • ngwrru68w68
  • tester
  • magazineikmin
  • thenastyranch
  • rosin
  • khanakhh
  • InstantRegret
  • Youngstown
  • slotface
  • Durango
  • kavyap
  • DreamBathrooms
  • megavids
  • tacticalgear
  • osvaldo12
  • normalnudes
  • cubers
  • cisconetworking
  • everett
  • GTA5RPClips
  • ethstaker
  • Leos
  • provamag3
  • anitta
  • modclub
  • lostlight
  • All magazines
    •