Oh, great. Computer security researchers have developed a proof-of-concept for a type of ransomware that would act when you try to upload a file. It would be able to encrypt any files in the folder you uploaded from, and any subfolders of it.
This is a proof-of-concept; the researchers have not seen any such attacks in the wild. But stay careful out there, okay?
Affects Chrome and Edge, but not Firefox or Safari!
@kagan What were they thinking with this File System API?! This offers no benefit that's worth opening this new attack vector. Web apps could already "open" and "save" files by selecting them for upload and download. I hope Firefox doesn't implement this and the W3C retracts the draft.
@timnitGebru "Google recently described its work for the Israeli government as largely for civilian purposes. 'We have been very clear that the Nimbus contract is for...ministries such as finance, healthcare, transportation, and education,' a Google spokesperson told TIME...on April 8. 'Our work is not directed at highly sensitive or classified military workloads relevant to weapons or intelligence services.'"
But will there ever be enough volunteer time to maintain those entries? Basic business info seems so out of date. Last week I added a 115-seat theater to OSM that opened in its current location in 2015. It apparently had no presence on the map for 8+ years.
@Andykmcc It would be cool if there was a fediverse app with functionality similar to Yelp, Foursquare, or Instagram location tagging that integrated with OSM business/point of interest data and allowed making updates.
I hate that this has become the (accepted) case. And it feels like the routine one for so many other projects (commerical is better because yes it is, fuck you, it's in English)
@jalcine We've gotta start calling it Microsoft GitHub. I think people would have a very different reaction if it were explicitly stated that open source had become synonymous with a Microsoft product.
@danluu I appreciate this post for making me aware the indie search engine Marginalia existed. https://search.marginalia.nu/ It looks like it'll be a delightful way to find internet gems, depending on topic.
Is it just me or did scrolling with touchpad get way worse in the Firefox update (121 on Linux)? There's way too much inertia: after I release, it keeps scrolling for a long time, past where I wanted to stop. It's making my timeline on here almost unusable
@cheeaun actually yes, I think. The excessive inertia issue isn't happening in Bluesky. Scrolling my feed or notifications over there is fine.
Sideways scrolling in the boosts carousel is also super jerky now. I can have a carousel with 10 boosts and just do the smallest little two-finger scroll gesture and it goes all the way to the end immediately
@cheeaun playing around some more, I think this might indeed be Firefox's fault. I don't know another site that uses left/right scrolling, so I'm not sure about that. It's specifically far too sensitive left/right and really messes up the boost carousel, which is the only part of it I can't figure out how to work around. I saw something scroll-related in your recent commits, but if you say it's unrelated, I trust you. Sorry for a false report.
@nathanu I'm not sure I'm gonna go that far, but I am disappointed, and would appreciate some transparency as to what changed @dansup's mind, and if there's a possibility of reconsidering based on Facebook's lax moderation practices toward bigoted content.
@dansup Thanks for clarifying. I definitely do remember you creating a list on FediDb.org of all the servers that had signed the FediPact, and pixelfed.social being one of the biggest servers on that list. The pact says, "i hereby agree to block any instances owned by meta should they pop up on the fediverse." https://fedipact.online/
So this is a change of position, and one I personally don't agree with, but that is your prerogative. @nathanu
Please, please, PLEASE folks uploading #photos to #mastodon, be mindful of the size of the picture and file you're uploading. First, we have to store those large #images, and second, extremely large images don't do well with the native image preview function. Have been seeing it a lot recently, and makes me wonder if a particular third party app is at fault.
@daihard@glightly@wxstationexpert a huge problem is that if you paste an image from your clipboard, Mastodon stores it as a PNG rather than JPEG. PNG is a lossless format appropriate for diagrams, pixel art or screenshots, but not for photographs, memes, flyers, book covers, etc., taking ~6 times the disk space.
#Protomaps, a way to serve vector #maps of the entire world using a single static file and HTTP range requests.
It’s basically a static site generator for interactive maps. Tile servers are pretty much obsolete now. No database needed, you can run your interactive, smooth-zooming vector map from any HTTP storage. S3, Caddy running on your Wi-Fi router, even GitHub pages.
@scy Oh nice, the CLI can create cutouts of unlimited size now!
Previously there was a limit on how large of a cutout you could create, so we couldn't download a cutout of the whole SF Bay Area. Would have had to have downloaded the 100 GB file of the entire world (every day, to keep up to date). This was the last thing blocking my app from using Protomaps. Excited to take another look now.