shrugal

shrugal, 22 hours ago

Here is a more detailed explanation of the exploit.

The Pepaire-Bueno brothers exploited a bug in MEV-boost’s code that allowed them to preview the content of blocks before they were officially delivered to validators, according to the indictment.

The brothers created 16 Ethereum validators and targeted three specific traders who operated MEV bots, the indictment said. They used bait transactions to figure out how those bots traded, lured the bots to one of their validators which was validating a new block and basically tricked these bots into proposing certain transactions. […]

So hardly an attack on any core system of cryptocurrencies.

shrugal, 22 hours ago

It’s not. They tricked some MEV-Boost bots into doing bad trades.

shrugal, 19 hours ago (edited 12 hours ago)

IANAL and all, but bad/unfavorable contracts and literal deception/fraud are two different things, at least in the legal system. Not everything that’s technically possible is also allowed, obviously.

Compare it to using a security flaw to hack into a system. Technically you’re only using the official API, maybe in unusual ways, but still. But you’re doing it in bad faith and causing harm, maybe pretending to be someone you’re not or injecting fake data into the system, and that can make a difference.

shrugal, 13 hours ago

What’s absurd is this crypto maximalist take.

You can’t just make up your own permission and punishment system, and then expect the legal system to just step aside and let it handle all disputes, especially when it comes to fraud. That’s like founding your own city in an existing country, and declaring all existing law obsolete. I know some people think this is a real possibility, but the real world doesn’t work like that.

shrugal, 2 days ago (edited 1 day ago)

They could just choose someone to send to the debate, doesn’t have to be a candidate for the presidency.

I’m no fan of the right, but some of the rules only exist to prevent smaller alternatives from getting traction, especially in the media.

shrugal, 2 days ago (edited 2 days ago)

It’s a group therapy called !linux, we always have free seats!

shrugal, 3 days ago

This is pretty impressive and hella creepy!

shrugal, 3 days ago (edited 15 hours ago)

It can be a bit annoying sometimes, but there are solutions for almost anything, like alternative clients and frontends. I also think it’s important to remember that this is not an all-or-nothing situation. Every little bit of privacy you can preserve helps, even if you still have to use their services sometimes.

If your example is mostly about chat then Beeper might be a good option for you. The messages on FB and IG would still go through Meta, but at least you don’t have to install their apps.

shrugal, 3 days ago

If you have an always-on-and-connected device then you can self-host their bridges. It preserves e2ee because messages are de- and reencrypted on your device, and it’s relatively easy to set up.

shrugal, 2 days ago

You have to provide the user, group and file name as the next three guesses, just trust me!

shrugal, 5 days ago (edited 2 days ago)

Wenn du nur im lokalen Netzwerk streamen willst sollte der Router keinen großen Unterschied machen, daher ist da die Antwort denke ich JA. Zugriff aus dem Internet sollte auch gehen, entweder direkt per Port-Forwarding (check ob der Router das kann) und DynDNS, oder mit Lösungen wie Synology QuickConnect, Cloudflare Tunnel oder Tailscale.

shrugal, 7 days ago

How about some JavaScript p+=[]**[]?

shrugal, 8 days ago (edited 4 days ago)

It’s hard to overstate what a nothing-burger this article really is! Let me break it down:

• Signal got $3 million from the Open Technology Fund at some point in its development
• Some anonymous source alleges that the OTF’s ultimate goal is to promote US foreign interests
• The current chairman of the board Katherine Maher worked at the National Democratic Institute and Wikipedia before
• The same anonymous source says she was recruited because of connections to the OTF
• She has at some point voiced the opinion that a completely free internet without regulation just reproduces existing power structures, and that balancing regulation and 1st amendment rights is a tough problem
• Signal doesn’t have reproducible builds on iOS (it absolutely does on Android btw)
• Some people feel like Signal chats come up more often than they should in court cases and media reports

That’s it, that’s the whole story. That’s the reason why the Telegram guy of all people thinks you should be careful, and better use his chat service instead, and the Twitter guy agrees.

I mean, reproducible builds on iOS would be nice, but that platform has much bigger problems from a privacy/security/sovereignty/freedom standpoint anyway. And the rest is just nothing turned up to 11.

shrugal, 8 days ago

Yep. It’s e2e encrypted, and you can even self-host the sync server, if you don’t want to rely on an external service. Pretty much a no-brainer.

shrugal, 8 days ago (edited 8 days ago)

Yea, it’s pretty easy if you already have a server. All you need to do is run a docker container, and change the identity.sync.tokenserver.uri setting in about:config. On mobile you have to enable the debug mode by going to “Settings > About Firefox” and tapping the Firefox logo a few times, then go to the new “Sync Debug” settings entry.

The container above only runs the sync-server though, you still have to log into a Mozilla account to use it. There is a replacement that includes the whole stack, but I haven’t tried that one yet.

shrugal, 9 days ago

Just a heads up, trying to buy Uranium for the reactor on Ebay will get you in trouble real fast, so be careful!

shrugal, 9 days ago (edited 5 days ago)

I think some of the arguments are quite flawed. Bitcoin itself has most of the properties it is said to have, but it lives in a world that doesn’t and so some only really apply if you manage to stay inside the system. Like, your Signal chats are private as long as you don’t copy-paste them to Facebook.

Regarding self-custody/decentralization and using custodial services: The problem here is not that those properties don’t apply to Bitcoin, but that some people just choose to give away control over their wallets or not use Bitcoin itself for certain transactions. Can’t blame that on the currency, unless you think it can’t be done any other way.

Regarding privacy: I don’t think any serious “Bitcoiner” advertises Bitcoin as private. The message has always been that it’s “pseudonymous”, that you have to take extra steps in order to make it anonymous, and that it’s transparent instead of private by design.

Regarding transparency/inclusion: These paragraphs actually argue about privacy again. One is trying to spin the existing transparency into a negative, which is a valid opinion but not something “Bitcoiners” are wrong about. The other circles back to the idea of staying inside the system. Bitcoin transactions are inclusive, but ofc you can still get into trouble if you have to fear external repercussions and can’t stay anonymous.

shrugal, 10 days ago

The reason the Jedi use prosthetics to train is because live lightsabers are so good.

shrugal, 11 days ago

Debrid services are usually cheaper (as low as $2.5/month), but you’re limited to public trackers with them.

shrugal, 14 days ago (edited 10 days ago)

Cause it’s one big part of why the Fediverse and Lemmy exist in the first place.

We wouldn’t need all this decentralization overhead if centralized sites were trustworthy and focussed on serving their users. The fact that they are not is what leads to privacy violations and enshittification, hence why people created the Fediverse and why we are here (at least most of us I presume).

shrugal, 15 days ago

Best tip I can give is to use a tool that’s made for this task, like Tdarr/FileFlows/Unmanic. They take care of all the complicated issues like encoders, ffmpeg parameters and parallel processing on multiple nodes, so you only have to handle the things you actually care about.

shrugal, 18 days ago

If you have a monopoly and need to maximize profits then the question becomes: Why not?! You could extract more money this way, and it’s not like your users would go anywhere else at this point.

That is why it’s so important to fight and break up monopolies, and to limit what these companies can do. Because they have no reason not to squeeze every penny they can get out of you!

shrugal, 18 days ago (edited 15 days ago)

I unironically think that quality political satire is a good way to engage with politics.

It often cuts right through the BS and talks about issues that regular news or talk shows are afraid to touch. Also, it’s always clear that what’s being said is the opinion/interpretation of the artist, so you’re encouraged to think about it for yourself and see what you agree or disagree with.

You have to be careful not to rely on it too much, and also use other forms of media to inform yourself, but it definitely helps when trying to get into political subjects.