Laser

@Laser@feddit.org

This is a remote user, information on this page may be incomplete. View at Source ↗

⁨Comment⁩ on ⁨⁩ ⁨⁨5⁩ ⁨days⁩ ago⁩:
Yup because negative consequences weren’t a thing before the guy was shot

since hes now going to be a rallying cry for action against “the left”.

If you haven’t heard any before, you might want to check with your ENT physician.

In the famous of words of John Wick… “Consequences.”

Consequences indeed
⁨Comment⁩ on ⁨⁩ ⁨⁨5⁩ ⁨days⁩ ago⁩:

When I hear Nazi I think of concentration camps and killing Jews. Kirk was a big supporter of Israel.

Well, Israel didn’t exist when the NSDAP did, so if you apply the literal meaning of each, a Nazi couldn’t support Israel. But fascism was also something that only applied to the party in power in Italy from 1922 to 1945. The terms have somewhat evolved since then; fascism generally meaning authoritarian, ultranationalistic and antiliberal. The same applies to nazism, but usually with some racist ideology with hatred for other religions.
⁨Comment⁩ on ⁨⁩ ⁨⁨5⁩ ⁨days⁩ ago⁩:
Nah, it’s the same playbook every time. You have dangerous right wing rhetoric justifying violence (as seen in this thread, even by Kirk himself) that leads to political violence and the right is just “this is deserved” (see J6 or the attack on democratic lawmakers), but when it hits themselves, suddenly political violence is the worst and collective pearl-clutching starts. These people have created a dangerous atmosphere that they can’t control and it’s backfiring, there was never an attempt from them to defuse it.

People like Kevin Roberts who threaten revolutions with thinly veiled violence etc… btw my personal theory is that Kirk was shot by a right wing lunatic who was disappointed in Kirk’s 180 on the Epstein files which went from something like “this is the biggest conspiracy in history, never trust the government” to “I trust my friends in the government” over a weekend. They have created an atmosphere of “you need to fight those in power by any means necessary” and now they find themselves in an awkward spot.

Anyhow, everybody in the thread you replied to just did what Kirk ask them to. Not show empathy, not let the victims emotionally hijack the narrative. He made the world a worse place, I don’t know if it’s gonna be better without him but I have no reason to believe otherwise.
⁨Comment⁩ on ⁨Big Surprise—Nobody Wants 8K TVs⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
The 4k you find on streaming services can’t really be compared to the 4k you find on Blu-ray. It’s a different league. Turns out bitrate actually matters
⁨Comment⁩ on ⁨Big Surprise—Nobody Wants 8K TVs⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
Maybe if we curve the TV?
⁨Comment⁩ on ⁨How to selfhost with a VPN⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:

Client data absolutely is encrypted in TLS. You might be thinking of a few fields sent in the clear, like SNI, but generally, it’s all encrypted.

I never said it isn’t, but it’s done using symmetric crypto, not public key (asymmetric) crypto.

Asymmetric crypto is used to encrypt a symmetric key, which is used for encrypting everything else (for the performance reasons you mentioned).

Not anymore, this was only true for RSA key exchange, which was deprecated in TLS 1.2 (“Clients MUST NOT offer and servers MUST NOT select RSA cipher suites”). All current suites use ephemeral Diffie-Hellman over elliptic curves for key agreement (also called key exchange, but I find the term somewhat misleading).

As long as that key was transferred securely and uses a good mode like CBC, an attacker ain’t messing with what’s in there.

First, CBC isn’t a good mode for multiple reasons, one being performance on the encrypting side, but the other one being the exact reason you’re taking about: it is in fact malleable and as such insecure without authentication (though you can use a CMAC, as long as you use a different key). See pdf-insecurity.org/…/cbc-malleability.html for over example where this exact property is exploited (“Any document format using CBC for encryption is potentially vulnerable to CBC gadgets if a known plaintext is a given, and no integrity protection is applied to the ciphertext.”)

As I wrote in my comment, I was a bit pedantic, because what was stated was that encryption protects the authenticity, and I explained that, while TLS protects all aspects of data security, it’s encryption doesn’t cover the authenticity.

Anyhow, the point is rather moot because I’m pretty sure they won’t get a certificate for the IP anyways.
⁨Comment⁩ on ⁨How to selfhost with a VPN⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:

Public key crypto, properly implemented, does prevent MITM attacks.

It does, but modern public key crypto doesn’t encrypt any client data (RSA key exchange was the only one to my knowledge). It also only verifies the certificates, and the topic was about payload data (i.e. the site you want to view), which asymmetric crypto doesn’t deal with for performance reasons.

My post was not about “does TLS prevent undetected data manipulation” (it does), but rather if it’s the encryption that is responsible for it (it’s not unless you put AES-GCM into that umbrella term).
⁨Comment⁩ on ⁨How to selfhost with a VPN⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
Right, and for the challenge, you need to have access to a privileged port (which usually implies ownership), which you won’t get assigned.
⁨Comment⁩ on ⁨How to selfhost with a VPN⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:

Let’s Encrypt are rolling out IP-based certs, you may wanna follow its development. I’m not sure if it could be used for your forwarded VPN port, but it’d be nice anyhow

It shouldn’t be because you’re not actually the owner of the IP address. If any user could get a cert, they could impersonate any other.

I believe encryption helps prevent tampering the data between the server and user too. It should prevent for example, someone MITM the connection and injecting malicious content that tells the user to download malware

No, encryption only protects the confidentiality of data. You need message authentication codes or authenticated encryption to make sure the message hasn’t been transported with. Especially stream ciphers like ChaCha (but also AES in counter mode) are susceptible to malleability attacks, which are super simple yet very dangerous.
⁨Comment⁩ on ⁨Memories. And we thought it could never get any better than this⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
What surely is interesting is that Microsoft was somehow somewhat visionary with their usage of browser technology for the desktop. We see Windows Update running in the browser, there was Active Platform which included Active Desktop (very prone to crashes), they had ActiveX (shudder). In a way all ideas they abandoned but that were implemented somewhere else later and better. Not saying these ideas were good.
⁨Comment⁩ on ⁨Memories. And we thought it could never get any better than this⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
Getting retroactively jealous here. I was in 56 kbit/s until ADSL hit. But hey, had full duplex gigabit Ethernet Internet at University from 2007 until 2011 to make up for it. It’s never been the same since
⁨Comment⁩ on ⁨Memories. And we thought it could never get any better than this⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
Remember when Bill Gates made Windows 98 BSOD during a key note by plugging in a USB device? Good times
⁨Comment⁩ on ⁨Memories. And we thought it could never get any better than this⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
2.5MB in 14 seconds, don’t think I’ve seen such a high download speed on Windows 9X in my life

I don’t miss those times, the 9X series was so bad, MS was right to ditch it after canning ME. Bluescreens, a shitty filesystem, no concept of security, dll hell, every time someone comes along with “remember how simple / great computing was back in the day” I want to scream in their face
⁨Comment⁩ on ⁨Our Channel Could Be Deleted - Gamers Nexus⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
I don’t think they’re sensationalist, they just don’t sugarcoat the industry bullshit. And believe it or not, they need to make money from this, it doesn’t pay itself. It’s like saying newspapers should be free, or else informing the people isn’t their primary concern.

“A farmer wants the money. Giving the good away for free would be great if they just wanted to feed people, but that’s not their primary concern.” Can even pay that game for nurses etc
⁨Comment⁩ on ⁨leading ai company⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
It’s really not that hard!
⁨Comment⁩ on ⁨‎‎‎‎⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
Interesting, I always thought it was the dumbest and unfunniest stuff. But I mean there’s no need to appeal to me.
⁨Comment⁩ on ⁨Ideal car⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
Thanks, I immediately recognized it as a formula but couldn’t remember what it was for (in my defense, the last time it was relevant to me was about 15 years ago when I studied electrical engineering).
⁨Comment⁩ on ⁨Perplexity AI is complaining their plagiarism bot machine cannot bypass Cloudflare's firewall⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:

So people from low trust score environments like Linux

Linux user here, Cloudflare hasn’t blocked access to a single page for me unless I use a VPN, which then can trigger it.
⁨Comment⁩ on ⁨Perplexity AI is complaining their plagiarism bot machine cannot bypass Cloudflare's firewall⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
It’s been this from the very beginning. But they don’t fit the definition of a protection racket as they’re not the ones attacking you if you don’t pay up. So they’re more like a security company that has no competitors due to the needed investment to operate.
⁨Comment⁩ on ⁨monthly challenge⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
That’s what makes it a challenge
⁨Comment⁩ on ⁨They took our free break!⁩ ⁨⁨4⁩ ⁨weeks⁩ ago⁩:
Counter-productive, if I had gotten cramps at work (because of whatever, it doesn’t matter), I’m just gonna use company time to get rid of these cramps. Hell I’m not even sure these designs are legal here. Surely there is some DIN based ISO norm regarding toilets and their dimensions
⁨Comment⁩ on ⁨Anyone else guilty of this?⁩ ⁨⁨4⁩ ⁨weeks⁩ ago⁩:
Stop this slander

The N64 Pokémon games aren’t that bad
⁨Comment⁩ on ⁨What's up, selfhosters? It's self hosting Sunday!⁩ ⁨⁨5⁩ ⁨weeks⁩ ago⁩:
Good luck on the journey! What I meant is that over time, you’ll realize that what you did was probably not the most elegant was to do something, at least that’s my experience with my config. Like, I started with a flake with an explicit config for each machine (basically multiple nixosConfigurations) and then turned it into a lib with functions to turn a set of hosts from json into an attribute set (kind of a simple inventory done). My last efforts that are still ongoing (cough) are splitting my NixOS modules off into a separate flake using flake-parts.

I do understand you meant having the stuff that your need work, I just wanted to hint that the language is very powerful and as such, most configurations have room for improvement, as in learning to do things more efficient or do things that weren’t possible before.
⁨Comment⁩ on ⁨Trump says he plans to put a 100% tariff on computer chips, likely pushing up cost of electronics⁩ ⁨⁨5⁩ ⁨weeks⁩ ago⁩:
Can’t have files of you don’t have a computer to store them tips forehead
⁨Comment⁩ on ⁨Evo Las Vegas 2025 wrap-up⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
I guess you’re right, my complaint was mostly about about the part of groups that I watched that was I think three Goldlewis matches in a round.

I don’t think the balance for Strive is in a really bad spot, and character skills can outweigh statistical advantages. Maybe it’s just that I dislike Goldlewis and HC due to their oppressive playstyles that I remember them as negative examples.

Didn’t want to complain really, the matches were hype, I got some really good laughs out of them too when RedDitto grabbed opponents in the most insane situations. Good stuff all around
⁨Comment⁩ on ⁨Evo Las Vegas 2025 wrap-up⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:

Capcom vs. SNK 2 was in the extended lineup. It’s great to see those passionate communities still playing those games 25 years later, even with plenty of new blood, though I will admit that both games fall into a situation where the top tier characters are so dominant that you don’t get a lot of variety in character selection in top 8, which can dampen the excitement a bit.

I hope Capcom brings an optional mode for new balance, like they added the option to disable roll cancel. The game is too unique with its mechanics, I think it’s one of the most interesting games ever with the modes, but the balance just isn’t great, which is holding the game back.

I was lucky that Strive top 8 were played early, so I could enjoy them at a decent time despite being in CEST. Bit unfortunate with the character variety, a lot of HC and Goldlewis matches and Johnny has proven to be very strong as people predicted. Would have preferred to see Ram win. Not that she’s weak, but in my opinion more interesting and somewhat underplayed. But alas.
⁨Comment⁩ on ⁨The AI bubble is so big it's propping up the US economy (for now)⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:

and most people are frankly too dumb or lazy to properly verify outputs.

This is my main argument. I need to check the output for correctness anyways. Might as well do it in the first place then.
⁨Comment⁩ on ⁨Imagine not being able to shower, because AI slop generator machines need that water!⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
It doesn’t matter if you voted Republican. These problems are a direct consequence of Republican policies that they announced before the elections. Fearmongering about “any party left of us will take away your freedoms to limit your resource consumption” is a trait of far-right parties. My point was not about Democrats. It was about people who vote Republican.

The US has a political problem with its voting system that benefits two parties, and they won’t get rid of it. As long as this is the case, no other party matters. Also, Dems usually enact more regulations for the environment; see also California.

I voted neither Reps or Dems because I live in the EU, and my vote always went to Greens or other environmental parties.
⁨Comment⁩ on ⁨What's up, selfhosters? It's self hosting Sunday!⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:

NixOS […] learn everything

I don’t think it’s possible to learn everything for NixOS as a casual user / admin. It’s massive. I was luckily able to sneak a NixOS project into work which gave me some paid time on the topic. But there’s always room to learn more about it. Which is a good thing - by its nature, it’s just more powerful than conventional distributions.
⁨Comment⁩ on ⁨Imagine not being able to shower, because AI slop generator machines need that water!⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
At least mining did create some local jobs, though I do think that the area itself loses out because it’s a finite resource and the environmental impact is always there. And as you said, these modern examples don’t really require a big local workforce. It doesn’t stimulate the local economy a bit.