vvv
@vvv@programming.dev
- Comment on Chrome is making it easier to keep track of browser tabs 2 months ago:
I like Firefox sync’s implementation:
- every device can see tabs opened on other devices, and open them locally which addresses "what was that tab I opened at home?"
- any device can send a tab to another which addresses “I’ll look at this later at my desk”
- Comment on YouTube is Losing The War Against Adblockers 2 months ago:
and it’s potentially an existential threat.
- Comment on [deleted] 4 months ago:
Macy’s now has a Toys Я Us branded toy department.
- Comment on Novel attack against virtually all VPN apps neuters their entire purpose 6 months ago:
(obligatory I’m not a network surgeon this is likely not perfectly correct)
The article mentions network interfaces, DHCP and gateways so real quick: a network interface usually represents a physical connection to a network, like an Ethernet port or a WiFi card. DHCP is a protocol that auto configured network routes and addresses once a physical connection is established, like when you jack in via an ethernet cable, it tells you the IP address you should go by, the range of IP address on the network you’ve connected to, where you can resolve domain names to IP addresses. It also tells you the address of a default gateway to route traffic to, if you’re trying to reach something outside of this network.
You can have more than one set of this configuration. Your wired network might tell you that your an address is 10.0.0.34, anything that starts with 10.0.0. is local, and to talk to 10.0.0.254 if you’re trying to get to anything else. If at the same time you also connect to a wireless network, that might tell you that your address is 192.168.0.69, 192.168.0.* is your local network, and 192.168.0.254 is your gateway out. Now your computer wants to talk to 4.2.2.2. Should it use the wireless interface and go via 192.168.0.254? or the wired one and use 10.0.0.254? Your os has a routing table that includes both of those routes, and based on the precedence of the entries in it, it’ll pick one.
VPN software usually works by creating a network interface on your computer, similar to an interface to a WiFi card, but virtual. It then asks the OS to route all network traffic, through the new interface it created. Except of course traffic from the VPN software, because that still needs to get out to the VPN provider (let’s say, at 1.3.3.7) via real Internet.
So if you’re following along at time, your routing table at this point might look like this:
- traffic to 1.3.3.7 should go to 10.0.0.254 via the wired interface
- all traffic should go to the VPN interface
- traffic to 10.0.0.* should go to the wired interface
- all traffic should go to 10.0.0.254 via the wired interface
- traffic to 192.168.0.* should go to the wireless interface
- all traffic should go to 192.168.0.254 via the wireless interface
whenever your os wants to send network packets, it’ll go down this list of rules until one applies. With that VPN turned on, most of the time, only those two first rules will ever apply.
If I’m reading the article correctly, what this attack does, is run a DHCP server, that when handing out routing rules, will send one with a flag that causes, for example, the last two rules to be placed at the top of the list instead of the bottom. Your VPN will still be on, the configuration it’s requested the OS to make would still be in place, and yet all your traffic will be routed out to this insecure wireless network that’s somehow set itself as the priority route over anything else.
- Comment on Am I the only one who things the community is being to hard on the Rabbit R1? 6 months ago:
That’s the other one. The Rabbit thing is $200, which, not that I would buy one, is not too unreasonable for an AI tamagotchi
- Comment on GitHub-like WebUI for Subversion 7 months ago:
That’s interesting, okay. Is svn doing compression of those binaries for you?
Not to say “you’re holding it wrong”, but I’m curious about your workflow here. You clone these binaries every time you come back to a project?
- Comment on GitHub-like WebUI for Subversion 7 months ago:
I don’t get it, who in their right mind hosts development stuff on a Windows clunker?
Same question, but Subversion. Switch to git. Import your repos with git-svn.
- Submitted 7 months ago to selfhosted@lemmy.world | 0 comments
- Comment on Microsoft Surface Event 2024 rumors: Surface Laptop 6, Surface Pro 10, and more expected 8 months ago:
“Bringing together all of our AI offerings, we introduce Copilot-Copilot!”
- Comment on SpaceX is reportedly building a $1.8 billion network of spy satellites for US intelligence 8 months ago:
Putting aside the fact that this is a bit of a straw man, multiple countries having nuclear capability is the only thing preventing nuclear war. Russia does not nuke the US (or allies) because they know the US will respond with a nuclear launch of its own. same for the other way around. Awareness and access to similar capabilities makes everyone think twice about becoming the aggressor. if I had to pick, a cold war is preferable to a hot one.
- Comment on SpaceX is reportedly building a $1.8 billion network of spy satellites for US intelligence 8 months ago:
Then what are we even discussing? we’ve had orbital cameras for decades. These are just networked better and launched different?
- Comment on SpaceX is reportedly building a $1.8 billion network of spy satellites for US intelligence 8 months ago:
Do you have any particular pieces of theirs you can recommend I read?
I don’t consider Musk, by any means, to be “a good guy”. Ideally, I’d just rather let SpaceX keep building out starlink for the good of the world and have it be a medium for communication that is difficult to disable.
Why do we need to kill our enemies at this point in our civilization even? it’s barbaric and ridiculous. The state of the art of weaponry right now is trending towards remote operations. How long until it just becomes BattleBots but with collateral damage? When do we get to world leaders settling disputes in a game of Worms?
- Comment on SpaceX is reportedly building a $1.8 billion network of spy satellites for US intelligence 8 months ago:
So that the US government can more directly use starlink for surveillance?
- Comment on SpaceX is reportedly building a $1.8 billion network of spy satellites for US intelligence 8 months ago:
Surveillance is a usecase for communication. I can’t think of a communications technology that hasn’t been (ab)used for surveillance… Books even! Historically people have been prosecuted due to the books they possess! Should our target of ire be the entity building the network? Or the entity wanting to use it for surveillance? The vibe I’m getting from this thread is that folks would prefer the US government, via NASA or otherwise, have control of the whole thing instead.
- Comment on SpaceX is reportedly building a $1.8 billion network of spy satellites for US intelligence 8 months ago:
Science fiction of the 90s was the time to discuss philosophy. We didn’t come to a conclusion then. The future is now. A global low latency, highly available communications network is technologically inevitable. In our timeline, a rich narcissist has gathered enough support and competence around himself to start building that network. So now we have a real, concrete questions that needs an answer: who should have access to that network, and who should decide?
The way I see it, the options are (opening the network for everyone globally):
- limit access to non-military purposes: practically impossible
- limit access to the country of which Elon calls himself a citizen: what happens if he moves?
- destroy the network: everyone is worse off
- have the government take over control of the network: I don’t think we want this precedence
Do you have another suggestion?
- Comment on SpaceX is reportedly building a $1.8 billion network of spy satellites for US intelligence 8 months ago:
Would you rather he, as a non-government affiliated citizen, pick a side? War is stupid. Communication is great. Maybe this is naive of me, but I think the world would be better, and maybe require less war, if everyone had equal access to communication.
- Comment on Automakers Are Sharing Consumers’ Driving Behavior With Insurance Companies 8 months ago:
on my car, there’s a fuse you can pull out, which theoretically cuts power to OnStar. check your car manual/forums about your model
- Comment on Someone had to say it: Scientists propose AI apocalypse kill switches 8 months ago:
For some good fiction, that puts this in context, check out:
- Ex Machina (2005) which is nominally about an AI beating the turing test, but really more of an illustration of that AI in a box problem.
- Snow Crash (1992) which is about a future where the two professions remaining on earth are software development and pizza delivery.
- Comment on FLOSS communities right now 9 months ago:
I’ve had it happen on servers where that moderation option is not enabled. My worst experience was trying to join a friend group’s discord via an invite link shared with me. I was prompted to create an account with email, and I did. I was then shown a read-only view of the server: I could see all messages and other folks could see I joined and 👋 to me. I could not send messages myself, however, without verifying with a phone number. Further, I couldn’t use a Google voice number (my primary number) to verify, nor my “real” number which was associated to another account.
- Comment on FLOSS communities right now 9 months ago:
Sometimes it depends on discord itself finding you suspicious, for some definition of suspicious. perhaps a user agent whitelist? lack of Google cookie?
- Comment on FLOSS communities right now 9 months ago:
it’s awful and I hate it. I generally prefer not to have a shared identity across communities, and there’s no way to create a usable discord identity without a phone number.
- Comment on Joplin alternative needed 10 months ago:
Why do you need to back up that server data? The great thing about joplin, is that the full content of your notes (and history) is distributed, like a git repo. As long as you have one device left with your notes, everything else can be bootstrapped from there. If your sync server burns down, start a new one and sync your notes to it again.
- Comment on Tv box recommendations? 11 months ago:
I’ve been very happy with roku tvs at home and a roku stick “to-go”. Very simple interface with minimal ads that you can block.
- Comment on what budget 3d printer would you suggest for a beginner? 1 year ago:
I personally recommend the ender 2 pro to all my friends who just want a taste of getting into it. You can get em pretty cheap online, or at microcenters. They work well pretty much out of the box, but simple enough to get you to learn tuning them. And they come with a magnet removable build plate.
- Submitted 1 year ago to 3dprinting@lemmy.world | 9 comments
- Comment on Hulu’s ‘Futurama’ Reboot Is Brilliant, but Inside Jokes May Alienate Newcomers: TV Review 1 year ago:
Broadcast order vs production order weirdness.