Skip Navigation

InitialsDiceBearhttps://github.com/dicebear/dicebearhttps://creativecommons.org/publicdomain/zero/1.0/„Initials” (https://github.com/dicebear/dicebear) by „DiceBear”, licensed under „CC0 1.0” (https://creativecommons.org/publicdomain/zero/1.0/)P

9point6

@ 9point6 @lemmy.world

Posts
14
Comments
3963
Joined
3 yr. ago

  • What is a hobby you'd love to get into but cant for what ever reason

    Jump

  • I wish I had the time to get involved with the hobbies I already have

    I don't think I've had a decent chunk of a few hours of time with the energy to actually be creative in like a year now....

    I hope I'm on the other side of this soon, life is supposed to be for living

  • Researchers Put AI Models in Charge of a Simulated Society. Grok Oversaw a Crime Spree

    Jump

  • I'm surprised it didn't go full "the purge"

  • Reddit blocks JSON API access, which leaves read-only apps like my RDX for Reddit unusable, thinking of blocking RSS feeds too

    Jump

  • If they block RSS feeds, it's entirely dead to me at that point

    The only interaction I have with Reddit these days is via a feed reader for literally one subreddit as a freebie/deal checker for audio software (AudioProductionDeals, I wish batwaffel would crosspost to the fediverse)

  • EU probes deal that would give Chinese retailer a stake in France's Fnac Darty

    Jump

  • Okay so this is embarrassing, this article is the one that led me to realise the JD.com name I've seen pop up in a few places recently has nothing to do with the British sportswear brand JD Sports...

    A few things make a bit more sense now...

  • Just FT doing some vibes based reporting

    Jump

  • I think we're pretty much on the same page

    I will say that for the FT particularly, it's a valuable newspaper because it has to report based on markets in a mostly matter of fact way. However its opinion section is particularly out of touch in all the ways you'd expect for a paper intended for people in The City.

  • Just FT doing some vibes based reporting

    Jump

  • Not commenting on anything to do with the story here, but:

    Any time you see "opinion" in the headline of any paper, you can either simply ignore it, or if you don't, understand clearly that it's not news

  • Photographer Adam Gray captures being sprayed with chemical irritants by a fascist paramilitary invader

    Jump

  • Wow

    Incredible shot

  • Stephen Miller’s Wife Doxes Woman Behind Democrats’ “Ugly F—k” Post

    Jump

  • Me too

    And the rest

    Some people are so horrid they wear it on their faces

  • Removed Locked

    36 Pedophiles/enablers voted AGAINST a Child Marriage Ban that passed in Oklahoma.

    Jump

  • Can we just undo America?

    On reflection it's just been a lot of harm

  • Stephen Miller’s Wife Doxes Woman Behind Democrats’ “Ugly F—k” Post

    Jump

  • I wonder if she realises she's tied herself to the literal bottom of the gene pool

    Ugly fuck is such a charitable description of him

  • TIL: Peter Jackson made the decision to model one of the orc leader's face mask after Harvey Weinstein

    Jump

  • Weinstein also threatened to replace Jackson with Quentin Tarantino or John Madden

    Hahahahahahaha can you imagine

  • Overpriced premade garlic bread is a sin

    Jump

  • This.

    Homemade during normal hours and sobriety, no contest

    Getting home pissed at 3am? a frozen garlic baguette from Tesco is possibly the ultimate food

  • Artists vs “Creators”

    Jump

  • Yeah, I'm kinda feeling personally attacked by this

  • Equals before the law

    Jump

  • When you're late for work and feel like you forgot something.

    Jump

  • Glanced and thought that was Carragher for a second

    Slightly disappointed I can't rinse my scouse mates for it

  • Equals before the law

    Jump

  • .....that's entirely the point

    The rich aren't forced into situations where they have no other choice but to sleep rough, beg and/or steal food to survive

  • Websites have a new way to spy on visitors: analyzing their SSD activity

    Jump

  • A postgres query is not a filesystem and also not intended at all for large binary blob storage and arbitrary range access? That's an entirely different tool for completely different use cases.

    The existing filesystem API (that the OPFS API appears to build on) is entirely reasonable for its intended use case, and is actually even more entrenched than OPFS given it exists for non-sandboxed uses, and has done for quite a long time. Remember, browser vendors will not break web APIs unless there's no other option, for good reason.

    I also feel like you keep shooting past the fact this is a side channel attack. It's fairly reasonable to conclude any storage operation that hits the SSD could be used for this kind of thing. So basically any equivalent approach would require the same mitigations.

    You've still not made any valid case for your claim that it's insecure by design.

    Just so we can draw this to a close: please explain, specifically and succinctly, which fixes you would make and why specifically the existing OPFS is fundamentally incompatible with your suggestions.

    So far there has been nothing like that in this thread, just hand waving and it's insecure by design, just trust me bro

  • Websites have a new way to spy on visitors: analyzing their SSD activity

    Jump

  • 🤝🤣

    Why did you chop off the start of the sentence to make it look like I was saying the thing you were?

    I was pointing out it's a ridiculous thing to suggest

    I mentioned threat remodeling for several reasons. One of them is, as designed OPFS fails every single one of your suggestions, and more.

    So, an entire HPSA model needs to be redesigned, or stick to non HPSA whatsoever until further peer reviewed refuzzing has been made.

    This type vectorization isn't novel, it's just hilarious vendors just accepted it without further security considerations.

    Right, yes it definitely needs fixing, that's what I'm saying. Then you veer off into saying we should build it from scratch again? Why? There's no apparent need for that given what you've said, you're just describing what we do to fix the existing standard?

    It's the web, vendors don't break existing APIs unless there's no other option and from what you've written so far, the problem is in the implementation, not the API.

  • The Steam Deck OLED's price hikes have killed its status as the best deal in PC games hardware

    Jump

  • Yeah I kinda got the same vibe

    "these new prices reflect the current state of component costs and other global logistical challenges across the industry as a whole." There is, inarguably, some truth to this.

    Some truth?

    Given Valve's plan is to aggressively price their hardware to gain market share in the living room, they're not gonna bump the prices unless they're forced to; not out of altruism, just because it would fuck up their plans.

    Not really quite the level of journalism I expect from RPS tbh