Mastodawn

No, I'm not going to enable JavaScript for your random Fediverse/Lemmy service. I'm sick and tired of having to trust random websites to execute code on my system. You don't need more than HTML and CSS to display a rich website. There is no reason for the JavaScript dependency. It should provide extra functionality, not base functionality.

Also, this website appears to be using Cloudflare, which is protecting the folks DDoSing Ubuntu infrastructure right now. What a joke.

#Fediverse #Lemmy #Insecure #JavaScript #WebDev

Show thread

Karel 'Clock' K.4d ago

@veronica I disagree with"New kernels in [...] Bullseye":

IMO Copy Fail still unpatched on Raspberry Pi Linux Bullseye!

Even after the official update procedure[1]it keeps the kernel over 3 years old(!!!)

12 days after disclosure and 5 days after public one!

As I understood,security patches for Bullseye are still supported.

In my opinion,Raspberry Pi is unsafe,they fail to keep it secure.

I feel contempt towards Raspberry Pi Foundation when they IMO make their official operating system for their hardware product like this.

IMO severe and total failure of security in the official RPi Linux Bullseye.

[1]"sudo apt update"—"sudo apt full-upgrade" https://www.raspberrypi.com/documentation/computers/os.html

The following tags may be partially or completely unrelated:

#failure #raspberry #raspberrypi #debian #bullseye #copyfail #irresponsible #negligent #negligence #failure #unsafe #insecure #security #linux #opensource #hypocrisy #incompetence #reckless #recklessness #complicated #friction #ux #usability #contempt

Karel 'Clock' K.4d ago

Security warning:IMO Copy Fail[3]still unpatched on Raspberry Pi Linux Bullseye!

Even after the official update procedure[1]it keeps the kernel over 3 years old(!!!)

12 days after disclosure and 5 days after public one!

As I understood,security patches for Bullseye are still supported.

In my opinion,Raspberry Pi is unsafe,they fail to keep it secure.

I feel contempt towards Raspberry Pi Foundation when they IMO make their official operating system for their hardware product like this.

IMO severe and total failure of security in the official Raspberry Pi Linux Bullseye.

The following hashtags may be unrelated or only remotely related:

Justin Buzzard May 1

Be a secure leader, willing to surround yourself with competent, knowledgeable, and capable people. Don't look for people who only agree as you will lose different points of view, experience, and lessons learned. #leader #insecure #secure #capable #knowledge

Mark Apr 12

Switzerland Ends #Palantir Contract Over #Data #Sovereignty Risks - #Cybersecurity

#Switzerland’s decision to discontinue the use of Palantir is not a #technology story.

- It's a #risk management story. The platform was not rejected because it failed to perform. On the contrary, it delivered advanced data fusion and operational insight.

It was rejected because the residual sovereignty risk was considered unacceptable.

#security #BigData #insecure #surveillance #SurveillanceCapitalism

[1/2]

Kpop News Hub Apr 6

Oh Jung Se Reflects On His Accomplished Yet Insecure Character And Complex Dynamic With Koo Kyo Hwan In “We Are All Trying Here” #Accomplished #Character #Complex #Dynamic #Hwan #Insecure #Jung #Koo #Kyo #Reflects
https://kpopnewshub.com/oh-jung-se-reflects-on-his-accomplished-yet-insecure-character-and-complex-dynamic-with-koo-kyo-hwan-in-we-are-all-trying-here/?fsp_sid=24078

Oh Jung Se Reflects On His Accomplished Yet Insecure Character And Complex Dynamic With Koo Kyo Hwan In “We Are All Trying Here” - KpopNewsHub – Latest K-Pop News, Idols & Korean Entertainment

Oh Jung Se has shared more insights into his character in JTBC’s upcoming drama “We Are All Trying Here”!

Kpop News Hub

C.Feb 21

Cory Doctorow, a fellow #Canadian, writes a lot of interesting stuff. I agree with his positions on many things, but not all. For example, I'm about ten thousand percent behind his opposition to anti-circumvention laws; I was one of the thousands of Canadians who wrote to the government opposing the introduction of the law many years ago.

However, his blog on Thursday, staking out the position that opposition to "AI" (LLM) is just geeky #purity culture is somewhere between "flat-out wrong" and "disingenuous at best".

My position against #LLM #slop everywhere is both because of #ethical #concerns and practical ones. There does not exist an LLM right now that was built and trained ethically; they are all statistical plagiarism machines, and speaking as someone whose #prose and #code has been plagiarized by every single one of them, that pisses me off, royally.

That's a show-stopper for me, but even if it wasn't, the #practical concerns - that the output is #untrustworthy, that the #references can't be checked, that the #code is #insecure and #unmaintainable, that the #licensing status is unclear, that it's a #copyright violation - are *also* enough to rule out #LLMs at present.

He then presents a #strawman argument - all tech is fruit of the poisoned tree, the #transistor was invented by a racist, etc. But William Shockley is not designing or manufacturing any of the transistors / #ICs I use today.

So, @doctorow - I gotta say I disagree. And that's fine.

Sponge Feb 10

Seeing a lot of people joking/being serious about using #insecure platforms when leaving #Discord due to the new requirements. I really hope whatever you all choose ends up being something FOSS with E2EE. Signal, Deltachat, Matrix, XMPP. Just no more proprietary unencrypted pro-fed trash please??

#insecure #Discord