Mastodawn

dantz Oct 31, 2024

@caseyliss @marcoarment There is a Thunderbolt dock with 10gbit ethernet from OWC. I’ve been using it for a year and a half, no problems.
https://www.owc.com/solutions/thunderbolt-pro-dock

OWC Thunderbolt Pro Dock

Designed for pro creative workflows and features 10G Ethernet, frontside CFexpress and SD card readers, Thunderbolt (USB-C) device support, and peripheral ports.

dantz Sep 5, 2024

@caseyliss
I bought a screen protector for my wife’s iPhone in the Apple Store and they had a really fancy machine to apply it. I wouldn’t do it myself ever again after seeing that.

dantz Jun 19, 2024

@siracusa The idea of a “Managed Mac” has existed on Mac (and Windows for that matter for) for over 25 years, it’s a user with non-admin privileges. It’s just that both Apple and Microsoft have been doing a terrible job getting the defaults right so far.

dantz Jan 24, 2024

not patchfriday (yet)Jan 20, 2024

iOS vs Android Security

https://patchfriday.com/54/

Patch Friday

dantz Jan 21, 2024

Wladimir Palant Jan 18, 2024

German law is making security research a risky business.

Current news: A court found a developer guilty of “hacking.” His crime: he was tasked with looking into a software that produced way too many log messages. And he discovered that this software was making a MySQL connection to the vendor’s database server.

When he checked that MySQL connection, he realized that the database contained data belonging to not merely his client but all of the vendor’s customers. So he immediately informed the vendor – and while they fixed this vulnerability they also pressed charges.

There was apparently considerable discussion as to whether hardcoding database credentials in the application (visible as plain text, not even decompiling required) is sufficient protection to justify hacking charges. But the court ruling says: yes, there was a password, so there is a protection mechanism which was circumvented, and that’s hacking.

I very much hope that there will be a next instance ruling overturning this decision again. But it’s exactly as people feared: no matter how flawed the supposed “protection,” its mere existence turns security research into criminal hacking under the German law. This has a chilling effect on legitimate research, allowing companies to get away with inadequate security and in the end endangering users.

Source: https://www.heise.de/news/Warum-ein-Sicherheitsforscher-im-Fall-Modern-Solution-verurteilt-wurde-9601392.html

Gericht sieht Nutzung von Klartext-Passwörtern als Hacken an

Der Programmierer, der eine gravierende Lücke in der Software der Firma Modern Solution aufgedeckt hat, fällt unter den Hackerparagrafen, meint das Gericht.

heise online

dantz Dec 15, 2023

Nietzsche Dec 15, 2023

Ich habe das Gesicht von Garth mit dem von Philipp Amthor getauscht, und ich mache jede Wette, dass es den meisten auf den ersten Blick nicht mal auffällt

dantz Nov 10, 2023

David Friedman Nov 9, 2023

Um... I'm pretty sure this is wrong. The April 8th, 2024 eclipse will be best visible from North America. The next total eclipse in Australia isn't until 2028. Good job, Humane!

dantz Aug 17, 2023

Nothing to see here…
https://www.nature.com/articles/d41586-023-02585-7

LK-99 isn’t a superconductor — how science sleuths solved the mystery

Efforts to replicate the material have pieced together the puzzle of why it displayed superconducting-like behaviours.

dantz Apr 2, 2023

Darth Putin Apr 1, 2023

Russia in charge of UN security council is like a sex offender deciding age of consent laws.

dantz Mar 17, 2023

Ted Mar 15, 2023

Google Zürich layoff emails went out yesterday. So far I've heard about:
- pregnant people being fired
- people about to go on parental leave being fired
- people from Ukraine or Russia with visas depending on their job being fired, and are now at risk of having to go back to war zones or being drafted
- people who just relocated to Switzerland from other international Google offices and are being fired mere weeks after arriving