HackerTrans
TopNewTrendsCommentsPastAskShowJobs

RandomGerm4n

367 karmajoined 3 वर्ष पहले

Submissions

Lobsters bug allows unauthorized email access

lobste.rs
52 points·by RandomGerm4n·21 दिन पहले·6 comments

Sonny Piers elaborates on his ban from the Gnome community

discourse.gnome.org
7 points·by RandomGerm4n·पिछला माह·0 comments

GitHub bans researcher for exploits; expert calls it vindictive

tomshardware.com
12 points·by RandomGerm4n·पिछला माह·1 comments

"Riot Games divides players after boasting Vanguard can "brick" hardware"

dexerto.com
5 points·by RandomGerm4n·2 माह पहले·0 comments

Blizzard Wins Injunction Against TurtleWoW – Server Ordered to Cease and Desist

wowhead.com
3 points·by RandomGerm4n·3 माह पहले·0 comments

Proxypunch: P2P Gaming Without Port Forwarding

github.com
2 points·by RandomGerm4n·3 माह पहले·0 comments

Manjaro 2.0 Manifesto

forum.manjaro.org
3 points·by RandomGerm4n·4 माह पहले·0 comments

Audiophiles can't distinguish audio sent through copper, banana or mud

tomshardware.com
167 points·by RandomGerm4n·5 माह पहले·146 comments

comments

RandomGerm4n
·18 घंटे पहले·discuss
Mailbox.org is based in Germany, which is why you generally cannot trust its feature that automatically encrypts all incoming emails. Other german mail providers, such as Tuta, have already been forced at the direction of government authorities to store every incoming email from certain accounts separately in unencrypted form. Even though Proton also cooperates with authorities, Swiss data protection laws are significantly stricter in this regard. So far, there is no regulation there that requires them to implement a backdoor. They only disclose metadata, the IP address, and the backup email address. Whereas Mailbox would have to forward the entire emails to the authorities.
RandomGerm4n
·3 दिन पहले·discuss
I think that instead of trying to prevent web scraping, websites should try to make it easier so that it generates less traffic. As long as any user is allowed to view the website, there will always be a way to scrape it anyway. If there were simply a monthly updated torrent available on a standardized subpage, such as example.com/scrape, scraping would be much less harmful.
RandomGerm4n
·10 दिन पहले·discuss
That reasoning is complete nonsense. If someone scrapes the data, that’s not a big deal, and Reddit has no more claim to the data than anyone else. The data is public and created by users, not by the platform itself. If the traffic is too much for them, they could use rate limiting or simply offer an archive of the data as a torrent once a month. That way, a company training an LLM could access a complete dataset without generating a lot of traffic.
RandomGerm4n
·17 दिन पहले·discuss
I think the better solution would be to treat every answer as if it were written by a human and then hold the person accountable for any mistakes. I’ve often seen in academic contexts that people have published texts with completely fictitious citations. In such cases one should confront the person as if they had done it on purpose. No one can accidentally invent entire books and authors. The same goes for software projects, where some people submit code that clearly comes from an LLM and hasn't been properly reviewed beforehand. If there are security vulnerabilities in that code, you can accuse the person of having done it on purpose. Anyone who submits AI code without labeling it as such is affirming that they understand the code and have thoroughly reviewed it.
RandomGerm4n
·29 दिन पहले·discuss
So does that mean my girlfriend is also to blame for the war just because she happened to be born in Russia? She’s against Putin herself, but there’s not much she can do about it because, as a trans woman, she’s persecuted by that shitty state simply for existing. If she protested, they’d kill her. Why should she now be barred from at least pursuing her hobby and submitting patches for software projects?
RandomGerm4n
·पिछला माह·discuss
I think it's immoral to withhold LLMs for “security reasons.” All LLMs are all trained on forum posts from real users, source code from free software, and books written by authors. All of these people should therefore also have access to them. Ideally, the models should all be open weight. But making the model accessible only to certain groups of people is even worse than if it were at least available for purchase as a service for everyone.
RandomGerm4n
·पिछला माह·discuss
Privacy Pass would also be a good option. You can use it with Kagi, where you’ll have cryptographic tokens that you can use for searches without them being linked to your account. Even if you use a non-anonymous payment method, you could still use the service without leaving a trace.
RandomGerm4n
·पिछला माह·discuss
Why would that be bad?
RandomGerm4n
·पिछला माह·discuss
> After about 2010 companies stopped providing the server binary. Games like Modern Warfare 2, Battlefield 2, etc could be played by communities in perpetuity on private servers. If the next game (MW3, BF3) were terrible, you didn't have to buy the sequel, what you had was "good enough" and you could wait for the next version to be released in 2-3 years.

That's not true about Modern Warfare 2. Modern Warfare 2 was the first Call of Duty game where you could no longer host your own servers. In its predecessor, Call of Duty 4: Modern Warfare, however, that was still possible. For MW2, unofficial servers created by players only became available later on. However, Activision has taken legal action against many of these projects.
RandomGerm4n
·पिछला माह·discuss
> Am I responsible for providing a fallback to EOS, or Steam, or playfab in case their services are decommissioned?

In this case, the company offering this service should be responsible for making it possible to host the service independently before discontinuing it. However, games that use such standardized services are actually less problematic in practice. For Steam, for example, there is the Goldberg Steam Emulator, which emulates Steam’s online features. Games that do not have additional DRM or any extra features but simply use the standard Steamworks SDK for multiplayer can be played entirely without the Steam client or server using this emulator. Even for services that had already been shut down, like Gamespy back then, Openspy quickly emerged as an alternative. Not all games worked right away, but the community fixed most of the issues very quickly. So, in the end, the games that use some kind of custom solution built by the developer themselves are much more important.
RandomGerm4n
·पिछला माह·discuss
> There's also the likelihood of the server architecture requiring many moving pieces. Think if fortnite died tomorrow how many different servers it would take to host. Could an argument be made that an end user couldn't be expected to launch a dozen aws services? More dev time, more costs.

There are already several Fortnite servers available for self-hosting. Fans have created these on their own without access to the official code, and they run on a standard PC or a custom-built server using off-the-shelf hardware. One example of this is Project Reboot, which is publicly available on GitHub. People use it to play older Fortnite seasons or to play the game with friends on unsupported platforms like Linux.
RandomGerm4n
·2 माह पहले·discuss
Even though I wouldn't really use something like that myself, I actually think it's a good thing when people share their dotfiles with others. Whether you call it a “distribution” or not is basically irrelevant, and I don't understand all the fuss about it.

However I would still generally advise against using Omarchy because the maintainer does not seem to place any importance on security. For example the default firewall configuration leaves the SSH port open and the number of failed login and sudo attempts before a timeout has been unnecessarily increased. Furthermore Omarchy installs some of the offered programs via a .sh script that is downloaded via curl rather than using a package manager like the one Arch already has. In addition Hannsen still refuses to sign his commits, which means it's only a matter of time before a supply chain attack occurs.
RandomGerm4n
·2 माह पहले·discuss
No, thanks. Vivaldi is proprietary software and therefore not trustworthy. Since the source code isn't fully available, there's no way to verify whether an update might secretly add a feature that collects data. Since the source code isn't fully available and you can't compile it yourself, there's no way to prevent a feature that collects data from being secretly added during an update. The reasoning behind why it isn't open source is also complete nonsense. Just because it's easy to create a fork doesn't change the fact that most users will stick with the original as long as the fork doesn't offer significant improvements. With Firefox, people aren't flocking to the existing forks either.
RandomGerm4n
·2 माह पहले·discuss
> I, for one, like streaming apps enough that I don't want to go back to locked-down, expensive DVD players. The alternative to DRM isn't "no DRM", it's "no content".

That statement is simply not true. The demand for streaming services would still be there. There would simply be even more illegal alternatives than there already are, so companies would still be forced to offer movies and TV shows via streaming. They only have the choice between offering DRM-free content and making money, or making no money while people watch it anyway.
RandomGerm4n
·2 माह पहले·discuss
But that would only be possible for large companies. If I'm just tinkering with my own Linux distribution for fun, Google won't even bother responding to my request.
RandomGerm4n
·2 माह पहले·discuss
The intention behind it doesn't matter at all. In the end, it just means that only a few major operating systems are allowed, and the market is divided up among the established manufacturers. Anyone new to the market faces a major problem right off the bat, and trying to build something yourself doesn't work either.
RandomGerm4n
·2 माह पहले·discuss
In many countries, a VPN provider can be significantly more trustworthy than an ISP. In Germany, for example, you can have your home searched simply for insulting a politician. The ISP will then immediately hand over the data to the authorities, which most VPN providers do not do. The same goes for torrents. If some random law firm sends a letter to Telekom saying, “Hey, your customer downloaded a movie please give us his data,” they’ll do it right away. Mullvad, ProtonVPN, or even dubious VPN providers like NordVPN don’t do that.
RandomGerm4n
·2 माह पहले·discuss
Not all plugins are open source. Some of them are included in the jdclosed dependency which is just a blob. The developers claim this is to prevent sites from patching them. However this approach is not compatible with the GPL and the developers have simply been ignoring this for years.
RandomGerm4n
·2 माह पहले·discuss
The AusweisApp is Open Source and available on Windows, Linux and even FreeBSD too. You just need some NFC Scanner that works via USB and then you can use it without a mobile device. https://www.ausweisapp.bund.de/open-source-software
RandomGerm4n
·2 माह पहले·discuss
There are still warez sites that upload content in RAR archives, which are then split into individual parts. A download manager can then download them all one after another instead of having to do it manually. There are also hosting sites with weird CAPTCHAs or various waiting times.