HackerTrans
TopNewTrendsCommentsPastAskShowJobs

gamer191

no profile record

comments

gamer191
·เดือนที่แล้ว·discuss
But also why would Claude need to run `rm -rf node_modules && npm install`? Without the context of seeing what changes it’s made, I’d be inclined to assume that Claude has added a new dependency, which I definitely don’t wanna blindly trust it to install
gamer191
·3 เดือนที่ผ่านมา·discuss
Interesting. If that’s possible (I haven’t tested it, but I’m sure it is) then you wouldn’t even need to log the password. You could just alias sudo to a bash script that runs your malicious payload using the real sudo. Then the user would run the command, be prompted for their password by the real sudo, and be none the wiser that a malicious script has just been executed

For what it’s worth, Windows’ security model says it’s not an exploit that programs can grant themselves admin rights if the user is an admin (https://github.com/hfiref0x/UACME). But afaik Linux doesn’t have that model so it is a bit of an issue that this is possible
gamer191
·6 เดือนที่ผ่านมา·discuss
Well it led to the creation of BOINC, a distributed computing system that probably has led to scientific advances in other fields

So I wouldn’t say it was all for nothing, but it’s main benefit was the idea, and not the results it generated
gamer191
·6 เดือนที่ผ่านมา·discuss
Agreed, although the reimbursement should be based on whether a reasonable person could consider that to be a vulnerability. Often it’s tricky for outsiders to tell whether a behaviour is expected or a vulnerability
gamer191
·6 เดือนที่ผ่านมา·discuss
Companies wouldn’t send it because they know that most websites would block them
gamer191
·6 เดือนที่ผ่านมา·discuss
Rubbish. That analogy is like comparing a gun manufacturer to a hitman service.

Elon Musk is willingly allowing Grok to be used to harass women (and children). He could easily put in safeguards to prevent that, but instead he chooses to promote it as if its a good thing.

Practically no one defends websites that host AIs to remove clothing from photos of women, or put them in bikinis. The few people who do defend them are usually creeps who need their hard drive searched. Same goes for anyone defending this
gamer191
·6 เดือนที่ผ่านมา·discuss
Not sure about you, but I personally prefer my websites not to be able to be plagiarised by AI
gamer191
·7 เดือนที่ผ่านมา·discuss
Thanks, will definitely check this out

Has anyone else been avoiding typing FFmpeg commands by using file:// URLs with yt-dlp
gamer191
·8 เดือนที่ผ่านมา·discuss
Sadly not, those devices don’t have an exploit afaik
gamer191
·8 เดือนที่ผ่านมา·discuss
> It would be great if we could download the solver manually with a separate command

Download a random video and then copy ejs from yt-dlp’s cache directory (I think it’s in /home/username/.cache)

> being able to package it up together with the solver

`make yt-dlp-extra`
gamer191
·10 เดือนที่ผ่านมา·discuss
Youtube’s tv app is actually just a website (youtube.com/tv, although you need a tv user agent). So yeah, I think most tvs are using JavaScript and the rest are using the tvlite api which has less formats than web_safari (which will continue to work in yt-dlp without Deno if you’re willing to accept 1080p downloads with inferior codecs)
gamer191
·10 เดือนที่ผ่านมา·discuss
"Attack vectors" is a very interesting choice of words. Yt-dlp is literally using a public API for its intended purpose (accessing videos). The only difference is how yt-dlp is delivering the videos to the user. Probably as much of an "attack" as user-agent spoofing or using browser extensions.

But to answer your question, no, there aren't any suitable APIs (I've looked into it). They all either require JavaScript (youtube.com and the smart tv app) or require app integrity tokens (Android and iOS). Please let me know if you know something I don't?
gamer191
·10 เดือนที่ผ่านมา·discuss
yt-dlp dev here

The Android app uses an API which does not require a JS runtime, but it does require a Play Integrity token. The iOS app uses an API which is assumed to require an App Attest token.

Also, neither API supports browser cookies, which is a necessity for many users.
gamer191
·2 ปีที่แล้ว·discuss
> some binary test files were added later that are probably now suspect

That's confirmed

From https://www.openwall.com/lists/oss-security/2024/03/29/4:

> The files containing the bulk of the exploit are in an obfuscated form in

> tests/files/bad-3-corrupt_lzma2.xz

> tests/files/good-large_compressed.lzma

> committed upstream. They were initially added in

> https://github.com/tukaani-project/xz/commit/cf44e4b7f5dfdbf...
gamer191
·2 ปีที่แล้ว·discuss
This PR from July 8 2023 is suspicious, so it was very likely a long con: https://github.com/google/oss-fuzz/pull/10667
gamer191
·2 ปีที่แล้ว·discuss
> That's quite backwards. Governments are far more likely to deploy a complex attack against a single target (see also: Stuxnet); other attackers (motivated primarily by money) are far more likely to cast a wide net.

Governments are well known to keep vulnerabilities hidden (see EternalBlue). Intentionally introducing a vulnerability doesn’t seem that backwards tbh
gamer191
·2 ปีที่แล้ว·discuss
Where does that comment mention the other maintainer (Lasse Collin)?