I accidentally had appletviewer.exe it from the JDK, however the applet is served over http. I do appreciate this because I'd accidentally turned off HTTPS Everywhere and hadn't noticed (in weeks I suppose).
I think I'm not the target audience, I hope OP finds some good physicists to show this to :)
I'm probably using the most aggressive blocking setup possible, though: I have a bunch of filter lists, I don't ever make exceptions to them, and instead deny all scripts and 3rd party resources, then graylist by hand (using the matrix).
Wouldn't really recommend this article, read this article by PG instead: http://paulgraham.com/ds.html ("Do Things that Don't Scale"). The PG article is a lot longer and has more substance.
I regret taking the time to unblock them in uBlock; had to unblock 3 domains just to get anything but a blank page, and usually it's just the one domain.
The link you posted is indeed a MITM proxy for SSL, but it will generate certificate errors, as my grandparent said. Users will know the MITM attack is going on (unless the website doesn't use HSTS and the attacker has stolen/bought a signing key from a CA registered in your device's trust store).
I'm proposing we write a simple canary spec, for canaries that are both human and machine readable. A format could be, for instance:
* canary.txt in the root of the site.
* Optional text introduction, describing the canary's purpose, the way rsync.com does.
* PGP signed message with expiration date; content optional.
* Replaced by either a 404 or a 451, the 451 for those who want to be more explicit and like to live dangerously.
You probably shouldn't state you're compliant with the spec if you implement it.
.
I'm personally very willing to run a replacement canary watch, I'll see what I can set up over the weekend. I'm thinking of writing it in PHP, so it's easy to copy for others.
I'm thinking it'd be nice to couple it with a spider that automatically indexes these canaries, and to also have captcha'd "add your own" option.
Could anyone point me to a guide to setting up a HN-proof PHP server?
It didn't work for me at all; the red dot never appeared on my screen, though the face-outline in the preview image did fit my face quite well (when it wasn't detecting my chin as my mouth).
The model I got has 8gb ram, 240gb SSD, 1tb HDD, Core2Duo processor, and is upgradeable to a Core2Quad.
However, I'm strongly considering just keeping it as a backup. To me it represents the best possible backup computer, durable and auditable.
It's backup for when my current computer breaks down, but also for when new sinister surveillance and encryption laws are passed. Or for when the web turns into even more of a wild-west with hackers and nation-states doing whatever they feel like.
I kinda feel like it was a bad idea to even discuss my ordering of this on a non-throwaway, from an IP vaguely linked to me.
.
That went kinda dark. Guess I haven't been taking enough Soma.
What if you make your core competence as a programmer "gaining steady footing in new tech", along with basic like code structuring, version control and some automation (CI/testing etc.)?
That way you might not become "the greatest X86 assembly programmer" or whatever niche you like, but you might become a very proficient system integrator, which is useful in its own right.
It is pretty expensive for the amount of performance you get, but you are getting a fully documented, auditable and free product. It comes with instructions on how to update/build/flash/modify your firmware. You're also supporting the Libreboot project.
An atheist doesn't believe in the existence of god(s); a theist is the opposite and believes in the existence of god(s). The difference lies in lack of faith v. faith.
An agnostic believes it's not possible to be sure whether one or more gods exist.
Combinations are possibly; an agnostic theist believes in the existence of gods, but also thinks it's impossible to be sure.
There are also apathetic agnostics; they don't know nor care whether one or more gods exist. This usually seems to go with atheism.
I suppose there should also be a word like nontheists; those who have faith in the non-existence of gods.
A 1-char password can be guessed in as many attempts as the size of the allowed character set, and in half the guesses on average. Even less guesses are required on average if passwords aren't distributed uniformly and this distribution is known (i.e. from previously cracked password databases you know most users pick "e" for a password, so you start with that character and get into the accounts of 40% of all other users in a single guess).
More generally, the average number of attempts required to crack a password with a known length is 1/2 * charsetsize ^ length. So with alphanumeric case-sensitive 1-char passwords the number of attempts required on average is 31. That's not a lot.
The only thing that salt + hash does is make it possible to check the password without having to store the passwords on server; it only serves to protect user passwords after the password (hash) database has been stolen by attackers.
The only way to keep a semblance of security when user passwords are very short is to aggressively rate-limit password attempts, but in the case of 1 char passwords that doesn't help, you'd have to lock the user out after a single wrong password entry, and even then attackers would have a chance of 1/62 (26 lowercase letters, 26 uppercase letters and 10 numbers) chance of getting into your account.
I thought the default look of the site was a bit hard to read, so I made two themes for Stylebot. If you have Stylebot installed you can go to the site, click the Stylebot icon and load either of them from "Stylebot Social".
Stylebot is only available for Chrome though; does anyone know an alternative to Stylebot which is as user-friendly as Stylebot but also available on a broad range of browsers?
I don't have this problem, I got a perfectly clean page without any ads or social media icons.
I'm running the latest Chrome with uBlock Origin (bunch of filters incl. privacy, social and anti-anti-adblock) and Ghostery. I don't know why you're having this problem, maybe try adding a few blocklists?