I donate to food banks and educational charities. I grew up with little and now I’m better off thanks to charities and scholarships that supported me, and I want future generations to be given the same chances I was.
CUPS is installed on the majority of desktop systems. One of the listed CVEs indicates that port 631 is by default open to the local network, so if you connect to any shared network (public WiFi, work/school network, even your home network if another compromised device gets connected to it) you’re exposed. Or a browser flaw or other vulnerability could be exploited to forward a packet to that port.
In other words: While access to port 631 is required first, the severity of the vulnerability lies in how damn easy it is to take over a system after that. And the system can be re-compromised any time you print something, making this a persistent vector.
Ecco.
That seems like a myopic view. Service misconfiguration is not always a vendor’s fault, and demanding software vendors to patch their products is not going to fix OSS vulnerabilities. In fact, we’ve seen examples this year of increased pressure to fix “issues” leading to developers unwittingly accepting malicious commits.
Mind you, I’m not contesting that some vendors produce dogshit products (looking at you, CrowdStrike), but calling all vendors villains is a bit of a stretch.
ACAB
I don’t know if it’s still the case, but in my experience (years ago) PGP messed with the proper rendering of HTTP email bodies.
From a security standpoint also, the signature confirming that the email is from your is a double edged sword: Yes, your contacts get to verify that it’s you, but you’re also losing plausible deniability (privacy).
xXtwitterXx
If I had a nickel for every time in the past week I saw an article about a courier game I’d have two nickels. Which isn’t much, but it’s odd that it happened twice.
I don’t have a Fedora workstation in front of me right now, but it memory serves me right there’s a “default applications” or similar menu in Gnome’s settings.
Maybe consider getting sorbet or gelato next time?
The article’s author mentioned that the problem is not limited to Samsung TVs - someone reported the issue on their phone.
The article does not mention a root cause, but I have a theory that it’s likely a malformed subtitle track. I tend to watch with subtitles on so I run into related issues every once in a while. Most of the time it’s one of two things:
The latter can have multiple effects depending on what format the subs are in, but most of the time it’s a missing end time, meaning that the subtitle stays on. However, some formats also have cues as to who the speaker is, and that comes with a start and end tag like in HTML. I suspect that in this case the end tag is either missing or misaligned in the syntax tree, causing this one line of dialogue to be displayed over and over when the player reaches other lines matching the cue for it, but that don’t get shown because the user has turned subtitles off.
As to why this is bleeding into other shows: I suspect it’s an issue with how the software clients are caching the subtitle files. This would also explain why going back into the episode that caused this fixes things, because it would reset the cached file. Which in turn brings me back to pointing the finger at Amazon, not Samsung, because Samsung would just be loading Amazon’s software client to play the video and subtitles.
So bonobos become the dominant species?
My decision tree roughly follows these steps:
I used to also prioritize GoG because it was largely DRM-free, but the Luna partnership is putting doubt on that.
Transparent vs translucent.
Yeah, you’d have a LoadBalancer service for Traefik which gets assigned a VIP outside the cluster.
Physical effort, yes. Cognitive effort, no.