Just your normal everyday casual software dev. Nothing to see here.
People can share differing opinions without immediately being on the reverse side. Avoid looking at things as black and white. You can like both waffles and pancakes, just like you can hate both waffles and pancakes.
been trying to lower my social presence on services as of late, may go inactive randomly as a result.
I believe they are talking about this.
If you have it at all exposed to the internet, you should probally terminate it
As a summery: Multiple endpoints on the software don’t check for authentication and an unauthenticated person can retrieve your complete settings configuration including your API keys and your password and also change your current configuration, Just by sending a simple POST request.
That’s wild to me that that was something that was able to be done.
So I get what you’re going at, but I did want to add that secure boot doesn’t require Windows 11. And that the main issue with Battlefield 6 isn’t the fact that it has secure boot enabled because you can use Battlefield 6 on Linux with secure boot. The issue is it won’t pass the anti-cheat, which is Javolin if I remember correctly, breaks itself when in a Proton environment.
Being said, I don’t think secure boot is the threat everyone thinks it is. Microsoft was originally not going to let alternative platforms be allowed on the secure boot environment. However, they started facing legal threats regarding it, including a potential ban in Australia and part of the EU stated they were looking into investigating it in regards to anti-trust, so they ended up caving to avoid having a judgment in court. I don’t foresee Microsoft going back to making it so they’re the only one allowed again,and if they do it’s almost certain they’ll be anti-trusted
I can see the concern on a Google attestion style system, but I don’t ever foresee it getting that bad because people will just not use the system. The only reason it’s working somewhat well for Google is because it’s integrated into Android as a whole and practically forced upon developers if they want to use the existing integrity systems. Being said, I’ve only ever seen it in banking apps. I don’t think I’ve ever seen it on a website to website basis.
Before I go full tin foil hat on this theory, I want to know how they plan on making it so the signal is sent client side without the client being able to fake the signal.
Like, this sounds like something that any type of OS that allows you to install a program will be able to bypass quite easily either by always sending the adult signal or never sending the adult signal
Like reading the bill, they explicitly forbid any type of personally identifying information being transferred. It sounds like it’s just a DOB check and if you say you are > 13 or whatever age they have it as it sends a signal.
I’m happy it isn’t allowed to send PII but like at the same time, I feel like just having websites put an age check prompt up does the same thing
im not sure how it translates to base lemmy as I am using tesseract, but Subscribed / scaled is the endpoint it uses which I believe just means subscribed communities only sorted by scoring(hot?)? I’m not entirely sure how it works I just know that it works good for me.
No, price and design are the only things I care about.
If it doesn’t have me walking around like a product billboard that’s immediatly putting it at the top of my list
I felt my back break when I went on the app and sorted by retro and saw stuff I didn’t think was that old.
even then, the ruling that you show here stated that CA sided with Georgia in the case as well, they stated that future business should hold to CA’s laws due to the customer being a CA resident, but that due to the company residing in Georgia, they are not liable for past damages. It was basically a case of “we believe our law is correct but we have no jurisdiction to actually chase this and if it goes to federal court it will be tossed due to federal law favoring one party consent”
I don’t think this will matter overall. I don’t know if any states that are no party consent meaning that you can’t record ever, only one or two party consents.
The feature itself isn’t illegal, its using it when you are not supposed to that is. I assume the feature will roll out as normal and it will be up to the user to determine whether they are allowed to use it or not.
Just adding in, The Android developer page does clarify this problem. It will be a default on and will require the user going out of their way to turn it off.
They have a direct question there labeled as the following.
If I want to modify an app and install it on my own device, or if I’m a power user, is there a way to turn this verification requirement off
And then the response is as follows.
We understand this is an important use case for many developers and power users. While the verification requirement itself is a core OS feature to help protect the broader ecosystem from malware and can’t be turned off, we plan to offer two paths for experienced users to install unverified apps:
Honestly, it doesn’t seem all that different than how fdroid is currently configured on Google. I expect that you’ll have to enable an option on top of the unofficial sources toggle that also states unverified apps.
Being as they also specify what the Android debugging bridge is as a second bullet point, I expect that it’s not going to be through ADB like a lot of people were worried about as well.
I decided upon seeing this article I should update my current windows 11 iso.
They have definitely changed the download flow since the last time I attempted.
In order to download the latest windows 11 iso on a non-windows system, you need to go to the download page, select the last option, verify the connection select region and then verify the connection again, upon finishing it they now give you a 24h time limited link.
This seems very counterproductive to convincing people to go back to windows if they had already bailed, I would have thought they would want as less restrictions as possible on the iso itself in hope to get people to go back.
I assume they are doing some sort of update. Stupid that they flash the lights to indicate it though, what an annoying menace.
De-listed where? It’s listed still for me.
I’m guessing it was a regional de-listment and it just wasn’t specified.
Being said, this page was enough to make me install the app, still unsure if I wanna use it or not but, I don’t wanna risk losing the ability to install the app either.
Just don’t buy Triple A titles.
The last “AAA” title I bought was elden ring for 30$ (unless you count Silk Song)
There are plenty of indie style, A or AA studios that are in the 5-30$ range.
The more people who move over to that type of mindset and buy from small titles, the more apt that large companies are going to lower their prices.
Of course, this is just my thoughts on it, but it’s entirely possible that their original partner is dropping them due to PR concerns. Discord is a huge partner and they have been in the news constantly as of late with the ID talk, it might be scaring k-Id off because it’s almost entirely bad PR regarding their data safety and practices.
they have already done this for at least the last year or so easily. I noticed it when I requested by data package last year, theres a clear area on it that infers both your gender and your age in it.
They are just acting like this is a “new system” but in reality its a system that have had for awhile now, just didn’t have any public facing usage of it.
For anyone else that wants to see it themselves, and they have a discord takeout. its located at the very bottom in the events file in activity/analytics.
the end of the file shows json objects that indicate what your predicted age and gender is.
edit: I found this file isn’t a static location, it is still in the activity/analytics directory in one of your event files, but you need to search “age” or “gender” to find it if it isn’t at the bottom
mmmmm lets see here
for the pavillion 16…
$34.99 a month with no protection plans available and no option to buy out over time and requires a 650 credit score…
or $979.99 for a one off purchase with the ability to have a protection plan ontop of it (this same laptop is also on a sale via HP for 429$ if you use their financing system…)
I don’t see how this is helpful to the general consumer. The typical user doesn’t replace their laptop every year, and at the prices they give you end up breaking even around 2 years. You would need to be processing an upgrade at least every 2.3 years in order to make your money worth it. I’ve had the same laptop for 8+ years now. I don’t know anyone who had a laptop fail outside of accidental damage prior to the 2 year mark. Most system issues appear prior to the one year warranty end date if something was /going/ to happen.
I can see how this could be helpful for a company that has temp workers… but even then it’s not like the company couldn’t just re-provision the laptop and give it to the next person.
I could see this being more handy if accidental was included on it, but out of the current offerings it’s just not worth it for anyone.
I’m waiting for some government to outlaw collecting the information in general outside of official government agencies. I would love to see big tech squirm as they try to figure out a valid way to harvest the data in one country, but prevent it in another.
Honestly it sounds like an amazing way to rack of fine money due to violation notices.
For ID scans, Discord says that documents “are deleted quickly.”
Just a few months ago they had a data leak which proved that they were indeed /not/ deleting documents and ID’s like they had been claiming.
Granted in that case it was mostly countries that force keeping that data but, I’m sick of companies lying and saying “lol yea we defo delete the data after”
sadly, it’s a little more complex than just enabling it. The supported self host deployment uses docker, and the docker containers that are available don’t contain the interfaces for voice or video calling as they are not up to date.
If I understand it right, to enable it would mean you need to either pull the source yourself and run it off of docker, or make a custom docker image using a version of stoat web that contains the ability to do voice calls.
reading the draft of the linked issue, it looks like the author isn’t doing voice call for the reason that they don’t know the proper way to integrate it into the docker image.
So to answer it: yes it looks like you can use voice servers on the current self hosted model, but you can’t use pre-existing docker images, and it will require you to manually add the new web UI in and patch where needed.
Honestly, swap background play out for queuing, and I would up dove on that so fast.
Makes no sense to give background play without music capability. and I have to admit the mobile queuing system is a godsend to the mobile YouTube experience.