JRaccoon

For me accessing that site in Firefox on Windows (even with uBO) does trigger the scam popup, but in any other browser I tried (Edge, Chrome, FF dev edition), it doesn’t. Kinda interesting.

The popup does not manage to add anything to the clipboard. There are tons of JS errors in the console, so luckily the thing seems to be pretty broken right now.

I think Microsoft should add a warning before allowing pasting into the Run dialog for the first time. Similarly like they already have in Edge’s console

!lemmySilver

Just testing does it still count if the comment contains other text after the command. It’s not immediately clear from the instructions how that works.

Someone else just brings the stuff to me? In that case, definitely the clothes. I hate shopping for them, it’s always such a chore, even if you don’t care about style and just want high-quality, comfortable ones.

They can include runnable JavaScript too, which can cause vulnerabilities in certain contexts. One example from work some years back: We had a web app where users could upload files, and certain users could view files uploaded by others. They had the option to download the file or, if it was a file type that the browser could display (like an image or a PDF), the site would display it directly on the page.

To prevent any XSS (scripts from user-provided files), we served all files with the CSP sandbox header, which prevents any scripts from running. However, at the time, that header broke some features of the video player on certain browsers (I think in Safari, at least), so we had to serve some file types without the header. Mistakenly, we also included image files in the exclusion, as everyone through image files couldn’t contain scripts. But the MIME type for SVG files is image/svg+xml… It was very embarrassing to have such a simple XSS vuln flagged in a security audit.

My use case is a bit different than yours but still worth mentioning, I think; I have Sharry running in Docker and it makes sharing and receiving files super easy. All downloads and uploads are resumable so they work well even in unstable networks.

The house with a pool if someone else would take care of the maintenance without me needing to worry about it. Otherwise the beach house, I would imagine it would be the easiest to rent out and use that income to get a house I would actually like.

I had some old hardware lying around and decided to try building LFS (Linux from scratch) on it. For those unfamiliar, LFS is a “distro” where you compile every single package from source manually, with no package manager or anything. With my limited Linux experience it was really like diving directly into the deep end but the process was surprisingly easy and I learned so much by doing it.

Once the base system was complete, I installed the bare minimum needed to get X, Xfce, and some basic applications running. I’m honestly amazed how little system resources are required to have a fully functional graphical environment for basic web browsing and whatnot. The system boots almost instantly on a decade old hardware and after boot sits at way below 500mb ram usage.

The first game of the series is the best in my opinion. It went downhill from there.

Yes, I thought I was the only one! I don’t remember when or why I started doing it, but I’m so used to it by now that it feels weird if I don’t turn the lights off.

Recently I got a new showerhead and it has a dim light built-in and uses the water flow for power. So no complete darkness anymore but the dim light doesn’t bother me and it’s actually useful.

Yeah, kinda sounds this was designed by someone who has never actually attended a LAN party

Yeah I get that, but why return that information in the HTTP response?

with the motion largely serving to get Democrats on the record as voting against a bill being framed as anti-infanticide

Democrats have routinely criticized “born-alive” bills as being redundant because killing an infant who was born alive following an attempted abortion is already illegal.

tl;dr: The bill would actually change nothing and it’s all political games.

Interesting read. One thing I don’t fully get is why does Cloudflare have the airport code in the response headers anyway? I cannot think of a single reason to have it in the response.

It will be funny as hell if out of all possible things it’s TikTok that starts this round of GOP infighting.

I would imagine the flight recorders keep recording as long as there’s any power left in the aircraft. So if there was a bird strike as they suspect, and if that caused a dual engine failure, the recorders should still work, right? So there has to be more to the story than a simple bird strike.

I think this time the manufacturers will be pretty quick at adopting the new branding; if there’s two competing devices next to each other, one marked with “USB 3.2 Gen 2x2”, which no one understands, and other one with “USB 20Gbps” I think the latter will sell more.

I remember reading from somewhere that according to family he was very eager to get to vote one more time and to cast his vote for Harris. So glad he got the chance to do that before going, even though the result wasn’t what he probably was hoping for.

Sure. I’m not recommending anything, just stating what has worked for me. For simple use cases, I think most of the DDNS services are pretty much the same anyway and it’s easy to switch to an another one if one stops working for some reason.

I’ve been using No-IP free plan for years without issues. Inputted the credentials to my routers DDNS client and then basically forgot about it. Free users need to confirm their account once a month via email but that’s just one click.

If your domain registrar happens to have an API to update DNS entries, you could implement DDNS yourself by writing a simple automated script to check the external IP (e.g. via ipify.org) and if it’s changed from the last check then call the API to update the DNS entries.