Yeah, it’s surprisingly small when it’s compressed if you exclude things like images and media. It’s just text, after all. But the high level of compression requires special software to actually read without uncompressing the entire archive. There are dedicated devices you can get, which pretty much only do that. Like there are literal Wikipedia readers, where you just give it an archive file and it’ll allow you to search for and read articles.
The broad definition for “app stores” was likely intended specifically to block loopholes where people just spin up their own sites and say “it’s just my website, not an app store.”
At least on Apple, that wouldn’t help; Native apps (like the App Store) have GPS and cellular location access. You’d need to spoof your GPS and cellular location, which is a lot harder than simply connecting to a different VPN server.
Lots of people found that out when they deleted TikTok during the “ban”. TikTok continued to function in the US, but it was removed from the App Store so you couldn’t re-download it after deleting it. And simply changing your VPN to an international server didn’t help, because the App Store was loading available apps based on your cell location.
Yeah, they did the same for Win7 for a long time. Win7 was so widely used (and people were so hesitant to upgrade after the awful 8/8.1 mess) that like 25-30% of all the computers in the world were still using it several years after support officially ended. It forced MS to continue issuing critical vulnerability patches for Win7, long after support officially ended. Because they didn’t want to be responsible for creating a massive “literally a quarter of all PCs in the world” botnet when they stopped patching things.
Did you even read the comment? MS already patched it in Win10.
Nope, 0-day means it was exploited in the wild before the company knew about it. Basically, the company had to rush to patch it because it was already being exploited. It means black-hat hackers found it and exploited it before the white/grey-hat hackers reported it. If white-hat hackers found it first, they’d have already alerted the company and given time to patch it before they announced the vulnerability. But since the black-hat hackers found it first, it was a 0-day.
0-day patches are often a bodge, at best. They often consist of “just disable the vulnerable component entirely” to give the company time to work on a more long-term solution. And that’s exactly what happened here. MS didn’t take time to actually fix the driver; They just ripped it out and said “sucks if you needed it. It’s gone now.”
Further, there’s companies that make custom-built modern machines that support classic PCI and modern operating systems and classic operating systems.
Yeah, some extremely expensive equipment at my job runs on Adobe Flash. Modern machines won’t even allow Flash to run because it’s so insecure. We just updated the control PC for that equipment last year; It’s a computer that is dual-booting Windows 11 and Windows XP. It boots into WinXP by default, to be able to run Flash. Then if you ever need to update it, you can swap over to Win11 to be able to connect to the internet.
Nope, I literally got pizza without a membership yesterday. The pharmacy is also required to be open to the public, and is consistently one of the cheapest in my area. Just tell the door person that you’re there for the pharmacy or the pizza, and they’ll wave you through without any hassle.
There literally aren’t any agents in SF right now. Trump has threatened to send them, but hasn’t taken any action yet. This was the DA going “if you send them, we will charge them when they break the law.” But there’s nothing to do until after he sends them.
The “experts” part felt condescending to me. In a very “I know better than you, but you have the title so I have to defer to you” way.
And editing. A good editor will have a huge impact on the end result for a book. But the reader never considers that, because they only see the author’s name on the cover.
My parents house had a door that sticks. It had been like that for like 15-20 years. I just recently went over to their place for dinner, happened to have my tools in the trunk of my car, and decided to fix it after dinner. It only took like 10 minutes of “pop this hinge off, give it a little bend, and try again” to get it hanging perfectly square. Watching them suddenly have to fight +15 years of “I need to lift this door to close it” muscle memory was funny.
I mean, it’s definitely condescending, but it’s also dripping with “I was directly told to do this by someone who has the authority and the attitude to fire my entire department on a whim. I don’t think this will help, but I’m doing this specifically as CYA so I can get back to what I actually need to be doing instead.”
Also worth noting that Jellyfin has several known vulnerabilities. Nothing catastrophic, but there are a few “people who already know your library’s naming scheme can access media without authentication” types of things. If you follow the recommended guides exactly, it means you’ll end up with the exact same library layout as lots of other users. It can largely be solved by simply using slightly different folder names, but it’s still worth mentioning in case you want to avoid some random bot being able to access your library. And the Jellyfin devs have openly stated that they have no intentions of fixing them, because it would require a complete code rewrite.
Most people will say that it’s best to avoid exposing it to your WAN, and simply use a VPN to connect to your LAN instead. But that completely blows the aforementioned “friends and family factor” out of the water, because now you’re requiring them to figure out a VPN before they can even begin to access your server. And it also means that they can only watch on devices that will actually be able to run a VPN connection. So your grandma’s shiny new smart TV will be completely unable to connect (unless you feel like being the family IT support, and setting the VPN up on her router).
And while we’re on the topic of smart TVs, some of the most popular ones don’t have a native Jellyfin app. You can sideload on most of them, but (again) we’re considering that friends and family factor. If your grandma has to sideload the app before she can even access it, it’s a non-starter for many people.
On the other side of the same coin, Plex recently disclosed a password breach. Hackers got emails and password hashes. So there are benefits and drawbacks to both systems. Of course this is largely solved by not reusing passwords and simply resetting your password to something new, but that burden is on the individual users.
Plex is freemium in the sense that the software walls off certain features. But the content is always hosted by you; Plex doesn’t actually control any of your media. You’re not hosting it on Plex’s servers. So there’s no way for them to realistically take your media away from you.
Jellyfin is the FOSS alternative, but isn’t quite mature enough to overcome the “friends and family factor” in many peoples’ setups. Basically, Plex makes remote access easy, by proxying the initial connection. The same way DDNS turns a dynamic IP address into a static URL. You host the media server, it tells Plex “hey, I’m located at this address”, and then your various devices simply ask Plex what your server address is. So in that sense, connecting with plex “just works” much easier.
Plex also handles all of the signup and onboarding stuff; Sharing your media libraries is as simple as having them create a Plex account, sending each other friend requests, then granting access to your server. Plex handles all of the backend authentication stuff, and they made their own account, so you’re not bogged down by managing a ton of different accounts.
With Jellyfin, all of that DDNS and account management stuff needs to be set up by you. The Jellyfin devs don’t host any centralized servers, so there’s no way for an app to ask what your server’s address is. And since they’re signing in directly to your server, (because again, no centralized service to handle that), it means you as the server owner are managing accounts for all of your friends and family. So if grandma forgot her password for the fifth time this month, you’re the one resetting her password.
There are other ancillary services that help smooth a lot of that out, but setting them up is a fairly obtuse process if you’ve never done anything like it before. And it also means that you’re setting up six or seven different containers, just to emulate what Plex does right out of the box. The demographics here tend to skew towards system admins and IT professionals, so all of the inevitable “psh, setting it up is easy. I did it in 15 minutes” comments are built upon a lot of external knowledge and experience. Of course, there is a relevant xkcd for that:
On the bright side, you can run both in parallel, and see which one you prefer. They’re just providing access to existing media folders (and indexing that media to grab metadata, album art, etc,) so they’re perfectly fine to run side-by-side. Many people (myself included) do so.
Yup, came to say the same thing. People only notice good lights and bad audio.
The whole intermission and afterwards I’d have to hear “I do sound at my church and,” or some variation of “I’m just a hobbyist but,”.
How many audio board ops does it take to change a lightbulb? One to do it, and ten more to comment that they could’ve done it better.
The sound of old HDD’s grinding away when I make a query is a very special type of music. Should call it clunkcore or something like that.
Having it exposed is certainly noteworthy, if only because it removes the plausible deniability. Fascists thrive on doublespeak and dog whistles. The former allows them to attract new followers who may not be radicalized yet, but agree with parts of the language being used. And the latter allows them to publicly signal support to other fascists, without being openly accused of being fascist. Both are important tools in a fascist’s toolbox. Having the mask pulled off removes any doubt about what they’ve been hinting at, and removes the plausible deniability that they always hide behind.
There is American-made coffee, but it’s primarily made in Hawaii, where land and import/export costs are already exorbitant. And if Americans are increasingly looking to buy American-made coffee, it makes sense that those Hawaiian growers would increase their costs to make up for the sudden surge in demand.
Crops are one of those things with a relatively inelastic supply, because it takes so long to grow. Crops being three months away from harvest doesn’t help when people are hungry now. You can’t just have the army corps of engineers spin up a coffee factory in a week, and expect it to immediately start producing. Because the coffee beans’ harvest is the limiting factor, and that’s not something that can be built overnight. There’s a reason governments keep strategic reserves of things like wheat, rice, cheese, etc… All things where demand can suddenly spike, or where supply can be suddenly wrecked and take a long time to recover.
Well for starters, teachers have had to start telling students that .gov websites are no longer considered credible sources for research.