I’m an electrical engineer living in Los Angeles, CA.
Sadly, Firefox mobile got rid of about:config, and I can’t find any relevant options in the regular settings.
You can disable this “feature”:
Visit about:config
Set “dom.private-attribution.submission.enabled” to false
Sure, but there’s still no excuse for “store the password in plaintext lol”. Once you’ve got user access, files at rest are trivial to obtain.
You’re proposing what amounts to a phishing attack, which is more effort, more time, and more risk. Anything that forces the attacker to do more work and have more chances to get noticed is a step in the right direction. Don’t let perfect be the enemy of good.
No, defense in depth is still important.
It’s true that full-disk encryption is useless against remote execution attacks, because the attacker is already inside that boundary. (i.e., As you say, the OS will helpfully decrypt the file for the attacker.)
However, it’s still useful to have finer-grained encryption of specific files. (Preferably in addition to full-disk encryption, which remains useful against other attack vectors.) i.e., Prompt the user for a password when the program starts, decrypt the data, and hold it in RAM that’s only accessible to that running process. This is more secure because the attacker must compromise additional barriers. Physical access is harder than remote execution with root, which is harder than remote execution in general.
Full disk encryption doesn’t help with this threat model at all. A rogue program running on the same machine can still access all the files.
Is this why Ian McCollum’s videos are getting altered? Over the years, he’s had many historical deep-dives featuring firearms from the Murphy’s auction house. In recent months, he’s been re-uploading those videos to cover their logo with the word “Morphy’s”. Even though the auctions are long over, I suppose Google counts them as promoting sales.
This isn’t funny, this is just the sad state of software these days.
Hook those coffins up to generators for infinite free electricity.
Phase 1: Fuck around
Phase 2: Find out
Incentives like this are tricky. You can reduce the numbers by fixing the problem, or by sweeping it all under the rug. Guess which is easier to do on a quarterly basis?
That’s weird, the watermark says, “I have altered the deal. Pray I do not alter it further.”
It’s a matter of trust. This is just the latest in a long and increasing train of Microsoft abusing their market power. They have proven, time and again, that they cannot be trusted.
Anyone who tries to pull an “I have altered the deal, pray I do not alter it further” gets a lifetime boycott.
Don’t worry, this just means your job is safe from being replaced by AI. No search results means no training data.
Source for this claim?
You have until May 15. The announcement just went out today; if they tried to make it retroactive, it wouldn’t hold up in court.
Opt-out. You can decline this agreement to arbitrate by emailing an opt-out notice to arbitration-opt-out@discord.com within 30 days of April 15, 2024 or when you first register your Discord account, whichever is later; otherwise, you shall be bound to arbitrate disputes in accordance with the terms of these paragraphs. If you opt out of these arbitration provisions, Discord also will not be bound by them.
No bounds checking, only fast.
STOP! You have violated the law. Pay the court a fine or serve your sentence. Your stolen goods are now forfeit.
Send them an invoice at your expected hourly rate.
Every time I see “lichess”, it makes me think about “lich-ess”, i.e., a female undead wizard.