It’s so user friendly. It tells you exactly what to do to solve the problem. Switch to a tty (if that even works on your system) and log in, type this long command from memory, making sure not to mistake those 0s for Os or the Unicode left single quote for back tick, restart your lockscreen, which of course you know how to do, and then come back. If that doesn’t work, start terminating some processes and praying.

It says you can return using “ctrl+alt+F[N] where N is the tty number in the top left corner.” I can’t find my F0 key.

It’s not even good. It’s just scripts for some starter Arch rice, not a serious distro.

Some Unity games may be launched with a parameter that causes them to execute arbitrary code. It seems like it only makes sense on Android. Windows and Linux games can normally only be launched by a process with the same or greater privileges than the process being created, but on Android you can elevate privileges by invoking another app. In practical terms, another app can access the save data of your mobile games.

There was also something about games that register to be launchable directly from a webpage, which would allow web sites to escape the browser sandbox, but it didn’t sound likely.

Some attackers check services that have already cataloged the services you are running, even on uncommon ports. You won’t hear from them unless you are running a potentially vulnerable service.

They’re headphones. Somehow we’ve managed until this point without headphone-based spy devices. How is their translation software different?

If you’re self hosting Headscale you can configure your network such that Headscale is reachable on your network with or without internet access and available from the internet.

Nearly $1,000? ChatGPT can’t even give correct instructions for building a computer capable of hosting itself.

How long until one is hijacked?

Don’t expect Gitea to make progress on federation. Forgejo is a fork of Gitea and anybody that cares about federation is probably on the Forgejo side of the fork.

Even if 1 ChatGPT query is only using 3 watt-hours, that is still substantial. People don’t make just 1 normalized ChatGPT query, whatever that means. The overall usage including training is not insignificant.

It would be illegal to explain how this is relevant, but it would be impossible to prevent Bitcoin double spending without access to the shared ledger.

If you can keep it disconnected from the internet you can keep the company from pushing out a downgrade to introduce new subscriptions. I’m already doing it with my TV. If it doesn’t have subscriptions and it can be disconnected from the internet so it can’t sell my data or introduce new subscriptions, I might buy one.

Is it really 29,990 or is it 29,990 and monthly subscriptions and your data?

I think it would be harmful to my children to know that people like this exist and are hurting everyone, including children, supposedly on the behalf of those children. I would like to require age verification to interact with these politicians. They can only use services that support age verification and cannot interact with anyone who hasn’t verified.

What if I want myself or my children to have access to this content? Where is my control?

Giving a container access to the docker socket allows container escapes, but if you’re doing it on purpose with a service designed for that purpose there is no problem. Either you trust Watchtower to manage the other containers on your system or you don’t. Whether it’s managing the containers through a mounted docker socket or with direct socket access doesn’t make a difference in security.

I don’t know if anybody seriously uses Watchtower, but I wouldn’t be surprised. I know that companies use tools like Argo CD, which has a larger attack surface and a similar level of system access via its Kubernetes service user.

Mounting the docker socket into Watchtower is fine from a security perspective, but automatic updates can definitely cause problems. I used to use Rennovate and it would open a pull request to update the version.

Serious crimes like supporting “terrorism”?

Will they? It’s possible to do on Android but I’ve never heard of anyone doing it. Cordova on Android uses the Android web view component rather than ship its own copy of Chromium. Of course Android web view is now Chrome so it’s less likely that you would have difficult compatibility problems that would make you want to ship your own browser engine.

React Native and React are different. React Native does not use a web browser.