![](https://lemmy.zip/pictrs/image/f8786eb2-82f5-4e00-bd37-157be49f0074.jpeg)
![](https://lemmy.ml/pictrs/image/d3d059e3-fa3d-45af-ac93-ac894beba378.png)
Being a 3rd place you can’t even walk to because you have to cross those huge parking lots and all the traffic they bring. Not to mention none of them had decent places to actually collect and hang out.
Being a 3rd place you can’t even walk to because you have to cross those huge parking lots and all the traffic they bring. Not to mention none of them had decent places to actually collect and hang out.
Ah, I thought you were using the shower as a way to cool down the air for your house. This makes way more sense.
Any tips other than the fan…
Agree that people like to fluff the severity of bugs they report. It’s better for prestige and bounty payouts. But this is a little more nuanced.
“While I didn’t really intend the module to be used for any security related checks, I’m very curious how an untrusted input could end up being passed into ip.isPrivate or ip.isPublic [functions] and then used for verifying where the network connection came from.”
It’s interesting, that it would be hard to make a case that there was a “vulnerability” in the ip
package. But it seems like this package’s entire purpose is input validation so it’s kind of weird the dev thinks otherwise.
Recurring incidents like these raise the question, how does one strike a balance? Relentlessly reporting theoretical vulnerabilities can leave open-source developers, many of who are volunteers, exhausted from triaging noise.
The researchers need to provide proofs of concept. Actual functional exploits.
I’ve never gotten this to work very well. Though I didn’t do it with a fan. Any tips?
If you have cool nights, setup fans up at night to bring the house down to a lower temperature. Close everything up in the morning when the outside temp starts rising above your inside temp. If your place is insulated reasonably and there’s no excessive sun from windows, it will stay cool for the day.
Protip: Setup the fans in all rooms on one side of a chokepoint in your house/apartment (stairwell/hallway) to exhaust, to encourage airflow. Open up all the windows on the other side for intake. It’ll also help reduce pockets of hot air left over from the day before.
Finally get involved in politics?
As a very long time Arch user I wouldn’t say “easy” like everyone else seems to. I absolutely would not suggest it for a first distro for someone, which is what I would classify as the “easy” level.
But if you’re comfortable with using Linux, the terminal, and being able to follow written documentation you’ll be able to do it just fine maybe with a little frustration the first time. If you’re installing to a laptop, make sure to look up your model on the wiki first.
Never!
They look questionable.
SELinux was a product of the NSA. Maybe the best thing that agency has done.
Not in my experience. Unless maybe if it causes loss of funds or other security issues, which usually get a fair response.
Are you saying the chemical plant provides the treatment or that one plant is somehow responsible for polluting 75% of American drinking water?
I think it’s equally true for product companies. Do you know how hard it is to get a company to prioritize bug fixing over feature work? Shy of a user revolt, or a friend of the CEO reporting an issue, bugs are almost always second priority or lower.
nah, nodes still need to pin the file for it to be permanent.
Woah, I didn’t even know about this one.
Even if you’re poking at a black box and are reporting that “it acts funny when I poke it this way.” I’m my opinion, a reporter should send along a script or at least explicit instructions on how to repro.
I take the report more serious since it demonstrates you have an understanding of the issue or exploit. It will also save my time and it’s likely a trivial effort for the reporter since they’ve the context and knowledge of the issue loaded up and ready to go.