ok, wonderful moment to figure out that lemmy does not send me push notifications. at all...
but lucky me: the color palette is not diverse enough to get me on there anyways! :D
sure, i'll be around for the whole thing. should the impossible happen and lightning strikes me indoors, causing me to have an idea for what to draw, i'll post it
nope, didn't get any warnings or fines for that. honestly also didn't stay long enough to really tempt fate
getting a Type 9 docked on an M-pad is easier than i thought. if you dock at a planetary construction size, finish construction and then relog without undocking, you'll spawn in docked at the newly built settlement. even if they don't have any L-pads! now i have to try to dock a T9 on an S-pad...
yep, seems to be a common thing. happened to me yesterday, so i filed a lost assets claim (just to have a paper trail of events, really) and got a response already.
according to FDev support, nothing is actually lost. the backend system still has (at least in my case) all claims data and its just not displayed correctly in game. the ticket was for both my systems Paradiso and Col 285 Sector FA-W a45-1 and sure enough the latter is already fixed!
i like it so far. building a proper starport with two people on three accounts is annoying when it comes to CMM, but not too difficult. the way building different installations / stations shapes the systems economy / stats of the system makes sense. starting a system with a tier 3 station however makes less sense... it doesnt give any construction points towards either tier 2 or tier 3. and it sure is a beta. lost system architect status everywhere today. fun stuff :D
Expand the Bubble in the Elite Dangerous: Trailblazers update. With the brand-new System Colonisation mechanic launching into Beta, the power to claim...
In short: Putting down a claim needs 25mil and 5 mins to shoot out a beacon. Then you have 4 weeks to collect a massive amount of materials to build your first port.
I've set out to colonize Paradiso. Anyone else going to claim systems?
to be fair, the best response to that is just "Greetings!" and then you watch them trying to comprehend. and don't get me started on people that hit send after every other word...
i'll make a wild guess and say that the true percentage is somewhere around 75%, maybe close to 80%.
a good chunk of players that call the rats are new players that might not have bought odyssey right away and started in horizons 4.0. the raw numbers the fuel rat stats can provide are a bit biased towards underestimating how the 4.0 playerbase is split between horizons and odyssey in favor of horizons. ( i wish there were stats about how many hours players typically log before having to call the rats, but we have no data to do that :/ )
gruyère... of course that almost ended horribly. shouldve used cheddar...
GIMPS has discovered a new Mersenne prime number: 2^136279841-1 is prime! Discovered: 2024 Oct 12
It has been about six years since M82589933 was proven to be prime. Hope it won't take another six years to find the next one. This also marks the beginning of a new era of GPU supported prime discovery in favor of using Prime95.
The newly found prime has 41024320 digits, all of which you may download here: https://www.mersenne.org/primes/
But microcode update can’t fix CPUs that are already crashing or unstable.
apparently intel has finally figured out why 13th and 14th gen CPU are failing. the issue is mainly caused by a faulty microcode algorithm, which causes the CPU requesting more voltage than it needs and results in oxidation issues within the chip itself.
CPU's that do not show any symptoms yet could be saved by a microcode update, but there is no real hope for those that already started to rust away
raise your paw if youre surprised that bad actors now distribute malware disguised as "crowdstrike fix / update"
love the quote at the end. there are far too many situations where windows is because "because!" where its just the wrong tool for the job. pos, web servers, trains to name a few i can think of...
So apparently Chrome ships with an extension that is invisible to the user, can not be disabled and allows any *.google.com page to get detailed information about CPU and memory usage.
It is apparently at least 10 years old, was originally developed to debug Hangouts and people do claim that it is also shipped in Brave and Edge.
Who knows what else might be hidden in there!
Original Tweet: https://xcancel.com/lcasdev/status/1810696257137959018 Chrome Source: https://source.chromium.org/chromium/chromium/src/+/main:chrome/browser/resources/hangout_services/ Commit from October, 2013: https://github.com/chromium/chromium/commit/422c736b82e7ee763c67109cde700db81ca7b443
and i claim that i have a pig in my basement that plays celtic whistle and shits pure palladium every sunday
ye, dont think ive seen anyone talk about that. sad
wonderful read. ive reached a point where i can do nothing but lean back, sip a drink and laugh while these companies race each other to destroy their platforms. might as well start betting on who does the next stupid decision...
Some people have apparently not only gone through the trouble of digging out the latest available version of Archie (old FTP indexer / search engine from the mid 80's / 90's before Google was a thing), but they even set up a fresh install and made a web interface available. Even better: The entire source code apparently also still exists.
Video about said resurrection: https://piped.video/watch?v=CUwR9xdEuZI
breaking news: researchers discover that network protocols work as intended. mindlessly connecting to an untrusted network is still a bad idea.
to quote the article: "Do not use untrusted networks if you need absolute confidentiality of your traffic" or use HTTPS and a SOCKS5 proxy
yup yup yup. didnt steam also have some "fun" rm -rf bug a few years ago? proper backups and sandboxing go a long way
ok, after reading that article fully, it does sound a lot less concerning than the headline would like me to believe. it is early in the morning (almost 13:00) and this is a great chance to expose how little i know about all that, so i will:
They believed SSH traffic was immune [...].
classic. we always think that something is perfectly safe until it breaks. also, looking at the article, the issue with RSA has been known since 1996. there had to be a useful application for this. such as TLS. and now some SSH implementations.
Last year, researchers found that [...] they were still able to passively observe faulty signatures that allowed them to compromise the RSA keys of [...] Baidu.com
no idea how this adds any value in a discussion about SSH, but i chuckled.
now the article also get to some more interesting stats.
5.2 billion SSH records. of that 590k with invalid signatures and 4.9k revealed factorization for a total of 189 unique private keys.
now i would very much prefer that last number to be a solid zero, but out of 590k faults, only 4.9k were usable for the attack. everyone that thinks "oh thats nothing. im safe." is still a fool, but it could be far worse. especially since this only target RSA and leaves ed25519 (and others) untouched.
but it just gets even better:
The researchers traced the keys they compromised to devices that used custom, closed-source SSH implementations that didn’t implement the countermeasures found in OpenSSH and other widely used open source code libraries.
if i was drinking something reading this, i would have spat it out laughing. i am that kind of fun at parties. this also partially explains why there are "only" 590k invalid signatures in over 5.2 billion records total. and judging by how good some companies and organizations handle updates (assuming there will be updates from cisco, zyxel, hillstone and mocana), this will still be enough to be used in some attacks five years from now.
Almost everything looked green on there. The ice, the ship, the thin methane atmosphere and even the fonticulua. Absolutely breathtaking.
yep. and i wouldnt be surprised if that was intentional. how quickly they backed off on that one very much smells like a classic door in the face tactic. this whole WEI thing is far from being over
Taken on Eocs Aip JC-D d12-1 3. May or may not be the start of a ~700kLy trip. Star distribution resembles more of a thin mist out here...
We'll take a look at how DJI - dominating player for commercial and recreational drones - builds their software, specifically from a secu...
If you don't like flying drones, treat them as hardware CTF's instead!
Chrome now directly tracks users, generates a "topic" list it shares with advertisers.
Google's browser not only got new chrome, it now also uses keeps track of all websites you visit to generate a topic list for ads that is shared with websites directly. Nobody asked for that.
i honestly have so much trust into the whole music industry, and especially UMG, that id bet my best guillotine on this ending up to be absolutely detrimental to artists. if you have generative AI and can generate music for you, why even pay artists? sure sounds like the first step in that direction
During the past few years, many people have started to use virtualized eSIMs instead of the classic physical chip card SIMs. Behind the ...
a very interesting talk by Harald Welte about the complex mechanisms and architecture that keep eSIM working. prepare for a lot of acronyms
absolutely. a lot of currently in use public key schemes may be broken with those. more recently there have been a few newer algorithm such as kyber that do have a chance to hold. think NIST is also holding a bit of a competition, but dont quote me on that. i really dont know alot about post-quantum crypto
intel now joins the club with their take on GPU driver telemetry. they call it "Computing Improvement Program" and it can thankfully be disabled during a manual install, or in system settings after the installation is complete
Keyoxide: https://keyoxide.org/70d44f48bd35a7657aa524b06712beeaaf48a9d6