Orbital @ orbital @infosec.pub

Posts

3

Comments

82

Joined

2 yr. ago

Yes, I've recently started wearing an analog watch. No WiFi, Bluetooth, etc.; just the time and date. I find it elegant in its simplicity.

Please see rule #4.

That CVE is in the Linux kernel, which CalyxOS should be handling for you, via their security updates.

I think you'll be fine as long as CalyxOS is supplying your device with Android security updates. As an average user, with no reason to be the subject of targeted attacks, firmware vulnerabilities are not a huge concern (assuming your OS and other software are up to date with security patches).

Of course, if someone hostile gets physical access to your device, firmware becomes more important. Remote exploitation of a firmware vulnerability typically requires first exploiting a software vulnerability (and CalyxOS is updating your OS software). With physical access, one might skip that step by connecting a cable to your phone and interacting with it directly.

Cadillac also produces cars like this for IMSA (GTP class) & WEC (Hypercar class).

Don't waste your time. It's possibly the worst movie I've ever seen, and I've seen a lot. My impression was that they tried to make a horror-comedy for the Gen Z TikTok crowd but forgot or failed to make it either scary or funny.

I'd rather see a photo of the set, after you build it, than a photo of a box.

As you suggested, I suspect it's the rare combination of additional extensions that's contributing to your uniqueness in a fingerprinting sense.

Firefox's built in "Enhanced Tracking Protection" already does a lot of this work for you, especially if you select "strict mode." Go ahead and try this extension if you prefer. But remember to be selective with the extensions you add to your browser in general, as they also present an opportunity to introduce vulnerabilities.

I definitely support federal Privacy legislation. Here's at least one take on the issue.

I never knew anybody who used it. I had one contact on ICQ. Everybody else used AIM.

Tildes fits that description. The posts are text-only or links to websites. No memes.

I use that site in addition to Lemmy, not as a replacement but a supplement. It's just a different flavor of discussion.

It's invite-only but I can give you an invitation code if you're interested. Take a look, see if you like it, and send me a private message if you want an invitation.

Yes

Butt Truckers

See rules 5, 6, and 7 in the sidebar.

Yes, SELinux is enabled (in "enforcing" mode) by default in Fedora. In my experience, it doesn't hamper usability.

I remember seeing old advice from blogs and listicles about turning it off, on the theory that it might get in the way. But it's better to leave it on if you care about security -- especially if you want to learn.

When SELinux blocks a piece of software from doing something sketchy, an alert is generated to explain what happened and why. That's rare but it's a learning opportunity for you, not to mention preventing a potential security threat.

...with ads.

Non-paywall link: https://txtify.it/theatlantic.com/technology/archive/2024/04/elo-ratings-are-everywhere/678129/

Romopolis, by the same developer, is also free right now. It's usually $4.49 according to the Play Store page.

Shattered Pixel Dungeon, for Android