Surely that will help with your declining population issues.
The new vulnerability, assigned CVE-2024-6387, allows for unauthenticated remote code execution (RCE) with root privileges, posing a severe threat to affected systems.
Oh, fuck. Guess this is my day now.
Even if you're poking at a black box and are reporting that "it acts funny when I poke it this way." I'm my opinion, a reporter should send along a script or at least explicit instructions on how to repro.
I take the report more serious since it demonstrates you have an understanding of the issue or exploit. It will also save my time and it's likely a trivial effort for the reporter since they've the context and knowledge of the issue loaded up and ready to go.
![](https://lemmy.world/pictrs/image/72809afc-ace3-46b0-b854-6ef2130e54ca.jpeg?format=webp&thumbnail=512)
YouTube Video
Click to view this content.
Missing key info. Read the article.
Being a 3rd place you can't even walk to because you have to cross those huge parking lots and all the traffic they bring. Not to mention none of them had decent places to actually collect and hang out.
Ah, I thought you were using the shower as a way to cool down the air for your house. This makes way more sense.
Any tips other than the fan...
Agree that people like to fluff the severity of bugs they report. It's better for prestige and bounty payouts. But this is a little more nuanced.
"While I didn't really intend the module to be used for any security related checks, I'm very curious how an untrusted input could end up being passed into ip.isPrivate or ip.isPublic [functions] and then used for verifying where the network connection came from."
It's interesting, that it would be hard to make a case that there was a "vulnerability" in the ip
package. But it seems like this package's entire purpose is input validation so it's kind of weird the dev thinks otherwise.
Recurring incidents like these raise the question, how does one strike a balance? Relentlessly reporting theoretical vulnerabilities can leave open-source developers, many of who are volunteers, exhausted from triaging noise.
The researchers need to provide proofs of concept. Actual functional exploits.
I've never gotten this to work very well. Though I didn't do it with a fan. Any tips?
If you have cool nights, setup fans up at night to bring the house down to a lower temperature. Close everything up in the morning when the outside temp starts rising above your inside temp. If your place is insulated reasonably and there's no excessive sun from windows, it will stay cool for the day.
Protip: Setup the fans in all rooms on one side of a chokepoint in your house/apartment (stairwell/hallway) to exhaust, to encourage airflow. Open up all the windows on the other side for intake. It'll also help reduce pockets of hot air left over from the day before.
And what would this amendment say?
Also, some of these Live Nation places are literally just fucking Old People places, like the local Elk’s Lodge. Nobody is doing wild concerts at the fucking Elk’s Lodge.
Some of the best shows I've ever been to were at an Elks or VFW. Often they're the only venues available in suburban and rural areas. And they're usually priced reasonably.
As if it’s just a given that online purchases (the increasing majority of all economic activity) is subject purely to a ToS and not the laws and protections granted to us by the government.
What? Of course they're still subject to laws. There's so many laws and precedent based around banking that it requires specialized lawyers.
I wish that video was longer.
Finally get involved in politics?
Did you get high, because I'm high right now.
As a very long time Arch user I wouldn't say "easy" like everyone else seems to. I absolutely would not suggest it for a first distro for someone, which is what I would classify as the "easy" level.
But if you're comfortable with using Linux, the terminal, and being able to follow written documentation you'll be able to do it just fine maybe with a little frustration the first time. If you're installing to a laptop, make sure to look up your model on the wiki first.
Connect with friends from VIVERSE and Mastodon servers on VIVERSE. Stay tuned for the upcoming rollout of more social features!
![VIVERSE Joins the Fediverse: Cross-Platform Connection Made Possible](https://lemmy.zip/pictrs/image/421e9659-fd3d-4f67-9175-6deccc80632a.webp?format=webp&thumbnail=256)
Looks like it's so far just surface-level integration with Mastodon friends/DMs. But it's still nice seeing the fediverse embraced and integrated at all by what was once a walled garden.
Twitch on Friday ended the contracts of its safety council members, which consulted on trust and safety issues related to children on Twitch, nudity and more.
![Twitch terminates all members of its Safety Advisory Council](https://lemmy.world/pictrs/image/6bb22ff5-4b87-47de-a9c4-59a08638d852.jpeg?format=webp&thumbnail=256)
- Twitch on Friday will end the contracts for all members of its Safety Advisory Council, a resource made up of industry experts, streamers and moderators, who consulted on trust and safety issues.
- The council has advised Twitch on “drafting new policies and policy updates,” “developing products and features to improve safety and moderation” and “protecting the interests of marginalized groups,” per a company webpage.
- On May 6, council members were called into a meeting after receiving an email that all existing contracts would conclude on May 31, 2024, and that they would not receive payment for the second half of 2024.
FuryGPU is currently capable of running Quake at 720p and 60fps.
![New open source GPU is free to all — FuryGPU runs Quake at 60fps, supports modern Windows software](https://lemmy.world/pictrs/image/ccd4f79f-00cb-404c-b5cb-35b8d2b884fa.jpeg?format=webp&thumbnail=256)
After the publication of this article, Fortune reported the SEC seeks to classify ETH as a security.
![Ethereum Foundation Faces Inquiry From a Government; Fortune Says SEC Investigating ETH](https://lemdro.id/pictrs/image/b8372d2a-6ef8-4153-9c24-d9c7b60accb3.jpeg?format=webp&thumbnail=256)
Now that RedHat shut down their security mailing list, are there any good alternatives? It's super useful seeing the various exploits and patches to be able to be alerted to anything relevant you should take care of immediately.
If you have any recommendations for adjacent security topics (outside of Linux), those are welcome too.
The wreck was caught on camera as the slow-rolling trolley going off the tracks, into an SUV and into the stone façade of the old Blue Bell Inn (sometimes referred to as a tavern) that has sat on the corner since 1766.
!['A SEPTA trolley just went through my living room': Crash leaves historic Philly building damaged](https://lemmy.world/pictrs/image/63ca81fd-4bf4-4756-a3dd-302f42b4b6b9.jpeg?format=webp&thumbnail=256)
The wreck was caught on camera as the slow-rolling trolley going off the tracks, into an SUV and into the stone façade of the old Blue Bell Inn (sometimes referred to as a tavern) that has sat on the corner since 1766.
!['A SEPTA trolley just went through my living room': Crash leaves historic Philly building damaged](https://lemmy.ml/pictrs/image/8a619381-9960-4db6-9626-057872e35866.jpeg?format=webp&thumbnail=256)