Respectfully I think this is a minimal attack vector in this case due to the limited character set of urls. But thanks for the callout, I didn’t know there was a name for this sort of attack.
- 0 Posts
- 13 Comments
Joined 1 year ago
Cake day: June 14th, 2023
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
2·8 months agoAs an american who shops and walks my groceries home like a european, the self checkout is the only option for me. I must have the ability to choose where to put products to keep my bags/backpack balanced to my liking and to prevent bags from failing on my walk home. Stranglely in the us, i risk approaching the “self checkout item limit” which is definitely more social expectation than actually enforced by staff.
A more specific question for you: how often do you encounter scales on self checkouts?
2·8 months agoThis is an interesting piece of kit, though I’m curious who the target market really is? Frankly I would be more comfortable regularly rotating my hardware security key’s password than I would be manually keying in my 2nd factors pin every time I need to use FIDO2 or TOTP. This would almost appear to be an excessive amount of security for me as an infosec professional which honestly makes me suspect it’s targeted towards a paranoid audience. Not that this wouldn’t have it’s applications. As a backup security key to be stored in a secure location this is definitely intriguing, but I can’t imagine using it on a daily basis.
Stupid as it is my biggest complaint is that none of them seem to have amoled dark mode. Been using and enjoying fennec but I really want my perfect blacks back.
941·9 months agoForget the technical details. I work in a corporate security department and if yours finds out what you’re doing there’s high odds they would absolutely hate it. I mean it likely isn’t an issue for org security (assuming they’re using bitlocker appropriately etc.) But not everyone over security is so rational and there are edge case attacks which may even trouble more sensible individuals. Either get permission, expect to do this in secret, or better yet just don’t.
3·9 months agoYeah. Though I’m more partial to the offshoot project https://overte.org/ Unfortunately though I think it’s another example of how far these sorts of projects are from feature parity with more established closed platforms.
Really exciting to see someone working on this. Though my immediate reaction is - not skepticism. Concern maybe? Similar projects in the past have hit walls in scope creep, lack of funding, and ocassionally lack of direction or differentiation. A truly well rounded social VR platform is far more complex than meets the eye. Even neosvr/resonite has run into large slowdowns and difficulties in stealing public adoption away from the totally centralized and closed behemoth that is vrchat. More recently I was sad to see Thirdroom (based on matrix) abandon development. Still, all the best to the project and I will definitely follow it closely.
Many thanks. I’d been meaning to find an equivalent but hadn’t stumbled on this yet.
I’m so tired.
24·1 year agoBit of a tangent but: How dangerous is ripping and distributing web content these days? Like how prevalent is watermarking or other methods that could identify the account the recording originated from?
My local city sub. I should really get off my ass and fix that… I’m sure I will eventually…
My money is on Florida.
https://www.youtube.com/watch?v=EtxCPQP00uU