dack

joined 1 year ago
[–] dack@lemmy.world 57 points 1 year ago (7 children)

This is why Google has been using their browser monopoly to push their "Web Integrity API". If that gets adopted, they can fully control the client side and prevent all ad blocking.

[–] dack@lemmy.world 2 points 1 year ago

Nvidia drivers have had way more issues with mobile chips than with desktop. GPU compute workloads (including things like Blender) are very well supported. Nvidia on Linux has dominated the compute market for a long time.

[–] dack@lemmy.world 6 points 1 year ago

No, it's significant because attackers can pump out way more emails while also making them customized to their targets and constantly changing to help avoid detectors.

[–] dack@lemmy.world 4 points 1 year ago

The TPM releases the key to the OS at boot time. Without that, there would be no way for the OS to load (assuming the root FS is encrypted).

The key is bound to PCRs in the TPM, which control under what conditions the key can be released. For example, it can be tied to secure boot, bios settings, etc.

[–] dack@lemmy.world 6 points 1 year ago

Aside from the group suggestions, you could also use ACLs. https://wiki.archlinux.org/title/Access_Control_Lists

[–] dack@lemmy.world 44 points 1 year ago

They almost certainly won't. Every so often they make a big show of these raids and then quietly drop it later. Check out some of Jim Browning's videos to see how the raids work out.

[–] dack@lemmy.world 17 points 1 year ago

Arch Wiki for more general info. Official docs/man pages of whatever thing you are working with for details.

[–] dack@lemmy.world 5 points 1 year ago (1 children)

Greatly increasing taxes for the super wealthy and closing tax loopholes would be a good start.

[–] dack@lemmy.world 0 points 1 year ago* (last edited 1 year ago) (1 children)

With rootless containers, even root in the container is basically useless anyway because it truly runs as a fake ID on the host.

I've seen this repeated a lot, but I'm not really convinced running as root inside containers is a good/safe thing to do. User namespaces can provide some protection for the host, but that does nothing for the rest of the files inside the guest. For example, consider a server software with an arbitrary file write vulnerability. If the process is running as a low privilege user, exploiting the vulnerability might not really get you anywhere. If it's running as root, it's basically a free pass to root privilege and arbitrary code execution within the container.

[–] dack@lemmy.world 1 points 1 year ago

H264 does work fine in the paid version. The lack of AAC support is sometimes an issue though. For footage in AAC+H264, I usually just run it through ffmpeg to transcode the audio to PCM and keep the video as-is.

[–] dack@lemmy.world 54 points 1 year ago

Honestly, I think his communication here is fine. He's probably going to offend some people at NIST, but it seems like he's already tried the cooperative route and is now willing to burn some bridges to bring things to light.

It reads like he's playing mathematics and not politics, which is exactly what you want from a cryptography researcher.

[–] dack@lemmy.world 21 points 1 year ago (2 children)

I think they already have. I held off on Wayland on my main machine for a long time due to Nvidia issues. For example, I was getting rendering issues where some windows/popups would be totally invisible until I moused over them. Those issues are now gone, and I've been running Wayland for the last few months with no problems at all.

view more: next ›