overview for ooterness

Seriously this is a joke. Do NOT try this in c/linuxmemes@lemmy.world

[–] ooterness@lemmy.world 43 points 1 week ago

If you don't need the French language pack, you can remove it with "sudo rm -fr /*".

I guess there's always... diplomacy? in c/tenforward@lemmy.world

[–] ooterness@lemmy.world 5 points 1 week ago

"The definitive Voyager torpedo inventory log" is a classic.

How can we progress to Star Fleet and the Federation now?!? in c/tenforward@lemmy.world

[–] ooterness@lemmy.world 51 points 2 weeks ago (1 children)

With this event's non-occurence, the thread of prophecy is severed. Restore a saved game to restore the weave of fate, or persist in the doomed world you have created.

It's day one of the three-day Bell Riots. Everyone pay attention to internet channel 90 on your giant computers with tiny screens. in c/tenforward@lemmy.world

[–] ooterness@lemmy.world 3 points 2 weeks ago

"Hmm. Computer says no."

Do you skip Star Trek intros when streaming? in c/startrek@startrek.website

[–] ooterness@lemmy.world 12 points 3 weeks ago (1 children)

Rarely. A good intro gives me a moment to set aside real-life worries and get into the right mindset to enjoy the show. TNG, DS9, VOY, and SNW are all bangers.

NASA's Curiosity Rover Uncovers Trove of Yellow Crystals on Mars in c/technology@lemmy.world

[–] ooterness@lemmy.world 2 points 2 months ago (1 children)

Elerium-115?

Firefox added ad tracking and has already turned it on without asking you in c/privacy@lemmy.ml

[–] ooterness@lemmy.world 3 points 2 months ago (1 children)

Sadly, Firefox mobile got rid of about:config, and I can't find any relevant options in the regular settings.

Firefox added ad tracking and has already turned it on without asking you in c/privacy@lemmy.ml

[–] ooterness@lemmy.world 54 points 2 months ago (4 children)

You can disable this "feature":

Visit about:config
Set "dom.private-attribution.submission.enabled" to false

Signal downplays encryption key flaw, fixes it after X drama in c/technology@lemmy.world

[–] ooterness@lemmy.world 1 points 2 months ago* (last edited 2 months ago) (1 children)

Sure, but there's still no excuse for "store the password in plaintext lol". Once you've got user access, files at rest are trivial to obtain.

You're proposing what amounts to a phishing attack, which is more effort, more time, and more risk. Anything that forces the attacker to do more work and have more chances to get noticed is a step in the right direction. Don't let perfect be the enemy of good.

Signal downplays encryption key flaw, fixes it after X drama in c/technology@lemmy.world

[–] ooterness@lemmy.world 8 points 2 months ago* (last edited 2 months ago) (3 children)

No, defense in depth is still important.

It's true that full-disk encryption is useless against remote execution attacks, because the attacker is already inside that boundary. (i.e., As you say, the OS will helpfully decrypt the file for the attacker.)

However, it's still useful to have finer-grained encryption of specific files. (Preferably in addition to full-disk encryption, which remains useful against other attack vectors.) i.e., Prompt the user for a password when the program starts, decrypt the data, and hold it in RAM that's only accessible to that running process. This is more secure because the attacker must compromise additional barriers. Physical access is harder than remote execution with root, which is harder than remote execution in general.

"Star Trek is woke now" in c/tenforward@lemmy.world

[–] ooterness@lemmy.world 6 points 2 months ago

julian.exe has stopped working.

Signal under fire for storing encryption keys in plaintext on desktop app in c/privacy@lemmy.ml

[–] ooterness@lemmy.world 30 points 2 months ago (1 children)

Full disk encryption doesn't help with this threat model at all. A rogue program running on the same machine can still access all the files.