I find myself idly wondering if software installers should have some knowledge of the weak or default passwords of the Unix world, so if you're trying to open an attack surface the absolute lowest of the low-hanging fruit has to get clean out first. "It looks like this computer's root password is a widely used default, so sshd will not start. Please secure your root account or add "--0wn-m3" to the command line to continue.
the openSUSE installer runs cracklib-dict when it asks you for the root password to set up. You can still tell it to use whatever crappy password you chose, but at least it warns you...
I just got an alert that Nvidia’s market cap crossed $4.5T. I know I am mixing elephants and telephone poles here, but it seems weird that the manufacturer of IT components has a market cap that is almost 15% of the GDP of the US for 2025 🤔
Imagination engine or a can of worms? OpenAI is taking on TikTok by releasing a rival video-sharing app that focuses entirely on helping people create AI-generated videos. pcmag.com/news/openais-answer-…
Day one of All Systems Go is now over, and we’re chilling at the social event. Tomorrow, my colleague @berto will present his work on Dirlock in the afternoon, don’t miss it!
In the Linux world there are several tools and technologies to encrypt data on a hard drive, most falling into one of two categories: block device encryption (like LUKS) or stacked filesystem encryption (like EncFs or gocryptfs).
Updates are a critical piece of managing your fleet of devices. Nowadays, Yocto-based distributions can utilize layers for well-established update mechanisms.
🇺🇳 The United Nations Secretary-General has launched an open call for candidates to serve on the UN's Independent International Scientific Panel on AI -- 40 leading experts to provide impartial, evidence-based assessments on the opportunities, risks, and impacts of AI.
➡️ Learn more and apply at un.org/ai-panel ... the call is open through 31 October.
Adding my personal encouragement to apply for this toward anyone with a scientific background with more disruptive/contrarian views on AI, and especially those from global majority countries. We need better diversity in these groups to help influence better, smarter policy. Let's make it happen!
This release targets Android 16 and fixes a crash. Sadly, Google removed support for controlling screen orientation, so this functionality had to be removed.
Catima now also includes ACRA in the FOSS release for crash reporting. If a crash occurs, a dialog will appear to ask you to report the crash. Reports are never sent automatically and you can always review it.
Target Android 16
Fix possible crash after removing image from card
Remove "Screen orientation" feature (Google removed the ability for apps to control screen rotation when targeting Android 16)
Ad...
To explain the crash reporting flow in more detail:
When a crash occurs, a dialog window will show up. This dialog window will ask you if you are willing to report the crash and ask you what you were doing when the crash happened.
On accepting reporting the crash, your mail client will open with the crash information in an attachment (as plain text file), so you can review and cancel the report if you want.
If you never want to be asked, you can disable the reporter in settings.
I understand some users will worry. I always worry about these things too.
Let it be known that I hate nothing more than people collecting information without consent. I have put considerable effort into testing the flow to try to make it as privacy-respecting as possible.
On a related note, did you know that Google Play collects crash reports for all your apps by default? You can disable this by opening Google in devices settings, going to "All Services" and disabling "Usage and diagnostics".
I have updated the privacy policy for Catima to reflect this change and to explicitly document how you can opt out of Google collecting your crash logs if you run a version of Android with Google services: catima.app/privacy-policy/. I hope this helps and is clear to everyone.
So yeah, not the most exciting release, but bumping the Android target SDK should at least keep us from getting kicked off Google Play for a bit longer again. Let's hope Google doesn't break any functionality next Android release!
If you really care strongly about the rotation functionality and have updated the app missing it, please see downgrade instructions on the FAQ: catima.app/faq.
I try to keep supporting things as long as I can, but sadly, this one is out of my control.
@Bodo Sylvia weiß, wann unser Updater läuft – sie ist schließlich im IzzyOnDroid Team 😉 Und sie versucht immer, das Release rechtzeitig fertig zu haben. Klappt nicht jedes Mal, manchmal kommt halt was dazwischen – aber in ca. 95% der Fälle trifft sie es ziemlich genau 😉
dell, they make good machines at least the the inspine 15 3567 that I own with 8gb ram, 1tb hdd and Version: Intel(R) Core(TM) i5-7200U CPU @ 2.50GHz Voltage: 0.8 V External Clock: 100 MHz Max Speed: 2500 MHz Current Speed: 2400 MHz Status: Populated, Enabled could anyone tell me does this support vtd?
@tardis I should have mentioned, i'm respond to you via a win10 vm using vmw workstation, and the fanns bareley spinning, it's silent. cpu is at 51 degrees ambient temp is 43 degrese c
Interesting if that had an ssd it'd be awesome! It'd be so much faster. It should support all kinds of virtualisation though, if that's what you meant. Also, I wouldn't put windows vm on a windows VM, just install original win 10 if you can. :)
Apple has built this mythology of a user-friendly OS. But as I'm setting up a test Mac for development builds, I'm struck by the many tiny UX papercuts.
Case in point: 1) Erase Mac -> connect to WiFi and enter password. 2) Install: select WiFi again, enter password you just typed again (!); no password reveal option 3) "New Apple Account" - no password reveal option; short input field with poor scrolling behavior; doesn't tell me early that an account already exists with my email address
And that's without even getting into all the weird macOS-isms that have been around for decades, like the "drag this icon to this other icon to install the app".
I'd love to see a more thorough analysis of UX papercuts and mental model assumptions between macOS vs. Ubuntu or another Linux distro that puts emphasis on usability.
Oh wow, the "Forgot password" flow is amazing as well.
- "We locked your account for security reasons. Follow the link in your email to reset your password." - Email: "Click this link to reset your password.:" - Webpage: Please enter your password to continue. [tiny link: Forgot password?]
Just fantastic work, Apple. Really thought this through.
I don't know who thinks Apple OSes are user-friendly. It's just we have no alternative at least for smartphones, at least no viable alternative for some niche cases, but otherwise... I'd never use an Apple thing if I had a robust alternative.
#GitHub - Please make it possible to remove the autogenerated source archive links from releases. This is a cause of endless confusion as people accidentally download the wrong source code archive instead of the actual release one. I got bitten by this just moments ago. github.com/openssl/openssl/iss… - sure it was my own mistake to accidentally pick the wrong link, but just making this possible is stupid and would be trivial to fix.
I know #curl project gets annoyed by this issue periodically as well and has requested this feature from GitHub. EDIT: The request: bagder.github.io/github-feedba…
OpenSSL 3.5.4 release uses an unexpected base directory openssl-openssl-3.5.4. All earlier releases use openssl-x.y.z. This unfortunately breaks various automation that expects the old base directo...
I pay too much for healthcare and am always looking for a cheaper way to buy my ongoing prescriptions, so earlier this year I signed up for Mark Cuban's Rx company that sells things at cost plus 15%. It's been great so far, cheaper than anything else and the shipments are fast.
I'd like to have a #Chrome extension that would automatically accept all #cookies, because I'm super tired of those banners, and some of them are even not accessible for screen reader users. What do you folks use for that? #Help
I am totally blind. But I am not sure what you mean about inaccessible banners. I've never seen anything related to cookies that was inaccessible. These things are just annoying!
@dandylover1 It's when you press Accept All, and the banner either doesn't go away because devs are idiots and the keyboard doesn't press the button, or it does go away, but only visually, because again, devs are idiots and instead of hiding it they make it 1 by 1 pixel, so it's sort of hidden, but still can be seen by us.
А главное что это всё настолько бессмысленно, оповещения и прочее. Кто хочет собирает какие пожелает данные и продаёт их, без всяких там. Вспомнился один чувак из твиттера - отправил ему ссылку на новость чтобы самому не заниматься пересказыванием. Отказался смотреть, потому что оно запрашивает разрешение на хранение кукис или что-то вроде. Я даже не знаю какой это уровень паранои.
Sometimes, I say things that go over people’s heads. It’s a penalty I pay for being a partially nonverbal cog sci buff. Or rather, I’m still coming out of my nonverbal stance. Anyway, so then I try to simplify what I’m trying to say. But I’m just seen as arrogant instead, because I say the wrong thing. And then I get judged for saying the wrong thing. So, I’m done with group convos with some people for awhile. Today is the last day of a three-month break I’ve taken from the virtual. And you know what? Everyone I talk to since then? I make sense to them. I’m not scaring anyone. I’m not overwhelming anyone with data. I’m not coming off as arrogant. And that’s when I realized, I really am too much for some people. At least, for now. And I’ve learned to be okay with that. If me trying to practice my verbal skills is triggering figurative you, then we don’t need to talk. Because, I’m not here to scare a dang soul on this planet.
@tardis Well, different people will receive the same message differently based on their knowledge and experiences. So, I’m working on tailoring my communication style to people who think differently than I’m used to. That’s my area of opportunity.
If it's a self change, for you, and makes it easier for you, go for it. I think your style is fine, I mean, I don't see you expressing yourself any different right now, than any other average human. But then I haven't interacted much with people lately. Antisocial much. LOL.
What I wanted to say was, that the way we express ourselves is just as important as the difference in thinking of each individual. The best we can do is keep an open mind and try to understand. But change is for ourselves, not for others. If we want to change the way we express ourselves, that's absolutely valid, but I do not see changing one's self to suit different people as a thing, particularly, because I think it does a bit of self harm to our own selves. All we can be is our authentic selves, no matter what people thin. There are people who understand our ways of expression, and will not want us to change to make it easier for others. That, however, doesn't mean we have to not try and understand where others are coming from with the way they express themselves.
One of the new skills required to get the most out of AI-assisted coding tools - Claude Code, Codex CLI, etc - is designing agentic loops: carefully selecting tools to run in a loop to achieve a specified goal. Do this well and you can solve many coding problems with brute force
Here's my expanded explanation of what it means to design an agentic loop, how to do it safely (while running in YOLO mode!) and kinds of interesting problems this approach can be used to tackle simonwillison.net/2025/Sep/30/…
Coding agents like Anthropic’s Claude Code and OpenAI’s Codex CLI represent a genuine step change in how useful LLMs can be for producing working code. These agents can now directly …
One scenario where I used this is third-party API integration. You need web search (for API docs) and a tightly-scoped credential (read-only was good enough for us) to do this well. I didn't even need yolo mode, unrestricted curl access was good enough.
Today, we’re officially introducing Kagi News: a once-a-day press review that cuts through the noise. Global stories, community-curated sources, and zero tracking.
Get a focused daily press review in 5 minutes with facts, multiple perspectives
No doomscrolling, no clickbait, just quality news that respects your time and intelligence.
When Russia implements mass surveillance, we shake our heads and call Russia a dictator ruled country. When EU wants to do the same, it is "for the children" and it is expected that everyone nods their heads in approval.
This is so spot-on!
I'm happy they have received over 55.000 votes so far. 50.000 votes from citizens who can vote in Danish parliament elections are needed to get this proposal processed in the Danish parliament.
Now I just hope those 55.000+ votes so far are 100% valid votes. And I hope this proposal will double in the days to come.
Opposition to Chat Control within Denmark is growing. Fast. If you are a Danish citizen, please consider signing the Chat Control petition: borgerforslag.dk/se-og-stoet-f…
At 50 000 signatures, it is automatically submitted to the parliament and undergoes the standard legislative process, including potential debates, review, and vote.
“Given the press and popular support of using a specialized font as a remedy for dyslexia, it is critical to highlight that results from this study failed to identify any positive effect for using it. Currently, there is no documentation to support a specialized font is an evidence-based practice.”
Unfortunately, it looks like dyslexia-friendly fonts (Open Dyslexic, Dyslexie) don’t actually work.
A single-subject alternating treatment design was used to investigate the extent to which a specialized dyslexia font, OpenDyslexic, impacted reading rate or accuracy compared to two commonly used fonts when used with elementary students identified .
I know, it's been a lot the last two days, so I'm going to summarize some principles on why the "don't trust the organization" screaming bothers me:
Good orgs are _groups of people._ By casting doubt on the organization you're doubting the people in the community around you.
Good communities are built on trust. If you don't trust the people around you, you cannot be relied on by those same people. It takes a lot of effort to reintegrate into a healthy community if they're used to no trust organization.
That work is important, but it cannot come at the cost of reducing overall trust in the community. You cannot let a distrustful troll cause damage and expect to keep a high trust community.
This is the tension at the heart of community management and why folks who do a lot of it have very different ways of talking about bad actors than average.
Also, all of this should be culture. Community managers are people too, and communities should outlive their current people.
Really, just taking advantage of the fact that I am no longer formally affiliated with _any_ Python Code of Conduct enforcement to talk about the actual reality of being a Code of Conduct enforcer.
More importantly: The formal reprimand stuff? That sucks so much. No one likes doing it. It's worse because the number of cases that come back after needing a suspension are so few.
I’m going to just step in as someone who has run multiple communities (including multiple Python user groups), and use modified CC for every community I’m in charge of.
Siímvás, v neděli 5.10. budu v Karlových Varech cca od 10 ráno, tak kdybyste chtěli skočit na pivo, kafe, steak (prosím ne cizrnu, veganský oběd a tak) a měli jste pocit že zrovna Cynik je ta společnost, co by vám vyhovovala, dejte mi vědět 😇 Rád vás poznám osobně
Federico Mena Quintero
in reply to mhoye (temporarily spooky) • • •