Summary
A heap-based out-of-bounds read vulnerability exists in libcurl's HTTP/2 implementation. The on_header callback in lib/http2.c incorrectly treats header names and values provided by nghttp2...
yet I keep hearing how people find LLMs "useful" for summarizing or writing (!) documentation. I'm glad these reports are public to use as a - surely to be ignored - counterpoint.
I have strong doubts whether the survey is statistically representative. If you're not politically motivated, there's no incentive for you to fill out the survey, hence most users who filled it out are probably radical anti-AI activists.
Been seeing a survey going around fedi this morning about Discord's use of AI, but it's hosted on some other unrelated website, there's no mention of it on discord's blog and the first time I've heard of it is from mastodon, so, like, anybody got a source for this, or is this just someone playing games?
EDIT: The domain has been used by Discord in the past (see thread), which points to this survey being legit!
(I do still wonder why I heard it from Fedi rather than from Discord though)
I mean I filled it out, but I wanna make sure it's an actual thing before I share it around to my mates who use discord so I don't end up looking like a total bellend
Last question was something like "Would you stop using discord if we added AI" and obviously I answered no but also obviously I won't stop using discord if it goes even shittier because, like, I didn't want to use discord in the first place lol, a group chat moved to it from facebook and I couldn't make a compelling case for Jabber given that discord is easier to use, shitting it all up with AI isn't gonna change the fundamentals here
Today I've been reminded to be careful about inferring anything based on what I encounter as a research subject. I was participating in a project where a grad student was studying interactions between blind people and robots. The robots kept failing to correctly complete the tasks that I was supposed to be asking them to do. After I was finished, the researcher told me that the robots had been programmed to make those mistakes on purpose, since they are common mistakes that robots might make, and she was trying to learn about the way a blind person would react to these mistakes. I was glad that she told me this, since, until then, my take-away had been that these robots were early research prototypes that couldn't reliably perform tasks, but this wasn't exactly the right take-away.
The Samsung commercial with the couple rushing through a museum, pointing their phone at artifacts and asking Gemini what they are, as if museums didn't have an explanation next to the artifacts, before speeding away without even looking at the actual artifact, tells you everything you need to know about these sociopaths.
Migration from iCloud Photos to Immich in progress
Things I like:
* Easy to get going and seems much faster than my experience with Nextcloud
* Seems to support both HEIC and Live Photos and even displays them nicely in the interface
* Seems able to upload the photos directly from iCloud without having to download them all (a real win when you have more than 256GB of iCloud Photos and a 256GB phone
* Machine learning & recognition seem decent
Waiting to see:
* I do seem to need to keep the app open to upload reliably — but I am uploading 32k items so I figure this is probably a one-time thing
* It seems to stop uploading after every few hundred imports and grind all 6 cores I gave it at 100% for a few min — I assume this is the ML running over recent uploads though and will also be one-time (plus the WebUI stays working during this)
Generated this some time ago actually, when 4.5 came out, to see if it could do any better than its predecessors did, just had never shared all of the dumps. IDK why but I've been kind of obsessed with this groove for ages. The source for this was your actual recording of it, with the rhodes and whatnot, rather than my electronic version.
If you fancy dropping me a non-mastodon transcode of that for my collection I'd be grateful. I collect things of mine that people have run through there just for fun.
Alright, copying them into a dropbox place and then you can download as a zip. The ones based off this directly are funky funky extensions, this one particular is v4.5+ (3). Extending the groove is based on the groovesizer, which was my electronic rendition of that.
Have you heard any of the new shorts? If not, I draw your ear in-particular to 175. It's a different vibe from this, but maybe in the same sort of ballpark.
➡️ @playdate - Official Playdate account ➡️ @UncrankdPD - Fanzine for the Playdate ➡️ @Xanialasagna - Indie dev & designer working on Playdate games ➡️ @dave - Playdate staff member & typewriter fan ➡️ @pawprints - Indie game dev making Playdate & web games
Und zumindest der Duft davon (sowohl in trockener Form als auch aufgegossen) ist schon sehr angenehm. Aber der Tee selbst … ist nichts für mich, leider.
Fellow *non*-Americans—are you using any or all of the U.S. support for Israeli wars and the Israeli genocide on Palestinians, the U.S. attack on Venezuela, the annexation threats against Greenland, or other U.S. policy decisions to move away from U.S. products and services?
(Responses are anonymous. Please reshare for reach!)
Crashing Remixes – out now! https://Illenium.lnk.to/CrashingRmxCrashing ft. Bahari: https://Illenium.lnk.to/CrashingYDFollow ILLENIUM:https://soundcloud.com/...
Finally put the money where my mouth is: I’ve officially shifted 40% of my time into game development. What started as a late-night hobby 7 years ago is now a part-time job. This feels unreal and scary at the same time...😅
We're just over a week into 2026 and I've just found out that my father has lost his battle with Leukemia. He had just turned 54 on December 12th. I wouldn't have got into computers if it wasn't for my dad bringing home that custom built Windows 95 desktop PC in 2002/2003. My dad got me into video games. I would not have the love and passion for tech I do now if it wasn't for him. He served in the British army from 1990 to 2012. Very sadly, this battle he could not win. December 12th 1971 - January 7th 2026.
Servers described as "Glitch Mastodon" or "Hometown Mastodon" work just like Mastodon but have additional features such as larger post sizes, rich text formatting or local-only posts.
Mastodon's server software is free and open source, so programmers can tweak it to make their own versions. (Untweaked Mastodon is often called "Vanilla Mastodon".)
You can find good Glitch and Hometown servers to join or move to at:
Although there won't be any dedicated devroom for #accessibility electronics at #fosdem , nothing prevents us from hooking up in the cafeteria or something. Anyone interested in adaptive technology for the disabled, it will be great to meet you.
My fellow homelabbers: which sultion would you recommend if you would like to build a Spotify like Streaming Service for youre family with music you have in a local library? Important would be that there is an App for at least iPhone/iPad and that things like smart playlists, multiuser etc ist supported so everybody could use the same big catalog but with its own playlists, favourits etc. If have already found three projects which could be okay: Navidrome, Funkwhale and Koel. Any thoughts about this? Which route would you go? #homelab #selfhosting #spotify #navidrome #funkwhale #koel @homelab @homelab_de
Hey fediverse! At one point one of my followers posted a .reg file or script that added exclude this folder from Microsoft defender to the explorer context menu. But I’ve lost it. Can anyone help? #windows#win11 boost okay @FreakyFwoof
@jonathan859@FreakyFwoof Thank you! I just walked out the door. Andre, could you test this and stick it somewhere for the world to have and enjoy if it works?
Sorry, I can't resist showing you one more. "One night in Bangkok but it's a 16th century chanson" youtube.com/watch?v=i3jHv0GZB9… Note, performed by one single man, Jonas Wolf, he did all the voices. #Music #Baroque #YouTube
If Clément Janequin (ca. 1485 - 1558) was the songwriter for Murray Head...One Night in Bangkok, words and melody in their original form by Tim Rice, Björn U...
My mother is in the market for a new home-office PC, or will be soon. She's an accountant; she's retired now, but she still does taxes for our family and some accounting work for her church. The last time I helped her select and set up a desktop PC was in 2013. Now she uses the church's old office PC, which has a Skylake processor and a spinning hard drive (not even an SSD; I checked). So naturally, that machine's getting slow. 1/?
She doesn't need much computing power, but running Windows is non-negotiable. I'm thinking I should recommend a small form-factor desktop PC, roughly the size of a Mac mini, that she can connect to her existing monitor and keyboard. Any recommendations? Something prebuilt would be best. I can live with uninstalling some crapware during initial setup.
I ran an Intel NUC for two or three years with no problem. Nowadays, Intel has abandoned that idea, but companies like Minisforum and Beelink have run with it. I have an AMD 5600 machine on my desk right now that's about 4x4 inches, maybe 3 inches tall. I got it on sale for, I think, $279, and it came with RAM and an SSD. They probably cost more now, because of the RAM crisis, but I love tiny machines.
I got this to run Linux on, but it came with Windows 11 23H2 installed with just a bit of crapware. Smaller than a Mac mini, super quiet and fast. amazon.com/Beelink-SER5-5560U-…
I bought a refurbished Dell Optiplex years ago, for non-gaming Windows Desktop use, and it held up pretty well. One of those things at your doctor's office reception desk that's just been replaced by a newer model.
I got this mini PC a couple months ago for a home server. It comes with Windows pre-installed and has sufficient USB ports for the basics. I imagine it can handle what you need without issue.
When did you stop posting on X?
Person A: When its owner made nazi salutes.
Person B: When it became a production and distribution channel for images of child sexual abuse.
Government: We're still posting there.
I wonder how common the Eloquence phenomenon is in blind communities around the world. That is, an old speech synthesizer made years ago and long since abandoned by its maker, which blind people tightly hold on to for one reason or another. Two examples I'm familiar with are Neurosoft's SynTalk 1.6 in Poland, and IBM's ProTalker in Japan, and I'm curious if this happens in other places as well.
I mean this hasn't been abandoned and isn't comparatively as old, but I know of many folks who still use this Vietnamese SAPI5 speech engine which essentially plays audio files in sequence. It was initially released in 2004 with a southern voice reading three different encodings and updated in 2009 with a northern voice according to the timestamps within the installer: saomaicenter.org/en/smsoft/vnv…
@twynn Wow it really is raw audio files. I opened the VCE files as raw data in an audio editor, and the sounds are completely audible, not even including a click from a header. Interesting.
As for what the voice data for the sample TTS engine sounds like, here is the VCE file played as raw PCM. The sample format is 16-bit little-Indian mono, and the sample rate is 11025 Hz.
Yep, I can say for myself, speechlab is a Bulgarian synth that was abandoned in favour of the new neural voices. More like, no one knows how to update or fix it, and no one bothers to pay, but I like it and I know others who do too. So, yep, there's a thing like that in a lot of places, I suppose.
🧵 I know, outrage wants to break out. You want to scream in disgust. Point the finger at the guilty parties.
First, take a deep breath. Remember that in a network like the Fediverse, lots of people are vulnerable themselves, they may have experienced traumata. It doesn't cost you much to make a CW: fedi.tips/how-to-use-content-w… Everybody can read your post - but decide before if one's strong enough.
🧵 who is trained to be tough about photos. But that's precisely why I know what consuming too much violence and brutality in images can do to even stable people. And at some point, the effect of provoking outrage or activism wears off. Readers become numbed.
This morning at breakfast, I saw two horrific photos in my timeline where the victim's face had been insufficiently obscured. I don't know when I'll ever get these photos out of my head. I'm tough, and it was
🧵 horrifying. The person who posted it achieved nothing except a few helplessly cynical comments. With CW, I would have been prepared to deal with it appropriately (but not during breakfast). And others, too.
Please show your social skills in social media. It doesn't cost you much.
No sleep. I'm busy implementing proper chunking into the SoftVoice-Say program, of course. What else? Codex sucked at it, it did a half-assed job. So now I'm manually writing up patching section prompts to GPT-5.2 Pro instead, because it'll actually build it, unlike Codex which prefers to make minor changes in the file and do one single task from many. That's the downside of Codex. Think of it more like a code review friend who can do quick repo scanning and read context if you tell it what files and where. However, Codex won't write you a new feature in your program from scratch, regular GPT is still way better for that.
See, didn't I tell you it's the wrong time to sleep in the EU? ;) Try in about, four hours, it'll be perfect time. Haha. Also, you really should get sleep, though. Running on fumes isn't real fun. IT makes you yawn a lot, and that's very contageous, and it also makes your face hurt, and your eyes water, and ugh. Yawning sucks. LOL.
@tardis hahahaha maybe by the time I actually get to sleep it'll be the correct time! It's only 9 in the morning here though, so I'm at least sleeping on more correct time thinking of it as in the EU :D even if most people aren't sleeping at 4-5 PM, true true xD
Haha. I am the last zone of time in the eu though, so it'll still be 5 something to the west of me. Cause, why not, throw us out,, the little evil bulgarian humans. LOL.
This is a survey all #Discord users need to fill out {edit - seems they closed it within a day?}. Discord wants to know if we want AI to run the app. It'd be using data from pictures, conversations, voice notes, live streams, art, 'learning' from us in the app if they don't get strong enough pushback.
Let them know how you feel before they ruin that app for everyone as well.
Ethin Probst
in reply to Bri🥰 • • •Kyle Smith
in reply to Bri🥰 • • •We're sorry, but something went wrong on our end.
Bri🥰
in reply to Kyle Smith • • •