Skip to main content



What’s It Like To Freeze Your Credit Report? I Had To Find Out cnet.com/how-to/i-froze-my-cre…




A linguist explores what Kamala Harris's voice and speech reveal about her identity

If you like language studies, this is interesting

phys.org/news/2024-08-linguist…

#HarrisWalz #Harris2024 #Harris #KamalaHarris2024



🎉 The #NLnet Libervia-AV project is officially complete! 🎉

nlnet.nl/project/Libervia-AV/

I've successfully implemented one-to-one calls, desktop sharing, group calls & more, plus ported #Galène #SFU to #XMPP.

Huge thanks to everyone who supported this project!

I'll probably post a blog about the work done around the end of the summer.

Now it's time for some vacations 😎.

#Libervia #FOSS #NGIAssure

This entry was edited (3 months ago)


That’s pretty cool! sustainability.google/operatin….


A fire department is warning users to keep their pets away from lithium-ion batteries after a dog accidentally started a fire by chewing through a mobile power bank. pcmag.com/news/dog-starts-fire…

reshared this



SafeBreach security researcher Alon Leviev discovered a Windows Update downgrade attack that can "unpatch" fully-updated Windows 10, Windows 11, and Windows Server systems to reintroduce old vulnerabilities

bleepingcomputer.com/news/micr…

reshared this



Woo! Airfoil, Audio Hijack, Farrago, Fission, Loopback, and Piezo are all ready for Sequoia. Update now.

A Sequoia-compatible SoundSource is coming soon. Watch our Status page and consider turning on test releases.

rogueamoeba.com/status/#:~:tex…

reshared this



Utah is basically burning books now. “State has ordered books by 13 authors, 12 of them women, to be removed from every public school, classroom and library.” Includes books by Margaret Atwood, Judy Blume, and Rupi Kaur. theguardian.com/books/article/…




I've proposed a merge request to GNOME's likely new Video Player app codenamed Showtime. The feature? Toggling between video duration and time remaining by clicking the end timestamp. :)

It's the little things!

I think this might be my first contribution to a GNOME Python app. It was a bit of a trip coming from Vala and JavaScript land, but I _think_ I did okay for a first pass.

gitlab.gnome.org/GNOME/Incubat…

#GNOME #OpenSource #Linux

This entry was edited (3 months ago)


This is the beginnings of a series I've wanted to write for quite a while, which I call "A Brief History of White Insecurity." I'm going to draw some non-obvious connections, across two thousand years of history, between men's fashion, ancient Roman conquest, the fact that I personally speak English, and global climate change.

Come along for the ride: starshipgender.com/2024/08/whi…

reshared this



SHIFTsound BNO - Für kurze Zeit reduziert!🎧
Was gibt es Schöneres als mit dem richtigen Sound auf den Ohren durch den Wald zu baden, in der Hängematte zu entspannen oder den Feierabend bei einem spannenden Hörbuch zu genießen?🙂

shop.shiftphones.com/shiftsoun…

#shift #shiftphone #shifthappens #headphones #shiftsoundbno

in reply to SHIFTPHONES

Ha! Auf den habe ich gewartet. Und: Bestellt issa, Danke!

🎶 Aller guten SHIFTas, sind 3 🎶

(frei nach Reinhard Mey)

* SHIFT6mq: √ Im Einsatz und happy damit :awesome:
* SHOFTphone8: am Funding beteiligt, und freu mich drauf!
* SHIFTsound BNO: soeben bestellt :awesome:

in reply to IzzyOnDroid ✅

@IzzyOnDroid

@shiftphones

Wenn das Shiftphone den Anforderungen von GrapheneOS genügen würde, müssten einige keine Pixel kaufen.

ZB ich.

in reply to SHIFTPHONES

Jupp 😁 Nicht dass ich damit gerechnet hätte, aber so hat sich die Kombi richtig gelohnt: kamen ja noch meine 15% vom Funding-Gutschein runter, sodass dann gerade mal 155 € übrig blieben (die natürlich bereits überwiesen sind).

Sobald ich jetzt ein wenig Luft finde, geht's aber erstmal an die 8er Tests. Da kann das BNO bei seiner Ankunft ja gleich nochmal mitspielen – nächste Winner-Kombi :awesome:

in reply to IzzyOnDroid ✅

Was denn, schon da? Wow! Ich hoffe, das Paket hat Euch unterwegs keine Knöllchen wegen zu schnellen Fliegens gesammelt 👮 🙈

Schaut so aus als gäbe es dieses WE fleißig was auf die Ohren dann, Danke! 🤩

in reply to IzzyOnDroid ✅

Wow das ist ja DER 🔨 Was für ein Sound! Und macht mich glatt zum Schamanen: Das Problem, die neben mir stehende Person Dank des ANC nicht hören zu können, heile ich per Handauflegen¹ 🤣

(und ja, bin erst jetzt zum Testen gekommen, da ich keinen Bluetooth-Stick für den PC hatte).

¹ für die fragenden Blicke: Hand auf die rechte Hörmuschel schaltet von ANC auf Ambient und dreht die Lautstärke runter; Hand wieder weg macht das alles wieder rückgängig.

in reply to SHIFTPHONES

Der Sound ist einfach Klasse. Was ich noch nicht herausfinden konnte ist, ob es auch eine Art "Ruhezustand/Stromsparmodus" kennt, wie etwa die von mir geschäftlich genutzten Jabra Evolve2. Wenn "nix los ist" gehen die auf "minimal" und "fahren wieder hoch", sobald wieder Sound anliegt. Erhöht quasi nochmal die Laufzeit pro Akkuladung.

Und bitte liebe Leutz, keinesfalls im Straßenverkehr oder so nutzen. Speziell nicht mit ANC, da sind die echt "stille Nacht" bzgl. Außen-Ton!

in reply to IzzyOnDroid ✅

wie ist denn Dein aktueller Eindruck zu den Kopfhörern, nach der inzwischen vergangenen Zeit? Ist der immer noch so begeisternd?

Mich würde noch interessieren:

- wie gut sitzen die am Ohr. Ich hatte bis vor kurzem einen Sony MX3 der saß recht gut trotz der Hörgeräte hinter dem Ohr.

- taugen die auch um mal zu telefonieren, da waren meine alten im Mikrofonton recht schwach.

Danke.

@shiftphones@mastodon.social

in reply to the kangaroo

@the_halmaturus Vom Klang bin ich nach wie vor begeistert. Telefonieren habe ich damit noch nicht probiert, aber vergleichbar (Jitsi/Matrix Call) – und hat gut geklappt (habe die Gegenseite nicht explizit gefragt, aber hat sich nicht beschwert, war ein langer Call).

Zwei kleine Probs: kann nicht als USB-Headset genutzt werden (wusste ich aber vorher) – und nach ~24h muss ich meinen BT-Dongle abziehen, damit das SHIFTSound wieder connected (vermute Dongle-Problem hier).

@shiftphones

(1/2)

in reply to IzzyOnDroid ✅

@the_halmaturus (2/2)
Dongle ist ein günstiges, muss mal ein anderes probieren. Und USB geht nur zum Aufladen – das fand ich beim Jabra gut, dass man da bei "Akku leer" einfach USB anstecken konnte und weiter gehts mit Sound UND Laden.

Als Brillenträger habe ich noch damit zu kämpfen, dass die Brillenbügel mit den Hörmuscheln "kollidieren", das drückt dann schon ein wenig. Dafür ist aber ANC Klasse: wirklich Ruhe, merkt man deutlich.



Hardware kill switches: Empowering users in the digital age. Our latest blog explores how physical control over your device builds trust, respects autonomy, and offers unparalleled protection. Discover how Purism is putting privacy at the forefront of mobile tech.
puri.sm/posts/the-evolution-of…
#UserPrivacy #Purism #PureOS #Security


So earlier this year I wrote about this cybercrime rapper named Punchmade Dev, who wears outlandishly gaudy and expensive stuff around his neck and croons in videos in front of stacks of cash at ATMs, talking about how to do wire fraud, cashout PayPal and Cash App accounts, etc. The story showed how this Punchmade character seems to be a 22-year-old guy in Lexington, Ky named Devon Turner who operates multiple web stores that sell apparently compromised payment cards and identity information (alongside check printing software and tutorials on....wait for it...OPSEC!).

On a hunch that maybe Punchmade's lack of opsec might have caught up with him, I checked PACER and found instead that he recently sued his bank, alleging they discriminated against him for his race over his denied request to transfer $75,000 out of his account. Incredibly, Mr. Turner signed his pro se complaint filed in a Kentucky court with the same phone number and email address that are tied to the Punchmade domain names that are selling products like "ID+ High Balance CC, ID front/back, SSN, and 7$k-10k CC, for $80"

Here's the story:
In January, KrebsOnSecurity wrote about rapper Punchmade Dev, whose music videos sing the praises of a cybercrime lifestyle. That story showed how Punchmade's social media profiles promoted Punchmade-themed online stores selling bank account and payment card data. Now the Kentucky native is suing
his financial institution after it blocked a $75,000 wire transfer and froze his account, citing an active law enforcement investigation.

krebsonsecurity.com/2024/08/cy…



Your regular reminder to never build a LLM-based chat interface with access to privileged information that can render Markdown images targetting external domains, if you don't want a prompt injection attack to be able to instantly exfiltrate that private data

Today's example is Google AI Studio: simonwillison.net/2024/Aug/7/g…

It joins ChatGPT, Google Bard, writer.com, Amazon Q, Google NotebookLM and GitHub Copilot Chat in my collection of products that have made this mistake: simonwillison.net/tags/markdow…

This entry was edited (3 months ago)


github.com/mastodon/mastodon/i…


Honestly it’s like every fucking day. Every day there’s someone new declaring that they have such hateful brain worms that it has completely warped their reality sfba.social/@peterme/112915495…


So, yeah, if you use Pinboard, you may want to reconsider.
in reply to Danielle Foré

the pinboard guy was already completely brain wormed last year, when he went full mask off on JKR; I even made a joke about the bookmark service having been created by Hatsune Miku in my slide deck at GUADEC: gitlab.gnome.org/ebassi/2023-g…


So, yeah, if you use Pinboard, you may want to reconsider.

reshared this



Me after conducting a technical audit.

youtu.be/XKVmpJaMffM

This entry was edited (3 months ago)


Top `<table>` tips:

• Don’t span cells:
adrianroselli.com/2023/02/avoi…

• Don’t redefine column headers: adrianroselli.com/2022/02/colu…

• With one exception, you don’t need a `scope` attribute (the exception is sometimes the top corner):
tpgi.com/short-note-on-scoping…

• `column` is not a valid `scope` value:
html.spec.whatwg.org/multipage…

• Be wary of articles that don’t cite sources or testing when they make assertions about `<table>`.

#HTML #table #accessibility #a11y



Lyft to ‘open up a can of whoop ass’ on surge pricing ("Ride-hail giant Lyft will pilot a new feature called Price Lock that will let a rider purchase a monthly subscription “that caps the price for a specific route at a specific time,” according to CEO David Risher.")
techcrunch.com/2024/08/07/lyft…


2.9 billion hit in one of the largest data breaches ever — full names, addresses and SSNs exposed tomsguide.com/computing/online…


Question for you high-contrast theme users.

I recently started an initiative in @gnome Design to standardize drag & drop overlays in entire windows and predominant views. I would really appreciate it if you could criticize / give feedback on the high-contrast variants of the overlay:

gitlab.gnome.org/Teams/Design/…

Edit: moved to gitlab.gnome.org/Teams/Design/…

(Boost appreciated)

#Accessibility #a11y #HighContrast #Contrast #GNOME

This entry was edited (3 months ago)

reshared this



🔴 Tuta actualiza su página web para completar su cambio de marca

🔒 "Activa la privacidad" es el nuevo eslogan del servicio de email privado que compite con Proton Mail

🔗 tuta.com
@Tutanota

@Tuta


PureOS Subscriptions at work. PureOS Crimson Development Report is in!
puri.sm/posts/pureos-crimson-d…
#PureOS #Librem5 #Purism
in reply to Purism

will you release the numbers on how many people are paying for a subscription (and at what tiers)? it would be nice to draw some direct parallels to how these donations impact the open source and upstream work you do
in reply to caleb 🌈

@cas Thank you for the great idea! We will consider adding those metrics to future posts.


Hello! We are a small independent bookshop in Stow, in the Scottish Borders. We are no longer using Twitter, for obvious reasons, but could use some new followers on Mastodon and other social media channels - where our presence is smaller than on Twitter. Please help / share this is you can! Thank you.

reshared this



One of Europe’s largest drug store chains Rossmann stops buying Teslas because Elon Musk supports the climate change denialism candidate Donald Trump.

Thank you to @agturcz for this find.

This entry was edited (3 months ago)


Disney+ will finally start cracking down on password sharing next month 9to5mac.com/2024/08/07/disney-…

in reply to Jakob Borg

it's complicated. We've had the org marked as some kind of cloud blabla account for a long time, but recently they've pushed for that sort of account is going away and is instead becoming this other account... I suspect the problem started in this other account. But who the heck knows. This is big-company mumbo jumbo at its worst.
This entry was edited (3 months ago)
in reply to daniel:// stenberg://

@jakob it fits the road #GitHub has taken since it was taken over by #Microsoft. The original promise was to be #OSS friendly. Now that they are the goto place for Open Source they change the rules step by step. This also affects paying users. The SaaS price list exploded a couple of months ago. You now even pay extra for git LFS. I guess, this is the enshittification process @pluralistic is talking about.
in reply to Markus Werle

actually, it is somewhat more complicated than so. We were "bumped up" as a courtesy by GitHub to get more github action "powers" and that makes us a little special there and that sometimes leads to ... surprises.
This entry was edited (3 months ago)
in reply to daniel:// stenberg://

@jakob @pluralistic it is quite simple to me. OSS projects had full GitHub actions access. At least „no limits“ was the advertising and my main reason to stay on that platform. That has obviously changed. Now larger OSS projects need extra attention due to limitations never revealed before.
in reply to daniel:// stenberg://

@jakob @pluralistic I am deeply concerned about what is happening here. I read your message such that you do not have full and unlimited access to GitHub Actions with your OSS project and this definitely is not what was promised nearly a decade ago. Can you please explain what makes the special treatment of curl necessary? What kind of facts am I missing?
in reply to Markus Werle

@markuswerle @jakob @pluralistic This is how I interpret the situation: #GitHub offers open source programs free access to GitHub actions today exactly as it did in the past. This access is limited in CPU performance and parallelism. It always was. All free CI services do this.

The #curl project was bumped to a fancier account to give us more actions powers: more CPU and more parallelism.

That is them doing us a favor and them supporting us, not the other way around.

in reply to daniel:// stenberg://

@jakob @pluralistic thanks for the clarification. I accept your description of the limitations at place, despite me remembering them differently. Maybe the limitations were there all the time but not prominently mentioned. I should have taken screenshots at the time when I was excited about GitHub.
in reply to Markus Werle

@markuswerle @jakob @pluralistic no services offer unlimited CPU and parallelism by default, how could they? It would immediately get abused to death.
in reply to daniel:// stenberg://

@jakob @pluralistic and any of these abuse attempts would be easily detectable and would immediately lead to a platform ban. I accept there was a limit you ran into but I do not follow your argument here that the limit is necessary in the first place.
in reply to Markus Werle

@markuswerle no need to tell ME that. Tell that to every existing could-CI service out there that you clearly have figured out something they have not. I'm just a user.
in reply to daniel:// stenberg://

@markuswerle @pluralistic GitHub Enterprise offers some additional things for security, etc. I don't know if curl uses those, but I interpret it as a way to make sure curl (as critical infrastructure) gets whatever protection they can offer.


macOS Sequoia adds weekly permission prompt for screenshot and screen recording apps 9to5mac.com/2024/08/06/macos-s…



Od dnes ma volajte Nostradamus.

dennikn.sk/4134685/kovacik-ide…




We’re calling on security researchers to help enhance the resilience of open digital infrastructure. Participate in the bug & fix bounties of seven critical software projects.

With five new software projects on the @yeswehack platform, for a total of seven, there’s a lot of code to look at. Find and report potential vulnerabilities responsibly, in exchange for a bug bounty. sovereigntechfund.de/news/call…

reshared this




It's fair to say we had a fantastic time in Colorado (and Berlin!) for GUADEC 2024.

Off the back of the event, Martín Abente Lahaye has published a conference round-up, including some highlights from his time in Denver.

Thanks to the GNOME Foundation, volunteers, staff, and everyone else who made the event unforgettable.

Read here: codethink.co.uk/articles/2024/…



Heydon reminds that the `<abbr>` element is mostly useless:
heydonworks.com/article/the-ab…

I linked it from my post (where I show SR support, which is a bit odd) that says essentially same.