Mozilla dropping web extensions on mobile is the most existentially horrific thing to happen to the web. There is literally no one left that believes that a browser on the mobile is the user's browser, & I absolutely detest this.

Thanks so much for the killer write up,
palant.info/2020/08/31/a-grim-…

A grim outlook on the future of browser add-ons

Mozilla limiting users’ choice to 9 add-ons on mobile is only the latest development. Add-on support is degrading across all browsers and will continue to do so.

^{Almost Secure}

The remarkable origin and purpose of the shiny cobalt leaves on the Malaysian tropical plant #Begonia #pavonina

#Plants #Jungle #QuantumMechanics #Photosynthesis #SlowLight
popularmechanics.com/science/e…

Behind This Plant's Blue Leaves Lies a Weird Trick of Quantum Mechanics

There's a very good reason for this plant's iridescent color.

^{William Herkewitz (Popular Mechanics)}

We would like to say thanks to all in the #XMPP community and beyond, for your engagement in this year #2022!
A good time for you to say thanks to the projects you use and maybe also give a bit back. Looking forward!

#opensource #decentralisation #interoperability #jabber #rtc

Die #botsindicator van #tusky...
Is dat misschien een indicator die aangeeft of een account een botje is?

Geen idee wat er anders mee bedoeld wordt. 😇
#dtv #Mastodon

The slow destruction of Twitter means I don’t have to limit myself to 280 characters anymore.

So this is a LONG-ASS post about having been online for decades & lost so many spaces to malfeasance and malice & what to do now, how angry I am & how hard this will never stop being.

Because I need to SCREAM ABOUT THIS TRASH.

catvalente.substack.com/p/stop…

#NowPlaying: my Acoustic Espresso playlist on Spotify

This is my favorite morning playlist, featuring solo acoustic guitar and fingerstyle music. With both original compositions and covers. Every few weeks I update the playlist with some new pieces that I picked up.

Feel free to reply with suggestions!

👉 open.spotify.com/playlist/4kex…

Acoustic Espresso // Instrumental Acoustic Guitar Music for Your Morning Ritual

Acoustic Espresso // Instrumental Acoustic Guitar Music for Your Morning Ritual · Playlist · 213 songs · 62 likes

^{Acoustic Espresso // Instrumental Acoustic Guitar Music for Your Morning Ritual (Spotify)}

@libreoffice For those who haven't yet tried LibreOffice: Now is the time for all good men & women to come to the aid of their software... Seriously, LO is the next best thing to bacon sizzling in a skillet. It might even be better than sex (nah, just kidding!) 🤦‍♂️

Seeing LO on reminded me to donate so I just kicked in a few bucks at libreoffice.org/community/get-…

While you're in the donating mood, Mastodon is also open source. hint, hint... 👏

#opensource #donate

Dom Krampus, Sub Santa

Ho Ho Ho

---
if you want to support my art:

✨ ko-fi.com/roh_orc
✨ patreon.com/roh_orc

[ #art #MastoArt #NSFWart ]

For this year's gingerbread I made... Curiosity!

#space #gingerbread #nasa #mars #curiosity #baking #astronomy

Check out how land is used in the United States. Cows take up the most space!

bloomberg.com/graphics/2018-us…
First in a 🧵 of #2022TopToots

the sad reality of open source software development

In short: folks love the amazing decentralised encrypted comms utopia of Matrix. But organisations also love that they can use it without having to pay anyone to develop or maintain it. This is completely unsustainable, and Element is now literally unable to fund the entirety of the Matrix Foundation on behalf of everyone else - and has had to lay off some of the folks working on the core team as a result.

matrix.org/blog/2022/12/25/the…

The Matrix Holiday Update 2022 | Matrix.org

^Matrix.org

Cracking encrypted Lastpass vaults

markuta.com/cracking-lastpass-…

Cracking encrypted Lastpass vaults

The recent (2022) compromise of Lastpass included email addresses, home addresses, names, and encrypted customer vaults. In this post I will demonstrate how attackers may leverage tools like Hashcat to crack an encrypted vault with a weak password.

^{Naz Markuta (Markuta)}

Twitter Data Breach +400 million users

breached.vc/Thread-Selling-Twi…

I always said requiring phone numbers to enable 2FA was a dumb idea.

Twitter Data Breach +400 million users

Hello dear breached usersI'm selling data of +400 million unique twitter users that was scraped via...

^{Ryushi (BreachForums)}

J. Robert Oppenheimer cleared of “black mark” against his name after 68 years

arstechnica.com/science/2022/1…

The lead scientist on the Manhattan project was accused of being a Russian spy in 1954 ; the revocation of his clearance now has been nullified.

J. Robert Oppenheimer cleared of “black mark” against his name after 68 years

Manhattan Project physicist was infamously stripped of his security clearance in 1954.

^{Ars Technica}

Joseph Henrich, evolutionary anthropologist:

"More than any other animal, we depend on learning from others. Cultural evolution occurs alongside biological evolution. You can look at a human & study the genes that they’ve inherited from their parents… but that person has also acquired beliefs, values, practices, norms, languages & ways of thinking from their parents & other members of their community."

english.elpais.com/science-tec…

#culture #cooperation #learning

Joseph Henrich, evolutionary anthropologist: ‘The best antidote to white supremacy is more science’

The chair of the Department of Human Evolutionary Biology at Harvard spoke to EL PAÍS about immigration, social structures and his book on cultural evolution

^{Jon Gurutz Arranz (Ediciones EL PAÍS S.L.)}

People wonder why I am always so harsh on #LastPass. Thing is, I’ve been watching them ignore security risks for years. Yes, things that they are being warned about again and again, yet they choose not to address them.

You think unencrypted URLs are bad? Take a look at this seven years old presentation by Martin Vigo and Alberto Garcia Illera: blackhat.com/docs/eu-15/materi…. Starting with page 69 it explains how the custom_js feature could be abused to extract users’ passwords.

Guess what, this feature is still present and used on PayPal for example. Still no encryption and nothing to protect the users. No change whatsoever in at least seven years that LastPass was made aware of this issue.

Instead, when disclosing #LastPassBreach they again lie that they don’t have access to your passwords. But they do. Anyone with access to their server does. NSA could order them to extract your passwords. Hackers who gain access to their server could abuse this to get your passwords. Or just to run their JavaScript code on any website, and then they don’t even need your passwords.

And that’s only one out of the many documented backdoors that LastPass chooses to ignore, both in terms of implementation and their public communication.

#infosec #ApplicationSecurity

Hey folks!
As part of my new year resolutions, I decided it's time to pass the torch for the @crossposter maintenance to someone else.
This is not about maintaining the service, but the tool itself, the dev side of it.

If you're into #ruby, #RoR and you used the crossposter, reach out: github.com/renatolond/mastodon…

Please boost for reach :)

#crossposter

Call for new maintainers for this project · Issue #918 · renatolond/mastodon-twitter-poster

It's been a while since I haven't been able to do more than minimal maintenance for this project, it achieved what I needed on a personal level (I implemented all features that I needed for...

^GitHub

Nechcete reklamy a sledování ve vyhledávači? Zkuste Xoogle! @xoogle

👉infoek.cz/xoogle-vyhledavac-20…

Earthrise.

On Christmas Eve of 1968, the Apollo 8 crew photographed Earth rising over the lunar surface as they orbited the Moon.

“We came all this way to explore the Moon, and the most important thing is that we discovered the Earth." – William Anders go.nasa.gov/3GcD3F4
#NASAEarth

Looking for a last minute present for the next family meeting?

We've got you covered! 😀 Give privacy. 💪

#PrivacyMatters

Get a Tutanota gift card via the present symbol to the left of your mailbox - or anonymously via our partner Proxystore: tutanota.com/faq#cryptocurrenc…