Skip Navigation

InitialsDiceBearhttps://github.com/dicebear/dicebearhttps://creativecommons.org/publicdomain/zero/1.0/„Initials” (https://github.com/dicebear/dicebear) by „DiceBear”, licensed under „CC0 1.0” (https://creativecommons.org/publicdomain/zero/1.0/)D
Posts
17
Comments
829
Joined
4 yr. ago

  • CarPlay support is the one thing that I was waiting for to fully switch over. This is great news!

  • The solution proposed by the author is to host your own fediverse instance on a … wait for it … corporate VPS.

    I don't think it helps to gate-keep self-hosting as being only for local hardware. It's also about managing your own software stack so you're not reliant on Big Tech to provide services to you.

  • I will never not phone bad

  • hello

    Jump
  • hello

  • Anyone with the ability to inject or modify packets in the network path between server and client can inject malicious javascript or browser exploits into an unencrypted HTTP TCP stream. The client's User-Agent and other headers would allow the attacker to customize their attack to target that specific browser version, and compromise the client machine.

  • Not to victim blame here, but out of curiosity: did you sign up and access their services using a normal residential IP?

  • Deleted

    Permanently Deleted

    Jump
  • lichess good

  • inb4 AI slop

  • Probably just realized that they just committed to about $1bn/year in payroll alone for the people they just hired.

  • Deleted

    Permanently Deleted

    Jump
  • It's a clever attack but if I understand correctly it requires malicious script to be injected into a trusted webpage (ie. one that you normally log in to). This limits the utility of the attack, since any script injection vulnerability would already allow exfiltration of credentials that are entered manually when you log in to the site, password manager or not. The difference with this attack is that the attacker doesn't have to wait for you to log in, they just trick the password manager into autofilling the credentials straight away.

  • How much are the gas fees these days?

  • What’s best for the website owners is to have people actually visit and interact with their website. Blocking AI tools is consistent with that.

  • Rule

    Jump
  • thanks I grew it myself

  • Write to your representatives.

  • If I had known, I would have been using FreeBSD this whole time 👀