I wonder if there’s a way for admins to troll back. Like instead of banning the accounts, send them into a captcha loop with unsolvable or progressively harder captchas (or ones designed to poison captcha solving bots’ training).
I wonder if there’s a way for admins to troll back. Like instead of banning the accounts, send them into a captcha loop with unsolvable or progressively harder captchas (or ones designed to poison captcha solving bots’ training).
Yeah, if they are able to intercept traffic or access the logs, they probably already have other access to the account without needing the password. If you don’t reuse passwords, then your other accounts will be safe from that.
Yeah no worries and agreed. I hate seeing commercial sites using worse password sanitization practices than I used for my first development website that wasn’t even really intended for anyone else to log in to and any max length suggests the password is either stored or processed in plaintext.
IMO it should even be hashed on the client side before being sent so that it doesn’t show up as plaintext in any http requests or logs. Then salted and hashed again server side before being stored (or checked for login).
Correct, hence the sentence after the one you quoted :)
If any service can recover your password and send it back to you rather than just resetting it for you to set a new one, don’t rely on that service for anything you want to keep secure. And certainly don’t reuse a password there, though you shouldn’t be reusing passwords anyways because who knows what they are and aren’t storing, even if they don’t offer password recovery.
Once upon a time, battle.net passwords weren’t case sensitive. I used upper and lower case letters in my password then one day realized I didn’t hit shift for one of the caps as I hit enter out of habit, but then it still let me in instead of asking for the password again.
It was disappointing because it takes more work to remove case-sensitivity than to leave it. I can’t think of any good reason to remove it. At least the character limit had a technical reason behind it: having a set size for fields means your database can be more efficient. Better to use the size of a hash and not store the password in plaintext, so it’s not a good reason, but at least it’s a reason.
I really don’t want it to become worthwhile for the Russian troll farms that want every discussion to turn into a shitfest.
I don’t think this is difficult technology to figure out.
Hope they pay their IT guy well.
He wasn’t helping them. He was calling out their bullshit. Which is the way it works with people more interested in creating an illusion of competence than pursuing actual competence. They are more interested in hiding issues than fixing them, so someone calling out issues is more of a problem to them than the issues themselves.
Someone set up a script to automatically create daily backups to tape. Unfortunately, it’s still the first tape that was put in there 3.5 years ago, every backup since that one filled up failed. It might as well have failed silently because everyone who received the email with the error message filtered them to a folder they generally ignored.
And good luck typing that in if you don’t know the alphabet it’s written in and can’t copy/paste it.
Personally, instead of smart bulbs, I’d use smart switches for automating lighting. There’s no need for every bulb to be individually controlled and carry all of the overhead involved in that. On that note, I’d also love to see DC circuits that can take LED bulbs without needing a transformer for each bulb (which tends to be what causes it to fail IIRC).
Just tried looking at the state of the smart switch market and fuck Samsung for naming their app for transferring files from phone to PC “smart switch”. Especially because there’s plenty of ways to do that already that don’t require a shitty Samsung app.
Excluding Samsung from the search, I’d suggest not looking for products directly but finding enthusiast communities that are building their own smart homes. There is more to it than just getting devices that don’t rely on some specific company’s web services. You’ll need to also setup a controller/server, connect all of the devices to that, and then figure out how you want to interact with it (eg via phone, scheduling, voice commands, etc). I haven’t done this myself, but I’m guessing all of these are solved problems, but doubt that anyone would call setting it all up easy.
Software open-sourced, too.
It all depends on how and what you ask it, plus an element of randomness. Remember that it’s essentially a massive text predictor. The same question asked in different ways can lead it into predicting text based on different conversations it trained on. There’s a ton of people talking about python, some know it well, others not as well. And the LLM can end up giving some kind of hybrid of multiple other answers.
It doesn’t understand anything, it’s just built a massive network of correlations such that if you type “Python”, it will “want” to “talk” about scripting or snakes (just tried it, it preferred the scripting language, even when I said “snake”, it asked me if I wanted help implementing the snake game in Python 😂).
So it is very possible for it to give accurate responses sometimes and wildly different responses in other times. Like with the African countries that start with “K” question, I’ve seen reasonable responses and meme ones. It’s even said there are none while also acknowledging Kenya in the same response.
I’ve found chatGPT to be a great learning aid. You just don’t use it to jump straight to the answers, you use it to explore the gaps and edges of what you know or understand. Add context and details, not final answers.
Also a conservative MO: act with hostility (or neglect) towards a target and then scream very loudly about any pushback and try to frame yourself as a victim to gain support.
From my experience, blocking 3rd party cookies in general doesn’t seem to make any difference for site functionality anyways. Though I never log into sites with a Google or FB account other than Google or FB sites (and rarely at all for the latter).
I like the grid add-on for Firefox. It disables 3rd party pretty much anything by default. And you can control cookies separately from everything else, and I can’t remember any time I’ve needed to enable those cookies to get a site working properly (whereas sometimes you need to enable scripting, media, or iframe for cdn or something).
And all he had to do was act like he wanted to back track on the offer and the courts forced the sale through quickly rather than slow things down and consider whether social media should even be a privately owned thing run at the whims of a guy that used that same platform to try to ruin someone’s life with a baseless pedophilia accusation because they hurt he’s feelings when telling him his sub idea wouldn’t work and he was just getting in the way rather than helping anything.
I just wonder if the courts fell for his ploy or if they just played the part they were supposed to and the whole thing was an act.
Also, I don’t think it’s a coincidence that he spent 44 billion on Twitter and then, after pretty much ruining it, for some reason Tesla shareholders (which are majority institutional shareholders) vote through a 50 billion compensation package for him.
Yeah not to mention it’s not that hard to detect a shadowban if you’re aware of the possibility. Lemmy doesn’t even fuzz vote totals, so it would be trivial to verify whether or not votes are working.