drspod

joined 3 years ago
[–] [email protected] 1 points 53 minutes ago

Your link is to a comment at the bottom of the page. Is that significant, or accidental?

[–] [email protected] 3 points 14 hours ago
[–] [email protected] 2 points 15 hours ago

They've only just achieved this - something that a six year old can do - and yet there are dozens of corporations and startups claiming to already be developing humanoid robots. Yeah I don't think the humanoid robots are going to be here soon. Imagine 300kg of steel with the intelligence of a 6 year old barrelling down the street.

[–] [email protected] 5 points 19 hours ago

If you're not cycling a pedal-powered generator to run your system then is it really self-hosted? My servers only use organic transistors grown in my zen garden.

[–] [email protected] 1 points 22 hours ago (1 children)

The app name is very 2004. Have we not yet left the great vowel shortage of the early 21st century?

[–] [email protected] 8 points 1 day ago

A distant tornado causes a butterfly to flap its wings.

[–] [email protected] 29 points 1 day ago (4 children)

EU is making a new law which makes your IP the same as (something similar to) your social security number and they say piracy is going to receive a huge blow.

Sounds like an April Fools joke.

[–] [email protected] 0 points 1 day ago (2 children)

Custom ROMs are obviously the best choice but we're talking specifically about what advice to give to a non-technical user who isn't going to unlock their bootloader and flash a custom ROM, nor are they going to be able to use a linux phone or some other alternative that requires some technical know-how.

[–] [email protected] 16 points 1 day ago (4 children)

I really hope that all these git hosts (codeberg, gitlab, gitea etc.) can get federation working for forks and issues. It would really make a compelling alternative to github if you could sign up an account on any git host and know that you can then contribute to any project hosted anywhere else without having to create an account on every service.

[–] [email protected] 1 points 1 day ago (1 children)

What desktop environment are you using?

[–] [email protected] 6 points 1 day ago

He signs the post with the date. It couldn't be more obvious.

[–] [email protected] 1 points 1 day ago (2 children)

What's mandos? I don't find anything useful when searching for it.

 

I would like to switch away from Apple Music, and Spotify despite being a European company, is not a desirable option for me. What music streaming services would you recommend?

I managed to download a text-only list of the albums in my Apple Music library, so if there's a simple library import option then that would also be very helpful.

 

AMAB

 
43
submitted 2 months ago* (last edited 2 months ago) by [email protected] to c/[email protected]
 

This is a moving story about a cafe in Japan that allows house-bound people to join in with society and find a purpose, using remotely operated robotic avatars.

 

I had never heard of Absolute Linux, but the rest of this article has some interesting musings on lightweight distros that I thought would make for good discussion here.

 

If you want to go straight to the original write-up, it's here: https://eieio.games/blog/bad-apple-with-regex-in-vim/

 

From the Free Your Soul EP in 1995.

41
submitted 3 months ago* (last edited 3 months ago) by [email protected] to c/[email protected]
 

Great craftsmanship from this maker and the end result is impressive.

If you want to skip the construction process and just see the end result, skip ahead to 41:20.

35
submitted 7 months ago* (last edited 7 months ago) by [email protected] to c/programming
 

Threat actors are utilizing an attack called "Revival Hijack," where they register new PyPi projects using the names of previously deleted packages to conduct supply chain attacks.

The technique "could be used to hijack 22K existing PyPI packages and subsequently lead to hundreds of thousands of malicious package downloads," the researchers say.

If you ever install python software or libraries using pip install then you need to be aware of this. Since PyPI is allowing re-use of project names when a project is deleted, any python project that isn't being actively maintained could potentially have fallen victim to this issue, if it happened to depend on a package that was later deleted by its author.

This means installing legacy python code is no longer safe. You will need to check every single dependency manually to verify that it is safe.

Hopefully, actively maintained projects will notice if this happens to them, but it still isn't guaranteed. This makes me feel very uneasy installing software from PyPI, and it's not the first time this repository has been used for distributing malicious packages.

It feels completely insane to me that a software repository would allow re-use of names of deleted projects - there is so much that can go wrong with this, and very little reason to justify allowing it.

 
view more: next ›