Tux in Brussels @tux@mastodon.multimob.be
Helping the Free Software Movement since 1997
Joined May 2018
#Instagram has gone too big, it should become independant from #Facebook.
That way, instead of #GAFAM we could start saying G-MAFIA. 😄
Matthias Kirschner (from #FSF Europe) raised an interesting concern during his #FOSDEM talk.
Some people might say: "I want a restrictive #licence to the software I’m writing, to prevent 'bad guys'—e.g. the military, the Mafia—from using it."
Bad idea: if people are killing other people, software licences are probably not something they would really care about.
Better stick with licences that do not impose personal views about who and what purposes. (Copyleft is important, though.)
It is interesting to see how attacks are quickly mutating.
Today, hundreds of "GET /.aws/credentials" requests started popping up.
In the past hours, I have seen a large number of requests in my #nginx log.
"GET /.env HTTP/2.0" 403 146 "-" "curl/7.58.0"
Hundreds of bots looking for the file, then going away. Most addresses resolve in compute.amazonaws.com
They are very obviously trying to get a config file. Is it still that old Laravel #exploit?
Tux in Brussels
boosted
#fosdem is around the corner. I've been attending since 2004. If you do anything computer related try to attend once in your life.
It feels good to live away from Windows machines. This is getting creepier every day.
Installing #Chrome also installs a side executable that can search the hard drive and remove programs it thinks might interfere with the browser.
Remember: If you behave like malware, then you ARE malware.
Tux in Brussels
boosted
I want to help non-technical friends to secure their #email clients with #GnuPG.
How shall we deal about expiry dates for GPG keys?
1) Teach them how to renew their keys
✅ They become self-supporting
❌ Way too complicated. Error-prone
2) I keep their private keys and do it for them
✅ Easy
❌ Unethical to potentially become a privacy-violator myself
3) Set a key that never expires (or in 10+ years)
✅ No need to worry
❌ What if their phones get stolen or hacked?
Any better idea?
Tux in Brussels
boosted
Stand in solidarity with your favorite demonetized YouTuber,
watch NOTHING
upload NOTHING
December 10th-13th
#xkcd fans know that "Correct Horse Battery Staple" is a strong #password.
I inadvertently saw a user applying the 4-word password principle in front of me:
– Teenage Mutant Ninja Turtles
😄
I bet this opens the door to a new type of effective dictionary attacks.
Lesson for all of us: teach your users to be smart and never rely on simplistic rules.
Tux in Brussels
boosted
After a lot of combined effort by the F-Droid community and the jitsi team the #Jitsi Meet app is now finally available on F-Droid:
https://f-droid.org/packages/org.jitsi.meet/
🎉 🎉 🎉
Question for #PeerTube admins:
What is your recommended way to check for a new version of the code? v2.0.0 is coming soon.
I want to know when to upgrade, without having to open the CHANGELOG.md on github every day.
Perhaps I missed an obvious method, e.g. RSS/Atom feed.
So far, doing it with a cron job downloading peertube/releases/latest and parsing the value of tag_name. Alternatively, git fetch --tags.
Many official buildings are blurred in Google Maps Streetview.
See example for the King’s Palace in Brussels.
https://www.google.com/maps/@50.8427168,4.3623751,3a,75y,199.46h,89.21t/data=!3m7!1e1!3m5!1sZ0oshaswqUt17XmMZbp0Kg!2e0!6s%2F%2Fgeo1.ggpht.com%2Fcbk%3Fpanoid%3DZ0oshaswqUt17XmMZbp0Kg%26output%3Dthumbnail%26cb_client%3Dmaps_sv.tactile.gps%26thumb%3D2%26w%3D203%26h%3D100%26yaw%3D56.2967%26pitch%3D0%26thumbfov%3D100!7i13312!8i6656?hl=en
At the same time, the map shows lots of (unblurred) 360° pictures of the area, even inside the building.
This looks like patent trolling.
The #GNOME project is being sued for allegedly infringing this patent in #Shotcut: https://patents.google.com/patent/US9936086B2/en#patentCitations
What is this patented "Wireless image distribution system and method"?
Basically, connecting your camera to your computer over Wi-Fi. 🙄
OK, this has become common #spam on Mastodon.
You get a strange follower:
* Account on pawoo.net
* Description is in Japanese but the picture is a horny Caucasian girl
* 0 tools. Follows 5.5K people but has <10 followers herself
* Profile says she wants to talk to you through badoo or other dating site.
I bet it’s safe to ignore them.
Without admin rights, we can either mute their whole instance or select Lock account to approve all followers manually.
Any idea of better filter techniques?
#CAcert (https://www.cacert.org) is not going well—they might close down at the end of the year.
They are looking for donations or other contributions (improve their wiki, become a sysadmin, board member, and many other small tasks).
ProTip : if you are good at Linux commands, they can make robust and easy to remember passwords.
find-typef-name*jpg-execls-l{}\;
A message to non-technical people who must speak in a conference.
Never tap the microphone to test whether it’s on. This will damage both the microphone and the speakers.
Always good to know: youtube-dl can also download any video on a #PeerTube instance.
Helping the Free Software Movement since 1997
Joined May 2018
