Skip to content

We Should Immediately Nationalize SpaceX and Starlink

Technology
461 192 0
  • The Arc Browser Is Dead

    Technology technology
    64
    198 Stimmen
    64 Beiträge
    0 Aufrufe
    S
    There is a windows and mobile tab on their website
  • Anthropic's AI is Writing Its Own Blog - Oh Wait. No It's Not

    Technology technology
    4
    67 Stimmen
    4 Beiträge
    0 Aufrufe
    mrjgyfly@lemmy.worldM
    They absolutely will. AI is great if you drastically lower your standards.
  • autofocus glasses

    Technology technology
    53
    1
    124 Stimmen
    53 Beiträge
    0 Aufrufe
    M
    Hm. Checking my glasses I think there is something on the top too. I can see distance ever so slightly clearer looking out the top. If I remember right, I have a minus .25 in one eye. Always been told it didn't need correction, but maybe it is in this pair. I should go get some off the shelf progressive readers and try those.
  • 762 Stimmen
    187 Beiträge
    7 Aufrufe
    O
    Not being a coward.
  • 58 Stimmen
    5 Beiträge
    0 Aufrufe
    B
    Amazon is an absolute scumbag company, they don't pay taxes and they shit all over their workers, and fight unions tooth and nail. I have no idea how people can buy at Amazon, that stands for everything Trump and Musk stands for. Just fucking stop using Amazon if you value democracy. Pay an extra dollar and buy somewhere else.
  • 18 Stimmen
    10 Beiträge
    2 Aufrufe
    M
    Business Insider was founded in 2007.
  • 1 Stimmen
    8 Beiträge
    2 Aufrufe
    L
    I made a PayPal account like 20 years ago in a third world country. The only thing you needed then is an email and password. I have no real name on there and no PII, technically my bank card is attached but on PP itself there's no KYC. I think you could probably use some types of prepaid cards with it if you want to avoid using a bank altogether but for me this wasn't an issue, I just didn't want my ID on any records, I don't have any serious OpSec concerns otherwise. I'm sure you could either buy PayPal accounts like this if you needed to, or make one in a country that doesn't have KYC laws somehow. From there I'd add money to my balance and send money as F&F. At no point did I need an ID so in that sense there's no KYC. Some sellers on localmarket were fancy enough to list that they wanted an ID for KYC, but I'm sure you could just send them any random ID you made in paint from the republic of dave and you'd be fine.
  • 1 Stimmen
    8 Beiträge
    3 Aufrufe
    L
    I think the principle could be applied to scan outside of the machine. It is making requests to 127.0.0.1:{port} - effectively using your computer as a "server" in a sort of reverse-SSRF attack. There's no reason it can't make requests to 10.10.10.1:{port} as well. Of course you'd need to guess the netmask of the network address range first, but this isn't that hard. In fact, if you consider that at least as far as the desktop site goes, most people will be browsing the web behind a standard consumer router left on defaults where it will be the first device in the DHCP range (e.g. 192.168.0.1 or 10.10.10.1), which tends to have a web UI on the LAN interface (port 8080, 80 or 443), then you'd only realistically need to scan a few addresses to determine the network address range. If you want to keep noise even lower, using just 192.168.0.1:80 and 192.168.1.1:80 I'd wager would cover 99% of consumer routers. From there you could assume that it's a /24 netmask and scan IPs to your heart's content. You could do top 10 most common ports type scans and go in-depth on anything you get a result on. I haven't tested this, but I don't see why it wouldn't work, when I was testing 13ft.io - a self-hosted 12ft.io paywall remover, an SSRF flaw like this absolutely let you perform any network request to any LAN address in range.