Skip to content

Former GM Executive: BYD cars are good in terms of design, features, price, quality. If we let BYD into the U.S. market, it could end up destroying american manufacturers

Technology
301 156 2
  • X CEO Linda Yaccarino is now ex-CEO

    Technology technology
    15
    1
    244 Stimmen
    15 Beiträge
    12 Aufrufe
    semi_hemi_demigod@lemmy.worldS
    Buffalo buffalo buffalo buffalo Buffalo buffalo buffalo
  • 70 Stimmen
    5 Beiträge
    11 Aufrufe
    adespoton@lemmy.caA
    Most major content producers have agreements with YouTube such that as their content is discovered, monetization all goes to the rights holders. In general, this seems like a pretty good idea, and better than copyright maximalism. However, I’ve had original works of my own “monetized by rights holder” because they used my work (with permission) in one of their products, and so now have co-opted all expressions of my work on YouTube. So the system isn’t perfect.
  • How social media became a storefront for deadly fake pills

    Technology technology
    1
    1
    18 Stimmen
    1 Beiträge
    7 Aufrufe
    Niemand hat geantwortet
  • New Google AdSense Fill Empty In-Page Ads

    Technology technology
    2
    1
    21 Stimmen
    2 Beiträge
    21 Aufrufe
    S
    I've not seen an ad in years, so they can try to monetize me but will fail spectacularly
  • Linus Torvalds and Bill Gates Meet for the First Time Ever

    Technology technology
    222
    787 Stimmen
    222 Beiträge
    940 Aufrufe
    M
    Hmm, you kind of lost me with these metaphors. No offence, I'm just not sure what is supposed to represent what here.
  • 308 Stimmen
    23 Beiträge
    100 Aufrufe
    G
    I spent way too long researching the morning. That industry implies a much greater population that is attracted to children. Things get more nuanced. People are attracted to different stages, like prebubesant, early adolescence, and mid to late adolescence. It seems like an important distinction because this is a common mental disorder. I was ready to write this comment about my fear that there's a bunch of evil pedophiles living among us who are simply deterred by legal or social pressures. It seems more like the extreme stigma of pedophilia has prevented individuals from seeking assistance and has resulted in more child sexual abuse. This sort of disorder can be caused by experiencing this abuse at a younger age. When I was religious, we worked closely with an organization to help victims of trafficking. We had their stories. They entered our lives. I took care of some of these kids. As a victim of sexual abuse when I was kid, I had a hatred for these kinds of people. I feel like my brain is melting seeing how there is a high chance of people in my life being attracted to children. This isn't really to justify the industry. I'm just realizing that general harassing people openly about it might not be helping the situation.
  • 168 Stimmen
    11 Beiträge
    49 Aufrufe
    A
    Law enforcement officer
  • 1 Stimmen
    8 Beiträge
    37 Aufrufe
    L
    I think the principle could be applied to scan outside of the machine. It is making requests to 127.0.0.1:{port} - effectively using your computer as a "server" in a sort of reverse-SSRF attack. There's no reason it can't make requests to 10.10.10.1:{port} as well. Of course you'd need to guess the netmask of the network address range first, but this isn't that hard. In fact, if you consider that at least as far as the desktop site goes, most people will be browsing the web behind a standard consumer router left on defaults where it will be the first device in the DHCP range (e.g. 192.168.0.1 or 10.10.10.1), which tends to have a web UI on the LAN interface (port 8080, 80 or 443), then you'd only realistically need to scan a few addresses to determine the network address range. If you want to keep noise even lower, using just 192.168.0.1:80 and 192.168.1.1:80 I'd wager would cover 99% of consumer routers. From there you could assume that it's a /24 netmask and scan IPs to your heart's content. You could do top 10 most common ports type scans and go in-depth on anything you get a result on. I haven't tested this, but I don't see why it wouldn't work, when I was testing 13ft.io - a self-hosted 12ft.io paywall remover, an SSRF flaw like this absolutely let you perform any network request to any LAN address in range.