Skip to content

Say Hello to the World's Largest Hard Drive, a Massive 36TB Seagate

Technology
255 155 15
  • Dubai to debut restaurant operated by an AI chef

    Technology technology
    6
    26 Stimmen
    6 Beiträge
    34 Aufrufe
    G
    Huh, looks like my days of having absolutely zero interest in going to Dubai are coming to a middle
  • 32 Stimmen
    6 Beiträge
    53 Aufrufe
    G
    Yes. I can't imagine that they will go after individuals. Businesses can't be so cavalier. But if creators don't pay the extra cost to make their models compliant with EU law, then they can't be used in the EU anyway. So it probably doesn't matter much. The Llama models with vision have the no-EU clause. It's because Meta wasn't allowed to train on European's data because of GDPR. The pure LLMs are fine. They might even be compliant, but we'll have to see what the courts think.
  • 678 Stimmen
    179 Beiträge
    739 Aufrufe
    D
    Thats what the firewall rules do too, don't allow internet connection if there's no vpn connection. Firewall is a system-wide solution that always works, while qbt config relies heavily on the application implementing interface binding properly. Which it doesn't fully btw.
  • Taiwan adds China’s Huawei, SMIC to export blacklist

    Technology technology
    43
    1
    61 Stimmen
    43 Beiträge
    205 Aufrufe
    R
    Based decision.
  • How the US is turning into a mass techno-surveillance state

    Technology technology
    66
    1
    483 Stimmen
    66 Beiträge
    242 Aufrufe
    D
    Are these people retarded? Did they forget Edward Snowden?
  • 476 Stimmen
    82 Beiträge
    443 Aufrufe
    Y
    It's true that there's some usefulness in recollection, but geez I find myself digging through my browser history and being absolutely lost... whether it's an article, video, online store product, anything. Then I usually just re-search for whatever it was from scratch ‍️
  • 1 Stimmen
    8 Beiträge
    40 Aufrufe
    L
    I think the principle could be applied to scan outside of the machine. It is making requests to 127.0.0.1:{port} - effectively using your computer as a "server" in a sort of reverse-SSRF attack. There's no reason it can't make requests to 10.10.10.1:{port} as well. Of course you'd need to guess the netmask of the network address range first, but this isn't that hard. In fact, if you consider that at least as far as the desktop site goes, most people will be browsing the web behind a standard consumer router left on defaults where it will be the first device in the DHCP range (e.g. 192.168.0.1 or 10.10.10.1), which tends to have a web UI on the LAN interface (port 8080, 80 or 443), then you'd only realistically need to scan a few addresses to determine the network address range. If you want to keep noise even lower, using just 192.168.0.1:80 and 192.168.1.1:80 I'd wager would cover 99% of consumer routers. From there you could assume that it's a /24 netmask and scan IPs to your heart's content. You could do top 10 most common ports type scans and go in-depth on anything you get a result on. I haven't tested this, but I don't see why it wouldn't work, when I was testing 13ft.io - a self-hosted 12ft.io paywall remover, an SSRF flaw like this absolutely let you perform any network request to any LAN address in range.
  • 0 Stimmen
    7 Beiträge
    27 Aufrufe
    F
    It's an actively hostile act, regardless of what your beliefs are on the copyright system.