I guess integration with Google Drive is a big convenience for users.

But yes, if the cost of getting access is to high for indie developers, then it make sense to avoid Google Drive. Creating and maintaining your own cloud sync service for a specific app may not be worth it, they should investigate integration with existing Google Drive competitors/alternatives.

Translation: We’re extremely short staffed, so we are shaming our employees into sacrificing their vacation

NOYB has the right to send a complaint if it think a company infringe upon right to privacy. Mozilla isn’t entitled to special treatment or special notice before filling a complaint.

Mozilla should have expected this. They claim to defend users privacy so they should understand why consent for data collection is important. Also there was public outcry and criticism of opt-out, and yet they haven’t backed down.

If Mozilla resolve these issues, NOYB could ask for the complaint to be dropped. I hope they do resolve this, and do drop the complaint.

Knowledge of the account is an obvious caveat. Yubikey-based MFA is an added layer of protection for accounts, so any kind of attack against MFA assumes the attacker already knows which account to target.

It’s like saying “our door lock is flawed, but the attacker would need to have knowledge of the door”.

The cost and complexity is what’s noteworthy and is more relevant. Although attack cost and complexity usuallu goes down with advances in tooling and research. So it may be a good idea to plan a progressive retirement of affected keys.

While that’s true, but there’s no indication of Microsoft brute forcing with million of combinations.

The article you link says Microsoft is only trying a few obvious passwords: the filename, and words found in the plaintext message.

Proper encryption isn’t just about using a strong algorithm. It’s also about proper key management, ie not sending the password in the clear via the same channel as the encrypted files.

ZIP isn’t a good way to encrypt, but what Microsoft is doing is simply reading the email, and decrypting zips with the password found in the email body.

All encryptions schemes can be trivially broken if you have the key. It’s not even breaking, it’s just normal decryption.

Scientists don’t have to explain why they’re leaving twitter. The reasons should be obvious to anyone familiar with Twitter.

Journalists need to explain why they’re still on Twitter, given that platform has so much bots, trolls, hate and lack moderation.

Sodas

AI is the new “the dog ate my homework”

Quite the contrary.

Password hashing is standard nowadays.

When a database is compromised, brute forcing hashes is necessary to recover passwords, and the short ones are the first ones to be recovered.

These integrations have big limitations which I would consider deal breakers. To quote this blog post :

❌ Files are not stored on the local disk like a proper Cloud service app

❌ Cannot be used without internet

That’s better than nothing, but definitely not a good option.

It sounds like Google Drive isn’t a very good option for Linux users. Better look for another provider which support Linux, or to do it yourself with syncthing.

If all you need is 15 Go, it’s something which can easily be stored on another device and synced with syncting. If you need more you’d have to pay anyway, go pick anything but Google.

Buy a used copy of GTA 2 from someone who purchased it legally.

Good luck finding one.

These 5% of negative reviews probably has nothing to do with you. There’s always a small amount of people unhappy for random or unrelated reasons (broke up with boy/girlfriend, car broke, etc) and who would write negative reviews no matter what. It’s possible they cannot dissociate the course from other things happening in their life. They just happened to be unhappy at that time, and felt like leaving a nasty review.

Taler is closer to an EMV card alternative, rather than a cash alternative.

Hopefully cash remains. But regions and businesses are already starting to go cashless, so I’d rather have Tale as an option.

Would Taler be more resilient than a typical EMV/AmEx card? It’s designed as an online payment system but it’s less centralised, so that could help.

It’s already an attractive project due to its privacy feature, and due to it being more regulation-friendly that cryptocurrencies. If it’s resilient enough it could act as a digital cash.

That’s interesting. Thanks for pointing it out.

My point is having a very old constitution isn’t much of a boast if keeping it as-is causes political issues.

Tradition and inertia.

The USA is proud to have the oldest and longest-standing written constitution. The fact it hasn’t been rewriteen in a long time help explain why there’s still an electoral college, slavery for prisoners (13th amendements), and weak regulation of campaign finance.

Thanks for the explanation. I’m considering Matrix but will hold off, at least until v1.11 or v1.12 solves the unintended CDN issue described in another comment here, cf https://matrix.org/blog/2024/06/20/matrix-v1.11-release/#continue-reading

Neat. I wish OpenSSH better support this use case. The instruction involve multiple moving parts on top of OpenSSH (s6-ipcserver, socat or custom scripts) and a number of extra options for the client. That probably adds overhead. It would probably be easier and more efficient if OpenSSH would directly support Unix sockets.