JRaccoon

They can include runnable JavaScript too, which can cause vulnerabilities in certain contexts. One example from work some years back: We had a web app where users could upload files, and certain users could view files uploaded by others. They had the option to download the file or, if it was a file type that the browser could display (like an image or a PDF), the site would display it directly on the page.

To prevent any XSS (scripts from user-provided files), we served all files with the CSP sandbox header, which prevents any scripts from running. However, at the time, that header broke some features of the video player on certain browsers (I think in Safari, at least), so we had to serve some file types without the header. Mistakenly, we also included image files in the exclusion, as everyone through image files couldn’t contain scripts. But the MIME type for SVG files is image/svg+xml… It was very embarrassing to have such a simple XSS vuln flagged in a security audit.

I don’t have an answer for you, but I can absolutely relate. Some people say something like “find a job you love, and you’ll never work a day in your life.” But for me, it doesn’t work that way. I like my job, have awesome coworkers, and always look forward to the next week. But obviously I’d still rather be doing things I enjoy more. You know, playing that latest video game, finally finishing the Lego set I bought three months ago, hanging out with friends, etc. Two days out of seven just isn’t enough time to do all that, which leads to anxiety about optimizing the little time I have.

One thing that has helped me somewhat (and I know I’m very privileged to be able to do this) is taking every other Friday off. A two-day weekend versus a three-day weekend makes a huge difference for me. I’m actually considering switching to having every Friday off. But then ofc, there might be the dilemma of having the time to do the things I enjoy but not enough money for them :(

Nope. But as mentioned in the article, some support for display servers might be coming in Android 16.

Networking does work. I was able to install packages using apt and also ping machines on my local network. Could be useful.
I guess in a pinch it could be used to ssh into other machines. However, I’m sure there are plenty of SSH clients available for Android, which are much more lightweight solution than running a whole VM.

It has access to /sdcard as a shared folder.

How does this work? The app doesn’t seem to have any settings related to it yet. Under /mnt in the VM I noticed folder shared that seems to match the downloads folder on my phone, which seems odd

Tested this on my Pixel 8a. Works as you would expect. Personally I have a little hard time coming up with use cases for this but I guess it’s kinda cool.

I use the vanilla FF but with this theme applied:
https://github.com/black7375/Firefox-UI-Fix

For those who have tried multiple apps, it would more helpful to others if you also mentioned WHY the certain app is your favorite. Is there some unique feature you really like or something else that sets it apart from all the others.

Personally I’ve only used Voyager. It seems to have everything I need but I cannot really call it my favorite as I haven’t tried any others.

Yeah I get that, but why return that information in the HTTP response?

Interesting read. One thing I don’t fully get is why does Cloudflare have the airport code in the response headers anyway? I cannot think of a single reason to have it in the response.

I would imagine the flight recorders keep recording as long as there’s any power left in the aircraft. So if there was a bird strike as they suspect, and if that caused a dual engine failure, the recorders should still work, right? So there has to be more to the story than a simple bird strike.

I think this time the manufacturers will be pretty quick at adopting the new branding; if there’s two competing devices next to each other, one marked with “USB 3.2 Gen 2x2”, which no one understands, and other one with “USB 20Gbps” I think the latter will sell more.

https://github.com/jarnedemeulemeester/findroid

This is the repository? They have a ko-fi link in the repository meaning they accept donations to support the development. Have you tried contacting the lead developer of the project and asking if they would be interested in adding the feature you want if you sponsored it via a donation?

Pretty sure any decent model could easily solve that anyways.

True, but often these things also track the mouse movements or touch inputs and analyse those to see if they match natural human input or not. Of course advanced AI would be able to simulate proper inputs but most bots today would fail this check.

Sure. I’m not recommending anything, just stating what has worked for me. For simple use cases, I think most of the DDNS services are pretty much the same anyway and it’s easy to switch to an another one if one stops working for some reason.

I’ve been using No-IP free plan for years without issues. Inputted the credentials to my routers DDNS client and then basically forgot about it. Free users need to confirm their account once a month via email but that’s just one click.

If your domain registrar happens to have an API to update DNS entries, you could implement DDNS yourself by writing a simple automated script to check the external IP (e.g. via ipify.org) and if it’s changed from the last check then call the API to update the DNS entries.

Well, just by looking at responses in this thread, the controversy most definitely still exists. Some seem to like it and others hate it fiercely.

Cool, thanks for the explanation.

a single application that gets bundled with all necessary dependencies including versioning

Does that mean that if I were to install Application A and Application B that both have dependency to package C version 1.2.3 I then would have package C (and all of its possible sub dependencies) twice on my disk? I don’t know how much external dependencies applications on Linux usually have but doesn’t that have the potential to waste huge amounts of disk space?

Sorry to ask, I’m not really familiar with Linux desktop nowadays: I’ve seen Flatpak and Flathub talked about a lot lately and it seems to be kinda a controversial topic. Anyone wanna fill me in what’s all the noice about? It’s some kind of cross-distro “app store” thingy?

I think it would be useful with updates when setting up a new phone or after a factory reset when basically every app needs an update

Google Tasks. Does not have all the features of other apps but does everything I need and was preinstalled