@GossiTheDog I don't know about every implementation but Apache, as it ships from Debian at least, disables directory traversal out of the web directory by default.
@GossiTheDog I wonder if AD supports importing data from an exported list. It's been years, but the last time I ran a Windows domain the AD mmc would let you export all sorts of data to a plain text tile. I actually used this in conjunction with a python script I wrote once to ping every computer object in our OU on a schedule so I could look for patterns over time and remove stale objects from the previous admins.
Anyway, I wonder if you could export and import user account stuff this way.
@killyourfm I've noticed the same thing. While many anticheat programs don't work on Linux; the compatibility with Windows games is actually better, on average at least, in Linux than it is in Windows. I remember having to mod the original Max Payne to get audio working on newer versions of Windows and everything, but a lot of things "just work" on SteamOS/Linux.
Anybody know how financially stable #LinuxMint is? I am considering recommending it to people like my mom as support for #Windows 10 winds down, but looking at their sponsors page looks like they only bring in between $3k and $4k per month. That's not a lot of money for several developers to maintain an entire operating system. What happens if they lose one of the 2-3 big sponsors they have? Does the whole project cave or just stop getting timely #security updates?
Random thought. The older I get, the more sense #RichardStallman's absolutist stance on free software makes to me. If you can't inspect, or have someone inspect, the source of software you've paid for, then you own nothing. You have no idea what's going on under the hood. You wouldn't buy a car if the dealership told you they were the only ones allowed to perform maintenance or modifications, so why do we tolerate that behavior from proprietary software vendors?
@Gargron I've often wondered when I see scenic vistas like this, are the shrubs just naturally that short? Around here in Kentucky if you don't mow and weed eat the areas of the hillside you care about before long it'll be a jungle with bushes taller than you are.
Headline: Hacker Accesses Internal ‘Tile’ Tool That Provides Location Data to Cops
Subtitle: A hacker broke into systems used by #Tile, the tracking company, then stole a wealth of customer data and had access to internal company tools.
I literally just got a Donald #Trump ad on #YouTube asking us to donate to him. A criminal billionaire who tried to stage a coups wants ME to donate to HIM. Fuck that guy and the horse he rode in on.
@GossiTheDog The crazy thing is that the engineers who work on open source projects "seem" to be reasonably talented folks. Like the guy who found the back door in SSH because it took a half second longer than normal to authenticate. When it comes to Windows though it just seems like a complete clusterfuck.
@Gargron A lot of stuff these days, from movies to anime to video games, seems to just be re-hashing existing content. People are out of new ideas and they know this stuff will make money, so they're giving old content a new coat of paint because it's a quick and easy cash grab.
@fsf We're lucky, our kids' schools are surprisingly open to ideas. For example, when a Microsoft Teams meeting fell thru because of an issue with Teams, my son's teacher had no qualms with using Nextcloud Talk on our personal Nextcloud to conduct the meeting. When it comes to online lessons, my daughter is allowed the use the laptop I bought for her that runs Debian. I don't agree with every product choice they make, but they've been a lot more open than some others I've heard of.
I find myself these days hesitant to even consider any private messengers if they don't have the option to verify which devices/keys have access to your messages. #Signal, #XMPP / OMEMO, #Matrix, hell even Facebook Messenger's E2EE chats let you verify which devices can read your messages. If you're encrypting your users' messages, but they can't verify whether a rogue device has access to their messages, then why even bother encrypting them?
Husband, father, US Army veteran- Privacy, security, Linux, free software and all around tech enthusiast- Gamer- School bus driver / mechanic- Dog lover