The internet is filled with Schrodinger’s Asshole. How is anyone supposed to know if you meant it sarcastically originally or are just claiming it was sarcastic now that it hasn’t landed?
The internet is filled with Schrodinger’s Asshole. How is anyone supposed to know if you meant it sarcastically originally or are just claiming it was sarcastic now that it hasn’t landed?
Canonical and Debian both target the professional server space. I’ve spent pretty much my entire career working on Debian-based distros.
Hell, the one company I worked for that I expected to use RHEL used Ubuntu for everything, so 🤷♂️.
In my experience, first-party JavaScript is more likely to be updated so rarely that bugs and exploits are more likely than supply chain attacks. If I heard about NPM getting attacked as often as I hear about CDNs getting attacked, I’d be more concerned.
I actively do this with uMatrix - granted, I only block non-first-party JavaScript. Most sites I visit only require a few domains to be enabled to function. The ones that don’t are mostly ad-riddled news sites.
There are a few exceptions to this - AWS and Atlassian come to mind - but the majority of what I see on the internet does actually work more or less fine when you block non-first-party JavaScript and some even when you do that. uMatrix also has handy bundles built-in for certain things like sites that embed YouTube, for example, that make this much easier.
Blocking non-first-party like I do does actually solve this issue for the most part, since, according to the article, only bundles that come from the cdn.polyfill.io domain itself that were the problem.
A PiHole functions has a full DNS server. You can configure it to serve any arbitrary records you like - which is basically how it overrides ad domains to prevent them from loading.
So, if you know the IP address that a particular domain is supposed to route to, you configure the PiHole to respond with that IP address for that domain. So, it doesn’t matter that the major DNS servers return junk because your PiHole never asks them.
In this theoretical system, ideally it’s illegal for anyone other than the person who’s supposed to have the private key to have it - excepting some subset of legal reasons (e.g. parents for their children). So, the only business that would be asking for people’s private keys are the kind that are already operating outside of the law.
This is no longer the case. Any SSN issued after 2011 is fully randomized
Additionally, the following SSNs are always invalid:
That’s kinda backwards, isn’t it? If I want to verify my identity to a company, they would send me something that only I could decrypt. Some government agency provides all the public keys of all citizens, the company takes my public key, encrypts some secret with it, sends it to me, and asks me to decrypt and return it. If I’m able to do so, I must be who I say I am otherwise I would not be able to decrypt the secret.
In an ideal world, the company (or, even better, the employee) would have a similar certificate that I could use to encrypt my response with.
I would, however, point out that the specific page on Cannabis sativa lists them as subspecies. So, it appears there isn’t even consensus on Wikipedia.
If the planes had entered sovereign airspace, sure. They synopsis says the Russians were flying in international airspace, which usually means it’s not under the sovereign control of any nation and the Latvians would have had no basis to fire on the Russians.
Personally, I’d love to see the Russians try to stunt their way into someone’s airspace and get dick slapped for it, but I doubt that would happen.