Mr_Figtree

joined 1 year ago
sorted by: new top controversial old
5
Security advisory for Cargo (CVE-2023-38497) | Rust Blog (blog.rust-lang.org)
 

The Rust Security Response WG was notified that Cargo did not respect the umask when extracting crate archives on UNIX-like systems. If the user downloaded a crate containing files writeable by any local user, another local user could exploit this to change the source code compiled and executed by the current user.

4
Security advisory for Cargo (CVE-2023-38497) | Rust Blog (blog.rust-lang.org)
 

The Rust Security Response WG was notified that Cargo did not respect the umask when extracting crate archives on UNIX-like systems. If the user downloaded a crate containing files writeable by any local user, another local user could exploit this to change the source code compiled and executed by the current user.

10
This Week in Rust 506 (this-week-in-rust.org)
4
This Week in Rust 506 (this-week-in-rust.org)
How to make Firefox trust a self-signed certificate? in c/[email protected]
[–] [email protected] 0 points 1 year ago (1 children)

Does the certificate have a basic constraints extension with CA:TRUE set? Firefox doesn't allow that for certificates used as ‘end entity’ certificates. You'll want to re-generate the certificate without the extension.

2
#106 GUADEC 2023 · This Week in GNOME (thisweek.gnome.org)
 

Update on what happened across the GNOME project in the week from July 21 to July 28.

Firefox 115.0.3 released in c/[email protected]
[–] [email protected] 1 points 1 year ago

The complete changelog:

Improved migration experience for users switching to the ESR release. (bug 1845338)

Did you know: Gnome’s MVP of the year gets a pair of pants. in c/[email protected]
19
This Week in Rust 505 (this-week-in-rust.org)
15
This Week in Rust 505 (this-week-in-rust.org)
4
This Week in Rust 505 (this-week-in-rust.org)
GUADEC 2023 - Watch All GUADEC Talks Online in c/[email protected]
3
July 2023 Leadership Council Update | Inside Rust Blog (blog.rust-lang.org)
 

Hello again from the Rust Leadership Council. In our first blog post, we laid out several immediate goals for the council and promised to report back on their progress. It has been about a month since our first update so we wanted to share how it's going and what we're working on now.

2
#105 Legendary Saturday Edition · This Week in GNOME (thisweek.gnome.org)
 

Update on what happened across the GNOME project in the week from July 15 to July 22.

I want to return to Linux. Recomendations? in c/[email protected]
Firefox still doesn't have PWA support in c/firefox
[–] [email protected] 3 points 1 year ago

so I can totally ditch chromium/electron

GNOME Web isn't Chromium-based and does support PWAs, so it might work for your usecase.

My office has automatic faucets in the bathroom and I've started sticking my hands under the faucet at home and wondering for a second where the water is. in c/mildlyinfuriating
[–] [email protected] 12 points 1 year ago

Someone I know recently switched from automatic bathroom lights to manual ones. Remembering to turn them on isn't an issue, but months later everyone still forgets to turn them off.

2
This Week in Rust 504 (this-week-in-rust.org)
52
Announcing Rust 1.71.0 | Rust Blog (blog.rust-lang.org)
 

The Rust team is happy to announce a new version of Rust, 1.71.0. Rust is a programming language empowering everyone to build reliable and efficient software.

What's in 1.71.0 stable

  • C-unwind ABI
  • Debugger visualization attributes
  • raw-dylib linking
  • Upgrade to musl 1.2
  • Const-initialized thread locals
What hostname do you use for server? home.box or home.local? in c/selfhosted
[–] [email protected] 10 points 1 year ago (1 children)

And .box has been registered as a generic TLD now, so you could run into external .box domains.

Dutch government starts own Mastodon instance as reaction to the instability of Twitter in c/fediverse
[–] [email protected] 25 points 1 year ago (3 children)

They're not going to have open signups. It's government agencies only. Not that there's technically anything stopping Germans from joining the PR departments of our government agencies…

So I tried signing up for Twitter to do a little trolling there... in c/mildlyinfuriating
[–] [email protected] 13 points 1 year ago (4 children)

So what you're saying is that Twitter successfully kept out a bad actor.

It's a shame that most of the users they have left are also in that category, but hey, they seem to be working on it.

Google’s medical AI chatbot is already being tested in hospitals in c/[email protected]
[–] [email protected] 2 points 1 year ago (1 children)

That's the real AI apocalypse:

  • People outsourcing decisions to predictive text because they believe it thinks
  • AI hallucinations becoming commonly accepted as truth, as generated articles bury actual knowledge in a flood of bull droppings
UNOFFICIAL poll about OPT-OUT metrics proposal in c/[email protected]
[–] [email protected] 2 points 1 year ago

You'll still have the people who are opposed to any telemetry at all, but I think that would do a lot to alleviate the concerns.

view more: next ›