The poor sap was probably trying to get the wifi working :/.

You configure vlans per physical port, so in a properly implemented system your attack won’t be possible. When the packet comes to the switch the vlan tag is added to it according to the configuration for the port it was received from.

Or are you talking about mac-vlans?

Depends on you hw. That seems rather poor implementation… I believe my TP switch might handle that, because it rejects traffic to its management interface from mac X from vlan 20 because it sees the same mac in vlan 10… (only vlan 20 is allowed for management)

Well, if these devices required any sort of authentication (e.g. pairing) to free access to their ram and flash, we wouldn’t be having this particular story…

It’s nice that this exists, but even for this I’d prefer to use an open source tool.

And it of course helps with migration only if the old HS is still online…

I think most practically this migration function would be built inside some Matrix client (one that would support more than one server to start with), but I suppose a standalone tool would be a decent solution as well.

Wish the homeserver portability would be worked on more. The ability to change homeserver would really allow people to more easily move on from matrix.org.

Myself included ;).

Optimally it would even allow the switch “after the fact”, so after your original homeserver is down, assuming your client has a local copy of the server-side secret storage. It would need to be based on some cryptographic identity then, I suppose.

Does he already not have the opportunity, robot or not?

I’m also in a one-party consent country, and I’ve found it sometimes useful to get back to some calls just to find out some details, such as agreed date/time or some detail of a discussion I had with my mother. I would enjoy an automatic text translation to be stored alongside them.

I miss the feature now that I have Pixel 8.

I used syncthing to sync them to PC. Size-wise I have so few phone calls (work meetings excluded, which they are as they are over Slack/Teams) that all of them will fit most any modern phone easily.

What do you use for spreadsheets on Emacs? At least org-modes tables are there but aren’t quite it…

They presumably assume they’d be selling so little that it wouldn’t be worth the trouble.

They’ll probably wait out this situation for a while and see what the competition does…

If you just do it on your own computer, the packet will be already dropped by your own gateway. You can fake whichever address in your local subnet, but those are very likely remapped anyway in your gw to the one given by your ISP.

If you would have access to the switch port used by your ISP in the Internet exchange point (IX), you would have more liberties in choosing the IP.

Did you give it to it?

It can be a pretty nice feature for using map-based apps in the browser.

I haven’t used such websites for a while and I don’t see Firefox in the recent users of the location API, even though I use Firefox Android all the time. (Info available in Android under Settings/Location.)

And did mentioning these things just make the message disappear on US-based lemmy-instances?

I don’t believe it did.

That’s pretty low bar for calling something a “quirk”. The whole ML family, so OCaml, SML, Haskell, F# and perhaps a the new distant relative Rust call it also it None.

And it’s not even the same thing: null means pointer to nothing, while None means no value.

How is None a quirk?

In theory, yes. But if you follow the link and that leads to downloading the JS and running it, you’re already too late inspecting it.

And even if you review it once (and it wasn’t too large or obfuscated via minification), the next time you load a page, the JS can be different. I guess there could be a web browser extension for pinning the code?

The only practial alternative I know of is to have a local client you can review once (and after updates).

So the trick is to use the #fragment part of the URL, that is not sent to the server.

Of course the JS one downloads from the server could easily upload it to it, so you still need to trust the JS.

Alas my game PC is going to stick with Windows due to bad state of VR in Linux :/. And therefore one day it might need to update to Windows 11.

In particular if you have a headset that is not Valve Index, though apparently with Meta Quest one can use ALVR, as long as you get the actual games running.