The bot demonstrated very well what this article is about. I don’t know the internals, but I also can’t image the bot was using the best and most expensive ways of doing analysis.

It was pretty bad at “getting the point” even when it was obvious, a better system should be able to do so. Sometimes the point is more difficult to discern and there has to be some judgement, you can see this in comments sometimes where people discuss what “the point” was and not just the data. I imagine an AI would have some difficulty determining what is worth summarizing in these situations especially.

Different applications have better performance on one vs other. Google Cloud still offers a lot of Nvidia options.

Normal based on what? The ads exist because plenty of normal people use them to decide where to buy things or certain items. If they didn’t bring people in the stores wouldn’t bother.

Do you regularly use their ads to compare prices and select what to buy at each one, or generally stick to one place with a few trips to another one?

I think you explained it fine, it just doesn’t make sense to people who only go to the same place.

Difficult to fix if exploited.

Can be patched beforehand.

It’s not just the title that is poorly written. The entire thing is written like “the sky is falling because memory chips and big computer stuff has a broken”.

According to them, “The threat intel data noted in this report is available to tens of thousands of customers, partners and prospects – and hundreds of thousands of users.”

It seems like they are trying to say their network is fine.

How dare they not commission a piece.

That’s also empty weight on the Learjet, gross weight is higher. This one is presumably that weight with the batteries so I suspect is smaller. Wish there were more details.

Neither has its own extension repository, so maintaining support enables side loading but isn’t all that useful for normal people or those who want their extensions to be up to date.

Brave shields work better than the built-in protection in Vivaldi, so it’s less of an issue there but still frustrating.

Yes, and they don’t develop Firefox (legally can’t) since they made a for-profit entity for that purpose.

The Mozilla Corporation does not accept donations.

Poorly written article with little substance but a zinger of a headline. Think they’re trying to take advantage of announcements of Intel and TPM security flaws in the past to get more clicks.

This is a UEFI firmware issue that can be patched by BIOS vendors. It is an issue at a very low level, but not an issue with Intel or the TPM.

The exploit is in the UEFI firmware code for handling the TPM and used for privilege escalation in that firmware, “TPM won’t save you” doesn’t really make sense because no shit. The vulnerability doesn’t mean the TPM unseals its contents though, and I’m curious if the exploit modifies the PCR values enough that OS security could trigger (Bitlocker recovery and whatever). Wouldn’t help if the malicious software was already there though.

It’s what happens when the driver swerves into the crossing arm pole to not hit the train in front of it.

This sort of story is what made me switch away from Google Fi and ultimately mostly degoogling. Privacy was a big part later on, but initially it was realizing that a YouTube comment or a file in my drive could get my cell service turned off.

That’s when Nintendo reaches out to CloudFlare instead.

In that case it does sound better, and many sites using passkeys still have you enter your username first anyway, at least at this point. I don’t know how Android implements it, I think iOS likely supports this use case and know that it also works as a second factor to a password through the same Passkey workflow. Unlike the Yubikey it always stores the key when you register though, even if it isn’t fully passwordless. Unfortunately what’s easy for the consumer will dominate.

Yes, but do you need to unlock your key to use it? Possession is not enough to access discoverable credentials.

You edited, but I don’t see this as significantly more secure than the Passkeys, and most keys are not the bio series (not that I trust fingerprint readers anyway).

Are your non-discoverable credentials also locked on the key, or can someone who knows your handle and possesses your key access your accounts? Online usernames are not well protected, I’d rather my key lock out after a few failed attempts to access it.

Passkeys are FIDO2. The issue is the tokens don’t have much storage for them. For passwordless vs use as a second factor, it has to store it instead of dynamically generating a response to a challenge. They are two features of the protocol.

https://www.yubico.com/blog/a-yubico-faq-about-passkeys/

Much of the complexity described here comes from the question “which password manager?”

The hardware keys are great but so far don’t have enough storage. For example, Yubikey as a second factor dynamically generated its responses, but now that it’s storing them it’s very limited to at most 25. It’s a known issue that will be solved though.

What makes no sense to you, exactly?

Users not having to remember a bunch of passwords makes a huge amount of sense to them. The support is already built into the devices they are using and it’s somehow, they don’t know or really care, more secure.

Bing uses ChatGPT.

Despite using search results, it also hallucinates, like when it told me last week that IKEA had built a model of aircraft during World War 2 (uncited).

I was trying to remember the name of a well known consumer goods company that had made an aircraft and also had an aerospace division. The answer is Ball, the jar and soda can company.

Yeah Canonical has never put ads in Ubuntu.

They’ve also pulled back on some of it. But that doesn’t really matter, being invoked isn’t the same as releasing their own chip.

That’s crazy. Not a Microsoft fanboy, but I’ve had issues like that after an actual board swap and they still have made it right (and technically they were in the right to disallow it), and they’ve fixed issues with transferring around my retail license that I’ve had since like Windows 7 because by now it’s been activated a bunch of times. Enshittification.

Because it doesn’t sound like “forge” in English. People hear it and don’t know how it’s spelled (thanks Esperanto).

https://forgejo.org/static/forgejo.mp4

It could change based on EU regulations, I seem to recall Mozilla saying they weren’t going to maintain two versions though.

Never configured udisks, eh?

Never glanced at Windows power options, eh?

This article says the same thing, but it’s worth people being aware that firmware is a vector.

You can. ASUS actually based their official firmware off of one of them, and there is a custom mod of that too.

As the “object” the friend would stay the same in this proposal, but everything behind them would vary.

Servo still exists, it is under the Linux Foundation umbrella now after Mozilla abandoned it. Just got some funding in January.

They did update the Declarative Net Request API to be more useful apparently.

https://www.theverge.com/2023/11/16/23964509/google-manifest-v3-rollout-ad-blockers

Mozilla Corporation is a for profit company that builds Firefox. The Mozilla Foundation is nonprofit.

MZLA Technologies, the Thunderbird company, is also for profit which is why donations to them are not tax deductible.

They both get their extensions from the Chrome Web Store. It’s going to be a lot like when Mozilla deprecated their old extensions and some forks continued support for them, great except very few people are going to continue to develop those extensions.

The removal came after users widely shared a blog from Texts.com showing that messages sent with Sunbird’s system aren’t actually end-to-end encrypted — and that it’s not hard to compromise it.

End to end encryption means my device encrypts it and yours decrypts it. Their bridge will never be able to support this, it has to decrypt it in the middle to transfer to and from the other service. At the very best, when their implementation isn’t slipshod, you have to trust them when they say they ignore all the (hopefully temporary) plain text data that is passing through their bridge.