* Posts by KorndogDev

45 publicly visible posts • joined 1 Jul 2017

Dutch watchdog fines Booking.com €475k after it kept customer data thefts quiet for more than 3 weeks


booking.com sends ALL credit card info as text

This has been known for ages to those who work at hotel desks. When you book a place via their site, they send your name, credit card number and CVV directly to hotels. What hotels do? They most likely print out that information for future reference, I have seen such printouts many times while waiting for the hotel staff to return to their desk. This is a zero security model and it has been running for years.

Decade-old bug in Linux world's sudo can be abused by any logged-in user to gain root privileges


Re: How is this possible?

Thanks, this is indeed a very pleasant to read piece of code, the bug is so obvious, don't ya?!

size_t cmnd_size = (size_t) (argv[argc - 1] - argv[0]) + strlen(argv[argc - 1]) + 1;

You'd think 1.8bn users a day would be enough for Zuck. But no. Oculus fans must sign up for Facebook


Not so fast

Very likely FB will ask for your mobile number when creating a new account. And one-off mobile numbers are rather not available.

Linux kernel maintainers tear Paragon a new one after firm submits read-write NTFS driver in 27,000 lines of code


Why not in 0.5 file?

Just scan the first 500 lines and count all goto's.

ZX Spectrum reboot promising – steady now – 28MHz of sizzling Speccy speed now boasts improved Wi-Fi


Re: The keyboard was key

"It had a tiny integrated rubber keyboard you could work with one hand"

8bit porn?

Have I Been Pwned to go open source – 10bn credentials, not so much, says creator Hunt


no no no

"Hash the mail addresses and only publish the hashes"

NO. Such hashes would be broken in hours. New video cards can generate billions of hash values per second. And email addresses are NOT built from completely random characters, which makes the whole process much easier. Simply brute forcing them with some not-so-clever rules (e.g. string must end with '@gmail.com') is a task for a high school student.

In the market for a second-hand phone? Check it's still supported by the vendor – almost a third sold are not


New kid on the block

"A real Linux distribution for phones": postmarketos.org

Motorbike ride-share app CEO taken to pieces in grisly New York dismemberment


RIP v2

Rest in piece(s)

Mozilla unveils $4.99/month subscription-based VPN, says it won't hang onto user logs


Re: TBird

My TB has been working fine for the last decade, what's wrong with yours?

Linux kernel coders propose inclusive terminology coding guidelines, note: 'Arguments about why people should not be offended do not scale'


Re: Newspeak

This shit got to the mainstream, it will never end now:



SAD state of affairs - watch Linus's take on this, just a few years ago...


Moore's Law is deader than corduroy bell bottoms. But with a bit of smart coding it's not the end of the road


Re: This!

No Honey, there is a reason why specialized libraries exist and are used by millions of people. One day you will discover it, I am sure of it.

Meanwhile, you can still hope that your super-optimised hand-crafted code from last night is bug free and one day it will serve next generations.


that puzzle

There is a reason why a guy who is a C language expert decided to create Python (and write it in C).

Now, YOU go and look for it.



Anyone who does not use an optimized library dedicated to numerical computations is an idiot. And of course even Python has one.

Amazon declined to sell a book so Elon Musk called for it to be broken up


Twitter - paradise for attention whores

Male horses as well.

$5bn+ sueball bounces into Google's court over claims it continues to track netizens in 'private browsing mode'


Stupid web developers

Idiots write apps and web pages that suck in files from other (than their own) domains like fresh bread. If we end this common stupidity, privacy will prevail.

NUC NUC. Who's there? It's Intel, with a pint-sized 8-core Xeon workstation


Re: Have some Mint instead!

Yeah, almost identical! No front display, though.


Have some Mint instead!

I meant Linux MintBox 3 of course!



What's worse than an annoying internet filter? How about one with a pre-auth remote-command execution hole and there's no patch?


The real problem is here:

"remote access to the administration tool"

Welcome to life in the Fossa lane: Ubuntu 20.04 let out of cage and Shuttleworth claims Canonical now 'commercially self sustaining'


Re: "we're working with Microsoft"

Yep, soon one will need a Microsoft email account to download Ubuntu packages. Sorry, snaps!

European programmers take an extended lunch break as GitHub goes TITSUP* again


Did not notice

All development and dependencies kept locally.

Vivaldi browser to perform a symphony of ad and tracker blocking with version 3.0


Re: If my trusty Pale Moon fails me...

Try changing user agent to Firefox or Chrome, it's worked for me. Nothing that's based on Chrome/Chromium is acceptable, uses way too much resources. PaleMoon with 500 open tabs takes 9GB of RAM and keeps running rock solid for weeks (on Linux of course).

Europe publishes draft rules for coronavirus contact-tracing app development, on a relaxed schedule

Paris Hilton

So how exactly will this work...

OK, we are 3 or 6 months from now and this app is widely used. You've planned your trip, vacation or a business meeting. Or it's just your brother with his family coming to visit you from another country. And imagine that one day before that event your application starts beeping: hey, person A was close to person B, person B met with person C, person C and D were on the same bus a week ago. And you are person D, person A tested positive.

Will you cancel all your plans just because of that? Well, will you?

More than a billion hopelessly vulnerable Android gizmos in the wild that no longer receive security updates – research


My 1Gbit home wireless router is 11 yo

yet it runs the most recent version of DD-WRT. It cans been done!

Stand back, we're going in: The Register rips a 7th-gen ThinkPad X1 Carbon apart. Literally


Re: Glossy screen?

Thank you Fred, I bet you meant me.


My Dell Latitude beats it

Comparable price tag and size, but:

- max RAM 64GB

- removable RAM/SSD

- faster CPU (not low voltage crap, but they are also available)

- 5 year on-site warranty (extra purchase, totally worth it)

- no "do not remove" sticker present. Dell actually posts instructions on how to disassemble each single component in the user manual and it is not against their warranty to do so.

OK, it is a bit heavier though. WHAT? Do I see a glossy screen up there? My Dell's matte screen rules then for good.

Taylor drift: Finally, a use for AI emerges? Cyber-smut star films fsck-flick in Tesla with Autopilot, warns: 'I wouldn't recommend it'


Re: Boyfriend???

My fault, have not taken it out for a while...



The video title says "tinder date".

Anyways, does anyone know what happened to opencliparts? Down for over a week.

US border cops search cloud accounts? Ha ha, nope, negative, no way, siree – Homeland Sec


I got no smartphone, I use no facebook

Am I arrested?

Hey, remember that monkey selfie copyright drama a few years ago? Get this – It's just hit the US appeals courts


This case calls for a monkey judge

And they might not be out of luck!

An AI can replace what a world leader said in his video-taped speech. This will end well. Not


Next project: AI supported farts

Why? Because why not.

AI vans are real – but they'll make us suck at driving, warn boffins


The future:

In 30 years people won't own cars. There's no such need, how many hours per week do you really use it?

Unmanned vehicles are the shortest path to "car as a service". You need a ride, you make a call, it's there for you in 3 minutes. And after your ride is over you don't care for it.

I once sat down with friends and we calculated the total ownership cost of car. Everything included: oil changes, insurance, gas, spare tires, etc. And then how much one mile really costs you. Enjoy your math!

Two-factor FAIL: Chap gets pwned after 'AT&T falls for hacker tricks'


Re: why would anyone link their bank accnt to paypal

"Credit cards? Ah yes, I've heard of them. People use them to get massively into debt with really high interest rates right?"

I happen to have 6 CC's. Not a single dime in debt. You should hear more broadly.

G20 calls for 'lawful and non-arbitrary access to available information' to fight terror


Re: Except they won't, because they can't

"If WhatsApp introduce backdoors, then people will simply move to..."

And how will people know that? From a press release?

Linux 4.12 kernel lands: 'Go forth and use it' quoth Linus Torvalds


Re: Why so many kernel regressions?

"Notice how he never mentioned what the regressions are..."

See my first post: keyboard, wifi, etc. And from my perspective as a customer, I do not care what causes the issues. I switch to kernel 4.4, things work OK, I switch to 4.8, they don't. Back to 4.4, again OK.



Re: Why so many kernel regressions?

"I suspect your issue is that you went onto a forum and said something vague like..."

And how are your National Lottery predictions? Equally accurate?


Re: Why so many kernel regressions?

"Did you try reporting the problems you are having somewhere..."

Some of them I did. But most were related to my laptop brand, and testers would need the exact same model (or line) to reproduce them and fix.

"I would suspect that Windows has similar levels of change between major releases."

True, but there is a new Linux kernel version every 5-6 weeks now! MS handles it differently.

My grub lists over 15 kernels now, I can use whichever I want but this won't work for Linux newbies.


Re: Why so many kernel regressions?

All of them were official distro kernels, all updates done via the package manager, no manual hacks.

I did investigate a few issues more deeply and they were genuine bugs i.e. reported problems found in the kernel code. As I said, if each kernel release means thousands of code changes, such things will happen.


Re: Why so many kernel regressions?

Regression: things worked OK using 4.4, but they are broken in 4.8. What does it have to do with vendors? They pulled out their code/drivers?


Why so many kernel regressions?

Just a month ago I tested 6 different kernels (4.4- 4.10) with my quite new laptop. In each case at least one hardware competent did not work properly, from the lit keyboard to power management to wi-fi. And the newest kernel was not the one I decided to stick with.

The kernel should get stable at some point and stable means as few code changes as possible. 4.12 had over a million of LOC added, is there any other software piece which changes that much at that frequently?

Male escort says he gave up IT to do something more meaningful


Re: i did this when i was younger

We all did it when we were younger, sorry, older. It's called bragging.

Oh my Word... Microsoft Office 365 unlatched after morning lockout


Re: Please explain to me ...

The cloud is simply a computer that belongs to someone else. Nothing more.


"you can actually get to your data from other computers than your main machine!"

I don't trust other computers.


Re: Some stuff should be made offline

Not only that, you also don't own anything. You pay subscription fees for music, movies, books, apps, etc. and... your children will be paying the same fees for the same content.