• 0 Posts
  • 129 Comments
Joined 1 year ago
cake
Cake day: June 18th, 2023

help-circle










  • Still a bit open ended. Web browser finger printing is probably going to be quite specific, unless you have a browser that avoids fingerprinting.

    There is a trust issue, you need to trust the userland packagers to not build in any additional tracking, but its pretty unlikely that they’ll do that given its a tiny project.

    Privacy is also multifaceted, and its never going to be as simple as “use this distro”. The techniques for online tracking are changing and evolving all the time.


  • This is a bit of a “how long is a piece of string” question, security is multifaceted.

    From what I understand, it uses your phones kernel, so if its out of date or vulnerable, that might be a problem, and you may not be able to fix that.

    Conversely, its running inside android, so the android hardening might make it more secure.

    What are you specifically concerned about? Firewall? Zero days? Antimalware?



  • Opening a new account should be relatively quick, even if you don’t get your card. So create a new account, and transfer most of your money into it. Buy the item with your current card.

    Fwiw, even without 3d secure, eBay is pretty safe to use, they are a huge corporation, and they know how to safely do transactions.


  • Might be a good idea to state your country. AFAIK, PayPal has no fees at all in my country, I assumed it was the same everywhere.

    Can you get another bank account and card with no overdraft, and keep its balance near zero when not using it? When you buy, transfer the amount to the card and use it in whatever sketchy site you like. As long as its zero balance the rest of the time its relatively safe.


  • /etc/passwd: you may be able to get to this from the GUI file manager.

    If not, open a terminal and type: cat /etc/passwd. Copy the relevant lines.

    To test the login, from a terminal, type su otheruser, replace otheruser with the username from /etc/passwd. It should ask for a password, put that in and it should log you in. Type whoami and make sure its the same username as you expected. Paste any errors here.




  • I think it perfectly highlights what can happen when the risk/severity is blown out of proportion. People will latch on to that and waste precious time and energy defending that.

    If the original guy had just published “CUPS has a RCE, firewall it if you haven’t already”, the issue would have been patched in the next release, and the world would have kept turning.

    It was a really cool bug, and a great find, it didn’t need the hype